openSUSE-SLE-15.3-2021-3854 important SUSE Updates openSUSE-SLE 15.3 This update for poppler fixes the following issues: - CVE-2017-18267: Fixed an infinite recursion that would allow remote attackers to cause a denial of service (bsc#1092945). - CVE-2018-13988: Added an improper implementation check which otherwise could allow buffer overflows, memory corruption, and denial of service (bsc#1102531). - CVE-2018-16646: Fixed an infinite recursion which could allow a denial-of-service attack via a specially crafted PDF file (bsc#1107597). - CVE-2018-18897: Fixed a memory leak (bsc#1114966). - CVE-2018-19058: Fixed a bug which could allow a denial-of-service attack via a specially crafted PDF file (bsc#1115187). - CVE-2018-19059: Fixed an out-of-bounds read access which could allow a denial-of-service attack (bsc#1115186). - CVE-2018-19060: Fixed a NULL pointer dereference which could allow a denial-of-service attack (bsc#1115185). - CVE-2018-19149: Fixed a NULL pointer dereference which could allow a denial-of-service attack (bsc#1115626). - CVE-2018-20481: Fixed a NULL pointer dereference while handling unallocated XRef entries which could allow a denial-of-service attack (bsc#1120495). - CVE-2018-20551: Fixed a reachable assertion which could allow a denial-of-service attack through specially crafted PDF files (bsc#1120496). - CVE-2018-20650: Fixed a reachable assertion which could allow denial-of-service through specially crafted PDF files (bsc#1120939). - CVE-2018-20662: Fixed a bug which could potentially crash the running process by SIGABRT resulting in a denial-of-service attack through a specially crafted PDF file (bsc#1120956). - CVE-2019-10871: Fixed a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc (bsc#1131696). - CVE-2019-10872: Fixed a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc (bsc#1131722). - CVE-2019-14494: Fixed a divide-by-zero error in the function SplashOutputDev::tilingPatternFill (bsc#1143950). - CVE-2019-7310: Fixed a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) that allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document (bsc#1124150). - CVE-2019-9200: Fixed a heap-based buffer underwrite which could allow denial-of-service attack through a specially crafted PDF file (bsc#1127329) - CVE-2019-9631: Fixed a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function (bsc#1129202). - CVE-2019-9903: Fixed excessive stack consumption in the Dict::find() method, which can be triggered by passing a crafted pdf file to the pdfunite binary (bsc#1130229). - CVE-2019-9959: Fixed integer overflow that made it possible to allocate a large memory chunk on the heap with a size controlled by an attacker (bsc#1142465). - CVE-2020-27778: Fixed buffer overflow vulnerability in pdftohtml (bsc#1179163). libpoppler73-0.62.0-4.6.1.x86_64.rpm libpoppler73-32bit-0.62.0-4.6.1.x86_64.rpm poppler-0.62.0-4.6.1.src.rpm libpoppler73-0.62.0-4.6.1.s390x.rpm libpoppler73-0.62.0-4.6.1.ppc64le.rpm libpoppler73-0.62.0-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-538 low SUSE Updates openSUSE-SLE 15.3 This update for xmltooling doesn't fix any user visible bugs. libxmltooling7-1.6.4-3.6.1.x86_64.rpm xmltooling-1.6.4-3.6.1.src.rpm libxmltooling7-1.6.4-3.6.1.s390x.rpm libxmltooling7-1.6.4-3.6.1.ppc64le.rpm libxmltooling7-1.6.4-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3242 moderate SUSE Updates openSUSE-SLE 15.3 This update for lasso fixes the following issues: - Implement package 'apache2-mod_auth_mellon' along with its dependency 'lasso' in SLE-15-SP2. (jsc#SLE-8958, jsc#ECO-1309) apache2-mod_auth_mellon-0.17.0-5.4.1.src.rpm apache2-mod_auth_mellon-0.17.0-5.4.1.x86_64.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-5.4.1.x86_64.rpm apache2-mod_auth_mellon-doc-0.17.0-5.4.1.x86_64.rpm lasso-2.6.1-16.2.src.rpm liblasso-devel-2.6.1-16.2.x86_64.rpm liblasso3-2.6.1-16.2.x86_64.rpm python3-lasso-2.6.1-16.2.x86_64.rpm apache2-mod_auth_mellon-0.17.0-5.4.1.s390x.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-5.4.1.s390x.rpm apache2-mod_auth_mellon-doc-0.17.0-5.4.1.s390x.rpm liblasso-devel-2.6.1-16.2.s390x.rpm liblasso3-2.6.1-16.2.s390x.rpm python3-lasso-2.6.1-16.2.s390x.rpm liblasso-devel-2.6.1-16.2.ppc64le.rpm liblasso3-2.6.1-16.2.ppc64le.rpm python3-lasso-2.6.1-16.2.ppc64le.rpm apache2-mod_auth_mellon-0.17.0-5.4.1.aarch64.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-5.4.1.aarch64.rpm apache2-mod_auth_mellon-doc-0.17.0-5.4.1.aarch64.rpm liblasso-devel-2.6.1-16.2.aarch64.rpm liblasso3-2.6.1-16.2.aarch64.rpm python3-lasso-2.6.1-16.2.aarch64.rpm openSUSE-SLE-15.3-2021-2125 important SUSE Updates openSUSE-SLE 15.3 This update for wireshark, libvirt, sbc and libqt5-qtmultimedia fixes the following issues: Update wireshark to version 3.4.5 - New and updated support and bug fixes for multiple protocols - Asynchronous DNS resolution is always enabled - Protobuf fields can be dissected as Wireshark (header) fields - UI improvements Including security fixes for: - CVE-2021-22191: Wireshark could open unsafe URLs (bsc#1183353). - CVE-2021-22207: MS-WSP dissector excessive memory consumption (bsc#1185128) - CVE-2020-26422: QUIC dissector crash (bsc#1180232) - CVE-2020-26418: Kafka dissector memory leak (bsc#1179930) - CVE-2020-26419: Multiple dissector memory leaks (bsc#1179931) - CVE-2020-26420: RTPS dissector memory leak (bsc#1179932) - CVE-2020-26421: USB HID dissector crash (bsc#1179933) - CVE-2021-22173: Fix USB HID dissector memory leak (bsc#1181598) - CVE-2021-22174: Fix USB HID dissector crash (bsc#1181599) libqt5-qtmultimedia and sbc are necessary dependencies. libvirt is needed to rebuild wireshark-plugin-libvirt. libsbc1-1.3-3.2.1.x86_64.rpm libsbc1-32bit-1.3-3.2.1.x86_64.rpm libwireshark14-3.4.5-3.53.1.x86_64.rpm libwiretap11-3.4.5-3.53.1.x86_64.rpm libwsutil12-3.4.5-3.53.1.x86_64.rpm sbc-1.3-3.2.1.src.rpm sbc-1.3-3.2.1.x86_64.rpm sbc-devel-1.3-3.2.1.x86_64.rpm wireshark-3.4.5-3.53.1.src.rpm wireshark-3.4.5-3.53.1.x86_64.rpm wireshark-devel-3.4.5-3.53.1.x86_64.rpm wireshark-ui-qt-3.4.5-3.53.1.x86_64.rpm libsbc1-1.3-3.2.1.s390x.rpm libwireshark14-3.4.5-3.53.1.s390x.rpm libwiretap11-3.4.5-3.53.1.s390x.rpm libwsutil12-3.4.5-3.53.1.s390x.rpm sbc-1.3-3.2.1.s390x.rpm sbc-devel-1.3-3.2.1.s390x.rpm wireshark-3.4.5-3.53.1.s390x.rpm wireshark-devel-3.4.5-3.53.1.s390x.rpm wireshark-ui-qt-3.4.5-3.53.1.s390x.rpm libsbc1-1.3-3.2.1.ppc64le.rpm libwireshark14-3.4.5-3.53.1.ppc64le.rpm libwiretap11-3.4.5-3.53.1.ppc64le.rpm libwsutil12-3.4.5-3.53.1.ppc64le.rpm sbc-1.3-3.2.1.ppc64le.rpm sbc-devel-1.3-3.2.1.ppc64le.rpm wireshark-3.4.5-3.53.1.ppc64le.rpm wireshark-devel-3.4.5-3.53.1.ppc64le.rpm wireshark-ui-qt-3.4.5-3.53.1.ppc64le.rpm libsbc1-1.3-3.2.1.aarch64.rpm libwireshark14-3.4.5-3.53.1.aarch64.rpm libwiretap11-3.4.5-3.53.1.aarch64.rpm libwsutil12-3.4.5-3.53.1.aarch64.rpm sbc-1.3-3.2.1.aarch64.rpm sbc-devel-1.3-3.2.1.aarch64.rpm wireshark-3.4.5-3.53.1.aarch64.rpm wireshark-devel-3.4.5-3.53.1.aarch64.rpm wireshark-ui-qt-3.4.5-3.53.1.aarch64.rpm openSUSE-SLE-15.3-2021-3233 moderate SUSE Updates openSUSE-SLE 15.3 This update for xfsprogs fixes the following issues: - Fixes an issue when 'fstests' with 'xfs' fail. (bsc#1181309, bsc#1181299) - xfsprogs: Split 'libhandle1' into a separate package, since nothing within xfsprogs dynamically links against it. The shared library is still required by xfsdump as a runtime dependency. - mkfs.xfs: Fix 'ASSERT' on too-small device with stripe geometry. (bsc#1181536) - mkfs.xfs: If either 'sunit' or 'swidth' is not zero, the other must be as well. (bsc#1085917, bsc#1181535) - xfs_growfs: Refactor geometry reporting. (bsc#1181306) - xfs_growfs: Allow mounted device node as argument. (bsc#1181299) - xfs_repair: Rebuild directory when non-root leafn blocks claim block 0. (bsc#1181309) - xfs_repair: Check plausibility of root dir pointer before trashing it. (bsc#1188651) - xfs_bmap: Remove '-c' from manpage. (bsc#1189552) - xfs_bmap: Do not reject '-e'. (bsc#1189552) - Implement 'libhandle1' through ECO. (jsc#SLE-20360) libhandle1-4.15.0-4.40.1.x86_64.rpm xfsprogs-4.15.0-4.40.1.src.rpm xfsprogs-4.15.0-4.40.1.x86_64.rpm xfsprogs-devel-4.15.0-4.40.1.x86_64.rpm libhandle1-4.15.0-4.40.1.s390x.rpm xfsprogs-4.15.0-4.40.1.s390x.rpm xfsprogs-devel-4.15.0-4.40.1.s390x.rpm libhandle1-4.15.0-4.40.1.ppc64le.rpm xfsprogs-4.15.0-4.40.1.ppc64le.rpm xfsprogs-devel-4.15.0-4.40.1.ppc64le.rpm libhandle1-4.15.0-4.40.1.aarch64.rpm xfsprogs-4.15.0-4.40.1.aarch64.rpm xfsprogs-devel-4.15.0-4.40.1.aarch64.rpm openSUSE-SLE-15.3-2021-1845 important SUSE Updates openSUSE-SLE 15.3 This update for avahi fixes the following issues: - CVE-2021-3468: avoid infinite loop by handling HUP event in client_work (bsc#1184521). - CVE-2021-26720: drop privileges when invoking avahi-daemon-check-dns.sh (bsc#1180827) - Update avahi-daemon-check-dns.sh from Debian. Our previous version relied on ifconfig, route, and init.d. - Add sudo to requires: used to drop privileges. avahi-0.6.32-5.13.1.src.rpm avahi-glib2-0.6.32-5.13.1.src.rpm python-avahi-0.6.32-5.13.1.x86_64.rpm python-avahi-gtk-0.6.32-5.13.1.x86_64.rpm python-avahi-0.6.32-5.13.1.s390x.rpm python-avahi-gtk-0.6.32-5.13.1.s390x.rpm python-avahi-0.6.32-5.13.1.ppc64le.rpm python-avahi-gtk-0.6.32-5.13.1.ppc64le.rpm python-avahi-0.6.32-5.13.1.aarch64.rpm python-avahi-gtk-0.6.32-5.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-1643 important SUSE Updates openSUSE-SLE 15.3 This update for pam fixes the following issues: - Fixed a bug, where the 'unlimited'/'-1' value was not interpreted correctly (bsc#1181443) - Fixed a bug, where pam_access interpreted the keyword 'LOCAL' incorrectly, leading to an attempt to resolve it as a hostname (bsc#1184358) - In the 32-bit compatibility package for 64-bit architectures, require "systemd-32bit" to be also installed as it contains pam_systemd.so for 32 bit applications. (bsc#1185562) pam-1.3.0-6.38.1.src.rpm pam-1.3.0-6.38.1.x86_64.rpm pam-32bit-1.3.0-6.38.1.x86_64.rpm pam-devel-1.3.0-6.38.1.x86_64.rpm pam-devel-32bit-1.3.0-6.38.1.x86_64.rpm pam-doc-1.3.0-6.38.1.noarch.rpm pam-extra-1.3.0-6.38.1.x86_64.rpm pam-extra-32bit-1.3.0-6.38.1.x86_64.rpm pam-1.3.0-6.38.1.s390x.rpm pam-devel-1.3.0-6.38.1.s390x.rpm pam-extra-1.3.0-6.38.1.s390x.rpm pam-1.3.0-6.38.1.ppc64le.rpm pam-devel-1.3.0-6.38.1.ppc64le.rpm pam-extra-1.3.0-6.38.1.ppc64le.rpm pam-1.3.0-6.38.1.aarch64.rpm pam-devel-1.3.0-6.38.1.aarch64.rpm pam-extra-1.3.0-6.38.1.aarch64.rpm openSUSE-SLE-15.3-2021-3227 moderate SUSE Updates openSUSE-SLE 15.3 This update for createrepo_c fixes the following issues: createrepo_c: - Does no longer perform a dir walk when --recycle-pkglist is specified - Added automatic module metadata handling for repos - Fixed a couple of memory leaks - Added --arch-expand option - Added --recycle-pkglist option - Set global_exit_status on sigint so that .repodata are cleaned up - Enhance error handling when locating repositories libmodulemd: - Just a rebuild of the package, no source changes zchunk: - Initial shipment of zchunk to SUSE Linux Enterprise createrepo_c-0.16.0-3.3.1.src.rpm createrepo_c-0.16.0-3.3.1.x86_64.rpm libcreaterepo_c-devel-0.16.0-3.3.1.x86_64.rpm libcreaterepo_c0-0.16.0-3.3.1.x86_64.rpm libmodulemd-2.12.0-3.10.1.src.rpm libmodulemd-devel-2.12.0-3.10.1.x86_64.rpm libmodulemd2-2.12.0-3.10.1.x86_64.rpm libzck-devel-1.1.5-3.2.1.x86_64.rpm libzck1-1.1.5-3.2.1.x86_64.rpm modulemd-validator-2.12.0-3.10.1.x86_64.rpm python3-createrepo_c-0.16.0-3.3.1.x86_64.rpm python3-libmodulemd-2.12.0-3.10.1.x86_64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.x86_64.rpm zchunk-1.1.5-3.2.1.src.rpm zchunk-1.1.5-3.2.1.x86_64.rpm createrepo_c-0.16.0-3.3.1.s390x.rpm libcreaterepo_c-devel-0.16.0-3.3.1.s390x.rpm libcreaterepo_c0-0.16.0-3.3.1.s390x.rpm libmodulemd-devel-2.12.0-3.10.1.s390x.rpm libmodulemd2-2.12.0-3.10.1.s390x.rpm libzck-devel-1.1.5-3.2.1.s390x.rpm libzck1-1.1.5-3.2.1.s390x.rpm modulemd-validator-2.12.0-3.10.1.s390x.rpm python3-createrepo_c-0.16.0-3.3.1.s390x.rpm python3-libmodulemd-2.12.0-3.10.1.s390x.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.s390x.rpm zchunk-1.1.5-3.2.1.s390x.rpm createrepo_c-0.16.0-3.3.1.ppc64le.rpm libcreaterepo_c-devel-0.16.0-3.3.1.ppc64le.rpm libcreaterepo_c0-0.16.0-3.3.1.ppc64le.rpm libmodulemd-devel-2.12.0-3.10.1.ppc64le.rpm libmodulemd2-2.12.0-3.10.1.ppc64le.rpm libzck-devel-1.1.5-3.2.1.ppc64le.rpm libzck1-1.1.5-3.2.1.ppc64le.rpm modulemd-validator-2.12.0-3.10.1.ppc64le.rpm python3-createrepo_c-0.16.0-3.3.1.ppc64le.rpm python3-libmodulemd-2.12.0-3.10.1.ppc64le.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.ppc64le.rpm zchunk-1.1.5-3.2.1.ppc64le.rpm createrepo_c-0.16.0-3.3.1.aarch64.rpm libcreaterepo_c-devel-0.16.0-3.3.1.aarch64.rpm libcreaterepo_c0-0.16.0-3.3.1.aarch64.rpm libmodulemd-devel-2.12.0-3.10.1.aarch64.rpm libmodulemd2-2.12.0-3.10.1.aarch64.rpm libzck-devel-1.1.5-3.2.1.aarch64.rpm libzck1-1.1.5-3.2.1.aarch64.rpm modulemd-validator-2.12.0-3.10.1.aarch64.rpm python3-createrepo_c-0.16.0-3.3.1.aarch64.rpm python3-libmodulemd-2.12.0-3.10.1.aarch64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.aarch64.rpm zchunk-1.1.5-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-1862 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - controller: Fix for the issue when the re-joined node gets the host names of non-DC nodes and fails. (bsc#1180618) - Fixed an issue when pacemaker generates invalid xml for certain failures. (rh#1931332) - fencer: Optimize merging of fencing history by removing unneeded entries on creation of history diff. (bsc#1181744) - fencing: Add a new function for checking if a fencing operation is in pending state. (bsc#1181744) - fencer: Update outdated pending operations according to returned ones from remote peer history. (bsc#1181744) - fencer: Fix if broadcast returned fencing operations to update outdated pending ones in remote peer history. (bsc#1181744) - execd: Skips merging of canceled fencing monitors. (#CLBZ5393) - liblrmd: Limit node name addition to proxied 'attrd' update commands. (rh#1907726) - controller, Pacemaker Explained: Improved the documentation of 'stonith-watchdog-timeout' cluster option. (bsc#1174696, bsc#1184557) - scheduler: Improved the documentation of 'have-watchdog' cluster option. (bsc#1174696, bsc#1184557) - libpe_status: Downgrade the message about the meaning of 'have-watchdog=true' to 'info'. (bsc#1174696, bsc#1184557) - scheduler: Update 'migrate-fail-9' test for migration code change. (bsc#1177212, bsc#1182607) - scheduler: Don't schedule a dangling migration stop if one already occurred. (bsc#1177212, bsc#1182607) libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.src.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-4.3.23.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm openSUSE-SLE-15.3-2021-2244 moderate SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - Create timestamp attribute in cache objects if missing (bsc#1182637) - Fix sss_cache spurious error messages when invoked from shadow-utils (bsc#1185017) - Using now /run instead of /var/run for daemon PID files (bsc#1185185) libipa_hbac-devel-1.16.1-23.8.1.x86_64.rpm libipa_hbac0-1.16.1-23.8.1.x86_64.rpm libnfsidmap-sss-1.16.1-23.8.1.x86_64.rpm libsss_certmap-devel-1.16.1-23.8.1.x86_64.rpm libsss_certmap0-1.16.1-23.8.1.x86_64.rpm libsss_idmap-devel-1.16.1-23.8.1.x86_64.rpm libsss_idmap0-1.16.1-23.8.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.x86_64.rpm libsss_nss_idmap0-1.16.1-23.8.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-23.8.1.x86_64.rpm libsss_simpleifp0-1.16.1-23.8.1.x86_64.rpm python3-ipa_hbac-1.16.1-23.8.1.x86_64.rpm python3-sss-murmur-1.16.1-23.8.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-23.8.1.x86_64.rpm python3-sssd-config-1.16.1-23.8.1.x86_64.rpm sssd-1.16.1-23.8.1.src.rpm sssd-1.16.1-23.8.1.x86_64.rpm sssd-ad-1.16.1-23.8.1.x86_64.rpm sssd-common-1.16.1-23.8.1.x86_64.rpm sssd-dbus-1.16.1-23.8.1.x86_64.rpm sssd-ipa-1.16.1-23.8.1.x86_64.rpm sssd-krb5-1.16.1-23.8.1.x86_64.rpm sssd-krb5-common-1.16.1-23.8.1.x86_64.rpm sssd-ldap-1.16.1-23.8.1.x86_64.rpm sssd-proxy-1.16.1-23.8.1.x86_64.rpm sssd-tools-1.16.1-23.8.1.x86_64.rpm sssd-wbclient-1.16.1-23.8.1.x86_64.rpm sssd-wbclient-devel-1.16.1-23.8.1.x86_64.rpm sssd-winbind-idmap-1.16.1-23.8.1.x86_64.rpm libipa_hbac-devel-1.16.1-23.8.1.s390x.rpm libipa_hbac0-1.16.1-23.8.1.s390x.rpm libnfsidmap-sss-1.16.1-23.8.1.s390x.rpm libsss_certmap-devel-1.16.1-23.8.1.s390x.rpm libsss_certmap0-1.16.1-23.8.1.s390x.rpm libsss_idmap-devel-1.16.1-23.8.1.s390x.rpm libsss_idmap0-1.16.1-23.8.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.s390x.rpm libsss_nss_idmap0-1.16.1-23.8.1.s390x.rpm libsss_simpleifp-devel-1.16.1-23.8.1.s390x.rpm libsss_simpleifp0-1.16.1-23.8.1.s390x.rpm python3-ipa_hbac-1.16.1-23.8.1.s390x.rpm python3-sss-murmur-1.16.1-23.8.1.s390x.rpm python3-sss_nss_idmap-1.16.1-23.8.1.s390x.rpm python3-sssd-config-1.16.1-23.8.1.s390x.rpm sssd-1.16.1-23.8.1.s390x.rpm sssd-ad-1.16.1-23.8.1.s390x.rpm sssd-common-1.16.1-23.8.1.s390x.rpm sssd-dbus-1.16.1-23.8.1.s390x.rpm sssd-ipa-1.16.1-23.8.1.s390x.rpm sssd-krb5-1.16.1-23.8.1.s390x.rpm sssd-krb5-common-1.16.1-23.8.1.s390x.rpm sssd-ldap-1.16.1-23.8.1.s390x.rpm sssd-proxy-1.16.1-23.8.1.s390x.rpm sssd-tools-1.16.1-23.8.1.s390x.rpm sssd-wbclient-1.16.1-23.8.1.s390x.rpm sssd-wbclient-devel-1.16.1-23.8.1.s390x.rpm sssd-winbind-idmap-1.16.1-23.8.1.s390x.rpm libipa_hbac-devel-1.16.1-23.8.1.ppc64le.rpm libipa_hbac0-1.16.1-23.8.1.ppc64le.rpm libnfsidmap-sss-1.16.1-23.8.1.ppc64le.rpm libsss_certmap-devel-1.16.1-23.8.1.ppc64le.rpm libsss_certmap0-1.16.1-23.8.1.ppc64le.rpm libsss_idmap-devel-1.16.1-23.8.1.ppc64le.rpm libsss_idmap0-1.16.1-23.8.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-23.8.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-23.8.1.ppc64le.rpm libsss_simpleifp0-1.16.1-23.8.1.ppc64le.rpm python3-ipa_hbac-1.16.1-23.8.1.ppc64le.rpm python3-sss-murmur-1.16.1-23.8.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-23.8.1.ppc64le.rpm python3-sssd-config-1.16.1-23.8.1.ppc64le.rpm sssd-1.16.1-23.8.1.ppc64le.rpm sssd-ad-1.16.1-23.8.1.ppc64le.rpm sssd-common-1.16.1-23.8.1.ppc64le.rpm sssd-dbus-1.16.1-23.8.1.ppc64le.rpm sssd-ipa-1.16.1-23.8.1.ppc64le.rpm sssd-krb5-1.16.1-23.8.1.ppc64le.rpm sssd-krb5-common-1.16.1-23.8.1.ppc64le.rpm sssd-ldap-1.16.1-23.8.1.ppc64le.rpm sssd-proxy-1.16.1-23.8.1.ppc64le.rpm sssd-tools-1.16.1-23.8.1.ppc64le.rpm sssd-wbclient-1.16.1-23.8.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-23.8.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-23.8.1.ppc64le.rpm libipa_hbac-devel-1.16.1-23.8.1.aarch64.rpm libipa_hbac0-1.16.1-23.8.1.aarch64.rpm libnfsidmap-sss-1.16.1-23.8.1.aarch64.rpm libsss_certmap-devel-1.16.1-23.8.1.aarch64.rpm libsss_certmap0-1.16.1-23.8.1.aarch64.rpm libsss_idmap-devel-1.16.1-23.8.1.aarch64.rpm libsss_idmap0-1.16.1-23.8.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.aarch64.rpm libsss_nss_idmap0-1.16.1-23.8.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-23.8.1.aarch64.rpm libsss_simpleifp0-1.16.1-23.8.1.aarch64.rpm python3-ipa_hbac-1.16.1-23.8.1.aarch64.rpm python3-sss-murmur-1.16.1-23.8.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-23.8.1.aarch64.rpm python3-sssd-config-1.16.1-23.8.1.aarch64.rpm sssd-1.16.1-23.8.1.aarch64.rpm sssd-ad-1.16.1-23.8.1.aarch64.rpm sssd-common-1.16.1-23.8.1.aarch64.rpm sssd-dbus-1.16.1-23.8.1.aarch64.rpm sssd-ipa-1.16.1-23.8.1.aarch64.rpm sssd-krb5-1.16.1-23.8.1.aarch64.rpm sssd-krb5-common-1.16.1-23.8.1.aarch64.rpm sssd-ldap-1.16.1-23.8.1.aarch64.rpm sssd-proxy-1.16.1-23.8.1.aarch64.rpm sssd-tools-1.16.1-23.8.1.aarch64.rpm sssd-wbclient-1.16.1-23.8.1.aarch64.rpm sssd-wbclient-devel-1.16.1-23.8.1.aarch64.rpm sssd-winbind-idmap-1.16.1-23.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2306 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-samba-client fixes the following issues: - Fix joining a domain when running a clustered Samba environment. (bsc#1181595) yast2-samba-client-4.3.3-3.3.1.noarch.rpm yast2-samba-client-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1840 important SUSE Updates openSUSE-SLE 15.3 This update for xstream fixes the following issues: - Upgrade to 1.4.16 - CVE-2021-21351: remote attacker to load and execute arbitrary code (bsc#1184796) - CVE-2021-21349: SSRF can lead to a remote attacker to request data from internal resources (bsc#1184797) - CVE-2021-21350: arbitrary code execution (bsc#1184380) - CVE-2021-21348: remote attacker could cause denial of service by consuming maximum CPU time (bsc#1184374) - CVE-2021-21347: remote attacker to load and execute arbitrary code from a remote host (bsc#1184378) - CVE-2021-21344: remote attacker could load and execute arbitrary code from a remote host (bsc#1184375) - CVE-2021-21342: server-side forgery (bsc#1184379) - CVE-2021-21341: remote attacker could cause a denial of service by allocating 100% CPU time (bsc#1184377) - CVE-2021-21346: remote attacker could load and execute arbitrary code (bsc#1184373) - CVE-2021-21345: remote attacker with sufficient rights could execute commands (bsc#1184372) - CVE-2021-21343: replace or inject objects, that result in the deletion of files on the local host (bsc#1184376) xstream-1.4.16-3.8.1.noarch.rpm xstream-1.4.16-3.8.1.src.rpm xstream-benchmark-1.4.16-3.8.1.noarch.rpm xstream-javadoc-1.4.16-3.8.1.noarch.rpm xstream-parent-1.4.16-3.8.1.noarch.rpm openSUSE-SLE-15.3-2021-2221 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Update to version 4.8.0 - HA-LVM systemid race condition introduces an error "active on 2 nodes". (bsc#1178680) - L3: azure-events puts both nodes in standby. (bsc#1183971) - 'ethmonitor' journal with warnings for VLAN. (bsc#1177796) - URL errors in 'azure-events' is fixed upstream. (bsc#1180590) - gcp-vpc-move-route resource agent file_cache is unavailable when using oauth2client. (bsc#1184607) - L3: anything RA stop operation fails if /root/.profile has unexpected content. (bsc#1179977) ldirectord-4.8.0+git30.d0077df0-8.5.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.5.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.5.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.5.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.5.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1630 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Update to version 4.3.0: * Fix: bootstrap: add sbd via bootstrap stage on an existing cluster (bsc#1181906) * Fix: bootstrap: change StrictHostKeyChecking=no as a constants(bsc#1185437) * Dev: bootstrap: disable unnecessary warnings (bsc#1178118) * Fix: bootstrap: sync corosync.conf before finished joining(bsc#1183359) * Dev: add "crm corosync status qdevice" sub-command * Dev: ui_cluster: add qdevice help info * Fix for bootstrap: parse space in sbd device correctly. (bsc#1183883) * Fix for bootstrap: get the peer node name correctly. (bsc#1183654) * Update version and author. (bsc#1183689) * Dev: bootstrap: enable configuring qdevice on interactive mode. (jsc#ECO-3567) crmsh-4.3.0+20210507.bf02d791-5.50.1.noarch.rpm crmsh-4.3.0+20210507.bf02d791-5.50.1.src.rpm crmsh-scripts-4.3.0+20210507.bf02d791-5.50.1.noarch.rpm crmsh-test-4.3.0+20210507.bf02d791-5.50.1.noarch.rpm openSUSE-SLE-15.3-2021-2420 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-bootloader fixes the following issues: - Fix crash when bootloader is not managed by yast and security module wants to show cpu mitigation. (bsc#1184968) - Add the os-prober package to the set of packages to install if the package is available and supported on the arch. (bsc#1186369) - Enable linuxefi/initrdefi on x86 only as grub does not understand those commands on other archs. (bsc#1183795) - Fixes for 'arm can boot on uefi'. (bsc#1183795) - arm can boot on uefi. (bsc#1183795) yast2-bootloader-4.3.30-3.5.1.src.rpm yast2-bootloader-4.3.30-3.5.1.x86_64.rpm yast2-bootloader-4.3.30-3.5.1.s390x.rpm yast2-bootloader-4.3.30-3.5.1.ppc64le.rpm yast2-bootloader-4.3.30-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1663 moderate SUSE Updates openSUSE-SLE 15.3 This update for drbd-formula fixes the following issues: - Support different backing device per node. (bsc#1179529) drbd-formula-0.4.2+git.1616116365.1e3ab34-3.6.1.noarch.rpm drbd-formula-0.4.2+git.1616116365.1e3ab34-3.6.1.src.rpm openSUSE-SLE-15.3-2021-1679 moderate SUSE Updates openSUSE-SLE 15.3 This update for ddclient fixes the following issues: - As '/var/run' is deprecated, replaced by '/run' in 'ddclient-tmpfiles.conf' (bsc#1185069) - Systemd expects the PID file to exist as soon as the main process exists. However, it takes quite a while until the pid file is created by the daemon process, so we delay the main process for 1 second before exit()ing. This gets rid of an annoying warning message in "systemctl status". ddclient-3.8.3-3.7.1.noarch.rpm ddclient-3.8.3-3.7.1.src.rpm openSUSE-SLE-15.3-2021-2172 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-matplotlib fixes the following issues: - Fix dependencies to explicit python3-* ones. (bsc#1184340) python-matplotlib-2.2.5-3.3.1.src.rpm python2-matplotlib-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-cairo-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-latex-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-qt5-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-tk-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-web-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-wx-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-cairo-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-latex-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-qt5-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-tk-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-web-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-2.2.5-3.3.1.s390x.rpm python2-matplotlib-cairo-2.2.5-3.3.1.s390x.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.s390x.rpm python2-matplotlib-latex-2.2.5-3.3.1.s390x.rpm python2-matplotlib-qt5-2.2.5-3.3.1.s390x.rpm python2-matplotlib-tk-2.2.5-3.3.1.s390x.rpm python2-matplotlib-web-2.2.5-3.3.1.s390x.rpm python2-matplotlib-wx-2.2.5-3.3.1.s390x.rpm python3-matplotlib-2.2.5-3.3.1.s390x.rpm python3-matplotlib-cairo-2.2.5-3.3.1.s390x.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.s390x.rpm python3-matplotlib-latex-2.2.5-3.3.1.s390x.rpm python3-matplotlib-qt5-2.2.5-3.3.1.s390x.rpm python3-matplotlib-tk-2.2.5-3.3.1.s390x.rpm python3-matplotlib-web-2.2.5-3.3.1.s390x.rpm python2-matplotlib-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-cairo-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-latex-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-qt5-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-tk-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-web-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-wx-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-cairo-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-latex-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-qt5-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-tk-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-web-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-cairo-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-latex-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-qt5-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-tk-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-web-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-wx-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-cairo-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-latex-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-qt5-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-tk-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-web-2.2.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1983 moderate SUSE Updates openSUSE-SLE 15.3 This update for ovmf fixes the following issues: - Enabled S3 support for ovmf-x86_64-smm. (bsc#1184938) - Added "acpi-s4" tag to allow libvirt enable hibernation. (bsc#1182886) ovmf-202008-10.5.1.src.rpm ovmf-202008-10.5.1.x86_64.rpm ovmf-tools-202008-10.5.1.x86_64.rpm qemu-ovmf-ia32-202008-10.5.1.noarch.rpm qemu-ovmf-x86_64-202008-10.5.1.noarch.rpm qemu-ovmf-x86_64-debug-202008-10.5.1.x86_64.rpm qemu-uefi-aarch32-202008-10.5.1.noarch.rpm qemu-uefi-aarch64-202008-10.5.1.noarch.rpm ovmf-202008-10.5.1.aarch64.rpm ovmf-tools-202008-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1662 moderate SUSE Updates openSUSE-SLE 15.3 This update for saphanabootstrap-formula fixes the following issues: - Fix the HANA sidadm usage to transform to lowercase some states managing the sudoers file in ha_cluster.sls state file. (bsc#1185090) saphanabootstrap-formula-0.7.1+git.1619008686.8600866-3.11.1.noarch.rpm saphanabootstrap-formula-0.7.1+git.1619008686.8600866-3.11.1.src.rpm openSUSE-SLE-15.3-2021-3188 moderate SUSE Updates openSUSE-SLE 15.3 This update for sapnwbootstrap-formula fixes the following issues: Update to version 0.6.4+git.1621842068.a86c37c: - Set the default empty dictionary for 'virtual_addresses'. (bsc#1185627) - This also ensures that a dictionary is obtained if the value is None (needed by SUSE Manager) - Fix issue when 'azure-lb' resource for 'ASCS/ERS' is not added in the corresponding Resource Group (bsc#1186236) - Set the virtual ip addresses as permanent, except for HA scenarios, to have them even after a reboot of the machine. (bsc#1185093) - Give the option to mount '/sapmnt' folder locally without using a 'NFS' share. - Make '/sapmnt' path configurable using 'sapmnt_path' pillar variable - Update PAS and AAS templates to use HANA sid and instance number to create the configuration file - Fix error about missing instance installation requisite when monitoring is enabled. (bsc#1181541) sapnwbootstrap-formula-0.6.4+git.1621842068.a86c37c-10.1.noarch.rpm sapnwbootstrap-formula-0.6.4+git.1621842068.a86c37c-10.1.src.rpm openSUSE-SLE-15.3-2021-1826 important SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - CVE-2021-25214: Fixed a broken inbound incremental zone update (IXFR) which could have caused named to terminate unexpectedly (bsc#1185345). - CVE-2021-25215: Fixed an assertion check which could have failed while answering queries for DNAME records that required the DNAME to be processed to resolve itself (bsc#1185345). - Switched from /var/run to /run (bsc#1185073) - Hardening: Compiled binary with PIE flags to make it position independent bind-9.16.6-22.7.1.src.rpm bind-9.16.6-22.7.1.x86_64.rpm bind-chrootenv-9.16.6-22.7.1.x86_64.rpm bind-devel-9.16.6-22.7.1.x86_64.rpm bind-doc-9.16.6-22.7.1.noarch.rpm bind-utils-9.16.6-22.7.1.x86_64.rpm libbind9-1600-9.16.6-22.7.1.x86_64.rpm libdns1605-9.16.6-22.7.1.x86_64.rpm libirs-devel-9.16.6-22.7.1.x86_64.rpm libirs1601-9.16.6-22.7.1.x86_64.rpm libisc1606-9.16.6-22.7.1.x86_64.rpm libisccc1600-9.16.6-22.7.1.x86_64.rpm libisccfg1600-9.16.6-22.7.1.x86_64.rpm libns1604-9.16.6-22.7.1.x86_64.rpm python3-bind-9.16.6-22.7.1.noarch.rpm bind-9.16.6-22.7.1.s390x.rpm bind-chrootenv-9.16.6-22.7.1.s390x.rpm bind-devel-9.16.6-22.7.1.s390x.rpm bind-utils-9.16.6-22.7.1.s390x.rpm libbind9-1600-9.16.6-22.7.1.s390x.rpm libdns1605-9.16.6-22.7.1.s390x.rpm libirs-devel-9.16.6-22.7.1.s390x.rpm libirs1601-9.16.6-22.7.1.s390x.rpm libisc1606-9.16.6-22.7.1.s390x.rpm libisccc1600-9.16.6-22.7.1.s390x.rpm libisccfg1600-9.16.6-22.7.1.s390x.rpm libns1604-9.16.6-22.7.1.s390x.rpm bind-9.16.6-22.7.1.ppc64le.rpm bind-chrootenv-9.16.6-22.7.1.ppc64le.rpm bind-devel-9.16.6-22.7.1.ppc64le.rpm bind-utils-9.16.6-22.7.1.ppc64le.rpm libbind9-1600-9.16.6-22.7.1.ppc64le.rpm libdns1605-9.16.6-22.7.1.ppc64le.rpm libirs-devel-9.16.6-22.7.1.ppc64le.rpm libirs1601-9.16.6-22.7.1.ppc64le.rpm libisc1606-9.16.6-22.7.1.ppc64le.rpm libisccc1600-9.16.6-22.7.1.ppc64le.rpm libisccfg1600-9.16.6-22.7.1.ppc64le.rpm libns1604-9.16.6-22.7.1.ppc64le.rpm bind-9.16.6-22.7.1.aarch64.rpm bind-chrootenv-9.16.6-22.7.1.aarch64.rpm bind-devel-9.16.6-22.7.1.aarch64.rpm bind-utils-9.16.6-22.7.1.aarch64.rpm libbind9-1600-9.16.6-22.7.1.aarch64.rpm libdns1605-9.16.6-22.7.1.aarch64.rpm libirs-devel-9.16.6-22.7.1.aarch64.rpm libirs1601-9.16.6-22.7.1.aarch64.rpm libisc1606-9.16.6-22.7.1.aarch64.rpm libisccc1600-9.16.6-22.7.1.aarch64.rpm libisccfg1600-9.16.6-22.7.1.aarch64.rpm libns1604-9.16.6-22.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3187 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - CVE-2021-20277: Fixed an out of bounds read in ldb_handler_fold (bsc#1183574). - CVE-2021-20254: Fixed a buffer overrun in sids_to_unixids() (bsc#1184677). - CVE-2020-27840: Fixed an unauthenticated remote heap corruption via bad DNs (bsc#1183572). - Spec file fixes around systemd and requires (bsc#1182830) - Fix dependency problem upgrading from libndr0 to libndr1 (bsc#1189875) - Fix dependency problem upgrading from libsmbldap0 to libsmbldap2 (bsc#1189875) ctdb-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-binding0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-samr0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-krb5pac0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-nbt0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-standard0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr1-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi-devel-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-credentials0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-errors0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-hostconfig0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-passdb0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy0-python3-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-util0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamdb0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbclient0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbconf0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbldap2-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libtevent-util0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libwbclient0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.src.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-ad-dc-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-ceph-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-client-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-doc-4.13.6+git.211.555d60b24ba-3.7.1.noarch.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-python3-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-winbind-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm ctdb-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm ctdb-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm ctdb-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-ceph-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3665 low SUSE Updates openSUSE-SLE 15.3 This update for drbd-utils fixes the following issues: - make all binaries position independent (basc#1185132). - Upgrade to 9.0.18 (bsc#1189363) * build: remove rpm related targets * drbdsetup,v84: fix minor compile warnings * systemd: resource specific activation * systemd: drbd-reactor promoter templates * doc: fix maximum ping timeout * doc: add man pages for the systemd templates * drbdadm,v9: fix dstate for diskless volumes * build/release: use lbvers.py * drbd-attr: don't leak fd to drbdsetup * doc: various fixes and additions * drbdsetup,events2,v9: add backing_device * build,Debian: rm dh-systemd dependency * drbdsetup,events2,v9: fix --poll regression * drbdmeta: fix bug with ALs with small final extents * build,Debian: rm mail recommends * drbdsetup,events2,v9: allow --poll without --now * drbdsetup,invalidate: allow bitmap based resync after verify * drbdadm,sh-ll-dev: change output to "none" if diskless * drbdadm,v9: allow set-gi in single node clusters * drbsetup,events2,v9: diff(erential) output * drbsetup,events2,v9: add --full output * v9: allow resource rename, also in drbdmon * drbdadm,v9: allow c-max-rate to be disabled * New drbd-attr Pacemaker RA * events2: handle mixed initial state and multicast events * events2: fix regression to always print resync done - Prepare '/usr' merge. (bsc#1029961) drbd-utils-9.18.0-4.7.2.src.rpm drbd-utils-9.18.0-4.7.2.x86_64.rpm drbd-utils-9.18.0-4.7.2.s390x.rpm drbd-utils-9.18.0-4.7.2.ppc64le.rpm drbd-utils-9.18.0-4.7.2.aarch64.rpm openSUSE-SLE-15.3-2021-1954 important SUSE Updates openSUSE-SLE 15.3 This update for containerd, docker, runc fixes the following issues: Docker was updated to 20.10.6-ce (bsc#1184768, bsc#1182947, bsc#1181594) * Switch version to use -ce suffix rather than _ce to avoid confusing other tools (bsc#1182476). * CVE-2021-21284: Fixed a potential privilege escalation when the root user in the remapped namespace has access to the host filesystem (bsc#1181732) * CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest crashes the dockerd daemon (bsc#1181730). * btrfs quotas being removed by Docker regularly (bsc#1183855, bsc#1175081) runc was updated to v1.0.0~rc93 (bsc#1182451, bsc#1175821 bsc#1184962). * Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821). * Fixed /dev/null is not available (bsc#1168481). * CVE-2021-30465: Fixed a symlink-exchange attack vulnarability (bsc#1185405). containerd was updated to v1.4.4 * CVE-2021-21334: Fixed a potential information leak through environment variables (bsc#1183397). * Handle a requirement from docker (bsc#1181594). Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? containerd-1.4.4-5.32.1.src.rpm containerd-1.4.4-5.32.1.x86_64.rpm containerd-ctr-1.4.4-5.32.1.x86_64.rpm docker-20.10.6_ce-6.49.3.src.rpm docker-20.10.6_ce-6.49.3.x86_64.rpm docker-bash-completion-20.10.6_ce-6.49.3.noarch.rpm docker-fish-completion-20.10.6_ce-6.49.3.noarch.rpm docker-zsh-completion-20.10.6_ce-6.49.3.noarch.rpm runc-1.0.0~rc93-1.14.2.src.rpm runc-1.0.0~rc93-1.14.2.x86_64.rpm containerd-1.4.4-5.32.1.s390x.rpm containerd-ctr-1.4.4-5.32.1.s390x.rpm docker-20.10.6_ce-6.49.3.s390x.rpm runc-1.0.0~rc93-1.14.2.s390x.rpm containerd-1.4.4-5.32.1.ppc64le.rpm containerd-ctr-1.4.4-5.32.1.ppc64le.rpm docker-20.10.6_ce-6.49.3.ppc64le.rpm runc-1.0.0~rc93-1.14.2.ppc64le.rpm containerd-1.4.4-5.32.1.aarch64.rpm containerd-ctr-1.4.4-5.32.1.aarch64.rpm docker-20.10.6_ce-6.49.3.aarch64.rpm runc-1.0.0~rc93-1.14.2.aarch64.rpm openSUSE-SLE-15.3-2021-3044 critical SUSE Updates openSUSE-SLE 15.3 This update for ghostscript fixes the following issues: Security issue fixed: - CVE-2021-3781: Fixed a trivial -dSAFER bypass command injection (bsc#1190381) Also a hardening fix was added: - Link as position independent executable (bsc#1184123) ghostscript-9.52-155.1.src.rpm ghostscript-9.52-155.1.x86_64.rpm ghostscript-devel-9.52-155.1.x86_64.rpm ghostscript-x11-9.52-155.1.x86_64.rpm libspectre-0.2.8-3.12.1.src.rpm libspectre-devel-0.2.8-3.12.1.x86_64.rpm libspectre1-0.2.8-3.12.1.x86_64.rpm ghostscript-9.52-155.1.s390x.rpm ghostscript-devel-9.52-155.1.s390x.rpm ghostscript-x11-9.52-155.1.s390x.rpm libspectre-devel-0.2.8-3.12.1.s390x.rpm libspectre1-0.2.8-3.12.1.s390x.rpm ghostscript-9.52-155.1.ppc64le.rpm ghostscript-devel-9.52-155.1.ppc64le.rpm ghostscript-x11-9.52-155.1.ppc64le.rpm libspectre-devel-0.2.8-3.12.1.ppc64le.rpm libspectre1-0.2.8-3.12.1.ppc64le.rpm ghostscript-9.52-155.1.aarch64.rpm ghostscript-devel-9.52-155.1.aarch64.rpm ghostscript-x11-9.52-155.1.aarch64.rpm libspectre-devel-0.2.8-3.12.1.aarch64.rpm libspectre1-0.2.8-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2107 moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-node_exporter fixes the following issues: Update from version 1.0.1 to version 1.1.2 - Bug fixes: - Do not include sources (bsc#1151558) - Handle errors from disabled `Pressure Stall Information (PSI)` subsystem - Sanitize strings from `/sys/class/power_supply` - Silence missing `netclass` errors - Fix `ineffassign` issue - Demote some warning to `Debug` level - `filesystem_freebsd`: Fix label values - Fix various `procfs` parsing errors - Handle no data from the power supply class - `udp_queues_linux.go`: change `upd` to `udp` in two error strings - Fix `node_scrape_collector_success` behavior - Fix `NodeRAIDDegraded` to not use a string rule expressions - Fix `node_md_disks` state label from fail to failed - Handle `EPERM` for syscall in timex collector - `bcache`: fix typo in a metric name - Fix XFS read/write stats - Enhancements: - Improve filter flag names - Add `btrfs` and `powersupplyclass` to list of exporters enabled by default - Add more `InfiniBand` counters - Add a flag to aggregate `ipvs` metrics to avoid high cardinality metrics - Add `backlog/current` queue length to `qdisc` collector - Include `TCP OutRsts` in `netstat` metrics - Add the `pool size` to entropy collector - Remove `CGO` dependencies for OpenBSD amd64 - `bcache`: add `writeback_rate_debug` statistics - Add `check state` for `mdadm` arrays via `node_md_state metric` - Expose `XFS inode` statistics - Expose `zfs zpool` state - Add the ability to pass `collector.supervisord.url` via `SUPERVISORD_URL` environment variable - Features: - Add fiber channel collector - Expose cpu bugs and flags as info metrics. - Add `network_route` collector - Add `zoneinfo` collector golang-github-prometheus-node_exporter-1.1.2-3.9.3.src.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.x86_64.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.s390x.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.ppc64le.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.aarch64.rpm openSUSE-SLE-15.3-2021-1984 low SUSE Updates openSUSE-SLE 15.3 This update for sbd fixes the following issues: - Deprecated path "/var/run/" used in systemd-services (bsc#1185182) sbd-1.4.2+20210305.926b554-3.3.1.src.rpm sbd-1.4.2+20210305.926b554-3.3.1.x86_64.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.x86_64.rpm sbd-1.4.2+20210305.926b554-3.3.1.s390x.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.s390x.rpm sbd-1.4.2+20210305.926b554-3.3.1.ppc64le.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.ppc64le.rpm sbd-1.4.2+20210305.926b554-3.3.1.aarch64.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1877 low SUSE Updates openSUSE-SLE 15.3 This update for gpm fixes the following issues: - Removed unnecessary StandardOutput override in the unit definition file. (bsc#1182147) - Fixed a compilation issue when using -fno-common during compilation (bsc#1160873) gpm-1.20.7-7.3.1.src.rpm gpm-1.20.7-7.3.1.x86_64.rpm gpm-devel-1.20.7-7.3.1.x86_64.rpm libgpm2-1.20.7-7.3.1.x86_64.rpm libgpm2-32bit-1.20.7-7.3.1.x86_64.rpm gpm-1.20.7-7.3.1.s390x.rpm gpm-devel-1.20.7-7.3.1.s390x.rpm libgpm2-1.20.7-7.3.1.s390x.rpm gpm-1.20.7-7.3.1.ppc64le.rpm gpm-devel-1.20.7-7.3.1.ppc64le.rpm libgpm2-1.20.7-7.3.1.ppc64le.rpm gpm-1.20.7-7.3.1.aarch64.rpm gpm-devel-1.20.7-7.3.1.aarch64.rpm libgpm2-1.20.7-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1852 low SUSE Updates openSUSE-SLE 15.3 This update for libstoragemgmt fixes the following issues: - Moved from /var/run to /run because of deprecation warnings (bsc#1185067) libstoragemgmt-1.8.5-3.3.1.src.rpm libstoragemgmt-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-arcconf-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-devel-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-hpsa-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-local-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-megaraid-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-netapp-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-nfs-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-nstor-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-smis-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-targetd-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-udev-1.8.5-3.3.1.x86_64.rpm libstoragemgmt1-1.8.5-3.3.1.x86_64.rpm python3-libstoragemgmt-1.8.5-3.3.1.noarch.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-1.8.5-3.3.1.s390x.rpm libstoragemgmt-devel-1.8.5-3.3.1.s390x.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.s390x.rpm libstoragemgmt-udev-1.8.5-3.3.1.s390x.rpm libstoragemgmt1-1.8.5-3.3.1.s390x.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.s390x.rpm libstoragemgmt-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-devel-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-udev-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt1-1.8.5-3.3.1.ppc64le.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-1.8.5-3.3.1.aarch64.rpm libstoragemgmt-devel-1.8.5-3.3.1.aarch64.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.aarch64.rpm libstoragemgmt-udev-1.8.5-3.3.1.aarch64.rpm libstoragemgmt1-1.8.5-3.3.1.aarch64.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1986 low SUSE Updates openSUSE-SLE 15.3 This update for mcelog fixes the following issues: - Removed the deprecated "StandardOutput=syslog" option from the systemd unit file in order to fix a warning from systemd (bsc#1185151) mcelog-175-3.3.1.src.rpm mcelog-175-3.3.1.x86_64.rpm openSUSE-SLE-15.3-2021-1853 moderate SUSE Updates openSUSE-SLE 15.3 This update for exfatprogs fixes the following issue: - Make `set_bit_le()` 64-bit compatible. (bsc#1184882) bitmap data is not written normally in bitmap location s390x (64bit big endian system) and this fix makes it 64-bit compatible. exfatprogs-1.0.4-3.3.1.src.rpm exfatprogs-1.0.4-3.3.1.x86_64.rpm exfatprogs-1.0.4-3.3.1.s390x.rpm exfatprogs-1.0.4-3.3.1.ppc64le.rpm exfatprogs-1.0.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1974 moderate SUSE Updates openSUSE-SLE 15.3 This update for kexec-tools fixes the following issue: - Hardening: link as Position-Independent Executable PIE (bsc#1185020). kexec-tools-2.0.20-10.3.1.src.rpm kexec-tools-2.0.20-10.3.1.x86_64.rpm kexec-tools-2.0.20-10.3.1.s390x.rpm kexec-tools-2.0.20-10.3.1.ppc64le.rpm kexec-tools-2.0.20-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1664 moderate SUSE Updates openSUSE-SLE 15.3 This update for libass fixes the following issues: - CVE-2020-24994: Fixed a stack overflow in the parse_tag (bsc#1184153). libass-0.14.0-3.6.1.src.rpm libass-devel-0.14.0-3.6.1.x86_64.rpm libass9-0.14.0-3.6.1.x86_64.rpm libass9-32bit-0.14.0-3.6.1.x86_64.rpm libass-devel-0.14.0-3.6.1.s390x.rpm libass9-0.14.0-3.6.1.s390x.rpm libass-devel-0.14.0-3.6.1.ppc64le.rpm libass9-0.14.0-3.6.1.ppc64le.rpm libass-devel-0.14.0-3.6.1.aarch64.rpm libass9-0.14.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2275 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-country fixes the following issues: - Fix wrong keyboard layout codes. (bsc#1181952) yast2-country-4.3.14-3.3.1.src.rpm yast2-country-4.3.14-3.3.1.x86_64.rpm yast2-country-data-4.3.14-3.3.1.x86_64.rpm yast2-country-4.3.14-3.3.1.s390x.rpm yast2-country-data-4.3.14-3.3.1.s390x.rpm yast2-country-4.3.14-3.3.1.ppc64le.rpm yast2-country-data-4.3.14-3.3.1.ppc64le.rpm yast2-country-4.3.14-3.3.1.aarch64.rpm yast2-country-data-4.3.14-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1833 moderate SUSE Updates openSUSE-SLE 15.3 This update for zypper fixes the following issues: zypper was upgraded to 1.14.44: - man page: Recommend the needs-rebooting command to test whether a system reboot is suggested. - patch: Let a patch's reboot-needed flag overrule included packages. (bsc#1183268) - Quickfix setting "openSUSE_Tumbleweed" as default platform for "MicroOS". (bsc#1153687) - Protect against strict/relaxed user umask via sudo. (bsc#1183589) - xml summary: Add solvables repository alias. (bsc#1182372) libzypp was upgraded from version 17.25.8 to version 17.25.10 - Properly handle permission denied when providing optional files. (bsc#1185239) - Fix service detection with `cgroupv2`. (bsc#1184997) - Add missing includes for GCC 11. (bsc#1181874) - Fix unsafe usage of static in media verifier. - `Solver`: Avoid segfault if no system is loaded. (bsc#1183628) - `MediaVerifier`: Relax media set verification in case of a single not-volatile medium. (bsc#1180851) - Do no cleanup in custom cache dirs. (bsc#1182936) - `ZConfig`: let `pubkeyCachePath` follow `repoCachePath`. libzypp-17.25.10-6.1.src.rpm True libzypp-17.25.10-6.1.x86_64.rpm True libzypp-devel-17.25.10-6.1.x86_64.rpm True libzypp-devel-doc-17.25.10-6.1.x86_64.rpm True zypper-1.14.44-7.1.src.rpm True zypper-1.14.44-7.1.x86_64.rpm True zypper-aptitude-1.14.44-7.1.noarch.rpm True zypper-log-1.14.44-7.1.noarch.rpm True zypper-needs-restarting-1.14.44-7.1.noarch.rpm True libzypp-17.25.10-6.1.s390x.rpm True libzypp-devel-17.25.10-6.1.s390x.rpm True libzypp-devel-doc-17.25.10-6.1.s390x.rpm True zypper-1.14.44-7.1.s390x.rpm True libzypp-17.25.10-6.1.ppc64le.rpm True libzypp-devel-17.25.10-6.1.ppc64le.rpm True libzypp-devel-doc-17.25.10-6.1.ppc64le.rpm True zypper-1.14.44-7.1.ppc64le.rpm True libzypp-17.25.10-6.1.aarch64.rpm True libzypp-devel-17.25.10-6.1.aarch64.rpm True libzypp-devel-doc-17.25.10-6.1.aarch64.rpm True zypper-1.14.44-7.1.aarch64.rpm True openSUSE-SLE-15.3-2021-1806 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-httplib2 fixes the following issues: - Update to version 0.19.0 (bsc#1182053). - CVE-2021-21240: Fixed regular expression denial of service via malicious header (bsc#1182053). - CVE-2020-11078: Fixed unescaped part of uri where an attacker could change request headers and body (bsc#1182053). python-httplib2-0.19.0-3.3.1.src.rpm python2-httplib2-0.19.0-3.3.1.noarch.rpm python3-httplib2-0.19.0-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-1863 important SUSE Updates openSUSE-SLE 15.3 This update for umoci fixes the following issues: Update to v0.4.7 (bsc#1184147). - CVE-2021-29136: Fixed overwriting of host files via malicious layer (bsc#1184147). umoci-0.4.7-3.12.1.src.rpm umoci-0.4.7-3.12.1.x86_64.rpm umoci-0.4.7-3.12.1.s390x.rpm umoci-0.4.7-3.12.1.ppc64le.rpm umoci-0.4.7-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1942 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - Switch method of splitting off hw-s390x-virtio-gpu-ccw.so as a module to what was accepted upstream (bsc#1181103) - Fix OOB access in sdhci interface (CVE-2020-17380, bsc#1175144, CVE-2020-25085, bsc#1176681, CVE-2021-3409, bsc#1182282) - Fix potential privilege escalation in virtiofsd tool (CVE-2021-20263, bsc#1183373) - Fix OOB access (stack overflow) in rtl8139 NIC emulation (CVE-2021-3416, bsc#1182968) - Fix heap overflow in MSIx emulation (CVE-2020-27821, bsc#1179686) - Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425) - QEMU BIOS fails to read stage2 loader on s390x (bsc#1186290) - For the record, these issues are fixed in this package already. Most are alternate references to previously mentioned issues: (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019, CVE-2020-14364, bsc#1175534, CVE-2020-25707, bsc#1178683, CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477, CVE-2020-29129, bsc#1179484, CVE-2021-3419, bsc#1182975) qemu-5.2.0-17.1.src.rpm qemu-5.2.0-17.1.x86_64.rpm qemu-arm-5.2.0-17.1.x86_64.rpm qemu-audio-alsa-5.2.0-17.1.x86_64.rpm qemu-audio-pa-5.2.0-17.1.x86_64.rpm qemu-audio-spice-5.2.0-17.1.x86_64.rpm qemu-block-curl-5.2.0-17.1.x86_64.rpm qemu-block-dmg-5.2.0-17.1.x86_64.rpm qemu-block-gluster-5.2.0-17.1.x86_64.rpm qemu-block-iscsi-5.2.0-17.1.x86_64.rpm qemu-block-nfs-5.2.0-17.1.x86_64.rpm qemu-block-rbd-5.2.0-17.1.x86_64.rpm qemu-block-ssh-5.2.0-17.1.x86_64.rpm qemu-chardev-baum-5.2.0-17.1.x86_64.rpm qemu-chardev-spice-5.2.0-17.1.x86_64.rpm qemu-extra-5.2.0-17.1.x86_64.rpm qemu-guest-agent-5.2.0-17.1.x86_64.rpm qemu-hw-display-qxl-5.2.0-17.1.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.x86_64.rpm qemu-hw-usb-redirect-5.2.0-17.1.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-17.1.x86_64.rpm qemu-ipxe-1.0.0+-17.1.noarch.rpm qemu-ivshmem-tools-5.2.0-17.1.x86_64.rpm qemu-ksm-5.2.0-17.1.x86_64.rpm qemu-kvm-5.2.0-17.1.x86_64.rpm qemu-lang-5.2.0-17.1.x86_64.rpm qemu-microvm-5.2.0-17.1.noarch.rpm qemu-ppc-5.2.0-17.1.x86_64.rpm qemu-s390x-5.2.0-17.1.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-17.1.noarch.rpm qemu-sgabios-8-17.1.noarch.rpm qemu-skiboot-5.2.0-17.1.noarch.rpm qemu-tools-5.2.0-17.1.x86_64.rpm qemu-ui-curses-5.2.0-17.1.x86_64.rpm qemu-ui-gtk-5.2.0-17.1.x86_64.rpm qemu-ui-opengl-5.2.0-17.1.x86_64.rpm qemu-ui-spice-app-5.2.0-17.1.x86_64.rpm qemu-ui-spice-core-5.2.0-17.1.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-17.1.noarch.rpm qemu-vhost-user-gpu-5.2.0-17.1.x86_64.rpm qemu-x86-5.2.0-17.1.x86_64.rpm qemu-5.2.0-17.1.s390x.rpm qemu-arm-5.2.0-17.1.s390x.rpm qemu-audio-alsa-5.2.0-17.1.s390x.rpm qemu-audio-pa-5.2.0-17.1.s390x.rpm qemu-audio-spice-5.2.0-17.1.s390x.rpm qemu-block-curl-5.2.0-17.1.s390x.rpm qemu-block-dmg-5.2.0-17.1.s390x.rpm qemu-block-gluster-5.2.0-17.1.s390x.rpm qemu-block-iscsi-5.2.0-17.1.s390x.rpm qemu-block-nfs-5.2.0-17.1.s390x.rpm qemu-block-rbd-5.2.0-17.1.s390x.rpm qemu-block-ssh-5.2.0-17.1.s390x.rpm qemu-chardev-baum-5.2.0-17.1.s390x.rpm qemu-chardev-spice-5.2.0-17.1.s390x.rpm qemu-extra-5.2.0-17.1.s390x.rpm qemu-guest-agent-5.2.0-17.1.s390x.rpm qemu-hw-display-qxl-5.2.0-17.1.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.s390x.rpm qemu-hw-usb-redirect-5.2.0-17.1.s390x.rpm qemu-hw-usb-smartcard-5.2.0-17.1.s390x.rpm qemu-ivshmem-tools-5.2.0-17.1.s390x.rpm qemu-ksm-5.2.0-17.1.s390x.rpm qemu-kvm-5.2.0-17.1.s390x.rpm qemu-lang-5.2.0-17.1.s390x.rpm qemu-ppc-5.2.0-17.1.s390x.rpm qemu-s390x-5.2.0-17.1.s390x.rpm qemu-tools-5.2.0-17.1.s390x.rpm qemu-ui-curses-5.2.0-17.1.s390x.rpm qemu-ui-gtk-5.2.0-17.1.s390x.rpm qemu-ui-opengl-5.2.0-17.1.s390x.rpm qemu-ui-spice-app-5.2.0-17.1.s390x.rpm qemu-ui-spice-core-5.2.0-17.1.s390x.rpm qemu-vhost-user-gpu-5.2.0-17.1.s390x.rpm qemu-x86-5.2.0-17.1.s390x.rpm qemu-5.2.0-17.1.ppc64le.rpm qemu-arm-5.2.0-17.1.ppc64le.rpm qemu-audio-alsa-5.2.0-17.1.ppc64le.rpm qemu-audio-pa-5.2.0-17.1.ppc64le.rpm qemu-audio-spice-5.2.0-17.1.ppc64le.rpm qemu-block-curl-5.2.0-17.1.ppc64le.rpm qemu-block-dmg-5.2.0-17.1.ppc64le.rpm qemu-block-gluster-5.2.0-17.1.ppc64le.rpm qemu-block-iscsi-5.2.0-17.1.ppc64le.rpm qemu-block-nfs-5.2.0-17.1.ppc64le.rpm qemu-block-rbd-5.2.0-17.1.ppc64le.rpm qemu-block-ssh-5.2.0-17.1.ppc64le.rpm qemu-chardev-baum-5.2.0-17.1.ppc64le.rpm qemu-chardev-spice-5.2.0-17.1.ppc64le.rpm qemu-extra-5.2.0-17.1.ppc64le.rpm qemu-guest-agent-5.2.0-17.1.ppc64le.rpm qemu-hw-display-qxl-5.2.0-17.1.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-17.1.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-17.1.ppc64le.rpm qemu-ivshmem-tools-5.2.0-17.1.ppc64le.rpm qemu-ksm-5.2.0-17.1.ppc64le.rpm qemu-lang-5.2.0-17.1.ppc64le.rpm qemu-ppc-5.2.0-17.1.ppc64le.rpm qemu-s390x-5.2.0-17.1.ppc64le.rpm qemu-tools-5.2.0-17.1.ppc64le.rpm qemu-ui-curses-5.2.0-17.1.ppc64le.rpm qemu-ui-gtk-5.2.0-17.1.ppc64le.rpm qemu-ui-opengl-5.2.0-17.1.ppc64le.rpm qemu-ui-spice-app-5.2.0-17.1.ppc64le.rpm qemu-ui-spice-core-5.2.0-17.1.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-17.1.ppc64le.rpm qemu-x86-5.2.0-17.1.ppc64le.rpm qemu-5.2.0-17.1.aarch64.rpm qemu-arm-5.2.0-17.1.aarch64.rpm qemu-audio-alsa-5.2.0-17.1.aarch64.rpm qemu-audio-pa-5.2.0-17.1.aarch64.rpm qemu-audio-spice-5.2.0-17.1.aarch64.rpm qemu-block-curl-5.2.0-17.1.aarch64.rpm qemu-block-dmg-5.2.0-17.1.aarch64.rpm qemu-block-gluster-5.2.0-17.1.aarch64.rpm qemu-block-iscsi-5.2.0-17.1.aarch64.rpm qemu-block-nfs-5.2.0-17.1.aarch64.rpm qemu-block-rbd-5.2.0-17.1.aarch64.rpm qemu-block-ssh-5.2.0-17.1.aarch64.rpm qemu-chardev-baum-5.2.0-17.1.aarch64.rpm qemu-chardev-spice-5.2.0-17.1.aarch64.rpm qemu-extra-5.2.0-17.1.aarch64.rpm qemu-guest-agent-5.2.0-17.1.aarch64.rpm qemu-hw-display-qxl-5.2.0-17.1.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.aarch64.rpm qemu-hw-usb-redirect-5.2.0-17.1.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-17.1.aarch64.rpm qemu-ivshmem-tools-5.2.0-17.1.aarch64.rpm qemu-ksm-5.2.0-17.1.aarch64.rpm qemu-lang-5.2.0-17.1.aarch64.rpm qemu-ppc-5.2.0-17.1.aarch64.rpm qemu-s390x-5.2.0-17.1.aarch64.rpm qemu-tools-5.2.0-17.1.aarch64.rpm qemu-ui-curses-5.2.0-17.1.aarch64.rpm qemu-ui-gtk-5.2.0-17.1.aarch64.rpm qemu-ui-opengl-5.2.0-17.1.aarch64.rpm qemu-ui-spice-app-5.2.0-17.1.aarch64.rpm qemu-ui-spice-core-5.2.0-17.1.aarch64.rpm qemu-vhost-user-gpu-5.2.0-17.1.aarch64.rpm qemu-x86-5.2.0-17.1.aarch64.rpm openSUSE-SLE-15.3-2021-1859 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-py fixes the following issues: - CVE-2020-29651: Fixed regular expression denial of service in svnwc.py (bsc#1179805, bsc#1184505). python-py-1.8.1-5.6.1.src.rpm python2-py-1.8.1-5.6.1.noarch.rpm python3-py-1.8.1-5.6.1.noarch.rpm openSUSE-SLE-15.3-2021-2817 moderate SUSE Updates openSUSE-SLE 15.3 This patch updates the Python AWS SDK stack in SLE 15: General: # aws-cli - Version updated to upstream release v1.19.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-boto3 - Version updated to upstream release 1.17.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-botocore - Version updated to upstream release 1.20.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-urllib3 - Version updated to upstream release 1.25.10 For a detailed list of all changes, please refer to the changelog file of this package. # python-service_identity - Added this new package to resolve runtime dependencies for other packages. Version: 18.1.0 # python-trustme - Added this new package to resolve runtime dependencies for other packages. Version: 0.6.0 Security fixes: # python-urllib3: - CVE-2020-26137: urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest() (bsc#1177120) aws-cli-1.19.9-26.1.noarch.rpm aws-cli-1.19.9-26.1.src.rpm python-asn1crypto-0.24.0-3.2.1.src.rpm python-boto3-1.17.9-19.1.src.rpm python-botocore-1.20.9-33.1.src.rpm python-cffi-1.13.2-3.2.5.src.rpm python-cryptography-2.8-10.1.src.rpm python-pyasn1-0.4.2-3.2.1.src.rpm python-pycparser-2.17-3.2.1.src.rpm python-urllib3-1.25.10-9.14.1.src.rpm python2-asn1crypto-0.24.0-3.2.1.noarch.rpm python2-boto3-1.17.9-19.1.noarch.rpm python2-botocore-1.20.9-33.1.noarch.rpm python2-cffi-1.13.2-3.2.5.x86_64.rpm python2-cryptography-2.8-10.1.x86_64.rpm python2-pyasn1-0.4.2-3.2.1.noarch.rpm python2-pycparser-2.17-3.2.1.noarch.rpm python2-urllib3-1.25.10-9.14.1.noarch.rpm python3-asn1crypto-0.24.0-3.2.1.noarch.rpm python3-boto3-1.17.9-19.1.noarch.rpm python3-botocore-1.20.9-33.1.noarch.rpm python3-cffi-1.13.2-3.2.5.x86_64.rpm python3-cryptography-2.8-10.1.x86_64.rpm python3-pyasn1-0.4.2-3.2.1.noarch.rpm python3-pycparser-2.17-3.2.1.noarch.rpm python2-cffi-1.13.2-3.2.5.s390x.rpm python2-cryptography-2.8-10.1.s390x.rpm python3-cffi-1.13.2-3.2.5.s390x.rpm python3-cryptography-2.8-10.1.s390x.rpm python2-cffi-1.13.2-3.2.5.ppc64le.rpm python2-cryptography-2.8-10.1.ppc64le.rpm python3-cffi-1.13.2-3.2.5.ppc64le.rpm python3-cryptography-2.8-10.1.ppc64le.rpm python2-cffi-1.13.2-3.2.5.aarch64.rpm python2-cryptography-2.8-10.1.aarch64.rpm python3-cffi-1.13.2-3.2.5.aarch64.rpm python3-cryptography-2.8-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-1526 important SUSE Updates openSUSE-SLE 15.3 This update for bash fixes the following issues: - Fixed a segmentation fault that used to occur when bash read a history file that was malformed in a very specific way. (bsc#1183064) bash-4.4-19.3.1.src.rpm bash-4.4-19.3.1.x86_64.rpm bash-devel-4.4-19.3.1.x86_64.rpm bash-doc-4.4-19.3.1.noarch.rpm bash-lang-4.4-19.3.1.noarch.rpm bash-loadables-4.4-19.3.1.x86_64.rpm libreadline7-32bit-7.0-19.3.1.x86_64.rpm libreadline7-7.0-19.3.1.x86_64.rpm readline-devel-32bit-7.0-19.3.1.x86_64.rpm readline-devel-7.0-19.3.1.x86_64.rpm readline-devel-static-7.0-19.3.1.x86_64.rpm readline-doc-7.0-19.3.1.noarch.rpm bash-4.4-19.3.1.s390x.rpm bash-devel-4.4-19.3.1.s390x.rpm bash-loadables-4.4-19.3.1.s390x.rpm libreadline7-7.0-19.3.1.s390x.rpm readline-devel-7.0-19.3.1.s390x.rpm readline-devel-static-7.0-19.3.1.s390x.rpm bash-4.4-19.3.1.ppc64le.rpm bash-devel-4.4-19.3.1.ppc64le.rpm bash-loadables-4.4-19.3.1.ppc64le.rpm libreadline7-7.0-19.3.1.ppc64le.rpm readline-devel-7.0-19.3.1.ppc64le.rpm readline-devel-static-7.0-19.3.1.ppc64le.rpm bash-4.4-19.3.1.aarch64.rpm bash-devel-4.4-19.3.1.aarch64.rpm bash-loadables-4.4-19.3.1.aarch64.rpm libreadline7-7.0-19.3.1.aarch64.rpm readline-devel-7.0-19.3.1.aarch64.rpm readline-devel-static-7.0-19.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1861 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc10 fixes the following issues: - Disable nvptx offloading for aarch64 again since it doesn't work - Fixed a build failure issue. (bsc#1182016) - Fix for memory miscompilation on 'aarch64'. (bsc#1178624, bsc#1178577) - Fix 32bit 'libgnat.so' link. (bsc#1178675) - prepare usrmerge: Install libgcc_s into %_libdir. ABI wise it stays /%lib. (bsc#1029961) - Build complete set of multilibs for arm-none target. (bsc#1106014) cpp10-10.3.0+git1587-1.6.4.x86_64.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-aarch64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-nvptx-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-nvptx-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-nvptx-newlib10-devel-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64le-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-s390x-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm gcc10-10.3.0+git1587-1.6.4.src.rpm gcc10-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-ada-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-ada-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-c++-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-c++-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-d-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-d-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-fortran-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-fortran-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-go-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-go-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-info-10.3.0+git1587-1.6.4.noarch.rpm gcc10-locale-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-obj-c++-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-objc-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-objc-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-testresults-10.3.0+git1587-1.6.7.src.rpm gcc10-testresults-10.3.0+git1587-1.6.7.x86_64.rpm libada10-10.3.0+git1587-1.6.4.x86_64.rpm libada10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libasan6-10.3.0+git1587-1.6.4.x86_64.rpm libasan6-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libatomic1-10.3.0+git1587-1.6.4.x86_64.rpm libatomic1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgcc_s1-10.3.0+git1587-1.6.4.x86_64.rpm libgcc_s1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgdruntime1-10.3.0+git1587-1.6.4.x86_64.rpm libgdruntime1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgfortran5-10.3.0+git1587-1.6.4.x86_64.rpm libgfortran5-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgo16-10.3.0+git1587-1.6.4.x86_64.rpm libgo16-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgomp1-10.3.0+git1587-1.6.4.x86_64.rpm libgomp1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgphobos1-10.3.0+git1587-1.6.4.x86_64.rpm libgphobos1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libitm1-10.3.0+git1587-1.6.4.x86_64.rpm libitm1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm liblsan0-10.3.0+git1587-1.6.4.x86_64.rpm libobjc4-10.3.0+git1587-1.6.4.x86_64.rpm libobjc4-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libquadmath0-10.3.0+git1587-1.6.4.x86_64.rpm libquadmath0-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-devel-gcc10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-pp-gcc10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libtsan0-10.3.0+git1587-1.6.4.x86_64.rpm libubsan1-10.3.0+git1587-1.6.4.x86_64.rpm libubsan1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm cpp10-10.3.0+git1587-1.6.4.s390x.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-aarch64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64le-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-x86_64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm gcc10-10.3.0+git1587-1.6.4.s390x.rpm gcc10-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-ada-10.3.0+git1587-1.6.4.s390x.rpm gcc10-ada-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-c++-10.3.0+git1587-1.6.4.s390x.rpm gcc10-c++-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-d-10.3.0+git1587-1.6.4.s390x.rpm gcc10-d-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-fortran-10.3.0+git1587-1.6.4.s390x.rpm gcc10-fortran-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-go-10.3.0+git1587-1.6.4.s390x.rpm gcc10-go-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-locale-10.3.0+git1587-1.6.4.s390x.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.s390x.rpm gcc10-obj-c++-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-objc-10.3.0+git1587-1.6.4.s390x.rpm gcc10-objc-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-testresults-10.3.0+git1587-1.6.7.s390x.rpm libada10-10.3.0+git1587-1.6.4.s390x.rpm libada10-32bit-10.3.0+git1587-1.6.4.s390x.rpm libasan6-10.3.0+git1587-1.6.4.s390x.rpm libasan6-32bit-10.3.0+git1587-1.6.4.s390x.rpm libatomic1-10.3.0+git1587-1.6.4.s390x.rpm libatomic1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgcc_s1-10.3.0+git1587-1.6.4.s390x.rpm libgcc_s1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgdruntime1-10.3.0+git1587-1.6.4.s390x.rpm libgdruntime1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgfortran5-10.3.0+git1587-1.6.4.s390x.rpm libgfortran5-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgo16-10.3.0+git1587-1.6.4.s390x.rpm libgo16-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgomp1-10.3.0+git1587-1.6.4.s390x.rpm libgomp1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgphobos1-10.3.0+git1587-1.6.4.s390x.rpm libgphobos1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libitm1-10.3.0+git1587-1.6.4.s390x.rpm libitm1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libobjc4-10.3.0+git1587-1.6.4.s390x.rpm libobjc4-32bit-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-32bit-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-devel-gcc10-32bit-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-pp-gcc10-32bit-10.3.0+git1587-1.6.4.s390x.rpm libubsan1-10.3.0+git1587-1.6.4.s390x.rpm libubsan1-32bit-10.3.0+git1587-1.6.4.s390x.rpm cpp10-10.3.0+git1587-1.6.4.ppc64le.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-aarch64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-s390x-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-x86_64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm gcc10-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-ada-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-c++-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-fortran-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-go-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-locale-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-objc-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-testresults-10.3.0+git1587-1.6.7.ppc64le.rpm libada10-10.3.0+git1587-1.6.4.ppc64le.rpm libasan6-10.3.0+git1587-1.6.4.ppc64le.rpm libatomic1-10.3.0+git1587-1.6.4.ppc64le.rpm libgcc_s1-10.3.0+git1587-1.6.4.ppc64le.rpm libgfortran5-10.3.0+git1587-1.6.4.ppc64le.rpm libgo16-10.3.0+git1587-1.6.4.ppc64le.rpm libgomp1-10.3.0+git1587-1.6.4.ppc64le.rpm libitm1-10.3.0+git1587-1.6.4.ppc64le.rpm liblsan0-10.3.0+git1587-1.6.4.ppc64le.rpm libobjc4-10.3.0+git1587-1.6.4.ppc64le.rpm libquadmath0-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.ppc64le.rpm libtsan0-10.3.0+git1587-1.6.4.ppc64le.rpm libubsan1-10.3.0+git1587-1.6.4.ppc64le.rpm cpp10-10.3.0+git1587-1.6.4.aarch64.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64le-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-s390x-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-x86_64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm gcc10-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-ada-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-c++-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-d-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-fortran-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-go-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-locale-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-objc-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-testresults-10.3.0+git1587-1.6.7.aarch64.rpm libada10-10.3.0+git1587-1.6.4.aarch64.rpm libasan6-10.3.0+git1587-1.6.4.aarch64.rpm libatomic1-10.3.0+git1587-1.6.4.aarch64.rpm libgcc_s1-10.3.0+git1587-1.6.4.aarch64.rpm libgdruntime1-10.3.0+git1587-1.6.4.aarch64.rpm libgfortran5-10.3.0+git1587-1.6.4.aarch64.rpm libgo16-10.3.0+git1587-1.6.4.aarch64.rpm libgomp1-10.3.0+git1587-1.6.4.aarch64.rpm libgphobos1-10.3.0+git1587-1.6.4.aarch64.rpm libitm1-10.3.0+git1587-1.6.4.aarch64.rpm liblsan0-10.3.0+git1587-1.6.4.aarch64.rpm libobjc4-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.aarch64.rpm libtsan0-10.3.0+git1587-1.6.4.aarch64.rpm libubsan1-10.3.0+git1587-1.6.4.aarch64.rpm openSUSE-SLE-15.3-2021-1973 important SUSE Updates openSUSE-SLE 15.3 This update for libreoffice and xmlsec1 fixes the following issues: libreoffice: Update from version 7.1.2.2 to version 7.1.3.2 - Searching in PPTX document makes LibreOffice crash. (bsc#1185797) - Fix a text highlight issue when saving as PPTX. (bsc#1185505) - Recommend `libreoffice-qt5` only when it is actually created - Fix a build error with GCC11. (bsc#1186110) - LibreOffice requires at least java 1.8.0 to run properly. - Fix a potential dataloss in LibreOffice Math. (bsc#1184961, bsc#1184527) The issue occurred only while trying to close the document via shortcuts. In this case LibreOffice Math was closed without asking to save the document. xmlsec1: - Provide missing binaries to SUSE Linux Enterprise 15-SP3 with l3 support level. (bsc#1186706) myspell-dictionaries: - Provide missing binaries to SUSE Linux Enterprise 15-SP3 with l2 support level. (bsc#1186706) libraptor-devel-2.0.15-9.5.1.x86_64.rpm libraptor2-0-2.0.15-9.5.1.x86_64.rpm libraptor2-0-32bit-2.0.15-9.5.1.x86_64.rpm libreoffice-7.1.3.2-4.5.3.src.rpm libreoffice-7.1.3.2-4.5.3.x86_64.rpm libreoffice-base-7.1.3.2-4.5.3.x86_64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-4.5.3.x86_64.rpm libreoffice-branding-upstream-7.1.3.2-4.5.3.noarch.rpm libreoffice-calc-7.1.3.2-4.5.3.x86_64.rpm libreoffice-calc-extensions-7.1.3.2-4.5.3.x86_64.rpm libreoffice-draw-7.1.3.2-4.5.3.x86_64.rpm libreoffice-filters-optional-7.1.3.2-4.5.3.x86_64.rpm libreoffice-gdb-pretty-printers-7.1.3.2-4.5.3.noarch.rpm libreoffice-glade-7.1.3.2-4.5.3.noarch.rpm libreoffice-gnome-7.1.3.2-4.5.3.x86_64.rpm libreoffice-gtk3-7.1.3.2-4.5.3.x86_64.rpm libreoffice-icon-themes-7.1.3.2-4.5.3.noarch.rpm libreoffice-impress-7.1.3.2-4.5.3.x86_64.rpm libreoffice-l10n-af-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-am-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ar-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-as-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ast-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-be-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bg-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bn_IN-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-br-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-brx-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bs-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ca-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ca_valencia-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ckb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-cs-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-cy-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-da-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-de-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-dgo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-dsb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-dz-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-el-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-en-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-en_GB-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-en_ZA-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-eo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-es-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-et-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-eu-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fa-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fi-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fur-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fy-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ga-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gd-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gu-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gug-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-he-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hi-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hsb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hu-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-id-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-is-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-it-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ja-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ka-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kab-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-km-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kmr_Latn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ko-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kok-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ks-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lt-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lv-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mai-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ml-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mni-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-my-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ne-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nso-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-oc-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-om-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-or-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pa-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pt_BR-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pt_PT-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ro-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ru-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-rw-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sa_IN-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sat-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sd-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-si-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sid-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sq-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ss-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-st-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sv-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sw_TZ-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-szl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ta-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-te-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tg-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-th-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ts-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tt-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ug-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-uk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-uz-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ve-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-vec-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-vi-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-xh-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-zh_CN-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-zh_TW-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-zu-7.1.3.2-4.5.3.noarch.rpm libreoffice-librelogo-7.1.3.2-4.5.3.x86_64.rpm libreoffice-mailmerge-7.1.3.2-4.5.3.x86_64.rpm libreoffice-math-7.1.3.2-4.5.3.x86_64.rpm libreoffice-officebean-7.1.3.2-4.5.3.x86_64.rpm libreoffice-pyuno-7.1.3.2-4.5.3.x86_64.rpm libreoffice-qt5-7.1.3.2-4.5.3.x86_64.rpm libreoffice-sdk-7.1.3.2-4.5.3.x86_64.rpm libreoffice-sdk-doc-7.1.3.2-4.5.3.x86_64.rpm libreoffice-writer-7.1.3.2-4.5.3.x86_64.rpm libreoffice-writer-extensions-7.1.3.2-4.5.3.x86_64.rpm libreofficekit-7.1.3.2-4.5.3.x86_64.rpm libreofficekit-devel-7.1.3.2-4.5.3.x86_64.rpm libucpp13-1.3.4-3.2.1.x86_64.rpm libxmlsec1-1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-nss1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-openssl1-1.2.28-7.7.1.x86_64.rpm myspell-af_NA-20191219-3.19.1.noarch.rpm myspell-af_ZA-20191219-3.19.1.noarch.rpm myspell-an-20191219-3.19.1.noarch.rpm myspell-an_ES-20191219-3.19.1.noarch.rpm myspell-ar-20191219-3.19.1.noarch.rpm myspell-ar_AE-20191219-3.19.1.noarch.rpm myspell-ar_BH-20191219-3.19.1.noarch.rpm myspell-ar_DZ-20191219-3.19.1.noarch.rpm myspell-ar_EG-20191219-3.19.1.noarch.rpm myspell-ar_IQ-20191219-3.19.1.noarch.rpm myspell-ar_JO-20191219-3.19.1.noarch.rpm myspell-ar_KW-20191219-3.19.1.noarch.rpm myspell-ar_LB-20191219-3.19.1.noarch.rpm myspell-ar_LY-20191219-3.19.1.noarch.rpm myspell-ar_MA-20191219-3.19.1.noarch.rpm myspell-ar_OM-20191219-3.19.1.noarch.rpm myspell-ar_QA-20191219-3.19.1.noarch.rpm myspell-ar_SA-20191219-3.19.1.noarch.rpm myspell-ar_SD-20191219-3.19.1.noarch.rpm myspell-ar_SY-20191219-3.19.1.noarch.rpm myspell-ar_TN-20191219-3.19.1.noarch.rpm myspell-ar_YE-20191219-3.19.1.noarch.rpm myspell-be_BY-20191219-3.19.1.noarch.rpm myspell-bg_BG-20191219-3.19.1.noarch.rpm myspell-bn_BD-20191219-3.19.1.noarch.rpm myspell-bn_IN-20191219-3.19.1.noarch.rpm myspell-bo-20191219-3.19.1.noarch.rpm myspell-bo_CN-20191219-3.19.1.noarch.rpm myspell-bo_IN-20191219-3.19.1.noarch.rpm myspell-br_FR-20191219-3.19.1.noarch.rpm myspell-bs-20191219-3.19.1.noarch.rpm myspell-bs_BA-20191219-3.19.1.noarch.rpm myspell-ca-20191219-3.19.1.noarch.rpm myspell-ca_AD-20191219-3.19.1.noarch.rpm myspell-ca_ES-20191219-3.19.1.noarch.rpm myspell-ca_ES_valencia-20191219-3.19.1.noarch.rpm myspell-ca_FR-20191219-3.19.1.noarch.rpm myspell-ca_IT-20191219-3.19.1.noarch.rpm myspell-cs_CZ-20191219-3.19.1.noarch.rpm myspell-da_DK-20191219-3.19.1.noarch.rpm myspell-de-20191219-3.19.1.noarch.rpm myspell-de_AT-20191219-3.19.1.noarch.rpm myspell-de_CH-20191219-3.19.1.noarch.rpm myspell-de_DE-20191219-3.19.1.noarch.rpm myspell-dictionaries-20191219-3.19.1.src.rpm myspell-dictionaries-20191219-3.19.1.x86_64.rpm myspell-el_GR-20191219-3.19.1.noarch.rpm myspell-en-20191219-3.19.1.noarch.rpm myspell-en_AU-20191219-3.19.1.noarch.rpm myspell-en_BS-20191219-3.19.1.noarch.rpm myspell-en_BZ-20191219-3.19.1.noarch.rpm myspell-en_CA-20191219-3.19.1.noarch.rpm myspell-en_GB-20191219-3.19.1.noarch.rpm myspell-en_GH-20191219-3.19.1.noarch.rpm myspell-en_IE-20191219-3.19.1.noarch.rpm myspell-en_IN-20191219-3.19.1.noarch.rpm myspell-en_JM-20191219-3.19.1.noarch.rpm myspell-en_MW-20191219-3.19.1.noarch.rpm myspell-en_NA-20191219-3.19.1.noarch.rpm myspell-en_NZ-20191219-3.19.1.noarch.rpm myspell-en_PH-20191219-3.19.1.noarch.rpm myspell-en_TT-20191219-3.19.1.noarch.rpm myspell-en_US-20191219-3.19.1.noarch.rpm myspell-en_ZA-20191219-3.19.1.noarch.rpm myspell-en_ZW-20191219-3.19.1.noarch.rpm myspell-es-20191219-3.19.1.noarch.rpm myspell-es_AR-20191219-3.19.1.noarch.rpm myspell-es_BO-20191219-3.19.1.noarch.rpm myspell-es_CL-20191219-3.19.1.noarch.rpm myspell-es_CO-20191219-3.19.1.noarch.rpm myspell-es_CR-20191219-3.19.1.noarch.rpm myspell-es_CU-20191219-3.19.1.noarch.rpm myspell-es_DO-20191219-3.19.1.noarch.rpm myspell-es_EC-20191219-3.19.1.noarch.rpm myspell-es_ES-20191219-3.19.1.noarch.rpm myspell-es_GT-20191219-3.19.1.noarch.rpm myspell-es_HN-20191219-3.19.1.noarch.rpm myspell-es_MX-20191219-3.19.1.noarch.rpm myspell-es_NI-20191219-3.19.1.noarch.rpm myspell-es_PA-20191219-3.19.1.noarch.rpm myspell-es_PE-20191219-3.19.1.noarch.rpm myspell-es_PR-20191219-3.19.1.noarch.rpm myspell-es_PY-20191219-3.19.1.noarch.rpm myspell-es_SV-20191219-3.19.1.noarch.rpm myspell-es_UY-20191219-3.19.1.noarch.rpm myspell-es_VE-20191219-3.19.1.noarch.rpm myspell-et_EE-20191219-3.19.1.noarch.rpm myspell-fr_BE-20191219-3.19.1.noarch.rpm myspell-fr_CA-20191219-3.19.1.noarch.rpm myspell-fr_CH-20191219-3.19.1.noarch.rpm myspell-fr_FR-20191219-3.19.1.noarch.rpm myspell-fr_LU-20191219-3.19.1.noarch.rpm myspell-fr_MC-20191219-3.19.1.noarch.rpm myspell-gd_GB-20191219-3.19.1.noarch.rpm myspell-gl-20191219-3.19.1.noarch.rpm myspell-gl_ES-20191219-3.19.1.noarch.rpm myspell-gu_IN-20191219-3.19.1.noarch.rpm myspell-gug-20191219-3.19.1.noarch.rpm myspell-gug_PY-20191219-3.19.1.noarch.rpm myspell-he_IL-20191219-3.19.1.noarch.rpm myspell-hi_IN-20191219-3.19.1.noarch.rpm myspell-hr_HR-20191219-3.19.1.noarch.rpm myspell-hu_HU-20191219-3.19.1.noarch.rpm myspell-id-20191219-3.19.1.noarch.rpm myspell-id_ID-20191219-3.19.1.noarch.rpm myspell-is-20191219-3.19.1.noarch.rpm myspell-is_IS-20191219-3.19.1.noarch.rpm myspell-it_IT-20191219-3.19.1.noarch.rpm myspell-kmr_Latn-20191219-3.19.1.noarch.rpm myspell-kmr_Latn_SY-20191219-3.19.1.noarch.rpm myspell-kmr_Latn_TR-20191219-3.19.1.noarch.rpm myspell-lightproof-en-20191219-3.19.1.x86_64.rpm myspell-lightproof-hu_HU-20191219-3.19.1.x86_64.rpm myspell-lightproof-pt_BR-20191219-3.19.1.x86_64.rpm myspell-lightproof-ru_RU-20191219-3.19.1.x86_64.rpm myspell-lo_LA-20191219-3.19.1.noarch.rpm myspell-lt_LT-20191219-3.19.1.noarch.rpm myspell-lv_LV-20191219-3.19.1.noarch.rpm myspell-nb_NO-20191219-3.19.1.noarch.rpm myspell-ne_NP-20191219-3.19.1.noarch.rpm myspell-nl_BE-20191219-3.19.1.noarch.rpm myspell-nl_NL-20191219-3.19.1.noarch.rpm myspell-nn_NO-20191219-3.19.1.noarch.rpm myspell-no-20191219-3.19.1.noarch.rpm myspell-oc_FR-20191219-3.19.1.noarch.rpm myspell-pl_PL-20191219-3.19.1.noarch.rpm myspell-pt_AO-20191219-3.19.1.noarch.rpm myspell-pt_BR-20191219-3.19.1.noarch.rpm myspell-pt_PT-20191219-3.19.1.noarch.rpm myspell-ro-20191219-3.19.1.noarch.rpm myspell-ro_RO-20191219-3.19.1.noarch.rpm myspell-ru_RU-20191219-3.19.1.noarch.rpm myspell-si_LK-20191219-3.19.1.noarch.rpm myspell-sk_SK-20191219-3.19.1.noarch.rpm myspell-sl_SI-20191219-3.19.1.noarch.rpm myspell-sq_AL-20191219-3.19.1.noarch.rpm myspell-sr-20191219-3.19.1.noarch.rpm myspell-sr_CS-20191219-3.19.1.noarch.rpm myspell-sr_Latn_CS-20191219-3.19.1.noarch.rpm myspell-sr_Latn_RS-20191219-3.19.1.noarch.rpm myspell-sr_RS-20191219-3.19.1.noarch.rpm myspell-sv_FI-20191219-3.19.1.noarch.rpm myspell-sv_SE-20191219-3.19.1.noarch.rpm myspell-sw_TZ-20191219-3.19.1.noarch.rpm myspell-te-20191219-3.19.1.noarch.rpm myspell-te_IN-20191219-3.19.1.noarch.rpm myspell-th_TH-20191219-3.19.1.noarch.rpm myspell-tr-20191219-3.19.1.noarch.rpm myspell-tr_TR-20191219-3.19.1.noarch.rpm myspell-uk_UA-20191219-3.19.1.noarch.rpm myspell-vi-20191219-3.19.1.noarch.rpm myspell-vi_VN-20191219-3.19.1.noarch.rpm myspell-zu_ZA-20191219-3.19.1.noarch.rpm raptor-2.0.15-9.5.1.src.rpm raptor-2.0.15-9.5.1.x86_64.rpm ucpp-1.3.4-3.2.1.src.rpm ucpp-1.3.4-3.2.1.x86_64.rpm ucpp-devel-1.3.4-3.2.1.x86_64.rpm xmlsec1-1.2.28-7.7.1.src.rpm xmlsec1-1.2.28-7.7.1.x86_64.rpm xmlsec1-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-nss-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.x86_64.rpm libraptor-devel-2.0.15-9.5.1.s390x.rpm libraptor2-0-2.0.15-9.5.1.s390x.rpm libucpp13-1.3.4-3.2.1.s390x.rpm libxmlsec1-1-1.2.28-7.7.1.s390x.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.s390x.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.s390x.rpm libxmlsec1-nss1-1.2.28-7.7.1.s390x.rpm libxmlsec1-openssl1-1.2.28-7.7.1.s390x.rpm myspell-dictionaries-20191219-3.19.1.s390x.rpm myspell-lightproof-en-20191219-3.19.1.s390x.rpm myspell-lightproof-hu_HU-20191219-3.19.1.s390x.rpm myspell-lightproof-pt_BR-20191219-3.19.1.s390x.rpm myspell-lightproof-ru_RU-20191219-3.19.1.s390x.rpm raptor-2.0.15-9.5.1.s390x.rpm ucpp-1.3.4-3.2.1.s390x.rpm ucpp-devel-1.3.4-3.2.1.s390x.rpm xmlsec1-1.2.28-7.7.1.s390x.rpm xmlsec1-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-nss-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.s390x.rpm libraptor-devel-2.0.15-9.5.1.ppc64le.rpm libraptor2-0-2.0.15-9.5.1.ppc64le.rpm libreoffice-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-base-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-base-drivers-postgresql-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-calc-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-calc-extensions-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-draw-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-filters-optional-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-gnome-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-gtk3-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-impress-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-librelogo-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-mailmerge-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-math-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-officebean-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-pyuno-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-qt5-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-sdk-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-sdk-doc-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-writer-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-writer-extensions-7.1.3.2-4.5.3.ppc64le.rpm libreofficekit-7.1.3.2-4.5.3.ppc64le.rpm libreofficekit-devel-7.1.3.2-4.5.3.ppc64le.rpm libucpp13-1.3.4-3.2.1.ppc64le.rpm libxmlsec1-1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-nss1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-openssl1-1.2.28-7.7.1.ppc64le.rpm myspell-dictionaries-20191219-3.19.1.ppc64le.rpm myspell-lightproof-en-20191219-3.19.1.ppc64le.rpm myspell-lightproof-hu_HU-20191219-3.19.1.ppc64le.rpm myspell-lightproof-pt_BR-20191219-3.19.1.ppc64le.rpm myspell-lightproof-ru_RU-20191219-3.19.1.ppc64le.rpm raptor-2.0.15-9.5.1.ppc64le.rpm ucpp-1.3.4-3.2.1.ppc64le.rpm ucpp-devel-1.3.4-3.2.1.ppc64le.rpm xmlsec1-1.2.28-7.7.1.ppc64le.rpm xmlsec1-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-nss-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.ppc64le.rpm libraptor-devel-2.0.15-9.5.1.aarch64.rpm libraptor2-0-2.0.15-9.5.1.aarch64.rpm libreoffice-7.1.3.2-4.5.3.aarch64.rpm libreoffice-base-7.1.3.2-4.5.3.aarch64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-4.5.3.aarch64.rpm libreoffice-calc-7.1.3.2-4.5.3.aarch64.rpm libreoffice-calc-extensions-7.1.3.2-4.5.3.aarch64.rpm libreoffice-draw-7.1.3.2-4.5.3.aarch64.rpm libreoffice-filters-optional-7.1.3.2-4.5.3.aarch64.rpm libreoffice-gnome-7.1.3.2-4.5.3.aarch64.rpm libreoffice-gtk3-7.1.3.2-4.5.3.aarch64.rpm libreoffice-impress-7.1.3.2-4.5.3.aarch64.rpm libreoffice-librelogo-7.1.3.2-4.5.3.aarch64.rpm libreoffice-mailmerge-7.1.3.2-4.5.3.aarch64.rpm libreoffice-math-7.1.3.2-4.5.3.aarch64.rpm libreoffice-officebean-7.1.3.2-4.5.3.aarch64.rpm libreoffice-pyuno-7.1.3.2-4.5.3.aarch64.rpm libreoffice-qt5-7.1.3.2-4.5.3.aarch64.rpm libreoffice-sdk-7.1.3.2-4.5.3.aarch64.rpm libreoffice-sdk-doc-7.1.3.2-4.5.3.aarch64.rpm libreoffice-writer-7.1.3.2-4.5.3.aarch64.rpm libreoffice-writer-extensions-7.1.3.2-4.5.3.aarch64.rpm libreofficekit-7.1.3.2-4.5.3.aarch64.rpm libreofficekit-devel-7.1.3.2-4.5.3.aarch64.rpm libucpp13-1.3.4-3.2.1.aarch64.rpm libxmlsec1-1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-nss1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-openssl1-1.2.28-7.7.1.aarch64.rpm myspell-dictionaries-20191219-3.19.1.aarch64.rpm myspell-lightproof-en-20191219-3.19.1.aarch64.rpm myspell-lightproof-hu_HU-20191219-3.19.1.aarch64.rpm myspell-lightproof-pt_BR-20191219-3.19.1.aarch64.rpm myspell-lightproof-ru_RU-20191219-3.19.1.aarch64.rpm raptor-2.0.15-9.5.1.aarch64.rpm ucpp-1.3.4-3.2.1.aarch64.rpm ucpp-devel-1.3.4-3.2.1.aarch64.rpm xmlsec1-1.2.28-7.7.1.aarch64.rpm xmlsec1-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-nss-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-1680 moderate SUSE Updates openSUSE-SLE 15.3 This update for sapwmp fixes the following issues: * Call 'sapwmp check' in supportconfig. * Remove 'sapstartsrv' from process tree and enable SLE15SP3 wmp-check. (bsc#1184865) * Install the 'wmp-check' to /usr/sbin * Include a script to check the setup of wmp. * capture: Graceful handling of missing PARENT_COMMANDS * capture: Apply scope limits only when they are non-zero * capture: Parse scope properties from config file sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.src.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.x86_64.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.s390x.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.ppc64le.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2311 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-ntp-client fixes the following issues: - Adapted proposal client returning the dhcp ntp servers as strings. (bsc#1185545) yast2-ntp-client-4.3.3-3.3.1.noarch.rpm yast2-ntp-client-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1872 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2 fixes the following issues: - Do not crash when a client execution return false. (bsc#1185561, bsc#1180954) - Fixed an issue when calling the registration module crashed YaST. (bsc#1180954) - Revert disable of hibernation based on product and virtual machines. (bsc#1184470) yast2-4.3.62-3.5.1.src.rpm yast2-4.3.62-3.5.1.x86_64.rpm yast2-logs-4.3.62-3.5.1.x86_64.rpm yast2-4.3.62-3.5.1.s390x.rpm yast2-logs-4.3.62-3.5.1.s390x.rpm yast2-4.3.62-3.5.1.ppc64le.rpm yast2-logs-4.3.62-3.5.1.ppc64le.rpm yast2-4.3.62-3.5.1.aarch64.rpm yast2-logs-4.3.62-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2374 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-auth-client fixes the following issues: - Fix an error importing the configuration when the json does not contain all keys. (bsc#1184630) - Fix 'nss_ldap' package unnecessarily installed. (bsc#1185499) - Fix cli 'help' handling for 'auth-client' and 'ldapkrb'. (bsc#1172340)2 yast2-auth-client-4.3.3-3.3.1.noarch.rpm yast2-auth-client-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1884 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 78.11.0 ESR (bsc#1186696) * CVE-2021-29964: Out of bounds-read when parsing a `WM_COPYDATA` message * CVE-2021-29967: Memory safety bugs fixed in Firefox MozillaFirefox-78.11.0-8.43.1.src.rpm MozillaFirefox-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-buildsymbols-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-devel-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-78.11.0-8.43.1.s390x.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.s390x.rpm MozillaFirefox-devel-78.11.0-8.43.1.s390x.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.s390x.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.s390x.rpm MozillaFirefox-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-devel-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-devel-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.aarch64.rpm openSUSE-SLE-15.3-2021-2945 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-iscsi fixes the following issues: - Update 'iscsi.service' so that it tries to logon to any "onboot" and firmware targets, in case a target was offline when booted but back up when the service is started. (bsc#1153806) - Merged with latest from upstream, which contains these fixes: * Add "no wait" option to iscsiadm firmware login * Check for ISCSI_ERR_ISCSID_NOTCONN in iscsistart * Log proper error message when AUTH failure occurs * Support the "qede" CMA-card driver. (bsc#1188579) * iscsistart: fix null pointer deref before exit * Set default 'startup' to 'onboot' for FW nodes. (bsc#1185930) iscsiuio-0.7.8.6-32.5.1.x86_64.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.x86_64.rpm open-iscsi-2.1.4-32.5.1.src.rpm open-iscsi-2.1.4-32.5.1.x86_64.rpm open-iscsi-devel-2.1.4-32.5.1.x86_64.rpm iscsiuio-0.7.8.6-32.5.1.s390x.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.s390x.rpm open-iscsi-2.1.4-32.5.1.s390x.rpm open-iscsi-devel-2.1.4-32.5.1.s390x.rpm iscsiuio-0.7.8.6-32.5.1.ppc64le.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.ppc64le.rpm open-iscsi-2.1.4-32.5.1.ppc64le.rpm open-iscsi-devel-2.1.4-32.5.1.ppc64le.rpm iscsiuio-0.7.8.6-32.5.1.aarch64.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.aarch64.rpm open-iscsi-2.1.4-32.5.1.aarch64.rpm open-iscsi-devel-2.1.4-32.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2464 moderate SUSE Updates openSUSE-SLE 15.3 This update for shim fixes the following issues: - shim-install: Always assume "removable" for Azure to avoid the endless reset loop (bsc#1185464) - Avoid deleting the mirrored RT variables (bsc#1187696) - Split the keys in vendor-dbx.bin to vendor-dbx-sles and vendor-dbx-opensuse for shim-sles and shim-opensuse to reduce the size of MokListXRT (bsc#1185261) + Also update generate-vendor-dbx.sh in dbx-cert.tar.xz - Handle ignore_db and user_insecure_mode correctly (bsc#1185441, bsc#1187071) - Relax the maximum variable size check for u-boot (bsc#1185621) - Relax the check for import_mok_state() when Secure Boot is off. (bsc#1185261) - Ignore the odd LoadOptions length (bsc#1185232) - shim-install: reset def_shim_efi to "shim.efi" if the given file doesn't exist - Fided the size of rela sections for AArch64 - Disable exporting vendor-dbx to MokListXRT since writing a large RT variable could crash some machines (bsc#1185261) - Avoid potential crash when calling QueryVariableInfo in EFI 1.10 machines (bsc#1187260) - Avoid buffer overflow when copying data to the MOK config table (bsc#1185232) shim-15.4-4.7.1.src.rpm shim-15.4-4.7.1.x86_64.rpm shim-15.4-4.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-1997 moderate SUSE Updates openSUSE-SLE 15.3 This update for tpm2.0-abrmd fixes the following issue: - Remove deprecated `syslog` option from `systemd unit` file to prevent deprecation warning. (bsc#1185154) libtss2-tcti-tabrmd0-2.3.3-3.3.1.x86_64.rpm tpm2.0-abrmd-2.3.3-3.3.1.src.rpm tpm2.0-abrmd-2.3.3-3.3.1.x86_64.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.x86_64.rpm libtss2-tcti-tabrmd0-2.3.3-3.3.1.s390x.rpm tpm2.0-abrmd-2.3.3-3.3.1.s390x.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.s390x.rpm libtss2-tcti-tabrmd0-2.3.3-3.3.1.ppc64le.rpm tpm2.0-abrmd-2.3.3-3.3.1.ppc64le.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.ppc64le.rpm libtss2-tcti-tabrmd0-2.3.3-3.3.1.aarch64.rpm tpm2.0-abrmd-2.3.3-3.3.1.aarch64.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2106 critical SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: Update to Salt release version 3002.2 (jsc#ECO-3212, jsc#SLE-18033, jsc#SLE-18028) - Check if dpkgnotify is executable (bsc#1186674) - Drop support for Python2. Obsoletes `python2-salt` package (jsc#SLE-18028) - virt module updates * network: handle missing ipv4 netmask attribute * more network support * PCI/USB host devices passthrough support - Set distro requirement to oldest supported version in requirements/base.txt - Bring missing part of async batch implementation back (CVE-2021-25315, bsc#1182382) - Always require `python3-distro` (bsc#1182293) - Remove deprecated warning that breaks minion execution when "server_id_use_crc" opts is missing - Fix pkg states when DEB package has "all" arch - Do not force beacons configuration to be a list. - Remove msgpack < 1.0.0 from base requirements (bsc#1176293) - msgpack support for version >= 1.0.0 (bsc#1171257) - Fix issue parsing errors in ansiblegate state module - Prevent command injection in the snapper module (bsc#1185281, CVE-2021-31607) - transactional_update: detect recursion in the executor - Add subpackage salt-transactional-update (jsc#SLE-18033) - Improvements on "ansiblegate" module (bsc#1185092): * New methods: ansible.targets / ansible.discover_playbooks - Add support for Alibaba Cloud Linux 2 (Aliyun Linux) - Regression fix of salt-ssh on processing targets - Update target fix for salt-ssh and avoiding race condition on salt-ssh event processing (bsc#1179831, bsc#1182281) - Add notify beacon for Debian/Ubuntu systems - Fix zmq bug that causes salt-call to freeze (bsc#1181368) python-distro-1.5.0-3.5.1.src.rpm True python2-distro-1.5.0-3.5.1.noarch.rpm True python3-distro-1.5.0-3.5.1.noarch.rpm True openSUSE-SLE-15.3-2021-2141 moderate SUSE Updates openSUSE-SLE 15.3 This update for libstorage-ng fixes the following issues: - Fixed an issue when the installer fails to delete partitions on SD cards (bsc#1185610) - Remove double mount options to fix partition setup in AutoYaST. (bsc#1186298) libstorage-ng-4.3.108-3.5.1.src.rpm libstorage-ng-devel-4.3.108-3.5.1.x86_64.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.x86_64.rpm libstorage-ng-lang-4.3.108-3.5.1.noarch.rpm libstorage-ng-python3-4.3.108-3.5.1.x86_64.rpm libstorage-ng-ruby-4.3.108-3.5.1.x86_64.rpm libstorage-ng-utils-4.3.108-3.5.1.x86_64.rpm libstorage-ng1-4.3.108-3.5.1.x86_64.rpm libstorage-ng-devel-4.3.108-3.5.1.s390x.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.s390x.rpm libstorage-ng-python3-4.3.108-3.5.1.s390x.rpm libstorage-ng-ruby-4.3.108-3.5.1.s390x.rpm libstorage-ng-utils-4.3.108-3.5.1.s390x.rpm libstorage-ng1-4.3.108-3.5.1.s390x.rpm libstorage-ng-devel-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-python3-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-ruby-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-utils-4.3.108-3.5.1.ppc64le.rpm libstorage-ng1-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-devel-4.3.108-3.5.1.aarch64.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.aarch64.rpm libstorage-ng-python3-4.3.108-3.5.1.aarch64.rpm libstorage-ng-ruby-4.3.108-3.5.1.aarch64.rpm libstorage-ng-utils-4.3.108-3.5.1.aarch64.rpm libstorage-ng1-4.3.108-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2482 moderate SUSE Updates openSUSE-SLE 15.3 This update for autoyast2, yast2-registration, yast2-schema and yast2-users fixes the following issues: - During autoupgrade do not try to register the system if it is explicitly disabled in the profile. (bsc#1176965) - Consider 'static_text' as a valid value for 'ask/type' elements. (bsc#1185909) - Install packages in the PackagesProposal during autoupgrade. (bsc#1184488) - Recommend 'icewm' in graphical installation. (bsc#1185095) - Import proxy settings during the 1st stage of the installation (bsc#1185016) - Do not crash when the general/storage section is empty (bsc#1187180) - AutoYaST: do not crash when cloning a registered system with no registration code. (bsc#1184216) - Fix the comment entry in the desktop file so the tooltip in the control center is properly translated. (bsc#1187270) - Properly register the script to reboot after applying online updates. (bsc#1187962) - Add missing elements to 'rules.xml' schema. (bsc#1176089, bsc#1188153) - Do not export the general/storage section when it is empty to prevent installation failing. (bsc#1171356, bsc#1187916) - Show warning when reading system settings fails (bsc#1177183) - Show errors when loading addons fails (bsc#1187844). - Copy the files to the right location when a 'file_location' is given. (bsc#1188357) - Add 'Security#SafeRead' to allow detecting read errors when calling it from perl modules. (bsc#1177183) - Do not rewrite authorized_keys unless it is needed. (bsc#1188361) autoyast2-4.3.86-3.17.1.noarch.rpm autoyast2-4.3.86-3.17.1.src.rpm autoyast2-installation-4.3.86-3.17.1.noarch.rpm yast2-registration-4.3.23-3.6.1.noarch.rpm yast2-registration-4.3.23-3.6.1.src.rpm yast2-schema-4.3.23-3.3.2.src.rpm yast2-schema-4.3.23-3.3.2.x86_64.rpm yast2-security-4.3.17-3.3.1.noarch.rpm yast2-security-4.3.17-3.3.1.src.rpm yast2-users-4.3.14-3.8.1.src.rpm yast2-users-4.3.14-3.8.1.x86_64.rpm yast2-schema-4.3.23-3.3.2.s390x.rpm yast2-users-4.3.14-3.8.1.s390x.rpm yast2-schema-4.3.23-3.3.2.ppc64le.rpm yast2-users-4.3.14-3.8.1.ppc64le.rpm yast2-schema-4.3.23-3.3.2.aarch64.rpm yast2-users-4.3.14-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-1677 low SUSE Updates openSUSE-SLE 15.3 This update for purge-kernels-service fixes the following issues: - Add 'ZYPP_LOCK_TIMEOUT=-1' to keep waiting for the lock to avoid possible conflict with other background services uding zypper. (bsc#1184399) purge-kernels-service-0-8.3.1.noarch.rpm purge-kernels-service-0-8.3.1.src.rpm openSUSE-SLE-15.3-2021-1773 low SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - Make sure to close the import_failed.map file after the exception has been raised in order to avoid ResourceWarnings when the failing import is part of a try...except block. libpython3_6m1_0-3.6.13-3.84.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.13-3.84.1.x86_64.rpm python3-3.6.13-3.84.1.src.rpm python3-3.6.13-3.84.1.x86_64.rpm python3-32bit-3.6.13-3.84.1.x86_64.rpm python3-base-3.6.13-3.84.1.x86_64.rpm python3-base-32bit-3.6.13-3.84.1.x86_64.rpm python3-core-3.6.13-3.84.1.src.rpm python3-curses-3.6.13-3.84.1.x86_64.rpm python3-dbm-3.6.13-3.84.1.x86_64.rpm python3-devel-3.6.13-3.84.1.x86_64.rpm python3-doc-devhelp-3.6.13-3.84.1.x86_64.rpm python3-documentation-3.6.13-3.84.1.src.rpm python3-idle-3.6.13-3.84.1.x86_64.rpm python3-testsuite-3.6.13-3.84.1.x86_64.rpm python3-tk-3.6.13-3.84.1.x86_64.rpm python3-tools-3.6.13-3.84.1.x86_64.rpm libpython3_6m1_0-3.6.13-3.84.1.s390x.rpm python3-3.6.13-3.84.1.s390x.rpm python3-base-3.6.13-3.84.1.s390x.rpm python3-curses-3.6.13-3.84.1.s390x.rpm python3-dbm-3.6.13-3.84.1.s390x.rpm python3-devel-3.6.13-3.84.1.s390x.rpm python3-doc-devhelp-3.6.13-3.84.1.s390x.rpm python3-idle-3.6.13-3.84.1.s390x.rpm python3-testsuite-3.6.13-3.84.1.s390x.rpm python3-tk-3.6.13-3.84.1.s390x.rpm python3-tools-3.6.13-3.84.1.s390x.rpm libpython3_6m1_0-3.6.13-3.84.1.ppc64le.rpm python3-3.6.13-3.84.1.ppc64le.rpm python3-base-3.6.13-3.84.1.ppc64le.rpm python3-curses-3.6.13-3.84.1.ppc64le.rpm python3-dbm-3.6.13-3.84.1.ppc64le.rpm python3-devel-3.6.13-3.84.1.ppc64le.rpm python3-doc-devhelp-3.6.13-3.84.1.ppc64le.rpm python3-idle-3.6.13-3.84.1.ppc64le.rpm python3-testsuite-3.6.13-3.84.1.ppc64le.rpm python3-tk-3.6.13-3.84.1.ppc64le.rpm python3-tools-3.6.13-3.84.1.ppc64le.rpm libpython3_6m1_0-3.6.13-3.84.1.aarch64.rpm python3-3.6.13-3.84.1.aarch64.rpm python3-base-3.6.13-3.84.1.aarch64.rpm python3-curses-3.6.13-3.84.1.aarch64.rpm python3-dbm-3.6.13-3.84.1.aarch64.rpm python3-devel-3.6.13-3.84.1.aarch64.rpm python3-doc-devhelp-3.6.13-3.84.1.aarch64.rpm python3-idle-3.6.13-3.84.1.aarch64.rpm python3-testsuite-3.6.13-3.84.1.aarch64.rpm python3-tk-3.6.13-3.84.1.aarch64.rpm python3-tools-3.6.13-3.84.1.aarch64.rpm openSUSE-SLE-15.3-2021-1759 important SUSE Updates openSUSE-SLE 15.3 This update for rubygem-actionpack-5_1 fixes the following issues: - CVE-2021-22885: Fixed possible information disclosure / unintended method execution in Action Pack (bsc#1185715). ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.x86_64.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.x86_64.rpm rubygem-actionpack-5_1-5.1.4-3.9.1.src.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.s390x.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.s390x.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.ppc64le.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.ppc64le.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.aarch64.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1797 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-aliyun-img-utils, python-click-man, python-crcmod, python-oss2 fixes the following issues: - Include in SLE-15 (bsc#1181995, jsc#ECO-3329, jsc#PM-2475) - Cleanup spec file - Use fdupes - Do not bundle html doc - singlespec auto-conversion - Include in SLE 12 (FATE #316168) - No need to use upstream tarball, download PyPI tarball instead - Switch to github archive as the tests are not present on pypi version. - Initial build python-aliyun-img-utils-1.1.0-5.4.2.src.rpm python-click-man-0.4.1-5.3.2.src.rpm python-crcmod-1.7-5.3.2.src.rpm python-oss2-2.14.0-5.3.2.src.rpm python2-click-man-0.4.1-5.3.2.noarch.rpm python2-crcmod-1.7-5.3.2.x86_64.rpm python3-aliyun-img-utils-1.1.0-5.4.2.x86_64.rpm python3-click-man-0.4.1-5.3.2.noarch.rpm python3-crcmod-1.7-5.3.2.x86_64.rpm python3-oss2-2.14.0-5.3.2.noarch.rpm python2-crcmod-1.7-5.3.2.s390x.rpm python3-aliyun-img-utils-1.1.0-5.4.2.s390x.rpm python3-crcmod-1.7-5.3.2.s390x.rpm python2-crcmod-1.7-5.3.2.ppc64le.rpm python3-aliyun-img-utils-1.1.0-5.4.2.ppc64le.rpm python3-crcmod-1.7-5.3.2.ppc64le.rpm python2-crcmod-1.7-5.3.2.aarch64.rpm python3-aliyun-img-utils-1.1.0-5.4.2.aarch64.rpm python3-crcmod-1.7-5.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-1651 critical SUSE Updates openSUSE-SLE 15.3 This update for graphviz fixes the following issues: - CVE-2020-18032: Fixed possible remote code execution via buffer overflow (bsc#1185833). graphviz-2.40.1-6.9.1.src.rpm graphviz-2.40.1-6.9.1.x86_64.rpm graphviz-addons-2.40.1-6.9.1.src.rpm graphviz-devel-2.40.1-6.9.1.x86_64.rpm graphviz-doc-2.40.1-6.9.1.x86_64.rpm graphviz-gd-2.40.1-6.9.1.x86_64.rpm graphviz-gnome-2.40.1-6.9.1.x86_64.rpm graphviz-guile-2.40.1-6.9.1.x86_64.rpm graphviz-gvedit-2.40.1-6.9.1.x86_64.rpm graphviz-java-2.40.1-6.9.1.x86_64.rpm graphviz-lua-2.40.1-6.9.1.x86_64.rpm graphviz-perl-2.40.1-6.9.1.x86_64.rpm graphviz-php-2.40.1-6.9.1.x86_64.rpm graphviz-plugins-core-2.40.1-6.9.1.x86_64.rpm graphviz-python-2.40.1-6.9.1.x86_64.rpm graphviz-ruby-2.40.1-6.9.1.x86_64.rpm graphviz-smyrna-2.40.1-6.9.1.x86_64.rpm graphviz-tcl-2.40.1-6.9.1.x86_64.rpm libgraphviz6-2.40.1-6.9.1.x86_64.rpm graphviz-2.40.1-6.9.1.s390x.rpm graphviz-devel-2.40.1-6.9.1.s390x.rpm graphviz-doc-2.40.1-6.9.1.s390x.rpm graphviz-gd-2.40.1-6.9.1.s390x.rpm graphviz-gnome-2.40.1-6.9.1.s390x.rpm graphviz-guile-2.40.1-6.9.1.s390x.rpm graphviz-gvedit-2.40.1-6.9.1.s390x.rpm graphviz-java-2.40.1-6.9.1.s390x.rpm graphviz-lua-2.40.1-6.9.1.s390x.rpm graphviz-perl-2.40.1-6.9.1.s390x.rpm graphviz-php-2.40.1-6.9.1.s390x.rpm graphviz-plugins-core-2.40.1-6.9.1.s390x.rpm graphviz-python-2.40.1-6.9.1.s390x.rpm graphviz-ruby-2.40.1-6.9.1.s390x.rpm graphviz-smyrna-2.40.1-6.9.1.s390x.rpm graphviz-tcl-2.40.1-6.9.1.s390x.rpm libgraphviz6-2.40.1-6.9.1.s390x.rpm graphviz-2.40.1-6.9.1.ppc64le.rpm graphviz-devel-2.40.1-6.9.1.ppc64le.rpm graphviz-doc-2.40.1-6.9.1.ppc64le.rpm graphviz-gd-2.40.1-6.9.1.ppc64le.rpm graphviz-gnome-2.40.1-6.9.1.ppc64le.rpm graphviz-guile-2.40.1-6.9.1.ppc64le.rpm graphviz-gvedit-2.40.1-6.9.1.ppc64le.rpm graphviz-java-2.40.1-6.9.1.ppc64le.rpm graphviz-lua-2.40.1-6.9.1.ppc64le.rpm graphviz-perl-2.40.1-6.9.1.ppc64le.rpm graphviz-php-2.40.1-6.9.1.ppc64le.rpm graphviz-plugins-core-2.40.1-6.9.1.ppc64le.rpm graphviz-python-2.40.1-6.9.1.ppc64le.rpm graphviz-ruby-2.40.1-6.9.1.ppc64le.rpm graphviz-smyrna-2.40.1-6.9.1.ppc64le.rpm graphviz-tcl-2.40.1-6.9.1.ppc64le.rpm libgraphviz6-2.40.1-6.9.1.ppc64le.rpm graphviz-2.40.1-6.9.1.aarch64.rpm graphviz-devel-2.40.1-6.9.1.aarch64.rpm graphviz-doc-2.40.1-6.9.1.aarch64.rpm graphviz-gd-2.40.1-6.9.1.aarch64.rpm graphviz-gnome-2.40.1-6.9.1.aarch64.rpm graphviz-guile-2.40.1-6.9.1.aarch64.rpm graphviz-gvedit-2.40.1-6.9.1.aarch64.rpm graphviz-java-2.40.1-6.9.1.aarch64.rpm graphviz-lua-2.40.1-6.9.1.aarch64.rpm graphviz-perl-2.40.1-6.9.1.aarch64.rpm graphviz-php-2.40.1-6.9.1.aarch64.rpm graphviz-plugins-core-2.40.1-6.9.1.aarch64.rpm graphviz-python-2.40.1-6.9.1.aarch64.rpm graphviz-ruby-2.40.1-6.9.1.aarch64.rpm graphviz-smyrna-2.40.1-6.9.1.aarch64.rpm graphviz-tcl-2.40.1-6.9.1.aarch64.rpm libgraphviz6-2.40.1-6.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1950 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issues: - Update to version 0.347: + Updated pci, usb and vendor ids. (bsc#1185697) - Update to version 0.346: + Updated pci, usb and vendor ids. (bsc#1182482, jsc#SLE-13791, bsc#1170160) hwdata-0.347-3.21.1.noarch.rpm hwdata-0.347-3.21.1.src.rpm openSUSE-SLE-15.3-2021-1669 moderate SUSE Updates openSUSE-SLE 15.3 This update for nfs-utils fixes the following issues: - The '/var/run' is long deprecated - switch all relevant paths to '/run'. (bsc#1185170) - Improve logging of authentication (bsc#1181540) - Add man page of the 'nconnect mount'. (bsc#1181651) - Fixed an issue when HANA crashed due to inaccessible/hanging NFS mount. (bsc#1183194) nfs-client-2.1.1-10.15.1.x86_64.rpm nfs-doc-2.1.1-10.15.1.x86_64.rpm nfs-kernel-server-2.1.1-10.15.1.x86_64.rpm nfs-utils-2.1.1-10.15.1.src.rpm nfs-client-2.1.1-10.15.1.s390x.rpm nfs-doc-2.1.1-10.15.1.s390x.rpm nfs-kernel-server-2.1.1-10.15.1.s390x.rpm nfs-client-2.1.1-10.15.1.ppc64le.rpm nfs-doc-2.1.1-10.15.1.ppc64le.rpm nfs-kernel-server-2.1.1-10.15.1.ppc64le.rpm nfs-client-2.1.1-10.15.1.aarch64.rpm nfs-doc-2.1.1-10.15.1.aarch64.rpm nfs-kernel-server-2.1.1-10.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-1641 important SUSE Updates openSUSE-SLE 15.3 This update for djvulibre fixes the following issues: - CVE-2021-32490 [bsc#1185895]: Out of bounds write in function DJVU:filter_bv() via crafted djvu file - CVE-2021-32491 [bsc#1185900]: Integer overflow in function render() in tools/ddjvu via crafted djvu file - CVE-2021-32492 [bsc#1185904]: Out of bounds read in function DJVU:DataPool:has_data() via crafted djvu file - CVE-2021-32493 [bsc#1185905]: Heap buffer overflow in function DJVU:GBitmap:decode() via crafted djvu file djvulibre-3.5.27-11.3.1.src.rpm djvulibre-3.5.27-11.3.1.x86_64.rpm djvulibre-doc-3.5.27-11.3.1.noarch.rpm libdjvulibre-devel-3.5.27-11.3.1.x86_64.rpm libdjvulibre21-3.5.27-11.3.1.x86_64.rpm djvulibre-3.5.27-11.3.1.s390x.rpm libdjvulibre-devel-3.5.27-11.3.1.s390x.rpm libdjvulibre21-3.5.27-11.3.1.s390x.rpm djvulibre-3.5.27-11.3.1.ppc64le.rpm libdjvulibre-devel-3.5.27-11.3.1.ppc64le.rpm libdjvulibre21-3.5.27-11.3.1.ppc64le.rpm djvulibre-3.5.27-11.3.1.aarch64.rpm libdjvulibre-devel-3.5.27-11.3.1.aarch64.rpm libdjvulibre21-3.5.27-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1700 moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-agent, google-guest-oslogin, google-osconfig-agent contains the following fixes: - Update to version 20210414.00 (bsc#1185848, bsc#1185849) * start sshd (#106) * Add systemd-networkd.service restart dependency. (#104) * Update error message for handleHealthCheckRequest. (#105) - Update to version 20210429.00 (bsc#1185848, bsc#1185849) * correct pagetoken in groupsforuser (#59) * resolve self groups last (#58) * support empty groups (#57) * no paginating to find groups (#56) * clear users vector (#55) * correct usage of pagetoken (#54) - Update to version 20210506.00 (bsc#1185848, bsc#1185849) * Add more os policy assignment examples (#348) * e2e_tests: enable stable tests for OSPolicies (#347) * Align start and end task logs (#346) * ConfigTask: add additional info logs (#345) * e2e_tests: add validation tests (#344) * Config Task: make sure agent respects policy mode (#343) * update * e2e_tests: readd retries to OSPolicies * Set minWaitDuration as a string instead of object (#341) * e2e_tests: Fix a few SUSE tests (#339) * Remove pre-release flag from config (#340) * e2e_tests: fixup OSPolicy tests (#338) * e2e_tests: unlock mutex for CreatePolicies as soon as create finishes (#337) * e2e_tests: Don't retry failed OSPolicy tests, fix msi test (#336) * Examples for os policy assignments (#334) * e2e_tests: increase the deadline for OSPolicy tests and only start after a zone has been secured (#335) * Fix panic when installing MSI (#332) * e2e_tests: Add test cases of installing dbe, rpm and msi packages (#333) * e2e_tests: add more logging * e2e_tests: (#330) * e2e_test: Add timouts to OSPolicy tests so we don't wait forever (#329) * Create top level directories for gcloud and console for os policy assignment examples (#328) * e2e_tests: Move api from an internal directory (#327) * Make sure we use the same test name for reruns (#326) * Add CONFIG_V1 capability (#325) * e2e_tests: reduce size of instances, use pd-balanced, rerun failed tests once (#324) * Only report installed packages for dpkg (#322) * e2e_tests: fix windows package and repository tests (#323) * Add top level directories for os policy examples (#321) * e2e_tests: move to using inventory api for inventory reporting (#320) * e2e_tests: add ExecResource tests (#319) * ExecResource: make sure we set permissions correctly for downloaded files (#318) * Config task: only run post check on resources that have already been evaluated (#317) * e2e_test: reorganize OSPolicy tests to be per Resource type (#316) * Set custom user agent (#299) * e2e_tests: check InstanceOSPoliciesCompliance for each test case, add LocalPath FileResource test (#314) * PackageResource: make sure to run AptUpdate prior to package install (#315) * Fix bugs/add more logging for OSPolicies (#313) * Change metadata http client to ignore http proxies (#312) * e2e_test: add tests for FileResource (#311) * Add task_type context logging (#310) * Fix e2e_test typo (#309) * Fix e2e_tests (#308) * Disable OSPolicies by default since it is an unreleased feature (#307) * e2e_tests: Add more OSPolicies package and repo tests (#306) * Do not enforce repo_gpgcheck in guestpolicies (#305) * Gather inventory 3-5min after agent start (#303) * e2e_tests: add OSPolicies tests for package install (#302) * Add helpful error log if a service account is missing (#304) * OSPolicies: correct apt repo extension, remove yum/zypper gpgcheck override (#301) * Update cos library to parse new version of packages file (#300) * config_task: Rework config step logic (#296) * e2e_test: enable serial logs in cos to support ReportInventory test (#297) google-guest-agent-20210414.00-1.20.1.src.rpm google-guest-agent-20210414.00-1.20.1.x86_64.rpm google-guest-oslogin-20210429.00-1.18.1.src.rpm google-guest-oslogin-20210429.00-1.18.1.x86_64.rpm google-osconfig-agent-20210506.00-1.11.1.src.rpm google-osconfig-agent-20210506.00-1.11.1.x86_64.rpm google-guest-agent-20210414.00-1.20.1.s390x.rpm google-guest-oslogin-20210429.00-1.18.1.s390x.rpm google-osconfig-agent-20210506.00-1.11.1.s390x.rpm google-guest-agent-20210414.00-1.20.1.ppc64le.rpm google-guest-oslogin-20210429.00-1.18.1.ppc64le.rpm google-osconfig-agent-20210506.00-1.11.1.ppc64le.rpm google-guest-agent-20210414.00-1.20.1.aarch64.rpm google-guest-oslogin-20210429.00-1.18.1.aarch64.rpm google-osconfig-agent-20210506.00-1.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-1655 important SUSE Updates openSUSE-SLE 15.3 This update for fribidi fixes the following issues: Security issues fixed: - CVE-2019-18397: Avoid buffer overflow. (bsc#1156260) fribidi-1.0.5-3.3.1.src.rpm fribidi-1.0.5-3.3.1.x86_64.rpm fribidi-devel-1.0.5-3.3.1.x86_64.rpm libfribidi0-1.0.5-3.3.1.x86_64.rpm libfribidi0-32bit-1.0.5-3.3.1.x86_64.rpm fribidi-1.0.5-3.3.1.s390x.rpm fribidi-devel-1.0.5-3.3.1.s390x.rpm libfribidi0-1.0.5-3.3.1.s390x.rpm fribidi-1.0.5-3.3.1.ppc64le.rpm fribidi-devel-1.0.5-3.3.1.ppc64le.rpm libfribidi0-1.0.5-3.3.1.ppc64le.rpm fribidi-1.0.5-3.3.1.aarch64.rpm fribidi-devel-1.0.5-3.3.1.aarch64.rpm libfribidi0-1.0.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1761 moderate SUSE Updates openSUSE-SLE 15.3 This update for hivex fixes the following issues: - CVE-2021-3504: hivex: missing bounds check within hivex_open() (bsc#1185013) hivex-1.3.14-5.3.1.src.rpm hivex-1.3.14-5.3.1.x86_64.rpm hivex-devel-1.3.14-5.3.1.x86_64.rpm hivex-lang-1.3.14-5.3.1.noarch.rpm libhivex0-1.3.14-5.3.1.x86_64.rpm ocaml-hivex-1.3.14-5.3.1.x86_64.rpm ocaml-hivex-devel-1.3.14-5.3.1.x86_64.rpm perl-Win-Hivex-1.3.14-5.3.1.x86_64.rpm python-hivex-1.3.14-5.3.1.x86_64.rpm hivex-1.3.14-5.3.1.s390x.rpm hivex-devel-1.3.14-5.3.1.s390x.rpm libhivex0-1.3.14-5.3.1.s390x.rpm ocaml-hivex-1.3.14-5.3.1.s390x.rpm ocaml-hivex-devel-1.3.14-5.3.1.s390x.rpm perl-Win-Hivex-1.3.14-5.3.1.s390x.rpm python-hivex-1.3.14-5.3.1.s390x.rpm hivex-1.3.14-5.3.1.ppc64le.rpm hivex-devel-1.3.14-5.3.1.ppc64le.rpm libhivex0-1.3.14-5.3.1.ppc64le.rpm ocaml-hivex-1.3.14-5.3.1.ppc64le.rpm ocaml-hivex-devel-1.3.14-5.3.1.ppc64le.rpm perl-Win-Hivex-1.3.14-5.3.1.ppc64le.rpm python-hivex-1.3.14-5.3.1.ppc64le.rpm hivex-1.3.14-5.3.1.aarch64.rpm hivex-devel-1.3.14-5.3.1.aarch64.rpm libhivex0-1.3.14-5.3.1.aarch64.rpm ocaml-hivex-1.3.14-5.3.1.aarch64.rpm ocaml-hivex-devel-1.3.14-5.3.1.aarch64.rpm perl-Win-Hivex-1.3.14-5.3.1.aarch64.rpm python-hivex-1.3.14-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2685 moderate SUSE Updates openSUSE-SLE 15.3 This update for libdnf fixes the following issues: - Fixed crash when loading DVD repositories Update to 0.62.0 + Change order of TransactionItemReason (rh#1921063) + Add two new comperators for security filters (rh#1918475) + Apply security filters for candidates with lower priority + Fix: Goal - translation of messages in global maps + Enhance description of modular solvables + Improve performance for module query + Change mechanism of modular errata applicability (rh#1804234) + dnf_transaction_commit(): Remove second call to rpmtsSetVSFlags + Fix a couple of memory leaks + Fix: Setting of librepo handle in newHandle function + Remove failsafe data when module is not enabled (rh#1847035) + Expose librepo's checksum functions via SWIG + Fix: Mising check of "hy_split_nevra()" return code + Do not allow 1 as installonly_limit value (rh#1926261) + Fix check whether the subkey can be used for signing + Hardening: add signature check with rpmcliVerifySignatures (CVE-2021-3445, CVE-2021-3421, CVE-2021-20271, rh#1932079, rh#1932089, rh#1932090, bsc#1183779) + Add a config option sslverifystatus, defaults to false (rh#1814383) + [context] Add API for distro-sync - Fix dependency for repo-config-zypp subpackage to work with SLE Update to 0.60.0 + Fix repo.fresh() implementation + Fix: Fully set ssl in newHandle function + [conf] Add options for working with certificates used with proxy + Apply proxy certificate options + lock: Switch return-if-fail to assert to quiet gcc -fanalyzer + build-sys: Clean up message about Python bindings + Modify module NSVCA parsing - context definition (rh#1926771) + [context] Fix: dnf_package_is_installonly (rh#1928056) + Fix problematic language + Add getApplicablePackages to advisory and isApplicable to advisorymodule + Keep isAdvisoryApplicable to preserve API + Run ModulePackageContainerTest tests in tmpdir, merge interdependent + [context] Support config file option "proxy_auth_method", defaults "any" + Properly handle multiple collections in updateinfo.xml (rh#1804234) + Support main config file option "installonlypkgs" + Support main config file option "protected_packages" - Add repo-config-zypp subpackage to allow easily using Zypper repository configuration - Backport support for using certificates for repository authorization - Backport another fix for adding controls to installonlypkgs - Add patch to move directory for dnf state data to /usr/lib/sysimage - Backport fixes to add controls for installonlypkgs and protected_packages Update to version 0.58.0 + Option: Add reset() method + Add OptionBinds::getOption() method + [context] Add dnf_repo_conf_from_gkeyfile() and dnf_repo_conf_reset() + [context] Add support for options: minrate, throttle, bandwidth, timeout + [context] Remove g_key_file_get_string() from dnf_repo_set_keyfile_data() + Allow loading ext metadata even if only cache (solv) is present + Add ASAN_OPTIONS for test_libdnf_main + [context,API] Functions for accessing main/global configuration options + [context,API] Function for adding setopt + Add getter for modular obsoletes from ModuleMetadata + Add ModulePackage.getStaticContext() and getRequires() + Add compatible layer for MdDocuments v2 + Fix modular queries with the new solver + Improve formatting of error string for modules + Change mechanism of module conflicts + Fix load/update FailSafe Update to version 0.55.2 + Improve performance of query installed() and available() + Swdb: Add a method to get the current transaction + [modules] Add special handling for src artifacts (rh#1809314) + Better msgs if "basecachedir" or "proxy_password" isn't set (rh#1888946) + Add new options module_stream_switch + Support allow_vendor_change setting in dnf context API Update to version 0.55.0 + Add vendor to dnf API (rh#1876561) + Add formatting function for solver error + Add error types in ModulePackageContainer + Implement module enable for context part + Improve string formatting for translation + Remove redundant printf and change logging info to notice (rh#1827424) + Add allow_vendor_change option (rh#1788371) (rh#1788371) Update to version 0.54.2 + history: Fix dnf history rollback when a package was removed (rh#1683134) + Add support for HY_GT, HY_LT in query nevra_strict + Fix parsing empty lines in config files + Accept '==' as an operator in reldeps (rh#1847946) + Add log file level main config option (rh#1802074) + Add protect_running_kernel configuration option (rh#1698145) + Context part of libdnf cannot assume zchunk is on (rh#1851841, rh#1779104) + Fix memory leak of resultingModuleIndex and handle g_object refs + Redirect librepo logs to libdnf logs with different source + Add hy_goal_lock + Enum/String conversions for Transaction Store/Replay + utils: Add a method to decode URLs + Unify hawkey.log line format with the rest of the logs Update to version 0.48.0 + Add prereq_ignoreinst & regular_requires properties for pkg (rh#1543449) + Reset active modules when no module enabled or default (rh#1767351) + Add comment option to transaction (rh#1773679) + Failing to get module defauls is a recoverable error + Baseurl is not exclusive with mirrorlist/metalink (rh#1775184) + Add new function to reset all modules in C API (dnf_context_reset_all_modules) + [context] Fix to preserve additionalMetadata content (rh#1808677) + Fix filtering of DepSolvables with source rpms (rh#1812596) + Add setter for running kernel protection setting + Handle situation when an unprivileged user cannot create history database (rh#1634385) + Add query filter: latest by priority + Add DNF_NO_PROTECTED flag to allow empty list of protected packages + Remove 'dim' option from terminal colors to make them more readable (rh#1807774, rh#1814563) + [context] Error when main config file can't be opened (rh#1794864) + [context] Add function function dnf_context_is_set_config_file_path + swdb: Catch only SQLite3 exceptions and simplify the messages + MergedTransaction list multiple comments (rh#1773679) + Modify CMake to pull *.po files from weblate + Optimize DependencyContainer creation from an existing queue + fix a memory leak in dnf_package_get_requires() + Fix memory leaks on g_build_filename() + Fix memory leak in dnf_context_setup() + Add `hy_goal_favor` and `hy_goal_disfavor` + Define a cleanup function for `DnfPackageSet` + dnf-repo: fix dnf_repo_get_public_keys double-free + Do not cache RPMDB + Use single-quotes around string literals used in SQL statements + SQLite3: Do not close the database if it wasn't opened (rh#1761976) + Don't create a new history DB connection for in-memory DB + transaction/Swdb: Use a single logger variable in constructor + utils: Add a safe version of pathExists() + swdb: Handle the case when pathExists() fails on e.g. permission + Repo: prepend "file://" if a local path is used as baseurl + Move urlEncode() to utils + utils: Add 'exclude' argument to urlEncode() + Encode package URL for downloading through librepo (rh#1817130) + Replace std::runtime_error with libdnf::RepoError + Fixes and error handling improvements of the File class + [context] Use ConfigRepo for gpgkey and baseurl (rh#1807864) + [context] support "priority" option in .repo config file (rh#1797265) hawkey-man-0.62.0-5.3.1.noarch.rpm libdnf-0.62.0-5.3.1.src.rpm libdnf-devel-0.62.0-5.3.1.i586.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.i586.rpm libdnf2-0.62.0-5.3.1.i586.rpm python3-hawkey-0.62.0-5.3.1.i586.rpm python3-libdnf-0.62.0-5.3.1.i586.rpm libdnf-devel-0.62.0-5.3.1.x86_64.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.x86_64.rpm libdnf2-0.62.0-5.3.1.x86_64.rpm python3-hawkey-0.62.0-5.3.1.x86_64.rpm python3-libdnf-0.62.0-5.3.1.x86_64.rpm libdnf-devel-0.62.0-5.3.1.s390x.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.s390x.rpm libdnf2-0.62.0-5.3.1.s390x.rpm python3-hawkey-0.62.0-5.3.1.s390x.rpm python3-libdnf-0.62.0-5.3.1.s390x.rpm libdnf-devel-0.62.0-5.3.1.ppc64le.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.ppc64le.rpm libdnf2-0.62.0-5.3.1.ppc64le.rpm python3-hawkey-0.62.0-5.3.1.ppc64le.rpm python3-libdnf-0.62.0-5.3.1.ppc64le.rpm libdnf-devel-0.62.0-5.3.1.aarch64.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.aarch64.rpm libdnf2-0.62.0-5.3.1.aarch64.rpm python3-hawkey-0.62.0-5.3.1.aarch64.rpm python3-libdnf-0.62.0-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1675 moderate SUSE Updates openSUSE-SLE 15.3 This update for snappy fixes the following issues: Update from version 1.1.3 to 1.1.8 - Small performance improvements. - Removed `snappy::string` alias for `std::string`. - Improved `CMake` configuration. - Improved packages descriptions. - Fix RPM groups. - Aarch64 fixes - PPC speedups - PIE improvements - Fix license install. (bsc#1080040) - Fix a 1% performance regression when snappy is used in PIE executable. - Improve compression performance by 5%. - Improve decompression performance by 20%. - Use better download URL. - Fix a build issue for tensorflow2. (bsc#1184507) libsnappy1-1.1.8-3.3.1.x86_64.rpm libsnappy1-32bit-1.1.8-3.3.1.x86_64.rpm snappy-1.1.8-3.3.1.src.rpm snappy-devel-1.1.8-3.3.1.x86_64.rpm libsnappy1-1.1.8-3.3.1.s390x.rpm snappy-devel-1.1.8-3.3.1.s390x.rpm libsnappy1-1.1.8-3.3.1.ppc64le.rpm snappy-devel-1.1.8-3.3.1.ppc64le.rpm libsnappy1-1.1.8-3.3.1.aarch64.rpm snappy-devel-1.1.8-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1640 moderate SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: - FIPS: Replace AEAD AES CCM patch with upstream variant (bsc#1185363) strongswan-5.8.2-11.14.1.src.rpm strongswan-5.8.2-11.14.1.x86_64.rpm strongswan-doc-5.8.2-11.14.1.noarch.rpm strongswan-hmac-5.8.2-11.14.1.x86_64.rpm strongswan-ipsec-5.8.2-11.14.1.x86_64.rpm strongswan-libs0-5.8.2-11.14.1.x86_64.rpm strongswan-mysql-5.8.2-11.14.1.x86_64.rpm strongswan-nm-5.8.2-11.14.1.x86_64.rpm strongswan-sqlite-5.8.2-11.14.1.x86_64.rpm strongswan-5.8.2-11.14.1.s390x.rpm strongswan-hmac-5.8.2-11.14.1.s390x.rpm strongswan-ipsec-5.8.2-11.14.1.s390x.rpm strongswan-libs0-5.8.2-11.14.1.s390x.rpm strongswan-mysql-5.8.2-11.14.1.s390x.rpm strongswan-nm-5.8.2-11.14.1.s390x.rpm strongswan-sqlite-5.8.2-11.14.1.s390x.rpm strongswan-5.8.2-11.14.1.ppc64le.rpm strongswan-hmac-5.8.2-11.14.1.ppc64le.rpm strongswan-ipsec-5.8.2-11.14.1.ppc64le.rpm strongswan-libs0-5.8.2-11.14.1.ppc64le.rpm strongswan-mysql-5.8.2-11.14.1.ppc64le.rpm strongswan-nm-5.8.2-11.14.1.ppc64le.rpm strongswan-sqlite-5.8.2-11.14.1.ppc64le.rpm strongswan-5.8.2-11.14.1.aarch64.rpm strongswan-hmac-5.8.2-11.14.1.aarch64.rpm strongswan-ipsec-5.8.2-11.14.1.aarch64.rpm strongswan-libs0-5.8.2-11.14.1.aarch64.rpm strongswan-mysql-5.8.2-11.14.1.aarch64.rpm strongswan-nm-5.8.2-11.14.1.aarch64.rpm strongswan-sqlite-5.8.2-11.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-1660 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-kiwi fixes the following issues: - Fix appx manifest for WSL containers This patch is two fold * This commit prevents KIWI from setting Identity Name attribute and DisplayName and PublisherDisplayName elements. Fixes #1780 * Fix WSL appx filemap relative paths not preserved During WSL appx image type creation step the file hierarchy under metadata_path is written to a temporary file for eventual use as argument to utility appx. The file hierarchy information is dropped resulting in all filemap entries appearing to be at the metadata_path root. The resulting image will side load and run but without icon and other resources. Stricter checks at Windows Store submission will fail due to mismatch between image manifest and contents. Fix by preserving relative path of filemap entries relative to metadata_path. Add log output showing both input absolute path and output relative path. (jsc#SLE-12986) - Recommend kiwi-systemdeps-containers This commit recommends 'kiwi-systemdeps-containers' instead of a hard requirement in kiwi-systemdeps package for SLE builds. This is needed because the containers tool chain is spread in different SLE modules. dracut-kiwi-lib-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-live-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-overlay-9.23.20-3.40.1.x86_64.rpm kiwi-man-pages-9.23.20-3.40.1.x86_64.rpm kiwi-pxeboot-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-core-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.x86_64.rpm kiwi-tools-9.23.20-3.40.1.x86_64.rpm python-kiwi-9.23.20-3.40.1.src.rpm python3-kiwi-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-lib-9.23.20-3.40.1.s390x.rpm dracut-kiwi-live-9.23.20-3.40.1.s390x.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.s390x.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.s390x.rpm dracut-kiwi-overlay-9.23.20-3.40.1.s390x.rpm kiwi-man-pages-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-core-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.s390x.rpm kiwi-tools-9.23.20-3.40.1.s390x.rpm python3-kiwi-9.23.20-3.40.1.s390x.rpm dracut-kiwi-lib-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-live-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-overlay-9.23.20-3.40.1.ppc64le.rpm kiwi-man-pages-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-core-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.ppc64le.rpm kiwi-tools-9.23.20-3.40.1.ppc64le.rpm python3-kiwi-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-lib-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-live-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-overlay-9.23.20-3.40.1.aarch64.rpm kiwi-man-pages-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-core-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.aarch64.rpm kiwi-tools-9.23.20-3.40.1.aarch64.rpm python3-kiwi-9.23.20-3.40.1.aarch64.rpm openSUSE-SLE-15.3-2021-1752 moderate SUSE Updates openSUSE-SLE 15.3 This update for expect fixes the following issues: - Fixed an issue when expect in permanently open connection causes hanging for scripts. (bsc#1183904) - pass explicit -pie flag to CFLAGS and hack `make` invocation so that /usr/bin/expect actually becomes a PIE binary. This is especially awkard since the expect build system implicitly passes -fPIC which breaks our gcc-PIE package, but does not pass -pie while linking the executable. Shared libraries are also not linked with -shared so we need to explicitly pass this, too, to avoid build breakage. (bsc#1184122) - Add an unversioned symlink to make linking easier for applications that use libexpect without Tcl. (bsc#1172681) expect-5.45.4-3.3.1.src.rpm expect-5.45.4-3.3.1.x86_64.rpm expect-devel-5.45.4-3.3.1.x86_64.rpm expect-5.45.4-3.3.1.s390x.rpm expect-devel-5.45.4-3.3.1.s390x.rpm expect-5.45.4-3.3.1.ppc64le.rpm expect-devel-5.45.4-3.3.1.ppc64le.rpm expect-5.45.4-3.3.1.aarch64.rpm expect-devel-5.45.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1678 moderate SUSE Updates openSUSE-SLE 15.3 This update for prometheus-ha_cluster_exporter fixes the following issues: - Add parsing of the `crm_config` node in the CIB parser. - Update the minimum required Go version to 1.14. - Avoid duplicate metric recording errors for non-running OCFS resources. (bsc#1184422) prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.src.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.x86_64.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.s390x.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.ppc64le.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1755 moderate SUSE Updates openSUSE-SLE 15.3 This update for libu2f-host fixes the following issues: This update ships the u2f-host package (jsc#ECO-3687 bsc#1184648) Version 1.1.10 (released 2019-05-15) - Add new devices to udev rules. - Fix a potentially uninitialized buffer (CVE-2019-9578, bsc#1128140) Version 1.1.9 (released 2019-03-06) - Fix CID copying from the init response, which broke compatibility with some devices. Version 1.1.8 (released 2019-03-05) - Add udev rules - Drop 70-old-u2f.rules and use 70-u2f.rules for everything - Use a random nonce for setting up CID to prevent fingerprinting - CVE-2019-9578: Parse the response to init in a more stable way to prevent leakage of uninitialized stack memory back to the device (bsc#1128140). Version 1.1.7 (released 2019-01-08) - Fix for trusting length from device in device init. - Fix for buffer overflow when receiving data from device. (YSA-2019-01, CVE-2018-20340, bsc#1124781) - Add udev rules for some new devices. - Add udev rule for Feitian ePass FIDO - Add a timeout to the register and authenticate actions. libu2f-host-1.1.10-3.9.1.src.rpm libu2f-host-devel-1.1.10-3.9.1.x86_64.rpm libu2f-host-doc-1.1.10-3.9.1.x86_64.rpm libu2f-host0-1.1.10-3.9.1.x86_64.rpm u2f-host-1.1.10-3.9.1.x86_64.rpm libu2f-host-devel-1.1.10-3.9.1.s390x.rpm libu2f-host-doc-1.1.10-3.9.1.s390x.rpm libu2f-host0-1.1.10-3.9.1.s390x.rpm u2f-host-1.1.10-3.9.1.s390x.rpm libu2f-host-devel-1.1.10-3.9.1.ppc64le.rpm libu2f-host-doc-1.1.10-3.9.1.ppc64le.rpm libu2f-host0-1.1.10-3.9.1.ppc64le.rpm u2f-host-1.1.10-3.9.1.ppc64le.rpm libu2f-host-devel-1.1.10-3.9.1.aarch64.rpm libu2f-host-doc-1.1.10-3.9.1.aarch64.rpm libu2f-host0-1.1.10-3.9.1.aarch64.rpm u2f-host-1.1.10-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1951 important SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Check if dpkgnotify is executable (bsc#1186674) - Update to Salt release version 3002.2 (jsc#ECO-3212, jsc#SLE-18033, jsc#SLE-18028) - Drop support for Python2. Obsoletes `python2-salt` package (jsc#SLE-18028) - Fix issue parsing errors in ansiblegate state module - Prevent command injection in the snapper module (bsc#1185281, CVE-2021-31607) - transactional_update: detect recursion in the executor - Add subpackage `salt-transactional-update` (jsc#SLE-18033) - Remove duplicate directories python3-salt-3002.2-8.41.8.1.x86_64.rpm True salt-3002.2-8.41.8.1.src.rpm True salt-3002.2-8.41.8.1.x86_64.rpm True salt-api-3002.2-8.41.8.1.x86_64.rpm True salt-bash-completion-3002.2-8.41.8.1.noarch.rpm True salt-cloud-3002.2-8.41.8.1.x86_64.rpm True salt-doc-3002.2-8.41.8.1.x86_64.rpm True salt-fish-completion-3002.2-8.41.8.1.noarch.rpm True salt-master-3002.2-8.41.8.1.x86_64.rpm True salt-minion-3002.2-8.41.8.1.x86_64.rpm True salt-proxy-3002.2-8.41.8.1.x86_64.rpm True salt-ssh-3002.2-8.41.8.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.x86_64.rpm True salt-syndic-3002.2-8.41.8.1.x86_64.rpm True salt-transactional-update-3002.2-8.41.8.1.x86_64.rpm True salt-zsh-completion-3002.2-8.41.8.1.noarch.rpm True python3-salt-3002.2-8.41.8.1.s390x.rpm True salt-3002.2-8.41.8.1.s390x.rpm True salt-api-3002.2-8.41.8.1.s390x.rpm True salt-cloud-3002.2-8.41.8.1.s390x.rpm True salt-doc-3002.2-8.41.8.1.s390x.rpm True salt-master-3002.2-8.41.8.1.s390x.rpm True salt-minion-3002.2-8.41.8.1.s390x.rpm True salt-proxy-3002.2-8.41.8.1.s390x.rpm True salt-ssh-3002.2-8.41.8.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.s390x.rpm True salt-syndic-3002.2-8.41.8.1.s390x.rpm True salt-transactional-update-3002.2-8.41.8.1.s390x.rpm True python3-salt-3002.2-8.41.8.1.ppc64le.rpm True salt-3002.2-8.41.8.1.ppc64le.rpm True salt-api-3002.2-8.41.8.1.ppc64le.rpm True salt-cloud-3002.2-8.41.8.1.ppc64le.rpm True salt-doc-3002.2-8.41.8.1.ppc64le.rpm True salt-master-3002.2-8.41.8.1.ppc64le.rpm True salt-minion-3002.2-8.41.8.1.ppc64le.rpm True salt-proxy-3002.2-8.41.8.1.ppc64le.rpm True salt-ssh-3002.2-8.41.8.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.ppc64le.rpm True salt-syndic-3002.2-8.41.8.1.ppc64le.rpm True salt-transactional-update-3002.2-8.41.8.1.ppc64le.rpm True python3-salt-3002.2-8.41.8.1.aarch64.rpm True salt-3002.2-8.41.8.1.aarch64.rpm True salt-api-3002.2-8.41.8.1.aarch64.rpm True salt-cloud-3002.2-8.41.8.1.aarch64.rpm True salt-doc-3002.2-8.41.8.1.aarch64.rpm True salt-master-3002.2-8.41.8.1.aarch64.rpm True salt-minion-3002.2-8.41.8.1.aarch64.rpm True salt-proxy-3002.2-8.41.8.1.aarch64.rpm True salt-ssh-3002.2-8.41.8.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.aarch64.rpm True salt-syndic-3002.2-8.41.8.1.aarch64.rpm True salt-transactional-update-3002.2-8.41.8.1.aarch64.rpm True openSUSE-SLE-15.3-2021-1762 moderate SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2021-22898: Fixed curl TELNET stack contents disclosure (bsc#1186114). - Allow partial chain verification [jsc#SLE-17956] * Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA certificates are. This allows users to verify servers using the intermediate cert only, instead of needing the whole chain. * Set FLAG_TRUSTED_FIRST unconditionally. * Do not check partial chains with CRL check. curl-7.66.0-4.17.1.src.rpm curl-7.66.0-4.17.1.x86_64.rpm curl-mini-7.66.0-4.17.1.src.rpm curl-mini-7.66.0-4.17.1.x86_64.rpm libcurl-devel-32bit-7.66.0-4.17.1.x86_64.rpm libcurl-devel-7.66.0-4.17.1.x86_64.rpm libcurl-mini-devel-7.66.0-4.17.1.x86_64.rpm libcurl4-32bit-7.66.0-4.17.1.x86_64.rpm libcurl4-7.66.0-4.17.1.x86_64.rpm libcurl4-mini-7.66.0-4.17.1.x86_64.rpm curl-7.66.0-4.17.1.s390x.rpm curl-mini-7.66.0-4.17.1.s390x.rpm libcurl-devel-7.66.0-4.17.1.s390x.rpm libcurl-mini-devel-7.66.0-4.17.1.s390x.rpm libcurl4-7.66.0-4.17.1.s390x.rpm libcurl4-mini-7.66.0-4.17.1.s390x.rpm curl-7.66.0-4.17.1.ppc64le.rpm curl-mini-7.66.0-4.17.1.ppc64le.rpm libcurl-devel-7.66.0-4.17.1.ppc64le.rpm libcurl-mini-devel-7.66.0-4.17.1.ppc64le.rpm libcurl4-7.66.0-4.17.1.ppc64le.rpm libcurl4-mini-7.66.0-4.17.1.ppc64le.rpm curl-7.66.0-4.17.1.aarch64.rpm curl-mini-7.66.0-4.17.1.aarch64.rpm libcurl-devel-7.66.0-4.17.1.aarch64.rpm libcurl-mini-devel-7.66.0-4.17.1.aarch64.rpm libcurl4-7.66.0-4.17.1.aarch64.rpm libcurl4-mini-7.66.0-4.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-1876 important SUSE Updates openSUSE-SLE 15.3 This update for snakeyaml fixes the following issues: - Upgrade to 1.28 - CVE-2017-18640: The Alias feature allows entity expansion during a load operation (bsc#1159488, bsc#1186088) snakeyaml-1.28-3.5.1.noarch.rpm snakeyaml-1.28-3.5.1.src.rpm snakeyaml-javadoc-1.28-3.5.1.noarch.rpm openSUSE-SLE-15.3-2021-2173 moderate SUSE Updates openSUSE-SLE 15.3 This update for automake fixes the following issues: - Implement generated autoconf makefiles reproducible (bsc#1182604) - Add fix to avoid date variations in docs. (bsc#1047218, jsc#SLE-17848) - Avoid bashisms in test-driver script. (bsc#1185540) This update for pcre fixes the following issues: - Do not run profiling 'check' in parallel to make package build reproducible. (bsc#1040589) This update for brp-check-suse fixes the following issues: - Add fixes to support reproducible builds. (bsc#1186049) automake-1.15.1-4.10.2.noarch.rpm automake-1.15.1-4.10.2.src.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.src.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.x86_64.rpm libpcre1-32bit-8.41-6.4.2.x86_64.rpm libpcre1-8.41-6.4.2.x86_64.rpm libpcre16-0-32bit-8.41-6.4.2.x86_64.rpm libpcre16-0-8.41-6.4.2.x86_64.rpm libpcrecpp0-32bit-8.41-6.4.2.x86_64.rpm libpcrecpp0-8.41-6.4.2.x86_64.rpm libpcreposix0-32bit-8.41-6.4.2.x86_64.rpm libpcreposix0-8.41-6.4.2.x86_64.rpm pcre-8.41-6.4.2.src.rpm pcre-devel-8.41-6.4.2.x86_64.rpm pcre-devel-static-8.41-6.4.2.x86_64.rpm pcre-doc-8.41-6.4.2.noarch.rpm pcre-tools-8.41-6.4.2.x86_64.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.s390x.rpm libpcre1-8.41-6.4.2.s390x.rpm libpcre16-0-8.41-6.4.2.s390x.rpm libpcrecpp0-8.41-6.4.2.s390x.rpm libpcreposix0-8.41-6.4.2.s390x.rpm pcre-devel-8.41-6.4.2.s390x.rpm pcre-devel-static-8.41-6.4.2.s390x.rpm pcre-tools-8.41-6.4.2.s390x.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.ppc64le.rpm libpcre1-8.41-6.4.2.ppc64le.rpm libpcre16-0-8.41-6.4.2.ppc64le.rpm libpcrecpp0-8.41-6.4.2.ppc64le.rpm libpcreposix0-8.41-6.4.2.ppc64le.rpm pcre-devel-8.41-6.4.2.ppc64le.rpm pcre-devel-static-8.41-6.4.2.ppc64le.rpm pcre-tools-8.41-6.4.2.ppc64le.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.aarch64.rpm libpcre1-8.41-6.4.2.aarch64.rpm libpcre16-0-8.41-6.4.2.aarch64.rpm libpcrecpp0-8.41-6.4.2.aarch64.rpm libpcreposix0-8.41-6.4.2.aarch64.rpm pcre-devel-8.41-6.4.2.aarch64.rpm pcre-devel-static-8.41-6.4.2.aarch64.rpm pcre-tools-8.41-6.4.2.aarch64.rpm openSUSE-SLE-15.3-2021-1794 moderate SUSE Updates openSUSE-SLE 15.3 This update for radvd fixes the following issues: - replace '/var/run' with '/run' in '/usr/lib/tmpfiles.d/radvd.conf' (bsc#1185066) radvd-2.17-5.5.1.src.rpm radvd-2.17-5.5.1.x86_64.rpm radvd-2.17-5.5.1.s390x.rpm radvd-2.17-5.5.1.ppc64le.rpm radvd-2.17-5.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2103 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: POS_Image-Graphical7: - Use absolute path in bootloader service - Update install-local-bootloader.service for recent saltboot - Use linuxefi only on x86 POS_Image-JeOS7: - Use absolute path in bootloader service - Update install-local-bootloader.service for recent saltboot - Use linuxefi only on x86 golang-github-prometheus-prometheus: - Add tarball with vendor modules and web assets - Read formula data from exporters map - Add support for TLS targets - Upgrade to upstream version 2.26.0 + Changes * Alerting: Using Alertmanager v2 API by default. * Prometheus/Promtool: Binaries are now printing help and usage to stdout instead of stderr. * UI: Make the React UI default. * Remote write: The following metrics were removed/renamed in remote write. > prometheus_remote_storage_succeeded_samples_total was removed and prometheus_remote_storage_samples_total was introduced for all the samples attempted to send. > prometheus_remote_storage_sent_bytes_total was removed and replaced with prometheus_remote_storage_samples_bytes_total and prometheus_remote_storage_metadata_bytes_total. > prometheus_remote_storage_failed_samples_total -> prometheus_remote_storage_samples_failed_total. > prometheus_remote_storage_retried_samples_total -> prometheus_remote_storage_samples_retried_total. > prometheus_remote_storage_dropped_samples_total -> prometheus_remote_storage_samples_dropped_total. > prometheus_remote_storage_pending_samples -> prometheus_remote_storage_samples_pending. * Remote: Do not collect non-initialized timestamp metrics. + Features * Remote: Add support for AWS SigV4 auth method for remote_write. * PromQL: Allow negative offsets. Behind --enable-feature=promql-negative-offset flag. * UI: Add advanced auto-completion, syntax highlighting and linting to graph page query input. * Include a new `--enable-feature=` flag that enables experimental features. * Add TLS and basic authentication to HTTP endpoints. * promtool: Add check web-config subcommand to check web config files. * promtool: Add tsdb create-blocks-from openmetrics subcommand to backfill metrics data from an OpenMetrics file. + Enhancements * PromQL: Add last_over_time, sgn, clamp functions. * Scrape: Add support for specifying type of Authorization header credentials with Bearer by default. * Scrape: Add follow_redirects option to scrape configuration. * Remote: Allow retries on HTTP 429 response code for remote_write. * Remote: Allow configuring custom headers for remote_read. * UI: Hitting Enter now triggers new query. * UI: Better handling of long rule and names on the /rules and /targets pages. * UI: Add collapse/expand all button on the /targets page. * Add optional name property to testgroup for better test failure output. * Add warnings into React Panel on the Graph page. * TSDB: Increase the number of buckets for the compaction duration metric. * Remote: Allow passing along custom remote_write HTTP headers. * Mixins: Scope grafana configuration. * Kubernetes SD: Add endpoint labels metadata. * UI: Expose total number of label pairs in head in TSDB stats page. * TSDB: Reload blocks every minute, to detect new blocks and enforce retention more often. * Cache basic authentication results to significantly improve performance of HTTP endpoints. * HTTP API: Fast-fail queries with only empty matchers. * HTTP API: Support matchers for labels API. * promtool: Improve checking of URLs passed on the command line. * SD: Expose IPv6 as a label in EC2 SD. * SD: Reuse EC2 client, reducing frequency of requesting credentials. * TSDB: Add logging when compaction takes more than the block time range. * TSDB: Avoid unnecessary GC runs after compaction. * Remote write: Added a metric prometheus_remote_storage_max_samples_per_send for remote write. * TSDB: Make the snapshot directory name always the same length. * TSDB: Create a checkpoint only once at the end of all head compactions. * TSDB: Avoid Series API from hitting the chunks. * TSDB: Cache label name and last value when adding series during compactions making compactions faster. * PromQL: Improved performance of Hash method making queries a bit faster. * promtool: tsdb list now prints block sizes. * promtool: Calculate mint and maxt per test avoiding unnecessary calculations. * SD: Add filtering of services to Docker Swarm SD. + Bug fixes * API: Fix global URL when external address has no port. * Deprecate unused flag --alertmanager.timeout. mgr-cfg: - SPEC: Updated Python definitions for RHEL8 and quoted text comparisons. mgr-custom-info: - Update package version to 4.2.0 mgr-daemon: - Update translation strings - Update the translations from weblate - Added quotes around %{_vendor} token for the if statements in spec file. - Fix removal of mgr-deamon with selinux enabled (bsc#1177928) - Updating translations from weblate mgr-osad: - Change the log file permissions as expected by logrotate (bsc#1177884) - Change deprecated path /var/run into /run for systemd (bsc#1185178) - Python fixes - Removal of RHEL5 mgr-push: - Defined __python for python2. - Excluded RHEL8 for Python 2 build. mgr-virtualization: - Update package version to 4.2.0 python-hwdata: - Modified to build on RHEL8. rhnlib: - Update package version to 4.2.0 spacecmd: - Rename system migration to system transfer - Rename SP to product migration - Update translation strings - Add group_addconfigchannel and group_removeconfigchannel - Add group_listconfigchannels and configchannel_listgroups - Fix spacecmd compat with Python 3 - Deprecated "Software Crashes" feature - Document advanced package search on '--help' (bsc#1180583) - Fixed advanced search on 'package_listinstalledsystems' - Fixed duplicate results when using multiple search criteria (bsc#1180585) - Fixed "non-advanced" package search when using multiple package names (bsc#1180584) - Update translations - Fix: make spacecmd build on Debian - Add Service Pack migration operations (bsc#1173557) spacewalk-client-tools: - Update the translations from weblate - Drop the --noSSLServerURL option - Updated RHEL Python requirements. - Added quotes around %{_vendor}. spacewalk-koan: - Fix for spacewalk-koan test spacewalk-oscap: - Update package version to 4.2.0 spacewalk-remote-utils: - Update package version to 4.2.0 supportutils-plugin-susemanager-client: - Update package version to 4.2.0 suseRegisterInfo: - Add support for Amazon Linux 2 - Add support for Alibaba Cloud Linux 2 - Adapted for RHEL build. uyuni-common-libs: - Cleaning up unused Python 2 build leftovers. - Disabled debug package build. POS_Image-Graphical7-0.1.1620138994.d7f39a0-1.18.1.noarch.rpm POS_Image-Graphical7-0.1.1620138994.d7f39a0-1.18.1.src.rpm POS_Image-JeOS7-0.1.1620138994.d7f39a0-1.18.1.noarch.rpm POS_Image-JeOS7-0.1.1620138994.d7f39a0-1.18.1.src.rpm ansible-2.9.21-1.3.1.noarch.rpm ansible-2.9.21-1.3.1.src.rpm ansible-doc-2.9.21-1.3.1.noarch.rpm ansible-test-2.9.21-1.3.1.noarch.rpm memcached-1.5.6-4.7.1.src.rpm memcached-1.5.6-4.7.1.x86_64.rpm memcached-devel-1.5.6-4.7.1.x86_64.rpm mgr-cfg-4.2.2-1.15.1.noarch.rpm mgr-cfg-4.2.2-1.15.1.src.rpm mgr-cfg-actions-4.2.2-1.15.1.noarch.rpm mgr-cfg-client-4.2.2-1.15.1.noarch.rpm mgr-cfg-management-4.2.2-1.15.1.noarch.rpm mgr-custom-info-4.2.1-1.9.1.noarch.rpm mgr-custom-info-4.2.1-1.9.1.src.rpm mgr-daemon-4.2.7-1.26.1.noarch.rpm mgr-daemon-4.2.7-1.26.1.src.rpm mgr-osa-dispatcher-4.2.5-1.27.1.noarch.rpm mgr-osad-4.2.5-1.27.1.noarch.rpm mgr-osad-4.2.5-1.27.1.src.rpm mgr-push-4.2.2-1.9.1.noarch.rpm mgr-push-4.2.2-1.9.1.src.rpm mgr-virtualization-4.2.1-1.17.1.src.rpm mgr-virtualization-host-4.2.1-1.17.1.noarch.rpm python-hwdata-2.3.5-3.3.1.src.rpm python-python-memcached-1.59-3.5.1.src.rpm python-straight-plugin-1.5.0-1.3.1.src.rpm python2-hwdata-2.3.5-3.3.1.noarch.rpm python2-mgr-cfg-4.2.2-1.15.1.noarch.rpm python2-mgr-cfg-actions-4.2.2-1.15.1.noarch.rpm python2-mgr-cfg-client-4.2.2-1.15.1.noarch.rpm python2-mgr-cfg-management-4.2.2-1.15.1.noarch.rpm python2-mgr-osa-common-4.2.5-1.27.1.noarch.rpm python2-mgr-osa-dispatcher-4.2.5-1.27.1.noarch.rpm python2-mgr-osad-4.2.5-1.27.1.noarch.rpm python2-mgr-push-4.2.2-1.9.1.noarch.rpm python2-mgr-virtualization-common-4.2.1-1.17.1.noarch.rpm python2-mgr-virtualization-host-4.2.1-1.17.1.noarch.rpm python2-python-memcached-1.59-3.5.1.noarch.rpm python2-rhnlib-4.2.3-3.25.1.noarch.rpm python2-spacewalk-check-4.2.10-3.41.3.noarch.rpm python2-spacewalk-client-setup-4.2.10-3.41.3.noarch.rpm python2-spacewalk-client-tools-4.2.10-3.41.3.noarch.rpm python2-spacewalk-koan-4.2.3-3.18.1.noarch.rpm python2-spacewalk-oscap-4.2.1-3.9.1.noarch.rpm python2-straight-plugin-1.5.0-1.3.1.noarch.rpm python2-suseRegisterInfo-4.2.3-3.12.1.noarch.rpm python2-uyuni-common-libs-4.2.3-1.12.1.x86_64.rpm python3-hwdata-2.3.5-3.3.1.noarch.rpm python3-mgr-cfg-4.2.2-1.15.1.noarch.rpm python3-mgr-cfg-actions-4.2.2-1.15.1.noarch.rpm python3-mgr-cfg-client-4.2.2-1.15.1.noarch.rpm python3-mgr-cfg-management-4.2.2-1.15.1.noarch.rpm python3-mgr-osa-common-4.2.5-1.27.1.noarch.rpm python3-mgr-osa-dispatcher-4.2.5-1.27.1.noarch.rpm python3-mgr-osad-4.2.5-1.27.1.noarch.rpm python3-mgr-push-4.2.2-1.9.1.noarch.rpm python3-mgr-virtualization-common-4.2.1-1.17.1.noarch.rpm python3-mgr-virtualization-host-4.2.1-1.17.1.noarch.rpm python3-python-memcached-1.59-3.5.1.noarch.rpm python3-rhnlib-4.2.3-3.25.1.noarch.rpm python3-spacewalk-check-4.2.10-3.41.3.noarch.rpm python3-spacewalk-client-setup-4.2.10-3.41.3.noarch.rpm python3-spacewalk-client-tools-4.2.10-3.41.3.noarch.rpm python3-spacewalk-koan-4.2.3-3.18.1.noarch.rpm python3-spacewalk-oscap-4.2.1-3.9.1.noarch.rpm python3-straight-plugin-1.5.0-1.3.1.noarch.rpm python3-suseRegisterInfo-4.2.3-3.12.1.noarch.rpm python3-uyuni-common-libs-4.2.3-1.12.1.x86_64.rpm rhnlib-4.2.3-3.25.1.src.rpm spacecmd-4.2.8-3.59.1.noarch.rpm spacecmd-4.2.8-3.59.1.src.rpm spacewalk-check-4.2.10-3.41.3.noarch.rpm spacewalk-client-setup-4.2.10-3.41.3.noarch.rpm spacewalk-client-tools-4.2.10-3.41.3.noarch.rpm spacewalk-client-tools-4.2.10-3.41.3.src.rpm spacewalk-koan-4.2.3-3.18.1.noarch.rpm spacewalk-koan-4.2.3-3.18.1.src.rpm spacewalk-oscap-4.2.1-3.9.1.noarch.rpm spacewalk-oscap-4.2.1-3.9.1.src.rpm spacewalk-remote-utils-4.2.1-3.15.1.noarch.rpm spacewalk-remote-utils-4.2.1-3.15.1.src.rpm supportutils-plugin-susemanager-client-4.2.2-3.15.1.noarch.rpm supportutils-plugin-susemanager-client-4.2.2-3.15.1.src.rpm suseRegisterInfo-4.2.3-3.12.1.noarch.rpm suseRegisterInfo-4.2.3-3.12.1.src.rpm uyuni-common-libs-4.2.3-1.12.1.src.rpm memcached-1.5.6-4.7.1.s390x.rpm memcached-devel-1.5.6-4.7.1.s390x.rpm python2-uyuni-common-libs-4.2.3-1.12.1.s390x.rpm python3-uyuni-common-libs-4.2.3-1.12.1.s390x.rpm memcached-1.5.6-4.7.1.ppc64le.rpm memcached-devel-1.5.6-4.7.1.ppc64le.rpm python2-uyuni-common-libs-4.2.3-1.12.1.ppc64le.rpm python3-uyuni-common-libs-4.2.3-1.12.1.ppc64le.rpm memcached-1.5.6-4.7.1.aarch64.rpm memcached-devel-1.5.6-4.7.1.aarch64.rpm python2-uyuni-common-libs-4.2.3-1.12.1.aarch64.rpm python3-uyuni-common-libs-4.2.3-1.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1800 moderate SUSE Updates openSUSE-SLE 15.3 This update for mdadm fixes the following issues: - Fixed an issue when md device broke while adding another disk (bsc#1181619) - imsm: Addded nvme multipath support (bsc#1175758) mdadm-4.1-24.3.1.src.rpm mdadm-4.1-24.3.1.x86_64.rpm mdadm-4.1-24.3.1.s390x.rpm mdadm-4.1-24.3.1.ppc64le.rpm mdadm-4.1-24.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1666 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openj9 fixes the following issues: - Update to OpenJDK 8u292 build 10 with OpenJ9 0.26.0 virtual machine. - CVE-2021-2161: Fixed incomplete enforcement of JAR signing disabled algorithms (bsc#1185055). java-1_8_0-openj9-1.8.0.292-3.14.1.src.rpm java-1_8_0-openj9-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-accessibility-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-demo-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-devel-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-headless-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-javadoc-1.8.0.292-3.14.1.noarch.rpm java-1_8_0-openj9-src-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-accessibility-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-demo-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-devel-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-headless-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-src-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-accessibility-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-demo-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-devel-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-headless-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-src-1.8.0.292-3.14.1.ppc64le.rpm openSUSE-SLE-15.3-2021-1795 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-migration fixes the following issues: - Show the new base product license in online migration. (bsc#1185808) yast2-migration-4.2.5-3.3.1.noarch.rpm yast2-migration-4.2.5-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1920 moderate SUSE Updates openSUSE-SLE 15.3 This update for nvme-cli fixes the following issues: - Add KATO fixes for NVMEoF (bsc#1182591) - Lookup existing persistent controllers (bsc#1179825) nvme-cli-1.13-3.3.1.src.rpm nvme-cli-1.13-3.3.1.x86_64.rpm nvme-cli-regress-script-1.13-3.3.1.x86_64.rpm nvme-cli-1.13-3.3.1.s390x.rpm nvme-cli-regress-script-1.13-3.3.1.s390x.rpm nvme-cli-1.13-3.3.1.ppc64le.rpm nvme-cli-regress-script-1.13-3.3.1.ppc64le.rpm nvme-cli-1.13-3.3.1.aarch64.rpm nvme-cli-regress-script-1.13-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1925 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-network fixes the following issues: - Fixed an issue where the primary network interface became the secondary one (bsc#1185967) - Fixes an issue where ifroute files were lost (bsc#1186082) yast2-network-4.3.69-3.5.1.noarch.rpm yast2-network-4.3.69-3.5.1.src.rpm openSUSE-SLE-15.3-2021-1989 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: - Update to version jdk8u292 (icedtea 3.19.0). - CVE-2021-2161: Fixed incomplete enforcement of JAR signing disabled algorithms (bsc#1185055). java-1_8_0-openjdk-1.8.0.292-3.52.1.src.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.292-3.52.1.noarch.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.aarch64.rpm openSUSE-SLE-15.3-2021-1825 important SUSE Updates openSUSE-SLE 15.3 This update for lz4 fixes the following issues: - CVE-2021-3520: Fixed memory corruption due to an integer overflow bug caused by memmove argument (bsc#1185438). liblz4-1-1.9.2-3.3.1.x86_64.rpm liblz4-1-32bit-1.9.2-3.3.1.x86_64.rpm liblz4-devel-1.9.2-3.3.1.x86_64.rpm lz4-1.9.2-3.3.1.src.rpm lz4-1.9.2-3.3.1.x86_64.rpm liblz4-1-1.9.2-3.3.1.s390x.rpm liblz4-devel-1.9.2-3.3.1.s390x.rpm lz4-1.9.2-3.3.1.s390x.rpm liblz4-1-1.9.2-3.3.1.ppc64le.rpm liblz4-devel-1.9.2-3.3.1.ppc64le.rpm lz4-1.9.2-3.3.1.ppc64le.rpm liblz4-1-1.9.2-3.3.1.aarch64.rpm liblz4-devel-1.9.2-3.3.1.aarch64.rpm lz4-1.9.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1970 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: - Upgrade to version 10.17: - CVE-2021-32027: Fixed integer overflows in array subscripting calculations (bsc#1185924). - CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists (bsc#1185925). - Don't use %_stop_on_removal, because it was meant to be private and got removed from openSUSE. %_restart_on_update is also private, but still supported and needed for now (bsc#1183168). postgresql10-10.17-8.35.1.src.rpm postgresql10-10.17-8.35.1.x86_64.rpm postgresql10-contrib-10.17-8.35.1.x86_64.rpm postgresql10-devel-10.17-8.35.1.x86_64.rpm postgresql10-docs-10.17-8.35.1.noarch.rpm postgresql10-plperl-10.17-8.35.1.x86_64.rpm postgresql10-plpython-10.17-8.35.1.x86_64.rpm postgresql10-pltcl-10.17-8.35.1.x86_64.rpm postgresql10-server-10.17-8.35.1.x86_64.rpm postgresql10-test-10.17-8.35.1.x86_64.rpm postgresql10-10.17-8.35.1.s390x.rpm postgresql10-contrib-10.17-8.35.1.s390x.rpm postgresql10-devel-10.17-8.35.1.s390x.rpm postgresql10-plperl-10.17-8.35.1.s390x.rpm postgresql10-plpython-10.17-8.35.1.s390x.rpm postgresql10-pltcl-10.17-8.35.1.s390x.rpm postgresql10-server-10.17-8.35.1.s390x.rpm postgresql10-test-10.17-8.35.1.s390x.rpm postgresql10-10.17-8.35.1.ppc64le.rpm postgresql10-contrib-10.17-8.35.1.ppc64le.rpm postgresql10-devel-10.17-8.35.1.ppc64le.rpm postgresql10-plperl-10.17-8.35.1.ppc64le.rpm postgresql10-plpython-10.17-8.35.1.ppc64le.rpm postgresql10-pltcl-10.17-8.35.1.ppc64le.rpm postgresql10-server-10.17-8.35.1.ppc64le.rpm postgresql10-test-10.17-8.35.1.ppc64le.rpm postgresql10-10.17-8.35.1.aarch64.rpm postgresql10-contrib-10.17-8.35.1.aarch64.rpm postgresql10-devel-10.17-8.35.1.aarch64.rpm postgresql10-plperl-10.17-8.35.1.aarch64.rpm postgresql10-plpython-10.17-8.35.1.aarch64.rpm postgresql10-pltcl-10.17-8.35.1.aarch64.rpm postgresql10-server-10.17-8.35.1.aarch64.rpm postgresql10-test-10.17-8.35.1.aarch64.rpm openSUSE-SLE-15.3-2021-2147 moderate SUSE Updates openSUSE-SLE 15.3 This update for freeradius-server fixes the following issues: - Fixed plaintext password entries in logfiles (bsc#1184016). freeradius-server-3.0.21-3.9.1.src.rpm freeradius-server-3.0.21-3.9.1.x86_64.rpm freeradius-server-devel-3.0.21-3.9.1.x86_64.rpm freeradius-server-doc-3.0.21-3.9.1.x86_64.rpm freeradius-server-krb5-3.0.21-3.9.1.x86_64.rpm freeradius-server-ldap-3.0.21-3.9.1.x86_64.rpm freeradius-server-libs-3.0.21-3.9.1.x86_64.rpm freeradius-server-mysql-3.0.21-3.9.1.x86_64.rpm freeradius-server-perl-3.0.21-3.9.1.x86_64.rpm freeradius-server-postgresql-3.0.21-3.9.1.x86_64.rpm freeradius-server-python3-3.0.21-3.9.1.x86_64.rpm freeradius-server-sqlite-3.0.21-3.9.1.x86_64.rpm freeradius-server-utils-3.0.21-3.9.1.x86_64.rpm freeradius-server-3.0.21-3.9.1.s390x.rpm freeradius-server-devel-3.0.21-3.9.1.s390x.rpm freeradius-server-doc-3.0.21-3.9.1.s390x.rpm freeradius-server-krb5-3.0.21-3.9.1.s390x.rpm freeradius-server-ldap-3.0.21-3.9.1.s390x.rpm freeradius-server-libs-3.0.21-3.9.1.s390x.rpm freeradius-server-mysql-3.0.21-3.9.1.s390x.rpm freeradius-server-perl-3.0.21-3.9.1.s390x.rpm freeradius-server-postgresql-3.0.21-3.9.1.s390x.rpm freeradius-server-python3-3.0.21-3.9.1.s390x.rpm freeradius-server-sqlite-3.0.21-3.9.1.s390x.rpm freeradius-server-utils-3.0.21-3.9.1.s390x.rpm freeradius-server-3.0.21-3.9.1.ppc64le.rpm freeradius-server-devel-3.0.21-3.9.1.ppc64le.rpm freeradius-server-doc-3.0.21-3.9.1.ppc64le.rpm freeradius-server-krb5-3.0.21-3.9.1.ppc64le.rpm freeradius-server-ldap-3.0.21-3.9.1.ppc64le.rpm freeradius-server-libs-3.0.21-3.9.1.ppc64le.rpm freeradius-server-mysql-3.0.21-3.9.1.ppc64le.rpm freeradius-server-perl-3.0.21-3.9.1.ppc64le.rpm freeradius-server-postgresql-3.0.21-3.9.1.ppc64le.rpm freeradius-server-python3-3.0.21-3.9.1.ppc64le.rpm freeradius-server-sqlite-3.0.21-3.9.1.ppc64le.rpm freeradius-server-utils-3.0.21-3.9.1.ppc64le.rpm freeradius-server-3.0.21-3.9.1.aarch64.rpm freeradius-server-devel-3.0.21-3.9.1.aarch64.rpm freeradius-server-doc-3.0.21-3.9.1.aarch64.rpm freeradius-server-krb5-3.0.21-3.9.1.aarch64.rpm freeradius-server-ldap-3.0.21-3.9.1.aarch64.rpm freeradius-server-libs-3.0.21-3.9.1.aarch64.rpm freeradius-server-mysql-3.0.21-3.9.1.aarch64.rpm freeradius-server-perl-3.0.21-3.9.1.aarch64.rpm freeradius-server-postgresql-3.0.21-3.9.1.aarch64.rpm freeradius-server-python3-3.0.21-3.9.1.aarch64.rpm freeradius-server-sqlite-3.0.21-3.9.1.aarch64.rpm freeradius-server-utils-3.0.21-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1860 critical SUSE Updates openSUSE-SLE 15.3 This update for libwebp fixes the following issues: - CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685). - CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691). - CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674). - CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652). - CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690). - CVE-2020-36328: Fixed heap-based buffer overflow in WebPDecode*Into functions (bsc#1185688). - CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654). - CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686). - CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673). - CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247). libwebp-0.5.0-3.5.1.src.rpm libwebp6-0.5.0-3.5.1.x86_64.rpm libwebp6-32bit-0.5.0-3.5.1.x86_64.rpm libwebpdecoder2-0.5.0-3.5.1.x86_64.rpm libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64.rpm libwebpextras0-0.5.0-3.5.1.x86_64.rpm libwebpextras0-32bit-0.5.0-3.5.1.x86_64.rpm libwebpmux2-0.5.0-3.5.1.x86_64.rpm libwebpmux2-32bit-0.5.0-3.5.1.x86_64.rpm libwebp6-0.5.0-3.5.1.s390x.rpm libwebpdecoder2-0.5.0-3.5.1.s390x.rpm libwebpextras0-0.5.0-3.5.1.s390x.rpm libwebpmux2-0.5.0-3.5.1.s390x.rpm libwebp6-0.5.0-3.5.1.ppc64le.rpm libwebpdecoder2-0.5.0-3.5.1.ppc64le.rpm libwebpextras0-0.5.0-3.5.1.ppc64le.rpm libwebpmux2-0.5.0-3.5.1.ppc64le.rpm libwebp6-0.5.0-3.5.1.aarch64.rpm libwebpdecoder2-0.5.0-3.5.1.aarch64.rpm libwebpextras0-0.5.0-3.5.1.aarch64.rpm libwebpmux2-0.5.0-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1854 moderate SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 78.10.2 - CVE-2021-29957: Fixed partial protection of inline OpenPGP message not indicated (bsc#1186198). - CVE-2021-29956: Fixed Thunderbird stored OpenPGP secret keys without master password protection (bsc#1186199). - CVE-2021-29951: Fixed Thunderbird Maintenance Service could have been started or stopped by domain users (bsc#1185633). - CVE-2021-29950: Fixed logic issue potentially leaves key material unlocked (bsc#1185086). MozillaThunderbird-78.10.2-8.27.1.src.rpm MozillaThunderbird-78.10.2-8.27.1.x86_64.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.x86_64.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.x86_64.rpm MozillaThunderbird-78.10.2-8.27.1.s390x.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.s390x.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.s390x.rpm MozillaThunderbird-78.10.2-8.27.1.ppc64le.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.ppc64le.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.ppc64le.rpm MozillaThunderbird-78.10.2-8.27.1.aarch64.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.aarch64.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.aarch64.rpm openSUSE-SLE-15.3-2021-1982 moderate SUSE Updates openSUSE-SLE 15.3 This update for rmt-server fixes the following issues: - Installer update repositories do now get enabled when enabling a product (bsc#1184814) - It does now set the 'cloud_povider' info when registering the instance rmt-server-2.6.9-3.3.1.src.rpm rmt-server-2.6.9-3.3.1.x86_64.rpm rmt-server-config-2.6.9-3.3.1.x86_64.rpm rmt-server-pubcloud-2.6.9-3.3.1.x86_64.rpm rmt-server-2.6.9-3.3.1.s390x.rpm rmt-server-config-2.6.9-3.3.1.s390x.rpm rmt-server-pubcloud-2.6.9-3.3.1.s390x.rpm rmt-server-2.6.9-3.3.1.ppc64le.rpm rmt-server-config-2.6.9-3.3.1.ppc64le.rpm rmt-server-pubcloud-2.6.9-3.3.1.ppc64le.rpm rmt-server-2.6.9-3.3.1.aarch64.rpm rmt-server-config-2.6.9-3.3.1.aarch64.rpm rmt-server-pubcloud-2.6.9-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1934 moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - xwayland: Fix invisible window produced by Xwayland. (bsc#1186092, bsc#1184906) xorg-x11-server-1.20.3-22.5.33.1.src.rpm xorg-x11-server-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-source-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-source-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-source-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-source-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-1772 moderate SUSE Updates openSUSE-SLE 15.3 This update for motif fixes the following issues: - Add patches to prevent the third party application crashing. (bsc#1184184) libMrm4-2.3.4-3.3.1.x86_64.rpm libMrm4-32bit-2.3.4-3.3.1.x86_64.rpm libUil4-2.3.4-3.3.1.x86_64.rpm libUil4-32bit-2.3.4-3.3.1.x86_64.rpm libXm4-2.3.4-3.3.1.x86_64.rpm libXm4-32bit-2.3.4-3.3.1.x86_64.rpm motif-2.3.4-3.3.1.src.rpm motif-2.3.4-3.3.1.x86_64.rpm motif-devel-2.3.4-3.3.1.x86_64.rpm motif-devel-32bit-2.3.4-3.3.1.x86_64.rpm libMrm4-2.3.4-3.3.1.s390x.rpm libUil4-2.3.4-3.3.1.s390x.rpm libXm4-2.3.4-3.3.1.s390x.rpm motif-2.3.4-3.3.1.s390x.rpm motif-devel-2.3.4-3.3.1.s390x.rpm libMrm4-2.3.4-3.3.1.ppc64le.rpm libUil4-2.3.4-3.3.1.ppc64le.rpm libXm4-2.3.4-3.3.1.ppc64le.rpm motif-2.3.4-3.3.1.ppc64le.rpm motif-devel-2.3.4-3.3.1.ppc64le.rpm libMrm4-2.3.4-3.3.1.aarch64.rpm libUil4-2.3.4-3.3.1.aarch64.rpm libXm4-2.3.4-3.3.1.aarch64.rpm motif-2.3.4-3.3.1.aarch64.rpm motif-devel-2.3.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1994 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: Upgrade to version 12.7: - CVE-2021-32027: Fixed integer overflows in array subscripting calculations (bsc#1185924). - CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists (bsc#1185925). - CVE-2021-32029: Fixed possibly-incorrect computation of UPDATE ... RETURNING outputs for joined cross-partition updates (bsc#1185926). - Don't use %_stop_on_removal, because it was meant to be private and got removed from openSUSE. %_restart_on_update is also private, but still supported and needed for now (bsc#1183168). - Re-enable build of the llvmjit subpackage on SLE, but it will only be delivered on PackageHub for now (bsc#1183118). - Disable icu for PostgreSQL 10 (and older) on TW (bsc#1179945). postgresql12-12.7-8.20.1.src.rpm postgresql12-12.7-8.20.1.x86_64.rpm postgresql12-contrib-12.7-8.20.1.x86_64.rpm postgresql12-devel-12.7-8.20.1.x86_64.rpm postgresql12-docs-12.7-8.20.1.noarch.rpm postgresql12-llvmjit-12.7-8.20.1.x86_64.rpm postgresql12-plperl-12.7-8.20.1.x86_64.rpm postgresql12-plpython-12.7-8.20.1.x86_64.rpm postgresql12-pltcl-12.7-8.20.1.x86_64.rpm postgresql12-server-12.7-8.20.1.x86_64.rpm postgresql12-server-devel-12.7-8.20.1.x86_64.rpm postgresql12-test-12.7-8.20.1.x86_64.rpm postgresql12-12.7-8.20.1.s390x.rpm postgresql12-contrib-12.7-8.20.1.s390x.rpm postgresql12-devel-12.7-8.20.1.s390x.rpm postgresql12-llvmjit-12.7-8.20.1.s390x.rpm postgresql12-plperl-12.7-8.20.1.s390x.rpm postgresql12-plpython-12.7-8.20.1.s390x.rpm postgresql12-pltcl-12.7-8.20.1.s390x.rpm postgresql12-server-12.7-8.20.1.s390x.rpm postgresql12-server-devel-12.7-8.20.1.s390x.rpm postgresql12-test-12.7-8.20.1.s390x.rpm postgresql12-12.7-8.20.1.ppc64le.rpm postgresql12-contrib-12.7-8.20.1.ppc64le.rpm postgresql12-devel-12.7-8.20.1.ppc64le.rpm postgresql12-llvmjit-12.7-8.20.1.ppc64le.rpm postgresql12-plperl-12.7-8.20.1.ppc64le.rpm postgresql12-plpython-12.7-8.20.1.ppc64le.rpm postgresql12-pltcl-12.7-8.20.1.ppc64le.rpm postgresql12-server-12.7-8.20.1.ppc64le.rpm postgresql12-server-devel-12.7-8.20.1.ppc64le.rpm postgresql12-test-12.7-8.20.1.ppc64le.rpm postgresql12-12.7-8.20.1.aarch64.rpm postgresql12-contrib-12.7-8.20.1.aarch64.rpm postgresql12-devel-12.7-8.20.1.aarch64.rpm postgresql12-llvmjit-12.7-8.20.1.aarch64.rpm postgresql12-plperl-12.7-8.20.1.aarch64.rpm postgresql12-plpython-12.7-8.20.1.aarch64.rpm postgresql12-pltcl-12.7-8.20.1.aarch64.rpm postgresql12-server-12.7-8.20.1.aarch64.rpm postgresql12-server-devel-12.7-8.20.1.aarch64.rpm postgresql12-test-12.7-8.20.1.aarch64.rpm openSUSE-SLE-15.3-2021-1785 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - Upgrade to version 13.3: - CVE-2021-32027: Fixed integer overflows in array subscripting calculations (bsc#1185924). - CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists (bsc#1185925). - CVE-2021-32029: Fixed possibly-incorrect computation of UPDATE ... RETURNING outputs for joined cross-partition updates (bsc#1185926). - Don't use %_stop_on_removal, because it was meant to be private and got removed from openSUSE. %_restart_on_update is also private, but still supported and needed for now (bsc#1183168). - Re-enable build of the llvmjit subpackage on SLE, but it will only be delivered on PackageHub for now (bsc#1183118). - Disable icu for PostgreSQL 10 (and older) on TW (bsc#1179945). postgresql13-13.3-5.10.1.src.rpm postgresql13-13.3-5.10.1.x86_64.rpm postgresql13-contrib-13.3-5.10.1.x86_64.rpm postgresql13-devel-13.3-5.10.1.x86_64.rpm postgresql13-docs-13.3-5.10.1.noarch.rpm postgresql13-llvmjit-13.3-5.10.1.x86_64.rpm postgresql13-plperl-13.3-5.10.1.x86_64.rpm postgresql13-plpython-13.3-5.10.1.x86_64.rpm postgresql13-pltcl-13.3-5.10.1.x86_64.rpm postgresql13-server-13.3-5.10.1.x86_64.rpm postgresql13-server-devel-13.3-5.10.1.x86_64.rpm postgresql13-test-13.3-5.10.1.x86_64.rpm postgresql13-13.3-5.10.1.s390x.rpm postgresql13-contrib-13.3-5.10.1.s390x.rpm postgresql13-devel-13.3-5.10.1.s390x.rpm postgresql13-llvmjit-13.3-5.10.1.s390x.rpm postgresql13-plperl-13.3-5.10.1.s390x.rpm postgresql13-plpython-13.3-5.10.1.s390x.rpm postgresql13-pltcl-13.3-5.10.1.s390x.rpm postgresql13-server-13.3-5.10.1.s390x.rpm postgresql13-server-devel-13.3-5.10.1.s390x.rpm postgresql13-test-13.3-5.10.1.s390x.rpm postgresql13-13.3-5.10.1.ppc64le.rpm postgresql13-contrib-13.3-5.10.1.ppc64le.rpm postgresql13-devel-13.3-5.10.1.ppc64le.rpm postgresql13-llvmjit-13.3-5.10.1.ppc64le.rpm postgresql13-plperl-13.3-5.10.1.ppc64le.rpm postgresql13-plpython-13.3-5.10.1.ppc64le.rpm postgresql13-pltcl-13.3-5.10.1.ppc64le.rpm postgresql13-server-13.3-5.10.1.ppc64le.rpm postgresql13-server-devel-13.3-5.10.1.ppc64le.rpm postgresql13-test-13.3-5.10.1.ppc64le.rpm postgresql13-13.3-5.10.1.aarch64.rpm postgresql13-contrib-13.3-5.10.1.aarch64.rpm postgresql13-devel-13.3-5.10.1.aarch64.rpm postgresql13-llvmjit-13.3-5.10.1.aarch64.rpm postgresql13-plperl-13.3-5.10.1.aarch64.rpm postgresql13-plpython-13.3-5.10.1.aarch64.rpm postgresql13-pltcl-13.3-5.10.1.aarch64.rpm postgresql13-server-13.3-5.10.1.aarch64.rpm postgresql13-server-devel-13.3-5.10.1.aarch64.rpm postgresql13-test-13.3-5.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-1819 important SUSE Updates openSUSE-SLE 15.3 This update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly fixes the following issues: gstreamer was updated to version 1.16.3 (bsc#1181255): - delay creation of threadpools - bin: Fix `deep-element-removed` log message - buffer: fix meta sequence number fallback on rpi - bufferlist: foreach: always remove as parent if buffer is changed - bus: Make setting/replacing/clearing the sync handler thread-safe - elementfactory: Fix missing features in case a feature moves to another filename - element: When removing a ghost pad also unset its target - meta: intern registered impl string - registry: Use a toolchain-specific registry file on Windows - systemclock: Invalid internal time calculation causes non-increasing clock time on Windows - value: don't write to `const char *` - value: Fix segfault comparing empty GValueArrays - Revert floating enforcing - aggregator: fix iteration direction in skip_buffers - sparsefile: fix possible crash when seeking - baseparse: cache fix - baseparse: fix memory leak when subclass skips whole input buffer - baseparse: Set the private duration before posting a duration-changed message - basetransform: allow not passthrough if generate_output is implemented - identity: Fix a minor leak using meta_str - queue: protect against lost wakeups for iterm_del condition - queue2: Avoid races when posting buffering messages - queue2: Fix missing/dropped buffering messages at startup - identity: Unblock condition variable on FLUSH_START - check: Use `g_thread_yield()` instead of `g_usleep(1)` - tests: use cpu_family for arch checks - gst-launch: Follow up to missing `s/g_print/gst_print/g` - gst-inspect: Add define guard for `g_log_writer_supports_color()` - gst-launch: go back down to `GST_STATE_NULL` in one step. - device-monitor: list hidden providers before listing devices - autotools build fixes for GNU make 4.3 gstreamer-plugins-good was updated to version 1.16.3 (bsc#1181255): - deinterlace: on-the-fly renegotiation - flacenc: Pass audio info from set_format() to query_total_samples() explicitly - flacparse: fix broken reordering of flac metadata - jack: Use jack_free(3) to release ports - jpegdec: check buffer size before dereferencing - pulse: fix discovery of newly added devices - qtdemux fuzzing fixes - qtdemux: Add 'mp3 ' fourcc that VLC seems to produce now - qtdemux: Specify REDIRECT information in error message - rtpbin: fix shutdown crash in rtpbin - rtpsession: rename RTCP thread - rtpvp8pay, rtpvp9pay: fix caps leak in set_caps() - rtpjpegdepay: outputs framed jpeg - rtpjitterbuffer: Properly free internal packets queue in finalize() - rtspsrc: Don't return TRUE for unhandled query - rtspsrc: Avoid stack overflow recursing waiting for response - rtspsrc: Use the correct type for storing the max-rtcp-rtp-time-diff property - rtspsrc: Error out when failling to receive message response - rtspsrc: Fix for segmentation fault when handling set/get_parameter requests - speex: Fix crash on Windows caused by cross-CRT issue - speexdec: Crash when stopping the pipeline - splitmuxsrc: Properly stop the loop if no part reader is present - use gst_element_class_set_metadata when passing dynamic strings - v4l2videodec: Increase internal bitstream pool size - v4l2: fix crash when handling unsupported video format - videocrop: allow properties to be animated by GstController - videomixer: Don't leak peer caps - vp8enc/vp8enc: set 1 for the default value of VP8E_SET_STATIC_THRESHOLD - wavenc: Fix writing of the channel mask with >2 channels gstreamer-plugins-bad was updated to version 1.16.3 (bsc#1181255): - amcvideodec: fix sync meta copying not taking a reference - audiobuffersplit: Perform discont tracking on running time - audiobuffersplit: Specify in the template caps that only interleaved audio is supported - audiobuffersplit: Unset DISCONT flag if not discontinuous - autoconvert: Fix lock-less exchange or free condition - autoconvert: fix compiler warnings with g_atomic on recent GLib versions - avfvideosrc: element requests camera permissions even with capture-screen property is true - codecparsers: h264parser: guard against ref_pic_markings overflow - dtlsconnection: Avoid segmentation fault when no srtp capabilities are negotiated - dtls/connection: fix EOF handling with openssl 1.1.1e - fdkaacdec: add support for mpegversion=2 - hls: Check nettle version to ensure AES128 support - ipcpipeline: Rework compiler checks - interlace: Increment phase_index before checking if we're at the end of the phase - lv2: Make it build with -fno-common - h264parser: Do not allocate too large size of memory for registered user data SEI - ladspa: fix unbounded integer properties - modplug: avoid division by zero - msdkdec: Fix GstMsdkContext leak - msdkenc: fix leaks on windows - musepackdec: Don't fail all queries if no sample rate is known yet - openslessink: Allow openslessink to handle 48kHz streams. - opencv: allow compilation against 4.2.x - proxysink: event_function needs to handle the event when it is disconnecetd from proxysrc - vulkan: Drop use of VK_RESULT_BEGIN_RANGE - wasapi: added missing lock release in case of error in gst_wasapi_xxx_reset - wasapi: Fix possible deadlock while downwards state change - waylandsink: Clear window when pipeline is stopped - webrtc: Support non-trickle ICE candidates in the SDP - webrtc: Unmap all non-binary buffers received via the datachannel - meson: build with neon 0.31 - Drop upstream fixed patch: gstreamer-h264parser-fix-overflow.patch - h264parser: guard against ref_pic_markings overflow (bsc#1181255 CVE-2021-3185) - Disable the kate/libtiger plugin. Kate streams for karaoke are not used anymore, and the source tarball for libtiger is no longer available upstream. (jsc#SLE-13843) gstreamer-plugins-ugly was updated to version 1.16.3 (bsc#1181255): + x264enc: corrected em_data value in CEA-708 CC SEI message gstreamer-plugins-base was updated to version 1.16.3 (bsc#1181255): - audioaggregator: Check all downstream allowed caps structures if they support the upstream rate - audioaggregator: Fix negotiation with downstream if there is no peer yet - audioencoder: fix segment event leak - discoverer: Fix caps handling in `pad-added` signal handler - discoverer: Start discovering next URI from right thread - fft: Update our kiss fft version, fixes thread-safety and concurrency issues and misc other things - gl: numerous memory fixes (use-after-free, leaks, missing NULL-ify) - gl/display/egl: ensure debug category is initialized - gstglwindow_x11: fix resize - pbutils: Add latest H.264 level values - rtpbuffer: fix header extension length validation - video: Fix NV12_64Z32 number of component - video-format: RGB16/15 are not 16 bit per component but only 5.333 and 5 - video: fix top/bottom field flags - videodecoder: don't copy interlace-mode from reference state - appsrc/appsink: Make setting/replacing callbacks thread-safe - compositor: Fix checkerboard filling for BGRx/RGBx and UYVY/YUY2/YVYU - decodebin3: only force streams-selected seqnum after a select-streams - glupload: Fix fallback from direct dmabuf to dmabuf upload method - glvideomixer: perform `_get_highest_precision()` on the GL thread - libvisual: use `gst_element_class_set_metadata()` when passing dynamic strings - oggstream: Workaround for broken PAR in VP8 BOS - subparse: accept WebVTT timestamps without an hour component - playbin: Handle error message with redirection indication - textrender: Fix AYUV output. - typefind: Consider MPEG-PS PSM to be a PES type - uridecodebin3: default to non-0 buffer-size and buffer-duration, otherwise it could potentially cause big memory allocations over time - videoaggregator: Don't configure NULL chroma-site/colorimetry - videorate/videoscale/audioresample: Ensure that the caps returned from... - build: Replace bashisms in configure for Wayland and GLES3 gstreamer-1.16.3-3.3.1.src.rpm gstreamer-1.16.3-3.3.1.x86_64.rpm gstreamer-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-devel-1.16.3-3.3.1.x86_64.rpm gstreamer-doc-1.16.3-3.3.1.x86_64.rpm gstreamer-lang-1.16.3-3.3.1.noarch.rpm gstreamer-plugins-base-1.16.3-4.3.1.src.rpm gstreamer-plugins-base-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-32bit-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-devel-32bit-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-lang-1.16.3-4.3.1.noarch.rpm gstreamer-plugins-good-1.16.3-3.3.1.src.rpm gstreamer-plugins-good-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-extra-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-jack-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-lang-1.16.3-3.3.1.noarch.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.src.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-lang-1.16.3-3.3.1.noarch.rpm gstreamer-utils-1.16.3-3.3.1.x86_64.rpm libgstallocators-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstallocators-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstapp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstapp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstaudio-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstaudio-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstfft-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstfft-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstgl-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstgl-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstpbutils-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstreamer-1_0-0-1.16.3-3.3.1.x86_64.rpm libgstreamer-1_0-0-32bit-1.16.3-3.3.1.x86_64.rpm libgstriff-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstriff-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstrtp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstrtp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstrtsp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstsdp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstsdp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgsttag-1_0-0-1.16.3-4.3.1.x86_64.rpm libgsttag-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstvideo-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstvideo-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.x86_64.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.x86_64.rpm gstreamer-1.16.3-3.3.1.s390x.rpm gstreamer-devel-1.16.3-3.3.1.s390x.rpm gstreamer-doc-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-base-1.16.3-4.3.1.s390x.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.s390x.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.s390x.rpm gstreamer-plugins-good-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.s390x.rpm gstreamer-utils-1.16.3-3.3.1.s390x.rpm libgstallocators-1_0-0-1.16.3-4.3.1.s390x.rpm libgstapp-1_0-0-1.16.3-4.3.1.s390x.rpm libgstaudio-1_0-0-1.16.3-4.3.1.s390x.rpm libgstfft-1_0-0-1.16.3-4.3.1.s390x.rpm libgstgl-1_0-0-1.16.3-4.3.1.s390x.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.s390x.rpm libgstreamer-1_0-0-1.16.3-3.3.1.s390x.rpm libgstriff-1_0-0-1.16.3-4.3.1.s390x.rpm libgstrtp-1_0-0-1.16.3-4.3.1.s390x.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.s390x.rpm libgstsdp-1_0-0-1.16.3-4.3.1.s390x.rpm libgsttag-1_0-0-1.16.3-4.3.1.s390x.rpm libgstvideo-1_0-0-1.16.3-4.3.1.s390x.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.s390x.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.s390x.rpm gstreamer-1.16.3-3.3.1.ppc64le.rpm gstreamer-devel-1.16.3-3.3.1.ppc64le.rpm gstreamer-doc-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-base-1.16.3-4.3.1.ppc64le.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.ppc64le.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.ppc64le.rpm gstreamer-plugins-good-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.ppc64le.rpm gstreamer-utils-1.16.3-3.3.1.ppc64le.rpm libgstallocators-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstapp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstaudio-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstfft-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstgl-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstreamer-1_0-0-1.16.3-3.3.1.ppc64le.rpm libgstriff-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstrtp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstsdp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgsttag-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstvideo-1_0-0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.ppc64le.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.ppc64le.rpm gstreamer-1.16.3-3.3.1.aarch64.rpm gstreamer-devel-1.16.3-3.3.1.aarch64.rpm gstreamer-doc-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-base-1.16.3-4.3.1.aarch64.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.aarch64.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.aarch64.rpm gstreamer-plugins-good-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.aarch64.rpm gstreamer-utils-1.16.3-3.3.1.aarch64.rpm libgstallocators-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstapp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstaudio-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstfft-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstgl-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstreamer-1_0-0-1.16.3-3.3.1.aarch64.rpm libgstriff-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstrtp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstsdp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgsttag-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstvideo-1_0-0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.aarch64.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1917 moderate SUSE Updates openSUSE-SLE 15.3 This update for libxml2 fixes the following issues: - CVE-2021-3541: Fixed exponential entity expansion attack bypasses all existing protection mechanisms. (bsc#1186015) libxml2-2-2.9.7-3.37.1.x86_64.rpm libxml2-2-32bit-2.9.7-3.37.1.x86_64.rpm libxml2-2.9.7-3.37.1.src.rpm libxml2-devel-2.9.7-3.37.1.x86_64.rpm libxml2-devel-32bit-2.9.7-3.37.1.x86_64.rpm libxml2-doc-2.9.7-3.37.1.noarch.rpm libxml2-tools-2.9.7-3.37.1.x86_64.rpm python-libxml2-python-2.9.7-3.37.1.src.rpm python2-libxml2-python-2.9.7-3.37.1.x86_64.rpm python3-libxml2-python-2.9.7-3.37.1.x86_64.rpm libxml2-2-2.9.7-3.37.1.s390x.rpm libxml2-devel-2.9.7-3.37.1.s390x.rpm libxml2-tools-2.9.7-3.37.1.s390x.rpm python2-libxml2-python-2.9.7-3.37.1.s390x.rpm python3-libxml2-python-2.9.7-3.37.1.s390x.rpm libxml2-2-2.9.7-3.37.1.ppc64le.rpm libxml2-devel-2.9.7-3.37.1.ppc64le.rpm libxml2-tools-2.9.7-3.37.1.ppc64le.rpm python2-libxml2-python-2.9.7-3.37.1.ppc64le.rpm python3-libxml2-python-2.9.7-3.37.1.ppc64le.rpm libxml2-2-2.9.7-3.37.1.aarch64.rpm libxml2-devel-2.9.7-3.37.1.aarch64.rpm libxml2-tools-2.9.7-3.37.1.aarch64.rpm python2-libxml2-python-2.9.7-3.37.1.aarch64.rpm python3-libxml2-python-2.9.7-3.37.1.aarch64.rpm openSUSE-SLE-15.3-2021-1948 important SUSE Updates openSUSE-SLE 15.3 This update for djvulibre fixes the following issues: - CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:get_djvu_file() via crafted djvu file (bsc#1186253) djvulibre-3.5.27-11.6.1.src.rpm djvulibre-3.5.27-11.6.1.x86_64.rpm djvulibre-doc-3.5.27-11.6.1.noarch.rpm libdjvulibre-devel-3.5.27-11.6.1.x86_64.rpm libdjvulibre21-3.5.27-11.6.1.x86_64.rpm djvulibre-3.5.27-11.6.1.s390x.rpm libdjvulibre-devel-3.5.27-11.6.1.s390x.rpm libdjvulibre21-3.5.27-11.6.1.s390x.rpm djvulibre-3.5.27-11.6.1.ppc64le.rpm libdjvulibre-devel-3.5.27-11.6.1.ppc64le.rpm libdjvulibre21-3.5.27-11.6.1.ppc64le.rpm djvulibre-3.5.27-11.6.1.aarch64.rpm libdjvulibre-devel-3.5.27-11.6.1.aarch64.rpm libdjvulibre21-3.5.27-11.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1815 important SUSE Updates openSUSE-SLE 15.3 This update for nginx fixes the following issues: - CVE-2021-23017: nginx DNS resolver off-by-one heap write (bsc#1186126) nginx-1.19.8-3.3.1.src.rpm nginx-1.19.8-3.3.1.x86_64.rpm nginx-source-1.19.8-3.3.1.noarch.rpm vim-plugin-nginx-1.19.8-3.3.1.noarch.rpm nginx-1.19.8-3.3.1.s390x.rpm nginx-1.19.8-3.3.1.ppc64le.rpm nginx-1.19.8-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1841 important SUSE Updates openSUSE-SLE 15.3 This update for dhcp fixes the following issues: - CVE-2021-25217: A buffer overrun in lease file parsing code can be used to exploit a common vulnerability shared by dhcpd and dhclient (bsc#1186382) dhcp-4.3.6.P1-6.11.1.src.rpm dhcp-4.3.6.P1-6.11.1.x86_64.rpm dhcp-client-4.3.6.P1-6.11.1.x86_64.rpm dhcp-devel-4.3.6.P1-6.11.1.x86_64.rpm dhcp-doc-4.3.6.P1-6.11.1.x86_64.rpm dhcp-relay-4.3.6.P1-6.11.1.x86_64.rpm dhcp-server-4.3.6.P1-6.11.1.x86_64.rpm dhcp-4.3.6.P1-6.11.1.s390x.rpm dhcp-client-4.3.6.P1-6.11.1.s390x.rpm dhcp-devel-4.3.6.P1-6.11.1.s390x.rpm dhcp-doc-4.3.6.P1-6.11.1.s390x.rpm dhcp-relay-4.3.6.P1-6.11.1.s390x.rpm dhcp-server-4.3.6.P1-6.11.1.s390x.rpm dhcp-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-client-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-devel-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-doc-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-relay-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-server-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-4.3.6.P1-6.11.1.aarch64.rpm dhcp-client-4.3.6.P1-6.11.1.aarch64.rpm dhcp-devel-4.3.6.P1-6.11.1.aarch64.rpm dhcp-doc-4.3.6.P1-6.11.1.aarch64.rpm dhcp-relay-4.3.6.P1-6.11.1.aarch64.rpm dhcp-server-4.3.6.P1-6.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-1834 important SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - Update to 15.2.12-83-g528da226523: - (CVE-2021-3509) fix cookie injection issue (bsc#1186021) - (CVE-2021-3531) RGWSwiftWebsiteHandler::is_web_dir checks empty subdir_name (bsc#1186020) - (CVE-2021-3524) sanitize \r in s3 CORSConfiguration’s ExposeHeader (bsc#1185619) ceph-15.2.12.83+g528da226523-3.25.1.src.rpm ceph-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-grafana-dashboards-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-mgr-cephadm-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-dashboard-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-k8sevents-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-modules-core-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-rook-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-prometheus-alerts-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-test-15.2.12.83+g528da226523-3.25.1.src.rpm ceph-test-15.2.12.83+g528da226523-3.25.1.x86_64.rpm cephadm-15.2.12.83+g528da226523-3.25.1.noarch.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.x86_64.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librados2-15.2.12.83+g528da226523-3.25.1.x86_64.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librbd1-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librgw2-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.s390x.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.s390x.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.s390x.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librados2-15.2.12.83+g528da226523-3.25.1.s390x.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librbd1-15.2.12.83+g528da226523-3.25.1.s390x.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librgw2-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.s390x.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.s390x.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.s390x.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librados2-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librbd1-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librgw2-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.aarch64.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.aarch64.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librados2-15.2.12.83+g528da226523-3.25.1.aarch64.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librbd1-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librgw2-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.aarch64.rpm openSUSE-SLE-15.3-2021-1961 important SUSE Updates openSUSE-SLE 15.3 This update for squid fixes the following issues: - update to 4.15: - CVE-2021-28652: Broken cache manager URL parsing (bsc#1185918) - CVE-2021-28651: Memory leak in RFC 2169 response parsing (bsc#1185921) - CVE-2021-28662: Limit HeaderLookupTable_t::lookup() to BadHdr and specific IDs (bsc#1185919) - CVE-2021-31806: Handle more Range requests (bsc#1185916) - CVE-2020-25097: HTTP Request Smuggling vulnerability (bsc#1183436) - Handle more partial responses (bsc#1185923) - fix previous change to reinstante permissions macros, because the wrong path has been used (bsc#1171569). - use libexecdir instead of libdir to conform to recent changes in Factory (bsc#1171164). - Reinstate permissions macros for pinger binary, because the permissions package is also responsible for setting up the cap_net_raw capability, currently a fresh squid install doesn't get a capability bit at all (bsc#1171569). - Change pinger and basic_pam_auth helper to use standard permissions. pinger uses cap_net_raw=ep instead (bsc#1171569) squid-4.15-5.26.1.src.rpm squid-4.15-5.26.1.x86_64.rpm squid-4.15-5.26.1.s390x.rpm squid-4.15-5.26.1.ppc64le.rpm squid-4.15-5.26.1.aarch64.rpm openSUSE-SLE-15.3-2021-1798 moderate SUSE Updates openSUSE-SLE 15.3 This update for ipmitool fixes the following issues: - Deprecated the use of /var/run. Moved to /run now (bsc#1185162) - Fixed a delay when trying to identify the appropriate cipher suite (bsc#1179133) ipmitool-1.8.18+git20200204.7ccea28-3.3.1.src.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.x86_64.rpm ipmitool-bmc-snmp-proxy-1.8.18+git20200204.7ccea28-3.3.1.noarch.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.s390x.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.ppc64le.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2130 moderate SUSE Updates openSUSE-SLE 15.3 This update for python39-pip, python39-setuptools fixes the following issues: Changes in python39-setuptools: - Provide `python39-setuptools` version 44.1.1 with vendored dependencies. (jsc#SLE-17532, jsc#SLE-17957) Changes in python39-pip: - Provide `python39-pip` version 20.2.4 with vendored dependencies. (jsc#SLE-17532, jsc#SLE-17957) python39-pip-20.2.4-7.5.1.noarch.rpm python39-pip-20.2.4-7.5.1.src.rpm python39-setuptools-44.1.1-7.3.1.noarch.rpm python39-setuptools-44.1.1-7.3.1.src.rpm openSUSE-SLE-15.3-2021-1926 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc fixes the following issues: - Added gccgo symlink and go and gofmt as alternatives to support parallel installation of golang (bsc#1096677) cpp-7-3.6.1.x86_64.rpm gcc-32bit-7-3.6.1.x86_64.rpm gcc-7-3.6.1.src.rpm gcc-7-3.6.1.x86_64.rpm gcc-PIE-7-3.6.1.x86_64.rpm gcc-ada-32bit-7-3.6.1.x86_64.rpm gcc-ada-7-3.6.1.x86_64.rpm gcc-c++-32bit-7-3.6.1.x86_64.rpm gcc-c++-7-3.6.1.x86_64.rpm gcc-fortran-32bit-7-3.6.1.x86_64.rpm gcc-fortran-7-3.6.1.x86_64.rpm gcc-go-32bit-7-3.6.1.x86_64.rpm gcc-go-7-3.6.1.x86_64.rpm gcc-info-7-3.6.1.x86_64.rpm gcc-locale-7-3.6.1.x86_64.rpm gcc-obj-c++-7-3.6.1.x86_64.rpm gcc-objc-32bit-7-3.6.1.x86_64.rpm gcc-objc-7-3.6.1.x86_64.rpm libstdc++-devel-32bit-7-3.6.1.x86_64.rpm libstdc++-devel-7-3.6.1.x86_64.rpm cpp-7-3.6.1.s390x.rpm gcc-32bit-7-3.6.1.s390x.rpm gcc-7-3.6.1.s390x.rpm gcc-PIE-7-3.6.1.s390x.rpm gcc-ada-32bit-7-3.6.1.s390x.rpm gcc-ada-7-3.6.1.s390x.rpm gcc-c++-32bit-7-3.6.1.s390x.rpm gcc-c++-7-3.6.1.s390x.rpm gcc-fortran-32bit-7-3.6.1.s390x.rpm gcc-fortran-7-3.6.1.s390x.rpm gcc-go-32bit-7-3.6.1.s390x.rpm gcc-go-7-3.6.1.s390x.rpm gcc-info-7-3.6.1.s390x.rpm gcc-locale-7-3.6.1.s390x.rpm gcc-obj-c++-7-3.6.1.s390x.rpm gcc-objc-32bit-7-3.6.1.s390x.rpm gcc-objc-7-3.6.1.s390x.rpm libstdc++-devel-32bit-7-3.6.1.s390x.rpm libstdc++-devel-7-3.6.1.s390x.rpm cpp-7-3.6.1.ppc64le.rpm gcc-7-3.6.1.ppc64le.rpm gcc-PIE-7-3.6.1.ppc64le.rpm gcc-ada-7-3.6.1.ppc64le.rpm gcc-c++-7-3.6.1.ppc64le.rpm gcc-fortran-7-3.6.1.ppc64le.rpm gcc-go-7-3.6.1.ppc64le.rpm gcc-info-7-3.6.1.ppc64le.rpm gcc-locale-7-3.6.1.ppc64le.rpm gcc-obj-c++-7-3.6.1.ppc64le.rpm gcc-objc-7-3.6.1.ppc64le.rpm libstdc++-devel-7-3.6.1.ppc64le.rpm cpp-7-3.6.1.aarch64.rpm gcc-7-3.6.1.aarch64.rpm gcc-PIE-7-3.6.1.aarch64.rpm gcc-ada-7-3.6.1.aarch64.rpm gcc-c++-7-3.6.1.aarch64.rpm gcc-fortran-7-3.6.1.aarch64.rpm gcc-go-7-3.6.1.aarch64.rpm gcc-info-7-3.6.1.aarch64.rpm gcc-locale-7-3.6.1.aarch64.rpm gcc-obj-c++-7-3.6.1.aarch64.rpm gcc-objc-7-3.6.1.aarch64.rpm libstdc++-devel-7-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1781 moderate SUSE Updates openSUSE-SLE 15.3 This update for post-build-checks-malwarescan fixes the following issues: - EXCLUDELIST: Removed lvm2 unit-test (bsc#1172626). post-build-checks-malwarescan-0.1-3.16.1.noarch.rpm post-build-checks-malwarescan-0.1-3.16.1.src.rpm openSUSE-SLE-15.3-2021-1965 important SUSE Updates openSUSE-SLE 15.3 This update for multipath-tools fixes the following issues: - Update from version 0.8.5+30+suse.633836e to version 0.8.5+80+suse.73c50f5: * add `eh_deadline` option to avoid endless SCSI error handling. * add `wwid_recheck` option to detect storage configuration changes. * fixes for SAS expanders. (bsc#1178377, bsc#1178379, bsc#1177081) * Avoid access to root FS while queueing IO. (bsc#1178049, bsc#1181234) * backport of upstream fixes from version 0.8.6 for bugs, new additions to built-in hardware table. (bsc#1186212) * `kpartx`: free loop device after listing partitions. (bsc#1107187) kpartx-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.src.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm kpartx-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm kpartx-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm kpartx-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2146 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssh fixes the following issues: - Fixed a race condition leading to a sshd termination of multichannel sessions with non-root users (bsc#1115550, bsc#1174162). openssh-8.4p1-3.3.1.src.rpm openssh-8.4p1-3.3.1.x86_64.rpm openssh-askpass-gnome-8.4p1-3.3.1.src.rpm openssh-askpass-gnome-8.4p1-3.3.1.x86_64.rpm openssh-cavs-8.4p1-3.3.1.x86_64.rpm openssh-clients-8.4p1-3.3.1.x86_64.rpm openssh-common-8.4p1-3.3.1.x86_64.rpm openssh-fips-8.4p1-3.3.1.x86_64.rpm openssh-helpers-8.4p1-3.3.1.x86_64.rpm openssh-server-8.4p1-3.3.1.x86_64.rpm openssh-8.4p1-3.3.1.s390x.rpm openssh-askpass-gnome-8.4p1-3.3.1.s390x.rpm openssh-cavs-8.4p1-3.3.1.s390x.rpm openssh-clients-8.4p1-3.3.1.s390x.rpm openssh-common-8.4p1-3.3.1.s390x.rpm openssh-fips-8.4p1-3.3.1.s390x.rpm openssh-helpers-8.4p1-3.3.1.s390x.rpm openssh-server-8.4p1-3.3.1.s390x.rpm openssh-8.4p1-3.3.1.ppc64le.rpm openssh-askpass-gnome-8.4p1-3.3.1.ppc64le.rpm openssh-cavs-8.4p1-3.3.1.ppc64le.rpm openssh-clients-8.4p1-3.3.1.ppc64le.rpm openssh-common-8.4p1-3.3.1.ppc64le.rpm openssh-fips-8.4p1-3.3.1.ppc64le.rpm openssh-helpers-8.4p1-3.3.1.ppc64le.rpm openssh-server-8.4p1-3.3.1.ppc64le.rpm openssh-8.4p1-3.3.1.aarch64.rpm openssh-askpass-gnome-8.4p1-3.3.1.aarch64.rpm openssh-cavs-8.4p1-3.3.1.aarch64.rpm openssh-clients-8.4p1-3.3.1.aarch64.rpm openssh-common-8.4p1-3.3.1.aarch64.rpm openssh-fips-8.4p1-3.3.1.aarch64.rpm openssh-helpers-8.4p1-3.3.1.aarch64.rpm openssh-server-8.4p1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1848 low SUSE Updates openSUSE-SLE 15.3 This update for libraw fixes the following issues: - Hardening: Link as PIE (bsc#1184123) libraw-0.18.9-3.14.1.src.rpm libraw-devel-0.18.9-3.14.1.x86_64.rpm libraw-devel-static-0.18.9-3.14.1.x86_64.rpm libraw-tools-0.18.9-3.14.1.x86_64.rpm libraw16-0.18.9-3.14.1.x86_64.rpm libraw-devel-0.18.9-3.14.1.s390x.rpm libraw-devel-static-0.18.9-3.14.1.s390x.rpm libraw-tools-0.18.9-3.14.1.s390x.rpm libraw16-0.18.9-3.14.1.s390x.rpm libraw-devel-0.18.9-3.14.1.ppc64le.rpm libraw-devel-static-0.18.9-3.14.1.ppc64le.rpm libraw-tools-0.18.9-3.14.1.ppc64le.rpm libraw16-0.18.9-3.14.1.ppc64le.rpm libraw-devel-0.18.9-3.14.1.aarch64.rpm libraw-devel-static-0.18.9-3.14.1.aarch64.rpm libraw-tools-0.18.9-3.14.1.aarch64.rpm libraw16-0.18.9-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-1850 low SUSE Updates openSUSE-SLE 15.3 This update for doxygen fixes the following issues: - Hardeing: Removed non-PIE binaries (bsc#1184122) doxygen-1.8.14-3.3.1.src.rpm doxygen-1.8.14-3.3.1.x86_64.rpm doxywizard-1.8.14-3.3.1.src.rpm doxywizard-1.8.14-3.3.1.x86_64.rpm doxygen-1.8.14-3.3.1.s390x.rpm doxywizard-1.8.14-3.3.1.s390x.rpm doxygen-1.8.14-3.3.1.ppc64le.rpm doxywizard-1.8.14-3.3.1.ppc64le.rpm doxygen-1.8.14-3.3.1.aarch64.rpm doxywizard-1.8.14-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1849 low SUSE Updates openSUSE-SLE 15.3 This update for fltk fixes the following issues: - Hardening: Removed non position independent binaries (bsc#1184122) fltk-1.3.4-5.3.1.src.rpm fltk-devel-1.3.4-5.3.1.x86_64.rpm fltk-devel-32bit-1.3.4-5.3.1.x86_64.rpm fltk-devel-static-1.3.4-5.3.1.x86_64.rpm libfltk1-1.3.4-5.3.1.x86_64.rpm libfltk1-32bit-1.3.4-5.3.1.x86_64.rpm fltk-devel-1.3.4-5.3.1.s390x.rpm fltk-devel-static-1.3.4-5.3.1.s390x.rpm libfltk1-1.3.4-5.3.1.s390x.rpm fltk-devel-1.3.4-5.3.1.ppc64le.rpm fltk-devel-static-1.3.4-5.3.1.ppc64le.rpm libfltk1-1.3.4-5.3.1.ppc64le.rpm fltk-devel-1.3.4-5.3.1.aarch64.rpm fltk-devel-static-1.3.4-5.3.1.aarch64.rpm libfltk1-1.3.4-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2267 low SUSE Updates openSUSE-SLE 15.3 This update for yast2-storage-ng fixes the following issues: - Made the 'Change Used Devices' menu item translatable (bsc#1185060) - Ensure mount options are not doubled (bsc#1186298) - Try harder matching device names to fix failing offline upgrade from SLE-12 SP5 to SLE-15 SP2 (bsc#1186268) yast2-storage-ng-4.3.53-3.5.1.src.rpm yast2-storage-ng-4.3.53-3.5.1.x86_64.rpm yast2-storage-ng-4.3.53-3.5.1.s390x.rpm yast2-storage-ng-4.3.53-3.5.1.ppc64le.rpm yast2-storage-ng-4.3.53-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1847 low SUSE Updates openSUSE-SLE 15.3 This update for bison fixes the following issues: - Fixed an issue when building bison for SUSE Linux Enterprise Server 15 SP3 (bsc#1183777) This update does not fix any user visible issues, thus it is optional to install. bison-3.0.4-3.3.1.src.rpm bison-3.0.4-3.3.1.x86_64.rpm bison-32bit-3.0.4-3.3.1.x86_64.rpm bison-lang-3.0.4-3.3.1.noarch.rpm bison-3.0.4-3.3.1.s390x.rpm bison-3.0.4-3.3.1.ppc64le.rpm bison-3.0.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1923 important SUSE Updates openSUSE-SLE 15.3 This update for nfs-utils fixes the following issues: - Ensured thread safety when opening files over NFS to prevent a use-after-free issue (bsc#1183194) nfs-client-2.1.1-10.18.1.x86_64.rpm nfs-doc-2.1.1-10.18.1.x86_64.rpm nfs-kernel-server-2.1.1-10.18.1.x86_64.rpm nfs-utils-2.1.1-10.18.1.src.rpm nfs-client-2.1.1-10.18.1.s390x.rpm nfs-doc-2.1.1-10.18.1.s390x.rpm nfs-kernel-server-2.1.1-10.18.1.s390x.rpm nfs-client-2.1.1-10.18.1.ppc64le.rpm nfs-doc-2.1.1-10.18.1.ppc64le.rpm nfs-kernel-server-2.1.1-10.18.1.ppc64le.rpm nfs-client-2.1.1-10.18.1.aarch64.rpm nfs-doc-2.1.1-10.18.1.aarch64.rpm nfs-kernel-server-2.1.1-10.18.1.aarch64.rpm openSUSE-SLE-15.3-2021-1805 moderate SUSE Updates openSUSE-SLE 15.3 This update for amazon-ssm-agent and amazon-ecs-init fixes the following issues: - Added support for Amazon ECS Anywhere (bsc#1186239, bsc#1186262) The amazon-ssm-agent package provides a RELEASENOTES.md file with a more detailed list of all changes. amazon-ecs-init-1.52.1-4.8.1.src.rpm amazon-ecs-init-1.52.1-4.8.1.x86_64.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.src.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.x86_64.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.s390x.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.ppc64le.rpm amazon-ecs-init-1.52.1-4.8.1.aarch64.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2163 moderate SUSE Updates openSUSE-SLE 15.3 This update for bouncycastle fixes the following issues: - CVE-2020-15522: Fixed a timing issue within the EC math library (bsc#1186328). bouncycastle-1.64-3.3.1.noarch.rpm bouncycastle-1.64-3.3.1.src.rpm bouncycastle-javadoc-1.64-3.3.1.noarch.rpm bouncycastle-mail-1.64-3.3.1.noarch.rpm bouncycastle-pg-1.64-3.3.1.noarch.rpm bouncycastle-pkix-1.64-3.3.1.noarch.rpm bouncycastle-tls-1.64-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2224 important SUSE Updates openSUSE-SLE 15.3 This update for psmisc fixes the following issues: - It does no longer list all processes from different private namespaces when fuser is run on an NFS mount. This led to an issue where the wrong processes were terminated in an SAP application cluster environment (bsc#1185208) psmisc-23.0-6.16.1.src.rpm psmisc-23.0-6.16.1.x86_64.rpm psmisc-lang-23.0-6.16.1.noarch.rpm psmisc-23.0-6.16.1.s390x.rpm psmisc-23.0-6.16.1.ppc64le.rpm psmisc-23.0-6.16.1.aarch64.rpm openSUSE-SLE-15.3-2021-1817 moderate SUSE Updates openSUSE-SLE 15.3 This update of google-poppins-fonts releases it in a higher version than on SLES 15 SP2, to allow better migration and solve a openSUSE Leap 15.3 patch problem. (bsc#1186642) google-poppins-fonts-4.003-6.3.1.noarch.rpm google-poppins-fonts-4.003-6.3.1.src.rpm openSUSE-SLE-15.3-2021-1818 moderate SUSE Updates openSUSE-SLE 15.3 This update of libgnomesu releases it in a higher version than on SUSE Linux Enterprise 15 SP2, to allow better migration and solve a openSUSE Leap 15.3 patch problem. (bsc#1186642) libgnomesu-2.0.6-3.6.1.src.rpm libgnomesu-2.0.6-3.6.1.x86_64.rpm libgnomesu-devel-2.0.6-3.6.1.x86_64.rpm libgnomesu-lang-2.0.6-3.6.1.noarch.rpm libgnomesu0-2.0.6-3.6.1.x86_64.rpm libgnomesu-2.0.6-3.6.1.s390x.rpm libgnomesu-devel-2.0.6-3.6.1.s390x.rpm libgnomesu0-2.0.6-3.6.1.s390x.rpm libgnomesu-2.0.6-3.6.1.ppc64le.rpm libgnomesu-devel-2.0.6-3.6.1.ppc64le.rpm libgnomesu0-2.0.6-3.6.1.ppc64le.rpm libgnomesu-2.0.6-3.6.1.aarch64.rpm libgnomesu-devel-2.0.6-3.6.1.aarch64.rpm libgnomesu0-2.0.6-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1802 moderate SUSE Updates openSUSE-SLE 15.3 This update for kglobalaccel fixes the following issues: - work around kglobalaccel breaking persistently after an unclean logout (kde#429415, bsc#1179033) kglobalaccel-5.76.0-3.3.1.src.rpm kglobalaccel-devel-32bit-5.76.0-3.3.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.3.1.x86_64.rpm kglobalaccel5-5.76.0-3.3.1.x86_64.rpm libKF5GlobalAccel5-32bit-5.76.0-3.3.1.x86_64.rpm libKF5GlobalAccel5-5.76.0-3.3.1.x86_64.rpm libKF5GlobalAccel5-lang-5.76.0-3.3.1.noarch.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.3.1.s390x.rpm kglobalaccel5-5.76.0-3.3.1.s390x.rpm libKF5GlobalAccel5-5.76.0-3.3.1.s390x.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.s390x.rpm kglobalaccel-devel-5.76.0-3.3.1.ppc64le.rpm kglobalaccel5-5.76.0-3.3.1.ppc64le.rpm libKF5GlobalAccel5-5.76.0-3.3.1.ppc64le.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.ppc64le.rpm kglobalaccel-devel-5.76.0-3.3.1.aarch64.rpm kglobalaccel5-5.76.0-3.3.1.aarch64.rpm libKF5GlobalAccel5-5.76.0-3.3.1.aarch64.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1998 moderate SUSE Updates openSUSE-SLE 15.3 This update for tpm2.0-tools fixes the following issues: - CVE-2021-3565: Fixed issue when no encrypted session with the TPM is used (bsc#1186490). tpm2.0-tools-4.3.0-4.3.1.src.rpm tpm2.0-tools-4.3.0-4.3.1.x86_64.rpm tpm2.0-tools-4.3.0-4.3.1.s390x.rpm tpm2.0-tools-4.3.0-4.3.1.ppc64le.rpm tpm2.0-tools-4.3.0-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1914 moderate SUSE Updates openSUSE-SLE 15.3 This update for libopenmpt fixes the following issues: Various bugfix and stability issues were fixed, some of those might have security impact. libopenmpt was updated to 0.3.28: * Fixed excessive memory consumption with malformed files in various formats. Changes in 0.3.27: * AMS: Avoid allocating excessive amount of memory for compressed song message in malformed files. * S3M: Some samples were imported with a too high sample rate if module was saved with Scream Tracker 3. Changes in 0.3.26: * DMF: Improve import of finetune effect with parameters larger than +/-15. Changes in 0.3.25: * AMS: An upper bound for uncompressed sample size is now established to avoid memory exhaustion from malformed files. * MO3: Avoid certain ModPlug hacks from being fixed up twice, which could lead to e.g. very narrow pan swing range for old OpenMPT IT files saved with a recent MO3 encoder version. * IMF: Instrument sample mapping was off by one octave, notable in the guitar part of Astaris by Karsten Koch. * PLM: Percentage offset (Mxx) was slightly off. Changes in 0.3.24: * PP20: The first few bytes of some files were not decompressed properly, making some files unplayable (depending on the original format). Changes in 0.3.23: * IT: Global volume slides with both nibbles set preferred the “slide up” nibble over the “slide down” nibble in old OpenMPT versions, unlike other slides. Such old files are now imported correctly again. * IT: Fixed an edge case where, if the filter hit full cutoff / no resonance on the first tick of a row where a new delayed note would be triggered, the filter would be disabled even though it should stay active. Fixes trace.it by maddie. * XM: Out-of-range arpeggio clamping behaviour broke in OpenMPT 1.23.05.00. The arpeggios in Binary World by Dakota now play correctly again. * S3M: Support old-style sample pre-amp value in very early S3M files. * S3M: Only force-enable fast slides for files ST 3.00. Previously, any S3M file made with an ST3 version older than 3.20 enabled them. * M15: Improve tracker detection heuristics to never assume SoundTracker 2.0 if there is a huge number of Dxx commands, as that is a definite hint that they should be treated as volume slides. Fixes Monty On The Run by Master Blaster. Changes in 0.3.22: * IT: Disable retrigger with short notes quirk for modules saved with Chibi Tracker, as it does not implement that quirk. * MOD: Fix early song ending due to ProTracker pattern jump quirk (EEx + Dxx on same row) if infinite looping is disabled. Fixes Haunted Tracks.mod by Triace. * MOD: Vibrato type “ramp down” was upside down. Changes in 0.3.21: * IT: Vibrato was too fast in Old Effects mode since libopenmpt 0.3. * XM: Treat 8bitbubsy’s FT2 clone exactly like Fasttracker 2 with respect to compatibility and playback flags. For example, FT2 Pan Law was not applied. * DMF: Some files had a wrong tempo since libopenmpt 0.2.5705-beta15. libmodplug-devel-0.3.28-2.13.1.x86_64.rpm libmodplug1-0.3.28-2.13.1.x86_64.rpm libmodplug1-32bit-0.3.28-2.13.1.x86_64.rpm libopenmpt-0.3.28-2.13.1.src.rpm libopenmpt-devel-0.3.28-2.13.1.x86_64.rpm libopenmpt0-0.3.28-2.13.1.x86_64.rpm libopenmpt0-32bit-0.3.28-2.13.1.x86_64.rpm libopenmpt_modplug1-0.3.28-2.13.1.x86_64.rpm libopenmpt_modplug1-32bit-0.3.28-2.13.1.x86_64.rpm openmpt123-0.3.28-2.13.1.x86_64.rpm libmodplug-devel-0.3.28-2.13.1.s390x.rpm libmodplug1-0.3.28-2.13.1.s390x.rpm libopenmpt-devel-0.3.28-2.13.1.s390x.rpm libopenmpt0-0.3.28-2.13.1.s390x.rpm libopenmpt_modplug1-0.3.28-2.13.1.s390x.rpm openmpt123-0.3.28-2.13.1.s390x.rpm libmodplug-devel-0.3.28-2.13.1.ppc64le.rpm libmodplug1-0.3.28-2.13.1.ppc64le.rpm libopenmpt-devel-0.3.28-2.13.1.ppc64le.rpm libopenmpt0-0.3.28-2.13.1.ppc64le.rpm libopenmpt_modplug1-0.3.28-2.13.1.ppc64le.rpm openmpt123-0.3.28-2.13.1.ppc64le.rpm libmodplug-devel-0.3.28-2.13.1.aarch64.rpm libmodplug1-0.3.28-2.13.1.aarch64.rpm libopenmpt-devel-0.3.28-2.13.1.aarch64.rpm libopenmpt0-0.3.28-2.13.1.aarch64.rpm libopenmpt_modplug1-0.3.28-2.13.1.aarch64.rpm openmpt123-0.3.28-2.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-1843 important SUSE Updates openSUSE-SLE 15.3 This update for polkit fixes the following issues: - CVE-2021-3560: Fixed a local privilege escalation using polkit_system_bus_name_get_creds_sync() (bsc#1186497). libpolkit0-0.116-3.3.1.x86_64.rpm libpolkit0-32bit-0.116-3.3.1.x86_64.rpm polkit-0.116-3.3.1.src.rpm polkit-0.116-3.3.1.x86_64.rpm polkit-devel-0.116-3.3.1.x86_64.rpm polkit-doc-0.116-3.3.1.noarch.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.x86_64.rpm libpolkit0-0.116-3.3.1.s390x.rpm polkit-0.116-3.3.1.s390x.rpm polkit-devel-0.116-3.3.1.s390x.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.s390x.rpm libpolkit0-0.116-3.3.1.ppc64le.rpm polkit-0.116-3.3.1.ppc64le.rpm polkit-devel-0.116-3.3.1.ppc64le.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.ppc64le.rpm libpolkit0-0.116-3.3.1.aarch64.rpm polkit-0.116-3.3.1.aarch64.rpm polkit-devel-0.116-3.3.1.aarch64.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1897 important SUSE Updates openSUSE-SLE 15.3 This update for libX11 fixes the following issues: - Regression in the fix for CVE-2021-31535, causing segfaults for xforms applications like fdesign (bsc#1186643) libX11-1.6.5-3.21.1.src.rpm libX11-6-1.6.5-3.21.1.x86_64.rpm libX11-6-32bit-1.6.5-3.21.1.x86_64.rpm libX11-data-1.6.5-3.21.1.noarch.rpm libX11-devel-1.6.5-3.21.1.x86_64.rpm libX11-devel-32bit-1.6.5-3.21.1.x86_64.rpm libX11-xcb1-1.6.5-3.21.1.x86_64.rpm libX11-xcb1-32bit-1.6.5-3.21.1.x86_64.rpm libX11-6-1.6.5-3.21.1.s390x.rpm libX11-devel-1.6.5-3.21.1.s390x.rpm libX11-xcb1-1.6.5-3.21.1.s390x.rpm libX11-6-1.6.5-3.21.1.ppc64le.rpm libX11-devel-1.6.5-3.21.1.ppc64le.rpm libX11-xcb1-1.6.5-3.21.1.ppc64le.rpm libX11-6-1.6.5-3.21.1.aarch64.rpm libX11-devel-1.6.5-3.21.1.aarch64.rpm libX11-xcb1-1.6.5-3.21.1.aarch64.rpm openSUSE-SLE-15.3-2021-1896 moderate SUSE Updates openSUSE-SLE 15.3 This update for pam_radius fixes the following issues: - CVE-2015-9542: pam_radius: buffer overflow in password field (bsc#1163933) pam_radius-1.4.0-3.3.1.src.rpm pam_radius-1.4.0-3.3.1.x86_64.rpm pam_radius-32bit-1.4.0-3.3.1.x86_64.rpm pam_radius-1.4.0-3.3.1.s390x.rpm pam_radius-1.4.0-3.3.1.ppc64le.rpm pam_radius-1.4.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2215 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: The scap-security-guide was updated to 0.1.56 release (jsc#ECO-3319) - Align ism_o profile with latest ISM SSP (#6878) - Align RHEL 7 STIG profile with DISA STIG V3R3 - Creating new RHEL 7 STIG GUI profile (#6863) - Creating new RHEL 8 STIG GUI profile (#6862) - Add the RHEL9 product (#6801) - Initial support for SUSE SLE-15 (#6666) - add support for osbuild blueprint remediations (#6970) This update brings the following SUSE Linux Enterprise STIG SCAP automations: - SCAP STIG automation for SUSE Linux Enterprise 12 (SUSE supplied, nearly complete, missing 4 rules) - SCAP STIG automation for SUSE Linux Enterprise 15 (SUSE supplied, nearly complete, missing 4 rules) - CIS automation for SUSE Linux Enterprise 15 (community supplied) It can be evaluated using "oscap" from "openscap-utils", e.g. by doing on SUSE Linux Enterprise 12: - oscap xccdf eval --profile stig /usr/share/xml/scap/ssg/content/ssg-sle12-ds.xml On SUSE Linux Enterprise 15: - oscap xccdf eval --profile stig /usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml or the community supplied CIS on SUSE Linux Enterprise 15: - oscap xccdf eval --profile cis /usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml More content will be added in future updates. scap-security-guide-0.1.56-1.13.2.noarch.rpm scap-security-guide-0.1.56-1.13.2.src.rpm scap-security-guide-debian-0.1.56-1.13.2.noarch.rpm scap-security-guide-redhat-0.1.56-1.13.2.noarch.rpm scap-security-guide-ubuntu-0.1.56-1.13.2.noarch.rpm openSUSE-SLE-15.3-2021-1827 moderate SUSE Updates openSUSE-SLE 15.3 This update provides python3-docker to the SUSE Linux Enterprise 15 SP2 and SP3 PackageHub. python-docker-4.2.0-3.2.1.src.rpm python-docker-pycreds-0.4.0-3.2.1.src.rpm python2-docker-4.2.0-3.2.1.noarch.rpm python2-docker-pycreds-0.4.0-3.2.1.noarch.rpm python3-docker-4.2.0-3.2.1.noarch.rpm python3-docker-pycreds-0.4.0-3.2.1.noarch.rpm openSUSE-SLE-15.3-2021-1977 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in kernel memory (bsc#1186484). - CVE-2021-33034: Fixed a use-after-free when destroying an hci_chan. This could lead to writing an arbitrary values. (bsc#1186111) - CVE-2020-26139: Fixed a denial-of-service when an Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. (bnc#1186062) - CVE-2021-23134: A Use After Free vulnerability in nfc sockets allowed local attackers to elevate their privileges. (bnc#1186060) - CVE-2021-3491: Fixed a potential heap overflow in mem_rw(). This vulnerability is related to the PROVIDE_BUFFERS operation, which allowed the MAX_RW_COUNT limit to be bypassed (bsc#1185642). - CVE-2021-32399: Fixed a race condition when removing the HCI controller (bnc#1184611). - CVE-2020-24586: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances this can be abused to inject arbitrary network packets and/or exfiltrate user data (bnc#1185859). - CVE-2020-24587: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed (bnc#1185859 bnc#1185862). - CVE-2020-24588: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets. (bnc#1185861) - CVE-2020-26147: The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments, even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used (bnc#1185859). - CVE-2020-26145: An issue was discovered with Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets independent of the network configuration. (bnc#1185860) - CVE-2020-26141: An issue was discovered in the ALFA driver for AWUS036H, where the Message Integrity Check (authenticity) of fragmented TKIP frames was not verified. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol. (bnc#1185987) - CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assignment of a new table value (bnc#1184208). - CVE-2021-29155: Fixed an issue that was discovered in kernel/bpf/verifier.c that performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory. Specifically, for sequences of pointer arithmetic operations, the pointer modification performed by the first operation was not correctly accounted for when restricting subsequent operations (bnc#1184942). - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading to out of bounds read (bsc#1184170). - CVE-2021-3428: Fixed an integer overflow in ext4_es_cache_extent (bsc#1173485). - CVE-2021-29647: Fixed an issue in qrtr_recvmsg which could have allowed attackers to obtain sensitive information from kernel memory because of a partially uninitialized data structure (bsc#1184192 ). - CVE-2021-29265: Fixed an issue in usbip_sockfd_store which could have allowed attackers to cause a denial of service due to race conditions during an update of the local and shared status (bsc#1184167). - CVE-2021-29264: Fixed an issue in the Freescale Gianfar Ethernet driver which could have allowed attackers to cause a system crash due to a calculation of negative fragment size (bsc#1184168). - CVE-2021-28972: Fixed a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly (bsc#1184198). - CVE-2021-28971: Fixed an issue in intel_pmu_drain_pebs_nhm which could have caused a system crash because the PEBS status in a PEBS record was mishandled (bsc#1184196 ). - CVE-2021-28964: Fixed a race condition in get_old_root which could have allowed attackers to cause a denial of service (bsc#1184193). - CVE-2021-28688: Fixed an issue introduced by XSA-365 (bsc#1183646). - CVE-2021-28660: Fixed an out of bounds write in rtw_wx_set_scan (bsc#1183593 ). - CVE-2021-28375: Fixed an issue in fastrpc_internal_invoke which did not prevent user applications from sending kernel RPC messages (bsc#1183596). - CVE-2021-28038: Fixed an issue with the netback driver which was lacking necessary treatment of errors such as failed memory allocations (bsc#1183022). - CVE-2021-27365: Fixed an issue where an unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up to the maximum length of a Netlink message (bsc#1182715). - CVE-2021-27364: Fixed an issue where an attacker could craft Netlink messages (bsc#1182717). - CVE-2021-27363: Fixed a kernel pointer leak which could have been used to determine the address of the iscsi_transport structure (bsc#1182716). - CVE-2020-35519: Fixed an out-of-bounds memory access was found in x25_bind (bsc#1183696). - CVE-2020-27815: Fixed an issue in JFS filesystem where could have allowed an attacker to execute code (bsc#1179454). - CVE-2020-27171: Fixed an off-by-one error affecting out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183775). - CVE-2020-27170: Fixed potential side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183686). - CVE-2019-19769: Fixed a use-after-free in the perf_trace_lock_acquire function (bsc#1159280 ). - CVE-2019-18814: Fixed a use-after-free when aa_label_parse() fails in aa_audit_rule_init() (bsc#1156256). - CVE-2021-3483: Fixed a use-after-free in nosy.c (bsc#1184393). - CVE-2021-30002: Fixed a memory leak for large arguments in video_usercopy (bsc#1184120). - CVE-2021-29154: Fixed incorrect computation of branch displacements, allowing arbitrary code execution (bsc#1184391). - CVE-2021-28950: Fixed an issue in fs/fuse/fuse_i.h due to a retry loop continually was finding the same bad inode (bsc#1184194). - CVE-2021-28952: Fixed a buffer overflow in the soundwire device driver, triggered when an unexpected port ID number is encountered. (bnc#1184197). - CVE-2021-20268: Fixed an out-of-bounds access flaw in the implementation of the eBPF code verifier. This flaw allowed a local user to crash the system or possibly escalate their privileges. (bnc#1183077) - CVE-2020-27673: Fixed a vulnerability with xen, where guest OS users could cause a denial of service (host OS hang) via a high rate of events to dom0 (bnc#1177411). - CVE-2020-36312: Fixed a memory leak upon a kmalloc failure (bsc#1184509 ). - CVE-2020-36311: Fixed a denial of service (soft lockup) by triggering destruction of a large SEV VM (bsc#1184511). - CVE-2020-36310: Fixed infinite loop for certain nested page faults (bsc#1184512). - CVE-2021-3489: Fixed an issue where the eBPF RINGBUF bpf_ringbuf_reserve did not check that the allocated size was smaller than the ringbuf size (bnc#1185640). - CVE-2021-3490: Fixed an issue where the eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) did not update the 32-bit bounds (bnc#1185641 bnc#1185796 ). - CVE-2020-36322: Fixed an issue was discovered in FUSE filesystem implementation which could have caused a system crash (bsc#1184211). - CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673: Fixed multiple bugs in NFC subsytem (bsc#1178181). The following non-security bugs were fixed: - ACPI / hotplug / PCI: Fix reference count leak in enable_slot() (git-fixes). - ACPI / idle: override c-state latency when not in conformance with s0ix (bsc#1185840). - ACPI: CPPC: Replace cppc_attr with kobj_attribute (git-fixes). - ACPI: GTDT: Do not corrupt interrupt mappings on watchdow probe failure (git-fixes). - ACPI: PM: Add ACPI ID of Alder Lake Fan (git-fixes). - ACPI: PM: s2idle: Add AMD support to handle _DSM (bsc#1185840). - ACPI: PM: s2idle: Add missing LPS0 functions for AMD (bsc#1185840). - ACPI: PM: s2idle: Drop unused local variables and related code (bsc#1185840). - ACPI: PM: s2idle: Move x86-specific code to the x86 directory (bsc#1185840). - ACPI: custom_method: fix a possible memory leak (git-fixes). - ACPI: custom_method: fix potential use-after-free issue (git-fixes). - ACPI: processor: Fix CPU0 wakeup in acpi_idle_play_dead() (git-fixes). - ACPI: processor: Fix build when CONFIG_ACPI_PROCESSOR=m (git-fixes). - ACPI: scan: Rearrange memory allocation in acpi_device_add() (git-fixes). - ACPI: video: Add DMI quirk for GIGABYTE GB-BXBT-2807 (git-fixes). - ACPI: video: Add missing callback back for Sony VPCEH3U1E (git-fixes). - ACPICA: Always create namespace nodes using acpi_ns_create_node() (git-fixes). - ACPICA: Enable sleep button on ACPI legacy wake (bsc#1181383). - ACPICA: Fix race in generic_serial_bus (I2C) and GPIO op_region parameter handling (git-fixes). - ALSA: Convert strlcpy to strscpy when return value is unused (git-fixes). - ALSA: aloop: Fix initialization of controls (git-fixes). - ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro (git-fixes). - ALSA: bebob: enable to deliver MIDI messages for multiple ports (git-fixes). - ALSA: core: remove redundant spin_lock pair in snd_card_disconnect (git-fixes). - ALSA: dice: fix null pointer dereference when node is disconnected (git-fixes). - ALSA: dice: fix stream format at middle sampling rate for Alesis iO 26 (git-fixes). - ALSA: dice: fix stream format for TC Electronic Konnekt Live at high sampling transfer frequency (git-fixes). - ALSA: emu8000: Fix a use after free in snd_emu8000_create_mixer (git-fixes). - ALSA: firewire-lib: fix amdtp_packet tracepoints event for packet_index field (git-fixes). - ALSA: firewire-lib: fix calculation for size of IR context payload (git-fixes). - ALSA: firewire-lib: fix check for the size of isochronous packet payload (git-fixes). - ALSA: hda/ca0132: Add Sound BlasterX AE-5 Plus support (git-fixes). - ALSA: hda/cirrus: Add Headphone and Headset MIC Volume Control (git-fixes). - ALSA: hda/cirrus: Add error handling into CS8409 I2C functions (git-fixes). - ALSA: hda/cirrus: Add jack detect interrupt support from CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Add support for CS8409 HDA bridge and CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Cleanup patch_cirrus.c code (git-fixes). - ALSA: hda/cirrus: Fix CS42L42 Headset Mic volume control name (git-fixes). - ALSA: hda/cirrus: Make CS8409 driver more generic by using fixups (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume for Bullseye to -26 dB (git-fixes). - ALSA: hda/cirrus: Use CS8409 filter to fix abnormal sounds on Bullseye (git-fixes). - ALSA: hda/conexant: Add quirk for mute LED control on HP ZBook G5 (git-fixes). - ALSA: hda/conexant: Apply quirk for another HP ZBook G5 model (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/hdmi: Cancel pending works before suspend (bsc#1182377). - ALSA: hda/hdmi: Cancel pending works before suspend (git-fixes). - ALSA: hda/hdmi: fix race in handling acomp ELD notification at resume (git-fixes). - ALSA: hda/realtek - Headset Mic issue on HP platform (git-fixes). - ALSA: hda/realtek: ALC285 Thinkpad jack pin quirk is unreachable (git-fixes). - ALSA: hda/realtek: Add fixup for HP OMEN laptop (git-fixes). - ALSA: hda/realtek: Add fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: Add quirk for Intel Clevo PCx0Dx (git-fixes). - ALSA: hda/realtek: Add quirk for Lenovo Ideapad S740 (git-fixes). - ALSA: hda/realtek: Add some CLOVE SSIDs of ALC293 (git-fixes). - ALSA: hda/realtek: Apply headset-mic quirks for Xiaomi Redmibook Air (git-fixes). - ALSA: hda/realtek: Chain in pop reduction fixup for ThinkStation P340 (git-fixes). - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on EliteBook 845 G8 (git-fixes). - ALSA: hda/realtek: Fix silent headphone output on ASUS UX430UA (git-fixes). - ALSA: hda/realtek: Fix speaker amp on HP Envy AiO 32 (git-fixes). - ALSA: hda/realtek: Fix speaker amp setup on Acer Aspire E1 (git-fixes). - ALSA: hda/realtek: GA503 use same quirks as GA401 (git-fixes). - ALSA: hda/realtek: Headphone volume is controlled by Front mixer (git-fixes). - ALSA: hda/realtek: Re-order ALC269 ASUS quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Dell quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 HP quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Lenovo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC662 quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Clevo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order remaining ALC269 quirk table entries (git-fixes). - ALSA: hda/realtek: Remove redundant entry for ALC861 Haier/Uniwill devices (git-fixes). - ALSA: hda/realtek: apply pin quirk for XiaomiNotebook Pro (git-fixes). - ALSA: hda/realtek: call alc_update_headset_mode() in hp_automute_hook (git-fixes). - ALSA: hda/realtek: fix a determine_headset_type issue for a Dell AIO (git-fixes). - ALSA: hda/realtek: fix mic boost on Intel NUC 8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 15 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 17 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 440 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 640 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 840 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 850 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 855 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G7 (git-fixes). - ALSA: hda/realtek: fix static noise on ALC285 Lenovo laptops (git-fixes). - ALSA: hda/realtek: reset eapd coeff to default value for alc287 (git-fixes). - ALSA: hda/realtek: the bass speaker can't output sound on Yoga 9i (git-fixes). - ALSA: hda: Add missing sanity checks in PM prepare/complete callbacks (git-fixes). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (bsc#1182377). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (git-fixes). - ALSA: hda: Drop the BATCH workaround for AMD controllers (git-fixes). - ALSA: hda: Flush pending unsolicited events before suspend (bsc#1182377). - ALSA: hda: Re-add dropped snd_poewr_change_state() calls (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: generic: Fix the micmute led init state (git-fixes). - ALSA: hda: generic: change the DAC ctl name for LO+SPK or LO+HP (git-fixes). - ALSA: hda: ignore invalid NHLT table (git-fixes). - ALSA: hdsp: do not disable if not enabled (git-fixes). - ALSA: hdspm: do not disable if not enabled (git-fixes). - ALSA: intel8x0: Do not update period unless prepared (git-fixes). - ALSA: line6: Fix racy initialization of LINE6 MIDI (git-fixes). - ALSA: rme9652: do not disable if not enabled (git-fixes). - ALSA: sb: Fix two use after free in snd_sb_qsound_build (git-fixes). - ALSA: usb-audio: Add DJM-450 to the quirks table (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM750 to Pioneer mixer quirk (git-fixes). - ALSA: usb-audio: Add MIDI quirk for Vox ToneLab EX (git-fixes). - ALSA: usb-audio: Add Pioneer DJM-850 to quirks-table (git-fixes). - ALSA: usb-audio: Add dB range mapping for Sennheiser Communications Headset PC 8 (git-fixes). - ALSA: usb-audio: Add error checks for usb_driver_claim_interface() calls (git-fixes). - ALSA: usb-audio: Add implicit feeback support for the BOSS GT-1 (git-fixes). - ALSA: usb-audio: Add support for Pioneer DJM-750 (git-fixes). - ALSA: usb-audio: Add support for many Roland devices' implicit feedback quirks (git-fixes). - ALSA: usb-audio: Apply implicit feedback mode for BOSS devices (git-fixes). - ALSA: usb-audio: Apply sample rate quirk to Logitech Connect (git-fixes). - ALSA: usb-audio: Carve out connector value checking into a helper (git-fixes). - ALSA: usb-audio: Check connector value on resume (git-fixes). - ALSA: usb-audio: Configure Pioneer DJM-850 samplerate (git-fixes). - ALSA: usb-audio: Convert remaining strlcpy() to strscpy() (git-fixes). - ALSA: usb-audio: Convert the last strlcpy() usage (git-fixes). - ALSA: usb-audio: DJM-750: ensure format is set (git-fixes). - ALSA: usb-audio: Declare Pioneer DJM-850 mixer controls (git-fixes). - ALSA: usb-audio: Drop implicit fb quirk entries dubbed for capture (git-fixes). - ALSA: usb-audio: Explicitly set up the clock selector (git-fixes). - ALSA: usb-audio: Fix "RANGE setting not yet supported" errors (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix implicit sync clearance at stopping stream (git-fixes). - ALSA: usb-audio: Fix potential out-of-bounce access in MIDI EP parser (git-fixes). - ALSA: usb-audio: Fix unintentional sign extension issue (git-fixes). - ALSA: usb-audio: Generic application of implicit fb to Roland/BOSS devices (git-fixes). - ALSA: usb-audio: Re-apply implicit feedback mode to Pioneer devices (git-fixes). - ALSA: usb-audio: Remove redundant assignment to len (git-fixes). - ALSA: usb-audio: Skip probe of UA-101 devices (git-fixes). - ALSA: usb-audio: Skip the clock selector inquiry for single connections (git-fixes). - ALSA: usb-audio: Validate MS endpoint descriptors (git-fixes). - ALSA: usb-audio: add mixer quirks for Pioneer DJM-900NXS2 (git-fixes). - ALSA: usb-audio: fix NULL ptr dereference in usb_audio_probe (bsc#1182552). - ALSA: usb-audio: fix Pioneer DJM-850 control label info (git-fixes). - ALSA: usb-audio: fix control-request direction (git-fixes). - ALSA: usb-audio: fix use after free in usb_audio_disconnect (bsc#1182552). - ALSA: usb-audio: generate midi streaming substream names from jack names (git-fixes). - ALSA: usb-audio: scarlett2: Fix device hang with ehci-pci (git-fixes). - ALSA: usb-audio: scarlett2: Improve driver startup messages (git-fixes). - ALSA: usb-audio: scarlett2: snd_scarlett_gen2_controls_create() can be static (git-fixes). - ALSA: usb-audio: use usb headers rather than define structs locally (git-fixes). - ALSA: usb: Use DIV_ROUND_UP() instead of open-coding it (git-fixes). - ALSA: usb: midi: do not return -ENOMEM when usb_urb_ep_type_check fails (git-fixes). - ASoC: Intel: Add DMI quirk table to soc_intel_is_byt_cr() (git-fixes). - ASoC: Intel: boards: sof-wm8804: add check for PLL setting (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for ARCHOS Cesium 140 (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Acer One S1002 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Chuwi Hi8 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Estar Beauty HD MID 7316R tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Voyo Winpad A15 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Enable jack-detect support on Asus T100TAF (git-fixes). - ASoC: Intel: bytcr_rt5640: Fix HP Pavilion x2 10-p0XX OVCD current threshold (git-fixes). - ASoC: Intel: bytcr_rt5651: Add quirk for the Jumper EZpad 7 tablet (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix kabylake_ssp_fixup function (git-fixes). - ASoC: Intel: sof_sdw: add quirk for HP Spectre x360 convertible (git-fixes). - ASoC: Intel: sof_sdw: add quirk for new ADL-P Rvp (git-fixes). - ASoC: Intel: sof_sdw: reorganize quirks by generation (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: hda: remove unnecessary parentheses (git-fixes). - ASoC: SOF: Intel: unregister DMIC device on probe error (git-fixes). - ASoC: SOF: intel: fix wrong poll bits in dsp power down (git-fixes). - ASoC: ak4458: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Fix s/show/slow/ typo (git-fixes). - ASoC: ak5558: correct reset polarity (git-fixes). - ASoC: codecs: wcd934x: add a sanity check in set channel map (git-fixes). - ASoC: cs35l33: fix an error code in probe() (git-fixes). - ASoC: cs42l42: Always wait at least 3ms after reset (git-fixes). - ASoC: cs42l42: Do not enable/disable regulator at Bias Level (git-fixes). - ASoC: cs42l42: Fix Bitclock polarity inversion (git-fixes). - ASoC: cs42l42: Fix channel width support (git-fixes). - ASoC: cs42l42: Fix mixer volume control (git-fixes). - ASoC: cs42l42: Regmap must use_single_read/write (git-fixes). - ASoC: cygnus: fix for_each_child.cocci warnings (git-fixes). - ASoC: es8316: Simplify adc_pga_gain_tlv table (git-fixes). - ASoC: fsl_esai: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: fsl_ssi: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: intel: atom: Remove 44100 sample-rate from the media and deep-buffer DAI descriptions (git-fixes). - ASoC: intel: atom: Stop advertising non working S24LE support (git-fixes). - ASoC: max98373: Added 30ms turn on/off time delay (git-fixes). - ASoC: max98373: Changed amp shutdown register as volatile (git-fixes). - ASoC: qcom: lpass-cpu: Fix lpass dai ids parse (git-fixes). - ASoC: qcom: sdm845: Fix array out of bounds access (git-fixes). - ASoC: qcom: sdm845: Fix array out of range on rx slim channels (git-fixes). - ASoC: rsnd: call rsnd_ssi_master_clk_start() from rsnd_ssi_init() (git-fixes). - ASoC: rsnd: check all BUSIF status when error (git-fixes). - ASoC: rsnd: core: Check convert rate in rsnd_hw_params (git-fixes). - ASoC: rt1015: fix i2c communication error (git-fixes). - ASoC: rt286: Generalize support for ALC3263 codec (git-fixes). - ASoC: rt286: Make RT286_SET_GPIO_* readable and writable (git-fixes). - ASoC: rt5640: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5651: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5659: Update MCLK rate in set_sysclk() (git-fixes). - ASoC: rt5670: Add a quirk for the Dell Venue 10 Pro 5055 (git-fixes). - ASoC: rt5670: Add emulated 'DAC1 Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'HP Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'OUT Channel Switch' control (git-fixes). - ASoC: rt5670: Remove ADC vol-ctrl mute bits poking from Sto1 ADC mixer settings (git-fixes). - ASoC: rt711: add snd_soc_component remove callback (git-fixes). - ASoC: samsung: snow: remove useless test (git-fixes). - ASoC: samsung: tm2_wm5110: check of of_parse return value (git-fixes). - ASoC: sgtl5000: set DAP_AVC_CTRL register to correct default value on probe (git-fixes). - ASoC: simple-card-utils: Do not handle device clock (git-fixes). - ASoC: simple-card: fix possible uninitialized single_cpu local variable (git-fixes). - ASoC: soc-core kABI workaround (git-fixes). - ASoC: soc-core: Prevent warning if no DMI table is present (git-fixes). - ASoC: sunxi: sun4i-codec: fill ASoC card owner (git-fixes). - ASoC: wm8960: Fix wrong bclk and lrclk with pll enabled for some chips (git-fixes). - ASoC: wm8960: Remove bitclk relax condition in wm8960_configure_sysclk (git-fixes). - Bluetooth: Fix incorrect status handling in LE PHY UPDATE event (git-fixes). - Bluetooth: Fix null pointer dereference in amp_read_loc_assoc_final_data (git-fixes). - Bluetooth: L2CAP: Fix handling LE modes by L2CAP_OPTIONS (git-fixes). - Bluetooth: SMP: Fail if remote and local public keys are identical (git-fixes). - Bluetooth: Set CONF_NOT_COMPLETE as l2cap_chan default (git-fixes). - Bluetooth: avoid deadlock between hci_dev->lock and socket lock (git-fixes). - Bluetooth: btqca: Add valid le states quirk (git-fixes). - Bluetooth: btusb: Enable quirk boolean flag for Mediatek Chip (git-fixes). - Bluetooth: check for zapped sk before connecting (git-fixes). - Bluetooth: hci_h5: Set HCI_QUIRK_SIMULTANEOUS_DISCOVERY for btrtl (git-fixes). - Bluetooth: initialize skb_queue_head at l2cap_chan_create() (git-fixes). - Drivers: hv: vmbus: Fix Suspend-to-Idle for Generation-2 VM (git-fixes). - Drivers: hv: vmbus: Increase wait time for VMbus unload (bsc#1185725). - Drivers: hv: vmbus: Initialize unload_event statically (bsc#1185725). - Drivers: hv: vmbus: Use after free in __vmbus_open() (git-fixes). - EDAC/amd64: Check for memory before fully initializing an instance (bsc#1183815). - EDAC/amd64: Get rid of the ECC disabled long message (bsc#1183815). - EDAC/amd64: Use cached data when checking for ECC (bsc#1183815). - Goodix Fingerprint device is not a modem (git-fixes). - HID: alps: fix error return code in alps_input_configured() (git-fixes). - HID: google: add don USB id (git-fixes). - HID: i2c-hid: Add I2C_HID_QUIRK_NO_IRQ_AFTER_RESET for ITE8568 EC on Voyo Winpad A15 (git-fixes). - HID: mf: add support for 0079:1846 Mayflash/Dragonrise USB Gamecube Adapter (git-fixes). - HID: plantronics: Workaround for double volume key presses (git-fixes). - HID: wacom: Assign boolean values to a bool variable (git-fixes). - HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices (git-fixes). - HSI: Fix PM usage counter unbalance in ssi_hw_init (git-fixes). - IB/hfi1: Fix probe time panic when AIP is enabled with a buggy BIOS (jsc#SLE-13208). - IB/hfi1: Rework AIP and VNIC dummy netdev usage (jsc#SLE-13208). - Input: applespi - do not wait for responses to commands indefinitely (git-fixes). - Input: elantech - fix protocol errors for some trackpoints in SMBus mode (git-fixes). - Input: elants_i2c - do not bind to i2c-hid compatible ACPI instantiated devices (git-fixes). - Input: i8042 - fix Pegatron C15B ID entry (git-fixes). - Input: nspire-keypad - enable interrupts only when opened (git-fixes). - Input: s6sy761 - fix coordinate read bit shift (git-fixes). - Input: silead - add workaround for x86 BIOS-es which bring the chip up in a stuck state (git-fixes). - KEYS: trusted: Fix TPM reservation for seal/unseal (git-fixes). - KEYS: trusted: Fix memory leak on object td (git-fixes). - KVM x86: Extend AMD specific guest behavior to Hygon virtual CPUs (bsc#1183447). - KVM: PPC: Book3S HV P9: Restore host CTRL SPR after guest exit (bsc#1156395). - KVM: PPC: Make the VMX instruction emulation routines static (bsc#1156395). - KVM: SVM: Clear the CR4 register on reset (bsc#1183252). - KVM: kvmclock: Fix vCPUs > 64 can't be online/hotpluged (bsc#1152489). - KVM: nVMX: Properly handle userspace interrupt window request (bsc#1183427). - KVM: s390: fix guarded storage control register handling (bsc#1133021). - KVM: x86: Add helpers to perform CPUID-based guest vendor check (bsc#1183445). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183287). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183323). - KVM: x86: Expose XSAVEERPTR to the guest (jsc#SLE-13573). - KVM: x86: Return -E2BIG when KVM_GET_SUPPORTED_CPUID hits max entries (bsc#1183428). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183288). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183324). - KVM: x86: do not reset microcode version on INIT or RESET (bsc#1183412). - KVM: x86: list MSR_IA32_UCODE_REV as an emulated MSR (bsc#1183369). - NFC: nci: fix memory leak in nci_allocate_device (git-fixes). - PCI/AER: Add RCEC AER error injection support (bsc#1174426). - PCI/AER: Add pcie_walk_rcec() to RCEC AER handling (bsc#1174426). - PCI/AER: Clear AER status from Root Port when resetting Downstream Port (bsc#1174426). - PCI/AER: Specify the type of Port that was reset (bsc#1174426). - PCI/AER: Use "aer" variable for capability offset (bsc#1174426). - PCI/AER: Write AER Capability only when we control it (bsc#1174426). - PCI/ERR: Add pci_walk_bridge() to pcie_do_recovery() (bsc#1174426). - PCI/ERR: Add pcie_link_rcec() to associate RCiEPs (bsc#1174426). - PCI/ERR: Avoid negated conditional for clarity (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (jsc#SLE-13736 jsc#SLE-14845). - PCI/ERR: Cache RCEC EA Capability offset in pci_init_capabilities() (bsc#1174426). - PCI/ERR: Clear AER status only when we control AER (bsc#1174426). - PCI/ERR: Clear PCIe Device Status errors only if OS owns AER (bsc#1174426). - PCI/ERR: Clear status of the reporting device (bsc#1174426). - PCI/ERR: Recover from RCEC AER errors (bsc#1174426). - PCI/ERR: Recover from RCiEP AER errors (bsc#1174426). - PCI/ERR: Rename reset_link() to reset_subordinates() (bsc#1174426). - PCI/ERR: Retain status from error notification (bsc#1174426). - PCI/ERR: Simplify by computing pci_pcie_type() once (bsc#1174426). - PCI/ERR: Simplify by using pci_upstream_bridge() (bsc#1174426). - PCI/ERR: Use "bridge" for clarity in pcie_do_recovery() (bsc#1174426). - PCI/PME: Add pcie_walk_rcec() to RCEC PME handling (bsc#1174426). - PCI/RCEC: Fix RCiEP device to RCEC association (git-fixes). - PCI/RCEC: Fix RCiEP device to RCEC association (jsc#SLE-13736 jsc#SLE-14845 git-fixes). - PCI/portdrv: Report reset for frozen channel (bsc#1174426). - PCI: Add a REBAR size quirk for Sapphire RX 5600 XT Pulse (git-fixes). - PCI: Add function 1 DMA alias quirk for Marvell 9215 SATA controller (git-fixes). - PCI: Allow VPD access for QLogic ISP2722 (git-fixes). - PCI: Fix pci_register_io_range() memory leak (git-fixes). - PCI: PM: Do not read power state in pci_enable_device_flags() (git-fixes). - PCI: Release OF node in pci_scan_device()'s error path (git-fixes). - PCI: designware-ep: Fix the Header Type check (git-fixes). - PCI: dwc: Move iATU detection earlier (git-fixes). - PCI: endpoint: Fix missing destroy_workqueue() (git-fixes). - PCI: iproc: Fix return value of iproc_msi_irq_domain_alloc() (git-fixes). - PCI: keystone: Let AM65 use the pci_ops defined in pcie-designware-host.c (git-fixes). - PCI: mediatek: Add missing of_node_put() to fix reference leak (git-fixes). - PCI: tegra: Fix ASPM-L1SS advertisement disable code (git-fixes). - PCI: tegra: Move "dbi" accesses to post common DWC initialization (git-fixes). - PCI: thunder: Fix compile testing (git-fixes). - PCI: xgene-msi: Fix race in installing chained irq handler (git-fixes). - PM / devfreq: Use more accurate returned new_freq as resume_freq (git-fixes). - PM: EM: postpone creating the debugfs dir till fs_initcall (git-fixes). - PM: runtime: Add documentation for pm_runtime_resume_and_get() (git-fixes). - PM: runtime: Add pm_runtime_resume_and_get to deal with usage counter (bsc#1183366). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix race getting/putting suppliers at probe (git-fixes). - Platform: OLPC: Fix probe error handling (git-fixes). - RAS/CEC: Correct ce_add_elem()'s returned values (bsc#1152489). - RDMA/addr: create addr_wq with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/cm: Fix IRQ restore in ib_send_cm_sidr_rep (jsc#SLE-15176). - RDMA/core: create ib_cm with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/hns: Delete redundant abnormal interrupt status (git-fixes). - RDMA/hns: Delete redundant condition judgment related to eq (git-fixes). - RDMA/mlx5: Fix drop packet rule in egress table (jsc#SLE-15175). - RDMA/qedr: Fix error return code in qedr_iw_connect() (jsc#SLE-8215). - RDMA/rtrs-clt: Close rtrs client conn before destroying rtrs clt session files (jsc#SLE-15176). - RDMA/rtrs-clt: destroy sysfs after removing session from active list (jsc#SLE-15176). - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srpt: Fix error return code in srpt_cm_req_recv() (git-fixes). - Re-enable yenta socket driver for x86_64 (bsc#1186349) - SUNRPC in case of backlog, hand free slots directly to waiting task (bsc#1185428). - USB: Add LPM quirk for Lenovo ThinkPad USB-C Dock Gen2 Ethernet (git-fixes). - USB: Add reset-resume quirk for WD19's Realtek Hub (git-fixes). - USB: CDC-ACM: fix poison/unpoison imbalance (bsc#1184984). - USB: CDC-ACM: fix poison/unpoison imbalance (git-fixes). - USB: cdc-acm: downgrade message to debug (git-fixes). - USB: cdc-acm: fix TIOCGSERIAL implementation (git-fixes). - USB: cdc-acm: fix double free on probe failure (git-fixes). - USB: cdc-acm: fix unprivileged TIOCCSERIAL (git-fixes). - USB: cdc-acm: fix use-after-free after probe failure (git-fixes). - USB: cdc-acm: untangle a circular dependency between callback and softint (git-fixes). - USB: gadget: u_ether: Fix a configfs return code (git-fixes). - USB: gadget: udc: fix wrong pointer passed to IS_ERR() and PTR_ERR() (git-fixes). - USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem (git-fixes). - USB: replace hardcode maximum usb string length by definition (git-fixes). - USB: serial: ark3116: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ch341: add new Product ID (git-fixes). - USB: serial: cp210x: add ID for Acuity Brands nLight Air Adapter (git-fixes). - USB: serial: cp210x: add some more GE USB IDs (git-fixes). - USB: serial: f81232: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: f81534: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: fix return value for unsupported ioctls (git-fixes). - USB: serial: io_edgeport: fix memory leak in edge_startup (git-fixes). - USB: serial: mos7720: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: opticon: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: pl2303: add support for PL2303HXN (bsc#1186320). - USB: serial: pl2303: fix line-speed handling on newer chips (bsc#1186320). - USB: serial: quatech2: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ssu100: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ti_usb_3410_5052: fix TIOCSSERIAL permission check (git-fixes). - USB: serial: usb_wwan: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: usb_wwan: fix TIOCSSERIAL jiffies conversions (git-fixes). - USB: serial: usb_wwan: fix unprivileged TIOCCSERIAL (git-fixes). - USB: usblp: fix a hang in poll() if disconnected (git-fixes). - Update bug reference for USB-audio fixes (bsc#1182552 bsc#1183598) - amd/amdgpu: Disable VCN DPG mode for Picasso (git-fixes). - amdgpu: avoid incorrect %hu format string (git-fixes). - apparmor: Fix aa_label refcnt leak in policy_update (git-fixes). - apparmor: check/put label on apparmor_sk_clone_security() (git-fixes). - appletalk: Fix skb allocation size in loopback case (git-fixes). - arm64: make STACKPROTECTOR_PER_TASK configurable (bsc#1181862). - ata: ahci: Disable SXS for Hisilicon Kunpeng920 (git-fixes). - ata: libahci_platform: fix IRQ check (git-fixes). - ath10k: Fix a use after free in ath10k_htc_send_bundle (git-fixes). - ath10k: Fix ath10k_wmi_tlv_op_pull_peer_stats_info() unlock without lock (git-fixes). - ath10k: fix wmi mgmt tx queue full due to race condition (git-fixes). - ath10k: hold RCU lock when calling ieee80211_find_sta_by_ifaddr() (git-fixes). - ath9k: Fix error check in ath9k_hw_read_revisions() for PCI devices (git-fixes). - ath9k: fix transmitting to stations in dynamic SMPS mode (git-fixes). - atl1c: fix error return code in atl1c_probe() (git-fixes). - atl1e: fix error return code in atl1e_probe() (git-fixes). - backlight: journada720: Fix Wmisleading-indentation warning (git-fixes). - batman-adv: initialize "struct batadv_tvlv_tt_vlan_data"->reserved field (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - blk-iocost: ioc_pd_free() shouldn't assume irq disabled (git-fixes). - blk-mq: plug request for shared sbitmap (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blk-mq: set default elevator as deadline in case of hctx shared tagset (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blkcg: fix memleak for iolatency (git-fixes). - block, bfq: set next_rq to waker_bfqq->next_rq in waker injection (bsc#1168838). - block: fix get_max_io_size() (git-fixes). - block: recalculate segment count for multi-segment discards correctly (bsc#1184724). - block: rsxx: fix error return code of rsxx_pci_probe() (git-fixes). - block: rsxx: select CONFIG_CRC32 (git-fixes). - bluetooth: eliminate the potential race condition when removing the HCI controller (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: fix ternary sign extension bug in bnxt_show_temp() (git-fixes). - bnxt_en: reliably allocate IRQ table on reset to avoid crash (jsc#SLE-8371 bsc#1153274). - bnxt_en: reverse order of TX disable and carrier off (git-fixes). - bpf, sockmap: Fix sk->prot unhash op reset (bsc#1155518). - bpf,x64: Pad NOPs to make images converge more easily (bsc#1178163). - bpf: Add sanity check for upper ptr_limit (bsc#1183686 bsc#1183775). - bpf: Avoid warning when re-casting __bpf_call_base into __bpf_call_base_args (bsc#1155518). - bpf: Declare __bpf_free_used_maps() unconditionally (bsc#1155518). - bpf: Do not do bpf_cgroup_storage_set() for kuprobe/tp programs (bsc#1155518). - bpf: Enforce that struct_ops programs be GPL-only (bsc#1177028). - bpf: Fix 32 bit src register truncation on div/mod (bsc#1184170). - bpf: Fix an unitialized value in bpf_iter (bsc#1177028). - bpf: Fix leakage of uninitialized bpf stack under speculation (bsc#1155518). - bpf: Fix masking negation logic upon negative dst register (bsc#1155518). - bpf: Fix propagation of 32 bit unsigned bounds from 64 bit bounds (bsc#1177028). - bpf: Fix verifier jsgt branch analysis on max bound (bsc#1155518). - bpf: Refcount task stack in bpf_get_task_stack (bsc#1177028). - bpf: Remove MTU check in __bpf_skb_max_len (bsc#1155518). - bpf: Simplify alu_limit masking for pointer arithmetic (bsc#1183686 bsc#1183775). - bpf: link: Refuse non-O_RDWR flags in BPF_OBJ_GET (bsc#1177028). - bpf_lru_list: Read double-checked variable once without lock (bsc#1155518). - brcmfmac: Add DMI nvram filename quirk for Predia Basic tablet (git-fixes). - brcmfmac: Add DMI nvram filename quirk for Voyo winpad A15 tablet (git-fixes). - brcmfmac: clear EAP/association status bits on linkdown events (git-fixes). - bsg: free the request before return error code (git-fixes). - btrfs: abort the transaction if we fail to inc ref in btrfs_copy_root (bsc#1184217). - btrfs: always pin deleted leaves when there are active tree mod log users (bsc#1184224). - btrfs: fix exhaustion of the system chunk array due to concurrent allocations (bsc#1183386). - btrfs: fix extent buffer leak on failure to copy root (bsc#1184218). - btrfs: fix qgroup data rsv leak caused by falloc failure (bsc#1185549). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race when cloning extent buffer during rewind of an old root (bsc#1184193). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix stale data exposure after cloning a hole with NO_HOLES enabled (bsc#1184220). - btrfs: fix subvolume/snapshot deletion not triggered on mount (bsc#1184219). - btrfs: track qgroup released data in own variable in insert_prealloc_file_extent (bsc#1185549). - bus: fsl-mc: add the dpdbg device type (bsc#1185670). - bus: fsl-mc: list more commands as accepted through the ioctl (bsc#1185670). - bus: omap_l3_noc: mark l3 irqs as IRQF_NO_THREAD (git-fixes). - bus: qcom: Put child node before return (git-fixes). - bus: ti-sysc: Fix warning on unbind if reset is not deasserted (git-fixes). - can: c_can: move runtime PM enable/disable to c_can_platform (git-fixes). - can: c_can_pci: c_can_pci_remove(): fix use-after-free (git-fixes). - can: flexcan: assert FRZ bit in flexcan_chip_freeze() (git-fixes). - can: flexcan: enable RX FIFO after FRZ/HALT valid (git-fixes). - can: flexcan: flexcan_chip_freeze(): fix chip freeze for missing bitrate (git-fixes). - can: flexcan: invoke flexcan_chip_freeze() to enter freeze mode (git-fixes). - can: m_can: m_can_do_rx_poll(): fix extraneous msg loss warning (git-fixes). - can: peak_usb: Revert "can: peak_usb: add forgotten supported devices" (git-fixes). - can: peak_usb: add forgotten supported devices (git-fixes). - can: skb: can_skb_set_owner(): fix ref counting if socket was closed before setting skb ownership (git-fixes). - cdc-acm: fix BREAK rx code path adding necessary calls (git-fixes). - cdc-wdm: untangle a circular dependency between callback and softint (git-fixes). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - cfg80211: remove WARN_ON() in cfg80211_sme_connect (git-fixes). - cfg80211: scan: drop entry from hidden_list on overflow (git-fixes). - ch_ktls: Fix kernel panic (jsc#SLE-15131). - ch_ktls: do not send snd_una update to TCB in middle (jsc#SLE-15131). - ch_ktls: fix device connection close (jsc#SLE-15131). - ch_ktls: fix enum-conversion warning (jsc#SLE-15129). - ch_ktls: tcb close causes tls connection failure (jsc#SLE-15131). - cifs: New optype for session operations (bsc#1181507). - cifs: Tracepoints and logs for tracing credit changes (bsc#1181507). - cifs: change noisy error message to FYI (bsc#1181507). - cifs: check pointer before freeing (bsc#1183534). - cifs: do not send close in compound create+close requests (bsc#1181507). - cifs: print MIDs in decimal notation (bsc#1181507). - cifs: return proper error code in statfs(2) (bsc#1181507). - cifs_debug: use %pd instead of messing with ->d_name (bsc#1181507). - clk: exynos7: Mark aclk_fsys1_200 as critical (git-fixes). - clk: fix invalid usage of list cursor in register (git-fixes). - clk: fix invalid usage of list cursor in unregister (git-fixes). - clk: mvebu: armada-37xx-periph: Fix switching CPU freq from 250 Mhz to 1 GHz (git-fixes). - clk: mvebu: armada-37xx-periph: Fix workaround for switching from L1 to L0 (git-fixes). - clk: mvebu: armada-37xx-periph: remove .set_parent method for CPU PM clock (git-fixes). - clk: qcom: a53-pll: Add missing MODULE_DEVICE_TABLE (git-fixes). - clk: socfpga: arria10: Fix memory leak of socfpga_clk on error return (git-fixes). - clk: socfpga: fix iomem pointer cast on 64-bit (git-fixes). - clk: uniphier: Fix potential infinite loop (git-fixes). - clk: zynqmp: move zynqmp_pll_set_mode out of round_rate callback (git-fixes). - completion: Drop init_completion define (git-fixes). - configfs: fix a use-after-free in __configfs_open_file (git-fixes). - coresight: etm4x: Fix issues on trcseqevr access (git-fixes). - coresight: etm4x: Fix save and restore of TRCVMIDCCTLR1 register (git-fixes). - coresight: remove broken __exit annotations (git-fixes). - coresight: tmc-etr: Fix barrier packet insertion for perf buffer (git-fixes). - cpufreq: Kconfig: fix documentation links (git-fixes). - cpufreq: armada-37xx: Fix determining base CPU frequency (git-fixes). - cpufreq: armada-37xx: Fix driver cleanup when registration failed (git-fixes). - cpufreq: armada-37xx: Fix setting TBG parent for load levels (git-fixes). - cpufreq: armada-37xx: Fix the AVS value for load L1 (git-fixes). - cpufreq: intel_pstate: Add Icelake servers support in no-HWP mode (bsc#1185758). - cpuidle/pseries: Fixup CEDE0 latency only for POWER10 onwards (bsc#1185550 ltc#192610). - crypto: api - check for ERR pointers in crypto_destroy_tfm() (git-fixes). - crypto: arm/curve25519 - Move '.fpu' after '.arch' (git-fixes). - crypto: chelsio - Read rxchannel-id from firmware (git-fixes). - crypto: mips/poly1305 - enable for all MIPS processors (git-fixes). - crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init (git-fixes). - crypto: qat - Fix a double free in adf_create_ring (git-fixes). - crypto: qat - do not release uninitialized resources (git-fixes). - crypto: qat - fix error path in adf_isr_resource_alloc() (git-fixes). - crypto: qat - fix unmap invalid dma address (git-fixes). - crypto: rng - fix crypto_rng_reset() refcounting when !CRYPTO_STATS (git-fixes). - crypto: stm32/cryp - Fix PM reference leak on stm32-cryp.c (git-fixes). - crypto: stm32/hash - Fix PM reference leak on stm32-hash.c (git-fixes). - crypto: tcrypt - avoid signed overflow in byte count (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4: Fix unintentional sign extension issues (git-fixes). - cxgb4: avoid collecting SGE_QBASE regs during traffic (git-fixes). - dm era: Fix bitset memory leaks (git-fixes). - dm era: Recover committed writeset after crash (git-fixes). - dm era: Reinitialize bitset cache before digesting a new writeset (git-fixes). - dm era: Update in-core bitset after committing the metadata (git-fixes). - dm era: Use correct value size in equality function of writeset tree (git-fixes). - dm era: Verify the data block size hasn't changed (git-fixes). - dm era: only resize metadata in preresume (git-fixes). - dm integrity: fix error reporting in bitmap mode after creation (git-fixes). - dm ioctl: fix error return code in target_message (git-fixes). - dm mpath: fix racey management of PG initialization (git-fixes). - dm mpath: switch paths in dm_blk_ioctl() code path (bsc#1167574, bsc#1175995, bsc#1184485). - dm raid: fix discard limits for raid1 (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (bsc#1185581). - dm writecache: fix the maximum number of arguments (git-fixes). - dm writecache: handle DAX to partitions on persistent memory correctly (git-fixes). - dm writecache: remove BUG() and fail gracefully instead (git-fixes). - dm zoned: select CONFIG_CRC32 (git-fixes). - dm: avoid filesystem lookup in dm_get_dev_t() (git-fixes). - dm: eliminate potential source of excessive kernel log noise (git-fixes). - dm: fix bug with RCU locking in dm_blk_report_zones (git-fixes). - dm: remove invalid sparse __acquires and __releases annotations (git-fixes). - dmaengine: Fix a double free in dma_async_device_register (git-fixes). - dmaengine: dw-edma: Fix crash on loading/unloading driver (git-fixes). - dmaengine: dw: Make it dependent to HAS_IOMEM (git-fixes). - dmaengine: idxd: Fix clobbering of SWERR overflow bit on writeback (git-fixes). - dmaengine: idxd: Fix potential null dereference on pointer status (git-fixes). - dmaengine: idxd: cleanup pci interrupt vector allocation management (git-fixes). - dmaengine: idxd: clear MSIX permission entry on shutdown (git-fixes). - dmaengine: idxd: fix cdev setup and free device lifetime issues (git-fixes). - dmaengine: idxd: fix delta_rec and crc size field for completion record (git-fixes). - dmaengine: idxd: fix dma device lifetime (git-fixes). - dmaengine: idxd: fix opcap sysfs attribute output (git-fixes). - dmaengine: idxd: fix wq cleanup of WQCFG registers (git-fixes). - dmaengine: idxd: fix wq size store permission state (git-fixes). - dmaengine: idxd: removal of pcim managed mmio mapping (git-fixes). - docs: kernel-parameters: Add gpio_mockup_named_lines (git-fixes). - docs: kernel-parameters: Move gpio-mockup for alphabetic order (git-fixes). - dpaa_eth: Remove unnecessary boolean expression in dpaa_get_headroom (git-fixes). - dpaa_eth: Use random MAC address when none is given (bsc#1184811). - dpaa_eth: copy timestamp fields to new skb in A-050385 workaround (git-fixes). - dpaa_eth: fix the RX headroom size alignment (git-fixes). - dpaa_eth: update the buffer layout for non-A050385 erratum scenarios (git-fixes). - drivers: hv: Fix whitespace errors (bsc#1185725). - drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs()' (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drm/amd/display/dc/dce/dce_aux: Remove duplicate line causing 'field overwritten' issue (git-fixes). - drm/amd/display: Check for DSC support instead of ASIC revision (git-fixes). - drm/amd/display: Correct algorithm for reversed gamma (git-fixes). - drm/amd/display: DCHUB underflow counter increasing in some scenarios (git-fixes). - drm/amd/display: Do not optimize bandwidth before disabling planes (git-fixes). - drm/amd/display: Fix UBSAN warning for not a valid value for type '_Bool' (git-fixes). - drm/amd/display: Fix UBSAN: shift-out-of-bounds warning (git-fixes). - drm/amd/display: Fix debugfs link_settings entry (git-fixes). - drm/amd/display: Fix nested FPU context in dcn21_validate_bandwidth() (git-fixes). - drm/amd/display: Fix off by one in hdmi_14_process_transaction() (git-fixes). - drm/amd/display: Fix two cursor duplication when using overlay (git-fixes). - drm/amd/display: Force vsync flip when reconfiguring MPCC (git-fixes). - drm/amd/display: Guard against NULL pointer deref when get_i2c_info fails (git-fixes). - drm/amd/display: Initialize attribute for hdcp_srm sysfs file (git-fixes). - drm/amd/display: Reject non-zero src_y and src_x for video planes (git-fixes). - drm/amd/display: Revert dram_clock_change_latency for DCN2.1 (git-fixes). - drm/amd/display: Try YCbCr420 color when YCbCr444 fails (git-fixes). - drm/amd/display: add handling for hdcp2 rx id list validation (git-fixes). - drm/amd/display: changing sr exit latency (git-fixes). - drm/amd/display: fix dml prefetch validation (git-fixes). - drm/amd/display: fixed divide by zero kernel crash during dsc enablement (git-fixes). - drm/amd/display: turn DPMS off on connector unplug (git-fixes). - drm/amd/pm: fix workload mismatch on vega10 (git-fixes). - drm/amd/powerplay: fix spelling mistake "smu_state_memroy_block" -> (bsc#1152489) Backporting notes: * rename amd/pm to amd/powerplay * context changes - drm/amdgpu : Fix asic reset regression issue introduce by 8f211fe8ac7c4f (git-fixes). - drm/amdgpu/display/dm: add missing parameter documentation (git-fixes). - drm/amdgpu/display: buffer INTERRUPT_LOW_IRQ_CONTEXT interrupt work (git-fixes). - drm/amdgpu/display: remove redundant continue statement (git-fixes). - drm/amdgpu/display: restore AUX_DPHY_TX_CONTROL for DCN2.x (git-fixes). - drm/amdgpu/display: use GFP_ATOMIC in dcn21_validate_bandwidth_fp() (git-fixes). - drm/amdgpu/swsmu: add interrupt work function (git-fixes). - drm/amdgpu/swsmu: add interrupt work handler for smu11 parts (git-fixes). - drm/amdgpu: Add additional Sienna Cichlid PCI ID (git-fixes). - drm/amdgpu: Add check to prevent IH overflow (git-fixes). - drm/amdgpu: Add mem sync flag for IB allocated by SA (git-fixes). - drm/amdgpu: Fix GPU TLB update error when PAGE_SIZE > AMDGPU_PAGE_SIZE (git-fixes). - drm/amdgpu: Fix some unload driver issues (git-fixes). - drm/amdgpu: Init GFX10_ADDR_CONFIG for VCN v3 in DPG mode (git-fixes). - drm/amdgpu: check alignment on CPU page for bo map (git-fixes). - drm/amdgpu: disable 3DCGCG on picasso/raven1 to avoid compute hang (git-fixes). - drm/amdgpu: fb BO should be ttm_bo_type_device (git-fixes). - drm/amdgpu: fix NULL pointer dereference (git-fixes). - drm/amdgpu: fix concurrent VM flushes on Vega/Navi v2 (git-fixes). - drm/amdgpu: fix offset calculation in amdgpu_vm_bo_clear_mappings() (git-fixes). - drm/amdgpu: fix parameter error of RREG32_PCIE() in amdgpu_regs_pcie (git-fixes). - drm/amdgpu: mask the xgmi number of hops reported from psp to kfd (git-fixes). - drm/amdgpu: remove unused variable from struct amdgpu_bo (git-fixes). - drm/amdgpu: update gc golden setting for Navi12 (git-fixes). - drm/amdgpu: update sdma golden setting for Navi12 (git-fixes). - drm/amdkfd: Fix UBSAN shift-out-of-bounds warning (git-fixes). - drm/amdkfd: Fix cat debugfs hang_hws file causes system crash bug (git-fixes). - drm/amdkfd: Put ACPI table after using it (bsc#1152489) Backporting notes: * context changes - drm/amdkfd: dqm fence memory corruption (git-fixes). - drm/amdkfd: fix build error with AMD_IOMMU_V2=m (git-fixes). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix invalid usage of AST_MAX_HWC_WIDTH in cursor atomic_check (git-fixes). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/compat: Clear bounce structures (git-fixes). - drm/dp_mst: Revise broadcast msg lct & lcr (git-fixes). - drm/dp_mst: Set CLEAR_PAYLOAD_ID_TABLE as broadcast (git-fixes). - drm/hisilicon: Fix use-after-free (git-fixes). - drm/i915/display: fix compiler warning about array overrun (git-fixes). - drm/i915/gt: Clear CACHE_MODE prior to clearing residuals (git-fixes). - drm/i915/gt: Disable HiZ Raw Stall Optimization on broken gen7 (git-fixes). - drm/i915/gvt: Fix error code in intel_gvt_init_device() (git-fixes). - drm/i915/gvt: Set SNOOP for PAT3 on BXT/APL to workaround GPU BB hang (git-fixes). - drm/i915/overlay: Fix active retire callback alignment (git-fixes). - drm/i915/selftests: Fix some error codes (git-fixes). - drm/i915: Avoid div-by-zero on gen2 (git-fixes). - drm/i915: Fix ICL MG PHY vswing handling (git-fixes). - drm/i915: Fix crash in auto_retire (git-fixes). - drm/i915: Fix invalid access to ACPI _DSM objects (bsc#1184074). - drm/i915: Hold onto an explicit ref to i915_vma_work.pinned (git-fixes). - drm/i915: Read C0DRB3/C1DRB3 as 16 bits again (git-fixes). - drm/i915: Wedge the GPU if command parser setup fails (git-fixes). - drm/imx: imx-ldb: fix out of bounds array access warning (git-fixes). - drm/ingenic: Fix non-OSD mode (git-fixes). - drm/ingenic: Register devm action to cleanup encoders (git-fixes). - drm/komeda: Fix bit check to import to value of proper type (git-fixes). - drm/lima: fix reference leak in lima_pm_busy (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (git-fixes). - drm/mediatek: Fix aal size config (bsc#1152489) Backporting notes: * replaced mtk_ddp_write() with writel() - drm/msm/a5xx: Remove overwriting A5XX_PC_DBG_ECO_CNTL register (git-fixes). - drm/msm/adreno: a5xx_power: Do not apply A540 lm_setup to other GPUs (git-fixes). - drm/msm/gem: Add obj->lock wrappers (bsc#1152489) Backporting notes: * taken for 9b73bde39cf2 ("drm/msm: Fix use-after-free in msm_gem with carveout") * context changes - drm/msm/mdp5: Configure PP_SYNC_HEIGHT to double the vtotal (git-fixes). - drm/msm/mdp5: Do not multiply vclk line count by 100 (git-fixes). - drm/msm: Fix WARN_ON() splat in _free_object() (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix a5xx/a6xx timestamps (git-fixes). - drm/msm: Fix races managing the OOB state for timestamp vs (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix suspend/resume on i.MX5 (git-fixes). - drm/msm: Fix use-after-free in msm_gem with carveout (bsc#1152489) Backporting notes: * context changes - drm/msm: Ratelimit invalid-fence message (git-fixes). - drm/msm: Set drvdata to NULL when msm_drm_init() fails (git-fixes). - drm/msm: fix shutdown hook in case GPU components failed to bind (git-fixes). - drm/nouveau/kms/nv50-: Get rid of bogus nouveau_conn_mode_valid() (git-fixes). - drm/omap: fix misleading indentation in pixinc() (git-fixes). - drm/panfrost: Clear MMU irqs before handling the fault (git-fixes). - drm/panfrost: Do not corrupt the queue mutex on open/close (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Do not try to map pages that are already mapped (git-fixes). - drm/panfrost: Fix job timeout handling (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Remove unused variables in panfrost_job_close() (bsc#1152472) - drm/probe-helper: Check epoch counter in output_poll_execute() (git-fixes). - drm/qxl: do not run release if qxl failed to init (git-fixes). - drm/radeon/dpm: Disable sclk switching on Oland when two 4K 60Hz monitors are connected (git-fixes). - drm/radeon: Avoid power table parsing memory leaks (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (git-fixes). - drm/radeon: Fix off-by-one power_state index heap overwrite (git-fixes). - drm/radeon: fix AGP dependency (git-fixes). - drm/radeon: fix copy of uninitialized variable back to userspace (git-fixes). - drm/shmem-helper: Check for purged buffers in fault handler (git-fixes). - drm/shmem-helper: Do not remove the offset in vm_area_struct pgoff (git-fixes). - drm/shmem-helpers: vunmap: Do not put pages for dma-buf (git-fixes). - drm/sun4i: tcon: fix inverted DCLK polarity (bsc#1152489) Backporting notes: * context changes - drm/tegra: Fix reference leak when pm_runtime_get_sync() fails (git-fixes). - drm/tegra: dc: Do not set PLL clock to 0Hz (git-fixes). - drm/tegra: dc: Restore coupling of display controllers (git-fixes). - drm/tegra: sor: Grab runtime PM reference across reset (git-fixes). - drm/tilcdc: send vblank event when disabling crtc (git-fixes). - drm/vc4: crtc: Reduce PV fifo threshold on hvs4 (git-fixes). - drm/vc4: hdmi: Restore cec physical address on reconnect (bsc#1152472) Backporting notes: * context changes * change vc4_hdmi to vc4->hdmi * removed references to encoder->hdmi_monitor - drm/vkms: fix misuse of WARN_ON (git-fixes). - drm: Added orientation quirk for OneGX1 Pro (git-fixes). - drm: meson_drv add shutdown function (git-fixes). - drm: rcar-du: Fix PM reference leak in rcar_cmm_enable() (git-fixes). - drm: rcar-du: Fix crash when using LVDS1 clock for CRTC (bsc#1152489) Backporting notes: * context changes - drm: rcar-du: Fix leak of CMM platform device reference (git-fixes). - drm: xlnx: zynqmp: fix a memset in zynqmp_dp_train() (git-fixes). - e1000e: Fix duplicate include guard (git-fixes). - e1000e: Fix error handling in e1000_set_d0_lplu_state_82571 (git-fixes). - e1000e: add rtnl_lock() to e1000_reset_task (git-fixes). - efi: use 32-bit alignment for efi_guid_t literals (git-fixes). - enetc: Fix reporting of h/w packet counters (git-fixes). - enetc: Let the hardware auto-advance the taprio base-time of 0 (git-fixes). - enetc: Workaround for MDIO register access issue (git-fixes). - epoll: check for events when removing a timed out thread from the wait queue (git-fixes). - ethernet/netronome/nfp: Fix a use after free in nfp_bpf_ctrl_msg_rx (git-fixes). - ethernet: alx: fix order of calls on resume (git-fixes). - ethernet:enic: Fix a use after free bug in enic_hard_start_xmit (git-fixes). - ethtool: fix incorrect datatype in set_eee ops (bsc#1176447). - ethtool: fix missing NLM_F_MULTI flag when dumping (bsc#1176447). - ethtool: pause: make sure we init driver stats (jsc#SLE-15075). - exec: Move would_dump into flush_old_exec (git-fixes). - ext4: do not try to set xattr into ea_inode if value is empty (bsc#1184730). - ext4: find old entry again if failed to rename whiteout (bsc#1184742). - ext4: fix potential error in ext4_do_update_inode (bsc#1184731). - ext4: fix potential htree index checksum corruption (bsc#1184728). - extcon: Add stubs for extcon_register_notifier_all() functions (git-fixes). - extcon: Fix error handling in extcon_dev_register (git-fixes). - extcon: arizona: Fix some issues when HPDET IRQ fires after the jack has been unplugged (git-fixes). - extcon: arizona: Fix various races on driver unbind (git-fixes). - fbdev: zero-fill colormap in fbcmap.c (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Fix a use after bug in efi_mem_reserve_persistent (git-fixes). - firmware: arm_scpi: Prevent the ternary sign expansion bug (git-fixes). - firmware: qcom-scm: Fix QCOM_SCM configuration (git-fixes). - firmware: qcom_scm: Fix kernel-doc function names to match (git-fixes). - firmware: qcom_scm: Make __qcom_scm_is_call_available() return bool (git-fixes). - firmware: qcom_scm: Reduce locking section for __get_convention() (git-fixes). - firmware: qcom_scm: Workaround lack of "is available" call on SC7180 (git-fixes). - flow_dissector: fix byteorder of dissected ICMP ID (bsc#1154353). - fnic: use scsi_host_busy_iter() to traverse commands (bsc#1179851). - fotg210-udc: Complete OUT requests on short packets (git-fixes). - fotg210-udc: Do not DMA more than the buffer can take (git-fixes). - fotg210-udc: Fix DMA on EP0 for length > max packet size (git-fixes). - fotg210-udc: Fix EP0 IN requests bigger than two packets (git-fixes). - fotg210-udc: Mask GRP2 interrupts we do not handle (git-fixes). - fotg210-udc: Remove a dubious condition leading to fotg210_done (git-fixes). - fs/epoll: restore waking from ep_done_scan() (bsc#1183868). - fs/jfs: fix potential integer overflow on shift of a int (bsc#1184741). - fs: direct-io: fix missing sdio->boundary (bsc#1184736). - fsl/fman: check dereferencing null pointer (git-fixes). - fsl/fman: fix dereference null return value (git-fixes). - fsl/fman: fix eth hash table allocation (git-fixes). - fsl/fman: fix unreachable code (git-fixes). - fsl/fman: reuse set_mac_address() in dtsec init() (bsc#1184811). - fsl/fman: tolerate missing MAC address in device tree (bsc#1184811). - fsl/fman: use 32-bit unsigned integer (git-fixes). - ftrace/x86: Tell objtool to ignore nondeterministic ftrace stack layout (bsc#1177028). - ftrace: Fix modify_ftrace_direct (bsc#1177028). - ftrace: Handle commands when closing set_ftrace_filter file (git-fixes). - fuse: fix bad inode (bsc#1184211). - fuse: fix bad inode (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix write deadlock (bsc#1185573). - fuse: verify write return (git-fixes). - futex: Change utime parameter to be 'const ... *' (git-fixes). - futex: Do not apply time namespace adjustment on FUTEX_LOCK_PI (bsc#1164648). - futex: Get rid of the val2 conditional dance (git-fixes). - futex: Make syscall entry points less convoluted (git-fixes). - gcc-plugins: drop support for GCC &lt;= 4.7 (bcs#1181862). - gcc-plugins: make it possible to disable CONFIG_GCC_PLUGINS again (bcs#1181862). - gcc-plugins: simplify GCC plugin-dev capability test (bsc#1181862). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (git-fixes). - genirq/irqdomain: Do not try to free an interrupt that has no (git-fixes) - genirq: Disable interrupts for force threaded handlers (git-fixes) - genirq: Reduce irqdebug cacheline bouncing (bsc#1185703 ltc#192641). - gianfar: Account for Tx PTP timestamp in the skb headroom (git-fixes). - gianfar: Fix TX timestamping with a stacked DSA driver (git-fixes). - gianfar: Handle error code at MAC address change (git-fixes). - gianfar: Replace skb_realloc_headroom with skb_cow_head for PTP (git-fixes). - gpio: omap: Save and restore sysconfig (git-fixes). - gpio: pca953x: Set IRQ type when handle Intel Galileo Gen 2 (git-fixes). - gpio: sysfs: Obey valid_mask (git-fixes). - gpio: xilinx: Correct kernel doc for xgpio_probe() (git-fixes). - gpio: zynq: fix reference leak in zynq_gpio functions (git-fixes). - gpiolib: Do not free if pin ranges are not defined (git-fixes). - gpiolib: acpi: Add missing IRQF_ONESHOT (git-fixes). - gpiolib: acpi: Add quirk to ignore EC wakeups on Dell Venue 10 Pro 5055 (git-fixes). - gpu/xen: Fix a use after free in xen_drm_drv_init (git-fixes). - hrtimer: Update softirq_expires_next correctly after (git-fixes) - hv_netvsc: Reset the RSC count if NVSP_STAT_FAIL in netvsc_receive() (git-fixes). - hwmon: (ina3221) Fix PM usage counter unbalance in ina3221_write_enable (git-fixes). - hwmon: (occ) Fix poll rate limiting (git-fixes). - i2c: Add I2C_AQ_NO_REP_START adapter quirk (git-fixes). - i2c: bail out early when RDWR parameters are wrong (git-fixes). - i2c: cadence: add IRQ check (git-fixes). - i2c: emev2: add IRQ check (git-fixes). - i2c: img-scb: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: imx-lpi2c: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: jz4780: add IRQ check (git-fixes). - i2c: mlxbf: add IRQ check (git-fixes). - i2c: omap: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: rcar: faster irq code to minimize HW race condition (git-fixes). - i2c: rcar: optimize cacheline to minimize HW race condition (git-fixes). - i2c: sh7760: add IRQ check (git-fixes). - i2c: sh7760: fix IRQ error path (git-fixes). - i2c: sprd: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: tegra: Add missing pm_runtime_put() (bsc#1184386). - i2c: tegra: Check errors for both positive and negative values (bsc#1184386). - i2c: tegra: Clean up and improve comments (bsc#1184386). - i2c: tegra: Clean up printk messages (bsc#1184386). - i2c: tegra: Clean up probe function (bsc#1184386). - i2c: tegra: Clean up variable names (bsc#1184386). - i2c: tegra: Clean up variable types (bsc#1184386). - i2c: tegra: Clean up whitespaces, newlines and indentation (bsc#1184386). - i2c: tegra: Create i2c_writesl_vi() to use with VI I2C for filling TX FIFO (bsc#1184386). - i2c: tegra: Factor out error recovery from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out hardware initialization into separate function (bsc#1184386). - i2c: tegra: Factor out packet header setup from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out register polling into separate function (bsc#1184386). - i2c: tegra: Handle potential error of tegra_i2c_flush_fifos() (bsc#1184386). - i2c: tegra: Improve driver module description (bsc#1184386). - i2c: tegra: Improve formatting of variables (bsc#1184386). - i2c: tegra: Initialize div-clk rate unconditionally (bsc#1184386). - i2c: tegra: Make tegra_i2c_flush_fifos() usable in atomic transfer (bsc#1184386). - i2c: tegra: Mask interrupt in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Move out all device-tree parsing into tegra_i2c_parse_dt() (bsc#1184386). - i2c: tegra: Remove "dma" variable from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Remove error message used for devm_request_irq() failure (bsc#1184386). - i2c: tegra: Remove i2c_dev.clk_divisor_non_hs_mode member (bsc#1184386). - i2c: tegra: Remove likely/unlikely from the code (bsc#1184386). - i2c: tegra: Remove outdated barrier() (bsc#1184386). - i2c: tegra: Remove redundant check in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Rename wait/poll functions (bsc#1184386). - i2c: tegra: Reorder location of functions in the code (bsc#1184386). - i2c: tegra: Runtime PM always available on Tegra (bsc#1184386). - i2c: tegra: Use clk-bulk helpers (bsc#1184386). - i2c: tegra: Use devm_platform_get_and_ioremap_resource() (bsc#1184386). - i2c: tegra: Use platform_get_irq() (bsc#1184386). - i2c: tegra: Use reset_control_reset() (bsc#1184386). - i2c: tegra: Use threaded interrupt (bsc#1184386). - i2c: tegra: Wait for config load atomically while in ISR (bsc#1184386). - i40e: Add zero-initialization of AQ command structures (git-fixes). - i40e: Added Asym_Pause to supported link modes (git-fixes). - i40e: Fix PHY type identifiers for 2.5G and 5G adapters (git-fixes). - i40e: Fix add TC filter for IPv6 (git-fixes). - i40e: Fix addition of RX filters after enabling FW LLDP agent (git-fixes). - i40e: Fix display statistics for veb_tc (git-fixes). - i40e: Fix endianness conversions (git-fixes). - i40e: Fix flow for IPv6 next header (extension header) (git-fixes). - i40e: Fix kernel oops when i40e driver removes VF's (git-fixes). - i40e: Fix overwriting flow control settings during driver loading (git-fixes). - i40e: Fix parameters in aq_get_phy_register() (jsc#SLE-8025). - i40e: Fix sparse error: 'vsi->netdev' could be null (jsc#SLE-8025). - i40e: Fix sparse error: uninitialized symbol 'ring' (jsc#SLE-13701). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse warning: missing error code 'err' (git-fixes). - i40e: Fix use-after-free in i40e_client_subtask() (git-fixes). - i40e: fix broken XDP support (git-fixes). - i40e: fix the panic when running bpf in xdpdrv mode (git-fixes). - i40e: fix the restart auto-negotiation after FEC modified (git-fixes). - i915/perf: Start hrtimer only if sampling the OA buffer (git-fixes). - iavf: Fix incorrect adapter get in iavf_resume (git-fixes). - iavf: use generic power management (git-fixes). - ibmvfc: Avoid move login if fast fail is enabled (bsc#1185938 ltc#192043). - ibmvfc: Handle move login failure (bsc#1185938 ltc#192043). - ibmvfc: Reinit target retries (bsc#1185938 ltc#192043). - ibmvnic: add comments for spinlock_t definitions (bsc#1183871 ltc#192139). - ibmvnic: avoid calling napi_disable() twice (bsc#1065729). - ibmvnic: avoid multiple line dereference (bsc#1183871 ltc#192139). - ibmvnic: clean up the remaining debugfs data structures (bsc#1065729). - ibmvnic: correctly use dev_consume/free_skb_irq (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290 git-fixes). - ibmvnic: fix block comments (bsc#1183871 ltc#192139). - ibmvnic: fix braces (bsc#1183871 ltc#192139). - ibmvnic: fix miscellaneous checks (bsc#1183871 ltc#192139). - ibmvnic: improve failover sysfs entry (bsc#1043990 ltc#155681 git-fixes). - ibmvnic: merge do_change_param_reset into do_reset (bsc#1183871 ltc#192139). - ibmvnic: prefer 'unsigned long' over 'unsigned long int' (bsc#1183871 ltc#192139). - ibmvnic: prefer strscpy over strlcpy (bsc#1183871 ltc#192139). - ibmvnic: print adapter state as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: print reset reason as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: queue reset work in system_long_wq (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove default label from to_string switch (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove duplicate napi_schedule call in do_reset function (bsc#1065729). - ibmvnic: remove duplicate napi_schedule call in open function (bsc#1065729). - ibmvnic: remove unnecessary rmb() inside ibmvnic_poll (bsc#1183871 ltc#192139). - ibmvnic: remove unused spinlock_t stats_lock definition (bsc#1183871 ltc#192139). - ibmvnic: rework to ensure SCRQ entry reads are properly ordered (bsc#1183871 ltc#192139). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Cleanup fltr list in case of allocation issues (git-fixes). - ice: Continue probe on link/PHY errors (jsc#SLE-12878). - ice: Fix for dereference of NULL pointer (git-fixes). - ice: Increase control queue timeout (git-fixes). - ice: Use port number instead of PF ID for WoL (jsc#SLE-12878). - ice: fix memory allocation call (jsc#SLE-12878). - ice: fix memory leak if register_netdev_fails (git-fixes). - ice: fix memory leak in ice_vsi_setup (git-fixes). - ice: fix memory leak of aRFS after resuming from suspend (jsc#SLE-12878). - ice: prevent ice_open and ice_stop during reset (git-fixes). - ice: remove DCBNL_DEVRESET bit from PF state (jsc#SLE-7926). - ics932s401: fix broken handling of errors when word reading fails (git-fixes). - igb: Fix duplicate include guard (git-fixes). - igb: XDP extack message on error (jsc#SLE-13536). - igb: XDP xmit back fix error code (jsc#SLE-13536). - igb: avoid premature Rx buffer reuse (jsc#SLE-13536). - igb: avoid transmit queue timeout in xdp path (jsc#SLE-13536). - igb: check timestamp validity (git-fixes). - igb: skb add metasize for xdp (jsc#SLE-13536). - igb: take VLAN double header into account (jsc#SLE-13536). - igb: use xdp_do_flush (jsc#SLE-13536). - igc: Fix Pause Frame Advertising (git-fixes). - igc: Fix Supported Pause Frame Link Setting (git-fixes). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - iio: adc: ad7949: fix wrong ADC result due to incorrect bit mask (git-fixes). - iio: adis16400: Fix an error code in adis16400_initial_setup() (git-fixes). - iio: gyro: mpu3050: Fix error handling in mpu3050_trigger_handler (git-fixes). - iio: gyro: mpu3050: Fix reported temperature value (git-fixes). - iio: hid-sensor-humidity: Fix alignment issue of timestamp channel (git-fixes). - iio: hid-sensor-prox: Fix scale not correct issue (git-fixes). - iio: hid-sensor-temperature: Fix issues of timestamp channel (git-fixes). - iio: proximity: pulsedlight: Fix rumtime PM imbalance on error (git-fixes). - iio: tsl2583: Fix division by a zero lux_val (git-fixes). - iio:accel:adis16201: Fix wrong axis assignment that prevents loading (git-fixes). - iio:adc:qcom-spmi-vadc: add default scale to LR_MUX2_BAT_ID channel (git-fixes). - ima: Free IMA measurement buffer after kexec syscall (git-fixes). - include/linux/sched/mm.h: use rcu_dereference in in_vfork() (git-fixes). - intel_th: Consistency and off-by-one fix (git-fixes). - intel_th: pci: Add Alder Lake-M support (git-fixes). - intel_th: pci: Add Rocket Lake CPU support (git-fixes). - interconnect: core: fix error return code of icc_link_destroy() (git-fixes). - iommu/amd: Add support for map/unmap_resource (jsc#ECO-3482). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183277). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183310). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183278). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183312). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183313). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183637). - iommu/vt-d: Add get_domain_info() helper (bsc#1183279). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183280). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183315). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183281). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183316). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183282). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183317). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183283). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183318). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183284). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183319). - iommu/vt-d: Fix status code for Allocate/Free PASID command (bsc#1183320). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183285). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183321). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183286). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183322). - iommu/vt-d: Use device numa domain if RHSA is missing (bsc#1184585). - iommu: Check dev->iommu in dev_iommu_priv_get() before dereferencing it (bsc#1183311). - iommu: Switch gather->end to the inclusive end (bsc#1183314). - ionic: linearize tso skb with too many frags (bsc#1167773). - ionic: linearize tso skb with too many frags (bsc#1167773). - iopoll: introduce read_poll_timeout macro (git-fixes). - ipc/mqueue, msg, sem: Avoid relying on a stack reference past its expiry (bsc#1185988). - ipmi/watchdog: Stop watchdog timer when the current action is 'none' (bsc#1184855). - ipw2x00: potential buffer overflow in libipw_wx_set_encodeext() (git-fixes). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1184264). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1185233). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1184264). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1185233). - irqchip: Add support for Layerscape external interrupt lines (bsc#1185233). - isofs: release buffer head before return (bsc#1182613). - iwlwifi: add support for Qu with AX201 device (git-fixes). - iwlwifi: pcie: make cfg vs. trans_cfg more robust (git-fixes). - ixgbe: fail to create xfrm offload of IPsec tunnel mode SA (git-fixes). - ixgbe: fix unbalanced device enable/disable in suspend/resume (jsc#SLE-13706). - jffs2: fix use after free in jffs2_sum_write_data() (bsc#1184740). - kABI: Fix kABI caused by fixes for bsc#1174426 (bsc#1174426). - kABI: cover up change in struct kvm_arch (bsc#1184969). - kABI: powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - kABI: powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - kbuild: Fail if gold linker is detected (bcs#1181862). - kbuild: add dummy toolchains to enable all cc-option etc. in Kconfig (bcs#1181862). - kbuild: change *FLAGS_&lt;basetarget>.o to take the path relative to $(obj) (bcs#1181862). - kbuild: dummy-tools, fix inverted tests for gcc (bcs#1181862). - kbuild: dummy-tools, support MPROFILE_KERNEL checks for ppc (bsc#1181862). - kbuild: improve cc-option to clean up all temporary files (bsc#1178330). - kbuild: include scripts/Makefile.* only when relevant CONFIG is enabled (bcs#1181862). - kbuild: simplify GCC_PLUGINS enablement in dummy-tools/gcc (bcs#1181862). - kbuild: stop filtering out $(GCC_PLUGINS_CFLAGS) from cc-option base (bcs#1181862). - kbuild: use -S instead of -E for precise cc-option test in Kconfig (bsc#1178330). - kconfig: introduce m32-flag and m64-flag (bcs#1181862). - kernel-docs.spec.in: Build using an utf-8 locale. Sphinx cannot handle UTF-8 input in non-UTF-8 locale. - kernel/smp: make csdlock timeout depend on boot parameter (bsc#1180846). - kvm: svm: Update svm_xsaves_supported (jsc#SLE-13573). - kvm: x86: Enumerate support for CLZERO instruction (jsc#SLE-13573). - leds: lp5523: check return value of lp5xx_read and jump to cleanup code (git-fixes). - lib/syscall: fix syscall registers retrieval on 32-bit platforms (git-fixes). - libbpf: Add explicit padding to bpf_xdp_set_link_opts (bsc#1177028). - libbpf: Add explicit padding to btf_dump_emit_type_decl_opts (bsc#1177028). - libbpf: Clear map_info before each bpf_obj_get_info_by_fd (bsc#1155518). - libbpf: Fix BTF dump of pointer-to-array-of-struct (bsc#1155518). - libbpf: Fix INSTALL flag order (bsc#1155518). - libbpf: Fix bail out from 'ringbuf_process_ring()' on error (bsc#1177028). - libbpf: Fix error path in bpf_object__elf_init() (bsc#1177028). - libbpf: Fix signed overflow in ringbuf_process_ring (bsc#1177028). - libbpf: Initialize the bpf_seq_printf parameters array field by field (bsc#1177028). - libbpf: Only create rx and tx XDP rings when necessary (bsc#1155518). - libbpf: Use SOCK_CLOEXEC when opening the netlink socket (bsc#1155518). - libnvdimm/label: Return -ENXIO for no slot in __blk_label_update (bsc#1185269). - libnvdimm/namespace: Fix reaping of invalidated block-window-namespace labels (bsc#1185269). - libnvdimm/region: Fix nvdimm_has_flush() to handle ND_REGION_ASYNC (bsc#1184969 git-fixes). - libnvdimm/security: ensure sysfs poll thread woke up and fetch updated attr (git-fixes). - liquidio: Fix unintented sign extension of a left shift of a u16 (git-fixes). - locking/mutex: Fix non debug version of mutex_lock_io_nested() (git-fixes). - locking/qrwlock: Fix ordering in queued_write_lock_slowpath() (bsc#1185041). - lpfc: Decouple port_template and vport_template (bsc#185032). - mISDN: fix crash in fritzpci (git-fixes). - mac80211: Allow HE operation to be longer than expected (git-fixes). - mac80211: bail out if cipher schemes are invalid (git-fixes). - mac80211: choose first enabled channel for monitor (git-fixes). - mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN (git-fixes). - mac80211: clear the beacon's CRC after channel switch (git-fixes). - mac80211: fix TXQ AC confusion (git-fixes). - mac80211: fix double free in ibss_leave (git-fixes). - mac80211: fix rate mask reset (git-fixes). - macvlan: macvlan_count_rx() needs to be aware of preemption (git-fixes). - md-cluster: fix use-after-free issue when removing rdev (bsc#1184082). - md/raid1: properly indicate failure when ending a failed write request (bsc#1185680). - md: do not flush workqueue unconditionally in md_open (bsc#1184081). - md: factor out a mddev_find_locked helper from mddev_find (bsc#1184081). - md: md_open returns -EBUSY when entering racing area (bsc#1184081). - md: split mddev_find (bsc#1184081). - mdio: fix mdio-thunder.c dependency & build error (git-fixes). - media: adv7604: fix possible use-after-free in adv76xx_remove() (git-fixes). - media: cros-ec-cec: do not bail on device_init_wakeup failure (git-fixes). - media: cx23885: add more quirks for reset DMA on some AMD IOMMU (git-fixes). - media: drivers: media: pci: sta2x11: fix Kconfig dependency on GPIOLIB (git-fixes). - media: dvb-usb: fix memory leak in dvb_usb_adapter_init (git-fixes). - media: dvbdev: Fix memory leak in dvb_media_device_free() (git-fixes). - media: em28xx: fix memory leak (git-fixes). - media: gspca/sq905.c: fix uninitialized variable (git-fixes). - media: i2c: adv7511-v4l2: fix possible use-after-free in adv7511_remove() (git-fixes). - media: i2c: adv7842: fix possible use-after-free in adv7842_remove() (git-fixes). - media: i2c: tda1997: Fix possible use-after-free in tda1997x_remove() (git-fixes). - media: imx: capture: Return -EPIPE from __capture_legacy_try_fmt() (git-fixes). - media: ite-cir: check for receive overflow (git-fixes). - media: m88rs6000t: avoid potential out-of-bounds reads on arrays (git-fixes). - media: mantis: remove orphan mantis_core.c (git-fixes). - media: mceusb: sanity check for prescaler value (git-fixes). - media: media/saa7164: fix saa7164_encoder_register() memory leak bugs (git-fixes). - media: omap4iss: return error code when omap4iss_get() failed (git-fixes). - media: platform: sti: Fix runtime PM imbalance in regs_show (git-fixes). - media: platform: sunxi: sun6i-csi: fix error return code of sun6i_video_start_streaming() (git-fixes). - media: rc: compile rc-cec.c into rc-core (git-fixes). - media: saa7134: use sg_dma_len when building pgtable (git-fixes). - media: saa7146: use sg_dma_len when building pgtable (git-fixes). - media: staging/intel-ipu3: Fix memory leak in imu_fmt (git-fixes). - media: staging/intel-ipu3: Fix race condition during set_fmt (git-fixes). - media: staging/intel-ipu3: Fix set_fmt error handling (git-fixes). - media: tc358743: fix possible use-after-free in tc358743_remove() (git-fixes). - media: usbtv: Fix deadlock on suspend (git-fixes). - media: uvcvideo: Allow entities with no pads (git-fixes). - media: v4l2-ctrls.c: fix race condition in hdl->requests list (git-fixes). - media: v4l2-ctrls.c: fix shift-out-of-bounds in std_validate (git-fixes). - media: v4l: vsp1: Fix bru null pointer access (git-fixes). - media: v4l: vsp1: Fix uif null pointer access (git-fixes). - media: vicodec: add missing v4l2_ctrl_request_hdl_put() (git-fixes). - memory: gpmc: fix out of bounds read and dereference on gpmc_cs[] (git-fixes). - memory: mtk-smi: Fix PM usage counter unbalance in mtk_smi ops (bsc#1183325). - memory: pl353: fix mask of ECC page_size config register (git-fixes). - mfd: arizona: Fix rumtime PM imbalance on error (git-fixes). - mfd: intel_pmt: Fix nuisance messages and handling of disabled capabilities (git-fixes). - mfd: lpc_sch: Partially revert "Add support for Intel Quark X1000" (git-fixes). - mfd: stm32-timers: Avoid clearing auto reload register (git-fixes). - misc/pvpanic: Export module FDT device table (git-fixes). - misc: eeprom_93xx46: Add quirk to support Microchip 93LC46B eeprom (git-fixes). - misc: fastrpc: restrict user apps from sending kernel RPC messages (git-fixes). - misc: lis3lv02d: Fix false-positive WARN on various HP models (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_datagram payload (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_notify_bm_set_msg struct (git-fixes). - mlxsw: spectrum_mr: Update egress RIF list before route's action (git-fixes). - mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa (bsc#1168777). - mm/rmap: fix potential pte_unmap on an not mapped pte (git-fixes). - mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page (git-fixes). - mm: memcontrol: fix cpuhotplug statistics flushing (bsc#1185606). - mmc: block: Update ext_csd.cache_ctrl if it was written (git-fixes). - mmc: core: Correct descriptions in mmc_of_parse() (git-fixes). - mmc: core: Do a power cycle when the CMD11 fails (git-fixes). - mmc: core: Fix partition switch time for eMMC (git-fixes). - mmc: core: Set read only for SD cards with permanent write protect bit (git-fixes). - mmc: cqhci: Add cqhci_deactivate() (git-fixes). - mmc: cqhci: Fix random crash when remove mmc module/card (git-fixes). - mmc: mmc_spi: Drop unused NO_IRQ definition (git-fixes). - mmc: mxs-mmc: Fix a resource leak in an error handling path in 'mxs_mmc_probe()' (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (bsc#1186009) - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (bsc#1186009) - mmc: sdhci-of-arasan: Add missed checks for devm_clk_register() (git-fixes). - mmc: sdhci-of-dwcmshc: fix rpmb access (git-fixes). - mmc: sdhci-of-dwcmshc: implement specific set_uhs_signaling (git-fixes). - mmc: sdhci-of-dwcmshc: set SDHCI_QUIRK2_PRESET_VALUE_BROKEN (git-fixes). - mmc: sdhci-of-esdhc: make sure delay chain locked for HS400 (git-fixes). - mmc: sdhci-of-esdhc: set timeout to max before tuning (git-fixes). - mmc: sdhci-pci-gli: increase 1.8V regulator wait (git-fixes). - mmc: sdhci-pci: Add PCI IDs for Intel LKF (git-fixes). - mmc: sdhci-pci: Fix SDHCI_RESET_ALL for CQHCI for Intel GLK-based controllers (git-fixes). - mmc: sdhci-pci: Fix initialization of some SD cards for Intel BYT-based controllers (git-fixes). - mmc: sdhci: Check for reset prior to DMA address unmap (git-fixes). - mmc: sdhci: Use Auto CMD Auto Select only when v4_mode is true (git-fixes). - mmc: uniphier-sd: Fix a resource leak in the remove function (git-fixes). - mmc: uniphier-sd: Fix an error handling path in uniphier_sd_probe() (git-fixes). - mount: fix mounting of detached mounts onto targets that reside on shared mounts (git-fixes). - mt7601u: fix always true expression (git-fixes). - mt76: dma: do not report truncated frames to mac80211 (git-fixes). - mt76: mt7615: fix entering driver-own state on mt7663 (git-fixes). - mt76: mt7615: support loading EEPROM for MT7613BE (git-fixes). - mt76: mt76x0: disable GTK offloading (git-fixes). - mt76: mt7915: fix aggr len debugfs node (git-fixes). - mt76: mt7915: fix txpower init for TSSI off chips (git-fixes). - mtd: Handle possible -EPROBE_DEFER from parse_mtd_partitions() (git-fixes). - mtd: rawnand: atmel: Update ecc_stats.corrected counter (git-fixes). - mtd: rawnand: brcmnand: fix OOB R/W with Hamming ECC (git-fixes). - mtd: rawnand: fsmc: Fix error code in fsmc_nand_probe() (git-fixes). - mtd: rawnand: gpmi: Fix a double free in gpmi_nand_init (git-fixes). - mtd: rawnand: qcom: Return actual error code instead of -ENODEV (git-fixes). - mtd: require write permissions for locking and badblock ioctls (git-fixes). - mtd: spi-nor: Rename "n25q512a" to "mt25qu512a (n25q512a)" (bsc#1167260). - mtd: spi-nor: Split mt25qu512a (n25q512a) entry into two (bsc#1167260). - mtd: spinand: core: add missing MODULE_DEVICE_TABLE() (git-fixes). - mwifiex: pcie: skip cancel_work_sync() on reset failure path (git-fixes). - nbd: fix a block_device refcount leak in nbd_release (git-fixes). - net, xdp: Update pkt_type if generic XDP changes unicast MAC (git-fixes). - net/mlx4_core: Add missed mlx4_free_cmd_mailbox() (git-fixes). - net/mlx4_en: update moderation when config reset (git-fixes). - net/mlx5: Add back multicast stats for uplink representor (jsc#SLE-15172). - net/mlx5: Delete extra dump stack that gives nothing (git-fixes). - net/mlx5: Do not request more than supported EQs (git-fixes). - net/mlx5: Fix PPLM register mapping (jsc#SLE-8464). - net/mlx5: Fix bit-wise and with zero (jsc#SLE-15172). - net/mlx5: Fix health error state handling (bsc#1186467). - net/mlx5e: Allow to match on MPLS parameters only for MPLS over UDP (jsc#SLE-15172). - net/mlx5e: Do not match on Geneve options in case option masks are all zero (git-fixes). - net/mlx5e: E-switch, Fix rate calculation division (jsc#SLE-8464). - net/mlx5e: Fix error path for ethtool set-priv-flag (git-fixes). - net/mlx5e: Fix ethtool indication of connector type (git-fixes). - net/mlx5e: Fix setting of RS FEC mode (jsc#SLE-15172). - net/mlx5e: Offload tuple rewrite for non-CT flows (jsc#SLE-15172). - net/mlx5e: RX, Mind the MPWQE gaps when calculating offsets (jsc#SLE-15172). - net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta (jsc#SLE-8464). - net/qlcnic: Fix a use after free in qlcnic_83xx_get_minidump_template (git-fixes). - net/sched: act_ct: fix wild memory access when clearing fragments (bsc#1176447). - net: arc_emac: Fix memleak in arc_mdio_probe (git-fixes). - net: atheros: switch from 'pci_' to 'dma_' API (git-fixes). - net: atlantic: fix out of range usage of active_vlans array (git-fixes). - net: atlantic: fix potential error handling (git-fixes). - net: atlantic: fix use after free kasan warn (git-fixes). - net: b44: fix error return code in b44_init_one() (git-fixes). - net: bonding: fix error return code of bond_neigh_init() (bsc#1154353). - net: cdc-phonet: fix data-interface release on probe failure (git-fixes). - net: cls_api: Fix uninitialised struct field bo->unlocked_driver_cb (bsc#1176447). - net: dsa: felix: implement port flushing on .phylink_mac_link_down (git-fixes). - net: dsa: rtl8366: Fix VLAN semantics (git-fixes). - net: dsa: rtl8366: Fix VLAN set-up (git-fixes). - net: dsa: rtl8366rb: Support all 4096 VLANs (git-fixes). - net: enetc: allow hardware timestamping on TX queues with tc-etf enabled (git-fixes). - net: enetc: do not disable VLAN filtering in IFF_PROMISC mode (git-fixes). - net: enetc: fix link error again (git-fixes). - net: enetc: remove bogus write to SIRXIDR from enetc_setup_rxbdr (git-fixes). - net: enetc: take the MDIO lock only once per NAPI poll cycle (git-fixes). - net: enic: Cure the enic api locking trainwreck (git-fixes). - net: ethernet: aquantia: Fix wrong return value (git-fixes). - net: ethernet: cavium: octeon_mgmt: use phy_start and phy_stop (git-fixes). - net: ethernet: ibm: ibmvnic: Fix some kernel-doc misdemeanours (bsc#1183871 ltc#192139). - net: ethernet: ti: cpsw: fix clean up of vlan mc entries for host port (git-fixes). - net: ethernet: ti: cpsw: fix error return code in cpsw_probe() (git-fixes). - net: fec: Fix PHY init after phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix phy_device lookup for phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix reference count leak in fec series ops (git-fixes). - net: gemini: Fix another missing clk_disable_unprepare() in probe (git-fixes). - net: gemini: Fix missing free_netdev() in error path of gemini_ethernet_port_probe() (git-fixes). - net: geneve: check skb is large enough for IPv4/IPv6 header (git-fixes). - net: geneve: modify IP header check in geneve6_xmit_skb and geneve_xmit_skb (git-fixes). - net: gianfar: Add of_node_put() before goto statement (git-fixes). - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device (git-fixes). - net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling ether_setup (git-fixes). - net: hns3: Fix for geneve tx checksum bug (git-fixes). - net: hns3: Remove the left over redundant check & assignment (bsc#1154353). - net: hns3: Remove un-necessary 'else-if' in the hclge_reset_event() (git-fixes). - net: hns3: add check for HNS3_NIC_STATE_INITED in hns3_reset_notify_up_enet() (git-fixes). - net: hns3: clear VF down state bit before request link status (git-fixes). - net: hns3: clear unnecessary reset request in hclge_reset_rebuild (git-fixes). - net: hns3: disable phy loopback setting in hclge_mac_start_phy (git-fixes). - net: hns3: fix bug when calculating the TCAM table info (git-fixes). - net: hns3: fix for vxlan gpe tx checksum bug (git-fixes). - net: hns3: fix incorrect configuration for igu_egu_hw_err (git-fixes). - net: hns3: fix query vlan mask value error for flow director (git-fixes). - net: hns3: initialize the message content in hclge_get_link_mode() (git-fixes). - net: hns3: use netif_tx_disable to stop the transmit queue (git-fixes). - net: korina: cast KSEG0 address to pointer in kfree (git-fixes). - net: korina: fix kfree of rx/tx descriptor array (git-fixes). - net: lantiq: Wait for the GPHY firmware to be ready (git-fixes). - net: ll_temac: Add more error handling of dma_map_single() calls (git-fixes). - net: ll_temac: Fix RX buffer descriptor handling on GFP_ATOMIC pressure (git-fixes). - net: ll_temac: Fix race condition causing TX hang (git-fixes). - net: ll_temac: Handle DMA halt condition caused by buffer underrun (git-fixes). - net: mvneta: fix double free of txq->buf (git-fixes). - net: mvneta: make tx buffer array agnostic (git-fixes). - net: pasemi: fix error return code in pasemi_mac_open() (git-fixes). - net: phy: broadcom: Only advertise EEE for supported modes (git-fixes). - net: phy: intel-xway: enable integrated led functions (git-fixes). - net: phy: marvell: fix m88e1011_set_downshift (git-fixes). - net: phy: marvell: fix m88e1111_set_downshift (git-fixes). - net: qcom/emac: add missed clk_disable_unprepare in error path of emac_clks_phase1_init (git-fixes). - net: qualcomm: rmnet: Fix incorrect receive packet handling during cleanup (git-fixes). - net: sched: disable TCQ_F_NOLOCK for pfifo_fast (bsc#1183405) - net: smc911x: Adjust indentation in smc911x_phy_configure (git-fixes). - net: spider_net: Fix the size used in a 'dma_free_coherent()' call (git-fixes). - net: stmmac: Fix incorrect location to set real_num_rx|tx_queues (git-fixes). - net: stmmac: Use rtnl_lock/unlock on netif_set_real_num_rx_queues() call (git-fixes). - net: stmmac: fix missing IFF_MULTICAST check in dwmac4_set_filter (git-fixes). - net: stmmac: removed enabling eee in EEE set callback (git-fixes). - net: stmmac: use netif_tx_start|stop_all_queues() function (git-fixes). - net: stmmac: xgmac: fix missing IFF_MULTICAST checki in dwxgmac2_set_filter (git-fixes). - net: thunderx: Fix unintentional sign extension issue (git-fixes). - net: tulip: Adjust indentation in {dmfe, uli526x}_init_module (git-fixes). - net: usb: ax88179_178a: fix missing stop entry in driver_info (git-fixes). - net: usb: qmi_wwan: allow qmimux add/del with master up (git-fixes). - net: usb: qmi_wwan: support ZTE P685M modem (git-fixes). - net: wan/lmc: unregister device when no matching device is found (git-fixes). - net:nfc:digital: Fix a double free in digital_tg_recv_dep_req (git-fixes). - netdevice: Add missing IFF_PHONY_HEADROOM self-definition (git-fixes). - netdevsim: init u64 stats for 32bit hardware (git-fixes). - netfilter: conntrack: Make global sysctls readonly in non-init netns (bsc#1176447). - netfilter: conntrack: add new sysctl to disable RST check (bsc#1183947 bsc#1185950). - netfilter: conntrack: avoid misleading 'invalid' in log message (bsc#1183947 bsc#1185950). - netfilter: conntrack: improve RST handling when tuple is re-used (bsc#1183947 bsc#1185950). - netfilter: flowtable: Make sure GC works periodically in idle system (bsc#1176447). - netfilter: flowtable: fix NAT IPv6 offload mangling (bsc#1176447). - netfilter: nftables: allow to update flowtable flags (bsc#1176447). - netfilter: nftables: report EOPNOTSUPP on unsupported flowtable flags (bsc#1176447). - netsec: restore phy power state after controller reset (bsc#1183757). - nfc: pn533: prevent potential memory corruption (git-fixes). - nfp: devlink: initialize the devlink port attribute "lanes" (bsc#1176447). - nfp: flower: add ipv6 bit to pre_tunnel control message (bsc#1176447). - nfp: flower: fix pre_tun mask id allocation (bsc#1154353). - nfp: flower: ignore duplicate merge hints from FW (git-fixes). - node: fix device cleanups in error handling code (git-fixes). - null_blk: fix passing of REQ_FUA flag in null_handle_rq (git-fixes). - nvme-core: add cancel tagset helpers (bsc#1183976). - nvme-fabrics: decode host pathing error for connect (bsc#1179827). - nvme-fabrics: fix kato initialization (bsc#1182591). - nvme-fabrics: only reserve a single tag (bsc#1182077). - nvme-fabrics: reject I/O to offline device (bsc#1181161). - nvme-fc: check sgl supported by target (bsc#1179827). - nvme-fc: clear q_live at beginning of association teardown (bsc#1186479). - nvme-fc: fix racing controller reset and create association (bsc#1183048). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1180197). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1184259). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1180197). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1184259). - nvme-fc: short-circuit reconnect retries (bsc#1179827). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259). - nvme-multipath: reset bdev to ns head when failover (bsc#178378 bsc#1182999). - nvme-tcp: Fix possible race of io_work and direct send (git-fixes). - nvme-tcp: Fix warning with CONFIG_DEBUG_PREEMPT (git-fixes). - nvme-tcp: add clean action for failed reconnection (bsc#1183976). - nvme-tcp: fix kconfig dependency warning when !CRYPTO (git-fixes). - nvme-tcp: fix misuse of __smp_processor_id with preemption (git-fixes). - nvme-tcp: fix possible hang waiting for icresp response (bsc#1179519). - nvme-tcp: fix possible hang when failing to set io queues (bsc#1181161). - nvme-tcp: use cancel tagset helper for tear down (bsc#1183976). - nvme: Fix NULL dereference for pci nvme controllers (bsc#1182378). - nvme: add 'kato' sysfs attribute (bsc#1179825). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1180197). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1184259). - nvme: allocate the keep alive request using BLK_MQ_REQ_NOWAIT (bsc#1182077). - nvme: call nvme_identify_ns as the first thing in nvme_alloc_ns_block (bsc#1180197). - nvme: clean up the check for too large logic block sizes (bsc#1180197). - nvme: define constants for identification values (git-fixes). - nvme: do not intialize hwmon for discovery controllers (bsc#1184259). - nvme: do not intialize hwmon for discovery controllers (git-fixes). - nvme: explicitly update mpath disk capacity on revalidation (git-fixes). - nvme: expose reconnect_delay and ctrl_loss_tmo via sysfs (bsc#1182378). - nvme: factor out a nvme_configure_metadata helper (bsc#1180197). - nvme: fix controller instance leak (git-fixes). - nvme: fix initialization of the zone bitmaps (bsc#1180197). - nvme: fix possible deadlock when I/O is blocked (git-fixes). - nvme: freeze the queue over ->lba_shift updates (bsc#1180197). - nvme: lift the check for an unallocated namespace into nvme_identify_ns (bsc#1180197). - nvme: merge nvme_keep_alive into nvme_keep_alive_work (bsc#1182077). - nvme: move nvme_validate_ns (bsc#1180197). - nvme: opencode revalidate_disk in nvme_validate_ns (bsc#1180197). - nvme: query namespace identifiers before adding the namespace (bsc#1180197). - nvme: refactor nvme_validate_ns (bsc#1180197). - nvme: remove nvme_identify_ns_list (bsc#1180197). - nvme: remove nvme_update_formats (bsc#1180197). - nvme: remove superfluous else in nvme_ctrl_loss_tmo_store (bsc#1182378). - nvme: remove the 0 lba_shift check in nvme_update_ns_info (bsc#1180197). - nvme: remove the disk argument to nvme_update_zone_info (bsc#1180197). - nvme: rename __nvme_revalidate_disk (bsc#1180197). - nvme: rename _nvme_revalidate_disk (bsc#1180197). - nvme: rename nvme_validate_ns to nvme_validate_or_alloc_ns (bsc#1180197). - nvme: retrigger ANA log update if group descriptor isn't found (git-fixes) - nvme: return an error if nvme_set_queue_count() fails (bsc#1180197). - nvme: revalidate zone bitmaps in nvme_update_ns_info (bsc#1180197). - nvme: sanitize KATO setting (bsc#1179825). - nvme: set the queue limits in nvme_update_ns_info (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1184259). - nvme: update the known admin effects (bsc#1180197). - nvmet-rdma: Fix list_del corruption on queue establishment failure (bsc#1183501). - nvmet: fix a memory leak (git-fixes). - nvmet: seset ns->file when open fails (bsc#1183873). - nvmet: use new ana_log_size instead the old one (bsc#1184259). - ocfs2: fix a use after free on error (bsc#1184738). - ovl: fix dentry leak in ovl_get_redirect (bsc#1184176). - ovl: fix out of date comment and unreachable code (bsc#1184176). - ovl: fix regression with re-formatted lower squashfs (bsc#1184176). - ovl: fix unneeded call to ovl_change_flags() (bsc#1184176). - ovl: fix value of i_ino for lower hardlink corner case (bsc#1184176). - ovl: initialize error in ovl_copy_xattr (bsc#1184176). - ovl: relax WARN_ON() when decoding lower directory file handle (bsc#1184176). - pata_arasan_cf: fix IRQ check (git-fixes). - pata_ipx4xx_cf: fix IRQ check (git-fixes). - perf/amd/uncore: Fix sysfs type mismatch (bsc#1178134). - phy: marvell: ARMADA375_USBCLUSTER_PHY should not default to y, unconditionally (git-fixes). - phy: phy-twl4030-usb: Fix possible use-after-free in twl4030_usb_remove() (git-fixes). - partitions/ibm: fix non-DASD devices (bsc#1185857 LTC#192526). - pinctrl: Ingenic: Add missing pins to the JZ4770 MAC MII group (git-fixes). - pinctrl: core: Fix kernel doc string for pin_get_name() (git-fixes). - pinctrl: ingenic: Improve unreachable code generation (git-fixes). - pinctrl: lewisburg: Update number of pins in community (git-fixes). - pinctrl: qcom: spmi-gpio: fix warning about irq chip reusage (git-fixes). - pinctrl: rockchip: fix restore error in resume (git-fixes). - pinctrl: samsung: use 'int' for register masks in Exynos (git-fixes). - platform/mellanox: mlxbf-tmfifo: Fix a memory barrier issue (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_KBD_DOCK quirk for the Aspire Switch 10E SW3-016 (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_SET_FUNCTION_MODE capability flag (git-fixes). - platform/x86: acer-wmi: Add new force_caps module parameter (git-fixes). - platform/x86: acer-wmi: Add support for SW_TABLET_MODE on Switch devices (git-fixes). - platform/x86: acer-wmi: Cleanup ACER_CAP_FOO defines (git-fixes). - platform/x86: acer-wmi: Cleanup accelerometer device handling (git-fixes). - platform/x86: intel-hid: Support Lenovo ThinkPad X1 Tablet Gen 2 (git-fixes). - platform/x86: intel-vbtn: Stop reporting SW_DOCK events (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_pmc_core: Do not use global pmcdev in quirks (git-fixes). - platform/x86: intel_pmt_crashlog: Fix incorrect macros (git-fixes). - platform/x86: pmc_atom: Match all Beckhoff Automation baytrail boards with critclk_systems DMI table (git-fixes). - platform/x86: thinkpad_acpi: Allow the FnLock LED to change state (git-fixes). - platform/x86: thinkpad_acpi: Correct thermal sensor allocation (git-fixes). - posix-timers: Preserve return value in clock_adjtime32() (git-fixes) - post.sh: Return an error when module update fails (bsc#1047233 bsc#1184388). - power: supply: Use IRQF_ONESHOT (git-fixes). - power: supply: generic-adc-battery: fix possible use-after-free in gab_remove() (git-fixes). - power: supply: s3c_adc_battery: fix possible use-after-free in s3c_adc_bat_remove() (git-fixes). - powerepc/book3s64/hash: Align start/end address correctly with bolt mapping (bsc#1184957). - powerpc/64s/exception: Clean up a missed SRR specifier (jsc#SLE-9246 git-fixes). - powerpc/64s: Fix crashes when toggling entry flush barrier (bsc#1177666 git-fixes). - powerpc/64s: Fix crashes when toggling stf barrier (bsc#1087082 git-fixes). - powerpc/64s: Fix instruction encoding for lis in ppc_function_entry() (bsc#1065729). - powerpc/64s: Fix pte update for kernel memory on radix (bsc#1055117 git-fixes). - powerpc/asm-offsets: GPR14 is not needed either (bsc#1065729). - powerpc/book3s64/radix: Remove WARN_ON in destroy_context() (bsc#1183692 ltc#191963). - powerpc/eeh: Fix EEH handling for hugepages in ioremap space (bsc#1156395). - powerpc/fadump: Mark fadump_calculate_reserve_size as __init (bsc#1065729). - powerpc/kexec_file: Use current CPU info while setting up FDT (bsc#1184615 ltc#189835). - powerpc/kuap: Restore AMR after replaying soft interrupts (bsc#1156395). - powerpc/mm: Add cond_resched() while removing hpte mappings (bsc#1183289 ltc#191637). - powerpc/papr_scm: Fix build error due to wrong printf specifier (bsc#1184969). - powerpc/papr_scm: Implement support for H_SCM_FLUSH hcall (bsc#1184969). - powerpc/perf: Fix PMU constraint check for EBB events (bsc#1065729). - powerpc/perf: Fix sampled instruction type for larx/stcx (jsc#SLE-13513). - powerpc/perf: Fix the threshold event selection for memory events in power10 (jsc#SLE-13513). - powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - powerpc/prom: Mark identical_pvr_fixup as __init (bsc#1065729). - powerpc/pseries/mobility: handle premature return from H_JOIN (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/mobility: use struct for shared state (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/ras: Remove unused variable 'status' (bsc#1065729). - powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - powerpc/pseries: Do not trace hcall tracing wrapper (bsc#1185110 ltc#192091). - powerpc/pseries: Fix hcall tracing recursion in pv queued spinlocks (bsc#1185110 ltc#192091). - powerpc/pseries: use notrace hcall variant for H_CEDE idle (bsc#1185110 ltc#192091). - powerpc/pseries: warn if recursing into the hcall tracing code (bsc#1185110 ltc#192091). - powerpc/smp: Reintroduce cpu_core_mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Fix darn emulation (bsc#1156395). - powerpc/sstep: Fix incorrect return from analyze_instr() (bsc#1156395). - powerpc/sstep: Fix load-store and update emulation (bsc#1156395). - powerpc/time: Enable sched clock for irqtime (bsc#1156395). - powerpc/uaccess: Avoid might_fault() when user access is enabled (bsc#1156395). - powerpc/uaccess: Perform barrier_nospec() in KUAP allowance helpers (bsc#1156395). - powerpc/uaccess: Simplify unsafe_put_user() implementation (bsc#1156395). - powerpc/xive: Drop check on irq_data in xive_core_debug_show() (bsc#1177437 ltc#188522 jsc#SLE-13294 git-fixes). - powerpc/xmon: Fix build failure for 8xx (jsc#SLE-12936 git-fixes). - powerpc: Fix inverted SET_FULL_REGS bitop (jsc#SLE-9246 git-fixes). - powerpc: Fix missing declaration ofable_kernel_vsx() (git-fixes). - proc: fix lookup in /proc/net subdirectories after setns(2) (git-fixes). - qlcnic: fix error return code in qlcnic_83xx_restart_hw() (git-fixes). - qtnfmac: Fix possible buffer overflow in qtnf_event_handle_external_auth (git-fixes). - qxl: Fix uninitialised struct field head.surface_id (git-fixes). - r8169: do not advertise pause in jumbo mode (git-fixes). - r8169: fix DMA being used after buffer free if WoL is enabled (git-fixes). - r8169: tweak max read request size for newer chips also in jumbo mtu mode (git-fixes). - regmap: set debugfs_name to NULL after it is freed (git-fixes). - regulator: Avoid a double 'of_node_get' in 'regulator_of_get_init_node()' (git-fixes). - regulator: bd9571mwv: Fix AVS and DVFS voltage range (git-fixes). - reintroduce cqhci_suspend for kABI (git-fixes). - reiserfs: update reiserfs_xattrs_initialized() condition (bsc#1184737). - rsi: Fix TX EAPOL packet handling against iwlwifi AP (git-fixes). - rsi: Move card interrupt handling to RX thread (git-fixes). - rsi: Use resume_noirq for SDIO (git-fixes). - rsxx: remove extraneous 'const' qualifier (git-fixes). - rtc: ds1307: Fix wday settings for rx8130 (git-fixes). - rtc: fsl-ftm-alarm: add MODULE_TABLE() (bsc#1185454). - rtc: fsl-ftm-alarm: avoid struct rtc_time conversions (bsc#1185454). - rtc: fsl-ftm-alarm: enable acpi support (bsc#1185454). - rtc: fsl-ftm-alarm: fix freeze(s2idle) failed to wake (bsc#1185454). - rtc: fsl-ftm-alarm: report alarm to core (bsc#1185454). - rtc: fsl-ftm-alarm: switch to ktime_get_real_seconds (bsc#1185454). - rtc: fsl-ftm-alarm: switch to rtc_time64_to_tm/rtc_tm_to_time64 (bsc#1185454). - rtc: fsl-ftm-alarm: update acpi device id (bsc#1185454). - rtc: pcf2127: add alarm support (bsc#1185233). - rtc: pcf2127: add pca2129 device id (bsc#1185233). - rtc: pcf2127: add tamper detection support (bsc#1185233). - rtc: pcf2127: add watchdog feature support (bsc#1185233). - rtc: pcf2127: bugfix: watchdog build dependency (bsc#1185233). - rtc: pcf2127: cleanup register and bit defines (bsc#1185233). - rtc: pcf2127: convert to devm_rtc_allocate_device (bsc#1185233). - rtc: pcf2127: fix a bug when not specify interrupts property (bsc#1185233). - rtc: pcf2127: fix alarm handling (bsc#1185233). - rtc: pcf2127: fix pcf2127_nvmem_read/write() returns (bsc#1185233). - rtc: pcf2127: handle boot-enabled watchdog feature (bsc#1185233). - rtc: pcf2127: handle timestamp interrupts (bsc#1185495). - rtc: pcf2127: let the core handle rtc range (bsc#1185233). - rtc: pcf2127: move watchdog initialisation to a separate function (bsc#1185233). - rtc: pcf2127: only use watchdog when explicitly available (bsc#1185233). - rtc: pcf2127: properly set flag WD_CD for rtc chips(pcf2129, pca2129) (bsc#1185233). - rtc: pcf2127: remove unnecessary #ifdef (bsc#1185233). - rtc: pcf2127: set regmap max_register (bsc#1185233). - rtc: pcf2127: watchdog: handle nowayout feature (bsc#1185233). - rtlwifi: 8821ae: upgrade PHY and RF parameters (git-fixes). - rtw88: Fix an error code in rtw_debugfs_set_rsvd_page() (git-fixes). - rtw88: Fix array overrun in rtw_get_tx_power_params() (git-fixes). - rtw88: coex: 8821c: correct antenna switch function (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/crypto: return -EFAULT if copy_to_user() fails (git-fixes). - s390/dasd: fix hanging DASD driver unbind (bsc#1183932 LTC#192153). - s390/dasd: fix hanging IO request during DASD driver unbind (git-fixes). - s390/entry: save the caller of psw_idle (bsc#1185677). - s390/ipl: support NVMe IPL kernel parameters (bsc#1185980 LTC#192679). - s390/kdump: fix out-of-memory with PCI (bsc#1182257 LTC#191375). - s390/pci: fix leak of PCI device structure (git-fixes). - s390/qeth: fix memory leak after failed TX Buffer allocation (git-fixes). - s390/qeth: fix notification for pending buffers during teardown (git-fixes). - s390/qeth: improve completion of pending TX buffers (git-fixes). - s390/qeth: schedule TX NAPI on QAOB completion (git-fixes). - s390/vtime: fix increased steal time accounting (bsc#1183859). - s390/zcrypt: return EIO when msg retry limit reached (git-fixes). - samples, bpf: Add missing munmap in xdpsock (bsc#1155518). - samples/bpf: Fix possible hang in xdpsock with multiple threads (bsc#1155518). - sata_mv: add IRQ checks (git-fixes). - sched/eas: Do not update misfit status if the task is pinned (git-fixes) - sched/fair: Avoid stale CPU util_est value for schedutil in (git-fixes) - sched/fair: Fix shift-out-of-bounds in load_balance() (git fixes (sched)). - sched/fair: Fix unfairness caused by missing load decay (git-fixes) - scripts/git_sort/git_sort.py: add bpf git repo - scsi: aacraid: Improve compat_ioctl handlers (bsc#1186352). - scsi: block: Fix a race in the runtime power management code (git-fixes). - scsi: core: Only return started requests from scsi_host_find_tag() (bsc#1179851). - scsi: core: Run queue in case of I/O resource contention failure (bsc#1186416). - scsi: core: add scsi_host_busy_iter() (bsc#1179851). - scsi: fnic: Kill 'exclude_id' argument to fnic_cleanup_io() (bsc#1179851). - scsi: fnic: Remove bogus ratelimit messages (bsc#1183249). - scsi: libfc: Avoid invoking response handler twice if ep is already completed (bsc#1186573). - scsi: lpfc: Add a option to enable interlocked ABTS before job completion (bsc#1186451). - scsi: lpfc: Add ndlp kref accounting for resume RPI path (bsc#1186451). - scsi: lpfc: Change wording of invalid pci reset log message (bsc#1182574). - scsi: lpfc: Correct function header comments related to ndlp reference counting (bsc#1182574). - scsi: lpfc: Eliminate use of LPFC_DRIVER_NAME in lpfc_attr.c (bsc#1185472). - scsi: lpfc: Fix "Unexpected timeout" error in direct attach topology (bsc#1186451). - scsi: lpfc: Fix ADISC handling that never frees nodes (bsc#1182574). - scsi: lpfc: Fix DMA virtual address ptr assignment in bsg (bsc#1185365). - scsi: lpfc: Fix FLOGI failure due to accessing a freed node (bsc#1182574). - scsi: lpfc: Fix NMI crash during rmmod due to circular hbalock dependency (bsc#1185472). - scsi: lpfc: Fix Node recovery when driver is handling simultaneous PLOGIs (bsc#1186451). - scsi: lpfc: Fix PLOGI ACC to be transmit after REG_LOGIN (bsc#1182574). - scsi: lpfc: Fix a bunch of kernel-doc issues (bsc#1185472). - scsi: lpfc: Fix a bunch of kernel-doc misdemeanours (bsc#1185472). - scsi: lpfc: Fix a bunch of misnamed functions (bsc#1185472). - scsi: lpfc: Fix a few incorrectly named functions (bsc#1185472). - scsi: lpfc: Fix a typo (bsc#1185472). - scsi: lpfc: Fix bad memory access during VPD DUMP mailbox command (bsc#1186451). - scsi: lpfc: Fix crash caused by switch reboot (bsc#1182574). - scsi: lpfc: Fix crash when a REG_RPI mailbox fails triggering a LOGO response (bsc#1185472). - scsi: lpfc: Fix crash when lpfc_sli4_hba_setup() fails to initialize the SGLs (bsc#1186451). - scsi: lpfc: Fix dropped FLOGI during pt2pt discovery recovery (bsc#1182574). - scsi: lpfc: Fix error handling for mailboxes completed in MBX_POLL mode (bsc#1185472). - scsi: lpfc: Fix formatting and misspelling issues (bsc#1185472). - scsi: lpfc: Fix gcc -Wstringop-overread warning (bsc#1185472). - scsi: lpfc: Fix illegal memory access on Abort IOCBs (bsc#1183203). - scsi: lpfc: Fix incorrect dbde assignment when building target abts wqe (bsc#1182574). - scsi: lpfc: Fix incorrect naming of __lpfc_update_fcf_record() (bsc#1185472). - scsi: lpfc: Fix incorrectly documented function lpfc_debugfs_commonxripools_data() (bsc#1185472). - scsi: lpfc: Fix kernel-doc formatting issue (bsc#1185472). - scsi: lpfc: Fix lack of device removal on port swaps with PRLIs (bsc#1185472). - scsi: lpfc: Fix lpfc_els_retry() possible null pointer dereference (bsc#1182574). - scsi: lpfc: Fix lpfc_hdw_queue attribute being ignored (bsc#1185472). - scsi: lpfc: Fix missing FDMI registrations after Mgmt Svc login (bsc#1185472). - scsi: lpfc: Fix node handling for Fabric Controller and Domain Controller (bsc#1186451). - scsi: lpfc: Fix nodeinfo debugfs output (bsc#1182574). - scsi: lpfc: Fix non-optimized ERSP handling (bsc#1186451). - scsi: lpfc: Fix null pointer dereference in lpfc_prep_els_iocb() (bsc#1182574). - scsi: lpfc: Fix pt2pt connection does not recover after LOGO (bsc#1182574). - scsi: lpfc: Fix pt2pt state transition causing rmmod hang (bsc#1182574). - scsi: lpfc: Fix reference counting errors in lpfc_cmpl_els_rsp() (bsc#1185472). - scsi: lpfc: Fix reftag generation sizing errors (bsc#1182574). - scsi: lpfc: Fix rmmod crash due to bad ring pointers to abort_iotag (bsc#1185472). - scsi: lpfc: Fix silent memory allocation failure in lpfc_sli4_bsg_link_diag_test() (bsc#1185472). - scsi: lpfc: Fix some error codes in debugfs (bsc#1185472). - scsi: lpfc: Fix stale node accesses on stale RRQ request (bsc#1182574). - scsi: lpfc: Fix status returned in lpfc_els_retry() error exit path (bsc#1182574). - scsi: lpfc: Fix unnecessary null check in lpfc_release_scsi_buf (bsc#1182574). - scsi: lpfc: Fix unreleased RPIs when NPIV ports are created (bsc#1186451). - scsi: lpfc: Fix use after free in lpfc_els_free_iocb (bsc#1182574). - scsi: lpfc: Fix use-after-free on unused nodes after port swap (bsc#1185472). - scsi: lpfc: Fix various trivial errors in comments and log messages (bsc#1185472). - scsi: lpfc: Fix vport indices in lpfc_find_vport_by_vpid() (bsc#1182574). - scsi: lpfc: Ignore GID-FT response that may be received after a link flip (bsc#1186451). - scsi: lpfc: Reduce LOG_TRACE_EVENT logging for vports (bsc#1182574). - scsi: lpfc: Remove unsupported mbox PORT_CAPABILITIES logic (bsc#1185472). - scsi: lpfc: Reregister FPIN types if ELS_RDF is received from fabric controller (bsc#1186451). - scsi: lpfc: Standardize discovery object logging format (bsc#1185472). - scsi: lpfc: Update copyrights for 12.8.0.7 and 12.8.0.8 changes (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.10 (bsc#1186451). - scsi: lpfc: Update lpfc version to 12.8.0.8 (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.9 (bsc#1185472). - scsi: mpt3sas: Only one vSES is present even when IOC has multi vSES (bsc#1185954). - scsi: pm80xx: Do not sleep in atomic context (bsc#1186353). - scsi: pm80xx: Fix chip initialization failure (bsc#1186354). - scsi: pm80xx: Fix potential infinite loop (bsc#1186354). - scsi: pm80xx: Increase timeout for pm80xx mpi_uninit_check() (bsc#1186355). - scsi: qla2xxx: Add H:C:T info in the log message for fc ports (bsc#1185491). - scsi: qla2xxx: Add error counters to debugfs node (bsc#1185491). - scsi: qla2xxx: Always check the return value of qla24xx_get_isp_stats() (bsc#1185491). - scsi: qla2xxx: Assign boolean values to a bool variable (bsc#1185491). - scsi: qla2xxx: Check kzalloc() return value (bsc#1185491). - scsi: qla2xxx: Consolidate zio threshold setting for both FCP & NVMe (bsc#1185491). - scsi: qla2xxx: Constify struct qla_tgt_func_tmpl (bsc#1185491). - scsi: qla2xxx: Do logout even if fabric scan retries got exhausted (bsc#1185491). - scsi: qla2xxx: Enable NVMe CONF (BIT_7) when enabling SLER (bsc#1185491). - scsi: qla2xxx: Fix IOPS drop seen in some adapters (bsc#1185491). - scsi: qla2xxx: Fix RISC RESET completion polling (bsc#1185491). - scsi: qla2xxx: Fix a couple of misdocumented functions (bsc#1185491). - scsi: qla2xxx: Fix a couple of misnamed functions (bsc#1185491). - scsi: qla2xxx: Fix broken #endif placement (bsc#1185491). - scsi: qla2xxx: Fix crash in PCIe error handling (bsc#1185491). - scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand() (bsc#1185491). - scsi: qla2xxx: Fix endianness annotations (bsc#1185491). - scsi: qla2xxx: Fix incorrectly named function qla8044_check_temp() (bsc#1185491). - scsi: qla2xxx: Fix mailbox Ch erroneous error (bsc#1185491). - scsi: qla2xxx: Fix mailbox recovery during PCIe error (bsc#1185491). - scsi: qla2xxx: Fix some incorrect formatting/spelling issues (bsc#1185491). - scsi: qla2xxx: Fix some memory corruption (bsc#1185491). - scsi: qla2xxx: Fix stuck session (bsc#1185491). - scsi: qla2xxx: Fix use after free in bsg (bsc#1185491). - scsi: qla2xxx: Implementation to get and manage host, target stats and initiator port (bsc#1185491). - scsi: qla2xxx: Move some messages from debug to normal log level (bsc#1185491). - scsi: qla2xxx: Remove redundant NULL check (bsc#1185491). - scsi: qla2xxx: Remove unnecessary NULL check (bsc#1185491). - scsi: qla2xxx: Remove unneeded if-null-free check (bsc#1185491). - scsi: qla2xxx: Replace __qla2x00_marker()'s missing underscores (bsc#1185491). - scsi: qla2xxx: Reserve extra IRQ vectors (bsc#1184436). - scsi: qla2xxx: Reuse existing error handling path (bsc#1185491). - scsi: qla2xxx: Simplify if statement (bsc#1185491). - scsi: qla2xxx: Simplify qla8044_minidump_process_control() (bsc#1185491). - scsi: qla2xxx: Simplify the calculation of variables (bsc#1185491). - scsi: qla2xxx: Suppress Coverity complaints about dseg_r* (bsc#1185491). - scsi: qla2xxx: Update default AER debug mask (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.105-k (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.106-k (bsc#1185491). - scsi: qla2xxx: Use dma_pool_zalloc() (bsc#1185491). - scsi: qla2xxx: Wait for ABTS response on I/O timeouts for NVMe (bsc#1185491). - scsi: qla2xxx: fc_remote_port_chkready() returns a SCSI result value (bsc#1185491). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: target: pscsi: Avoid OOM in pscsi_map_sg() (bsc#1183843). - scsi: target: pscsi: Clean up after failure in pscsi_map_sg() (bsc#1183843). - scsi: target: tcmu: Fix use-after-free of se_cmd->priv (bsc#1186356). - scsi: target: tcmu: Fix warning: 'page' may be used uninitialized (bsc#1186357). - sctp: delay auto_asconf init until binding the first addr (&lt;cover.1620748346.git.mkubecek@suse.cz>). - security: keys: trusted: fix TPM2 authorizations (git-fixes). - selftests/bpf: Fix BPF_CORE_READ_BITFIELD() macro (bsc#1177028). - selftests/bpf: Fix the ASSERT_ERR_PTR macro (bsc#1177028). - selftests/bpf: Mask bpf_csum_diff() return value to 16 bits in test_verifier (bsc#1155518). - selftests/bpf: No need to drop the packet when there is no geneve opt (bsc#1155518). - selftests/bpf: Re-generate vmlinux.h and BPF skeletons if bpftool changed (bsc#1177028). - selftests/bpf: Set gopt opt_class to 0 if get tunnel opt failed (bsc#1155518). - selftests/powerpc: Add pkey helpers for rights (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for execute-disabled pkeys (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for pkey siginfo verification (bsc#1184934 ltc#191460). - selftests/powerpc: Add wrapper for gettid (bsc#1184934 ltc#191460). - selftests/powerpc: Fix L1D flushing tests for Power10 (bsc#1184934 ltc#191460). - selftests/powerpc: Fix exit status of pkey tests (bsc#1184934 ltc#191460). - selftests/powerpc: Fix pkey syscall redefinitions (bsc#1184934 ltc#191460). - selftests/powerpc: Move pkey helpers to headers (bsc#1184934 ltc#191460). - selftests/powerpc: refactor entry and rfi_flush tests (bsc#1184934 ltc#191460). - selftests: mlxsw: Remove a redundant if statement in tc_flower_scale test (bsc#1176774). - selinux: Fix error return code in sel_ib_pkey_sid_slow() (git-fixes). - selinux: fix error initialization in inode_doinit_with_dentry() (git-fixes). - selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handling (git-fixes). - serial: core: return early on unsupported ioctls (git-fixes). - serial: stm32: fix incorrect characters on console (git-fixes). - serial: stm32: fix tx_empty condition (git-fixes). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1183540). - smb3: add dynamic trace point to trace when credits obtained (bsc#1181507). - smb3: fix crediting for compounding when only one request in flight (bsc#1181507). - smc: disallow TCP_ULP in smc_setsockopt() (git-fixes). - soc/fsl: qbman: fix conflicting alignment attributes (git-fixes). - soc: aspeed: fix a ternary sign expansion bug (git-fixes). - soc: fsl: qe: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - soc: qcom: mdt_loader: Detect truncated read of segments (git-fixes). - soc: qcom: mdt_loader: Validate that p_filesz &lt; p_memsz (git-fixes). - software node: Fix node registration (git-fixes). - soundwire: bus: Fix device found flag correctly (git-fixes). - soundwire: stream: fix memory leak in stream config error path (git-fixes). - spi: Introduce dspi_slave_abort() function for NXP's dspi SPI driver (bsc#1167260). - spi: ath79: always call chipselect function (git-fixes). - spi: ath79: remove spi-master setup and cleanup assignment (git-fixes). - spi: cadence: set cqspi to the driver_data field of struct device (git-fixes). - spi: dln2: Fix reference leak to master (git-fixes). - spi: fsl-dspi: fix NULL pointer dereference (bsc#1167260). - spi: fsl-dspi: fix use-after-free in remove path (bsc#1167260). - spi: fsl-dspi: fix wrong pointer in suspend/resume (bsc#1167260). - spi: fsl-lpspi: Fix PM reference leak in lpspi_prepare_xfer_hardware() (git-fixes). - spi: omap-100k: Fix reference leak to master (git-fixes). - spi: qup: fix PM reference leak in spi_qup_remove() (git-fixes). - spi: spi-fsl-dspi: Accelerate transfers using larger word size if possible (bsc#1167260). - spi: spi-fsl-dspi: Add comments around dspi_pop_tx and dspi_push_rx functions (bsc#1167260). - spi: spi-fsl-dspi: Add support for LS1028A (bsc#1167260). - spi: spi-fsl-dspi: Adding shutdown hook (bsc#1167260). - spi: spi-fsl-dspi: Always use the TCFQ devices in poll mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid NULL pointer in dspi_slave_abort for non-DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid reading more data than written in EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Change usage pattern of SPI_MCR_* and SPI_CTAR_* macros (bsc#1167260). - spi: spi-fsl-dspi: Convert TCFQ users to XSPI FIFO mode (bsc#1167260). - spi: spi-fsl-dspi: Convert the instantiations that support it to DMA (bsc#1167260). - spi: spi-fsl-dspi: Demistify magic value in SPI_SR_CLEAR (bsc#1167260). - spi: spi-fsl-dspi: Do not access reserved fields in SPI_MCR (bsc#1167260). - spi: spi-fsl-dspi: Do not mask off undefined bits (bsc#1167260). - spi: spi-fsl-dspi: Exit the ISR with IRQ_NONE when it's not ours (bsc#1167260). - spi: spi-fsl-dspi: Fix 16-bit word order in 32-bit XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Fix a resource leak in an error handling path (git-fixes). - spi: spi-fsl-dspi: Fix bits-per-word acceleration in DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Fix code alignment (bsc#1167260). - spi: spi-fsl-dspi: Fix external abort on interrupt in resume or exit paths (bsc#1167260). - spi: spi-fsl-dspi: Fix interrupt-less DMA mode taking an XSPI code path (bsc#1167260). - spi: spi-fsl-dspi: Fix little endian access to PUSHR CMD and TXDATA (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is removed during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is shutdown during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix race condition in TCFQ/EOQ interrupt (bsc#1167260). - spi: spi-fsl-dspi: Fix typos (bsc#1167260). - spi: spi-fsl-dspi: Free DMA memory with matching function (bsc#1167260). - spi: spi-fsl-dspi: Implement .max_message_size method for EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Initialize completion before possible interrupt (bsc#1167260). - spi: spi-fsl-dspi: LS2080A and LX2160A support XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Make bus-num property optional (bsc#1167260). - spi: spi-fsl-dspi: Move dspi_interrupt above dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Move invariant configs out of dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Optimize dspi_setup_accel for lowest interrupt count (bsc#1167260). - spi: spi-fsl-dspi: Parameterize the FIFO size and DMA buffer size (bsc#1167260). - spi: spi-fsl-dspi: Protect against races on dspi->words_in_flight (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation in dspi_release_dma() (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation level in dspi_interrupt (bsc#1167260). - spi: spi-fsl-dspi: Remove impossible to reach error check (bsc#1167260). - spi: spi-fsl-dspi: Remove pointless assignment of master->transfer to NULL (bsc#1167260). - spi: spi-fsl-dspi: Remove unused chip->void_write_data (bsc#1167260). - spi: spi-fsl-dspi: Remove unused defines and includes (bsc#1167260). - spi: spi-fsl-dspi: Remove unused initialization of 'ret' in dspi_probe (bsc#1167260). - spi: spi-fsl-dspi: Rename fifo_{read,write} and {tx,cmd}_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Replace interruptible wait queue with a simple completion (bsc#1167260). - spi: spi-fsl-dspi: Replace legacy spi_master names with spi_controller (bsc#1167260). - spi: spi-fsl-dspi: Simplify bytes_per_word gymnastics (bsc#1167260). - spi: spi-fsl-dspi: Take software timestamp in dspi_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Use BIT() and GENMASK() macros (bsc#1167260). - spi: spi-fsl-dspi: Use EOQ for last word in buffer even for XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Use dma_request_chan() instead dma_request_slave_channel() (bsc#1167260). - spi: spi-fsl-dspi: Use poll mode in case the platform IRQ is missing (bsc#1167260). - spi: spi-fsl-dspi: Use reverse Christmas tree declaration order (bsc#1167260). - spi: spi-fsl-dspi: Use specific compatible strings for all SoC instantiations (bsc#1167260). - spi: spi-fsl-dspi: delete EOQ transfer mode (bsc#1167260). - spi: spi-fsl-dspi: fix DMA mapping (bsc#1167260). - spi: spi-fsl-dspi: fix native data copy (bsc#1167260). - spi: spi-fsl-dspi: remove git-fixes Remove git-fixes. Prepare to update the driver. References: bsc#1167260 - spi: spi-fsl-dspi: set ColdFire to DMA mode (bsc#1167260). - spi: spi-fsl-dspi: use XSPI mode instead of DMA for DPAA2 SoCs (bsc#1167260). - spi: spi-ti-qspi: Free DMA resources (git-fixes). - spi: stm32: make spurious and overrun interrupts visible (git-fixes). - squashfs: fix inode lookup sanity checks (bsc#1183750). - squashfs: fix xattr id and id lookup sanity checks (bsc#1183750). - staging: bcm2835-audio: Replace unsafe strcpy() with strscpy() (git-fixes). - staging: comedi: addi_apci_1032: Fix endian problem for COS sample (git-fixes). - staging: comedi: addi_apci_1500: Fix endian problem for command sample (git-fixes). - staging: comedi: adv_pci1710: Fix endian problem for AI command data (git-fixes). - staging: comedi: cb_pcidas64: fix request_irq() warn (git-fixes). - staging: comedi: cb_pcidas: fix request_irq() warn (git-fixes). - staging: comedi: das6402: Fix endian problem for AI command data (git-fixes). - staging: comedi: das800: Fix endian problem for AI command data (git-fixes). - staging: comedi: dmm32at: Fix endian problem for AI command data (git-fixes). - staging: comedi: me4000: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl711: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl818: Fix endian problem for AI command data (git-fixes). - staging: fwserial: Fix error handling in fwserial_create (git-fixes). - staging: fwserial: fix TIOCGSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL jiffies conversions (git-fixes). - staging: fwserial: fix TIOCSSERIAL permission check (git-fixes). - staging: ks7010: prevent buffer overflow in ks_wlan_set_scan() (git-fixes). - staging: most: sound: add sanity check for function argument (git-fixes). - staging: rtl8188eu: fix potential memory corruption in rtw_check_beacon_data() (git-fixes). - staging: rtl8188eu: prevent ->ssid overflow in rtw_wx_set_scan() (git-fixes). - staging: rtl8192e: Change state information from u16 to u8 (git-fixes). - staging: rtl8192e: Fix incorrect source in memcpy() (git-fixes). - staging: rtl8192e: Fix possible buffer overflow in _rtl92e_wx_set_scan (git-fixes). - staging: rtl8192u: Fix potential infinite loop (git-fixes). - staging: rtl8192u: fix ->ssid overflow in r8192_wx_set_scan() (git-fixes). - staging: rtl8712: Fix possible buffer overflow in r8712_sitesurvey_cmd (git-fixes). - staging: rtl8712: unterminated string leads to read overflow (git-fixes). - stop_machine: mark helpers __always_inline (git-fixes). - supported.conf: - supported.conf: add bsc1185010 dependency - supported.conf: mark usb_otg_fsm as supported (bsc#1185010) - tcp: fix to update snd_wl1 in bulk receiver fast path (&lt;cover.1620748346.git.mkubecek@suse.cz>). - tee: optee: remove need_resched() before cond_resched() (git-fixes). - tee: optee: replace might_sleep with cond_resched (git-fixes). - thermal/core: Add NULL pointer check before using cooling device stats (git-fixes). - thermal/drivers/cpufreq_cooling: Update cpufreq_state only if state has changed (git-fixes). - thermal/drivers/ti-soc-thermal/bandgap Remove unused variable 'val' (git-fixes). - thermal: thermal_of: Fix error return code of thermal_of_populate_bind_params() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Initialize HopID IDAs in tb_switch_alloc() (git-fixes). - tools/resolve_btfids: Fix build error with older host toolchains (bsc#1177028). - tpm: acpi: Check eventlog signature before using it (git-fixes). - tracing: Map all PIDs to command lines (git-fixes). - tty: amiserial: fix TIOCSSERIAL permission check (git-fixes). - tty: fix memory leak in vc_deallocate (git-fixes). - tty: moxa: fix TIOCSSERIAL jiffies conversions (git-fixes). - tty: moxa: fix TIOCSSERIAL permission check (git-fixes). - tty: serial: lpuart: fix lpuart32_write usage (git-fixes). - tty: serial: ucc_uart: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - udlfb: Fix memory leak in dlfb_usb_probe (git-fixes). - uio: uio_hv_generic: use devm_kzalloc() for private data alloc (git-fixes). - uio_hv_generic: Fix a memory leak in error handling paths (git-fixes). - uio_hv_generic: Fix another memory leak in error handling paths (git-fixes). - uio_hv_generic: add missed sysfs_remove_bin_file (git-fixes). - usb-storage: Add quirk to defeat Kindle's automatic unload (git-fixes). - usb: Remove dev_err() usage after platform_get_irq() (git-fixes). - usb: core: hub: Fix PM reference leak in usb_port_resume() (git-fixes). - usb: core: hub: fix race condition about TRSMRCY of resume (git-fixes). - usb: dwc2: Fix HPRT0.PrtSusp bit setting for HiKey 960 board (git-fixes). - usb: dwc2: Fix gadget DMA unmap direction (git-fixes). - usb: dwc2: Fix hibernation between host and device modes (git-fixes). - usb: dwc2: Fix host mode hibernation exit with remote wakeup flow (git-fixes). - usb: dwc2: Fix session request interrupt handler (git-fixes). - usb: dwc2: Prevent core suspend when port connection flag is 0 (git-fixes). - usb: dwc3: Switch to use device_property_count_u32() (git-fixes). - usb: dwc3: Update soft-reset wait polling rate (git-fixes). - usb: dwc3: gadget: Fix START_TRANSFER link state check (git-fixes). - usb: dwc3: gadget: Return success always for kick transfer in ep queue (git-fixes). - usb: dwc3: keystone: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: meson-g12a: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: omap: improve extcon initialization (git-fixes). - usb: dwc3: pci: Enable usb2-gadget-lpm-disable for Intel Merrifield (git-fixes). - usb: dwc3: qcom: Add missing DWC3 OF node refcount decrement (git-fixes). - usb: dwc3: qcom: Honor wakeup enabled/disabled state (git-fixes). - usb: fotg210-hcd: Fix an error message (git-fixes). - usb: gadget/function/f_fs string table fix for multiple languages (git-fixes). - usb: gadget: Fix double free of device descriptor pointers (git-fixes). - usb: gadget: aspeed: fix dma map failure (git-fixes). - usb: gadget: configfs: Fix KASAN use-after-free (git-fixes). - usb: gadget: dummy_hcd: fix gpf in gadget_setup (git-fixes). - usb: gadget: f_uac1: stop playback on function disable (git-fixes). - usb: gadget: f_uac1: validate input parameters (git-fixes). - usb: gadget: f_uac2: always increase endpoint max_packet_size by one audio slot (git-fixes). - usb: gadget: f_uac2: validate input parameters (git-fixes). - usb: gadget: pch_udc: Check for DMA mapping error (git-fixes). - usb: gadget: pch_udc: Check if driver is present before calling ->setup() (git-fixes). - usb: gadget: pch_udc: Move pch_udc_init() to satisfy kernel doc (git-fixes). - usb: gadget: pch_udc: Replace cpu_to_le32() by lower_32_bits() (git-fixes). - usb: gadget: pch_udc: Revert d3cb25a12138 completely (git-fixes). - usb: gadget: r8a66597: Add missing null check on return from platform_get_resource (git-fixes). - usb: gadget: udc: amd5536udc_pci fix null-ptr-dereference (git-fixes). - usb: gadget: uvc: add bInterval checking for HS mode (git-fixes). - usb: musb: Fix suspend with devices connected for a64 (git-fixes). - usb: musb: fix PM reference leak in musb_irq_work() (git-fixes). - usb: pci-quirks: disable D3cold on xhci suspend for s2idle on AMD Renoire (bsc#1185840). - usb: renesas_usbhs: Clear PIPECFG for re-enabling pipe with other EPNUM (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: sl811-hcd: improve misleading indentation (git-fixes). - usb: typec: Remove vdo[3] part of tps6598x_rx_identity_reg struct (git-fixes). - usb: typec: tcpci: Check ROLE_CONTROL while interpreting CC_STATUS (git-fixes). - usb: typec: tcpm: Address incorrect values of tcpm psy for fixed supply (git-fixes). - usb: typec: tcpm: Honour pSnkStdby requirement during negotiation (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: webcam: Invalid size of Processing Unit Descriptor (git-fixes). - usb: xhci-mtk: fix broken streams issue on 0.96 xHCI (git-fixes). - usb: xhci-mtk: improve bandwidth scheduling with TT (git-fixes). - usb: xhci-mtk: remove or operator for setting schedule parameters (git-fixes). - usb: xhci: Fix ASMedia ASM1042A and ASM3242 DMA addressing (git-fixes). - usb: xhci: Fix port minor revision (git-fixes). - usb: xhci: Increase timeout for HC halt (git-fixes). - usb: xhci: do not perform Soft Retry for some xHCI hosts (git-fixes). - usbip: Fix incorrect double assignment to udc->ud.tcp_rx (git-fixes). - usbip: fix stub_dev to check for stream socket (git-fixes). - usbip: fix stub_dev usbip_sockfd_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd attach_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd to check for stream socket (git-fixes). - usbip: fix vudc to check for stream socket (git-fixes). - usbip: fix vudc usbip_sockfd_store races leading to gpf (git-fixes). - usbip: tools: fix build error for multiple definition (git-fixes). - usbip: vhci_hcd fix shift out-of-bounds in vhci_hub_control() (git-fixes). - use __netdev_notify_peers in ibmvnic (bsc#1183871 ltc#192139). - veth: Store queue_mapping independently of XDP prog presence (git-fixes). - vfio-pci/zdev: fix possible segmentation fault issue (git-fixes). - vfio/iommu_type1: Populate full dirty when detach non-pinned group (bsc#1183326). - vfio/mdev: Do not allow a mdev_type to have a NULL parent pointer (git-fixes). - vfio/mdev: Make to_mdev_device() into a static inline (git-fixes). - vfio/pci: Add missing range check in vfio_pci_mmap (git-fixes). - vfio/pci: Move VGA and VF initialization to functions (git-fixes). - vfio/pci: Re-order vfio_pci_probe() (git-fixes). - vgacon: Record video mode changes with VT_RESIZEX (git-fixes). - video: fbdev: acornfb: remove free_unused_pages() (bsc#1152489) - video: hyperv_fb: Add ratelimit on error message (bsc#1185725). - video: hyperv_fb: Fix a double free in hvfb_probe (git-fixes). - virt_wifi: Return micros for BSS TSF values (git-fixes). - virtiofs: fix memory leak in virtio_fs_probe() (bsc#1185558). - vrf: fix a comment about loopback device (git-fixes). - vt/consolemap: do font sum unsigned (git-fixes). - vxlan: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - vxlan: move debug check after netdev unregister (git-fixes). - watchdog/softlockup: Remove obsolete check of last reported task (bsc#1185982). - watchdog/softlockup: report the overall time of softlockups (bsc#1185982). - watchdog: explicitly update timestamp when reporting softlockup (bsc#1185982). - watchdog: rename __touch_watchdog() to a better descriptive name (bsc#1185982). - whitespace cleanup - wl3501_cs: Fix out-of-bounds warnings in wl3501_mgmt_join (git-fixes). - wl3501_cs: Fix out-of-bounds warnings in wl3501_send_pkt (git-fixes). - wlcore: Fix command execute failure 19 for wl12xx (git-fixes). - workqueue: Minor follow-ups to the rescuer destruction change (bsc#1185911). - workqueue: Move the position of debug_work_activate() in __queue_work() (bsc#1184893). - workqueue: more destroy_workqueue() fixes (bsc#1185911). - x86,swiotlb: Adjust SWIOTLB bounce buffer size for SEV guests (bsc#1186219). - x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access (bsc#1152489). - x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task (bsc#1152489). - x86/insn: Add some Intel instructions to the opcode map (bsc#1184760). - x86/insn: Add some more Intel instructions to the opcode map (bsc#1184760). - x86/ioapic: Ignore IRQ2 again (bsc#1152489). - x86/mem_encrypt: Correct physical address calculation in __set_clr_pte_enc() (bsc#1152489). - x86/microcode: Check for offline CPUs before requesting new microcode (bsc#1152489). - x86/mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd (bsc#1152489). - x86/platform/uv: Set section block size for hubless architectures (bsc#1152489). - x86/reboot: Force all cpus to exit VMX root if VMX is supported (bsc#1152489). - x86/sev-es: Invalidate the GHCB after completing VMGEXIT (bsc#1178134). - x86/sev-es: Move sev_es_put_ghcb() in prep for follow on patch (bsc#1178134). - x86: Introduce TS_COMPAT_RESTART to fix get_nr_restart_syscall() (bsc#1152489). - xen/events: avoid handling the same event on two cpus at the same time (git-fixes). - xen/events: do not unmask an event channel when an eoi is pending (git-fixes). - xen/events: reset affinity of 2-level event when tearing it down (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: Provide private skb extensions for segmented and hw offloaded ESP packets (bsc#1176447). - xfs: group quota should return EDQUOT when prj quota enabled (bsc#1180980). - xhci: Do not use GFP_KERNEL in (potentially) atomic context (git-fixes). - xhci: Fix repeated xhci wake after suspend due to uncleared internal wake state (git-fixes). - xhci: Improve detection of device initiated wake signal (git-fixes). - xhci: check control context is valid before dereferencing it (git-fixes). - xhci: fix potential array out of bounds with several interrupters (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). cluster-md-kmp-default-5.3.18-59.5.2.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True dlm-kmp-default-5.3.18-59.5.2.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True gfs2-kmp-default-5.3.18-59.5.2.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True kernel-debug-5.3.18-59.5.2.nosrc.rpm True kernel-debug-5.3.18-59.5.2.x86_64.rpm True kernel-debug-devel-5.3.18-59.5.2.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-default-5.3.18-59.5.2.nosrc.rpm True kernel-default-5.3.18-59.5.2.x86_64.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.src.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.x86_64.rpm True kernel-default-devel-5.3.18-59.5.2.x86_64.rpm True kernel-default-extra-5.3.18-59.5.2.x86_64.rpm True kernel-default-livepatch-5.3.18-59.5.2.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-default-optional-5.3.18-59.5.2.x86_64.rpm True kernel-devel-5.3.18-59.5.2.noarch.rpm True kernel-docs-5.3.18-59.5.2.noarch.rpm True kernel-docs-5.3.18-59.5.2.nosrc.rpm True kernel-docs-html-5.3.18-59.5.2.noarch.rpm True kernel-kvmsmall-5.3.18-59.5.2.nosrc.rpm True kernel-kvmsmall-5.3.18-59.5.2.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.5.2.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-macros-5.3.18-59.5.2.noarch.rpm True kernel-obs-build-5.3.18-59.5.1.src.rpm True kernel-obs-build-5.3.18-59.5.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.5.1.src.rpm True kernel-obs-qa-5.3.18-59.5.1.x86_64.rpm True kernel-preempt-5.3.18-59.5.2.nosrc.rpm True kernel-preempt-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-devel-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-extra-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-optional-5.3.18-59.5.2.x86_64.rpm True kernel-source-5.3.18-59.5.2.noarch.rpm True kernel-source-5.3.18-59.5.2.src.rpm True kernel-source-vanilla-5.3.18-59.5.2.noarch.rpm True kernel-syms-5.3.18-59.5.1.src.rpm True kernel-syms-5.3.18-59.5.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.5.2.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.5.2.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.5.2.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.5.2.s390x.rpm True dlm-kmp-default-5.3.18-59.5.2.s390x.rpm True gfs2-kmp-default-5.3.18-59.5.2.s390x.rpm True kernel-default-5.3.18-59.5.2.s390x.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.s390x.rpm True kernel-default-devel-5.3.18-59.5.2.s390x.rpm True kernel-default-extra-5.3.18-59.5.2.s390x.rpm True kernel-default-livepatch-5.3.18-59.5.2.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.s390x.rpm True kernel-default-optional-5.3.18-59.5.2.s390x.rpm True kernel-obs-build-5.3.18-59.5.1.s390x.rpm True kernel-obs-qa-5.3.18-59.5.1.s390x.rpm True kernel-syms-5.3.18-59.5.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.5.2.nosrc.rpm True kernel-zfcpdump-5.3.18-59.5.2.s390x.rpm True kselftests-kmp-default-5.3.18-59.5.2.s390x.rpm True ocfs2-kmp-default-5.3.18-59.5.2.s390x.rpm True reiserfs-kmp-default-5.3.18-59.5.2.s390x.rpm True cluster-md-kmp-default-5.3.18-59.5.2.ppc64le.rpm True dlm-kmp-default-5.3.18-59.5.2.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.5.2.ppc64le.rpm True kernel-debug-5.3.18-59.5.2.ppc64le.rpm True kernel-debug-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-default-5.3.18-59.5.2.ppc64le.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.ppc64le.rpm True kernel-default-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-default-extra-5.3.18-59.5.2.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.5.2.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-default-optional-5.3.18-59.5.2.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.5.2.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-obs-build-5.3.18-59.5.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.5.1.ppc64le.rpm True kernel-syms-5.3.18-59.5.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.5.2.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.5.2.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.5.2.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.5.2.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True dlm-kmp-default-5.3.18-59.5.2.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True gfs2-kmp-default-5.3.18-59.5.2.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-5.3.18-59.5.2.nosrc.rpm True kernel-64kb-devel-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-extra-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-optional-5.3.18-59.5.2.aarch64.rpm True kernel-default-5.3.18-59.5.2.aarch64.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.aarch64.rpm True kernel-default-devel-5.3.18-59.5.2.aarch64.rpm True kernel-default-extra-5.3.18-59.5.2.aarch64.rpm True kernel-default-livepatch-5.3.18-59.5.2.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.aarch64.rpm True kernel-default-optional-5.3.18-59.5.2.aarch64.rpm True kernel-obs-build-5.3.18-59.5.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.5.1.aarch64.rpm True kernel-preempt-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-devel-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-extra-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-optional-5.3.18-59.5.2.aarch64.rpm True kernel-syms-5.3.18-59.5.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True kselftests-kmp-default-5.3.18-59.5.2.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.5.2.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.5.2.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True openSUSE-SLE-15.3-2021-1883 moderate SUSE Updates openSUSE-SLE 15.3 This update for file-roller fixes the following issues: - Prevent segmentation fault while displaying error messages when trying to extract broken/corrupted files. (bsc#1186435) file-roller-3.32.5-3.3.1.src.rpm file-roller-3.32.5-3.3.1.x86_64.rpm file-roller-lang-3.32.5-3.3.1.noarch.rpm file-roller-3.32.5-3.3.1.s390x.rpm file-roller-3.32.5-3.3.1.ppc64le.rpm file-roller-3.32.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1846 moderate SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nss fixes the following issue: - Provide some missing binaries from `mozilla-nss` not added in `SLE-Module-Basesystem_15-SP3`. (bsc#1185910) libfreebl3-3.53.1-3.53.1.x86_64.rpm libfreebl3-32bit-3.53.1-3.53.1.x86_64.rpm libfreebl3-hmac-3.53.1-3.53.1.x86_64.rpm libfreebl3-hmac-32bit-3.53.1-3.53.1.x86_64.rpm libsoftokn3-3.53.1-3.53.1.x86_64.rpm libsoftokn3-32bit-3.53.1-3.53.1.x86_64.rpm libsoftokn3-hmac-3.53.1-3.53.1.x86_64.rpm libsoftokn3-hmac-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-3.53.1-3.53.1.src.rpm mozilla-nss-3.53.1-3.53.1.x86_64.rpm mozilla-nss-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-certs-3.53.1-3.53.1.x86_64.rpm mozilla-nss-certs-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-devel-3.53.1-3.53.1.x86_64.rpm mozilla-nss-sysinit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-tools-3.53.1-3.53.1.x86_64.rpm libfreebl3-3.53.1-3.53.1.s390x.rpm libfreebl3-hmac-3.53.1-3.53.1.s390x.rpm libsoftokn3-3.53.1-3.53.1.s390x.rpm libsoftokn3-hmac-3.53.1-3.53.1.s390x.rpm mozilla-nss-3.53.1-3.53.1.s390x.rpm mozilla-nss-certs-3.53.1-3.53.1.s390x.rpm mozilla-nss-devel-3.53.1-3.53.1.s390x.rpm mozilla-nss-sysinit-3.53.1-3.53.1.s390x.rpm mozilla-nss-tools-3.53.1-3.53.1.s390x.rpm libfreebl3-3.53.1-3.53.1.ppc64le.rpm libfreebl3-hmac-3.53.1-3.53.1.ppc64le.rpm libsoftokn3-3.53.1-3.53.1.ppc64le.rpm libsoftokn3-hmac-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-certs-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-devel-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-sysinit-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-tools-3.53.1-3.53.1.ppc64le.rpm libfreebl3-3.53.1-3.53.1.aarch64.rpm libfreebl3-hmac-3.53.1-3.53.1.aarch64.rpm libsoftokn3-3.53.1-3.53.1.aarch64.rpm libsoftokn3-hmac-3.53.1-3.53.1.aarch64.rpm mozilla-nss-3.53.1-3.53.1.aarch64.rpm mozilla-nss-certs-3.53.1-3.53.1.aarch64.rpm mozilla-nss-devel-3.53.1-3.53.1.aarch64.rpm mozilla-nss-sysinit-3.53.1-3.53.1.aarch64.rpm mozilla-nss-tools-3.53.1-3.53.1.aarch64.rpm openSUSE-SLE-15.3-2021-2249 low SUSE Updates openSUSE-SLE 15.3 This update for gnutls does not fix any user visible issues. It is therefore optional to install. gnutls-3.6.7-14.13.5.src.rpm gnutls-3.6.7-14.13.5.x86_64.rpm gnutls-guile-3.6.7-14.13.5.x86_64.rpm libgnutls-devel-3.6.7-14.13.5.x86_64.rpm libgnutls-devel-32bit-3.6.7-14.13.5.x86_64.rpm libgnutls30-3.6.7-14.13.5.x86_64.rpm libgnutls30-32bit-3.6.7-14.13.5.x86_64.rpm libgnutls30-hmac-3.6.7-14.13.5.x86_64.rpm libgnutls30-hmac-32bit-3.6.7-14.13.5.x86_64.rpm libgnutlsxx-devel-3.6.7-14.13.5.x86_64.rpm libgnutlsxx28-3.6.7-14.13.5.x86_64.rpm gnutls-3.6.7-14.13.5.s390x.rpm gnutls-guile-3.6.7-14.13.5.s390x.rpm libgnutls-devel-3.6.7-14.13.5.s390x.rpm libgnutls30-3.6.7-14.13.5.s390x.rpm libgnutls30-hmac-3.6.7-14.13.5.s390x.rpm libgnutlsxx-devel-3.6.7-14.13.5.s390x.rpm libgnutlsxx28-3.6.7-14.13.5.s390x.rpm gnutls-3.6.7-14.13.5.ppc64le.rpm gnutls-guile-3.6.7-14.13.5.ppc64le.rpm libgnutls-devel-3.6.7-14.13.5.ppc64le.rpm libgnutls30-3.6.7-14.13.5.ppc64le.rpm libgnutls30-hmac-3.6.7-14.13.5.ppc64le.rpm libgnutlsxx-devel-3.6.7-14.13.5.ppc64le.rpm libgnutlsxx28-3.6.7-14.13.5.ppc64le.rpm gnutls-3.6.7-14.13.5.aarch64.rpm gnutls-guile-3.6.7-14.13.5.aarch64.rpm libgnutls-devel-3.6.7-14.13.5.aarch64.rpm libgnutls30-3.6.7-14.13.5.aarch64.rpm libgnutls30-hmac-3.6.7-14.13.5.aarch64.rpm libgnutlsxx-devel-3.6.7-14.13.5.aarch64.rpm libgnutlsxx28-3.6.7-14.13.5.aarch64.rpm openSUSE-SLE-15.3-2021-2285 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-apparmor fixes the following issues: - Fixes a crash when the profiles list was empty (bsc#1186330) yast2-apparmor-4.3.2-3.3.1.noarch.rpm yast2-apparmor-4.3.2-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2286 moderate SUSE Updates openSUSE-SLE 15.3 This update for dosfstools fixes the following issue: - Fixed a bug that was causing an installation issue when trying to create an EFI partition on an NVMe-over-Fabrics device (bsc#1172863) dosfstools-4.1-3.3.1.src.rpm dosfstools-4.1-3.3.1.x86_64.rpm dosfstools-4.1-3.3.1.s390x.rpm dosfstools-4.1-3.3.1.ppc64le.rpm dosfstools-4.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2870 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-packager fixes the following issues: - Corrects package selection when on "armv7l" (bsc#1183795) yast2-packager-4.3.22-3.3.6.src.rpm yast2-packager-4.3.22-3.3.6.x86_64.rpm yast2-packager-4.3.22-3.3.6.s390x.rpm yast2-packager-4.3.22-3.3.6.ppc64le.rpm yast2-packager-4.3.22-3.3.6.aarch64.rpm openSUSE-SLE-15.3-2021-2171 moderate SUSE Updates openSUSE-SLE 15.3 This update for btrfsmaintenance fixes the following issues: - Remove [Install] section from btrfsmaintenance. (bsc#1178874) btrfsmaintenance-0.4.2-3.3.1.noarch.rpm btrfsmaintenance-0.4.2-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1958 moderate SUSE Updates openSUSE-SLE 15.3 This update for libjpeg-turbo fixes the following issues: - CVE-2020-17541: Fixed a stack-based buffer overflow in the "transform" component (bsc#1186764). libjpeg-turbo-1.5.3-5.18.1.src.rpm libjpeg-turbo-1.5.3-5.18.1.x86_64.rpm libjpeg62-32bit-62.2.0-5.18.1.x86_64.rpm libjpeg62-62.2.0-5.18.1.x86_64.rpm libjpeg62-devel-32bit-62.2.0-5.18.1.x86_64.rpm libjpeg62-devel-62.2.0-5.18.1.x86_64.rpm libjpeg62-turbo-1.5.3-5.18.1.src.rpm libjpeg62-turbo-1.5.3-5.18.1.x86_64.rpm libjpeg8-32bit-8.1.2-5.18.1.x86_64.rpm libjpeg8-8.1.2-5.18.1.x86_64.rpm libjpeg8-devel-32bit-8.1.2-5.18.1.x86_64.rpm libjpeg8-devel-8.1.2-5.18.1.x86_64.rpm libturbojpeg0-32bit-8.1.2-5.18.1.x86_64.rpm libturbojpeg0-8.1.2-5.18.1.x86_64.rpm libjpeg-turbo-1.5.3-5.18.1.s390x.rpm libjpeg62-62.2.0-5.18.1.s390x.rpm libjpeg62-devel-62.2.0-5.18.1.s390x.rpm libjpeg62-turbo-1.5.3-5.18.1.s390x.rpm libjpeg8-8.1.2-5.18.1.s390x.rpm libjpeg8-devel-8.1.2-5.18.1.s390x.rpm libturbojpeg0-8.1.2-5.18.1.s390x.rpm libjpeg-turbo-1.5.3-5.18.1.ppc64le.rpm libjpeg62-62.2.0-5.18.1.ppc64le.rpm libjpeg62-devel-62.2.0-5.18.1.ppc64le.rpm libjpeg62-turbo-1.5.3-5.18.1.ppc64le.rpm libjpeg8-8.1.2-5.18.1.ppc64le.rpm libjpeg8-devel-8.1.2-5.18.1.ppc64le.rpm libturbojpeg0-8.1.2-5.18.1.ppc64le.rpm libjpeg-turbo-1.5.3-5.18.1.aarch64.rpm libjpeg62-62.2.0-5.18.1.aarch64.rpm libjpeg62-devel-62.2.0-5.18.1.aarch64.rpm libjpeg62-turbo-1.5.3-5.18.1.aarch64.rpm libjpeg8-8.1.2-5.18.1.aarch64.rpm libjpeg8-devel-8.1.2-5.18.1.aarch64.rpm libturbojpeg0-8.1.2-5.18.1.aarch64.rpm openSUSE-SLE-15.3-2021-2414 important SUSE Updates openSUSE-SLE 15.3 This update for caribou fixes the following issues: Security issue fixed: - CVE-2021-3567: Fixed a segfault when attempting to use shifted characters (bsc#1186617). caribou-0.4.21-12.5.1.src.rpm caribou-0.4.21-12.5.1.x86_64.rpm caribou-common-0.4.21-12.5.1.x86_64.rpm caribou-devel-0.4.21-12.5.1.x86_64.rpm caribou-gtk-module-common-0.4.21-12.5.1.x86_64.rpm caribou-gtk2-module-0.4.21-12.5.1.x86_64.rpm caribou-gtk3-module-0.4.21-12.5.1.x86_64.rpm caribou-lang-0.4.21-12.5.1.noarch.rpm libcaribou0-0.4.21-12.5.1.x86_64.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.x86_64.rpm caribou-0.4.21-12.5.1.s390x.rpm caribou-common-0.4.21-12.5.1.s390x.rpm caribou-devel-0.4.21-12.5.1.s390x.rpm caribou-gtk-module-common-0.4.21-12.5.1.s390x.rpm caribou-gtk2-module-0.4.21-12.5.1.s390x.rpm caribou-gtk3-module-0.4.21-12.5.1.s390x.rpm libcaribou0-0.4.21-12.5.1.s390x.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.s390x.rpm caribou-0.4.21-12.5.1.ppc64le.rpm caribou-common-0.4.21-12.5.1.ppc64le.rpm caribou-devel-0.4.21-12.5.1.ppc64le.rpm caribou-gtk-module-common-0.4.21-12.5.1.ppc64le.rpm caribou-gtk2-module-0.4.21-12.5.1.ppc64le.rpm caribou-gtk3-module-0.4.21-12.5.1.ppc64le.rpm libcaribou0-0.4.21-12.5.1.ppc64le.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.ppc64le.rpm caribou-0.4.21-12.5.1.aarch64.rpm caribou-common-0.4.21-12.5.1.aarch64.rpm caribou-devel-0.4.21-12.5.1.aarch64.rpm caribou-gtk-module-common-0.4.21-12.5.1.aarch64.rpm caribou-gtk2-module-0.4.21-12.5.1.aarch64.rpm caribou-gtk3-module-0.4.21-12.5.1.aarch64.rpm libcaribou0-0.4.21-12.5.1.aarch64.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1879 important SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: libzypp was updated to 17.26.0: - Work around download.o.o broken https redirects. - Allow trusted repos to add additional signing keys (bsc#1184326) Repositories signed with a trusted gpg key may import additional package signing keys. This is needed if different keys were used to sign the the packages shipped by the repository. - MediaCurl: Fix logging of redirects. - Use 15.3 resolver problem and solution texts on all distros. - $ZYPP_LOCK_TIMEOUT: Let negative values wait forever for the zypp lock (bsc#1184399) Helps boot time services like 'zypper purge-kernels' to wait for the zypp lock until other services using zypper have completed. - Fix purge-kernels is broken in Leap 15.3 (bsc#1185325) Leap 15.3 introduces a new kernel package called kernel-flavour-extra, which contain kmp's. Currently kmp's are detected by name ".*-kmp(-.*)?" but this does not work which those new packages. This patch fixes the problem by checking packages for kmod(*) and ksym(*) provides and only falls back to name checking if the package in question does not provide one of those. - Introduce zypp-runpurge, a tool to run purge-kernels on testcases. zypper was updated to 1.14.45: - Fix service detection with cgroupv2 (bsc#1184997) - Add hints to 'trust GPG key' prompt. - Add report when receiving new package signing keys from a trusted repo (bsc#1184326) - Added translation using Weblate (Kabyle) libsolv-0.7.19-6.1.src.rpm True libsolv-demo-0.7.19-6.1.x86_64.rpm True libsolv-devel-0.7.19-6.1.x86_64.rpm True libsolv-tools-0.7.19-6.1.x86_64.rpm True libzypp-17.26.0-9.1.src.rpm True libzypp-17.26.0-9.1.x86_64.rpm True libzypp-devel-17.26.0-9.1.x86_64.rpm True libzypp-devel-doc-17.26.0-9.1.x86_64.rpm True perl-solv-0.7.19-6.1.x86_64.rpm True python-solv-0.7.19-6.1.x86_64.rpm True python3-solv-0.7.19-6.1.x86_64.rpm True ruby-solv-0.7.19-6.1.x86_64.rpm True zypper-1.14.45-10.1.src.rpm True zypper-1.14.45-10.1.x86_64.rpm True zypper-aptitude-1.14.45-10.1.noarch.rpm True zypper-log-1.14.45-10.1.noarch.rpm True zypper-needs-restarting-1.14.45-10.1.noarch.rpm True libsolv-demo-0.7.19-6.1.s390x.rpm True libsolv-devel-0.7.19-6.1.s390x.rpm True libsolv-tools-0.7.19-6.1.s390x.rpm True libzypp-17.26.0-9.1.s390x.rpm True libzypp-devel-17.26.0-9.1.s390x.rpm True libzypp-devel-doc-17.26.0-9.1.s390x.rpm True perl-solv-0.7.19-6.1.s390x.rpm True python-solv-0.7.19-6.1.s390x.rpm True python3-solv-0.7.19-6.1.s390x.rpm True ruby-solv-0.7.19-6.1.s390x.rpm True zypper-1.14.45-10.1.s390x.rpm True libsolv-demo-0.7.19-6.1.ppc64le.rpm True libsolv-devel-0.7.19-6.1.ppc64le.rpm True libsolv-tools-0.7.19-6.1.ppc64le.rpm True libzypp-17.26.0-9.1.ppc64le.rpm True libzypp-devel-17.26.0-9.1.ppc64le.rpm True libzypp-devel-doc-17.26.0-9.1.ppc64le.rpm True perl-solv-0.7.19-6.1.ppc64le.rpm True python-solv-0.7.19-6.1.ppc64le.rpm True python3-solv-0.7.19-6.1.ppc64le.rpm True ruby-solv-0.7.19-6.1.ppc64le.rpm True zypper-1.14.45-10.1.ppc64le.rpm True libsolv-demo-0.7.19-6.1.aarch64.rpm True libsolv-devel-0.7.19-6.1.aarch64.rpm True libsolv-tools-0.7.19-6.1.aarch64.rpm True libzypp-17.26.0-9.1.aarch64.rpm True libzypp-devel-17.26.0-9.1.aarch64.rpm True libzypp-devel-doc-17.26.0-9.1.aarch64.rpm True perl-solv-0.7.19-6.1.aarch64.rpm True python-solv-0.7.19-6.1.aarch64.rpm True python3-solv-0.7.19-6.1.aarch64.rpm True ruby-solv-0.7.19-6.1.aarch64.rpm True zypper-1.14.45-10.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2090 low SUSE Updates openSUSE-SLE 15.3 This update for p7zip fixes the following issues: - Initial shipping of p7zip-full (bsc#1185910) p7zip-16.02-14.7.1.src.rpm p7zip-16.02-14.7.1.x86_64.rpm p7zip-doc-16.02-14.7.1.noarch.rpm p7zip-full-16.02-14.7.1.x86_64.rpm p7zip-16.02-14.7.1.s390x.rpm p7zip-full-16.02-14.7.1.s390x.rpm p7zip-16.02-14.7.1.ppc64le.rpm p7zip-full-16.02-14.7.1.ppc64le.rpm p7zip-16.02-14.7.1.aarch64.rpm p7zip-full-16.02-14.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2116 moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-configs contains the following fix: - Sync package in Public Cloud 15-SP3. google-guest-configs-20210317.00-1.13.1.noarch.rpm google-guest-configs-20210317.00-1.13.1.src.rpm openSUSE-SLE-15.3-2021-1995 important SUSE Updates openSUSE-SLE 15.3 This update for xstream fixes the following issues: Upgrade to 1.4.17 - CVE-2021-29505: Fixed potential code execution when unmarshalling with XStream instances using an uninitialized security framework (bsc#1186651) xstream-1.4.17-3.11.2.noarch.rpm xstream-1.4.17-3.11.2.src.rpm xstream-benchmark-1.4.17-3.11.2.noarch.rpm xstream-javadoc-1.4.17-3.11.2.noarch.rpm xstream-parent-1.4.17-3.11.2.noarch.rpm openSUSE-SLE-15.3-2021-1935 moderate SUSE Updates openSUSE-SLE 15.3 This update for gzip fixes the following issue: - gzip had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) gzip-1.10-7.1.src.rpm gzip-1.10-7.1.x86_64.rpm gzip-1.10-7.1.s390x.rpm gzip-1.10-7.1.ppc64le.rpm gzip-1.10-7.1.aarch64.rpm openSUSE-SLE-15.3-2021-1936 moderate SUSE Updates openSUSE-SLE 15.3 This update for numactl fixes the following issue: - numactl had a lower release number in 15 sp3 than in earlier service packs, which could lead to migration issues. (bsc#1186642) libnuma-devel-2.0.14-7.1.x86_64.rpm libnuma1-2.0.14-7.1.x86_64.rpm libnuma1-32bit-2.0.14-7.1.x86_64.rpm numactl-2.0.14-7.1.src.rpm numactl-2.0.14-7.1.x86_64.rpm libnuma-devel-2.0.14-7.1.s390x.rpm libnuma1-2.0.14-7.1.s390x.rpm numactl-2.0.14-7.1.s390x.rpm libnuma-devel-2.0.14-7.1.ppc64le.rpm libnuma1-2.0.14-7.1.ppc64le.rpm numactl-2.0.14-7.1.ppc64le.rpm libnuma-devel-2.0.14-7.1.aarch64.rpm libnuma1-2.0.14-7.1.aarch64.rpm numactl-2.0.14-7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2923 important SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: Update to Xen 4.13.3 general bug fix release (bsc#1027519). Security issues fixed: - CVE-2021-28693: xen/arm: Boot modules are not scrubbed (bsc#1186428) - CVE-2021-28692: xen: inappropriate x86 IOMMU timeout detection / handling (bsc#1186429) - CVE-2021-0089: xen: Speculative Code Store Bypass (bsc#1186433) - CVE-2021-28690: xen: x86: TSX Async Abort protections not restored after S3 (bsc#1186434) - CVE-2021-28694,CVE-2021-28695,CVE-2021-28696: IOMMU page mapping issues on x86 (XSA-378)(bsc#1189373). - CVE-2021-28697: grant table v2 status pages may remain accessible after de-allocation (XSA-379)(bsc#1189376). - CVE-2021-28698: long running loops in grant table handling (XSA-380)(bsc#1189378). - CVE-2021-28699: inadequate grant-v2 status frames array bounds check (XSA-382)(bsc#1189380). - CVE-2021-28700: No memory limit for dom0less domUs (XSA-383)(bsc#1189381). Other issues fixed: - Fixed "Panic on CPU 0: IO-APIC + timer doesn't work!" (bsc#1180491) - Fixed an issue with xencommons, where file format expecations by fillup did not allign (bsc#1185682) - Fixed shell macro expansion in the spec file, so that ExecStart= in xendomains-wait-disks.service is created correctly (bsc#1183877) - Upstream bug fixes (bsc#1027519) - Fixed Xen SLES11SP4 guest hangs on cluster (bsc#1188050). - xl monitoring process exits during xl save -p|-c keep the monitoring process running to cleanup the domU during shutdown (bsc#1176189). - Dom0 hangs when pinning CPUs for dom0 with HVM guest (bsc#1179246). - Some long deprecated commands were finally removed in qemu6. Adjust libxl to use supported commands (bsc#1183243). - Update logrotate.conf, move global options into per-file sections to prevent globbering of global state (bsc#1187406). - Prevent superpage allocation in the LAPIC and ACPI_INFO range (bsc#1189882). xen-4.14.2_04-3.9.1.src.rpm xen-4.14.2_04-3.9.1.x86_64.rpm xen-devel-4.14.2_04-3.9.1.x86_64.rpm xen-doc-html-4.14.2_04-3.9.1.x86_64.rpm xen-libs-32bit-4.14.2_04-3.9.1.x86_64.rpm xen-libs-4.14.2_04-3.9.1.x86_64.rpm xen-tools-4.14.2_04-3.9.1.x86_64.rpm xen-tools-domU-4.14.2_04-3.9.1.x86_64.rpm xen-tools-xendomains-wait-disk-4.14.2_04-3.9.1.noarch.rpm xen-4.14.2_04-3.9.1.aarch64.rpm xen-devel-4.14.2_04-3.9.1.aarch64.rpm xen-doc-html-4.14.2_04-3.9.1.aarch64.rpm xen-libs-4.14.2_04-3.9.1.aarch64.rpm xen-tools-4.14.2_04-3.9.1.aarch64.rpm xen-tools-domU-4.14.2_04-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2248 low SUSE Updates openSUSE-SLE 15.3 This update for sysstat fixes the following issues: - Dropped systemd runtime requirement (bsc#1186827) sysstat-12.0.2-3.30.1.src.rpm sysstat-12.0.2-3.30.1.x86_64.rpm sysstat-isag-12.0.2-3.30.1.x86_64.rpm sysstat-12.0.2-3.30.1.s390x.rpm sysstat-isag-12.0.2-3.30.1.s390x.rpm sysstat-12.0.2-3.30.1.ppc64le.rpm sysstat-isag-12.0.2-3.30.1.ppc64le.rpm sysstat-12.0.2-3.30.1.aarch64.rpm sysstat-isag-12.0.2-3.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-1937 moderate SUSE Updates openSUSE-SLE 15.3 This update for nghttp2 fixes the following issue: - The (lib)nghttp2 packages had a lower release number in SUSE Linux Enterprise 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) libnghttp2-14-1.40.0-6.1.x86_64.rpm libnghttp2-14-32bit-1.40.0-6.1.x86_64.rpm libnghttp2-devel-1.40.0-6.1.x86_64.rpm libnghttp2_asio-devel-1.40.0-6.1.x86_64.rpm libnghttp2_asio1-1.40.0-6.1.x86_64.rpm libnghttp2_asio1-32bit-1.40.0-6.1.x86_64.rpm nghttp2-1.40.0-6.1.src.rpm nghttp2-1.40.0-6.1.x86_64.rpm libnghttp2-14-1.40.0-6.1.s390x.rpm libnghttp2-devel-1.40.0-6.1.s390x.rpm libnghttp2_asio-devel-1.40.0-6.1.s390x.rpm libnghttp2_asio1-1.40.0-6.1.s390x.rpm nghttp2-1.40.0-6.1.s390x.rpm libnghttp2-14-1.40.0-6.1.ppc64le.rpm libnghttp2-devel-1.40.0-6.1.ppc64le.rpm libnghttp2_asio-devel-1.40.0-6.1.ppc64le.rpm libnghttp2_asio1-1.40.0-6.1.ppc64le.rpm nghttp2-1.40.0-6.1.ppc64le.rpm libnghttp2-14-1.40.0-6.1.aarch64.rpm libnghttp2-devel-1.40.0-6.1.aarch64.rpm libnghttp2_asio-devel-1.40.0-6.1.aarch64.rpm libnghttp2_asio1-1.40.0-6.1.aarch64.rpm nghttp2-1.40.0-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2307 moderate SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Fixed an issue with an incorrect output from the 'dasdfmt' command when *not* using "YaST mode". (bsc#1182816, bsc#1182820) - If more DASD volumes are to be formatted than are allowed by the "maximum number to do in parallel" parameter, dasdfmt waits until one of the child processes ends before starting another. For YaST to be able to figure out how many cylinders a particular DASD volume has, that information has to be output for all of the volumes, before any of the child processes are spawned. (bsc#1187012) libekmfweb1-2.15.1-8.5.1.s390x.rpm libekmfweb1-devel-2.15.1-8.5.1.s390x.rpm osasnmpd-2.15.1-8.5.1.s390x.rpm s390-tools-2.15.1-8.5.1.s390x.rpm s390-tools-2.15.1-8.5.1.src.rpm s390-tools-hmcdrvfs-2.15.1-8.5.1.s390x.rpm s390-tools-zdsfs-2.15.1-8.5.1.s390x.rpm openSUSE-SLE-15.3-2021-1941 moderate SUSE Updates openSUSE-SLE 15.3 This update for sysconfig fixes the following issue: - sysconfig had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) sysconfig-0.85.6-6.1.src.rpm sysconfig-0.85.6-6.1.x86_64.rpm sysconfig-netconfig-0.85.6-6.1.x86_64.rpm sysconfig-0.85.6-6.1.s390x.rpm sysconfig-netconfig-0.85.6-6.1.s390x.rpm sysconfig-0.85.6-6.1.ppc64le.rpm sysconfig-netconfig-0.85.6-6.1.ppc64le.rpm sysconfig-0.85.6-6.1.aarch64.rpm sysconfig-netconfig-0.85.6-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1946 moderate SUSE Updates openSUSE-SLE 15.3 This update for SUSEConnect fixes the following issue: - SUSEConnect had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) SUSEConnect-0.3.29-10.1.src.rpm SUSEConnect-0.3.29-10.1.x86_64.rpm SUSEConnect-0.3.29-10.1.s390x.rpm SUSEConnect-0.3.29-10.1.ppc64le.rpm SUSEConnect-0.3.29-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-2197 moderate SUSE Updates openSUSE-SLE 15.3 Deliver package 'anthy' to SLE 15 SP3 channels so the ibus-anthy can be delivered for SP3 too. (jsc#ECO-3104) anthy-9100h-8.3.1.src.rpm anthy-9100h-8.3.1.x86_64.rpm anthy-devel-9100h-8.3.1.x86_64.rpm libanthy0-32bit-9100h-8.3.1.x86_64.rpm libanthy0-9100h-8.3.1.x86_64.rpm anthy-9100h-8.3.1.s390x.rpm anthy-devel-9100h-8.3.1.s390x.rpm libanthy0-9100h-8.3.1.s390x.rpm anthy-9100h-8.3.1.ppc64le.rpm anthy-devel-9100h-8.3.1.ppc64le.rpm libanthy0-9100h-8.3.1.ppc64le.rpm anthy-9100h-8.3.1.aarch64.rpm anthy-devel-9100h-8.3.1.aarch64.rpm libanthy0-9100h-8.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2555 moderate SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: Update from version 2.26.2 to version 2.31.1 (jsc#SLE-18152) Security fixes: - CVE-2021-21300: On case-insensitive file systems with support for symbolic links, if Git is configured globally to apply delay-capable clean/smudge filters (such as Git LFS), Git could run remote code during a clone. (bsc#1183026) Non security changes: - Add `sysusers` file to create `git-daemon` user. - Remove `perl-base` and `openssh-server` dependency on `git-core`and provide a `perl-Git` package. (jsc#SLE-17838) - `fsmonitor` bug fixes - Fix `git bisect` to take an annotated tag as a good/bad endpoint - Fix a corner case in `git mv` on case insensitive systems - Require only `openssh-clients` where possible (like Tumbleweed or SUSE Linux Enterprise >= 15 SP3). (bsc#1183580) - Drop `rsync` requirement, not necessary anymore. - Use of `pack-redundant` command is discouraged and will trigger a warning. The replacement is `repack -d`. - The `--format=%(trailers)` mechanism gets enhanced to make it easier to design output for machine consumption. - No longer give message to choose between rebase or merge upon pull if the history `fast-forwards`. - The configuration variable `core.abbrev` can be set to `no` to force no abbreviation regardless of the hash algorithm - `git rev-parse` can be explicitly told to give output as absolute or relative path with the `--path-format=(absolute|relative)` option. - Bash completion update to make it easier for end-users to add completion for their custom `git` subcommands. - `git maintenance` learned to drive scheduled maintenance on platforms whose native scheduling methods are not 'cron'. - After expiring a reflog and making a single commit, the reflog for the branch would record a single entry that knows both `@{0}` and `@{1}`, but we failed to answer "what commit were we on?", i.e. `@{1}` - `git bundle` learns `--stdin` option to read its refs from the standard input. Also, it now does not lose refs when they point at the same object. - `git log` learned a new `--diff-merges=<how>` option. - `git ls-files` can and does show multiple entries when the index is unmerged, which is a source for confusion unless `-s/-u` option is in use. A new option `--deduplicate` has been introduced. - `git worktree list` now annotates worktrees as prunable, shows locked and prunable attributes in `--porcelain mode`, and gained a `--verbose` option. - `git clone` tries to locally check out the branch pointed at by HEAD of the remote repository after it is done, but the protocol did not convey the information necessary to do so when copying an empty repository. The protocol v2 learned how to do so. - There are other ways than `..` for a single token to denote a `commit range", namely `<rev>^!` and `<rev>^-<n>`, but `git range-diff` did not understand them. - The `git range-diff` command learned `--(left|right)-only` option to show only one side of the compared range. - `git mergetool` feeds three versions (base, local and remote) of a conflicted path unmodified. The command learned to optionally prepare these files with unconflicted parts already resolved. - The `.mailmap` is documented to be read only from the root level of a working tree, but a stray file in a bare repository also was read by accident, which has been corrected. - `git maintenance` tool learned a new `pack-refs` maintenance task. - Improved error message given when a configuration variable that is expected to have a boolean value. - Signed commits and tags now allow verification of objects, whose two object names (one in SHA-1, the other in SHA-256) are both signed. - `git rev-list` command learned `--disk-usage` option. - `git diff`, `git log` `--{skip,rotate}-to=<path>` allows the user to discard diff output for early paths or move them to the end of the output. - `git difftool` learned `--skip-to=<path>` option to restart an interrupted session from an arbitrary path. - `git grep` has been tweaked to be limited to the sparse checkout paths. - `git rebase --[no-]fork-point` gained a configuration variable `rebase.forkPoint` so that users do not have to keep specifying a non-default setting. - `git stash` did not work well in a sparsely checked out working tree. - Newline characters in the host and path part of `git://` URL are now forbidden. - `Userdiff` updates for PHP, Rust, CSS - Avoid administrator error leading to data loss with `git push --force-with-lease[=<ref>]` by introducing `--force-if-includes` - only pull `asciidoctor` for the default ruby version - The `--committer-date-is-author-date` option of `rebase` and `am` subcommands lost the e-mail address by mistake in 2.29 - The transport protocol v2 has become the default again - `git worktree` gained a `repair` subcommand, `git init --separate-git-dir` no longer corrupts administrative data related to linked worktrees - `git maintenance` introduced for repository maintenance tasks - `fetch.writeCommitGraph` is deemed to be still a bit too risky and is no longer part of the `feature.experimental` set. - The commands in the `diff` family honors the `diff.relative` configuration variable. - `git diff-files` has been taught to say paths that are marked as `intent-to-add` are new files, not modified from an empty blob. - `git gui` now allows opening work trees from the start-up dialog. - `git bugreport` reports what shell is in use. - Some repositories have commits that record wrong committer timezone; `git fast-import` has an option to pass these timestamps intact to allow recreating existing repositories as-is. - `git describe` will always use the `long` version when giving its output based misplaced tags - `git pull` issues a warning message until the `pull.rebase` configuration variable is explicitly given git-2.31.1-10.3.1.src.rpm git-2.31.1-10.3.1.x86_64.rpm git-arch-2.31.1-10.3.1.x86_64.rpm git-core-2.31.1-10.3.1.x86_64.rpm git-credential-gnome-keyring-2.31.1-10.3.1.x86_64.rpm git-credential-libsecret-2.31.1-10.3.1.x86_64.rpm git-cvs-2.31.1-10.3.1.x86_64.rpm git-daemon-2.31.1-10.3.1.x86_64.rpm git-doc-2.31.1-10.3.1.noarch.rpm git-email-2.31.1-10.3.1.x86_64.rpm git-gui-2.31.1-10.3.1.x86_64.rpm git-p4-2.31.1-10.3.1.x86_64.rpm git-svn-2.31.1-10.3.1.x86_64.rpm git-web-2.31.1-10.3.1.x86_64.rpm gitk-2.31.1-10.3.1.x86_64.rpm perl-Git-2.31.1-10.3.1.x86_64.rpm git-2.31.1-10.3.1.s390x.rpm git-arch-2.31.1-10.3.1.s390x.rpm git-core-2.31.1-10.3.1.s390x.rpm git-credential-gnome-keyring-2.31.1-10.3.1.s390x.rpm git-credential-libsecret-2.31.1-10.3.1.s390x.rpm git-cvs-2.31.1-10.3.1.s390x.rpm git-daemon-2.31.1-10.3.1.s390x.rpm git-email-2.31.1-10.3.1.s390x.rpm git-gui-2.31.1-10.3.1.s390x.rpm git-p4-2.31.1-10.3.1.s390x.rpm git-svn-2.31.1-10.3.1.s390x.rpm git-web-2.31.1-10.3.1.s390x.rpm gitk-2.31.1-10.3.1.s390x.rpm perl-Git-2.31.1-10.3.1.s390x.rpm git-2.31.1-10.3.1.ppc64le.rpm git-arch-2.31.1-10.3.1.ppc64le.rpm git-core-2.31.1-10.3.1.ppc64le.rpm git-credential-gnome-keyring-2.31.1-10.3.1.ppc64le.rpm git-credential-libsecret-2.31.1-10.3.1.ppc64le.rpm git-cvs-2.31.1-10.3.1.ppc64le.rpm git-daemon-2.31.1-10.3.1.ppc64le.rpm git-email-2.31.1-10.3.1.ppc64le.rpm git-gui-2.31.1-10.3.1.ppc64le.rpm git-p4-2.31.1-10.3.1.ppc64le.rpm git-svn-2.31.1-10.3.1.ppc64le.rpm git-web-2.31.1-10.3.1.ppc64le.rpm gitk-2.31.1-10.3.1.ppc64le.rpm perl-Git-2.31.1-10.3.1.ppc64le.rpm git-2.31.1-10.3.1.aarch64.rpm git-arch-2.31.1-10.3.1.aarch64.rpm git-core-2.31.1-10.3.1.aarch64.rpm git-credential-gnome-keyring-2.31.1-10.3.1.aarch64.rpm git-credential-libsecret-2.31.1-10.3.1.aarch64.rpm git-cvs-2.31.1-10.3.1.aarch64.rpm git-daemon-2.31.1-10.3.1.aarch64.rpm git-email-2.31.1-10.3.1.aarch64.rpm git-gui-2.31.1-10.3.1.aarch64.rpm git-p4-2.31.1-10.3.1.aarch64.rpm git-svn-2.31.1-10.3.1.aarch64.rpm git-web-2.31.1-10.3.1.aarch64.rpm gitk-2.31.1-10.3.1.aarch64.rpm perl-Git-2.31.1-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1955 moderate SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issue: - webkit2gtk3 had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) libjavascriptcoregtk-4_0-18-2.32.0-6.7.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.32.0-6.7.x86_64.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.32.0-6.7.x86_64.rpm libwebkit2gtk3-lang-2.32.0-6.7.noarch.rpm libwoff2common1_0_2-1.0.2-3.2.1.x86_64.rpm libwoff2common1_0_2-32bit-1.0.2-3.2.1.x86_64.rpm libwoff2dec1_0_2-1.0.2-3.2.1.x86_64.rpm libwoff2dec1_0_2-32bit-1.0.2-3.2.1.x86_64.rpm libwoff2enc1_0_2-1.0.2-3.2.1.x86_64.rpm libwoff2enc1_0_2-32bit-1.0.2-3.2.1.x86_64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.x86_64.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.x86_64.rpm webkit-jsc-4-2.32.0-6.7.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.x86_64.rpm webkit2gtk3-2.32.0-6.7.src.rpm webkit2gtk3-devel-2.32.0-6.7.x86_64.rpm webkit2gtk3-minibrowser-2.32.0-6.7.x86_64.rpm woff2-1.0.2-3.2.1.src.rpm woff2-devel-1.0.2-3.2.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.32.0-6.7.s390x.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.s390x.rpm libwoff2common1_0_2-1.0.2-3.2.1.s390x.rpm libwoff2dec1_0_2-1.0.2-3.2.1.s390x.rpm libwoff2enc1_0_2-1.0.2-3.2.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.s390x.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.s390x.rpm webkit-jsc-4-2.32.0-6.7.s390x.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.s390x.rpm webkit2gtk3-devel-2.32.0-6.7.s390x.rpm webkit2gtk3-minibrowser-2.32.0-6.7.s390x.rpm woff2-devel-1.0.2-3.2.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.32.0-6.7.ppc64le.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.ppc64le.rpm libwoff2common1_0_2-1.0.2-3.2.1.ppc64le.rpm libwoff2dec1_0_2-1.0.2-3.2.1.ppc64le.rpm libwoff2enc1_0_2-1.0.2-3.2.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.ppc64le.rpm webkit-jsc-4-2.32.0-6.7.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.ppc64le.rpm webkit2gtk3-devel-2.32.0-6.7.ppc64le.rpm webkit2gtk3-minibrowser-2.32.0-6.7.ppc64le.rpm woff2-devel-1.0.2-3.2.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.32.0-6.7.aarch64.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.aarch64.rpm libwoff2common1_0_2-1.0.2-3.2.1.aarch64.rpm libwoff2dec1_0_2-1.0.2-3.2.1.aarch64.rpm libwoff2enc1_0_2-1.0.2-3.2.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.aarch64.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.aarch64.rpm webkit-jsc-4-2.32.0-6.7.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.aarch64.rpm webkit2gtk3-devel-2.32.0-6.7.aarch64.rpm webkit2gtk3-minibrowser-2.32.0-6.7.aarch64.rpm woff2-devel-1.0.2-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2091 moderate SUSE Updates openSUSE-SLE 15.3 This update for wget fixes the following issue: - When running recursively, wget will verify the length of the whole URL when saving the files. This will make it overwrite files with truncated names, throwing the following message: "The name is too long,... trying to shorten". (bsc#1181173) wget-1.20.3-3.12.1.src.rpm wget-1.20.3-3.12.1.x86_64.rpm wget-lang-1.20.3-3.12.1.noarch.rpm wget-1.20.3-3.12.1.s390x.rpm wget-1.20.3-3.12.1.ppc64le.rpm wget-1.20.3-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1933 important SUSE Updates openSUSE-SLE 15.3 This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20210608 release. - CVE-2020-24513: A domain bypass transient execution vulnerability was discovered on some Intel Atom processors that use a micro-architectural incident channel. (INTEL-SA-00465 bsc#1179833) See also: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00465.html - CVE-2020-24511: The IBRS feature to mitigate Spectre variant 2 transient execution side channel vulnerabilities may not fully prevent non-root (guest) branches from controlling the branch predictions of the root (host) (INTEL-SA-00464 bsc#1179836) See also https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html) - CVE-2020-24512: Fixed trivial data value cache-lines such as all-zero value cache-lines may lead to changes in cache-allocation or write-back behavior for such cache-lines (bsc#1179837 INTEL-SA-00464) See also https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html) - CVE-2020-24489: Fixed Intel VT-d device pass through potential local privilege escalation (INTEL-SA-00442 bsc#1179839) See also https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00442.html Other fixes: - Update for functional issues. Refer to [Third Generation Intel Xeon Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/637780)for details. - Update for functional issues. Refer to [Second Generation Intel Xeon Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/338848) for details. - Update for functional issues. Refer to [Intel Xeon Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/613537) for details. - Update for functional issues. Refer to [Intel Xeon Processor D-1500, D-1500 NS and D-1600 NS Spec Update](https://www.intel.com/content/www/us/en/products/docs/processors/xeon/xeon-d-1500-specification-update.html) for details. - Update for functional issues. Refer to [Intel Xeon E7-8800 and E7-4800 v3 Processor Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e7-v3-spec-update.html) for details. - Update for functional issues. Refer to [Intel Xeon Processor E5 v3 Product Family Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e5-v3-spec-update.html?wapkw=processor+spec+update+e5) for details. - Update for functional issues. Refer to [10th Gen Intel Core Processor Families Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/core/10th-gen-core-families-specification-update.html) for details. - Update for functional issues. Refer to [8th and 9th Gen Intel Core Processor Family Spec Update](https://www.intel.com/content/www/us/en/products/docs/processors/core/8th-gen-core-spec-update.html) for details. - Update for functional issues. Refer to [7th Gen and 8th Gen (U Quad-Core) Intel Processor Families Specification Update](https://www.intel.com/content/www/us/en/processors/core/7th-gen-core-family-spec-update.html) for details. - Update for functional issues. Refer to [6th Gen Intel Processor Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/332689) for details. - Update for functional issues. Refer to [Intel Xeon E3-1200 v6 Processor Family Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e3-1200v6-spec-update.html) for details. - Update for functional issues. Refer to [Intel Xeon E-2100 and E-2200 Processor Family Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/xeon/xeon-e-2100-specification-update.html) for details. - New platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | CLX-SP | A0 | 06-55-05/b7 | | 03000010 | Xeon Scalable Gen2 | ICX-SP | C0 | 06-6a-05/87 | | 0c0002f0 | Xeon Scalable Gen3 | ICX-SP | D0 | 06-6a-06/87 | | 0d0002a0 | Xeon Scalable Gen3 | SNR | B0 | 06-86-04/01 | | 0b00000f | Atom P59xxB | SNR | B1 | 06-86-05/01 | | 0b00000f | Atom P59xxB | TGL | B1 | 06-8c-01/80 | | 00000088 | Core Gen11 Mobile | TGL-R | C0 | 06-8c-02/c2 | | 00000016 | Core Gen11 Mobile | TGL-H | R0 | 06-8d-01/c2 | | 0000002c | Core Gen11 Mobile | EHL | B1 | 06-96-01/01 | | 00000011 | Pentium J6426/N6415, Celeron J6412/J6413/N6210/N6211, Atom x6000E | JSL | A0/A1 | 06-9c-00/01 | | 0000001d | Pentium N6000/N6005, Celeron N4500/N4505/N5100/N5105 | RKL-S | B0 | 06-a7-01/02 | | 00000040 | Core Gen11 - Updated platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | HSX-E/EP | Cx/M1 | 06-3f-02/6f | 00000044 | 00000046 | Core Gen4 X series; Xeon E5 v3 | HSX-EX | E0 | 06-3f-04/80 | 00000016 | 00000019 | Xeon E7 v3 | SKL-U/Y | D0 | 06-4e-03/c0 | 000000e2 | 000000ea | Core Gen6 Mobile | SKL-U23e | K1 | 06-4e-03/c0 | 000000e2 | 000000ea | Core Gen6 Mobile | BDX-ML | B0/M0/R0 | 06-4f-01/ef | 0b000038 | 0b00003e | Xeon E5/E7 v4; Core i7-69xx/68xx | SKX-SP | B1 | 06-55-03/97 | 01000159 | 0100015b | Xeon Scalable | SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006a0a | 02006b06 | Xeon Scalable | SKX-D | M1 | 06-55-04/b7 | 02006a0a | 02006b06 | Xeon D-21xx | CLX-SP | B0 | 06-55-06/bf | 04003006 | 04003102 | Xeon Scalable Gen2 | CLX-SP | B1 | 06-55-07/bf | 05003006 | 05003102 | Xeon Scalable Gen2 | CPX-SP | A1 | 06-55-0b/bf | 0700001e | 07002302 | Xeon Scalable Gen3 | BDX-DE | V2/V3 | 06-56-03/10 | 07000019 | 0700001b | Xeon D-1518/19/21/27/28/31/33/37/41/48, Pentium D1507/08/09/17/19 | BDX-DE | Y0 | 06-56-04/10 | 0f000017 | 0f000019 | Xeon D-1557/59/67/71/77/81/87 | BDX-NS | A0 | 06-56-05/10 | 0e00000f | 0e000012 | Xeon D-1513N/23/33/43/53 | APL | D0 | 06-5c-09/03 | 00000040 | 00000044 | Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx | APL | E0 | 06-5c-0a/03 | 0000001e | 00000020 | Atom x5-E39xx | SKL-H/S | R0/N0 | 06-5e-03/36 | 000000e2 | 000000ea | Core Gen6; Xeon E3 v5 | DNV | B0 | 06-5f-01/01 | 0000002e | 00000034 | Atom C Series | GLK | B0 | 06-7a-01/01 | 00000034 | 00000036 | Pentium Silver N/J5xxx, Celeron N/J4xxx | GKL-R | R0 | 06-7a-08/01 | 00000018 | 0000001a | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 | ICL-U/Y | D1 | 06-7e-05/80 | 000000a0 | 000000a6 | Core Gen10 Mobile | LKF | B2/B3 | 06-8a-01/10 | 00000028 | 0000002a | Core w/Hybrid Technology | AML-Y22 | H0 | 06-8e-09/10 | 000000de | 000000ea | Core Gen8 Mobile | KBL-U/Y | H0 | 06-8e-09/c0 | 000000de | 000000ea | Core Gen7 Mobile | CFL-U43e | D0 | 06-8e-0a/c0 | 000000e0 | 000000ea | Core Gen8 Mobile | WHL-U | W0 | 06-8e-0b/d0 | 000000de | 000000ea | Core Gen8 Mobile | AML-Y42 | V0 | 06-8e-0c/94 | 000000de | 000000ea | Core Gen10 Mobile | CML-Y42 | V0 | 06-8e-0c/94 | 000000de | 000000ea | Core Gen10 Mobile | WHL-U | V0 | 06-8e-0c/94 | 000000de | 000000ea | Core Gen8 Mobile | KBL-G/H/S/E3 | B0 | 06-9e-09/2a | 000000de | 000000ea | Core Gen7; Xeon E3 v6 | CFL-H/S/E3 | U0 | 06-9e-0a/22 | 000000de | 000000ea | Core Gen8 Desktop, Mobile, Xeon E | CFL-S | B0 | 06-9e-0b/02 | 000000de | 000000ea | Core Gen8 | CFL-H/S | P0 | 06-9e-0c/22 | 000000de | 000000ea | Core Gen9 | CFL-H | R0 | 06-9e-0d/22 | 000000de | 000000ea | Core Gen9 Mobile | CML-H | R1 | 06-a5-02/20 | 000000e0 | 000000ea | Core Gen10 Mobile | CML-S62 | G1 | 06-a5-03/22 | 000000e0 | 000000ea | Core Gen10 | CML-S102 | Q0 | 06-a5-05/22 | 000000e0 | 000000ec | Core Gen10 | CML-U62 | A0 | 06-a6-00/80 | 000000e0 | 000000e8 | Core Gen10 Mobile | CML-U62 V2 | K0 | 06-a6-01/80 | 000000e0 | 000000ea | Core Gen10 Mobile ucode-intel-20210525-7.1.src.rpm True ucode-intel-20210525-7.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2000 moderate SUSE Updates openSUSE-SLE 15.3 This update for tomcat fixes the following issue: - tomcat had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) tomcat-9.0.36-8.1.noarch.rpm tomcat-9.0.36-8.1.src.rpm tomcat-admin-webapps-9.0.36-8.1.noarch.rpm tomcat-docs-webapp-9.0.36-8.1.noarch.rpm tomcat-el-3_0-api-9.0.36-8.1.noarch.rpm tomcat-embed-9.0.36-8.1.noarch.rpm tomcat-javadoc-9.0.36-8.1.noarch.rpm tomcat-jsp-2_3-api-9.0.36-8.1.noarch.rpm tomcat-jsvc-9.0.36-8.1.noarch.rpm tomcat-lib-9.0.36-8.1.noarch.rpm tomcat-servlet-4_0-api-9.0.36-8.1.noarch.rpm tomcat-webapps-9.0.36-8.1.noarch.rpm openSUSE-SLE-15.3-2021-1975 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in kernel memory (bsc#1186484). - CVE-2021-33034: Fixed a use-after-free when destroying an hci_chan. This could lead to writing an arbitrary values. (bsc#1186111) - CVE-2020-26139: Fixed a denial-of-service when an Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. (bnc#1186062) - CVE-2021-23134: A Use After Free vulnerability in nfc sockets allowed local attackers to elevate their privileges. (bnc#1186060) - CVE-2021-3491: Fixed a potential heap overflow in mem_rw(). This vulnerability is related to the PROVIDE_BUFFERS operation, which allowed the MAX_RW_COUNT limit to be bypassed (bsc#1185642). - CVE-2021-32399: Fixed a race condition when removing the HCI controller (bnc#1184611). - CVE-2020-24586: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances this can be abused to inject arbitrary network packets and/or exfiltrate user data (bnc#1185859). - CVE-2020-24587: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed (bnc#1185859 bnc#1185862). - CVE-2020-24588: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets. (bnc#1185861) - CVE-2020-26147: The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments, even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used (bnc#1185859). - CVE-2020-26145: An issue was discovered with Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets independent of the network configuration. (bnc#1185860) - CVE-2020-26141: An issue was discovered in the ALFA driver for AWUS036H, where the Message Integrity Check (authenticity) of fragmented TKIP frames was not verified. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol. (bnc#1185987) - CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assignment of a new table value (bnc#1184208). - CVE-2021-29155: Fixed an issue that was discovered in kernel/bpf/verifier.c that performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory. Specifically, for sequences of pointer arithmetic operations, the pointer modification performed by the first operation was not correctly accounted for when restricting subsequent operations (bnc#1184942). - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading to out of bounds read (bsc#1184170). - CVE-2021-3428: Fixed an integer overflow in ext4_es_cache_extent (bsc#1173485). - CVE-2021-29647: Fixed an issue in qrtr_recvmsg which could have allowed attackers to obtain sensitive information from kernel memory because of a partially uninitialized data structure (bsc#1184192 ). - CVE-2021-29265: Fixed an issue in usbip_sockfd_store which could have allowed attackers to cause a denial of service due to race conditions during an update of the local and shared status (bsc#1184167). - CVE-2021-29264: Fixed an issue in the Freescale Gianfar Ethernet driver which could have allowed attackers to cause a system crash due to a calculation of negative fragment size (bsc#1184168). - CVE-2021-28972: Fixed a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly (bsc#1184198). - CVE-2021-28971: Fixed an issue in intel_pmu_drain_pebs_nhm which could have caused a system crash because the PEBS status in a PEBS record was mishandled (bsc#1184196 ). - CVE-2021-28964: Fixed a race condition in get_old_root which could have allowed attackers to cause a denial of service (bsc#1184193). - CVE-2021-28688: Fixed an issue introduced by XSA-365 (bsc#1183646). - CVE-2021-28660: Fixed an out of bounds write in rtw_wx_set_scan (bsc#1183593 ). - CVE-2021-28375: Fixed an issue in fastrpc_internal_invoke which did not prevent user applications from sending kernel RPC messages (bsc#1183596). - CVE-2021-28038: Fixed an issue with the netback driver which was lacking necessary treatment of errors such as failed memory allocations (bsc#1183022). - CVE-2021-27365: Fixed an issue where an unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up to the maximum length of a Netlink message (bsc#1182715). - CVE-2021-27364: Fixed an issue where an attacker could craft Netlink messages (bsc#1182717). - CVE-2021-27363: Fixed a kernel pointer leak which could have been used to determine the address of the iscsi_transport structure (bsc#1182716). - CVE-2020-35519: Fixed an out-of-bounds memory access was found in x25_bind (bsc#1183696). - CVE-2020-27815: Fixed an issue in JFS filesystem where could have allowed an attacker to execute code (bsc#1179454). - CVE-2020-27171: Fixed an off-by-one error affecting out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183775). - CVE-2020-27170: Fixed potential side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183686). - CVE-2019-19769: Fixed a use-after-free in the perf_trace_lock_acquire function (bsc#1159280 ). - CVE-2019-18814: Fixed a use-after-free when aa_label_parse() fails in aa_audit_rule_init() (bsc#1156256). - CVE-2021-3483: Fixed a use-after-free in nosy.c (bsc#1184393). - CVE-2021-30002: Fixed a memory leak for large arguments in video_usercopy (bsc#1184120). - CVE-2021-29154: Fixed incorrect computation of branch displacements, allowing arbitrary code execution (bsc#1184391). - CVE-2021-28950: Fixed an issue in fs/fuse/fuse_i.h due to a retry loop continually was finding the same bad inode (bsc#1184194). - CVE-2021-28952: Fixed a buffer overflow in the soundwire device driver, triggered when an unexpected port ID number is encountered. (bnc#1184197). - CVE-2021-20268: Fixed an out-of-bounds access flaw in the implementation of the eBPF code verifier. This flaw allowed a local user to crash the system or possibly escalate their privileges. (bnc#1183077) - CVE-2020-27673: Fixed a vulnerability with xen, where guest OS users could cause a denial of service (host OS hang) via a high rate of events to dom0 (bnc#1177411). - CVE-2020-36312: Fixed a memory leak upon a kmalloc failure (bsc#1184509 ). - CVE-2020-36311: Fixed a denial of service (soft lockup) by triggering destruction of a large SEV VM (bsc#1184511). - CVE-2020-36310: Fixed infinite loop for certain nested page faults (bsc#1184512). - CVE-2021-3489: Fixed an issue where the eBPF RINGBUF bpf_ringbuf_reserve did not check that the allocated size was smaller than the ringbuf size (bnc#1185640). - CVE-2021-3490: Fixed an issue where the eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) did not update the 32-bit bounds (bnc#1185641 bnc#1185796 ). - CVE-2020-36322: Fixed an issue was discovered in FUSE filesystem implementation which could have caused a system crash (bsc#1184211). - CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673: Fixed multiple bugs in NFC subsytem (bsc#1178181). The following non-security bugs were fixed: - ACPI / hotplug / PCI: Fix reference count leak in enable_slot() (git-fixes). - ACPI / idle: override c-state latency when not in conformance with s0ix (bsc#1185840). - ACPI: CPPC: Replace cppc_attr with kobj_attribute (git-fixes). - ACPI: GTDT: Do not corrupt interrupt mappings on watchdow probe failure (git-fixes). - ACPI: PM: Add ACPI ID of Alder Lake Fan (git-fixes). - ACPI: PM: s2idle: Add AMD support to handle _DSM (bsc#1185840). - ACPI: PM: s2idle: Add missing LPS0 functions for AMD (bsc#1185840). - ACPI: PM: s2idle: Drop unused local variables and related code (bsc#1185840). - ACPI: PM: s2idle: Move x86-specific code to the x86 directory (bsc#1185840). - ACPI: custom_method: fix a possible memory leak (git-fixes). - ACPI: custom_method: fix potential use-after-free issue (git-fixes). - ACPI: processor: Fix CPU0 wakeup in acpi_idle_play_dead() (git-fixes). - ACPI: processor: Fix build when CONFIG_ACPI_PROCESSOR=m (git-fixes). - ACPI: scan: Rearrange memory allocation in acpi_device_add() (git-fixes). - ACPI: video: Add DMI quirk for GIGABYTE GB-BXBT-2807 (git-fixes). - ACPI: video: Add missing callback back for Sony VPCEH3U1E (git-fixes). - ACPICA: Always create namespace nodes using acpi_ns_create_node() (git-fixes). - ACPICA: Enable sleep button on ACPI legacy wake (bsc#1181383). - ACPICA: Fix race in generic_serial_bus (I2C) and GPIO op_region parameter handling (git-fixes). - ALSA: Convert strlcpy to strscpy when return value is unused (git-fixes). - ALSA: aloop: Fix initialization of controls (git-fixes). - ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro (git-fixes). - ALSA: bebob: enable to deliver MIDI messages for multiple ports (git-fixes). - ALSA: core: remove redundant spin_lock pair in snd_card_disconnect (git-fixes). - ALSA: dice: fix null pointer dereference when node is disconnected (git-fixes). - ALSA: dice: fix stream format at middle sampling rate for Alesis iO 26 (git-fixes). - ALSA: dice: fix stream format for TC Electronic Konnekt Live at high sampling transfer frequency (git-fixes). - ALSA: emu8000: Fix a use after free in snd_emu8000_create_mixer (git-fixes). - ALSA: firewire-lib: fix amdtp_packet tracepoints event for packet_index field (git-fixes). - ALSA: firewire-lib: fix calculation for size of IR context payload (git-fixes). - ALSA: firewire-lib: fix check for the size of isochronous packet payload (git-fixes). - ALSA: hda/ca0132: Add Sound BlasterX AE-5 Plus support (git-fixes). - ALSA: hda/cirrus: Add Headphone and Headset MIC Volume Control (git-fixes). - ALSA: hda/cirrus: Add error handling into CS8409 I2C functions (git-fixes). - ALSA: hda/cirrus: Add jack detect interrupt support from CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Add support for CS8409 HDA bridge and CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Cleanup patch_cirrus.c code (git-fixes). - ALSA: hda/cirrus: Fix CS42L42 Headset Mic volume control name (git-fixes). - ALSA: hda/cirrus: Make CS8409 driver more generic by using fixups (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume for Bullseye to -26 dB (git-fixes). - ALSA: hda/cirrus: Use CS8409 filter to fix abnormal sounds on Bullseye (git-fixes). - ALSA: hda/conexant: Add quirk for mute LED control on HP ZBook G5 (git-fixes). - ALSA: hda/conexant: Apply quirk for another HP ZBook G5 model (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/hdmi: Cancel pending works before suspend (bsc#1182377). - ALSA: hda/hdmi: Cancel pending works before suspend (git-fixes). - ALSA: hda/hdmi: fix race in handling acomp ELD notification at resume (git-fixes). - ALSA: hda/realtek - Headset Mic issue on HP platform (git-fixes). - ALSA: hda/realtek: ALC285 Thinkpad jack pin quirk is unreachable (git-fixes). - ALSA: hda/realtek: Add fixup for HP OMEN laptop (git-fixes). - ALSA: hda/realtek: Add fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: Add quirk for Intel Clevo PCx0Dx (git-fixes). - ALSA: hda/realtek: Add quirk for Lenovo Ideapad S740 (git-fixes). - ALSA: hda/realtek: Add some CLOVE SSIDs of ALC293 (git-fixes). - ALSA: hda/realtek: Apply headset-mic quirks for Xiaomi Redmibook Air (git-fixes). - ALSA: hda/realtek: Chain in pop reduction fixup for ThinkStation P340 (git-fixes). - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on EliteBook 845 G8 (git-fixes). - ALSA: hda/realtek: Fix silent headphone output on ASUS UX430UA (git-fixes). - ALSA: hda/realtek: Fix speaker amp on HP Envy AiO 32 (git-fixes). - ALSA: hda/realtek: Fix speaker amp setup on Acer Aspire E1 (git-fixes). - ALSA: hda/realtek: GA503 use same quirks as GA401 (git-fixes). - ALSA: hda/realtek: Headphone volume is controlled by Front mixer (git-fixes). - ALSA: hda/realtek: Re-order ALC269 ASUS quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Dell quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 HP quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Lenovo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC662 quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Clevo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order remaining ALC269 quirk table entries (git-fixes). - ALSA: hda/realtek: Remove redundant entry for ALC861 Haier/Uniwill devices (git-fixes). - ALSA: hda/realtek: apply pin quirk for XiaomiNotebook Pro (git-fixes). - ALSA: hda/realtek: call alc_update_headset_mode() in hp_automute_hook (git-fixes). - ALSA: hda/realtek: fix a determine_headset_type issue for a Dell AIO (git-fixes). - ALSA: hda/realtek: fix mic boost on Intel NUC 8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 15 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 17 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 440 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 640 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 840 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 850 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 855 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G7 (git-fixes). - ALSA: hda/realtek: fix static noise on ALC285 Lenovo laptops (git-fixes). - ALSA: hda/realtek: reset eapd coeff to default value for alc287 (git-fixes). - ALSA: hda/realtek: the bass speaker can't output sound on Yoga 9i (git-fixes). - ALSA: hda: Add missing sanity checks in PM prepare/complete callbacks (git-fixes). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (bsc#1182377). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (git-fixes). - ALSA: hda: Drop the BATCH workaround for AMD controllers (git-fixes). - ALSA: hda: Flush pending unsolicited events before suspend (bsc#1182377). - ALSA: hda: Re-add dropped snd_poewr_change_state() calls (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: generic: Fix the micmute led init state (git-fixes). - ALSA: hda: generic: change the DAC ctl name for LO+SPK or LO+HP (git-fixes). - ALSA: hda: ignore invalid NHLT table (git-fixes). - ALSA: hdsp: do not disable if not enabled (git-fixes). - ALSA: hdspm: do not disable if not enabled (git-fixes). - ALSA: intel8x0: Do not update period unless prepared (git-fixes). - ALSA: line6: Fix racy initialization of LINE6 MIDI (git-fixes). - ALSA: rme9652: do not disable if not enabled (git-fixes). - ALSA: sb: Fix two use after free in snd_sb_qsound_build (git-fixes). - ALSA: usb-audio: Add DJM-450 to the quirks table (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM750 to Pioneer mixer quirk (git-fixes). - ALSA: usb-audio: Add MIDI quirk for Vox ToneLab EX (git-fixes). - ALSA: usb-audio: Add Pioneer DJM-850 to quirks-table (git-fixes). - ALSA: usb-audio: Add dB range mapping for Sennheiser Communications Headset PC 8 (git-fixes). - ALSA: usb-audio: Add error checks for usb_driver_claim_interface() calls (git-fixes). - ALSA: usb-audio: Add implicit feeback support for the BOSS GT-1 (git-fixes). - ALSA: usb-audio: Add support for Pioneer DJM-750 (git-fixes). - ALSA: usb-audio: Add support for many Roland devices' implicit feedback quirks (git-fixes). - ALSA: usb-audio: Apply implicit feedback mode for BOSS devices (git-fixes). - ALSA: usb-audio: Apply sample rate quirk to Logitech Connect (git-fixes). - ALSA: usb-audio: Carve out connector value checking into a helper (git-fixes). - ALSA: usb-audio: Check connector value on resume (git-fixes). - ALSA: usb-audio: Configure Pioneer DJM-850 samplerate (git-fixes). - ALSA: usb-audio: Convert remaining strlcpy() to strscpy() (git-fixes). - ALSA: usb-audio: Convert the last strlcpy() usage (git-fixes). - ALSA: usb-audio: DJM-750: ensure format is set (git-fixes). - ALSA: usb-audio: Declare Pioneer DJM-850 mixer controls (git-fixes). - ALSA: usb-audio: Drop implicit fb quirk entries dubbed for capture (git-fixes). - ALSA: usb-audio: Explicitly set up the clock selector (git-fixes). - ALSA: usb-audio: Fix "RANGE setting not yet supported" errors (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix implicit sync clearance at stopping stream (git-fixes). - ALSA: usb-audio: Fix potential out-of-bounce access in MIDI EP parser (git-fixes). - ALSA: usb-audio: Fix unintentional sign extension issue (git-fixes). - ALSA: usb-audio: Generic application of implicit fb to Roland/BOSS devices (git-fixes). - ALSA: usb-audio: Re-apply implicit feedback mode to Pioneer devices (git-fixes). - ALSA: usb-audio: Remove redundant assignment to len (git-fixes). - ALSA: usb-audio: Skip probe of UA-101 devices (git-fixes). - ALSA: usb-audio: Skip the clock selector inquiry for single connections (git-fixes). - ALSA: usb-audio: Validate MS endpoint descriptors (git-fixes). - ALSA: usb-audio: add mixer quirks for Pioneer DJM-900NXS2 (git-fixes). - ALSA: usb-audio: fix NULL ptr dereference in usb_audio_probe (bsc#1182552). - ALSA: usb-audio: fix Pioneer DJM-850 control label info (git-fixes). - ALSA: usb-audio: fix control-request direction (git-fixes). - ALSA: usb-audio: fix use after free in usb_audio_disconnect (bsc#1182552). - ALSA: usb-audio: generate midi streaming substream names from jack names (git-fixes). - ALSA: usb-audio: scarlett2: Fix device hang with ehci-pci (git-fixes). - ALSA: usb-audio: scarlett2: Improve driver startup messages (git-fixes). - ALSA: usb-audio: scarlett2: snd_scarlett_gen2_controls_create() can be static (git-fixes). - ALSA: usb-audio: use usb headers rather than define structs locally (git-fixes). - ALSA: usb: Use DIV_ROUND_UP() instead of open-coding it (git-fixes). - ALSA: usb: midi: do not return -ENOMEM when usb_urb_ep_type_check fails (git-fixes). - ARM64: vdso32: Install vdso32 from vdso_install (git-fixes). - ASoC: Intel: Add DMI quirk table to soc_intel_is_byt_cr() (git-fixes). - ASoC: Intel: boards: sof-wm8804: add check for PLL setting (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for ARCHOS Cesium 140 (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Acer One S1002 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Chuwi Hi8 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Estar Beauty HD MID 7316R tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Voyo Winpad A15 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Enable jack-detect support on Asus T100TAF (git-fixes). - ASoC: Intel: bytcr_rt5640: Fix HP Pavilion x2 10-p0XX OVCD current threshold (git-fixes). - ASoC: Intel: bytcr_rt5651: Add quirk for the Jumper EZpad 7 tablet (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix kabylake_ssp_fixup function (git-fixes). - ASoC: Intel: sof_sdw: add quirk for HP Spectre x360 convertible (git-fixes). - ASoC: Intel: sof_sdw: add quirk for new ADL-P Rvp (git-fixes). - ASoC: Intel: sof_sdw: reorganize quirks by generation (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: hda: remove unnecessary parentheses (git-fixes). - ASoC: SOF: Intel: unregister DMIC device on probe error (git-fixes). - ASoC: SOF: intel: fix wrong poll bits in dsp power down (git-fixes). - ASoC: ak4458: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Fix s/show/slow/ typo (git-fixes). - ASoC: ak5558: correct reset polarity (git-fixes). - ASoC: codecs: wcd934x: add a sanity check in set channel map (git-fixes). - ASoC: cs35l33: fix an error code in probe() (git-fixes). - ASoC: cs42l42: Always wait at least 3ms after reset (git-fixes). - ASoC: cs42l42: Do not enable/disable regulator at Bias Level (git-fixes). - ASoC: cs42l42: Fix Bitclock polarity inversion (git-fixes). - ASoC: cs42l42: Fix channel width support (git-fixes). - ASoC: cs42l42: Fix mixer volume control (git-fixes). - ASoC: cs42l42: Regmap must use_single_read/write (git-fixes). - ASoC: cygnus: fix for_each_child.cocci warnings (git-fixes). - ASoC: es8316: Simplify adc_pga_gain_tlv table (git-fixes). - ASoC: fsl_esai: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: fsl_ssi: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: intel: atom: Remove 44100 sample-rate from the media and deep-buffer DAI descriptions (git-fixes). - ASoC: intel: atom: Stop advertising non working S24LE support (git-fixes). - ASoC: max98373: Added 30ms turn on/off time delay (git-fixes). - ASoC: max98373: Changed amp shutdown register as volatile (git-fixes). - ASoC: qcom: lpass-cpu: Fix lpass dai ids parse (git-fixes). - ASoC: qcom: sdm845: Fix array out of bounds access (git-fixes). - ASoC: qcom: sdm845: Fix array out of range on rx slim channels (git-fixes). - ASoC: rsnd: call rsnd_ssi_master_clk_start() from rsnd_ssi_init() (git-fixes). - ASoC: rsnd: check all BUSIF status when error (git-fixes). - ASoC: rsnd: core: Check convert rate in rsnd_hw_params (git-fixes). - ASoC: rt1015: fix i2c communication error (git-fixes). - ASoC: rt286: Generalize support for ALC3263 codec (git-fixes). - ASoC: rt286: Make RT286_SET_GPIO_* readable and writable (git-fixes). - ASoC: rt5640: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5651: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5659: Update MCLK rate in set_sysclk() (git-fixes). - ASoC: rt5670: Add a quirk for the Dell Venue 10 Pro 5055 (git-fixes). - ASoC: rt5670: Add emulated 'DAC1 Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'HP Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'OUT Channel Switch' control (git-fixes). - ASoC: rt5670: Remove ADC vol-ctrl mute bits poking from Sto1 ADC mixer settings (git-fixes). - ASoC: rt711: add snd_soc_component remove callback (git-fixes). - ASoC: samsung: snow: remove useless test (git-fixes). - ASoC: samsung: tm2_wm5110: check of of_parse return value (git-fixes). - ASoC: sgtl5000: set DAP_AVC_CTRL register to correct default value on probe (git-fixes). - ASoC: simple-card-utils: Do not handle device clock (git-fixes). - ASoC: simple-card: fix possible uninitialized single_cpu local variable (git-fixes). - ASoC: soc-core kABI workaround (git-fixes). - ASoC: soc-core: Prevent warning if no DMI table is present (git-fixes). - ASoC: sunxi: sun4i-codec: fill ASoC card owner (git-fixes). - ASoC: wm8960: Fix wrong bclk and lrclk with pll enabled for some chips (git-fixes). - ASoC: wm8960: Remove bitclk relax condition in wm8960_configure_sysclk (git-fixes). - Bluetooth: Fix incorrect status handling in LE PHY UPDATE event (git-fixes). - Bluetooth: Fix null pointer dereference in amp_read_loc_assoc_final_data (git-fixes). - Bluetooth: L2CAP: Fix handling LE modes by L2CAP_OPTIONS (git-fixes). - Bluetooth: SMP: Fail if remote and local public keys are identical (git-fixes). - Bluetooth: Set CONF_NOT_COMPLETE as l2cap_chan default (git-fixes). - Bluetooth: avoid deadlock between hci_dev->lock and socket lock (git-fixes). - Bluetooth: btqca: Add valid le states quirk (git-fixes). - Bluetooth: btusb: Enable quirk boolean flag for Mediatek Chip (git-fixes). - Bluetooth: check for zapped sk before connecting (git-fixes). - Bluetooth: hci_h5: Set HCI_QUIRK_SIMULTANEOUS_DISCOVERY for btrtl (git-fixes). - Bluetooth: initialize skb_queue_head at l2cap_chan_create() (git-fixes). - Documentation/ABI: sysfs-platform-ideapad-laptop: update device attribute paths (git-fixes). - Drivers: hv: vmbus: Fix Suspend-to-Idle for Generation-2 VM (git-fixes). - Drivers: hv: vmbus: Increase wait time for VMbus unload (bsc#1185725). - Drivers: hv: vmbus: Initialize unload_event statically (bsc#1185725). - Drivers: hv: vmbus: Use after free in __vmbus_open() (git-fixes). - EDAC/amd64: Check for memory before fully initializing an instance (bsc#1183815). - EDAC/amd64: Get rid of the ECC disabled long message (bsc#1183815). - EDAC/amd64: Use cached data when checking for ECC (bsc#1183815). - Goodix Fingerprint device is not a modem (git-fixes). - HID: alps: fix error return code in alps_input_configured() (git-fixes). - HID: google: add don USB id (git-fixes). - HID: i2c-hid: Add I2C_HID_QUIRK_NO_IRQ_AFTER_RESET for ITE8568 EC on Voyo Winpad A15 (git-fixes). - HID: mf: add support for 0079:1846 Mayflash/Dragonrise USB Gamecube Adapter (git-fixes). - HID: plantronics: Workaround for double volume key presses (git-fixes). - HID: wacom: Assign boolean values to a bool variable (git-fixes). - HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices (git-fixes). - HSI: Fix PM usage counter unbalance in ssi_hw_init (git-fixes). - Hibernation: Fix Hibernate not blocked in Secure Boot with no EFI secret key - IB/hfi1: Fix probe time panic when AIP is enabled with a buggy BIOS (jsc#SLE-13208). - IB/hfi1: Rework AIP and VNIC dummy netdev usage (jsc#SLE-13208). - Input: applespi - do not wait for responses to commands indefinitely (git-fixes). - Input: elantech - fix protocol errors for some trackpoints in SMBus mode (git-fixes). - Input: elants_i2c - do not bind to i2c-hid compatible ACPI instantiated devices (git-fixes). - Input: i8042 - fix Pegatron C15B ID entry (git-fixes). - Input: nspire-keypad - enable interrupts only when opened (git-fixes). - Input: s6sy761 - fix coordinate read bit shift (git-fixes). - Input: silead - add workaround for x86 BIOS-es which bring the chip up in a stuck state (git-fixes). - KEYS: trusted: Fix TPM reservation for seal/unseal (git-fixes). - KEYS: trusted: Fix memory leak on object td (git-fixes). - KVM x86: Extend AMD specific guest behavior to Hygon virtual CPUs (bsc#1183447). - KVM: PPC: Book3S HV P9: Restore host CTRL SPR after guest exit (bsc#1156395). - KVM: PPC: Make the VMX instruction emulation routines static (bsc#1156395). - KVM: SVM: Clear the CR4 register on reset (bsc#1183252). - KVM: kvmclock: Fix vCPUs > 64 can't be online/hotpluged (bsc#1152489). - KVM: nVMX: Properly handle userspace interrupt window request (bsc#1183427). - KVM: s390: fix guarded storage control register handling (bsc#1133021). - KVM: x86: Add helpers to perform CPUID-based guest vendor check (bsc#1183445). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183287). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183323). - KVM: x86: Expose XSAVEERPTR to the guest (jsc#SLE-13573). - KVM: x86: Return -E2BIG when KVM_GET_SUPPORTED_CPUID hits max entries (bsc#1183428). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183288). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183324). - KVM: x86: do not reset microcode version on INIT or RESET (bsc#1183412). - KVM: x86: list MSR_IA32_UCODE_REV as an emulated MSR (bsc#1183369). - NFC: nci: fix memory leak in nci_allocate_device (git-fixes). - PCI/AER: Add RCEC AER error injection support (bsc#1174426). - PCI/AER: Add pcie_walk_rcec() to RCEC AER handling (bsc#1174426). - PCI/AER: Clear AER status from Root Port when resetting Downstream Port (bsc#1174426). - PCI/AER: Specify the type of Port that was reset (bsc#1174426). - PCI/AER: Use "aer" variable for capability offset (bsc#1174426). - PCI/AER: Write AER Capability only when we control it (bsc#1174426). - PCI/ERR: Add pci_walk_bridge() to pcie_do_recovery() (bsc#1174426). - PCI/ERR: Add pcie_link_rcec() to associate RCiEPs (bsc#1174426). - PCI/ERR: Avoid negated conditional for clarity (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (jsc#SLE-13736 jsc#SLE-14845). - PCI/ERR: Cache RCEC EA Capability offset in pci_init_capabilities() (bsc#1174426). - PCI/ERR: Clear AER status only when we control AER (bsc#1174426). - PCI/ERR: Clear PCIe Device Status errors only if OS owns AER (bsc#1174426). - PCI/ERR: Clear status of the reporting device (bsc#1174426). - PCI/ERR: Recover from RCEC AER errors (bsc#1174426). - PCI/ERR: Recover from RCiEP AER errors (bsc#1174426). - PCI/ERR: Rename reset_link() to reset_subordinates() (bsc#1174426). - PCI/ERR: Retain status from error notification (bsc#1174426). - PCI/ERR: Simplify by computing pci_pcie_type() once (bsc#1174426). - PCI/ERR: Simplify by using pci_upstream_bridge() (bsc#1174426). - PCI/ERR: Use "bridge" for clarity in pcie_do_recovery() (bsc#1174426). - PCI/PME: Add pcie_walk_rcec() to RCEC PME handling (bsc#1174426). - PCI/RCEC: Fix RCiEP device to RCEC association (git-fixes). - PCI/RCEC: Fix RCiEP device to RCEC association (jsc#SLE-13736 jsc#SLE-14845 git-fixes). - PCI/portdrv: Report reset for frozen channel (bsc#1174426). - PCI: Add a REBAR size quirk for Sapphire RX 5600 XT Pulse (git-fixes). - PCI: Add function 1 DMA alias quirk for Marvell 9215 SATA controller (git-fixes). - PCI: Allow VPD access for QLogic ISP2722 (git-fixes). - PCI: Fix pci_register_io_range() memory leak (git-fixes). - PCI: PM: Do not read power state in pci_enable_device_flags() (git-fixes). - PCI: Release OF node in pci_scan_device()'s error path (git-fixes). - PCI: designware-ep: Fix the Header Type check (git-fixes). - PCI: dwc: Move iATU detection earlier (git-fixes). - PCI: endpoint: Fix missing destroy_workqueue() (git-fixes). - PCI: iproc: Fix return value of iproc_msi_irq_domain_alloc() (git-fixes). - PCI: keystone: Let AM65 use the pci_ops defined in pcie-designware-host.c (git-fixes). - PCI: mediatek: Add missing of_node_put() to fix reference leak (git-fixes). - PCI: tegra: Fix ASPM-L1SS advertisement disable code (git-fixes). - PCI: tegra: Move "dbi" accesses to post common DWC initialization (git-fixes). - PCI: thunder: Fix compile testing (git-fixes). - PCI: xgene-msi: Fix race in installing chained irq handler (git-fixes). - PM / devfreq: Use more accurate returned new_freq as resume_freq (git-fixes). - PM: EM: postpone creating the debugfs dir till fs_initcall (git-fixes). - PM: runtime: Add documentation for pm_runtime_resume_and_get() (git-fixes). - PM: runtime: Add pm_runtime_resume_and_get to deal with usage counter (bsc#1183366). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix race getting/putting suppliers at probe (git-fixes). - Platform: OLPC: Fix probe error handling (git-fixes). - RAS/CEC: Correct ce_add_elem()'s returned values (bsc#1152489). - RDMA/addr: create addr_wq with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/cm: Fix IRQ restore in ib_send_cm_sidr_rep (jsc#SLE-15176). - RDMA/core: create ib_cm with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/hns: Delete redundant abnormal interrupt status (git-fixes). - RDMA/hns: Delete redundant condition judgment related to eq (git-fixes). - RDMA/mlx5: Fix drop packet rule in egress table (jsc#SLE-15175). - RDMA/qedr: Fix error return code in qedr_iw_connect() (jsc#SLE-8215). - RDMA/rtrs-clt: Close rtrs client conn before destroying rtrs clt session files (jsc#SLE-15176). - RDMA/rtrs-clt: destroy sysfs after removing session from active list (jsc#SLE-15176). - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srpt: Fix error return code in srpt_cm_req_recv() (git-fixes). - Re-enable yenta socket driver for x86_64 (bsc#1186349) - SUNRPC in case of backlog, hand free slots directly to waiting task (bsc#1185428). - SUNRPC: More fixes for backlog congestion (bsc#1185428). - USB: Add LPM quirk for Lenovo ThinkPad USB-C Dock Gen2 Ethernet (git-fixes). - USB: Add reset-resume quirk for WD19's Realtek Hub (git-fixes). - USB: CDC-ACM: fix poison/unpoison imbalance (bsc#1184984). - USB: CDC-ACM: fix poison/unpoison imbalance (git-fixes). - USB: cdc-acm: downgrade message to debug (git-fixes). - USB: cdc-acm: fix TIOCGSERIAL implementation (git-fixes). - USB: cdc-acm: fix double free on probe failure (git-fixes). - USB: cdc-acm: fix unprivileged TIOCCSERIAL (git-fixes). - USB: cdc-acm: fix use-after-free after probe failure (git-fixes). - USB: cdc-acm: untangle a circular dependency between callback and softint (git-fixes). - USB: gadget: u_ether: Fix a configfs return code (git-fixes). - USB: gadget: udc: fix wrong pointer passed to IS_ERR() and PTR_ERR() (git-fixes). - USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem (git-fixes). - USB: replace hardcode maximum usb string length by definition (git-fixes). - USB: serial: ark3116: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ch341: add new Product ID (git-fixes). - USB: serial: cp210x: add ID for Acuity Brands nLight Air Adapter (git-fixes). - USB: serial: cp210x: add some more GE USB IDs (git-fixes). - USB: serial: f81232: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: f81534: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: fix return value for unsupported ioctls (git-fixes). - USB: serial: io_edgeport: fix memory leak in edge_startup (git-fixes). - USB: serial: mos7720: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: opticon: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: pl2303: add support for PL2303HXN (bsc#1186320). - USB: serial: pl2303: fix line-speed handling on newer chips (bsc#1186320). - USB: serial: quatech2: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ssu100: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ti_usb_3410_5052: fix TIOCSSERIAL permission check (git-fixes). - USB: serial: usb_wwan: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: usb_wwan: fix TIOCSSERIAL jiffies conversions (git-fixes). - USB: serial: usb_wwan: fix unprivileged TIOCCSERIAL (git-fixes). - USB: trancevibrator: fix control-request direction (git-fixes). - USB: usblp: fix a hang in poll() if disconnected (git-fixes). - Update config files. (bsc#1185010) - amd/amdgpu: Disable VCN DPG mode for Picasso (git-fixes). - amdgpu: avoid incorrect %hu format string (git-fixes). - apparmor: Fix aa_label refcnt leak in policy_update (git-fixes). - apparmor: check/put label on apparmor_sk_clone_security() (git-fixes). - appletalk: Fix skb allocation size in loopback case (git-fixes). - arm64/mm: Fix pfn_valid() for ZONE_DEVICE based memory (git-fixes). - arm64: Add missing ISB after invalidating TLB in __primary_switch (git-fixes). - arm64: avoid -Woverride-init warning (git-fixes). - arm64: kasan: fix page_alloc tagging with DEBUG_VIRTUAL (git-fixes). - arm64: kdump: update ppos when reading elfcorehdr (git-fixes). - arm64: kexec_file: fix memory leakage in create_dtb() when fdt_open_into() fails (git-fixes). - arm64: link with -z norelro for LLD or aarch64-elf (git-fixes). - arm64: link with -z norelro regardless of CONFIG_RELOCATABLE (git-fixes). - arm64: make STACKPROTECTOR_PER_TASK configurable (bsc#1181862). - arm64: ptrace: Fix seccomp of traced syscall -1 (NO_SYSCALL) (git-fixes). - arm64: ptrace: Use NO_SYSCALL instead of -1 in syscall_trace_enter() (git-fixes). - arm64: vdso32: make vdso32 install conditional (git-fixes). - arm: mm: use __pfn_to_section() to get mem_section (git-fixes). - ata: ahci: Disable SXS for Hisilicon Kunpeng920 (git-fixes). - ata: libahci_platform: fix IRQ check (git-fixes). - ath10k: Fix a use after free in ath10k_htc_send_bundle (git-fixes). - ath10k: Fix ath10k_wmi_tlv_op_pull_peer_stats_info() unlock without lock (git-fixes). - ath10k: fix wmi mgmt tx queue full due to race condition (git-fixes). - ath10k: hold RCU lock when calling ieee80211_find_sta_by_ifaddr() (git-fixes). - ath9k: Fix error check in ath9k_hw_read_revisions() for PCI devices (git-fixes). - ath9k: fix transmitting to stations in dynamic SMPS mode (git-fixes). - atl1c: fix error return code in atl1c_probe() (git-fixes). - atl1e: fix error return code in atl1e_probe() (git-fixes). - backlight: journada720: Fix Wmisleading-indentation warning (git-fixes). - batman-adv: initialize "struct batadv_tvlv_tt_vlan_data"->reserved field (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - blk-iocost: ioc_pd_free() shouldn't assume irq disabled (git-fixes). - blk-mq: Swap two calls in blk_mq_exit_queue() (git-fixes). - blk-mq: plug request for shared sbitmap (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blk-mq: set default elevator as deadline in case of hctx shared tagset (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blkcg: fix memleak for iolatency (git-fixes). - block, bfq: set next_rq to waker_bfqq->next_rq in waker injection (bsc#1168838). - block/genhd: use atomic_t for disk_event->block (bsc#1185497). - block: Fix three kernel-doc warnings (git-fixes). - block: fix get_max_io_size() (git-fixes). - block: recalculate segment count for multi-segment discards correctly (bsc#1184724). - block: rsxx: fix error return code of rsxx_pci_probe() (git-fixes). - block: rsxx: select CONFIG_CRC32 (git-fixes). - bluetooth: eliminate the potential race condition when removing the HCI controller (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: fix ternary sign extension bug in bnxt_show_temp() (git-fixes). - bnxt_en: reliably allocate IRQ table on reset to avoid crash (jsc#SLE-8371 bsc#1153274). - bnxt_en: reverse order of TX disable and carrier off (git-fixes). - bpf, sockmap: Fix sk->prot unhash op reset (bsc#1155518). - bpf,x64: Pad NOPs to make images converge more easily (bsc#1178163). - bpf: Add sanity check for upper ptr_limit (bsc#1183686 bsc#1183775). - bpf: Avoid warning when re-casting __bpf_call_base into __bpf_call_base_args (bsc#1155518). - bpf: Declare __bpf_free_used_maps() unconditionally (bsc#1155518). - bpf: Do not do bpf_cgroup_storage_set() for kuprobe/tp programs (bsc#1155518). - bpf: Enforce that struct_ops programs be GPL-only (bsc#1177028). - bpf: Fix 32 bit src register truncation on div/mod (bsc#1184170). - bpf: Fix an unitialized value in bpf_iter (bsc#1177028). - bpf: Fix leakage of uninitialized bpf stack under speculation (bsc#1155518). - bpf: Fix masking negation logic upon negative dst register (bsc#1155518). - bpf: Fix propagation of 32 bit unsigned bounds from 64 bit bounds (bsc#1177028). - bpf: Fix verifier jsgt branch analysis on max bound (bsc#1155518). - bpf: Refcount task stack in bpf_get_task_stack (bsc#1177028). - bpf: Remove MTU check in __bpf_skb_max_len (bsc#1155518). - bpf: Simplify alu_limit masking for pointer arithmetic (bsc#1183686 bsc#1183775). - bpf: link: Refuse non-O_RDWR flags in BPF_OBJ_GET (bsc#1177028). - bpf_lru_list: Read double-checked variable once without lock (bsc#1155518). - brcmfmac: Add DMI nvram filename quirk for Predia Basic tablet (git-fixes). - brcmfmac: Add DMI nvram filename quirk for Voyo winpad A15 tablet (git-fixes). - brcmfmac: clear EAP/association status bits on linkdown events (git-fixes). - bsg: free the request before return error code (git-fixes). - btrfs: abort the transaction if we fail to inc ref in btrfs_copy_root (bsc#1184217). - btrfs: always pin deleted leaves when there are active tree mod log users (bsc#1184224). - btrfs: fix exhaustion of the system chunk array due to concurrent allocations (bsc#1183386). - btrfs: fix extent buffer leak on failure to copy root (bsc#1184218). - btrfs: fix qgroup data rsv leak caused by falloc failure (bsc#1185549). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race when cloning extent buffer during rewind of an old root (bsc#1184193). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix stale data exposure after cloning a hole with NO_HOLES enabled (bsc#1184220). - btrfs: fix subvolume/snapshot deletion not triggered on mount (bsc#1184219). - btrfs: track qgroup released data in own variable in insert_prealloc_file_extent (bsc#1185549). - bus: fsl-mc: add the dpdbg device type (bsc#1185670). - bus: fsl-mc: list more commands as accepted through the ioctl (bsc#1185670). - bus: omap_l3_noc: mark l3 irqs as IRQF_NO_THREAD (git-fixes). - bus: qcom: Put child node before return (git-fixes). - bus: ti-sysc: Fix warning on unbind if reset is not deasserted (git-fixes). - can: c_can: move runtime PM enable/disable to c_can_platform (git-fixes). - can: c_can_pci: c_can_pci_remove(): fix use-after-free (git-fixes). - can: flexcan: assert FRZ bit in flexcan_chip_freeze() (git-fixes). - can: flexcan: enable RX FIFO after FRZ/HALT valid (git-fixes). - can: flexcan: flexcan_chip_freeze(): fix chip freeze for missing bitrate (git-fixes). - can: flexcan: invoke flexcan_chip_freeze() to enter freeze mode (git-fixes). - can: m_can: m_can_do_rx_poll(): fix extraneous msg loss warning (git-fixes). - can: peak_usb: Revert "can: peak_usb: add forgotten supported devices" (git-fixes). - can: peak_usb: add forgotten supported devices (git-fixes). - can: skb: can_skb_set_owner(): fix ref counting if socket was closed before setting skb ownership (git-fixes). - cdc-acm: fix BREAK rx code path adding necessary calls (git-fixes). - cdc-wdm: untangle a circular dependency between callback and softint (git-fixes). - cdrom: gdrom: deallocate struct gdrom_unit fields in remove_gdrom (git-fixes). - cdrom: gdrom: initialize global variable at init time (git-fixes). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - cfg80211: remove WARN_ON() in cfg80211_sme_connect (git-fixes). - cfg80211: scan: drop entry from hidden_list on overflow (git-fixes). - ch_ktls: Fix kernel panic (jsc#SLE-15131). - ch_ktls: do not send snd_una update to TCB in middle (jsc#SLE-15131). - ch_ktls: fix device connection close (jsc#SLE-15131). - ch_ktls: fix enum-conversion warning (jsc#SLE-15129). - ch_ktls: tcb close causes tls connection failure (jsc#SLE-15131). - cifs: New optype for session operations (bsc#1181507). - cifs: Tracepoints and logs for tracing credit changes (bsc#1181507). - cifs: change noisy error message to FYI (bsc#1181507). - cifs: check pointer before freeing (bsc#1183534). - cifs: do not send close in compound create+close requests (bsc#1181507). - cifs: print MIDs in decimal notation (bsc#1181507). - cifs: return proper error code in statfs(2) (bsc#1181507). - cifs_debug: use %pd instead of messing with ->d_name (bsc#1181507). - clk: exynos7: Mark aclk_fsys1_200 as critical (git-fixes). - clk: fix invalid usage of list cursor in register (git-fixes). - clk: fix invalid usage of list cursor in unregister (git-fixes). - clk: mvebu: armada-37xx-periph: Fix switching CPU freq from 250 Mhz to 1 GHz (git-fixes). - clk: mvebu: armada-37xx-periph: Fix workaround for switching from L1 to L0 (git-fixes). - clk: mvebu: armada-37xx-periph: remove .set_parent method for CPU PM clock (git-fixes). - clk: qcom: a53-pll: Add missing MODULE_DEVICE_TABLE (git-fixes). - clk: socfpga: arria10: Fix memory leak of socfpga_clk on error return (git-fixes). - clk: socfpga: fix iomem pointer cast on 64-bit (git-fixes). - clk: uniphier: Fix potential infinite loop (git-fixes). - clk: zynqmp: move zynqmp_pll_set_mode out of round_rate callback (git-fixes). - completion: Drop init_completion define (git-fixes). - configfs: fix a use-after-free in __configfs_open_file (git-fixes). - coresight: etm4x: Fix issues on trcseqevr access (git-fixes). - coresight: etm4x: Fix save and restore of TRCVMIDCCTLR1 register (git-fixes). - coresight: remove broken __exit annotations (git-fixes). - coresight: tmc-etr: Fix barrier packet insertion for perf buffer (git-fixes). - cpufreq: Kconfig: fix documentation links (git-fixes). - cpufreq: armada-37xx: Fix determining base CPU frequency (git-fixes). - cpufreq: armada-37xx: Fix driver cleanup when registration failed (git-fixes). - cpufreq: armada-37xx: Fix setting TBG parent for load levels (git-fixes). - cpufreq: armada-37xx: Fix the AVS value for load L1 (git-fixes). - cpufreq: intel_pstate: Add Icelake servers support in no-HWP mode (bsc#1185758). - cpuidle/pseries: Fixup CEDE0 latency only for POWER10 onwards (bsc#1185550 ltc#192610). - crypto: api - check for ERR pointers in crypto_destroy_tfm() (git-fixes). - crypto: arm/curve25519 - Move '.fpu' after '.arch' (git-fixes). - crypto: chelsio - Read rxchannel-id from firmware (git-fixes). - crypto: mips/poly1305 - enable for all MIPS processors (git-fixes). - crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init (git-fixes). - crypto: qat - Fix a double free in adf_create_ring (git-fixes). - crypto: qat - do not release uninitialized resources (git-fixes). - crypto: qat - fix error path in adf_isr_resource_alloc() (git-fixes). - crypto: qat - fix unmap invalid dma address (git-fixes). - crypto: rng - fix crypto_rng_reset() refcounting when !CRYPTO_STATS (git-fixes). - crypto: stm32/cryp - Fix PM reference leak on stm32-cryp.c (git-fixes). - crypto: stm32/hash - Fix PM reference leak on stm32-hash.c (git-fixes). - crypto: tcrypt - avoid signed overflow in byte count (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4: Fix unintentional sign extension issues (git-fixes). - cxgb4: avoid collecting SGE_QBASE regs during traffic (git-fixes). - dm era: Fix bitset memory leaks (git-fixes). - dm era: Recover committed writeset after crash (git-fixes). - dm era: Reinitialize bitset cache before digesting a new writeset (git-fixes). - dm era: Update in-core bitset after committing the metadata (git-fixes). - dm era: Use correct value size in equality function of writeset tree (git-fixes). - dm era: Verify the data block size hasn't changed (git-fixes). - dm era: only resize metadata in preresume (git-fixes). - dm integrity: fix error reporting in bitmap mode after creation (git-fixes). - dm ioctl: fix error return code in target_message (git-fixes). - dm mpath: fix racey management of PG initialization (git-fixes). - dm mpath: switch paths in dm_blk_ioctl() code path (bsc#1167574, bsc#1175995, bsc#1184485). - dm raid: fix discard limits for raid1 (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (bsc#1185581). - dm writecache: fix the maximum number of arguments (git-fixes). - dm writecache: handle DAX to partitions on persistent memory correctly (git-fixes). - dm writecache: remove BUG() and fail gracefully instead (git-fixes). - dm zoned: select CONFIG_CRC32 (git-fixes). - dm: avoid filesystem lookup in dm_get_dev_t() (git-fixes). - dm: eliminate potential source of excessive kernel log noise (git-fixes). - dm: fix bug with RCU locking in dm_blk_report_zones (git-fixes). - dm: remove invalid sparse __acquires and __releases annotations (git-fixes). - dmaengine: Fix a double free in dma_async_device_register (git-fixes). - dmaengine: dw-edma: Fix crash on loading/unloading driver (git-fixes). - dmaengine: dw: Make it dependent to HAS_IOMEM (git-fixes). - dmaengine: idxd: Fix clobbering of SWERR overflow bit on writeback (git-fixes). - dmaengine: idxd: Fix potential null dereference on pointer status (git-fixes). - dmaengine: idxd: cleanup pci interrupt vector allocation management (git-fixes). - dmaengine: idxd: clear MSIX permission entry on shutdown (git-fixes). - dmaengine: idxd: fix cdev setup and free device lifetime issues (git-fixes). - dmaengine: idxd: fix delta_rec and crc size field for completion record (git-fixes). - dmaengine: idxd: fix dma device lifetime (git-fixes). - dmaengine: idxd: fix opcap sysfs attribute output (git-fixes). - dmaengine: idxd: fix wq cleanup of WQCFG registers (git-fixes). - dmaengine: idxd: fix wq size store permission state (git-fixes). - dmaengine: idxd: removal of pcim managed mmio mapping (git-fixes). - docs: kernel-parameters: Add gpio_mockup_named_lines (git-fixes). - docs: kernel-parameters: Move gpio-mockup for alphabetic order (git-fixes). - dpaa_eth: Remove unnecessary boolean expression in dpaa_get_headroom (git-fixes). - dpaa_eth: Use random MAC address when none is given (bsc#1184811). - dpaa_eth: copy timestamp fields to new skb in A-050385 workaround (git-fixes). - dpaa_eth: fix the RX headroom size alignment (git-fixes). - dpaa_eth: update the buffer layout for non-A050385 erratum scenarios (git-fixes). - drivers: hv: Fix whitespace errors (bsc#1185725). - drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs()' (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drm/amd/display/dc/dce/dce_aux: Remove duplicate line causing 'field overwritten' issue (git-fixes). - drm/amd/display: Check for DSC support instead of ASIC revision (git-fixes). - drm/amd/display: Correct algorithm for reversed gamma (git-fixes). - drm/amd/display: DCHUB underflow counter increasing in some scenarios (git-fixes). - drm/amd/display: Do not optimize bandwidth before disabling planes (git-fixes). - drm/amd/display: Fix UBSAN warning for not a valid value for type '_Bool' (git-fixes). - drm/amd/display: Fix UBSAN: shift-out-of-bounds warning (git-fixes). - drm/amd/display: Fix debugfs link_settings entry (git-fixes). - drm/amd/display: Fix nested FPU context in dcn21_validate_bandwidth() (git-fixes). - drm/amd/display: Fix off by one in hdmi_14_process_transaction() (git-fixes). - drm/amd/display: Fix two cursor duplication when using overlay (git-fixes). - drm/amd/display: Force vsync flip when reconfiguring MPCC (git-fixes). - drm/amd/display: Guard against NULL pointer deref when get_i2c_info fails (git-fixes). - drm/amd/display: Initialize attribute for hdcp_srm sysfs file (git-fixes). - drm/amd/display: Reject non-zero src_y and src_x for video planes (git-fixes). - drm/amd/display: Revert dram_clock_change_latency for DCN2.1 (git-fixes). - drm/amd/display: Try YCbCr420 color when YCbCr444 fails (git-fixes). - drm/amd/display: add handling for hdcp2 rx id list validation (git-fixes). - drm/amd/display: changing sr exit latency (git-fixes). - drm/amd/display: fix dml prefetch validation (git-fixes). - drm/amd/display: fixed divide by zero kernel crash during dsc enablement (git-fixes). - drm/amd/display: turn DPMS off on connector unplug (git-fixes). - drm/amd/pm: fix workload mismatch on vega10 (git-fixes). - drm/amd/powerplay: fix spelling mistake "smu_state_memroy_block" (bsc#1152489) - drm/amdgpu : Fix asic reset regression issue introduce by 8f211fe8ac7c4f (git-fixes). - drm/amdgpu/display/dm: add missing parameter documentation (git-fixes). - drm/amdgpu/display: buffer INTERRUPT_LOW_IRQ_CONTEXT interrupt work (git-fixes). - drm/amdgpu/display: remove redundant continue statement (git-fixes). - drm/amdgpu/display: restore AUX_DPHY_TX_CONTROL for DCN2.x (git-fixes). - drm/amdgpu/display: use GFP_ATOMIC in dcn21_validate_bandwidth_fp() (git-fixes). - drm/amdgpu/swsmu: add interrupt work function (git-fixes). - drm/amdgpu/swsmu: add interrupt work handler for smu11 parts (git-fixes). - drm/amdgpu: Add additional Sienna Cichlid PCI ID (git-fixes). - drm/amdgpu: Add check to prevent IH overflow (git-fixes). - drm/amdgpu: Add mem sync flag for IB allocated by SA (git-fixes). - drm/amdgpu: Fix GPU TLB update error when PAGE_SIZE > AMDGPU_PAGE_SIZE (git-fixes). - drm/amdgpu: Fix some unload driver issues (git-fixes). - drm/amdgpu: Init GFX10_ADDR_CONFIG for VCN v3 in DPG mode (git-fixes). - drm/amdgpu: check alignment on CPU page for bo map (git-fixes). - drm/amdgpu: disable 3DCGCG on picasso/raven1 to avoid compute hang (git-fixes). - drm/amdgpu: fb BO should be ttm_bo_type_device (git-fixes). - drm/amdgpu: fix NULL pointer dereference (git-fixes). - drm/amdgpu: fix concurrent VM flushes on Vega/Navi v2 (git-fixes). - drm/amdgpu: fix offset calculation in amdgpu_vm_bo_clear_mappings() (git-fixes). - drm/amdgpu: fix parameter error of RREG32_PCIE() in amdgpu_regs_pcie (git-fixes). - drm/amdgpu: mask the xgmi number of hops reported from psp to kfd (git-fixes). - drm/amdgpu: remove unused variable from struct amdgpu_bo (git-fixes). - drm/amdgpu: update gc golden setting for Navi12 (git-fixes). - drm/amdgpu: update sdma golden setting for Navi12 (git-fixes). - drm/amdkfd: Fix UBSAN shift-out-of-bounds warning (git-fixes). - drm/amdkfd: Fix cat debugfs hang_hws file causes system crash bug (git-fixes). - drm/amdkfd: Put ACPI table after using it (bsc#1152489) Backporting notes: * context changes - drm/amdkfd: dqm fence memory corruption (git-fixes). - drm/amdkfd: fix build error with AMD_IOMMU_V2=m (git-fixes). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix invalid usage of AST_MAX_HWC_WIDTH in cursor atomic_check (git-fixes). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/compat: Clear bounce structures (git-fixes). - drm/dp_mst: Revise broadcast msg lct & lcr (git-fixes). - drm/dp_mst: Set CLEAR_PAYLOAD_ID_TABLE as broadcast (git-fixes). - drm/hisilicon: Fix use-after-free (git-fixes). - drm/i915/display: fix compiler warning about array overrun (git-fixes). - drm/i915/gt: Clear CACHE_MODE prior to clearing residuals (git-fixes). - drm/i915/gt: Disable HiZ Raw Stall Optimization on broken gen7 (git-fixes). - drm/i915/gvt: Fix error code in intel_gvt_init_device() (git-fixes). - drm/i915/gvt: Set SNOOP for PAT3 on BXT/APL to workaround GPU BB hang (git-fixes). - drm/i915/overlay: Fix active retire callback alignment (git-fixes). - drm/i915/selftests: Fix some error codes (git-fixes). - drm/i915: Avoid div-by-zero on gen2 (git-fixes). - drm/i915: Fix ICL MG PHY vswing handling (git-fixes). - drm/i915: Fix crash in auto_retire (git-fixes). - drm/i915: Fix invalid access to ACPI _DSM objects (bsc#1184074). - drm/i915: Hold onto an explicit ref to i915_vma_work.pinned (git-fixes). - drm/i915: Read C0DRB3/C1DRB3 as 16 bits again (git-fixes). - drm/i915: Wedge the GPU if command parser setup fails (git-fixes). - drm/imx: imx-ldb: fix out of bounds array access warning (git-fixes). - drm/ingenic: Fix non-OSD mode (git-fixes). - drm/ingenic: Register devm action to cleanup encoders (git-fixes). - drm/komeda: Fix bit check to import to value of proper type (git-fixes). - drm/lima: fix reference leak in lima_pm_busy (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (git-fixes). - drm/mediatek: Fix aal size config (bsc#1152489) Backporting notes: * replaced mtk_ddp_write() with writel() - drm/meson: fix shutdown crash when component not probed (git-fixes). - drm/msm/a5xx: Remove overwriting A5XX_PC_DBG_ECO_CNTL register (git-fixes). - drm/msm/adreno: a5xx_power: Do not apply A540 lm_setup to other GPUs (git-fixes). - drm/msm/gem: Add obj->lock wrappers (bsc#1152489) Backporting notes: * taken for 9b73bde39cf2 ("drm/msm: Fix use-after-free in msm_gem with carveout") * context changes - drm/msm/mdp5: Configure PP_SYNC_HEIGHT to double the vtotal (git-fixes). - drm/msm/mdp5: Do not multiply vclk line count by 100 (git-fixes). - drm/msm: Fix WARN_ON() splat in _free_object() (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix a5xx/a6xx timestamps (git-fixes). - drm/msm: Fix races managing the OOB state for timestamp vs (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix suspend/resume on i.MX5 (git-fixes). - drm/msm: Fix use-after-free in msm_gem with carveout (bsc#1152489) Backporting notes: * context changes - drm/msm: Ratelimit invalid-fence message (git-fixes). - drm/msm: Set drvdata to NULL when msm_drm_init() fails (git-fixes). - drm/msm: fix shutdown hook in case GPU components failed to bind (git-fixes). - drm/nouveau/kms/nv50-: Get rid of bogus nouveau_conn_mode_valid() (git-fixes). - drm/nouveau: bail out of nouveau_channel_new if channel init fails (bsc#1152489) - drm/omap: fix misleading indentation in pixinc() (git-fixes). - drm/panfrost: Clear MMU irqs before handling the fault (git-fixes). - drm/panfrost: Do not corrupt the queue mutex on open/close (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Do not try to map pages that are already mapped (git-fixes). - drm/panfrost: Fix job timeout handling (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Remove unused variables in panfrost_job_close() (bsc#1152472) - drm/probe-helper: Check epoch counter in output_poll_execute() (git-fixes). - drm/qxl: do not run release if qxl failed to init (git-fixes). - drm/radeon/dpm: Disable sclk switching on Oland when two 4K 60Hz monitors are connected (git-fixes). - drm/radeon: Avoid power table parsing memory leaks (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (git-fixes). - drm/radeon: Fix off-by-one power_state index heap overwrite (git-fixes). - drm/radeon: fix AGP dependency (git-fixes). - drm/radeon: fix copy of uninitialized variable back to userspace (git-fixes). - drm/shmem-helper: Check for purged buffers in fault handler (git-fixes). - drm/shmem-helper: Do not remove the offset in vm_area_struct pgoff (git-fixes). - drm/shmem-helpers: vunmap: Do not put pages for dma-buf (git-fixes). - drm/sun4i: tcon: fix inverted DCLK polarity (bsc#1152489) Backporting notes: * context changes - drm/tegra: Fix reference leak when pm_runtime_get_sync() fails (git-fixes). - drm/tegra: dc: Do not set PLL clock to 0Hz (git-fixes). - drm/tegra: dc: Restore coupling of display controllers (git-fixes). - drm/tegra: sor: Grab runtime PM reference across reset (git-fixes). - drm/tilcdc: send vblank event when disabling crtc (git-fixes). - drm/vc4: crtc: Reduce PV fifo threshold on hvs4 (git-fixes). - drm/vc4: hdmi: Restore cec physical address on reconnect (bsc#1152472) Backporting notes: * context changes * change vc4_hdmi to vc4->hdmi * removed references to encoder->hdmi_monitor - drm/vkms: fix misuse of WARN_ON (git-fixes). - drm: Added orientation quirk for OneGX1 Pro (git-fixes). - drm: meson_drv add shutdown function (git-fixes). - drm: rcar-du: Fix PM reference leak in rcar_cmm_enable() (git-fixes). - drm: rcar-du: Fix crash when using LVDS1 clock for CRTC (bsc#1152489) Backporting notes: * context changes - drm: rcar-du: Fix leak of CMM platform device reference (git-fixes). - drm: xlnx: zynqmp: fix a memset in zynqmp_dp_train() (git-fixes). - e1000e: Fix duplicate include guard (git-fixes). - e1000e: Fix error handling in e1000_set_d0_lplu_state_82571 (git-fixes). - e1000e: add rtnl_lock() to e1000_reset_task (git-fixes). - efi: use 32-bit alignment for efi_guid_t literals (git-fixes). - enetc: Fix reporting of h/w packet counters (git-fixes). - enetc: Let the hardware auto-advance the taprio base-time of 0 (git-fixes). - enetc: Workaround for MDIO register access issue (git-fixes). - epoll: check for events when removing a timed out thread from the wait queue (git-fixes). - ethernet/netronome/nfp: Fix a use after free in nfp_bpf_ctrl_msg_rx (git-fixes). - ethernet: alx: fix order of calls on resume (git-fixes). - ethernet:enic: Fix a use after free bug in enic_hard_start_xmit (git-fixes). - ethtool: fix incorrect datatype in set_eee ops (bsc#1176447). - ethtool: fix missing NLM_F_MULTI flag when dumping (bsc#1176447). - ethtool: pause: make sure we init driver stats (jsc#SLE-15075). - exec: Move would_dump into flush_old_exec (git-fixes). - ext4: do not try to set xattr into ea_inode if value is empty (bsc#1184730). - ext4: find old entry again if failed to rename whiteout (bsc#1184742). - ext4: fix potential error in ext4_do_update_inode (bsc#1184731). - ext4: fix potential htree index checksum corruption (bsc#1184728). - extcon: Add stubs for extcon_register_notifier_all() functions (git-fixes). - extcon: Fix error handling in extcon_dev_register (git-fixes). - extcon: arizona: Fix some issues when HPDET IRQ fires after the jack has been unplugged (git-fixes). - extcon: arizona: Fix various races on driver unbind (git-fixes). - fbdev: zero-fill colormap in fbcmap.c (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Fix a use after bug in efi_mem_reserve_persistent (git-fixes). - firmware: arm_scpi: Prevent the ternary sign expansion bug (git-fixes). - firmware: qcom-scm: Fix QCOM_SCM configuration (git-fixes). - firmware: qcom_scm: Fix kernel-doc function names to match (git-fixes). - firmware: qcom_scm: Make __qcom_scm_is_call_available() return bool (git-fixes). - firmware: qcom_scm: Reduce locking section for __get_convention() (git-fixes). - firmware: qcom_scm: Workaround lack of "is available" call on SC7180 (git-fixes). - flow_dissector: fix byteorder of dissected ICMP ID (bsc#1154353). - fnic: use scsi_host_busy_iter() to traverse commands (bsc#1179851). - fotg210-udc: Complete OUT requests on short packets (git-fixes). - fotg210-udc: Do not DMA more than the buffer can take (git-fixes). - fotg210-udc: Fix DMA on EP0 for length > max packet size (git-fixes). - fotg210-udc: Fix EP0 IN requests bigger than two packets (git-fixes). - fotg210-udc: Mask GRP2 interrupts we do not handle (git-fixes). - fotg210-udc: Remove a dubious condition leading to fotg210_done (git-fixes). - fs/epoll: restore waking from ep_done_scan() (bsc#1183868). - fs/jfs: fix potential integer overflow on shift of a int (bsc#1184741). - fs: direct-io: fix missing sdio->boundary (bsc#1184736). - fsl/fman: check dereferencing null pointer (git-fixes). - fsl/fman: fix dereference null return value (git-fixes). - fsl/fman: fix eth hash table allocation (git-fixes). - fsl/fman: fix unreachable code (git-fixes). - fsl/fman: reuse set_mac_address() in dtsec init() (bsc#1184811). - fsl/fman: tolerate missing MAC address in device tree (bsc#1184811). - fsl/fman: use 32-bit unsigned integer (git-fixes). - ftrace/x86: Tell objtool to ignore nondeterministic ftrace stack layout (bsc#1177028). - ftrace: Fix modify_ftrace_direct (bsc#1177028). - ftrace: Handle commands when closing set_ftrace_filter file (git-fixes). - fuse: fix bad inode (bsc#1184211). - fuse: fix bad inode (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix write deadlock (bsc#1185573). - fuse: verify write return (git-fixes). - futex: Change utime parameter to be 'const ... *' (git-fixes). - futex: Do not apply time namespace adjustment on FUTEX_LOCK_PI (bsc#1164648). - futex: Get rid of the val2 conditional dance (git-fixes). - futex: Make syscall entry points less convoluted (git-fixes). - gcc-plugins: drop support for GCC &lt;= 4.7 (bcs#1181862). - gcc-plugins: make it possible to disable CONFIG_GCC_PLUGINS again (bcs#1181862). - gcc-plugins: simplify GCC plugin-dev capability test (bsc#1181862). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (git-fixes). - genirq/irqdomain: Do not try to free an interrupt that has no (git-fixes) - genirq: Disable interrupts for force threaded handlers (git-fixes) - genirq: Reduce irqdebug cacheline bouncing (bsc#1185703 ltc#192641). - gianfar: Account for Tx PTP timestamp in the skb headroom (git-fixes). - gianfar: Fix TX timestamping with a stacked DSA driver (git-fixes). - gianfar: Handle error code at MAC address change (git-fixes). - gianfar: Replace skb_realloc_headroom with skb_cow_head for PTP (git-fixes). - gpio: omap: Save and restore sysconfig (git-fixes). - gpio: pca953x: Set IRQ type when handle Intel Galileo Gen 2 (git-fixes). - gpio: sysfs: Obey valid_mask (git-fixes). - gpio: xilinx: Correct kernel doc for xgpio_probe() (git-fixes). - gpio: zynq: fix reference leak in zynq_gpio functions (git-fixes). - gpiolib: Do not free if pin ranges are not defined (git-fixes). - gpiolib: acpi: Add missing IRQF_ONESHOT (git-fixes). - gpiolib: acpi: Add quirk to ignore EC wakeups on Dell Venue 10 Pro 5055 (git-fixes). - gpu/xen: Fix a use after free in xen_drm_drv_init (git-fixes). - hrtimer: Update softirq_expires_next correctly after (git-fixes) - hv_netvsc: Reset the RSC count if NVSP_STAT_FAIL in netvsc_receive() (git-fixes). - hwmon: (ina3221) Fix PM usage counter unbalance in ina3221_write_enable (git-fixes). - hwmon: (occ) Fix poll rate limiting (git-fixes). - i2c: Add I2C_AQ_NO_REP_START adapter quirk (git-fixes). - i2c: bail out early when RDWR parameters are wrong (git-fixes). - i2c: cadence: add IRQ check (git-fixes). - i2c: emev2: add IRQ check (git-fixes). - i2c: i801: Do not generate an interrupt on bus reset (git-fixes). - i2c: img-scb: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: imx-lpi2c: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: jz4780: add IRQ check (git-fixes). - i2c: mlxbf: add IRQ check (git-fixes). - i2c: omap: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: rcar: faster irq code to minimize HW race condition (git-fixes). - i2c: rcar: optimize cacheline to minimize HW race condition (git-fixes). - i2c: s3c2410: fix possible NULL pointer deref on read message after write (git-fixes). - i2c: sh7760: add IRQ check (git-fixes). - i2c: sh7760: fix IRQ error path (git-fixes). - i2c: sh_mobile: Use new clock calculation formulas for RZ/G2E (git-fixes). - i2c: sprd: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: tegra: Add missing pm_runtime_put() (bsc#1184386). - i2c: tegra: Check errors for both positive and negative values (bsc#1184386). - i2c: tegra: Clean up and improve comments (bsc#1184386). - i2c: tegra: Clean up printk messages (bsc#1184386). - i2c: tegra: Clean up probe function (bsc#1184386). - i2c: tegra: Clean up variable names (bsc#1184386). - i2c: tegra: Clean up variable types (bsc#1184386). - i2c: tegra: Clean up whitespaces, newlines and indentation (bsc#1184386). - i2c: tegra: Create i2c_writesl_vi() to use with VI I2C for filling TX FIFO (bsc#1184386). - i2c: tegra: Factor out error recovery from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out hardware initialization into separate function (bsc#1184386). - i2c: tegra: Factor out packet header setup from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out register polling into separate function (bsc#1184386). - i2c: tegra: Handle potential error of tegra_i2c_flush_fifos() (bsc#1184386). - i2c: tegra: Improve driver module description (bsc#1184386). - i2c: tegra: Improve formatting of variables (bsc#1184386). - i2c: tegra: Initialize div-clk rate unconditionally (bsc#1184386). - i2c: tegra: Make tegra_i2c_flush_fifos() usable in atomic transfer (bsc#1184386). - i2c: tegra: Mask interrupt in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Move out all device-tree parsing into tegra_i2c_parse_dt() (bsc#1184386). - i2c: tegra: Remove "dma" variable from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Remove error message used for devm_request_irq() failure (bsc#1184386). - i2c: tegra: Remove i2c_dev.clk_divisor_non_hs_mode member (bsc#1184386). - i2c: tegra: Remove likely/unlikely from the code (bsc#1184386). - i2c: tegra: Remove outdated barrier() (bsc#1184386). - i2c: tegra: Remove redundant check in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Rename wait/poll functions (bsc#1184386). - i2c: tegra: Reorder location of functions in the code (bsc#1184386). - i2c: tegra: Runtime PM always available on Tegra (bsc#1184386). - i2c: tegra: Use clk-bulk helpers (bsc#1184386). - i2c: tegra: Use devm_platform_get_and_ioremap_resource() (bsc#1184386). - i2c: tegra: Use platform_get_irq() (bsc#1184386). - i2c: tegra: Use reset_control_reset() (bsc#1184386). - i2c: tegra: Use threaded interrupt (bsc#1184386). - i2c: tegra: Wait for config load atomically while in ISR (bsc#1184386). - i40e: Add zero-initialization of AQ command structures (git-fixes). - i40e: Added Asym_Pause to supported link modes (git-fixes). - i40e: Fix PHY type identifiers for 2.5G and 5G adapters (git-fixes). - i40e: Fix add TC filter for IPv6 (git-fixes). - i40e: Fix addition of RX filters after enabling FW LLDP agent (git-fixes). - i40e: Fix display statistics for veb_tc (git-fixes). - i40e: Fix endianness conversions (git-fixes). - i40e: Fix flow for IPv6 next header (extension header) (git-fixes). - i40e: Fix kernel oops when i40e driver removes VF's (git-fixes). - i40e: Fix overwriting flow control settings during driver loading (git-fixes). - i40e: Fix parameters in aq_get_phy_register() (jsc#SLE-8025). - i40e: Fix sparse error: 'vsi->netdev' could be null (jsc#SLE-8025). - i40e: Fix sparse error: uninitialized symbol 'ring' (jsc#SLE-13701). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse warning: missing error code 'err' (git-fixes). - i40e: Fix use-after-free in i40e_client_subtask() (git-fixes). - i40e: fix broken XDP support (git-fixes). - i40e: fix the panic when running bpf in xdpdrv mode (git-fixes). - i40e: fix the restart auto-negotiation after FEC modified (git-fixes). - i915/perf: Start hrtimer only if sampling the OA buffer (git-fixes). - iavf: Fix incorrect adapter get in iavf_resume (git-fixes). - iavf: use generic power management (git-fixes). - ibmvfc: Avoid move login if fast fail is enabled (bsc#1185938 ltc#192043). - ibmvfc: Handle move login failure (bsc#1185938 ltc#192043). - ibmvfc: Reinit target retries (bsc#1185938 ltc#192043). - ibmvnic: add comments for spinlock_t definitions (bsc#1183871 ltc#192139). - ibmvnic: avoid calling napi_disable() twice (bsc#1065729). - ibmvnic: avoid multiple line dereference (bsc#1183871 ltc#192139). - ibmvnic: clean up the remaining debugfs data structures (bsc#1065729). - ibmvnic: correctly use dev_consume/free_skb_irq (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290 git-fixes). - ibmvnic: fix block comments (bsc#1183871 ltc#192139). - ibmvnic: fix braces (bsc#1183871 ltc#192139). - ibmvnic: fix miscellaneous checks (bsc#1183871 ltc#192139). - ibmvnic: improve failover sysfs entry (bsc#1043990 ltc#155681 git-fixes). - ibmvnic: merge do_change_param_reset into do_reset (bsc#1183871 ltc#192139). - ibmvnic: prefer 'unsigned long' over 'unsigned long int' (bsc#1183871 ltc#192139). - ibmvnic: prefer strscpy over strlcpy (bsc#1183871 ltc#192139). - ibmvnic: print adapter state as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: print reset reason as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: queue reset work in system_long_wq (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove default label from to_string switch (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove duplicate napi_schedule call in do_reset function (bsc#1065729). - ibmvnic: remove duplicate napi_schedule call in open function (bsc#1065729). - ibmvnic: remove unnecessary rmb() inside ibmvnic_poll (bsc#1183871 ltc#192139). - ibmvnic: remove unused spinlock_t stats_lock definition (bsc#1183871 ltc#192139). - ibmvnic: rework to ensure SCRQ entry reads are properly ordered (bsc#1183871 ltc#192139). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Cleanup fltr list in case of allocation issues (git-fixes). - ice: Continue probe on link/PHY errors (jsc#SLE-12878). - ice: Fix for dereference of NULL pointer (git-fixes). - ice: Increase control queue timeout (git-fixes). - ice: Use port number instead of PF ID for WoL (jsc#SLE-12878). - ice: fix memory allocation call (jsc#SLE-12878). - ice: fix memory leak if register_netdev_fails (git-fixes). - ice: fix memory leak in ice_vsi_setup (git-fixes). - ice: fix memory leak of aRFS after resuming from suspend (jsc#SLE-12878). - ice: prevent ice_open and ice_stop during reset (git-fixes). - ice: remove DCBNL_DEVRESET bit from PF state (jsc#SLE-7926). - ics932s401: fix broken handling of errors when word reading fails (git-fixes). - igb: Fix duplicate include guard (git-fixes). - igb: XDP extack message on error (jsc#SLE-13536). - igb: XDP xmit back fix error code (jsc#SLE-13536). - igb: avoid premature Rx buffer reuse (jsc#SLE-13536). - igb: avoid transmit queue timeout in xdp path (jsc#SLE-13536). - igb: check timestamp validity (git-fixes). - igb: skb add metasize for xdp (jsc#SLE-13536). - igb: take VLAN double header into account (jsc#SLE-13536). - igb: use xdp_do_flush (jsc#SLE-13536). - igc: Fix Pause Frame Advertising (git-fixes). - igc: Fix Supported Pause Frame Link Setting (git-fixes). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - iio: adc: ad7124: Fix missbalanced regulator enable / disable on error (git-fixes). - iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers (git-fixes). - iio: adc: ad7768-1: Fix too small buffer passed to iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ad7793: Add missing error code in ad7793_setup() (git-fixes). - iio: adc: ad7949: fix wrong ADC result due to incorrect bit mask (git-fixes). - iio: adis16400: Fix an error code in adis16400_initial_setup() (git-fixes). - iio: gyro: fxas21002c: balance runtime power in error path (git-fixes). - iio: gyro: mpu3050: Fix error handling in mpu3050_trigger_handler (git-fixes). - iio: gyro: mpu3050: Fix reported temperature value (git-fixes). - iio: hid-sensor-humidity: Fix alignment issue of timestamp channel (git-fixes). - iio: hid-sensor-prox: Fix scale not correct issue (git-fixes). - iio: hid-sensor-temperature: Fix issues of timestamp channel (git-fixes). - iio: proximity: pulsedlight: Fix rumtime PM imbalance on error (git-fixes). - iio: tsl2583: Fix division by a zero lux_val (git-fixes). - iio:accel:adis16201: Fix wrong axis assignment that prevents loading (git-fixes). - iio:adc:qcom-spmi-vadc: add default scale to LR_MUX2_BAT_ID channel (git-fixes). - ima: Free IMA measurement buffer after kexec syscall (git-fixes). - include/linux/sched/mm.h: use rcu_dereference in in_vfork() (git-fixes). - intel_th: Consistency and off-by-one fix (git-fixes). - intel_th: pci: Add Alder Lake-M support (git-fixes). - intel_th: pci: Add Rocket Lake CPU support (git-fixes). - interconnect: core: fix error return code of icc_link_destroy() (git-fixes). - iommu/amd: Add support for map/unmap_resource (jsc#ECO-3482). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183277). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183310). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183278). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183312). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183313). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183637). - iommu/vt-d: Add get_domain_info() helper (bsc#1183279). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183280). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183315). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183281). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183316). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183282). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183317). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183283). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183318). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183284). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183319). - iommu/vt-d: Fix status code for Allocate/Free PASID command (bsc#1183320). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183285). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183321). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183286). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183322). - iommu/vt-d: Use device numa domain if RHSA is missing (bsc#1184585). - iommu: Check dev->iommu in dev_iommu_priv_get() before dereferencing it (bsc#1183311). - iommu: Switch gather->end to the inclusive end (bsc#1183314). - ionic: linearize tso skb with too many frags (bsc#1167773). - ionic: linearize tso skb with too many frags (bsc#1167773). - iopoll: introduce read_poll_timeout macro (git-fixes). - ipc/mqueue, msg, sem: Avoid relying on a stack reference past its expiry (bsc#1185988). - ipmi/watchdog: Stop watchdog timer when the current action is 'none' (bsc#1184855). - ipw2x00: potential buffer overflow in libipw_wx_set_encodeext() (git-fixes). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1184264). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1185233). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1184264). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1185233). - irqchip: Add support for Layerscape external interrupt lines (bsc#1185233). - isofs: release buffer head before return (bsc#1182613). - iwlwifi: add support for Qu with AX201 device (git-fixes). - iwlwifi: pcie: make cfg vs. trans_cfg more robust (git-fixes). - ixgbe: fail to create xfrm offload of IPsec tunnel mode SA (git-fixes). - ixgbe: fix unbalanced device enable/disable in suspend/resume (jsc#SLE-13706). - jffs2: fix use after free in jffs2_sum_write_data() (bsc#1184740). - kABI: Fix kABI caused by fixes for bsc#1174426 (bsc#1174426). - kABI: cover up change in struct kvm_arch (bsc#1184969). - kABI: powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - kABI: powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - kABI: repair after "nVMX: Properly handle userspace interrupt window request" - kbuild: Fail if gold linker is detected (bcs#1181862). - kbuild: add dummy toolchains to enable all cc-option etc. in Kconfig (bcs#1181862). - kbuild: change *FLAGS_&lt;basetarget>.o to take the path relative to $(obj) (bcs#1181862). - kbuild: dummy-tools, fix inverted tests for gcc (bcs#1181862). - kbuild: dummy-tools, support MPROFILE_KERNEL checks for ppc (bsc#1181862). - kbuild: improve cc-option to clean up all temporary files (bsc#1178330). - kbuild: include scripts/Makefile.* only when relevant CONFIG is enabled (bcs#1181862). - kbuild: simplify GCC_PLUGINS enablement in dummy-tools/gcc (bcs#1181862). - kbuild: stop filtering out $(GCC_PLUGINS_CFLAGS) from cc-option base (bcs#1181862). - kbuild: use -S instead of -E for precise cc-option test in Kconfig (bsc#1178330). - kconfig: introduce m32-flag and m64-flag (bcs#1181862). - kernel-docs.spec.in: Build using an utf-8 locale. Sphinx cannot handle UTF-8 input in non-UTF-8 locale. - kernel/smp: make csdlock timeout depend on boot parameter (bsc#1180846). - kvm: svm: Update svm_xsaves_supported (jsc#SLE-13573). - kvm: x86: Enumerate support for CLZERO instruction (jsc#SLE-13573). - leds: lp5523: check return value of lp5xx_read and jump to cleanup code (git-fixes). - lib/syscall: fix syscall registers retrieval on 32-bit platforms (git-fixes). - libbpf: Add explicit padding to bpf_xdp_set_link_opts (bsc#1177028). - libbpf: Add explicit padding to btf_dump_emit_type_decl_opts (bsc#1177028). - libbpf: Clear map_info before each bpf_obj_get_info_by_fd (bsc#1155518). - libbpf: Fix BTF dump of pointer-to-array-of-struct (bsc#1155518). - libbpf: Fix INSTALL flag order (bsc#1155518). - libbpf: Fix bail out from 'ringbuf_process_ring()' on error (bsc#1177028). - libbpf: Fix error path in bpf_object__elf_init() (bsc#1177028). - libbpf: Fix signed overflow in ringbuf_process_ring (bsc#1177028). - libbpf: Initialize the bpf_seq_printf parameters array field by field (bsc#1177028). - libbpf: Only create rx and tx XDP rings when necessary (bsc#1155518). - libbpf: Use SOCK_CLOEXEC when opening the netlink socket (bsc#1155518). - libnvdimm/label: Return -ENXIO for no slot in __blk_label_update (bsc#1185269). - libnvdimm/namespace: Fix reaping of invalidated block-window-namespace labels (bsc#1185269). - libnvdimm/region: Fix nvdimm_has_flush() to handle ND_REGION_ASYNC (bsc#1184969 git-fixes). - libnvdimm/security: ensure sysfs poll thread woke up and fetch updated attr (git-fixes). - liquidio: Fix unintented sign extension of a left shift of a u16 (git-fixes). - locking/mutex: Fix non debug version of mutex_lock_io_nested() (git-fixes). - locking/qrwlock: Fix ordering in queued_write_lock_slowpath() (bsc#1185041). - lpfc: Decouple port_template and vport_template (bsc#185032). - mISDN: fix crash in fritzpci (git-fixes). - mac80211: Allow HE operation to be longer than expected (git-fixes). - mac80211: bail out if cipher schemes are invalid (git-fixes). - mac80211: choose first enabled channel for monitor (git-fixes). - mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN (git-fixes). - mac80211: clear the beacon's CRC after channel switch (git-fixes). - mac80211: fix TXQ AC confusion (git-fixes). - mac80211: fix double free in ibss_leave (git-fixes). - mac80211: fix rate mask reset (git-fixes). - macvlan: macvlan_count_rx() needs to be aware of preemption (git-fixes). - md-cluster: fix use-after-free issue when removing rdev (bsc#1184082). - md/raid1: properly indicate failure when ending a failed write request (bsc#1185680). - md: do not flush workqueue unconditionally in md_open (bsc#1184081). - md: factor out a mddev_find_locked helper from mddev_find (bsc#1184081). - md: md_open returns -EBUSY when entering racing area (bsc#1184081). - md: split mddev_find (bsc#1184081). - mdio: fix mdio-thunder.c dependency & build error (git-fixes). - media: adv7604: fix possible use-after-free in adv76xx_remove() (git-fixes). - media: cros-ec-cec: do not bail on device_init_wakeup failure (git-fixes). - media: cx23885: add more quirks for reset DMA on some AMD IOMMU (git-fixes). - media: drivers: media: pci: sta2x11: fix Kconfig dependency on GPIOLIB (git-fixes). - media: dvb-usb: fix memory leak in dvb_usb_adapter_init (git-fixes). - media: dvbdev: Fix memory leak in dvb_media_device_free() (git-fixes). - media: em28xx: fix memory leak (git-fixes). - media: gspca/sq905.c: fix uninitialized variable (git-fixes). - media: i2c: adv7511-v4l2: fix possible use-after-free in adv7511_remove() (git-fixes). - media: i2c: adv7842: fix possible use-after-free in adv7842_remove() (git-fixes). - media: i2c: tda1997: Fix possible use-after-free in tda1997x_remove() (git-fixes). - media: imx: capture: Return -EPIPE from __capture_legacy_try_fmt() (git-fixes). - media: ite-cir: check for receive overflow (git-fixes). - media: m88rs6000t: avoid potential out-of-bounds reads on arrays (git-fixes). - media: mantis: remove orphan mantis_core.c (git-fixes). - media: mceusb: sanity check for prescaler value (git-fixes). - media: media/saa7164: fix saa7164_encoder_register() memory leak bugs (git-fixes). - media: omap4iss: return error code when omap4iss_get() failed (git-fixes). - media: platform: sti: Fix runtime PM imbalance in regs_show (git-fixes). - media: platform: sunxi: sun6i-csi: fix error return code of sun6i_video_start_streaming() (git-fixes). - media: rc: compile rc-cec.c into rc-core (git-fixes). - media: saa7134: use sg_dma_len when building pgtable (git-fixes). - media: saa7146: use sg_dma_len when building pgtable (git-fixes). - media: staging/intel-ipu3: Fix memory leak in imu_fmt (git-fixes). - media: staging/intel-ipu3: Fix race condition during set_fmt (git-fixes). - media: staging/intel-ipu3: Fix set_fmt error handling (git-fixes). - media: tc358743: fix possible use-after-free in tc358743_remove() (git-fixes). - media: usbtv: Fix deadlock on suspend (git-fixes). - media: uvcvideo: Allow entities with no pads (git-fixes). - media: v4l2-ctrls.c: fix race condition in hdl->requests list (git-fixes). - media: v4l2-ctrls.c: fix shift-out-of-bounds in std_validate (git-fixes). - media: v4l: vsp1: Fix bru null pointer access (git-fixes). - media: v4l: vsp1: Fix uif null pointer access (git-fixes). - media: vicodec: add missing v4l2_ctrl_request_hdl_put() (git-fixes). - memory: gpmc: fix out of bounds read and dereference on gpmc_cs[] (git-fixes). - memory: mtk-smi: Fix PM usage counter unbalance in mtk_smi ops (bsc#1183325). - memory: pl353: fix mask of ECC page_size config register (git-fixes). - mfd: arizona: Fix rumtime PM imbalance on error (git-fixes). - mfd: intel_pmt: Fix nuisance messages and handling of disabled capabilities (git-fixes). - mfd: lpc_sch: Partially revert "Add support for Intel Quark X1000" (git-fixes). - mfd: stm32-timers: Avoid clearing auto reload register (git-fixes). - misc/pvpanic: Export module FDT device table (git-fixes). - misc/uss720: fix memory leak in uss720_probe (git-fixes). - misc: eeprom_93xx46: Add quirk to support Microchip 93LC46B eeprom (git-fixes). - misc: fastrpc: restrict user apps from sending kernel RPC messages (git-fixes). - misc: lis3lv02d: Fix false-positive WARN on various HP models (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_datagram payload (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_notify_bm_set_msg struct (git-fixes). - mlxsw: spectrum_mr: Update egress RIF list before route's action (git-fixes). - mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa (bsc#1168777). - mm/rmap: fix potential pte_unmap on an not mapped pte (git-fixes). - mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page (git-fixes). - mm: memcontrol: fix cpuhotplug statistics flushing (bsc#1185606). - mmc: block: Update ext_csd.cache_ctrl if it was written (git-fixes). - mmc: core: Correct descriptions in mmc_of_parse() (git-fixes). - mmc: core: Do a power cycle when the CMD11 fails (git-fixes). - mmc: core: Fix partition switch time for eMMC (git-fixes). - mmc: core: Set read only for SD cards with permanent write protect bit (git-fixes). - mmc: cqhci: Add cqhci_deactivate() (git-fixes). - mmc: cqhci: Fix random crash when remove mmc module/card (git-fixes). - mmc: mmc_spi: Drop unused NO_IRQ definition (git-fixes). - mmc: mxs-mmc: Fix a resource leak in an error handling path in 'mxs_mmc_probe()' (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (bsc#1186009) - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (bsc#1186009) - mmc: sdhci-of-arasan: Add missed checks for devm_clk_register() (git-fixes). - mmc: sdhci-of-dwcmshc: fix rpmb access (git-fixes). - mmc: sdhci-of-dwcmshc: implement specific set_uhs_signaling (git-fixes). - mmc: sdhci-of-dwcmshc: set SDHCI_QUIRK2_PRESET_VALUE_BROKEN (git-fixes). - mmc: sdhci-of-esdhc: make sure delay chain locked for HS400 (git-fixes). - mmc: sdhci-of-esdhc: set timeout to max before tuning (git-fixes). - mmc: sdhci-pci-gli: increase 1.8V regulator wait (git-fixes). - mmc: sdhci-pci: Add PCI IDs for Intel LKF (git-fixes). - mmc: sdhci-pci: Fix SDHCI_RESET_ALL for CQHCI for Intel GLK-based controllers (git-fixes). - mmc: sdhci-pci: Fix initialization of some SD cards for Intel BYT-based controllers (git-fixes). - mmc: sdhci: Check for reset prior to DMA address unmap (git-fixes). - mmc: sdhci: Use Auto CMD Auto Select only when v4_mode is true (git-fixes). - mmc: uniphier-sd: Fix a resource leak in the remove function (git-fixes). - mmc: uniphier-sd: Fix an error handling path in uniphier_sd_probe() (git-fixes). - mount: fix mounting of detached mounts onto targets that reside on shared mounts (git-fixes). - mt7601u: fix always true expression (git-fixes). - mt76: dma: do not report truncated frames to mac80211 (git-fixes). - mt76: mt7615: fix entering driver-own state on mt7663 (git-fixes). - mt76: mt7615: support loading EEPROM for MT7613BE (git-fixes). - mt76: mt76x0: disable GTK offloading (git-fixes). - mt76: mt7915: fix aggr len debugfs node (git-fixes). - mt76: mt7915: fix txpower init for TSSI off chips (git-fixes). - mtd: Handle possible -EPROBE_DEFER from parse_mtd_partitions() (git-fixes). - mtd: rawnand: atmel: Update ecc_stats.corrected counter (git-fixes). - mtd: rawnand: brcmnand: fix OOB R/W with Hamming ECC (git-fixes). - mtd: rawnand: fsmc: Fix error code in fsmc_nand_probe() (git-fixes). - mtd: rawnand: gpmi: Fix a double free in gpmi_nand_init (git-fixes). - mtd: rawnand: qcom: Return actual error code instead of -ENODEV (git-fixes). - mtd: require write permissions for locking and badblock ioctls (git-fixes). - mtd: spi-nor: Rename "n25q512a" to "mt25qu512a (n25q512a)" (bsc#1167260). - mtd: spi-nor: Split mt25qu512a (n25q512a) entry into two (bsc#1167260). - mtd: spinand: core: add missing MODULE_DEVICE_TABLE() (git-fixes). - mwifiex: pcie: skip cancel_work_sync() on reset failure path (git-fixes). - nbd: fix a block_device refcount leak in nbd_release (git-fixes). - net, xdp: Update pkt_type if generic XDP changes unicast MAC (git-fixes). - net/mlx4_core: Add missed mlx4_free_cmd_mailbox() (git-fixes). - net/mlx4_en: update moderation when config reset (git-fixes). - net/mlx5: Add back multicast stats for uplink representor (jsc#SLE-15172). - net/mlx5: Delete extra dump stack that gives nothing (git-fixes). - net/mlx5: Do not request more than supported EQs (git-fixes). - net/mlx5: Fix PPLM register mapping (jsc#SLE-8464). - net/mlx5: Fix bit-wise and with zero (jsc#SLE-15172). - net/mlx5: Fix health error state handling (bsc#1186467). - net/mlx5e: Allow to match on MPLS parameters only for MPLS over UDP (jsc#SLE-15172). - net/mlx5e: Do not match on Geneve options in case option masks are all zero (git-fixes). - net/mlx5e: E-switch, Fix rate calculation division (jsc#SLE-8464). - net/mlx5e: Fix error path for ethtool set-priv-flag (git-fixes). - net/mlx5e: Fix ethtool indication of connector type (git-fixes). - net/mlx5e: Fix setting of RS FEC mode (jsc#SLE-15172). - net/mlx5e: Offload tuple rewrite for non-CT flows (jsc#SLE-15172). - net/mlx5e: RX, Mind the MPWQE gaps when calculating offsets (jsc#SLE-15172). - net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta (jsc#SLE-8464). - net/qlcnic: Fix a use after free in qlcnic_83xx_get_minidump_template (git-fixes). - net/sched: act_ct: fix wild memory access when clearing fragments (bsc#1176447). - net: arc_emac: Fix memleak in arc_mdio_probe (git-fixes). - net: atheros: switch from 'pci_' to 'dma_' API (git-fixes). - net: atlantic: fix out of range usage of active_vlans array (git-fixes). - net: atlantic: fix potential error handling (git-fixes). - net: atlantic: fix use after free kasan warn (git-fixes). - net: b44: fix error return code in b44_init_one() (git-fixes). - net: bonding: fix error return code of bond_neigh_init() (bsc#1154353). - net: cdc-phonet: fix data-interface release on probe failure (git-fixes). - net: cls_api: Fix uninitialised struct field bo->unlocked_driver_cb (bsc#1176447). - net: dsa: felix: implement port flushing on .phylink_mac_link_down (git-fixes). - net: dsa: rtl8366: Fix VLAN semantics (git-fixes). - net: dsa: rtl8366: Fix VLAN set-up (git-fixes). - net: dsa: rtl8366rb: Support all 4096 VLANs (git-fixes). - net: enetc: allow hardware timestamping on TX queues with tc-etf enabled (git-fixes). - net: enetc: do not disable VLAN filtering in IFF_PROMISC mode (git-fixes). - net: enetc: fix link error again (git-fixes). - net: enetc: remove bogus write to SIRXIDR from enetc_setup_rxbdr (git-fixes). - net: enetc: take the MDIO lock only once per NAPI poll cycle (git-fixes). - net: enic: Cure the enic api locking trainwreck (git-fixes). - net: ethernet: aquantia: Fix wrong return value (git-fixes). - net: ethernet: cavium: octeon_mgmt: use phy_start and phy_stop (git-fixes). - net: ethernet: ibm: ibmvnic: Fix some kernel-doc misdemeanours (bsc#1183871 ltc#192139). - net: ethernet: ti: cpsw: fix clean up of vlan mc entries for host port (git-fixes). - net: ethernet: ti: cpsw: fix error return code in cpsw_probe() (git-fixes). - net: fec: Fix PHY init after phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix phy_device lookup for phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix reference count leak in fec series ops (git-fixes). - net: gemini: Fix another missing clk_disable_unprepare() in probe (git-fixes). - net: gemini: Fix missing free_netdev() in error path of gemini_ethernet_port_probe() (git-fixes). - net: geneve: check skb is large enough for IPv4/IPv6 header (git-fixes). - net: geneve: modify IP header check in geneve6_xmit_skb and geneve_xmit_skb (git-fixes). - net: gianfar: Add of_node_put() before goto statement (git-fixes). - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device (git-fixes). - net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling ether_setup (git-fixes). - net: hns3: Fix for geneve tx checksum bug (git-fixes). - net: hns3: Remove the left over redundant check & assignment (bsc#1154353). - net: hns3: Remove un-necessary 'else-if' in the hclge_reset_event() (git-fixes). - net: hns3: add check for HNS3_NIC_STATE_INITED in hns3_reset_notify_up_enet() (git-fixes). - net: hns3: clear VF down state bit before request link status (git-fixes). - net: hns3: clear unnecessary reset request in hclge_reset_rebuild (git-fixes). - net: hns3: disable phy loopback setting in hclge_mac_start_phy (git-fixes). - net: hns3: fix bug when calculating the TCAM table info (git-fixes). - net: hns3: fix for vxlan gpe tx checksum bug (git-fixes). - net: hns3: fix incorrect configuration for igu_egu_hw_err (git-fixes). - net: hns3: fix query vlan mask value error for flow director (git-fixes). - net: hns3: initialize the message content in hclge_get_link_mode() (git-fixes). - net: hns3: use netif_tx_disable to stop the transmit queue (git-fixes). - net: korina: cast KSEG0 address to pointer in kfree (git-fixes). - net: korina: fix kfree of rx/tx descriptor array (git-fixes). - net: lantiq: Wait for the GPHY firmware to be ready (git-fixes). - net: ll_temac: Add more error handling of dma_map_single() calls (git-fixes). - net: ll_temac: Fix RX buffer descriptor handling on GFP_ATOMIC pressure (git-fixes). - net: ll_temac: Fix race condition causing TX hang (git-fixes). - net: ll_temac: Handle DMA halt condition caused by buffer underrun (git-fixes). - net: mvneta: fix double free of txq->buf (git-fixes). - net: mvneta: make tx buffer array agnostic (git-fixes). - net: pasemi: fix error return code in pasemi_mac_open() (git-fixes). - net: phy: broadcom: Only advertise EEE for supported modes (git-fixes). - net: phy: intel-xway: enable integrated led functions (git-fixes). - net: phy: marvell: fix m88e1011_set_downshift (git-fixes). - net: phy: marvell: fix m88e1111_set_downshift (git-fixes). - net: qcom/emac: add missed clk_disable_unprepare in error path of emac_clks_phase1_init (git-fixes). - net: qualcomm: rmnet: Fix incorrect receive packet handling during cleanup (git-fixes). - net: sched: disable TCQ_F_NOLOCK for pfifo_fast (bsc#1183405) - net: smc911x: Adjust indentation in smc911x_phy_configure (git-fixes). - net: spider_net: Fix the size used in a 'dma_free_coherent()' call (git-fixes). - net: stmmac: Fix incorrect location to set real_num_rx|tx_queues (git-fixes). - net: stmmac: Use rtnl_lock/unlock on netif_set_real_num_rx_queues() call (git-fixes). - net: stmmac: fix missing IFF_MULTICAST check in dwmac4_set_filter (git-fixes). - net: stmmac: removed enabling eee in EEE set callback (git-fixes). - net: stmmac: use netif_tx_start|stop_all_queues() function (git-fixes). - net: stmmac: xgmac: fix missing IFF_MULTICAST checki in dwxgmac2_set_filter (git-fixes). - net: thunderx: Fix unintentional sign extension issue (git-fixes). - net: tulip: Adjust indentation in {dmfe, uli526x}_init_module (git-fixes). - net: usb: ax88179_178a: fix missing stop entry in driver_info (git-fixes). - net: usb: fix memory leak in smsc75xx_bind (git-fixes). - net: usb: qmi_wwan: allow qmimux add/del with master up (git-fixes). - net: usb: qmi_wwan: support ZTE P685M modem (git-fixes). - net: wan/lmc: unregister device when no matching device is found (git-fixes). - net:nfc:digital: Fix a double free in digital_tg_recv_dep_req (git-fixes). - netdevice: Add missing IFF_PHONY_HEADROOM self-definition (git-fixes). - netdevsim: init u64 stats for 32bit hardware (git-fixes). - netfilter: conntrack: Make global sysctls readonly in non-init netns (bsc#1176447). - netfilter: conntrack: add new sysctl to disable RST check (bsc#1183947 bsc#1185950). - netfilter: conntrack: avoid misleading 'invalid' in log message (bsc#1183947 bsc#1185950). - netfilter: conntrack: improve RST handling when tuple is re-used (bsc#1183947 bsc#1185950). - netfilter: flowtable: Make sure GC works periodically in idle system (bsc#1176447). - netfilter: flowtable: fix NAT IPv6 offload mangling (bsc#1176447). - netfilter: nftables: allow to update flowtable flags (bsc#1176447). - netfilter: nftables: report EOPNOTSUPP on unsupported flowtable flags (bsc#1176447). - netsec: restore phy power state after controller reset (bsc#1183757). - nfc: pn533: prevent potential memory corruption (git-fixes). - nfp: devlink: initialize the devlink port attribute "lanes" (bsc#1176447). - nfp: flower: add ipv6 bit to pre_tunnel control message (bsc#1176447). - nfp: flower: fix pre_tun mask id allocation (bsc#1154353). - nfp: flower: ignore duplicate merge hints from FW (git-fixes). - node: fix device cleanups in error handling code (git-fixes). - null_blk: fix passing of REQ_FUA flag in null_handle_rq (git-fixes). - nvme-core: add cancel tagset helpers (bsc#1183976). - nvme-fabrics: decode host pathing error for connect (bsc#1179827). - nvme-fabrics: fix kato initialization (bsc#1182591). - nvme-fabrics: only reserve a single tag (bsc#1182077). - nvme-fabrics: reject I/O to offline device (bsc#1181161). - nvme-fc: check sgl supported by target (bsc#1179827). - nvme-fc: clear q_live at beginning of association teardown (bsc#1186479). - nvme-fc: fix racing controller reset and create association (bsc#1183048). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1180197). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1184259). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1180197). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1184259). - nvme-fc: short-circuit reconnect retries (bsc#1179827). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259). - nvme-multipath: reset bdev to ns head when failover (bsc#178378 bsc#1182999). - nvme-pci: Remove tag from process cq (git-fixes). - nvme-pci: Remove two-pass completions (git-fixes). - nvme-pci: Simplify nvme_poll_irqdisable (git-fixes). - nvme-pci: align io queue count with allocted nvme_queue in (git-fixes). - nvme-pci: avoid race between nvme_reap_pending_cqes() and nvme_poll() (git-fixes). - nvme-pci: dma read memory barrier for completions (git-fixes). - nvme-pci: fix "slimmer CQ head update" (git-fixes). - nvme-pci: make sure write/poll_queues less or equal then cpu (git-fixes). - nvme-pci: remove last_sq_tail (git-fixes). - nvme-pci: remove volatile cqes (git-fixes). - nvme-pci: slimmer CQ head update (git-fixes). - nvme-pci: use simple suspend when a HMB is enabled (git-fixes). - nvme-tcp: Fix possible race of io_work and direct send (git-fixes). - nvme-tcp: Fix warning with CONFIG_DEBUG_PREEMPT (git-fixes). - nvme-tcp: add clean action for failed reconnection (bsc#1183976). - nvme-tcp: fix kconfig dependency warning when !CRYPTO (git-fixes). - nvme-tcp: fix misuse of __smp_processor_id with preemption (git-fixes). - nvme-tcp: fix possible hang waiting for icresp response (bsc#1179519). - nvme-tcp: fix possible hang when failing to set io queues (bsc#1181161). - nvme-tcp: use cancel tagset helper for tear down (bsc#1183976). - nvme: Fix NULL dereference for pci nvme controllers (bsc#1182378). - nvme: add 'kato' sysfs attribute (bsc#1179825). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1180197). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1184259). - nvme: allocate the keep alive request using BLK_MQ_REQ_NOWAIT (bsc#1182077). - nvme: call nvme_identify_ns as the first thing in nvme_alloc_ns_block (bsc#1180197). - nvme: clean up the check for too large logic block sizes (bsc#1180197). - nvme: define constants for identification values (git-fixes). - nvme: do not intialize hwmon for discovery controllers (bsc#1184259). - nvme: do not intialize hwmon for discovery controllers (git-fixes). - nvme: document nvme controller states (git-fixes). - nvme: explicitly update mpath disk capacity on revalidation (git-fixes). - nvme: expose reconnect_delay and ctrl_loss_tmo via sysfs (bsc#1182378). - nvme: factor out a nvme_configure_metadata helper (bsc#1180197). - nvme: fix controller instance leak (git-fixes). - nvme: fix deadlock in disconnect during scan_work and/or ana_work (git-fixes). - nvme: fix initialization of the zone bitmaps (bsc#1180197). - nvme: fix possible deadlock when I/O is blocked (git-fixes). - nvme: freeze the queue over ->lba_shift updates (bsc#1180197). - nvme: lift the check for an unallocated namespace into nvme_identify_ns (bsc#1180197). - nvme: merge nvme_keep_alive into nvme_keep_alive_work (bsc#1182077). - nvme: move nvme_validate_ns (bsc#1180197). - nvme: opencode revalidate_disk in nvme_validate_ns (bsc#1180197). - nvme: query namespace identifiers before adding the namespace (bsc#1180197). - nvme: refactor nvme_validate_ns (bsc#1180197). - nvme: remove nvme_identify_ns_list (bsc#1180197). - nvme: remove nvme_update_formats (bsc#1180197). - nvme: remove superfluous else in nvme_ctrl_loss_tmo_store (bsc#1182378). - nvme: remove the 0 lba_shift check in nvme_update_ns_info (bsc#1180197). - nvme: remove the disk argument to nvme_update_zone_info (bsc#1180197). - nvme: rename __nvme_revalidate_disk (bsc#1180197). - nvme: rename _nvme_revalidate_disk (bsc#1180197). - nvme: rename nvme_validate_ns to nvme_validate_or_alloc_ns (bsc#1180197). - nvme: retrigger ANA log update if group descriptor isn't found (git-fixes) - nvme: return an error if nvme_set_queue_count() fails (bsc#1180197). - nvme: revalidate zone bitmaps in nvme_update_ns_info (bsc#1180197). - nvme: sanitize KATO setting (bsc#1179825). - nvme: set the queue limits in nvme_update_ns_info (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1184259). - nvme: update the known admin effects (bsc#1180197). - nvmet-rdma: Fix list_del corruption on queue establishment failure (bsc#1183501). - nvmet: fix a memory leak (git-fixes). - nvmet: seset ns->file when open fails (bsc#1183873). - nvmet: use new ana_log_size instead the old one (bsc#1184259). - nxp-i2c: restore includes for kABI (bsc#1185589). - nxp-nci: add NXP1002 id (bsc#1185589). - ocfs2: fix a use after free on error (bsc#1184738). - ovl: fix dentry leak in ovl_get_redirect (bsc#1184176). - ovl: fix out of date comment and unreachable code (bsc#1184176). - ovl: fix regression with re-formatted lower squashfs (bsc#1184176). - ovl: fix unneeded call to ovl_change_flags() (bsc#1184176). - ovl: fix value of i_ino for lower hardlink corner case (bsc#1184176). - ovl: initialize error in ovl_copy_xattr (bsc#1184176). - ovl: relax WARN_ON() when decoding lower directory file handle (bsc#1184176). - partitions/ibm: fix non-DASD devices (bsc#1185857 LTC#192526). - pata_arasan_cf: fix IRQ check (git-fixes). - pata_ipx4xx_cf: fix IRQ check (git-fixes). - perf/amd/uncore: Fix sysfs type mismatch (bsc#1178134). - phy: marvell: ARMADA375_USBCLUSTER_PHY should not default to y, unconditionally (git-fixes). - phy: phy-twl4030-usb: Fix possible use-after-free in twl4030_usb_remove() (git-fixes). - pinctrl: Ingenic: Add missing pins to the JZ4770 MAC MII group (git-fixes). - pinctrl: core: Fix kernel doc string for pin_get_name() (git-fixes). - pinctrl: ingenic: Improve unreachable code generation (git-fixes). - pinctrl: lewisburg: Update number of pins in community (git-fixes). - pinctrl: qcom: spmi-gpio: fix warning about irq chip reusage (git-fixes). - pinctrl: rockchip: fix restore error in resume (git-fixes). - pinctrl: samsung: use 'int' for register masks in Exynos (git-fixes). - platform/mellanox: mlxbf-tmfifo: Fix a memory barrier issue (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_KBD_DOCK quirk for the Aspire Switch 10E SW3-016 (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_SET_FUNCTION_MODE capability flag (git-fixes). - platform/x86: acer-wmi: Add new force_caps module parameter (git-fixes). - platform/x86: acer-wmi: Add support for SW_TABLET_MODE on Switch devices (git-fixes). - platform/x86: acer-wmi: Cleanup ACER_CAP_FOO defines (git-fixes). - platform/x86: acer-wmi: Cleanup accelerometer device handling (git-fixes). - platform/x86: intel-hid: Support Lenovo ThinkPad X1 Tablet Gen 2 (git-fixes). - platform/x86: intel-vbtn: Stop reporting SW_DOCK events (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_pmc_core: Do not use global pmcdev in quirks (git-fixes). - platform/x86: intel_pmt_crashlog: Fix incorrect macros (git-fixes). - platform/x86: pmc_atom: Match all Beckhoff Automation baytrail boards with critclk_systems DMI table (git-fixes). - platform/x86: thinkpad_acpi: Allow the FnLock LED to change state (git-fixes). - platform/x86: thinkpad_acpi: Correct thermal sensor allocation (git-fixes). - posix-timers: Preserve return value in clock_adjtime32() (git-fixes) - post.sh: Return an error when module update fails (bsc#1047233 bsc#1184388). - power: supply: Use IRQF_ONESHOT (git-fixes). - power: supply: generic-adc-battery: fix possible use-after-free in gab_remove() (git-fixes). - power: supply: s3c_adc_battery: fix possible use-after-free in s3c_adc_bat_remove() (git-fixes). - powerepc/book3s64/hash: Align start/end address correctly with bolt mapping (bsc#1184957). - powerpc/64s/exception: Clean up a missed SRR specifier (jsc#SLE-9246 git-fixes). - powerpc/64s: Fix crashes when toggling entry flush barrier (bsc#1177666 git-fixes). - powerpc/64s: Fix crashes when toggling stf barrier (bsc#1087082 git-fixes). - powerpc/64s: Fix instruction encoding for lis in ppc_function_entry() (bsc#1065729). - powerpc/64s: Fix pte update for kernel memory on radix (bsc#1055117 git-fixes). - powerpc/asm-offsets: GPR14 is not needed either (bsc#1065729). - powerpc/book3s64/radix: Remove WARN_ON in destroy_context() (bsc#1183692 ltc#191963). - powerpc/eeh: Fix EEH handling for hugepages in ioremap space (bsc#1156395). - powerpc/fadump: Mark fadump_calculate_reserve_size as __init (bsc#1065729). - powerpc/kexec_file: Use current CPU info while setting up FDT (bsc#1184615 ltc#189835). - powerpc/kuap: Restore AMR after replaying soft interrupts (bsc#1156395). - powerpc/mm: Add cond_resched() while removing hpte mappings (bsc#1183289 ltc#191637). - powerpc/papr_scm: Fix build error due to wrong printf specifier (bsc#1184969). - powerpc/papr_scm: Implement support for H_SCM_FLUSH hcall (bsc#1184969). - powerpc/perf: Fix PMU constraint check for EBB events (bsc#1065729). - powerpc/perf: Fix sampled instruction type for larx/stcx (jsc#SLE-13513). - powerpc/perf: Fix the threshold event selection for memory events in power10 (jsc#SLE-13513). - powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - powerpc/prom: Mark identical_pvr_fixup as __init (bsc#1065729). - powerpc/pseries/mobility: handle premature return from H_JOIN (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/mobility: use struct for shared state (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/ras: Remove unused variable 'status' (bsc#1065729). - powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - powerpc/pseries: Do not trace hcall tracing wrapper (bsc#1185110 ltc#192091). - powerpc/pseries: Fix hcall tracing recursion in pv queued spinlocks (bsc#1185110 ltc#192091). - powerpc/pseries: use notrace hcall variant for H_CEDE idle (bsc#1185110 ltc#192091). - powerpc/pseries: warn if recursing into the hcall tracing code (bsc#1185110 ltc#192091). - powerpc/smp: Reintroduce cpu_core_mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Fix darn emulation (bsc#1156395). - powerpc/sstep: Fix incorrect return from analyze_instr() (bsc#1156395). - powerpc/sstep: Fix load-store and update emulation (bsc#1156395). - powerpc/time: Enable sched clock for irqtime (bsc#1156395). - powerpc/uaccess: Avoid might_fault() when user access is enabled (bsc#1156395). - powerpc/uaccess: Perform barrier_nospec() in KUAP allowance helpers (bsc#1156395). - powerpc/uaccess: Simplify unsafe_put_user() implementation (bsc#1156395). - powerpc/xive: Drop check on irq_data in xive_core_debug_show() (bsc#1177437 ltc#188522 jsc#SLE-13294 git-fixes). - powerpc/xmon: Fix build failure for 8xx (jsc#SLE-12936 git-fixes). - powerpc: Fix inverted SET_FULL_REGS bitop (jsc#SLE-9246 git-fixes). - powerpc: Fix missing declaration ofable_kernel_vsx() (git-fixes). - proc: fix lookup in /proc/net subdirectories after setns(2) (git-fixes). - qlcnic: fix error return code in qlcnic_83xx_restart_hw() (git-fixes). - qtnfmac: Fix possible buffer overflow in qtnf_event_handle_external_auth (git-fixes). - qxl: Fix uninitialised struct field head.surface_id (git-fixes). - r8169: do not advertise pause in jumbo mode (git-fixes). - r8169: fix DMA being used after buffer free if WoL is enabled (git-fixes). - r8169: tweak max read request size for newer chips also in jumbo mtu mode (git-fixes). - regmap: set debugfs_name to NULL after it is freed (git-fixes). - regulator: Avoid a double 'of_node_get' in 'regulator_of_get_init_node()' (git-fixes). - regulator: bd9571mwv: Fix AVS and DVFS voltage range (git-fixes). - reintroduce cqhci_suspend for kABI (git-fixes). - reiserfs: update reiserfs_xattrs_initialized() condition (bsc#1184737). - rsi: Fix TX EAPOL packet handling against iwlwifi AP (git-fixes). - rsi: Move card interrupt handling to RX thread (git-fixes). - rsi: Use resume_noirq for SDIO (git-fixes). - rsxx: remove extraneous 'const' qualifier (git-fixes). - rtc: ds1307: Fix wday settings for rx8130 (git-fixes). - rtc: fsl-ftm-alarm: add MODULE_TABLE() (bsc#1185454). - rtc: fsl-ftm-alarm: avoid struct rtc_time conversions (bsc#1185454). - rtc: fsl-ftm-alarm: enable acpi support (bsc#1185454). - rtc: fsl-ftm-alarm: fix freeze(s2idle) failed to wake (bsc#1185454). - rtc: fsl-ftm-alarm: report alarm to core (bsc#1185454). - rtc: fsl-ftm-alarm: switch to ktime_get_real_seconds (bsc#1185454). - rtc: fsl-ftm-alarm: switch to rtc_time64_to_tm/rtc_tm_to_time64 (bsc#1185454). - rtc: fsl-ftm-alarm: update acpi device id (bsc#1185454). - rtc: pcf2127: add alarm support (bsc#1185233). - rtc: pcf2127: add pca2129 device id (bsc#1185233). - rtc: pcf2127: add tamper detection support (bsc#1185233). - rtc: pcf2127: add watchdog feature support (bsc#1185233). - rtc: pcf2127: bugfix: watchdog build dependency (bsc#1185233). - rtc: pcf2127: cleanup register and bit defines (bsc#1185233). - rtc: pcf2127: convert to devm_rtc_allocate_device (bsc#1185233). - rtc: pcf2127: fix a bug when not specify interrupts property (bsc#1185233). - rtc: pcf2127: fix alarm handling (bsc#1185233). - rtc: pcf2127: fix pcf2127_nvmem_read/write() returns (bsc#1185233). - rtc: pcf2127: handle boot-enabled watchdog feature (bsc#1185233). - rtc: pcf2127: handle timestamp interrupts (bsc#1185495). - rtc: pcf2127: let the core handle rtc range (bsc#1185233). - rtc: pcf2127: move watchdog initialisation to a separate function (bsc#1185233). - rtc: pcf2127: only use watchdog when explicitly available (bsc#1185233). - rtc: pcf2127: properly set flag WD_CD for rtc chips(pcf2129, pca2129) (bsc#1185233). - rtc: pcf2127: remove unnecessary #ifdef (bsc#1185233). - rtc: pcf2127: set regmap max_register (bsc#1185233). - rtc: pcf2127: watchdog: handle nowayout feature (bsc#1185233). - rtlwifi: 8821ae: upgrade PHY and RF parameters (git-fixes). - rtw88: Fix an error code in rtw_debugfs_set_rsvd_page() (git-fixes). - rtw88: Fix array overrun in rtw_get_tx_power_params() (git-fixes). - rtw88: coex: 8821c: correct antenna switch function (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/crypto: return -EFAULT if copy_to_user() fails (git-fixes). - s390/dasd: fix hanging DASD driver unbind (bsc#1183932 LTC#192153). - s390/dasd: fix hanging IO request during DASD driver unbind (git-fixes). - s390/entry: save the caller of psw_idle (bsc#1185677). - s390/ipl: support NVMe IPL kernel parameters (bsc#1185980 LTC#192679). - s390/kdump: fix out-of-memory with PCI (bsc#1182257 LTC#191375). - s390/pci: fix leak of PCI device structure (git-fixes). - s390/qeth: fix memory leak after failed TX Buffer allocation (git-fixes). - s390/qeth: fix notification for pending buffers during teardown (git-fixes). - s390/qeth: improve completion of pending TX buffers (git-fixes). - s390/qeth: schedule TX NAPI on QAOB completion (git-fixes). - s390/vtime: fix increased steal time accounting (bsc#1183859). - s390/zcrypt: return EIO when msg retry limit reached (git-fixes). - samples, bpf: Add missing munmap in xdpsock (bsc#1155518). - samples/bpf: Fix possible hang in xdpsock with multiple threads (bsc#1155518). - sata_mv: add IRQ checks (git-fixes). - sched/eas: Do not update misfit status if the task is pinned (git-fixes) - sched/fair: Avoid stale CPU util_est value for schedutil in (git-fixes) - sched/fair: Fix shift-out-of-bounds in load_balance() (git fixes (sched)). - sched/fair: Fix unfairness caused by missing load decay (git-fixes) - scripts/git_sort/git_sort.py: add bpf git repo - scsi: aacraid: Improve compat_ioctl handlers (bsc#1186352). - scsi: block: Fix a race in the runtime power management code (git-fixes). - scsi: core: Only return started requests from scsi_host_find_tag() (bsc#1179851). - scsi: core: Run queue in case of I/O resource contention failure (bsc#1186416). - scsi: core: add scsi_host_busy_iter() (bsc#1179851). - scsi: fnic: Kill 'exclude_id' argument to fnic_cleanup_io() (bsc#1179851). - scsi: fnic: Remove bogus ratelimit messages (bsc#1183249). - scsi: libfc: Avoid invoking response handler twice if ep is already completed (bsc#1186573). - scsi: lpfc: Add a option to enable interlocked ABTS before job completion (bsc#1186451). - scsi: lpfc: Add ndlp kref accounting for resume RPI path (bsc#1186451). - scsi: lpfc: Change wording of invalid pci reset log message (bsc#1182574). - scsi: lpfc: Copyright updates for 12.8.0.9 patches (bsc#1185472). - scsi: lpfc: Correct function header comments related to ndlp reference counting (bsc#1182574). - scsi: lpfc: Eliminate use of LPFC_DRIVER_NAME in lpfc_attr.c (bsc#1185472). - scsi: lpfc: Fix "Unexpected timeout" error in direct attach topology (bsc#1186451). - scsi: lpfc: Fix ADISC handling that never frees nodes (bsc#1182574). - scsi: lpfc: Fix DMA virtual address ptr assignment in bsg (bsc#1185365). - scsi: lpfc: Fix FLOGI failure due to accessing a freed node (bsc#1182574). - scsi: lpfc: Fix NMI crash during rmmod due to circular hbalock dependency (bsc#1185472). - scsi: lpfc: Fix Node recovery when driver is handling simultaneous PLOGIs (bsc#1186451). - scsi: lpfc: Fix PLOGI ACC to be transmit after REG_LOGIN (bsc#1182574). - scsi: lpfc: Fix a bunch of kernel-doc issues (bsc#1185472). - scsi: lpfc: Fix a bunch of kernel-doc misdemeanours (bsc#1185472). - scsi: lpfc: Fix a bunch of misnamed functions (bsc#1185472). - scsi: lpfc: Fix a few incorrectly named functions (bsc#1185472). - scsi: lpfc: Fix a typo (bsc#1185472). - scsi: lpfc: Fix bad memory access during VPD DUMP mailbox command (bsc#1186451). - scsi: lpfc: Fix crash caused by switch reboot (bsc#1182574). - scsi: lpfc: Fix crash when a REG_RPI mailbox fails triggering a LOGO response (bsc#1185472). - scsi: lpfc: Fix crash when lpfc_sli4_hba_setup() fails to initialize the SGLs (bsc#1186451). - scsi: lpfc: Fix dropped FLOGI during pt2pt discovery recovery (bsc#1182574). - scsi: lpfc: Fix error handling for mailboxes completed in MBX_POLL mode (bsc#1185472). - scsi: lpfc: Fix formatting and misspelling issues (bsc#1185472). - scsi: lpfc: Fix gcc -Wstringop-overread warning (bsc#1185472). - scsi: lpfc: Fix illegal memory access on Abort IOCBs (bsc#1183203). - scsi: lpfc: Fix incorrect dbde assignment when building target abts wqe (bsc#1182574). - scsi: lpfc: Fix incorrect naming of __lpfc_update_fcf_record() (bsc#1185472). - scsi: lpfc: Fix incorrectly documented function lpfc_debugfs_commonxripools_data() (bsc#1185472). - scsi: lpfc: Fix kernel-doc formatting issue (bsc#1185472). - scsi: lpfc: Fix lack of device removal on port swaps with PRLIs (bsc#1185472). - scsi: lpfc: Fix lpfc_els_retry() possible null pointer dereference (bsc#1182574). - scsi: lpfc: Fix lpfc_hdw_queue attribute being ignored (bsc#1185472). - scsi: lpfc: Fix missing FDMI registrations after Mgmt Svc login (bsc#1185472). - scsi: lpfc: Fix node handling for Fabric Controller and Domain Controller (bsc#1186451). - scsi: lpfc: Fix nodeinfo debugfs output (bsc#1182574). - scsi: lpfc: Fix non-optimized ERSP handling (bsc#1186451). - scsi: lpfc: Fix null pointer dereference in lpfc_prep_els_iocb() (bsc#1182574). - scsi: lpfc: Fix pt2pt connection does not recover after LOGO (bsc#1182574). - scsi: lpfc: Fix pt2pt state transition causing rmmod hang (bsc#1182574). - scsi: lpfc: Fix reference counting errors in lpfc_cmpl_els_rsp() (bsc#1185472). - scsi: lpfc: Fix reftag generation sizing errors (bsc#1182574). - scsi: lpfc: Fix rmmod crash due to bad ring pointers to abort_iotag (bsc#1185472). - scsi: lpfc: Fix silent memory allocation failure in lpfc_sli4_bsg_link_diag_test() (bsc#1185472). - scsi: lpfc: Fix some error codes in debugfs (bsc#1185472). - scsi: lpfc: Fix stale node accesses on stale RRQ request (bsc#1182574). - scsi: lpfc: Fix status returned in lpfc_els_retry() error exit path (bsc#1182574). - scsi: lpfc: Fix unnecessary null check in lpfc_release_scsi_buf (bsc#1182574). - scsi: lpfc: Fix unreleased RPIs when NPIV ports are created (bsc#1186451). - scsi: lpfc: Fix use after free in lpfc_els_free_iocb (bsc#1182574). - scsi: lpfc: Fix use-after-free on unused nodes after port swap (bsc#1185472). - scsi: lpfc: Fix various trivial errors in comments and log messages (bsc#1185472). - scsi: lpfc: Fix vport indices in lpfc_find_vport_by_vpid() (bsc#1182574). - scsi: lpfc: Ignore GID-FT response that may be received after a link flip (bsc#1186451). - scsi: lpfc: Reduce LOG_TRACE_EVENT logging for vports (bsc#1182574). - scsi: lpfc: Remove unsupported mbox PORT_CAPABILITIES logic (bsc#1185472). - scsi: lpfc: Reregister FPIN types if ELS_RDF is received from fabric controller (bsc#1186451). - scsi: lpfc: Standardize discovery object logging format (bsc#1185472). - scsi: lpfc: Update copyrights for 12.8.0.7 and 12.8.0.8 changes (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.10 (bsc#1186451). - scsi: lpfc: Update lpfc version to 12.8.0.8 (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.9 (bsc#1185472). - scsi: mpt3sas: Only one vSES is present even when IOC has multi vSES (bsc#1185954). - scsi: pm80xx: Do not sleep in atomic context (bsc#1186353). - scsi: pm80xx: Fix chip initialization failure (bsc#1186354). - scsi: pm80xx: Fix potential infinite loop (bsc#1186354). - scsi: pm80xx: Increase timeout for pm80xx mpi_uninit_check() (bsc#1186355). - scsi: qla2xxx: Add H:C:T info in the log message for fc ports (bsc#1185491). - scsi: qla2xxx: Add error counters to debugfs node (bsc#1185491). - scsi: qla2xxx: Always check the return value of qla24xx_get_isp_stats() (bsc#1185491). - scsi: qla2xxx: Assign boolean values to a bool variable (bsc#1185491). - scsi: qla2xxx: Check kzalloc() return value (bsc#1185491). - scsi: qla2xxx: Consolidate zio threshold setting for both FCP & NVMe (bsc#1185491). - scsi: qla2xxx: Constify struct qla_tgt_func_tmpl (bsc#1185491). - scsi: qla2xxx: Do logout even if fabric scan retries got exhausted (bsc#1185491). - scsi: qla2xxx: Enable NVMe CONF (BIT_7) when enabling SLER (bsc#1185491). - scsi: qla2xxx: Fix IOPS drop seen in some adapters (bsc#1185491). - scsi: qla2xxx: Fix RISC RESET completion polling (bsc#1185491). - scsi: qla2xxx: Fix a couple of misdocumented functions (bsc#1185491). - scsi: qla2xxx: Fix a couple of misnamed functions (bsc#1185491). - scsi: qla2xxx: Fix broken #endif placement (bsc#1185491). - scsi: qla2xxx: Fix crash in PCIe error handling (bsc#1185491). - scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand() (bsc#1185491). - scsi: qla2xxx: Fix endianness annotations (bsc#1185491). - scsi: qla2xxx: Fix incorrectly named function qla8044_check_temp() (bsc#1185491). - scsi: qla2xxx: Fix mailbox Ch erroneous error (bsc#1185491). - scsi: qla2xxx: Fix mailbox recovery during PCIe error (bsc#1185491). - scsi: qla2xxx: Fix some incorrect formatting/spelling issues (bsc#1185491). - scsi: qla2xxx: Fix some memory corruption (bsc#1185491). - scsi: qla2xxx: Fix stuck session (bsc#1185491). - scsi: qla2xxx: Fix use after free in bsg (bsc#1185491). - scsi: qla2xxx: Implementation to get and manage host, target stats and initiator port (bsc#1185491). - scsi: qla2xxx: Move some messages from debug to normal log level (bsc#1185491). - scsi: qla2xxx: Remove redundant NULL check (bsc#1185491). - scsi: qla2xxx: Remove unnecessary NULL check (bsc#1185491). - scsi: qla2xxx: Remove unneeded if-null-free check (bsc#1185491). - scsi: qla2xxx: Replace __qla2x00_marker()'s missing underscores (bsc#1185491). - scsi: qla2xxx: Reserve extra IRQ vectors (bsc#1184436). - scsi: qla2xxx: Reuse existing error handling path (bsc#1185491). - scsi: qla2xxx: Simplify if statement (bsc#1185491). - scsi: qla2xxx: Simplify qla8044_minidump_process_control() (bsc#1185491). - scsi: qla2xxx: Simplify the calculation of variables (bsc#1185491). - scsi: qla2xxx: Suppress Coverity complaints about dseg_r* (bsc#1185491). - scsi: qla2xxx: Update default AER debug mask (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.105-k (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.106-k (bsc#1185491). - scsi: qla2xxx: Use dma_pool_zalloc() (bsc#1185491). - scsi: qla2xxx: Wait for ABTS response on I/O timeouts for NVMe (bsc#1185491). - scsi: qla2xxx: fc_remote_port_chkready() returns a SCSI result value (bsc#1185491). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: target: pscsi: Avoid OOM in pscsi_map_sg() (bsc#1183843). - scsi: target: pscsi: Clean up after failure in pscsi_map_sg() (bsc#1183843). - scsi: target: tcmu: Fix use-after-free of se_cmd->priv (bsc#1186356). - scsi: target: tcmu: Fix warning: 'page' may be used uninitialized (bsc#1186357). - sctp: delay auto_asconf init until binding the first addr (&lt;cover.1620748346.git.mkubecek@suse.cz>). - security: keys: trusted: fix TPM2 authorizations (git-fixes). - selftests/bpf: Fix BPF_CORE_READ_BITFIELD() macro (bsc#1177028). - selftests/bpf: Fix the ASSERT_ERR_PTR macro (bsc#1177028). - selftests/bpf: Mask bpf_csum_diff() return value to 16 bits in test_verifier (bsc#1155518). - selftests/bpf: No need to drop the packet when there is no geneve opt (bsc#1155518). - selftests/bpf: Re-generate vmlinux.h and BPF skeletons if bpftool changed (bsc#1177028). - selftests/bpf: Set gopt opt_class to 0 if get tunnel opt failed (bsc#1155518). - selftests/powerpc: Add pkey helpers for rights (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for execute-disabled pkeys (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for pkey siginfo verification (bsc#1184934 ltc#191460). - selftests/powerpc: Add wrapper for gettid (bsc#1184934 ltc#191460). - selftests/powerpc: Fix L1D flushing tests for Power10 (bsc#1184934 ltc#191460). - selftests/powerpc: Fix exit status of pkey tests (bsc#1184934 ltc#191460). - selftests/powerpc: Fix pkey syscall redefinitions (bsc#1184934 ltc#191460). - selftests/powerpc: Move pkey helpers to headers (bsc#1184934 ltc#191460). - selftests/powerpc: refactor entry and rfi_flush tests (bsc#1184934 ltc#191460). - selftests: mlxsw: Remove a redundant if statement in tc_flower_scale test (bsc#1176774). - selinux: Fix error return code in sel_ib_pkey_sid_slow() (git-fixes). - selinux: fix error initialization in inode_doinit_with_dentry() (git-fixes). - selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handling (git-fixes). - serial: core: fix suspicious security_locked_down() call (git-fixes). - serial: core: return early on unsupported ioctls (git-fixes). - serial: sh-sci: Fix off-by-one error in FIFO threshold register setting (git-fixes). - serial: stm32: fix incorrect characters on console (git-fixes). - serial: stm32: fix tx_empty condition (git-fixes). - serial: tegra: Fix a mask operation that is always true (git-fixes). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1183540). - smb3: add dynamic trace point to trace when credits obtained (bsc#1181507). - smb3: fix crediting for compounding when only one request in flight (bsc#1181507). - smc: disallow TCP_ULP in smc_setsockopt() (git-fixes). - soc/fsl: qbman: fix conflicting alignment attributes (git-fixes). - soc: aspeed: fix a ternary sign expansion bug (git-fixes). - soc: fsl: qe: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - soc: qcom: mdt_loader: Detect truncated read of segments (git-fixes). - soc: qcom: mdt_loader: Validate that p_filesz &lt; p_memsz (git-fixes). - software node: Fix node registration (git-fixes). - soundwire: bus: Fix device found flag correctly (git-fixes). - soundwire: stream: fix memory leak in stream config error path (git-fixes). - spi: Introduce dspi_slave_abort() function for NXP's dspi SPI driver (bsc#1167260). - spi: ath79: always call chipselect function (git-fixes). - spi: ath79: remove spi-master setup and cleanup assignment (git-fixes). - spi: cadence: set cqspi to the driver_data field of struct device (git-fixes). - spi: dln2: Fix reference leak to master (git-fixes). - spi: fsl-dspi: fix NULL pointer dereference (bsc#1167260). - spi: fsl-dspi: fix use-after-free in remove path (bsc#1167260). - spi: fsl-dspi: fix wrong pointer in suspend/resume (bsc#1167260). - spi: fsl-lpspi: Fix PM reference leak in lpspi_prepare_xfer_hardware() (git-fixes). - spi: omap-100k: Fix reference leak to master (git-fixes). - spi: qup: fix PM reference leak in spi_qup_remove() (git-fixes). - spi: spi-fsl-dspi: Accelerate transfers using larger word size if possible (bsc#1167260). - spi: spi-fsl-dspi: Add comments around dspi_pop_tx and dspi_push_rx functions (bsc#1167260). - spi: spi-fsl-dspi: Add support for LS1028A (bsc#1167260). - spi: spi-fsl-dspi: Adding shutdown hook (bsc#1167260). - spi: spi-fsl-dspi: Always use the TCFQ devices in poll mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid NULL pointer in dspi_slave_abort for non-DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid reading more data than written in EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Change usage pattern of SPI_MCR_* and SPI_CTAR_* macros (bsc#1167260). - spi: spi-fsl-dspi: Convert TCFQ users to XSPI FIFO mode (bsc#1167260). - spi: spi-fsl-dspi: Convert the instantiations that support it to DMA (bsc#1167260). - spi: spi-fsl-dspi: Demistify magic value in SPI_SR_CLEAR (bsc#1167260). - spi: spi-fsl-dspi: Do not access reserved fields in SPI_MCR (bsc#1167260). - spi: spi-fsl-dspi: Do not mask off undefined bits (bsc#1167260). - spi: spi-fsl-dspi: Exit the ISR with IRQ_NONE when it's not ours (bsc#1167260). - spi: spi-fsl-dspi: Fix 16-bit word order in 32-bit XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Fix a resource leak in an error handling path (git-fixes). - spi: spi-fsl-dspi: Fix bits-per-word acceleration in DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Fix code alignment (bsc#1167260). - spi: spi-fsl-dspi: Fix external abort on interrupt in resume or exit paths (bsc#1167260). - spi: spi-fsl-dspi: Fix interrupt-less DMA mode taking an XSPI code path (bsc#1167260). - spi: spi-fsl-dspi: Fix little endian access to PUSHR CMD and TXDATA (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is removed during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is shutdown during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix race condition in TCFQ/EOQ interrupt (bsc#1167260). - spi: spi-fsl-dspi: Fix typos (bsc#1167260). - spi: spi-fsl-dspi: Free DMA memory with matching function (bsc#1167260). - spi: spi-fsl-dspi: Implement .max_message_size method for EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Initialize completion before possible interrupt (bsc#1167260). - spi: spi-fsl-dspi: LS2080A and LX2160A support XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Make bus-num property optional (bsc#1167260). - spi: spi-fsl-dspi: Move dspi_interrupt above dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Move invariant configs out of dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Optimize dspi_setup_accel for lowest interrupt count (bsc#1167260). - spi: spi-fsl-dspi: Parameterize the FIFO size and DMA buffer size (bsc#1167260). - spi: spi-fsl-dspi: Protect against races on dspi->words_in_flight (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation in dspi_release_dma() (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation level in dspi_interrupt (bsc#1167260). - spi: spi-fsl-dspi: Remove impossible to reach error check (bsc#1167260). - spi: spi-fsl-dspi: Remove pointless assignment of master->transfer to NULL (bsc#1167260). - spi: spi-fsl-dspi: Remove unused chip->void_write_data (bsc#1167260). - spi: spi-fsl-dspi: Remove unused defines and includes (bsc#1167260). - spi: spi-fsl-dspi: Remove unused initialization of 'ret' in dspi_probe (bsc#1167260). - spi: spi-fsl-dspi: Rename fifo_{read,write} and {tx,cmd}_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Replace interruptible wait queue with a simple completion (bsc#1167260). - spi: spi-fsl-dspi: Replace legacy spi_master names with spi_controller (bsc#1167260). - spi: spi-fsl-dspi: Simplify bytes_per_word gymnastics (bsc#1167260). - spi: spi-fsl-dspi: Take software timestamp in dspi_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Use BIT() and GENMASK() macros (bsc#1167260). - spi: spi-fsl-dspi: Use EOQ for last word in buffer even for XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Use dma_request_chan() instead dma_request_slave_channel() (bsc#1167260). - spi: spi-fsl-dspi: Use poll mode in case the platform IRQ is missing (bsc#1167260). - spi: spi-fsl-dspi: Use reverse Christmas tree declaration order (bsc#1167260). - spi: spi-fsl-dspi: Use specific compatible strings for all SoC instantiations (bsc#1167260). - spi: spi-fsl-dspi: delete EOQ transfer mode (bsc#1167260). - spi: spi-fsl-dspi: fix DMA mapping (bsc#1167260). - spi: spi-fsl-dspi: fix native data copy (bsc#1167260). - spi: spi-fsl-dspi: remove git-fixes Remove git-fixes. Prepare to update the driver. References: bsc#1167260 - spi: spi-fsl-dspi: set ColdFire to DMA mode (bsc#1167260). - spi: spi-fsl-dspi: use XSPI mode instead of DMA for DPAA2 SoCs (bsc#1167260). - spi: spi-ti-qspi: Free DMA resources (git-fixes). - spi: stm32: make spurious and overrun interrupts visible (git-fixes). - squashfs: fix inode lookup sanity checks (bsc#1183750). - squashfs: fix xattr id and id lookup sanity checks (bsc#1183750). - staging: bcm2835-audio: Replace unsafe strcpy() with strscpy() (git-fixes). - staging: comedi: addi_apci_1032: Fix endian problem for COS sample (git-fixes). - staging: comedi: addi_apci_1500: Fix endian problem for command sample (git-fixes). - staging: comedi: adv_pci1710: Fix endian problem for AI command data (git-fixes). - staging: comedi: cb_pcidas64: fix request_irq() warn (git-fixes). - staging: comedi: cb_pcidas: fix request_irq() warn (git-fixes). - staging: comedi: das6402: Fix endian problem for AI command data (git-fixes). - staging: comedi: das800: Fix endian problem for AI command data (git-fixes). - staging: comedi: dmm32at: Fix endian problem for AI command data (git-fixes). - staging: comedi: me4000: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl711: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl818: Fix endian problem for AI command data (git-fixes). - staging: emxx_udc: fix loop in _nbu2ss_nuke() (git-fixes). - staging: fwserial: Fix error handling in fwserial_create (git-fixes). - staging: fwserial: fix TIOCGSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL jiffies conversions (git-fixes). - staging: fwserial: fix TIOCSSERIAL permission check (git-fixes). - staging: iio: cdc: ad7746: avoid overwrite of num_channels (git-fixes). - staging: ks7010: prevent buffer overflow in ks_wlan_set_scan() (git-fixes). - staging: most: sound: add sanity check for function argument (git-fixes). - staging: rtl8188eu: fix potential memory corruption in rtw_check_beacon_data() (git-fixes). - staging: rtl8188eu: prevent ->ssid overflow in rtw_wx_set_scan() (git-fixes). - staging: rtl8192e: Change state information from u16 to u8 (git-fixes). - staging: rtl8192e: Fix incorrect source in memcpy() (git-fixes). - staging: rtl8192e: Fix possible buffer overflow in _rtl92e_wx_set_scan (git-fixes). - staging: rtl8192u: Fix potential infinite loop (git-fixes). - staging: rtl8192u: fix ->ssid overflow in r8192_wx_set_scan() (git-fixes). - staging: rtl8712: Fix possible buffer overflow in r8712_sitesurvey_cmd (git-fixes). - staging: rtl8712: unterminated string leads to read overflow (git-fixes). - stop_machine: mark helpers __always_inline (git-fixes). - supported.conf: - supported.conf: add bsc1185010 dependency - supported.conf: mark usb_otg_fsm as supported (bsc#1185010) - tcp: fix to update snd_wl1 in bulk receiver fast path (&lt;cover.1620748346.git.mkubecek@suse.cz>). - tee: optee: remove need_resched() before cond_resched() (git-fixes). - tee: optee: replace might_sleep with cond_resched (git-fixes). - thermal/core: Add NULL pointer check before using cooling device stats (git-fixes). - thermal/drivers/cpufreq_cooling: Update cpufreq_state only if state has changed (git-fixes). - thermal/drivers/ti-soc-thermal/bandgap Remove unused variable 'val' (git-fixes). - thermal: thermal_of: Fix error return code of thermal_of_populate_bind_params() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Initialize HopID IDAs in tb_switch_alloc() (git-fixes). - thunderbolt: dma_port: Fix NVM read buffer bounds and offset issue (git-fixes). - tools/resolve_btfids: Fix build error with older host toolchains (bsc#1177028). - tpm: acpi: Check eventlog signature before using it (git-fixes). - tracing: Map all PIDs to command lines (git-fixes). - tty: amiserial: fix TIOCSSERIAL permission check (git-fixes). - tty: fix memory leak in vc_deallocate (git-fixes). - tty: moxa: fix TIOCSSERIAL jiffies conversions (git-fixes). - tty: moxa: fix TIOCSSERIAL permission check (git-fixes). - tty: serial: lpuart: fix lpuart32_write usage (git-fixes). - tty: serial: ucc_uart: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - udlfb: Fix memory leak in dlfb_usb_probe (git-fixes). - uio: uio_hv_generic: use devm_kzalloc() for private data alloc (git-fixes). - uio_hv_generic: Fix a memory leak in error handling paths (git-fixes). - uio_hv_generic: Fix another memory leak in error handling paths (git-fixes). - uio_hv_generic: add missed sysfs_remove_bin_file (git-fixes). - usb-storage: Add quirk to defeat Kindle's automatic unload (git-fixes). - usb: Remove dev_err() usage after platform_get_irq() (git-fixes). - usb: core: hub: Fix PM reference leak in usb_port_resume() (git-fixes). - usb: core: hub: fix race condition about TRSMRCY of resume (git-fixes). - usb: dwc2: Fix HPRT0.PrtSusp bit setting for HiKey 960 board (git-fixes). - usb: dwc2: Fix gadget DMA unmap direction (git-fixes). - usb: dwc2: Fix hibernation between host and device modes (git-fixes). - usb: dwc2: Fix host mode hibernation exit with remote wakeup flow (git-fixes). - usb: dwc2: Fix session request interrupt handler (git-fixes). - usb: dwc2: Prevent core suspend when port connection flag is 0 (git-fixes). - usb: dwc3: Switch to use device_property_count_u32() (git-fixes). - usb: dwc3: Update soft-reset wait polling rate (git-fixes). - usb: dwc3: gadget: Enable suspend events (git-fixes). - usb: dwc3: gadget: Fix START_TRANSFER link state check (git-fixes). - usb: dwc3: gadget: Return success always for kick transfer in ep queue (git-fixes). - usb: dwc3: keystone: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: meson-g12a: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: omap: improve extcon initialization (git-fixes). - usb: dwc3: pci: Enable usb2-gadget-lpm-disable for Intel Merrifield (git-fixes). - usb: dwc3: qcom: Add missing DWC3 OF node refcount decrement (git-fixes). - usb: dwc3: qcom: Honor wakeup enabled/disabled state (git-fixes). - usb: fotg210-hcd: Fix an error message (git-fixes). - usb: gadget/function/f_fs string table fix for multiple languages (git-fixes). - usb: gadget: Fix double free of device descriptor pointers (git-fixes). - usb: gadget: aspeed: fix dma map failure (git-fixes). - usb: gadget: configfs: Fix KASAN use-after-free (git-fixes). - usb: gadget: dummy_hcd: fix gpf in gadget_setup (git-fixes). - usb: gadget: f_uac1: stop playback on function disable (git-fixes). - usb: gadget: f_uac1: validate input parameters (git-fixes). - usb: gadget: f_uac2: always increase endpoint max_packet_size by one audio slot (git-fixes). - usb: gadget: f_uac2: validate input parameters (git-fixes). - usb: gadget: pch_udc: Check for DMA mapping error (git-fixes). - usb: gadget: pch_udc: Check if driver is present before calling ->setup() (git-fixes). - usb: gadget: pch_udc: Move pch_udc_init() to satisfy kernel doc (git-fixes). - usb: gadget: pch_udc: Replace cpu_to_le32() by lower_32_bits() (git-fixes). - usb: gadget: pch_udc: Revert d3cb25a12138 completely (git-fixes). - usb: gadget: r8a66597: Add missing null check on return from platform_get_resource (git-fixes). - usb: gadget: udc: amd5536udc_pci fix null-ptr-dereference (git-fixes). - usb: gadget: udc: renesas_usb3: Fix a race in usb3_start_pipen() (git-fixes). - usb: gadget: uvc: add bInterval checking for HS mode (git-fixes). - usb: musb: Fix suspend with devices connected for a64 (git-fixes). - usb: musb: fix PM reference leak in musb_irq_work() (git-fixes). - usb: pci-quirks: disable D3cold on xhci suspend for s2idle on AMD Renoire (bsc#1185840). - usb: renesas_usbhs: Clear PIPECFG for re-enabling pipe with other EPNUM (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: sl811-hcd: improve misleading indentation (git-fixes). - usb: typec: Remove vdo[3] part of tps6598x_rx_identity_reg struct (git-fixes). - usb: typec: tcpci: Check ROLE_CONTROL while interpreting CC_STATUS (git-fixes). - usb: typec: tcpm: Address incorrect values of tcpm psy for fixed supply (git-fixes). - usb: typec: tcpm: Honour pSnkStdby requirement during negotiation (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: webcam: Invalid size of Processing Unit Descriptor (git-fixes). - usb: xhci-mtk: fix broken streams issue on 0.96 xHCI (git-fixes). - usb: xhci-mtk: improve bandwidth scheduling with TT (git-fixes). - usb: xhci-mtk: remove or operator for setting schedule parameters (git-fixes). - usb: xhci: Fix ASMedia ASM1042A and ASM3242 DMA addressing (git-fixes). - usb: xhci: Fix port minor revision (git-fixes). - usb: xhci: Increase timeout for HC halt (git-fixes). - usb: xhci: do not perform Soft Retry for some xHCI hosts (git-fixes). - usbip: Fix incorrect double assignment to udc->ud.tcp_rx (git-fixes). - usbip: fix stub_dev to check for stream socket (git-fixes). - usbip: fix stub_dev usbip_sockfd_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd attach_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd to check for stream socket (git-fixes). - usbip: fix vudc to check for stream socket (git-fixes). - usbip: fix vudc usbip_sockfd_store races leading to gpf (git-fixes). - usbip: tools: fix build error for multiple definition (git-fixes). - usbip: vhci_hcd fix shift out-of-bounds in vhci_hub_control() (git-fixes). - use __netdev_notify_peers in ibmvnic (bsc#1183871 ltc#192139). - veth: Store queue_mapping independently of XDP prog presence (git-fixes). - vfio-pci/zdev: fix possible segmentation fault issue (git-fixes). - vfio/iommu_type1: Populate full dirty when detach non-pinned group (bsc#1183326). - vfio/mdev: Do not allow a mdev_type to have a NULL parent pointer (git-fixes). - vfio/mdev: Make to_mdev_device() into a static inline (git-fixes). - vfio/pci: Add missing range check in vfio_pci_mmap (git-fixes). - vfio/pci: Move VGA and VF initialization to functions (git-fixes). - vfio/pci: Re-order vfio_pci_probe() (git-fixes). - vgacon: Record video mode changes with VT_RESIZEX (git-fixes). - video: fbdev: acornfb: remove free_unused_pages() (bsc#1152489) - video: hyperv_fb: Add ratelimit on error message (bsc#1185725). - video: hyperv_fb: Fix a double free in hvfb_probe (git-fixes). - virt_wifi: Return micros for BSS TSF values (git-fixes). - virtiofs: fix memory leak in virtio_fs_probe() (bsc#1185558). - vrf: fix a comment about loopback device (git-fixes). - vt/consolemap: do font sum unsigned (git-fixes). - vxlan: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - vxlan: move debug check after netdev unregister (git-fixes). - watchdog/softlockup: Remove obsolete check of last reported task (bsc#1185982). - watchdog/softlockup: report the overall time of softlockups (bsc#1185982). - watchdog: explicitly update timestamp when reporting softlockup (bsc#1185982). - watchdog: rename __touch_watchdog() to a better descriptive name (bsc#1185982). - whitespace cleanup - wl3501_cs: Fix out-of-bounds warnings in wl3501_mgmt_join (git-fixes). - wl3501_cs: Fix out-of-bounds warnings in wl3501_send_pkt (git-fixes). - wlcore: Fix command execute failure 19 for wl12xx (git-fixes). - workqueue: Minor follow-ups to the rescuer destruction change (bsc#1185911). - workqueue: Move the position of debug_work_activate() in __queue_work() (bsc#1184893). - workqueue: more destroy_workqueue() fixes (bsc#1185911). - x86,swiotlb: Adjust SWIOTLB bounce buffer size for SEV guests (bsc#1186219). - x86/cpu: Initialize MSR_TSC_AUX if RDTSCP *or* RDPID is supported (bsc#1152489). - x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access (bsc#1152489). - x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task (bsc#1152489). - x86/insn: Add some Intel instructions to the opcode map (bsc#1184760). - x86/insn: Add some more Intel instructions to the opcode map (bsc#1184760). - x86/ioapic: Ignore IRQ2 again (bsc#1152489). - x86/mem_encrypt: Correct physical address calculation in __set_clr_pte_enc() (bsc#1152489). - x86/microcode: Check for offline CPUs before requesting new microcode (bsc#1152489). - x86/mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd (bsc#1152489). - x86/platform/uv: Set section block size for hubless architectures (bsc#1152489). - x86/reboot: Force all cpus to exit VMX root if VMX is supported (bsc#1152489). - x86/sev-es: Invalidate the GHCB after completing VMGEXIT (bsc#1178134). - x86/sev-es: Move sev_es_put_ghcb() in prep for follow on patch (bsc#1178134). - x86: Introduce TS_COMPAT_RESTART to fix get_nr_restart_syscall() (bsc#1152489). - xen/events: avoid handling the same event on two cpus at the same time (git-fixes). - xen/events: do not unmask an event channel when an eoi is pending (git-fixes). - xen/events: reset affinity of 2-level event when tearing it down (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: Provide private skb extensions for segmented and hw offloaded ESP packets (bsc#1176447). - xfs: group quota should return EDQUOT when prj quota enabled (bsc#1180980). - xhci: Do not use GFP_KERNEL in (potentially) atomic context (git-fixes). - xhci: Fix repeated xhci wake after suspend due to uncleared internal wake state (git-fixes). - xhci: Improve detection of device initiated wake signal (git-fixes). - xhci: check control context is valid before dereferencing it (git-fixes). - xhci: fix potential array out of bounds with several interrupters (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). cluster-md-kmp-azure-5.3.18-38.3.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.3.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.3.1.x86_64.rpm True kernel-azure-5.3.18-38.3.1.nosrc.rpm True kernel-azure-5.3.18-38.3.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.3.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.3.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.3.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.3.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.3.1.noarch.rpm True kernel-source-azure-5.3.18-38.3.1.noarch.rpm True kernel-source-azure-5.3.18-38.3.1.src.rpm True kernel-syms-azure-5.3.18-38.3.1.src.rpm True kernel-syms-azure-5.3.18-38.3.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.3.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.3.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.3.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2140 moderate SUSE Updates openSUSE-SLE 15.3 This update for prometheus-ha_cluster_exporter fixes the following issues: Update from version 1.2.2 to version 1.2.3: - Compress GitHub artifacts after having built them. - Fix cloned resource collection and track stopped resources even when they are cloned. `Pacemaker Clone Resources` appear multiple times in `crm_mon`; since the main discriminator field is the node, and that's missing when a resource is stopped, the cloned and stopped entries will appear multiple times in the `crm_mon` output, with the exact same fields and values: this is a problem for the `Prometheus SDK`, which doesn't expect duplicate metrics over the course of a single collection cycle. - Remove the `make download` target, which was required when using old Go versions. prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.src.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.x86_64.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.s390x.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.ppc64le.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2003 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 78.11 (bsc#1186696) Security issues fixed: - CVE-2021-29964: Out of bounds-read when parsing a `WM_COPYDATA` message - CVE-2021-29967: Memory safety bugs fixed in Thunderbird 78.11 General improvements: - OpenPGP could not be disabled for an account if a key was previously configured - Recipients were unable to decrypt some messages when the sender had changed the message encryption from OpenPGP to S/MIME - Contacts moved between CardDAV address books were not synced to the new server - CardDAV compatibility fixes for Google Contacts - Folder pane had no clear indication of focus on macOS MozillaThunderbird-78.11.0-8.30.1.src.rpm MozillaThunderbird-78.11.0-8.30.1.x86_64.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.x86_64.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.x86_64.rpm MozillaThunderbird-78.11.0-8.30.1.s390x.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.s390x.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.s390x.rpm MozillaThunderbird-78.11.0-8.30.1.ppc64le.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.ppc64le.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.ppc64le.rpm MozillaThunderbird-78.11.0-8.30.1.aarch64.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.aarch64.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-2178 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-presets-common-SUSE fixes the following issues: When installing the systemd-presets-common-SUSE package for the first time in a new system, it might happen that some services are installed before systemd so the %systemd_pre/post macros would not work. This is handled by enabling all preset services in this package's %posttrans section but it wasn't enabling user services, just system services. Now it enables also the user services installed before this package (bsc#1186561) systemd-presets-common-SUSE-15-8.9.1.noarch.rpm systemd-presets-common-SUSE-15-8.9.1.src.rpm openSUSE-SLE-15.3-2021-2265 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb-connector-c fixes the following issues: Update to release 3.1.13 [bsc#1185870], [bsc#1185872], [bsc#1185868] - CONC-537: Only read from MYSQL_HOME if MARIADB_HOME was not set - CONC-548: Symbol conflict with libsodium - CONC-490: Handshake error when CLIENT_CONNECT_WITH_DB flag was set without specifying database - CONC-543: Hash functions conflict with GnuTLS - CONC-539: Added cipher suites ECDHE-RSA-AES128-SHA256 (0xC027) and ECDHE-RSA-AES256-SHA384 (0xC028) to the cipher map which maps cipher suite names to the corresponding algorithm ids (Windows Schannel) - CONC-535: Disabled checksum ignored in events (replication/ binlog API) libmariadb-devel-3.1.13-3.30.1.x86_64.rpm libmariadb3-3.1.13-3.30.1.x86_64.rpm libmariadb3-32bit-3.1.13-3.30.1.x86_64.rpm libmariadb_plugins-3.1.13-3.30.1.x86_64.rpm libmariadbprivate-3.1.13-3.30.1.x86_64.rpm mariadb-connector-c-3.1.13-3.30.1.src.rpm libmariadb-devel-3.1.13-3.30.1.s390x.rpm libmariadb3-3.1.13-3.30.1.s390x.rpm libmariadb_plugins-3.1.13-3.30.1.s390x.rpm libmariadbprivate-3.1.13-3.30.1.s390x.rpm libmariadb-devel-3.1.13-3.30.1.ppc64le.rpm libmariadb3-3.1.13-3.30.1.ppc64le.rpm libmariadb_plugins-3.1.13-3.30.1.ppc64le.rpm libmariadbprivate-3.1.13-3.30.1.ppc64le.rpm libmariadb-devel-3.1.13-3.30.1.aarch64.rpm libmariadb3-3.1.13-3.30.1.aarch64.rpm libmariadb_plugins-3.1.13-3.30.1.aarch64.rpm libmariadbprivate-3.1.13-3.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-2210 moderate SUSE Updates openSUSE-SLE 15.3 This update for lvm2 fixes the following issues: - Link test as position independent executable and update packages with non-PIE binaries. (bsc#1184124) device-mapper-1.02.163-8.33.1.x86_64.rpm device-mapper-devel-1.02.163-8.33.1.x86_64.rpm device-mapper-devel-32bit-1.02.163-8.33.1.x86_64.rpm libdevmapper-event1_03-1.02.163-8.33.1.x86_64.rpm libdevmapper-event1_03-32bit-1.02.163-8.33.1.x86_64.rpm libdevmapper1_03-1.02.163-8.33.1.x86_64.rpm libdevmapper1_03-32bit-1.02.163-8.33.1.x86_64.rpm liblvm2cmd2_03-2.03.05-8.33.1.x86_64.rpm lvm2-2.03.05-8.33.1.src.rpm lvm2-2.03.05-8.33.1.x86_64.rpm lvm2-devel-2.03.05-8.33.1.x86_64.rpm lvm2-device-mapper-2.03.05-8.33.1.src.rpm lvm2-testsuite-2.03.05-8.33.1.x86_64.rpm device-mapper-1.02.163-8.33.1.s390x.rpm device-mapper-devel-1.02.163-8.33.1.s390x.rpm libdevmapper-event1_03-1.02.163-8.33.1.s390x.rpm libdevmapper1_03-1.02.163-8.33.1.s390x.rpm liblvm2cmd2_03-2.03.05-8.33.1.s390x.rpm lvm2-2.03.05-8.33.1.s390x.rpm lvm2-devel-2.03.05-8.33.1.s390x.rpm lvm2-testsuite-2.03.05-8.33.1.s390x.rpm device-mapper-1.02.163-8.33.1.ppc64le.rpm device-mapper-devel-1.02.163-8.33.1.ppc64le.rpm libdevmapper-event1_03-1.02.163-8.33.1.ppc64le.rpm libdevmapper1_03-1.02.163-8.33.1.ppc64le.rpm liblvm2cmd2_03-2.03.05-8.33.1.ppc64le.rpm lvm2-2.03.05-8.33.1.ppc64le.rpm lvm2-devel-2.03.05-8.33.1.ppc64le.rpm lvm2-testsuite-2.03.05-8.33.1.ppc64le.rpm device-mapper-1.02.163-8.33.1.aarch64.rpm device-mapper-devel-1.02.163-8.33.1.aarch64.rpm libdevmapper-event1_03-1.02.163-8.33.1.aarch64.rpm libdevmapper1_03-1.02.163-8.33.1.aarch64.rpm liblvm2cmd2_03-2.03.05-8.33.1.aarch64.rpm lvm2-2.03.05-8.33.1.aarch64.rpm lvm2-devel-2.03.05-8.33.1.aarch64.rpm lvm2-testsuite-2.03.05-8.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-2351 low SUSE Updates openSUSE-SLE 15.3 This update for mgetty fixes the following issues: - Link /usr/bin/newslock as PIE. (bsc#1184124) g3utils-1.1.37-3.11.2.x86_64.rpm mgetty-1.1.37-3.11.2.src.rpm mgetty-1.1.37-3.11.2.x86_64.rpm sendfax-1.1.37-3.11.2.x86_64.rpm g3utils-1.1.37-3.11.2.s390x.rpm mgetty-1.1.37-3.11.2.s390x.rpm sendfax-1.1.37-3.11.2.s390x.rpm g3utils-1.1.37-3.11.2.ppc64le.rpm mgetty-1.1.37-3.11.2.ppc64le.rpm sendfax-1.1.37-3.11.2.ppc64le.rpm g3utils-1.1.37-3.11.2.aarch64.rpm mgetty-1.1.37-3.11.2.aarch64.rpm sendfax-1.1.37-3.11.2.aarch64.rpm openSUSE-SLE-15.3-2021-2418 low SUSE Updates openSUSE-SLE 15.3 This update for mstflint fixes the following issues: - Link as position independent executables. (bsc#1184124) mstflint-4.15.0-3.3.1.src.rpm mstflint-4.15.0-3.3.1.x86_64.rpm mstflint-4.15.0-3.3.1.s390x.rpm mstflint-4.15.0-3.3.1.ppc64le.rpm mstflint-4.15.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2277 moderate SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: - Add config to run ipsec on namespaces. (bsc#1183670) strongswan-5.8.2-11.17.3.src.rpm strongswan-5.8.2-11.17.3.x86_64.rpm strongswan-doc-5.8.2-11.17.3.noarch.rpm strongswan-hmac-5.8.2-11.17.3.x86_64.rpm strongswan-ipsec-5.8.2-11.17.3.x86_64.rpm strongswan-libs0-5.8.2-11.17.3.x86_64.rpm strongswan-mysql-5.8.2-11.17.3.x86_64.rpm strongswan-nm-5.8.2-11.17.3.x86_64.rpm strongswan-sqlite-5.8.2-11.17.3.x86_64.rpm strongswan-5.8.2-11.17.3.s390x.rpm strongswan-hmac-5.8.2-11.17.3.s390x.rpm strongswan-ipsec-5.8.2-11.17.3.s390x.rpm strongswan-libs0-5.8.2-11.17.3.s390x.rpm strongswan-mysql-5.8.2-11.17.3.s390x.rpm strongswan-nm-5.8.2-11.17.3.s390x.rpm strongswan-sqlite-5.8.2-11.17.3.s390x.rpm strongswan-5.8.2-11.17.3.ppc64le.rpm strongswan-hmac-5.8.2-11.17.3.ppc64le.rpm strongswan-ipsec-5.8.2-11.17.3.ppc64le.rpm strongswan-libs0-5.8.2-11.17.3.ppc64le.rpm strongswan-mysql-5.8.2-11.17.3.ppc64le.rpm strongswan-nm-5.8.2-11.17.3.ppc64le.rpm strongswan-sqlite-5.8.2-11.17.3.ppc64le.rpm strongswan-5.8.2-11.17.3.aarch64.rpm strongswan-hmac-5.8.2-11.17.3.aarch64.rpm strongswan-ipsec-5.8.2-11.17.3.aarch64.rpm strongswan-libs0-5.8.2-11.17.3.aarch64.rpm strongswan-mysql-5.8.2-11.17.3.aarch64.rpm strongswan-nm-5.8.2-11.17.3.aarch64.rpm strongswan-sqlite-5.8.2-11.17.3.aarch64.rpm openSUSE-SLE-15.3-2021-2223 moderate SUSE Updates openSUSE-SLE 15.3 This update for chrony fixes the following issues: - Fixed an issue when chrony aborts in FIPS mode due to MD5. (bsc#1173760) chrony-3.2-9.24.2.src.rpm chrony-3.2-9.24.2.x86_64.rpm chrony-pool-empty-3.2-9.24.2.noarch.rpm chrony-pool-openSUSE-3.2-9.24.2.noarch.rpm chrony-pool-suse-3.2-9.24.2.noarch.rpm chrony-3.2-9.24.2.s390x.rpm chrony-3.2-9.24.2.ppc64le.rpm chrony-3.2-9.24.2.aarch64.rpm openSUSE-SLE-15.3-2021-2260 moderate SUSE Updates openSUSE-SLE 15.3 This update for pipewire fixes the following issues: - Introduce a workaround for systems where %systemd_user_post didn't enable the user services correctly due to different reasons. (bsc#1184852, bsc#1183012, bsc#1186561) - Disable gstreamer device provider by now because the timestamp bug makes cheese video record abnormally longer than it should be. (rh#1884260) - Replace all tab characters to space. gstreamer-plugin-pipewire-0.3.24-4.3.1.x86_64.rpm libpipewire-0_3-0-0.3.24-4.3.1.x86_64.rpm libpipewire-0_3-0-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-0.3.24-4.3.1.src.rpm pipewire-0.3.24-4.3.1.x86_64.rpm pipewire-alsa-0.3.24-4.3.1.x86_64.rpm pipewire-devel-0.3.24-4.3.1.x86_64.rpm pipewire-doc-0.3.24-4.3.1.x86_64.rpm pipewire-lang-0.3.24-4.3.1.noarch.rpm pipewire-libjack-0_3-0.3.24-4.3.1.x86_64.rpm pipewire-libjack-0_3-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-modules-0.3.24-4.3.1.x86_64.rpm pipewire-modules-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-pulseaudio-0.3.24-4.3.1.x86_64.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.x86_64.rpm pipewire-spa-plugins-0_2-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-spa-tools-0.3.24-4.3.1.x86_64.rpm pipewire-tools-0.3.24-4.3.1.x86_64.rpm gstreamer-plugin-pipewire-0.3.24-4.3.1.s390x.rpm libpipewire-0_3-0-0.3.24-4.3.1.s390x.rpm pipewire-0.3.24-4.3.1.s390x.rpm pipewire-alsa-0.3.24-4.3.1.s390x.rpm pipewire-devel-0.3.24-4.3.1.s390x.rpm pipewire-doc-0.3.24-4.3.1.s390x.rpm pipewire-libjack-0_3-0.3.24-4.3.1.s390x.rpm pipewire-modules-0.3.24-4.3.1.s390x.rpm pipewire-pulseaudio-0.3.24-4.3.1.s390x.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.s390x.rpm pipewire-spa-tools-0.3.24-4.3.1.s390x.rpm pipewire-tools-0.3.24-4.3.1.s390x.rpm gstreamer-plugin-pipewire-0.3.24-4.3.1.ppc64le.rpm libpipewire-0_3-0-0.3.24-4.3.1.ppc64le.rpm pipewire-0.3.24-4.3.1.ppc64le.rpm pipewire-alsa-0.3.24-4.3.1.ppc64le.rpm pipewire-devel-0.3.24-4.3.1.ppc64le.rpm pipewire-doc-0.3.24-4.3.1.ppc64le.rpm pipewire-libjack-0_3-0.3.24-4.3.1.ppc64le.rpm pipewire-modules-0.3.24-4.3.1.ppc64le.rpm pipewire-pulseaudio-0.3.24-4.3.1.ppc64le.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.ppc64le.rpm pipewire-spa-tools-0.3.24-4.3.1.ppc64le.rpm pipewire-tools-0.3.24-4.3.1.ppc64le.rpm gstreamer-plugin-pipewire-0.3.24-4.3.1.aarch64.rpm libpipewire-0_3-0-0.3.24-4.3.1.aarch64.rpm pipewire-0.3.24-4.3.1.aarch64.rpm pipewire-alsa-0.3.24-4.3.1.aarch64.rpm pipewire-devel-0.3.24-4.3.1.aarch64.rpm pipewire-doc-0.3.24-4.3.1.aarch64.rpm pipewire-libjack-0_3-0.3.24-4.3.1.aarch64.rpm pipewire-modules-0.3.24-4.3.1.aarch64.rpm pipewire-pulseaudio-0.3.24-4.3.1.aarch64.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.aarch64.rpm pipewire-spa-tools-0.3.24-4.3.1.aarch64.rpm pipewire-tools-0.3.24-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2203 moderate SUSE Updates openSUSE-SLE 15.3 This update for postfix fixes the following issues: - Remove incorrect requirements from the postfix service configuration. (bsc#1186669) postfix-3.5.9-5.3.3.src.rpm postfix-3.5.9-5.3.3.x86_64.rpm postfix-bdb-3.5.9-5.3.3.src.rpm postfix-bdb-3.5.9-5.3.3.x86_64.rpm postfix-bdb-lmdb-3.5.9-5.3.3.x86_64.rpm postfix-devel-3.5.9-5.3.3.x86_64.rpm postfix-doc-3.5.9-5.3.3.noarch.rpm postfix-ldap-3.5.9-5.3.3.x86_64.rpm postfix-mysql-3.5.9-5.3.3.x86_64.rpm postfix-postgresql-3.5.9-5.3.3.x86_64.rpm postfix-3.5.9-5.3.3.s390x.rpm postfix-bdb-3.5.9-5.3.3.s390x.rpm postfix-bdb-lmdb-3.5.9-5.3.3.s390x.rpm postfix-devel-3.5.9-5.3.3.s390x.rpm postfix-ldap-3.5.9-5.3.3.s390x.rpm postfix-mysql-3.5.9-5.3.3.s390x.rpm postfix-postgresql-3.5.9-5.3.3.s390x.rpm postfix-3.5.9-5.3.3.ppc64le.rpm postfix-bdb-3.5.9-5.3.3.ppc64le.rpm postfix-bdb-lmdb-3.5.9-5.3.3.ppc64le.rpm postfix-devel-3.5.9-5.3.3.ppc64le.rpm postfix-ldap-3.5.9-5.3.3.ppc64le.rpm postfix-mysql-3.5.9-5.3.3.ppc64le.rpm postfix-postgresql-3.5.9-5.3.3.ppc64le.rpm postfix-3.5.9-5.3.3.aarch64.rpm postfix-bdb-3.5.9-5.3.3.aarch64.rpm postfix-bdb-lmdb-3.5.9-5.3.3.aarch64.rpm postfix-devel-3.5.9-5.3.3.aarch64.rpm postfix-ldap-3.5.9-5.3.3.aarch64.rpm postfix-mysql-3.5.9-5.3.3.aarch64.rpm postfix-postgresql-3.5.9-5.3.3.aarch64.rpm openSUSE-SLE-15.3-2021-2276 moderate SUSE Updates openSUSE-SLE 15.3 This update for libgnomekbd fixes the following issues: - Add fix to avoid crashing 'libgnomekbd' when working with ibus. (bsc#1160963) - Set the common keyboard layout indicator as "default" to avoid misleading information. (bsc#1034390) libgnomekbd-3.26.0-3.3.1.src.rpm libgnomekbd-3.26.0-3.3.1.x86_64.rpm libgnomekbd-3.26.0-3.3.1.s390x.rpm libgnomekbd-3.26.0-3.3.1.ppc64le.rpm libgnomekbd-3.26.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2231 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2 fixes the following issues: - Ignore 'sysctl' configuration files that do not have the '.conf', extension except kernel files. (bsc#1187018) yast2-4.3.63-3.8.1.src.rpm yast2-4.3.63-3.8.1.x86_64.rpm yast2-logs-4.3.63-3.8.1.x86_64.rpm yast2-4.3.63-3.8.1.s390x.rpm yast2-logs-4.3.63-3.8.1.s390x.rpm yast2-4.3.63-3.8.1.ppc64le.rpm yast2-logs-4.3.63-3.8.1.ppc64le.rpm yast2-4.3.63-3.8.1.aarch64.rpm yast2-logs-4.3.63-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2207 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-ftp-server fixes the following issues: - Fix the label of the certificate input field (bsc#1183786) yast2-ftp-server-4.3.3-3.3.1.noarch.rpm yast2-ftp-server-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2476 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-proxy fixes the following issues: - Added 'to_target' variable which will determine whether the configuration should be written to the target system at the end of the installation or not (bsc#1185016) - Replace novell urls by SUSE ones (bsc#1100366) This update for yast2-installation fixes the following issues: - Start the "memsample" tool in a subshell to avoid "Terminated" message displayed at the end. (bsc#1184491) - Better evaluate the old and new repositories during upgrade, do not preselect new repositories for removal if they accidentally use the same repository as already present in the system. (bsc#1185822) - Export also the 'https_proxy' environment variable when a proxy config is given through 'linuxrc'. (bsc#1185016) yast2-installation-4.3.40-3.4.1.noarch.rpm yast2-installation-4.3.40-3.4.1.src.rpm yast2-proxy-4.3.3-3.3.1.noarch.rpm yast2-proxy-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2148 moderate SUSE Updates openSUSE-SLE 15.3 This update for csync2 fixes the following issues: - Removal of csync2 package throws error for non-existent service template. (bsc#1187080) csync2-2.0+git.1600444747.83b3644-3.3.1.src.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.x86_64.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.s390x.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.ppc64le.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2228 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql fixes the following issues: - Re-enable build of the 'llvmjit' subpackage on SLE. (bsc#1183118) postgresql-13-10.3.3.noarch.rpm postgresql-13-10.3.3.src.rpm postgresql-contrib-13-10.3.3.noarch.rpm postgresql-devel-13-10.3.3.noarch.rpm postgresql-docs-13-10.3.3.noarch.rpm postgresql-plperl-13-10.3.3.noarch.rpm postgresql-plpython-13-10.3.3.noarch.rpm postgresql-pltcl-13-10.3.3.noarch.rpm postgresql-server-13-10.3.3.noarch.rpm postgresql-server-devel-13-10.3.3.noarch.rpm postgresql-test-13-10.3.3.noarch.rpm openSUSE-SLE-15.3-2021-2179 moderate SUSE Updates openSUSE-SLE 15.3 This update for thin-provisioning-tools fixes the following issues: - Link as position-independent executable (bsc#1184124) thin-provisioning-tools-0.7.5-3.3.1.src.rpm thin-provisioning-tools-0.7.5-3.3.1.x86_64.rpm thin-provisioning-tools-0.7.5-3.3.1.s390x.rpm thin-provisioning-tools-0.7.5-3.3.1.ppc64le.rpm thin-provisioning-tools-0.7.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2127 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: - fixed CVE-2021-30641 [bsc#1187174]: MergeSlashes regression - fixed CVE-2021-31618 [bsc#1186924]: NULL pointer dereference on specially crafted HTTP/2 request - fixed CVE-2020-13950 [bsc#1187040]: mod_proxy NULL pointer dereference - fixed CVE-2020-35452 [bsc#1186922]: Single zero byte stack overflow in mod_auth_digest - fixed CVE-2021-26690 [bsc#1186923]: mod_session NULL pointer dereference in parser - fixed CVE-2021-26691 [bsc#1187017]: Heap overflow in mod_session apache2-2.4.43-3.22.1.src.rpm apache2-2.4.43-3.22.1.x86_64.rpm apache2-devel-2.4.43-3.22.1.x86_64.rpm apache2-doc-2.4.43-3.22.1.noarch.rpm apache2-event-2.4.43-3.22.1.x86_64.rpm apache2-example-pages-2.4.43-3.22.1.x86_64.rpm apache2-prefork-2.4.43-3.22.1.x86_64.rpm apache2-utils-2.4.43-3.22.1.x86_64.rpm apache2-worker-2.4.43-3.22.1.x86_64.rpm apache2-2.4.43-3.22.1.s390x.rpm apache2-devel-2.4.43-3.22.1.s390x.rpm apache2-event-2.4.43-3.22.1.s390x.rpm apache2-example-pages-2.4.43-3.22.1.s390x.rpm apache2-prefork-2.4.43-3.22.1.s390x.rpm apache2-utils-2.4.43-3.22.1.s390x.rpm apache2-worker-2.4.43-3.22.1.s390x.rpm apache2-2.4.43-3.22.1.ppc64le.rpm apache2-devel-2.4.43-3.22.1.ppc64le.rpm apache2-event-2.4.43-3.22.1.ppc64le.rpm apache2-example-pages-2.4.43-3.22.1.ppc64le.rpm apache2-prefork-2.4.43-3.22.1.ppc64le.rpm apache2-utils-2.4.43-3.22.1.ppc64le.rpm apache2-worker-2.4.43-3.22.1.ppc64le.rpm apache2-2.4.43-3.22.1.aarch64.rpm apache2-devel-2.4.43-3.22.1.aarch64.rpm apache2-event-2.4.43-3.22.1.aarch64.rpm apache2-example-pages-2.4.43-3.22.1.aarch64.rpm apache2-prefork-2.4.43-3.22.1.aarch64.rpm apache2-utils-2.4.43-3.22.1.aarch64.rpm apache2-worker-2.4.43-3.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-2316 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Restore framebuffer devices as possible master of seat. Until simpledrm driver is released, this change is prematured as some graphical chips don't have DRM driver and fallback to framebuffer. (bsc#1187154) - Fixed an issue when '/var/lock/subsys' dropped when the creation of 'filesystem' package took the initialization of the generic paths over. (bsc#1187292) - 'udev' requires systemd in its %post (bsc#1185958) nspawn: turn on higher optimization level in seccomp nspawn: return ENOSYS by default, EPERM for "known" calls (bsc#1186411) shared/seccomp-util: added functionality to make list of filtred syscalls hared/syscall-list: filter out some obviously platform-specific syscalls shared/seccomp: reduce scope of indexing variables generate-syscall-list: require python3 shared: add @known syscall list meson: add syscall-names-update target shared/seccomp: use _cleanup_ in one more place home: fix homed.conf install location - We need to make sure that the creation of the symlinks is done after updating udev DB so if worker A is preempted by worker B before A updates the DB but after it creates the symlinks, worker B won't manage to overwrite the freshly created symlinks (by A) because A has still yet not registered the symlinks in the DB. (bsc#1185828) - Expect 644 permissions for /usr/lib/udev/compat-symlink-generation (bsc#1185807) libsystemd0-246.13-7.5.1.x86_64.rpm libsystemd0-32bit-246.13-7.5.1.x86_64.rpm libudev-devel-246.13-7.5.1.x86_64.rpm libudev-devel-32bit-246.13-7.5.1.x86_64.rpm libudev1-246.13-7.5.1.x86_64.rpm libudev1-32bit-246.13-7.5.1.x86_64.rpm nss-myhostname-246.13-7.5.1.x86_64.rpm nss-myhostname-32bit-246.13-7.5.1.x86_64.rpm nss-mymachines-246.13-7.5.1.x86_64.rpm nss-mymachines-32bit-246.13-7.5.1.x86_64.rpm nss-resolve-246.13-7.5.1.x86_64.rpm nss-systemd-246.13-7.5.1.x86_64.rpm systemd-246.13-7.5.1.src.rpm systemd-246.13-7.5.1.x86_64.rpm systemd-32bit-246.13-7.5.1.x86_64.rpm systemd-container-246.13-7.5.1.x86_64.rpm systemd-coredump-246.13-7.5.1.x86_64.rpm systemd-devel-246.13-7.5.1.x86_64.rpm systemd-doc-246.13-7.5.1.x86_64.rpm systemd-journal-remote-246.13-7.5.1.x86_64.rpm systemd-lang-246.13-7.5.1.noarch.rpm systemd-logger-246.13-7.5.1.x86_64.rpm systemd-network-246.13-7.5.1.x86_64.rpm systemd-sysvinit-246.13-7.5.1.x86_64.rpm udev-246.13-7.5.1.x86_64.rpm libsystemd0-246.13-7.5.1.s390x.rpm libsystemd0-mini-246.13-7.5.1.s390x.rpm libudev-devel-246.13-7.5.1.s390x.rpm libudev-mini-devel-246.13-7.5.1.s390x.rpm libudev-mini1-246.13-7.5.1.s390x.rpm libudev1-246.13-7.5.1.s390x.rpm nss-myhostname-246.13-7.5.1.s390x.rpm nss-mymachines-246.13-7.5.1.s390x.rpm nss-resolve-246.13-7.5.1.s390x.rpm nss-systemd-246.13-7.5.1.s390x.rpm systemd-246.13-7.5.1.s390x.rpm systemd-container-246.13-7.5.1.s390x.rpm systemd-coredump-246.13-7.5.1.s390x.rpm systemd-devel-246.13-7.5.1.s390x.rpm systemd-doc-246.13-7.5.1.s390x.rpm systemd-journal-remote-246.13-7.5.1.s390x.rpm systemd-logger-246.13-7.5.1.s390x.rpm systemd-mini-246.13-7.5.1.s390x.rpm systemd-mini-container-246.13-7.5.1.s390x.rpm systemd-mini-devel-246.13-7.5.1.s390x.rpm systemd-mini-sysvinit-246.13-7.5.1.s390x.rpm systemd-network-246.13-7.5.1.s390x.rpm systemd-sysvinit-246.13-7.5.1.s390x.rpm udev-246.13-7.5.1.s390x.rpm udev-mini-246.13-7.5.1.s390x.rpm libsystemd0-246.13-7.5.1.ppc64le.rpm libsystemd0-mini-246.13-7.5.1.ppc64le.rpm libudev-devel-246.13-7.5.1.ppc64le.rpm libudev-mini-devel-246.13-7.5.1.ppc64le.rpm libudev-mini1-246.13-7.5.1.ppc64le.rpm libudev1-246.13-7.5.1.ppc64le.rpm nss-myhostname-246.13-7.5.1.ppc64le.rpm nss-mymachines-246.13-7.5.1.ppc64le.rpm nss-resolve-246.13-7.5.1.ppc64le.rpm nss-systemd-246.13-7.5.1.ppc64le.rpm systemd-246.13-7.5.1.ppc64le.rpm systemd-container-246.13-7.5.1.ppc64le.rpm systemd-coredump-246.13-7.5.1.ppc64le.rpm systemd-devel-246.13-7.5.1.ppc64le.rpm systemd-doc-246.13-7.5.1.ppc64le.rpm systemd-journal-remote-246.13-7.5.1.ppc64le.rpm systemd-logger-246.13-7.5.1.ppc64le.rpm systemd-mini-246.13-7.5.1.ppc64le.rpm systemd-mini-container-246.13-7.5.1.ppc64le.rpm systemd-mini-devel-246.13-7.5.1.ppc64le.rpm systemd-mini-sysvinit-246.13-7.5.1.ppc64le.rpm systemd-network-246.13-7.5.1.ppc64le.rpm systemd-sysvinit-246.13-7.5.1.ppc64le.rpm udev-246.13-7.5.1.ppc64le.rpm udev-mini-246.13-7.5.1.ppc64le.rpm libsystemd0-246.13-7.5.1.aarch64.rpm libsystemd0-mini-246.13-7.5.1.aarch64.rpm libudev-devel-246.13-7.5.1.aarch64.rpm libudev-mini-devel-246.13-7.5.1.aarch64.rpm libudev-mini1-246.13-7.5.1.aarch64.rpm libudev1-246.13-7.5.1.aarch64.rpm nss-myhostname-246.13-7.5.1.aarch64.rpm nss-mymachines-246.13-7.5.1.aarch64.rpm nss-resolve-246.13-7.5.1.aarch64.rpm nss-systemd-246.13-7.5.1.aarch64.rpm systemd-246.13-7.5.1.aarch64.rpm systemd-container-246.13-7.5.1.aarch64.rpm systemd-coredump-246.13-7.5.1.aarch64.rpm systemd-devel-246.13-7.5.1.aarch64.rpm systemd-doc-246.13-7.5.1.aarch64.rpm systemd-journal-remote-246.13-7.5.1.aarch64.rpm systemd-logger-246.13-7.5.1.aarch64.rpm systemd-mini-246.13-7.5.1.aarch64.rpm systemd-mini-container-246.13-7.5.1.aarch64.rpm systemd-mini-devel-246.13-7.5.1.aarch64.rpm systemd-mini-sysvinit-246.13-7.5.1.aarch64.rpm systemd-network-246.13-7.5.1.aarch64.rpm systemd-sysvinit-246.13-7.5.1.aarch64.rpm udev-246.13-7.5.1.aarch64.rpm udev-mini-246.13-7.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2005 important SUSE Updates openSUSE-SLE 15.3 This update for jetty-minimal fixes the following issues: Update to version 9.4.42.v20210604 - Fix: bsc#1187117, CVE-2021-28169 - possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory - Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when client send data length > 17408 - Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs - Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory from deployment scan jetty-annotations-9.4.42-3.9.1.noarch.rpm jetty-client-9.4.42-3.9.1.noarch.rpm jetty-continuation-9.4.42-3.9.1.noarch.rpm jetty-http-9.4.42-3.9.1.noarch.rpm jetty-io-9.4.42-3.9.1.noarch.rpm jetty-jaas-9.4.42-3.9.1.noarch.rpm jetty-javax-websocket-client-impl-9.4.42-3.9.1.noarch.rpm jetty-javax-websocket-server-impl-9.4.42-3.9.1.noarch.rpm jetty-jmx-9.4.42-3.9.1.noarch.rpm jetty-jndi-9.4.42-3.9.1.noarch.rpm jetty-jsp-9.4.42-3.9.1.noarch.rpm jetty-minimal-9.4.42-3.9.1.src.rpm jetty-minimal-javadoc-9.4.42-3.9.1.noarch.rpm jetty-openid-9.4.42-3.9.1.noarch.rpm jetty-plus-9.4.42-3.9.1.noarch.rpm jetty-proxy-9.4.42-3.9.1.noarch.rpm jetty-security-9.4.42-3.9.1.noarch.rpm jetty-server-9.4.42-3.9.1.noarch.rpm jetty-servlet-9.4.42-3.9.1.noarch.rpm jetty-util-9.4.42-3.9.1.noarch.rpm jetty-util-ajax-9.4.42-3.9.1.noarch.rpm jetty-webapp-9.4.42-3.9.1.noarch.rpm jetty-websocket-9.4.42-3.9.1.src.rpm jetty-websocket-api-9.4.42-3.9.1.noarch.rpm jetty-websocket-client-9.4.42-3.9.1.noarch.rpm jetty-websocket-common-9.4.42-3.9.1.noarch.rpm jetty-websocket-javadoc-9.4.42-3.9.1.noarch.rpm jetty-websocket-server-9.4.42-3.9.1.noarch.rpm jetty-websocket-servlet-9.4.42-3.9.1.noarch.rpm jetty-xml-9.4.42-3.9.1.noarch.rpm openSUSE-SLE-15.3-2021-2011 important SUSE Updates openSUSE-SLE 15.3 This update for xterm fixes the following issues: - CVE-2021-27135: Fixed buffer-overflow when clicking on selected utf8 text. (bsc#1182091) xterm-330-11.3.1.src.rpm xterm-330-11.3.1.x86_64.rpm xterm-bin-330-11.3.1.x86_64.rpm xterm-330-11.3.1.s390x.rpm xterm-bin-330-11.3.1.s390x.rpm xterm-330-11.3.1.ppc64le.rpm xterm-bin-330-11.3.1.ppc64le.rpm xterm-330-11.3.1.aarch64.rpm xterm-bin-330-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2196 moderate SUSE Updates openSUSE-SLE 15.3 This update for lua53 fixes the following issues: Update to version 5.3.6: - CVE-2020-24371: lgc.c mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage (bsc#1175449) - CVE-2020-24370: ldebug.c allows a negation overflow and segmentation fault in getlocal and setlocal (bsc#1175448) - Long brackets with a huge number of '=' overflow some internal buffer arithmetic. liblua5_3-5-32bit-5.3.6-3.6.1.x86_64.rpm liblua5_3-5-5.3.6-3.6.1.x86_64.rpm lua53-5.3.6-3.6.1.src.rpm lua53-5.3.6-3.6.1.x86_64.rpm lua53-devel-5.3.6-3.6.1.x86_64.rpm lua53-doc-5.3.6-3.6.1.noarch.rpm liblua5_3-5-5.3.6-3.6.1.s390x.rpm lua53-5.3.6-3.6.1.s390x.rpm lua53-devel-5.3.6-3.6.1.s390x.rpm liblua5_3-5-5.3.6-3.6.1.ppc64le.rpm lua53-5.3.6-3.6.1.ppc64le.rpm lua53-devel-5.3.6-3.6.1.ppc64le.rpm liblua5_3-5-5.3.6-3.6.1.aarch64.rpm lua53-5.3.6-3.6.1.aarch64.rpm lua53-devel-5.3.6-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2291 moderate SUSE Updates openSUSE-SLE 15.3 This update for bluez fixes the following issues: - CVE-2021-0129,CVE-2020-26558: Check bluetooth security flags (bsc#1186463). bluez-5.55-3.3.1.src.rpm bluez-5.55-3.3.1.x86_64.rpm bluez-auto-enable-devices-5.55-3.3.1.noarch.rpm bluez-cups-5.55-3.3.1.x86_64.rpm bluez-deprecated-5.55-3.3.1.x86_64.rpm bluez-devel-32bit-5.55-3.3.1.x86_64.rpm bluez-devel-5.55-3.3.1.x86_64.rpm bluez-test-5.55-3.3.1.x86_64.rpm libbluetooth3-32bit-5.55-3.3.1.x86_64.rpm libbluetooth3-5.55-3.3.1.x86_64.rpm bluez-5.55-3.3.1.s390x.rpm bluez-cups-5.55-3.3.1.s390x.rpm bluez-deprecated-5.55-3.3.1.s390x.rpm bluez-devel-5.55-3.3.1.s390x.rpm bluez-test-5.55-3.3.1.s390x.rpm libbluetooth3-5.55-3.3.1.s390x.rpm bluez-5.55-3.3.1.ppc64le.rpm bluez-cups-5.55-3.3.1.ppc64le.rpm bluez-deprecated-5.55-3.3.1.ppc64le.rpm bluez-devel-5.55-3.3.1.ppc64le.rpm bluez-test-5.55-3.3.1.ppc64le.rpm libbluetooth3-5.55-3.3.1.ppc64le.rpm bluez-5.55-3.3.1.aarch64.rpm bluez-cups-5.55-3.3.1.aarch64.rpm bluez-deprecated-5.55-3.3.1.aarch64.rpm bluez-devel-5.55-3.3.1.aarch64.rpm bluez-test-5.55-3.3.1.aarch64.rpm libbluetooth3-5.55-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2012 important SUSE Updates openSUSE-SLE 15.3 This update for python-urllib3 fixes the following issues: - CVE-2021-33503: Fixed a denial of service when the URL contained many @ characters in the authority component (bsc#1187045) python-urllib3-1.25.10-4.3.1.src.rpm python3-urllib3-1.25.10-4.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2143 important SUSE Updates openSUSE-SLE 15.3 This update for libnettle fixes the following issues: - CVE-2021-3580: Fixed a remote denial of service in the RSA decryption via manipulated ciphertext (bsc#1187060). libhogweed4-3.4.1-4.18.1.x86_64.rpm libhogweed4-32bit-3.4.1-4.18.1.x86_64.rpm libnettle-3.4.1-4.18.1.src.rpm libnettle-devel-3.4.1-4.18.1.x86_64.rpm libnettle-devel-32bit-3.4.1-4.18.1.x86_64.rpm libnettle6-3.4.1-4.18.1.x86_64.rpm libnettle6-32bit-3.4.1-4.18.1.x86_64.rpm nettle-3.4.1-4.18.1.x86_64.rpm libhogweed4-3.4.1-4.18.1.s390x.rpm libnettle-devel-3.4.1-4.18.1.s390x.rpm libnettle6-3.4.1-4.18.1.s390x.rpm nettle-3.4.1-4.18.1.s390x.rpm libhogweed4-3.4.1-4.18.1.ppc64le.rpm libnettle-devel-3.4.1-4.18.1.ppc64le.rpm libnettle6-3.4.1-4.18.1.ppc64le.rpm nettle-3.4.1-4.18.1.ppc64le.rpm libhogweed4-3.4.1-4.18.1.aarch64.rpm libnettle-devel-3.4.1-4.18.1.aarch64.rpm libnettle6-3.4.1-4.18.1.aarch64.rpm nettle-3.4.1-4.18.1.aarch64.rpm openSUSE-SLE-15.3-2021-2001 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pycryptodome fixes the following issue: - python-pycryptodome had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) python-pycryptodome-3.9.0-6.1.src.rpm python2-pycryptodome-3.9.0-6.1.x86_64.rpm python3-pycryptodome-3.9.0-6.1.x86_64.rpm python2-pycryptodome-3.9.0-6.1.s390x.rpm python3-pycryptodome-3.9.0-6.1.s390x.rpm python2-pycryptodome-3.9.0-6.1.ppc64le.rpm python3-pycryptodome-3.9.0-6.1.ppc64le.rpm python2-pycryptodome-3.9.0-6.1.aarch64.rpm python3-pycryptodome-3.9.0-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2079 moderate SUSE Updates openSUSE-SLE 15.3 This update for build fixes the following issue: - build had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) build-20210120-6.1.noarch.rpm build-20210120-6.1.src.rpm build-initvm-x86_64-20210120-6.1.noarch.rpm build-mkbaselibs-20210120-6.1.noarch.rpm build-mkdrpms-20210120-6.1.noarch.rpm build-initvm-s390x-20210120-6.1.noarch.rpm build-initvm-powerpc64le-20210120-6.1.noarch.rpm build-initvm-aarch64-20210120-6.1.noarch.rpm openSUSE-SLE-15.3-2021-2008 important SUSE Updates openSUSE-SLE 15.3 This update for python-rsa fixes the following issues: - CVE-2020-13757: Proper handling of leading '\0' bytes during decryption of ciphertext (bsc#1172389) python-rsa-3.4.2-3.4.1.src.rpm python2-rsa-3.4.2-3.4.1.noarch.rpm python3-rsa-3.4.2-3.4.1.noarch.rpm openSUSE-SLE-15.3-2021-2093 moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - updated ceph to upstream version 15.2.13: * mgr/dashboard: allow getting fresh inventory data from the orchestrator (bsc#1174526) The whole upstream changelog can be found here: https://ceph.io/releases/v15-2-13-octopus-released/ ceph-15.2.13.79+g51835b62d61-3.28.1.src.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-grafana-dashboards-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-mgr-cephadm-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-dashboard-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-k8sevents-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-modules-core-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-rook-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-prometheus-alerts-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-test-15.2.13.79+g51835b62d61-3.28.1.src.rpm ceph-test-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm cephadm-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm openSUSE-SLE-15.3-2021-2002 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-vm-tools fixes the following issue: - open-vm-tools had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) libvmtools-devel-11.2.5-7.1.x86_64.rpm libvmtools0-11.2.5-7.1.x86_64.rpm open-vm-tools-11.2.5-7.1.src.rpm open-vm-tools-11.2.5-7.1.x86_64.rpm open-vm-tools-desktop-11.2.5-7.1.x86_64.rpm open-vm-tools-sdmp-11.2.5-7.1.x86_64.rpm libvmtools-devel-11.2.5-7.1.aarch64.rpm libvmtools0-11.2.5-7.1.aarch64.rpm open-vm-tools-11.2.5-7.1.aarch64.rpm open-vm-tools-desktop-11.2.5-7.1.aarch64.rpm open-vm-tools-sdmp-11.2.5-7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2157 important SUSE Updates openSUSE-SLE 15.3 This update for libgcrypt fixes the following issues: - CVE-2021-33560: Fixed a side-channel against ElGamal encryption, caused by missing exponent blinding (bsc#1187212). libgcrypt-1.8.2-8.39.1.src.rpm libgcrypt-cavs-1.8.2-8.39.1.x86_64.rpm libgcrypt-devel-1.8.2-8.39.1.x86_64.rpm libgcrypt-devel-32bit-1.8.2-8.39.1.x86_64.rpm libgcrypt20-1.8.2-8.39.1.x86_64.rpm libgcrypt20-32bit-1.8.2-8.39.1.x86_64.rpm libgcrypt20-hmac-1.8.2-8.39.1.x86_64.rpm libgcrypt20-hmac-32bit-1.8.2-8.39.1.x86_64.rpm libgcrypt-cavs-1.8.2-8.39.1.s390x.rpm libgcrypt-devel-1.8.2-8.39.1.s390x.rpm libgcrypt20-1.8.2-8.39.1.s390x.rpm libgcrypt20-hmac-1.8.2-8.39.1.s390x.rpm libgcrypt-cavs-1.8.2-8.39.1.ppc64le.rpm libgcrypt-devel-1.8.2-8.39.1.ppc64le.rpm libgcrypt20-1.8.2-8.39.1.ppc64le.rpm libgcrypt20-hmac-1.8.2-8.39.1.ppc64le.rpm libgcrypt-cavs-1.8.2-8.39.1.aarch64.rpm libgcrypt-devel-1.8.2-8.39.1.aarch64.rpm libgcrypt20-1.8.2-8.39.1.aarch64.rpm libgcrypt20-hmac-1.8.2-8.39.1.aarch64.rpm openSUSE-SLE-15.3-2021-1981 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-tar_scm fixes the following issues: * Fix filelist: align config(noreplace) usage with obs-service-download_files * Support gitlab/github merge requests obs-service-appimage-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-obs_scm-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-obs_scm-common-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-snapcraft-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-tar-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-tar_scm-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-tar_scm-0.10.22.1615538418.07a353d-3.12.1.src.rpm openSUSE-SLE-15.3-2021-2177 important SUSE Updates openSUSE-SLE 15.3 This update for arpwatch fixes the following issues: - CVE-2021-25321: Fixed local privilege escalation from runtime user to root (bsc#1186240). arpwatch-2.1a15-5.12.1.src.rpm arpwatch-2.1a15-5.12.1.x86_64.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.x86_64.rpm arpwatch-2.1a15-5.12.1.s390x.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.s390x.rpm arpwatch-2.1a15-5.12.1.ppc64le.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.ppc64le.rpm arpwatch-2.1a15-5.12.1.aarch64.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2076 moderate SUSE Updates openSUSE-SLE 15.3 This update for dovecot23 fixes the following issue: - dovecot23 had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) dovecot23-2.3.11.3-52.1.src.rpm dovecot23-2.3.11.3-52.1.x86_64.rpm dovecot23-backend-mysql-2.3.11.3-52.1.x86_64.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.x86_64.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.x86_64.rpm dovecot23-devel-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-lucene-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-solr-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-squat-2.3.11.3-52.1.x86_64.rpm dovecot23-2.3.11.3-52.1.s390x.rpm dovecot23-backend-mysql-2.3.11.3-52.1.s390x.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.s390x.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.s390x.rpm dovecot23-devel-2.3.11.3-52.1.s390x.rpm dovecot23-fts-2.3.11.3-52.1.s390x.rpm dovecot23-fts-lucene-2.3.11.3-52.1.s390x.rpm dovecot23-fts-solr-2.3.11.3-52.1.s390x.rpm dovecot23-fts-squat-2.3.11.3-52.1.s390x.rpm dovecot23-2.3.11.3-52.1.ppc64le.rpm dovecot23-backend-mysql-2.3.11.3-52.1.ppc64le.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.ppc64le.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.ppc64le.rpm dovecot23-devel-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-lucene-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-solr-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-squat-2.3.11.3-52.1.ppc64le.rpm dovecot23-2.3.11.3-52.1.aarch64.rpm dovecot23-backend-mysql-2.3.11.3-52.1.aarch64.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.aarch64.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.aarch64.rpm dovecot23-devel-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-lucene-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-solr-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-squat-2.3.11.3-52.1.aarch64.rpm openSUSE-SLE-15.3-2021-2668 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issue: - salt had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) - Do noop for services states when running systemd in offline mode (bsc#1187787) - transactional_updates: do not execute states in parallel but use a queue (bsc#1188170) - Handle "master tops" data when states are applied by "transactional_update" (bsc#1187787) - Enhance openscap module: add "xccdf_eval" call - virt: pass emulator when getting domain capabilities from libvirt - Adding preliminary support for Rocky Linux - Implementation of held/unheld functions for state pkg (bsc#1187813) - Replace deprecated 'Thread.isAlive()' with 'Thread.is_alive()' - Fix exception in 'yumpkg.remove' for not installed package - Fix save for iptables state module (bsc#1185131) - virt: use '/dev/kvm' to detect KVM - zypperpkg: improve logic for handling vendorchange flags - Add bundled provides for tornado to the spec file - Enhance logging when inotify beacon is missing pyinotify (bsc#1186310) - Add 'python3-pyinotify' as a recommended package for Salt in SUSE/openSUSE distros - Fix 'tmpfiles.d' configuration for salt to not use legacy paths (bsc#1173103) - Detect Python version to use inside container (bsc#1167586, bsc#1164192) - Handle volumes on stopped pools in 'virt.vm_info' (bsc#1186287) - grains.extra: support old non-intel kernels (bsc#1180650) - Fix missing minion returns in batch mode (bsc#1184659) - Parsing Epoch out of version provided during pkg remove (bsc#1173692) python3-salt-3002.2-50.1.9.1.x86_64.rpm True salt-3002.2-50.1.9.1.src.rpm True salt-3002.2-50.1.9.1.x86_64.rpm True salt-api-3002.2-50.1.9.1.x86_64.rpm True salt-bash-completion-3002.2-50.1.9.1.noarch.rpm True salt-cloud-3002.2-50.1.9.1.x86_64.rpm True salt-doc-3002.2-50.1.9.1.x86_64.rpm True salt-fish-completion-3002.2-50.1.9.1.noarch.rpm True salt-master-3002.2-50.1.9.1.x86_64.rpm True salt-minion-3002.2-50.1.9.1.x86_64.rpm True salt-proxy-3002.2-50.1.9.1.x86_64.rpm True salt-ssh-3002.2-50.1.9.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.x86_64.rpm True salt-syndic-3002.2-50.1.9.1.x86_64.rpm True salt-transactional-update-3002.2-50.1.9.1.x86_64.rpm True salt-zsh-completion-3002.2-50.1.9.1.noarch.rpm True python3-salt-3002.2-50.1.9.1.s390x.rpm True salt-3002.2-50.1.9.1.s390x.rpm True salt-api-3002.2-50.1.9.1.s390x.rpm True salt-cloud-3002.2-50.1.9.1.s390x.rpm True salt-doc-3002.2-50.1.9.1.s390x.rpm True salt-master-3002.2-50.1.9.1.s390x.rpm True salt-minion-3002.2-50.1.9.1.s390x.rpm True salt-proxy-3002.2-50.1.9.1.s390x.rpm True salt-ssh-3002.2-50.1.9.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.s390x.rpm True salt-syndic-3002.2-50.1.9.1.s390x.rpm True salt-transactional-update-3002.2-50.1.9.1.s390x.rpm True python3-salt-3002.2-50.1.9.1.ppc64le.rpm True salt-3002.2-50.1.9.1.ppc64le.rpm True salt-api-3002.2-50.1.9.1.ppc64le.rpm True salt-cloud-3002.2-50.1.9.1.ppc64le.rpm True salt-doc-3002.2-50.1.9.1.ppc64le.rpm True salt-master-3002.2-50.1.9.1.ppc64le.rpm True salt-minion-3002.2-50.1.9.1.ppc64le.rpm True salt-proxy-3002.2-50.1.9.1.ppc64le.rpm True salt-ssh-3002.2-50.1.9.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.ppc64le.rpm True salt-syndic-3002.2-50.1.9.1.ppc64le.rpm True salt-transactional-update-3002.2-50.1.9.1.ppc64le.rpm True python3-salt-3002.2-50.1.9.1.aarch64.rpm True salt-3002.2-50.1.9.1.aarch64.rpm True salt-api-3002.2-50.1.9.1.aarch64.rpm True salt-cloud-3002.2-50.1.9.1.aarch64.rpm True salt-doc-3002.2-50.1.9.1.aarch64.rpm True salt-master-3002.2-50.1.9.1.aarch64.rpm True salt-minion-3002.2-50.1.9.1.aarch64.rpm True salt-proxy-3002.2-50.1.9.1.aarch64.rpm True salt-ssh-3002.2-50.1.9.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.aarch64.rpm True salt-syndic-3002.2-50.1.9.1.aarch64.rpm True salt-transactional-update-3002.2-50.1.9.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2089 important SUSE Updates openSUSE-SLE 15.3 This update for libreoffice fixes the following issue: - LibreOffice migration conflict from SUSE Linux Enterprise 15-SP2 to SUSE Linux Enterprise 15-SP3. (bsc#1187354) libreoffice-7.1.3.2-14.22.6.1.src.rpm libreoffice-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-base-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-branding-upstream-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-calc-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-calc-extensions-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-draw-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-filters-optional-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-gdb-pretty-printers-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-glade-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-gnome-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-gtk3-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-icon-themes-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-impress-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-l10n-af-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-am-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ar-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-as-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ast-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-be-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bg-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bn_IN-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-br-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-brx-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bs-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ca-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ca_valencia-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ckb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-cs-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-cy-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-da-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-de-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-dgo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-dsb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-dz-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-el-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-en-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-en_GB-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-en_ZA-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-eo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-es-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-et-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-eu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fa-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fi-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fur-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fy-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ga-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gd-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gug-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-he-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hi-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hsb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-id-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-is-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-it-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ja-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ka-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kab-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-km-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kmr_Latn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ko-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kok-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ks-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lt-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lv-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mai-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ml-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mni-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-my-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ne-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nso-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-oc-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-om-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-or-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pa-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pt_BR-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pt_PT-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ro-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ru-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-rw-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sa_IN-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sat-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sd-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-si-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sid-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sq-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ss-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-st-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sv-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sw_TZ-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-szl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ta-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-te-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tg-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-th-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ts-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tt-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ug-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-uk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-uz-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ve-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-vec-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-vi-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-xh-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-zh_CN-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-zh_TW-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-zu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-librelogo-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-mailmerge-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-math-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-officebean-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-pyuno-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-qt5-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-sdk-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-sdk-doc-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-writer-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-writer-extensions-7.1.3.2-14.22.6.1.x86_64.rpm libreofficekit-7.1.3.2-14.22.6.1.x86_64.rpm libreofficekit-devel-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-base-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-base-drivers-postgresql-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-calc-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-calc-extensions-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-draw-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-filters-optional-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-gnome-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-gtk3-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-impress-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-librelogo-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-mailmerge-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-math-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-officebean-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-pyuno-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-qt5-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-sdk-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-sdk-doc-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-writer-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-writer-extensions-7.1.3.2-14.22.6.1.ppc64le.rpm libreofficekit-7.1.3.2-14.22.6.1.ppc64le.rpm libreofficekit-devel-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-base-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-calc-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-calc-extensions-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-draw-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-filters-optional-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-gnome-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-gtk3-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-impress-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-librelogo-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-mailmerge-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-math-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-officebean-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-pyuno-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-qt5-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-sdk-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-sdk-doc-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-writer-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-writer-extensions-7.1.3.2-14.22.6.1.aarch64.rpm libreofficekit-7.1.3.2-14.22.6.1.aarch64.rpm libreofficekit-devel-7.1.3.2-14.22.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2118 important SUSE Updates openSUSE-SLE 15.3 This update for ovmf fixes the following issues: - Fixed a possible buffer overflow in IScsiDxe (bsc#1186151) ovmf-202008-10.8.1.src.rpm ovmf-202008-10.8.1.x86_64.rpm ovmf-tools-202008-10.8.1.x86_64.rpm qemu-ovmf-ia32-202008-10.8.1.noarch.rpm qemu-ovmf-x86_64-202008-10.8.1.noarch.rpm qemu-ovmf-x86_64-debug-202008-10.8.1.x86_64.rpm qemu-uefi-aarch32-202008-10.8.1.noarch.rpm qemu-uefi-aarch64-202008-10.8.1.noarch.rpm ovmf-202008-10.8.1.aarch64.rpm ovmf-tools-202008-10.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2274 moderate SUSE Updates openSUSE-SLE 15.3 This update for kubevirt fixes the following issues: General: - Updated kubevirt to version 0.40.0 - Fixed an issue when calling `virsh-domcapabilities` - Fixed the the wrong registry path for containers. Security fixes: - CVE-2021-20286: A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service. kubevirt-0.40.0-5.11.2.src.rpm kubevirt-container-disk-0.40.0-5.11.2.x86_64.rpm kubevirt-manifests-0.40.0-5.11.2.x86_64.rpm kubevirt-tests-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-api-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-controller-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-handler-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-launcher-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-operator-0.40.0-5.11.2.x86_64.rpm kubevirt-virtctl-0.40.0-5.11.2.x86_64.rpm openSUSE-SLE-15.3-2021-2158 important SUSE Updates openSUSE-SLE 15.3 This update for openexr fixes the following issues: - Fixed CVE-2021-3605 [bsc#1187395]: Heap buffer overflow in the rleUncompress function - Fixed CVE-2021-3598 [bsc#1187310]: Heap buffer overflow in Imf_3_1:CharPtrIO:readChars libIlmImf-2_2-23-2.2.1-3.32.1.x86_64.rpm libIlmImf-2_2-23-32bit-2.2.1-3.32.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-3.32.1.x86_64.rpm openexr-2.2.1-3.32.1.src.rpm openexr-2.2.1-3.32.1.x86_64.rpm openexr-devel-2.2.1-3.32.1.x86_64.rpm openexr-doc-2.2.1-3.32.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-3.32.1.s390x.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.s390x.rpm openexr-2.2.1-3.32.1.s390x.rpm openexr-devel-2.2.1-3.32.1.s390x.rpm openexr-doc-2.2.1-3.32.1.s390x.rpm libIlmImf-2_2-23-2.2.1-3.32.1.ppc64le.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.ppc64le.rpm openexr-2.2.1-3.32.1.ppc64le.rpm openexr-devel-2.2.1-3.32.1.ppc64le.rpm openexr-doc-2.2.1-3.32.1.ppc64le.rpm libIlmImf-2_2-23-2.2.1-3.32.1.aarch64.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.aarch64.rpm openexr-2.2.1-3.32.1.aarch64.rpm openexr-devel-2.2.1-3.32.1.aarch64.rpm openexr-doc-2.2.1-3.32.1.aarch64.rpm openSUSE-SLE-15.3-2021-2213 moderate SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2021-3546: Fixed out-of-bounds write in virgl_cmd_get_capset (bsc#1185981). - CVE-2021-3544: Fixed memory leaks found in the virtio vhost-user GPU device (bsc#1186010). - CVE-2021-3545: Fixed information disclosure due to uninitialized memory read (bsc#1185990). qemu-5.2.0-20.1.src.rpm qemu-5.2.0-20.1.x86_64.rpm qemu-arm-5.2.0-20.1.x86_64.rpm qemu-audio-alsa-5.2.0-20.1.x86_64.rpm qemu-audio-pa-5.2.0-20.1.x86_64.rpm qemu-audio-spice-5.2.0-20.1.x86_64.rpm qemu-block-curl-5.2.0-20.1.x86_64.rpm qemu-block-dmg-5.2.0-20.1.x86_64.rpm qemu-block-gluster-5.2.0-20.1.x86_64.rpm qemu-block-iscsi-5.2.0-20.1.x86_64.rpm qemu-block-nfs-5.2.0-20.1.x86_64.rpm qemu-block-rbd-5.2.0-20.1.x86_64.rpm qemu-block-ssh-5.2.0-20.1.x86_64.rpm qemu-chardev-baum-5.2.0-20.1.x86_64.rpm qemu-chardev-spice-5.2.0-20.1.x86_64.rpm qemu-extra-5.2.0-20.1.x86_64.rpm qemu-guest-agent-5.2.0-20.1.x86_64.rpm qemu-hw-display-qxl-5.2.0-20.1.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.x86_64.rpm qemu-hw-usb-redirect-5.2.0-20.1.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-20.1.x86_64.rpm qemu-ipxe-1.0.0+-20.1.noarch.rpm qemu-ivshmem-tools-5.2.0-20.1.x86_64.rpm qemu-ksm-5.2.0-20.1.x86_64.rpm qemu-kvm-5.2.0-20.1.x86_64.rpm qemu-lang-5.2.0-20.1.x86_64.rpm qemu-microvm-5.2.0-20.1.noarch.rpm qemu-ppc-5.2.0-20.1.x86_64.rpm qemu-s390x-5.2.0-20.1.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-20.1.noarch.rpm qemu-sgabios-8-20.1.noarch.rpm qemu-skiboot-5.2.0-20.1.noarch.rpm qemu-tools-5.2.0-20.1.x86_64.rpm qemu-ui-curses-5.2.0-20.1.x86_64.rpm qemu-ui-gtk-5.2.0-20.1.x86_64.rpm qemu-ui-opengl-5.2.0-20.1.x86_64.rpm qemu-ui-spice-app-5.2.0-20.1.x86_64.rpm qemu-ui-spice-core-5.2.0-20.1.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-20.1.noarch.rpm qemu-vhost-user-gpu-5.2.0-20.1.x86_64.rpm qemu-x86-5.2.0-20.1.x86_64.rpm qemu-5.2.0-20.1.s390x.rpm qemu-arm-5.2.0-20.1.s390x.rpm qemu-audio-alsa-5.2.0-20.1.s390x.rpm qemu-audio-pa-5.2.0-20.1.s390x.rpm qemu-audio-spice-5.2.0-20.1.s390x.rpm qemu-block-curl-5.2.0-20.1.s390x.rpm qemu-block-dmg-5.2.0-20.1.s390x.rpm qemu-block-gluster-5.2.0-20.1.s390x.rpm qemu-block-iscsi-5.2.0-20.1.s390x.rpm qemu-block-nfs-5.2.0-20.1.s390x.rpm qemu-block-rbd-5.2.0-20.1.s390x.rpm qemu-block-ssh-5.2.0-20.1.s390x.rpm qemu-chardev-baum-5.2.0-20.1.s390x.rpm qemu-chardev-spice-5.2.0-20.1.s390x.rpm qemu-extra-5.2.0-20.1.s390x.rpm qemu-guest-agent-5.2.0-20.1.s390x.rpm qemu-hw-display-qxl-5.2.0-20.1.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.s390x.rpm qemu-hw-usb-redirect-5.2.0-20.1.s390x.rpm qemu-hw-usb-smartcard-5.2.0-20.1.s390x.rpm qemu-ivshmem-tools-5.2.0-20.1.s390x.rpm qemu-ksm-5.2.0-20.1.s390x.rpm qemu-kvm-5.2.0-20.1.s390x.rpm qemu-lang-5.2.0-20.1.s390x.rpm qemu-ppc-5.2.0-20.1.s390x.rpm qemu-s390x-5.2.0-20.1.s390x.rpm qemu-tools-5.2.0-20.1.s390x.rpm qemu-ui-curses-5.2.0-20.1.s390x.rpm qemu-ui-gtk-5.2.0-20.1.s390x.rpm qemu-ui-opengl-5.2.0-20.1.s390x.rpm qemu-ui-spice-app-5.2.0-20.1.s390x.rpm qemu-ui-spice-core-5.2.0-20.1.s390x.rpm qemu-vhost-user-gpu-5.2.0-20.1.s390x.rpm qemu-x86-5.2.0-20.1.s390x.rpm qemu-5.2.0-20.1.ppc64le.rpm qemu-arm-5.2.0-20.1.ppc64le.rpm qemu-audio-alsa-5.2.0-20.1.ppc64le.rpm qemu-audio-pa-5.2.0-20.1.ppc64le.rpm qemu-audio-spice-5.2.0-20.1.ppc64le.rpm qemu-block-curl-5.2.0-20.1.ppc64le.rpm qemu-block-dmg-5.2.0-20.1.ppc64le.rpm qemu-block-gluster-5.2.0-20.1.ppc64le.rpm qemu-block-iscsi-5.2.0-20.1.ppc64le.rpm qemu-block-nfs-5.2.0-20.1.ppc64le.rpm qemu-block-rbd-5.2.0-20.1.ppc64le.rpm qemu-block-ssh-5.2.0-20.1.ppc64le.rpm qemu-chardev-baum-5.2.0-20.1.ppc64le.rpm qemu-chardev-spice-5.2.0-20.1.ppc64le.rpm qemu-extra-5.2.0-20.1.ppc64le.rpm qemu-guest-agent-5.2.0-20.1.ppc64le.rpm qemu-hw-display-qxl-5.2.0-20.1.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-20.1.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-20.1.ppc64le.rpm qemu-ivshmem-tools-5.2.0-20.1.ppc64le.rpm qemu-ksm-5.2.0-20.1.ppc64le.rpm qemu-lang-5.2.0-20.1.ppc64le.rpm qemu-ppc-5.2.0-20.1.ppc64le.rpm qemu-s390x-5.2.0-20.1.ppc64le.rpm qemu-tools-5.2.0-20.1.ppc64le.rpm qemu-ui-curses-5.2.0-20.1.ppc64le.rpm qemu-ui-gtk-5.2.0-20.1.ppc64le.rpm qemu-ui-opengl-5.2.0-20.1.ppc64le.rpm qemu-ui-spice-app-5.2.0-20.1.ppc64le.rpm qemu-ui-spice-core-5.2.0-20.1.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-20.1.ppc64le.rpm qemu-x86-5.2.0-20.1.ppc64le.rpm qemu-5.2.0-20.1.aarch64.rpm qemu-arm-5.2.0-20.1.aarch64.rpm qemu-audio-alsa-5.2.0-20.1.aarch64.rpm qemu-audio-pa-5.2.0-20.1.aarch64.rpm qemu-audio-spice-5.2.0-20.1.aarch64.rpm qemu-block-curl-5.2.0-20.1.aarch64.rpm qemu-block-dmg-5.2.0-20.1.aarch64.rpm qemu-block-gluster-5.2.0-20.1.aarch64.rpm qemu-block-iscsi-5.2.0-20.1.aarch64.rpm qemu-block-nfs-5.2.0-20.1.aarch64.rpm qemu-block-rbd-5.2.0-20.1.aarch64.rpm qemu-block-ssh-5.2.0-20.1.aarch64.rpm qemu-chardev-baum-5.2.0-20.1.aarch64.rpm qemu-chardev-spice-5.2.0-20.1.aarch64.rpm qemu-extra-5.2.0-20.1.aarch64.rpm qemu-guest-agent-5.2.0-20.1.aarch64.rpm qemu-hw-display-qxl-5.2.0-20.1.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.aarch64.rpm qemu-hw-usb-redirect-5.2.0-20.1.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-20.1.aarch64.rpm qemu-ivshmem-tools-5.2.0-20.1.aarch64.rpm qemu-ksm-5.2.0-20.1.aarch64.rpm qemu-lang-5.2.0-20.1.aarch64.rpm qemu-ppc-5.2.0-20.1.aarch64.rpm qemu-s390x-5.2.0-20.1.aarch64.rpm qemu-tools-5.2.0-20.1.aarch64.rpm qemu-ui-curses-5.2.0-20.1.aarch64.rpm qemu-ui-gtk-5.2.0-20.1.aarch64.rpm qemu-ui-opengl-5.2.0-20.1.aarch64.rpm qemu-ui-spice-app-5.2.0-20.1.aarch64.rpm qemu-ui-spice-core-5.2.0-20.1.aarch64.rpm qemu-vhost-user-gpu-5.2.0-20.1.aarch64.rpm qemu-x86-5.2.0-20.1.aarch64.rpm openSUSE-SLE-15.3-2021-3480 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-network fixes the following issues: - Don't crash when the interfaces table contains a not configured one (bnc#1190645, bsc#1190915). - Fix the shown description using the interface friendly name when it is empty (bsc#1190933). - Consider aliases sections as case insensitive (bsc#1190739). - Display user defined device name in the devices overview (bnc#1190645). - Don't crash when defined aliases in AutoYaST profile are not defined as a map (bsc#1188344). - Support 'boot' and 'on' as aliases for the 'auto' startmode (bsc#1186910). - Fix desktop file so the control center tooltip is translated (bsc#1187270). - Use the linuxrc proxy settings for the HTTPS and FTP proxies (bsc#1185016). - Don't crash at the end of installation when storing wifi configuration for NetworkManager (bsc#1185524, bsc#1187512). augeas-1.10.1-3.3.1.src.rpm augeas-1.10.1-3.3.1.x86_64.rpm augeas-devel-1.10.1-3.3.1.x86_64.rpm augeas-devel-32bit-1.10.1-3.3.1.x86_64.rpm augeas-lense-tests-1.10.1-3.3.1.x86_64.rpm augeas-lenses-1.10.1-3.3.1.x86_64.rpm libaugeas0-1.10.1-3.3.1.x86_64.rpm libaugeas0-32bit-1.10.1-3.3.1.x86_64.rpm yast2-network-4.3.77-3.16.1.noarch.rpm yast2-network-4.3.77-3.16.1.src.rpm augeas-1.10.1-3.3.1.s390x.rpm augeas-devel-1.10.1-3.3.1.s390x.rpm augeas-lense-tests-1.10.1-3.3.1.s390x.rpm augeas-lenses-1.10.1-3.3.1.s390x.rpm libaugeas0-1.10.1-3.3.1.s390x.rpm augeas-1.10.1-3.3.1.ppc64le.rpm augeas-devel-1.10.1-3.3.1.ppc64le.rpm augeas-lense-tests-1.10.1-3.3.1.ppc64le.rpm augeas-lenses-1.10.1-3.3.1.ppc64le.rpm libaugeas0-1.10.1-3.3.1.ppc64le.rpm augeas-1.10.1-3.3.1.aarch64.rpm augeas-devel-1.10.1-3.3.1.aarch64.rpm augeas-lense-tests-1.10.1-3.3.1.aarch64.rpm augeas-lenses-1.10.1-3.3.1.aarch64.rpm libaugeas0-1.10.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2288 moderate SUSE Updates openSUSE-SLE 15.3 This update for linuxrc fixes the following issues: - Prevent memory corruption while iterating through network device list. (bsc#1187014) linuxrc-7.0.30.4-3.3.1.src.rpm linuxrc-7.0.30.4-3.3.1.x86_64.rpm linuxrc-7.0.30.4-3.3.1.s390x.rpm linuxrc-7.0.30.4-3.3.1.ppc64le.rpm linuxrc-7.0.30.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2273 moderate SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: - Enhance XML output of repo GPG options - Add optional attributes showing the raw values actually present in the '.repo' file. - Link all executables with -PIE (bsc#1186447) - Ship an empty '/etc/zypp/needreboot' per default (jsc#PM-2645) - Add 'Solvable::isBlacklisted' as superset of retracted and ptf packages (bsc#1186503) - Fix segv if 'ZYPP_FULLOG' is set. libzypp-17.27.0-12.1.src.rpm True libzypp-17.27.0-12.1.x86_64.rpm True libzypp-devel-17.27.0-12.1.x86_64.rpm True libzypp-devel-doc-17.27.0-12.1.x86_64.rpm True zypper-1.14.46-13.1.src.rpm True zypper-1.14.46-13.1.x86_64.rpm True zypper-aptitude-1.14.46-13.1.noarch.rpm True zypper-log-1.14.46-13.1.noarch.rpm True zypper-needs-restarting-1.14.46-13.1.noarch.rpm True libzypp-17.27.0-12.1.s390x.rpm True libzypp-devel-17.27.0-12.1.s390x.rpm True libzypp-devel-doc-17.27.0-12.1.s390x.rpm True zypper-1.14.46-13.1.s390x.rpm True libzypp-17.27.0-12.1.ppc64le.rpm True libzypp-devel-17.27.0-12.1.ppc64le.rpm True libzypp-devel-doc-17.27.0-12.1.ppc64le.rpm True zypper-1.14.46-13.1.ppc64le.rpm True libzypp-17.27.0-12.1.aarch64.rpm True libzypp-devel-17.27.0-12.1.aarch64.rpm True libzypp-devel-doc-17.27.0-12.1.aarch64.rpm True zypper-1.14.46-13.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2268 moderate SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - When detecting HNV connection list all connections, not only active ones. (bsc#1187148) powerpc-utils-1.3.8-9.3.1.ppc64le.rpm powerpc-utils-1.3.8-9.3.1.src.rpm openSUSE-SLE-15.3-2021-2142 moderate SUSE Updates openSUSE-SLE 15.3 This update for dpdk fixes the following issue: - dpdk had a lower release number in 15 sp2 than in sp3, which could lead to migration issues. (bsc#1186642) dpdk-19.11.4-6.1.src.rpm dpdk-19.11.4-6.1.x86_64.rpm dpdk-devel-19.11.4-6.1.x86_64.rpm dpdk-doc-19.11.4-6.1.noarch.rpm dpdk-examples-19.11.4-6.1.x86_64.rpm dpdk-kmp-default-19.11.4_k5.3.18_59.5-6.1.x86_64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_59.5-6.1.x86_64.rpm dpdk-tools-19.11.4-6.1.x86_64.rpm libdpdk-20_0-19.11.4-6.1.x86_64.rpm dpdk-19.11.4-6.1.ppc64le.rpm dpdk-devel-19.11.4-6.1.ppc64le.rpm dpdk-examples-19.11.4-6.1.ppc64le.rpm dpdk-kmp-default-19.11.4_k5.3.18_59.5-6.1.ppc64le.rpm dpdk-tools-19.11.4-6.1.ppc64le.rpm libdpdk-20_0-19.11.4-6.1.ppc64le.rpm dpdk-19.11.4-6.1.aarch64.rpm dpdk-devel-19.11.4-6.1.aarch64.rpm dpdk-examples-19.11.4-6.1.aarch64.rpm dpdk-kmp-default-19.11.4_k5.3.18_59.5-6.1.aarch64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_59.5-6.1.aarch64.rpm dpdk-tools-19.11.4-6.1.aarch64.rpm libdpdk-20_0-19.11.4-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2136 important SUSE Updates openSUSE-SLE 15.3 This update for cryptctl fixes the following issues: Update to version 2.4: - CVE-2019-18906: Client side password hashing was equivalent to clear text password storage (bsc#1186226) - First step to use plain text password instead of hashed password. - Move repository into the SUSE github organization - in RPC server, if client comes from localhost, remember its ipv4 localhost address instead of ipv6 address - tell a record to clear expired pending commands upon saving a command result; introduce pending commands RPC test case - avoid hard coding 127.0.0.1 in host ID of alive message test; let system administrator mount and unmount disks by issuing these two commands on key server. cryptctl-2.4-4.5.1.src.rpm cryptctl-2.4-4.5.1.x86_64.rpm cryptctl-2.4-4.5.1.ppc64le.rpm openSUSE-SLE-15.3-2021-2290 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issue: - reduce requirement of clang and llvm to recommends in "postgresql13-server-devel". libecpg6-13.3-5.13.1.x86_64.rpm libecpg6-32bit-13.3-5.13.1.x86_64.rpm libpq5-13.3-5.13.1.x86_64.rpm postgresql13-13.3-5.13.1.src.rpm postgresql13-13.3-5.13.1.x86_64.rpm postgresql13-contrib-13.3-5.13.1.x86_64.rpm postgresql13-devel-13.3-5.13.1.x86_64.rpm postgresql13-docs-13.3-5.13.1.noarch.rpm postgresql13-llvmjit-13.3-5.13.1.x86_64.rpm postgresql13-plperl-13.3-5.13.1.x86_64.rpm postgresql13-plpython-13.3-5.13.1.x86_64.rpm postgresql13-pltcl-13.3-5.13.1.x86_64.rpm postgresql13-server-13.3-5.13.1.x86_64.rpm postgresql13-server-devel-13.3-5.13.1.x86_64.rpm postgresql13-test-13.3-5.13.1.x86_64.rpm libecpg6-13.3-5.13.1.s390x.rpm libpq5-13.3-5.13.1.s390x.rpm postgresql13-13.3-5.13.1.s390x.rpm postgresql13-contrib-13.3-5.13.1.s390x.rpm postgresql13-devel-13.3-5.13.1.s390x.rpm postgresql13-llvmjit-13.3-5.13.1.s390x.rpm postgresql13-plperl-13.3-5.13.1.s390x.rpm postgresql13-plpython-13.3-5.13.1.s390x.rpm postgresql13-pltcl-13.3-5.13.1.s390x.rpm postgresql13-server-13.3-5.13.1.s390x.rpm postgresql13-server-devel-13.3-5.13.1.s390x.rpm postgresql13-test-13.3-5.13.1.s390x.rpm libecpg6-13.3-5.13.1.ppc64le.rpm libpq5-13.3-5.13.1.ppc64le.rpm postgresql13-13.3-5.13.1.ppc64le.rpm postgresql13-contrib-13.3-5.13.1.ppc64le.rpm postgresql13-devel-13.3-5.13.1.ppc64le.rpm postgresql13-llvmjit-13.3-5.13.1.ppc64le.rpm postgresql13-plperl-13.3-5.13.1.ppc64le.rpm postgresql13-plpython-13.3-5.13.1.ppc64le.rpm postgresql13-pltcl-13.3-5.13.1.ppc64le.rpm postgresql13-server-13.3-5.13.1.ppc64le.rpm postgresql13-server-devel-13.3-5.13.1.ppc64le.rpm postgresql13-test-13.3-5.13.1.ppc64le.rpm libecpg6-13.3-5.13.1.aarch64.rpm libpq5-13.3-5.13.1.aarch64.rpm postgresql13-13.3-5.13.1.aarch64.rpm postgresql13-contrib-13.3-5.13.1.aarch64.rpm postgresql13-devel-13.3-5.13.1.aarch64.rpm postgresql13-llvmjit-13.3-5.13.1.aarch64.rpm postgresql13-plperl-13.3-5.13.1.aarch64.rpm postgresql13-plpython-13.3-5.13.1.aarch64.rpm postgresql13-pltcl-13.3-5.13.1.aarch64.rpm postgresql13-server-13.3-5.13.1.aarch64.rpm postgresql13-server-devel-13.3-5.13.1.aarch64.rpm postgresql13-test-13.3-5.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-2816 low SUSE Updates openSUSE-SLE 15.3 This patch provides the python3-kubernetes package to the following modules: - Container Module for SUSE Linux Enterprise 15 SP2 - Container Module for SUSE Linux Enterprise 15 SP3 python-cachetools-4.1.0-3.2.1.src.rpm python-google-auth-1.21.2-3.4.1.src.rpm python-kubernetes-8.0.1-3.5.1.src.rpm python-oauth2client-4.1.3-3.2.1.src.rpm python-pycrypto-2.6.1-3.2.1.src.rpm python2-google-auth-1.21.2-3.4.1.noarch.rpm python2-kubernetes-8.0.1-3.5.1.noarch.rpm python2-oauth2client-4.1.3-3.2.1.noarch.rpm python2-oauth2client-flask-4.1.3-3.2.1.noarch.rpm python2-oauth2client-gce-4.1.3-3.2.1.noarch.rpm python2-pycrypto-2.6.1-3.2.1.x86_64.rpm python3-cachetools-4.1.0-3.2.1.noarch.rpm python3-google-auth-1.21.2-3.4.1.noarch.rpm python3-kubernetes-8.0.1-3.5.1.noarch.rpm python3-oauth2client-4.1.3-3.2.1.noarch.rpm python3-oauth2client-flask-4.1.3-3.2.1.noarch.rpm python3-oauth2client-gce-4.1.3-3.2.1.noarch.rpm python3-pycrypto-2.6.1-3.2.1.x86_64.rpm python2-pycrypto-2.6.1-3.2.1.s390x.rpm python3-pycrypto-2.6.1-3.2.1.s390x.rpm python2-pycrypto-2.6.1-3.2.1.ppc64le.rpm python3-pycrypto-2.6.1-3.2.1.ppc64le.rpm python2-pycrypto-2.6.1-3.2.1.aarch64.rpm python3-pycrypto-2.6.1-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2154 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-Cython fixes the following issue: - python-Cython had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642 bsc#1187450) python-Cython-0.29.14-102.1.src.rpm python2-Cython-0.29.14-102.1.x86_64.rpm python3-Cython-0.29.14-102.1.x86_64.rpm python2-Cython-0.29.14-102.1.s390x.rpm python3-Cython-0.29.14-102.1.s390x.rpm python2-Cython-0.29.14-102.1.ppc64le.rpm python3-Cython-0.29.14-102.1.ppc64le.rpm python2-Cython-0.29.14-102.1.aarch64.rpm python3-Cython-0.29.14-102.1.aarch64.rpm openSUSE-SLE-15.3-2021-2287 moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - Fixes an issue where screen rotation was not working (bsc#1182955) xorg-x11-server-1.20.3-22.5.36.1.src.rpm xorg-x11-server-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-source-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-source-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-source-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-source-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2289 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnome-bluetooth fixes the following issues: - Improved headset pairing when using gnome-control-center (bsc#1186277) gnome-bluetooth-3.34.5-4.3.1.src.rpm gnome-bluetooth-3.34.5-4.3.1.x86_64.rpm gnome-bluetooth-devel-3.34.5-4.3.1.x86_64.rpm gnome-bluetooth-lang-3.34.5-4.3.1.noarch.rpm libgnome-bluetooth13-3.34.5-4.3.1.x86_64.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.x86_64.rpm gnome-bluetooth-3.34.5-4.3.1.s390x.rpm gnome-bluetooth-devel-3.34.5-4.3.1.s390x.rpm libgnome-bluetooth13-3.34.5-4.3.1.s390x.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.s390x.rpm gnome-bluetooth-3.34.5-4.3.1.ppc64le.rpm gnome-bluetooth-devel-3.34.5-4.3.1.ppc64le.rpm libgnome-bluetooth13-3.34.5-4.3.1.ppc64le.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.ppc64le.rpm gnome-bluetooth-3.34.5-4.3.1.aarch64.rpm gnome-bluetooth-devel-3.34.5-4.3.1.aarch64.rpm libgnome-bluetooth13-3.34.5-4.3.1.aarch64.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2435 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: Update to version 4.3.1+20210624.67223df2: - Fix: ocfs2: Skip verifying UUID for ocfs2 device on top of raid or lvm on the join node (bsc#1187553) - Fix: history: use Path.mkdir instead of mkdir command(bsc#1179999, CVE-2020-35459) - Dev: crash_test: Add big warnings to have users' attention to potential failover(jsc#SLE-17979) - Dev: crash_test: rename preflight_check as crash_test(jsc#SLE-17979) - Fix: bootstrap: update sbd watchdog timeout when using diskless SBD with qdevice(bsc#1184465) - Dev: utils: allow configure link-local ipv6 address(bsc#1163460) - Fix: parse: shouldn't allow property setting with an empty value(bsc#1185423) - Fix: help: show help message from argparse(bsc#1175982) crmsh-4.3.1+20210702.4e0ee8fb-5.59.1.noarch.rpm crmsh-4.3.1+20210702.4e0ee8fb-5.59.1.src.rpm crmsh-scripts-4.3.1+20210702.4e0ee8fb-5.59.1.noarch.rpm crmsh-test-4.3.1+20210702.4e0ee8fb-5.59.1.noarch.rpm openSUSE-SLE-15.3-2021-2153 important SUSE Updates openSUSE-SLE 15.3 This update for gupnp fixes the following issues: - CVE-2021-33516: Fixed a DNS rebinding, which could trick the browser into triggering actions against local UPnP services (bsc#1186590). gupnp-1.2.2-3.3.1.src.rpm libgupnp-1_2-0-1.2.2-3.3.1.x86_64.rpm libgupnp-1_2-0-32bit-1.2.2-3.3.1.x86_64.rpm libgupnp-devel-1.2.2-3.3.1.x86_64.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.x86_64.rpm libgupnp-1_2-0-1.2.2-3.3.1.s390x.rpm libgupnp-devel-1.2.2-3.3.1.s390x.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.s390x.rpm libgupnp-1_2-0-1.2.2-3.3.1.ppc64le.rpm libgupnp-devel-1.2.2-3.3.1.ppc64le.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.ppc64le.rpm libgupnp-1_2-0-1.2.2-3.3.1.aarch64.rpm libgupnp-devel-1.2.2-3.3.1.aarch64.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2193 moderate SUSE Updates openSUSE-SLE 15.3 This update for tar fixes the following issues: - Link '/var/lib/tests/tar/bin/genfile' as Position-Independent Executable (bsc#1184124) tar-1.30-3.9.1.src.rpm tar-1.30-3.9.1.x86_64.rpm tar-backup-scripts-1.30-3.9.1.noarch.rpm tar-doc-1.30-3.9.1.noarch.rpm tar-lang-1.30-3.9.1.noarch.rpm tar-rmt-1.30-3.9.1.x86_64.rpm tar-tests-1.30-3.9.1.x86_64.rpm tar-1.30-3.9.1.s390x.rpm tar-rmt-1.30-3.9.1.s390x.rpm tar-tests-1.30-3.9.1.s390x.rpm tar-1.30-3.9.1.ppc64le.rpm tar-rmt-1.30-3.9.1.ppc64le.rpm tar-tests-1.30-3.9.1.ppc64le.rpm tar-1.30-3.9.1.aarch64.rpm tar-rmt-1.30-3.9.1.aarch64.rpm tar-tests-1.30-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2314 moderate SUSE Updates openSUSE-SLE 15.3 This update for netcontrol fixes the following issues: - Fixed an issue when the interface list takes too long with many interfaces. (bsc#1179144) - Install pkgconfig into libdir instead of datadir libnetcontrol-devel-0.3.2-10.5.1.x86_64.rpm libnetcontrol0-0.3.2-10.5.1.x86_64.rpm libnetcontrol0-32bit-0.3.2-10.5.1.x86_64.rpm netcontrol-0.3.2-10.5.1.src.rpm libnetcontrol-devel-0.3.2-10.5.1.s390x.rpm libnetcontrol0-0.3.2-10.5.1.s390x.rpm libnetcontrol-devel-0.3.2-10.5.1.ppc64le.rpm libnetcontrol0-0.3.2-10.5.1.ppc64le.rpm libnetcontrol-devel-0.3.2-10.5.1.aarch64.rpm libnetcontrol0-0.3.2-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2281 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: - build 32bit arches llvm without debuginfo to avoid oom during build (bsc#1181571) cargo-1.43.1-15.1.x86_64.rpm cargo-doc-1.43.1-15.1.noarch.rpm clippy-1.43.1-15.1.x86_64.rpm rls-1.43.1-15.1.x86_64.rpm rust-1.43.1-15.1.src.rpm rust-1.43.1-15.1.x86_64.rpm rust-analysis-1.43.1-15.1.x86_64.rpm rust-doc-1.43.1-15.1.x86_64.rpm rust-gdb-1.43.1-15.1.x86_64.rpm rust-src-1.43.1-15.1.noarch.rpm rust-std-static-1.43.1-15.1.x86_64.rpm rustfmt-1.43.1-15.1.x86_64.rpm cargo-1.43.1-15.1.s390x.rpm clippy-1.43.1-15.1.s390x.rpm rls-1.43.1-15.1.s390x.rpm rust-1.43.1-15.1.s390x.rpm rust-analysis-1.43.1-15.1.s390x.rpm rust-doc-1.43.1-15.1.s390x.rpm rust-gdb-1.43.1-15.1.s390x.rpm rust-std-static-1.43.1-15.1.s390x.rpm rustfmt-1.43.1-15.1.s390x.rpm cargo-1.43.1-15.1.ppc64le.rpm clippy-1.43.1-15.1.ppc64le.rpm rls-1.43.1-15.1.ppc64le.rpm rust-1.43.1-15.1.ppc64le.rpm rust-analysis-1.43.1-15.1.ppc64le.rpm rust-doc-1.43.1-15.1.ppc64le.rpm rust-gdb-1.43.1-15.1.ppc64le.rpm rust-std-static-1.43.1-15.1.ppc64le.rpm rustfmt-1.43.1-15.1.ppc64le.rpm cargo-1.43.1-15.1.aarch64.rpm clippy-1.43.1-15.1.aarch64.rpm rls-1.43.1-15.1.aarch64.rpm rust-1.43.1-15.1.aarch64.rpm rust-analysis-1.43.1-15.1.aarch64.rpm rust-doc-1.43.1-15.1.aarch64.rpm rust-gdb-1.43.1-15.1.aarch64.rpm rust-std-static-1.43.1-15.1.aarch64.rpm rustfmt-1.43.1-15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2096 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-six fixes the following issue: - python-six had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) python-six-1.14.0-10.1.src.rpm python2-six-1.14.0-10.1.noarch.rpm python3-six-1.14.0-10.1.noarch.rpm openSUSE-SLE-15.3-2021-2123 important SUSE Updates openSUSE-SLE 15.3 This update for dovecot23 fixes the following issues: - CVE-2021-29157: Local attacker can login as any user and access their emails (bsc#1187418) - CVE-2021-33515: Attacker can potentially steal user credentials and mails (bsc#1187419) dovecot23-2.3.11.3-55.1.src.rpm dovecot23-2.3.11.3-55.1.x86_64.rpm dovecot23-backend-mysql-2.3.11.3-55.1.x86_64.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.x86_64.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.x86_64.rpm dovecot23-devel-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-lucene-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-solr-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-squat-2.3.11.3-55.1.x86_64.rpm dovecot23-2.3.11.3-55.1.s390x.rpm dovecot23-backend-mysql-2.3.11.3-55.1.s390x.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.s390x.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.s390x.rpm dovecot23-devel-2.3.11.3-55.1.s390x.rpm dovecot23-fts-2.3.11.3-55.1.s390x.rpm dovecot23-fts-lucene-2.3.11.3-55.1.s390x.rpm dovecot23-fts-solr-2.3.11.3-55.1.s390x.rpm dovecot23-fts-squat-2.3.11.3-55.1.s390x.rpm dovecot23-2.3.11.3-55.1.ppc64le.rpm dovecot23-backend-mysql-2.3.11.3-55.1.ppc64le.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.ppc64le.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.ppc64le.rpm dovecot23-devel-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-lucene-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-solr-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-squat-2.3.11.3-55.1.ppc64le.rpm dovecot23-2.3.11.3-55.1.aarch64.rpm dovecot23-backend-mysql-2.3.11.3-55.1.aarch64.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.aarch64.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.aarch64.rpm dovecot23-devel-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-lucene-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-solr-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-squat-2.3.11.3-55.1.aarch64.rpm openSUSE-SLE-15.3-2021-2144 moderate SUSE Updates openSUSE-SLE 15.3 This update for redis fixes the following issue: - rebuilt against openssl 1.1.1 to support TLS 1.3 configuration. (bsc#1187083) redis-6.0.13-6.2.1.src.rpm redis-6.0.13-6.2.1.x86_64.rpm redis-6.0.13-6.2.1.s390x.rpm redis-6.0.13-6.2.1.ppc64le.rpm redis-6.0.13-6.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2191 moderate SUSE Updates openSUSE-SLE 15.3 This update for patterns-microos provides the following fix: - Add zypper-migration-plugin to the default pattern. (bsc#1186791) suse-build-key-12.0-8.16.1.noarch.rpm suse-build-key-12.0-8.16.1.src.rpm openSUSE-SLE-15.3-2021-2234 moderate SUSE Updates openSUSE-SLE 15.3 This update for ntp fixes the following issues: - Fix a typo in '%post' section. (bsc#1186431) ntp-4.2.8p15-4.19.1.src.rpm ntp-4.2.8p15-4.19.1.x86_64.rpm ntp-doc-4.2.8p15-4.19.1.x86_64.rpm ntp-4.2.8p15-4.19.1.s390x.rpm ntp-doc-4.2.8p15-4.19.1.s390x.rpm ntp-4.2.8p15-4.19.1.ppc64le.rpm ntp-doc-4.2.8p15-4.19.1.ppc64le.rpm ntp-4.2.8p15-4.19.1.aarch64.rpm ntp-doc-4.2.8p15-4.19.1.aarch64.rpm openSUSE-SLE-15.3-2021-2150 moderate SUSE Updates openSUSE-SLE 15.3 This update for x3270 fixes the following issue: - x3270 had a lower release number in 15 sp3 than in 15 sp2, which could lead to migration issues. (bsc#1186642) x3270-3.6-6.1.src.rpm x3270-3.6-6.1.x86_64.rpm x3270-3.6-6.1.s390x.rpm x3270-3.6-6.1.ppc64le.rpm x3270-3.6-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2682 important SUSE Updates openSUSE-SLE 15.3 This update for rpm fixes the following issues: - Changed default package verification level to 'none' to be compatible to rpm-4.14.1 - Made illegal obsoletes a warning - Fixed a potential access of freed mem in ndb's glue code (bsc#1179416) - Added support for enforcing signature policy and payload verification step to transactions (jsc#SLE-17817) - Added :humansi and :hmaniec query formatters for human readable output - Added query selectors for whatobsoletes and whatconflicts - Added support for sorting caret higher than base version - rpm does no longer require the signature header to be in a contiguous region when signing (bsc#1181805) Security fixes: - CVE-2021-3421: A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity (bsc#1183543) - CVE-2021-20271: A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability (bsc#1183545) - CVE-2021-20266: A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability. python-rpm-4.14.3-37.2.src.rpm True python2-rpm-4.14.3-37.2.x86_64.rpm True python3-rpm-4.14.3-37.2.x86_64.rpm True rpm-32bit-4.14.3-37.2.x86_64.rpm True rpm-4.14.3-37.2.src.rpm True rpm-4.14.3-37.2.x86_64.rpm True rpm-build-4.14.3-37.2.x86_64.rpm True rpm-devel-4.14.3-37.2.x86_64.rpm True rpm-ndb-32bit-4.14.3-37.2.x86_64.rpm True rpm-ndb-4.14.3-37.2.src.rpm True rpm-ndb-4.14.3-37.2.x86_64.rpm True python2-rpm-4.14.3-37.2.s390x.rpm True python3-rpm-4.14.3-37.2.s390x.rpm True rpm-4.14.3-37.2.s390x.rpm True rpm-build-4.14.3-37.2.s390x.rpm True rpm-devel-4.14.3-37.2.s390x.rpm True rpm-ndb-4.14.3-37.2.s390x.rpm True python2-rpm-4.14.3-37.2.ppc64le.rpm True python3-rpm-4.14.3-37.2.ppc64le.rpm True rpm-4.14.3-37.2.ppc64le.rpm True rpm-build-4.14.3-37.2.ppc64le.rpm True rpm-devel-4.14.3-37.2.ppc64le.rpm True rpm-ndb-4.14.3-37.2.ppc64le.rpm True python2-rpm-4.14.3-37.2.aarch64.rpm True python3-rpm-4.14.3-37.2.aarch64.rpm True rpm-4.14.3-37.2.aarch64.rpm True rpm-build-4.14.3-37.2.aarch64.rpm True rpm-devel-4.14.3-37.2.aarch64.rpm True rpm-ndb-4.14.3-37.2.aarch64.rpm True openSUSE-SLE-15.3-2021-2630 moderate SUSE Updates openSUSE-SLE 15.3 This update for crash fixes the following issue: - Use the value of 'xen_start_info' to determine whether the kernel is running in Xen ParaVirtual OPerationS (PVOPS) mode. (bsc#1187634) - Fix backtrace command when analyzing dump. (bsc#1185209) crash-7.2.9-23.5.3.src.rpm crash-7.2.9-23.5.3.x86_64.rpm crash-devel-7.2.9-23.5.3.x86_64.rpm crash-doc-7.2.9-23.5.3.x86_64.rpm crash-eppic-7.2.9-23.5.3.x86_64.rpm crash-gcore-7.2.9-23.5.3.x86_64.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.x86_64.rpm crash-kmp-preempt-7.2.9_k5.3.18_59.16-23.5.3.x86_64.rpm crash-7.2.9-23.5.3.s390x.rpm crash-devel-7.2.9-23.5.3.s390x.rpm crash-doc-7.2.9-23.5.3.s390x.rpm crash-eppic-7.2.9-23.5.3.s390x.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.s390x.rpm crash-7.2.9-23.5.3.ppc64le.rpm crash-devel-7.2.9-23.5.3.ppc64le.rpm crash-doc-7.2.9-23.5.3.ppc64le.rpm crash-eppic-7.2.9-23.5.3.ppc64le.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.ppc64le.rpm crash-7.2.9-23.5.3.aarch64.rpm crash-devel-7.2.9-23.5.3.aarch64.rpm crash-doc-7.2.9-23.5.3.aarch64.rpm crash-eppic-7.2.9-23.5.3.aarch64.rpm crash-kmp-64kb-7.2.9_k5.3.18_59.16-23.5.3.aarch64.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.aarch64.rpm crash-kmp-preempt-7.2.9_k5.3.18_59.16-23.5.3.aarch64.rpm openSUSE-SLE-15.3-2021-2205 important SUSE Updates openSUSE-SLE 15.3 This update for openldap2 fixes the following issues: - Resolve issues in the idle / connection 'TTL' timeout implementation in OpenLDAP. (bsc#1187210) libldap-2_4-2-2.4.46-9.56.1.x86_64.rpm libldap-2_4-2-32bit-2.4.46-9.56.1.x86_64.rpm libldap-data-2.4.46-9.56.1.noarch.rpm openldap2-2.4.46-9.56.1.src.rpm openldap2-2.4.46-9.56.1.x86_64.rpm openldap2-back-meta-2.4.46-9.56.1.x86_64.rpm openldap2-back-perl-2.4.46-9.56.1.x86_64.rpm openldap2-back-sock-2.4.46-9.56.1.x86_64.rpm openldap2-back-sql-2.4.46-9.56.1.x86_64.rpm openldap2-client-2.4.46-9.56.1.x86_64.rpm openldap2-contrib-2.4.46-9.56.1.x86_64.rpm openldap2-devel-2.4.46-9.56.1.x86_64.rpm openldap2-devel-32bit-2.4.46-9.56.1.x86_64.rpm openldap2-devel-static-2.4.46-9.56.1.x86_64.rpm openldap2-doc-2.4.46-9.56.1.noarch.rpm openldap2-ppolicy-check-password-1.2-9.56.1.x86_64.rpm libldap-2_4-2-2.4.46-9.56.1.s390x.rpm openldap2-2.4.46-9.56.1.s390x.rpm openldap2-back-meta-2.4.46-9.56.1.s390x.rpm openldap2-back-perl-2.4.46-9.56.1.s390x.rpm openldap2-back-sock-2.4.46-9.56.1.s390x.rpm openldap2-back-sql-2.4.46-9.56.1.s390x.rpm openldap2-client-2.4.46-9.56.1.s390x.rpm openldap2-contrib-2.4.46-9.56.1.s390x.rpm openldap2-devel-2.4.46-9.56.1.s390x.rpm openldap2-devel-static-2.4.46-9.56.1.s390x.rpm openldap2-ppolicy-check-password-1.2-9.56.1.s390x.rpm libldap-2_4-2-2.4.46-9.56.1.ppc64le.rpm openldap2-2.4.46-9.56.1.ppc64le.rpm openldap2-back-meta-2.4.46-9.56.1.ppc64le.rpm openldap2-back-perl-2.4.46-9.56.1.ppc64le.rpm openldap2-back-sock-2.4.46-9.56.1.ppc64le.rpm openldap2-back-sql-2.4.46-9.56.1.ppc64le.rpm openldap2-client-2.4.46-9.56.1.ppc64le.rpm openldap2-contrib-2.4.46-9.56.1.ppc64le.rpm openldap2-devel-2.4.46-9.56.1.ppc64le.rpm openldap2-devel-static-2.4.46-9.56.1.ppc64le.rpm openldap2-ppolicy-check-password-1.2-9.56.1.ppc64le.rpm libldap-2_4-2-2.4.46-9.56.1.aarch64.rpm openldap2-2.4.46-9.56.1.aarch64.rpm openldap2-back-meta-2.4.46-9.56.1.aarch64.rpm openldap2-back-perl-2.4.46-9.56.1.aarch64.rpm openldap2-back-sock-2.4.46-9.56.1.aarch64.rpm openldap2-back-sql-2.4.46-9.56.1.aarch64.rpm openldap2-client-2.4.46-9.56.1.aarch64.rpm openldap2-contrib-2.4.46-9.56.1.aarch64.rpm openldap2-devel-2.4.46-9.56.1.aarch64.rpm openldap2-devel-static-2.4.46-9.56.1.aarch64.rpm openldap2-ppolicy-check-password-1.2-9.56.1.aarch64.rpm openSUSE-SLE-15.3-2021-2188 important SUSE Updates openSUSE-SLE 15.3 This update for nginx fixes the following issue: - Fix race condition between 'logrotate' and 'nginx' causing mass file reopening. (bsc#1183876) nginx-1.19.8-3.6.1.src.rpm nginx-1.19.8-3.6.1.x86_64.rpm nginx-source-1.19.8-3.6.1.noarch.rpm vim-plugin-nginx-1.19.8-3.6.1.noarch.rpm nginx-1.19.8-3.6.1.s390x.rpm nginx-1.19.8-3.6.1.ppc64le.rpm nginx-1.19.8-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2160 moderate SUSE Updates openSUSE-SLE 15.3 This update for vsftpd fixes the following issues: - Added an option ssl_tlsv1_3 that allows disabling TLS 1.3. (bsc#1187188) vsftpd-3.0.3-12.3.1.src.rpm vsftpd-3.0.3-12.3.1.x86_64.rpm vsftpd-3.0.3-12.3.1.s390x.rpm vsftpd-3.0.3-12.3.1.ppc64le.rpm vsftpd-3.0.3-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2282 low SUSE Updates openSUSE-SLE 15.3 This update for gnuplot fixes the following issue: - Hardening: link as position independent executable (PIE). (bsc#1184123) gnuplot-5.2.2-3.9.2.src.rpm gnuplot-5.2.2-3.9.2.x86_64.rpm gnuplot-doc-5.2.2-3.9.2.noarch.rpm gnuplot-5.2.2-3.9.2.s390x.rpm gnuplot-5.2.2-3.9.2.ppc64le.rpm gnuplot-5.2.2-3.9.2.aarch64.rpm openSUSE-SLE-15.3-2021-2580 moderate SUSE Updates openSUSE-SLE 15.3 This update for pdsh fixes the following issue: - pdsh had a lower release number in 15 sp3 than in 15 sp2, which could lead to migration issues. (bsc#1186642) pdsh-2.34-32.1.src.rpm pdsh-2.34-32.1.x86_64.rpm pdsh-dshgroup-2.34-32.1.x86_64.rpm pdsh-genders-2.34-32.1.x86_64.rpm pdsh-machines-2.34-32.1.x86_64.rpm pdsh-netgroup-2.34-32.1.x86_64.rpm pdsh-slurm-2.34-32.1.x86_64.rpm pdsh-2.34-32.1.s390x.rpm pdsh-dshgroup-2.34-32.1.s390x.rpm pdsh-genders-2.34-32.1.s390x.rpm pdsh-machines-2.34-32.1.s390x.rpm pdsh-netgroup-2.34-32.1.s390x.rpm pdsh-slurm-2.34-32.1.s390x.rpm pdsh-2.34-32.1.ppc64le.rpm pdsh-dshgroup-2.34-32.1.ppc64le.rpm pdsh-genders-2.34-32.1.ppc64le.rpm pdsh-machines-2.34-32.1.ppc64le.rpm pdsh-netgroup-2.34-32.1.ppc64le.rpm pdsh-slurm-2.34-32.1.ppc64le.rpm pdsh-2.34-32.1.aarch64.rpm pdsh-dshgroup-2.34-32.1.aarch64.rpm pdsh-genders-2.34-32.1.aarch64.rpm pdsh-machines-2.34-32.1.aarch64.rpm pdsh-netgroup-2.34-32.1.aarch64.rpm pdsh-slurm-2.34-32.1.aarch64.rpm openSUSE-SLE-15.3-2021-2184 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-26558: Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing by reflection of the public key and the authentication evidence of the initiating device, potentially permitting this attacker to complete authenticated pairing with the responding device using the correct Passkey for the pairing session. (bnc#1179610 bnc#1186463) - CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bnc#1186463). - CVE-2020-36385: Fixed a use-after-free in drivers/infiniband/core/ucma.c which could be triggered if the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called (bnc#1187050). - CVE-2020-36386: Fixed a slab out-of-bounds read in hci_extended_inquiry_result_evt (bnc#1187038). The following non-security bugs were fixed: - ACPICA: Clean up context mutex during object deletion (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume to -26 dB (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP EliteBook x360 1040 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Elite Dragonfly G2 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 840 Aero G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power G8 (git-fixes). - ALSA: hda/realtek: headphone and mic do not work on an Acer laptop (git-fixes). - ALSA: hda: update the power_state during the direct-complete (git-fixes). - ALSA: seq: Fix race of snd_seq_timer_open() (git-fixes). - ALSA: timer: Fix master timer notification (git-fixes). - arm64: Add missing ISB after invalidating TLB in __primary_switch (git-fixes). - arm64: avoid -Woverride-init warning (git-fixes). - arm64: kasan: fix page_alloc tagging with DEBUG_VIRTUAL (git-fixes). - arm64: kdump: update ppos when reading elfcorehdr (git-fixes). - arm64: kexec_file: fix memory leakage in create_dtb() when fdt_open_into() fails (git-fixes). - arm64: link with -z norelro for LLD or aarch64-elf (git-fixes). - arm64: link with -z norelro regardless of CONFIG_RELOCATABLE (git-fixes). - arm64/mm: Fix pfn_valid() for ZONE_DEVICE based memory (git-fixes). - arm64: ptrace: Fix seccomp of traced syscall -1 (NO_SYSCALL) (git-fixes). - arm64: ptrace: Use NO_SYSCALL instead of -1 in syscall_trace_enter() (git-fixes). - ARM64: vdso32: Install vdso32 from vdso_install (git-fixes). - arm64: vdso32: make vdso32 install conditional (git-fixes). - arm: mm: use __pfn_to_section() to get mem_section (git-fixes). - ASoC: amd: fix for pcm_read() error (git-fixes). - ASoC: cs43130: handle errors in cs43130_probe() properly (git-fixes). - ASoC: Intel: soc-acpi: remove TGL RVP mixed SoundWire/TDM config (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - ath6kl: return error code in ath6kl_wmi_set_roam_lrssi_cmd() (git-fixes). - bcache: avoid oversized read request in cache missing code path (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: Convert to DEFINE_SHOW_ATTRIBUTE (bsc#1187357). - bcache: do not pass BIOSET_NEED_BVECS for the 'bio_set' embedded in 'cache_set' (bsc#1187357). - bcache: fix a regression of code compiling failure in debug.c (bsc#1187357). - bcache: inherit the optimal I/O size (bsc#1187357). - bcache: reduce redundant code in bch_cached_dev_run() (bsc#1187357). - bcache: remove bcache device self-defined readahead (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: remove PTR_CACHE (bsc#1187357). - bcache: Use 64-bit arithmetic instead of 32-bit (bsc#1187357). - bcache: use NULL instead of using plain integer as pointer (bsc#1187357). - blk-mq: Swap two calls in blk_mq_exit_queue() (git-fixes). - blk-settings: align max_sectors on "logical_block_size" boundary (bsc#1185195). - block/genhd: use atomic_t for disk_event->block (bsc#1185497). - block: return the correct bvec when checking for gaps (bsc#1187143). - block: return the correct bvec when checking for gaps (bsc#1187144). - Bluetooth: fix the erroneous flush_work() order (git-fixes). - brcmfmac: Add clm_blob firmware files to modinfo (bsc#1186677). - brcmfmac: properly check for bus register errors (git-fixes). - btrfs: open device without device_list_mutex (bsc#1176771). - bus: ti-sysc: Fix flakey idling of uarts and stop using swsup_sidle_act (git-fixes). - cdrom: gdrom: deallocate struct gdrom_unit fields in remove_gdrom (git-fixes). - cdrom: gdrom: initialize global variable at init time (git-fixes). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - char: hpet: add checks after calling ioremap (git-fixes). - chelsio/chtls: unlock on error in chtls_pt_recvmsg() (jsc#SLE-15129). - cxgb4: avoid accessing registers when clearing filters (git-fixes). - cxgb4: avoid link re-train during TC-MQPRIO configuration (jsc#SLE-8389). - cxgb4/ch_ktls: Clear resources when pf4 device is removed (jsc#SLE-15129). - cxgb4: fix regression with HASH tc prio value update (jsc#SLE-15131). - devlink: Correct VIRTUAL port to not have phys_port attributes (jsc#SLE-15172). - dmaengine: idxd: add missing dsa driver unregister (git-fixes). - dmaengine: idxd: Use cpu_feature_enabled() (git-fixes). - dmaengine: qcom_hidma: comment platform_driver_register call (git-fixes). - drm/amd/amdgpu: fix a potential deadlock in gpu reset (git-fixes). - drm/amd/amdgpu: fix refcount leak (git-fixes). - drm/amd/display: Disconnect non-DP with no EDID (git-fixes). - drm/amdgpu: Do not query CE and UE errors (git-fixes). - drm/amdgpu: Fix a use-after-free (git-fixes). - drm/amdgpu/jpeg2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu: make sure we unpin the UVD BO (git-fixes). - drm/amdgpu: stop touching sched.ready in the backend (git-fixes). - drm/amdgpu/vcn1: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdkfd: correct sienna_cichlid SDMA RLC register offset error (git-fixes). - drm/i915/selftests: Fix return value check in live_breadcrumbs_smoketest() (git-fixes). - drm/mcde: Fix off by 10^3 in calculation (git-fixes). - drm/meson: fix shutdown crash when component not probed (git-fixes). - drm/msm/a6xx: fix incorrectly set uavflagprd_inv field for A650 (git-fixes). - drm/msm/a6xx: update/fix CP_PROTECT initialization (git-fixes). - efi: Allow EFI_MEMORY_XP and EFI_MEMORY_RO both to be cleared (git-fixes). - efi: cper: fix snprintf() use in cper_dimm_err_location() (git-fixes). - efi/libstub: prevent read overflow in find_file_option() (git-fixes). - Enable CONFIG_PCI_PF_STUB for Nvidia Ampere vGPU support (jsc#SLE-17882 jsc#ECO-3691) - fs/nfs: Use fatal_signal_pending instead of signal_pending (git-fixes). - gpio: cadence: Add missing MODULE_DEVICE_TABLE (git-fixes). - gpio: wcd934x: Fix shift-out-of-bounds error (git-fixes). - gve: Add NULL pointer checks when freeing irqs (git-fixes). - gve: Correct SKB queue index validation (git-fixes). - gve: Update mgmt_msix_idx if num_ntfy changes (git-fixes). - gve: Upgrade memory barrier in poll routine (git-fixes). - HID: i2c-hid: fix format string mismatch (git-fixes). - HID: i2c-hid: Skip ELAN power-on command after reset (git-fixes). - HID: magicmouse: fix NULL-deref on disconnect (git-fixes). - HID: multitouch: require Finger field to mark Win8 reports as MT (git-fixes). - HID: pidff: fix error return code in hid_pidff_init() (git-fixes). - hwmon: (dell-smm-hwmon) Fix index values (git-fixes). - i2c: i801: Do not generate an interrupt on bus reset (git-fixes). - i2c: imx: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: qcom-geni: Suspend and resume the bus during SYSTEM_SLEEP_PM ops (git-fixes). - i2c: s3c2410: fix possible NULL pointer deref on read message after write (git-fixes). - i2c: sh_mobile: Use new clock calculation formulas for RZ/G2E (git-fixes). - ice: Allow all LLDP packets from PF to Tx (jsc#SLE-7926). - ice: Fix allowing VF to request more/less queues via virtchnl (jsc#SLE-12878). - ice: Fix VFR issues for AVF drivers that expect ATQLEN cleared (git-fixes). - ice: handle the VF VSI rebuild failure (jsc#SLE-12878). - iio: adc: ad7124: Fix missbalanced regulator enable / disable on error (git-fixes). - iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers (git-fixes). - iio: adc: ad7768-1: Fix too small buffer passed to iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ad7793: Add missing error code in ad7793_setup() (git-fixes). - iio: gyro: fxas21002c: balance runtime power in error path (git-fixes). - iommu/amd: Keep track of amd_iommu_irq_remap state (https://bugzilla.kernel.org/show_bug.cgi?id=212133). - iommu: Fix a boundary issue to avoid performance drop (bsc#1187344). - iommu/virtio: Add missing MODULE_DEVICE_TABLE (bsc#1187345). - iommu/vt-d: Remove WO permissions on second-level paging entries (bsc#1187346). - iommu/vt-d: Report right snoop capability when using FL for IOVA (bsc#1187347). - iommu/vt-d: Use user privilege for RID2PASID translation (bsc#1187348). - isdn: mISDN: correctly handle ph_info allocation failure in hfcsusb_ph_info (git-fixes). - isdn: mISDNinfineon: check/cleanup ioremap failure correctly in setup_io (git-fixes). - ixgbe: fix large MTU request from VF (git-fixes). - kABI workaround for rtw88 (git-fixes). - kABI workaround for struct lis3lv02d change (git-fixes). - lib: crc64: fix kernel-doc warning (bsc#1187357). - libertas: register sysfs groups properly (git-fixes). - locking/mutex: clear MUTEX_FLAGS if wait_list is empty due to signal (git-fixes). - md: bcache: avoid -Wempty-body warnings (bsc#1187357). - md: bcache: Trivial typo fixes in the file journal.c (bsc#1187357). - md: Fix missing unused status line of /proc/mdstat (git-fixes). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - mei: request autosuspend after sending rx flow control (git-fixes). - misc/uss720: fix memory leak in uss720_probe (git-fixes). - mmc: sdhci: Clear unused bounce buffer at DMA mmap error path (bsc#1187039). - net: bnx2: Fix error return code in bnx2_init_board() (git-fixes). - netfilter: nf_tables: missing error reporting for not selected expressions (bsc#1176447). - netfilter: nft_set_pipapo_avx2: Add irq_fpu_usable() check, fallback to non-AVX2 version (bsc#1176447). - net: fix iteration for sctp transport seq_files (git-fixes). - net: hns3: fix incorrect resp_msg issue (jsc#SLE-14777). - net: hns3: Limiting the scope of vector_ring_chain variable (git-fixes). - net: hns3: put off calling register_netdev() until client initialize complete (bsc#1154353). - net/mlx4: Fix EEPROM dump support (git-fixes). - net/mlx5: DR, Create multi-destination flow table with level less than 64 (jsc#SLE-8464). - net/mlx5e: Fix error path of updating netdev queues (jsc#SLE-15172). - net/mlx5e: Fix incompatible casting (jsc#SLE-15172). - net/mlx5e: Fix multipath lag activation (git-fixes). - net/mlx5e: Fix null deref accessing lag dev (jsc#SLE-15172). - net/mlx5e: Fix nullptr in add_vlan_push_action() (git-fixes). - net/mlx5e: reset XPS on error flow if netdev isn't registered yet (jsc#SLE-15172). - net/mlx5: Set reformat action when needed for termination rules (jsc#SLE-15172). - net/mlx5: Set term table as an unmanaged flow table (jsc#SLE-15172). - net/sched: act_ct: Offload connections with commit action (jsc#SLE-15172). - net/sched: fq_pie: fix OOB access in the traffic path (jsc#SLE-15172). - net/sched: fq_pie: re-factor fix for fq_pie endless loop (jsc#SLE-15172). - net: usb: fix memory leak in smsc75xx_bind (git-fixes). - net: zero-initialize tc skb extension on allocation (bsc#1176447). - nfc: fix NULL ptr dereference in llcp_sock_getname() after failed connect (git-fixes). - NFC: SUSE specific brutal fix for runtime PM (bsc#1185589). - NFS: Deal correctly with attribute generation counter overflow (git-fixes). - NFS: Do not corrupt the value of pg_bytes_written in nfs_do_recoalesce() (git-fixes). - NFS: Do not discard pNFS layout segments that are marked for return (git-fixes). - NFS: Do not gratuitously clear the inode cache when lookup failed (git-fixes). - NFS: Do not revalidate the directory permissions on a lookup failure (git-fixes). - nfsd: register pernet ops last, unregister first (git-fixes). - NFSD: Repair misuse of sv_lock in 5.10.16-rt30 (git-fixes). - NFS: fix an incorrect limit in filelayout_decode_layout() (git-fixes). - NFS: Fix an Oopsable condition in __nfs_pageio_add_request() (git-fixes). - NFSv4.2: Always flush out writes in nfs42_proc_fallocate() (git-fixes). - NFSv42: Copy offload should update the file size when appropriate (git-fixes). - NFSv4.2 fix handling of sr_eof in SEEK's reply (git-fixes). - NFSv4.2: fix return value of _nfs4_get_security_label() (git-fixes). - NFSv4: Do not discard segments marked for return in _pnfs_return_layout() (git-fixes). - NFSv4: Fix a NULL pointer dereference in pnfs_mark_matching_lsegs_return() (git-fixes). - NFSv4: Fix v4.0/v4.1 SEEK_DATA return -ENOTSUPP when set NFS_V4_2 config (git-fixes). - nvme: add new line after variable declatation (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: document nvme controller states (git-fixes). - nvme: do not check nvme_req flags for new req (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: fix deadlock in disconnect during scan_work and/or ana_work (git-fixes). - nvme: mark nvme_setup_passsthru() inline (bsc#1184259, bsc#1178612, bsc#1186155). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259, bsc#1186155). - nvme-pci: align io queue count with allocted nvme_queue in (git-fixes). - nvme-pci: avoid race between nvme_reap_pending_cqes() and nvme_poll() (git-fixes). - nvme-pci: dma read memory barrier for completions (git-fixes). - nvme-pci: fix "slimmer CQ head update" (git-fixes). - nvme-pci: make sure write/poll_queues less or equal then cpu (git-fixes). - nvme-pci: remove last_sq_tail (git-fixes). - nvme-pci: Remove tag from process cq (git-fixes). - nvme-pci: Remove two-pass completions (git-fixes). - nvme-pci: remove volatile cqes (git-fixes). - nvme-pci: Simplify nvme_poll_irqdisable (git-fixes). - nvme-pci: slimmer CQ head update (git-fixes). - nvme-pci: use simple suspend when a HMB is enabled (git-fixes). - nvme: reduce checks for zero command effects (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: rename nvme_init_identify() (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: split init identify into helper (bsc#1184259, bsc#1178612, bsc#1186155). - nvmet: use new ana_log_size instead the old one (bsc#1178612, bsc#1184259, bsc#1186155). - nvme: use NVME_CTRL_CMIC_ANA macro (bsc#1184259, bsc#1178612, bsc#1186155). - nxp-i2c: restore includes for kABI (bsc#1185589). - nxp-nci: add NXP1002 id (bsc#1185589). - PCI/LINK: Remove bandwidth notification (bsc#1183712). - pid: take a reference when initializing `cad_pid` (bsc#1152489). - platform/x86: hp_accel: Avoid invoking _INI to speed up resume (git-fixes). - platform/x86: hp-wireless: add AMD's hardware id to the supported list (git-fixes). - platform/x86: intel_punit_ipc: Append MODULE_DEVICE_TABLE for ACPI (git-fixes). - platform/x86: touchscreen_dmi: Add info for the Mediacom Winpad 7.0 W700 tablet (git-fixes). - PM: sleep: Add pm_debug_messages kernel command line option (bsc#1186752). - pNFS/flexfiles: fix incorrect size check in decode_nfs_fh() (git-fixes). - pNFS/NFSv4: Fix a layout segment leak in pnfs_layout_process() (git-fixes). - powerpc/32: Fix boot failure with CONFIG_STACKPROTECTOR (jsc#SLE-13847 git-fixes). - powerpc/kprobes: Fix validation of prefixed instructions across page boundary (jsc#SLE-13847 git-fixes). - regulator: core: resolve supply for boot-on/always-on regulators (git-fixes). - regulator: max77620: Use device_set_of_node_from_dev() (git-fixes). - rtw88: 8822c: add LC calibration for RTL8822C (git-fixes). - scsi: aacraid: Fix an oops in error handling (bsc#1187072). - scsi: aacraid: Remove erroneous fallthrough annotation (bsc#1186950). - scsi: aacraid: Use memdup_user() as a cleanup (bsc#1186951). - scsi: acornscsi: Fix an error handling path in acornscsi_probe() (bsc#1186952). - scsi: be2iscsi: Fix a theoretical leak in beiscsi_create_eqs() (bsc#1186953). - scsi: be2iscsi: Revert "Fix a theoretical leak in beiscsi_create_eqs()" (bsc#1187067). - scsi: bfa: Fix error return in bfad_pci_init() (bsc#1186954). - scsi: bnx2fc: Fix Kconfig warning & CNIC build errors (bsc#1186955). - scsi: bnx2i: Requires MMU (bsc#1186956). - scsi: csiostor: Fix wrong return value in csio_hw_prep_fw() (bsc#1186957). - scsi: cumana_2: Fix different dev_id between request_irq() and free_irq() (bsc#1186958). - scsi: cxgb3i: Fix some leaks in init_act_open() (bsc#1186959). - scsi: cxgb4i: Fix TLS dependency (bsc#1186960). - scsi: eesox: Fix different dev_id between request_irq() and free_irq() (bsc#1186961). - scsi: fnic: Fix error return code in fnic_probe() (bsc#1186962). - scsi: hisi_sas: Fix IRQ checks (bsc#1186963). - scsi: hisi_sas: Remove preemptible() (bsc#1186964). - scsi: jazz_esp: Add IRQ check (bsc#1186965). - scsi: libfc: Fix enum-conversion warning (bsc#1186966). - scsi: libsas: Fix error path in sas_notify_lldd_dev_found() (bsc#1186967). - scsi: libsas: Reset num_scatter if libata marks qc as NODATA (bsc#1187068). - scsi: libsas: Set data_dir as DMA_NONE if libata marks qc as NODATA (bsc#1186968). - scsi: lpfc: Fix ancient double free (bsc#1186969). - scsi: lpfc: Fix failure to transmit ABTS on FC link (git-fixes). - scsi: megaraid_sas: Check user-provided offsets (bsc#1186970). - scsi: megaraid_sas: Clear affinity hint (bsc#1186971). - scsi: megaraid_sas: Do not call disable_irq from process IRQ poll (bsc#1186972). - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression (bsc#1186973). - scsi: megaraid_sas: Remove undefined ENABLE_IRQ_POLL macro (bsc#1186974). - scsi: mesh: Fix panic after host or bus reset (bsc#1186976). - scsi: mpt3sas: Do not use GFP_KERNEL in atomic context (bsc#1186977). - scsi: mpt3sas: Fix error return code of mpt3sas_base_attach() (bsc#1186978). - scsi: mpt3sas: Fix ioctl timeout (bsc#1186979). - scsi: myrs: Fix a double free in myrs_cleanup() (bsc#1186980). - scsi: pm80xx: Fix error return in pm8001_pci_probe() (bsc#1186981). - scsi: powertec: Fix different dev_id between request_irq() and free_irq() (bsc#1186982). - scsi: qedi: Check for buffer overflow in qedi_set_path() (bsc#1186983). - scsi: qedi: Fix error return code of qedi_alloc_global_queues() (bsc#1186984). - scsi: qedi: Fix missing destroy_workqueue() on error in __qedi_probe (bsc#1186985). - scsi: qla2xxx: Prevent PRLI in target mode (git-fixes). - scsi: qla4xxx: Fix an error handling path in 'qla4xxx_get_host_stats()' (bsc#1186986). - scsi: qla4xxx: Remove in_interrupt() (bsc#1186987). - scsi: scsi_debug: Add check for sdebug_max_queue during module init (bsc#1186988). - scsi: scsi_dh_alua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701). - scsi: sd: Fix Opal support (bsc#1186989). - scsi: smartpqi: Add additional logging for LUN resets (bsc#1186472). - scsi: smartpqi: Add host level stream detection enable (bsc#1186472). - scsi: smartpqi: Add new PCI IDs (bsc#1186472). - scsi: smartpqi: Add phy ID support for the physical drives (bsc#1186472). - scsi: smartpqi: Add stream detection (bsc#1186472). - scsi: smartpqi: Add support for BMIC sense feature cmd and feature bits (bsc#1186472). - scsi: smartpqi: Add support for long firmware version (bsc#1186472). - scsi: smartpqi: Add support for new product ids (bsc#1186472). - scsi: smartpqi: Add support for RAID1 writes (bsc#1186472). - scsi: smartpqi: Add support for RAID5 and RAID6 writes (bsc#1186472). - scsi: smartpqi: Add support for wwid (bsc#1186472). - scsi: smartpqi: Align code with oob driver (bsc#1186472). - scsi: smartpqi: Convert snprintf() to scnprintf() (bsc#1186472). - scsi: smartpqi: Correct request leakage during reset operations (bsc#1186472). - scsi: smartpqi: Correct system hangs when resuming from hibernation (bsc#1186472). - scsi: smartpqi: Disable WRITE SAME for HBA NVMe disks (bsc#1186472). - scsi: smartpqi: Fix blocks_per_row static checker issue (bsc#1186472). - scsi: smartpqi: Fix device pointer variable reference static checker issue (bsc#1186472). - scsi: smartpqi: Fix driver synchronization issues (bsc#1186472). - scsi: smartpqi: Refactor aio submission code (bsc#1186472). - scsi: smartpqi: Refactor scatterlist code (bsc#1186472). - scsi: smartpqi: Remove timeouts from internal cmds (bsc#1186472). - scsi: smartpqi: Remove unused functions (bsc#1186472). - scsi: smartpqi: Synchronize device resets with mutex (bsc#1186472). - scsi: smartpqi: Update device scan operations (bsc#1186472). - scsi: smartpqi: Update enclosure identifier in sysfs (bsc#1186472). - scsi: smartpqi: Update event handler (bsc#1186472). - scsi: smartpqi: Update OFA management (bsc#1186472). - scsi: smartpqi: Update RAID bypass handling (bsc#1186472). - scsi: smartpqi: Update SAS initiator_port_protocols and target_port_protocols (bsc#1186472). - scsi: smartpqi: Update soft reset management for OFA (bsc#1186472). - scsi: smartpqi: Update suspend/resume and shutdown (bsc#1186472). - scsi: smartpqi: Update version to 2.1.8-045 (bsc#1186472). - scsi: smartpqi: Use host-wide tag space (bsc#1186472). - scsi: sni_53c710: Add IRQ check (bsc#1186990). - scsi: sun3x_esp: Add IRQ check (bsc#1186991). - scsi: ufs: Add quirk to disallow reset of interrupt aggregation (bsc#1186992). - scsi: ufs: Add quirk to enable host controller without hce (bsc#1186993). - scsi: ufs: Add quirk to fix abnormal ocs fatal error (bsc#1186994). - scsi: ufs: Add quirk to fix mishandling utrlclr/utmrlclr (bsc#1186995). - scsi: ufs: core: Narrow down fast path in system suspend path (bsc#1186996). - scsi: ufs: Do not update urgent bkops level when toggling auto bkops (bsc#1186997). - scsi: ufs: Fix race between shutdown and runtime resume flow (bsc#1186998). - scsi: ufshcd: use an enum for quirks (bsc#1186999). - scsi: ufs: Introduce UFSHCD_QUIRK_PRDT_BYTE_GRAN quirk (bsc#1187000). - scsi: ufs: Make ufshcd_print_trs() consider UFSHCD_QUIRK_PRDT_BYTE_GRAN (bsc#1187069). - scsi: ufs: Properly release resources if a task is aborted successfully (bsc#1187001). - scsi: ufs-qcom: Fix scheduling while atomic issue (bsc#1187002). - scsi: ufs: ufshcd-pltfrm: Fix deferred probing (bsc#1187003). - serial: 8250_pci: handle FL_NOIRQ board flag (git-fixes). - serial: core: fix suspicious security_locked_down() call (git-fixes). - serial: max310x: unregister uart driver in case of failure and abort (git-fixes). - serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait' (git-fixes). - serial: sh-sci: Fix off-by-one error in FIFO threshold register setting (git-fixes). - serial: tegra: Fix a mask operation that is always true (git-fixes). - staging: emxx_udc: fix loop in _nbu2ss_nuke() (git-fixes). - staging: iio: cdc: ad7746: avoid overwrite of num_channels (git-fixes). - staging: rtl8723bs: Fix uninitialized variables (git-fixes). - sunrpc: fix refcount leak for rpc auth modules (git-fixes). - SUNRPC: More fixes for backlog congestion (bsc#1185428). - SUNRPC: Move fault injection call sites (git-fixes). - SUNRPC: Set memalloc_nofs_save() for sync tasks (git-fixes). - svcrdma: disable timeouts on rdma backchannel (git-fixes). - thermal/drivers/intel: Initialize RW trip to THERMAL_TEMP_INVALID (git-fixes). - thunderbolt: dma_port: Fix NVM read buffer bounds and offset issue (git-fixes). - thunderbolt: usb4: Fix NVM read buffer bounds and offset issue (git-fixes). - tpm: fix error return code in tpm2_get_cc_attrs_tbl() (git-fixes). - ttyprintk: Add TTY hangup callback (git-fixes). - UCSI fixup of array of PDOs (git-fixes). - usb: chipidea: imx: Fix Battery Charger 1.2 CDP detection (git-fixes). - usb: core: reduce power-on-good delay time of root hub (git-fixes). - usb: dwc3: gadget: Enable suspend events (git-fixes). - usb: fix various gadgets null ptr deref on 10gbps cabling (git-fixes). - USB: f_ncm: ncm_bitrate (speed) is unsigned (git-fixes). - usb: gadget: udc: renesas_usb3: Fix a race in usb3_start_pipen() (git-fixes). - usb: musb: fix MUSB_QUIRK_B_DISCONNECT_99 handling (git-fixes). - usb: pd: Set PD_T_SINK_WAIT_CAP to 310ms (git-fixes). - USB: serial: cp210x: fix alternate function for CP2102N QFN20 (git-fixes). - USB: serial: ftdi_sio: add IDs for IDS GmbH Products (git-fixes). - USB: serial: option: add Telit LE910-S1 compositions 0x7010, 0x7011 (git-fixes). - USB: serial: pl2303: add device id for ADLINK ND-6530 GC (git-fixes). - USB: serial: quatech2: fix control-request directions (git-fixes). - USB: serial: ti_usb_3410_5052: add startech.com device id (git-fixes). - USB: trancevibrator: fix control-request direction (git-fixes). - usb: typec: intel_pmc_mux: Put fwnode in error case during ->probe() (git-fixes). - usb: typec: mux: Fix copy-paste mistake in typec_mux_match (git-fixes). - usb: typec: mux: Fix matching with typec_altmode_desc (git-fixes). - usb: typec: tcpm: Use LE to CPU conversion when accessing msg->header (git-fixes). - usb: typec: ucsi: Clear PPM capability data in ucsi_init() error path (git-fixes). - usb: typec: ucsi: Retrieve all the PDOs instead of just the first 4 (git-fixes). - usb: typec: wcove: Use LE to CPU conversion when accessing msg->header (git-fixes). - USB: usbfs: Do not WARN about excessively large memory allocations (git-fixes). - vfio/pci: Fix error return code in vfio_ecap_init() (git-fixes). - vfio/pci: zap_vma_ptes() needs MMU (git-fixes). - vfio/platform: fix module_put call in error flow (git-fixes). - vmlinux.lds.h: Avoid orphan section with !SMP (git-fixes). - vsock/vmci: log once the failed queue pair allocation (git-fixes). - wireguard: allowedips: initialize list head in selftest (git-fixes). - wireguard: do not use -O3 (git-fixes). - wireguard: peer: allocate in kmem_cache (git-fixes). - wireguard: peer: put frequently used members above cache lines (git-fixes). - wireguard: queueing: get rid of per-peer ring buffers (git-fixes). - wireguard: selftests: make sure rp_filter is disabled on vethc (git-fixes). - wireguard: selftests: remove old conntrack kconfig value (git-fixes). - wireguard: use synchronize_net rather than synchronize_rcu (git-fixes). - x86/apic: Mark _all_ legacy interrupts when IO/APIC is missing (bsc#1152489). - x86/boot/64: Explicitly map boot_params and command line (jsc#SLE-14337). - x86/boot/compressed/64: Add 32-bit boot #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Add CPUID sanity check to 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in 64-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Cleanup exception handling before booting kernel (jsc#SLE-14337). - x86/boot/compressed/64: Introduce sev_status (jsc#SLE-14337). - x86/boot/compressed/64: Reload CS in startup_32 (jsc#SLE-14337). - x86/boot/compressed/64: Sanity-check CPUID results in the early #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Setup IDT in startup_32 boot path (jsc#SLE-14337). - x86/cpufeatures: Force disable X86_FEATURE_ENQCMD and remove update_pasid() (bsc#1178134). - x86/cpu: Initialize MSR_TSC_AUX if RDTSCP *or* RDPID is supported (bsc#1152489). - x86/fault: Do not send SIGSEGV twice on SEGV_PKUERR (bsc#1152489). - x86: fix seq_file iteration for pat.c (git-fixes). - x86/fpu: Prevent state corruption in __fpu__restore_sig() (bsc#1178134). - x86/head/64: Check SEV encryption before switching to kernel page-table (jsc#SLE-14337). - x86/head/64: Disable stack protection for head$(BITS).o (jsc#SLE-14337). - x86/ioremap: Map efi_mem_reserve() memory as encrypted for SEV (bsc#1186885). - x86/sev: Check SME/SEV support in CPUID first (jsc#SLE-14337). - x86/sev: Do not require Hypervisor CPUID bit for SEV guests (jsc#SLE-14337). - x86/sev-es: Do not return NULL from sev_es_get_ghcb() (bsc#1187349). - x86/sev-es: Do not support MMIO to/from encrypted memory (jsc#SLE-14337). - x86/sev-es: Forward page-faults which happen during emulation (bsc#1187350). - x86/sev-es: Replace open-coded hlt-loops with sev_es_terminate() (jsc#SLE-14337). - x86/sev-es: Use __put_user()/__get_user() for data accesses (bsc#1187351). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). - xprtrdma: Avoid Receive Queue wrapping (git-fixes). - xprtrdma: rpcrdma_mr_pop() already does list_del_init() (git-fixes). cluster-md-kmp-default-5.3.18-59.10.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.10.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.10.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True kernel-debug-5.3.18-59.10.1.nosrc.rpm True kernel-debug-5.3.18-59.10.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.10.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-default-5.3.18-59.10.1.nosrc.rpm True kernel-default-5.3.18-59.10.1.x86_64.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.src.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.x86_64.rpm True kernel-default-devel-5.3.18-59.10.1.x86_64.rpm True kernel-default-extra-5.3.18-59.10.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.10.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-default-optional-5.3.18-59.10.1.x86_64.rpm True kernel-devel-5.3.18-59.10.1.noarch.rpm True kernel-docs-5.3.18-59.10.1.noarch.rpm True kernel-docs-5.3.18-59.10.1.nosrc.rpm True kernel-docs-html-5.3.18-59.10.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.10.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.10.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.10.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-macros-5.3.18-59.10.1.noarch.rpm True kernel-obs-build-5.3.18-59.10.1.src.rpm True kernel-obs-build-5.3.18-59.10.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.10.1.src.rpm True kernel-obs-qa-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-5.3.18-59.10.1.nosrc.rpm True kernel-preempt-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.10.1.x86_64.rpm True kernel-source-5.3.18-59.10.1.noarch.rpm True kernel-source-5.3.18-59.10.1.src.rpm True kernel-source-vanilla-5.3.18-59.10.1.noarch.rpm True kernel-syms-5.3.18-59.10.1.src.rpm True kernel-syms-5.3.18-59.10.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.10.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.10.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.10.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.10.1.s390x.rpm True dlm-kmp-default-5.3.18-59.10.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.10.1.s390x.rpm True kernel-default-5.3.18-59.10.1.s390x.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.s390x.rpm True kernel-default-devel-5.3.18-59.10.1.s390x.rpm True kernel-default-extra-5.3.18-59.10.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.10.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.s390x.rpm True kernel-default-optional-5.3.18-59.10.1.s390x.rpm True kernel-obs-build-5.3.18-59.10.1.s390x.rpm True kernel-obs-qa-5.3.18-59.10.1.s390x.rpm True kernel-syms-5.3.18-59.10.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.10.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.10.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.10.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.10.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.10.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.10.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.10.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.10.1.ppc64le.rpm True kernel-debug-5.3.18-59.10.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-default-5.3.18-59.10.1.ppc64le.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.ppc64le.rpm True kernel-default-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.10.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.10.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.10.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.10.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.10.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.10.1.ppc64le.rpm True kernel-syms-5.3.18-59.10.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.10.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.10.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.10.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.10.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.10.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.10.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-5.3.18-59.10.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.10.1.aarch64.rpm True kernel-default-5.3.18-59.10.1.aarch64.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.aarch64.rpm True kernel-default-devel-5.3.18-59.10.1.aarch64.rpm True kernel-default-extra-5.3.18-59.10.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.10.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.aarch64.rpm True kernel-default-optional-5.3.18-59.10.1.aarch64.rpm True kernel-obs-build-5.3.18-59.10.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.10.1.aarch64.rpm True kernel-syms-5.3.18-59.10.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.10.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.10.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.10.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2202 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-26558: Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing by reflection of the public key and the authentication evidence of the initiating device, potentially permitting this attacker to complete authenticated pairing with the responding device using the correct Passkey for the pairing session. (bnc#1179610 bnc#1186463) - CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bnc#1186463). - CVE-2020-36385: Fixed a use-after-free in drivers/infiniband/core/ucma.c which could be triggered if the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called (bnc#1187050). - CVE-2020-36386: Fixed a slab out-of-bounds read in hci_extended_inquiry_result_evt (bnc#1187038). The following non-security bugs were fixed: - ACPICA: Clean up context mutex during object deletion (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume to -26 dB (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Elite Dragonfly G2 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP EliteBook x360 1040 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 840 Aero G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power G8 (git-fixes). - ALSA: hda/realtek: headphone and mic do not work on an Acer laptop (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda: update the power_state during the direct-complete (git-fixes). - ALSA: seq: Fix race of snd_seq_timer_open() (git-fixes). - ALSA: timer: Fix master timer notification (git-fixes). - ASoC: Intel: soc-acpi: remove TGL RVP mixed SoundWire/TDM config (git-fixes). - ASoC: amd: fix for pcm_read() error (git-fixes). - ASoC: cs43130: handle errors in cs43130_probe() properly (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - Bluetooth: fix the erroneous flush_work() order (git-fixes). - Enable CONFIG_PCI_PF_STUB for Nvidia Ampere vGPU support (jsc#SLE-17882 jsc#ECO-3691) - HID: i2c-hid: Skip ELAN power-on command after reset (git-fixes). - HID: i2c-hid: fix format string mismatch (git-fixes). - HID: magicmouse: fix NULL-deref on disconnect (git-fixes). - HID: multitouch: require Finger field to mark Win8 reports as MT (git-fixes). - HID: pidff: fix error return code in hid_pidff_init() (git-fixes). - NFC: SUSE specific brutal fix for runtime PM (bsc#1185589). - NFS: Deal correctly with attribute generation counter overflow (git-fixes). - NFS: Do not corrupt the value of pg_bytes_written in nfs_do_recoalesce() (git-fixes). - NFS: Do not discard pNFS layout segments that are marked for return (git-fixes). - NFS: Do not gratuitously clear the inode cache when lookup failed (git-fixes). - NFS: Do not revalidate the directory permissions on a lookup failure (git-fixes). - NFS: Fix an Oopsable condition in __nfs_pageio_add_request() (git-fixes). - NFS: fix an incorrect limit in filelayout_decode_layout() (git-fixes). - NFSD: Repair misuse of sv_lock in 5.10.16-rt30 (git-fixes). - NFSv4.2 fix handling of sr_eof in SEEK's reply (git-fixes). - NFSv4.2: Always flush out writes in nfs42_proc_fallocate() (git-fixes). - NFSv4.2: fix return value of _nfs4_get_security_label() (git-fixes). - NFSv42: Copy offload should update the file size when appropriate (git-fixes). - NFSv4: Do not discard segments marked for return in _pnfs_return_layout() (git-fixes). - NFSv4: Fix a NULL pointer dereference in pnfs_mark_matching_lsegs_return() (git-fixes). - NFSv4: Fix v4.0/v4.1 SEEK_DATA return -ENOTSUPP when set NFS_V4_2 config (git-fixes). - PCI/LINK: Remove bandwidth notification (bsc#1183712). - PM: sleep: Add pm_debug_messages kernel command line option (bsc#1186752). - SUNRPC: Move fault injection call sites (git-fixes). - SUNRPC: Set memalloc_nofs_save() for sync tasks (git-fixes). - UCSI fixup of array of PDOs (git-fixes). - USB: f_ncm: ncm_bitrate (speed) is unsigned (git-fixes). - USB: serial: cp210x: fix alternate function for CP2102N QFN20 (git-fixes). - USB: serial: ftdi_sio: add IDs for IDS GmbH Products (git-fixes). - USB: serial: option: add Telit LE910-S1 compositions 0x7010, 0x7011 (git-fixes). - USB: serial: pl2303: add device id for ADLINK ND-6530 GC (git-fixes). - USB: serial: quatech2: fix control-request directions (git-fixes). - USB: serial: ti_usb_3410_5052: add startech.com device id (git-fixes). - USB: usbfs: Do not WARN about excessively large memory allocations (git-fixes). - ath6kl: return error code in ath6kl_wmi_set_roam_lrssi_cmd() (git-fixes). - bcache: Convert to DEFINE_SHOW_ATTRIBUTE (bsc#1187357). - bcache: Use 64-bit arithmetic instead of 32-bit (bsc#1187357). - bcache: avoid oversized read request in cache missing code path (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: do not pass BIOSET_NEED_BVECS for the 'bio_set' embedded in 'cache_set' (bsc#1187357). - bcache: fix a regression of code compiling failure in debug.c (bsc#1187357). - bcache: inherit the optimal I/O size (bsc#1187357). - bcache: reduce redundant code in bch_cached_dev_run() (bsc#1187357). - bcache: remove PTR_CACHE (bsc#1187357). - bcache: remove bcache device self-defined readahead (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: use NULL instead of using plain integer as pointer (bsc#1187357). - blk-settings: align max_sectors on "logical_block_size" boundary (bsc#1185195). - block: return the correct bvec when checking for gaps (bsc#1187143). - block: return the correct bvec when checking for gaps (bsc#1187144). - brcmfmac: Add clm_blob firmware files to modinfo (bsc#1186677). - brcmfmac: properly check for bus register errors (git-fixes). - btrfs: open device without device_list_mutex (bsc#1176771). - bus: ti-sysc: Fix flakey idling of uarts and stop using swsup_sidle_act (git-fixes). - char: hpet: add checks after calling ioremap (git-fixes). - chelsio/chtls: unlock on error in chtls_pt_recvmsg() (jsc#SLE-15129). - cxgb4/ch_ktls: Clear resources when pf4 device is removed (jsc#SLE-15129). - cxgb4: avoid accessing registers when clearing filters (git-fixes). - cxgb4: avoid link re-train during TC-MQPRIO configuration (jsc#SLE-8389). - cxgb4: fix regression with HASH tc prio value update (jsc#SLE-15131). - devlink: Correct VIRTUAL port to not have phys_port attributes (jsc#SLE-15172). - dmaengine: idxd: Use cpu_feature_enabled() (git-fixes). - dmaengine: idxd: add missing dsa driver unregister (git-fixes). - dmaengine: qcom_hidma: comment platform_driver_register call (git-fixes). - drm/amd/amdgpu: fix a potential deadlock in gpu reset (git-fixes). - drm/amd/amdgpu: fix refcount leak (git-fixes). - drm/amd/display: Disconnect non-DP with no EDID (git-fixes). - drm/amd/display: Disconnect non-DP with no EDID (git-fixes). - drm/amdgpu/jpeg2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn1: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu: Do not query CE and UE errors (git-fixes). - drm/amdgpu: Fix a use-after-free (git-fixes). - drm/amdgpu: make sure we unpin the UVD BO (git-fixes). - drm/amdgpu: stop touching sched.ready in the backend (git-fixes). - drm/amdkfd: correct sienna_cichlid SDMA RLC register offset error (git-fixes). - drm/i915/selftests: Fix return value check in live_breadcrumbs_smoketest() (git-fixes). - drm/mcde: Fix off by 10^3 in calculation (git-fixes). - drm/msm/a6xx: fix incorrectly set uavflagprd_inv field for A650 (git-fixes). - drm/msm/a6xx: update/fix CP_PROTECT initialization (git-fixes). - efi/libstub: prevent read overflow in find_file_option() (git-fixes). - efi: Allow EFI_MEMORY_XP and EFI_MEMORY_RO both to be cleared (git-fixes). - efi: cper: fix snprintf() use in cper_dimm_err_location() (git-fixes). - fs/nfs: Use fatal_signal_pending instead of signal_pending (git-fixes). - gpio: cadence: Add missing MODULE_DEVICE_TABLE (git-fixes). - gpio: wcd934x: Fix shift-out-of-bounds error (git-fixes). - gve: Add NULL pointer checks when freeing irqs (git-fixes). - gve: Correct SKB queue index validation (git-fixes). - gve: Update mgmt_msix_idx if num_ntfy changes (git-fixes). - gve: Upgrade memory barrier in poll routine (git-fixes). - hwmon: (dell-smm-hwmon) Fix index values (git-fixes). - i2c: imx: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: qcom-geni: Suspend and resume the bus during SYSTEM_SLEEP_PM ops (git-fixes). - ice: Allow all LLDP packets from PF to Tx (jsc#SLE-7926). - ice: Fix VFR issues for AVF drivers that expect ATQLEN cleared (git-fixes). - ice: Fix allowing VF to request more/less queues via virtchnl (jsc#SLE-12878). - ice: handle the VF VSI rebuild failure (jsc#SLE-12878). - iommu/amd: Keep track of amd_iommu_irq_remap state (https://bugzilla.kernel.org/show_bug.cgi?id=212133). - iommu/virtio: Add missing MODULE_DEVICE_TABLE (bsc#1187345). - iommu/vt-d: Remove WO permissions on second-level paging entries (bsc#1187346). - iommu/vt-d: Report right snoop capability when using FL for IOVA (bsc#1187347). - iommu/vt-d: Use user privilege for RID2PASID translation (bsc#1187348). - iommu: Fix a boundary issue to avoid performance drop (bsc#1187344). - isdn: mISDN: correctly handle ph_info allocation failure in hfcsusb_ph_info (git-fixes). - isdn: mISDNinfineon: check/cleanup ioremap failure correctly in setup_io (git-fixes). - ixgbe: fix large MTU request from VF (git-fixes). - kABI workaround for rtw88 (git-fixes). - kABI workaround for struct lis3lv02d change (git-fixes). - lib: crc64: fix kernel-doc warning (bsc#1187357). - libertas: register sysfs groups properly (git-fixes). - locking/mutex: clear MUTEX_FLAGS if wait_list is empty due to signal (git-fixes). - md: Fix missing unused status line of /proc/mdstat (git-fixes). - md: bcache: Trivial typo fixes in the file journal.c (bsc#1187357). - md: bcache: avoid -Wempty-body warnings (bsc#1187357). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - mei: request autosuspend after sending rx flow control (git-fixes). - mmc: sdhci: Clear unused bounce buffer at DMA mmap error path (bsc#1187039). - net/mlx4: Fix EEPROM dump support (git-fixes). - net/mlx5: DR, Create multi-destination flow table with level less than 64 (jsc#SLE-8464). - net/mlx5: Set reformat action when needed for termination rules (jsc#SLE-15172). - net/mlx5: Set term table as an unmanaged flow table (jsc#SLE-15172). - net/mlx5e: Fix error path of updating netdev queues (jsc#SLE-15172). - net/mlx5e: Fix incompatible casting (jsc#SLE-15172). - net/mlx5e: Fix multipath lag activation (git-fixes). - net/mlx5e: Fix null deref accessing lag dev (jsc#SLE-15172). - net/mlx5e: Fix nullptr in add_vlan_push_action() (git-fixes). - net/mlx5e: reset XPS on error flow if netdev isn't registered yet (jsc#SLE-15172). - net/sched: act_ct: Offload connections with commit action (jsc#SLE-15172). - net/sched: fq_pie: fix OOB access in the traffic path (jsc#SLE-15172). - net/sched: fq_pie: re-factor fix for fq_pie endless loop (jsc#SLE-15172). - net: bnx2: Fix error return code in bnx2_init_board() (git-fixes). - net: fix iteration for sctp transport seq_files (git-fixes). - net: hns3: Limiting the scope of vector_ring_chain variable (git-fixes). - net: hns3: fix incorrect resp_msg issue (jsc#SLE-14777). - net: hns3: put off calling register_netdev() until client initialize complete (bsc#1154353). - net: zero-initialize tc skb extension on allocation (bsc#1176447). - netfilter: nf_tables: missing error reporting for not selected expressions (bsc#1176447). - netfilter: nft_set_pipapo_avx2: Add irq_fpu_usable() check, fallback to non-AVX2 version (bsc#1176447). - nfc: fix NULL ptr dereference in llcp_sock_getname() after failed connect (git-fixes). - nfsd: register pernet ops last, unregister first (git-fixes). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259, bsc#1186155). - nvme: add new line after variable declatation (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: do not check nvme_req flags for new req (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: mark nvme_setup_passsthru() inline (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: reduce checks for zero command effects (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: rename nvme_init_identify() (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: split init identify into helper (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: use NVME_CTRL_CMIC_ANA macro (bsc#1184259, bsc#1178612, bsc#1186155). - nvmet: use new ana_log_size instead the old one (bsc#1178612, bsc#1184259, bsc#1186155). - pNFS/NFSv4: Fix a layout segment leak in pnfs_layout_process() (git-fixes). - pNFS/flexfiles: fix incorrect size check in decode_nfs_fh() (git-fixes). - pid: take a reference when initializing `cad_pid` (bsc#1152489). - platform/x86: hp-wireless: add AMD's hardware id to the supported list (git-fixes). - platform/x86: hp_accel: Avoid invoking _INI to speed up resume (git-fixes). - platform/x86: intel_punit_ipc: Append MODULE_DEVICE_TABLE for ACPI (git-fixes). - platform/x86: touchscreen_dmi: Add info for the Mediacom Winpad 7.0 W700 tablet (git-fixes). - powerpc/32: Fix boot failure with CONFIG_STACKPROTECTOR (jsc#SLE-13847 git-fixes). - powerpc/kprobes: Fix validation of prefixed instructions across page boundary (jsc#SLE-13847 git-fixes). - regulator: core: resolve supply for boot-on/always-on regulators (git-fixes). - regulator: max77620: Use device_set_of_node_from_dev() (git-fixes). - rtw88: 8822c: add LC calibration for RTL8822C (git-fixes). - scsi: aacraid: Fix an oops in error handling (bsc#1187072). - scsi: aacraid: Remove erroneous fallthrough annotation (bsc#1186950). - scsi: aacraid: Use memdup_user() as a cleanup (bsc#1186951). - scsi: acornscsi: Fix an error handling path in acornscsi_probe() (bsc#1186952). - scsi: be2iscsi: Fix a theoretical leak in beiscsi_create_eqs() (bsc#1186953). - scsi: be2iscsi: Revert "Fix a theoretical leak in beiscsi_create_eqs()" (bsc#1187067). - scsi: bfa: Fix error return in bfad_pci_init() (bsc#1186954). - scsi: bnx2fc: Fix Kconfig warning & CNIC build errors (bsc#1186955). - scsi: bnx2i: Requires MMU (bsc#1186956). - scsi: csiostor: Fix wrong return value in csio_hw_prep_fw() (bsc#1186957). - scsi: cumana_2: Fix different dev_id between request_irq() and free_irq() (bsc#1186958). - scsi: cxgb3i: Fix some leaks in init_act_open() (bsc#1186959). - scsi: cxgb4i: Fix TLS dependency (bsc#1186960). - scsi: eesox: Fix different dev_id between request_irq() and free_irq() (bsc#1186961). - scsi: fnic: Fix error return code in fnic_probe() (bsc#1186962). - scsi: hisi_sas: Fix IRQ checks (bsc#1186963). - scsi: hisi_sas: Remove preemptible() (bsc#1186964). - scsi: jazz_esp: Add IRQ check (bsc#1186965). - scsi: libfc: Fix enum-conversion warning (bsc#1186966). - scsi: libsas: Fix error path in sas_notify_lldd_dev_found() (bsc#1186967). - scsi: libsas: Reset num_scatter if libata marks qc as NODATA (bsc#1187068). - scsi: libsas: Set data_dir as DMA_NONE if libata marks qc as NODATA (bsc#1186968). - scsi: lpfc: Fix ancient double free (bsc#1186969). - scsi: lpfc: Fix failure to transmit ABTS on FC link (git-fixes). - scsi: megaraid_sas: Check user-provided offsets (bsc#1186970). - scsi: megaraid_sas: Clear affinity hint (bsc#1186971). - scsi: megaraid_sas: Do not call disable_irq from process IRQ poll (bsc#1186972). - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression (bsc#1186973). - scsi: megaraid_sas: Remove undefined ENABLE_IRQ_POLL macro (bsc#1186974). - scsi: mesh: Fix panic after host or bus reset (bsc#1186976). - scsi: mpt3sas: Do not use GFP_KERNEL in atomic context (bsc#1186977). - scsi: mpt3sas: Fix error return code of mpt3sas_base_attach() (bsc#1186978). - scsi: mpt3sas: Fix ioctl timeout (bsc#1186979). - scsi: myrs: Fix a double free in myrs_cleanup() (bsc#1186980). - scsi: pm80xx: Fix error return in pm8001_pci_probe() (bsc#1186981). - scsi: powertec: Fix different dev_id between request_irq() and free_irq() (bsc#1186982). - scsi: qedi: Check for buffer overflow in qedi_set_path() (bsc#1186983). - scsi: qedi: Fix error return code of qedi_alloc_global_queues() (bsc#1186984). - scsi: qedi: Fix missing destroy_workqueue() on error in __qedi_probe (bsc#1186985). - scsi: qla2xxx: Prevent PRLI in target mode (git-fixes). - scsi: qla4xxx: Fix an error handling path in 'qla4xxx_get_host_stats()' (bsc#1186986). - scsi: qla4xxx: Remove in_interrupt() (bsc#1186987). - scsi: scsi_debug: Add check for sdebug_max_queue during module init (bsc#1186988). - scsi: scsi_dh_alua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701). - scsi: sd: Fix Opal support (bsc#1186989). - scsi: smartpqi: Add additional logging for LUN resets (bsc#1186472). - scsi: smartpqi: Add host level stream detection enable (bsc#1186472). - scsi: smartpqi: Add new PCI IDs (bsc#1186472). - scsi: smartpqi: Add phy ID support for the physical drives (bsc#1186472). - scsi: smartpqi: Add stream detection (bsc#1186472). - scsi: smartpqi: Add support for BMIC sense feature cmd and feature bits (bsc#1186472). - scsi: smartpqi: Add support for RAID1 writes (bsc#1186472). - scsi: smartpqi: Add support for RAID5 and RAID6 writes (bsc#1186472). - scsi: smartpqi: Add support for long firmware version (bsc#1186472). - scsi: smartpqi: Add support for new product ids (bsc#1186472). - scsi: smartpqi: Add support for wwid (bsc#1186472). - scsi: smartpqi: Align code with oob driver (bsc#1186472). - scsi: smartpqi: Convert snprintf() to scnprintf() (bsc#1186472). - scsi: smartpqi: Correct request leakage during reset operations (bsc#1186472). - scsi: smartpqi: Correct system hangs when resuming from hibernation (bsc#1186472). - scsi: smartpqi: Disable WRITE SAME for HBA NVMe disks (bsc#1186472). - scsi: smartpqi: Fix blocks_per_row static checker issue (bsc#1186472). - scsi: smartpqi: Fix device pointer variable reference static checker issue (bsc#1186472). - scsi: smartpqi: Fix driver synchronization issues (bsc#1186472). - scsi: smartpqi: Refactor aio submission code (bsc#1186472). - scsi: smartpqi: Refactor scatterlist code (bsc#1186472). - scsi: smartpqi: Remove timeouts from internal cmds (bsc#1186472). - scsi: smartpqi: Remove unused functions (bsc#1186472). - scsi: smartpqi: Synchronize device resets with mutex (bsc#1186472). - scsi: smartpqi: Update OFA management (bsc#1186472). - scsi: smartpqi: Update RAID bypass handling (bsc#1186472). - scsi: smartpqi: Update SAS initiator_port_protocols and target_port_protocols (bsc#1186472). - scsi: smartpqi: Update device scan operations (bsc#1186472). - scsi: smartpqi: Update enclosure identifier in sysfs (bsc#1186472). - scsi: smartpqi: Update event handler (bsc#1186472). - scsi: smartpqi: Update soft reset management for OFA (bsc#1186472). - scsi: smartpqi: Update suspend/resume and shutdown (bsc#1186472). - scsi: smartpqi: Update version to 2.1.8-045 (bsc#1186472). - scsi: smartpqi: Use host-wide tag space (bsc#1186472). - scsi: sni_53c710: Add IRQ check (bsc#1186990). - scsi: sun3x_esp: Add IRQ check (bsc#1186991). - scsi: ufs-qcom: Fix scheduling while atomic issue (bsc#1187002). - scsi: ufs: Add quirk to disallow reset of interrupt aggregation (bsc#1186992). - scsi: ufs: Add quirk to enable host controller without hce (bsc#1186993). - scsi: ufs: Add quirk to fix abnormal ocs fatal error (bsc#1186994). - scsi: ufs: Add quirk to fix mishandling utrlclr/utmrlclr (bsc#1186995). - scsi: ufs: Do not update urgent bkops level when toggling auto bkops (bsc#1186997). - scsi: ufs: Fix race between shutdown and runtime resume flow (bsc#1186998). - scsi: ufs: Introduce UFSHCD_QUIRK_PRDT_BYTE_GRAN quirk (bsc#1187000). - scsi: ufs: Make ufshcd_print_trs() consider UFSHCD_QUIRK_PRDT_BYTE_GRAN (bsc#1187069). - scsi: ufs: Properly release resources if a task is aborted successfully (bsc#1187001). - scsi: ufs: core: Narrow down fast path in system suspend path (bsc#1186996). - scsi: ufs: ufshcd-pltfrm: Fix deferred probing (bsc#1187003). - scsi: ufshcd: use an enum for quirks (bsc#1186999). - serial: 8250_pci: handle FL_NOIRQ board flag (git-fixes). - serial: max310x: unregister uart driver in case of failure and abort (git-fixes). - serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait' (git-fixes). - staging: rtl8723bs: Fix uninitialized variables (git-fixes). - sunrpc: fix refcount leak for rpc auth modules (git-fixes). - svcrdma: disable timeouts on rdma backchannel (git-fixes). - thermal/drivers/intel: Initialize RW trip to THERMAL_TEMP_INVALID (git-fixes). - thunderbolt: usb4: Fix NVM read buffer bounds and offset issue (git-fixes). - tpm: fix error return code in tpm2_get_cc_attrs_tbl() (git-fixes). - ttyprintk: Add TTY hangup callback (git-fixes). - usb: chipidea: imx: Fix Battery Charger 1.2 CDP detection (git-fixes). - usb: core: reduce power-on-good delay time of root hub (git-fixes). - usb: fix various gadgets null ptr deref on 10gbps cabling (git-fixes). - usb: musb: fix MUSB_QUIRK_B_DISCONNECT_99 handling (git-fixes). - usb: pd: Set PD_T_SINK_WAIT_CAP to 310ms (git-fixes). - usb: typec: intel_pmc_mux: Put fwnode in error case during ->probe() (git-fixes). - usb: typec: mux: Fix copy-paste mistake in typec_mux_match (git-fixes). - usb: typec: mux: Fix matching with typec_altmode_desc (git-fixes). - usb: typec: tcpm: Use LE to CPU conversion when accessing msg->header (git-fixes). - usb: typec: ucsi: Clear PPM capability data in ucsi_init() error path (git-fixes). - usb: typec: ucsi: Retrieve all the PDOs instead of just the first 4 (git-fixes). - usb: typec: wcove: Use LE to CPU conversion when accessing msg->header (git-fixes). - vfio/pci: Fix error return code in vfio_ecap_init() (git-fixes). - vfio/pci: zap_vma_ptes() needs MMU (git-fixes). - vfio/platform: fix module_put call in error flow (git-fixes). - vmlinux.lds.h: Avoid orphan section with !SMP (git-fixes). - vsock/vmci: log once the failed queue pair allocation (git-fixes). - wireguard: allowedips: initialize list head in selftest (git-fixes). - wireguard: do not use -O3 (git-fixes). - wireguard: peer: allocate in kmem_cache (git-fixes). - wireguard: peer: put frequently used members above cache lines (git-fixes). - wireguard: queueing: get rid of per-peer ring buffers (git-fixes). - wireguard: selftests: make sure rp_filter is disabled on vethc (git-fixes). - wireguard: selftests: remove old conntrack kconfig value (git-fixes). - wireguard: use synchronize_net rather than synchronize_rcu (git-fixes). - x86/apic: Mark _all_ legacy interrupts when IO/APIC is missing (bsc#1152489). - x86/boot/64: Explicitly map boot_params and command line (jsc#SLE-14337). - x86/boot/compressed/64: Add 32-bit boot #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Add CPUID sanity check to 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in 64-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Cleanup exception handling before booting kernel (jsc#SLE-14337). - x86/boot/compressed/64: Introduce sev_status (jsc#SLE-14337). - x86/boot/compressed/64: Reload CS in startup_32 (jsc#SLE-14337). - x86/boot/compressed/64: Sanity-check CPUID results in the early #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Setup IDT in startup_32 boot path (jsc#SLE-14337). - x86/cpufeatures: Force disable X86_FEATURE_ENQCMD and remove update_pasid() (bsc#1178134). - x86/fault: Do not send SIGSEGV twice on SEGV_PKUERR (bsc#1152489). - x86/fpu: Prevent state corruption in __fpu__restore_sig() (bsc#1178134). - x86/head/64: Check SEV encryption before switching to kernel page-table (jsc#SLE-14337). - x86/head/64: Disable stack protection for head$(BITS).o (jsc#SLE-14337). - x86/ioremap: Map efi_mem_reserve() memory as encrypted for SEV (bsc#1186885). - x86/sev-es: Do not return NULL from sev_es_get_ghcb() (bsc#1187349). - x86/sev-es: Do not support MMIO to/from encrypted memory (jsc#SLE-14337). - x86/sev-es: Forward page-faults which happen during emulation (bsc#1187350). - x86/sev-es: Replace open-coded hlt-loops with sev_es_terminate() (jsc#SLE-14337). - x86/sev-es: Use __put_user()/__get_user() for data accesses (bsc#1187351). - x86/sev: Check SME/SEV support in CPUID first (jsc#SLE-14337). - x86/sev: Do not require Hypervisor CPUID bit for SEV guests (jsc#SLE-14337). - x86: fix seq_file iteration for pat.c (git-fixes). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). - xprtrdma: Avoid Receive Queue wrapping (git-fixes). - xprtrdma: rpcrdma_mr_pop() already does list_del_init() (git-fixes). cluster-md-kmp-azure-5.3.18-38.8.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.8.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.8.1.x86_64.rpm True kernel-azure-5.3.18-38.8.1.nosrc.rpm True kernel-azure-5.3.18-38.8.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.8.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.8.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.8.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.8.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.8.1.noarch.rpm True kernel-source-azure-5.3.18-38.8.1.noarch.rpm True kernel-source-azure-5.3.18-38.8.1.src.rpm True kernel-syms-azure-5.3.18-38.8.1.src.rpm True kernel-syms-azure-5.3.18-38.8.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.8.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.8.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.8.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2395 moderate SUSE Updates openSUSE-SLE 15.3 This update for efivar provides the following fix: - Fix the eMMC sysfs parsing. (bsc#1187386) efivar-37-6.12.1.src.rpm efivar-37-6.12.1.x86_64.rpm efivar-devel-37-6.12.1.x86_64.rpm libefivar1-37-6.12.1.x86_64.rpm efivar-37-6.12.1.s390x.rpm efivar-devel-37-6.12.1.s390x.rpm libefivar1-37-6.12.1.s390x.rpm efivar-37-6.12.1.ppc64le.rpm efivar-devel-37-6.12.1.ppc64le.rpm libefivar1-37-6.12.1.ppc64le.rpm efivar-37-6.12.1.aarch64.rpm efivar-devel-37-6.12.1.aarch64.rpm libefivar1-37-6.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2394 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-module-tools provides the following fixes: - Fix treatment of compressed modules. (bsc#1187093) - modprobe.d: Remove dma=none setting for parport_pc. (bsc#1177695) suse-module-tools-15.3.8-3.5.1.src.rpm suse-module-tools-15.3.8-3.5.1.x86_64.rpm suse-module-tools-legacy-15.3.8-3.5.1.x86_64.rpm suse-module-tools-15.3.8-3.5.1.s390x.rpm suse-module-tools-legacy-15.3.8-3.5.1.s390x.rpm suse-module-tools-15.3.8-3.5.1.ppc64le.rpm suse-module-tools-legacy-15.3.8-3.5.1.ppc64le.rpm suse-module-tools-15.3.8-3.5.1.aarch64.rpm suse-module-tools-legacy-15.3.8-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2272 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker provides the following fix: - controld: Purge attrd attributes when the remote node is up to ensure sync with CIB. (bsc#1186693) libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.src.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-4.6.1.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2308 moderate SUSE Updates openSUSE-SLE 15.3 This update for cpupower provides the following fix: - cpupower updates for Milan. (jsc#SLE-17797) cpupower-5.10-3.3.1.src.rpm cpupower-5.10-3.3.1.x86_64.rpm cpupower-bench-5.10-3.3.1.x86_64.rpm cpupower-devel-5.10-3.3.1.x86_64.rpm libcpupower0-5.10-3.3.1.x86_64.rpm cpupower-5.10-3.3.1.s390x.rpm cpupower-bench-5.10-3.3.1.s390x.rpm cpupower-devel-5.10-3.3.1.s390x.rpm libcpupower0-5.10-3.3.1.s390x.rpm cpupower-5.10-3.3.1.ppc64le.rpm cpupower-bench-5.10-3.3.1.ppc64le.rpm cpupower-devel-5.10-3.3.1.ppc64le.rpm libcpupower0-5.10-3.3.1.ppc64le.rpm cpupower-5.10-3.3.1.aarch64.rpm cpupower-bench-5.10-3.3.1.aarch64.rpm cpupower-devel-5.10-3.3.1.aarch64.rpm libcpupower0-5.10-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2271 moderate SUSE Updates openSUSE-SLE 15.3 This update for evolution provides the following fix: - Disable WebKit sandboxing to make printing work until WebkitGTK is fixed. (bsc#1174907) evolution-3.34.4-3.3.1.src.rpm evolution-3.34.4-3.3.1.x86_64.rpm evolution-devel-3.34.4-3.3.1.x86_64.rpm evolution-lang-3.34.4-3.3.1.noarch.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.x86_64.rpm evolution-plugin-pst-import-3.34.4-3.3.1.x86_64.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.x86_64.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.x86_64.rpm glade-catalog-evolution-3.34.4-3.3.1.x86_64.rpm evolution-3.34.4-3.3.1.s390x.rpm evolution-devel-3.34.4-3.3.1.s390x.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.s390x.rpm evolution-plugin-pst-import-3.34.4-3.3.1.s390x.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.s390x.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.s390x.rpm glade-catalog-evolution-3.34.4-3.3.1.s390x.rpm evolution-3.34.4-3.3.1.ppc64le.rpm evolution-devel-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-pst-import-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.ppc64le.rpm glade-catalog-evolution-3.34.4-3.3.1.ppc64le.rpm evolution-3.34.4-3.3.1.aarch64.rpm evolution-devel-3.34.4-3.3.1.aarch64.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.aarch64.rpm evolution-plugin-pst-import-3.34.4-3.3.1.aarch64.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.aarch64.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.aarch64.rpm glade-catalog-evolution-3.34.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2283 moderate SUSE Updates openSUSE-SLE 15.3 This update for deja-dup provides the following fix: - Require duplicity as deja-dup cannot run without it. (bsc#1187256) deja-dup-40.6-3.3.1.src.rpm deja-dup-40.6-3.3.1.x86_64.rpm deja-dup-lang-40.6-3.3.1.noarch.rpm nautilus-deja-dup-40.6-3.3.1.x86_64.rpm deja-dup-40.6-3.3.1.s390x.rpm nautilus-deja-dup-40.6-3.3.1.s390x.rpm deja-dup-40.6-3.3.1.ppc64le.rpm nautilus-deja-dup-40.6-3.3.1.ppc64le.rpm deja-dup-40.6-3.3.1.aarch64.rpm nautilus-deja-dup-40.6-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2169 moderate SUSE Updates openSUSE-SLE 15.3 This update for hexchat fixes the following issues: - Added Libera.chat to available servers (bsc#1187587) hexchat-2.12.4-3.3.1.src.rpm hexchat-2.12.4-3.3.1.x86_64.rpm hexchat-devel-2.12.4-3.3.1.x86_64.rpm hexchat-lang-2.12.4-3.3.1.noarch.rpm hexchat-plugins-lua-2.12.4-3.3.1.x86_64.rpm hexchat-plugins-perl-2.12.4-3.3.1.x86_64.rpm hexchat-plugins-python3-2.12.4-3.3.1.x86_64.rpm hexchat-2.12.4-3.3.1.s390x.rpm hexchat-devel-2.12.4-3.3.1.s390x.rpm hexchat-plugins-lua-2.12.4-3.3.1.s390x.rpm hexchat-plugins-perl-2.12.4-3.3.1.s390x.rpm hexchat-plugins-python3-2.12.4-3.3.1.s390x.rpm hexchat-2.12.4-3.3.1.ppc64le.rpm hexchat-devel-2.12.4-3.3.1.ppc64le.rpm hexchat-plugins-lua-2.12.4-3.3.1.ppc64le.rpm hexchat-plugins-perl-2.12.4-3.3.1.ppc64le.rpm hexchat-plugins-python3-2.12.4-3.3.1.ppc64le.rpm hexchat-2.12.4-3.3.1.aarch64.rpm hexchat-devel-2.12.4-3.3.1.aarch64.rpm hexchat-plugins-lua-2.12.4-3.3.1.aarch64.rpm hexchat-plugins-perl-2.12.4-3.3.1.aarch64.rpm hexchat-plugins-python3-2.12.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2317 moderate SUSE Updates openSUSE-SLE 15.3 This update for libvma fixes the following issues: - Link the tools as position independent executables. (bsc#1184124) libvma-8.9.4-3.3.1.src.rpm libvma8-8.9.4-3.3.1.x86_64.rpm libvma8-8.9.4-3.3.1.ppc64le.rpm libvma8-8.9.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2214 important SUSE Updates openSUSE-SLE 15.3 This update for go1.15 fixes the following issues: Update to 1.15.13. Includes these security fixes - CVE-2021-33195: net: Lookup functions may return invalid host names (bsc#1187443). - CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion (bsc#1186622). - CVE-2021-33197: net/http/httputil: ReverseProxy forwards Connection headers if first one is empty (bsc#1187444) - CVE-2021-33198: math/big: (*Rat).SetString with "1.770p02041010010011001001" crashes with "makeslice: len out of range" (bsc#1187445). go1.15-1.15.13-1.33.1.src.rpm go1.15-1.15.13-1.33.1.x86_64.rpm go1.15-doc-1.15.13-1.33.1.x86_64.rpm go1.15-race-1.15.13-1.33.1.x86_64.rpm go1.15-1.15.13-1.33.1.s390x.rpm go1.15-doc-1.15.13-1.33.1.s390x.rpm go1.15-1.15.13-1.33.1.ppc64le.rpm go1.15-doc-1.15.13-1.33.1.ppc64le.rpm go1.15-1.15.13-1.33.1.aarch64.rpm go1.15-doc-1.15.13-1.33.1.aarch64.rpm go1.15-race-1.15.13-1.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-2186 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Update to 1.16.5. Includes these security fixes - CVE-2021-33195: net: Lookup functions may return invalid host names (bsc#1187443). - CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion (bsc#1186622). - CVE-2021-33197: net/http/httputil: ReverseProxy forwards Connection headers if first one is empty (bsc#1187444) - CVE-2021-33198: math/big: (*Rat).SetString with "1.770p02041010010011001001" crashes with "makeslice: len out of range" (bsc#1187445). go1.16-1.16.5-1.17.1.src.rpm go1.16-1.16.5-1.17.1.x86_64.rpm go1.16-doc-1.16.5-1.17.1.x86_64.rpm go1.16-race-1.16.5-1.17.1.x86_64.rpm go1.16-1.16.5-1.17.1.s390x.rpm go1.16-doc-1.16.5-1.17.1.s390x.rpm go1.16-1.16.5-1.17.1.ppc64le.rpm go1.16-doc-1.16.5-1.17.1.ppc64le.rpm go1.16-1.16.5-1.17.1.aarch64.rpm go1.16-doc-1.16.5-1.17.1.aarch64.rpm go1.16-race-1.16.5-1.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-2292 important SUSE Updates openSUSE-SLE 15.3 This update for dbus-1 fixes the following issues: - CVE-2020-35512: Fixed a use-after-free or potential undefined behaviour caused by shared UID's (bsc#1187105) dbus-1-1.12.2-8.6.1.src.rpm True dbus-1-1.12.2-8.6.1.x86_64.rpm True dbus-1-devel-1.12.2-8.6.1.x86_64.rpm True dbus-1-devel-32bit-1.12.2-8.6.1.x86_64.rpm True dbus-1-devel-doc-1.12.2-8.6.1.noarch.rpm True dbus-1-x11-1.12.2-8.6.1.src.rpm True dbus-1-x11-1.12.2-8.6.1.x86_64.rpm True libdbus-1-3-1.12.2-8.6.1.x86_64.rpm True libdbus-1-3-32bit-1.12.2-8.6.1.x86_64.rpm True dbus-1-1.12.2-8.6.1.s390x.rpm True dbus-1-devel-1.12.2-8.6.1.s390x.rpm True dbus-1-x11-1.12.2-8.6.1.s390x.rpm True libdbus-1-3-1.12.2-8.6.1.s390x.rpm True dbus-1-1.12.2-8.6.1.ppc64le.rpm True dbus-1-devel-1.12.2-8.6.1.ppc64le.rpm True dbus-1-x11-1.12.2-8.6.1.ppc64le.rpm True libdbus-1-3-1.12.2-8.6.1.ppc64le.rpm True dbus-1-1.12.2-8.6.1.aarch64.rpm True dbus-1-devel-1.12.2-8.6.1.aarch64.rpm True dbus-1-x11-1.12.2-8.6.1.aarch64.rpm True libdbus-1-3-1.12.2-8.6.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2322 important SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2020-13904: Fixed use-after-free via a crafted EXTINF duration in an m3u8 file (bsc#1172640). - CVE-2020-21041: Fixed buffer overflow vulnerability via apng_do_inverse_blend in libavcodec/pngenc.c (bsc#1186406). - CVE-2019-17539: Fixed NULL pointer dereference in avcodec_open2 in libavcodec/utils.c (bsc# 1154065). - CVE-2020-22026: Fixed buffer overflow vulnerability in config_input() at libavfilter/af_tremolo.c (bsc#1186583). - CVE-2020-22021: Fixed buffer overflow vulnerability in filter_edges function in libavfilter/vf_yadif.c (bsc#1186586). - CVE-2020-22020: Fixed buffer overflow vulnerability in build_diff_map() in libavfilter/vf_fieldmatch.c (bsc#1186587). - CVE-2020-22015: Fixed buffer overflow vulnerability in mov_write_video_tag() due to the out of bounds in libavformat/movenc.c (bsc#1186596). - CVE-2020-22016: Fixed a heap-based Buffer Overflow vulnerability at libavcodec/get_bits.h when writing .mov files (bsc#1186598). - CVE-2020-22017: Fixed a heap-based Buffer Overflow vulnerability in ff_fill_rectangle() in libavfilter/drawutils.c (bsc#1186600). - CVE-2020-22022: Fixed a heap-based Buffer Overflow vulnerability in filter_frame at libavfilter/vf_fieldorder.c (bsc#1186603). - CVE-2020-22023: Fixed a heap-based Buffer Overflow vulnerability in filter_frame at libavfilter/vf_bitplanenoise.c (bsc#1186604) - CVE-2020-22025: Fixed a heap-based Buffer Overflow vulnerability in gaussian_blur at libavfilter/vf_edgedetect.c (bsc#1186605). - CVE-2020-22031: Fixed a heap-based Buffer Overflow vulnerability at libavfilter/vf_w3fdif.c in filter16_complex_low() (bsc#1186613). - CVE-2020-22032: Fixed a heap-based Buffer Overflow vulnerability at libavfilter/vf_edgedetect.c in gaussian_blur() (bsc#1186614). - CVE-2020-22034: Fixed a heap-based Buffer Overflow vulnerability at libavfilter/vf_floodfill.c (bsc#1186616). - CVE-2020-20451: Fixed denial of service issue due to resource management errors via fftools/cmdutils.c (bsc#1186658). - CVE-2020-20448: Fixed divide by zero issue via libavcodec/ratecontrol.c (bsc#1186660). - CVE-2020-22038: Fixed denial of service vulnerability due to a memory leak in the ff_v4l2_m2m_create_context function in v4l2_m2m.c (bsc#1186757). - CVE-2020-22039: Fixed denial of service vulnerability due to a memory leak in the inavi_add_ientry function (bsc#1186758). - CVE-2020-22043: Fixed denial of service vulnerability due to a memory leak at the fifo_alloc_common function in libavutil/fifo.c (bsc#1186762). - CVE-2020-22044: Fixed denial of service vulnerability due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c (bsc#1186763). - CVE-2020-22033,CVE-2020-22019: Fixed a heap-based Buffer Overflow Vulnerability at libavfilter/vf_vmafmotion.c in convolution_y_8bit() and in convolution_y_10bit() in libavfilter/vf_vmafmotion.c (bsc#1186615, bsc#1186597). ffmpeg-3.4.2-11.3.1.src.rpm ffmpeg-3.4.2-11.3.1.x86_64.rpm ffmpeg-private-devel-3.4.2-11.3.1.x86_64.rpm libavcodec-devel-3.4.2-11.3.1.x86_64.rpm libavcodec57-3.4.2-11.3.1.x86_64.rpm libavcodec57-32bit-3.4.2-11.3.1.x86_64.rpm libavdevice-devel-3.4.2-11.3.1.x86_64.rpm libavdevice57-3.4.2-11.3.1.x86_64.rpm libavdevice57-32bit-3.4.2-11.3.1.x86_64.rpm libavfilter-devel-3.4.2-11.3.1.x86_64.rpm libavfilter6-3.4.2-11.3.1.x86_64.rpm libavfilter6-32bit-3.4.2-11.3.1.x86_64.rpm libavformat-devel-3.4.2-11.3.1.x86_64.rpm libavformat57-3.4.2-11.3.1.x86_64.rpm libavformat57-32bit-3.4.2-11.3.1.x86_64.rpm libavresample-devel-3.4.2-11.3.1.x86_64.rpm libavresample3-3.4.2-11.3.1.x86_64.rpm libavresample3-32bit-3.4.2-11.3.1.x86_64.rpm libavutil-devel-3.4.2-11.3.1.x86_64.rpm libavutil55-3.4.2-11.3.1.x86_64.rpm libavutil55-32bit-3.4.2-11.3.1.x86_64.rpm libpostproc-devel-3.4.2-11.3.1.x86_64.rpm libpostproc54-3.4.2-11.3.1.x86_64.rpm libpostproc54-32bit-3.4.2-11.3.1.x86_64.rpm libswresample-devel-3.4.2-11.3.1.x86_64.rpm libswresample2-3.4.2-11.3.1.x86_64.rpm libswresample2-32bit-3.4.2-11.3.1.x86_64.rpm libswscale-devel-3.4.2-11.3.1.x86_64.rpm libswscale4-3.4.2-11.3.1.x86_64.rpm libswscale4-32bit-3.4.2-11.3.1.x86_64.rpm ffmpeg-3.4.2-11.3.1.s390x.rpm ffmpeg-private-devel-3.4.2-11.3.1.s390x.rpm libavcodec-devel-3.4.2-11.3.1.s390x.rpm libavcodec57-3.4.2-11.3.1.s390x.rpm libavdevice-devel-3.4.2-11.3.1.s390x.rpm libavdevice57-3.4.2-11.3.1.s390x.rpm libavfilter-devel-3.4.2-11.3.1.s390x.rpm libavfilter6-3.4.2-11.3.1.s390x.rpm libavformat-devel-3.4.2-11.3.1.s390x.rpm libavformat57-3.4.2-11.3.1.s390x.rpm libavresample-devel-3.4.2-11.3.1.s390x.rpm libavresample3-3.4.2-11.3.1.s390x.rpm libavutil-devel-3.4.2-11.3.1.s390x.rpm libavutil55-3.4.2-11.3.1.s390x.rpm libpostproc-devel-3.4.2-11.3.1.s390x.rpm libpostproc54-3.4.2-11.3.1.s390x.rpm libswresample-devel-3.4.2-11.3.1.s390x.rpm libswresample2-3.4.2-11.3.1.s390x.rpm libswscale-devel-3.4.2-11.3.1.s390x.rpm libswscale4-3.4.2-11.3.1.s390x.rpm ffmpeg-3.4.2-11.3.1.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.3.1.ppc64le.rpm libavcodec-devel-3.4.2-11.3.1.ppc64le.rpm libavcodec57-3.4.2-11.3.1.ppc64le.rpm libavdevice-devel-3.4.2-11.3.1.ppc64le.rpm libavdevice57-3.4.2-11.3.1.ppc64le.rpm libavfilter-devel-3.4.2-11.3.1.ppc64le.rpm libavfilter6-3.4.2-11.3.1.ppc64le.rpm libavformat-devel-3.4.2-11.3.1.ppc64le.rpm libavformat57-3.4.2-11.3.1.ppc64le.rpm libavresample-devel-3.4.2-11.3.1.ppc64le.rpm libavresample3-3.4.2-11.3.1.ppc64le.rpm libavutil-devel-3.4.2-11.3.1.ppc64le.rpm libavutil55-3.4.2-11.3.1.ppc64le.rpm libpostproc-devel-3.4.2-11.3.1.ppc64le.rpm libpostproc54-3.4.2-11.3.1.ppc64le.rpm libswresample-devel-3.4.2-11.3.1.ppc64le.rpm libswresample2-3.4.2-11.3.1.ppc64le.rpm libswscale-devel-3.4.2-11.3.1.ppc64le.rpm libswscale4-3.4.2-11.3.1.ppc64le.rpm ffmpeg-3.4.2-11.3.1.aarch64.rpm ffmpeg-private-devel-3.4.2-11.3.1.aarch64.rpm libavcodec-devel-3.4.2-11.3.1.aarch64.rpm libavcodec57-3.4.2-11.3.1.aarch64.rpm libavdevice-devel-3.4.2-11.3.1.aarch64.rpm libavdevice57-3.4.2-11.3.1.aarch64.rpm libavfilter-devel-3.4.2-11.3.1.aarch64.rpm libavfilter6-3.4.2-11.3.1.aarch64.rpm libavformat-devel-3.4.2-11.3.1.aarch64.rpm libavformat57-3.4.2-11.3.1.aarch64.rpm libavresample-devel-3.4.2-11.3.1.aarch64.rpm libavresample3-3.4.2-11.3.1.aarch64.rpm libavutil-devel-3.4.2-11.3.1.aarch64.rpm libavutil55-3.4.2-11.3.1.aarch64.rpm libpostproc-devel-3.4.2-11.3.1.aarch64.rpm libpostproc54-3.4.2-11.3.1.aarch64.rpm libswresample-devel-3.4.2-11.3.1.aarch64.rpm libswresample2-3.4.2-11.3.1.aarch64.rpm libswscale-devel-3.4.2-11.3.1.aarch64.rpm libswscale4-3.4.2-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2547 moderate SUSE Updates openSUSE-SLE 15.3 This update for fence-agents fixes the following issues: - Corrections to support Azure SDK greater than 15 - including backward compatibility (bsc#1185058) - Fixed an issue when libvirt breaks the connection in every 30 seconds. - ECO: Update fence-agents. (jsc#SLE-18182) - Add upstream PR to aws-vpc-move-ip and apply required resource and fence agent patches. (jsc#SLE-17998) - Fixed an issue when fence-agent does not restart the node properly. (bsc#1182701) - Major rework of the original agent: * fence_gce: default method moved back to powercycle (#389) * fence_gce: make serviceaccount work with new libraries * fence_virt*: simple_auth: use %zu for sizeof to avoid failing verbose builds on some archs * configure: dont fail when --with-agents contains virt * fence_mpath: watchdog retries support * fencing: add multi plug support for reboot-action * fence_redfish: add missing diag logic * fencing: fix issue with hardcoded help text length for metadata * fencing: add stonith_status_sleep parameter for sleep between status calls during a STONITH action * fence_aws: add filter parameter to be able to limit which nodes are listed * virt: fix a bunch of coverity scan errors in ip_lookup * virt: make sure to provide an empty default to strncpy * virt: make sure buffers are big enough for 0 byte end string * virt: increase buffer size to avoid overruns * virt: check return code in virt-sockets * virt: fix plugin (minor) memory leak and plug in load race * virt: attempt to open file directly and avoid race condition * virt: fix different coverity scan errors in common/tcp * virt: cleanup deadcode in client/vsock * virt: cleanup deadcode in client/tcp * virt: fix potential buffer overrun * virt: fix mcast coverity scan errors * virt: drop pm-fence plugin * virt: drop libvirt-qmf plugin * virt: drop null plugin * virt: drop fence_virtd non-modular build * virt: fix plugin installation regression on upgrades * fence_virt: metadata fixes, implement manpage generation and metadata/delay/rng checks * virt: make sure variable is initialized * zvm: reformat fence_zvm to avoid gcc warnings * virt: drop -Werror to avoid unnecessary failures * virt: disable -Wunused for yy generated files * virt: disable fence-virt on bsd variants * virt: merge spec files * build: fix more gcc warnings * build: remove unused / obsoleted options * build: fix some annoying warnings at ./autogen.sh time * virt: move all virt CFLAGS/LDFLAGS in the right location * virt: fix unused gcc warnings and re-enable all build warnings * virt: fix write-strings gcc warnings * virt: fix pointer-arith gcc warnings * virt: fix declaration-after-statement gcc warnings * virt: fix build with -Wmissing-prototypes * build: don´t override clean target * virt: plug fence_virt into the build * virt: allow fence_virt build to be optional * virt: drop support for LSB init script * virt: collect docs in one location * virt: remove unnecessary files and move build macros in place * Ignore fence-virt man pages * Move fence_virt to the correct location * spec: use python3 path for newer releases * spec: undo autosetup change that breaks builds w/git commit hashes * Ignore unknown options on stdin * fence_gce: support google-auth and oauthlib and fallback to deprecated libs when not available * spec: add aliyun subpackage and fence_mpath_check* to mpath subpackage * fence_gce: Adds cloud-platform scope for bare metal API and optional proxy flags (#382) * fence_virt: Fix minor typo in metadata * fence_gce: update module reqs for SLES 15 (#383) * Add fence_ipmilanplus as fence_ipmilan wrapper always enabling lanplus * fence_redfish: Add diag action * fence_vbox: updated metadata file * fence_vbox: do not flood host account with vboxmanage calls * fence_aws/fence_gce: allow building without cloud libs * fence_gce: default to onoff * fence_lpar: Make --managed a required option * fence_zvmip: fix shell-timeout when using new disable-timeout parameter * Adds service account authentication to GCE fence agent * spec: dont build -all subpackage as noarch * fence_virt: add plug parameter that obsoletes old port parameter * Try to detect directory for initscripts configuration * Accept SIGTERM while waiting for initialization. * Add man pages to fence_virtd service file. * Fix spelling error in fence_virt.conf.5 * build: fix BRs for suse distros * build: remove ExclusiveArch * build: removed gcc-c++ BR * build: add spec-file and rpm build targets * build: cleanup/improvements to reworked build system * [build] rework build system to use automake/libtool * fence_virtd: Fix segfault in vl_get when no domains are found * fence_virt: fix core dump * build: harden and make it possible to build with -fPIE * fence_virt: dont report success for incorrect parameters * fence_virt: mcast: config: Warn when provided mcast addr is not used * fence_virtd: Return control to main loop on select interruption * fence-virtd: Add missing vsock makefile bits * fence-virt: Add vsock support * fence_virtd: Fix transposed arguments in startup message * fence_virt: Rename challenge functions * fence_virtd: Cleanup: remove unused configuration options * fence_virt: Remove remaining references to checkpoints * fence_virt: Remove remaining references to checkpoints * fence-virt: Format string cleanup * fence_virtd: Implment hostlist for the cpg backend * fence_virt: Fix logic error in fence_xvm * fence_virtd: Cleanup config module * fence_virtd: cpg: Fail initialization if no hypervisor connections * fence_virtd: Make the libvirt backend survive libvirtd restarts * fence_virtd: Allow the cpg backend to survive libvirt failures * fence_virtd: cpg: Fix typo * fence-virtd: Add cpg-virt backend plugin * fence_virtd: Remove checkpoint, replace it with a CPG only plugin * fence-virt: Bump version * fence_virtd: Add better debugging messages for the TCP listner * fence_virtd: Fix potential unlocked pthread_cond_timedwait() * fence-virtd: Cleanup small memory leak * fence_virtd: Fix select logic in listener plugins * Factor out common libvirt code so that it can be reused by multiple backends * Document the fence_virtd -p command line flag * fence_virtd: Log an error when startup fails * Retry writes in the TCP, mcast, and serial listener plugins while sending a response to clients, if the write fails or is incomplete. * Make the packet authentication code more resilient in the face of transient failures. * Disable the libvirt-qmf backend by default * Bump the versions of the libvirt and checkpoint plugins * fence-virtd: Enable TCP listener plugin by default * fence-virtd: Cleanup documentation of the TCP listener * fence_xvm/fence_virt: Add support for the validate-all status op * fence-virt: Add list-status command to man page and metadata * fence-virt: Cleanup numeric argument parsing * fence-virt: Log message to syslog in addition to stdout/stderr * fence-virt: Permit explicitly setting delay to 0 * fence-virt: Add 'list-status' operation for compat with other agents * Allow fence_virtd to run as non-root * Remove delay from the status, monitor and list functions * Resolves serveral problems in checkpoint plugin, making it functional. * daemon_init: Removed PID check and update * fence_virtd: drop legacy SysVStartPriority from service unit * fence-virt: client: Do not truncate VM domains in list output * client: fix "delay" parameter checking (copy-paste) * fence-virt: Fix broken restrictions on the port ranges * Clarify debug message * fence-virtd: Use perror only if the last system call returns an error. * fence-virtd: Fix printing wrong system call in perror * fence-virtd: Allow multiple hypervisors for the libvirt backend * fence-virt: Don't overrwrite saved errno * fence-virt: Fix small memory leak in the config module * fence-virt: Fix mismatched sizeof in memset call * fence-virt: Send complete hostlist info * fence-virt: Clarify the path option in serial mode * Bump version * fence-virt: Bump version * fence_virtd: Fix broken systemd service file * fence_virt/fence_xvm: Print status when invoked with -o status * fence-virt: Fix for missed libvirtd events * fence-virt: Fail properly if unable to bind the listener socket * client: dump all arguments structure in debug mode * Drop executable flag for man pages (finally) * Honor implicit "ip_family=auto" in fence_xvm w/IPv6 mult.addr. * Fix using bad struct item for auth algorithm * Drop executable flag for man pages * use bswap_X() instead of b_swapX() * fence_virtd: Fix memcpy size params in the TCP plugin * Revert "fence-virt: Fix possible descriptor leak" * fence_virtd: Return success if a domain exists but is already off. * fence-virt: Add back missing tcp_listener.h file * fence-virt: Fix a few fd leaks * fence-virt: Fix free of uninitialized variable * fence-virt: Fix possible null pointer dereference * fence-virt: Fix memory leak * fence-virt: Fix fd leak when finding local addresses * fence-virt: Fix possible descriptor leak * fence-virt: Fix possible fd leak * fence-virt: Fix null pointer deref * fence-virt: Explicitly set delay to 0 * fence-virt: Fix return with lock held * fence_virt: Fix typo in fence_virt(8) man page * fence_virt: Return failure for nonexistent domains * Improve fence_virt.conf man page description of 'hash' * Add a TCP listener plugin for use with viosproxy * In serial mode, return failure if the other end closes the connection before we see SERIAL_MAGIC in the reply or timeout. * Stop linking against unnecessary QPid libs. * Update libvirt-qmf plugin and docs * Fix crash when we fail to read key file. * Fix erroneous man page XML * Add 'interface' directive to example.conf * Add old wait_for_backend directive handling & docs * Return proper error if we can't set up our socket. * Fix startup in systemd environments * Add systemd unit file and generation * Don't override user's pick for backend server module * Use libvirt as default in shipped config * Clean up compiler warnings * Fix serial domain handling * Fix monolithic build * Clean up build and comments. * Add missing pm_fence source code * Disable CMAN / checkpoint build by default * Rename libvirt-qpid -> libvirt-qmf * Fix static analysis errors * Reword assignment to appease static analyzers * Handle return value from virDomainGetInfo * Fix bad sizeof() * Make listen() retry * Add map_check on 'status' action * Update README * Don't reference out-of-scope temporary * Ensure we don't try to strdup() or atoi() on NULL * Add libvirt-qmf support to the libvirt-qpid plugin * Convert libvirt-qpid plugin to QMFv2 * Fix incorrect return value on hash mismatch * Fix error getting status from libvirt-qpid plugin * Make fence-virt requests endian clean * Fix input parsing to allow domain again * Provide 'domain' in metadata output for compatibility * High: Fix UUID lookups in checkpoint backend * Curtail 'list' operation requests * Fix man page references: fence_virtd.conf -> fence_virt.conf * Add 'list' operation for plugins; fix missing getopt line * Fix build with newer versions of qpid * Make configure.in actually disable plugins * Rename parameters to match other fencing agents * Fix fence_xvm man page to point to the right location * client: Clarify license in serial.c * Return 2 for 'off' like other fencing agents * Reset flags before returning from connect_nb * Use nonblocking connect to vmchannel sockets * More parity with other fencing agents' parameters * Fix memory leaks found with valgrind * Add basic daemon functions * Fix bug in path pruning support for serial plugin * Fix libvirt-qpid bugs found while testing * Fix segfault caused by invalid map pointer assignment * Fix another compiler warning * Fix build warnings in client/serial.c * Add 'monitor' as an alias for 'status' * Add serial listener to configuration utility * Make serial/vmchannel module enabled by default * Add missing 'metadata' option to help text * Add missing static_map.h * Add metadata support to fence_xvm/fence_virt * Allow IPs to be members of groups * Allow use of static mappings w/ mcast listener * Make 'path' be a directory * Remove useless debug printfs * Enable VM Channel support in serial plugin * Pass source VM UUID (if known) to backend * Mirror libvirt-qpid's settings in libvirt-qpid plugin * libvirt-qpid: clean up global variable * Enable a configurable host/port on libvirt-qpid plugin * Minor config utility cleanups * Remove unnecessary name_mode from multicast plugin * Add prototypes and clean up build warnings * Use seqno in serial requests * Minor debugging message cleanup * Fix build error due to improper value * Static map support and permissions reporting * Sync up on SERIAL_MAGIC while waiting for a response * Don't build serial vmchannel module by default * Initial checkin of serial server-side support * Fix fence_virt.conf man page name * Add Fedora init script * Compiler warning cleanups in virt-serial.c * Add wait-for-backend mode * Fix up help text for clients * Minor XML cleanups, add missing free() call * add missing module_path to fence_virtd.conf.5 * Add capabilities to virt-serial * Note that serial support is experimental * Add a serial.so build target * Add vmchannel serial event interface * Split fence_virt vs. fence_xvm args * Add static map functions. * Fix build warning due to missing #include * Fix multiple query code * Better config query & multiple value/tag support * Add simple configuration mode * Allow setting config values to NULL to clear them * Clean up example config file * Sort plugins by type when printing them * Revert "Sort plugins by type when printing them" * Sort plugins by type when printing them * Clean up some configuration plugin information * add empty line between names * Make libvirt to automatically use uuid or names * Improve error reporting * Fix build for hostlist functionality * Hostlist functionality for libvirt, libvirt-qpid * Work around broken nspr headers * Fix installation target for man pages * Add man page build infrastructure * Make fence_xvm compatibility mode enabled by default * Fix libvirt / mcast support for name_mode * Fix agent option parsing * Fix dlsym mapping of C++ module * Make uuids work with libvirt-qpid * Fix uninitialized variable causing false returns * Add 'help' to fence_virtd * Fix libvirt-qpid build * Fix libvirt-qpid build * Add libvirt-qpid build target * Initial checking of libvirt-qpid plugin * Fix build on i686 * Make symlink/compatibilty mode disabled by default * Add simple tarball / release script * Use immediate resolution of symbols * Example config tweaks * Use sysconfdir for /etc/fence_virt.conf * Fix package name and install locations * Add 'maintainer-clean' target * Fix build errors on Fedora * Add missing header file * Ignore automake error * Make the build script actually build * Make cluster mode plugin work * Add basic cpg stuff for later * Enable 'on' operation for libvirt backend * Clean up modular build * Minor build cleanups * Yet more build fixes * More build cleanups * Build cleanups * Initial port to autoconf * Add checkpoint.c stub functions * Add sequence numbers to requests for tracking * Include missing include * Call generic history functions * Make history functions generic * Make debugging work from modules again * Revert "Fix build issue breaking debug printing from modules" * Fix build issue breaking debug printing from modules * Fix libvirt backend; VALIDATE was wrong * Cleanups, add daemon support * Add simple 'null' skeleton backend plugin * Make all plugins dynamically loaded. * Fix error message * Remove dummy serial prototypes * Remove modules in 'make clean' * Make listeners plugins. * Move name_mode to fence_virtd block * Add name_mode to example.conf * Move VM naming scheme to top level of config * Enable UUID use in libvirt.c * Move options.c to client directory * Drop duplicate fencing requests * Don't require specifying an interface in fence_virt.conf * Fix empty node parsing * Actually use the default port by default * Don't overwrite config files * Install modules, too. * Add temporary 'make install' target * Make a default configuration file * Make mcast work with UUIDs * Add checkpoint.so to the build * Fix missing carriage returns on debug prints * Add architecture overview description * Make serial_init match mcast_init. * Make multicast use config file * Integrate config file processing * Create server-side plugin architecture * Make libvirt a built-in plugin * Fix header in serial.c. fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.src.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.x86_64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.x86_64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.x86_64.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.s390x.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.s390x.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.s390x.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.ppc64le.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.ppc64le.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.ppc64le.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.aarch64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.aarch64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2165 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-kiwi_metainfo_helper fixes the following issues: - Provide various modified spellings of 'PRETTY_NAME' useful for writing KIWI image definitions with reduced diff between SLE, Leap and Tumbleweed. (Needed for jsc#SLE-12986) - Update README and service definition XML to reflect all variables. - Don't enable pipefail: rpm got SIGPIPE because grep -q exits early and closes the other end, which made the whole expression fail. - Read os-release from the to be installed RPMs. This avoids pulling in distribution-release when not necessary. (bsc#1180263) obs-service-kiwi_metainfo_helper-0.3-1.12.1.noarch.rpm obs-service-kiwi_metainfo_helper-0.3-1.12.1.src.rpm openSUSE-SLE-15.3-2021-2315 moderate SUSE Updates openSUSE-SLE 15.3 This update for lsvpd fixes the following issues: - Fixed an issue when usb.ids file not found. (bsc#1171188, bsc#1187665) lsvpd-1.7.11-3.9.1.ppc64le.rpm lsvpd-1.7.11-3.9.1.src.rpm openSUSE-SLE-15.3-2021-2385 moderate SUSE Updates openSUSE-SLE 15.3 This update for virt-manager fixes the following issues: - Upstream bug fixes (bsc#1027942) - Speeds up the volumeupload case for a local URI for the cost of some higher runtime memory - Unable to open graphical console of running virtual machine - Fix error message format string - Remove some unnecessary 'max_length' annotations - Fix forgetting password from keyring - Add support for detecting SUSE Linux Enterprise Micro. virt-install-3.2.0-7.4.1.noarch.rpm virt-manager-3.2.0-7.4.1.noarch.rpm virt-manager-3.2.0-7.4.1.src.rpm virt-manager-common-3.2.0-7.4.1.noarch.rpm openSUSE-SLE-15.3-2021-2350 moderate SUSE Updates openSUSE-SLE 15.3 This update for lttng-modules rebuilds it with the a new UEFI signing key. (bsc#1182570) lttng-modules-2.10.10-5.7.1.src.rpm lttng-modules-kmp-rt-2.10.10_k5.3.18_8.10-5.7.1.x86_64.rpm openSUSE-SLE-15.3-2021-2454 moderate SUSE Updates openSUSE-SLE 15.3 This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function read_colordef() (bsc#1186329). - CVE-2019-19797: out-of-bounds write in read_colordef in read.c (bsc#1159293). - CVE-2019-19555: stack-based buffer overflow because of an incorrect sscanf (bsc#1161698). - CVE-2019-19746: segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type (bsc#1159130). - CVE-2019-14275: stack-based buffer overflow in the calc_arrow function in bound.c (bsc#1143650). transfig-3.2.8a-4.12.2.src.rpm transfig-3.2.8a-4.12.2.x86_64.rpm transfig-3.2.8a-4.12.2.s390x.rpm transfig-3.2.8a-4.12.2.ppc64le.rpm transfig-3.2.8a-4.12.2.aarch64.rpm openSUSE-SLE-15.3-2021-2293 important SUSE Updates openSUSE-SLE 15.3 This update for jdom2 fixes the following issues: - CVE-2021-33813: XXE issue in SAXBuilder can cause a denial of service via a crafted HTTP request (bsc#1187446) jdom2-2.0.6-3.3.1.noarch.rpm jdom2-2.0.6-3.3.1.src.rpm jdom2-javadoc-2.0.6-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2255 moderate SUSE Updates openSUSE-SLE 15.3 This update rereleases myspell-dictionaries and ucpp for SUSE Linux Enterprise 15 sp3 to fix a migration issue. libucpp13-1.3.4-3.4.1.x86_64.rpm myspell-af_NA-20191219-3.21.1.noarch.rpm myspell-af_ZA-20191219-3.21.1.noarch.rpm myspell-an-20191219-3.21.1.noarch.rpm myspell-an_ES-20191219-3.21.1.noarch.rpm myspell-ar-20191219-3.21.1.noarch.rpm myspell-ar_AE-20191219-3.21.1.noarch.rpm myspell-ar_BH-20191219-3.21.1.noarch.rpm myspell-ar_DZ-20191219-3.21.1.noarch.rpm myspell-ar_EG-20191219-3.21.1.noarch.rpm myspell-ar_IQ-20191219-3.21.1.noarch.rpm myspell-ar_JO-20191219-3.21.1.noarch.rpm myspell-ar_KW-20191219-3.21.1.noarch.rpm myspell-ar_LB-20191219-3.21.1.noarch.rpm myspell-ar_LY-20191219-3.21.1.noarch.rpm myspell-ar_MA-20191219-3.21.1.noarch.rpm myspell-ar_OM-20191219-3.21.1.noarch.rpm myspell-ar_QA-20191219-3.21.1.noarch.rpm myspell-ar_SA-20191219-3.21.1.noarch.rpm myspell-ar_SD-20191219-3.21.1.noarch.rpm myspell-ar_SY-20191219-3.21.1.noarch.rpm myspell-ar_TN-20191219-3.21.1.noarch.rpm myspell-ar_YE-20191219-3.21.1.noarch.rpm myspell-be_BY-20191219-3.21.1.noarch.rpm myspell-bg_BG-20191219-3.21.1.noarch.rpm myspell-bn_BD-20191219-3.21.1.noarch.rpm myspell-bn_IN-20191219-3.21.1.noarch.rpm myspell-bo-20191219-3.21.1.noarch.rpm myspell-bo_CN-20191219-3.21.1.noarch.rpm myspell-bo_IN-20191219-3.21.1.noarch.rpm myspell-br_FR-20191219-3.21.1.noarch.rpm myspell-bs-20191219-3.21.1.noarch.rpm myspell-bs_BA-20191219-3.21.1.noarch.rpm myspell-ca-20191219-3.21.1.noarch.rpm myspell-ca_AD-20191219-3.21.1.noarch.rpm myspell-ca_ES-20191219-3.21.1.noarch.rpm myspell-ca_ES_valencia-20191219-3.21.1.noarch.rpm myspell-ca_FR-20191219-3.21.1.noarch.rpm myspell-ca_IT-20191219-3.21.1.noarch.rpm myspell-cs_CZ-20191219-3.21.1.noarch.rpm myspell-da_DK-20191219-3.21.1.noarch.rpm myspell-de-20191219-3.21.1.noarch.rpm myspell-de_AT-20191219-3.21.1.noarch.rpm myspell-de_CH-20191219-3.21.1.noarch.rpm myspell-de_DE-20191219-3.21.1.noarch.rpm myspell-dictionaries-20191219-3.21.1.src.rpm myspell-dictionaries-20191219-3.21.1.x86_64.rpm myspell-el_GR-20191219-3.21.1.noarch.rpm myspell-en-20191219-3.21.1.noarch.rpm myspell-en_AU-20191219-3.21.1.noarch.rpm myspell-en_BS-20191219-3.21.1.noarch.rpm myspell-en_BZ-20191219-3.21.1.noarch.rpm myspell-en_CA-20191219-3.21.1.noarch.rpm myspell-en_GB-20191219-3.21.1.noarch.rpm myspell-en_GH-20191219-3.21.1.noarch.rpm myspell-en_IE-20191219-3.21.1.noarch.rpm myspell-en_IN-20191219-3.21.1.noarch.rpm myspell-en_JM-20191219-3.21.1.noarch.rpm myspell-en_MW-20191219-3.21.1.noarch.rpm myspell-en_NA-20191219-3.21.1.noarch.rpm myspell-en_NZ-20191219-3.21.1.noarch.rpm myspell-en_PH-20191219-3.21.1.noarch.rpm myspell-en_TT-20191219-3.21.1.noarch.rpm myspell-en_US-20191219-3.21.1.noarch.rpm myspell-en_ZA-20191219-3.21.1.noarch.rpm myspell-en_ZW-20191219-3.21.1.noarch.rpm myspell-es-20191219-3.21.1.noarch.rpm myspell-es_AR-20191219-3.21.1.noarch.rpm myspell-es_BO-20191219-3.21.1.noarch.rpm myspell-es_CL-20191219-3.21.1.noarch.rpm myspell-es_CO-20191219-3.21.1.noarch.rpm myspell-es_CR-20191219-3.21.1.noarch.rpm myspell-es_CU-20191219-3.21.1.noarch.rpm myspell-es_DO-20191219-3.21.1.noarch.rpm myspell-es_EC-20191219-3.21.1.noarch.rpm myspell-es_ES-20191219-3.21.1.noarch.rpm myspell-es_GT-20191219-3.21.1.noarch.rpm myspell-es_HN-20191219-3.21.1.noarch.rpm myspell-es_MX-20191219-3.21.1.noarch.rpm myspell-es_NI-20191219-3.21.1.noarch.rpm myspell-es_PA-20191219-3.21.1.noarch.rpm myspell-es_PE-20191219-3.21.1.noarch.rpm myspell-es_PR-20191219-3.21.1.noarch.rpm myspell-es_PY-20191219-3.21.1.noarch.rpm myspell-es_SV-20191219-3.21.1.noarch.rpm myspell-es_UY-20191219-3.21.1.noarch.rpm myspell-es_VE-20191219-3.21.1.noarch.rpm myspell-et_EE-20191219-3.21.1.noarch.rpm myspell-fr_BE-20191219-3.21.1.noarch.rpm myspell-fr_CA-20191219-3.21.1.noarch.rpm myspell-fr_CH-20191219-3.21.1.noarch.rpm myspell-fr_FR-20191219-3.21.1.noarch.rpm myspell-fr_LU-20191219-3.21.1.noarch.rpm myspell-fr_MC-20191219-3.21.1.noarch.rpm myspell-gd_GB-20191219-3.21.1.noarch.rpm myspell-gl-20191219-3.21.1.noarch.rpm myspell-gl_ES-20191219-3.21.1.noarch.rpm myspell-gu_IN-20191219-3.21.1.noarch.rpm myspell-gug-20191219-3.21.1.noarch.rpm myspell-gug_PY-20191219-3.21.1.noarch.rpm myspell-he_IL-20191219-3.21.1.noarch.rpm myspell-hi_IN-20191219-3.21.1.noarch.rpm myspell-hr_HR-20191219-3.21.1.noarch.rpm myspell-hu_HU-20191219-3.21.1.noarch.rpm myspell-id-20191219-3.21.1.noarch.rpm myspell-id_ID-20191219-3.21.1.noarch.rpm myspell-is-20191219-3.21.1.noarch.rpm myspell-is_IS-20191219-3.21.1.noarch.rpm myspell-it_IT-20191219-3.21.1.noarch.rpm myspell-kmr_Latn-20191219-3.21.1.noarch.rpm myspell-kmr_Latn_SY-20191219-3.21.1.noarch.rpm myspell-kmr_Latn_TR-20191219-3.21.1.noarch.rpm myspell-lightproof-en-20191219-3.21.1.x86_64.rpm myspell-lightproof-hu_HU-20191219-3.21.1.x86_64.rpm myspell-lightproof-pt_BR-20191219-3.21.1.x86_64.rpm myspell-lightproof-ru_RU-20191219-3.21.1.x86_64.rpm myspell-lo_LA-20191219-3.21.1.noarch.rpm myspell-lt_LT-20191219-3.21.1.noarch.rpm myspell-lv_LV-20191219-3.21.1.noarch.rpm myspell-nb_NO-20191219-3.21.1.noarch.rpm myspell-ne_NP-20191219-3.21.1.noarch.rpm myspell-nl_BE-20191219-3.21.1.noarch.rpm myspell-nl_NL-20191219-3.21.1.noarch.rpm myspell-nn_NO-20191219-3.21.1.noarch.rpm myspell-no-20191219-3.21.1.noarch.rpm myspell-oc_FR-20191219-3.21.1.noarch.rpm myspell-pl_PL-20191219-3.21.1.noarch.rpm myspell-pt_AO-20191219-3.21.1.noarch.rpm myspell-pt_BR-20191219-3.21.1.noarch.rpm myspell-pt_PT-20191219-3.21.1.noarch.rpm myspell-ro-20191219-3.21.1.noarch.rpm myspell-ro_RO-20191219-3.21.1.noarch.rpm myspell-ru_RU-20191219-3.21.1.noarch.rpm myspell-si_LK-20191219-3.21.1.noarch.rpm myspell-sk_SK-20191219-3.21.1.noarch.rpm myspell-sl_SI-20191219-3.21.1.noarch.rpm myspell-sq_AL-20191219-3.21.1.noarch.rpm myspell-sr-20191219-3.21.1.noarch.rpm myspell-sr_CS-20191219-3.21.1.noarch.rpm myspell-sr_Latn_CS-20191219-3.21.1.noarch.rpm myspell-sr_Latn_RS-20191219-3.21.1.noarch.rpm myspell-sr_RS-20191219-3.21.1.noarch.rpm myspell-sv_FI-20191219-3.21.1.noarch.rpm myspell-sv_SE-20191219-3.21.1.noarch.rpm myspell-sw_TZ-20191219-3.21.1.noarch.rpm myspell-te-20191219-3.21.1.noarch.rpm myspell-te_IN-20191219-3.21.1.noarch.rpm myspell-th_TH-20191219-3.21.1.noarch.rpm myspell-tr-20191219-3.21.1.noarch.rpm myspell-tr_TR-20191219-3.21.1.noarch.rpm myspell-uk_UA-20191219-3.21.1.noarch.rpm myspell-vi-20191219-3.21.1.noarch.rpm myspell-vi_VN-20191219-3.21.1.noarch.rpm myspell-zu_ZA-20191219-3.21.1.noarch.rpm ucpp-1.3.4-3.4.1.src.rpm ucpp-1.3.4-3.4.1.x86_64.rpm ucpp-devel-1.3.4-3.4.1.x86_64.rpm libucpp13-1.3.4-3.4.1.s390x.rpm myspell-dictionaries-20191219-3.21.1.s390x.rpm myspell-lightproof-en-20191219-3.21.1.s390x.rpm myspell-lightproof-hu_HU-20191219-3.21.1.s390x.rpm myspell-lightproof-pt_BR-20191219-3.21.1.s390x.rpm myspell-lightproof-ru_RU-20191219-3.21.1.s390x.rpm ucpp-1.3.4-3.4.1.s390x.rpm ucpp-devel-1.3.4-3.4.1.s390x.rpm libucpp13-1.3.4-3.4.1.ppc64le.rpm myspell-dictionaries-20191219-3.21.1.ppc64le.rpm myspell-lightproof-en-20191219-3.21.1.ppc64le.rpm myspell-lightproof-hu_HU-20191219-3.21.1.ppc64le.rpm myspell-lightproof-pt_BR-20191219-3.21.1.ppc64le.rpm myspell-lightproof-ru_RU-20191219-3.21.1.ppc64le.rpm ucpp-1.3.4-3.4.1.ppc64le.rpm ucpp-devel-1.3.4-3.4.1.ppc64le.rpm libucpp13-1.3.4-3.4.1.aarch64.rpm myspell-dictionaries-20191219-3.21.1.aarch64.rpm myspell-lightproof-en-20191219-3.21.1.aarch64.rpm myspell-lightproof-hu_HU-20191219-3.21.1.aarch64.rpm myspell-lightproof-pt_BR-20191219-3.21.1.aarch64.rpm myspell-lightproof-ru_RU-20191219-3.21.1.aarch64.rpm ucpp-1.3.4-3.4.1.aarch64.rpm ucpp-devel-1.3.4-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-2805 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Correct man pages regarding the 'INITRD_MODULES' as some parts already invalid. (bsc#1187115) - Fixed an issue when running mkinitrd inproper arch is being expanded. (bsc#1185615) - Fix for 'suse-initrd' exclude modules that are built-in to prevent failing modules to be installed. (bsc#1185646) - Fix informing on usage of obsolete -f parameter. (bsc#1187470) - Fix reference to 'insmodpost module' in the documentation. (bsc#1187774) dracut-049.1+suse.203.g8ee14a90-3.35.1.src.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm openSUSE-SLE-15.3-2021-2258 moderate SUSE Updates openSUSE-SLE 15.3 This update for buildah fixes the following issues: - buildah requires cni for usage (bsc#1187812) buildah-1.17.0-3.9.1.src.rpm buildah-1.17.0-3.9.1.x86_64.rpm buildah-1.17.0-3.9.1.s390x.rpm buildah-1.17.0-3.9.1.ppc64le.rpm buildah-1.17.0-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2254 moderate SUSE Updates openSUSE-SLE 15.3 This update for raptor fixes the following issue: - raptor was not delivered correctly for openSUSE Leap 15.3 (bsc#1186642) libraptor-devel-2.0.15-9.7.1.x86_64.rpm libraptor2-0-2.0.15-9.7.1.x86_64.rpm libraptor2-0-32bit-2.0.15-9.7.1.x86_64.rpm raptor-2.0.15-9.7.1.src.rpm raptor-2.0.15-9.7.1.x86_64.rpm libraptor-devel-2.0.15-9.7.1.s390x.rpm libraptor2-0-2.0.15-9.7.1.s390x.rpm raptor-2.0.15-9.7.1.s390x.rpm libraptor-devel-2.0.15-9.7.1.ppc64le.rpm libraptor2-0-2.0.15-9.7.1.ppc64le.rpm raptor-2.0.15-9.7.1.ppc64le.rpm libraptor-devel-2.0.15-9.7.1.aarch64.rpm libraptor2-0-2.0.15-9.7.1.aarch64.rpm raptor-2.0.15-9.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2266 important SUSE Updates openSUSE-SLE 15.3 This update for clamav fixes the following issue: - In the "clamscan" and "clamdscan" manpages, document that files over a certain size by default will silently not be scanned and how this can be adjusted. (bsc#1187509) clamav-0.103.2-3.29.1.src.rpm clamav-0.103.2-3.29.1.x86_64.rpm clamav-devel-0.103.2-3.29.1.x86_64.rpm libclamav9-0.103.2-3.29.1.x86_64.rpm libfreshclam2-0.103.2-3.29.1.x86_64.rpm clamav-0.103.2-3.29.1.s390x.rpm clamav-devel-0.103.2-3.29.1.s390x.rpm libclamav9-0.103.2-3.29.1.s390x.rpm libfreshclam2-0.103.2-3.29.1.s390x.rpm clamav-0.103.2-3.29.1.ppc64le.rpm clamav-devel-0.103.2-3.29.1.ppc64le.rpm libclamav9-0.103.2-3.29.1.ppc64le.rpm libfreshclam2-0.103.2-3.29.1.ppc64le.rpm clamav-0.103.2-3.29.1.aarch64.rpm clamav-devel-0.103.2-3.29.1.aarch64.rpm libclamav9-0.103.2-3.29.1.aarch64.rpm libfreshclam2-0.103.2-3.29.1.aarch64.rpm openSUSE-SLE-15.3-2021-2557 moderate SUSE Updates openSUSE-SLE 15.3 This update for openCryptoki fixes the following issues: - Fixed a segmentation fault with p11sak list-key. (bsc#1182726) - Fixed an issue when soft token does not check if an EC key is valid. (bsc#1185976) openCryptoki-3.15.1-5.3.1.src.rpm openCryptoki-3.15.1-5.3.1.x86_64.rpm openCryptoki-64bit-3.15.1-5.3.1.x86_64.rpm openCryptoki-devel-3.15.1-5.3.1.x86_64.rpm openCryptoki-3.15.1-5.3.1.s390x.rpm openCryptoki-64bit-3.15.1-5.3.1.s390x.rpm openCryptoki-devel-3.15.1-5.3.1.s390x.rpm openCryptoki-3.15.1-5.3.1.ppc64le.rpm openCryptoki-64bit-3.15.1-5.3.1.ppc64le.rpm openCryptoki-devel-3.15.1-5.3.1.ppc64le.rpm openCryptoki-3.15.1-5.3.1.aarch64.rpm openCryptoki-64bit-3.15.1-5.3.1.aarch64.rpm openCryptoki-devel-3.15.1-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1449 moderate SUSE Updates openSUSE-SLE 15.3 This update for osinfo-db fixes the following issues: - Update to database version 20220214 - Request support for SLE15-SP4 in the osinfo database. (bsc#1197958) - Add support for SUSE linux Enterprise Micro 5.2 - openSUSE Tumbleweed unattended installation with libvirt fails (bsc#1196965, bsc#1188336) - Dev: Support Oracle Linux as a guest VM. (jsc#SLE-17764, bsc#1192238) - Fix AutoYaST profiles to pass the validation during installation. (bsc#1182144) - Add support for openSUSE Leap 15.4, SLE15-SP4, and SLEM 5.1 (bsc#1188692) osinfo-db-20220214-150300.3.5.1.noarch.rpm osinfo-db-20220214-150300.3.5.1.src.rpm openSUSE-SLE-15.3-2021-2294 important SUSE Updates openSUSE-SLE 15.3 This update for redis fixes the following issues: - Upgrade to 6.0.14 - CVE-2021-32625: An integer overflow bug could be exploited by using the STRALGO LCS command to cause remote remote code execution (bsc#1186722) - Fix crash in UNLINK on a stream key with deleted consumer groups - SINTERSTORE: Add missing keyspace del event when none of the sources exist redis-6.0.14-6.5.1.src.rpm redis-6.0.14-6.5.1.x86_64.rpm redis-6.0.14-6.5.1.s390x.rpm redis-6.0.14-6.5.1.ppc64le.rpm redis-6.0.14-6.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2619 important SUSE Updates openSUSE-SLE 15.3 This update for djvulibre fixes the following issues: - CVE-2021-3630: out-of-bounds write in DJVU:DjVuTXT:decode() in DjVuText.cpp (bsc#1187869) djvulibre-3.5.27-11.11.1.src.rpm djvulibre-3.5.27-11.11.1.x86_64.rpm djvulibre-doc-3.5.27-11.11.1.noarch.rpm libdjvulibre-devel-3.5.27-11.11.1.x86_64.rpm libdjvulibre21-3.5.27-11.11.1.x86_64.rpm djvulibre-3.5.27-11.11.1.s390x.rpm libdjvulibre-devel-3.5.27-11.11.1.s390x.rpm libdjvulibre21-3.5.27-11.11.1.s390x.rpm djvulibre-3.5.27-11.11.1.ppc64le.rpm libdjvulibre-devel-3.5.27-11.11.1.ppc64le.rpm libdjvulibre21-3.5.27-11.11.1.ppc64le.rpm djvulibre-3.5.27-11.11.1.aarch64.rpm libdjvulibre-devel-3.5.27-11.11.1.aarch64.rpm libdjvulibre21-3.5.27-11.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2662 important SUSE Updates openSUSE-SLE 15.3 This update for grafana fixes the following issues: - CVE-2021-27358: unauthenticated remote attackers to trigger a Denial of Service via a remote API call (bsc#1183803) - Update to version 7.5.7: * Updated relref to "Configuring exemplars" section (#34240) (#34243) * Added exemplar topic (#34147) (#34226) * Quota: Do not count folders towards dashboard quota (#32519) (#34025) * Instructions to separate emails with semicolons (#32499) (#34138) * Docs: Remove documentation of v8 generic OAuth feature (#34018) * Annotations: Prevent orphaned annotation tags cleanup when no annotations were cleaned (#33957) (#33975) * [GH-33898] Add missing --no-cache to Dockerfile. (#33906) (#33935) * ReleaseNotes: Updated changelog and release notes for 7.5.6 (#33932) (#33936) * Stop hoisting @icons/material (#33922) * Chore: fix react-color version in yarn.lock (#33914) * "Release: Updated versions in package to 7.5.6" (#33909) * Loki: fix label browser crashing when + typed (#33900) (#33901) * Document `hide_version` flag (#33670) (#33881) * Add isolation level db configuration parameter (#33830) (#33878) * Sanitize PromLink button (#33874) (#33876) * Removed content as per MarcusE's suggestion in https://github.com/grafana/grafana/issues/33822. (#33870) (#33872) * Docs feedback: /administration/provisioning.md (#33804) (#33842) * Docs: delete from high availability docs references to removed configurations related to session storage (#33827) (#33851) * Docs: Update _index.md (#33797) (#33799) * Docs: Update installation.md (#33656) (#33703) * GraphNG: uPlot 1.6.9 (#33598) (#33612) * dont consider invalid email address a failed email (#33671) (#33681) * InfluxDB: Improve measurement-autocomplete behavior in query editor (#33494) (#33625) * add template for dashboard url parameters (#33549) (#33588) * Add note to Snapshot API doc to specify that user has to provide the entire dashboard model (#33572) (#33586) * Update team.md (#33454) (#33536) * Removed duplicate file "dashboard_folder_permissions.md (#33497) * Document customQueryParameters for prometheus datasource provisioning (#33440) (#33495) * ReleaseNotes: Updated changelog and release notes for 7.5.5 (#33473) (#33492) * Documentation: Update developer-guide.md (#33478) (#33490) * add closed parenthesis to fix a hyperlink (#33471) (#33481) - Update to version 7.5.5: * "Release: Updated versions in package to 7.5.5" (#33469) * GraphNG: Fix exemplars window position (#33427) (#33462) * Remove field limitation from slack notification (#33113) (#33455) * Prometheus: Support POST in template variables (#33321) (#33441) * Instrumentation: Add success rate metrics for email notifications (#33359) (#33409) * Use either moment objects (for absolute times in the datepicker) or string (for relative time) (#33315) (#33406) * Docs: Removed type from find annotations example. (#33399) (#33403) * [v7.5.x]: FrontendMetrics: Adds new backend api that frontend can use to push frontend measurements and counters to prometheus (#33255) * Updated label for add panel. (#33285) (#33286) * Bug: Add git to Dockerfile.ubuntu (#33247) (#33248) * Docs: Sync latest master docs with 7.5.x (#33156) * Docs: Update getting-started-influxdb.md (#33234) (#33241) * Doc: Document the X-Grafana-Org-Id HTTP header (#32478) (#33239) * Minor Changes in Auditing.md (#31435) (#33238) * Docs: Add license check endpoint doc (#32987) (#33236) * Postgres: Fix time group macro when TimescaleDB is enabled and interval is less than a second (#33153) (#33219) * Docs: InfluxDB doc improvements (#32815) (#33185) * [v7.5.x] Loki: Pass Skip TLS Verify setting to alert queries (#33031) * update cla (#33181) * Fix inefficient regular expression (#33155) (#33159) * Auth: Don't clear auth token cookie when lookup token fails (#32999) (#33136) * Elasticsearch: Add documentation for supported Elasticsearch query transformations (#33072) (#33128) * Update team.md (#33060) (#33084) * GE issue 1268 (#33049) (#33081) * Fixed some formatting issues for PRs from yesterday. (#33078) (#33079) * Explore: Load default data source in Explore when the provided source does not exist (#32992) (#33061) * Docs: Replace next with latest in aliases (#33054) (#33059) * Added missing link item. (#33052) (#33055) * Backport 33034 (#33038) * Docs: Backport 32916 to v7.5x (#33008) * ReleaseNotes: Updated changelog and release notes for 7.5.4 (#32973) (#32998) * Elasticsearch: Force re-rendering of each editor row type change (#32993) (#32996) * Docs: Sync release branch with latest docs (#32986) - Update to version 7.5.4: * "Release: Updated versions in package to 7.5.4" (#32971) * fix(datasource_srv): prevent infinite loop where default datasource is named default (#32949) (#32967) * Added Azure Monitor support for Microsoft.AppConfiguration/configurationStores namespace (#32123) (#32968) * fix sqlite3 tx retry condition operator precedence (#32897) (#32952) * AzureMonitor: Add support for Virtual WAN namespaces (#32935) (#32947) * Plugins: Allow a non-dashboard page to be the default home page (#32926) (#32945) * GraphNG: uPlot 1.6.8 (#32859) (#32863) * Alerting: Add ability to include aliases with dashes (/) and at (@) signs in InfluxDB (#32844) * Prometheus: Allow exemplars endpoint in data source proxy (#32802) (#32804) * [v7.5.x] Table: Fixes table data links so they refer to correct row after sorting (#32758) * TablePanel: Makes sorting case-insensitive (#32435) (#32752) - Update to version 7.5.3: * "Release: Updated versions in package to 7.5.3" (#32745) * FolderPicker: Prevent dropdown menu from disappearing off screen (#32603) (#32741) * Loki: Remove empty annotations tags (#32359) (#32490) * SingleStat: fix wrong call to getDataLinkUIModel (#32721) (#32739) * Prometheus: Fix instant query to run two times when exemplars enabled (#32508) (#32726) * Elasticsearch: Fix bucket script variable duplication in UI (#32705) (#32714) * Variables: Confirms selection before opening new picker (#32586) (#32710) * CloudWarch: Fix service quotas link (#32686) (#32689) * Configuration: Prevent browser hanging / crashing with large number of org users (#32546) (#32598) * chore: bump execa to v2.1.0 (#32543) (#32592) * Explore: Fix bug where navigating to explore would result in wrong query and datasource to be shown (#32558) * Fix broken gtime tests (#32582) (#32587) * resolve conflicts (#32567) * gtime: Make ParseInterval deterministic (#32539) (#32560) * Dashboard: No longer includes default datasource when externally exporting dashboard with row (#32494) (#32535) * TextboxVariable: Limits the length of the preview value (#32472) (#32530) * AdHocVariable: Adds default data source (#32470) (#32476) * Variables: Fixes Unsupported data format error for null values (#32480) (#32487) * Prometheus: align exemplars check to latest api change (#32513) (#32515) * "Release: Updated versions in package to 7.5.2" (#32502) * SigV4: Add support EC2 IAM role auth and possibility to toggle auth providers (#32444) (#32488) * Set spanNulls to default (#32471) (#32486) * Graph: Fix setting right y-axis when standard option unit is configured (#32426) (#32442) * API: Return 409 on datasource version conflict (#32425) (#32433) * API: Return 400 on invalid Annotation requests (#32429) (#32431) * Variables: Fixes problem with data source variable when default ds is selected (#32384) (#32424) * Table: Fixes so links work for image cells (#32370) (#32410) * Variables: Fixes error when manually non-matching entering custom value in variable input/picker (#32390) (#32394) * DashboardQueryEditor: Run query after selecting source panel (#32383) (#32395) * API: Datasource endpoint should return 400 bad request if id and orgId is invalid (#32392) (#32397) * "Release: Updated versions in package to 7.5.1" (#32362) * MSSQL: Upgrade go-mssqldb (#32347) (#32361) * GraphNG: Fix tooltip displaying wrong or no data (#32312) (#32348) * "Release: Updated versions in package to 7.5.0" (#32308) * Loki: Fix text search in Label browser (#32293) (#32306) * Explore: Show all dataFrames in data tab in Inspector (#32161) (#32299) * PieChartV2: Add migration from old piechart (#32259) (#32291) * LibraryPanels: Adds Type and Description to DB (#32258) (#32288) * LibraryPanels: Prevents deletion of connected library panels (#32277) (#32284) * Library Panels: Add "Discard" button to panel save modal (#31647) (#32281) * LibraryPanels: Changes to non readonly reducer (#32193) (#32200) * Notifications: InfluxDB - Fix regex to include metrics with hyphen in aliases (#32224) (#32262) * SSE/InfluxDB: Change InfluxQL to work with server side expressions (#31691) (#32102) * DashboardSettings: Fixes issue with tags list not updating when changes are made (#32241) (#32247) * Logs: If log message missing, use empty string (#32080) (#32243) * CloudWatch: Use latest version of aws sdk (#32217) (#32223) * Release: Updated versions in package to 7.5.0-beta.2 (#32158) * HttpServer: Make read timeout configurable but disabled by default (#31575) (#32154) * GraphNG: Ignore string fields when building data for uPlot in GraphNG (#32150) (#32151) * Fix loading timezone info on windows (#32029) (#32149) * SQLStore: Close session in withDbSession (#31775) (#32108) * Remove datalink template suggestions for accessing specific fields when there are multiple dataframes. (#32057) (#32148) * GraphNG: make sure dataset and config are in sync when initializing and re-initializing uPlot (#32106) (#32125) * MixedDataSource: Name is updated when data source variable changes (#32090) (#32144) * Backport 32005 to v7.5.x #32128 (#32130) * Loki: Label browser UI updates (#31737) (#32119) * ValueMappings: Fixes value 0 not being mapped (#31924) (#31929) * GraphNG: Fix tooltip series color for multi data frame scenario (#32098) (#32103) * LibraryPanels: Improves the Get All experience (#32028) (#32093) * Grafana/ui: display all selected levels for selected value when searching (#32030) (#32032) * Exemplars: always query exemplars (#31673) (#32024) * [v7.5.x] TimePicker: Fixes hidden time picker shown in kiosk TV mode (#32055) * Chore: Collect elasticsearch version usage stats (#31787) (#32063) * Chore: Tidy up Go deps (#32053) * GraphNG: Fix PlotLegend field display name being outdated (#32064) (#32066) * Data proxy: Fix encoded characters in URL path should be proxied encoded (#30597) (#32060) * [v7.5.x] Auth: Allow soft token revocation (#32037) * Snapshots: Fix usage of sign in link from the snapshot page (#31986) (#32036) * Make master green (#32011) (#32015) * Query editor: avoid avoiding word wrap on query editor components (#31949) (#31982) * Variables: Fixes filtering in picker with null items (#31979) (#31995) * TooltipContainer - use resize observer instead of getClientBoundingRect (#31937) (#32003) * Loki: Fix autocomplete when re-editing Loki label values (#31828) (#31987) * Loki: Fix type errors in language_provider (#31902) (#31945) * PanelInspect: Interpolates variables in CSV file name (#31936) (#31977) * Cloudwatch: use shared library for aws auth (#29550) (#31946) * Tooltip: partial perf improvement (#31774) (#31837) (#31957) * Backport 31913 to v7.5.x (#31955) * Grafana/ui: fix searchable options for Cascader with options update (#31906) (#31938) * Variables: Do not reset description on variable type change (#31933) (#31939) * [v7.5.x] AnnotationList: Adds spacing to UI (#31888) (#31894) * Elasticseach: Support histogram fields (#29079) (#31914) * Chore: upgrade eslint and fork-ts-checker-webpack-plugin (#31854) (#31896) * Update scripts and Dockerfiles to use Go 1.16.1 (#31881) (#31891) * Templating: use dashboard timerange when variables are set to refresh 'On Dashboard Load' (#31721) (#31801) * [v7.5.x] Tempo: Add test for backend data source (#31835) (#31882) * Run go mod tidy to update go.mod and go.sum (#31859) * Grafana/ui: display all selected levels for Cascader (#31729) (#31862) * CloudWatch: Consume the grafana/aws-sdk (#31807) (#31861) * Cloudwatch: ListMetrics API page limit (#31788) (#31851) * Remove invalid attribute (#31848) (#31850) * CloudWatch: Restrict auth provider and assume role usage according to… (#31845) * CloudWatch: Add support for EC2 IAM role (#31804) (#31841) * Loki, Prometheus: Change the placement for query type explanation (#31784) (#31819) * Variables: Improves inspection performance and unknown filtering (#31811) (#31813) * Change piechart plugin state to beta (#31797) (#31798) * ReduceTransform: Include series with numeric string names (#31763) (#31794) * Annotations: Make the annotation clean up batch size configurable (#31487) (#31769) * Fix escaping in ANSI and dynamic button removal (#31731) (#31767) * DataLinks: Bring back single click links for Stat, Gauge and BarGauge panel (#31692) (#31718) * log skipped, performed and duration for migrations (#31722) (#31754) * Search: Make items more compact (#31734) (#31750) * loki_datasource: add documentation to label_format and line_format (#31710) (#31746) * Tempo: Convert tempo to backend data source2 (#31733) * Elasticsearch: Fix script fields in query editor (#31681) (#31727) * Elasticsearch: revert to isoWeek when resolving weekly indices (#31709) (#31717) * Admin: Keeps expired api keys visible in table after delete (#31636) (#31675) * Tempo: set authentication header properly (#31699) (#31701) * Tempo: convert to backend data source (#31618) (#31695) * Update package.json (#31672) * Release: Bump version to 7.5.0-beta.1 (#31664) * Fix whatsNewUrl version to 7.5 (#31666) * Chore: add alias for what's new 7.5 (#31669) * Docs: Update doc for PostgreSQL authentication (#31434) * Docs: document report template variables (#31637) * AzureMonitor: Add deprecation message for App Insights/Insights Analytics (#30633) * Color: Fixes issue where colors where reset to gray when switch panels (#31611) * Live: Use pure WebSocket transport (#31630) * Docs: Fix broken image link (#31661) * Docs: Add Whats new in 7.5 (#31659) * Docs: Fix links for 7.5 (#31658) * Update enterprise-configuration.md (#31656) * Explore/Logs: Escaping of incorrectly escaped log lines (#31352) * Tracing: Small improvements to trace types (#31646) * Update _index.md (#31645) * AlertingNG: code refactoring (#30787) * Remove pkill gpg-agent (#31169) * Remove format for plugin routes (#31633) * Library Panels: Change unsaved change detection logic (#31477) * CloudWatch: Added AWS Timestream Metrics and Dimensions (#31624) * add new metrics and dimensions (#31595) * fix devenv dashboard content typo (#31583) * DashList: Sort starred and searched dashboard alphabetically (#31605) * Docs: Update whats-new-in-v7-4.md (#31612) * SSE: Add "Classic Condition" on backend (#31511) * InfluxDB: Improve maxDataPoints error-message in Flux-mode, raise limits (#31259) * Alerting: PagerDuty: adding current state to the payload (#29270) * devenv: Fix typo (#31589) * Loki: Label browser (#30351) * LibraryPanels: No save modal when user is on same dashboard (#31606) * Bug: adding resolution for `react-use-measure` to prevent plugin tests from failing. (#31603) * Update node-graph.md (#31571) * test: pass Cypress options objects into selector wrappers (#31567) * Loki: Add support for alerting (#31424) * Tracing: Specify type of the data frame that is expected for TraceView (#31465) * LibraryPanels: Adds version column (#31590) * PieChart: Add color changing options to pie chart (#31588) * Explore: keep enabled/disabled state in angular based QueryEditors correctly (#31558) * Bring back correct legend sizing afer PlotLegend refactor (#31582) * Alerting: Fix bug in Discord for when name for metric value is absent (#31257) * LibraryPanels: Deletes library panels during folder deletion (#31572) * chore: bump lodash to 4.17.21 (#31549) * Elasticsearch: Fix impossibility to perform non-logs queries after importing queries from loki or prometheus in explore (#31518) * TestData: Fixes never ending annotations scenario (#31573) * CloudWatch: Added AWS Network Firewall metrics and dimensions (#31498) * propagate plugin unavailable message to UI (#31560) * ConfirmButton: updates story from knobs to controls (#31476) * Loki: Refactor line limit to use grafana/ui component (#31509) * LibraryPanels: Adds folder checks and permissions (#31473) * Add guide on custom option editors (#31254) * PieChart: Update text color and minor changes (#31546) * Grafana-data: bump markedjs to v2.x to resolve vulnerability (#31036) * Chore(deps): Bump google.golang.org/api from 0.39.0 to 0.40.0 (#31210) * PieChart: Improve piechart legend and options (#31446) * Chore(deps): Bump google.golang.org/grpc from 1.35.0 to 1.36.0 (#31541) * Chore(deps): Bump github.com/aws/aws-sdk-go from 1.37.7 to 1.37.20 (#31538) * Chore(deps): Bump github.com/prometheus/common from 0.17.0 to 0.18.0 (#31539) * Add multiselect options ui (#31501) * Profile: Fixes profile preferences being accessible when anonymous access was enabled (#31516) * Variables: Fixes error with: cannot read property length of undefined (#31458) * Explore: Show ANSI colored logs in logs context (#31510) * LogsPanel: Show all received logs (#31505) * AddPanel: Design polish (#31484) * TimeSeriesPanel: Remove unnecessary margin from legend (#31467) * influxdb: flux: handle is-hidden (#31324) * Graph: Fix tooltip not showing when close to the edge of viewport (#31493) * FolderPicker: Remove useNewForms from FolderPicker (#31485) * Add reportVariables feature toggle (#31469) * Grafana datasource: support multiple targets (#31495) * Update license-restrictions.md (#31488) * Docs: Derived fields links in logs detail view (#31482) * Docs: Add new data source links to Enterprise page (#31480) * Convert annotations to dataframes (#31400) * ReleaseNotes: Updated changelog and release notes for v7.4.2 (#31475) * GrafanaUI: Fixes typescript error for missing css prop (#31479) * Login: handle custom token creation error messages (#31283) * Library Panels: Don't list current panel in available panels list (#31472) * DashboardSettings: Migrate Link Settings to React (#31150) * Frontend changes for library panels feature (#30653) * Alerting notifier SensuGo: improvements in default message (#31428) * AppPlugins: Options to disable showing config page in nav (#31354) * add aws config (#31464) * Heatmap: Fix missing/wrong value in heatmap legend (#31430) * Chore: Fixes small typos (#31461) * Graphite/SSE: update graphite to work with server side expressions (#31455) * update the lastest version to 7.4.3 (#31457) * ReleaseNotes: Updated changelog and release notes for 7.4.3 (#31454) * AWS: Add aws plugin configuration (#31312) * Revert ""Release: Updated versions in package to 7.4.3" (#31444)" (#31452) * Remove UserSyncInfo.tsx (#31450) * Elasticsearch: Add word highlighting to search results (#30293) * Chore: Fix eslint react hook warnings in grafana-ui (#31092) * CloudWatch: Make it possible to specify custom api endpoint (#31402) * Chore: fixed incorrect naming for disable settings (#31448) * TraceViewer: Fix show log marker in spanbar (#30742) * LibraryPanels: Adds permissions to getAllHandler (#31416) * NamedColorsPalette: updates story from knobs to controls (#31443) * "Release: Updated versions in package to 7.4.3" (#31444) * ColorPicker: updates story from knobs to controls (#31429) * Streaming: Fixes an issue with time series panel and streaming data source when scrolling back from being out of view (#31431) * ClipboardButton: updates story from knobs to controls (#31422) * we should never log unhashed tokens (#31432) * CI: Upgrade Dockerfiles wrt. Go, Node, Debian (#31407) * Elasticsearch: Fix query initialization logic & query transformation from Promethous/Loki (#31322) * Postgres: allow providing TLS/SSL certificates as text in addition to file paths (#30353) * CloudWatch: Added AWS Ground Station metrics and dimensions (#31362) * TraceViewer: Fix trace to logs icon to show in right pane (#31414) * add hg team as migrations code owners (#31420) * Remove tidy-check script (#31423) * InfluxDB: handle columns named "table" (#30985) * Prometheus: Use configured HTTP method for /series and /labels endpoints (#31401) * Devenv: Add gdev-influxdb2 data source (#31250) * Update grabpl from 0.5.38 to 0.5.42 version (#31419) * Move NOOP_CONTROL to storybook utils and change to a standalone file (#31421) * remove squadcast details from docs (#31413) * Add new Cloudwatch AWS/DDoSProtection metrics and dimensions (#31297) * Logging: add frontend logging helpers to @grafana/runtime package (#30482) * CallToActionCard: updates story from knobs to controls (#31393) * Add eu-south-1 cloudwatch region, closes #31197 (#31198) * Chore: Upgrade eslint packages (#31408) * Cascader: updates story from knobs to controls (#31399) * addressed issues 28763 and 30314. (#31404) * Added section Query a time series database by id (#31337) * Prometheus: Change default httpMethod for new instances to POST (#31292) * Data source list: Use Card component (#31326) * Chore: Remove gotest.tools dependency (#31391) * Revert "StoryBook: Introduces Grafana Controls (#31351)" (#31388) * Chore(deps): Bump github.com/prometheus/common from 0.15.0 to 0.17.0 (#31387) * AdHocVariables: Fixes crash when values are stored as numbers (#31382) * Chore(deps): Bump github.com/golang/mock from 1.4.4 to 1.5.0 (#31379) * Chore: Fix strict errors, down to 416 (#31365) * Chore(deps): Bump github.com/getsentry/sentry-go from 0.9.0 to 0.10.0 (#31378) * StoryBook: Introduces Grafana Controls (#31351) * ReleaseNotes: Updated changelog and release notes for 7.4.2 (#31313) * Theming: Support for runtime theme switching and hooks for custom themes (#31301) * Devenv: Remove old-versioned loki blocks and update prometheus2 block (#31282) * Zipkin: Show success on test data source (#30829) * Update grot template (needs more info) (#31350) * DatasourceSrv: Fix instance retrieval when datasource variable value set to "default" (#31347) * TimeSeriesPanel: Fixes overlapping time axis ticks (#31332) * Grafana/UI: Add basic legend to the PieChart (#31278) * SAML: single logout only enabled in enterprise (#31325) * QueryEditor: handle query.hide changes in angular based query-editors (#31336) * DashboardLinks: Fixes another issue where dashboard links cause full page reload (#31334) * LibraryPanels: Syncs panel title with name (#31311) * Chore: Upgrade golangci-lint (#31330) * Add info to docs about concurrent session limits (#31333) * Table: Fixes issue with fixed min and auto max with bar gauge cell (#31316) * BarGuage: updates story from knobs to controls (#31223) * Docs: Clarifies how to add Key/Value pairs (#31303) * Usagestats: Exclude folders from total dashboard count (#31320) * ButtonCascader: updates story from knobs to controls (#31288) * test: allow check for Table as well as Graph for Explore e2e flow (#31290) * Grafana-UI: Update tooltip type (#31310) * fix 7.4.2 release note (#31299) * Add `--tries 3` arg when triggering e2e-tests upon releasing (#31285) * Chore: reduce strict errors for variables (#31241) * update latest release version (#31296) * ReleaseNotes: Updated changelog and release notes for 7.4.2 (#31291) * Correct name of Discord notifier tests (#31277) * Docs: Clarifies custom date formats for variables (#31271) * BigValue: updates story from knobs to controls (#31240) * Docs: Annotations update (#31194) * Introduce functions for interacting with library panels API (#30993) * Search: display sort metadata (#31167) * Folders: Editors should be able to edit name and delete folders (#31242) * Make Datetime local (No date if today) working (#31274) * UsageStats: Purpose named variables (#31264) * Snapshots: Disallow anonymous user to create snapshots (#31263) * only update usagestats every 30min (#31131) * Chore: grafana-toolkit uses grafana-ui and grafana-data workspaces (#30701) * Grafana-UI: Add id to Select to make it easier to test (#31230) * Prometheus: Fix enabling of disabled queries when editing in dashboard (#31055) * UI/Card: Fix handling of 'onClick' callback (#31225) * Loki: Add line limit for annotations (#31183) * Remove deprecated and breaking loki config field (#31227) * SqlDataSources: Fixes the Show Generated SQL button in query editors (#31236) * LibraryPanels: Disconnect before connect during dashboard save (#31235) * Disable Change Password for OAuth users (#27886) * TagsInput: Design update and component refactor (#31163) * Variables: Adds back default option for data source variable (#31208) * IPv6: Support host address configured with enclosing square brackets (#31226) * Postgres: Fix timeGroup macro converts long intervals to invalid numbers when TimescaleDB is enabled (#31179) * GraphNG: refactor core to class component (#30941) * Remove last synchronisation field from LDAP debug view (#30984) * Chore: Upgrade grafana-plugin-sdk-go to v0.88.0 (#30975) * Graph: Make axes unit option work even when field option unit is set (#31205) * AlertingNG: Test definition (#30886) * Docs: Update Influx config options (#31146) * WIP: Skip this call when we skip migrations (#31216) * use 0.1.0 (#31215) * DataSourceSrv: Filter out non queryable data sources by default (#31144) * QueryEditors: Fixes issue that happens after moving queries then editing would update other queries (#31193) * Chore: report eslint no-explicit-any errors to metrics (#31182) * Chore(deps): Bump cloud.google.com/go/storage from 1.12.0 to 1.13.0 (#31211) * Chore(deps): Bump xorm.io/xorm from 0.8.1 to 0.8.2 (#30773) * Alerting: Fix modal text for deleting obsolete notifier (#31171) * Chore(deps): Bump github.com/linkedin/goavro/v2 from 2.9.7 to 2.10.0 (#31204) * Variables: Fixes missing empty elements from regex filters (#31156) * StatPanels: Fixes to palette color scheme is not cleared when loading panel (#31126) * Fixed the typo. (#31189) * Docs: Rewrite preferences docs (#31154) * Explore/Refactor: Simplify URL handling (#29173) * DashboardLinks: Fixes links always cause full page reload (#31178) * Replace PR with Commit truncated hash when build fails (#31177) * Alert: update story to use controls (#31145) * Permissions: Fix team and role permissions on folders/dashboards not displayed for non Grafana Admin users (#31132) * CloudWatch: Ensure empty query row errors are not passed to the panel (#31172) * Update prometheus.md (#31173) * Variables: Extend option pickers to accept custom onChange callback (#30913) * Prometheus: Multiply exemplars timestamp to follow api change (#31143) * DashboardListPanel: Fixes issue with folder picker always showing All and using old form styles (#31160) * Add author name and pr number in drone pipeline notifications (#31124) * Prometheus: Add documentation for ad-hoc filters (#31122) * DataSourceSettings: Fixes add header button, it should not trigger a save & test action (#31135) * Alerting: Fix so that sending an alert with the Alertmanager notifier doesn't fail when one of multiple configured URL's are down (#31079) * Chore: Update latest.json (#31139) * Docs: add 7.4.1 relese notes link (#31137) * PieChart: Progress on new core pie chart (#28020) * ReleaseNotes: Updated changelog and release notes for 7.4.1 (#31133) * Eslint: no-duplicate-imports rule (bump grafana-eslint-config) (#30989) * Transforms: Fixes Outer join issue with duplicate field names not getting the same unique field names as before (#31121) * MuxWriter: Handle error for already closed file (#31119) * Logging: sourcemap transform asset urls from CDN in logged stacktraces (#31115) * Search: add sort information in dashboard results (#30609) * area/grafana/e2e: ginstall should pull version specified (#31056) * Exemplars: Change CTA style (#30880) * Influx: Make max series limit configurable and show the limiting message if applied (#31025) * Docs: request security (#30937) * update configurePanel for 7.4.0 changes (#31093) * Elasticsearch: fix log row context erroring out (#31088) * Prometheus: Fix issues with ad-hoc filters (#30931) * LogsPanel: Add deduplication option for logs (#31019) * Drone: Make sure CDN upload is ok before pushing docker images (#31075) * PluginManager: Remove some global state (#31081) * test: update addDashboard flow for v7.4.0 changes (#31059) * Transformations: Fixed typo in FilterByValue transformer description. (#31078) * Docs: Group id should be 0 instead of 1 in Docker upgrade notes (#31074) * Usage stats: Adds source/distributor setting (#31039) * CDN: Add CDN upload step to enterprise and release pipelines (#31058) * Chore: Replace native select with grafana ui select (#31030) * Docs: Update json-model.md (#31066) * Docs: Update whats-new-in-v7-4.md (#31069) * Added hyperlinks to Graphite documentation (#31064) * DashboardSettings: Update to new form styles (#31022) * CDN: Fixing drone CI config (#31052) * convert path to posix by default (#31045) * DashboardLinks: Fixes crash when link has no title (#31008) * Alerting: Fixes so notification channels are properly deleted (#31040) * Explore: Remove emotion error when displaying logs (#31026) * Elasticsearch: Fix alias field value not being shown in query editor (#30992) * CDN: Adds uppload to CDN step to drone CI (#30879) * Improved glossary (#31004) * BarGauge: Improvements to value sizing and table inner width calculations (#30990) * Drone: Fix deployment image (#31027) * ColorPicker: migrated styles from sass to emotion (#30909) * Dashboard: Migrate general settings to react (#30914) * Chore(deps): Bump github.com/jung-kurt/gofpdf from 1.10.1 to 1.16.2 (#30586) * Chore(deps): Bump github.com/aws/aws-sdk-go from 1.36.31 to 1.37.7 (#31018) * Prometheus: Min step defaults to seconds when no unit is set to prevent errors when running alerts. (#30966) * Chore(deps): Bump github.com/magefile/mage from 1.10.0 to 1.11.0 (#31017) * Chore(deps): Bump github.com/grpc-ecosystem/go-grpc-middleware (#31013) * Graph: Fixes so graph is shown for non numeric time values (#30972) * CloudMonitoring: Prevent resource type variable function from crashing (#30901) * Chore(deps): Bump google.golang.org/api from 0.33.0 to 0.39.0 (#30971) * Build: Releases e2e and e2e-selectors too (#31006) * TextPanel: Fixes so panel title is updated when variables change (#30884) * Docs: Update configuration.md (login_maximum_inactive_lifetime_duration, login_maximum_lifetime_duration) (#31000) * instrumentation: make the first database histogram bucket smaller (#30995) * Grafana/UI: Remove DismissableFeatureInfoBox and replace with LocalSt… (#30988) * StatPanel: Fixes issue formatting date values using unit option (#30979) * Chore(deps): Bump actions/cache from v2 to v2.1.4 (#30973) * Units: Fixes formatting of duration units (#30982) * Elasticsearch: Show Size setting for raw_data metric (#30980) * Alerts: Dedupe alerts so that we do not fill the screen with the same alert messsage (#30935) * make sure service and slo display name is passed to segment comp (#30900) * assign changes in cloud datasources to the new cloud datasources team (#30645) * Table: Updates devenv test dashboard after change to TestData Randrom Table response (#30927) * Theme: Use higher order theme color variables rather then is light/dark logic (#30939) * Docs: Add alias for what's new in 7.4 (#30945) * e2e: extends selector factory to plugins (#30932) * Chore: Upgrade docker build image (#30820) * Docs: updated developer guide (#29978) * Alerts: Update Alert storybook to show more states (#30908) * Variables: Adds queryparam formatting option (#30858) * Chore: pad unknown values with undefined (#30808) * Transformers: add search to transform selection (#30854) * Exemplars: change api to reflect latest changes (#30910) * docs: use selinux relabelling on docker containers (#27685) * Docs: Fix bad image path for alert notification template (#30911) * Make value mappings correctly interpret numeric-like strings (#30893) * Chore: Update latest.json (#30905) * Docs: Update whats-new-in-v7-4.md (#30882) * Dashboard: Ignore changes to dashboard when the user session expires (#30897) * ReleaseNotes: Updated changelog and release notes for 7.4.0 (#30902) * test: add support for timeout to be passed in for addDatasource (#30736) * increase page size and make sure the cache supports query params (#30892) * DataSourceSettings: Adds info box and link to Grafana Cloud (#30891) * OAuth: custom username docs (#28400) * Panels: Remove value mapping of values that have been formatted #26763 (#30868) * Alerting: Fixes alert panel header icon not showing (#30840) * AlertingNG: Edit Alert Definition (#30676) * Logging: sourcemap support for frontend stacktraces (#30590) * Added "Restart Grafana" topic. (#30844) * Docs: Org, Team, and User Admin (#30756) * bump grabpl version to 0.5.36 (#30874) * Plugins: Requests validator (#30445) * Docs: Update whats-new-in-v7-4.md (#30876) * Docs: Add server view folder (#30849) * Fixed image name and path (#30871) * Grafana-ui: fixes closing modals with escape key (#30745) * InfluxDB: Add http configuration when selecting InfluxDB v2 flavor (#30827) * TestData: Fixes issue with for ever loading state when all queries are hidden (#30861) * Chart/Tooltip: refactored style declaration (#30824) * ReleaseNotes: Updated changelog and release notes for 7.4.0-beta1 (#30853) * Grafana-ui: fixes no data message in Table component (#30821) * grafana/ui: Update pagination component for large number of pages (#30151) * Alerting: Customise OK notification priorities for Pushover notifier (#30169) * DashboardLinks: Support variable expression in to tooltip - Issue #30409 (#30569) * Chore: Remove panelTime.html, closes #30097 (#30842) * Docs: Time series panel, bar alignment docs (#30780) * Chore: add more docs annotations (#30847) * Transforms: allow boolean in field calculations (#30802) * Prometheus: Add tooltip to explain possibility to use patterns in text and title fields in annotations (#30825) * Update prometheus.md with image link fix (#30833) * BarChart: inside-align strokes, upgrade uPlot to 1.6.4. (#30806) * Update license-expiration.md (#30839) * Explore rewrite (#30804) * Prometheus: Set type of labels to string (#30831) * GrafanaUI: Add a way to persistently close InfoBox (#30716) * Fix typo in transformer registry (#30712) * Elasticsearch: Display errors with text responses (#30122) * CDN: Fixes cdn path when Grafana is under sub path (#30822) * TraceViewer: Fix lazy loading (#30700) * FormField: migrated sass styling to emotion (#30392) * AlertingNG: change API permissions (#30781) * Variables: Clears drop down state when leaving dashboard (#30810) * Grafana-UI: Add story/docs for ErrorBoundary (#30304) * Add missing callback dependency (#30797) * PanelLibrary: Adds library panel meta information to dashboard json (#30770) * Chore(deps): Bump gonum.org/v1/gonum from 0.6.0 to 0.8.2 (#30343) * Chore(deps): Bump gopkg.in/yaml.v2 from 2.3.0 to 2.4.0 (#30771) * GraphNG: improve behavior when switching between solid/dash/dots (#30796) * Chore(deps): Bump github.com/hashicorp/go-hclog from 0.14.1 to 0.15.0 (#30778) * Add width for Variable Editors (#30791) * Chore: Remove warning when calling resource (#30752) * Auth: Use SigV4 lib from grafana-aws-sdk (#30713) * Panels: Fixes so panels are refreshed when scrolling past them fast (#30784) * GraphNG: add bar alignment option (#30499) * Expressions: Measure total transformation requests and elapsed time (#30514) * Menu: Mark menu components as internal (#30740) * TableInputCSV: migrated styles from sass to emotion (#30554) * CDN: Fix passing correct prefix to GetContentDeliveryURL (#30777) * Chore(deps): Bump gopkg.in/ini.v1 from 1.57.0 to 1.62.0 (#30772) * CDN: Adds support for serving assets over a CDN (#30691) * PanelEdit: Trigger refresh when changing data source (#30744) * Chore: remove __debug_bin (#30725) * BarChart: add alpha bar chart panel (#30323) * Docs: Time series panel (#30690) * Backend Plugins: Convert test data source to use SDK contracts (#29916) * Docs: Update whats-new-in-v7-4.md (#30747) * Add link to Elasticsearch docs. (#30748) * Mobile: Fixes issue scrolling on mobile in chrome (#30746) * TagsInput: Make placeholder configurable (#30718) * Docs: Add config settings for fonts in reporting (#30421) * Add menu.yaml to .gitignore (#30743) * bump cypress to 6.3.0 (#30644) * Datasource: Use json-iterator configuration compatible with standard library (#30732) * AlertingNG: Update UX to use new PageToolbar component (#30680) * Docs: Add usage insights export feature (#30376) * skip symlinks to directories when generating plugin manifest (#30721) * PluginCiE2E: Upgrade base images (#30696) * Variables: Fixes so text format will show All instead of custom all (#30730) * PanelLibrary: better handling of deleted panels (#30709) * Added section "Curated dashboards for Google Cloud Monitoring" for 7.4 What's New (#30724) * Added "curated dashboards" information and broke down, rearranged topics. (#30659) * Transform: improve the "outer join" performance/behavior (#30407) * Add alt text to plugin logos (#30710) * Deleted menu.yaml file (#30717) * Dashboard: Top Share URL icon should share panel URL when on viewPanel page (#30000) * Added entry for web server. (#30715) * DashboardPicker: switch to promise-based debounce, return dashboard UID (#30706) * Use connected GraphNG in Explore (#30707) * Fix documentation for streaming data sources (#30704) * PanelLibrary: changes casing of responses and adds meta property (#30668) * Influx: Show all datapoints for dynamically windowed flux query (#30688) * Trace: trace to logs design update (#30637) * DeployImage: Switch base images to Debian (#30684) * Chore: remove CSP debug logging line (#30689) * Docs: 7.4 documentation for expressions (#30524) * PanelEdit: Get rid of last remaining usage of navbar-button (#30682) * Grafana-UI: Fix setting default value for MultiSelect (#30671) * CustomScrollbar: migrated styles from sass to emotion (#30506) * DashboardSettings & PanelEdit: Use new PageToolbar (#30675) * Explore: Fix jumpy live tailing (#30650) * ci(npm-publish): add missing github package token to env vars (#30665) * PageToolbar: Extracting navbar styles & layout into a modern emotion based component (#30588) * AlertingNG: pause/unpause definitions via the API (#30627) * Docs: Refer to product docs in whats new for alerting templating feature (#30652) * ReleaseNotes: Updated changelog and release notes for 7.4.0-beta1 (#30666) * Variables: Fixes display value when using capture groups in regex (#30636) * Docs: Update _index.md (#30655) * Docs: Auditing updates (#30433) * Docs: add hidden_users configuration field (#30435) * Docs: Define TLS/SSL terminology (#30533) * Docs: Fix expressions enabled description (#30589) * Docs: Update ES screenshots (#30598) * Licensing Docs: Adding license restrictions docs (#30216) * Update documentation-style-guide.md (#30611) * Docs: Update queries.md (#30616) * chore(grafana-ui): bump storybook to 6.1.15 (#30642) * DashboardSettings: fixes vertical scrolling (#30640) * Usage Stats: Remove unused method for getting user stats (#30074) * Grafana/UI: Unit picker should not set a category as unit (#30638) * Graph: Fixes auto decimals issue in legend and tooltip (#30628) * AlertingNG: List saved Alert definitions in Alert Rule list (#30603) * chore: bump redux toolkit to 1.5.0 for immer 8.0.1 vulnerability fix (#30605) * Grafana/UI: Add disable prop to Segment (#30539) * Variables: Fixes so queries work for numbers values too (#30602) * Admin: Fixes so form values are filled in from backend (#30544) * Docs: Add new override info and add whats new 7.4 links (#30615) * TestData: Improve what's new in v7.4 (#30612) * Docs: Update 7.4 What's New to use more correct description of alerting notification template feature (#30502) * NodeGraph: Add docs (#30504) * Loki: Improve live tailing errors and fix Explore's logs container type errors (#30517) * TimeRangePicker: Updates components to use new ToolbarButton & ButtonGroup (#30570) * Update styling.md guide (#30594) * TestData: Adding what's new in v7.4 to the devenv dashboards (#30568) * Chore(deps): Bump github.com/aws/aws-sdk-go from 1.35.5 to 1.36.31 (#30583) * Chore(deps): Bump github.com/prometheus/client_golang (#30585) * Chore(deps): Bump gopkg.in/macaron.v1 from 1.3.9 to 1.4.0 (#30587) * Chore(deps): Bump github.com/google/uuid from 1.1.5 to 1.2.0 (#30584) * Explore: Fix logs hover state so that it is visible and in dark mode & simply hover code (#30572) * RefreshPicker: Fixes so valid intervals in url are visible in RefreshPicker (#30474) * Add documentation for Exemplars (#30317) * OldGraph: Fix height issue in Firefox (#30565) * XY Chart: fix editor error with empty frame (no fields) (#30573) * ButtonSelect & RefreshPicker: Rewrite of components to use new emotion based ToolbarButton & Menu (#30510) * XY Chart: share legend config with timeseries (#30559) * configuration.md: Document Content Security Policy options (#30413) * DataFrame: cache frame/field index in field state (#30529) * List + before -; rm old Git ref; reformat. (#30543) * Expressions: Add option to disable feature (#30541) * Explore: Fix loading visualisation on the top of the new time series panel (#30553) * Prometheus: Fix show query instead of Value if no __name__ and metric (#30511) * Decimals: Big Improvements to auto decimals and fixes to auto decimals bug found in 7.4-beta1 (#30519) * Postgres: Convert tests to stdlib (#30536) * Storybook: Migrate card story to use controls (#30535) * AlertingNG: Enable UI to Save Alert Definitions (#30394) * Postgres: Be consistent about TLS/SSL terminology (#30532) * Loki: Append refId to logs uid (#30418) * Postgres: Fix indentation (#30531) * GraphNG: uPlot 1.6.3 (fix bands not filling below 0). close #30523. (#30527) * updates for e2e docker image (#30465) * GraphNG: uPlot 1.6.2 (#30521) * Docs: Update whats-new-in-v7-4.md (#30520) * Prettier: ignore build and devenv dirs (#30501) * Chore: Upgrade grabpl version (#30486) * Explore: Update styling of buttons (#30493) * Cloud Monitoring: Fix legend naming with display name override (#30440) * GraphNG: Disable Plot logging by default (#30390) * Admin: Fixes so whole org drop down is visible when adding users to org (#30481) * Docs: include Makefile option for local assets (#30455) * Footer: Fixes layout issue in footer (#30443) * TimeSeriesPanel: Fixed default value for gradientMode (#30484) * Docs: fix typo in what's new doc (#30489) * Chore: adds wait to e2e test (#30488) * chore: update packages dependent on dot-prop to fix security vulnerability (#30432) * Dashboard: Remove Icon and change copy -> Copy to clipboard in the share embedded panel modal (#30480) * Chore: fix spelling mistake (#30473) * Chore: Restrict internal imports from other packages (#30453) * Docs: What's new fixes and improvements (#30469) * Timeseries: only migrage point size when configured (#30461) * Alerting: Hides threshold handle for percentual thresholds (#30431) * Graph: Fixes so only users with correct permissions can add annotations (#30419) * Chore: update latest version to 7.4.0-beta1 (#30452) * Docs: Add whats new 7.4 links (#30463) * Update whats-new-in-v7-4.md (#30460) * docs: 7.4 what's new (Add expressions note) (#30446) * Chore: Upgrade build pipeline tool (#30456) * PanelModel: Make sure the angular options are passed to react panel type changed handler (#30441) * Expressions: Fix button icon (#30444) * ReleaseNotes: Updated changelog and release notes for 7.4.0-beta1 (#30449) * Docs: Fix img link for alert notification template (#30436) * grafana/ui: Fix internal import from grafana/data (#30439) * prevent field config from being overwritten (#30437) * PanelOptions: Refactoring applying panel and field options out of PanelModel and add property clean up for properties not in field config registry (#30389) * Dashboard: Remove template variables option from ShareModal (#30395) * Added doc content for variables inspector code change by Hugo (#30408) * Docs: update license expiration behavior for reporting (#30420) * Chore: use old version format in package.json (#30430) * Chore: upgrade NPM security vulnerabilities (#30397) * "Release: Updated versions in package to 7.5.0-pre.0" (#30428) * contribute: Add backend and configuration guidelines for PRs (#30426) * Chore: Update what's new URL (#30424) - Update to version 7.4.5 - CVE-2021-28146, CVE-2021-28147: Fix API permissions issues related to team-sync. (Enterprise) (bsc#1183811, bsc#1183809) - CVE-2021-28148: Usage insights requires signed in users. (Enterprise) (bsc#1183813) - CVE-2021-27962: Do not allow editors to incorrectly bypass permissions on the default data source. (Enterprise) (bsc#1184371) grafana-7.5.7-3.12.1.src.rpm grafana-7.5.7-3.12.1.x86_64.rpm grafana-7.5.7-3.12.1.s390x.rpm grafana-7.5.7-3.12.1.ppc64le.rpm grafana-7.5.7-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2568 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-vm-tools fixes the following issues: Update to 11.3.0 (bsc#1187567) - Reduce or eliminate Linux dependency on the 'net-tools' package. - The 'ifconfig' and 'netstat' commands are deprecated in more recent releases of Linux. Update the Linux 'vm-support' script to use the 'ip' and 'ss' commands when available. If the new commands are missing a fallback will be used. In Particular, 'ip' has a fallback on 'ifconfig', 'ip route' will fallback on 'route' and 'ss' will fallback on 'netstat'. - Configuring OVT with the '--without-pam' option will implicitly disable 'vgauth'. - When no 'vgauth' option is given alongside '--without-pam', a warning is displayed with a message 'Building without PAM; vgauth will be disabled.'. - When '--disable-vgauth' is supplied alongside '--without-pam', no warning or error message is displayed. - When '--enable-vgauth' is supplied alongside '--without-pam', an error will be shown and the configure stage will be aborted with an error message 'Cannot enable vgauth without PAM. Please configure without --without-pam or without --enable-vgauth.' - Fix issues using GCC 11 with gtk >= 3.20 and glib >=2.66.3 - Fix more GCC 11 failures. (bsc#1185103) - Update the 'FreeBSD' specific sections of 'open-vm-tools' to adjust what necessary for 'ARM64'. - New command line tool 'vmwgfxctrl' introduced in 'open-vm-tools'. - A user can now control various aspects of the 'vmwgfx' Linux kernel module. Currently it can both display and set the current topology of the 'vmwgfx' kernel driver. It is useful when trying to configure custom resolutions on recent Linux distributions, including multi-monitor setups. - New command line tool 'vmware-alias-import' added to 'open-vm-tools' that can be used to import 'vgauth' config data and apply it to the running 'vgauth' service. - Enhancements to support or utilize various vSphere features. - In 'vmtoolsd.service' move the deprecated path '/var/run' to '/run' for it's 'PID' file. (bsc#1185175) - Finalize the 'UsrMerge'. (bsc#1029961) libvmtools-devel-11.3.0-10.1.x86_64.rpm libvmtools0-11.3.0-10.1.x86_64.rpm open-vm-tools-11.3.0-10.1.src.rpm open-vm-tools-11.3.0-10.1.x86_64.rpm open-vm-tools-desktop-11.3.0-10.1.x86_64.rpm open-vm-tools-sdmp-11.3.0-10.1.x86_64.rpm libvmtools-devel-11.3.0-10.1.aarch64.rpm libvmtools0-11.3.0-10.1.aarch64.rpm open-vm-tools-11.3.0-10.1.aarch64.rpm open-vm-tools-desktop-11.3.0-10.1.aarch64.rpm open-vm-tools-sdmp-11.3.0-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-2241 moderate SUSE Updates openSUSE-SLE 15.3 This update for grafana-status-panel fixes the following issues: - Update plugin to version 1.0.10 to fix compatibility issues with Grafana versions higher than v6.7.x. grafana-status-panel-1.0.10-3.5.1.noarch.rpm grafana-status-panel-1.0.10-3.5.1.src.rpm openSUSE-SLE-15.3-2021-2320 important SUSE Updates openSUSE-SLE 15.3 This update for sqlite3 fixes the following issues: - Update to version 3.36.0 - CVE-2020-15358: heap-based buffer overflow in multiSelectOrderBy due to mishandling of query-flattener optimization (bsc#1173641) - CVE-2020-9327: NULL pointer dereference and segmentation fault because of generated column optimizations in isAuxiliaryVtabOperator (bsc#1164719) - CVE-2019-20218: selectExpander in select.c proceeds with WITH stack unwinding even after a parsing error (bsc#1160439) - CVE-2019-19959: memory-management error via ext/misc/zipfile.c involving embedded '\0' input (bsc#1160438) - CVE-2019-19923: improper handling of certain uses of SELECT DISTINCT in flattenSubquery may lead to null pointer dereference (bsc#1160309) - CVE-2019-19924: improper error handling in sqlite3WindowRewrite() (bsc#1159850) - CVE-2019-19925: improper handling of NULL pathname during an update of a ZIP archive (bsc#1159847) - CVE-2019-19926: improper handling of certain errors during parsing multiSelect in select.c (bsc#1159715) - CVE-2019-19880: exprListAppendList in window.c allows attackers to trigger an invalid pointer dereference (bsc#1159491) - CVE-2019-19603: during handling of CREATE TABLE and CREATE VIEW statements, does not consider confusion with a shadow table name (bsc#1158960) - CVE-2019-19646: pragma.c mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns (bsc#1158959) - CVE-2019-19645: alter.c allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements (bsc#1158958) - CVE-2019-19317: lookupName in resolve.c omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service (bsc#1158812) - CVE-2019-19244: sqlite3,sqlite2,sqlite: The function sqlite3Select in select.c allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORDER BY usage (bsc#1157818) - CVE-2015-3415: sqlite3VdbeExec comparison operator vulnerability (bsc#928701) - CVE-2015-3414: sqlite3,sqlite2: dequoting of collation-sequence names (bsc#928700) - CVE-2020-13434: integer overflow in sqlite3_str_vappendf (bsc#1172115) - CVE-2020-13630: (bsc#1172234: use-after-free in fts3EvalNextRow - CVE-2020-13631: virtual table allowed to be renamed to one of its shadow tables (bsc#1172236) - CVE-2020-13632: NULL pointer dereference via crafted matchinfo() query (bsc#1172240) - CVE-2020-13435: Malicious SQL statements could have crashed the process that is running SQLite (bsc#1172091) libsqlite3-0-3.36.0-3.12.1.x86_64.rpm libsqlite3-0-32bit-3.36.0-3.12.1.x86_64.rpm sqlite3-3.36.0-3.12.1.src.rpm sqlite3-3.36.0-3.12.1.x86_64.rpm sqlite3-devel-3.36.0-3.12.1.x86_64.rpm sqlite3-doc-3.36.0-3.12.1.noarch.rpm libsqlite3-0-3.36.0-3.12.1.s390x.rpm sqlite3-3.36.0-3.12.1.s390x.rpm sqlite3-devel-3.36.0-3.12.1.s390x.rpm libsqlite3-0-3.36.0-3.12.1.ppc64le.rpm sqlite3-3.36.0-3.12.1.ppc64le.rpm sqlite3-devel-3.36.0-3.12.1.ppc64le.rpm libsqlite3-0-3.36.0-3.12.1.aarch64.rpm sqlite3-3.36.0-3.12.1.aarch64.rpm sqlite3-devel-3.36.0-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2456 moderate SUSE Updates openSUSE-SLE 15.3 This update for pam-config fixes the following issues: - Add "revoke" to the option list for 'pam_keyinit'. - Fixed an issue when pam-config fails to create a new service config file. (bsc#1187091) pam-config-1.1-3.3.1.src.rpm pam-config-1.1-3.3.1.x86_64.rpm pam-config-1.1-3.3.1.s390x.rpm pam-config-1.1-3.3.1.ppc64le.rpm pam-config-1.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2606 moderate SUSE Updates openSUSE-SLE 15.3 This update for libcbor fixes the following issues: - Implement a fix to avoid building shared library twice. (bsc#1102408) libcbor-0.5.0-4.3.1.src.rpm libcbor-devel-0.5.0-4.3.1.x86_64.rpm libcbor0-0.5.0-4.3.1.x86_64.rpm libcbor-devel-0.5.0-4.3.1.s390x.rpm libcbor0-0.5.0-4.3.1.s390x.rpm libcbor-devel-0.5.0-4.3.1.ppc64le.rpm libcbor0-0.5.0-4.3.1.ppc64le.rpm libcbor-devel-0.5.0-4.3.1.aarch64.rpm libcbor0-0.5.0-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2261 moderate SUSE Updates openSUSE-SLE 15.3 This update rereleases xmlsec1 for SUSE Linux Enterprise 15 SP3 to fix a migration issue. libxmlsec1-1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-nss1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-openssl1-1.2.28-7.9.1.x86_64.rpm xmlsec1-1.2.28-7.9.1.src.rpm xmlsec1-1.2.28-7.9.1.x86_64.rpm xmlsec1-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-nss-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.x86_64.rpm libxmlsec1-1-1.2.28-7.9.1.s390x.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.s390x.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.s390x.rpm libxmlsec1-nss1-1.2.28-7.9.1.s390x.rpm libxmlsec1-openssl1-1.2.28-7.9.1.s390x.rpm xmlsec1-1.2.28-7.9.1.s390x.rpm xmlsec1-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-nss-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.s390x.rpm libxmlsec1-1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-nss1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-openssl1-1.2.28-7.9.1.ppc64le.rpm xmlsec1-1.2.28-7.9.1.ppc64le.rpm xmlsec1-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-nss-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-nss1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-openssl1-1.2.28-7.9.1.aarch64.rpm xmlsec1-1.2.28-7.9.1.aarch64.rpm xmlsec1-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-nss-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2444 low SUSE Updates openSUSE-SLE 15.3 This update for autogen fixes the following issue: This update doesn't solve any visible issue to final users but it makes the builds reproducible. (bsc#1047218) In particular: - it normalize 'tar' - it normalize date in 'man-pages' autogen-5.18.12-3.3.1.src.rpm autogen-5.18.12-3.3.1.x86_64.rpm libopts-devel-5.18.12-3.3.1.x86_64.rpm libopts25-5.18.12-3.3.1.x86_64.rpm autogen-5.18.12-3.3.1.s390x.rpm libopts-devel-5.18.12-3.3.1.s390x.rpm libopts25-5.18.12-3.3.1.s390x.rpm autogen-5.18.12-3.3.1.ppc64le.rpm libopts-devel-5.18.12-3.3.1.ppc64le.rpm libopts25-5.18.12-3.3.1.ppc64le.rpm autogen-5.18.12-3.3.1.aarch64.rpm libopts-devel-5.18.12-3.3.1.aarch64.rpm libopts25-5.18.12-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2587 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-s390 fixes the following issues: - Do not activate 'DASD' devices after formatting. (bsc#1187012) yast2-s390-4.3.4-3.3.1.s390x.rpm yast2-s390-4.3.4-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2455 moderate SUSE Updates openSUSE-SLE 15.3 This update for php7-pear fixes the following issues: - Fix for an issue when php-pear provides error messages with invalid variables. (bsc#1187372) php7-pear-1.10.19-3.3.1.noarch.rpm php7-pear-1.10.19-3.3.1.src.rpm php7-pecl-1.10.19-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2895 moderate SUSE Updates openSUSE-SLE 15.3 This update for unixODBC fixes the following issues: - ECO: Update unixODBC to 2.3.9 in SLE 15. (jsc#SLE-18004) - Fix incorrect permission for documentation files. - Update requires and baselibs for new libodbc2. - Employ shared library packaging guideline: new subpacakge libodbc2. - Update to 2.3.9: * Remove "#define UNIXODBC_SOURCE" from unixodbc_conf.h - Update to 2.3.8: * Add configure support for editline * SQLDriversW was ignoring user config * SQLDataSources Fix termination character * Fix for pooling seg fault * Make calling SQLSetStmtAttrW call the W function in the driver is its there * Try and fix race condition clearing system odbc.ini file * Remove trailing space from isql/iusql SQL * When setting connection attributes set before connect also check if the W entry poins can be used * Try calling the W error functions first if available in the driver * Add iconvperdriver configure option to allow calling unicode_setup in SQLAllocHandle * iconv handles was being lost when reusing pooled connection * Catch null copy in iniPropertyInsert * Fix a few leaks - Update to 2.3.7: * Fix for pkg-config file update on no linux platforms * Add W entry for GUI work * Various fixes for SQLBrowseConnect/W, SQLGetConnectAttr/W,and SQLSetConnectAttr/W * Fix buffer overflows in SQLConnect/W and refine behaviour of SQLGet/WritePrivateProfileString * SQLBrowseConnect/W allow disconnecting a started browse session after error * Add --with-stats-ftok-name configure option to allow the selection of a file name used to generate the IPC id when collecting stats. Default is the system odbc.ini file * Improve diag record handling with the behavior of Windows DM and export SQLCancelHandle * bug fix when SQLGetPrivateProfileString() is called to get a list of sections or a list of keys * Connection pooling: Fix liveness check for Unicode drivers libltdl7-2.4.6-3.4.1.x86_64.rpm libltdl7-32bit-2.4.6-3.4.1.x86_64.rpm libtool-2.4.6-3.4.1.src.rpm libtool-2.4.6-3.4.1.x86_64.rpm libtool-32bit-2.4.6-3.4.1.x86_64.rpm libltdl7-2.4.6-3.4.1.s390x.rpm libtool-2.4.6-3.4.1.s390x.rpm libltdl7-2.4.6-3.4.1.ppc64le.rpm libtool-2.4.6-3.4.1.ppc64le.rpm libltdl7-2.4.6-3.4.1.aarch64.rpm libtool-2.4.6-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-2305 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3573: Fixed an UAF vulnerability in function that can allow attackers to corrupt kernel heaps and adopt further exploitations. (bsc#1186666) - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601) - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595) - CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554) - CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452) The following non-security bugs were fixed: - 0001-x86-sched-Treat-Intel-SNC-topology-as-default-COD-as.patch: (bsc#1187263). - alx: Fix an error handling path in 'alx_probe()' (git-fixes). - asm-generic/hyperv: Add missing function prototypes per -W1 warnings (bsc#1186071). - ASoC: fsl-asoc-card: Set .owner attribute when registering card (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Glavey TM800A550L tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Lenovo Miix 3-830 tablet (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - ASoC: rt5659: Fix the lost powers for the HDA header (git-fixes). - ASoC: rt5682: Fix the fast discharge for headset unplugging in soundwire mode (git-fixes). - ASoC: sti-sas: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: tas2562: Fix TDM_CFG0_SAMPRATE values (git-fixes). - batman-adv: Avoid WARN_ON timing related checks (git-fixes). - be2net: Fix an error handling path in 'be_probe()' (git-fixes). - block: Discard page cache of zone reset target range (bsc#1187402). - Bluetooth: Add a new USB ID for RTL8822CE (git-fixes). - Bluetooth: use correct lock to prevent UAF of hdev object (git-fixes). - bnxt_en: Call bnxt_ethtool_free() in bnxt_init_one() error path (jsc#SLE-8371 bsc#1153274). - bnxt_en: Fix TQM fastpath ring backing store computation (jsc#SLE-8371 bsc#1153274). - bnxt_en: Rediscover PHY capabilities after firmware reset (jsc#SLE-8371 bsc#1153274). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1177028). - bpf: Fix libelf endian handling in resolv_btfids (bsc#1177028). - bpfilter: Specify the log level for the kmsg message (bsc#1155518). - can: mcba_usb: fix memory leak in mcba_usb (git-fixes). - ceph: must hold snap_rwsem when filling inode for async create (bsc#1187927). - cfg80211: avoid double free of PMSR request (git-fixes). - cfg80211: make certificate generation more robust (git-fixes). - cgroup1: do not allow '\n' in renaming (bsc#1187972). - clocksource/drivers/hyper-v: Handle sched_clock differences inline (bsc#1186071). - clocksource/drivers/hyper-v: Move handling of STIMER0 interrupts (bsc#1186071). - clocksource/drivers/hyper-v: Set clocksource rating based on Hyper-V feature (bsc#1186071). - cxgb4: fix endianness when flashing boot image (jsc#SLE-15131). - cxgb4: fix sleep in atomic when flashing PHY firmware (jsc#SLE-15131). - cxgb4: fix wrong ethtool n-tuple rule lookup (jsc#SLE-15131). - cxgb4: fix wrong shift (git-fixes). - cxgb4: halt chip before flashing PHY firmware image (jsc#SLE-15131). - dax: Add a wakeup mode parameter to put_unlocked_entry() (bsc#1187411). - dax: Add an enum for specifying dax wakup mode (bsc#1187411). - dax: fix ENOMEM handling in grab_mapping_entry() (bsc#1184212). - dax: Wake up all waiters after invalidating dax entry (bsc#1187411). - dmaengine: ALTERA_MSGDMA depends on HAS_IOMEM (git-fixes). - dmaengine: fsl-dpaa2-qdma: Fix error return code in two functions (git-fixes). - dmaengine: pl330: fix wrong usage of spinlock flags in dma_cyclc (git-fixes). - dmaengine: QCOM_HIDMA_MGMT depends on HAS_IOMEM (git-fixes). - dmaengine: stedma40: add missing iounmap() on error in d40_probe() (git-fixes). - drivers: hv: Create a consistent pattern for checking Hyper-V hypercall status (bsc#1186071). - drivers: hv: Fix EXPORT_SYMBOL and tab spaces issue (bsc#1186071). - Drivers: hv: Redo Hyper-V synthetic MSR get/set functions (bsc#1186071). - Drivers: hv: vmbus: Check for pending channel interrupts before taking a CPU offline (bsc#1186071). - Drivers: hv: vmbus: Drivers: hv: vmbus: Introduce CHANNELMSG_MODIFYCHANNEL_RESPONSE (bsc#1186071). - Drivers: hv: vmbus: Drop error message when 'No request id available' (bsc#1183682). - Drivers: hv: vmbus: Handle auto EOI quirk inline (bsc#1186071). - Drivers: hv: vmbus: Introduce and negotiate VMBus protocol version 5.3 (bsc#1186071). - Drivers: hv: vmbus: Move handling of VMbus interrupts (bsc#1186071). - Drivers: hv: vmbus: Move hyperv_report_panic_msg to arch neutral code (bsc#1186071). - Drivers: hv: vmbus: remove unused function (bsc#1186071). - Drivers: hv: vmbus: Remove unused linux/version.h header (bsc#1186071). - drm/amd/amdgpu:save psp ring wptr to avoid attack (git-fixes). - drm/amd/display: Allow bandwidth validation for 0 streams (git-fixes). - drm/amd/display: Fix potential memory leak in DMUB hw_init (git-fixes). - drm/amdgpu: refine amdgpu_fru_get_product_info (git-fixes). - drm/sun4i: dw-hdmi: Make HDMI PHY into a platform device (git-fixes). - drm/tegra: sor: Do not leak runtime PM reference (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (git-fixes). - drm/vc4: hdmi: Move the HSM clock enable to runtime_pm (git-fixes). - drm: Fix use-after-free read in drm_getunique() (git-fixes). - drm: Lock pointer access in drm_master_release() (git-fixes). - dt-bindings: reset: meson8b: fix duplicate reset IDs (git-fixes). - ethtool: strset: fix message length calculation (bsc#1176447). - ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed (bsc#1187408). - ext4: fix check to prevent false positive report of incorrect used inodes (bsc#1187404). - ext4: fix error code in ext4_commit_super (bsc#1187407). - ext4: fix memory leak in ext4_fill_super (bsc#1187409). - FCOE: fcoe_wwn_from_mac kABI fix (bsc#1187886). - fs: fix reporting supported extra file attributes for statx() (bsc#1187410). - ftrace: Do not blindly read the ip address in ftrace_bug() (git-fixes). - ftrace: Free the trampoline when ftrace_startup() fails (git-fixes). - fuse: BUG_ON correction in fuse_dev_splice_write() (bsc#1187356). - HID: Add BUS_VIRTUAL to hid_connect logging (git-fixes). - HID: gt683r: add missing MODULE_DEVICE_TABLE (git-fixes). - HID: hid-input: add mapping for emoji picker key (git-fixes). - HID: hid-sensor-hub: Return error for hid_set_field() failure (git-fixes). - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for Saitek X65 (git-fixes). - HID: usbhid: fix info leak in hid_submit_ctrl (git-fixes). - HID: usbhid: Fix race between usbhid_close() and usbhid_stop() (git-fixes). - hv: hyperv.h: a few mundane typo fixes (bsc#1186071). - hv_netvsc: Add a comment clarifying batching logic (bsc#1186071). - hv_netvsc: Add error handling while switching data path (bsc#1186071). - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (bsc#1186071). - hwmon: (scpi-hwmon) shows the negative temperature properly (git-fixes). - i2c: mpc: Make use of i2c_recover_bus() (git-fixes). - ice: add ndo_bpf callback for safe mode netdev ops (jsc#SLE-7926). - ice: parameterize functions responsible for Tx ring management (jsc#SLE-12878). - isdn: mISDN: netjet: Fix crash in nj_probe: (git-fixes). - kernel-binary.spec.in: Regenerate makefile when not using mkmakefile. - kernel: kexec_file: fix error return code of kexec_calculate_store_digests() (git-fixes). - kthread: prevent deadlock when kthread_mod_delayed_work() races with kthread_cancel_delayed_work_sync() (bsc#1187867). - kthread_worker: split code for canceling the delayed work timer (bsc#1187867). - kyber: fix out of bounds access when preempted (bsc#1187403). - lib: vdso: Remove CROSS_COMPILE_COMPAT_VDSO (bsc#1164648,jsc#SLE-11493). - media: mtk-mdp: Check return value of of_clk_get (git-fixes). - media: mtk-mdp: Fix a refcounting bug on error in init (git-fixes). - media: s5p-g2d: Fix a memory leak in an error handling path in 'g2d_probe()' (git-fixes). - mlxsw: reg: Spectrum-3: Enforce lowest max-shaper burst size of 11 (bsc#1176774). - mmc: meson-gx: use memcpy_to/fromio for dram-access-quirk (git-fixes). - module: limit enabling module.sig_enforce (git-fixes). - net/mlx5: Consider RoCE cap before init RDMA resources (git-fixes). - net/mlx5: E-Switch, Allow setting GUID for host PF vport (jsc#SLE-15172). - net/mlx5: E-Switch, Read PF mac address (jsc#SLE-15172). - net/mlx5: Fix PBMC register mapping (git-fixes). - net/mlx5: Fix placement of log_max_flow_counter (git-fixes). - net/mlx5: Fix sleep while atomic in mlx5_eswitch_get_vepa (git-fixes). - net/mlx5: Reset mkey index on creation (jsc#SLE-15172). - net/mlx5e: Block offload of outer header csum for UDP tunnels (git-fixes). - net/mlx5e: Fix page reclaim for dead peer hairpin (git-fixes). - net/mlx5e: Remove dependency in IPsec initialization flows (git-fixes). - net/nfc/rawsock.c: fix a permission check bug (git-fixes). - net/sched: act_ct: handle DNAT tuple collision (bsc#1154353). - net/x25: Return the correct errno code (git-fixes). - net: mvpp2: add mvpp2_phylink_to_port() helper (bsc#1187171). - netxen_nic: Fix an error handling path in 'netxen_nic_probe()' (git-fixes). - NFS: Fix a potential NULL dereference in nfs_get_client() (git-fixes). - NFS: Fix deadlock between nfs4_evict_inode() and nfs4_opendata_get_inode() (git-fixes). - NFS: Fix use-after-free in nfs4_init_client() (git-fixes). - nvmem: rmem: fix undefined reference to memremap (git-fixes). - ocfs2: fix data corruption by fallocate (bsc#1187412). - PCI: aardvark: Do not rely on jiffies while holding spinlock (git-fixes). - PCI: aardvark: Fix kernel panic during PIO transfer (git-fixes). - PCI: Add ACS quirk for Broadcom BCM57414 NIC (git-fixes). - PCI: hv: Drop msi_controller structure (bsc#1186071). - PCI: Mark some NVIDIA GPUs to avoid bus reset (git-fixes). - PCI: Mark TI C667X to avoid bus reset (git-fixes). - PCI: Work around Huawei Intelligent NIC VF FLR erratum (git-fixes). - perf/x86/intel/uncore: Fix a kernel WARNING triggered by maxcpus=1 (git-fixes). - perf/x86/intel/uncore: Remove uncore extra PCI dev HSWEP_PCI_PCU_3 (bsc#1184685). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (jsc#SLE-13513 bsc#1176919 ltc#186162 git-fixes). - qla2xxx: synchronize rport dev_loss_tmo setting (bsc#1182470 bsc#1185486). - qlcnic: Fix an error handling path in 'qlcnic_probe()' (git-fixes). - radeon: use memcpy_to/fromio for UVD fw upload (git-fixes). - regulator: bd70528: Fix off-by-one for buck123 .n_voltages setting (git-fixes). - Removed patch that was incorrectly added to SLE15-SP2 (bsc#1186949) - Revert "ecryptfs: replace BUG_ON with error handling code" (bsc#1187413). - Revert "ibmvnic: simplify reset_long_term_buff function" (bsc#1186206 ltc#191041). - Revert "PCI: PM: Do not read power state in pci_enable_device_flags()" (git-fixes). - Revert "video: hgafb: fix potential NULL pointer dereference" (git-fixes). - Revert "video: imsttfb: fix potential NULL pointer dereferences" (bsc#1152489) - s390/dasd: add missing discipline function (git-fixes). - s390/stack: fix possible register corruption with stack switch helper (bsc#1185677). - sched/debug: Fix cgroup_path[] serialization (git-fixes) - sched/fair: Keep load_avg and load_sum synced (git-fixes) - scsi: core: Fix race between handling STS_RESOURCE and completion (bsc#1187883). - scsi: fcoe: Fix mismatched fcoe_wwn_from_mac declaration (bsc#1187886). - scsi: storvsc: Enable scatterlist entry lengths > 4Kbytes (bsc#1186071). - scsi: storvsc: Parameterize number hardware queues (bsc#1186071). - scsi: ufs: Fix imprecise load calculation in devfreq window (bsc#1187795). - SCSI: ufs: fix ktime_t kabi change (bsc#1187795). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1187980). - spi: spi-nxp-fspi: move the register operation after the clock enable (git-fixes). - spi: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - spi: stm32-qspi: Always wait BUSY bit to be cleared in stm32_qspi_wait_cmd() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - tracing: Correct the length check which causes memory corruption (git-fixes). - tracing: Do no increment trace_clock_global() by one (git-fixes). - tracing: Do not stop recording cmdlines when tracing is off (git-fixes). - tracing: Do not stop recording comms if the trace file is being read (git-fixes). - tracing: Restructure trace_clock_global() to never block (git-fixes). - USB: core: hub: Disable autosuspend for Cypress CY7C65632 (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: debugfs: Add and remove endpoint dirs dynamically (git-fixes). - USB: dwc3: ep0: fix NULL pointer exception (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - video: hgafb: correctly handle card detect failure during probe (git-fixes). - video: hgafb: fix potential NULL pointer dereference (git-fixes). - vrf: fix maximum MTU (git-fixes). - x86/elf: Use _BITUL() macro in UAPI headers (bsc#1178134). - x86/fpu: Preserve supervisor states in sanitize_restored_user_xstate() (bsc#1178134). - x86/hyper-v: Move hv_message_type to architecture neutral module - x86/hyperv: Fix unused variable 'hi' warning in hv_apic_read (bsc#1186071). - x86/hyperv: Fix unused variable 'msr_val' warning in hv_qlock_wait (bsc#1186071). - x86/hyperv: Move hv_do_rep_hypercall to asm-generic (bsc#1186071). - x86/hyperv: remove unused linux/version.h header (bsc#1186071). - x86/pkru: Write hardware init value to PKRU when xstate is init (bsc#1152489). - x86/process: Check PF_KTHREAD and not current->mm for kernel threads (bsc#1152489). - xen-blkback: fix compatibility bug with single page rings (git-fixes). - xen-pciback: reconfigure also from backend watch handler (git-fixes). - xen-pciback: redo VF placement in the virtual topology (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). cluster-md-kmp-azure-5.3.18-38.11.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.11.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.11.1.x86_64.rpm True kernel-azure-5.3.18-38.11.1.nosrc.rpm True kernel-azure-5.3.18-38.11.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.11.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.11.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.11.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.11.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.11.1.noarch.rpm True kernel-source-azure-5.3.18-38.11.1.noarch.rpm True kernel-source-azure-5.3.18-38.11.1.src.rpm True kernel-syms-azure-5.3.18-38.11.1.src.rpm True kernel-syms-azure-5.3.18-38.11.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.11.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.11.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.11.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2640 moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client contains the following fix: - Update to version 9.2.0: (bsc#1029162) + Support IPv6 as best-effort, with fallback to IPv4 cloud-regionsrv-client-9.2.0-6.46.1.noarch.rpm cloud-regionsrv-client-9.2.0-6.46.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-6.46.1.noarch.rpm cloud-regionsrv-client-plugin-azure-1.0.1-6.46.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.1-6.46.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-6.46.1.noarch.rpm openSUSE-SLE-15.3-2021-2352 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3573: Fixed an UAF vulnerability in function that can allow attackers to corrupt kernel heaps and adopt further exploitations. (bsc#1186666) - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601) - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595) - CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554) - CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452) The following non-security bugs were fixed: - 0001-x86-sched-Treat-Intel-SNC-topology-as-default-COD-as.patch: (bsc#1187263). - alx: Fix an error handling path in 'alx_probe()' (git-fixes). - ASoC: fsl-asoc-card: Set .owner attribute when registering card (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Glavey TM800A550L tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Lenovo Miix 3-830 tablet (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - ASoC: rt5659: Fix the lost powers for the HDA header (git-fixes). - ASoC: rt5682: Fix the fast discharge for headset unplugging in soundwire mode (git-fixes). - ASoC: sti-sas: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: tas2562: Fix TDM_CFG0_SAMPRATE values (git-fixes). - batman-adv: Avoid WARN_ON timing related checks (git-fixes). - be2net: Fix an error handling path in 'be_probe()' (git-fixes). - block: Discard page cache of zone reset target range (bsc#1187402). - Bluetooth: Add a new USB ID for RTL8822CE (git-fixes). - Bluetooth: use correct lock to prevent UAF of hdev object (git-fixes). - bnxt_en: Call bnxt_ethtool_free() in bnxt_init_one() error path (jsc#SLE-8371 bsc#1153274). - bnxt_en: Fix TQM fastpath ring backing store computation (jsc#SLE-8371 bsc#1153274). - bnxt_en: Rediscover PHY capabilities after firmware reset (jsc#SLE-8371 bsc#1153274). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1177028). - bpf: Fix libelf endian handling in resolv_btfids (bsc#1177028). - bpfilter: Specify the log level for the kmsg message (bsc#1155518). - can: mcba_usb: fix memory leak in mcba_usb (git-fixes). - ceph: must hold snap_rwsem when filling inode for async create (bsc#1187927). - cfg80211: avoid double free of PMSR request (git-fixes). - cfg80211: make certificate generation more robust (git-fixes). - cgroup1: do not allow '\n' in renaming (bsc#1187972). - cxgb4: fix endianness when flashing boot image (jsc#SLE-15131). - cxgb4: fix sleep in atomic when flashing PHY firmware (jsc#SLE-15131). - cxgb4: fix wrong ethtool n-tuple rule lookup (jsc#SLE-15131). - cxgb4: fix wrong shift (git-fixes). - cxgb4: halt chip before flashing PHY firmware image (jsc#SLE-15131). - dax: Add a wakeup mode parameter to put_unlocked_entry() (bsc#1187411). - dax: Add an enum for specifying dax wakup mode (bsc#1187411). - dax: fix ENOMEM handling in grab_mapping_entry() (bsc#1184212). - dax: Wake up all waiters after invalidating dax entry (bsc#1187411). - dmaengine: ALTERA_MSGDMA depends on HAS_IOMEM (git-fixes). - dmaengine: fsl-dpaa2-qdma: Fix error return code in two functions (git-fixes). - dmaengine: pl330: fix wrong usage of spinlock flags in dma_cyclc (git-fixes). - dmaengine: QCOM_HIDMA_MGMT depends on HAS_IOMEM (git-fixes). - dmaengine: stedma40: add missing iounmap() on error in d40_probe() (git-fixes). - drm: Fix use-after-free read in drm_getunique() (git-fixes). - drm: Lock pointer access in drm_master_release() (git-fixes). - drm/amd/amdgpu:save psp ring wptr to avoid attack (git-fixes). - drm/amd/display: Allow bandwidth validation for 0 streams (git-fixes). - drm/amd/display: Fix potential memory leak in DMUB hw_init (git-fixes). - drm/amdgpu: refine amdgpu_fru_get_product_info (git-fixes). - drm/sun4i: dw-hdmi: Make HDMI PHY into a platform device (git-fixes). - drm/tegra: sor: Do not leak runtime PM reference (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (git-fixes). - drm/vc4: hdmi: Move the HSM clock enable to runtime_pm (git-fixes). - dt-bindings: reset: meson8b: fix duplicate reset IDs (git-fixes). - ethtool: strset: fix message length calculation (bsc#1176447). - ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed (bsc#1187408). - ext4: fix check to prevent false positive report of incorrect used inodes (bsc#1187404). - ext4: fix error code in ext4_commit_super (bsc#1187407). - ext4: fix memory leak in ext4_fill_super (bsc#1187409). - FCOE: fcoe_wwn_from_mac kABI fix (bsc#1187886). - fs: fix reporting supported extra file attributes for statx() (bsc#1187410). - ftrace: Do not blindly read the ip address in ftrace_bug() (git-fixes). - ftrace: Free the trampoline when ftrace_startup() fails (git-fixes). - fuse: BUG_ON correction in fuse_dev_splice_write() (bsc#1187356). - HID: Add BUS_VIRTUAL to hid_connect logging (git-fixes). - HID: gt683r: add missing MODULE_DEVICE_TABLE (git-fixes). - HID: hid-input: add mapping for emoji picker key (git-fixes). - HID: hid-sensor-hub: Return error for hid_set_field() failure (git-fixes). - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for Saitek X65 (git-fixes). - HID: usbhid: fix info leak in hid_submit_ctrl (git-fixes). - HID: usbhid: Fix race between usbhid_close() and usbhid_stop() (git-fixes). - hwmon: (scpi-hwmon) shows the negative temperature properly (git-fixes). - i2c: mpc: Make use of i2c_recover_bus() (git-fixes). - ice: add ndo_bpf callback for safe mode netdev ops (jsc#SLE-7926). - ice: parameterize functions responsible for Tx ring management (jsc#SLE-12878). - isdn: mISDN: netjet: Fix crash in nj_probe: (git-fixes). - kernel-binary.spec.in: Regenerate makefile when not using mkmakefile. - kernel: kexec_file: fix error return code of kexec_calculate_store_digests() (git-fixes). - kthread_worker: split code for canceling the delayed work timer (bsc#1187867). - kthread: prevent deadlock when kthread_mod_delayed_work() races with kthread_cancel_delayed_work_sync() (bsc#1187867). - kyber: fix out of bounds access when preempted (bsc#1187403). - lib: vdso: Remove CROSS_COMPILE_COMPAT_VDSO (bsc#1164648,jsc#SLE-11493). - media: mtk-mdp: Check return value of of_clk_get (git-fixes). - media: mtk-mdp: Fix a refcounting bug on error in init (git-fixes). - media: s5p-g2d: Fix a memory leak in an error handling path in 'g2d_probe()' (git-fixes). - mlxsw: reg: Spectrum-3: Enforce lowest max-shaper burst size of 11 (bsc#1176774). - mmc: meson-gx: use memcpy_to/fromio for dram-access-quirk (git-fixes). - module: limit enabling module.sig_enforce (git-fixes). - net: mvpp2: add mvpp2_phylink_to_port() helper (bsc#1187171). - net/mlx5: Consider RoCE cap before init RDMA resources (git-fixes). - net/mlx5: E-Switch, Allow setting GUID for host PF vport (jsc#SLE-15172). - net/mlx5: E-Switch, Read PF mac address (jsc#SLE-15172). - net/mlx5: Fix PBMC register mapping (git-fixes). - net/mlx5: Fix placement of log_max_flow_counter (git-fixes). - net/mlx5: Fix sleep while atomic in mlx5_eswitch_get_vepa (git-fixes). - net/mlx5: Reset mkey index on creation (jsc#SLE-15172). - net/mlx5e: Block offload of outer header csum for UDP tunnels (git-fixes). - net/mlx5e: Fix page reclaim for dead peer hairpin (git-fixes). - net/mlx5e: Remove dependency in IPsec initialization flows (git-fixes). - net/nfc/rawsock.c: fix a permission check bug (git-fixes). - net/sched: act_ct: handle DNAT tuple collision (bsc#1154353). - net/x25: Return the correct errno code (git-fixes). - netxen_nic: Fix an error handling path in 'netxen_nic_probe()' (git-fixes). - NFS: Fix a potential NULL dereference in nfs_get_client() (git-fixes). - NFS: Fix use-after-free in nfs4_init_client() (git-fixes). - NFS: Fix deadlock between nfs4_evict_inode() and nfs4_opendata_get_inode() (git-fixes). - nvmem: rmem: fix undefined reference to memremap (git-fixes). - ocfs2: fix data corruption by fallocate (bsc#1187412). - PCI: aardvark: Do not rely on jiffies while holding spinlock (git-fixes). - PCI: aardvark: Fix kernel panic during PIO transfer (git-fixes). - PCI: Add ACS quirk for Broadcom BCM57414 NIC (git-fixes). - PCI: Mark some NVIDIA GPUs to avoid bus reset (git-fixes). - PCI: Mark TI C667X to avoid bus reset (git-fixes). - PCI: Work around Huawei Intelligent NIC VF FLR erratum (git-fixes). - perf/x86/intel/uncore: Fix a kernel WARNING triggered by maxcpus=1 (git-fixes). - perf/x86/intel/uncore: Remove uncore extra PCI dev HSWEP_PCI_PCU_3 (bsc#1184685). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (jsc#SLE-13513 bsc#1176919 ltc#186162 git-fixes). - qla2xxx: synchronize rport dev_loss_tmo setting (bsc#1182470 bsc#1185486). - qlcnic: Fix an error handling path in 'qlcnic_probe()' (git-fixes). - radeon: use memcpy_to/fromio for UVD fw upload (git-fixes). - regulator: bd70528: Fix off-by-one for buck123 .n_voltages setting (git-fixes). - Removed patch that was incorrectly added to SLE15-SP2 (bsc#1186949) - Revert "ecryptfs: replace BUG_ON with error handling code" (bsc#1187413). - Revert "ibmvnic: simplify reset_long_term_buff function" (bsc#1186206 ltc#191041). - Revert "PCI: PM: Do not read power state in pci_enable_device_flags()" (git-fixes). - Revert "video: hgafb: fix potential NULL pointer dereference" (git-fixes). - Revert "video: imsttfb: fix potential NULL pointer dereferences" (bsc#1152489) - s390/dasd: add missing discipline function (git-fixes). - s390/stack: fix possible register corruption with stack switch helper (bsc#1185677). - sched/debug: Fix cgroup_path[] serialization (git-fixes) - sched/fair: Keep load_avg and load_sum synced (git-fixes) - scsi: core: Fix race between handling STS_RESOURCE and completion (bsc#1187883). - scsi: fcoe: Fix mismatched fcoe_wwn_from_mac declaration (bsc#1187886). - scsi: ufs: Fix imprecise load calculation in devfreq window (bsc#1187795). - SCSI: ufs: fix ktime_t kabi change (bsc#1187795). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1187980). - spi: spi-nxp-fspi: move the register operation after the clock enable (git-fixes). - spi: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - spi: stm32-qspi: Always wait BUSY bit to be cleared in stm32_qspi_wait_cmd() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - tracing: Correct the length check which causes memory corruption (git-fixes). - tracing: Do no increment trace_clock_global() by one (git-fixes). - tracing: Do not stop recording cmdlines when tracing is off (git-fixes). - tracing: Do not stop recording comms if the trace file is being read (git-fixes). - tracing: Restructure trace_clock_global() to never block (git-fixes). - USB: core: hub: Disable autosuspend for Cypress CY7C65632 (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: debugfs: Add and remove endpoint dirs dynamically (git-fixes). - USB: dwc3: ep0: fix NULL pointer exception (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - video: hgafb: correctly handle card detect failure during probe (git-fixes). - video: hgafb: fix potential NULL pointer dereference (git-fixes). - vrf: fix maximum MTU (git-fixes). - x86/elf: Use _BITUL() macro in UAPI headers (bsc#1178134). - x86/fpu: Preserve supervisor states in sanitize_restored_user_xstate() (bsc#1178134). - x86/pkru: Write hardware init value to PKRU when xstate is init (bsc#1152489). - x86/process: Check PF_KTHREAD and not current->mm for kernel threads (bsc#1152489). - xen-blkback: fix compatibility bug with single page rings (git-fixes). - xen-pciback: reconfigure also from backend watch handler (git-fixes). - xen-pciback: redo VF placement in the virtual topology (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). cluster-md-kmp-default-5.3.18-59.13.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.13.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.13.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True kernel-debug-5.3.18-59.13.1.nosrc.rpm True kernel-debug-5.3.18-59.13.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.13.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-default-5.3.18-59.13.1.nosrc.rpm True kernel-default-5.3.18-59.13.1.x86_64.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.src.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.x86_64.rpm True kernel-default-devel-5.3.18-59.13.1.x86_64.rpm True kernel-default-extra-5.3.18-59.13.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.13.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-default-optional-5.3.18-59.13.1.x86_64.rpm True kernel-devel-5.3.18-59.13.1.noarch.rpm True kernel-docs-5.3.18-59.13.1.noarch.rpm True kernel-docs-5.3.18-59.13.1.nosrc.rpm True kernel-docs-html-5.3.18-59.13.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.13.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.13.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.13.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-macros-5.3.18-59.13.1.noarch.rpm True kernel-obs-build-5.3.18-59.13.1.src.rpm True kernel-obs-build-5.3.18-59.13.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.13.1.src.rpm True kernel-obs-qa-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-5.3.18-59.13.1.nosrc.rpm True kernel-preempt-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.13.1.x86_64.rpm True kernel-source-5.3.18-59.13.1.noarch.rpm True kernel-source-5.3.18-59.13.1.src.rpm True kernel-source-vanilla-5.3.18-59.13.1.noarch.rpm True kernel-syms-5.3.18-59.13.1.src.rpm True kernel-syms-5.3.18-59.13.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.13.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.13.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.13.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.13.1.s390x.rpm True dlm-kmp-default-5.3.18-59.13.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.13.1.s390x.rpm True kernel-default-5.3.18-59.13.1.s390x.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.s390x.rpm True kernel-default-devel-5.3.18-59.13.1.s390x.rpm True kernel-default-extra-5.3.18-59.13.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.13.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.s390x.rpm True kernel-default-optional-5.3.18-59.13.1.s390x.rpm True kernel-obs-build-5.3.18-59.13.1.s390x.rpm True kernel-obs-qa-5.3.18-59.13.1.s390x.rpm True kernel-syms-5.3.18-59.13.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.13.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.13.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.13.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.13.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.13.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.13.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.13.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.13.1.ppc64le.rpm True kernel-debug-5.3.18-59.13.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-default-5.3.18-59.13.1.ppc64le.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.13.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.13.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.13.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.13.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.13.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.13.1.ppc64le.rpm True kernel-syms-5.3.18-59.13.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.13.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.13.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.13.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.13.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.13.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.13.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-5.3.18-59.13.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.13.1.aarch64.rpm True kernel-default-5.3.18-59.13.1.aarch64.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.aarch64.rpm True kernel-default-devel-5.3.18-59.13.1.aarch64.rpm True kernel-default-extra-5.3.18-59.13.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.13.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.aarch64.rpm True kernel-default-optional-5.3.18-59.13.1.aarch64.rpm True kernel-obs-build-5.3.18-59.13.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.13.1.aarch64.rpm True kernel-syms-5.3.18-59.13.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.13.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.13.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.13.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2427 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116) - CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554) - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601) - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595) - CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing. (bnc#1179610) - CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452) - CVE-2021-0129: Fixed an improper access control in BlueZ that may have allowed an authenticated user to potentially enable information disclosure via adjacent access. (bnc#1186463) - CVE-2020-36386: Fixed an out-of-bounds read in hci_extended_inquiry_result_evt. (bsc#1187038) - CVE-2020-24588: Fixed a bug that could allow an adversary to abuse devices that support receiving non-SSP A-MSDU frames to inject arbitrary network packets. (bsc#1185861 bsc#1185863) - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062) - CVE-2021-3609: Fixed a race condition in the CAN BCM networking protocol which allows for local privilege escalation. (bsc#1187215) - CVE-2020-36385: Fixed a use-after-free flaw in ucma.c which allows for local privilege escalation. (bsc#1187050) - CVE-2021-33200: Fix leakage of uninitialized bpf stack under speculation. (bsc#1186484) The following non-security bugs were fixed: - af_packet: fix the tx skb protocol in raw sockets with ETH_P_ALL (bsc#1176081). - kabi: preserve struct header_ops after bsc#1176081 fix (bsc#1176081). - net: Do not set transport offset to invalid value (bsc#1176081). - net: Introduce parse_protocol header_ops callback (bsc#1176081). - net/ethernet: Add parse_protocol header_ops support (bsc#1176081). - net/mlx5e: Remove the wrong assumption about transport offset (bsc#1176081). - net/mlx5e: Trust kernel regarding transport offset (bsc#1176081). - net/packet: Ask driver for protocol if not provided by user (bsc#1176081). - net/packet: Remove redundant skb->protocol set (bsc#1176081). - resource: Fix find_next_iomem_res() iteration issue (bsc#1181193). - scsi: scsi_dh_alua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701). - SUNRPC in case of backlog, hand free slots directly to waiting task (bsc#1185428). - SUNRPC: More fixes for backlog congestion (bsc#1185428). - x86/crash: Add e820 reserved ranges to kdump kernel's e820 table (bsc#1181193). - x86/debug: Extend the lower bound of crash kernel low reservations (bsc#1153720). - x86/e820, ioport: Add a new I/O resource descriptor IORES_DESC_RESERVED (bsc#1181193). - x86/mm: Rework ioremap resource mapping determination (bsc#1181193). kernel-debug-4.12.14-197.99.1.nosrc.rpm True kernel-debug-base-4.12.14-197.99.1.x86_64.rpm True kernel-default-4.12.14-197.99.1.nosrc.rpm True kernel-kvmsmall-4.12.14-197.99.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-4.12.14-197.99.1.nosrc.rpm True kernel-vanilla-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-base-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.x86_64.rpm True kernel-default-man-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-base-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-devel-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.s390x.rpm True kernel-zfcpdump-4.12.14-197.99.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-197.99.1.s390x.rpm True kernel-debug-base-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.99.1.aarch64.rpm True kernel-vanilla-base-4.12.14-197.99.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-197.99.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2327 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - update to 12.22.2: - CVE-2021-22918: Out of bounds read (bsc#1187973) - CVE-2021-23362: ssri Regular Expression Denial of Service and hosted-git-info (bsc#1187977) - CVE-2021-27290: Regular Expression Denial of Service (bsc#1187976) - CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851) - CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852) - CVE-2020-7774: npm - Update y18n to fix Prototype-Pollution (bsc#1184450) nodejs12-12.22.2-4.16.1.src.rpm nodejs12-12.22.2-4.16.1.x86_64.rpm nodejs12-devel-12.22.2-4.16.1.x86_64.rpm nodejs12-docs-12.22.2-4.16.1.noarch.rpm npm12-12.22.2-4.16.1.x86_64.rpm nodejs12-12.22.2-4.16.1.s390x.rpm nodejs12-devel-12.22.2-4.16.1.s390x.rpm npm12-12.22.2-4.16.1.s390x.rpm nodejs12-12.22.2-4.16.1.ppc64le.rpm nodejs12-devel-12.22.2-4.16.1.ppc64le.rpm npm12-12.22.2-4.16.1.ppc64le.rpm nodejs12-12.22.2-4.16.1.aarch64.rpm nodejs12-devel-12.22.2-4.16.1.aarch64.rpm npm12-12.22.2-4.16.1.aarch64.rpm openSUSE-SLE-15.3-2021-2463 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pyzmq fixes the following issues: - Update to version 17.1.2 (bsc#1186945) * Fix possible hang when working with asyncio * Remove some outdated workarounds for old Cython versions * Fix some compilation with custom compilers * Remove unneeded link of libstdc++ on PyPy python-pyzmq-17.1.2-3.3.1.src.rpm python2-pyzmq-17.1.2-3.3.1.x86_64.rpm python2-pyzmq-devel-17.1.2-3.3.1.x86_64.rpm python3-pyzmq-17.1.2-3.3.1.x86_64.rpm python3-pyzmq-devel-17.1.2-3.3.1.x86_64.rpm python2-pyzmq-17.1.2-3.3.1.s390x.rpm python2-pyzmq-devel-17.1.2-3.3.1.s390x.rpm python3-pyzmq-17.1.2-3.3.1.s390x.rpm python3-pyzmq-devel-17.1.2-3.3.1.s390x.rpm python2-pyzmq-17.1.2-3.3.1.ppc64le.rpm python2-pyzmq-devel-17.1.2-3.3.1.ppc64le.rpm python3-pyzmq-17.1.2-3.3.1.ppc64le.rpm python3-pyzmq-devel-17.1.2-3.3.1.ppc64le.rpm python2-pyzmq-17.1.2-3.3.1.aarch64.rpm python2-pyzmq-devel-17.1.2-3.3.1.aarch64.rpm python3-pyzmq-17.1.2-3.3.1.aarch64.rpm python3-pyzmq-devel-17.1.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2481 moderate SUSE Updates openSUSE-SLE 15.3 This update for sysconfig fixes the following issues: - Link as Position Independent Executable (bsc#1184124). sysconfig-0.85.6-9.1.src.rpm sysconfig-0.85.6-9.1.x86_64.rpm sysconfig-netconfig-0.85.6-9.1.x86_64.rpm sysconfig-0.85.6-9.1.s390x.rpm sysconfig-netconfig-0.85.6-9.1.s390x.rpm sysconfig-0.85.6-9.1.ppc64le.rpm sysconfig-netconfig-0.85.6-9.1.ppc64le.rpm sysconfig-0.85.6-9.1.aarch64.rpm sysconfig-netconfig-0.85.6-9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2892 moderate SUSE Updates openSUSE-SLE 15.3 This update for dovecot23 fixes the following issues: Update dovecot to version 2.3.15 (jsc#SLE-19970): Security issues fixed: - CVE-2021-29157: Dovecot does not correctly escape kid and azp fields in JWT tokens. This may be used to supply attacker controlled keys to validate tokens, if attacker has local access. (bsc#1187418) Local attacker can login as any user and access their emails - CVE-2021-33515: On-path attacker could have injected plaintext commands before STARTTLS negotiation that would be executed after STARTTLS finished with the client. (bsc#1187419) Attacker can potentially steal user credentials and mails * Disconnection log messages are now more standardized across services. They also always now start with "Disconnected" prefix. * Dovecot now depends on libsystemd for systemd integration. * Removed support for Lua 5.2. Use version 5.1 or 5.3 instead. * config: Some settings are now marked as "hidden". It's discouraged to change these settings. They will no longer be visible in doveconf output, except if they have been changed or if doveconf -s parameter is used. See https://doc.dovecot.org/settings/advanced/ for details. * imap-compress: Compression level is now algorithm specific. See https://doc.dovecot.org/settings/plugin/compress-plugin/ * indexer-worker: Convert "Indexed" info logs to an event named "indexer_worker_indexing_finished". See https://doc.dovecot.org/admin_manual/list_of_events/#indexer-worker-indexing-finished + Add TSLv1.3 support to min_protocols. + Allow configuring ssl_cipher_suites. (for TLSv1.3+) + acl: Add acl_ignore_namespace setting which allows to entirely ignore ACLs for the listed namespaces. + imap: Support official RFC8970 preview/snippet syntax. Old methods of retrieving preview information via IMAP commands ("SNIPPET and PREVIEW with explicit algorithm selection") have been deprecated. + imapc: Support INDEXPVT for imapc storage to enable private message flags for cluster wide shared mailboxes. + lib-storage: Add new events: mail_opened, mail_expunge_requested, mail_expunged, mail_cache_lookup_finished. See https://doc.dovecot.org/admin_manual/list_of_events/#mail + zlib, imap-compression, fs-compress: Support compression levels that the algorithm supports. Before, we would allow hardcoded value between 1 to 9 and would default to 6. Now we allow using per-algorithm value range and default to whatever default the algorithm specifies. - *-login: Commands pipelined together with and just after the authenticate command cause these commands to be executed twice. This applies to all protocols that involve user login, which currently comprises of imap, pop3, submisision and managesieve. - *-login: Processes are supposed to disconnect the oldest non-logged in connection when process_limit was reached. This didn't actually happen with the default "high-security mode" (with service_count=1) where each connection is handled by a separate process. - *-login: When login process reaches client/process limits, oldest client connections are disconnected. If one of these was still doing anvil lookup, this caused a crash. This could happen only if the login process limits were very low or if the server was overloaded. - Fixed building with link time optimizations (-flto). - auth: Userdb iteration with passwd driver does not always return all users with some nss drivers. - dsync: Shared INBOX not synced when "mail_shared_explicit_inbox" was disabled. If a user has a shared mailbox which is another user's INBOX, dsync didn't include the mailbox in syncing unless explicit naming is enabled with "mail_shared_explicit_inbox" set to "yes". - dsync: Shared namespaces were not synced with "-n" flag. - dsync: Syncing shared INBOX failed if mail_attribute_dict was not set. If a user has a shared mailbox that is another user's INBOX, dsync failed to export the mailbox if mail attributes are disabled. - fts-solr, fts-tika: Using both Solr FTS and Tika may have caused HTTP requests to assert-crash: Panic: file http-client-request.c: line 1232 (http_client_request_send_more): assertion failed: (req->payload_input != NULL) - fts-tika: 5xx errors returned by Tika server as indexing failures. However, Tika can return 5xx for some attachments every time. So the 5xx error should be retried once, but treated as success if it happens on the retry as well. v2.3 regression. - fts-tika: v2.3.11 regression: Indexing messages with fts-tika may have resulted in Panic: file message-parser.c: line 802 (message_parser_deinit_from_parts): assertion failed: (ctx->nested_parts_count == 0 || i_stream_have_bytes_left(ctx->input)) - imap: SETMETADATA could not be used to unset metadata values. Instead NIL was handled as a "NIL" string. v2.3.14 regression. - imap: IMAP BINARY FETCH crashes at least on empty base64 body: Panic: file index-mail-binary.c: line 358 (blocks_count_lines): assertion failed: (block_count == 0 || block_idx+1 == block_count) - imap: If IMAP client using the NOTIFY command was disconnected while sending FETCH notifications to the client, imap could crash with Panic: Trying to close mailbox INBOX with open transactions. - imap: Using IMAP COMPRESS extension can cause IMAP connection to hang when IMAP commands are >8 kB long. - imapc: If remote server sent BYE but didn't immediately disconnect, it could cause infinite busy-loop. - lib-index: Corrupted cache record size in dovecot.index.cache file could have caused a crash (segfault) when accessing it. - lib-oauth2: JWT token time validation now works correctly with 32-bit systems. - lib-ssl-iostream: Checking hostnames against an SSL certificate was case-sensitive. - lib-storage: Corrupted mime.parts in dovecot.index.cache may have resulted in Panic: file imap-bodystructure.c: line 206 (part_write_body): assertion failed: (text == ((part->flags & MESSAGE_PART_FLAG_TEXT) != 0)) - lib-storage: Index rebuilding (e.g. via doveadm force-resync) didn't preserve the "hdr-pop3-uidl" header. Because of this, the next pop3 session could have accessed all of the emails' metadata to read their POP3 UIDL (opening dbox files). - listescape: When using the listescape plugin and a shared namespace the plugin didn't work properly anymore resulting in errors like: "Invalid mailbox name: Name must not have '/' character." - lmtp: Connection crashes if connection gets disconnected due to multiple bad commands and the last bad command is BDAT. - lmtp: The Dovecot-specific LMTP parameter XRCPTFORWARD was blindly forwarded by LMTP proxy without checking that the backend has support. This caused a command parameter error from the backend if it was running an older Dovecot release. This could only occur in more complex setups where the message was proxied twice; when the proxy generated the XRCPTFORWARD parameter itself the problem did not occur, so this only happened when it was forwarded. - lmtp: The LMTP proxy crashes with a panic when the remote server replies with an error while the mail is still being forwarded through a DATA/BDAT command. - lmtp: Username may have been missing from lmtp log line prefixes when it was performing autoexpunging. - master: Dovecot would incorrectly fail with haproxy 2.0.14 service checks. - master: Systemd service: Dovecot announces readiness for accepting connections earlier than it should. The following environment variables are now imported automatically and can be omitted from import_environment setting: NOTIFY_SOCKET LISTEN_FDS LISTEN_PID. - master: service { process_min_avail } was launching processes too slowly when master was forking a lot of processes. - util: Make the health-check.sh example script POSIX shell compatible. * Added new aliases for some variables. Usage of the old ones is possible, but discouraged. (These were partially added already to v2.3.13.) See https://doc.dovecot.org/configuration_manual/config_file/config_variables/ for more information. * Optimize imap/pop3/submission/managesieve proxies to use less CPU at the cost of extra memory usage. * Remove autocreate, expire, snarf and mail-filter plugins. * Remove cydir storage driver. * Remove XZ/LZMA write support. Read support will be removed in future release. * doveadm -D: Add timestamps to debug output even when LOG_STDERR_TIMESTAMP environment variable is not set. Timestamp format is taken from log_timestamp setting. * If BROKENCHAR or listescape plugin is used, the escaped folder names may be slightly different from before in some situations. This is unlikely to cause issues, although caching clients may redownload the folders. * imapc: It now enables BROKENCHAR=~ by default to escape remote folder names if necessary. This also means that if there are any '~' characters in the remote folder names, they will be visible as "~7e". * imapc: When using local index files folder names were escaped on filesystem a bit differently. This affects only if there are folder names that actually require escaping, which isn't so common. The old style folders will be automatically deleted from filesystem. * stats: Update exported metrics to be compliant with OpenMetrics standard. + doveadm: Add an optional '-p' parameter to metadata list command. If enabled, "/private", and "/shared" metadata prefixes will be prepended to the keys in the list output. + doveconf: Support environment variables in config files. See https://doc.dovecot.org/configuration_manual/config_file/config_file_syntax/#environment-variables for more details. + indexer-worker: Change indexer to disconnect from indexer-worker after each request. This allows service indexer-worker's service_count & idle_kill settings to work. These can be used to restart indexer-worker processes once in a while to reduce their memory usage. - auth: "nodelay" with various authentication mechanisms such as apop and digest-md5 crashed AUTH process if authentication failed. - auth: Auth lua script generating an error triggered an assertion failure: Panic: file db-lua.c: line 630 (auth_lua_call_password_verify): assertion failed: (lua_gettop(script->L) == 0). - configure: Fix libunwind detection to work on other than x86_64 systems. - doveadm-server: Process could crash if logging was done outside command handling. For example http-client could have done debug logging afterwards, resulting in either segfault or Panic: file http-client.c: line 642 (http_client_context_close): assertion failed: (cctx->clients_list == NULL). - dsync: Folder name escaping with BROKENCHAR didn't work completely correctly. This especially caused problems with dsync-migrations using imapc where some of the remote folder names may not have been accessible. - dsync: doveadm sync + imapc doesn't always sync all mails when doing an incremental sync (-1), which could lead to mail loss when it's used for migration. This happens only when GUIDs aren't used (i.e. imapc without imapc_features=guid-forced). - fts-tika: When tika server returns error, some mails cause Panic: file message-parser.c: line 802 (message_parser_deinit_from_parts): assertion failed: (ctx->nested_parts_count == 0 || i_stream_have_bytes_left(ctx->input)) - lib-imap: imapc parsing illegal BODYSTRUCTUREs with NILs could have resulted in crashes. This exposed that Dovecot was wrongly accepting atoms in "nstring" handling. Changed the IMAP parsing to be more strict about this now. - lib-index: If dovecot.index.cache has corrupted message size, fetching BODY/BODYSTRUCTURE may cause assert-crash: Panic: file index-mail.c: line 1140 (index_mail_parse_body_finish): assertion failed: (mail->data.parts != NULL). - lib-index: Minor error handling and race condition fixes related to rotating dovecot.index.log. These didn't usually cause problems, unless the log files were rotated rapidly. - lib-lua: Lua scripts using coroutines or lua libraries using coroutines (e.g., cqueues) panicked. - Message PREVIEW handled whitespace wrong so first space would get eaten from between words. - FTS and message PREVIEW (snippet) parsed HTML &entities case-sensitively. - lib-mail: When max nested MIME parts were reached, IMAP BODYSTRUCTURE was written in a way that may have caused confusion for IMAP clients and also Dovecot itself when parsing it. The truncated part is now written out using application/octet-stream MIME type. - lib-oauth2: HS512 and HS384 JWT token algorithms crash when you try to use them: Panic: file hmac.c: line 26 (hmac_init): assertion failed: (meth->context_size <= MAC_MAX_CONTEXT_SIZE). - event filters: NOT keyword did not have the correct associativity. - Ignore ECONNRESET when closing socket. This avoids logging useless errors on systems like FreeBSD. - event filters: event filter syntax error may lead to Panic: file event-filter.c: line 137 (event_filter_parse): assertion failed: (state.output == NULL) - lib: timeval_cmp_margin() was broken on 32-bit systems. This could potentially have caused HTTP timeouts to be handled incorrectly. - log: instance_name wasn't used as syslog ident by the log process. - master: After a service reached process_limit and client_limit, it could have taken up to 1 second to realize that more client connections became available. During this time client connections could have been unnecessarily rejected and a warning logged: Warning: service(...): process_limit (...) reached, client connections are being dropped - stats: Crash would occur when generating openmetrics data for metrics using aggregating functions. - stats: Event filters comparing against empty strings crash the stats process. * CVE-2020-24386: Specially crafted command can cause IMAP hibernate to allow logged in user to access other people's emails and filesystem information. * Metric filter and global event filter variable syntax changed to a SQL-like format. See https://doc.dovecot.org/configuration_manual/event_filter/ * auth: Added new aliases for %{variables}. Usage of the old ones is possible, but discouraged. * auth: Removed RPA auth mechanism, SKEY auth mechanism, NTLM auth mechanism and related password schemes. * auth: Removed passdb-sia, passdb-vpopmail and userdb-vpopmail. * auth: Removed postfix postmap socket + auth: Added new fields for auth server events. These fields are now also available for all auth events. See https://doc.dovecot.org/admin_manual/list_of_events/#authentication-server for details. + imap-hibernate: Added imap_client_hibernated, imap_client_unhibernated and imap_client_unhibernate_retried events. See https://doc.dovecot.org/admin_manual/list_of_events/ for details. + lib-index: Added new mail_index_recreated event. See https://doc.dovecot.org/admin_manual/list_of_events/#mail-index-recreated + lib-sql: Support TLS options for cassandra driver. This requires cpp-driver v2.15 (or later) to work reliably. + lib-storage: Missing $HasAttachment / $HasNoAttachment flags are now added to existing mails if mail_attachment_detection_option=add-flags and it can be done inexpensively. + login proxy: Added login_proxy_max_reconnects setting (default 3) to control how many reconnections are attempted. + login proxy: imap/pop3/submission/managesieve proxying now supports reconnection retrying on more than just connect() failure. Any error except a non-temporary authentication failure will result in reconnect attempts. - auth: Lua passdb/userdb leaks stack elements per call, eventually causing the stack to become too deep and crashing the auth or auth-worker process. - auth: SASL authentication PLAIN mechanism could be used to trigger read buffer overflow. However, this doesn't seem to be exploitable in any way. - auth: v2.3.11 regression: GSSAPI authentication fails because dovecot disallows NUL bytes for it. - dict: Process used too much CPU when iterating keys, because each key used a separate write() syscall. - doveadm-server: Crash could occur if logging was done outside command handling. For example http-client could have done debug logging afterwards, resulting in either segfault or Panic: file http-client.c: line 642 (http_client_context_close): assertion failed: (cctx->clients_list == NULL). - doveadm-server: v2.3.11 regression: Trying to connect to doveadm server process via starttls assert-crashed if there were no ssl=yes listeners: Panic: file master-service-ssl.c: line 22 (master_service_ssl_init): assertion failed: (service->ssl_ctx_initialized). - fts-solr: HTTP requests may have assert-crashed: Panic: file http-client-request.c: line 1232 (http_client_request_send_more): assertion failed: (req->payload_input != NULL) - imap: IMAP NOTIFY could crash with a segmentation fault due to a bad configuration that causes errors. Sending the error responses to the client can cause the segmentation fault. This can for example happen when several namespaces use the same mail storage location. - imap: IMAP NOTIFY used on a shared namespace that doesn't actually exist (e.g. public namespace for a nonexistent user) can crash with a panic: Panic: Leaked view for index /tmp/home/asdf/mdbox/dovecot.list.index: Opened in (null):0 - imap: IMAP session can crash with QRESYNC extension if many changes are done before asking for expunged mails since last sync. - imap: Process might hang indefinitely if client disconnects after sending some long-running commands pipelined, for example FETCH+LOGOUT. - lib-compress: Mitigate crashes when configuring a not compiled in compression. Errors with compression configuration now distinguish between not supported and unknown. - lib-compression: Using xz/lzma compression in v2.3.11 could have written truncated output in some situations. This would result in "Broken pipe" read errors when trying to read it back. - lib-compression: zstd compression could have crashed in some situations: Panic: file ostream.c: line 287 (o_stream_sendv_int): assertion failed: (!stream->blocking) - lib-dict: dict client could have crashed in some rare situations when iterating keys. - lib-http: Fix several assert-crashes in HTTP client. - lib-index: v2.3.11 regression: When mails were expunged at the same time as lots of new content was being saved to the cache (e.g. cache file was lost and is being re-filled) a deadlock could occur with dovecot.index.cache / dovecot.index.log. - lib-index: v2.3.11 regression: dovecot.index.cache file was being purged (rewritten) too often when it had a field that hadn't been accessed for over 1 month, but less than 2 months. Every cache file change caused a purging in this situation. - lib-mail: MIME parts were not returned correctly by Dovecot MIME parser. Regression caused by fixing CVE-2020-12100. - lib-mail: When max nested MIME parts were reached, IMAP BODYSTRUCTURE was written in a way that may have caused confusion for both IMAP clients and Dovecot itself when parsing it. The truncated part is now written out using application/octet-stream MIME type. - lib-mail: v2.3.11 regression: Mail delivery / parsing crashed when the 10000th MIME part was message/rfc822 (or if parent was multipart/digest): Panic: file message-parser.c: line 167 (message_part_append): assertion failed: (ctx->total_parts_count <= ctx->max_total_mime_parts). - lib-oauth2: Dovecot incorrectly required oauth2 server introspection reply to contain username with invalid token. - lib-ssl-iostream, lib-dcrypt: Fix building with OpenSSL that has deprecated APIs disabled. - lib-storage: When mail's size is different from the cached one (in dovecot.index.cache or Maildir S=size in the filename), this is handled by logging "Cached message size smaller/larger than expected" error. However, in some situations this also ended up crashing with: Panic: file istream.c: line 315 (i_stream_read_memarea): assertion failed: (old_size <= _stream->pos - _stream->skip). - lib-storage: v2.3 regression: Copying/moving mails was taking much more memory than before. This was mainly visible when copying/moving thousands of mails in a single transaction. - lib-storage: v2.3.11 regression: Searching messages assert-crashed (without FTS): Panic: file message-parser.c: line 174 (message_part_finish): assertion failed: (ctx->nested_parts_count > 0). - lib: Dovecot v2.3 moved signal handlers around in ioloops, causing more CPU usage than in v2.2. - lib: Fixed JSON parsing: '\' escape sequence may have wrongly resulted in error if it happened to be at read boundary. Any NUL characters and '\u0000' will now result in parsing error instead of silently truncating the data. - lmtp, submission: Server may hang if SSL client connection disconnects during the delivery. If this happened repeated, it could have ended up reaching process_limit and preventing any further lmtp/submission deliveries. - lmtp: Proxy does not always properly log TLS connection problems as errors; in some cases, only a debug message is logged if enabled. - lmtp: The LMTP service can hang when commands are pipelined. This can particularly occur when one command in the middle of the pipeline fails. One example of this occurs for proxied LMTP transactions in which the final DATA or BDAT command is pipelined after a failing RCPT command. - login-proxy: The login_source_ips setting has no effect, and therefore the proxy source IPs are not cycled through as they should be. - master: Process was using 100% CPU in some situations when a broken service was being throttled. - pop3-login: POP3 login would fail with "Input buffer full" if the initial response for SASL was too long. - stats: Crash would occur when generating openmetrics data for metrics using aggregating functions. Update pigeonhole to version 0.5.15 * CVE-2020-28200: Sieve interpreter is not protected against abusive scripts that claim excessive resource usage. Fixed by limiting the user CPU time per single script execution and cumulatively over several script runs within a configurable timeout period. Sufficiently large CPU time usage is summed in the Sieve script binary and execution is blocked when the sum exceeds the limit within that time. The block is lifted when the script is updated after the resource usage times out. (bsc#1187420) Attacker can DoS the mail delivery system (jsc#PM-2746) ECO: Dovecot 2.3.15 version upgrade * Disconnection log messages are now more standardized across services. They also always now start with "Disconnected" prefix. * managesieve: Commands pipelined together with and just after the authenticate command cause these commands to be executed twice. * duplicate: The test was handled badly in a multiscript (sieve_before, sieve_after) scenario in which an earlier script in the sequence with a duplicate test succeeded, while a later script caused a runtime failure. In that case, the message is recorded for duplicate tracking, while the message may not actually have been delivered in the end. * editheader: Sieve interpreter entered infinite loop at startup when the "editheader" configuration listed an invalid header name. This problem can only be triggered by the administrator. * relational: The Sieve relational extension can cause a segfault at compile time. This is triggered by invalid script syntax. The segfault happens when this match type is the last argument of the test command. This situation is not possible in a valid script; positional arguments are normally present after that, which would prevent the segfault. * sieve: For some Sieve commands the provided mailbox name is not properly checked for UTF-8 validity, which can cause assert crashes at runtime when an invalid mailbox name is encountered. This can be caused by the user by writing a bad Sieve script involving the affected commands ("mailboxexists", "specialuse_exists"). This can be triggered by the remote sender only when the user has written a Sieve script that passes message content to one of the affected commands. * sieve: Large sequences of 8-bit octets passed to certain Sieve commands that create or modify message headers that allow UTF-8 text (vacation, notify and addheader) can cause the delivery or IMAP process (when IMAPSieve is used) to enter a memory-consuming semi-infinite loop that ends when the process exceeds its memory limits. Logged in users can cause these hangs only for their own processes. dovecot23-2.3.15-58.3.src.rpm dovecot23-2.3.15-58.3.x86_64.rpm dovecot23-backend-mysql-2.3.15-58.3.x86_64.rpm dovecot23-backend-pgsql-2.3.15-58.3.x86_64.rpm dovecot23-backend-sqlite-2.3.15-58.3.x86_64.rpm dovecot23-devel-2.3.15-58.3.x86_64.rpm dovecot23-fts-2.3.15-58.3.x86_64.rpm dovecot23-fts-lucene-2.3.15-58.3.x86_64.rpm dovecot23-fts-solr-2.3.15-58.3.x86_64.rpm dovecot23-fts-squat-2.3.15-58.3.x86_64.rpm dovecot23-2.3.15-58.3.s390x.rpm dovecot23-backend-mysql-2.3.15-58.3.s390x.rpm dovecot23-backend-pgsql-2.3.15-58.3.s390x.rpm dovecot23-backend-sqlite-2.3.15-58.3.s390x.rpm dovecot23-devel-2.3.15-58.3.s390x.rpm dovecot23-fts-2.3.15-58.3.s390x.rpm dovecot23-fts-lucene-2.3.15-58.3.s390x.rpm dovecot23-fts-solr-2.3.15-58.3.s390x.rpm dovecot23-fts-squat-2.3.15-58.3.s390x.rpm dovecot23-2.3.15-58.3.ppc64le.rpm dovecot23-backend-mysql-2.3.15-58.3.ppc64le.rpm dovecot23-backend-pgsql-2.3.15-58.3.ppc64le.rpm dovecot23-backend-sqlite-2.3.15-58.3.ppc64le.rpm dovecot23-devel-2.3.15-58.3.ppc64le.rpm dovecot23-fts-2.3.15-58.3.ppc64le.rpm dovecot23-fts-lucene-2.3.15-58.3.ppc64le.rpm dovecot23-fts-solr-2.3.15-58.3.ppc64le.rpm dovecot23-fts-squat-2.3.15-58.3.ppc64le.rpm dovecot23-2.3.15-58.3.aarch64.rpm dovecot23-backend-mysql-2.3.15-58.3.aarch64.rpm dovecot23-backend-pgsql-2.3.15-58.3.aarch64.rpm dovecot23-backend-sqlite-2.3.15-58.3.aarch64.rpm dovecot23-devel-2.3.15-58.3.aarch64.rpm dovecot23-fts-2.3.15-58.3.aarch64.rpm dovecot23-fts-lucene-2.3.15-58.3.aarch64.rpm dovecot23-fts-solr-2.3.15-58.3.aarch64.rpm dovecot23-fts-squat-2.3.15-58.3.aarch64.rpm openSUSE-SLE-15.3-2021-2602 moderate SUSE Updates openSUSE-SLE 15.3 This update for amazon-ecs-init fixes the following issues: - Update to version 1.53.0-1 (bsc#1187662) * Cache Agent version 1.53.0 - from version 1.52.2-2 * Cache Agent version 1.52.2 * ecs-anywhere-install: fix incorrect download url when running in cn region - from version 1.52.2-1 * Cache Agent version 1.52.2 * ecs-anywhere-install: remove dependency on gpg key server * ecs-anywhere-install: allow sandboxed apt installations amazon-ecs-init-1.53.0-4.11.1.src.rpm amazon-ecs-init-1.53.0-4.11.1.x86_64.rpm amazon-ecs-init-1.53.0-4.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3013 moderate SUSE Updates openSUSE-SLE 15.3 This update for patterns-base, patterns-server-enterprise, sles15-image fixes the following issues: - Add pattern to install necessary packages for FIPS (bsc#1183154) - Add patterns-base-fips to work also in FIPS environments (bsc#1183154) - Use the same icon in the fips pattern as the previous pattern had (bsc#1189550) patterns-base-20200124-10.5.1.src.rpm patterns-base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-apparmor-20200124-10.5.1.x86_64.rpm patterns-base-apparmor-32bit-20200124-10.5.1.x86_64.rpm patterns-base-base-20200124-10.5.1.x86_64.rpm patterns-base-base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-basesystem-20200124-10.5.1.x86_64.rpm patterns-base-basic_desktop-20200124-10.5.1.x86_64.rpm patterns-base-documentation-20200124-10.5.1.x86_64.rpm patterns-base-enhanced_base-20200124-10.5.1.x86_64.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-fips-20200124-10.5.1.x86_64.rpm patterns-base-minimal_base-20200124-10.5.1.x86_64.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-sw_management-20200124-10.5.1.x86_64.rpm patterns-base-sw_management-32bit-20200124-10.5.1.x86_64.rpm patterns-base-transactional_base-20200124-10.5.1.x86_64.rpm patterns-base-x11-20200124-10.5.1.x86_64.rpm patterns-base-x11-32bit-20200124-10.5.1.x86_64.rpm patterns-base-x11_enhanced-20200124-10.5.1.x86_64.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.x86_64.rpm patterns-base-apparmor-20200124-10.5.1.s390x.rpm patterns-base-apparmor-32bit-20200124-10.5.1.s390x.rpm patterns-base-base-20200124-10.5.1.s390x.rpm patterns-base-base-32bit-20200124-10.5.1.s390x.rpm patterns-base-basesystem-20200124-10.5.1.s390x.rpm patterns-base-basic_desktop-20200124-10.5.1.s390x.rpm patterns-base-documentation-20200124-10.5.1.s390x.rpm patterns-base-enhanced_base-20200124-10.5.1.s390x.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.s390x.rpm patterns-base-fips-20200124-10.5.1.s390x.rpm patterns-base-minimal_base-20200124-10.5.1.s390x.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.s390x.rpm patterns-base-sw_management-20200124-10.5.1.s390x.rpm patterns-base-sw_management-32bit-20200124-10.5.1.s390x.rpm patterns-base-transactional_base-20200124-10.5.1.s390x.rpm patterns-base-x11-20200124-10.5.1.s390x.rpm patterns-base-x11-32bit-20200124-10.5.1.s390x.rpm patterns-base-x11_enhanced-20200124-10.5.1.s390x.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.s390x.rpm patterns-base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-apparmor-20200124-10.5.1.ppc64le.rpm patterns-base-apparmor-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-base-20200124-10.5.1.ppc64le.rpm patterns-base-base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-basesystem-20200124-10.5.1.ppc64le.rpm patterns-base-basic_desktop-20200124-10.5.1.ppc64le.rpm patterns-base-documentation-20200124-10.5.1.ppc64le.rpm patterns-base-enhanced_base-20200124-10.5.1.ppc64le.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-fips-20200124-10.5.1.ppc64le.rpm patterns-base-minimal_base-20200124-10.5.1.ppc64le.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-sw_management-20200124-10.5.1.ppc64le.rpm patterns-base-sw_management-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-transactional_base-20200124-10.5.1.ppc64le.rpm patterns-base-x11-20200124-10.5.1.ppc64le.rpm patterns-base-x11-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-x11_enhanced-20200124-10.5.1.ppc64le.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-apparmor-20200124-10.5.1.aarch64.rpm patterns-base-apparmor-32bit-20200124-10.5.1.aarch64.rpm patterns-base-base-20200124-10.5.1.aarch64.rpm patterns-base-base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-basesystem-20200124-10.5.1.aarch64.rpm patterns-base-basic_desktop-20200124-10.5.1.aarch64.rpm patterns-base-documentation-20200124-10.5.1.aarch64.rpm patterns-base-enhanced_base-20200124-10.5.1.aarch64.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-fips-20200124-10.5.1.aarch64.rpm patterns-base-minimal_base-20200124-10.5.1.aarch64.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-sw_management-20200124-10.5.1.aarch64.rpm patterns-base-sw_management-32bit-20200124-10.5.1.aarch64.rpm patterns-base-transactional_base-20200124-10.5.1.aarch64.rpm patterns-base-x11-20200124-10.5.1.aarch64.rpm patterns-base-x11-32bit-20200124-10.5.1.aarch64.rpm patterns-base-x11_enhanced-20200124-10.5.1.aarch64.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.aarch64.rpm patterns-base-x11_raspberrypi-20200124-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2688 moderate SUSE Updates openSUSE-SLE 15.3 This update for patterns-base, patterns-server-enterprise, sles15-image fixes the following issues: - Add pattern to install necessary packages for FIPS (bsc#1183154) - Add patterns-base-fips to work also in FIPS environments (bsc#1183154) patterns-server-enterprise-20171206-12.6.1.src.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-hwcrypto-20171206-12.6.1.s390x.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.s390x.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.s390x.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.s390x.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.s390x.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.aarch64.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.aarch64.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.aarch64.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2575 moderate SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21705 [bsc#1188037]: SSRF bypass in FILTER_VALIDATE_URL php7-7.2.5-4.76.5.src.rpm php7-pear-Archive_Tar-7.2.5-4.76.5.noarch.rpm php7-wddx-7.2.5-4.76.5.x86_64.rpm php7-wddx-7.2.5-4.76.5.s390x.rpm php7-wddx-7.2.5-4.76.5.ppc64le.rpm php7-wddx-7.2.5-4.76.5.aarch64.rpm openSUSE-SLE-15.3-2021-2637 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21704: Fixed security issues in pdo_firebase module (bsc#1188035). - CVE-2021-21705: Fixed SSRF bypass in FILTER_VALIDATE_URL (bsc#1188037). apache2-mod_php7-7.4.6-3.22.1.x86_64.rpm php7-7.4.6-3.22.1.src.rpm php7-7.4.6-3.22.1.x86_64.rpm php7-bcmath-7.4.6-3.22.1.x86_64.rpm php7-bz2-7.4.6-3.22.1.x86_64.rpm php7-calendar-7.4.6-3.22.1.x86_64.rpm php7-ctype-7.4.6-3.22.1.x86_64.rpm php7-curl-7.4.6-3.22.1.x86_64.rpm php7-dba-7.4.6-3.22.1.x86_64.rpm php7-devel-7.4.6-3.22.1.x86_64.rpm php7-dom-7.4.6-3.22.1.x86_64.rpm php7-embed-7.4.6-3.22.1.x86_64.rpm php7-enchant-7.4.6-3.22.1.x86_64.rpm php7-exif-7.4.6-3.22.1.x86_64.rpm php7-fastcgi-7.4.6-3.22.1.x86_64.rpm php7-fileinfo-7.4.6-3.22.1.x86_64.rpm php7-firebird-7.4.6-3.22.1.x86_64.rpm php7-fpm-7.4.6-3.22.1.x86_64.rpm php7-ftp-7.4.6-3.22.1.x86_64.rpm php7-gd-7.4.6-3.22.1.x86_64.rpm php7-gettext-7.4.6-3.22.1.x86_64.rpm php7-gmp-7.4.6-3.22.1.x86_64.rpm php7-iconv-7.4.6-3.22.1.x86_64.rpm php7-intl-7.4.6-3.22.1.x86_64.rpm php7-json-7.4.6-3.22.1.x86_64.rpm php7-ldap-7.4.6-3.22.1.x86_64.rpm php7-mbstring-7.4.6-3.22.1.x86_64.rpm php7-mysql-7.4.6-3.22.1.x86_64.rpm php7-odbc-7.4.6-3.22.1.x86_64.rpm php7-opcache-7.4.6-3.22.1.x86_64.rpm php7-openssl-7.4.6-3.22.1.x86_64.rpm php7-pcntl-7.4.6-3.22.1.x86_64.rpm php7-pdo-7.4.6-3.22.1.x86_64.rpm php7-pgsql-7.4.6-3.22.1.x86_64.rpm php7-phar-7.4.6-3.22.1.x86_64.rpm php7-posix-7.4.6-3.22.1.x86_64.rpm php7-readline-7.4.6-3.22.1.x86_64.rpm php7-shmop-7.4.6-3.22.1.x86_64.rpm php7-snmp-7.4.6-3.22.1.x86_64.rpm php7-soap-7.4.6-3.22.1.x86_64.rpm php7-sockets-7.4.6-3.22.1.x86_64.rpm php7-sodium-7.4.6-3.22.1.x86_64.rpm php7-sqlite-7.4.6-3.22.1.x86_64.rpm php7-sysvmsg-7.4.6-3.22.1.x86_64.rpm php7-sysvsem-7.4.6-3.22.1.x86_64.rpm php7-sysvshm-7.4.6-3.22.1.x86_64.rpm php7-tidy-7.4.6-3.22.1.x86_64.rpm php7-tokenizer-7.4.6-3.22.1.x86_64.rpm php7-xmlreader-7.4.6-3.22.1.x86_64.rpm php7-xmlrpc-7.4.6-3.22.1.x86_64.rpm php7-xmlwriter-7.4.6-3.22.1.x86_64.rpm php7-xsl-7.4.6-3.22.1.x86_64.rpm php7-zip-7.4.6-3.22.1.x86_64.rpm php7-zlib-7.4.6-3.22.1.x86_64.rpm apache2-mod_php7-7.4.6-3.22.1.s390x.rpm php7-7.4.6-3.22.1.s390x.rpm php7-bcmath-7.4.6-3.22.1.s390x.rpm php7-bz2-7.4.6-3.22.1.s390x.rpm php7-calendar-7.4.6-3.22.1.s390x.rpm php7-ctype-7.4.6-3.22.1.s390x.rpm php7-curl-7.4.6-3.22.1.s390x.rpm php7-dba-7.4.6-3.22.1.s390x.rpm php7-devel-7.4.6-3.22.1.s390x.rpm php7-dom-7.4.6-3.22.1.s390x.rpm php7-embed-7.4.6-3.22.1.s390x.rpm php7-enchant-7.4.6-3.22.1.s390x.rpm php7-exif-7.4.6-3.22.1.s390x.rpm php7-fastcgi-7.4.6-3.22.1.s390x.rpm php7-fileinfo-7.4.6-3.22.1.s390x.rpm php7-firebird-7.4.6-3.22.1.s390x.rpm php7-fpm-7.4.6-3.22.1.s390x.rpm php7-ftp-7.4.6-3.22.1.s390x.rpm php7-gd-7.4.6-3.22.1.s390x.rpm php7-gettext-7.4.6-3.22.1.s390x.rpm php7-gmp-7.4.6-3.22.1.s390x.rpm php7-iconv-7.4.6-3.22.1.s390x.rpm php7-intl-7.4.6-3.22.1.s390x.rpm php7-json-7.4.6-3.22.1.s390x.rpm php7-ldap-7.4.6-3.22.1.s390x.rpm php7-mbstring-7.4.6-3.22.1.s390x.rpm php7-mysql-7.4.6-3.22.1.s390x.rpm php7-odbc-7.4.6-3.22.1.s390x.rpm php7-opcache-7.4.6-3.22.1.s390x.rpm php7-openssl-7.4.6-3.22.1.s390x.rpm php7-pcntl-7.4.6-3.22.1.s390x.rpm php7-pdo-7.4.6-3.22.1.s390x.rpm php7-pgsql-7.4.6-3.22.1.s390x.rpm php7-phar-7.4.6-3.22.1.s390x.rpm php7-posix-7.4.6-3.22.1.s390x.rpm php7-readline-7.4.6-3.22.1.s390x.rpm php7-shmop-7.4.6-3.22.1.s390x.rpm php7-snmp-7.4.6-3.22.1.s390x.rpm php7-soap-7.4.6-3.22.1.s390x.rpm php7-sockets-7.4.6-3.22.1.s390x.rpm php7-sodium-7.4.6-3.22.1.s390x.rpm php7-sqlite-7.4.6-3.22.1.s390x.rpm php7-sysvmsg-7.4.6-3.22.1.s390x.rpm php7-sysvsem-7.4.6-3.22.1.s390x.rpm php7-sysvshm-7.4.6-3.22.1.s390x.rpm php7-tidy-7.4.6-3.22.1.s390x.rpm php7-tokenizer-7.4.6-3.22.1.s390x.rpm php7-xmlreader-7.4.6-3.22.1.s390x.rpm php7-xmlrpc-7.4.6-3.22.1.s390x.rpm php7-xmlwriter-7.4.6-3.22.1.s390x.rpm php7-xsl-7.4.6-3.22.1.s390x.rpm php7-zip-7.4.6-3.22.1.s390x.rpm php7-zlib-7.4.6-3.22.1.s390x.rpm apache2-mod_php7-7.4.6-3.22.1.ppc64le.rpm php7-7.4.6-3.22.1.ppc64le.rpm php7-bcmath-7.4.6-3.22.1.ppc64le.rpm php7-bz2-7.4.6-3.22.1.ppc64le.rpm php7-calendar-7.4.6-3.22.1.ppc64le.rpm php7-ctype-7.4.6-3.22.1.ppc64le.rpm php7-curl-7.4.6-3.22.1.ppc64le.rpm php7-dba-7.4.6-3.22.1.ppc64le.rpm php7-devel-7.4.6-3.22.1.ppc64le.rpm php7-dom-7.4.6-3.22.1.ppc64le.rpm php7-embed-7.4.6-3.22.1.ppc64le.rpm php7-enchant-7.4.6-3.22.1.ppc64le.rpm php7-exif-7.4.6-3.22.1.ppc64le.rpm php7-fastcgi-7.4.6-3.22.1.ppc64le.rpm php7-fileinfo-7.4.6-3.22.1.ppc64le.rpm php7-firebird-7.4.6-3.22.1.ppc64le.rpm php7-fpm-7.4.6-3.22.1.ppc64le.rpm php7-ftp-7.4.6-3.22.1.ppc64le.rpm php7-gd-7.4.6-3.22.1.ppc64le.rpm php7-gettext-7.4.6-3.22.1.ppc64le.rpm php7-gmp-7.4.6-3.22.1.ppc64le.rpm php7-iconv-7.4.6-3.22.1.ppc64le.rpm php7-intl-7.4.6-3.22.1.ppc64le.rpm php7-json-7.4.6-3.22.1.ppc64le.rpm php7-ldap-7.4.6-3.22.1.ppc64le.rpm php7-mbstring-7.4.6-3.22.1.ppc64le.rpm php7-mysql-7.4.6-3.22.1.ppc64le.rpm php7-odbc-7.4.6-3.22.1.ppc64le.rpm php7-opcache-7.4.6-3.22.1.ppc64le.rpm php7-openssl-7.4.6-3.22.1.ppc64le.rpm php7-pcntl-7.4.6-3.22.1.ppc64le.rpm php7-pdo-7.4.6-3.22.1.ppc64le.rpm php7-pgsql-7.4.6-3.22.1.ppc64le.rpm php7-phar-7.4.6-3.22.1.ppc64le.rpm php7-posix-7.4.6-3.22.1.ppc64le.rpm php7-readline-7.4.6-3.22.1.ppc64le.rpm php7-shmop-7.4.6-3.22.1.ppc64le.rpm php7-snmp-7.4.6-3.22.1.ppc64le.rpm php7-soap-7.4.6-3.22.1.ppc64le.rpm php7-sockets-7.4.6-3.22.1.ppc64le.rpm php7-sodium-7.4.6-3.22.1.ppc64le.rpm php7-sqlite-7.4.6-3.22.1.ppc64le.rpm php7-sysvmsg-7.4.6-3.22.1.ppc64le.rpm php7-sysvsem-7.4.6-3.22.1.ppc64le.rpm php7-sysvshm-7.4.6-3.22.1.ppc64le.rpm php7-tidy-7.4.6-3.22.1.ppc64le.rpm php7-tokenizer-7.4.6-3.22.1.ppc64le.rpm php7-xmlreader-7.4.6-3.22.1.ppc64le.rpm php7-xmlrpc-7.4.6-3.22.1.ppc64le.rpm php7-xmlwriter-7.4.6-3.22.1.ppc64le.rpm php7-xsl-7.4.6-3.22.1.ppc64le.rpm php7-zip-7.4.6-3.22.1.ppc64le.rpm php7-zlib-7.4.6-3.22.1.ppc64le.rpm apache2-mod_php7-7.4.6-3.22.1.aarch64.rpm php7-7.4.6-3.22.1.aarch64.rpm php7-bcmath-7.4.6-3.22.1.aarch64.rpm php7-bz2-7.4.6-3.22.1.aarch64.rpm php7-calendar-7.4.6-3.22.1.aarch64.rpm php7-ctype-7.4.6-3.22.1.aarch64.rpm php7-curl-7.4.6-3.22.1.aarch64.rpm php7-dba-7.4.6-3.22.1.aarch64.rpm php7-devel-7.4.6-3.22.1.aarch64.rpm php7-dom-7.4.6-3.22.1.aarch64.rpm php7-embed-7.4.6-3.22.1.aarch64.rpm php7-enchant-7.4.6-3.22.1.aarch64.rpm php7-exif-7.4.6-3.22.1.aarch64.rpm php7-fastcgi-7.4.6-3.22.1.aarch64.rpm php7-fileinfo-7.4.6-3.22.1.aarch64.rpm php7-firebird-7.4.6-3.22.1.aarch64.rpm php7-fpm-7.4.6-3.22.1.aarch64.rpm php7-ftp-7.4.6-3.22.1.aarch64.rpm php7-gd-7.4.6-3.22.1.aarch64.rpm php7-gettext-7.4.6-3.22.1.aarch64.rpm php7-gmp-7.4.6-3.22.1.aarch64.rpm php7-iconv-7.4.6-3.22.1.aarch64.rpm php7-intl-7.4.6-3.22.1.aarch64.rpm php7-json-7.4.6-3.22.1.aarch64.rpm php7-ldap-7.4.6-3.22.1.aarch64.rpm php7-mbstring-7.4.6-3.22.1.aarch64.rpm php7-mysql-7.4.6-3.22.1.aarch64.rpm php7-odbc-7.4.6-3.22.1.aarch64.rpm php7-opcache-7.4.6-3.22.1.aarch64.rpm php7-openssl-7.4.6-3.22.1.aarch64.rpm php7-pcntl-7.4.6-3.22.1.aarch64.rpm php7-pdo-7.4.6-3.22.1.aarch64.rpm php7-pgsql-7.4.6-3.22.1.aarch64.rpm php7-phar-7.4.6-3.22.1.aarch64.rpm php7-posix-7.4.6-3.22.1.aarch64.rpm php7-readline-7.4.6-3.22.1.aarch64.rpm php7-shmop-7.4.6-3.22.1.aarch64.rpm php7-snmp-7.4.6-3.22.1.aarch64.rpm php7-soap-7.4.6-3.22.1.aarch64.rpm php7-sockets-7.4.6-3.22.1.aarch64.rpm php7-sodium-7.4.6-3.22.1.aarch64.rpm php7-sqlite-7.4.6-3.22.1.aarch64.rpm php7-sysvmsg-7.4.6-3.22.1.aarch64.rpm php7-sysvsem-7.4.6-3.22.1.aarch64.rpm php7-sysvshm-7.4.6-3.22.1.aarch64.rpm php7-tidy-7.4.6-3.22.1.aarch64.rpm php7-tokenizer-7.4.6-3.22.1.aarch64.rpm php7-xmlreader-7.4.6-3.22.1.aarch64.rpm php7-xmlrpc-7.4.6-3.22.1.aarch64.rpm php7-xmlwriter-7.4.6-3.22.1.aarch64.rpm php7-xsl-7.4.6-3.22.1.aarch64.rpm php7-zip-7.4.6-3.22.1.aarch64.rpm php7-zlib-7.4.6-3.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-2447 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issue: - Version 0.349: Updated pci, usb and vendor ids (bsc#1187948). hwdata-0.349-3.24.1.noarch.rpm hwdata-0.349-3.24.1.src.rpm openSUSE-SLE-15.3-2021-2354 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: Update nodejs14 to 14.17.2. Including fixes for: - CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973) - CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976) - CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977) - CVE-2020-7774: y18n Prototype Pollution (bsc#1184450) nodejs14-14.17.2-5.12.1.src.rpm nodejs14-14.17.2-5.12.1.x86_64.rpm nodejs14-devel-14.17.2-5.12.1.x86_64.rpm nodejs14-docs-14.17.2-5.12.1.noarch.rpm npm14-14.17.2-5.12.1.x86_64.rpm nodejs14-14.17.2-5.12.1.s390x.rpm nodejs14-devel-14.17.2-5.12.1.s390x.rpm npm14-14.17.2-5.12.1.s390x.rpm nodejs14-14.17.2-5.12.1.ppc64le.rpm nodejs14-devel-14.17.2-5.12.1.ppc64le.rpm npm14-14.17.2-5.12.1.ppc64le.rpm nodejs14-14.17.2-5.12.1.aarch64.rpm nodejs14-devel-14.17.2-5.12.1.aarch64.rpm npm14-14.17.2-5.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2353 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs10 fixes the following issues: Update nodejs10 to 10.24.1. Including fixes for - CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973) - CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976) - CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977) - CVE-2020-7774: y18n Prototype Pollution (bsc#1184450) - CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851) - CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852) - reduce memory footprint of test-worker-stdio (bsc#1183155) nodejs10-10.24.1-1.36.1.src.rpm nodejs10-10.24.1-1.36.1.x86_64.rpm nodejs10-devel-10.24.1-1.36.1.x86_64.rpm nodejs10-docs-10.24.1-1.36.1.noarch.rpm npm10-10.24.1-1.36.1.x86_64.rpm nodejs10-10.24.1-1.36.1.s390x.rpm nodejs10-devel-10.24.1-1.36.1.s390x.rpm npm10-10.24.1-1.36.1.s390x.rpm nodejs10-10.24.1-1.36.1.ppc64le.rpm nodejs10-devel-10.24.1-1.36.1.ppc64le.rpm npm10-10.24.1-1.36.1.ppc64le.rpm nodejs10-10.24.1-1.36.1.aarch64.rpm nodejs10-devel-10.24.1-1.36.1.aarch64.rpm npm10-10.24.1-1.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2404 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-33910: Fixed a denial of service in systemd via unit_name_path_escape() (bsc#1188063) - Skip udev rules if 'elevator=' is used (bsc#1184994) systemd-234-24.90.1.src.rpm True systemd-bash-completion-234-24.90.1.noarch.rpm True openSUSE-SLE-15.3-2021-2457 moderate SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: Update wireshark to 3.4.6. Including a fix for: - DVB-S2-BB dissector infinite loop (bsc#1186790). libwireshark14-3.4.6-3.56.1.x86_64.rpm libwiretap11-3.4.6-3.56.1.x86_64.rpm libwsutil12-3.4.6-3.56.1.x86_64.rpm wireshark-3.4.6-3.56.1.src.rpm wireshark-3.4.6-3.56.1.x86_64.rpm wireshark-devel-3.4.6-3.56.1.x86_64.rpm wireshark-ui-qt-3.4.6-3.56.1.x86_64.rpm libwireshark14-3.4.6-3.56.1.s390x.rpm libwiretap11-3.4.6-3.56.1.s390x.rpm libwsutil12-3.4.6-3.56.1.s390x.rpm wireshark-3.4.6-3.56.1.s390x.rpm wireshark-devel-3.4.6-3.56.1.s390x.rpm wireshark-ui-qt-3.4.6-3.56.1.s390x.rpm libwireshark14-3.4.6-3.56.1.ppc64le.rpm libwiretap11-3.4.6-3.56.1.ppc64le.rpm libwsutil12-3.4.6-3.56.1.ppc64le.rpm wireshark-3.4.6-3.56.1.ppc64le.rpm wireshark-devel-3.4.6-3.56.1.ppc64le.rpm wireshark-ui-qt-3.4.6-3.56.1.ppc64le.rpm libwireshark14-3.4.6-3.56.1.aarch64.rpm libwiretap11-3.4.6-3.56.1.aarch64.rpm libwsutil12-3.4.6-3.56.1.aarch64.rpm wireshark-3.4.6-3.56.1.aarch64.rpm wireshark-devel-3.4.6-3.56.1.aarch64.rpm wireshark-ui-qt-3.4.6-3.56.1.aarch64.rpm openSUSE-SLE-15.3-2021-2610 moderate SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - Bring up the members of HNV interface together with the HNV link. (bsc#1187182 ltc#192954) powerpc-utils-1.3.8-9.6.1.ppc64le.rpm powerpc-utils-1.3.8-9.6.1.src.rpm openSUSE-SLE-15.3-2021-2629 moderate SUSE Updates openSUSE-SLE 15.3 This update for libreoffice fixes the following issues: Update to version 7.1.4.2 (bsc#1178806) - Fix external URL connections issues when WebDav is built using 'libserf'. (bsc#1187173, bsc#1186871) - Fix a regression caused by "Multi column textbox in editengine". - Improve the build time on aarch64 to select only powerful buildhosts. - Fix an issue with PPTX where one column becomes two within one text frame. (bsc#1182969) libreoffice-7.1.4.2-14.22.10.1.src.rpm libreoffice-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-base-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-base-drivers-postgresql-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-branding-upstream-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-calc-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-calc-extensions-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-draw-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-filters-optional-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-gdb-pretty-printers-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-glade-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-gnome-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-gtk3-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-icon-themes-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-impress-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-l10n-af-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-am-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ar-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-as-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ast-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-be-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bg-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bn_IN-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-br-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-brx-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bs-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ca-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ca_valencia-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ckb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-cs-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-cy-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-da-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-de-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-dgo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-dsb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-dz-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-el-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-en-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-en_GB-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-en_ZA-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-eo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-es-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-et-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-eu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fa-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fi-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fur-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fy-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ga-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gd-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gug-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-he-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hi-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hsb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-id-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-is-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-it-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ja-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ka-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kab-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-km-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kmr_Latn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ko-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kok-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ks-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lt-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lv-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mai-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ml-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mni-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-my-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ne-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nso-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-oc-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-om-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-or-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pa-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pt_BR-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pt_PT-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ro-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ru-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-rw-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sa_IN-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sat-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sd-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-si-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sid-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sq-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ss-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-st-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sv-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sw_TZ-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-szl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ta-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-te-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tg-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-th-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ts-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tt-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ug-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-uk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-uz-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ve-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-vec-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-vi-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-xh-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-zh_CN-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-zh_TW-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-zu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-librelogo-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-mailmerge-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-math-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-officebean-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-pyuno-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-qt5-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-sdk-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-sdk-doc-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-writer-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-writer-extensions-7.1.4.2-14.22.10.1.x86_64.rpm libreofficekit-7.1.4.2-14.22.10.1.x86_64.rpm libreofficekit-devel-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-base-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-base-drivers-postgresql-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-calc-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-calc-extensions-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-draw-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-filters-optional-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-gnome-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-gtk3-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-impress-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-librelogo-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-mailmerge-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-math-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-officebean-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-pyuno-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-qt5-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-sdk-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-sdk-doc-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-writer-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-writer-extensions-7.1.4.2-14.22.10.1.ppc64le.rpm libreofficekit-7.1.4.2-14.22.10.1.ppc64le.rpm libreofficekit-devel-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-base-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-base-drivers-postgresql-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-calc-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-calc-extensions-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-draw-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-filters-optional-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-gnome-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-gtk3-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-impress-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-librelogo-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-mailmerge-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-math-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-officebean-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-pyuno-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-qt5-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-sdk-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-sdk-doc-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-writer-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-writer-extensions-7.1.4.2-14.22.10.1.aarch64.rpm libreofficekit-7.1.4.2-14.22.10.1.aarch64.rpm libreofficekit-devel-7.1.4.2-14.22.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3023 moderate SUSE Updates openSUSE-SLE 15.3 This update for pidgin fixes the following issue: - Add support for the 'no_proxy' environment variable. (jsc#SLE-17111) finch-2.13.0-12.3.1.x86_64.rpm finch-devel-2.13.0-12.3.1.x86_64.rpm libpurple-2.13.0-12.3.1.x86_64.rpm libpurple-branding-upstream-2.13.0-12.3.1.noarch.rpm libpurple-devel-2.13.0-12.3.1.x86_64.rpm libpurple-lang-2.13.0-12.3.1.noarch.rpm libpurple-plugin-sametime-2.13.0-12.3.1.x86_64.rpm libpurple-tcl-2.13.0-12.3.1.x86_64.rpm pidgin-2.13.0-12.3.1.src.rpm pidgin-2.13.0-12.3.1.x86_64.rpm pidgin-devel-2.13.0-12.3.1.x86_64.rpm finch-2.13.0-12.3.1.s390x.rpm finch-devel-2.13.0-12.3.1.s390x.rpm libpurple-2.13.0-12.3.1.s390x.rpm libpurple-devel-2.13.0-12.3.1.s390x.rpm libpurple-plugin-sametime-2.13.0-12.3.1.s390x.rpm libpurple-tcl-2.13.0-12.3.1.s390x.rpm pidgin-2.13.0-12.3.1.s390x.rpm pidgin-devel-2.13.0-12.3.1.s390x.rpm finch-2.13.0-12.3.1.ppc64le.rpm finch-devel-2.13.0-12.3.1.ppc64le.rpm libpurple-2.13.0-12.3.1.ppc64le.rpm libpurple-devel-2.13.0-12.3.1.ppc64le.rpm libpurple-plugin-sametime-2.13.0-12.3.1.ppc64le.rpm libpurple-tcl-2.13.0-12.3.1.ppc64le.rpm pidgin-2.13.0-12.3.1.ppc64le.rpm pidgin-devel-2.13.0-12.3.1.ppc64le.rpm finch-2.13.0-12.3.1.aarch64.rpm finch-devel-2.13.0-12.3.1.aarch64.rpm libpurple-2.13.0-12.3.1.aarch64.rpm libpurple-devel-2.13.0-12.3.1.aarch64.rpm libpurple-plugin-sametime-2.13.0-12.3.1.aarch64.rpm libpurple-tcl-2.13.0-12.3.1.aarch64.rpm pidgin-2.13.0-12.3.1.aarch64.rpm pidgin-devel-2.13.0-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2436 important SUSE Updates openSUSE-SLE 15.3 This update for libgweather fixes the following issues: - Fix memory issues backported from "gnome-3-34". - Use new 'metno' 2.0 API. The version 1.9 was deprecated and will be removed soon. (bsc#1185651) gweather-data-3.34.0-4.3.1.noarch.rpm libgweather-3-16-3.34.0-4.3.1.x86_64.rpm libgweather-3-16-32bit-3.34.0-4.3.1.x86_64.rpm libgweather-3.34.0-4.3.1.src.rpm libgweather-devel-3.34.0-4.3.1.x86_64.rpm libgweather-lang-3.34.0-4.3.1.noarch.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.x86_64.rpm libgweather-3-16-3.34.0-4.3.1.s390x.rpm libgweather-devel-3.34.0-4.3.1.s390x.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.s390x.rpm libgweather-3-16-3.34.0-4.3.1.ppc64le.rpm libgweather-devel-3.34.0-4.3.1.ppc64le.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.ppc64le.rpm libgweather-3-16-3.34.0-4.3.1.aarch64.rpm libgweather-devel-3.34.0-4.3.1.aarch64.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2772 moderate SUSE Updates openSUSE-SLE 15.3 This update for linuxrc fixes the following issues: - Read 'rules.xml' if autoyast option indicates a rules-based setup. (bsc#1187235) linuxrc-7.0.30.5-3.6.1.src.rpm linuxrc-7.0.30.5-3.6.1.x86_64.rpm linuxrc-7.0.30.5-3.6.1.s390x.rpm linuxrc-7.0.30.5-3.6.1.ppc64le.rpm linuxrc-7.0.30.5-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2791 moderate SUSE Updates openSUSE-SLE 15.3 This update for fetchmail fixes the following issues: - CVE-2021-36386: Fixed a missing variable initialization that can cause read from bad memory locations. (bsc#1188875) - Change PASSWORDLEN from 64 to 256 (bsc#1188034) fetchmail-6.3.26-20.14.1.src.rpm fetchmail-6.3.26-20.14.1.x86_64.rpm fetchmailconf-6.3.26-20.14.1.x86_64.rpm fetchmail-6.3.26-20.14.1.s390x.rpm fetchmailconf-6.3.26-20.14.1.s390x.rpm fetchmail-6.3.26-20.14.1.ppc64le.rpm fetchmailconf-6.3.26-20.14.1.ppc64le.rpm fetchmail-6.3.26-20.14.1.aarch64.rpm fetchmailconf-6.3.26-20.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-2623 moderate SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - Add 'msDS-AdditionalDnsHostName' to the keytab. (bsc#1185420) - Add 'net-ads-join dnshostname' option. (bsc#1185420) - Fix adding 'msDS-AdditionalDnsHostName' to keytab with Windows DC. (bsc#1185420) libndr0-32bit-4.11.14+git.260.32282693e40-4.22.2.x86_64.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.x86_64.rpm samba-4.11.14+git.260.32282693e40-4.22.2.src.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.s390x.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.ppc64le.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.aarch64.rpm openSUSE-SLE-15.3-2021-2392 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: go1.16.6 (released 2021-07-12, bsc#1182345) includes a security fix to the crypto/tls package, as well as bug fixes to the compiler, and the net and net/http packages. Security issue fixed: CVE-2021-34558: Fixed crypto/tls: clients can panic when provided a certificate of the wrong type for the negotiated parameters (bsc#1188229) go1.16 release: * bsc#1188229 go#47143 CVE-2021-34558 * go#47145 security: fix CVE-2021-34558 * go#46999 net: LookupMX behaviour broken * go#46981 net: TestCVE202133195 fails if /etc/resolv.conf specifies ndots larger than 3 * go#46769 syscall: TestGroupCleanupUserNamespace test failure on Fedora * go#46657 runtime: deeply nested struct initialized with non-zero values * go#44984 net/http: server not setting Content-Length in certain cases go1.16-1.16.6-1.20.1.src.rpm go1.16-1.16.6-1.20.1.x86_64.rpm go1.16-doc-1.16.6-1.20.1.x86_64.rpm go1.16-race-1.16.6-1.20.1.x86_64.rpm go1.16-1.16.6-1.20.1.s390x.rpm go1.16-doc-1.16.6-1.20.1.s390x.rpm go1.16-1.16.6-1.20.1.ppc64le.rpm go1.16-doc-1.16.6-1.20.1.ppc64le.rpm go1.16-1.16.6-1.20.1.aarch64.rpm go1.16-doc-1.16.6-1.20.1.aarch64.rpm go1.16-race-1.16.6-1.20.1.aarch64.rpm openSUSE-SLE-15.3-2021-2573 moderate SUSE Updates openSUSE-SLE 15.3 This update for timezone fixes the following issue: - From systemd v249: when enumerating time zones the timedatectl tool will now consult the 'tzdata.zi' file shipped by the IANA time zone database package, in addition to 'zone1970.tab', as before. This makes sure time zone aliases are now correctly supported. This update adds the 'tzdata.zi' file (bsc#1188127). timezone-2021a-3.47.1.src.rpm timezone-2021a-3.47.1.x86_64.rpm timezone-java-2021a-3.47.1.noarch.rpm timezone-java-2021a-3.47.1.src.rpm timezone-2021a-3.47.1.s390x.rpm timezone-2021a-3.47.1.ppc64le.rpm timezone-2021a-3.47.1.aarch64.rpm openSUSE-SLE-15.3-2021-2812 moderate SUSE Updates openSUSE-SLE 15.3 This update for libvirt fixes the following issues: Security issues fixed: - CVE-2021-3631: fix SELinux label generation logic (bsc#1187871) - CVE-2021-3667: Unlock object on ACL fail in storagePoolLookupByTargetPath (bsc#1188843) Non-security issues fixed: - virtlockd: Don't report error if lockspace exists (bsc#1184253) - Don't forcibly remove '--listen' arg from /etc/sysconfig/libvirtd. Add '--timeout 120' if '--listen' is not specified. (bsc#1188232) libvirt-7.1.0-6.5.1.src.rpm libvirt-7.1.0-6.5.1.x86_64.rpm libvirt-admin-7.1.0-6.5.1.x86_64.rpm libvirt-bash-completion-7.1.0-6.5.1.noarch.rpm libvirt-client-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-xen-7.1.0-6.5.1.x86_64.rpm libvirt-devel-32bit-7.1.0-6.5.1.x86_64.rpm libvirt-devel-7.1.0-6.5.1.x86_64.rpm libvirt-doc-7.1.0-6.5.1.noarch.rpm libvirt-libs-7.1.0-6.5.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-6.5.1.x86_64.rpm libvirt-nss-7.1.0-6.5.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.x86_64.rpm libvirt-7.1.0-6.5.1.s390x.rpm libvirt-admin-7.1.0-6.5.1.s390x.rpm libvirt-client-7.1.0-6.5.1.s390x.rpm libvirt-daemon-7.1.0-6.5.1.s390x.rpm libvirt-daemon-config-network-7.1.0-6.5.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.s390x.rpm libvirt-daemon-hooks-7.1.0-6.5.1.s390x.rpm libvirt-daemon-lxc-7.1.0-6.5.1.s390x.rpm libvirt-daemon-qemu-7.1.0-6.5.1.s390x.rpm libvirt-devel-7.1.0-6.5.1.s390x.rpm libvirt-libs-7.1.0-6.5.1.s390x.rpm libvirt-lock-sanlock-7.1.0-6.5.1.s390x.rpm libvirt-nss-7.1.0-6.5.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.s390x.rpm libvirt-7.1.0-6.5.1.ppc64le.rpm libvirt-admin-7.1.0-6.5.1.ppc64le.rpm libvirt-client-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-6.5.1.ppc64le.rpm libvirt-devel-7.1.0-6.5.1.ppc64le.rpm libvirt-libs-7.1.0-6.5.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-6.5.1.ppc64le.rpm libvirt-nss-7.1.0-6.5.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.ppc64le.rpm libvirt-7.1.0-6.5.1.aarch64.rpm libvirt-admin-7.1.0-6.5.1.aarch64.rpm libvirt-client-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-6.5.1.aarch64.rpm libvirt-devel-7.1.0-6.5.1.aarch64.rpm libvirt-libs-7.1.0-6.5.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-6.5.1.aarch64.rpm libvirt-nss-7.1.0-6.5.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2398 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.15 fixes the following issues: - go1.15.14 (released 2021-07-12) includes a security fix to the crypto/tls package, as well as bug fixes to the linker, and the net package. CVE-2021-34558 Refs bsc#1175132 go1.15 release tracking * bsc#1188229 go#47143 CVE-2021-34558 * go#47144 security: fix CVE-2021-34558 * go#47012 net: LookupMX behaviour broken * go#46994 net: TestCVE202133195 fails if /etc/resolv.conf specifies ndots larger than 3 * go#46768 syscall: TestGroupCleanupUserNamespace test failure on Fedora * go#46684 x/build/cmd/release: linux-armv6l release tests aren't passing * go#46656 runtime: deeply nested struct initialized with non-zero values - Fix extraneous trailing percent character %endif% in spec file. go1.15-1.15.14-1.36.1.src.rpm go1.15-1.15.14-1.36.1.x86_64.rpm go1.15-doc-1.15.14-1.36.1.x86_64.rpm go1.15-race-1.15.14-1.36.1.x86_64.rpm go1.15-1.15.14-1.36.1.s390x.rpm go1.15-doc-1.15.14-1.36.1.s390x.rpm go1.15-1.15.14-1.36.1.ppc64le.rpm go1.15-doc-1.15.14-1.36.1.ppc64le.rpm go1.15-1.15.14-1.36.1.aarch64.rpm go1.15-doc-1.15.14-1.36.1.aarch64.rpm go1.15-race-1.15.14-1.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-4174 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnu-compilers-hpc fixes the following issues: - Add build support for gcc11 to HPC build. (jsc#SLE-18780, jsc#SLE-18781, jsc#SLE-18782, jsc#SLE-18806) gnu-compilers-hpc-1.4-3.14.3.noarch.rpm gnu-compilers-hpc-1.4-3.14.3.src.rpm gnu-compilers-hpc-devel-1.4-3.14.3.noarch.rpm gnu-compilers-hpc-macros-devel-1.4-3.14.3.noarch.rpm gnu10-compilers-hpc-1.4-3.14.3.noarch.rpm gnu10-compilers-hpc-1.4-3.14.3.src.rpm gnu10-compilers-hpc-devel-1.4-3.14.3.noarch.rpm gnu10-compilers-hpc-macros-devel-1.4-3.14.3.noarch.rpm gnu11-compilers-hpc-1.4-3.14.2.noarch.rpm gnu11-compilers-hpc-1.4-3.14.2.src.rpm gnu11-compilers-hpc-devel-1.4-3.14.2.noarch.rpm gnu11-compilers-hpc-macros-devel-1.4-3.14.2.noarch.rpm gnu8-compilers-hpc-1.4-3.14.3.noarch.rpm gnu8-compilers-hpc-1.4-3.14.3.src.rpm gnu8-compilers-hpc-devel-1.4-3.14.3.noarch.rpm gnu8-compilers-hpc-macros-devel-1.4-3.14.3.noarch.rpm gnu9-compilers-hpc-1.4-3.14.3.noarch.rpm gnu9-compilers-hpc-1.4-3.14.3.src.rpm gnu9-compilers-hpc-devel-1.4-3.14.3.noarch.rpm gnu9-compilers-hpc-macros-devel-1.4-3.14.3.noarch.rpm openSUSE-SLE-15.3-2021-2611 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Adapt the makefile to the new 'GCP Load Balancer Resource Agent'. (bsc#1186652) ldirectord-4.8.0+git30.d0077df0-8.8.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.8.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.8.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.8.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.8.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2442 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2021-3582: Fix possible mremap overflow in the pvrdma (bsc#1187499) - CVE-2021-3607: Ensure correct input on ring init (bsc#1187539) - CVE-2021-3608: Fix the ring init error flow (bsc#1187538) - CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529) qemu-5.2.0-23.1.src.rpm qemu-5.2.0-23.1.x86_64.rpm qemu-arm-5.2.0-23.1.x86_64.rpm qemu-audio-alsa-5.2.0-23.1.x86_64.rpm qemu-audio-pa-5.2.0-23.1.x86_64.rpm qemu-audio-spice-5.2.0-23.1.x86_64.rpm qemu-block-curl-5.2.0-23.1.x86_64.rpm qemu-block-dmg-5.2.0-23.1.x86_64.rpm qemu-block-gluster-5.2.0-23.1.x86_64.rpm qemu-block-iscsi-5.2.0-23.1.x86_64.rpm qemu-block-nfs-5.2.0-23.1.x86_64.rpm qemu-block-rbd-5.2.0-23.1.x86_64.rpm qemu-block-ssh-5.2.0-23.1.x86_64.rpm qemu-chardev-baum-5.2.0-23.1.x86_64.rpm qemu-chardev-spice-5.2.0-23.1.x86_64.rpm qemu-extra-5.2.0-23.1.x86_64.rpm qemu-guest-agent-5.2.0-23.1.x86_64.rpm qemu-hw-display-qxl-5.2.0-23.1.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.x86_64.rpm qemu-hw-usb-redirect-5.2.0-23.1.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-23.1.x86_64.rpm qemu-ipxe-1.0.0+-23.1.noarch.rpm qemu-ivshmem-tools-5.2.0-23.1.x86_64.rpm qemu-ksm-5.2.0-23.1.x86_64.rpm qemu-kvm-5.2.0-23.1.x86_64.rpm qemu-lang-5.2.0-23.1.x86_64.rpm qemu-microvm-5.2.0-23.1.noarch.rpm qemu-ppc-5.2.0-23.1.x86_64.rpm qemu-s390x-5.2.0-23.1.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-23.1.noarch.rpm qemu-sgabios-8-23.1.noarch.rpm qemu-skiboot-5.2.0-23.1.noarch.rpm qemu-tools-5.2.0-23.1.x86_64.rpm qemu-ui-curses-5.2.0-23.1.x86_64.rpm qemu-ui-gtk-5.2.0-23.1.x86_64.rpm qemu-ui-opengl-5.2.0-23.1.x86_64.rpm qemu-ui-spice-app-5.2.0-23.1.x86_64.rpm qemu-ui-spice-core-5.2.0-23.1.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-23.1.noarch.rpm qemu-vhost-user-gpu-5.2.0-23.1.x86_64.rpm qemu-x86-5.2.0-23.1.x86_64.rpm qemu-5.2.0-23.1.s390x.rpm qemu-arm-5.2.0-23.1.s390x.rpm qemu-audio-alsa-5.2.0-23.1.s390x.rpm qemu-audio-pa-5.2.0-23.1.s390x.rpm qemu-audio-spice-5.2.0-23.1.s390x.rpm qemu-block-curl-5.2.0-23.1.s390x.rpm qemu-block-dmg-5.2.0-23.1.s390x.rpm qemu-block-gluster-5.2.0-23.1.s390x.rpm qemu-block-iscsi-5.2.0-23.1.s390x.rpm qemu-block-nfs-5.2.0-23.1.s390x.rpm qemu-block-rbd-5.2.0-23.1.s390x.rpm qemu-block-ssh-5.2.0-23.1.s390x.rpm qemu-chardev-baum-5.2.0-23.1.s390x.rpm qemu-chardev-spice-5.2.0-23.1.s390x.rpm qemu-extra-5.2.0-23.1.s390x.rpm qemu-guest-agent-5.2.0-23.1.s390x.rpm qemu-hw-display-qxl-5.2.0-23.1.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.s390x.rpm qemu-hw-usb-redirect-5.2.0-23.1.s390x.rpm qemu-hw-usb-smartcard-5.2.0-23.1.s390x.rpm qemu-ivshmem-tools-5.2.0-23.1.s390x.rpm qemu-ksm-5.2.0-23.1.s390x.rpm qemu-kvm-5.2.0-23.1.s390x.rpm qemu-lang-5.2.0-23.1.s390x.rpm qemu-ppc-5.2.0-23.1.s390x.rpm qemu-s390x-5.2.0-23.1.s390x.rpm qemu-tools-5.2.0-23.1.s390x.rpm qemu-ui-curses-5.2.0-23.1.s390x.rpm qemu-ui-gtk-5.2.0-23.1.s390x.rpm qemu-ui-opengl-5.2.0-23.1.s390x.rpm qemu-ui-spice-app-5.2.0-23.1.s390x.rpm qemu-ui-spice-core-5.2.0-23.1.s390x.rpm qemu-vhost-user-gpu-5.2.0-23.1.s390x.rpm qemu-x86-5.2.0-23.1.s390x.rpm qemu-5.2.0-23.1.ppc64le.rpm qemu-arm-5.2.0-23.1.ppc64le.rpm qemu-audio-alsa-5.2.0-23.1.ppc64le.rpm qemu-audio-pa-5.2.0-23.1.ppc64le.rpm qemu-audio-spice-5.2.0-23.1.ppc64le.rpm qemu-block-curl-5.2.0-23.1.ppc64le.rpm qemu-block-dmg-5.2.0-23.1.ppc64le.rpm qemu-block-gluster-5.2.0-23.1.ppc64le.rpm qemu-block-iscsi-5.2.0-23.1.ppc64le.rpm qemu-block-nfs-5.2.0-23.1.ppc64le.rpm qemu-block-rbd-5.2.0-23.1.ppc64le.rpm qemu-block-ssh-5.2.0-23.1.ppc64le.rpm qemu-chardev-baum-5.2.0-23.1.ppc64le.rpm qemu-chardev-spice-5.2.0-23.1.ppc64le.rpm qemu-extra-5.2.0-23.1.ppc64le.rpm qemu-guest-agent-5.2.0-23.1.ppc64le.rpm qemu-hw-display-qxl-5.2.0-23.1.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-23.1.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-23.1.ppc64le.rpm qemu-ivshmem-tools-5.2.0-23.1.ppc64le.rpm qemu-ksm-5.2.0-23.1.ppc64le.rpm qemu-lang-5.2.0-23.1.ppc64le.rpm qemu-ppc-5.2.0-23.1.ppc64le.rpm qemu-s390x-5.2.0-23.1.ppc64le.rpm qemu-tools-5.2.0-23.1.ppc64le.rpm qemu-ui-curses-5.2.0-23.1.ppc64le.rpm qemu-ui-gtk-5.2.0-23.1.ppc64le.rpm qemu-ui-opengl-5.2.0-23.1.ppc64le.rpm qemu-ui-spice-app-5.2.0-23.1.ppc64le.rpm qemu-ui-spice-core-5.2.0-23.1.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-23.1.ppc64le.rpm qemu-x86-5.2.0-23.1.ppc64le.rpm qemu-5.2.0-23.1.aarch64.rpm qemu-arm-5.2.0-23.1.aarch64.rpm qemu-audio-alsa-5.2.0-23.1.aarch64.rpm qemu-audio-pa-5.2.0-23.1.aarch64.rpm qemu-audio-spice-5.2.0-23.1.aarch64.rpm qemu-block-curl-5.2.0-23.1.aarch64.rpm qemu-block-dmg-5.2.0-23.1.aarch64.rpm qemu-block-gluster-5.2.0-23.1.aarch64.rpm qemu-block-iscsi-5.2.0-23.1.aarch64.rpm qemu-block-nfs-5.2.0-23.1.aarch64.rpm qemu-block-rbd-5.2.0-23.1.aarch64.rpm qemu-block-ssh-5.2.0-23.1.aarch64.rpm qemu-chardev-baum-5.2.0-23.1.aarch64.rpm qemu-chardev-spice-5.2.0-23.1.aarch64.rpm qemu-extra-5.2.0-23.1.aarch64.rpm qemu-guest-agent-5.2.0-23.1.aarch64.rpm qemu-hw-display-qxl-5.2.0-23.1.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.aarch64.rpm qemu-hw-usb-redirect-5.2.0-23.1.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-23.1.aarch64.rpm qemu-ivshmem-tools-5.2.0-23.1.aarch64.rpm qemu-ksm-5.2.0-23.1.aarch64.rpm qemu-lang-5.2.0-23.1.aarch64.rpm qemu-ppc-5.2.0-23.1.aarch64.rpm qemu-s390x-5.2.0-23.1.aarch64.rpm qemu-tools-5.2.0-23.1.aarch64.rpm qemu-ui-curses-5.2.0-23.1.aarch64.rpm qemu-ui-gtk-5.2.0-23.1.aarch64.rpm qemu-ui-opengl-5.2.0-23.1.aarch64.rpm qemu-ui-spice-app-5.2.0-23.1.aarch64.rpm qemu-ui-spice-core-5.2.0-23.1.aarch64.rpm qemu-vhost-user-gpu-5.2.0-23.1.aarch64.rpm qemu-x86-5.2.0-23.1.aarch64.rpm openSUSE-SLE-15.3-2021-2474 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3595: Fixed slirp: invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366) - CVE-2021-3592: Fix for slirp: invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364) - CVE-2021-3594: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367) - CVE-2021-3593: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp6) (bsc#1187365) - CVE-2021-3582: Fix possible mremap overflow in the pvrdma (bsc#1187499) - CVE-2021-3607: Ensure correct input on ring init (bsc#1187539) - CVE-2021-3608: Fix the ring init error flow (bsc#1187538) - CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529) qemu-4.2.1-11.25.2.src.rpm qemu-s390-4.2.1-11.25.2.x86_64.rpm qemu-s390-4.2.1-11.25.2.s390x.rpm qemu-s390-4.2.1-11.25.2.ppc64le.rpm qemu-s390-4.2.1-11.25.2.aarch64.rpm openSUSE-SLE-15.3-2021-2591 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3595: Fixed slirp: invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366) - CVE-2021-3592: Fix for slirp: invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364) - CVE-2021-3594: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367) - CVE-2021-3593: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp6) (bsc#1187365) - CVE-2021-3582: Fix possible mremap overflow in the pvrdma (bsc#1187499) - CVE-2021-3607: Ensure correct input on ring init (bsc#1187539) - CVE-2021-3608: Fix the ring init error flow (bsc#1187538) - CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529) - CVE-2020-25085: Fix out-of-bounds access issue while doing multi block SDMA (bsc#1176681) Other issues fixed: - QEMU BIOS fails to read stage2 loader (on s390x)(bsc#1186290) - Fix qemu hang while cancelling migrating hugepage vm (bsc#1185591) qemu-3.1.1.1-9.30.2.src.rpm qemu-audio-oss-3.1.1.1-9.30.2.x86_64.rpm openSUSE-SLE-15.3-2021-2439 moderate SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2021-22925: TELNET stack contents disclosure again. (bsc#1188220) - CVE-2021-22924: Bad connection reuse due to flawed path name checks. (bsc#1188219) - CVE-2021-22923: Insufficiently Protected Credentials. (bsc#1188218) - CVE-2021-22922: Wrong content via metalink not discarded. (bsc#1188217) curl-7.66.0-4.22.1.src.rpm curl-7.66.0-4.22.1.x86_64.rpm libcurl-devel-32bit-7.66.0-4.22.1.x86_64.rpm libcurl-devel-7.66.0-4.22.1.x86_64.rpm libcurl4-32bit-7.66.0-4.22.1.x86_64.rpm libcurl4-7.66.0-4.22.1.x86_64.rpm curl-7.66.0-4.22.1.s390x.rpm libcurl-devel-7.66.0-4.22.1.s390x.rpm libcurl4-7.66.0-4.22.1.s390x.rpm curl-7.66.0-4.22.1.ppc64le.rpm libcurl-devel-7.66.0-4.22.1.ppc64le.rpm libcurl4-7.66.0-4.22.1.ppc64le.rpm curl-7.66.0-4.22.1.aarch64.rpm libcurl-devel-7.66.0-4.22.1.aarch64.rpm libcurl4-7.66.0-4.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-2810 moderate SUSE Updates openSUSE-SLE 15.3 This update for dbus-1 fixes the following issues: - CVE-2020-12049: truncated messages lead to resource exhaustion. (bsc#1172505) dbus-1-1.12.2-8.11.2.src.rpm True dbus-1-1.12.2-8.11.2.x86_64.rpm True dbus-1-devel-1.12.2-8.11.2.x86_64.rpm True dbus-1-devel-32bit-1.12.2-8.11.2.x86_64.rpm True dbus-1-devel-doc-1.12.2-8.11.2.noarch.rpm True dbus-1-x11-1.12.2-8.11.1.src.rpm True dbus-1-x11-1.12.2-8.11.1.x86_64.rpm True libdbus-1-3-1.12.2-8.11.2.x86_64.rpm True libdbus-1-3-32bit-1.12.2-8.11.2.x86_64.rpm True dbus-1-1.12.2-8.11.2.s390x.rpm True dbus-1-devel-1.12.2-8.11.2.s390x.rpm True dbus-1-x11-1.12.2-8.11.1.s390x.rpm True libdbus-1-3-1.12.2-8.11.2.s390x.rpm True dbus-1-1.12.2-8.11.2.ppc64le.rpm True dbus-1-devel-1.12.2-8.11.2.ppc64le.rpm True dbus-1-x11-1.12.2-8.11.1.ppc64le.rpm True libdbus-1-3-1.12.2-8.11.2.ppc64le.rpm True dbus-1-1.12.2-8.11.2.aarch64.rpm True dbus-1-devel-1.12.2-8.11.2.aarch64.rpm True dbus-1-x11-1.12.2-8.11.1.aarch64.rpm True libdbus-1-3-1.12.2-8.11.2.aarch64.rpm True openSUSE-SLE-15.3-2021-2393 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 78.12.0 ESR * Fixed: Various stability, functionality, and security fixes MFSA 2021-29 (bsc#1188275) * CVE-2021-29970 (bmo#1709976): Use-after-free in accessibility features of a document * CVE-2021-30547 (bmo#1715766): Out of bounds write in ANGLE * CVE-2021-29976 (bmo#1700895, bmo#1703334, bmo#1706910, bmo#1711576, bmo#1714391): Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12 MozillaFirefox-78.12.0-8.46.1.src.rpm MozillaFirefox-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-buildsymbols-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-devel-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-78.12.0-8.46.1.s390x.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.s390x.rpm MozillaFirefox-devel-78.12.0-8.46.1.s390x.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.s390x.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.s390x.rpm MozillaFirefox-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-devel-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-devel-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.aarch64.rpm openSUSE-SLE-15.3-2021-2412 moderate SUSE Updates openSUSE-SLE 15.3 This update for containerd fixes the following issues: - CVE-2021-32760: Fixed a bug which allows untrusted container images to change permissions in the host's filesystem. (bsc#1188282) containerd-1.4.4-5.36.1.src.rpm containerd-1.4.4-5.36.1.x86_64.rpm containerd-ctr-1.4.4-5.36.1.x86_64.rpm containerd-1.4.4-5.36.1.s390x.rpm containerd-ctr-1.4.4-5.36.1.s390x.rpm containerd-1.4.4-5.36.1.ppc64le.rpm containerd-ctr-1.4.4-5.36.1.ppc64le.rpm containerd-1.4.4-5.36.1.aarch64.rpm containerd-ctr-1.4.4-5.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2477 important SUSE Updates openSUSE-SLE 15.3 This update for growpart-rootgrow fixes the following issues: - Change the logic to determine the partition ID of the root filesystem (bsc#1188179) + Previously the algorithm depended on the order of the output from lsblk using an index to keep track of the known partitions. The new implementation is order independent, it depends on the partition ID being numerical in nature and at the end of the device string. - Add coverage config. Omit version module from coverage check. - Fix string formatting for flake8 formatting. - Replace travis testing with GitHub actions. Add ci testing workflow action. - Switch implementation to use Popen for Python 3.4 compatibility (bsc#1165198) - Bump version: 1.0.2 → 1.0.3 - Fixed unit tests and style This clobbers several fixes into one. Sorry about it but I started on already made changes done by other people. This commit includes several pep8 style fixes mostly on the indentation level. In addition it fixes the unit tests to really cover all code and to make the exception tests really effective. - Switch to use Popen instead of run The run() fuction in the subprocess module was implemented after Python 3.4. However, we need to support Python 3.4 for SLES 12 - Bump version: 1.0.1 → 1.0.2 - Package LICENSE file The LICENSE file is part of the source repo but was not packaged with the rpm package growpart-rootgrow-1.0.4-1.6.1.noarch.rpm growpart-rootgrow-1.0.4-1.6.1.src.rpm openSUSE-SLE-15.3-2021-2654 moderate SUSE Updates openSUSE-SLE 15.3 This update for system-config-printer fixes the following issues: - Require python3-requests to avoid printer installation failure due to missing python module. (bsc#1116867) python3-cupshelpers-1.5.7-8.3.1.noarch.rpm system-config-printer-1.5.7-8.3.1.src.rpm system-config-printer-1.5.7-8.3.1.x86_64.rpm system-config-printer-applet-1.5.7-8.3.1.noarch.rpm system-config-printer-common-1.5.7-8.3.1.noarch.rpm system-config-printer-common-lang-1.5.7-8.3.1.noarch.rpm system-config-printer-dbus-service-1.5.7-8.3.1.noarch.rpm udev-configure-printer-1.5.7-8.3.1.x86_64.rpm system-config-printer-1.5.7-8.3.1.s390x.rpm udev-configure-printer-1.5.7-8.3.1.s390x.rpm system-config-printer-1.5.7-8.3.1.ppc64le.rpm udev-configure-printer-1.5.7-8.3.1.ppc64le.rpm system-config-printer-1.5.7-8.3.1.aarch64.rpm udev-configure-printer-1.5.7-8.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2458 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 78.12 * fixed: Sending an email containing HTML links with spaces in the URL sometimes resulted in broken links * fixed: Folder Pane display theme fixes for macOS * fixed: Chat account settings did not always save as expected * fixed: RSS feed subscriptions sometimes lost * fixed: Calendar: A parsing error for alarm triggers of type "DURATION" caused sync problems for some users * fixed: Various security fixes MFSA 2021-30 (bsc#1188275) * CVE-2021-29969: IMAP server responses sent by a MITM prior to STARTTLS could be processed * CVE-2021-29970: Use-after-free in accessibility features of a document * CVE-2021-30547: Out of bounds write in ANGLE * CVE-2021-29976: Memory safety bugs fixed in Thunderbird 78.12 MozillaThunderbird-78.12.0-8.33.1.src.rpm MozillaThunderbird-78.12.0-8.33.1.x86_64.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.x86_64.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.x86_64.rpm MozillaThunderbird-78.12.0-8.33.1.s390x.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.s390x.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.s390x.rpm MozillaThunderbird-78.12.0-8.33.1.ppc64le.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.ppc64le.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.ppc64le.rpm MozillaThunderbird-78.12.0-8.33.1.aarch64.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.aarch64.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-2618 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs8 fixes the following issues: - update to npm 6.14.13 - CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976) - CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service. (bsc#1187977) - CVE-2020-7774: fixes y18n Prototype Pollution. (bsc#1184450) nodejs8-8.17.0-10.12.2.src.rpm nodejs8-8.17.0-10.12.2.x86_64.rpm nodejs8-devel-8.17.0-10.12.2.x86_64.rpm nodejs8-docs-8.17.0-10.12.2.noarch.rpm npm8-8.17.0-10.12.2.x86_64.rpm nodejs8-8.17.0-10.12.2.s390x.rpm nodejs8-devel-8.17.0-10.12.2.s390x.rpm npm8-8.17.0-10.12.2.s390x.rpm nodejs8-8.17.0-10.12.2.ppc64le.rpm nodejs8-devel-8.17.0-10.12.2.ppc64le.rpm npm8-8.17.0-10.12.2.ppc64le.rpm nodejs8-8.17.0-10.12.2.aarch64.rpm nodejs8-devel-8.17.0-10.12.2.aarch64.rpm npm8-8.17.0-10.12.2.aarch64.rpm openSUSE-SLE-15.3-2021-2410 important SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-33910: Fixed a denial of service (stack exhaustion) in systemd (PID 1) (bsc#1188063) libsystemd0-246.13-7.8.1.x86_64.rpm libsystemd0-32bit-246.13-7.8.1.x86_64.rpm libudev-devel-246.13-7.8.1.x86_64.rpm libudev-devel-32bit-246.13-7.8.1.x86_64.rpm libudev1-246.13-7.8.1.x86_64.rpm libudev1-32bit-246.13-7.8.1.x86_64.rpm nss-myhostname-246.13-7.8.1.x86_64.rpm nss-myhostname-32bit-246.13-7.8.1.x86_64.rpm nss-mymachines-246.13-7.8.1.x86_64.rpm nss-mymachines-32bit-246.13-7.8.1.x86_64.rpm nss-resolve-246.13-7.8.1.x86_64.rpm nss-systemd-246.13-7.8.1.x86_64.rpm systemd-246.13-7.8.1.src.rpm systemd-246.13-7.8.1.x86_64.rpm systemd-32bit-246.13-7.8.1.x86_64.rpm systemd-container-246.13-7.8.1.x86_64.rpm systemd-coredump-246.13-7.8.1.x86_64.rpm systemd-devel-246.13-7.8.1.x86_64.rpm systemd-doc-246.13-7.8.1.x86_64.rpm systemd-journal-remote-246.13-7.8.1.x86_64.rpm systemd-lang-246.13-7.8.1.noarch.rpm systemd-logger-246.13-7.8.1.x86_64.rpm systemd-network-246.13-7.8.1.x86_64.rpm systemd-sysvinit-246.13-7.8.1.x86_64.rpm udev-246.13-7.8.1.x86_64.rpm libsystemd0-246.13-7.8.1.s390x.rpm libudev-devel-246.13-7.8.1.s390x.rpm libudev1-246.13-7.8.1.s390x.rpm nss-myhostname-246.13-7.8.1.s390x.rpm nss-mymachines-246.13-7.8.1.s390x.rpm nss-resolve-246.13-7.8.1.s390x.rpm nss-systemd-246.13-7.8.1.s390x.rpm systemd-246.13-7.8.1.s390x.rpm systemd-container-246.13-7.8.1.s390x.rpm systemd-coredump-246.13-7.8.1.s390x.rpm systemd-devel-246.13-7.8.1.s390x.rpm systemd-doc-246.13-7.8.1.s390x.rpm systemd-journal-remote-246.13-7.8.1.s390x.rpm systemd-logger-246.13-7.8.1.s390x.rpm systemd-network-246.13-7.8.1.s390x.rpm systemd-sysvinit-246.13-7.8.1.s390x.rpm udev-246.13-7.8.1.s390x.rpm libsystemd0-246.13-7.8.1.ppc64le.rpm libudev-devel-246.13-7.8.1.ppc64le.rpm libudev1-246.13-7.8.1.ppc64le.rpm nss-myhostname-246.13-7.8.1.ppc64le.rpm nss-mymachines-246.13-7.8.1.ppc64le.rpm nss-resolve-246.13-7.8.1.ppc64le.rpm nss-systemd-246.13-7.8.1.ppc64le.rpm systemd-246.13-7.8.1.ppc64le.rpm systemd-container-246.13-7.8.1.ppc64le.rpm systemd-coredump-246.13-7.8.1.ppc64le.rpm systemd-devel-246.13-7.8.1.ppc64le.rpm systemd-doc-246.13-7.8.1.ppc64le.rpm systemd-journal-remote-246.13-7.8.1.ppc64le.rpm systemd-logger-246.13-7.8.1.ppc64le.rpm systemd-network-246.13-7.8.1.ppc64le.rpm systemd-sysvinit-246.13-7.8.1.ppc64le.rpm udev-246.13-7.8.1.ppc64le.rpm libsystemd0-246.13-7.8.1.aarch64.rpm libudev-devel-246.13-7.8.1.aarch64.rpm libudev1-246.13-7.8.1.aarch64.rpm nss-myhostname-246.13-7.8.1.aarch64.rpm nss-mymachines-246.13-7.8.1.aarch64.rpm nss-resolve-246.13-7.8.1.aarch64.rpm nss-systemd-246.13-7.8.1.aarch64.rpm systemd-246.13-7.8.1.aarch64.rpm systemd-container-246.13-7.8.1.aarch64.rpm systemd-coredump-246.13-7.8.1.aarch64.rpm systemd-devel-246.13-7.8.1.aarch64.rpm systemd-doc-246.13-7.8.1.aarch64.rpm systemd-journal-remote-246.13-7.8.1.aarch64.rpm systemd-logger-246.13-7.8.1.aarch64.rpm systemd-network-246.13-7.8.1.aarch64.rpm systemd-sysvinit-246.13-7.8.1.aarch64.rpm udev-246.13-7.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2758 moderate SUSE Updates openSUSE-SLE 15.3 This update for jeos-firstboot fixes the following issues: - Update to version 1.0.1: * Always show manual SSID option * Call dialog with --backtitle everywhere * Calculate the height of menus dynamically (bsc#1177188) jeos-firstboot-1.0.1-3.3.1.noarch.rpm jeos-firstboot-1.0.1-3.3.1.src.rpm jeos-firstboot-rpiwifi-1.0.1-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2415 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. Security issues fixed: - CVE-2021-22555: A heap out-of-bounds write was discovered in net/netfilter/x_tables.c (bnc#1188116). - CVE-2021-33909: Extremely large seq buffer allocations in seq_file could lead to buffer underruns and code execution (bsc#1188062). The following non-security bugs were fixed: - usb: dwc3: Fix debugfs creation flow (git-fixes). cluster-md-kmp-default-5.3.18-59.16.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.16.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.16.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True kernel-debug-5.3.18-59.16.1.nosrc.rpm True kernel-debug-5.3.18-59.16.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.16.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-default-5.3.18-59.16.1.nosrc.rpm True kernel-default-5.3.18-59.16.1.x86_64.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.src.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.x86_64.rpm True kernel-default-devel-5.3.18-59.16.1.x86_64.rpm True kernel-default-extra-5.3.18-59.16.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.16.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-default-optional-5.3.18-59.16.1.x86_64.rpm True kernel-devel-5.3.18-59.16.1.noarch.rpm True kernel-docs-5.3.18-59.16.1.noarch.rpm True kernel-docs-5.3.18-59.16.1.nosrc.rpm True kernel-docs-html-5.3.18-59.16.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.16.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.16.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.16.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-macros-5.3.18-59.16.1.noarch.rpm True kernel-obs-build-5.3.18-59.16.1.src.rpm True kernel-obs-build-5.3.18-59.16.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.16.1.src.rpm True kernel-obs-qa-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-5.3.18-59.16.1.nosrc.rpm True kernel-preempt-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.16.1.x86_64.rpm True kernel-source-5.3.18-59.16.1.noarch.rpm True kernel-source-5.3.18-59.16.1.src.rpm True kernel-source-vanilla-5.3.18-59.16.1.noarch.rpm True kernel-syms-5.3.18-59.16.1.src.rpm True kernel-syms-5.3.18-59.16.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.16.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.16.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.16.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.16.1.s390x.rpm True dlm-kmp-default-5.3.18-59.16.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.16.1.s390x.rpm True kernel-default-5.3.18-59.16.1.s390x.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.s390x.rpm True kernel-default-devel-5.3.18-59.16.1.s390x.rpm True kernel-default-extra-5.3.18-59.16.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.16.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.s390x.rpm True kernel-default-optional-5.3.18-59.16.1.s390x.rpm True kernel-obs-build-5.3.18-59.16.1.s390x.rpm True kernel-obs-qa-5.3.18-59.16.1.s390x.rpm True kernel-syms-5.3.18-59.16.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.16.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.16.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.16.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.16.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.16.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.16.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.16.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.16.1.ppc64le.rpm True kernel-debug-5.3.18-59.16.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-default-5.3.18-59.16.1.ppc64le.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.16.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.16.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.16.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.16.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.16.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.16.1.ppc64le.rpm True kernel-syms-5.3.18-59.16.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.16.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.16.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.16.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.16.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.16.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.16.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-5.3.18-59.16.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.16.1.aarch64.rpm True kernel-default-5.3.18-59.16.1.aarch64.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.aarch64.rpm True kernel-default-devel-5.3.18-59.16.1.aarch64.rpm True kernel-default-extra-5.3.18-59.16.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.16.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.aarch64.rpm True kernel-default-optional-5.3.18-59.16.1.aarch64.rpm True kernel-obs-build-5.3.18-59.16.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.16.1.aarch64.rpm True kernel-syms-5.3.18-59.16.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.16.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.16.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.16.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2409 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-22555: A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c (bnc#1188116 ). - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to obtain full root privileges (bsc#1188062). The following non-security bugs were fixed: - ceph: must hold snap_rwsem when filling inode for async create (bsc#1187927). - cgroup1: do not allow '\n' in renaming (bsc#1187972). - qla2xxx: synchronize rport dev_loss_tmo setting (bsc#1182470 bsc#1185486). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1187980). - usb: dwc3: Fix debugfs creation flow (git-fixes). - x86/pkru: Write hardware init value to PKRU when xstate is init (bsc#1152489). - x86/process: Check PF_KTHREAD and not current->mm for kernel threads (bsc#1152489). cluster-md-kmp-azure-5.3.18-38.14.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.14.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.14.1.x86_64.rpm True kernel-azure-5.3.18-38.14.1.nosrc.rpm True kernel-azure-5.3.18-38.14.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.14.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.14.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.14.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.14.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.14.1.noarch.rpm True kernel-source-azure-5.3.18-38.14.1.noarch.rpm True kernel-source-azure-5.3.18-38.14.1.src.rpm True kernel-syms-azure-5.3.18-38.14.1.src.rpm True kernel-syms-azure-5.3.18-38.14.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.14.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.14.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.14.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2579 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust, rust1.43, rust1.53 fixes the following issues: This will ship multiple rust versions. - rust1.43: for Firefox ESR - rust1.53: The current rust release The "rust" package itself will be a wrapper package. cargo-1.53.0-21.3.1.noarch.rpm cargo1.43-1.43.1-7.3.1.i586.rpm cargo1.53-1.53.0-7.3.1.i586.rpm rls-1.53.0-21.3.1.noarch.rpm rust-1.53.0-21.3.1.noarch.rpm rust-1.53.0-21.3.1.src.rpm rust-gdb-1.53.0-21.3.1.noarch.rpm rust1.43-1.43.1-7.3.1.i586.rpm rust1.43-1.43.1-7.3.1.src.rpm rust1.43-gdb-1.43.1-7.3.1.i586.rpm rust1.43-src-1.43.1-7.3.1.noarch.rpm rust1.53-1.53.0-7.3.1.i586.rpm rust1.53-1.53.0-7.3.1.src.rpm rust1.53-gdb-1.53.0-7.3.1.i586.rpm rust1.53-src-1.53.0-7.3.1.noarch.rpm cargo1.43-1.43.1-7.3.1.x86_64.rpm cargo1.43-doc-1.43.1-7.3.1.noarch.rpm cargo1.53-1.53.0-7.3.1.x86_64.rpm cargo1.53-doc-1.53.0-7.3.1.noarch.rpm rls1.43-1.43.1-7.3.1.x86_64.rpm rls1.53-1.53.0-7.3.1.x86_64.rpm rust1.43-1.43.1-7.3.1.x86_64.rpm rust1.43-analysis-1.43.1-7.3.1.x86_64.rpm rust1.43-doc-1.43.1-7.3.1.x86_64.rpm rust1.43-gdb-1.43.1-7.3.1.x86_64.rpm rust1.53-1.53.0-7.3.1.x86_64.rpm rust1.53-analysis-1.53.0-7.3.1.x86_64.rpm rust1.53-doc-1.53.0-7.3.1.x86_64.rpm rust1.53-gdb-1.53.0-7.3.1.x86_64.rpm cargo1.43-1.43.1-7.3.1.s390x.rpm cargo1.53-1.53.0-7.3.1.s390x.rpm rust1.43-1.43.1-7.3.1.s390x.rpm rust1.43-gdb-1.43.1-7.3.1.s390x.rpm rust1.53-1.53.0-7.3.1.s390x.rpm rust1.53-gdb-1.53.0-7.3.1.s390x.rpm cargo1.43-1.43.1-7.3.1.ppc64le.rpm cargo1.53-1.53.0-7.3.1.ppc64le.rpm rust1.43-1.43.1-7.3.1.ppc64le.rpm rust1.43-gdb-1.43.1-7.3.1.ppc64le.rpm rust1.53-1.53.0-7.3.1.ppc64le.rpm rust1.53-gdb-1.53.0-7.3.1.ppc64le.rpm cargo1.43-1.43.1-7.3.1.aarch64.rpm cargo1.53-1.53.0-7.3.1.aarch64.rpm rls1.43-1.43.1-7.3.1.aarch64.rpm rls1.53-1.53.0-7.3.1.aarch64.rpm rust1.43-1.43.1-7.3.1.aarch64.rpm rust1.43-analysis-1.43.1-7.3.1.aarch64.rpm rust1.43-doc-1.43.1-7.3.1.aarch64.rpm rust1.43-gdb-1.43.1-7.3.1.aarch64.rpm rust1.53-1.53.0-7.3.1.aarch64.rpm rust1.53-analysis-1.53.0-7.3.1.aarch64.rpm rust1.53-doc-1.53.0-7.3.1.aarch64.rpm rust1.53-gdb-1.53.0-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3531 important SUSE Updates openSUSE-SLE 15.3 This update for busybox fixes the following issues: - CVE-2021-28831: Fixed invalid free or segmentation fault via malformed gzip data (bsc#1184522). - CVE-2018-20679: Fixed out of bounds read in udhcp (bsc#1121426). - CVE-2018-1000517: Fixed buffer overflow in the retrieve_file_data() (bsc#1099260). - CVE-2011-5325: Fixed a directory traversal related to 'tar' command (bsc#951562). - CVE-2018-1000500: Fixed missing SSL certificate validation related to the 'wget' command (bsc#1099263). busybox-1.26.2-4.5.1.src.rpm busybox-1.26.2-4.5.1.x86_64.rpm busybox-static-1.26.2-4.5.1.src.rpm busybox-static-1.26.2-4.5.1.x86_64.rpm busybox-1.26.2-4.5.1.s390x.rpm busybox-static-1.26.2-4.5.1.s390x.rpm busybox-1.26.2-4.5.1.ppc64le.rpm busybox-static-1.26.2-4.5.1.ppc64le.rpm busybox-1.26.2-4.5.1.aarch64.rpm busybox-static-1.26.2-4.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2919 important SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2019-9721: Fix denial of service in the subtitle decoder in handle_open_brace from libavcodec/htmlsubtitles.c (bsc#1129714). - CVE-2020-22046: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c (bsc#1186849). - CVE-2020-22048: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c (bsc#1186859). - CVE-2020-22049: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c (bsc#1186861). - CVE-2020-22054: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c (bsc#1186863). - CVE-2020-21688: Fixed a heap-use-after-free in the av_freep function in libavutil/mem.c (bsc#1189348). - CVE-2020-21697: Fixed a heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c (bsc#1189350). - CVE-2021-38114: Fixed a not checked return value of the init_vlc function (bsc#1189142). ffmpeg-3.4.2-11.8.2.src.rpm ffmpeg-3.4.2-11.8.2.x86_64.rpm ffmpeg-private-devel-3.4.2-11.8.2.x86_64.rpm libavcodec-devel-3.4.2-11.8.2.x86_64.rpm libavcodec57-3.4.2-11.8.2.x86_64.rpm libavcodec57-32bit-3.4.2-11.8.2.x86_64.rpm libavdevice-devel-3.4.2-11.8.2.x86_64.rpm libavdevice57-3.4.2-11.8.2.x86_64.rpm libavdevice57-32bit-3.4.2-11.8.2.x86_64.rpm libavfilter-devel-3.4.2-11.8.2.x86_64.rpm libavfilter6-3.4.2-11.8.2.x86_64.rpm libavfilter6-32bit-3.4.2-11.8.2.x86_64.rpm libavformat-devel-3.4.2-11.8.2.x86_64.rpm libavformat57-3.4.2-11.8.2.x86_64.rpm libavformat57-32bit-3.4.2-11.8.2.x86_64.rpm libavresample-devel-3.4.2-11.8.2.x86_64.rpm libavresample3-3.4.2-11.8.2.x86_64.rpm libavresample3-32bit-3.4.2-11.8.2.x86_64.rpm libavutil-devel-3.4.2-11.8.2.x86_64.rpm libavutil55-3.4.2-11.8.2.x86_64.rpm libavutil55-32bit-3.4.2-11.8.2.x86_64.rpm libpostproc-devel-3.4.2-11.8.2.x86_64.rpm libpostproc54-3.4.2-11.8.2.x86_64.rpm libpostproc54-32bit-3.4.2-11.8.2.x86_64.rpm libswresample-devel-3.4.2-11.8.2.x86_64.rpm libswresample2-3.4.2-11.8.2.x86_64.rpm libswresample2-32bit-3.4.2-11.8.2.x86_64.rpm libswscale-devel-3.4.2-11.8.2.x86_64.rpm libswscale4-3.4.2-11.8.2.x86_64.rpm libswscale4-32bit-3.4.2-11.8.2.x86_64.rpm ffmpeg-3.4.2-11.8.2.s390x.rpm ffmpeg-private-devel-3.4.2-11.8.2.s390x.rpm libavcodec-devel-3.4.2-11.8.2.s390x.rpm libavcodec57-3.4.2-11.8.2.s390x.rpm libavdevice-devel-3.4.2-11.8.2.s390x.rpm libavdevice57-3.4.2-11.8.2.s390x.rpm libavfilter-devel-3.4.2-11.8.2.s390x.rpm libavfilter6-3.4.2-11.8.2.s390x.rpm libavformat-devel-3.4.2-11.8.2.s390x.rpm libavformat57-3.4.2-11.8.2.s390x.rpm libavresample-devel-3.4.2-11.8.2.s390x.rpm libavresample3-3.4.2-11.8.2.s390x.rpm libavutil-devel-3.4.2-11.8.2.s390x.rpm libavutil55-3.4.2-11.8.2.s390x.rpm libpostproc-devel-3.4.2-11.8.2.s390x.rpm libpostproc54-3.4.2-11.8.2.s390x.rpm libswresample-devel-3.4.2-11.8.2.s390x.rpm libswresample2-3.4.2-11.8.2.s390x.rpm libswscale-devel-3.4.2-11.8.2.s390x.rpm libswscale4-3.4.2-11.8.2.s390x.rpm ffmpeg-3.4.2-11.8.2.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.8.2.ppc64le.rpm libavcodec-devel-3.4.2-11.8.2.ppc64le.rpm libavcodec57-3.4.2-11.8.2.ppc64le.rpm libavdevice-devel-3.4.2-11.8.2.ppc64le.rpm libavdevice57-3.4.2-11.8.2.ppc64le.rpm libavfilter-devel-3.4.2-11.8.2.ppc64le.rpm libavfilter6-3.4.2-11.8.2.ppc64le.rpm libavformat-devel-3.4.2-11.8.2.ppc64le.rpm libavformat57-3.4.2-11.8.2.ppc64le.rpm libavresample-devel-3.4.2-11.8.2.ppc64le.rpm libavresample3-3.4.2-11.8.2.ppc64le.rpm libavutil-devel-3.4.2-11.8.2.ppc64le.rpm libavutil55-3.4.2-11.8.2.ppc64le.rpm libpostproc-devel-3.4.2-11.8.2.ppc64le.rpm libpostproc54-3.4.2-11.8.2.ppc64le.rpm libswresample-devel-3.4.2-11.8.2.ppc64le.rpm libswresample2-3.4.2-11.8.2.ppc64le.rpm libswscale-devel-3.4.2-11.8.2.ppc64le.rpm libswscale4-3.4.2-11.8.2.ppc64le.rpm ffmpeg-3.4.2-11.8.2.aarch64.rpm ffmpeg-private-devel-3.4.2-11.8.2.aarch64.rpm libavcodec-devel-3.4.2-11.8.2.aarch64.rpm libavcodec57-3.4.2-11.8.2.aarch64.rpm libavdevice-devel-3.4.2-11.8.2.aarch64.rpm libavdevice57-3.4.2-11.8.2.aarch64.rpm libavfilter-devel-3.4.2-11.8.2.aarch64.rpm libavfilter6-3.4.2-11.8.2.aarch64.rpm libavformat-devel-3.4.2-11.8.2.aarch64.rpm libavformat57-3.4.2-11.8.2.aarch64.rpm libavresample-devel-3.4.2-11.8.2.aarch64.rpm libavresample3-3.4.2-11.8.2.aarch64.rpm libavutil-devel-3.4.2-11.8.2.aarch64.rpm libavutil55-3.4.2-11.8.2.aarch64.rpm libpostproc-devel-3.4.2-11.8.2.aarch64.rpm libpostproc54-3.4.2-11.8.2.aarch64.rpm libswresample-devel-3.4.2-11.8.2.aarch64.rpm libswresample2-3.4.2-11.8.2.aarch64.rpm libswscale-devel-3.4.2-11.8.2.aarch64.rpm libswscale4-3.4.2-11.8.2.aarch64.rpm openSUSE-SLE-15.3-2021-2459 moderate SUSE Updates openSUSE-SLE 15.3 This update for bluez fixes the following issues: - CVE-2021-3588: Fixed a missing bounds checks inside cli_feat_read_cb() function in src/gatt-database.c (bsc#1187165) bluez-5.55-3.6.1.src.rpm bluez-5.55-3.6.1.x86_64.rpm bluez-auto-enable-devices-5.55-3.6.1.noarch.rpm bluez-cups-5.55-3.6.1.x86_64.rpm bluez-deprecated-5.55-3.6.1.x86_64.rpm bluez-devel-32bit-5.55-3.6.1.x86_64.rpm bluez-devel-5.55-3.6.1.x86_64.rpm bluez-test-5.55-3.6.1.x86_64.rpm libbluetooth3-32bit-5.55-3.6.1.x86_64.rpm libbluetooth3-5.55-3.6.1.x86_64.rpm bluez-5.55-3.6.1.s390x.rpm bluez-cups-5.55-3.6.1.s390x.rpm bluez-deprecated-5.55-3.6.1.s390x.rpm bluez-devel-5.55-3.6.1.s390x.rpm bluez-test-5.55-3.6.1.s390x.rpm libbluetooth3-5.55-3.6.1.s390x.rpm bluez-5.55-3.6.1.ppc64le.rpm bluez-cups-5.55-3.6.1.ppc64le.rpm bluez-deprecated-5.55-3.6.1.ppc64le.rpm bluez-devel-5.55-3.6.1.ppc64le.rpm bluez-test-5.55-3.6.1.ppc64le.rpm libbluetooth3-5.55-3.6.1.ppc64le.rpm bluez-5.55-3.6.1.aarch64.rpm bluez-cups-5.55-3.6.1.aarch64.rpm bluez-deprecated-5.55-3.6.1.aarch64.rpm bluez-devel-5.55-3.6.1.aarch64.rpm bluez-test-5.55-3.6.1.aarch64.rpm libbluetooth3-5.55-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2838 moderate SUSE Updates openSUSE-SLE 15.3 This update for jetty-minimal fixes the following issues: - Update to version 9.4.43.v20210629 - CVE-2021-34429: URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. (bsc#1188438) jetty-annotations-9.4.43-3.12.2.noarch.rpm jetty-client-9.4.43-3.12.2.noarch.rpm jetty-continuation-9.4.43-3.12.2.noarch.rpm jetty-http-9.4.43-3.12.2.noarch.rpm jetty-io-9.4.43-3.12.2.noarch.rpm jetty-jaas-9.4.43-3.12.2.noarch.rpm jetty-javax-websocket-client-impl-9.4.43-3.12.2.noarch.rpm jetty-javax-websocket-server-impl-9.4.43-3.12.2.noarch.rpm jetty-jmx-9.4.43-3.12.2.noarch.rpm jetty-jndi-9.4.43-3.12.2.noarch.rpm jetty-jsp-9.4.43-3.12.2.noarch.rpm jetty-minimal-9.4.43-3.12.2.src.rpm jetty-minimal-javadoc-9.4.43-3.12.2.noarch.rpm jetty-openid-9.4.43-3.12.2.noarch.rpm jetty-plus-9.4.43-3.12.2.noarch.rpm jetty-proxy-9.4.43-3.12.2.noarch.rpm jetty-security-9.4.43-3.12.2.noarch.rpm jetty-server-9.4.43-3.12.2.noarch.rpm jetty-servlet-9.4.43-3.12.2.noarch.rpm jetty-util-9.4.43-3.12.2.noarch.rpm jetty-util-ajax-9.4.43-3.12.2.noarch.rpm jetty-webapp-9.4.43-3.12.2.noarch.rpm jetty-websocket-9.4.43-3.12.2.src.rpm jetty-websocket-api-9.4.43-3.12.2.noarch.rpm jetty-websocket-client-9.4.43-3.12.2.noarch.rpm jetty-websocket-common-9.4.43-3.12.2.noarch.rpm jetty-websocket-javadoc-9.4.43-3.12.2.noarch.rpm jetty-websocket-server-9.4.43-3.12.2.noarch.rpm jetty-websocket-servlet-9.4.43-3.12.2.noarch.rpm jetty-xml-9.4.43-3.12.2.noarch.rpm openSUSE-SLE-15.3-2021-2802 moderate SUSE Updates openSUSE-SLE 15.3 This update for libmspack fixes the following issues: - CVE-2018-14681: Bad KWAJ file header extensions could cause a one or two byte overwrite. (bsc#1103032) - CVE-2018-14682: There is an off-by-one error in the TOLOWER() macro for CHM decompression. (bsc#1103032) - CVE-2018-14679: There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service. (bsc#1103032) libmspack-0.6-3.11.1.src.rpm libmspack-devel-0.6-3.11.1.x86_64.rpm libmspack0-0.6-3.11.1.x86_64.rpm libmspack0-32bit-0.6-3.11.1.x86_64.rpm mspack-tools-0.6-3.11.1.x86_64.rpm libmspack-devel-0.6-3.11.1.s390x.rpm libmspack0-0.6-3.11.1.s390x.rpm mspack-tools-0.6-3.11.1.s390x.rpm libmspack-devel-0.6-3.11.1.ppc64le.rpm libmspack0-0.6-3.11.1.ppc64le.rpm mspack-tools-0.6-3.11.1.ppc64le.rpm libmspack-devel-0.6-3.11.1.aarch64.rpm libmspack0-0.6-3.11.1.aarch64.rpm mspack-tools-0.6-3.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2553 moderate SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: - 15.3.20210712 (tracked in bsc#933411) - Added note about about Salt 3002 (jsc#SLE-17233) - Added note about kernel changes (bsc#1187615) - Added link to workaround (bsc#1187636) - Updated PostgreSQL 13 note (jsc#SLE-17030) - Updated more links (bsc#1187664) - Updated links (bsc#1187664) - Removed note upon request (bsc#1187608) release-notes-sles-15.3.20210712-3.6.3.noarch.rpm release-notes-sles-15.3.20210712-3.6.3.src.rpm openSUSE-SLE-15.3-2022-650 moderate SUSE Updates openSUSE-SLE 15.3 This update for compat-libpthread-nonshared fixes the following issues: - Add build for 32-bit version for Oracle client. (bsc#1188004) compat-libpthread-nonshared-0-3.3.1.src.rpm compat-libpthread-nonshared-0-3.3.1.x86_64.rpm openSUSE-SLE-15.3-2021-3244 low SUSE Updates openSUSE-SLE 15.3 This update for shibboleth-sp fixes the following issues: - Template generation allows external parameters to override placeholders (bsc#1184222) libshibsp-lite8-3.1.0-3.3.1.x86_64.rpm libshibsp9-3.1.0-3.3.1.x86_64.rpm shibboleth-sp-3.1.0-3.3.1.src.rpm shibboleth-sp-3.1.0-3.3.1.x86_64.rpm shibboleth-sp-devel-3.1.0-3.3.1.x86_64.rpm libshibsp-lite8-3.1.0-3.3.1.s390x.rpm libshibsp9-3.1.0-3.3.1.s390x.rpm shibboleth-sp-3.1.0-3.3.1.s390x.rpm shibboleth-sp-devel-3.1.0-3.3.1.s390x.rpm libshibsp-lite8-3.1.0-3.3.1.ppc64le.rpm libshibsp9-3.1.0-3.3.1.ppc64le.rpm shibboleth-sp-3.1.0-3.3.1.ppc64le.rpm shibboleth-sp-devel-3.1.0-3.3.1.ppc64le.rpm libshibsp-lite8-3.1.0-3.3.1.aarch64.rpm libshibsp9-3.1.0-3.3.1.aarch64.rpm shibboleth-sp-3.1.0-3.3.1.aarch64.rpm shibboleth-sp-devel-3.1.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2475 important SUSE Updates openSUSE-SLE 15.3 This update for novnc fixes the following issues: - Update to 1.2.0: * Quality and compression hints can now be modified dynamically * Added touch gestures to emulate common mouse actions * Support for full Unicode in clipboard * Support for VeNCrypt Plain authentication * Support for TightVNC Unix authentication * Support for alpha cursors * The session name is now updated whilst connected - Update to 1.1.0: Application: * New translations for Russian, Korean, Czech and Chinese (traditional) languages * Fixed an issue where you didn't get scrollbars in your browser on Windows you had a touch screen. * Added the Super/Windows key to the toolbar. * Added an option to show a dot when there otherwise wouldn't be a visible cursor. * View drag is no longer available when in scaling mode. Library: * A large number of coding style changes has been made to make the code easier to read and better to work with. * Many keyboard issues has been fixed. * Local cursor is now available on all platforms. * Fixed a number of crashes related to clipboard. * Fixed issues that occurred if data from the server was being received slowly. * A problem has been fixed where the display module would incorrectly handle high DPI systems causing scrollbars to show when they shouldn't. novnc-1.2.0-3.3.1.noarch.rpm novnc-1.2.0-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2612 important SUSE Updates openSUSE-SLE 15.3 This update for apache-commons-compress fixes the following issues: - Updated to 1.21 - CVE-2021-35515: Fixed an infinite loop when reading a specially crafted 7Z archive. (bsc#1188463) - CVE-2021-35516: Fixed an excessive memory allocation when reading a specially crafted 7Z archive. (bsc#1188464) - CVE-2021-35517: Fixed an excessive memory allocation when reading a specially crafted TAR archive. (bsc#1188465) - CVE-2021-36090: Fixed an excessive memory allocation when reading a specially crafted ZIP archive. (bsc#1188466) apache-commons-compress-1.21-3.3.1.noarch.rpm apache-commons-compress-1.21-3.3.1.src.rpm apache-commons-compress-javadoc-1.21-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2801 moderate SUSE Updates openSUSE-SLE 15.3 This update for 389-ds fixes the following issues: - Update to 1.4.4.16 - CVE-2021-3652: Fixed crypt handling of locked accounts. (bsc#1188455) 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.src.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-2809 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Updated to version 246.15 - CVE-2021-33910: Fixed a denial of service issue in systemd. (bsc#1188063) - CVE-2020-13529: Fixed an issue that allows crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. (bsc#1185972) libsystemd0-246.15-7.11.1.x86_64.rpm libsystemd0-32bit-246.15-7.11.1.x86_64.rpm libudev-devel-246.15-7.11.1.x86_64.rpm libudev-devel-32bit-246.15-7.11.1.x86_64.rpm libudev1-246.15-7.11.1.x86_64.rpm libudev1-32bit-246.15-7.11.1.x86_64.rpm nss-myhostname-246.15-7.11.1.x86_64.rpm nss-myhostname-32bit-246.15-7.11.1.x86_64.rpm nss-mymachines-246.15-7.11.1.x86_64.rpm nss-mymachines-32bit-246.15-7.11.1.x86_64.rpm nss-resolve-246.15-7.11.1.x86_64.rpm nss-systemd-246.15-7.11.1.x86_64.rpm systemd-246.15-7.11.1.src.rpm systemd-246.15-7.11.1.x86_64.rpm systemd-32bit-246.15-7.11.1.x86_64.rpm systemd-container-246.15-7.11.1.x86_64.rpm systemd-coredump-246.15-7.11.1.x86_64.rpm systemd-devel-246.15-7.11.1.x86_64.rpm systemd-doc-246.15-7.11.1.x86_64.rpm systemd-journal-remote-246.15-7.11.1.x86_64.rpm systemd-lang-246.15-7.11.1.noarch.rpm systemd-logger-246.15-7.11.1.x86_64.rpm systemd-network-246.15-7.11.1.x86_64.rpm systemd-sysvinit-246.15-7.11.1.x86_64.rpm udev-246.15-7.11.1.x86_64.rpm libsystemd0-246.15-7.11.1.s390x.rpm libudev-devel-246.15-7.11.1.s390x.rpm libudev1-246.15-7.11.1.s390x.rpm nss-myhostname-246.15-7.11.1.s390x.rpm nss-mymachines-246.15-7.11.1.s390x.rpm nss-resolve-246.15-7.11.1.s390x.rpm nss-systemd-246.15-7.11.1.s390x.rpm systemd-246.15-7.11.1.s390x.rpm systemd-container-246.15-7.11.1.s390x.rpm systemd-coredump-246.15-7.11.1.s390x.rpm systemd-devel-246.15-7.11.1.s390x.rpm systemd-doc-246.15-7.11.1.s390x.rpm systemd-journal-remote-246.15-7.11.1.s390x.rpm systemd-logger-246.15-7.11.1.s390x.rpm systemd-network-246.15-7.11.1.s390x.rpm systemd-sysvinit-246.15-7.11.1.s390x.rpm udev-246.15-7.11.1.s390x.rpm libsystemd0-246.15-7.11.1.ppc64le.rpm libudev-devel-246.15-7.11.1.ppc64le.rpm libudev1-246.15-7.11.1.ppc64le.rpm nss-myhostname-246.15-7.11.1.ppc64le.rpm nss-mymachines-246.15-7.11.1.ppc64le.rpm nss-resolve-246.15-7.11.1.ppc64le.rpm nss-systemd-246.15-7.11.1.ppc64le.rpm systemd-246.15-7.11.1.ppc64le.rpm systemd-container-246.15-7.11.1.ppc64le.rpm systemd-coredump-246.15-7.11.1.ppc64le.rpm systemd-devel-246.15-7.11.1.ppc64le.rpm systemd-doc-246.15-7.11.1.ppc64le.rpm systemd-journal-remote-246.15-7.11.1.ppc64le.rpm systemd-logger-246.15-7.11.1.ppc64le.rpm systemd-network-246.15-7.11.1.ppc64le.rpm systemd-sysvinit-246.15-7.11.1.ppc64le.rpm udev-246.15-7.11.1.ppc64le.rpm libsystemd0-246.15-7.11.1.aarch64.rpm libudev-devel-246.15-7.11.1.aarch64.rpm libudev1-246.15-7.11.1.aarch64.rpm nss-myhostname-246.15-7.11.1.aarch64.rpm nss-mymachines-246.15-7.11.1.aarch64.rpm nss-resolve-246.15-7.11.1.aarch64.rpm nss-systemd-246.15-7.11.1.aarch64.rpm systemd-246.15-7.11.1.aarch64.rpm systemd-container-246.15-7.11.1.aarch64.rpm systemd-coredump-246.15-7.11.1.aarch64.rpm systemd-devel-246.15-7.11.1.aarch64.rpm systemd-doc-246.15-7.11.1.aarch64.rpm systemd-journal-remote-246.15-7.11.1.aarch64.rpm systemd-logger-246.15-7.11.1.aarch64.rpm systemd-network-246.15-7.11.1.aarch64.rpm systemd-sysvinit-246.15-7.11.1.aarch64.rpm udev-246.15-7.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2614 important SUSE Updates openSUSE-SLE 15.3 This update for spice-vdagent fixes the following issues: - Update to version 0.21.0 - CVE-2020-25650: memory DoS via arbitrary entries in `active_xfers` hash table (bsc#1177780) - CVE-2020-25651: possible file transfer DoS and information leak via `active_xfers` hash map (bsc#1177781) - CVE-2020-25652: possibility to exhaust file descriptors in `vdagentd` (bsc#1177782) - CVE-2020-25653: UNIX domain socket peer PID retrieved via `SO_PEERCRED` is subject to race condition (bsc#1177783) spice-vdagent-0.21.0-3.3.1.src.rpm spice-vdagent-0.21.0-3.3.1.x86_64.rpm spice-vdagent-0.21.0-3.3.1.s390x.rpm spice-vdagent-0.21.0-3.3.1.ppc64le.rpm spice-vdagent-0.21.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2839 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2 fixes the following issues: - Do not escape "$" in URL paths. (bsc#1187581) - Don't crash with UI exception in 'Progress.rb' if a popup is in the way. (bsc#1187676) yast2-4.3.65-3.11.1.src.rpm yast2-4.3.65-3.11.1.x86_64.rpm yast2-logs-4.3.65-3.11.1.x86_64.rpm yast2-4.3.65-3.11.1.s390x.rpm yast2-logs-4.3.65-3.11.1.s390x.rpm yast2-4.3.65-3.11.1.ppc64le.rpm yast2-logs-4.3.65-3.11.1.ppc64le.rpm yast2-4.3.65-3.11.1.aarch64.rpm yast2-logs-4.3.65-3.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2558 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pytz fixes the following issues: - Add %pyunittest shim for platforms where it is missing. - Remove real directory of %{python_sitelib}/pytz/zoneinfo when upgrading, before it is replaced by a symlink. (bsc#1185748) - Bump tzdata_version - update to 2021.1: * update to IANA 2021a timezone release python-pytz-2021.1-3.3.1.src.rpm python2-pytz-2021.1-3.3.1.noarch.rpm python3-pytz-2021.1-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2670 moderate SUSE Updates openSUSE-SLE 15.3 This recommended update for libmodulemd fixes the following issues: Provide libmodulemd (jsc#ECO-3458) - Make available libmodulemd to Basesystem Module 15 SP2 - Make available libmodulemd to Basesystem Module 15 SP3 - Make the package 'createrepo_c' installable libmodulemd-2.12.0-3.8.1.src.rpm libmodulemd-devel-2.12.0-3.8.1.x86_64.rpm libmodulemd2-2.12.0-3.8.1.x86_64.rpm modulemd-validator-2.12.0-3.8.1.x86_64.rpm python3-libmodulemd-2.12.0-3.8.1.x86_64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.x86_64.rpm libmodulemd-devel-2.12.0-3.8.1.s390x.rpm libmodulemd2-2.12.0-3.8.1.s390x.rpm modulemd-validator-2.12.0-3.8.1.s390x.rpm python3-libmodulemd-2.12.0-3.8.1.s390x.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.s390x.rpm libmodulemd-devel-2.12.0-3.8.1.ppc64le.rpm libmodulemd2-2.12.0-3.8.1.ppc64le.rpm modulemd-validator-2.12.0-3.8.1.ppc64le.rpm python3-libmodulemd-2.12.0-3.8.1.ppc64le.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.ppc64le.rpm libmodulemd-devel-2.12.0-3.8.1.aarch64.rpm libmodulemd2-2.12.0-3.8.1.aarch64.rpm modulemd-validator-2.12.0-3.8.1.aarch64.rpm python3-libmodulemd-2.12.0-3.8.1.aarch64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2952 important SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - Update to jdk-11.0.12+7 - CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565) - CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. (bsc#1188566) - CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564) java-11-openjdk-11.0.12.0-3.59.1.src.rpm java-11-openjdk-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-src-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-src-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-src-11.0.12.0-3.59.1.aarch64.rpm openSUSE-SLE-15.3-2021-2878 moderate SUSE Updates openSUSE-SLE 15.3 This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container contains the following fixes: Changes in kubevirt: - Generate meta info for containers during rpm build. - Add REGISTRY variable. - Use registry.suse.com as the default fallback for sle. - Rename macro registry_path to kubevirt_registry_path. - Do not package OLM manifests. - Install virt-launcher SELinux policy. (bsc#1185714) - Include release number into docker tag. - Add kubevirt_containers_meta build service. - Set default reg_path='registry.opensuse.org/kubevirt'. - Add _constraints file with disk requirements. - Fix virt-launcher VirDomain double free crash. Changes on the containers: - Include the registry in org.opensuse.reference. - Tag the image with <version>-<release>. - run zypper clean after installation. Changes specific to virt-launcher-container: - Create symlinks for OVMF binaries in expected location. - Sort installed packages alphabetically. kubevirt-0.40.0-5.14.3.src.rpm kubevirt-container-disk-0.40.0-5.14.3.x86_64.rpm kubevirt-manifests-0.40.0-5.14.3.x86_64.rpm kubevirt-tests-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-api-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-controller-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-handler-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-launcher-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-operator-0.40.0-5.14.3.x86_64.rpm kubevirt-virtctl-0.40.0-5.14.3.x86_64.rpm openSUSE-SLE-15.3-2021-2664 moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-prometheus fixes the following issues: - Provide and reload firewalld configuration only for: + openSUSE Leap 15.0, 15.1, 15.2 + SUSE SLE15, SLE15 SP1, SLE15 SP2 - Upgrade to upstream version 2.27.1 (jsc#SLE-18254) + Bugfix: * SECURITY: Fix arbitrary redirects under the /new endpoint (CVE-2021-29622, bsc#1186242) + Features: * Promtool: Retroactive rule evaluation functionality. #7675 * Configuration: Environment variable expansion for external labels. Behind --enable-feature=expand-external-labels flag. #8649 * TSDB: Add a flag(--storage.tsdb.max-block-chunk-segment-size) to control the max chunks file size of the blocks for small Prometheus instances. * UI: Add a dark theme. #8604 * AWS Lightsail Discovery: Add AWS Lightsail Discovery. #8693 * Docker Discovery: Add Docker Service Discovery. #8629 * OAuth: Allow OAuth 2.0 to be used anywhere an HTTP client is used. #8761 * Remote Write: Send exemplars via remote write. Experimental and disabled by default. #8296 + Enhancements: * Digital Ocean Discovery: Add __meta_digitalocean_vpc label. #8642 * Scaleway Discovery: Read Scaleway secret from a file. #8643 * Scrape: Add configurable limits for label size and count. #8777 * UI: Add 16w and 26w time range steps. #8656 * Templating: Enable parsing strings in humanize functions. #8682 + Bugfixes: * UI: Provide errors instead of blank page on TSDB Status Page. #8654 #8659 * TSDB: Do not panic when writing very large records to the WAL. #8790 * TSDB: Avoid panic when mmaped memory is referenced after the file is closed. #8723 * Scaleway Discovery: Fix nil pointer dereference. #8737 * Consul Discovery: Restart no longer required after config update with no targets. #8766 - Add tarball with vendor modules and web assets - Uyuni: Read formula data from exporters map - Uyuni: Add support for TLS targets - Upgrade to upstream version 2.26.0 + Changes * Alerting: Using Alertmanager v2 API by default. #8626 * Prometheus/Promtool: Binaries are now printing help and usage to stdout instead of stderr. #8542 + Features * Remote: Add support for AWS SigV4 auth method for remote_write. #8509 * PromQL: Allow negative offsets. Behind --enable-feature=promql-negative-offset flag. #8487 * UI: Add advanced auto-completion, syntax highlighting and linting to graph page query input. #8634 + Enhancements * PromQL: Add last_over_time, sgn, clamp functions. #8457 * Scrape: Add support for specifying type of Authorization header credentials with Bearer by default. #8512 * Scrape: Add follow_redirects option to scrape configuration. #8546 * Remote: Allow retries on HTTP 429 response code for remote_write. #8237 #8477 * Remote: Allow configuring custom headers for remote_read. #8516 * UI: Hitting Enter now triggers new query. #8581 * UI: Better handling of long rule and names on the /rules and /targets pages. #8608 #8609 * UI: Add collapse/expand all button on the /targets page. #8486 - Upgrade to upstream version 2.25.0 + Features * Include a new `--enable-feature=` flag that enables experimental features. + Enhancements * Add optional name property to testgroup for better test failure output. #8440 * Add warnings into React Panel on the Graph page. #8427 * TSDB: Increase the number of buckets for the compaction duration metric. #8342 * Remote: Allow passing along custom remote_write HTTP headers. #8416 * Mixins: Scope grafana configuration. #8332 * Kubernetes SD: Add endpoint labels metadata. #8273 * UI: Expose total number of label pairs in head in TSDB stats page. #8343 * TSDB: Reload blocks every minute, to detect new blocks and enforce retention more often. #8343 + Bug fixes * API: Fix global URL when external address has no port. #8359 * Deprecate unused flag --alertmanager.timeout. #8407 - Upgrade to upstream version 2.24.1 + Enhancements * Cache basic authentication results to significantly improve performance of HTTP endpoints. - Upgrade to upstream version 2.24.0 + Features * Add TLS and basic authentication to HTTP endpoints. #8316 * promtool: Add check web-config subcommand to check web config files. #8319 * promtool: Add tsdb create-blocks-from openmetrics subcommand to backfill metrics data from an OpenMetrics file. + Enhancements * HTTP API: Fast-fail queries with only empty matchers. #8288 * HTTP API: Support matchers for labels API. #8301 * promtool: Improve checking of URLs passed on the command line. #7956 * SD: Expose IPv6 as a label in EC2 SD. #7086 * SD: Reuse EC2 client, reducing frequency of requesting credentials. #8311 * TSDB: Add logging when compaction takes more than the block time range. #8151 * TSDB: Avoid unnecessary GC runs after compaction. #8276 - Upgrade to upstream version 2.23.0 + Changes * UI: Make the React UI default. #8142 * Remote write: The following metrics were removed/renamed in remote write. #6815 > prometheus_remote_storage_succeeded_samples_total was removed and prometheus_remote_storage_samples_total was introduced for all the samples attempted to send. > prometheus_remote_storage_sent_bytes_total was removed and replaced with prometheus_remote_storage_samples_bytes_total and prometheus_remote_storage_metadata_bytes_total. > prometheus_remote_storage_failed_samples_total -> prometheus_remote_storage_samples_failed_total . > prometheus_remote_storage_retried_samples_total -> prometheus_remote_storage_samples_retried_total. > prometheus_remote_storage_dropped_samples_total -> prometheus_remote_storage_samples_dropped_total. > prometheus_remote_storage_pending_samples -> prometheus_remote_storage_samples_pending. * Remote: Do not collect non-initialized timestamp metrics. #8060 + Enhancements * Remote write: Added a metric prometheus_remote_storage_max_samples_per_send for remote write. #8102 * TSDB: Make the snapshot directory name always the same length. #8138 * TSDB: Create a checkpoint only once at the end of all head compactions. #8067 * TSDB: Avoid Series API from hitting the chunks. #8050 * TSDB: Cache label name and last value when adding series during compactions making compactions faster. #8192 * PromQL: Improved performance of Hash method making queries a bit faster. #8025 * promtool: tsdb list now prints block sizes. #7993 * promtool: Calculate mint and maxt per test avoiding unnecessary calculations. #8096 * SD: Add filtering of services to Docker Swarm SD. #8074 - Uyuni: `hostname` label is now set to FQDN instead of IP - Update to upstream version 2.22.1 - Update packaging * Remove systemd and shadow hard requirements * use systemd-sysusers to configure the user in a dedicated 'system-user-prometheus' subpackage * add 'prometheus' package alias + Add support for Prometheus exporters proxy - Remove prometheus.firewall.xml source file - Remove firewalld files. They are installed in the main firewalld package. golang-github-prometheus-prometheus-2.27.1-3.8.1.src.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.x86_64.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.s390x.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.ppc64le.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2675 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: ansible: - The support level for ansible is l2, not l3 dracut-saltboot: - Force installation of libexpat.so.1 (bsc#1188846) - Use kernel parameters from PXE formula also for local boot golang-github-prometheus-prometheus: - Provide and reload firewalld configuration only for: + openSUSE Leap 15.0, 15.1, 15.2 + SUSE Linux Enterprise 15, 15 SP1, 15 SP2 - Upgrade to upstream version 2.27.1 (jsc#SLE-18254) + Bugfix: * SECURITY: Fix arbitrary redirects under the /new endpoint (CVE-2021-29622, bsc#1186242) * UI: Provide errors instead of blank page on TSDB Status Page. #8654 #8659 * TSDB: Do not panic when writing very large records to the WAL. #8790 * TSDB: Avoid panic when mmaped memory is referenced after the file is closed. #8723 * Scaleway Discovery: Fix nil pointer dereference. #8737 * Consul Discovery: Restart no longer required after config update with no targets. #8766 + Features: * Promtool: Retroactive rule evaluation functionality. * Configuration: Environment variable expansion for external labels. Behind '--enable-feature=expand-external-labels' flag. * Add a flag '--storage.tsdb.max-block-chunk-segment-size' to control the max chunks file size of the blocks for small Prometheus instances. * UI: Add a dark theme. * AWS Lightsail Discovery: Add AWS Lightsail Discovery. * Docker Discovery: Add Docker Service Discovery. * OAuth: Allow OAuth 2.0 to be used anywhere an HTTP client is used. * Remote Write: Send exemplars via remote write. Experimental and disabled by default. + Enhancements: * Digital Ocean Discovery: Add '__meta_digitalocean_vpc' label. * Scaleway Discovery: Read Scaleway secret from a file. * Scrape: Add configurable limits for label size and count. * UI: Add 16w and 26w time range steps. * Templating: Enable parsing strings in humanize functions. - Update package with changes from `server:monitoring` (bsc#1175478) Left out removal of 'firewalld' related configuration files as SUSE Linux Enterprise 15-SP1's `firewalld` package does not contain 'prometheus' configuration yet. mgr-cfg: - No visible impact for the user mgr-custom-info: - No visible impact for the user mgr-osad: - No visible impact for the user mgr-push: - No visible impact for the user mgr-virtualization: - No visible impact for the user rhnlib: - No visible impact for the user spacecmd: - Make spacecmd aware of retracted patches/packages - Enhance help for installation types when creating distributions (bsc#1186581) - Parse empty argument when nothing in between the separator spacewalk-client-tools: - Update translation strings spacewalk-koan: - Fix for spacewalk-koan tests after switching to the new Docker images spacewalk-oscap: - No visible impact for the user suseRegisterInfo: - No visible impact for the user uyuni-common-libs: - Handle broken RPM packages to prevent exceptions causing fails on repository synchronization (bsc#1186650) - Maintainer field in debian packages are only recommended (bsc#1186508) ansible-2.9.21-1.5.1.noarch.rpm ansible-2.9.21-1.5.1.src.rpm ansible-doc-2.9.21-1.5.1.noarch.rpm ansible-test-2.9.21-1.5.1.noarch.rpm dracut-saltboot-0.1.1627546504.96a0b3e-1.27.1.noarch.rpm dracut-saltboot-0.1.1627546504.96a0b3e-1.27.1.src.rpm mgr-cfg-4.2.3-1.18.1.noarch.rpm mgr-cfg-4.2.3-1.18.1.src.rpm mgr-cfg-actions-4.2.3-1.18.1.noarch.rpm mgr-cfg-client-4.2.3-1.18.1.noarch.rpm mgr-cfg-management-4.2.3-1.18.1.noarch.rpm mgr-custom-info-4.2.2-1.12.1.noarch.rpm mgr-custom-info-4.2.2-1.12.1.src.rpm mgr-osa-dispatcher-4.2.6-1.30.1.noarch.rpm mgr-osad-4.2.6-1.30.1.noarch.rpm mgr-osad-4.2.6-1.30.1.src.rpm mgr-push-4.2.3-1.12.1.noarch.rpm mgr-push-4.2.3-1.12.1.src.rpm mgr-virtualization-4.2.2-1.20.1.src.rpm mgr-virtualization-host-4.2.2-1.20.1.noarch.rpm python2-mgr-cfg-4.2.3-1.18.1.noarch.rpm python2-mgr-cfg-actions-4.2.3-1.18.1.noarch.rpm python2-mgr-cfg-client-4.2.3-1.18.1.noarch.rpm python2-mgr-cfg-management-4.2.3-1.18.1.noarch.rpm python2-mgr-osa-common-4.2.6-1.30.1.noarch.rpm python2-mgr-osa-dispatcher-4.2.6-1.30.1.noarch.rpm python2-mgr-osad-4.2.6-1.30.1.noarch.rpm python2-mgr-push-4.2.3-1.12.1.noarch.rpm python2-mgr-virtualization-common-4.2.2-1.20.1.noarch.rpm python2-mgr-virtualization-host-4.2.2-1.20.1.noarch.rpm python2-rhnlib-4.2.4-3.28.1.noarch.rpm python2-spacewalk-check-4.2.12-3.44.1.noarch.rpm python2-spacewalk-client-setup-4.2.12-3.44.1.noarch.rpm python2-spacewalk-client-tools-4.2.12-3.44.1.noarch.rpm python2-spacewalk-koan-4.2.4-3.21.1.noarch.rpm python2-spacewalk-oscap-4.2.2-3.12.1.noarch.rpm python2-suseRegisterInfo-4.2.4-3.15.1.noarch.rpm python2-uyuni-common-libs-4.2.5-1.15.1.x86_64.rpm python3-mgr-cfg-4.2.3-1.18.1.noarch.rpm python3-mgr-cfg-actions-4.2.3-1.18.1.noarch.rpm python3-mgr-cfg-client-4.2.3-1.18.1.noarch.rpm python3-mgr-cfg-management-4.2.3-1.18.1.noarch.rpm python3-mgr-osa-common-4.2.6-1.30.1.noarch.rpm python3-mgr-osa-dispatcher-4.2.6-1.30.1.noarch.rpm python3-mgr-osad-4.2.6-1.30.1.noarch.rpm python3-mgr-push-4.2.3-1.12.1.noarch.rpm python3-mgr-virtualization-common-4.2.2-1.20.1.noarch.rpm python3-mgr-virtualization-host-4.2.2-1.20.1.noarch.rpm python3-rhnlib-4.2.4-3.28.1.noarch.rpm python3-spacewalk-check-4.2.12-3.44.1.noarch.rpm python3-spacewalk-client-setup-4.2.12-3.44.1.noarch.rpm python3-spacewalk-client-tools-4.2.12-3.44.1.noarch.rpm python3-spacewalk-koan-4.2.4-3.21.1.noarch.rpm python3-spacewalk-oscap-4.2.2-3.12.1.noarch.rpm python3-suseRegisterInfo-4.2.4-3.15.1.noarch.rpm python3-uyuni-common-libs-4.2.5-1.15.1.x86_64.rpm rhnlib-4.2.4-3.28.1.src.rpm spacecmd-4.2.11-3.62.1.noarch.rpm spacecmd-4.2.11-3.62.1.src.rpm spacewalk-check-4.2.12-3.44.1.noarch.rpm spacewalk-client-setup-4.2.12-3.44.1.noarch.rpm spacewalk-client-tools-4.2.12-3.44.1.noarch.rpm spacewalk-client-tools-4.2.12-3.44.1.src.rpm spacewalk-koan-4.2.4-3.21.1.noarch.rpm spacewalk-koan-4.2.4-3.21.1.src.rpm spacewalk-oscap-4.2.2-3.12.1.noarch.rpm spacewalk-oscap-4.2.2-3.12.1.src.rpm suseRegisterInfo-4.2.4-3.15.1.noarch.rpm suseRegisterInfo-4.2.4-3.15.1.src.rpm uyuni-common-libs-4.2.5-1.15.1.src.rpm python2-uyuni-common-libs-4.2.5-1.15.1.s390x.rpm python3-uyuni-common-libs-4.2.5-1.15.1.s390x.rpm python2-uyuni-common-libs-4.2.5-1.15.1.ppc64le.rpm python3-uyuni-common-libs-4.2.5-1.15.1.ppc64le.rpm python2-uyuni-common-libs-4.2.5-1.15.1.aarch64.rpm python3-uyuni-common-libs-4.2.5-1.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2617 important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.2.39 (bsc#1182739) - CVE-2021-2166: DML unspecified vulnerability lead to complete DOS. (bsc#1185870) - CVE-2021-2154: DML unspecified vulnerability can lead to complete DOS. (bsc#1185872) - CVE-2021-2180: InnoDB unspecified vulnerability lead to complete DOS. (bsc#1185868) - CVE-2021-27928: Fixed a remote code execution issue. (bsc#1183770) libmysqld-devel-10.2.39-3.40.1.x86_64.rpm libmysqld19-10.2.39-3.40.1.x86_64.rpm mariadb-10.2.39-3.40.1.src.rpm libmysqld-devel-10.2.39-3.40.1.s390x.rpm libmysqld19-10.2.39-3.40.1.s390x.rpm libmysqld-devel-10.2.39-3.40.1.ppc64le.rpm libmysqld19-10.2.39-3.40.1.ppc64le.rpm libmysqld-devel-10.2.39-3.40.1.aarch64.rpm libmysqld19-10.2.39-3.40.1.aarch64.rpm openSUSE-SLE-15.3-2021-2616 important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.2.39 (bsc#1182739) - CVE-2021-2166: DML unspecified vulnerability lead to complete DOS. (bsc#1185870) - CVE-2021-2154: DML unspecified vulnerability can lead to complete DOS. (bsc#1185872) - CVE-2021-27928: Fixed a remote code execution issue. (bsc#1183770) mariadb-10.4.20-3.9.1.src.rpm mariadb-galera-10.4.20-3.9.1.x86_64.rpm mariadb-galera-10.4.20-3.9.1.s390x.rpm mariadb-galera-10.4.20-3.9.1.ppc64le.rpm mariadb-galera-10.4.20-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3000 moderate SUSE Updates openSUSE-SLE 15.3 This update for vncmanager-controller fixes the following issues: - Fix extension loading error that disables "Vnc session configuration" option (bsc#1188118) vncmanager-controller-1.0.1-3.3.1.src.rpm vncmanager-controller-1.0.1-3.3.1.x86_64.rpm vncmanager-controller-gnome-1.0.1-3.3.1.x86_64.rpm vncmanager-controller-1.0.1-3.3.1.s390x.rpm vncmanager-controller-gnome-1.0.1-3.3.1.s390x.rpm vncmanager-controller-1.0.1-3.3.1.ppc64le.rpm vncmanager-controller-gnome-1.0.1-3.3.1.ppc64le.rpm vncmanager-controller-1.0.1-3.3.1.aarch64.rpm vncmanager-controller-gnome-1.0.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2565 low SUSE Updates openSUSE-SLE 15.3 This update for fastjar fixes the following issues: - CVE-2010-2322: Fixed a directory traversal vulnerabilities. (bsc#1188517) fastjar-0.98-3.6.2.src.rpm fastjar-0.98-3.6.2.x86_64.rpm fastjar-0.98-3.6.2.s390x.rpm fastjar-0.98-3.6.2.ppc64le.rpm fastjar-0.98-3.6.2.aarch64.rpm openSUSE-SLE-15.3-2021-2605 important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.2.39 (bsc#1182739) - CVE-2021-2166: DML unspecified vulnerability lead to complete DOS. (bsc#1185870) - CVE-2021-2154: DML unspecified vulnerability can lead to complete DOS. (bsc#1185872) - CVE-2021-27928: Fixed a remote code execution issue. (bsc#1183770) libmariadbd-devel-10.5.11-3.3.1.x86_64.rpm libmariadbd19-10.5.11-3.3.1.x86_64.rpm mariadb-10.5.11-3.3.1.src.rpm mariadb-10.5.11-3.3.1.x86_64.rpm mariadb-bench-10.5.11-3.3.1.x86_64.rpm mariadb-client-10.5.11-3.3.1.x86_64.rpm mariadb-errormessages-10.5.11-3.3.1.noarch.rpm mariadb-rpm-macros-10.5.11-3.3.1.x86_64.rpm mariadb-test-10.5.11-3.3.1.x86_64.rpm mariadb-tools-10.5.11-3.3.1.x86_64.rpm libmariadbd-devel-10.5.11-3.3.1.s390x.rpm libmariadbd19-10.5.11-3.3.1.s390x.rpm mariadb-10.5.11-3.3.1.s390x.rpm mariadb-bench-10.5.11-3.3.1.s390x.rpm mariadb-client-10.5.11-3.3.1.s390x.rpm mariadb-rpm-macros-10.5.11-3.3.1.s390x.rpm mariadb-test-10.5.11-3.3.1.s390x.rpm mariadb-tools-10.5.11-3.3.1.s390x.rpm libmariadbd-devel-10.5.11-3.3.1.ppc64le.rpm libmariadbd19-10.5.11-3.3.1.ppc64le.rpm mariadb-10.5.11-3.3.1.ppc64le.rpm mariadb-bench-10.5.11-3.3.1.ppc64le.rpm mariadb-client-10.5.11-3.3.1.ppc64le.rpm mariadb-rpm-macros-10.5.11-3.3.1.ppc64le.rpm mariadb-test-10.5.11-3.3.1.ppc64le.rpm mariadb-tools-10.5.11-3.3.1.ppc64le.rpm libmariadbd-devel-10.5.11-3.3.1.aarch64.rpm libmariadbd19-10.5.11-3.3.1.aarch64.rpm mariadb-10.5.11-3.3.1.aarch64.rpm mariadb-bench-10.5.11-3.3.1.aarch64.rpm mariadb-client-10.5.11-3.3.1.aarch64.rpm mariadb-rpm-macros-10.5.11-3.3.1.aarch64.rpm mariadb-test-10.5.11-3.3.1.aarch64.rpm mariadb-tools-10.5.11-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2899 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-rpm-macros fixes the following issues: - Fixed an issue whe zypper ignores the ordering constraints. (bsc#1187332) - Introduce '%sysusers_create_package': '%sysusers_create' and '%sysusers_create_inline' are now deprecated and the new macro should be used instead. - %sysusers_create_inline: use here-docs instead of echo (bsc#1186282) systemd-rpm-macros-8-7.18.1.noarch.rpm systemd-rpm-macros-8-7.18.1.src.rpm openSUSE-SLE-15.3-2021-2987 low SUSE Updates openSUSE-SLE 15.3 This update for pesign fixes the following issues: - Link as Position Independent Executable (bsc#1184124). pesign-0.112-4.9.1.src.rpm pesign-0.112-4.9.1.x86_64.rpm pesign-0.112-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2863 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-dbus-python fixes the following issues: - Update to latest version from tumbleweed. (jsc#ECO-3589, bsc#1183818) - update to 1.2.16: * All tests are run even if the 'tap.py' module is not available, althoug diagnostics for failing tests will be better if it is present. - Support builds with more than one python3 flavor - Clean duplicate python flavor variables for configure - Version update to version 1.2.14: * Ensure that the numeric types from dbus.types get the same str() under Python 3.8 that they did under previous versions. * Disable -Winline. * Add clearer license information using SPDX-License-Identifier. * Include inherited methods and properties when documenting objects, which regressed when migrating from epydoc to sphinx. * Add missing variant_level member to UnixFd type, for parity with the other dbus.types types * Don't reply to method calls if they have the NO_REPLY_EXPECTED flag * Silence '-Wcast-function-type' with gcc 8. * Fix distcheck with python3.7 by deleting '__pycache__' during uninstall. * Consistently save and restore the exception indicator when called from C code. - Add missing dependency for pkg-config files - Version update to version 1.2.8: * Python 2.7 required or 3.4 respectively * Upstream dropped epydoc completely - Add dbus-1-python3 package - Make BusConnection.list_activatable_names actually call struct entries than the signature allows with libdbus 1.4 imports dbus, is finalized, is re-initialized, and re-imports - When removing signal matches, clean up internal state, avoiding a memory leak in long-lived Python processes that connect to - When setting the sender of a message, allow it to be org.freedesktop.DBus so you can implement a D-Bus daemon - New package: dbus-1-python-devel python-dbus-python-1.2.16-6.3.1.src.rpm python-dbus-python-common-devel-1.2.16-6.3.1.x86_64.rpm python2-dbus-python-1.2.16-6.3.1.x86_64.rpm python2-dbus-python-devel-1.2.16-6.3.1.x86_64.rpm python3-dbus-python-1.2.16-6.3.1.x86_64.rpm python3-dbus-python-devel-1.2.16-6.3.1.x86_64.rpm python-dbus-python-common-devel-1.2.16-6.3.1.s390x.rpm python2-dbus-python-1.2.16-6.3.1.s390x.rpm python2-dbus-python-devel-1.2.16-6.3.1.s390x.rpm python3-dbus-python-1.2.16-6.3.1.s390x.rpm python3-dbus-python-devel-1.2.16-6.3.1.s390x.rpm python-dbus-python-common-devel-1.2.16-6.3.1.ppc64le.rpm python2-dbus-python-1.2.16-6.3.1.ppc64le.rpm python2-dbus-python-devel-1.2.16-6.3.1.ppc64le.rpm python3-dbus-python-1.2.16-6.3.1.ppc64le.rpm python3-dbus-python-devel-1.2.16-6.3.1.ppc64le.rpm python-dbus-python-common-devel-1.2.16-6.3.1.aarch64.rpm python2-dbus-python-1.2.16-6.3.1.aarch64.rpm python2-dbus-python-devel-1.2.16-6.3.1.aarch64.rpm python3-dbus-python-1.2.16-6.3.1.aarch64.rpm python3-dbus-python-devel-1.2.16-6.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2781 moderate SUSE Updates openSUSE-SLE 15.3 This update for psqlODBC fixes the following issues: - Update to 13.01.0000: * Fix a bug of CC_send_query_append() when the ignore_roundtrip_time flag is on. * Add a call for SQLDescribeCol() before SQLExecute() to prepare-test. * Add a *update returning* test case to insertreturning regression test. * Let SQLDescribeCol() use parsed result when the current executed result is NULL. * Let SQLExecute() destroy the old result first. * Forget to apply disable_convert_func flag to VARCHAR and LONGVARCHAR. * Prioritize DISABLE_KEEPALIVE checkbox over the disable_keepalive bit of ExtraOptions. * Format check for ExtraOptions of setup dialog. - Update to 13.00.0000: * Add support for CONVERT scalar function. * Cope with the case that openssl libraries link msvc runtimes other than libraries which psqlodbc or libpq links. * Call AC_CHECK_SIZEOF() or AC_CHECK_TYPES() macros at earlier stage where LIBS variable isn't set yet. * Fix a compilation error with GCC 10 due to conflicting variable names. * Remove curr_param_result property of StatementClass and separate parsed result from the exec result. * Add support for development with VC16(Visual Studio 2019). * Hold the first and last result for parametrized SQL statements with array of parameters. * This would improve the performance of bulk inserts/updates etc. * Revise the handling of QResultClass list. * Introduce macros QR_concat(), QR_detach() and QR_next(). * Correct the handling of SQL_ROW_ERROR and SQL_ROW_SUCCESS_WITH_INFO. * Remove the single table restriction in SC_set_SS_columnkey. * Improve error reporting about SC_pos_reload_needed(). - Update to 12.02.0000: * Add a new *Display Optional Error Message* option. * Handle notice messages in libpq_bind_and_exec(). * Ignore PQtransactionStatus PQTRANS_ACTIVE in LIBPQ_update_transaction_status(). PQTRANS_ACTIVE isn't a transaction status. * Improve execution of parameterized SQL statements with arrays * Add a new option IgnoreTimeout. * An improvement for psqlodbc developpers. Make it possible to call some shell scripts from other directories. psqlODBC-13.01.0000-3.9.1.src.rpm psqlODBC-13.01.0000-3.9.1.x86_64.rpm psqlODBC-13.01.0000-3.9.1.s390x.rpm psqlODBC-13.01.0000-3.9.1.ppc64le.rpm psqlODBC-13.01.0000-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3020 moderate SUSE Updates openSUSE-SLE 15.3 This update for apache2-mod_auth_openidc fixes the following issues: - CVE-2021-32785: format string bug via hiredis (bsc#1188638) - CVE-2021-32786: open redirect in logout functionality (bsc#1188639) - CVE-2021-32791: Hardcoded static IV and AAD with a reused key in AES GCM encryption (bsc#1188849) - CVE-2021-32792: XSS when using OIDCPreservePost On (bsc#1188848) apache2-mod_auth_openidc-2.3.8-3.15.1.src.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.x86_64.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.s390x.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.ppc64le.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2800 important SUSE Updates openSUSE-SLE 15.3 This update for krb5 fixes the following issues: - CVE-2021-36222: Fixed KDC null deref on bad encrypted challenge. (bsc#1188571) krb5-1.16.3-3.21.1.src.rpm krb5-1.16.3-3.21.1.x86_64.rpm krb5-32bit-1.16.3-3.21.1.x86_64.rpm krb5-client-1.16.3-3.21.1.x86_64.rpm krb5-devel-1.16.3-3.21.1.x86_64.rpm krb5-devel-32bit-1.16.3-3.21.1.x86_64.rpm krb5-mini-1.16.3-3.21.1.src.rpm krb5-mini-1.16.3-3.21.1.x86_64.rpm krb5-mini-devel-1.16.3-3.21.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.x86_64.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.x86_64.rpm krb5-server-1.16.3-3.21.1.x86_64.rpm krb5-1.16.3-3.21.1.s390x.rpm krb5-client-1.16.3-3.21.1.s390x.rpm krb5-devel-1.16.3-3.21.1.s390x.rpm krb5-mini-1.16.3-3.21.1.s390x.rpm krb5-mini-devel-1.16.3-3.21.1.s390x.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.s390x.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.s390x.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.s390x.rpm krb5-server-1.16.3-3.21.1.s390x.rpm krb5-1.16.3-3.21.1.ppc64le.rpm krb5-client-1.16.3-3.21.1.ppc64le.rpm krb5-devel-1.16.3-3.21.1.ppc64le.rpm krb5-mini-1.16.3-3.21.1.ppc64le.rpm krb5-mini-devel-1.16.3-3.21.1.ppc64le.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.ppc64le.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.ppc64le.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.ppc64le.rpm krb5-server-1.16.3-3.21.1.ppc64le.rpm krb5-1.16.3-3.21.1.aarch64.rpm krb5-client-1.16.3-3.21.1.aarch64.rpm krb5-devel-1.16.3-3.21.1.aarch64.rpm krb5-mini-1.16.3-3.21.1.aarch64.rpm krb5-mini-devel-1.16.3-3.21.1.aarch64.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.aarch64.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.aarch64.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.aarch64.rpm krb5-server-1.16.3-3.21.1.aarch64.rpm openSUSE-SLE-15.3-2021-2849 moderate SUSE Updates openSUSE-SLE 15.3 This update for graphviz fixes the following issues: - Tool 'dot', provided by graphviz, crashes on specific data input (bsc#1151207) graphviz-2.40.1-6.12.1.src.rpm graphviz-2.40.1-6.12.1.x86_64.rpm graphviz-addons-2.40.1-6.12.1.src.rpm graphviz-devel-2.40.1-6.12.1.x86_64.rpm graphviz-doc-2.40.1-6.12.1.x86_64.rpm graphviz-gd-2.40.1-6.12.1.x86_64.rpm graphviz-gnome-2.40.1-6.12.1.x86_64.rpm graphviz-guile-2.40.1-6.12.1.x86_64.rpm graphviz-gvedit-2.40.1-6.12.1.x86_64.rpm graphviz-java-2.40.1-6.12.1.x86_64.rpm graphviz-lua-2.40.1-6.12.1.x86_64.rpm graphviz-perl-2.40.1-6.12.1.x86_64.rpm graphviz-php-2.40.1-6.12.1.x86_64.rpm graphviz-plugins-core-2.40.1-6.12.1.x86_64.rpm graphviz-python-2.40.1-6.12.1.x86_64.rpm graphviz-ruby-2.40.1-6.12.1.x86_64.rpm graphviz-smyrna-2.40.1-6.12.1.x86_64.rpm graphviz-tcl-2.40.1-6.12.1.x86_64.rpm libgraphviz6-2.40.1-6.12.1.x86_64.rpm graphviz-2.40.1-6.12.1.s390x.rpm graphviz-devel-2.40.1-6.12.1.s390x.rpm graphviz-doc-2.40.1-6.12.1.s390x.rpm graphviz-gd-2.40.1-6.12.1.s390x.rpm graphviz-gnome-2.40.1-6.12.1.s390x.rpm graphviz-guile-2.40.1-6.12.1.s390x.rpm graphviz-gvedit-2.40.1-6.12.1.s390x.rpm graphviz-java-2.40.1-6.12.1.s390x.rpm graphviz-lua-2.40.1-6.12.1.s390x.rpm graphviz-perl-2.40.1-6.12.1.s390x.rpm graphviz-php-2.40.1-6.12.1.s390x.rpm graphviz-plugins-core-2.40.1-6.12.1.s390x.rpm graphviz-python-2.40.1-6.12.1.s390x.rpm graphviz-ruby-2.40.1-6.12.1.s390x.rpm graphviz-smyrna-2.40.1-6.12.1.s390x.rpm graphviz-tcl-2.40.1-6.12.1.s390x.rpm libgraphviz6-2.40.1-6.12.1.s390x.rpm graphviz-2.40.1-6.12.1.ppc64le.rpm graphviz-devel-2.40.1-6.12.1.ppc64le.rpm graphviz-doc-2.40.1-6.12.1.ppc64le.rpm graphviz-gd-2.40.1-6.12.1.ppc64le.rpm graphviz-gnome-2.40.1-6.12.1.ppc64le.rpm graphviz-guile-2.40.1-6.12.1.ppc64le.rpm graphviz-gvedit-2.40.1-6.12.1.ppc64le.rpm graphviz-java-2.40.1-6.12.1.ppc64le.rpm graphviz-lua-2.40.1-6.12.1.ppc64le.rpm graphviz-perl-2.40.1-6.12.1.ppc64le.rpm graphviz-php-2.40.1-6.12.1.ppc64le.rpm graphviz-plugins-core-2.40.1-6.12.1.ppc64le.rpm graphviz-python-2.40.1-6.12.1.ppc64le.rpm graphviz-ruby-2.40.1-6.12.1.ppc64le.rpm graphviz-smyrna-2.40.1-6.12.1.ppc64le.rpm graphviz-tcl-2.40.1-6.12.1.ppc64le.rpm libgraphviz6-2.40.1-6.12.1.ppc64le.rpm graphviz-2.40.1-6.12.1.aarch64.rpm graphviz-devel-2.40.1-6.12.1.aarch64.rpm graphviz-doc-2.40.1-6.12.1.aarch64.rpm graphviz-gd-2.40.1-6.12.1.aarch64.rpm graphviz-gnome-2.40.1-6.12.1.aarch64.rpm graphviz-guile-2.40.1-6.12.1.aarch64.rpm graphviz-gvedit-2.40.1-6.12.1.aarch64.rpm graphviz-java-2.40.1-6.12.1.aarch64.rpm graphviz-lua-2.40.1-6.12.1.aarch64.rpm graphviz-perl-2.40.1-6.12.1.aarch64.rpm graphviz-php-2.40.1-6.12.1.aarch64.rpm graphviz-plugins-core-2.40.1-6.12.1.aarch64.rpm graphviz-python-2.40.1-6.12.1.aarch64.rpm graphviz-ruby-2.40.1-6.12.1.aarch64.rpm graphviz-smyrna-2.40.1-6.12.1.aarch64.rpm graphviz-tcl-2.40.1-6.12.1.aarch64.rpm libgraphviz6-2.40.1-6.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2888 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-nfs-client fixes the following issues: - Support systemd mount options in fstab (bsc#1187781) yast2-nfs-client-4.3.4-3.3.1.noarch.rpm yast2-nfs-client-4.3.4-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2883 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-nfs-server fixes the following issues: - Set X-SuSE-YaST-AutoInstClient in the desktop file to properly determine the client name. (bsc#1188618) - Fix the corresponding section name in the package specification. (bsc#1188618) yast2-nfs-common-4.3.4-3.5.1.noarch.rpm yast2-nfs-server-4.3.4-3.5.1.noarch.rpm yast2-nfs-server-4.3.4-3.5.1.src.rpm openSUSE-SLE-15.3-2021-2898 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: - Fix error not a btrfs filesystem on s390x (bsc#1187645) - Fix error gfxterm isn't found with multiple terminals (bsc#1187565) - Fix boot failure after kdump due to the content of grub.cfg is not completed with pending modificaton in xfs journal (bsc#1186975) grub2-2.04-22.3.1.src.rpm grub2-2.04-22.3.1.x86_64.rpm grub2-arm64-efi-2.04-22.3.1.noarch.rpm grub2-arm64-efi-debug-2.04-22.3.1.noarch.rpm grub2-branding-upstream-2.04-22.3.1.x86_64.rpm grub2-i386-pc-2.04-22.3.1.noarch.rpm grub2-i386-pc-debug-2.04-22.3.1.noarch.rpm grub2-powerpc-ieee1275-2.04-22.3.1.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-22.3.1.noarch.rpm grub2-snapper-plugin-2.04-22.3.1.noarch.rpm grub2-systemd-sleep-plugin-2.04-22.3.1.noarch.rpm grub2-x86_64-efi-2.04-22.3.1.noarch.rpm grub2-x86_64-efi-debug-2.04-22.3.1.noarch.rpm grub2-x86_64-xen-2.04-22.3.1.noarch.rpm grub2-2.04-22.3.1.s390x.rpm grub2-branding-upstream-2.04-22.3.1.s390x.rpm grub2-s390x-emu-2.04-22.3.1.s390x.rpm grub2-s390x-emu-debug-2.04-22.3.1.s390x.rpm grub2-2.04-22.3.1.ppc64le.rpm grub2-branding-upstream-2.04-22.3.1.ppc64le.rpm grub2-2.04-22.3.1.aarch64.rpm grub2-branding-upstream-2.04-22.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2821 moderate SUSE Updates openSUSE-SLE 15.3 This update for ClusterTools2 fixes the following issues: - change version from 3.1.0 to 3.1.1 - As some of the supportconfig plugins of ClusterTools2 take very long time to process, we will disable these plugins by default. (bsc#1186119) - Add file samples to support SLE15. (bsc#1166943) ClusterTools2-3.1.1-8.6.1.noarch.rpm ClusterTools2-3.1.1-8.6.1.src.rpm openSUSE-SLE-15.3-2021-2982 moderate SUSE Updates openSUSE-SLE 15.3 This update for python fixes the following issues: - Fix for python base to contain the same version numbers as are in reality the ones in the bundled wheels. (bsc#1187668) libpython2_7-1_0-2.7.18-7.58.1.x86_64.rpm libpython2_7-1_0-32bit-2.7.18-7.58.1.x86_64.rpm python-2.7.18-7.58.1.src.rpm python-2.7.18-7.58.1.x86_64.rpm python-32bit-2.7.18-7.58.1.x86_64.rpm python-base-2.7.18-7.58.1.src.rpm python-base-2.7.18-7.58.1.x86_64.rpm python-base-32bit-2.7.18-7.58.1.x86_64.rpm python-curses-2.7.18-7.58.1.x86_64.rpm python-demo-2.7.18-7.58.1.x86_64.rpm python-devel-2.7.18-7.58.1.x86_64.rpm python-doc-2.7.18-7.58.1.noarch.rpm python-doc-2.7.18-7.58.1.src.rpm python-doc-pdf-2.7.18-7.58.1.noarch.rpm python-gdbm-2.7.18-7.58.1.x86_64.rpm python-idle-2.7.18-7.58.1.x86_64.rpm python-tk-2.7.18-7.58.1.x86_64.rpm python-xml-2.7.18-7.58.1.x86_64.rpm libpython2_7-1_0-2.7.18-7.58.1.s390x.rpm python-2.7.18-7.58.1.s390x.rpm python-base-2.7.18-7.58.1.s390x.rpm python-curses-2.7.18-7.58.1.s390x.rpm python-demo-2.7.18-7.58.1.s390x.rpm python-devel-2.7.18-7.58.1.s390x.rpm python-gdbm-2.7.18-7.58.1.s390x.rpm python-idle-2.7.18-7.58.1.s390x.rpm python-tk-2.7.18-7.58.1.s390x.rpm python-xml-2.7.18-7.58.1.s390x.rpm libpython2_7-1_0-2.7.18-7.58.1.ppc64le.rpm python-2.7.18-7.58.1.ppc64le.rpm python-base-2.7.18-7.58.1.ppc64le.rpm python-curses-2.7.18-7.58.1.ppc64le.rpm python-demo-2.7.18-7.58.1.ppc64le.rpm python-devel-2.7.18-7.58.1.ppc64le.rpm python-gdbm-2.7.18-7.58.1.ppc64le.rpm python-idle-2.7.18-7.58.1.ppc64le.rpm python-tk-2.7.18-7.58.1.ppc64le.rpm python-xml-2.7.18-7.58.1.ppc64le.rpm libpython2_7-1_0-2.7.18-7.58.1.aarch64.rpm python-2.7.18-7.58.1.aarch64.rpm python-base-2.7.18-7.58.1.aarch64.rpm python-curses-2.7.18-7.58.1.aarch64.rpm python-demo-2.7.18-7.58.1.aarch64.rpm python-devel-2.7.18-7.58.1.aarch64.rpm python-gdbm-2.7.18-7.58.1.aarch64.rpm python-idle-2.7.18-7.58.1.aarch64.rpm python-tk-2.7.18-7.58.1.aarch64.rpm python-xml-2.7.18-7.58.1.aarch64.rpm openSUSE-SLE-15.3-2021-3779 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-iscsi-client fixes the following issues: - Add iscsi support for qedi/qede offload cards (bsc#1188139, bsc#1187958). yast2-iscsi-client-4.3.4-3.3.2.noarch.rpm yast2-iscsi-client-4.3.4-3.3.2.src.rpm openSUSE-SLE-15.3-2021-2869 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-update fixes the following issues: - Avoid to bind-mount /run twice. (bsc#1181066) yast2-update-4.3.3-3.3.1.src.rpm yast2-update-4.3.3-3.3.1.x86_64.rpm yast2-update-FACTORY-4.3.3-3.3.1.x86_64.rpm yast2-update-4.3.3-3.3.1.s390x.rpm yast2-update-FACTORY-4.3.3-3.3.1.s390x.rpm yast2-update-4.3.3-3.3.1.ppc64le.rpm yast2-update-FACTORY-4.3.3-3.3.1.ppc64le.rpm yast2-update-4.3.3-3.3.1.aarch64.rpm yast2-update-FACTORY-4.3.3-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2881 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-nis-server fixes the following issues: - Set X-SuSE-YaST-AutoInstClient in the desktop file to properly determine the client name. (bsc#1188644) yast2-nis-server-4.3.2-3.3.1.noarch.rpm yast2-nis-server-4.3.2-3.3.1.src.rpm openSUSE-SLE-15.3-2022-1156 important SUSE Updates openSUSE-SLE 15.3 This update for opensc fixes the following issues: Security issues fixed: - CVE-2021-42782: Stack buffer overflow issues in various places (bsc#1191957). - CVE-2021-42781: Fixed multiple heap buffer overflows in pkcs15-oberthur.c (bsc#1192000). - CVE-2021-42780: Fixed use after return in insert_pin() (bsc#1192005). - CVE-2021-42779: Fixed use after free in sc_file_valid() (bsc#1191992). Non-security issues fixed: - Fixes segmentation fault in 'pkcs11-tool.c'. (bsc#1114649) opensc-0.19.0-150100.3.16.1.src.rpm opensc-0.19.0-150100.3.16.1.x86_64.rpm opensc-32bit-0.19.0-150100.3.16.1.x86_64.rpm opensc-0.19.0-150100.3.16.1.s390x.rpm opensc-0.19.0-150100.3.16.1.ppc64le.rpm opensc-0.19.0-150100.3.16.1.aarch64.rpm openSUSE-SLE-15.3-2021-2901 moderate SUSE Updates openSUSE-SLE 15.3 This update for insserv-compat fixes the following issues: - Require sysvinit-tools. (bsc#1187941) insserv-compat-0.1-4.6.1.noarch.rpm insserv-compat-0.1-4.6.1.src.rpm openSUSE-SLE-15.3-2021-2871 moderate SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - Fix an assertion failure in the 'rehash()' function (bsc#1188763) When calculating the new hashtable bitsize, there was an off-by-one error that would allow the new bitsize to be larger than maximum allowed. - tsig-keygen is now used to generate DDNS keys (bsc#1187921) bind-9.16.6-12.54.2.src.rpm bind-devel-32bit-9.16.6-12.54.2.x86_64.rpm libbind9-1600-32bit-9.16.6-12.54.2.x86_64.rpm libdns1605-32bit-9.16.6-12.54.2.x86_64.rpm libirs1601-32bit-9.16.6-12.54.2.x86_64.rpm libisc1606-32bit-9.16.6-12.54.2.x86_64.rpm libisccc1600-32bit-9.16.6-12.54.2.x86_64.rpm libisccfg1600-32bit-9.16.6-12.54.2.x86_64.rpm libns1604-32bit-9.16.6-12.54.2.x86_64.rpm openSUSE-SLE-15.3-2021-2886 moderate SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - tsig-keygen is now used to generate DDNS keys (bsc#1187921) bind-9.16.6-22.10.1.src.rpm bind-9.16.6-22.10.1.x86_64.rpm bind-chrootenv-9.16.6-22.10.1.x86_64.rpm bind-devel-9.16.6-22.10.1.x86_64.rpm bind-doc-9.16.6-22.10.1.noarch.rpm bind-utils-9.16.6-22.10.1.x86_64.rpm libbind9-1600-9.16.6-22.10.1.x86_64.rpm libdns1605-9.16.6-22.10.1.x86_64.rpm libirs-devel-9.16.6-22.10.1.x86_64.rpm libirs1601-9.16.6-22.10.1.x86_64.rpm libisc1606-9.16.6-22.10.1.x86_64.rpm libisccc1600-9.16.6-22.10.1.x86_64.rpm libisccfg1600-9.16.6-22.10.1.x86_64.rpm libns1604-9.16.6-22.10.1.x86_64.rpm python3-bind-9.16.6-22.10.1.noarch.rpm bind-9.16.6-22.10.1.s390x.rpm bind-chrootenv-9.16.6-22.10.1.s390x.rpm bind-devel-9.16.6-22.10.1.s390x.rpm bind-utils-9.16.6-22.10.1.s390x.rpm libbind9-1600-9.16.6-22.10.1.s390x.rpm libdns1605-9.16.6-22.10.1.s390x.rpm libirs-devel-9.16.6-22.10.1.s390x.rpm libirs1601-9.16.6-22.10.1.s390x.rpm libisc1606-9.16.6-22.10.1.s390x.rpm libisccc1600-9.16.6-22.10.1.s390x.rpm libisccfg1600-9.16.6-22.10.1.s390x.rpm libns1604-9.16.6-22.10.1.s390x.rpm bind-9.16.6-22.10.1.ppc64le.rpm bind-chrootenv-9.16.6-22.10.1.ppc64le.rpm bind-devel-9.16.6-22.10.1.ppc64le.rpm bind-utils-9.16.6-22.10.1.ppc64le.rpm libbind9-1600-9.16.6-22.10.1.ppc64le.rpm libdns1605-9.16.6-22.10.1.ppc64le.rpm libirs-devel-9.16.6-22.10.1.ppc64le.rpm libirs1601-9.16.6-22.10.1.ppc64le.rpm libisc1606-9.16.6-22.10.1.ppc64le.rpm libisccc1600-9.16.6-22.10.1.ppc64le.rpm libisccfg1600-9.16.6-22.10.1.ppc64le.rpm libns1604-9.16.6-22.10.1.ppc64le.rpm bind-9.16.6-22.10.1.aarch64.rpm bind-chrootenv-9.16.6-22.10.1.aarch64.rpm bind-devel-9.16.6-22.10.1.aarch64.rpm bind-utils-9.16.6-22.10.1.aarch64.rpm libbind9-1600-9.16.6-22.10.1.aarch64.rpm libdns1605-9.16.6-22.10.1.aarch64.rpm libirs-devel-9.16.6-22.10.1.aarch64.rpm libirs1601-9.16.6-22.10.1.aarch64.rpm libisc1606-9.16.6-22.10.1.aarch64.rpm libisccc1600-9.16.6-22.10.1.aarch64.rpm libisccfg1600-9.16.6-22.10.1.aarch64.rpm libns1604-9.16.6-22.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3028 moderate SUSE Updates openSUSE-SLE 15.3 This update for wxWidgets-3_0 fixes the following issues: Update from version 3.0.3 to 3.0.5.1 (bsc#1180492, jsc#ECO-3376) - Workaround for the problem with overflowing the maximum command line length in MinGW builds not using configure. - Fix for a problem with 'wxSpinCtrl' in 'wxGTK' - Update the 'SOVERSION' - Relax the ABI changes avoiding to check for the exact match of '__GXX_ABI_VERSION'. - Build 'wxWidgets-3_0-nostl' variant with LTO disabled. (bsc#1162418) - Don't crash on trailing '%' in 'wxDateTime::Format()'. - Fix various problems when parsing invalid ZIP files. - Fix generic 'wxTimePickerCtrl' to accept max values from keyboard. - Multiple surrogate-related fixes in UTF-16 support. - Fix reading wide character data in 'wxFile::ReadAll()'. - Make parsing 'WAV' data more robust. - Fix copy 'ctor' in numeric validators classes. - Fix a memory error when 'wxDataViewCtrl' is deleted. - Avoid some GTK+ run-time errors when using 'wx{File,Dir}PickerCtrl'. - Prevent breaking binaries, if C++11 is enabled. libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_net-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_xml-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_adv-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_aui-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_core-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_gl-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_html-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_media-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_propgrid-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_qa-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_ribbon-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_richtext-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_stc-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_xrc-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-3.0.5.1-11.3.2.src.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-devel-32bit-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-nostl-3.0.5.1-11.3.2.src.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-32bit-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-lang-3.0.5.1-11.3.2.noarch.rpm libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.s390x.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.s390x.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.s390x.rpm libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.ppc64le.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.ppc64le.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_net-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_xml-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_adv-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_aui-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_core-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_gl-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_html-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_media-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_propgrid-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_qa-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_ribbon-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_richtext-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_stc-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_xrc-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.aarch64.rpm wxWidgets-3_0-devel-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.aarch64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.aarch64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm openSUSE-SLE-15.3-2021-3139 moderate SUSE Updates openSUSE-SLE 15.3 This update for openhpi fixes the following issues: - Use /run not /var/run for PID file creation (bsc#1185173) - Remove group rights on config file (bsc#1190042) libopenhpi4-3.8.0-3.6.1.x86_64.rpm openhpi-3.8.0-3.6.1.src.rpm openhpi-3.8.0-3.6.1.x86_64.rpm openhpi-clients-3.8.0-3.6.1.x86_64.rpm openhpi-daemon-3.8.0-3.6.1.x86_64.rpm openhpi-devel-3.8.0-3.6.1.x86_64.rpm libopenhpi4-3.8.0-3.6.1.s390x.rpm openhpi-3.8.0-3.6.1.s390x.rpm openhpi-clients-3.8.0-3.6.1.s390x.rpm openhpi-daemon-3.8.0-3.6.1.s390x.rpm openhpi-devel-3.8.0-3.6.1.s390x.rpm libopenhpi4-3.8.0-3.6.1.ppc64le.rpm openhpi-3.8.0-3.6.1.ppc64le.rpm openhpi-clients-3.8.0-3.6.1.ppc64le.rpm openhpi-daemon-3.8.0-3.6.1.ppc64le.rpm openhpi-devel-3.8.0-3.6.1.ppc64le.rpm libopenhpi4-3.8.0-3.6.1.aarch64.rpm openhpi-3.8.0-3.6.1.aarch64.rpm openhpi-clients-3.8.0-3.6.1.aarch64.rpm openhpi-daemon-3.8.0-3.6.1.aarch64.rpm openhpi-devel-3.8.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2667 moderate SUSE Updates openSUSE-SLE 15.3 This recommended update for system-user-prometheus provides the following fixes: - Provide the user and group 'prometheus' to SUSE Enterprise Storage 6 needed by 'golang-github-prometheus-prometheus' (jsc#SLE-18254) system-user-prometheus-1.0.0-3.8.1.noarch.rpm system-user-prometheus-1.0.0-3.8.1.src.rpm openSUSE-SLE-15.3-2021-2598 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - Update to version 2.32.3: - CVE-2021-21775: Fixed a use-after-free vulnerability in the way certain events are processed for ImageLoader objects. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-21779: Fixed a use-after-free vulnerability in the way that WebKit GraphicsContext handles certain events. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-30663: An integer overflow was addressed with improved input validation. (bsc#1188697) - CVE-2021-30665: A memory corruption issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30689: A logic issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30720: A logic issue was addressed with improved restrictions. (bsc#1188697) - CVE-2021-30734: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30744: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. (bsc#1188697) - CVE-2021-30749: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30758: A type confusion issue was addressed with improved state handling. (bsc#1188697) - CVE-2021-30795: A use after free issue was addressed with improved memory management. (bsc#1188697) - CVE-2021-30797: This issue was addressed with improved checks. (bsc#1188697) - CVE-2021-30799: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) libjavascriptcoregtk-4_0-18-2.32.3-9.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.32.3-9.1.x86_64.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.32.3-9.1.x86_64.rpm libwebkit2gtk3-lang-2.32.3-9.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.x86_64.rpm webkit-jsc-4-2.32.3-9.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.x86_64.rpm webkit2gtk3-2.32.3-9.1.src.rpm webkit2gtk3-devel-2.32.3-9.1.x86_64.rpm webkit2gtk3-minibrowser-2.32.3-9.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.32.3-9.1.s390x.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.s390x.rpm webkit-jsc-4-2.32.3-9.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.s390x.rpm webkit2gtk3-devel-2.32.3-9.1.s390x.rpm webkit2gtk3-minibrowser-2.32.3-9.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.32.3-9.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.ppc64le.rpm webkit-jsc-4-2.32.3-9.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.ppc64le.rpm webkit2gtk3-devel-2.32.3-9.1.ppc64le.rpm webkit2gtk3-minibrowser-2.32.3-9.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.32.3-9.1.aarch64.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.aarch64.rpm webkit-jsc-4-2.32.3-9.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.aarch64.rpm webkit2gtk3-devel-2.32.3-9.1.aarch64.rpm webkit2gtk3-minibrowser-2.32.3-9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3045 important SUSE Updates openSUSE-SLE 15.3 This update for golang-github-vpenso-prometheus_slurm_exporter fixes the following issues: - Update to version 0.19 - GPUs accounting has to be activated explicitly via cmd line option. - Export detailed usage info for every node (CPU, Memory). - With the present version of Slurm (20.11), GPU accounting in the prometheus-slurm-exporter will cause the exporter to terminate, thus it must not be enabled for the time being. (bsc#1188619) - Do not ship sources. golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.src.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.x86_64.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.s390x.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.ppc64le.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2622 moderate SUSE Updates openSUSE-SLE 15.3 This update for mysql-connector-java fixes the following issues: - CVE-2020-2875: Unauthenticated attacker with network access via multiple protocols can compromise MySQL Connectors. (bsc#1173600) - CVE-2020-2934: Fixed a vulnerability which could cause a partial denial of service of MySQL Connectors. (bsc#1173600) - CVE-2020-2933: Fixed a vulnerability which could allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. (bsc#1173600) mysql-connector-java-5.1.47-3.3.1.noarch.rpm mysql-connector-java-5.1.47-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2798 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: - Update to version jdk8u302 (icedtea 3.20.0) - CVE-2021-2341: Improve file transfers. (bsc#1188564) - CVE-2021-2369: Better jar file validation. (bsc#1188565) - CVE-2021-2388: Enhance compiler validation. (bsc#1188566) - CVE-2021-2161: Less ambiguous processing. (bsc#1185056) java-1_8_0-openjdk-1.8.0.302-3.55.2.src.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64.rpm openSUSE-SLE-15.3-2021-2915 moderate SUSE Updates openSUSE-SLE 15.3 This update for gstreamer-plugins-good fixes the following issues: - CVE-2021-3498: Matroskademux: initialize track context out parameter to NULL before parsing (bsc#1184735). - CVE-2021-3497: Matroskademux: Fix extraction of multichannel WavPack (bsc#1184739). gstreamer-plugins-good-1.16.3-3.6.1.src.rpm gstreamer-plugins-good-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-32bit-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-extra-32bit-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-jack-32bit-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-lang-1.16.3-3.6.1.noarch.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2855 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: This ships the new parallel rust 1.54 version. Version 1.54.0 (2021-07-29) Language: - You can now use macros for values in built-in attribute macros. While a seemingly minor addition on its own, this enables a lot of powerful functionality when combined correctly. Most notably you can now include external documentation in your crate by writing the following. ```rust #![doc = include_str!("README.md")] ``` You can also use this to include auto-generated modules: ```rust #[path = concat!(env!("OUT_DIR"), "/generated.rs")] mod generated; ``` - You can now cast between unsized slice types (and types which contain unsized slices) in `const fn`. - You can now use multiple generic lifetimes with `impl Trait` where the lifetimes don't explicitly outlive another. In code this means that you can now have `impl Trait<'a, 'b>` where as before you could only have `impl Trait<'a, 'b> where 'b: 'a`. Compiler: - Rustc will now search for custom JSON targets in `/lib/rustlib/<target-triple>/target.json` where `/` is the "sysroot" directory. You can find your sysroot directory by running `rustc --print sysroot`. - Added `wasm` as a `target_family` for WebAssembly platforms. - You can now use `#[target_feature]` on safe functions when targeting WebAssembly platforms. - Improved debugger output for enums on Windows MSVC platforms. - Added tier 3\* support for `bpfel-unknown-none` and `bpfeb-unknown-none`. \* Refer to Rust's platform support page for more information on Rust's tiered platform support. Libraries: - `panic::panic_any` will now `#[track_caller]`. - Added `OutOfMemory` as a variant of `io::ErrorKind`. - `proc_macro::Literal` now implements `FromStr`. - The implementations of vendor intrinsics in core::arch have been significantly refactored. The main user-visible changes are a 50% reduction in the size of libcore.rlib and stricter validation of constant operands passed to intrinsics. The latter is technically a breaking change, but allows Rust to more closely match the C vendor intrinsics API. Stabilized APIs: - BTreeMap::into_keys - BTreeMap::into_values - HashMap::into_keys - HashMap::into_values - arch::wasm32 - VecDeque::binary_search - VecDeque::binary_search_by - VecDeque::binary_search_by_key - VecDeque::partition_point Cargo: - Added the `--prune <spec>` option to `cargo-tree` to remove a package from the dependency graph. - Added the `--depth` option to `cargo-tree` to print only to a certain depth in the tree. - Added the `no-proc-macro` value to `cargo-tree --edges` to hide procedural macro dependencies. - A new environment variable named `CARGO_TARGET_TMPDIR` is available. This variable points to a directory that integration tests and benches can use as a "scratchpad" for testing filesystem operations. cargo-1.54.0-21.6.2.i586.rpm rust-1.54.0-21.6.2.i586.rpm rust-1.54.0-21.6.2.src.rpm rust-gdb-1.54.0-21.6.2.i586.rpm cargo-1.54.0-21.6.2.x86_64.rpm cargo1.54-1.54.0-7.3.1.x86_64.rpm cargo1.54-doc-1.54.0-7.3.1.noarch.rpm rls-1.54.0-21.6.2.x86_64.rpm rls1.54-1.54.0-7.3.1.x86_64.rpm rust-1.54.0-21.6.2.x86_64.rpm rust-gdb-1.54.0-21.6.2.x86_64.rpm rust1.54-1.54.0-7.3.1.src.rpm rust1.54-1.54.0-7.3.1.x86_64.rpm rust1.54-analysis-1.54.0-7.3.1.x86_64.rpm rust1.54-doc-1.54.0-7.3.1.x86_64.rpm rust1.54-gdb-1.54.0-7.3.1.x86_64.rpm rust1.54-src-1.54.0-7.3.1.noarch.rpm cargo-1.54.0-21.6.2.s390x.rpm cargo1.54-1.54.0-7.3.1.s390x.rpm rust-1.54.0-21.6.2.s390x.rpm rust-gdb-1.54.0-21.6.2.s390x.rpm rust1.54-1.54.0-7.3.1.s390x.rpm rust1.54-gdb-1.54.0-7.3.1.s390x.rpm cargo-1.54.0-21.6.2.ppc64le.rpm cargo1.54-1.54.0-7.3.1.ppc64le.rpm rust-1.54.0-21.6.2.ppc64le.rpm rust-gdb-1.54.0-21.6.2.ppc64le.rpm rust1.54-1.54.0-7.3.1.ppc64le.rpm rust1.54-gdb-1.54.0-7.3.1.ppc64le.rpm cargo-1.54.0-21.6.2.aarch64.rpm cargo1.54-1.54.0-7.3.1.aarch64.rpm rls-1.54.0-21.6.2.aarch64.rpm rls1.54-1.54.0-7.3.1.aarch64.rpm rust-1.54.0-21.6.2.aarch64.rpm rust-gdb-1.54.0-21.6.2.aarch64.rpm rust1.54-1.54.0-7.3.1.aarch64.rpm rust1.54-analysis-1.54.0-7.3.1.aarch64.rpm rust1.54-doc-1.54.0-7.3.1.aarch64.rpm rust1.54-gdb-1.54.0-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2947 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issues: - Added data for 4_12_14-197_92, 5_3_18-24_53_4, 5_3_18-24_67, 5_3_18-57, 5_3_18-59_10, 5_3_18-59_5. (bsc#1020320) lifecycle-data-sle-module-live-patching-15-4.57.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-4.57.1.src.rpm openSUSE-SLE-15.3-2021-2792 important SUSE Updates openSUSE-SLE 15.3 This update for libass fixes the following issues: - CVE-2020-36430: Fixed heap-based buffer overflow in decode_chars (bsc#1188539). libass-0.14.0-3.9.1.src.rpm libass-devel-0.14.0-3.9.1.x86_64.rpm libass9-0.14.0-3.9.1.x86_64.rpm libass9-32bit-0.14.0-3.9.1.x86_64.rpm libass-devel-0.14.0-3.9.1.s390x.rpm libass9-0.14.0-3.9.1.s390x.rpm libass-devel-0.14.0-3.9.1.ppc64le.rpm libass9-0.14.0-3.9.1.ppc64le.rpm libass-devel-0.14.0-3.9.1.aarch64.rpm libass9-0.14.0-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2795 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21704: Fixed security issues in pdo_firebase module (bsc#1188035). php7-7.2.5-4.79.1.src.rpm php7-wddx-7.2.5-4.79.1.x86_64.rpm php7-wddx-7.2.5-4.79.1.s390x.rpm php7-wddx-7.2.5-4.79.1.ppc64le.rpm php7-wddx-7.2.5-4.79.1.aarch64.rpm openSUSE-SLE-15.3-2021-2625 moderate SUSE Updates openSUSE-SLE 15.3 This update for supportutils fixes the following issues: ethtool was updated to version 3.1.17: - Solve a downgrade issue between SUSE Linux Enterprise SP3 and lower (bsc#1188348) - Adding ethtool options g l m to network.txt (jsc#SLE-18240) - lsof options to improve performance (bsc#1186687) - Exclude rhn.conf from etc.txt (bsc#1186347) - analyzevmcore supports local directories (bsc#1186397) - getappcore checks for valid compression binary (bsc#1185991) - getappcore does not trigger errors with help message (bsc#1185993) supportutils-3.1.17-7.35.5.1.noarch.rpm supportutils-3.1.17-7.35.5.1.src.rpm openSUSE-SLE-15.3-2021-2626 moderate SUSE Updates openSUSE-SLE 15.3 This update for libeconf fixes the following issue: - Solve a downgrade issue between SUSE Linux Enterprise SP3 and lower (bsc#1188348) libeconf-0.3.8+git20200710.5126fff-3.2.1.src.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.x86_64.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.x86_64.rpm libeconf0-32bit-0.3.8+git20200710.5126fff-3.2.1.x86_64.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.s390x.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.s390x.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.ppc64le.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.ppc64le.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.aarch64.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2627 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-default-settings fixes the following issue: - Solve a downgrade issue between SUSE Linux Enterprise SP3 and lower (bsc#1188348) systemd-default-settings-0.7-3.2.1.noarch.rpm systemd-default-settings-0.7-3.2.1.src.rpm systemd-default-settings-branding-SLE-0.7-3.2.1.noarch.rpm systemd-default-settings-branding-SLE-Micro-0.7-3.2.1.noarch.rpm systemd-default-settings-branding-openSUSE-0.7-3.2.1.noarch.rpm systemd-default-settings-branding-upstream-0.7-3.2.1.noarch.rpm openSUSE-SLE-15.3-2021-2794 important SUSE Updates openSUSE-SLE 15.3 This update for aspell fixes the following issues: - CVE-2019-25051: Fixed heap-buffer-overflow in acommon:ObjStack:dup_top (bsc#1188576). aspell-0.60.8-3.3.1.src.rpm aspell-0.60.8-3.3.1.x86_64.rpm aspell-devel-0.60.8-3.3.1.x86_64.rpm aspell-ispell-0.60.8-3.3.1.x86_64.rpm aspell-spell-0.60.8-3.3.1.x86_64.rpm libaspell15-0.60.8-3.3.1.x86_64.rpm libaspell15-32bit-0.60.8-3.3.1.x86_64.rpm libpspell15-0.60.8-3.3.1.x86_64.rpm libpspell15-32bit-0.60.8-3.3.1.x86_64.rpm aspell-0.60.8-3.3.1.s390x.rpm aspell-devel-0.60.8-3.3.1.s390x.rpm aspell-ispell-0.60.8-3.3.1.s390x.rpm aspell-spell-0.60.8-3.3.1.s390x.rpm libaspell15-0.60.8-3.3.1.s390x.rpm libpspell15-0.60.8-3.3.1.s390x.rpm aspell-0.60.8-3.3.1.ppc64le.rpm aspell-devel-0.60.8-3.3.1.ppc64le.rpm aspell-ispell-0.60.8-3.3.1.ppc64le.rpm aspell-spell-0.60.8-3.3.1.ppc64le.rpm libaspell15-0.60.8-3.3.1.ppc64le.rpm libpspell15-0.60.8-3.3.1.ppc64le.rpm aspell-0.60.8-3.3.1.aarch64.rpm aspell-devel-0.60.8-3.3.1.aarch64.rpm aspell-ispell-0.60.8-3.3.1.aarch64.rpm aspell-spell-0.60.8-3.3.1.aarch64.rpm libaspell15-0.60.8-3.3.1.aarch64.rpm libpspell15-0.60.8-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2681 important SUSE Updates openSUSE-SLE 15.3 This update for growpart-rootgrow fixes the following issues: - Fix root partition ID lookup. Only consider trailing digits to be part of the paritition ID. (bsc#1188868) (bsc#1188904) growpart-rootgrow-1.0.5-1.9.1.noarch.rpm growpart-rootgrow-1.0.5-1.9.1.src.rpm openSUSE-SLE-15.3-2021-2973 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issue: - Update pci, usb and vendor ids (bsc#1190091) hwdata-0.351-3.29.1.noarch.rpm hwdata-0.351-3.29.1.src.rpm openSUSE-SLE-15.3-2021-2687 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3659: Fixed a NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (bsc#1188876). - CVE-2021-21781: Fixed a information disclosure vulnerability in the ARM SIGPAGE (bsc#1188445). - CVE-2021-22543: Fixed improper handling of VM_IO|VM_PFNMAP vmas in KVM, which could bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allowed users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation (bsc#1186482). - CVE-2021-37576: Fixed an issue on the powerpc platform, where a KVM guest OS user could cause host OS memory corruption via rtas_args.nargs (bsc#1188838). - CVE-2021-3609: Fixed a potential local privilege escalation in the CAN BCM networking protocol (bsc#1187215). - CVE-2021-3612: Fixed an out-of-bounds memory write flaw in the joystick devices subsystem. This flaw allowed a local user to crash the system or possibly escalate their privileges on the system. (bsc#1187585) - CVE-2021-35039: Fixed mishandling of signature verification. Without CONFIG_MODULE_SIG, verification that a kernel module is signed, for loading via init_module, did not occur for a module.sig_enforce=1 command-line argument (bsc#1188080). The following non-security bugs were fixed: - ACPI: AMBA: Fix resource name in /proc/iomem (git-fixes). - ACPI: APEI: fix synchronous external aborts in user-mode (git-fixes). - ACPI: DPTF: Fix reading of attributes (git-fixes). - ACPI: EC: Make more Asus laptops use ECDT _GPE (git-fixes). - ACPI: PM / fan: Put fan device IDs into separate header file (git-fixes). - ACPI: bus: Call kobject_put() in acpi_init() error path (git-fixes). - ACPI: processor idle: Fix up C-state latency if not ordered (git-fixes). - ACPI: property: Constify stubs for CONFIG_ACPI=n case (git-fixes). - ACPI: resources: Add checks for ACPI IRQ override (git-fixes). - ACPI: sysfs: Fix a buffer overrun problem with description_show() (git-fixes). - ACPI: video: Add quirk for the Dell Vostro 3350 (git-fixes). - ACPICA: Fix memory leak caused by _CID repair function (git-fixes). - ALSA: ac97: fix PM reference leak in ac97_bus_remove() (git-fixes). - ALSA: bebob: add support for ToneWeal FW66 (git-fixes). - ALSA: firewire-motu: fix detection for S/PDIF source on optical interface in v2 protocol (git-fixes). - ALSA: firewire-motu: fix stream format for MOTU 8pre FireWire (git-fixes). - ALSA: hda/realtek: Add another ALC236 variant support (git-fixes). - ALSA: hda/realtek: Apply LED fixup for HP Dragonfly G1, too (git-fixes). - ALSA: hda/realtek: Fix bass speaker DAC mapping for Asus UM431D (git-fixes). - ALSA: hda/realtek: Fix pop noise and 2 Front Mic issues on a machine (git-fixes). - ALSA: hda/realtek: Improve fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 830 G8 Notebook PC (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook x360 830 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 450 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 630 G8 (git-fixes). - ALSA: hda: Add IRQ check for platform_get_irq() (git-fixes). - ALSA: hda: intel-dsp-cfg: add missing ElkhartLake PCI ID (git-fixes). - ALSA: hdmi: Expose all pins on MSI MS-7C94 board (git-fixes). - ALSA: intel8x0: Fix breakage at ac97 clock measurement (git-fixes). - ALSA: isa: Fix error return code in snd_cmi8330_probe() (git-fixes). - ALSA: pcm - fix mmap capability check for the snd-dummy driver (git-fixes). - ALSA: pcm: Call substream ack() method upon compat mmap commit (git-fixes). - ALSA: pcm: Fix mmap capability check (git-fixes). - ALSA: ppc: fix error return code in snd_pmac_probe() (git-fixes). - ALSA: sb: Fix potential ABBA deadlock in CSP driver (git-fixes). - ALSA: sb: Fix potential double-free of CSP mixer elements (git-fixes). - ALSA: usb-audio: Add missing proc text entry for BESPOKEN type (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum headsets (git-fixes). - ALSA: usb-audio: Fix OOB access at proc output (git-fixes). - ALSA: usb-audio: fix rate on Ozone Z90 USB headset (git-fixes). - ALSA: usb-audio: scarlett2: Fix 18i8 Gen 2 PCM Input count (git-fixes). - ALSA: usb-audio: scarlett2: Fix 6i6 Gen 2 line out descriptions (git-fixes). - ALSA: usb-audio: scarlett2: Fix data_mutex lock (git-fixes). - ALSA: usb-audio: scarlett2: Fix scarlett2_*_ctl_put() return values (git-fixes). - ALSA: usb-audio: scarlett2: Fix wrong resume call (git-fixes). - ALSA: usb-audio: scarlett2: Read mixer volumes at init time (git-fixes). - ALSA: usb-audio: scarlett2: Read mux at init time (git-fixes). - ALSA: usx2y: Avoid camelCase (git-fixes). - ALSA: usx2y: Do not call free_pages_exact() with NULL address (git-fixes). - ARM: ensure the signal page contains defined contents (bsc#1188445). - ASoC: Intel: kbl_da7219_max98357a: shrink platform_id below 20 characters (git-fixes). - ASoC: Intel: sof_sdw: add SOF_RT715_DAI_ID_FIX for AlderLake (git-fixes). - ASoC: Intel: sof_sdw: add mutual exclusion between PCH DMIC and RT715 (git-fixes). - ASoC: SOF: loader: Use snd_sof_dsp_block_read() instead sof_block_read() (git-fixes). - ASoC: atmel-i2s: Fix usage of capture and playback at the same time (git-fixes). - ASoC: cs42l42: Correct definition of CS42L42_ADC_PDN_MASK (git-fixes). - ASoC: fsl_spdif: Fix error handler with pm_runtime_enable (git-fixes). - ASoC: fsl_spdif: Fix unexpected interrupt after suspend (git-fixes). - ASoC: hisilicon: fix missing clk_disable_unprepare() on error in hi6210_i2s_startup() (git-fixes). - ASoC: img: Fix PM reference leak in img_i2s_in_probe() (git-fixes). - ASoC: intel/boards: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: max98373-sdw: add missing memory allocation check (git-fixes). - ASoC: max98373-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: mediatek: mtk-btcvsd: Fix an error handling path in 'mtk_btcvsd_snd_probe()' (git-fixes). - ASoC: rk3328: fix missing clk_disable_unprepare() on error in rk3328_platform_probe() (git-fixes). - ASoC: rsnd: tidyup loop on rsnd_adg_clk_query() (git-fixes). - ASoC: rt1308-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5631: Fix regcache sync errors on resume (git-fixes). - ASoC: rt5682-sdw: set regcache_cache_only false before reading RT5682_DEVICE_ID (git-fixes). - ASoC: rt5682-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5682: Disable irq on shutdown (git-fixes). - ASoC: rt5682: Fix a problem with error handling in the io init function of the soundwire (git-fixes). - ASoC: rt5682: fix getting the wrong device id when the suspend_stress_test (git-fixes). - ASoC: rt700-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt711-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt715-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: soc-core: Fix the error return code in snd_soc_of_parse_audio_routing() (git-fixes). - ASoC: soc-pcm: fix the return value in dpcm_apply_symmetry() (git-fixes). - ASoC: tegra: Set driver_name=tegra for all machine drivers (git-fixes). - ASoC: wm_adsp: Correct wm_coeff_tlv_get handling (git-fixes). - Bluetooth: Fix alt settings for incoming SCO with transparent coding format (git-fixes). - Bluetooth: Fix handling of HCI_LE_Advertising_Set_Terminated event (git-fixes). - Bluetooth: Fix the HCI to MGMT status conversion table (git-fixes). - Bluetooth: L2CAP: Fix invalid access if ECRED Reconfigure fails (git-fixes). - Bluetooth: L2CAP: Fix invalid access on ECRED Connection response (git-fixes). - Bluetooth: Remove spurious error message (git-fixes). - Bluetooth: Shutdown controller after workqueues are flushed or cancelled (git-fixes). - Bluetooth: btintel: Add infrastructure to read controller information (bsc#1188893). - Bluetooth: btintel: Check firmware version before download (bsc#1188893). - Bluetooth: btintel: Collect tlv based active firmware build info in FW mode (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version parsing (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Fix endianness issue for TLV version information (bsc#1188893). - Bluetooth: btintel: Fix offset calculation boot address parameter (bsc#1188893). - Bluetooth: btintel: Functions to send firmware header / payload (bsc#1188893). - Bluetooth: btintel: Move operational checks after version check (bsc#1188893). - Bluetooth: btintel: Refactor firmware download function (bsc#1188893). - Bluetooth: btintel: Reorganized bootloader mode tlv checks in intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Replace zero-length array with flexible-array member (bsc#1188893). - Bluetooth: btintel: Skip reading firmware file version while in bootloader mode (bsc#1188893). - Bluetooth: btqca: Do not modify firmware contents in-place (git-fixes). - Bluetooth: btusb: Add *setup* function for new generation Intel controllers (bsc#1188893). - Bluetooth: btusb: Add support USB ALT 3 for WBS (git-fixes). - Bluetooth: btusb: Add support for GarfieldPeak controller (bsc#1188893). - Bluetooth: btusb: Consolidate code for waiting firmware download (bsc#1188893). - Bluetooth: btusb: Define a function to construct firmware filename (bsc#1188893). - Bluetooth: btusb: Enable MSFT extension for Intel controllers (bsc#1188893). - Bluetooth: btusb: Fix failing to init controllers with operation firmware (bsc#1188893). - Bluetooth: btusb: Fixed too many in-token issue for Mediatek Chip (git-fixes). - Bluetooth: btusb: Helper function to download firmware to Intel adapters (bsc#1188893). - Bluetooth: btusb: Map Typhoon peak controller to BTUSB_INTEL_NEWGEN (bsc#1188893). - Bluetooth: btusb: Update boot parameter specific to SKU (bsc#1188893). - Bluetooth: btusb: fix bt fiwmare downloading failure issue for qca btsoc (git-fixes). - Bluetooth: btusb: print firmware file name on error loading firmware (bsc#1188893). - Bluetooth: hci_intel: drop strange le16_to_cpu() against u8 values (bsc#1188893). - Bluetooth: hci_intel: enable on new platform (bsc#1188893). - Bluetooth: hci_intel: switch to list_for_each_entry() (bsc#1188893). - Bluetooth: hci_qca: fix potential GPF (git-fixes). - Bluetooth: mgmt: Fix slab-out-of-bounds in tlv_data_is_valid (git-fixes). - Bluetooth: mgmt: Fix the command returns garbage parameter value (git-fixes). - HID: do not use down_interruptible() when unbinding devices (git-fixes). - HID: wacom: Correct base usage for capacitive ExpressKey status bits (git-fixes). - Input: hideep - fix the uninitialized use in hideep_nvm_unlock() (git-fixes). - Input: hil_kbd - fix error return code in hil_dev_connect() (git-fixes). - Input: ili210x - add missing negation for touch indication on ili210x (git-fixes). - Input: usbtouchscreen - fix control-request directions (git-fixes). - KVM: LAPIC: Prevent setting the tscdeadline timer if the lapic is hw disabled (bsc#1188771). - KVM: SVM: document KVM_MEM_ENCRYPT_OP, let userspace detect if SEV is available (bsc#1188703). - KVM: nVMX: Consult only the "basic" exit reason when routing nested exit (bsc#1188773). - KVM: nVMX: Ensure 64-bit shift when checking VMFUNC bitmap (bsc#1188774). - KVM: nVMX: Preserve exception priority irrespective of exiting behavior (bsc#1188777). - PCI/sysfs: Fix dsm_label_utf16s_to_utf8s() buffer overrun (git-fixes). - PCI: Add AMD RS690 quirk to enable 64-bit DMA (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: aardvark: Fix checking for PIO Non-posted Request (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Support multi-MSI only on uniprocessor kernel (git-fixes). - PCI: quirks: fix false kABI positive (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra: Add missing MODULE_DEVICE_TABLE (git-fixes). - RDMA/cma: Fix incorrect Packet Lifetime calculation (jsc#SLE-8449). - RDMA/cma: Protect RMW with qp_mutex (git-fixes). - RDMA/hns: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx4: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx5: Remove unused parameter udata (jsc#SLE-15176). - RDMA/rtrs-clt: Check if the queue_depth has changed during a reconnection (jsc#SLE-15176). - RDMA/rtrs-clt: Check state of the rtrs_clt_sess before reading its stats (jsc#SLE-15176). - RDMA/rtrs-clt: Fix memory leak of not-freed sess->stats and stats->pcpu_stats (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak of unfreed rtrs_srv_stats object (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak when having multiple sessions (jsc#SLE-15176). - RDMA/rtrs-srv: Replace atomic_t with percpu_ref for ids_inflight (jsc#SLE-15176). - RDMA/rtrs-srv: Set minimal max_send_wr and max_recv_wr (jsc#SLE-15176). - RDMA/rtrs: Do not reset hb_missed_max after re-connection (jsc#SLE-15176). - RDMA/srp: Fix a recently introduced memory leak (jsc#SLE-15176). - Revert "ACPI: resources: Add checks for ACPI IRQ override" (git-fixes). - Revert "ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro" (git-fixes). - Revert "Bluetooth: btintel: Fix endianness issue for TLV version information" (bsc#1188893). - Revert "USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem" (git-fixes). - Revert "be2net: disable bh with spin_lock in be_process_mcc" (git-fixes). - Revert "drm/i915: Propagate errors on awaiting already signaled fences" (git-fixes). - Revert "drm: add a locked version of drm_is_current_master" (git-fixes). - Revert "ibmvnic: remove duplicate napi_schedule call in open function" (bsc#1065729). - Revert "iwlwifi: remove wide_cmd_header field" (bsc#1187495). - USB: cdc-acm: blacklist Heimann USB Appset device (git-fixes). - USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick (git-fixes). - USB: serial: cp210x: fix comments for GE CS1000 (git-fixes). - USB: serial: option: add support for u-blox LARA-R6 family (git-fixes). - USB: usb-storage: Add LaCie Rugged USB3-FW to IGNORE_UAS (git-fixes). - amdgpu: fix GEM obj leak in amdgpu_display_user_framebuffer_create (bsc#1152472) - ata: ahci_sunxi: Disable DIPM (git-fixes). - ath10k: Fix an error code in ath10k_add_interface() (git-fixes). - ath10k: add missing error return code in ath10k_pci_probe() (git-fixes). - ath10k: go to path err_unsupported when chip id is not supported (git-fixes). - ath10k: remove unused more_frags variable (git-fixes). - ath9k: Fix kernel NULL pointer dereference during ath_reset_internal() (git-fixes). - backlight: lm3630a: Fix return code of .update_status() callback (git-fixes). - backlight: lm3630a_bl: Put fwnode in error case during ->probe() (git-fixes). - bcache: avoid oversized read request in cache missing code path (bsc#1184631). - bcache: remove bcache device self-defined readahead (bsc#1184631). - blk-mq: Add blk_mq_delay_run_hw_queues() API call (bsc#1180092). - blk-mq: In blk_mq_dispatch_rq_list() "no budget" is a reason to kick (bsc#1180092). - blk-mq: Put driver tag in blk_mq_dispatch_rq_list() when no budget (bsc#1180092). - blk-mq: Rerun dispatching in the case of budget contention (bsc#1180092). - blk-mq: insert flush request to the front of dispatch queue (bsc#1180092). - blk-mq: insert passthrough request into hctx->dispatch directly (bsc#1180092). - bnxt_en: Add missing check for BNXT_STATE_ABORT_ERR in bnxt_fw_rset_task() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Check abort error state in bnxt_half_open_nic() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Refresh RoCE capabilities in bnxt_ulp_probe() (jsc#SLE-8371 bsc#1153274). - bnxt_en: do not disable an already disabled PCI device (git-fixes). - bonding: Add struct bond_ipesc to manage SA (bsc#1176447). - bonding: disallow setting nested bonding + ipsec offload (bsc#1176447). - bonding: fix build issue (git-fixes). - bonding: fix incorrect return value of bond_ipsec_offload_ok() (bsc#1176447). - bonding: fix null dereference in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_del_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_offload_ok() (bsc#1176447). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1154353). - bpftool: Properly close va_list 'ap' by va_end() on error (bsc#1155518). - brcmfmac: Fix a double-free in brcmf_sdio_bus_reset (git-fixes). - brcmfmac: correctly report average RSSI in station info (git-fixes). - brcmfmac: fix setting of station info chains bitmask (git-fixes). - brcmsmac: mac80211_if: Fix a resource leak in an error handling path (git-fixes). - cadence: force nonlinear buffers to be cloned (git-fixes). - can: ems_usb: fix memory leak (git-fixes). - can: esd_usb2: fix memory leak (git-fixes). - can: gw: synchronize rcu operations before removing gw job entry (git-fixes). - can: hi311x: fix a signedness bug in hi3110_cmd() (git-fixes). - can: hi311x: hi3110_can_probe(): silence clang warning (git-fixes). - can: mcba_usb_start(): add missing urb->transfer_dma initialization (git-fixes). - can: peak_pciefd: pucan_handle_status(): fix a potential starvation issue in TX path (git-fixes). - can: raw: raw_setsockopt(): fix raw_rcv panic for sock UAF (git-fixes). - can: usb_8dev: fix memory leak (git-fixes). - ceph: do not WARN if we're still opening a session to an MDS (bsc#1188748). - cfg80211: call cfg80211_leave_ocb when switching away from OCB (git-fixes). - char: pcmcia: error out if 'num_bytes_read' is greater than 4 in set_protocol() (git-fixes). - cifs: Fix preauth hash corruption (git-fixes). - cifs: Return correct error code from smb2_get_enc_key (git-fixes). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (git-fixes). - cifs: fix interrupted close commands (git-fixes). - cifs: fix memory leak in smb2_copychunk_range (git-fixes). - clk: actions: Fix SD clocks factor table on Owl S500 SoC (git-fixes). - clk: actions: Fix UART clock dividers on Owl S500 SoC (git-fixes). - clk: actions: Fix bisp_factor_table based clocks on Owl S500 SoC (git-fixes). - clk: imx8mq: remove SYS PLL 1/2 clock gates (git-fixes). - clk: meson: g12a: fix gp0 and hifi ranges (git-fixes). - clk: renesas: r8a77995: Add ZA2 clock (git-fixes). - clk: renesas: rcar-gen3: Update Z clock rate formula in comments (git-fixes). - clk: si5341: Avoid divide errors due to bogus register contents (git-fixes). - clk: si5341: Update initialization magic (git-fixes). - clk: tegra: Ensure that PLLU configuration is applied properly (git-fixes). - clk: zynqmp: pll: Remove some dead code (git-fixes). - clocksource/arm_arch_timer: Improve Allwinner A64 timer workaround (git-fixes). - clocksource: Retry clock read if long delays detected (git-fixes). - coresight: Propagate symlink failure (git-fixes). - coresight: core: Fix use of uninitialized pointer (git-fixes). - cpu/hotplug: Cure the cpusets trainwreck (git fixes (sched/hotplug)). - cpufreq: sc520_freq: add 'fallthrough' to one case (git-fixes). - crypto: ccp - Fix a resource leak in an error handling path (git-fixes). - crypto: ixp4xx - dma_unmap the correct address (git-fixes). - crypto: nitrox - fix unchecked variable in nitrox_register_interrupts (git-fixes). - crypto: nx - add missing MODULE_DEVICE_TABLE (git-fixes). - crypto: omap-sham - Fix PM reference leak in omap sham ops (git-fixes). - crypto: qat - check return code of qat_hal_rd_rel_reg() (git-fixes). - crypto: qat - remove unused macro in FW loader (git-fixes). - crypto: sun4i-ss - IV register does not work on A10 and A13 (git-fixes). - crypto: sun4i-ss - checking sg length is not sufficient (git-fixes). - crypto: sun4i-ss - initialize need_fallback (git-fixes). - crypto: ux500 - Fix error return code in hash_hw_final() (git-fixes). - crypto: virtio: Fix dest length calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - crypto: virtio: Fix src/dst scatterlist calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - cw1200: add missing MODULE_DEVICE_TABLE (git-fixes). - cxgb4: fix IRQ free race during driver unload (git-fixes). - dma-buf/sync_file: Do not leak fences on merge failure (git-fixes). - dmaengine: fsl-qdma: check dma_set_mask return value (git-fixes). - dmaengine: mediatek: do not issue a new desc if one is still current (git-fixes). - dmaengine: mediatek: free the proper desc in desc_free handler (git-fixes). - dmaengine: mediatek: use GFP_NOWAIT instead of GFP_ATOMIC in prep_dma (git-fixes). - dmaengine: rcar-dmac: Fix PM reference leak in rcar_dmac_probe() (git-fixes). - dmaengine: zynqmp_dma: Fix PM reference leak in zynqmp_dma_alloc_chan_resourc() (git-fixes). - docs: admin-guide: update description for kernel.hotplug sysctl (git-fixes). - docs: virt/kvm: close inline string literal (bsc#1188703). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - drm/amd/amdgpu/sriov disable all ip hw status by default (git-fixes). - drm/amd/dc: Fix a missing check bug in dm_dp_mst_detect() (git-fixes). - drm/amd/display: Avoid HDCP over-read and corruption (git-fixes). - drm/amd/display: Fix DCN 3.01 DSCCLK validation (git-fixes). - drm/amd/display: Fix build warnings (git-fixes). - drm/amd/display: Fix off-by-one error in DML (git-fixes). - drm/amd/display: Release MST resources on switch from MST to SST (git-fixes). - drm/amd/display: Set DISPCLK_MAX_ERRDET_CYCLES to 7 (git-fixes). - drm/amd/display: Update scaling settings on modeset (git-fixes). - drm/amd/display: Verify Gamma & Degamma LUT sizes in amdgpu_dm_atomic_check (git-fixes). - drm/amd/display: fix HDCP reset sequence on reinitialize (git-fixes). - drm/amd/display: fix incorrrect valid irq check (git-fixes). - drm/amd/display: fix use_max_lb flag for 420 pixel formats (git-fixes). - drm/amdgpu: Do not query CE and UE errors (bsc#1152472) - drm/amdgpu: Update NV SIMD-per-CU to 2 (git-fixes). - drm/amdgpu: enable sdma0 tmz for Raven/Renoir(V2) (git-fixes). - drm/amdgpu: remove unsafe optimization to drop preamble ib (git-fixes). - drm/amdgpu: update golden setting for sienna_cichlid (git-fixes). - drm/amdgpu: wait for moving fence after pinning (git-fixes). - drm/amdkfd: Fix circular lock in nocpsch path (git-fixes). - drm/amdkfd: Walk through list with dqm lock hold (git-fixes). - drm/amdkfd: fix circular locking on get_wave_state (git-fixes). - drm/amdkfd: use allowed domain for vmbo validation (git-fixes). - drm/arm/malidp: Always list modifiers (git-fixes). - drm/bridge/sii8620: fix dependency on extcon (git-fixes). - drm/bridge: Fix the stop condition of drm_bridge_chain_pre_enable() (git-fixes). - drm/bridge: cdns: Fix PM reference leak in cdns_dsi_transfer() (git-fixes). - drm/bridge: nwl-dsi: Force a full modeset when crtc_state->active is changed to be true (git-fixes). - drm/dp_mst: Do not set proposed vcpi directly (git-fixes). - drm/gma500: Add the missed drm_gem_object_put() in psb_user_framebuffer_create() (git-fixes). - drm/i915/display: Do not zero past infoframes.vsc (git-fixes). - drm/i915/gvt: Clear d3_entered on elsp cmd submission (git-fixes). - drm/i915/selftests: use vma_lookup() in __igt_mmap() (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (bsc#1152472) - drm/mediatek: Fix PM reference leak in mtk_crtc_ddp_hw_init() (git-fixes). - drm/msm/dpu: Fix error return code in dpu_mdss_init() (git-fixes). - drm/msm/dpu: Fix sm8250_mdp register length (git-fixes). - drm/msm/mdp4: Fix modifier support enabling (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/msm: Small msm_gem_purge() fix (bsc#1152489) - drm/mxsfb: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm/nouveau: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/nouveau: fix dma_address check for CPU/GPU sync (git-fixes). - drm/nouveau: wait for moving fence after pinning v2 (git-fixes). - drm/panel: nt35510: Do not fail if DSI read fails (git-fixes). - drm/panel: raspberrypi-touchscreen: Prevent double-free (git-fixes). - drm/radeon: Add the missed drm_gem_object_put() in radeon_user_framebuffer_create() (git-fixes). - drm/radeon: Call radeon_suspend_kms() in radeon_pci_shutdown() for Loongson64 (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (bsc#1152489) - drm/radeon: wait for moving fence after pinning (git-fixes). - drm/rockchip: cdn-dp-core: add missing clk_disable_unprepare() on error in cdn_dp_grf_write() (git-fixes). - drm/rockchip: cdn-dp: fix sign extension on an int multiply for a u64 result (git-fixes). - drm/rockchip: dsi: move all lane config except LCDC mux to bind() (git-fixes). - drm/rockchip: dsi: remove extra component_del() call (git-fixes). - drm/rockchip: lvds: Fix an error handling path (git-fixes). - drm/sched: Avoid data corruptions (git-fixes). - drm/scheduler: Fix hang when sched_entity released (git-fixes). - drm/stm: Fix bus_flags handling (bsc#1152472) - drm/tegra: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/vc4: Fix clock source for VEC PixelValve on BCM2711 (git-fixes). - drm/vc4: crtc: Skip the TXP (git-fixes). - drm/vc4: fix argument ordering in vc4_crtc_get_margins() (git-fixes). - drm/vc4: hdmi: Fix PM reference leak in vc4_hdmi_encoder_pre_crtc_co() (git-fixes). - drm/vc4: hdmi: Fix error path of hpd-gpios (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (bsc#1152489) - drm/vc4: hdmi: Prevent clock unbalance (git-fixes). - drm/vc4: txp: Properly set the possible_crtcs mask (git-fixes). - drm/virtio: Fix double free on probe failure (git-fixes). - drm/vmwgfx: Fix cpu updates of coherent multisample surfaces (git-fixes). - drm/vmwgfx: Mark a surface gpu-dirty after the SVGA3dCmdDXGenMips command (git-fixes). - drm/zte: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm: Return -ENOTTY for non-drm ioctls (git-fixes). - drm: add a locked version of drm_is_current_master (git-fixes). - drm: bridge/panel: Cleanup connector on bridge detach (bsc#1152489) - drm: bridge: add missing word in Analogix help text (git-fixes). - drm: qxl: ensure surf.data is ininitialized (git-fixes). - drm: rockchip: add missing registers for RK3066 (git-fixes). - drm: rockchip: add missing registers for RK3188 (git-fixes). - drm: rockchip: set alpha_en to 0 if it is not used (git-fixes). - e1000e: Check the PCIm state (git-fixes). - e1000e: Fix an error handling path in 'e1000_probe()' (git-fixes). - efi/tpm: Differentiate missing and invalid final event log table (bsc#1188036). - extcon: extcon-max8997: Fix IRQ freeing at error path (git-fixes). - extcon: intel-mrfld: Sync hardware and software state on init (git-fixes). - extcon: max8997: Add missing modalias string (git-fixes). - extcon: sm5502: Drop invalid register write in sm5502_reg_data (git-fixes). - fbmem: Do not delete the mode that is still in use (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Tell memblock about EFI iomem reservations (git-fixes). - firmware: arm_scmi: Fix possible scmi_linux_errmap buffer overflow (git-fixes). - firmware: arm_scmi: Fix range check for the maximum number of pending messages (git-fixes). - firmware: tegra: Fix error return code in tegra210_bpmp_init() (git-fixes). - fm10k: Fix an error handling path in 'fm10k_probe()' (git-fixes). - fpga: machxo2-spi: Address warning about unused variable (git-fixes). - fpga: stratix10-soc: Add missing fpga_mgr_free() call (git-fixes). - fuse: check connected before queueing on fpq->io (bsc#1188267). - fuse: ignore PG_workingset after stealing (bsc#1188268). - fuse: reject internal errno (bsc#1188269). - gpio: AMD8111 and TQMX86 require HAS_IOPORT_MAP (git-fixes). - gpio: pca953x: Add support for the On Semi pca9655 (git-fixes). - gpio: zynq: Check return value of pm_runtime_get_sync (git-fixes). - gtp: fix an use-before-init in gtp_newlink() (git-fixes). - gve: Add DQO fields for core data structures (bsc#1176940). - gve: Add Gvnic stats AQ command and ethtool show/set-priv-flags (bsc#1176940). - gve: Add dqo descriptors (bsc#1176940). - gve: Add stats for gve (bsc#1176940). - gve: Add support for DQO RX PTYPE map (bsc#1176940). - gve: Add support for raw addressing device option (bsc#1176940). - gve: Add support for raw addressing in the tx path (bsc#1176940). - gve: Add support for raw addressing to the rx path (bsc#1176940). - gve: Batch AQ commands for creating and destroying queues (bsc#1176940). - gve: Check TX QPL was actually assigned (bsc#1176940). - gve: DQO: Add RX path (bsc#1176940). - gve: DQO: Add TX path (bsc#1176940). - gve: DQO: Add core netdev features (bsc#1176940). - gve: DQO: Add ring allocation and initialization (bsc#1176940). - gve: DQO: Configure interrupts on device up (bsc#1176940). - gve: DQO: Fix off by one in gve_rx_dqo() (bsc#1176940). - gve: DQO: Remove incorrect prefetch (bsc#1176940). - gve: Enable Link Speed Reporting in the driver (bsc#1176940). - gve: Fix an error handling path in 'gve_probe()' (git-fixes). - gve: Fix swapped vars when fetching max queues (git-fixes). - gve: Fix warnings reported for DQO patchset (bsc#1176940). - gve: Get and set Rx copybreak via ethtool (bsc#1176940). - gve: Introduce a new model for device options (bsc#1176940). - gve: Introduce per netdev `enum gve_queue_format` (bsc#1176940). - gve: Make gve_rx_slot_page_info.page_offset an absolute offset (bsc#1176940). - gve: Move some static functions to a common file (bsc#1176940). - gve: NIC stats for report-stats and for ethtool (bsc#1176940). - gve: Propagate error codes to caller (bsc#1176940). - gve: Replace zero-length array with flexible-array member (bsc#1176940). - gve: Rx Buffer Recycling (bsc#1176940). - gve: Simplify code and axe the use of a deprecated API (bsc#1176940). - gve: Update adminq commands to support DQO queues (bsc#1176940). - gve: Use dev_info/err instead of netif_info/err (bsc#1176940). - gve: Use link status register to report link status (bsc#1176940). - gve: adminq: DQO specific device descriptor logic (bsc#1176940). - gve: gve_rx_copy: Move padding to an argument (bsc#1176940). - hwmon: (max31722) Remove non-standard ACPI device IDs (git-fixes). - hwmon: (max31790) Fix fan speed reporting for fan7..12 (git-fixes). - hwmon: (max31790) Fix pwmX_enable attributes (git-fixes). - hwmon: (max31790) Report correct current pwm duty cycles (git-fixes). - hwrng: exynos - Fix runtime PM imbalance on error (git-fixes). - i2c: core: Disable client irq on reboot/shutdown (git-fixes). - i2c: designware: Adjust bus_freq_hz when refuse high speed mode set (git-fixes). - i2c: dev: Add __user annotation (git-fixes). - i2c: robotfuzz-osif: fix control-request directions (git-fixes). - i40e: Fix autoneg disabling for non-10GBaseT links (git-fixes). - i40e: Fix error handling in i40e_vsi_open (git-fixes). - i40e: Fix missing rtnl locking when setting up pf switch (jsc#SLE-13701). - i40e: fix PTP on 5Gb links (jsc#SLE-13701). - iavf: Fix an error handling path in 'iavf_probe()' (git-fixes). - ibmvnic: Allow device probe if the device is not ready at boot (bsc#1184114 ltc#192237). - ibmvnic: Remove the proper scrq flush (bsc#1188504 ltc#192075). - ibmvnic: Use 'skb_frag_address()' instead of hand coding it (bsc#1184114 ltc#192237). - ibmvnic: Use list_for_each_entry() to simplify code in ibmvnic.c (bsc#1184114 ltc#192237). - ibmvnic: Use strscpy() instead of strncpy() (bsc#1184114 ltc#192237). - ibmvnic: account for bufs already saved in indir_buf (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: clean pending indirect buffs during reset (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: fix kernel build warning (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warning in strncpy (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warnings in build_hdr_descs_arr (bsc#1184114 ltc#192237). - ibmvnic: fix send_request_map incompatible argument (bsc#1184114 ltc#192237). - ibmvnic: free tx_pool if tso_pool alloc fails (bsc#1085224 ltc#164363). - ibmvnic: parenthesize a check (bsc#1184114 ltc#192237 bsc#1183871 ltc#192139 git-fixes). - ibmvnic: retry reset if there are no other resets (bsc#1184350 ltc#191533). - ibmvnic: set ltb->buff to NULL after freeing (bsc#1094840 ltc#167098). - ice: Re-organizes reqstd/avail {R, T}XQ check/code for efficiency (jsc#SLE-7926). - igb: Check if num of q_vectors is smaller than max before array access (git-fixes). - igb: Fix an error handling path in 'igb_probe()' (git-fixes). - igb: Fix position of assignment to *ring (git-fixes). - igb: Fix use-after-free error during reset (git-fixes). - igc: Fix an error handling path in 'igc_probe()' (git-fixes). - igc: Fix use-after-free error during reset (git-fixes). - igc: change default return of igc_read_phy_reg() (git-fixes). - iio: accel: bma180: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: bma180: Use explicit member assignment (git-fixes). - iio: accel: bma220: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: hid: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: kxcjk-1013: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: mxc4005: Fix overread of data and alignment issue (git-fixes). - iio: accel: stk8312: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: stk8ba50: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: at91-sama5d2: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: hx711: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: mxs-lradc: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads1015: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads8688: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: vf610: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adis16400: do not return ints in irq handlers (git-fixes). - iio: adis_buffer: do not return ints in irq handlers (git-fixes). - iio: at91-sama5d2_adc: remove usage of iio_priv_to_dev() helper (git-fixes). - iio: gyro: bmg160: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: gyro: fxa21002c: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: humidity: am2315: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: isl29125: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3414: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: do not free unallocated IRQ (git-fixes). - iio: light: vcnl4035: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: ltr501: ltr501_read_ps(): add missing endianness conversion (git-fixes). - iio: ltr501: ltr559: fix initialization of LTR501_ALS_CONTR (git-fixes). - iio: ltr501: mark register holding upper 8 bits of ALS_DATA{0,1} and PS_DATA as volatile, too (git-fixes). - iio: magn: bmc150: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: magn: bmc150: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: hmc5843: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: rm3100: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: potentiostat: lmp91000: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: as3935: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: isl29501: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: pulsed-light: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: srf08: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: si1133: fix format string warnings (git-fixes). - iio:accel:mxc4005: Drop unnecessary explicit casts in regmap_bulk_read calls (git-fixes). - integrity: use arch_ima_get_secureboot instead of checking EFI_SECURE_BOOT when loading MokListRT (bsc#1188366). - intel_th: Wait until port is in reset before programming it (git-fixes). - iwl-trans: move dev_cmd_offs, page_offs to a common trans header (bsc#1187495). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_enqueue_hcmd() (git-fixes). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_gen2_enqueue_hcmd() (git-fixes). - iwlwifi: acpi: evaluate dsm to disable 5.8GHz channels (bsc#1187495). - iwlwifi: acpi: in non acpi compilations remove iwl_sar_geo_init (bsc#1187495). - iwlwifi: acpi: prepare SAR profile selection code for multiple sizes (bsc#1187495). - iwlwifi: acpi: remove dummy definition of iwl_sar_set_profile() (bsc#1187495). - iwlwifi: acpi: rename geo structs to contain versioning (bsc#1187495). - iwlwifi: acpi: support ppag table command v2 (bsc#1187495). - iwlwifi: add a common struct for all iwl_tx_power_cmd versions (bsc#1187495). - iwlwifi: add trans op to set PNVM (bsc#1187495). - iwlwifi: align RX status flags with firmware (bsc#1187495). - iwlwifi: api: fix u32 -> __le32 (bsc#1187495). - iwlwifi: bump FW API to 57 for AX devices (bsc#1187495). - iwlwifi: bump FW API to 59 for AX devices (bsc#1187495). - iwlwifi: calib: Demote seemingly unintentional kerneldoc header (bsc#1187495). - iwlwifi: dbg: Do not touch the tlv data (bsc#1187495). - iwlwifi: dbg: add debug host notification (DHN) time point (bsc#1187495). - iwlwifi: dbg: add dumping special device memory (bsc#1187495). - iwlwifi: dbg: remove IWL_FW_INI_TIME_POINT_WDG_TIMEOUT (bsc#1187495). - iwlwifi: do not export acpi functions unnecessarily (bsc#1187495). - iwlwifi: dvm: Demote a couple of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: devices: Fix function documentation formatting issues (bsc#1187495). - iwlwifi: dvm: lib: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: rxon: Demote non-conformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: scan: Demote a few nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: sta: Demote a bunch of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: tx: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: enable twt by default (bsc#1187495). - iwlwifi: fix 11ax disabled bit in the regulatory capability flags (bsc#1187495). - iwlwifi: fix sar geo table initialization (bsc#1187495). - iwlwifi: fw: add default value for iwl_fw_lookup_cmd_ver (bsc#1187495). - iwlwifi: fw: move assert descriptor parser to common code (bsc#1187495). - iwlwifi: increase PNVM load timeout (bsc#1187495). - iwlwifi: iwl-drv: Provide descriptions debugfs dentries (bsc#1187495). - iwlwifi: iwl-trans: move tfd to trans layer (bsc#1187495). - iwlwifi: move PNVM implementation to common code (bsc#1187495). - iwlwifi: move all bus-independent TX functions to common code (bsc#1187495). - iwlwifi: move bc_pool to a common trans header (bsc#1187495). - iwlwifi: move bc_table_dword to a common trans header (bsc#1187495). - iwlwifi: msix: limit max RX queues for 9000 family (bsc#1187495). - iwlwifi: mvm: Add FTM initiator RTT smoothing logic (bsc#1187495). - iwlwifi: mvm: Do not install CMAC/GMAC key in AP mode (bsc#1187495). - iwlwifi: mvm: add PROTECTED_TWT firmware API (bsc#1187495). - iwlwifi: mvm: add a get lmac id function (bsc#1187495). - iwlwifi: mvm: add an option to add PASN station (bsc#1187495). - iwlwifi: mvm: add d3 prints (bsc#1187495). - iwlwifi: mvm: add support for new WOWLAN_TSC_RSC_PARAM version (bsc#1187495). - iwlwifi: mvm: add support for new version of WOWLAN_TKIP_SETTING_API_S (bsc#1187495). - iwlwifi: mvm: add support for range request command ver 11 (bsc#1187495). - iwlwifi: mvm: add support for responder dynamic config command version 3 (bsc#1187495). - iwlwifi: mvm: assign SAR table revision to the command later (bsc#1187495). - iwlwifi: mvm: avoid possible NULL pointer dereference (bsc#1187495). - iwlwifi: mvm: clear all scan UIDs (bsc#1187495). - iwlwifi: mvm: d3: parse wowlan status version 11 (bsc#1187495). - iwlwifi: mvm: d3: support GCMP ciphers (bsc#1187495). - iwlwifi: mvm: do not change band on bound PHY contexts (git-fixes). - iwlwifi: mvm: do not check if CSA event is running before removing (bsc#1187495). - iwlwifi: mvm: do not send a CSA command the firmware does not know (bsc#1187495). - iwlwifi: mvm: fix error print when session protection ends (git-fixes). - iwlwifi: mvm: fix suspicious rcu usage warnings (bsc#1187495). - iwlwifi: mvm: fix the type we use in the PPAG table validity checks (bsc#1187495). - iwlwifi: mvm: get number of stations from TLV (bsc#1187495). - iwlwifi: mvm: ignore the scan duration parameter (bsc#1187495). - iwlwifi: mvm: initiator: add option for adding a PASN responder (bsc#1187495). - iwlwifi: mvm: location: set the HLTK when PASN station is added (bsc#1187495). - iwlwifi: mvm: ops: Remove unused static struct 'iwl_mvm_debug_names' (bsc#1187495). - iwlwifi: mvm: prepare roc_done_wk to work sync (bsc#1187495). - iwlwifi: mvm: process ba-notifications also when sta rcu is invalid (bsc#1187495). - iwlwifi: mvm: re-enable TX after channel switch (bsc#1187495). - iwlwifi: mvm: read and parse SKU ID if available (bsc#1187495). - iwlwifi: mvm: remove memset of kek_kck command (bsc#1187495). - iwlwifi: mvm: remove redundant log in iwl_mvm_tvqm_enable_txq() (bsc#1187495). - iwlwifi: mvm: remove redundant support_umac_log field (bsc#1187495). - iwlwifi: mvm: responder: allow to set only the HLTK for an associated station (bsc#1187495). - iwlwifi: mvm: ring the doorbell and wait for PNVM load completion (bsc#1187495). - iwlwifi: mvm: rs-fw: handle VHT extended NSS capability (bsc#1187495). - iwlwifi: mvm: send stored PPAG command instead of local (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT feature if supported by firmware (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT in MAC data policy (bsc#1187495). - iwlwifi: mvm: set enabled in the PPAG command properly (bsc#1187495). - iwlwifi: mvm: stop claiming NL80211_EXT_FEATURE_SET_SCAN_DWELL (bsc#1187495). - iwlwifi: mvm: store PPAG enabled/disabled flag properly (bsc#1187495). - iwlwifi: mvm: support ADD_STA_CMD_API_S ver 12 (bsc#1187495). - iwlwifi: mvm: support more GTK rekeying algorithms (bsc#1187495). - iwlwifi: mvm: support new KEK KCK api (bsc#1187495). - iwlwifi: mvm: tx: Demote misuse of kernel-doc headers (bsc#1187495). - iwlwifi: mvm: use CHECKSUM_COMPLETE (bsc#1187495). - iwlwifi: mvm: utils: Fix some doc-rot (bsc#1187495). - iwlwifi: pcie: avoid potential PNVM leaks (bsc#1187495). - iwlwifi: pcie: do not disable interrupts for reg_lock (bsc#1187495). - iwlwifi: pcie: fix context info freeing (git-fixes). - iwlwifi: pcie: fix the xtal latency value for a few qu devices (bsc#1187495). - iwlwifi: pcie: free IML DMA memory allocation (git-fixes). - iwlwifi: pcie: implement set_pnvm op (bsc#1187495). - iwlwifi: pcie: make iwl_pcie_txq_update_byte_cnt_tbl bus independent (bsc#1187495). - iwlwifi: pcie: properly set LTR workarounds on 22000 devices (bsc#1187495). - iwlwifi: phy-ctxt: add new API VER 3 for phy context cmd (bsc#1187495). - iwlwifi: pnvm: do not skip everything when not reloading (bsc#1187495). - iwlwifi: pnvm: do not try to load after failures (bsc#1187495). - iwlwifi: pnvm: increment the pointer before checking the TLV (bsc#1187495). - iwlwifi: pnvm: set the PNVM again if it was already loaded (bsc#1187495). - iwlwifi: provide gso_type to GSO packets (bsc#1187495). - iwlwifi: queue: bail out on invalid freeing (bsc#1187495). - iwlwifi: read and parse PNVM file (bsc#1187495). - iwlwifi: regulatory: regulatory capabilities api change (bsc#1187495). - iwlwifi: remove iwl_validate_sar_geo_profile() export (bsc#1187495). - iwlwifi: remove wide_cmd_header field (bsc#1187495). - iwlwifi: rs: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: rs: align to new TLC config command API (bsc#1187495). - iwlwifi: rs: set RTS protection for all non legacy rates (bsc#1187495). - iwlwifi: sta: defer ADDBA transmit in case reclaimed SN != next SN (bsc#1187495). - iwlwifi: stats: add new api fields for statistics cmd/ntfy (bsc#1187495). - iwlwifi: support REDUCE_TX_POWER_CMD version 6 (bsc#1187495). - iwlwifi: support version 3 of GEO_TX_POWER_LIMIT (bsc#1187495). - iwlwifi: support version 5 of the alive notification (bsc#1187495). - iwlwifi: thermal: support new temperature measurement API (bsc#1187495). - iwlwifi: update prph scratch structure to include PNVM data (bsc#1187495). - iwlwifi: use correct group for alive notification (bsc#1187495). - iwlwifi: wowlan: adapt to wowlan status API version 10 (bsc#1187495). - iwlwifi: yoyo: add support for internal buffer allocation in D3 (bsc#1187495). - ixgbe: Fix an error handling path in 'ixgbe_probe()' (git-fixes). - ixgbe: Fix packet corruption due to missing DMA sync (git-fixes). - ixgbevf: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - kABI compatibility fix for max98373_priv struct (git-fixes). - kABI workaround for btintel symbol changes (bsc#1188893). - kABI workaround for intel_th_driver (git-fixes). - kABI workaround for pci/quirks.c (git-fixes). - kABI: restore struct tcpc_config definition (git-fixes). - kabi/severities: ignore kABI of iwlwifi symbols (bsc#1187495) iwlwifi driver consists of several modules and all exported symbols are internal uses. Let's ignore kABI checks of those. - kernel-binary.spec: Exctract s390 decompression code (jsc#SLE-17042). - kernel-binary.spec: Fix up usrmerge for non-modular kernels. - kernel-binary.spec: Remove obsolete and wrong comment mkmakefile is repleced by echo on newer kernel - kprobes: Do not expose probe addresses to non-CAP_SYSLOG (git-fixes). - kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler (git-fixes). - kprobes: Fix compiler warning for !CONFIG_KPROBES_ON_FTRACE (git-fixes). - kprobes: Fix to check probe enabled before disarm_kprobe_ftrace() (git-fixes). - kprobes: fix kill kprobe which has been marked as gone (git-fixes). - kvm: LAPIC: Restore guard to prevent illegal APIC register access (bsc#1188772). - kvm: i8254: remove redundant assignment to pointer s (bsc#1188770). - leds: as3645a: Fix error return code in as3645a_parse_node() (git-fixes). - leds: class: The -ENOTSUPP should never be seen by user space (git-fixes). - leds: ktd2692: Fix an error handling path (git-fixes). - leds: lm3532: select regmap I2C API (git-fixes). - lib/decompress_unlz4.c: correctly handle zero-padding around initrds (git-fixes). - lib/decompressors: remove set but not used variabled 'level' (git-fixes). - lib: vsprintf: Fix handling of number field widths in vsscanf (git-fixes). - libbpf: Fixes incorrect rx_ring_setup_done (bsc#1155518). - liquidio: Fix unintentional sign extension issue on left shift of u16 (git-fixes). - mISDN: fix possible use-after-free in HFC_cleanup() (git-fixes). - mac80211: consider per-CPU statistics if present (git-fixes). - mac80211: remove iwlwifi specific workaround NDPs of null_response (git-fixes). - mac80211: remove iwlwifi specific workaround that broke sta NDP tx (git-fixes). - mac80211: remove warning in ieee80211_get_sband() (git-fixes). - mac80211: reset profile_periodicity/ema_ap (git-fixes). - mac80211_hwsim: add concurrent channels scanning support over virtio (git-fixes). - mac80211_hwsim: drop pending frames on stop (git-fixes). - math: Export mul_u64_u64_div_u64 (git-fixes). - media, bpf: Do not copy more entries than user space requested (git-fixes). - media: Fix Media Controller API config checks (git-fixes). - media: I2C: change 'RST' to "RSET" to fix multiple build errors (git-fixes). - media: au0828: fix a NULL vs IS_ERR() check (git-fixes). - media: bt8xx: Fix a missing check bug in bt878_probe (git-fixes). - media: cobalt: fix race condition in setting HPD (git-fixes). - media: cpia2: fix memory leak in cpia2_usb_probe (git-fixes). - media: dtv5100: fix control-request directions (git-fixes). - media: dvb-usb: fix wrong definition (git-fixes). - media: dvb_net: avoid speculation from net slot (git-fixes). - media: dvd_usb: memory leak in cinergyt2_fe_attach (git-fixes). - media: em28xx: Fix possible memory leak of em28xx struct (git-fixes). - media: exynos-gsc: fix pm_runtime_get_sync() usage count (git-fixes). - media: exynos4-is: Fix a use after free in isp_video_release (git-fixes). - media: gspca/gl860: fix zero-length control requests (git-fixes). - media: gspca/sq905: fix control-request direction (git-fixes). - media: gspca/sunplus: fix zero-length control requests (git-fixes). - media: imx-csi: Skip first few frames from a BT.656 source (git-fixes). - media: imx: imx7_mipi_csis: Fix logging of only error event counters (git-fixes). - media: mdk-mdp: fix pm_runtime_get_sync() usage count (git-fixes). - media: mtk-vcodec: fix PM runtime get logic (git-fixes). - media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() (git-fixes). - media: pvrusb2: fix warning in pvr2_i2c_core_done (git-fixes). - media: rc: i2c: Fix an error message (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: s5p-g2d: Fix a memory leak on ctx->fh.m2m_ctx (git-fixes). - media: s5p-jpeg: fix pm_runtime_get_sync() usage count (git-fixes). - media: sh_vou: fix pm_runtime_get_sync() usage count (git-fixes). - media: siano: Fix out-of-bounds warnings in smscore_load_firmware_family2() (git-fixes). - media: siano: fix device register error path (git-fixes). - media: st-hva: Fix potential NULL pointer dereferences (git-fixes). - media: sti/bdisp: fix pm_runtime_get_sync() usage count (git-fixes). - media: sti: fix obj-$(config) targets (git-fixes). - media: tc358743: Fix error return code in tc358743_probe_of() (git-fixes). - media: uvcvideo: Fix pixel format change for Elgato Cam Link 4K (git-fixes). - media: v4l2-async: Fix trivial documentation typo (git-fixes). - media: v4l2-core: Avoid the dangling pointer in v4l2_fh_release (git-fixes). - media: zr364xx: fix memory leak in zr364xx_start_readpipe (git-fixes). - memory: atmel-ebi: add missing of_node_put for loop iteration (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: pl353: Fix error return code in pl353_smc_probe() (git-fixes). - memstick: rtsx_usb_ms: fix UAF (git-fixes). - mfd: cpcap: Fix cpcap dmamask not set warnings (git-fixes). - mfd: da9052/stmpe: Add and modify MODULE_DEVICE_TABLE (git-fixes). - misc/libmasm/module: Fix two use after free in ibmasm_init_one (git-fixes). - misc: alcor_pci: fix inverted branch condition (git-fixes). - misc: alcor_pci: fix null-ptr-deref when there is no PCI bridge (git-fixes). - mm, futex: fix shared futex pgoff on shmem huge page (git fixes (kernel/futex)). - mmc: block: Disable CMDQ on the ioctl path (git-fixes). - mmc: core: Allow UHS-I voltage switch for SDSC cards if supported (git-fixes). - mmc: core: clear flags before allowing to retune (git-fixes). - mmc: sdhci-esdhc-imx: remove unused is_imx6q_usdhc (git-fixes). - mmc: sdhci-sprd: use sdhci_sprd_writew (git-fixes). - mmc: sdhci: Fix warning message when accessing RPMB in HS400 mode (git-fixes). - mmc: usdhi6rol0: fix error return code in usdhi6_probe() (git-fixes). - mmc: via-sdmmc: add a check against NULL pointer dereference (git-fixes). - mmc: vub3000: fix control-request direction (git-fixes). - mt76: fix possible NULL pointer dereference in mt76_tx (git-fixes). - mt76: mt7603: set 0 as min coverage_class value (git-fixes). - mt76: mt7615: fix endianness in mt7615_mcu_set_eeprom (git-fixes). - mt76: mt7615: fix fixed-rate tx status reporting (git-fixes). - mt76: mt7615: increase MCU command timeout (git-fixes). - mt76: mt7915: fix IEEE80211_HE_PHY_CAP7_MAX_NC for station mode (git-fixes). - mt76: set dma-done flag for flushed descriptors (git-fixes). - mtd: partitions: redboot: seek fis-index-block in the right node (git-fixes). - mtd: rawnand: marvell: add missing clk_disable_unprepare() on error in marvell_nfc_resume() (git-fixes). - mvpp2: suppress warning (git-fixes). - mwifiex: re-fix for unaligned accesses (git-fixes). - net/mlx5: Do not fail driver on failure to create debugfs (git-fixes). - net/mlx5e: Block offload of outer header csum for GRE tunnel (git-fixes). - net/sched: act_ct: remove and free nf_table callbacks (jsc#SLE-15172). - net: Make PTP-specific drivers depend on PTP_1588_CLOCK (git-fixes). - net: atlantic: fix ip dst and ipv6 address filters (git-fixes). - net: dp83867: Fix OF_MDIO config check (git-fixes). - net: ethernet: ti: Remove TI_CPTS_MOD workaround (git-fixes). - net: fec_ptp: fix issue caused by refactor the fec_devtype (git-fixes). - net: gve: convert strlcpy to strscpy (bsc#1176940). - net: gve: remove duplicated allowed (bsc#1176940). - net: hns3: Clear the CMDQ registers before unmapping BAR region (git-fixes). - net: ipw2x00,iwlegacy,iwlwifi: Remove in_interrupt() from debug macros (bsc#1187495). - net: iwlwifi: Remove in_interrupt() from tracing macro (bsc#1187495). - net: marvell: Fix OF_MDIO config check (git-fixes). - net: mvpp2: Put fwnode in error case during ->probe() (git-fixes). - net: netdevsim: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - net: phy: fix save wrong speed and duplex problem if autoneg is on (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: realtek: add delay to fix RXC generation issue (git-fixes). - net: usb: fix possible use-after-free in smsc75xx_bind (git-fixes). - net: wilc1000: clean up resource in error path of init mon interface (git-fixes). - netfilter: ctnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo (bsc#1176447). - nfc: nfcsim: fix use after free during module unload (git-fixes). - nvme-rdma: fix in-casule data send for chained sgls (git-fixes). - nvme-rdma: introduce nvme_rdma_sgl structure (git-fixes). - nvme-tcp: rerun io_work if req_list is not empty (git-fixes). - nvme: verify MNAN value if ANA is enabled (bsc#1185791). - pinctrl/amd: Add device HID for new AMD GPIO controller (git-fixes). - pinctrl: mcp23s08: Fix missing unlock on error in mcp23s08_irq() (git-fixes). - pinctrl: mcp23s08: fix race condition in irq handler (git-fixes). - pinctrl: stm32: fix the reported number of GPIO lines per bank (git-fixes). - platform/chrome: cros_ec_lightbar: Reduce ligthbar get version command (git-fixes). - platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_int0002_vgpio: Pass irqchip when adding gpiochip (git-fixes). - platform/x86: intel_int0002_vgpio: Remove dev_err() usage after platform_get_irq() (git-fixes). - platform/x86: intel_int0002_vgpio: Use device_init_wakeup (git-fixes). - platform/x86: toshiba_acpi: Fix missing error code in toshiba_acpi_setup_keyboard() (git-fixes). - power: reset: gpio-poweroff: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: ab8500: Avoid NULL pointers (git-fixes). - power: supply: ab8500: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: charger-manager: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: max17042: Do not enforce (incorrect) interrupt trigger type (git-fixes). - power: supply: sc2731_charger: Add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: sc27xx: Add missing MODULE_DEVICE_TABLE (git-fixes). - powerpc/64s: Move branch cache flushing bcctr variant to ppc-ops.h (bsc#1188885 ltc#193722). - powerpc/64s: rename pnv|pseries_setup_rfi_flush to _setup_security_mitigations (bsc#1188885 ltc#193722). - powerpc/mm: Fix lockup on kernel exec fault (bsc#1156395). - powerpc/papr_scm: Properly handle UUID types and API (bsc#1113295, git-fixes). - powerpc/pesries: Get STF barrier requirement from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: Get entry and uaccess flush required bits from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: add new branch prediction security bits for link stack (bsc#1188885 ltc#193722). - powerpc/pseries: export LPAR security flavor in lparcfg (bsc#1188885 ltc#193722). - powerpc/security: Add a security feature for STF barrier (bsc#1188885 ltc#193722). - powerpc/security: Allow for processors that flush the link stack using the special bcctr (bsc#1188885 ltc#193722). - powerpc/security: Fix link stack flush instruction (bsc#1188885 ltc#193722). - powerpc/security: change link stack flush state to the flush type enum (bsc#1188885 ltc#193722). - powerpc/security: make display of branch cache flush more consistent (bsc#1188885 ltc#193722). - powerpc/security: re-name count cache flush to branch cache flush (bsc#1188885 ltc#193722). - powerpc/security: split branch cache flush toggle from code patching (bsc#1188885 ltc#193722). - powerpc/stacktrace: Fix spurious "stale" traces in raise_backtrace_ipi() (bsc#1156395). - powerpc/stacktrace: Include linux/delay.h (bsc#1156395). - powerpc: Offline CPU in stop_this_cpu() (bsc#1156395). - prctl: PR_{G,S}ET_IO_FLUSHER to support controlling memory reclaim (bsc#1188752). - ptp_qoriq: fix overflow in ptp_qoriq_adjfine() u64 calcalation (git-fixes). - pwm: img: Fix PM reference leak in img_pwm_enable() (git-fixes). - pwm: imx1: Do not disable clocks at device remove time (git-fixes). - pwm: spear: Do not modify HW state in .remove callback (git-fixes). - qemu_fw_cfg: Make fw_cfg_rev_attr a proper kobj_attribute (git-fixes). - r8152: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8152: Fix a deadlock by doubly PM resume (bsc#1186194). - r8152: Fix potential PM refcount imbalance (bsc#1186194). - r8169: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8169: avoid link-up interrupt issue on RTL8106e if user enables ASPM (git-fixes). - random32: Fix implicit truncation warning in prandom_seed_state() (git-fixes). - ravb: Fix bit fields checking in ravb_hwtstamp_get() (git-fixes). - rbd: always kick acquire on "acquired" and "released" notifications (bsc#1188746). - rbd: do not hold lock_rwsem while running_list is being drained (bsc#1188747). - regulator: da9052: Ensure enough delay time for .set_voltage_time_sel (git-fixes). - regulator: hi6421: Fix getting wrong drvdata (git-fixes). - regulator: hi6421: Use correct variable type for regmap api val argument (git-fixes). - regulator: hi655x: Fix pass wrong pointer to config.driver_data (git-fixes). - regulator: uniphier: Add missing MODULE_DEVICE_TABLE (git-fixes). - replaced with upstream security mitigation cleanup - reset: a10sr: add missing of_match_table reference (git-fixes). - reset: bail if try_module_get() fails (git-fixes). - reset: brcmstb: Add missing MODULE_DEVICE_TABLE (git-fixes). - reset: ti-syscon: fix to_ti_syscon_reset_data macro (git-fixes). - rpm/kernel-binary.spec.in: Do not install usrmerged kernel on Leap (boo#1184804). - rpm/kernel-binary.spec.in: Remove zdebug define used only once. - rsi: Assign beacon rate settings to the correct rate_info descriptor field (git-fixes). - rtc: fix snprintf() checking in is_rtc_hctosys() (git-fixes). - rtc: max77686: Do not enforce (incorrect) interrupt trigger type (git-fixes). - rtc: mxc_v2: add missing MODULE_DEVICE_TABLE (git-fixes). - rtc: stm32: Fix unbalanced clk_disable_unprepare() on probe error path (git-fixes). - rtl8xxxu: Fix device info for RTL8192EU devices (git-fixes). - rtw88: 8822c: fix lc calibration timing (git-fixes). - scsi: fc: Add 256GBit speed setting to SCSI FC transport (bsc#1188101). - scsi: ibmvfc: Fix command state accounting and stale response detection (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: qedf: Do not put host in qedf_vport_create() unconditionally (bsc#1170511). - serial: 8250: Actually allow UPF_MAGIC_MULTIPLIER baud rates (git-fixes). - serial: 8250_pci: Add support for new HPE serial device (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: mvebu-uart: correctly calculate minimal possible baudrate (git-fixes). - serial: mvebu-uart: do not allow changing baudrate when uartclk is not available (git-fixes). - serial: mvebu-uart: fix calculation of clock divisor (git-fixes). - serial: tegra-tcu: Reorder channel initialization (git-fixes). - serial_cs: Add Option International GSM-Ready 56K/ISDN modem (git-fixes). - serial_cs: remove wrong GLOBETROTTER.cis entry (git-fixes). - sfp: Fix error handing in sfp_probe() (git-fixes). - skbuff: Fix build with SKB extensions disabled (jsc#SLE-15172). - skbuff: Release nfct refcount on napi stolen or re-used skbs (jsc#SLE-15172). - soc/tegra: fuse: Fix Tegra234-only builds (git-fixes). - soc: fsl: qbman: Delete useless kfree code (bsc#1188176). - soc: fsl: qbman: Ensure device cleanup is run for kexec (bsc#1188176). - soundwire: stream: Fix test for DP prepare complete (git-fixes). - spi: Make of_register_spi_device also set the fwnode (git-fixes). - spi: cadence: Correct initialisation of runtime PM again (git-fixes). - spi: fspi: dynamically alloc AHB memory (bsc#1188121). - spi: imx: add a check for speed_hz before calculating the clock (git-fixes). - spi: mediatek: fix fifo rx mode (git-fixes). - spi: nxp-fspi: Use devm API to fix missed unregistration of controller (bsc#1188121). - spi: omap-100k: Fix the length judgment problem (git-fixes). - spi: spi-loopback-test: Fix 'tx_buf' might be 'rx_buf' (git-fixes). - spi: spi-nxp-fspi: Add ACPI support (bsc#1188121). - spi: spi-nxp-fspi: Add support for IP read only (bsc#1188121). - spi: spi-nxp-fspi: Enable the Octal Mode in MCR0 (bsc#1188121). - spi: spi-nxp-fspi: Fix a NULL vs IS_ERR() check in probe (bsc#1188121). - spi: spi-nxp-fspi: Implement errata workaround for LS1028A (bsc#1188121). - spi: spi-sun6i: Fix chipselect/clock bug (git-fixes). - spi: spi-topcliff-pch: Fix potential double free in pch_spi_process_messages() (git-fixes). - spi: stm32-qspi: Remove unused qspi field of struct stm32_qspi_flash (git-fixes). - spi: tegra114: Fix an error message (git-fixes). - ssb: Fix error return code in ssb_bus_scan() (git-fixes). - ssb: sdio: Do not overwrite const buffer if block_write fails (git-fixes). - staging: gdm724x: check for buffer overflow in gdm_lte_multi_sdu_pkt() (git-fixes). - staging: gdm724x: check for overflow in gdm_lte_netif_rx() (git-fixes). - staging: rtl8712: fix memory leak in rtl871x_load_fw_cb (git-fixes). - staging: rtl8712: remove redundant check in r871xu_drv_init (git-fixes). - staging: rtl8723bs: fix macro value for 2.4Ghz only device (git-fixes). - thermal/core: Correct function name thermal_zone_device_unregister() (git-fixes). - thermal/drivers/int340x/processor_thermal: Fix tcc setting (git-fixes). - thermal/drivers/rcar_gen3_thermal: Fix coefficient calculations (git-fixes). - thunderbolt: Bond lanes only when dual_link_port != NULL in alloc_dev_default() (git-fixes). - timers: Fix get_next_timer_interrupt() with no timers pending (git-fixes) - tpm, tpm_tis: Decorate tpm_get_timeouts() with request_locality() (bsc#1188036). - tpm, tpm_tis: Decorate tpm_tis_gen_interrupt() with request_locality() (bsc#1188036). - tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt() (bsc#1188036). - tpm, tpm_tis: Reserve locality in tpm_tis_resume() (bsc#1188036). - tpm: efi: Use local variable for calculating final log size (git-fixes). - tracepoint: Add tracepoint_probe_register_may_exist() for BPF tracing (git-fixes). - tracing/histograms: Fix parsing of "sym-offset" modifier (git-fixes). - tracing: Do not reference char * as a string in histograms (git-fixes). - tracing: Resize tgid_map to pid_max, not PID_MAX_DEFAULT (git-fixes). - tracing: Simplify & fix saved_tgids logic (git-fixes). - tty: nozomi: Fix a resource leak in an error handling function (git-fixes). - tty: nozomi: Fix the error handling path of 'nozomi_card_init()' (git-fixes). - tty: serial: 8250: serial_cs: Fix a memory leak in error handling path (git-fixes). - tty: serial: fsl_lpuart: fix the potential risk of division or modulo by zero (git-fixes). - usb: dwc2: Do not reset the core after setting turnaround time (git-fixes). - usb: dwc2: gadget: Fix sending zero length packet in DDMA mode (git-fixes). - usb: dwc3: Fix debugfs creation flow (git-fixes). - usb: gadget: eem: fix echo command packet response issue (git-fixes). - usb: gadget: f_fs: Fix setting of device and driver data cross-references (git-fixes). - usb: gadget: f_hid: fix endianness issue with descriptors (git-fixes). - usb: gadget: hid: fix error return code in hid_bind() (git-fixes). - usb: hub: Disable USB 3 device initiated lpm if exit latency is too high (git-fixes). - usb: hub: Fix link power management max exit latency (MEL) calculations (git-fixes). - usb: max-3421: Prevent corruption of freed memory (git-fixes). - usb: renesas_usbhs: Fix superfluous irqs happen after usb_pkt_pop() (git-fixes). - usb: typec: Add the missed altmode_id_remove() in typec_register_altmode() (git-fixes). - usb: typec: fusb302: Always provide fwnode for the port (git-fixes). - usb: typec: fusb302: fix "op-sink-microwatt" default that was in mW (git-fixes). - usb: typec: tcpm: Error handling for tcpm_register_partner_altmodes (git-fixes). - usb: typec: tcpm: Move mod_delayed_work(&port->vdm_state_machine) call into tcpm_queue_vdm() (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request payload handling (git-fixes). - usb: typec: tcpm: Remove tcpc_config configuration mechanism (git-fixes). - usb: typec: tcpm: Switch to use fwnode_property_count_uXX() (git-fixes). - usb: typec: tcpm: move to SNK_UNATTACHED if sink removed for DRP (git-fixes). - usb: typec: tcpm: set correct data role for non-DRD (git-fixes). - usb: typec: tcpm: update power supply once partner accepts (git-fixes). - usb: typec: ucsi: Hold con->lock for the entire duration of ucsi_register_port() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: typec: wcove: Fx wrong kernel doc format (git-fixes). - uuid: Add inline helpers to import / export UUIDs (bsc#1113295, git-fixes). - vfio/pci: Handle concurrent vma faults (git-fixes). - vfs: Convert functionfs to use the new mount API (git -fixes). - video: fbdev: imxfb: Fix an error message (git-fixes). - virtio_console: Assure used length from device is limited (git-fixes). - virtio_net: move tx vq operation under tx queue lock (git-fixes). - visorbus: fix error return code in visorchipset_init() (git-fixes). - vmxnet3: fix cksum offload issues for tunnels with non-default udp ports (git-fixes). - vxlan: add missing rcu_read_lock() in neigh_reduce() (git-fixes). - w1: ds2438: fixing bug that would always get page0 (git-fixes). - watchdog: Fix possible use-after-free by calling del_timer_sync() (git-fixes). - watchdog: Fix possible use-after-free in wdt_startup() (git-fixes). - watchdog: aspeed: fix hardware timeout calculation (git-fixes). - watchdog: iTCO_wdt: Account for rebooting on second timeout (git-fixes). - watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() (git-fixes). - watchdog: sp805: Fix kernel doc description (git-fixes). - wcn36xx: Move hal_buf allocation to devm_kmalloc in probe (git-fixes). - wilc1000: write value to WILC_INTR2_ENABLE register (git-fixes). - wireless: carl9170: fix LEDS build errors & warnings (git-fixes). - wireless: wext-spy: Fix out-of-bounds warning (git-fixes). - wl1251: Fix possible buffer overflow in wl1251_cmd_scan (git-fixes). - wlcore/wl12xx: Fix wl12xx get_mac error if device is in ELP (git-fixes). - workqueue: fix UAF in pwq_unbound_release_workfn() (bsc#1188973). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - xen/events: reset active flag for lateeoi events later (git-fixes). - xfrm: Fix xfrm offload fallback fail case (bsc#1176447). - xfrm: delete xfrm4_output_finish xfrm6_output_finish declarations (bsc#1176447). - xfrm: xfrm_state_mtu should return at least 1280 for ipv6 (bsc#1185377). - xhci: Fix lost USB 2 remote wake (git-fixes). - xhci: solve a double free problem while doing s4 (git-fixes). - xsk: Fix missing validation for skb and unaligned mode (jsc#SLE-13706). kernel-devel-5.3.18-59.19.1.noarch.rpm True kernel-docs-5.3.18-59.19.1.noarch.rpm True kernel-docs-5.3.18-59.19.1.nosrc.rpm True kernel-docs-html-5.3.18-59.19.1.noarch.rpm True kernel-macros-5.3.18-59.19.1.noarch.rpm True kernel-obs-build-5.3.18-59.19.1.x86_64.rpm True kernel-source-5.3.18-59.19.1.noarch.rpm True kernel-source-5.3.18-59.19.1.src.rpm True kernel-source-vanilla-5.3.18-59.19.1.noarch.rpm True cluster-md-kmp-default-5.3.18-59.19.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.19.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.19.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True kernel-debug-5.3.18-59.19.1.nosrc.rpm True kernel-debug-5.3.18-59.19.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.19.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-default-5.3.18-59.19.1.nosrc.rpm True kernel-default-5.3.18-59.19.1.x86_64.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.src.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.x86_64.rpm True kernel-default-devel-5.3.18-59.19.1.x86_64.rpm True kernel-default-extra-5.3.18-59.19.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.19.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-default-optional-5.3.18-59.19.1.x86_64.rpm True kernel-kvmsmall-5.3.18-59.19.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.19.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.19.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-obs-build-5.3.18-59.19.1.src.rpm True kernel-obs-qa-5.3.18-59.19.1.src.rpm True kernel-obs-qa-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-5.3.18-59.19.1.nosrc.rpm True kernel-preempt-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.19.1.x86_64.rpm True kernel-syms-5.3.18-59.19.1.src.rpm True kernel-syms-5.3.18-59.19.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.19.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.19.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.19.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.19.1.s390x.rpm True dlm-kmp-default-5.3.18-59.19.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.19.1.s390x.rpm True kernel-default-5.3.18-59.19.1.s390x.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.s390x.rpm True kernel-default-devel-5.3.18-59.19.1.s390x.rpm True kernel-default-extra-5.3.18-59.19.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.19.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.s390x.rpm True kernel-default-optional-5.3.18-59.19.1.s390x.rpm True kernel-obs-build-5.3.18-59.19.1.s390x.rpm True kernel-obs-qa-5.3.18-59.19.1.s390x.rpm True kernel-syms-5.3.18-59.19.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.19.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.19.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.19.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.19.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.19.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.19.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.19.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.19.1.ppc64le.rpm True kernel-debug-5.3.18-59.19.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-default-5.3.18-59.19.1.ppc64le.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.19.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.19.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.19.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.19.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.19.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.19.1.ppc64le.rpm True kernel-syms-5.3.18-59.19.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.19.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.19.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.19.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.19.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.19.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True dtb-aarch64-5.3.18-59.19.1.src.rpm True dtb-al-5.3.18-59.19.1.aarch64.rpm True dtb-allwinner-5.3.18-59.19.1.aarch64.rpm True dtb-altera-5.3.18-59.19.1.aarch64.rpm True dtb-amd-5.3.18-59.19.1.aarch64.rpm True dtb-amlogic-5.3.18-59.19.1.aarch64.rpm True dtb-apm-5.3.18-59.19.1.aarch64.rpm True dtb-arm-5.3.18-59.19.1.aarch64.rpm True dtb-broadcom-5.3.18-59.19.1.aarch64.rpm True dtb-cavium-5.3.18-59.19.1.aarch64.rpm True dtb-exynos-5.3.18-59.19.1.aarch64.rpm True dtb-freescale-5.3.18-59.19.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.19.1.aarch64.rpm True dtb-lg-5.3.18-59.19.1.aarch64.rpm True dtb-marvell-5.3.18-59.19.1.aarch64.rpm True dtb-mediatek-5.3.18-59.19.1.aarch64.rpm True dtb-nvidia-5.3.18-59.19.1.aarch64.rpm True dtb-qcom-5.3.18-59.19.1.aarch64.rpm True dtb-renesas-5.3.18-59.19.1.aarch64.rpm True dtb-rockchip-5.3.18-59.19.1.aarch64.rpm True dtb-socionext-5.3.18-59.19.1.aarch64.rpm True dtb-sprd-5.3.18-59.19.1.aarch64.rpm True dtb-xilinx-5.3.18-59.19.1.aarch64.rpm True dtb-zte-5.3.18-59.19.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.19.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-5.3.18-59.19.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.19.1.aarch64.rpm True kernel-default-5.3.18-59.19.1.aarch64.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.aarch64.rpm True kernel-default-devel-5.3.18-59.19.1.aarch64.rpm True kernel-default-extra-5.3.18-59.19.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.19.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.aarch64.rpm True kernel-default-optional-5.3.18-59.19.1.aarch64.rpm True kernel-obs-build-5.3.18-59.19.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.19.1.aarch64.rpm True kernel-syms-5.3.18-59.19.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.19.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.19.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.19.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2793 important SUSE Updates openSUSE-SLE 15.3 This update for openexr fixes the following issues: - CVE-2021-20298 [bsc#1188460]: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 [bsc#1188459]: Fixed Null-dereference READ in Imf_2_5:Header:operator - CVE-2021-20300 [bsc#1188458]: Fixed Integer-overflow in Imf_2_5:hufUncompress - CVE-2021-20302 [bsc#1188462]: Fixed Floating-point-exception in Imf_2_5:precalculateTileInfot - CVE-2021-20303 [bsc#1188457]: Fixed Heap-buffer-overflow in Imf_2_5::copyIntoFrameBuffer - CVE-2021-20304 [bsc#1188461]: Fixed Undefined-shift in Imf_2_5:hufDecode libIlmImf-2_2-23-2.2.1-3.35.1.x86_64.rpm libIlmImf-2_2-23-32bit-2.2.1-3.35.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-3.35.1.x86_64.rpm openexr-2.2.1-3.35.1.src.rpm openexr-2.2.1-3.35.1.x86_64.rpm openexr-devel-2.2.1-3.35.1.x86_64.rpm openexr-doc-2.2.1-3.35.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-3.35.1.s390x.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.s390x.rpm openexr-2.2.1-3.35.1.s390x.rpm openexr-devel-2.2.1-3.35.1.s390x.rpm openexr-doc-2.2.1-3.35.1.s390x.rpm libIlmImf-2_2-23-2.2.1-3.35.1.ppc64le.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.ppc64le.rpm openexr-2.2.1-3.35.1.ppc64le.rpm openexr-devel-2.2.1-3.35.1.ppc64le.rpm openexr-doc-2.2.1-3.35.1.ppc64le.rpm libIlmImf-2_2-23-2.2.1-3.35.1.aarch64.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.aarch64.rpm openexr-2.2.1-3.35.1.aarch64.rpm openexr-devel-2.2.1-3.35.1.aarch64.rpm openexr-doc-2.2.1-3.35.1.aarch64.rpm openSUSE-SLE-15.3-2021-2782 important SUSE Updates openSUSE-SLE 15.3 This update for yast2-installation fixes the following issues: - Activate devices before probing to fix an issue when volume groups are incomplete due to inactive multipathing after upgrade. (bsc#1187220) yast2-installation-4.3.41-3.7.2.noarch.rpm yast2-installation-4.3.41-3.7.2.src.rpm yast2-proxy-4.3.3-3.5.1.noarch.rpm yast2-proxy-4.3.3-3.5.1.src.rpm openSUSE-SLE-15.3-2021-2950 moderate SUSE Updates openSUSE-SLE 15.3 This update for pcre2 fixes the following issue: - Equalizes the result of a function that may have different output on s390x if compared to older (bsc#1187937) PHP versions. libpcre2-16-0-10.31-3.3.1.x86_64.rpm libpcre2-16-0-32bit-10.31-3.3.1.x86_64.rpm libpcre2-32-0-10.31-3.3.1.x86_64.rpm libpcre2-32-0-32bit-10.31-3.3.1.x86_64.rpm libpcre2-8-0-10.31-3.3.1.x86_64.rpm libpcre2-8-0-32bit-10.31-3.3.1.x86_64.rpm libpcre2-posix2-10.31-3.3.1.x86_64.rpm libpcre2-posix2-32bit-10.31-3.3.1.x86_64.rpm pcre2-10.31-3.3.1.src.rpm pcre2-devel-10.31-3.3.1.x86_64.rpm pcre2-devel-static-10.31-3.3.1.x86_64.rpm pcre2-doc-10.31-3.3.1.noarch.rpm pcre2-tools-10.31-3.3.1.x86_64.rpm libpcre2-16-0-10.31-3.3.1.s390x.rpm libpcre2-32-0-10.31-3.3.1.s390x.rpm libpcre2-8-0-10.31-3.3.1.s390x.rpm libpcre2-posix2-10.31-3.3.1.s390x.rpm pcre2-devel-10.31-3.3.1.s390x.rpm pcre2-devel-static-10.31-3.3.1.s390x.rpm pcre2-tools-10.31-3.3.1.s390x.rpm libpcre2-16-0-10.31-3.3.1.ppc64le.rpm libpcre2-32-0-10.31-3.3.1.ppc64le.rpm libpcre2-8-0-10.31-3.3.1.ppc64le.rpm libpcre2-posix2-10.31-3.3.1.ppc64le.rpm pcre2-devel-10.31-3.3.1.ppc64le.rpm pcre2-devel-static-10.31-3.3.1.ppc64le.rpm pcre2-tools-10.31-3.3.1.ppc64le.rpm libpcre2-16-0-10.31-3.3.1.aarch64.rpm libpcre2-32-0-10.31-3.3.1.aarch64.rpm libpcre2-8-0-10.31-3.3.1.aarch64.rpm libpcre2-posix2-10.31-3.3.1.aarch64.rpm pcre2-devel-10.31-3.3.1.aarch64.rpm pcre2-devel-static-10.31-3.3.1.aarch64.rpm pcre2-tools-10.31-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2641 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-reportlab fixes the following issues: - CVE-2020-28463: Fixed Server-side Request Forgery via img tags (bsc#1182503). python-reportlab-3.4.0-3.6.1.src.rpm python2-reportlab-3.4.0-3.6.1.x86_64.rpm python3-reportlab-3.4.0-3.6.1.x86_64.rpm python2-reportlab-3.4.0-3.6.1.s390x.rpm python3-reportlab-3.4.0-3.6.1.s390x.rpm python2-reportlab-3.4.0-3.6.1.ppc64le.rpm python3-reportlab-3.4.0-3.6.1.ppc64le.rpm python2-reportlab-3.4.0-3.6.1.aarch64.rpm python3-reportlab-3.4.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2645 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3659: Fixed a NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (bsc#1188876). - CVE-2021-21781: Fixed a information disclosure vulnerability in the ARM SIGPAGE (bsc#1188445). - CVE-2021-22543: Fixed improper handling of VM_IO|VM_PFNMAP vmas in KVM, which could bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allowed users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation (bsc#1186482). - CVE-2021-37576: Fixed an issue on the powerpc platform, where a KVM guest OS user could cause host OS memory corruption via rtas_args.nargs (bsc#1188838). - CVE-2021-3609: Fixed a potential local privilege escalation in the CAN BCM networking protocol (bsc#1187215). - CVE-2021-3612: Fixed an out-of-bounds memory write flaw in the joystick devices subsystem. This flaw allowed a local user to crash the system or possibly escalate their privileges on the system. (bsc#1187585) - CVE-2021-35039: Fixed mishandling of signature verification. Without CONFIG_MODULE_SIG, verification that a kernel module is signed, for loading via init_module, did not occur for a module.sig_enforce=1 command-line argument (bsc#1188080). The following non-security bugs were fixed: - ACPI: AMBA: Fix resource name in /proc/iomem (git-fixes). - ACPI: APEI: fix synchronous external aborts in user-mode (git-fixes). - ACPI: DPTF: Fix reading of attributes (git-fixes). - ACPI: EC: Make more Asus laptops use ECDT _GPE (git-fixes). - ACPI: PM / fan: Put fan device IDs into separate header file (git-fixes). - ACPI: bus: Call kobject_put() in acpi_init() error path (git-fixes). - ACPI: processor idle: Fix up C-state latency if not ordered (git-fixes). - ACPI: property: Constify stubs for CONFIG_ACPI=n case (git-fixes). - ACPI: resources: Add checks for ACPI IRQ override (git-fixes). - ACPI: sysfs: Fix a buffer overrun problem with description_show() (git-fixes). - ACPI: video: Add quirk for the Dell Vostro 3350 (git-fixes). - ACPICA: Fix memory leak caused by _CID repair function (git-fixes). - ALSA: ac97: fix PM reference leak in ac97_bus_remove() (git-fixes). - ALSA: bebob: add support for ToneWeal FW66 (git-fixes). - ALSA: firewire-motu: fix detection for S/PDIF source on optical interface in v2 protocol (git-fixes). - ALSA: firewire-motu: fix stream format for MOTU 8pre FireWire (git-fixes). - ALSA: hda/realtek: Add another ALC236 variant support (git-fixes). - ALSA: hda/realtek: Apply LED fixup for HP Dragonfly G1, too (git-fixes). - ALSA: hda/realtek: Fix bass speaker DAC mapping for Asus UM431D (git-fixes). - ALSA: hda/realtek: Fix pop noise and 2 Front Mic issues on a machine (git-fixes). - ALSA: hda/realtek: Improve fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 830 G8 Notebook PC (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook x360 830 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 450 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 630 G8 (git-fixes). - ALSA: hda: Add IRQ check for platform_get_irq() (git-fixes). - ALSA: hda: intel-dsp-cfg: add missing ElkhartLake PCI ID (git-fixes). - ALSA: hdmi: Expose all pins on MSI MS-7C94 board (git-fixes). - ALSA: intel8x0: Fix breakage at ac97 clock measurement (git-fixes). - ALSA: isa: Fix error return code in snd_cmi8330_probe() (git-fixes). - ALSA: pcm - fix mmap capability check for the snd-dummy driver (git-fixes). - ALSA: pcm: Call substream ack() method upon compat mmap commit (git-fixes). - ALSA: pcm: Fix mmap capability check (git-fixes). - ALSA: ppc: fix error return code in snd_pmac_probe() (git-fixes). - ALSA: sb: Fix potential ABBA deadlock in CSP driver (git-fixes). - ALSA: sb: Fix potential double-free of CSP mixer elements (git-fixes). - ALSA: usb-audio: Add missing proc text entry for BESPOKEN type (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum headsets (git-fixes). - ALSA: usb-audio: Fix OOB access at proc output (git-fixes). - ALSA: usb-audio: fix rate on Ozone Z90 USB headset (git-fixes). - ALSA: usb-audio: scarlett2: Fix 18i8 Gen 2 PCM Input count (git-fixes). - ALSA: usb-audio: scarlett2: Fix 6i6 Gen 2 line out descriptions (git-fixes). - ALSA: usb-audio: scarlett2: Fix data_mutex lock (git-fixes). - ALSA: usb-audio: scarlett2: Fix scarlett2_*_ctl_put() return values (git-fixes). - ALSA: usb-audio: scarlett2: Fix wrong resume call (git-fixes). - ALSA: usb-audio: scarlett2: Read mixer volumes at init time (git-fixes). - ALSA: usb-audio: scarlett2: Read mux at init time (git-fixes). - ALSA: usx2y: Avoid camelCase (git-fixes). - ALSA: usx2y: Do not call free_pages_exact() with NULL address (git-fixes). - ARM: ensure the signal page contains defined contents (bsc#1188445). - ASoC: Intel: kbl_da7219_max98357a: shrink platform_id below 20 characters (git-fixes). - ASoC: Intel: sof_sdw: add SOF_RT715_DAI_ID_FIX for AlderLake (git-fixes). - ASoC: Intel: sof_sdw: add mutual exclusion between PCH DMIC and RT715 (git-fixes). - ASoC: SOF: loader: Use snd_sof_dsp_block_read() instead sof_block_read() (git-fixes). - ASoC: atmel-i2s: Fix usage of capture and playback at the same time (git-fixes). - ASoC: cs42l42: Correct definition of CS42L42_ADC_PDN_MASK (git-fixes). - ASoC: fsl_spdif: Fix error handler with pm_runtime_enable (git-fixes). - ASoC: fsl_spdif: Fix unexpected interrupt after suspend (git-fixes). - ASoC: hisilicon: fix missing clk_disable_unprepare() on error in hi6210_i2s_startup() (git-fixes). - ASoC: img: Fix PM reference leak in img_i2s_in_probe() (git-fixes). - ASoC: intel/boards: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: max98373-sdw: add missing memory allocation check (git-fixes). - ASoC: max98373-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: mediatek: mtk-btcvsd: Fix an error handling path in 'mtk_btcvsd_snd_probe()' (git-fixes). - ASoC: rk3328: fix missing clk_disable_unprepare() on error in rk3328_platform_probe() (git-fixes). - ASoC: rsnd: tidyup loop on rsnd_adg_clk_query() (git-fixes). - ASoC: rt1308-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5631: Fix regcache sync errors on resume (git-fixes). - ASoC: rt5682-sdw: set regcache_cache_only false before reading RT5682_DEVICE_ID (git-fixes). - ASoC: rt5682-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5682: Disable irq on shutdown (git-fixes). - ASoC: rt5682: Fix a problem with error handling in the io init function of the soundwire (git-fixes). - ASoC: rt5682: fix getting the wrong device id when the suspend_stress_test (git-fixes). - ASoC: rt700-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt711-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt715-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: soc-core: Fix the error return code in snd_soc_of_parse_audio_routing() (git-fixes). - ASoC: soc-pcm: fix the return value in dpcm_apply_symmetry() (git-fixes). - ASoC: tegra: Set driver_name=tegra for all machine drivers (git-fixes). - ASoC: wm_adsp: Correct wm_coeff_tlv_get handling (git-fixes). - Bluetooth: Fix alt settings for incoming SCO with transparent coding format (git-fixes). - Bluetooth: Fix handling of HCI_LE_Advertising_Set_Terminated event (git-fixes). - Bluetooth: Fix the HCI to MGMT status conversion table (git-fixes). - Bluetooth: L2CAP: Fix invalid access if ECRED Reconfigure fails (git-fixes). - Bluetooth: L2CAP: Fix invalid access on ECRED Connection response (git-fixes). - Bluetooth: Remove spurious error message (git-fixes). - Bluetooth: Shutdown controller after workqueues are flushed or cancelled (git-fixes). - Bluetooth: btintel: Add infrastructure to read controller information (bsc#1188893). - Bluetooth: btintel: Check firmware version before download (bsc#1188893). - Bluetooth: btintel: Collect tlv based active firmware build info in FW mode (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version parsing (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Fix endianness issue for TLV version information (bsc#1188893). - Bluetooth: btintel: Fix offset calculation boot address parameter (bsc#1188893). - Bluetooth: btintel: Functions to send firmware header / payload (bsc#1188893). - Bluetooth: btintel: Move operational checks after version check (bsc#1188893). - Bluetooth: btintel: Refactor firmware download function (bsc#1188893). - Bluetooth: btintel: Reorganized bootloader mode tlv checks in intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Replace zero-length array with flexible-array member (bsc#1188893). - Bluetooth: btintel: Skip reading firmware file version while in bootloader mode (bsc#1188893). - Bluetooth: btqca: Do not modify firmware contents in-place (git-fixes). - Bluetooth: btusb: Add *setup* function for new generation Intel controllers (bsc#1188893). - Bluetooth: btusb: Add support USB ALT 3 for WBS (git-fixes). - Bluetooth: btusb: Add support for GarfieldPeak controller (bsc#1188893). - Bluetooth: btusb: Consolidate code for waiting firmware download (bsc#1188893). - Bluetooth: btusb: Define a function to construct firmware filename (bsc#1188893). - Bluetooth: btusb: Enable MSFT extension for Intel controllers (bsc#1188893). - Bluetooth: btusb: Fix failing to init controllers with operation firmware (bsc#1188893). - Bluetooth: btusb: Fixed too many in-token issue for Mediatek Chip (git-fixes). - Bluetooth: btusb: Helper function to download firmware to Intel adapters (bsc#1188893). - Bluetooth: btusb: Map Typhoon peak controller to BTUSB_INTEL_NEWGEN (bsc#1188893). - Bluetooth: btusb: Update boot parameter specific to SKU (bsc#1188893). - Bluetooth: btusb: fix bt fiwmare downloading failure issue for qca btsoc (git-fixes). - Bluetooth: btusb: print firmware file name on error loading firmware (bsc#1188893). - Bluetooth: hci_intel: drop strange le16_to_cpu() against u8 values (bsc#1188893). - Bluetooth: hci_intel: enable on new platform (bsc#1188893). - Bluetooth: hci_intel: switch to list_for_each_entry() (bsc#1188893). - Bluetooth: hci_qca: fix potential GPF (git-fixes). - Bluetooth: mgmt: Fix slab-out-of-bounds in tlv_data_is_valid (git-fixes). - Bluetooth: mgmt: Fix the command returns garbage parameter value (git-fixes). - HID: do not use down_interruptible() when unbinding devices (git-fixes). - HID: wacom: Correct base usage for capacitive ExpressKey status bits (git-fixes). - Input: hideep - fix the uninitialized use in hideep_nvm_unlock() (git-fixes). - Input: hil_kbd - fix error return code in hil_dev_connect() (git-fixes). - Input: ili210x - add missing negation for touch indication on ili210x (git-fixes). - Input: usbtouchscreen - fix control-request directions (git-fixes). - KVM: LAPIC: Prevent setting the tscdeadline timer if the lapic is hw disabled (bsc#1188771). - KVM: SVM: document KVM_MEM_ENCRYPT_OP, let userspace detect if SEV is available (bsc#1188703). - KVM: nVMX: Consult only the "basic" exit reason when routing nested exit (bsc#1188773). - KVM: nVMX: Ensure 64-bit shift when checking VMFUNC bitmap (bsc#1188774). - KVM: nVMX: Preserve exception priority irrespective of exiting behavior (bsc#1188777). - PCI/sysfs: Fix dsm_label_utf16s_to_utf8s() buffer overrun (git-fixes). - PCI: Add AMD RS690 quirk to enable 64-bit DMA (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: aardvark: Fix checking for PIO Non-posted Request (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Support multi-MSI only on uniprocessor kernel (git-fixes). - PCI: quirks: fix false kABI positive (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra: Add missing MODULE_DEVICE_TABLE (git-fixes). - RDMA/cma: Fix incorrect Packet Lifetime calculation (jsc#SLE-8449). - RDMA/cma: Protect RMW with qp_mutex (git-fixes). - RDMA/hns: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx4: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx5: Remove unused parameter udata (jsc#SLE-15176). - RDMA/rtrs-clt: Check if the queue_depth has changed during a reconnection (jsc#SLE-15176). - RDMA/rtrs-clt: Check state of the rtrs_clt_sess before reading its stats (jsc#SLE-15176). - RDMA/rtrs-clt: Fix memory leak of not-freed sess->stats and stats->pcpu_stats (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak of unfreed rtrs_srv_stats object (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak when having multiple sessions (jsc#SLE-15176). - RDMA/rtrs-srv: Replace atomic_t with percpu_ref for ids_inflight (jsc#SLE-15176). - RDMA/rtrs-srv: Set minimal max_send_wr and max_recv_wr (jsc#SLE-15176). - RDMA/rtrs: Do not reset hb_missed_max after re-connection (jsc#SLE-15176). - RDMA/srp: Fix a recently introduced memory leak (jsc#SLE-15176). - Revert "ACPI: resources: Add checks for ACPI IRQ override" (git-fixes). - Revert "ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro" (git-fixes). - Revert "Bluetooth: btintel: Fix endianness issue for TLV version information" (bsc#1188893). - Revert "USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem" (git-fixes). - Revert "be2net: disable bh with spin_lock in be_process_mcc" (git-fixes). - Revert "drm/i915: Propagate errors on awaiting already signaled fences" (git-fixes). - Revert "drm: add a locked version of drm_is_current_master" (git-fixes). - Revert "ibmvnic: remove duplicate napi_schedule call in open function" (bsc#1065729). - Revert "iwlwifi: remove wide_cmd_header field" (bsc#1187495). - USB: cdc-acm: blacklist Heimann USB Appset device (git-fixes). - USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick (git-fixes). - USB: serial: cp210x: fix comments for GE CS1000 (git-fixes). - USB: serial: option: add support for u-blox LARA-R6 family (git-fixes). - USB: usb-storage: Add LaCie Rugged USB3-FW to IGNORE_UAS (git-fixes). - [xarray] iov_iter_fault_in_readable() should do nothing in xarray case (git-fixes). - amdgpu: fix GEM obj leak in amdgpu_display_user_framebuffer_create (bsc#1152472). - ata: ahci_sunxi: Disable DIPM (git-fixes). - ath10k: Fix an error code in ath10k_add_interface() (git-fixes). - ath10k: add missing error return code in ath10k_pci_probe() (git-fixes). - ath10k: go to path err_unsupported when chip id is not supported (git-fixes). - ath10k: remove unused more_frags variable (git-fixes). - ath9k: Fix kernel NULL pointer dereference during ath_reset_internal() (git-fixes). - backlight: lm3630a: Fix return code of .update_status() callback (git-fixes). - backlight: lm3630a_bl: Put fwnode in error case during ->probe() (git-fixes). - bcache: avoid oversized read request in cache missing code path (bsc#1184631). - bcache: remove bcache device self-defined readahead (bsc#1184631). - blk-mq: Add blk_mq_delay_run_hw_queues() API call (bsc#1180092). - blk-mq: In blk_mq_dispatch_rq_list() "no budget" is a reason to kick (bsc#1180092). - blk-mq: Put driver tag in blk_mq_dispatch_rq_list() when no budget (bsc#1180092). - blk-mq: Rerun dispatching in the case of budget contention (bsc#1180092). - blk-mq: insert flush request to the front of dispatch queue (bsc#1180092). - blk-mq: insert passthrough request into hctx->dispatch directly (bsc#1180092). - bnxt_en: Add missing check for BNXT_STATE_ABORT_ERR in bnxt_fw_rset_task() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Check abort error state in bnxt_half_open_nic() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Refresh RoCE capabilities in bnxt_ulp_probe() (jsc#SLE-8371 bsc#1153274). - bnxt_en: do not disable an already disabled PCI device (git-fixes). - bonding: Add struct bond_ipesc to manage SA (bsc#1176447). - bonding: disallow setting nested bonding + ipsec offload (bsc#1176447). - bonding: fix build issue (git-fixes). - bonding: fix incorrect return value of bond_ipsec_offload_ok() (bsc#1176447). - bonding: fix null dereference in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_del_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_offload_ok() (bsc#1176447). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1154353). - bpftool: Properly close va_list 'ap' by va_end() on error (bsc#1155518). - brcmfmac: Fix a double-free in brcmf_sdio_bus_reset (git-fixes). - brcmfmac: correctly report average RSSI in station info (git-fixes). - brcmfmac: fix setting of station info chains bitmask (git-fixes). - brcmsmac: mac80211_if: Fix a resource leak in an error handling path (git-fixes). - cadence: force nonlinear buffers to be cloned (git-fixes). - can: ems_usb: fix memory leak (git-fixes). - can: esd_usb2: fix memory leak (git-fixes). - can: gw: synchronize rcu operations before removing gw job entry (git-fixes). - can: hi311x: fix a signedness bug in hi3110_cmd() (git-fixes). - can: hi311x: hi3110_can_probe(): silence clang warning (git-fixes). - can: mcba_usb_start(): add missing urb->transfer_dma initialization (git-fixes). - can: peak_pciefd: pucan_handle_status(): fix a potential starvation issue in TX path (git-fixes). - can: raw: raw_setsockopt(): fix raw_rcv panic for sock UAF (git-fixes). - can: usb_8dev: fix memory leak (git-fixes). - ceph: do not WARN if we're still opening a session to an MDS (bsc#1188748). - cfg80211: call cfg80211_leave_ocb when switching away from OCB (git-fixes). - char: pcmcia: error out if 'num_bytes_read' is greater than 4 in set_protocol() (git-fixes). - cifs: Fix preauth hash corruption (git-fixes). - cifs: Return correct error code from smb2_get_enc_key (git-fixes). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (git-fixes). - cifs: fix interrupted close commands (git-fixes). - cifs: fix memory leak in smb2_copychunk_range (git-fixes). - clk: actions: Fix SD clocks factor table on Owl S500 SoC (git-fixes). - clk: actions: Fix UART clock dividers on Owl S500 SoC (git-fixes). - clk: actions: Fix bisp_factor_table based clocks on Owl S500 SoC (git-fixes). - clk: imx8mq: remove SYS PLL 1/2 clock gates (git-fixes). - clk: meson: g12a: fix gp0 and hifi ranges (git-fixes). - clk: renesas: r8a77995: Add ZA2 clock (git-fixes). - clk: renesas: rcar-gen3: Update Z clock rate formula in comments (git-fixes). - clk: si5341: Avoid divide errors due to bogus register contents (git-fixes). - clk: si5341: Update initialization magic (git-fixes). - clk: tegra: Ensure that PLLU configuration is applied properly (git-fixes). - clk: zynqmp: pll: Remove some dead code (git-fixes). - clocksource/arm_arch_timer: Improve Allwinner A64 timer workaround (git-fixes). - clocksource: Retry clock read if long delays detected (git-fixes). - coresight: Propagate symlink failure (git-fixes). - coresight: core: Fix use of uninitialized pointer (git-fixes). - cpu/hotplug: Cure the cpusets trainwreck (git fixes (sched/hotplug)). - cpufreq: sc520_freq: add 'fallthrough' to one case (git-fixes). - crypto: ccp - Fix a resource leak in an error handling path (git-fixes). - crypto: ixp4xx - dma_unmap the correct address (git-fixes). - crypto: nitrox - fix unchecked variable in nitrox_register_interrupts (git-fixes). - crypto: nx - add missing MODULE_DEVICE_TABLE (git-fixes). - crypto: omap-sham - Fix PM reference leak in omap sham ops (git-fixes). - crypto: qat - check return code of qat_hal_rd_rel_reg() (git-fixes). - crypto: qat - remove unused macro in FW loader (git-fixes). - crypto: sun4i-ss - IV register does not work on A10 and A13 (git-fixes). - crypto: sun4i-ss - checking sg length is not sufficient (git-fixes). - crypto: sun4i-ss - initialize need_fallback (git-fixes). - crypto: ux500 - Fix error return code in hash_hw_final() (git-fixes). - crypto: virtio: Fix dest length calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - crypto: virtio: Fix src/dst scatterlist calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - cw1200: Revert unnecessary patches that fix unreal use-after-free bugs (git-fixes). - cw1200: add missing MODULE_DEVICE_TABLE (git-fixes). - cxgb4: fix IRQ free race during driver unload (git-fixes). - dma-buf/sync_file: Do not leak fences on merge failure (git-fixes). - dmaengine: fsl-qdma: check dma_set_mask return value (git-fixes). - dmaengine: mediatek: do not issue a new desc if one is still current (git-fixes). - dmaengine: mediatek: free the proper desc in desc_free handler (git-fixes). - dmaengine: mediatek: use GFP_NOWAIT instead of GFP_ATOMIC in prep_dma (git-fixes). - dmaengine: rcar-dmac: Fix PM reference leak in rcar_dmac_probe() (git-fixes). - dmaengine: zynqmp_dma: Fix PM reference leak in zynqmp_dma_alloc_chan_resourc() (git-fixes). - docs: admin-guide: update description for kernel.hotplug sysctl (git-fixes). - docs: virt/kvm: close inline string literal (bsc#1188703). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - drm/amd/amdgpu/sriov disable all ip hw status by default (git-fixes). - drm/amd/dc: Fix a missing check bug in dm_dp_mst_detect() (git-fixes). - drm/amd/display: Avoid HDCP over-read and corruption (git-fixes). - drm/amd/display: Fix DCN 3.01 DSCCLK validation (git-fixes). - drm/amd/display: Fix build warnings (git-fixes). - drm/amd/display: Fix off-by-one error in DML (git-fixes). - drm/amd/display: Release MST resources on switch from MST to SST (git-fixes). - drm/amd/display: Set DISPCLK_MAX_ERRDET_CYCLES to 7 (git-fixes). - drm/amd/display: Verify Gamma & Degamma LUT sizes in amdgpu_dm_atomic_check (git-fixes). - drm/amd/display: fix HDCP reset sequence on reinitialize (git-fixes). - drm/amd/display: fix incorrrect valid irq check (git-fixes). - drm/amd/display: fix use_max_lb flag for 420 pixel formats (git-fixes). - drm/amdgpu: Do not query CE and UE errors (bsc#1152472) - drm/amdgpu: Update NV SIMD-per-CU to 2 (git-fixes). - drm/amdgpu: enable sdma0 tmz for Raven/Renoir(V2) (git-fixes). - drm/amdgpu: remove unsafe optimization to drop preamble ib (git-fixes). - drm/amdgpu: update golden setting for sienna_cichlid (git-fixes). - drm/amdgpu: wait for moving fence after pinning (git-fixes). - drm/amdkfd: Fix circular lock in nocpsch path (git-fixes). - drm/amdkfd: Walk through list with dqm lock hold (git-fixes). - drm/amdkfd: fix circular locking on get_wave_state (git-fixes). - drm/amdkfd: use allowed domain for vmbo validation (git-fixes). - drm/arm/malidp: Always list modifiers (git-fixes). - drm/bridge/sii8620: fix dependency on extcon (git-fixes). - drm/bridge: Fix the stop condition of drm_bridge_chain_pre_enable() (git-fixes). - drm/bridge: cdns: Fix PM reference leak in cdns_dsi_transfer() (git-fixes). - drm/bridge: nwl-dsi: Force a full modeset when crtc_state->active is changed to be true (git-fixes). - drm/dp_mst: Do not set proposed vcpi directly (git-fixes). - drm/gma500: Add the missed drm_gem_object_put() in psb_user_framebuffer_create() (git-fixes). - drm/i915/display: Do not zero past infoframes.vsc (git-fixes). - drm/i915/gvt: Clear d3_entered on elsp cmd submission (git-fixes). - drm/i915/selftests: use vma_lookup() in __igt_mmap() (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (bsc#1152472) - drm/mediatek: Fix PM reference leak in mtk_crtc_ddp_hw_init() (git-fixes). - drm/msm/dpu: Fix error return code in dpu_mdss_init() (git-fixes). - drm/msm/dpu: Fix sm8250_mdp register length (git-fixes). - drm/msm/mdp4: Fix modifier support enabling (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/msm: Small msm_gem_purge() fix (bsc#1152489) - drm/mxsfb: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm/nouveau: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/nouveau: fix dma_address check for CPU/GPU sync (git-fixes). - drm/nouveau: wait for moving fence after pinning v2 (git-fixes). - drm/panel: nt35510: Do not fail if DSI read fails (git-fixes). - drm/panel: raspberrypi-touchscreen: Prevent double-free (git-fixes). - drm/radeon: Add the missed drm_gem_object_put() in radeon_user_framebuffer_create() (git-fixes). - drm/radeon: Call radeon_suspend_kms() in radeon_pci_shutdown() for Loongson64 (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (bsc#1152489) - drm/radeon: wait for moving fence after pinning (git-fixes). - drm/rockchip: cdn-dp-core: add missing clk_disable_unprepare() on error in cdn_dp_grf_write() (git-fixes). - drm/rockchip: cdn-dp: fix sign extension on an int multiply for a u64 result (git-fixes). - drm/rockchip: dsi: move all lane config except LCDC mux to bind() (git-fixes). - drm/rockchip: dsi: remove extra component_del() call (git-fixes). - drm/rockchip: lvds: Fix an error handling path (git-fixes). - drm/sched: Avoid data corruptions (git-fixes). - drm/scheduler: Fix hang when sched_entity released (git-fixes). - drm/stm: Fix bus_flags handling (bsc#1152472) - drm/tegra: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/vc4: Fix clock source for VEC PixelValve on BCM2711 (git-fixes). - drm/vc4: crtc: Skip the TXP (git-fixes). - drm/vc4: fix argument ordering in vc4_crtc_get_margins() (git-fixes). - drm/vc4: hdmi: Fix PM reference leak in vc4_hdmi_encoder_pre_crtc_co() (git-fixes). - drm/vc4: hdmi: Fix error path of hpd-gpios (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (bsc#1152489) - drm/vc4: hdmi: Prevent clock unbalance (git-fixes). - drm/vc4: txp: Properly set the possible_crtcs mask (git-fixes). - drm/virtio: Fix double free on probe failure (git-fixes). - drm/vmwgfx: Fix cpu updates of coherent multisample surfaces (git-fixes). - drm/vmwgfx: Mark a surface gpu-dirty after the SVGA3dCmdDXGenMips command (git-fixes). - drm/zte: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm: Return -ENOTTY for non-drm ioctls (git-fixes). - drm: add a locked version of drm_is_current_master (git-fixes). - drm: bridge/panel: Cleanup connector on bridge detach (bsc#1152489) - drm: bridge: add missing word in Analogix help text (git-fixes). - drm: qxl: ensure surf.data is ininitialized (git-fixes). - drm: rockchip: add missing registers for RK3066 (git-fixes). - drm: rockchip: add missing registers for RK3188 (git-fixes). - drm: rockchip: set alpha_en to 0 if it is not used (git-fixes). - e1000e: Check the PCIm state (git-fixes). - e1000e: Fix an error handling path in 'e1000_probe()' (git-fixes). - efi/tpm: Differentiate missing and invalid final event log table (bsc#1188036). - extcon: extcon-max8997: Fix IRQ freeing at error path (git-fixes). - extcon: intel-mrfld: Sync hardware and software state on init (git-fixes). - extcon: max8997: Add missing modalias string (git-fixes). - extcon: sm5502: Drop invalid register write in sm5502_reg_data (git-fixes). - fbmem: Do not delete the mode that is still in use (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Tell memblock about EFI iomem reservations (git-fixes). - firmware: arm_scmi: Fix possible scmi_linux_errmap buffer overflow (git-fixes). - firmware: arm_scmi: Fix range check for the maximum number of pending messages (git-fixes). - firmware: tegra: Fix error return code in tegra210_bpmp_init() (git-fixes). - fm10k: Fix an error handling path in 'fm10k_probe()' (git-fixes). - fpga: machxo2-spi: Address warning about unused variable (git-fixes). - fpga: stratix10-soc: Add missing fpga_mgr_free() call (git-fixes). - fuse: check connected before queueing on fpq->io (bsc#1188267). - fuse: ignore PG_workingset after stealing (bsc#1188268). - fuse: reject internal errno (bsc#1188269). - gpio: AMD8111 and TQMX86 require HAS_IOPORT_MAP (git-fixes). - gpio: pca953x: Add support for the On Semi pca9655 (git-fixes). - gpio: zynq: Check return value of pm_runtime_get_sync (git-fixes). - gtp: fix an use-before-init in gtp_newlink() (git-fixes). - gve: Add DQO fields for core data structures (bsc#1176940). - gve: Add Gvnic stats AQ command and ethtool show/set-priv-flags (bsc#1176940). - gve: Add dqo descriptors (bsc#1176940). - gve: Add stats for gve (bsc#1176940). - gve: Add support for DQO RX PTYPE map (bsc#1176940). - gve: Add support for raw addressing device option (bsc#1176940). - gve: Add support for raw addressing in the tx path (bsc#1176940). - gve: Add support for raw addressing to the rx path (bsc#1176940). - gve: Batch AQ commands for creating and destroying queues (bsc#1176940). - gve: Check TX QPL was actually assigned (bsc#1176940). - gve: DQO: Add RX path (bsc#1176940). - gve: DQO: Add TX path (bsc#1176940). - gve: DQO: Add core netdev features (bsc#1176940). - gve: DQO: Add ring allocation and initialization (bsc#1176940). - gve: DQO: Configure interrupts on device up (bsc#1176940). - gve: DQO: Fix off by one in gve_rx_dqo() (bsc#1176940). - gve: DQO: Remove incorrect prefetch (bsc#1176940). - gve: Enable Link Speed Reporting in the driver (bsc#1176940). - gve: Fix an error handling path in 'gve_probe()' (git-fixes). - gve: Fix swapped vars when fetching max queues (git-fixes). - gve: Fix warnings reported for DQO patchset (bsc#1176940). - gve: Get and set Rx copybreak via ethtool (bsc#1176940). - gve: Introduce a new model for device options (bsc#1176940). - gve: Introduce per netdev `enum gve_queue_format` (bsc#1176940). - gve: Make gve_rx_slot_page_info.page_offset an absolute offset (bsc#1176940). - gve: Move some static functions to a common file (bsc#1176940). - gve: NIC stats for report-stats and for ethtool (bsc#1176940). - gve: Propagate error codes to caller (bsc#1176940). - gve: Replace zero-length array with flexible-array member (bsc#1176940). - gve: Rx Buffer Recycling (bsc#1176940). - gve: Simplify code and axe the use of a deprecated API (bsc#1176940). - gve: Update adminq commands to support DQO queues (bsc#1176940). - gve: Use dev_info/err instead of netif_info/err (bsc#1176940). - gve: Use link status register to report link status (bsc#1176940). - gve: adminq: DQO specific device descriptor logic (bsc#1176940). - gve: gve_rx_copy: Move padding to an argument (bsc#1176940). - hwmon: (max31722) Remove non-standard ACPI device IDs (git-fixes). - hwmon: (max31790) Fix fan speed reporting for fan7..12 (git-fixes). - hwmon: (max31790) Fix pwmX_enable attributes (git-fixes). - hwmon: (max31790) Report correct current pwm duty cycles (git-fixes). - hwrng: exynos - Fix runtime PM imbalance on error (git-fixes). - i2c: core: Disable client irq on reboot/shutdown (git-fixes). - i2c: designware: Adjust bus_freq_hz when refuse high speed mode set (git-fixes). - i2c: dev: Add __user annotation (git-fixes). - i2c: robotfuzz-osif: fix control-request directions (git-fixes). - i40e: Fix autoneg disabling for non-10GBaseT links (git-fixes). - i40e: Fix error handling in i40e_vsi_open (git-fixes). - i40e: Fix missing rtnl locking when setting up pf switch (jsc#SLE-13701). - i40e: fix PTP on 5Gb links (jsc#SLE-13701). - iavf: Fix an error handling path in 'iavf_probe()' (git-fixes). - ibmvnic: Allow device probe if the device is not ready at boot (bsc#1184114 ltc#192237). - ibmvnic: Remove the proper scrq flush (bsc#1188504 ltc#192075). - ibmvnic: Use 'skb_frag_address()' instead of hand coding it (bsc#1184114 ltc#192237). - ibmvnic: Use list_for_each_entry() to simplify code in ibmvnic.c (bsc#1184114 ltc#192237). - ibmvnic: Use strscpy() instead of strncpy() (bsc#1184114 ltc#192237). - ibmvnic: account for bufs already saved in indir_buf (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: clean pending indirect buffs during reset (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: fix kernel build warning (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warning in strncpy (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warnings in build_hdr_descs_arr (bsc#1184114 ltc#192237). - ibmvnic: fix send_request_map incompatible argument (bsc#1184114 ltc#192237). - ibmvnic: free tx_pool if tso_pool alloc fails (bsc#1085224 ltc#164363). - ibmvnic: parenthesize a check (bsc#1184114 ltc#192237 bsc#1183871 ltc#192139 git-fixes). - ibmvnic: retry reset if there are no other resets (bsc#1184350 ltc#191533). - ibmvnic: set ltb->buff to NULL after freeing (bsc#1094840 ltc#167098). - ice: Re-organizes reqstd/avail {R, T}XQ check/code for efficiency (jsc#SLE-7926). - igb: Check if num of q_vectors is smaller than max before array access (git-fixes). - igb: Fix an error handling path in 'igb_probe()' (git-fixes). - igb: Fix position of assignment to *ring (git-fixes). - igb: Fix use-after-free error during reset (git-fixes). - igc: Fix an error handling path in 'igc_probe()' (git-fixes). - igc: Fix use-after-free error during reset (git-fixes). - igc: change default return of igc_read_phy_reg() (git-fixes). - iio: accel: bma180: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: bma180: Use explicit member assignment (git-fixes). - iio: accel: bma220: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: hid: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: kxcjk-1013: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: mxc4005: Fix overread of data and alignment issue (git-fixes). - iio: accel: stk8312: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: stk8ba50: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: at91-sama5d2: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: hx711: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: mxs-lradc: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads1015: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads8688: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: vf610: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adis16400: do not return ints in irq handlers (git-fixes). - iio: adis_buffer: do not return ints in irq handlers (git-fixes). - iio: at91-sama5d2_adc: remove usage of iio_priv_to_dev() helper (git-fixes). - iio: gyro: bmg160: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: gyro: fxa21002c: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: humidity: am2315: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: isl29125: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3414: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: do not free unallocated IRQ (git-fixes). - iio: light: vcnl4035: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: ltr501: ltr501_read_ps(): add missing endianness conversion (git-fixes). - iio: ltr501: ltr559: fix initialization of LTR501_ALS_CONTR (git-fixes). - iio: ltr501: mark register holding upper 8 bits of ALS_DATA{0,1} and PS_DATA as volatile, too (git-fixes). - iio: magn: bmc150: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: magn: bmc150: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: hmc5843: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: rm3100: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: potentiostat: lmp91000: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: as3935: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: isl29501: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: pulsed-light: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: srf08: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: si1133: fix format string warnings (git-fixes). - iio:accel:mxc4005: Drop unnecessary explicit casts in regmap_bulk_read calls (git-fixes). - integrity: use arch_ima_get_secureboot instead of checking EFI_SECURE_BOOT when loading MokListRT (bsc#1188366). - intel_th: Wait until port is in reset before programming it (git-fixes). - iwl-trans: move dev_cmd_offs, page_offs to a common trans header (bsc#1187495). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_enqueue_hcmd() (git-fixes). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_gen2_enqueue_hcmd() (git-fixes). - iwlwifi: acpi: evaluate dsm to disable 5.8GHz channels (bsc#1187495). - iwlwifi: acpi: in non acpi compilations remove iwl_sar_geo_init (bsc#1187495). - iwlwifi: acpi: prepare SAR profile selection code for multiple sizes (bsc#1187495). - iwlwifi: acpi: remove dummy definition of iwl_sar_set_profile() (bsc#1187495). - iwlwifi: acpi: rename geo structs to contain versioning (bsc#1187495). - iwlwifi: acpi: support ppag table command v2 (bsc#1187495). - iwlwifi: add a common struct for all iwl_tx_power_cmd versions (bsc#1187495). - iwlwifi: add trans op to set PNVM (bsc#1187495). - iwlwifi: align RX status flags with firmware (bsc#1187495). - iwlwifi: api: fix u32 -> __le32 (bsc#1187495). - iwlwifi: bump FW API to 57 for AX devices (bsc#1187495). - iwlwifi: bump FW API to 59 for AX devices (bsc#1187495). - iwlwifi: calib: Demote seemingly unintentional kerneldoc header (bsc#1187495). - iwlwifi: dbg: Do not touch the tlv data (bsc#1187495). - iwlwifi: dbg: add debug host notification (DHN) time point (bsc#1187495). - iwlwifi: dbg: add dumping special device memory (bsc#1187495). - iwlwifi: dbg: remove IWL_FW_INI_TIME_POINT_WDG_TIMEOUT (bsc#1187495). - iwlwifi: do not export acpi functions unnecessarily (bsc#1187495). - iwlwifi: dvm: Demote a couple of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: devices: Fix function documentation formatting issues (bsc#1187495). - iwlwifi: dvm: lib: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: rxon: Demote non-conformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: scan: Demote a few nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: sta: Demote a bunch of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: tx: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: enable twt by default (bsc#1187495). - iwlwifi: fix 11ax disabled bit in the regulatory capability flags (bsc#1187495). - iwlwifi: fix sar geo table initialization (bsc#1187495). - iwlwifi: fw: add default value for iwl_fw_lookup_cmd_ver (bsc#1187495). - iwlwifi: fw: move assert descriptor parser to common code (bsc#1187495). - iwlwifi: increase PNVM load timeout (bsc#1187495). - iwlwifi: iwl-drv: Provide descriptions debugfs dentries (bsc#1187495). - iwlwifi: iwl-trans: move tfd to trans layer (bsc#1187495). - iwlwifi: move PNVM implementation to common code (bsc#1187495). - iwlwifi: move all bus-independent TX functions to common code (bsc#1187495). - iwlwifi: move bc_pool to a common trans header (bsc#1187495). - iwlwifi: move bc_table_dword to a common trans header (bsc#1187495). - iwlwifi: msix: limit max RX queues for 9000 family (bsc#1187495). - iwlwifi: mvm: Add FTM initiator RTT smoothing logic (bsc#1187495). - iwlwifi: mvm: Do not install CMAC/GMAC key in AP mode (bsc#1187495). - iwlwifi: mvm: add PROTECTED_TWT firmware API (bsc#1187495). - iwlwifi: mvm: add a get lmac id function (bsc#1187495). - iwlwifi: mvm: add an option to add PASN station (bsc#1187495). - iwlwifi: mvm: add d3 prints (bsc#1187495). - iwlwifi: mvm: add support for new WOWLAN_TSC_RSC_PARAM version (bsc#1187495). - iwlwifi: mvm: add support for new version of WOWLAN_TKIP_SETTING_API_S (bsc#1187495). - iwlwifi: mvm: add support for range request command ver 11 (bsc#1187495). - iwlwifi: mvm: add support for responder dynamic config command version 3 (bsc#1187495). - iwlwifi: mvm: assign SAR table revision to the command later (bsc#1187495). - iwlwifi: mvm: avoid possible NULL pointer dereference (bsc#1187495). - iwlwifi: mvm: clear all scan UIDs (bsc#1187495). - iwlwifi: mvm: d3: parse wowlan status version 11 (bsc#1187495). - iwlwifi: mvm: d3: support GCMP ciphers (bsc#1187495). - iwlwifi: mvm: do not change band on bound PHY contexts (git-fixes). - iwlwifi: mvm: do not check if CSA event is running before removing (bsc#1187495). - iwlwifi: mvm: do not send a CSA command the firmware does not know (bsc#1187495). - iwlwifi: mvm: fix error print when session protection ends (git-fixes). - iwlwifi: mvm: fix suspicious rcu usage warnings (bsc#1187495). - iwlwifi: mvm: fix the type we use in the PPAG table validity checks (bsc#1187495). - iwlwifi: mvm: get number of stations from TLV (bsc#1187495). - iwlwifi: mvm: ignore the scan duration parameter (bsc#1187495). - iwlwifi: mvm: initiator: add option for adding a PASN responder (bsc#1187495). - iwlwifi: mvm: location: set the HLTK when PASN station is added (bsc#1187495). - iwlwifi: mvm: ops: Remove unused static struct 'iwl_mvm_debug_names' (bsc#1187495). - iwlwifi: mvm: prepare roc_done_wk to work sync (bsc#1187495). - iwlwifi: mvm: process ba-notifications also when sta rcu is invalid (bsc#1187495). - iwlwifi: mvm: re-enable TX after channel switch (bsc#1187495). - iwlwifi: mvm: read and parse SKU ID if available (bsc#1187495). - iwlwifi: mvm: remove memset of kek_kck command (bsc#1187495). - iwlwifi: mvm: remove redundant log in iwl_mvm_tvqm_enable_txq() (bsc#1187495). - iwlwifi: mvm: remove redundant support_umac_log field (bsc#1187495). - iwlwifi: mvm: responder: allow to set only the HLTK for an associated station (bsc#1187495). - iwlwifi: mvm: ring the doorbell and wait for PNVM load completion (bsc#1187495). - iwlwifi: mvm: rs-fw: handle VHT extended NSS capability (bsc#1187495). - iwlwifi: mvm: send stored PPAG command instead of local (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT feature if supported by firmware (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT in MAC data policy (bsc#1187495). - iwlwifi: mvm: set enabled in the PPAG command properly (bsc#1187495). - iwlwifi: mvm: stop claiming NL80211_EXT_FEATURE_SET_SCAN_DWELL (bsc#1187495). - iwlwifi: mvm: store PPAG enabled/disabled flag properly (bsc#1187495). - iwlwifi: mvm: support ADD_STA_CMD_API_S ver 12 (bsc#1187495). - iwlwifi: mvm: support more GTK rekeying algorithms (bsc#1187495). - iwlwifi: mvm: support new KEK KCK api (bsc#1187495). - iwlwifi: mvm: tx: Demote misuse of kernel-doc headers (bsc#1187495). - iwlwifi: mvm: use CHECKSUM_COMPLETE (bsc#1187495). - iwlwifi: mvm: utils: Fix some doc-rot (bsc#1187495). - iwlwifi: pcie: avoid potential PNVM leaks (bsc#1187495). - iwlwifi: pcie: do not disable interrupts for reg_lock (bsc#1187495). - iwlwifi: pcie: fix context info freeing (git-fixes). - iwlwifi: pcie: fix the xtal latency value for a few qu devices (bsc#1187495). - iwlwifi: pcie: free IML DMA memory allocation (git-fixes). - iwlwifi: pcie: implement set_pnvm op (bsc#1187495). - iwlwifi: pcie: make iwl_pcie_txq_update_byte_cnt_tbl bus independent (bsc#1187495). - iwlwifi: pcie: properly set LTR workarounds on 22000 devices (bsc#1187495). - iwlwifi: phy-ctxt: add new API VER 3 for phy context cmd (bsc#1187495). - iwlwifi: pnvm: do not skip everything when not reloading (bsc#1187495). - iwlwifi: pnvm: do not try to load after failures (bsc#1187495). - iwlwifi: pnvm: increment the pointer before checking the TLV (bsc#1187495). - iwlwifi: pnvm: set the PNVM again if it was already loaded (bsc#1187495). - iwlwifi: provide gso_type to GSO packets (bsc#1187495). - iwlwifi: queue: bail out on invalid freeing (bsc#1187495). - iwlwifi: read and parse PNVM file (bsc#1187495). - iwlwifi: regulatory: regulatory capabilities api change (bsc#1187495). - iwlwifi: remove iwl_validate_sar_geo_profile() export (bsc#1187495). - iwlwifi: remove wide_cmd_header field (bsc#1187495). - iwlwifi: rs: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: rs: align to new TLC config command API (bsc#1187495). - iwlwifi: rs: set RTS protection for all non legacy rates (bsc#1187495). - iwlwifi: sta: defer ADDBA transmit in case reclaimed SN != next SN (bsc#1187495). - iwlwifi: stats: add new api fields for statistics cmd/ntfy (bsc#1187495). - iwlwifi: support REDUCE_TX_POWER_CMD version 6 (bsc#1187495). - iwlwifi: support version 3 of GEO_TX_POWER_LIMIT (bsc#1187495). - iwlwifi: support version 5 of the alive notification (bsc#1187495). - iwlwifi: thermal: support new temperature measurement API (bsc#1187495). - iwlwifi: update prph scratch structure to include PNVM data (bsc#1187495). - iwlwifi: use correct group for alive notification (bsc#1187495). - iwlwifi: wowlan: adapt to wowlan status API version 10 (bsc#1187495). - iwlwifi: yoyo: add support for internal buffer allocation in D3 (bsc#1187495). - ixgbe: Fix an error handling path in 'ixgbe_probe()' (git-fixes). - ixgbe: Fix packet corruption due to missing DMA sync (git-fixes). - ixgbevf: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - kABI compatibility fix for max98373_priv struct (git-fixes). - kABI workaround for btintel symbol changes (bsc#1188893). - kABI workaround for intel_th_driver (git-fixes). - kABI workaround for pci/quirks.c (git-fixes). - kABI: restore struct tcpc_config definition (git-fixes). - kabi/severities: ignore kABI of iwlwifi symbols (bsc#1187495) iwlwifi driver consists of several modules and all exported symbols are internal uses. Let's ignore kABI checks of those. - kernel-binary.spec: Exctract s390 decompression code (jsc#SLE-17042). - kernel-binary.spec: Fix up usrmerge for non-modular kernels. - kernel-binary.spec: Remove obsolete and wrong comment mkmakefile is repleced by echo on newer kernel - kprobes: Do not expose probe addresses to non-CAP_SYSLOG (git-fixes). - kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler (git-fixes). - kprobes: Fix compiler warning for !CONFIG_KPROBES_ON_FTRACE (git-fixes). - kprobes: Fix to check probe enabled before disarm_kprobe_ftrace() (git-fixes). - kprobes: fix kill kprobe which has been marked as gone (git-fixes). - kvm: LAPIC: Restore guard to prevent illegal APIC register access (bsc#1188772). - kvm: i8254: remove redundant assignment to pointer s (bsc#1188770). - leds: as3645a: Fix error return code in as3645a_parse_node() (git-fixes). - leds: class: The -ENOTSUPP should never be seen by user space (git-fixes). - leds: ktd2692: Fix an error handling path (git-fixes). - leds: lm3532: select regmap I2C API (git-fixes). - lib/decompress_unlz4.c: correctly handle zero-padding around initrds (git-fixes). - lib/decompressors: remove set but not used variabled 'level' (git-fixes). - lib: vsprintf: Fix handling of number field widths in vsscanf (git-fixes). - libbpf: Fixes incorrect rx_ring_setup_done (bsc#1155518). - liquidio: Fix unintentional sign extension issue on left shift of u16 (git-fixes). - mISDN: fix possible use-after-free in HFC_cleanup() (git-fixes). - mac80211: consider per-CPU statistics if present (git-fixes). - mac80211: remove iwlwifi specific workaround NDPs of null_response (git-fixes). - mac80211: remove iwlwifi specific workaround that broke sta NDP tx (git-fixes). - mac80211: remove warning in ieee80211_get_sband() (git-fixes). - mac80211: reset profile_periodicity/ema_ap (git-fixes). - mac80211_hwsim: add concurrent channels scanning support over virtio (git-fixes). - mac80211_hwsim: drop pending frames on stop (git-fixes). - math: Export mul_u64_u64_div_u64 (git-fixes). - media, bpf: Do not copy more entries than user space requested (git-fixes). - media: Fix Media Controller API config checks (git-fixes). - media: I2C: change 'RST' to "RSET" to fix multiple build errors (git-fixes). - media: au0828: fix a NULL vs IS_ERR() check (git-fixes). - media: bt8xx: Fix a missing check bug in bt878_probe (git-fixes). - media: cobalt: fix race condition in setting HPD (git-fixes). - media: cpia2: fix memory leak in cpia2_usb_probe (git-fixes). - media: dtv5100: fix control-request directions (git-fixes). - media: dvb-usb: fix wrong definition (git-fixes). - media: dvb_net: avoid speculation from net slot (git-fixes). - media: dvd_usb: memory leak in cinergyt2_fe_attach (git-fixes). - media: em28xx: Fix possible memory leak of em28xx struct (git-fixes). - media: exynos-gsc: fix pm_runtime_get_sync() usage count (git-fixes). - media: exynos4-is: Fix a use after free in isp_video_release (git-fixes). - media: gspca/gl860: fix zero-length control requests (git-fixes). - media: gspca/sq905: fix control-request direction (git-fixes). - media: gspca/sunplus: fix zero-length control requests (git-fixes). - media: imx-csi: Skip first few frames from a BT.656 source (git-fixes). - media: imx: imx7_mipi_csis: Fix logging of only error event counters (git-fixes). - media: mdk-mdp: fix pm_runtime_get_sync() usage count (git-fixes). - media: mtk-vcodec: fix PM runtime get logic (git-fixes). - media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() (git-fixes). - media: pvrusb2: fix warning in pvr2_i2c_core_done (git-fixes). - media: rc: i2c: Fix an error message (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: s5p-g2d: Fix a memory leak on ctx->fh.m2m_ctx (git-fixes). - media: s5p-jpeg: fix pm_runtime_get_sync() usage count (git-fixes). - media: sh_vou: fix pm_runtime_get_sync() usage count (git-fixes). - media: siano: Fix out-of-bounds warnings in smscore_load_firmware_family2() (git-fixes). - media: siano: fix device register error path (git-fixes). - media: st-hva: Fix potential NULL pointer dereferences (git-fixes). - media: sti/bdisp: fix pm_runtime_get_sync() usage count (git-fixes). - media: sti: fix obj-$(config) targets (git-fixes). - media: tc358743: Fix error return code in tc358743_probe_of() (git-fixes). - media: uvcvideo: Fix pixel format change for Elgato Cam Link 4K (git-fixes). - media: v4l2-async: Fix trivial documentation typo (git-fixes). - media: v4l2-core: Avoid the dangling pointer in v4l2_fh_release (git-fixes). - media: zr364xx: fix memory leak in zr364xx_start_readpipe (git-fixes). - memory: atmel-ebi: add missing of_node_put for loop iteration (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: pl353: Fix error return code in pl353_smc_probe() (git-fixes). - memstick: rtsx_usb_ms: fix UAF (git-fixes). - mfd: cpcap: Fix cpcap dmamask not set warnings (git-fixes). - mfd: da9052/stmpe: Add and modify MODULE_DEVICE_TABLE (git-fixes). - misc/libmasm/module: Fix two use after free in ibmasm_init_one (git-fixes). - misc: alcor_pci: fix inverted branch condition (git-fixes). - misc: alcor_pci: fix null-ptr-deref when there is no PCI bridge (git-fixes). - mm, futex: fix shared futex pgoff on shmem huge page (git fixes (kernel/futex)). - mmc: block: Disable CMDQ on the ioctl path (git-fixes). - mmc: core: Allow UHS-I voltage switch for SDSC cards if supported (git-fixes). - mmc: core: clear flags before allowing to retune (git-fixes). - mmc: sdhci-esdhc-imx: remove unused is_imx6q_usdhc (git-fixes). - mmc: sdhci-sprd: use sdhci_sprd_writew (git-fixes). - mmc: sdhci: Fix warning message when accessing RPMB in HS400 mode (git-fixes). - mmc: usdhi6rol0: fix error return code in usdhi6_probe() (git-fixes). - mmc: via-sdmmc: add a check against NULL pointer dereference (git-fixes). - mmc: vub3000: fix control-request direction (git-fixes). - mt76: fix possible NULL pointer dereference in mt76_tx (git-fixes). - mt76: mt7603: set 0 as min coverage_class value (git-fixes). - mt76: mt7615: fix endianness in mt7615_mcu_set_eeprom (git-fixes). - mt76: mt7615: fix fixed-rate tx status reporting (git-fixes). - mt76: mt7615: increase MCU command timeout (git-fixes). - mt76: mt7915: fix IEEE80211_HE_PHY_CAP7_MAX_NC for station mode (git-fixes). - mt76: set dma-done flag for flushed descriptors (git-fixes). - mtd: partitions: redboot: seek fis-index-block in the right node (git-fixes). - mtd: rawnand: marvell: add missing clk_disable_unprepare() on error in marvell_nfc_resume() (git-fixes). - mvpp2: suppress warning (git-fixes). - mwifiex: re-fix for unaligned accesses (git-fixes). - net/mlx5: Do not fail driver on failure to create debugfs (git-fixes). - net/mlx5e: Block offload of outer header csum for GRE tunnel (git-fixes). - net/sched: act_ct: remove and free nf_table callbacks (jsc#SLE-15172). - net: Make PTP-specific drivers depend on PTP_1588_CLOCK (git-fixes). - net: atlantic: fix ip dst and ipv6 address filters (git-fixes). - net: dp83867: Fix OF_MDIO config check (git-fixes). - net: ethernet: ti: Remove TI_CPTS_MOD workaround (git-fixes). - net: fec_ptp: fix issue caused by refactor the fec_devtype (git-fixes). - net: gve: convert strlcpy to strscpy (bsc#1176940). - net: gve: remove duplicated allowed (bsc#1176940). - net: hns3: Clear the CMDQ registers before unmapping BAR region (git-fixes). - net: ipw2x00,iwlegacy,iwlwifi: Remove in_interrupt() from debug macros (bsc#1187495). - net: iwlwifi: Remove in_interrupt() from tracing macro (bsc#1187495). - net: marvell: Fix OF_MDIO config check (git-fixes). - net: mvpp2: Put fwnode in error case during ->probe() (git-fixes). - net: netdevsim: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - net: phy: fix save wrong speed and duplex problem if autoneg is on (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: realtek: add delay to fix RXC generation issue (git-fixes). - net: usb: fix possible use-after-free in smsc75xx_bind (git-fixes). - net: wilc1000: clean up resource in error path of init mon interface (git-fixes). - netfilter: ctnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo (bsc#1176447). - nfc: nfcsim: fix use after free during module unload (git-fixes). - nvme-rdma: fix in-casule data send for chained sgls (git-fixes). - nvme-rdma: introduce nvme_rdma_sgl structure (git-fixes). - nvme-tcp: rerun io_work if req_list is not empty (git-fixes). - nvme: verify MNAN value if ANA is enabled (bsc#1185791). - pinctrl/amd: Add device HID for new AMD GPIO controller (git-fixes). - pinctrl: mcp23s08: Fix missing unlock on error in mcp23s08_irq() (git-fixes). - pinctrl: mcp23s08: fix race condition in irq handler (git-fixes). - pinctrl: stm32: fix the reported number of GPIO lines per bank (git-fixes). - platform/chrome: cros_ec_lightbar: Reduce ligthbar get version command (git-fixes). - platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_int0002_vgpio: Pass irqchip when adding gpiochip (git-fixes). - platform/x86: intel_int0002_vgpio: Remove dev_err() usage after platform_get_irq() (git-fixes). - platform/x86: intel_int0002_vgpio: Use device_init_wakeup (git-fixes). - platform/x86: toshiba_acpi: Fix missing error code in toshiba_acpi_setup_keyboard() (git-fixes). - power: reset: gpio-poweroff: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: ab8500: Avoid NULL pointers (git-fixes). - power: supply: ab8500: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: charger-manager: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: max17042: Do not enforce (incorrect) interrupt trigger type (git-fixes). - power: supply: sc2731_charger: Add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: sc27xx: Add missing MODULE_DEVICE_TABLE (git-fixes). - powerpc/64s: Move branch cache flushing bcctr variant to ppc-ops.h (bsc#1188885 ltc#193722). - powerpc/64s: rename pnv|pseries_setup_rfi_flush to _setup_security_mitigations (bsc#1188885 ltc#193722). - powerpc/mm: Fix lockup on kernel exec fault (bsc#1156395). - powerpc/papr_scm: Properly handle UUID types and API (bsc#1113295, git-fixes). - powerpc/pesries: Get STF barrier requirement from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: Get entry and uaccess flush required bits from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: add new branch prediction security bits for link stack (bsc#1188885 ltc#193722). - powerpc/pseries: export LPAR security flavor in lparcfg (bsc#1188885 ltc#193722). - powerpc/security: Add a security feature for STF barrier (bsc#1188885 ltc#193722). - powerpc/security: Allow for processors that flush the link stack using the special bcctr (bsc#1188885 ltc#193722). - powerpc/security: Fix link stack flush instruction (bsc#1188885 ltc#193722). - powerpc/security: change link stack flush state to the flush type enum (bsc#1188885 ltc#193722). - powerpc/security: make display of branch cache flush more consistent (bsc#1188885 ltc#193722). - powerpc/security: re-name count cache flush to branch cache flush (bsc#1188885 ltc#193722). - powerpc/security: split branch cache flush toggle from code patching (bsc#1188885 ltc#193722). - powerpc/stacktrace: Fix spurious "stale" traces in raise_backtrace_ipi() (bsc#1156395). - powerpc/stacktrace: Include linux/delay.h (bsc#1156395). - powerpc: Offline CPU in stop_this_cpu() (bsc#1156395). - prctl: PR_{G,S}ET_IO_FLUSHER to support controlling memory reclaim (bsc#1188752). - ptp_qoriq: fix overflow in ptp_qoriq_adjfine() u64 calcalation (git-fixes). - pwm: img: Fix PM reference leak in img_pwm_enable() (git-fixes). - pwm: imx1: Do not disable clocks at device remove time (git-fixes). - pwm: spear: Do not modify HW state in .remove callback (git-fixes). - qemu_fw_cfg: Make fw_cfg_rev_attr a proper kobj_attribute (git-fixes). - r8152: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8152: Fix a deadlock by doubly PM resume (bsc#1186194). - r8152: Fix potential PM refcount imbalance (bsc#1186194). - r8169: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8169: avoid link-up interrupt issue on RTL8106e if user enables ASPM (git-fixes). - random32: Fix implicit truncation warning in prandom_seed_state() (git-fixes). - ravb: Fix bit fields checking in ravb_hwtstamp_get() (git-fixes). - rbd: always kick acquire on "acquired" and "released" notifications (bsc#1188746). - rbd: do not hold lock_rwsem while running_list is being drained (bsc#1188747). - regulator: da9052: Ensure enough delay time for .set_voltage_time_sel (git-fixes). - regulator: hi6421: Fix getting wrong drvdata (git-fixes). - regulator: hi6421: Use correct variable type for regmap api val argument (git-fixes). - regulator: hi655x: Fix pass wrong pointer to config.driver_data (git-fixes). - regulator: uniphier: Add missing MODULE_DEVICE_TABLE (git-fixes). - replaced with upstream security mitigation cleanup - reset: a10sr: add missing of_match_table reference (git-fixes). - reset: bail if try_module_get() fails (git-fixes). - reset: brcmstb: Add missing MODULE_DEVICE_TABLE (git-fixes). - reset: ti-syscon: fix to_ti_syscon_reset_data macro (git-fixes). - rpm/kernel-binary.spec.in: Do not install usrmerged kernel on Leap (boo#1184804). - rpm/kernel-binary.spec.in: Remove zdebug define used only once. - rsi: Assign beacon rate settings to the correct rate_info descriptor field (git-fixes). - rtc: fix snprintf() checking in is_rtc_hctosys() (git-fixes). - rtc: max77686: Do not enforce (incorrect) interrupt trigger type (git-fixes). - rtc: mxc_v2: add missing MODULE_DEVICE_TABLE (git-fixes). - rtc: stm32: Fix unbalanced clk_disable_unprepare() on probe error path (git-fixes). - rtl8xxxu: Fix device info for RTL8192EU devices (git-fixes). - rtw88: 8822c: fix lc calibration timing (git-fixes). - scsi: fc: Add 256GBit speed setting to SCSI FC transport (bsc#1188101). - scsi: ibmvfc: Fix command state accounting and stale response detection (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: qedf: Do not put host in qedf_vport_create() unconditionally (bsc#1170511). - serial: 8250: Actually allow UPF_MAGIC_MULTIPLIER baud rates (git-fixes). - serial: 8250_pci: Add support for new HPE serial device (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: mvebu-uart: correctly calculate minimal possible baudrate (git-fixes). - serial: mvebu-uart: do not allow changing baudrate when uartclk is not available (git-fixes). - serial: mvebu-uart: fix calculation of clock divisor (git-fixes). - serial: tegra-tcu: Reorder channel initialization (git-fixes). - serial_cs: Add Option International GSM-Ready 56K/ISDN modem (git-fixes). - serial_cs: remove wrong GLOBETROTTER.cis entry (git-fixes). - sfp: Fix error handing in sfp_probe() (git-fixes). - skbuff: Fix build with SKB extensions disabled (jsc#SLE-15172). - skbuff: Release nfct refcount on napi stolen or re-used skbs (jsc#SLE-15172). - soc/tegra: fuse: Fix Tegra234-only builds (git-fixes). - soc: fsl: qbman: Delete useless kfree code (bsc#1188176). - soc: fsl: qbman: Ensure device cleanup is run for kexec (bsc#1188176). - soundwire: stream: Fix test for DP prepare complete (git-fixes). - spi: Make of_register_spi_device also set the fwnode (git-fixes). - spi: cadence: Correct initialisation of runtime PM again (git-fixes). - spi: fspi: dynamically alloc AHB memory (bsc#1188121). - spi: imx: add a check for speed_hz before calculating the clock (git-fixes). - spi: mediatek: fix fifo rx mode (git-fixes). - spi: nxp-fspi: Use devm API to fix missed unregistration of controller (bsc#1188121). - spi: omap-100k: Fix the length judgment problem (git-fixes). - spi: spi-loopback-test: Fix 'tx_buf' might be 'rx_buf' (git-fixes). - spi: spi-nxp-fspi: Add ACPI support (bsc#1188121). - spi: spi-nxp-fspi: Add support for IP read only (bsc#1188121). - spi: spi-nxp-fspi: Enable the Octal Mode in MCR0 (bsc#1188121). - spi: spi-nxp-fspi: Fix a NULL vs IS_ERR() check in probe (bsc#1188121). - spi: spi-nxp-fspi: Implement errata workaround for LS1028A (bsc#1188121). - spi: spi-sun6i: Fix chipselect/clock bug (git-fixes). - spi: spi-topcliff-pch: Fix potential double free in pch_spi_process_messages() (git-fixes). - spi: stm32-qspi: Remove unused qspi field of struct stm32_qspi_flash (git-fixes). - spi: tegra114: Fix an error message (git-fixes). - ssb: Fix error return code in ssb_bus_scan() (git-fixes). - ssb: sdio: Do not overwrite const buffer if block_write fails (git-fixes). - staging: gdm724x: check for buffer overflow in gdm_lte_multi_sdu_pkt() (git-fixes). - staging: gdm724x: check for overflow in gdm_lte_netif_rx() (git-fixes). - staging: rtl8712: fix memory leak in rtl871x_load_fw_cb (git-fixes). - staging: rtl8712: remove redundant check in r871xu_drv_init (git-fixes). - staging: rtl8723bs: fix macro value for 2.4Ghz only device (git-fixes). - thermal/core: Correct function name thermal_zone_device_unregister() (git-fixes). - thermal/drivers/int340x/processor_thermal: Fix tcc setting (git-fixes). - thermal/drivers/rcar_gen3_thermal: Fix coefficient calculations (git-fixes). - thunderbolt: Bond lanes only when dual_link_port != NULL in alloc_dev_default() (git-fixes). - timers: Fix get_next_timer_interrupt() with no timers pending (git-fixes) - tpm, tpm_tis: Decorate tpm_get_timeouts() with request_locality() (bsc#1188036). - tpm, tpm_tis: Decorate tpm_tis_gen_interrupt() with request_locality() (bsc#1188036). - tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt() (bsc#1188036). - tpm, tpm_tis: Reserve locality in tpm_tis_resume() (bsc#1188036). - tpm: efi: Use local variable for calculating final log size (git-fixes). - tracepoint: Add tracepoint_probe_register_may_exist() for BPF tracing (git-fixes). - tracing/histograms: Fix parsing of "sym-offset" modifier (git-fixes). - tracing: Do not reference char * as a string in histograms (git-fixes). - tracing: Resize tgid_map to pid_max, not PID_MAX_DEFAULT (git-fixes). - tracing: Simplify & fix saved_tgids logic (git-fixes). - tty: nozomi: Fix a resource leak in an error handling function (git-fixes). - tty: nozomi: Fix the error handling path of 'nozomi_card_init()' (git-fixes). - tty: serial: 8250: serial_cs: Fix a memory leak in error handling path (git-fixes). - tty: serial: fsl_lpuart: fix the potential risk of division or modulo by zero (git-fixes). - usb: dwc2: Do not reset the core after setting turnaround time (git-fixes). - usb: dwc2: gadget: Fix sending zero length packet in DDMA mode (git-fixes). - usb: dwc3: Fix debugfs creation flow (git-fixes). - usb: gadget: eem: fix echo command packet response issue (git-fixes). - usb: gadget: f_fs: Fix setting of device and driver data cross-references (git-fixes). - usb: gadget: f_hid: fix endianness issue with descriptors (git-fixes). - usb: gadget: hid: fix error return code in hid_bind() (git-fixes). - usb: hub: Disable USB 3 device initiated lpm if exit latency is too high (git-fixes). - usb: hub: Fix link power management max exit latency (MEL) calculations (git-fixes). - usb: max-3421: Prevent corruption of freed memory (git-fixes). - usb: renesas_usbhs: Fix superfluous irqs happen after usb_pkt_pop() (git-fixes). - usb: typec: Add the missed altmode_id_remove() in typec_register_altmode() (git-fixes). - usb: typec: fusb302: Always provide fwnode for the port (git-fixes). - usb: typec: fusb302: fix "op-sink-microwatt" default that was in mW (git-fixes). - usb: typec: tcpm: Error handling for tcpm_register_partner_altmodes (git-fixes). - usb: typec: tcpm: Move mod_delayed_work(&port->vdm_state_machine) call into tcpm_queue_vdm() (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request payload handling (git-fixes). - usb: typec: tcpm: Remove tcpc_config configuration mechanism (git-fixes). - usb: typec: tcpm: Switch to use fwnode_property_count_uXX() (git-fixes). - usb: typec: tcpm: move to SNK_UNATTACHED if sink removed for DRP (git-fixes). - usb: typec: tcpm: set correct data role for non-DRD (git-fixes). - usb: typec: tcpm: update power supply once partner accepts (git-fixes). - usb: typec: ucsi: Hold con->lock for the entire duration of ucsi_register_port() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: typec: wcove: Fx wrong kernel doc format (git-fixes). - uuid: Add inline helpers to import / export UUIDs (bsc#1113295, git-fixes). - vfio/pci: Handle concurrent vma faults (git-fixes). - vfs: Convert functionfs to use the new mount API (git -fixes). - video: fbdev: imxfb: Fix an error message (git-fixes). - virtio_console: Assure used length from device is limited (git-fixes). - virtio_net: move tx vq operation under tx queue lock (git-fixes). - visorbus: fix error return code in visorchipset_init() (git-fixes). - vmxnet3: fix cksum offload issues for tunnels with non-default udp ports (git-fixes). - vxlan: add missing rcu_read_lock() in neigh_reduce() (git-fixes). - w1: ds2438: fixing bug that would always get page0 (git-fixes). - watchdog: Fix possible use-after-free by calling del_timer_sync() (git-fixes). - watchdog: Fix possible use-after-free in wdt_startup() (git-fixes). - watchdog: aspeed: fix hardware timeout calculation (git-fixes). - watchdog: iTCO_wdt: Account for rebooting on second timeout (git-fixes). - watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() (git-fixes). - watchdog: sp805: Fix kernel doc description (git-fixes). - wcn36xx: Move hal_buf allocation to devm_kmalloc in probe (git-fixes). - wilc1000: write value to WILC_INTR2_ENABLE register (git-fixes). - wireless: carl9170: fix LEDS build errors & warnings (git-fixes). - wireless: wext-spy: Fix out-of-bounds warning (git-fixes). - wl1251: Fix possible buffer overflow in wl1251_cmd_scan (git-fixes). - wlcore/wl12xx: Fix wl12xx get_mac error if device is in ELP (git-fixes). - workqueue: fix UAF in pwq_unbound_release_workfn() (bsc#1188973). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - xen/events: reset active flag for lateeoi events later (git-fixes). - xfrm: Fix xfrm offload fallback fail case (bsc#1176447). - xfrm: delete xfrm4_output_finish xfrm6_output_finish declarations (bsc#1176447). - xfrm: xfrm_state_mtu should return at least 1280 for ipv6 (bsc#1185377). - xhci: Fix lost USB 2 remote wake (git-fixes). - xhci: solve a double free problem while doing s4 (git-fixes). - xsk: Fix missing validation for skb and unaligned mode (jsc#SLE-13706). cluster-md-kmp-azure-5.3.18-38.17.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.17.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.17.1.x86_64.rpm True kernel-azure-5.3.18-38.17.1.nosrc.rpm True kernel-azure-5.3.18-38.17.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.17.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.17.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.17.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.17.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.17.1.noarch.rpm True kernel-source-azure-5.3.18-38.17.1.noarch.rpm True kernel-source-azure-5.3.18-38.17.1.src.rpm True kernel-syms-azure-5.3.18-38.17.1.src.rpm True kernel-syms-azure-5.3.18-38.17.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.17.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.17.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.17.1.x86_64.rpm True openSUSE-SLE-15.3-2021-3829 moderate SUSE Updates openSUSE-SLE 15.3 This update for rmt-server fixes the following issues: - Fix for Rails 6.1 zeitwerk autoloading errors (bsc#1186798) - Fix: Don't create symlinks at install stage, instead only link them at the post stage if they don't exist. (bsc#1188043) - Update translations. - Additional debug output for mirroring subcommand with '--debug' flag. rmt-server-2.6.11-3.9.3.src.rpm rmt-server-2.6.11-3.9.3.x86_64.rpm rmt-server-config-2.6.11-3.9.3.x86_64.rpm rmt-server-pubcloud-2.6.11-3.9.3.x86_64.rpm rmt-server-2.6.11-3.9.3.s390x.rpm rmt-server-config-2.6.11-3.9.3.s390x.rpm rmt-server-pubcloud-2.6.11-3.9.3.s390x.rpm rmt-server-2.6.11-3.9.3.ppc64le.rpm rmt-server-config-2.6.11-3.9.3.ppc64le.rpm rmt-server-pubcloud-2.6.11-3.9.3.ppc64le.rpm rmt-server-2.6.11-3.9.3.aarch64.rpm rmt-server-config-2.6.11-3.9.3.aarch64.rpm rmt-server-pubcloud-2.6.11-3.9.3.aarch64.rpm openSUSE-SLE-15.3-2021-2783 important SUSE Updates openSUSE-SLE 15.3 This update for yast2-country fixes the following issues: - AutoYaST: allow empty /profile/timezone/timezone setting, meaning to keep the UTC default (bsc#1188406). - Fix the Comment entry in the desktop file so the tooltip in the control center is properly translated (bsc#1187270). yast2-country-4.3.16-3.6.1.src.rpm yast2-country-4.3.16-3.6.1.x86_64.rpm yast2-country-data-4.3.16-3.6.1.x86_64.rpm yast2-country-4.3.16-3.6.1.s390x.rpm yast2-country-data-4.3.16-3.6.1.s390x.rpm yast2-country-4.3.16-3.6.1.ppc64le.rpm yast2-country-data-4.3.16-3.6.1.ppc64le.rpm yast2-country-4.3.16-3.6.1.aarch64.rpm yast2-country-data-4.3.16-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2997 moderate SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - Fixed an issue when the missing 'stropts.h' causing build errors for different python modules. (bsc#1187338) libpython3_6m1_0-3.6.13-10.3.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.13-10.3.1.x86_64.rpm python3-3.6.13-10.3.1.src.rpm python3-3.6.13-10.3.1.x86_64.rpm python3-32bit-3.6.13-10.3.1.x86_64.rpm python3-base-3.6.13-10.3.1.x86_64.rpm python3-base-32bit-3.6.13-10.3.1.x86_64.rpm python3-core-3.6.13-10.3.1.src.rpm python3-curses-3.6.13-10.3.1.x86_64.rpm python3-dbm-3.6.13-10.3.1.x86_64.rpm python3-devel-3.6.13-10.3.1.x86_64.rpm python3-doc-devhelp-3.6.13-10.3.1.x86_64.rpm python3-documentation-3.6.13-10.3.1.src.rpm python3-idle-3.6.13-10.3.1.x86_64.rpm python3-testsuite-3.6.13-10.3.1.x86_64.rpm python3-tk-3.6.13-10.3.1.x86_64.rpm python3-tools-3.6.13-10.3.1.x86_64.rpm libpython3_6m1_0-3.6.13-10.3.1.s390x.rpm python3-3.6.13-10.3.1.s390x.rpm python3-base-3.6.13-10.3.1.s390x.rpm python3-curses-3.6.13-10.3.1.s390x.rpm python3-dbm-3.6.13-10.3.1.s390x.rpm python3-devel-3.6.13-10.3.1.s390x.rpm python3-doc-devhelp-3.6.13-10.3.1.s390x.rpm python3-idle-3.6.13-10.3.1.s390x.rpm python3-testsuite-3.6.13-10.3.1.s390x.rpm python3-tk-3.6.13-10.3.1.s390x.rpm python3-tools-3.6.13-10.3.1.s390x.rpm libpython3_6m1_0-3.6.13-10.3.1.ppc64le.rpm python3-3.6.13-10.3.1.ppc64le.rpm python3-base-3.6.13-10.3.1.ppc64le.rpm python3-curses-3.6.13-10.3.1.ppc64le.rpm python3-dbm-3.6.13-10.3.1.ppc64le.rpm python3-devel-3.6.13-10.3.1.ppc64le.rpm python3-doc-devhelp-3.6.13-10.3.1.ppc64le.rpm python3-idle-3.6.13-10.3.1.ppc64le.rpm python3-testsuite-3.6.13-10.3.1.ppc64le.rpm python3-tk-3.6.13-10.3.1.ppc64le.rpm python3-tools-3.6.13-10.3.1.ppc64le.rpm libpython3_6m1_0-3.6.13-10.3.1.aarch64.rpm python3-3.6.13-10.3.1.aarch64.rpm python3-base-3.6.13-10.3.1.aarch64.rpm python3-curses-3.6.13-10.3.1.aarch64.rpm python3-dbm-3.6.13-10.3.1.aarch64.rpm python3-devel-3.6.13-10.3.1.aarch64.rpm python3-doc-devhelp-3.6.13-10.3.1.aarch64.rpm python3-idle-3.6.13-10.3.1.aarch64.rpm python3-testsuite-3.6.13-10.3.1.aarch64.rpm python3-tk-3.6.13-10.3.1.aarch64.rpm python3-tools-3.6.13-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3294 important SUSE Updates openSUSE-SLE 15.3 nodejs8 was updated to fix the following security issues: - CVE-2021-22930: http2: fixes use after free on close in stream canceling (bsc#1188917) nodejs8-8.17.0-10.15.11.src.rpm nodejs8-8.17.0-10.15.11.x86_64.rpm nodejs8-devel-8.17.0-10.15.11.x86_64.rpm nodejs8-docs-8.17.0-10.15.11.noarch.rpm npm8-8.17.0-10.15.11.x86_64.rpm nodejs8-8.17.0-10.15.11.s390x.rpm nodejs8-devel-8.17.0-10.15.11.s390x.rpm npm8-8.17.0-10.15.11.s390x.rpm nodejs8-8.17.0-10.15.11.ppc64le.rpm nodejs8-devel-8.17.0-10.15.11.ppc64le.rpm npm8-8.17.0-10.15.11.ppc64le.rpm nodejs8-8.17.0-10.15.11.aarch64.rpm nodejs8-devel-8.17.0-10.15.11.aarch64.rpm npm8-8.17.0-10.15.11.aarch64.rpm openSUSE-SLE-15.3-2021-3043 moderate SUSE Updates openSUSE-SLE 15.3 nvme-cli was updated to fix the following issues: - Do not print error message when opening controller (bsc#1186719) - Fix failures during 'nvme list' (bsc#1186719) - Only connect to matching controllers (bsc#1186719) - Skip connect if transport type doesn't match (bsc#1187287 bsc#1187860) - Ignore non live controllers when scanning subsystems (bsc#1186719 bsc#1187287) - Remove UUID validation heuristic (bsc#1187890) - Do not segfault when controller is not available (bsc#1189046) - Use correct default port for discovery (bsc#1189195 bsc#1187858) nvme-cli-1.13-3.7.1.src.rpm nvme-cli-1.13-3.7.1.x86_64.rpm nvme-cli-regress-script-1.13-3.7.1.x86_64.rpm nvme-cli-1.13-3.7.1.s390x.rpm nvme-cli-regress-script-1.13-3.7.1.s390x.rpm nvme-cli-1.13-3.7.1.ppc64le.rpm nvme-cli-regress-script-1.13-3.7.1.ppc64le.rpm nvme-cli-1.13-3.7.1.aarch64.rpm nvme-cli-regress-script-1.13-3.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3033 low SUSE Updates openSUSE-SLE 15.3 This update for yast2-theme fixes the following issues: - Fix the icons' style and minify them. yast2-theme-4.3.9-3.3.1.noarch.rpm yast2-theme-4.3.9-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2909 moderate SUSE Updates openSUSE-SLE 15.3 This update for ndctl fixes the following issues: - Enable aarch64 build. (bsc#1188502) libndctl-devel-71.1-3.3.1.x86_64.rpm libndctl6-71.1-3.3.1.x86_64.rpm ndctl-71.1-3.3.1.src.rpm ndctl-71.1-3.3.1.x86_64.rpm libndctl-devel-71.1-3.3.1.ppc64le.rpm libndctl6-71.1-3.3.1.ppc64le.rpm ndctl-71.1-3.3.1.ppc64le.rpm openSUSE-SLE-15.3-2021-2951 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: Updated to 0.1.57 release (jsc#ECO-3319) - Small bugfixes for SUSE Linux Enterprise STIG profiles. - CIS profile for RHEL 7 is updated. - Initial CIS profiles for Ubuntu 20.04. - Major improvement of RHEL 9 content. scap-security-guide-0.1.57-1.16.1.noarch.rpm scap-security-guide-0.1.57-1.16.1.src.rpm scap-security-guide-debian-0.1.57-1.16.1.noarch.rpm scap-security-guide-redhat-0.1.57-1.16.1.noarch.rpm scap-security-guide-ubuntu-0.1.57-1.16.1.noarch.rpm openSUSE-SLE-15.3-2021-2786 important SUSE Updates openSUSE-SLE 15.3 This update for bash fixes the following issues: - Allow process group assignment even for modern kernels (bsc#1057452, bsc#1188287) bash-4.4-19.6.1.src.rpm bash-4.4-19.6.1.x86_64.rpm bash-devel-4.4-19.6.1.x86_64.rpm bash-doc-4.4-19.6.1.noarch.rpm bash-lang-4.4-19.6.1.noarch.rpm bash-loadables-4.4-19.6.1.x86_64.rpm libreadline7-32bit-7.0-19.6.1.x86_64.rpm libreadline7-7.0-19.6.1.x86_64.rpm readline-devel-32bit-7.0-19.6.1.x86_64.rpm readline-devel-7.0-19.6.1.x86_64.rpm readline-devel-static-7.0-19.6.1.x86_64.rpm readline-doc-7.0-19.6.1.noarch.rpm bash-4.4-19.6.1.s390x.rpm bash-devel-4.4-19.6.1.s390x.rpm bash-loadables-4.4-19.6.1.s390x.rpm libreadline7-7.0-19.6.1.s390x.rpm readline-devel-7.0-19.6.1.s390x.rpm readline-devel-static-7.0-19.6.1.s390x.rpm bash-4.4-19.6.1.ppc64le.rpm bash-devel-4.4-19.6.1.ppc64le.rpm bash-loadables-4.4-19.6.1.ppc64le.rpm libreadline7-7.0-19.6.1.ppc64le.rpm readline-devel-7.0-19.6.1.ppc64le.rpm readline-devel-static-7.0-19.6.1.ppc64le.rpm bash-4.4-19.6.1.aarch64.rpm bash-devel-4.4-19.6.1.aarch64.rpm bash-loadables-4.4-19.6.1.aarch64.rpm libreadline7-7.0-19.6.1.aarch64.rpm readline-devel-7.0-19.6.1.aarch64.rpm readline-devel-static-7.0-19.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2760 important SUSE Updates openSUSE-SLE 15.3 This update for c-ares fixes the following issues: Version update to git snapshot 1.17.1+20200724: - CVE-2021-3672: fixed missing input validation on hostnames returned by DNS servers (bsc#1188881) - If ares_getaddrinfo() was terminated by an ares_destroy(), it would cause crash - Crash in sortaddrinfo() if the list size equals 0 due to an unexpected DNS response - Expand number of escaped characters in DNS replies as per RFC1035 5.1 to prevent spoofing - Use unbuffered /dev/urandom for random data to prevent early startup performance issues c-ares-1.17.1+20200724-3.14.1.src.rpm c-ares-devel-1.17.1+20200724-3.14.1.x86_64.rpm c-ares-utils-1.17.1+20200724-3.14.1.x86_64.rpm libcares2-1.17.1+20200724-3.14.1.x86_64.rpm libcares2-32bit-1.17.1+20200724-3.14.1.x86_64.rpm c-ares-devel-1.17.1+20200724-3.14.1.s390x.rpm c-ares-utils-1.17.1+20200724-3.14.1.s390x.rpm libcares2-1.17.1+20200724-3.14.1.s390x.rpm c-ares-devel-1.17.1+20200724-3.14.1.ppc64le.rpm c-ares-utils-1.17.1+20200724-3.14.1.ppc64le.rpm libcares2-1.17.1+20200724-3.14.1.ppc64le.rpm c-ares-devel-1.17.1+20200724-3.14.1.aarch64.rpm c-ares-utils-1.17.1+20200724-3.14.1.aarch64.rpm libcares2-1.17.1+20200724-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-2937 important SUSE Updates openSUSE-SLE 15.3 This update for libesmtp fixes the following issues: - CVE-2019-19977: Fixed stack-based buffer over-read in ntlm/ntlmstruct.c (bsc#1160462). libesmtp-1.0.6-150.4.1.src.rpm libesmtp-1.0.6-150.4.1.x86_64.rpm libesmtp-devel-1.0.6-150.4.1.x86_64.rpm libesmtp-1.0.6-150.4.1.s390x.rpm libesmtp-devel-1.0.6-150.4.1.s390x.rpm libesmtp-1.0.6-150.4.1.ppc64le.rpm libesmtp-devel-1.0.6-150.4.1.ppc64le.rpm libesmtp-1.0.6-150.4.1.aarch64.rpm libesmtp-devel-1.0.6-150.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3002 moderate SUSE Updates openSUSE-SLE 15.3 This update for cronie fixes the following issue: - Increase the limit of allowed entries in 'crontab' files. (bsc#1187508) cron-4.2-70.14.4.1.x86_64.rpm cronie-1.5.1-70.14.4.1.src.rpm cronie-1.5.1-70.14.4.1.x86_64.rpm cronie-anacron-1.5.1-70.14.4.1.x86_64.rpm cron-4.2-70.14.4.1.s390x.rpm cronie-1.5.1-70.14.4.1.s390x.rpm cronie-anacron-1.5.1-70.14.4.1.s390x.rpm cron-4.2-70.14.4.1.ppc64le.rpm cronie-1.5.1-70.14.4.1.ppc64le.rpm cronie-anacron-1.5.1-70.14.4.1.ppc64le.rpm cron-4.2-70.14.4.1.aarch64.rpm cronie-1.5.1-70.14.4.1.aarch64.rpm cronie-anacron-1.5.1-70.14.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3010 moderate SUSE Updates openSUSE-SLE 15.3 This update for pesign-obs-integration fixes the following issues: - Fixed slowness when MALLOC_PERTURB_ is set (bsc#1188636) pesign-obs-integration-10.1-13.3.1.src.rpm pesign-obs-integration-10.1-13.3.1.x86_64.rpm pesign-obs-integration-10.1-13.3.1.s390x.rpm pesign-obs-integration-10.1-13.3.1.ppc64le.rpm pesign-obs-integration-10.1-13.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2858 moderate SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - usbredir: free call on invalid pointer in bufp_alloc (bsc#1189145, CVE-2021-3682) - NULL pointer dereference in ESP (bsc#1180433, CVE-2020-35504) (bsc#1180434, CVE-2020-35505) (bsc#1180435, CVE-2020-35506) - NULL pointer dereference issue in megasas-gen2 host bus adapter (bsc#1180432, CVE-2020-35503) - eepro100: stack overflow via infinite recursion (bsc#1182651, CVE-2021-20255) - usb: unbounded stack allocation in usbredir (bsc#1186012, CVE-2021-3527) Non-security issues fixed: - Use max host physical address if -cpu max is used (bsc#1188299) qemu-5.2.0-103.2.src.rpm qemu-5.2.0-103.2.x86_64.rpm qemu-arm-5.2.0-103.2.x86_64.rpm qemu-audio-alsa-5.2.0-103.2.x86_64.rpm qemu-audio-pa-5.2.0-103.2.x86_64.rpm qemu-audio-spice-5.2.0-103.2.x86_64.rpm qemu-block-curl-5.2.0-103.2.x86_64.rpm qemu-block-dmg-5.2.0-103.2.x86_64.rpm qemu-block-gluster-5.2.0-103.2.x86_64.rpm qemu-block-iscsi-5.2.0-103.2.x86_64.rpm qemu-block-nfs-5.2.0-103.2.x86_64.rpm qemu-block-rbd-5.2.0-103.2.x86_64.rpm qemu-block-ssh-5.2.0-103.2.x86_64.rpm qemu-chardev-baum-5.2.0-103.2.x86_64.rpm qemu-chardev-spice-5.2.0-103.2.x86_64.rpm qemu-extra-5.2.0-103.2.x86_64.rpm qemu-guest-agent-5.2.0-103.2.x86_64.rpm qemu-hw-display-qxl-5.2.0-103.2.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.x86_64.rpm qemu-hw-usb-redirect-5.2.0-103.2.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-103.2.x86_64.rpm qemu-ipxe-1.0.0+-103.2.noarch.rpm qemu-ivshmem-tools-5.2.0-103.2.x86_64.rpm qemu-ksm-5.2.0-103.2.x86_64.rpm qemu-kvm-5.2.0-103.2.x86_64.rpm qemu-lang-5.2.0-103.2.x86_64.rpm qemu-microvm-5.2.0-103.2.noarch.rpm qemu-ppc-5.2.0-103.2.x86_64.rpm qemu-s390x-5.2.0-103.2.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-103.2.noarch.rpm qemu-sgabios-8-103.2.noarch.rpm qemu-skiboot-5.2.0-103.2.noarch.rpm qemu-tools-5.2.0-103.2.x86_64.rpm qemu-ui-curses-5.2.0-103.2.x86_64.rpm qemu-ui-gtk-5.2.0-103.2.x86_64.rpm qemu-ui-opengl-5.2.0-103.2.x86_64.rpm qemu-ui-spice-app-5.2.0-103.2.x86_64.rpm qemu-ui-spice-core-5.2.0-103.2.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-103.2.noarch.rpm qemu-vhost-user-gpu-5.2.0-103.2.x86_64.rpm qemu-x86-5.2.0-103.2.x86_64.rpm qemu-5.2.0-103.2.s390x.rpm qemu-arm-5.2.0-103.2.s390x.rpm qemu-audio-alsa-5.2.0-103.2.s390x.rpm qemu-audio-pa-5.2.0-103.2.s390x.rpm qemu-audio-spice-5.2.0-103.2.s390x.rpm qemu-block-curl-5.2.0-103.2.s390x.rpm qemu-block-dmg-5.2.0-103.2.s390x.rpm qemu-block-gluster-5.2.0-103.2.s390x.rpm qemu-block-iscsi-5.2.0-103.2.s390x.rpm qemu-block-nfs-5.2.0-103.2.s390x.rpm qemu-block-rbd-5.2.0-103.2.s390x.rpm qemu-block-ssh-5.2.0-103.2.s390x.rpm qemu-chardev-baum-5.2.0-103.2.s390x.rpm qemu-chardev-spice-5.2.0-103.2.s390x.rpm qemu-extra-5.2.0-103.2.s390x.rpm qemu-guest-agent-5.2.0-103.2.s390x.rpm qemu-hw-display-qxl-5.2.0-103.2.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.s390x.rpm qemu-hw-usb-redirect-5.2.0-103.2.s390x.rpm qemu-hw-usb-smartcard-5.2.0-103.2.s390x.rpm qemu-ivshmem-tools-5.2.0-103.2.s390x.rpm qemu-ksm-5.2.0-103.2.s390x.rpm qemu-kvm-5.2.0-103.2.s390x.rpm qemu-lang-5.2.0-103.2.s390x.rpm qemu-ppc-5.2.0-103.2.s390x.rpm qemu-s390x-5.2.0-103.2.s390x.rpm qemu-tools-5.2.0-103.2.s390x.rpm qemu-ui-curses-5.2.0-103.2.s390x.rpm qemu-ui-gtk-5.2.0-103.2.s390x.rpm qemu-ui-opengl-5.2.0-103.2.s390x.rpm qemu-ui-spice-app-5.2.0-103.2.s390x.rpm qemu-ui-spice-core-5.2.0-103.2.s390x.rpm qemu-vhost-user-gpu-5.2.0-103.2.s390x.rpm qemu-x86-5.2.0-103.2.s390x.rpm qemu-5.2.0-103.2.ppc64le.rpm qemu-arm-5.2.0-103.2.ppc64le.rpm qemu-audio-alsa-5.2.0-103.2.ppc64le.rpm qemu-audio-pa-5.2.0-103.2.ppc64le.rpm qemu-audio-spice-5.2.0-103.2.ppc64le.rpm qemu-block-curl-5.2.0-103.2.ppc64le.rpm qemu-block-dmg-5.2.0-103.2.ppc64le.rpm qemu-block-gluster-5.2.0-103.2.ppc64le.rpm qemu-block-iscsi-5.2.0-103.2.ppc64le.rpm qemu-block-nfs-5.2.0-103.2.ppc64le.rpm qemu-block-rbd-5.2.0-103.2.ppc64le.rpm qemu-block-ssh-5.2.0-103.2.ppc64le.rpm qemu-chardev-baum-5.2.0-103.2.ppc64le.rpm qemu-chardev-spice-5.2.0-103.2.ppc64le.rpm qemu-extra-5.2.0-103.2.ppc64le.rpm qemu-guest-agent-5.2.0-103.2.ppc64le.rpm qemu-hw-display-qxl-5.2.0-103.2.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-103.2.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-103.2.ppc64le.rpm qemu-ivshmem-tools-5.2.0-103.2.ppc64le.rpm qemu-ksm-5.2.0-103.2.ppc64le.rpm qemu-lang-5.2.0-103.2.ppc64le.rpm qemu-ppc-5.2.0-103.2.ppc64le.rpm qemu-s390x-5.2.0-103.2.ppc64le.rpm qemu-tools-5.2.0-103.2.ppc64le.rpm qemu-ui-curses-5.2.0-103.2.ppc64le.rpm qemu-ui-gtk-5.2.0-103.2.ppc64le.rpm qemu-ui-opengl-5.2.0-103.2.ppc64le.rpm qemu-ui-spice-app-5.2.0-103.2.ppc64le.rpm qemu-ui-spice-core-5.2.0-103.2.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-103.2.ppc64le.rpm qemu-x86-5.2.0-103.2.ppc64le.rpm qemu-5.2.0-103.2.aarch64.rpm qemu-arm-5.2.0-103.2.aarch64.rpm qemu-audio-alsa-5.2.0-103.2.aarch64.rpm qemu-audio-pa-5.2.0-103.2.aarch64.rpm qemu-audio-spice-5.2.0-103.2.aarch64.rpm qemu-block-curl-5.2.0-103.2.aarch64.rpm qemu-block-dmg-5.2.0-103.2.aarch64.rpm qemu-block-gluster-5.2.0-103.2.aarch64.rpm qemu-block-iscsi-5.2.0-103.2.aarch64.rpm qemu-block-nfs-5.2.0-103.2.aarch64.rpm qemu-block-rbd-5.2.0-103.2.aarch64.rpm qemu-block-ssh-5.2.0-103.2.aarch64.rpm qemu-chardev-baum-5.2.0-103.2.aarch64.rpm qemu-chardev-spice-5.2.0-103.2.aarch64.rpm qemu-extra-5.2.0-103.2.aarch64.rpm qemu-guest-agent-5.2.0-103.2.aarch64.rpm qemu-hw-display-qxl-5.2.0-103.2.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.aarch64.rpm qemu-hw-usb-redirect-5.2.0-103.2.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-103.2.aarch64.rpm qemu-ivshmem-tools-5.2.0-103.2.aarch64.rpm qemu-ksm-5.2.0-103.2.aarch64.rpm qemu-lang-5.2.0-103.2.aarch64.rpm qemu-ppc-5.2.0-103.2.aarch64.rpm qemu-s390x-5.2.0-103.2.aarch64.rpm qemu-tools-5.2.0-103.2.aarch64.rpm qemu-ui-curses-5.2.0-103.2.aarch64.rpm qemu-ui-gtk-5.2.0-103.2.aarch64.rpm qemu-ui-opengl-5.2.0-103.2.aarch64.rpm qemu-ui-spice-app-5.2.0-103.2.aarch64.rpm qemu-ui-spice-core-5.2.0-103.2.aarch64.rpm qemu-vhost-user-gpu-5.2.0-103.2.aarch64.rpm qemu-x86-5.2.0-103.2.aarch64.rpm openSUSE-SLE-15.3-2021-3614 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702, CVE-2021-3713) - Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938, CVE-2021-3748) - usbredir: free call on invalid pointer in bufp_alloc (bsc#1189145, CVE-2021-3682) - NULL pointer dereference in ESP (bsc#1180433, CVE-2020-35504) (bsc#1180434, CVE-2020-35505) (bsc#1180435, CVE-2020-35506) - NULL pointer dereference issue in megasas-gen2 host bus adapter (bsc#1180432, CVE-2020-35503) - eepro100: stack overflow via infinite recursion (bsc#1182651, CVE-2021-20255) - usb: unbounded stack allocation in usbredir (bsc#1186012, CVE-2021-3527) Non-security issues fixed: - Use max host physical address if -cpu max is used (bsc#1188299) qemu-3.1.1.1-80.40.1.src.rpm openSUSE-SLE-15.3-2021-2956 moderate SUSE Updates openSUSE-SLE 15.3 This update for openCryptoki fixes the following issues: - Opencryptoki slot daemon not able to start after migration. (bsc#1188879) openCryptoki-3.15.1-5.6.1.src.rpm openCryptoki-3.15.1-5.6.1.x86_64.rpm openCryptoki-64bit-3.15.1-5.6.1.x86_64.rpm openCryptoki-devel-3.15.1-5.6.1.x86_64.rpm openCryptoki-3.15.1-5.6.1.s390x.rpm openCryptoki-64bit-3.15.1-5.6.1.s390x.rpm openCryptoki-devel-3.15.1-5.6.1.s390x.rpm openCryptoki-3.15.1-5.6.1.ppc64le.rpm openCryptoki-64bit-3.15.1-5.6.1.ppc64le.rpm openCryptoki-devel-3.15.1-5.6.1.ppc64le.rpm openCryptoki-3.15.1-5.6.1.aarch64.rpm openCryptoki-64bit-3.15.1-5.6.1.aarch64.rpm openCryptoki-devel-3.15.1-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2837 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: Update to version 10.2.40 (bsc#1189320): - fixes for the following security vulnerabilities: CVE-2021-2372 and CVE-2021-2389 In additon the follwing was changed: - Increase NOFILE limit on service configuration (bsc#1180014) The default 'NOFILE' setting on mariadb service configuration is to low and may cause instability on higher loads. mariadb-10.4.21-3.14.1.src.rpm mariadb-galera-10.4.21-3.14.1.x86_64.rpm mariadb-galera-10.4.21-3.14.1.s390x.rpm mariadb-galera-10.4.21-3.14.1.ppc64le.rpm mariadb-galera-10.4.21-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-2789 moderate SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - usbredir: free call on invalid pointer in bufp_alloc (bsc#1189145, CVE-2021-3682) - NULL pointer dereference in ESP (bsc#1180433, CVE-2020-35504) (bsc#1180434, CVE-2020-35505) (bsc#1180435, CVE-2020-35506) - NULL pointer dereference issue in megasas-gen2 host bus adapter (bsc#1180432, CVE-2020-35503) - eepro100: stack overflow via infinite recursion (bsc#1182651, CVE-2021-20255) - usb: unbounded stack allocation in usbredir (bsc#1186012, CVE-2021-3527) qemu-4.2.1-11.28.1.src.rpm qemu-s390-4.2.1-11.28.1.x86_64.rpm qemu-s390-4.2.1-11.28.1.s390x.rpm qemu-s390-4.2.1-11.28.1.ppc64le.rpm qemu-s390-4.2.1-11.28.1.aarch64.rpm openSUSE-SLE-15.3-2021-2677 moderate SUSE Updates openSUSE-SLE 15.3 This update for shim-susesigned fixes the following issues: - Sync with Microsoft signed shim to Thu Jul 15 08:13:26 UTC 2021. - avoid deleting the mirrored RT variables (bsc#1187696) - relax the check for import_mok_state() when Secure Boot is off. (bsc#1185261) - ignore the odd LoadOptions length (bsc#1185232) - shim-install: reset def_shim_efi to "shim.efi" if the given file doesn't exist - fix the size of rela sections for AArch64 - disable exporting vendor-dbx to MokListXRT since writing a large RT variable could crash some machines (bsc#1185261) - Avoid the potential crash when calling QueryVariableInfo in EFI 1.10 machines (bsc#1187260) - avoid buffer overflow when copying data to the MOK config table (bsc#1185232) - shim-install: instead of assuming "removable" for Azure, remove fallback.efi from \EFI\Boot and copy grub.efi/cfg to \EFI\Boot to make \EFI\Boot bootable and keep the boot option created by efibootmgr (bsc#1185464, bsc#1185961) - shim-install: always assume "removable" for Azure to avoid the endless reset loop (bsc#1185464) shim-susesigned-15.4-3.3.1.aarch64.rpm shim-susesigned-15.4-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2787 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.15 fixes the following issues: Update to go1.15.15: - go#47473 net/http: panic due to racy read of persistConn after handler panic (CVE-2021-36221 bsc#1189162) - go#47347 cmd/go: "go list -f '{{.Stale}}'" stack overflow with cyclic imports - go#47014 cmd/go: go mod vendor: open C:\Users\LICENSE: Access is denied. - go#46927 cmd/compile: register conflict between external linker and duffzero on arm64 - go#46857 runtime: ppc64x binaries randomly segfault on linux 5.13rc6 go1.15-1.15.15-1.39.1.src.rpm go1.15-1.15.15-1.39.1.x86_64.rpm go1.15-doc-1.15.15-1.39.1.x86_64.rpm go1.15-race-1.15.15-1.39.1.x86_64.rpm go1.15-1.15.15-1.39.1.s390x.rpm go1.15-doc-1.15.15-1.39.1.s390x.rpm go1.15-1.15.15-1.39.1.ppc64le.rpm go1.15-doc-1.15.15-1.39.1.ppc64le.rpm go1.15-1.15.15-1.39.1.aarch64.rpm go1.15-doc-1.15.15-1.39.1.aarch64.rpm go1.15-race-1.15.15-1.39.1.aarch64.rpm openSUSE-SLE-15.3-2021-2885 low SUSE Updates openSUSE-SLE 15.3 This update for publicsuffix fixes the following issues: - Updates the list of known/accepted domains with recent data (bsc#1189124). publicsuffix-20210804-3.6.1.noarch.rpm publicsuffix-20210804-3.6.1.src.rpm openSUSE-SLE-15.3-2021-2788 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Update to go1.16.7: - go#47473 net/http: panic due to racy read of persistConn after handler panic (CVE-2021-36221 bsc#1189162) - go#47348 cmd/go: "go list -f '{{.Stale}}'" stack overflow with cyclic imports - go#47332 time: Timer reset broken under heavy use since go1.16 timer optimizations added - go#47289 cmd/link: build error with cgo in Windows, redefinition of go.map.zero - go#47015 cmd/go: go mod vendor: open C:\Users\LICENSE: Access is denied. - go#46928 cmd/compile: register conflict between external linker and duffzero on arm64 - go#46858 runtime: ppc64x binaries randomly segfault on linux 5.13rc6 - go#46551 cmd/go: unhelpful error message when running "go install" on a replaced-but-not-required package go1.16-1.16.7-1.23.1.src.rpm go1.16-1.16.7-1.23.1.x86_64.rpm go1.16-doc-1.16.7-1.23.1.x86_64.rpm go1.16-race-1.16.7-1.23.1.x86_64.rpm go1.16-1.16.7-1.23.1.s390x.rpm go1.16-doc-1.16.7-1.23.1.s390x.rpm go1.16-1.16.7-1.23.1.ppc64le.rpm go1.16-doc-1.16.7-1.23.1.ppc64le.rpm go1.16-1.16.7-1.23.1.aarch64.rpm go1.16-doc-1.16.7-1.23.1.aarch64.rpm go1.16-race-1.16.7-1.23.1.aarch64.rpm openSUSE-SLE-15.3-2021-2689 important SUSE Updates openSUSE-SLE 15.3 This update for cpio fixes the following issues: It was possible to trigger Remote code execution due to a integer overflow (CVE-2021-38185, bsc#1189206) UPDATE: This update was buggy and could lead to hangs, so it has been retracted. There will be a follow up update. cpio-2.12-3.6.1.src.rpm cpio-2.12-3.6.1.x86_64.rpm cpio-lang-2.12-3.6.1.noarch.rpm cpio-mt-2.12-3.6.1.x86_64.rpm cpio-2.12-3.6.1.s390x.rpm cpio-mt-2.12-3.6.1.s390x.rpm cpio-2.12-3.6.1.ppc64le.rpm cpio-mt-2.12-3.6.1.ppc64le.rpm cpio-2.12-3.6.1.aarch64.rpm cpio-mt-2.12-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2774 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 78.13.0 ESR (MFSA 2021-34, bsc#1188891): - CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption - CVE-2021-29988: Memory corruption as a result of incorrect style treatment - CVE-2021-29984: Incorrect instruction reordering during JIT optimization - CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption - CVE-2021-29985: Use-after-free media channels - CVE-2021-29989: Memory safety bugs fixed in Firefox 91 and Firefox ESR 78.13 MozillaFirefox-78.13.0-8.49.1.src.rpm MozillaFirefox-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-buildsymbols-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-devel-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-78.13.0-8.49.1.s390x.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.s390x.rpm MozillaFirefox-devel-78.13.0-8.49.1.s390x.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.s390x.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.s390x.rpm MozillaFirefox-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-devel-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-devel-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.aarch64.rpm openSUSE-SLE-15.3-2021-2773 important SUSE Updates openSUSE-SLE 15.3 This update for haproxy fixes the following issues: - Fixes HAProxy vulnerabilities on H2 (bsc#1189366). haproxy-2.0.14-11.7.1.src.rpm haproxy-2.0.14-11.7.1.x86_64.rpm haproxy-2.0.14-11.7.1.s390x.rpm haproxy-2.0.14-11.7.1.ppc64le.rpm haproxy-2.0.14-11.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2835 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: Update to version 10.2.40 [bsc#1189320]: - fixes for the following security vulnerabilities: CVE-2021-2372 and CVE-2021-2389 libmysqld-devel-10.2.40-3.43.1.x86_64.rpm libmysqld19-10.2.40-3.43.1.x86_64.rpm mariadb-10.2.40-3.43.1.src.rpm libmysqld-devel-10.2.40-3.43.1.s390x.rpm libmysqld19-10.2.40-3.43.1.s390x.rpm libmysqld-devel-10.2.40-3.43.1.ppc64le.rpm libmysqld19-10.2.40-3.43.1.ppc64le.rpm libmysqld-devel-10.2.40-3.43.1.aarch64.rpm libmysqld19-10.2.40-3.43.1.aarch64.rpm openSUSE-SLE-15.3-2021-3026 moderate SUSE Updates openSUSE-SLE 15.3 This update for oracleasm fixes the following issues: - Added 4 upstream commits/patches, as requested by support (bsc#1189119): - Fix incorrectly set flag - Fix memory leak - Add 'ENXIO' handling - Tracing update oracleasm-2.0.8-19.3.2.src.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.x86_64.rpm oracleasm-kmp-preempt-2.0.8_k5.3.18_59.19-19.3.2.x86_64.rpm oracleasm-kmp-rt-2.0.8_k5.3.18_8.13-19.3.2.x86_64.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.s390x.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.ppc64le.rpm oracleasm-kmp-64kb-2.0.8_k5.3.18_59.19-19.3.2.aarch64.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.aarch64.rpm oracleasm-kmp-preempt-2.0.8_k5.3.18_59.19-19.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-2938 moderate SUSE Updates openSUSE-SLE 15.3 This update for openldap2 fixes the following issue: - openldap2-contrib is shipped to the Legacy Module. (bsc#1184614) libldap-2_4-2-2.4.46-9.58.1.x86_64.rpm libldap-2_4-2-32bit-2.4.46-9.58.1.x86_64.rpm libldap-data-2.4.46-9.58.1.noarch.rpm openldap2-2.4.46-9.58.1.src.rpm openldap2-2.4.46-9.58.1.x86_64.rpm openldap2-back-meta-2.4.46-9.58.1.x86_64.rpm openldap2-back-perl-2.4.46-9.58.1.x86_64.rpm openldap2-back-sock-2.4.46-9.58.1.x86_64.rpm openldap2-back-sql-2.4.46-9.58.1.x86_64.rpm openldap2-client-2.4.46-9.58.1.x86_64.rpm openldap2-contrib-2.4.46-9.58.1.x86_64.rpm openldap2-devel-2.4.46-9.58.1.x86_64.rpm openldap2-devel-32bit-2.4.46-9.58.1.x86_64.rpm openldap2-devel-static-2.4.46-9.58.1.x86_64.rpm openldap2-doc-2.4.46-9.58.1.noarch.rpm openldap2-ppolicy-check-password-1.2-9.58.1.x86_64.rpm libldap-2_4-2-2.4.46-9.58.1.s390x.rpm openldap2-2.4.46-9.58.1.s390x.rpm openldap2-back-meta-2.4.46-9.58.1.s390x.rpm openldap2-back-perl-2.4.46-9.58.1.s390x.rpm openldap2-back-sock-2.4.46-9.58.1.s390x.rpm openldap2-back-sql-2.4.46-9.58.1.s390x.rpm openldap2-client-2.4.46-9.58.1.s390x.rpm openldap2-contrib-2.4.46-9.58.1.s390x.rpm openldap2-devel-2.4.46-9.58.1.s390x.rpm openldap2-devel-static-2.4.46-9.58.1.s390x.rpm openldap2-ppolicy-check-password-1.2-9.58.1.s390x.rpm libldap-2_4-2-2.4.46-9.58.1.ppc64le.rpm openldap2-2.4.46-9.58.1.ppc64le.rpm openldap2-back-meta-2.4.46-9.58.1.ppc64le.rpm openldap2-back-perl-2.4.46-9.58.1.ppc64le.rpm openldap2-back-sock-2.4.46-9.58.1.ppc64le.rpm openldap2-back-sql-2.4.46-9.58.1.ppc64le.rpm openldap2-client-2.4.46-9.58.1.ppc64le.rpm openldap2-contrib-2.4.46-9.58.1.ppc64le.rpm openldap2-devel-2.4.46-9.58.1.ppc64le.rpm openldap2-devel-static-2.4.46-9.58.1.ppc64le.rpm openldap2-ppolicy-check-password-1.2-9.58.1.ppc64le.rpm libldap-2_4-2-2.4.46-9.58.1.aarch64.rpm openldap2-2.4.46-9.58.1.aarch64.rpm openldap2-back-meta-2.4.46-9.58.1.aarch64.rpm openldap2-back-perl-2.4.46-9.58.1.aarch64.rpm openldap2-back-sock-2.4.46-9.58.1.aarch64.rpm openldap2-back-sql-2.4.46-9.58.1.aarch64.rpm openldap2-client-2.4.46-9.58.1.aarch64.rpm openldap2-contrib-2.4.46-9.58.1.aarch64.rpm openldap2-devel-2.4.46-9.58.1.aarch64.rpm openldap2-devel-static-2.4.46-9.58.1.aarch64.rpm openldap2-ppolicy-check-password-1.2-9.58.1.aarch64.rpm openSUSE-SLE-15.3-2021-2874 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Update to version 78.13 (MFSA 2021-35, bsc#1188891) - CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption - CVE-2021-29988: Memory corruption as a result of incorrect style treatment - CVE-2021-29984: Incorrect instruction reordering during JIT optimization - CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption - CVE-2021-29985: Use-after-free media channels - CVE-2021-29989: Memory safety bugs fixed in Thunderbird 78.13 MozillaThunderbird-78.13.0-8.36.1.src.rpm MozillaThunderbird-78.13.0-8.36.1.x86_64.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.x86_64.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.x86_64.rpm MozillaThunderbird-78.13.0-8.36.1.s390x.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.s390x.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.s390x.rpm MozillaThunderbird-78.13.0-8.36.1.ppc64le.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.ppc64le.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.ppc64le.rpm MozillaThunderbird-78.13.0-8.36.1.aarch64.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.aarch64.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2939 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: Update to 10.5.12 [bsc#1189320]: - fixes for the following security vulnerabilities: CVE-2021-2372 and CVE-2021-2389 libmariadbd-devel-10.5.12-3.6.1.x86_64.rpm libmariadbd19-10.5.12-3.6.1.x86_64.rpm mariadb-10.5.12-3.6.1.src.rpm mariadb-10.5.12-3.6.1.x86_64.rpm mariadb-bench-10.5.12-3.6.1.x86_64.rpm mariadb-client-10.5.12-3.6.1.x86_64.rpm mariadb-errormessages-10.5.12-3.6.1.noarch.rpm mariadb-rpm-macros-10.5.12-3.6.1.x86_64.rpm mariadb-test-10.5.12-3.6.1.x86_64.rpm mariadb-tools-10.5.12-3.6.1.x86_64.rpm libmariadbd-devel-10.5.12-3.6.1.s390x.rpm libmariadbd19-10.5.12-3.6.1.s390x.rpm mariadb-10.5.12-3.6.1.s390x.rpm mariadb-bench-10.5.12-3.6.1.s390x.rpm mariadb-client-10.5.12-3.6.1.s390x.rpm mariadb-rpm-macros-10.5.12-3.6.1.s390x.rpm mariadb-test-10.5.12-3.6.1.s390x.rpm mariadb-tools-10.5.12-3.6.1.s390x.rpm libmariadbd-devel-10.5.12-3.6.1.ppc64le.rpm libmariadbd19-10.5.12-3.6.1.ppc64le.rpm mariadb-10.5.12-3.6.1.ppc64le.rpm mariadb-bench-10.5.12-3.6.1.ppc64le.rpm mariadb-client-10.5.12-3.6.1.ppc64le.rpm mariadb-rpm-macros-10.5.12-3.6.1.ppc64le.rpm mariadb-test-10.5.12-3.6.1.ppc64le.rpm mariadb-tools-10.5.12-3.6.1.ppc64le.rpm libmariadbd-devel-10.5.12-3.6.1.aarch64.rpm libmariadbd19-10.5.12-3.6.1.aarch64.rpm mariadb-10.5.12-3.6.1.aarch64.rpm mariadb-bench-10.5.12-3.6.1.aarch64.rpm mariadb-client-10.5.12-3.6.1.aarch64.rpm mariadb-rpm-macros-10.5.12-3.6.1.aarch64.rpm mariadb-test-10.5.12-3.6.1.aarch64.rpm mariadb-tools-10.5.12-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2875 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: Update to 12.22.5: - CVE-2021-3672/CVE-2021-22931: Improper handling of untypical characters in domain names (bsc#1189370, bsc#1188881) - CVE-2021-22940: Use after free on close http2 on stream canceling (bsc#1189368) - CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (bsc#1189369) - CVE-2021-22930: http2: fixes use after free on close http2 on stream canceling (bsc#1188917) nodejs12-12.22.5-4.19.1.src.rpm nodejs12-12.22.5-4.19.1.x86_64.rpm nodejs12-devel-12.22.5-4.19.1.x86_64.rpm nodejs12-docs-12.22.5-4.19.1.noarch.rpm npm12-12.22.5-4.19.1.x86_64.rpm nodejs12-12.22.5-4.19.1.s390x.rpm nodejs12-devel-12.22.5-4.19.1.s390x.rpm npm12-12.22.5-4.19.1.s390x.rpm nodejs12-12.22.5-4.19.1.ppc64le.rpm nodejs12-devel-12.22.5-4.19.1.ppc64le.rpm npm12-12.22.5-4.19.1.ppc64le.rpm nodejs12-12.22.5-4.19.1.aarch64.rpm nodejs12-devel-12.22.5-4.19.1.aarch64.rpm npm12-12.22.5-4.19.1.aarch64.rpm openSUSE-SLE-15.3-2021-2954 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: - CVE-2021-33193: Fixed request splitting via HTTP/2 method injection and mod_proxy (bsc#1189387). apache2-2.4.43-3.25.1.src.rpm apache2-2.4.43-3.25.1.x86_64.rpm apache2-devel-2.4.43-3.25.1.x86_64.rpm apache2-doc-2.4.43-3.25.1.noarch.rpm apache2-event-2.4.43-3.25.1.x86_64.rpm apache2-example-pages-2.4.43-3.25.1.x86_64.rpm apache2-prefork-2.4.43-3.25.1.x86_64.rpm apache2-utils-2.4.43-3.25.1.x86_64.rpm apache2-worker-2.4.43-3.25.1.x86_64.rpm apache2-2.4.43-3.25.1.s390x.rpm apache2-devel-2.4.43-3.25.1.s390x.rpm apache2-event-2.4.43-3.25.1.s390x.rpm apache2-example-pages-2.4.43-3.25.1.s390x.rpm apache2-prefork-2.4.43-3.25.1.s390x.rpm apache2-utils-2.4.43-3.25.1.s390x.rpm apache2-worker-2.4.43-3.25.1.s390x.rpm apache2-2.4.43-3.25.1.ppc64le.rpm apache2-devel-2.4.43-3.25.1.ppc64le.rpm apache2-event-2.4.43-3.25.1.ppc64le.rpm apache2-example-pages-2.4.43-3.25.1.ppc64le.rpm apache2-prefork-2.4.43-3.25.1.ppc64le.rpm apache2-utils-2.4.43-3.25.1.ppc64le.rpm apache2-worker-2.4.43-3.25.1.ppc64le.rpm apache2-2.4.43-3.25.1.aarch64.rpm apache2-devel-2.4.43-3.25.1.aarch64.rpm apache2-event-2.4.43-3.25.1.aarch64.rpm apache2-example-pages-2.4.43-3.25.1.aarch64.rpm apache2-prefork-2.4.43-3.25.1.aarch64.rpm apache2-utils-2.4.43-3.25.1.aarch64.rpm apache2-worker-2.4.43-3.25.1.aarch64.rpm openSUSE-SLE-15.3-2021-3133 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2, efibootmgr provides the following fixes: - Ship package grub2-arm64-efi and the required efibootmgr also to ppc64le, s390x and x86_64 (bsc#1186565) - Fix error gfxterm isn't found with multiple terminals (bsc#1187565) - Fix ocasional boot failure after kdump procedure when using XFS (bsc#1186975) efibootmgr-14-4.3.2.src.rpm efibootmgr-14-4.3.2.x86_64.rpm efibootmgr-14-4.3.2.s390x.rpm efibootmgr-14-4.3.2.ppc64le.rpm efibootmgr-14-4.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-2763 critical SUSE Updates openSUSE-SLE 15.3 This update for cpio fixes the following issues: - A regression in last update would cause builds to hang on various architectures(bsc#1189465) cpio-2.12-3.6.2.src.rpm cpio-2.12-3.6.2.x86_64.rpm cpio-lang-2.12-3.6.2.noarch.rpm cpio-mt-2.12-3.6.2.x86_64.rpm cpio-2.12-3.6.2.s390x.rpm cpio-mt-2.12-3.6.2.s390x.rpm cpio-2.12-3.6.2.ppc64le.rpm cpio-mt-2.12-3.6.2.ppc64le.rpm cpio-2.12-3.6.2.aarch64.rpm cpio-mt-2.12-3.6.2.aarch64.rpm openSUSE-SLE-15.3-2021-2953 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs10 fixes the following issues: - CVE-2021-3672: Fixed missing input validation on hostnames (bsc#1188881). - CVE-2021-22930: Fixed use after free on close http2 on stream canceling (bsc#1188917). - CVE-2021-22939: Fixed incomplete validation of rejectUnauthorized parameter (bsc#1189369). - CVE-2021-22931: Fixed improper handling of untypical characters in domain names (bsc#1189370). nodejs10-10.24.1-1.39.2.src.rpm nodejs10-10.24.1-1.39.2.x86_64.rpm nodejs10-devel-10.24.1-1.39.2.x86_64.rpm nodejs10-docs-10.24.1-1.39.2.noarch.rpm npm10-10.24.1-1.39.2.x86_64.rpm nodejs10-10.24.1-1.39.2.s390x.rpm nodejs10-devel-10.24.1-1.39.2.s390x.rpm npm10-10.24.1-1.39.2.s390x.rpm nodejs10-10.24.1-1.39.2.ppc64le.rpm nodejs10-devel-10.24.1-1.39.2.ppc64le.rpm npm10-10.24.1-1.39.2.ppc64le.rpm nodejs10-10.24.1-1.39.2.aarch64.rpm nodejs10-devel-10.24.1-1.39.2.aarch64.rpm npm10-10.24.1-1.39.2.aarch64.rpm openSUSE-SLE-15.3-2021-3224 moderate SUSE Updates openSUSE-SLE 15.3 This update for shim-susesigned fixes the following issues: Sync with Microsoft signed shim to Thu Jul 15 08:13:26 UTC 2021. This update addresses the "susesigned" shim component. shim was updated to 15.4 (bsc#1182057) - console: Move the countdown function to console.c - fallback: show a countdown menu before reset - MOK: Fix the missing vendor cert in MokListRT - mok: fix the mirroring of RT variables - Add the license change statement for errlog.c and mok.c - Remove a couple of incorrect license claims. - MokManager: Use CompareMem on MokListNode.Type instead of CompareGuid - Make EFI variable copying fatal only on secureboot enabled systems - Remove call to TPM2 get_event_log - tpm: Fix off-by-one error when calculating event size - tpm: Define EFI_VARIABLE_DATA_TREE as packed - tpm: Don't log duplicate identical events - VLogError(): Avoid NULL pointer dereferences in (V)Sprint calls - OpenSSL: always provide OBJ_create() with name strings. - translate_slashes(): don't write to string literals - Fix a use of strlen() instead of Strlen() - shim: Update EFI_LOADED_IMAGE with the second stage loader file path - tpm: Include information about PE/COFF images in the TPM Event Log - Fix a broken tpm type - All newly released openSUSE kernels enable kernel lockdown and signature verification, so there is no need to add the prompt anymore. - Fix the NULL pointer dereference in AuthenticodeVerify() - Remove the build ID to make the binary reproducible when building with AArch64 container - Prevent the build id being added to the binary. That can cause issues with the signature - Allocate MOK config table as BootServicesData to avoid the error message from linux kernel - Handle ignore_db and user_insecure_mode correctly (bsc#1185441) - Relax the maximum variable size check for u-boot - Relax the check for import_mok_state() when Secure Boot is off - Relax the check for the LoadOptions length - Fix the size of rela* sections for AArch64 - Disable exporting vendor-dbx to MokListXRT - Don't call QueryVariableInfo() on EFI 1.10 machines - Avoid buffer overflow when copying the MOK config table - Avoid deleting the mirrored RT variables - Update to 15.3 for SBAT support (bsc#1182057) - Generate vender-specific SBAT metadata - Rename the SBAT variable and fix the self-check of SBAT - Split the keys in vendor-dbx.bin to vendor-dbx-sles and vendor-dbx-opensuse for shim-sles and shim-opensuse to reduce the size of MokListXRT (bsc#1185261) - shim-install: reset def_shim_efi to "shim.efi" if the given file doesn't exist - shim-install: instead of assuming "removable" for Azure, remove fallback.efi from \EFI\Boot and copy grub.efi/cfg to \EFI\Boot to make \EFI\Boot bootable and keep the boot option created by efibootmgr (bsc#1185464, bsc#1185961) - shim-install: always assume "removable" for Azure to avoid the endless reset loop (bsc#1185464) - shim-install: Support changing default shim efi binary in /usr/etc/default/shim and /etc/default/shim (bsc#1177315) - Update dbx-cert.tar.xz and vendor-dbx.bin to block the following sign keys: + SLES-UEFI-SIGN-Certificate-2020-07.crt + openSUSE-UEFI-SIGN-Certificate-2020-07.crt shim-susesigned-15.4-3.10.1.src.rpm shim-susesigned-15.4-3.10.1.x86_64.rpm openSUSE-SLE-15.3-2021-2819 moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - Update to 14.2.22-404-gf74e15c2e55: - Fix for an issue when scrub is not rescheduling. (bsc#1187584) - Update to 14.2.22-403-g54cdaf6e510: - Fixed and isshe when dashboard shows partially deleted RBDs. (bsc#1175086) - Look for plain entries in non-ascii plain namespace too. (bsc#1184517) - Fix monitoring menu item in downstream branding ceph-14.2.22.404+gf74e15c2e55-3.69.2.src.rpm ceph-dashboard-e2e-14.2.22.404+gf74e15c2e55-3.69.2.noarch.rpm ceph-mgr-ssh-14.2.22.404+gf74e15c2e55-3.69.2.noarch.rpm openSUSE-SLE-15.3-2021-3516 important SUSE Updates openSUSE-SLE 15.3 This update for azure-cli, azure-cli-core, python-azure-mgmt, python-azure-mgmt-billing, python-azure-mgmt-cdn, python-azure-mgmt-hdinsight, python-azure-mgmt-netapp, python-azure-mgmt-resource, python-azure-mgmt-synapse contains the following fixes: Changes in python-azure-mgmt: - Remove all version constraints in Requires. (bsc#1187880, bsc#1188178) Changes in azure-cli-core: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 2.16.0 + For detailed information about changes see the HISTORY.rst file provided with this package - Refresh patches for new version - Update Requires from setup.py + Temporarily use a vendored copy of azure-mgmt-resource - New upstream release + Version 2.15.0 + For detailed information about changes see the HISTORY.rst file provided with this package - Update Requires from setup.py Changes in azure-cli: - Update in SLE-15 (bsc#1187880, bsc#1188178) - Add missing python3-azure-mgmt-resource dependency to Requires - New upstream release + Version 2.16.0 + For detailed information about changes see the HISTORY.rst file provided with this package - Update Requires from setup.py - New upstream release + Version 2.15.0 + For detailed information about changes see the HISTORY.rst file provided with this package - Update Requires from setup.py Changes in python-azure-mgmt-billing: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 1.0.0 + For detailed information about changes see the CHANGELOG.md file provided with this package - Update Requires from setup.py Changes in python-azure-mgmt-cdn: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 5.2.0 + For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-mgmt-hdinsight: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 2.0.0 + For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-mgmt-netapp: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 0.14.0 + For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-mgmt-resource: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 15.0.0 + For detailed information about changes see the CHANGELOG.md file provided with this package - Update Requires from setup.py Changes in python-azure-mgmt-synapse: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 0.5.0 + For detailed information about changes see the CHANGELOG.md file provided with this package azure-cli-2.16.0-6.7.1.noarch.rpm azure-cli-2.16.0-6.7.1.src.rpm azure-cli-core-2.16.0-6.10.1.noarch.rpm azure-cli-core-2.16.0-6.10.1.src.rpm azure-cli-test-2.16.0-6.7.1.src.rpm azure-cli-test-2.16.0-6.7.1.x86_64.rpm python-azure-mgmt-4.0.0-6.7.1.src.rpm python-azure-mgmt-billing-1.0.0-6.7.1.src.rpm python-azure-mgmt-cdn-5.2.0-6.7.1.src.rpm python-azure-mgmt-hdinsight-2.0.0-3.7.1.src.rpm python-azure-mgmt-netapp-0.14.0-3.6.1.src.rpm python-azure-mgmt-resource-15.0.0-6.7.1.src.rpm python-azure-mgmt-synapse-0.5.0-3.6.1.src.rpm python2-azure-mgmt-4.0.0-6.7.1.noarch.rpm python2-azure-mgmt-billing-1.0.0-6.7.1.noarch.rpm python2-azure-mgmt-cdn-5.2.0-6.7.1.noarch.rpm python2-azure-mgmt-hdinsight-2.0.0-3.7.1.noarch.rpm python2-azure-mgmt-netapp-0.14.0-3.6.1.noarch.rpm python2-azure-mgmt-resource-15.0.0-6.7.1.noarch.rpm python2-azure-mgmt-synapse-0.5.0-3.6.1.noarch.rpm python3-azure-mgmt-4.0.0-6.7.1.noarch.rpm python3-azure-mgmt-billing-1.0.0-6.7.1.noarch.rpm python3-azure-mgmt-cdn-5.2.0-6.7.1.noarch.rpm python3-azure-mgmt-hdinsight-2.0.0-3.7.1.noarch.rpm python3-azure-mgmt-netapp-0.14.0-3.6.1.noarch.rpm python3-azure-mgmt-resource-15.0.0-6.7.1.noarch.rpm python3-azure-mgmt-synapse-0.5.0-3.6.1.noarch.rpm azure-cli-test-2.16.0-6.7.1.s390x.rpm azure-cli-test-2.16.0-6.7.1.ppc64le.rpm azure-cli-test-2.16.0-6.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-38 important SUSE Updates openSUSE-SLE 15.3 This update for python39 fixes the following issues: - CVE-2021-29921: Fixed improper input validation of octal string IP addresses (bsc#1185706). - Use versioned python-Sphinx to avoid dependency on other version of Python (bsc#1183858). - Stop providing "python" symbol (bsc#1185588), which means python2 currently. libpython3_9-1_0-3.9.6-4.3.3.x86_64.rpm libpython3_9-1_0-32bit-3.9.6-4.3.3.x86_64.rpm python39-3.9.6-4.3.4.src.rpm python39-3.9.6-4.3.4.x86_64.rpm python39-32bit-3.9.6-4.3.4.x86_64.rpm python39-base-3.9.6-4.3.3.x86_64.rpm python39-base-32bit-3.9.6-4.3.3.x86_64.rpm python39-core-3.9.6-4.3.3.src.rpm python39-curses-3.9.6-4.3.4.x86_64.rpm python39-dbm-3.9.6-4.3.4.x86_64.rpm python39-devel-3.9.6-4.3.3.x86_64.rpm python39-doc-3.9.6-4.3.1.x86_64.rpm python39-doc-devhelp-3.9.6-4.3.1.x86_64.rpm python39-documentation-3.9.6-4.3.1.src.rpm python39-idle-3.9.6-4.3.4.x86_64.rpm python39-testsuite-3.9.6-4.3.3.x86_64.rpm python39-tk-3.9.6-4.3.4.x86_64.rpm python39-tools-3.9.6-4.3.3.x86_64.rpm libpython3_9-1_0-3.9.6-4.3.3.s390x.rpm python39-3.9.6-4.3.4.s390x.rpm python39-base-3.9.6-4.3.3.s390x.rpm python39-curses-3.9.6-4.3.4.s390x.rpm python39-dbm-3.9.6-4.3.4.s390x.rpm python39-devel-3.9.6-4.3.3.s390x.rpm python39-doc-3.9.6-4.3.1.s390x.rpm python39-doc-devhelp-3.9.6-4.3.1.s390x.rpm python39-idle-3.9.6-4.3.4.s390x.rpm python39-testsuite-3.9.6-4.3.3.s390x.rpm python39-tk-3.9.6-4.3.4.s390x.rpm python39-tools-3.9.6-4.3.3.s390x.rpm libpython3_9-1_0-3.9.6-4.3.3.ppc64le.rpm python39-3.9.6-4.3.4.ppc64le.rpm python39-base-3.9.6-4.3.3.ppc64le.rpm python39-curses-3.9.6-4.3.4.ppc64le.rpm python39-dbm-3.9.6-4.3.4.ppc64le.rpm python39-devel-3.9.6-4.3.3.ppc64le.rpm python39-doc-3.9.6-4.3.1.ppc64le.rpm python39-doc-devhelp-3.9.6-4.3.1.ppc64le.rpm python39-idle-3.9.6-4.3.4.ppc64le.rpm python39-testsuite-3.9.6-4.3.3.ppc64le.rpm python39-tk-3.9.6-4.3.4.ppc64le.rpm python39-tools-3.9.6-4.3.3.ppc64le.rpm libpython3_9-1_0-3.9.6-4.3.3.aarch64.rpm python39-3.9.6-4.3.4.aarch64.rpm python39-base-3.9.6-4.3.3.aarch64.rpm python39-curses-3.9.6-4.3.4.aarch64.rpm python39-dbm-3.9.6-4.3.4.aarch64.rpm python39-devel-3.9.6-4.3.3.aarch64.rpm python39-doc-3.9.6-4.3.1.aarch64.rpm python39-doc-devhelp-3.9.6-4.3.1.aarch64.rpm python39-idle-3.9.6-4.3.4.aarch64.rpm python39-testsuite-3.9.6-4.3.3.aarch64.rpm python39-tk-3.9.6-4.3.4.aarch64.rpm python39-tools-3.9.6-4.3.3.aarch64.rpm openSUSE-SLE-15.3-2021-2861 moderate SUSE Updates openSUSE-SLE 15.3 This update for spectre-meltdown-checker fixes the following issues: spectre-meltdown-checker was updated to version 0.44 (bsc#1189477) - feat: add support for SRBDS related vulnerabilities - feat: add zstd kernel decompression (#370) - enh: arm: add experimental support for binary arm images - enh: rsb filling: no longer need the 'strings' tool to check for kernel support in live mode - fix: fwdb: remove Intel extract tempdir on exit - fix: has_vmm: ignore kernel threads when looking for a hypervisor (fixes #278) - fix: fwdb: use the commit date as the intel fwdb version - fix: fwdb: update Intel's repository URL - fix: arm64: CVE-2017-5753: kernels 4.19+ use a different nospec macro - fix: on CPU parse info under FreeBSD - chore: github: add check run on pull requests - chore: fwdb: update to v165.20201021+i20200616 spectre-meltdown-checker-0.44-3.6.1.src.rpm spectre-meltdown-checker-0.44-3.6.1.x86_64.rpm openSUSE-SLE-15.3-2021-2984 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Fix for the documentation: Note that resource tracing is only supported by OCF resource agents. (bsc#1188966) - Development for 'ui_context': Add info when spell-corrections happen. - Fix for 'parse': Should still be able to show the empty property if it already exists. (bsc#1188290) crmsh-4.3.1+20210811.2a30e37e-5.62.1.noarch.rpm crmsh-4.3.1+20210811.2a30e37e-5.62.1.src.rpm crmsh-scripts-4.3.1+20210811.2a30e37e-5.62.1.noarch.rpm crmsh-test-4.3.1+20210811.2a30e37e-5.62.1.noarch.rpm openSUSE-SLE-15.3-2021-2780 critical SUSE Updates openSUSE-SLE 15.3 This update for cpio fixes the following issues: - A regression in the previous update could lead to crashes (bsc#1189465) cpio-2.12-3.9.1.src.rpm cpio-2.12-3.9.1.x86_64.rpm cpio-lang-2.12-3.9.1.noarch.rpm cpio-mt-2.12-3.9.1.x86_64.rpm cpio-2.12-3.9.1.s390x.rpm cpio-mt-2.12-3.9.1.s390x.rpm cpio-2.12-3.9.1.ppc64le.rpm cpio-mt-2.12-3.9.1.ppc64le.rpm cpio-2.12-3.9.1.aarch64.rpm cpio-mt-2.12-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2827 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_0_0 fixes the following issues: - CVE-2021-3712: a bug in the code for printing certificate details could lead to a buffer overrun that a malicious actor could exploit to crash the application, causing a denial-of-service attack. [bsc#1189521] libopenssl-1_0_0-devel-1.0.2p-3.40.2.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-3.40.2.x86_64.rpm libopenssl10-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-3.40.2.x86_64.rpm openssl-1_0_0-1.0.2p-3.40.2.src.rpm openssl-1_0_0-1.0.2p-3.40.2.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.x86_64.rpm openssl-1_0_0-doc-1.0.2p-3.40.2.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-3.40.2.s390x.rpm libopenssl10-1.0.2p-3.40.2.s390x.rpm libopenssl1_0_0-1.0.2p-3.40.2.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.s390x.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.s390x.rpm openssl-1_0_0-1.0.2p-3.40.2.s390x.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-3.40.2.ppc64le.rpm libopenssl10-1.0.2p-3.40.2.ppc64le.rpm libopenssl1_0_0-1.0.2p-3.40.2.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.ppc64le.rpm openssl-1_0_0-1.0.2p-3.40.2.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-3.40.2.aarch64.rpm libopenssl10-1.0.2p-3.40.2.aarch64.rpm libopenssl1_0_0-1.0.2p-3.40.2.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.aarch64.rpm openssl-1_0_0-1.0.2p-3.40.2.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.aarch64.rpm openSUSE-SLE-15.3-2021-2830 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following security issues: - CVE-2021-3711: A bug in the implementation of the SM2 decryption code could lead to buffer overflows. [bsc#1189520] - CVE-2021-3712: a bug in the code for printing certificate details could lead to a buffer overrun that a malicious actor could exploit to crash the application, causing a denial-of-service attack. [bsc#1189521] libopenssl-1_1-devel-1.1.1d-11.27.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-11.27.1.x86_64.rpm openssl-1_1-1.1.1d-11.27.1.src.rpm openssl-1_1-1.1.1d-11.27.1.x86_64.rpm openssl-1_1-doc-1.1.1d-11.27.1.noarch.rpm libopenssl-1_1-devel-1.1.1d-11.27.1.s390x.rpm libopenssl1_1-1.1.1d-11.27.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.s390x.rpm openssl-1_1-1.1.1d-11.27.1.s390x.rpm libopenssl-1_1-devel-1.1.1d-11.27.1.ppc64le.rpm libopenssl1_1-1.1.1d-11.27.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.ppc64le.rpm openssl-1_1-1.1.1d-11.27.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-11.27.1.aarch64.rpm libopenssl1_1-1.1.1d-11.27.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.aarch64.rpm openssl-1_1-1.1.1d-11.27.1.aarch64.rpm openSUSE-SLE-15.3-2021-2941 important SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - CVE-2021-3621: Fixed shell command injection in sssctl via the logs-fetch and cache-expire subcommands (bsc#1189492). - Add LDAPS support for the AD provider (bsc#1183735). - Improve logs to record the reason why internal watchdog terminates a process (bsc#1187120). - Fix watchdog not terminating tasks (bsc#1187120). libipa_hbac-devel-1.16.1-23.11.1.x86_64.rpm libipa_hbac0-1.16.1-23.11.1.x86_64.rpm libnfsidmap-sss-1.16.1-23.11.1.x86_64.rpm libsss_certmap-devel-1.16.1-23.11.1.x86_64.rpm libsss_certmap0-1.16.1-23.11.1.x86_64.rpm libsss_idmap-devel-1.16.1-23.11.1.x86_64.rpm libsss_idmap0-1.16.1-23.11.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.x86_64.rpm libsss_nss_idmap0-1.16.1-23.11.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-23.11.1.x86_64.rpm libsss_simpleifp0-1.16.1-23.11.1.x86_64.rpm python3-ipa_hbac-1.16.1-23.11.1.x86_64.rpm python3-sss-murmur-1.16.1-23.11.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-23.11.1.x86_64.rpm python3-sssd-config-1.16.1-23.11.1.x86_64.rpm sssd-1.16.1-23.11.1.src.rpm sssd-1.16.1-23.11.1.x86_64.rpm sssd-ad-1.16.1-23.11.1.x86_64.rpm sssd-common-1.16.1-23.11.1.x86_64.rpm sssd-dbus-1.16.1-23.11.1.x86_64.rpm sssd-ipa-1.16.1-23.11.1.x86_64.rpm sssd-krb5-1.16.1-23.11.1.x86_64.rpm sssd-krb5-common-1.16.1-23.11.1.x86_64.rpm sssd-ldap-1.16.1-23.11.1.x86_64.rpm sssd-proxy-1.16.1-23.11.1.x86_64.rpm sssd-tools-1.16.1-23.11.1.x86_64.rpm sssd-wbclient-1.16.1-23.11.1.x86_64.rpm sssd-wbclient-devel-1.16.1-23.11.1.x86_64.rpm sssd-winbind-idmap-1.16.1-23.11.1.x86_64.rpm libipa_hbac-devel-1.16.1-23.11.1.s390x.rpm libipa_hbac0-1.16.1-23.11.1.s390x.rpm libnfsidmap-sss-1.16.1-23.11.1.s390x.rpm libsss_certmap-devel-1.16.1-23.11.1.s390x.rpm libsss_certmap0-1.16.1-23.11.1.s390x.rpm libsss_idmap-devel-1.16.1-23.11.1.s390x.rpm libsss_idmap0-1.16.1-23.11.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.s390x.rpm libsss_nss_idmap0-1.16.1-23.11.1.s390x.rpm libsss_simpleifp-devel-1.16.1-23.11.1.s390x.rpm libsss_simpleifp0-1.16.1-23.11.1.s390x.rpm python3-ipa_hbac-1.16.1-23.11.1.s390x.rpm python3-sss-murmur-1.16.1-23.11.1.s390x.rpm python3-sss_nss_idmap-1.16.1-23.11.1.s390x.rpm python3-sssd-config-1.16.1-23.11.1.s390x.rpm sssd-1.16.1-23.11.1.s390x.rpm sssd-ad-1.16.1-23.11.1.s390x.rpm sssd-common-1.16.1-23.11.1.s390x.rpm sssd-dbus-1.16.1-23.11.1.s390x.rpm sssd-ipa-1.16.1-23.11.1.s390x.rpm sssd-krb5-1.16.1-23.11.1.s390x.rpm sssd-krb5-common-1.16.1-23.11.1.s390x.rpm sssd-ldap-1.16.1-23.11.1.s390x.rpm sssd-proxy-1.16.1-23.11.1.s390x.rpm sssd-tools-1.16.1-23.11.1.s390x.rpm sssd-wbclient-1.16.1-23.11.1.s390x.rpm sssd-wbclient-devel-1.16.1-23.11.1.s390x.rpm sssd-winbind-idmap-1.16.1-23.11.1.s390x.rpm libipa_hbac-devel-1.16.1-23.11.1.ppc64le.rpm libipa_hbac0-1.16.1-23.11.1.ppc64le.rpm libnfsidmap-sss-1.16.1-23.11.1.ppc64le.rpm libsss_certmap-devel-1.16.1-23.11.1.ppc64le.rpm libsss_certmap0-1.16.1-23.11.1.ppc64le.rpm libsss_idmap-devel-1.16.1-23.11.1.ppc64le.rpm libsss_idmap0-1.16.1-23.11.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-23.11.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-23.11.1.ppc64le.rpm libsss_simpleifp0-1.16.1-23.11.1.ppc64le.rpm python3-ipa_hbac-1.16.1-23.11.1.ppc64le.rpm python3-sss-murmur-1.16.1-23.11.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-23.11.1.ppc64le.rpm python3-sssd-config-1.16.1-23.11.1.ppc64le.rpm sssd-1.16.1-23.11.1.ppc64le.rpm sssd-ad-1.16.1-23.11.1.ppc64le.rpm sssd-common-1.16.1-23.11.1.ppc64le.rpm sssd-dbus-1.16.1-23.11.1.ppc64le.rpm sssd-ipa-1.16.1-23.11.1.ppc64le.rpm sssd-krb5-1.16.1-23.11.1.ppc64le.rpm sssd-krb5-common-1.16.1-23.11.1.ppc64le.rpm sssd-ldap-1.16.1-23.11.1.ppc64le.rpm sssd-proxy-1.16.1-23.11.1.ppc64le.rpm sssd-tools-1.16.1-23.11.1.ppc64le.rpm sssd-wbclient-1.16.1-23.11.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-23.11.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-23.11.1.ppc64le.rpm libipa_hbac-devel-1.16.1-23.11.1.aarch64.rpm libipa_hbac0-1.16.1-23.11.1.aarch64.rpm libnfsidmap-sss-1.16.1-23.11.1.aarch64.rpm libsss_certmap-devel-1.16.1-23.11.1.aarch64.rpm libsss_certmap0-1.16.1-23.11.1.aarch64.rpm libsss_idmap-devel-1.16.1-23.11.1.aarch64.rpm libsss_idmap0-1.16.1-23.11.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.aarch64.rpm libsss_nss_idmap0-1.16.1-23.11.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-23.11.1.aarch64.rpm libsss_simpleifp0-1.16.1-23.11.1.aarch64.rpm python3-ipa_hbac-1.16.1-23.11.1.aarch64.rpm python3-sss-murmur-1.16.1-23.11.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-23.11.1.aarch64.rpm python3-sssd-config-1.16.1-23.11.1.aarch64.rpm sssd-1.16.1-23.11.1.aarch64.rpm sssd-ad-1.16.1-23.11.1.aarch64.rpm sssd-common-1.16.1-23.11.1.aarch64.rpm sssd-dbus-1.16.1-23.11.1.aarch64.rpm sssd-ipa-1.16.1-23.11.1.aarch64.rpm sssd-krb5-1.16.1-23.11.1.aarch64.rpm sssd-krb5-common-1.16.1-23.11.1.aarch64.rpm sssd-ldap-1.16.1-23.11.1.aarch64.rpm sssd-proxy-1.16.1-23.11.1.aarch64.rpm sssd-tools-1.16.1-23.11.1.aarch64.rpm sssd-wbclient-1.16.1-23.11.1.aarch64.rpm sssd-wbclient-devel-1.16.1-23.11.1.aarch64.rpm sssd-winbind-idmap-1.16.1-23.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2934 important SUSE Updates openSUSE-SLE 15.3 This update for SAPHanaSR-ScaleOut fixes the following issues: - change version to 0.180.1 - Extent the SAP HANA ressource agents from single replication automation to multi replication automation (jsc#SLE-17452, jsc#SLE-20081) - The resource start and stop timeout is now configurable by increasing the timeout for the action 'start' and/or 'stop' in the cluster. (bsc#1182545) - Improve handling of return codes in 'saphana_stopSystem' and 'saphana_stop' function. (bsc#1182115) - Integrate man pages back to the base package SAPHanaSR-ScaleOut. - Fixed an issue when HANA failover returns and empty site name. (bsc#1173581) - Add SAPHanaSR-call-monitor - Fixed an issue when HANA is configured to have only one master name server, but no additional master name server candidates, there may be the situation, where the master name server died and so the landscape has no active name server anymore. - Manual page updates: SAPHanaSR-ScaleOut.7 (bsc#1144442) SAPHanaSR-showAttr.8 (bsc#1144312) and others SAPHanaSR-ScaleOut-0.180.1-3.19.1.noarch.rpm SAPHanaSR-ScaleOut-0.180.1-3.19.1.src.rpm SAPHanaSR-ScaleOut-doc-0.180.1-3.19.1.noarch.rpm openSUSE-SLE-15.3-2021-3131 moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-fonts fixes the following issues: - Convert the 'helv*.otb' and 'cour*.otb' files in a different way, generating all available font sizes. (bsc#1174895) - As part of the above fix, don't remove the "Regular" suffix from the full name of fonts in 'convertfont.py' This update for fonttosfnt fixes the following issues: - Fix more metric calculations (bsc#1174895): fonttosfnt-1.1.0-3.3.1.src.rpm fonttosfnt-1.1.0-3.3.1.x86_64.rpm xorg-x11-fonts-7.6-13.6.1.noarch.rpm xorg-x11-fonts-7.6-13.6.1.src.rpm xorg-x11-fonts-converted-7.6-13.6.5.noarch.rpm xorg-x11-fonts-converted-7.6-13.6.5.src.rpm xorg-x11-fonts-core-7.6-13.6.1.noarch.rpm xorg-x11-fonts-legacy-7.6-13.6.1.noarch.rpm fonttosfnt-1.1.0-3.3.1.s390x.rpm fonttosfnt-1.1.0-3.3.1.ppc64le.rpm fonttosfnt-1.1.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3029 moderate SUSE Updates openSUSE-SLE 15.3 This update for sapconf fixes the following issues: - Adapt the activity detection of saptune to the upcoming saptune version 3. (bsc#1189496) sapconf-5.0.3-7.18.1.noarch.rpm sapconf-5.0.3-7.18.1.src.rpm openSUSE-SLE-15.3-2021-3017 moderate SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: - Update to Wireshark 3.4.7 - CVE-2021-22235: Fixed DNP dissector crash (bsc#1188375). libwireshark14-3.4.7-3.59.1.x86_64.rpm libwiretap11-3.4.7-3.59.1.x86_64.rpm libwsutil12-3.4.7-3.59.1.x86_64.rpm wireshark-3.4.7-3.59.1.src.rpm wireshark-3.4.7-3.59.1.x86_64.rpm wireshark-devel-3.4.7-3.59.1.x86_64.rpm wireshark-ui-qt-3.4.7-3.59.1.x86_64.rpm libwireshark14-3.4.7-3.59.1.s390x.rpm libwiretap11-3.4.7-3.59.1.s390x.rpm libwsutil12-3.4.7-3.59.1.s390x.rpm wireshark-3.4.7-3.59.1.s390x.rpm wireshark-devel-3.4.7-3.59.1.s390x.rpm wireshark-ui-qt-3.4.7-3.59.1.s390x.rpm libwireshark14-3.4.7-3.59.1.ppc64le.rpm libwiretap11-3.4.7-3.59.1.ppc64le.rpm libwsutil12-3.4.7-3.59.1.ppc64le.rpm wireshark-3.4.7-3.59.1.ppc64le.rpm wireshark-devel-3.4.7-3.59.1.ppc64le.rpm wireshark-ui-qt-3.4.7-3.59.1.ppc64le.rpm libwireshark14-3.4.7-3.59.1.aarch64.rpm libwiretap11-3.4.7-3.59.1.aarch64.rpm libwsutil12-3.4.7-3.59.1.aarch64.rpm wireshark-3.4.7-3.59.1.aarch64.rpm wireshark-devel-3.4.7-3.59.1.aarch64.rpm wireshark-ui-qt-3.4.7-3.59.1.aarch64.rpm openSUSE-SLE-15.3-2021-3132 moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-oslogin contains the following fixes: - Update to version 20210728.00 (bsc#1188992, bsc#1189041) * JSON object cleanup (#65) - Update to version 20210707.00 * throw exceptions in cache_refresh (#64) - from version 20210702.00 * Use IP address for calling the metadata server. (#63) - Update to version 20210618.00 * flush each group member write (#62) google-guest-oslogin-20210728.00-1.21.1.src.rpm google-guest-oslogin-20210728.00-1.21.1.x86_64.rpm google-guest-oslogin-20210728.00-1.21.1.s390x.rpm google-guest-oslogin-20210728.00-1.21.1.ppc64le.rpm google-guest-oslogin-20210728.00-1.21.1.aarch64.rpm openSUSE-SLE-15.3-2021-2993 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc fixes the following issues: - With gcc-PIE add -pie even when -fPIC is specified but we are not linking a shared library. [bsc#1185348] - Fix postun of gcc-go alternative. cpp-7-3.9.1.x86_64.rpm gcc-32bit-7-3.9.1.x86_64.rpm gcc-7-3.9.1.src.rpm gcc-7-3.9.1.x86_64.rpm gcc-PIE-7-3.9.1.x86_64.rpm gcc-ada-32bit-7-3.9.1.x86_64.rpm gcc-ada-7-3.9.1.x86_64.rpm gcc-c++-32bit-7-3.9.1.x86_64.rpm gcc-c++-7-3.9.1.x86_64.rpm gcc-fortran-32bit-7-3.9.1.x86_64.rpm gcc-fortran-7-3.9.1.x86_64.rpm gcc-go-32bit-7-3.9.1.x86_64.rpm gcc-go-7-3.9.1.x86_64.rpm gcc-info-7-3.9.1.x86_64.rpm gcc-locale-7-3.9.1.x86_64.rpm gcc-obj-c++-7-3.9.1.x86_64.rpm gcc-objc-32bit-7-3.9.1.x86_64.rpm gcc-objc-7-3.9.1.x86_64.rpm libstdc++-devel-32bit-7-3.9.1.x86_64.rpm libstdc++-devel-7-3.9.1.x86_64.rpm cpp-7-3.9.1.s390x.rpm gcc-32bit-7-3.9.1.s390x.rpm gcc-7-3.9.1.s390x.rpm gcc-PIE-7-3.9.1.s390x.rpm gcc-ada-32bit-7-3.9.1.s390x.rpm gcc-ada-7-3.9.1.s390x.rpm gcc-c++-32bit-7-3.9.1.s390x.rpm gcc-c++-7-3.9.1.s390x.rpm gcc-fortran-32bit-7-3.9.1.s390x.rpm gcc-fortran-7-3.9.1.s390x.rpm gcc-go-32bit-7-3.9.1.s390x.rpm gcc-go-7-3.9.1.s390x.rpm gcc-info-7-3.9.1.s390x.rpm gcc-locale-7-3.9.1.s390x.rpm gcc-obj-c++-7-3.9.1.s390x.rpm gcc-objc-32bit-7-3.9.1.s390x.rpm gcc-objc-7-3.9.1.s390x.rpm libstdc++-devel-32bit-7-3.9.1.s390x.rpm libstdc++-devel-7-3.9.1.s390x.rpm cpp-7-3.9.1.ppc64le.rpm gcc-7-3.9.1.ppc64le.rpm gcc-PIE-7-3.9.1.ppc64le.rpm gcc-ada-7-3.9.1.ppc64le.rpm gcc-c++-7-3.9.1.ppc64le.rpm gcc-fortran-7-3.9.1.ppc64le.rpm gcc-go-7-3.9.1.ppc64le.rpm gcc-info-7-3.9.1.ppc64le.rpm gcc-locale-7-3.9.1.ppc64le.rpm gcc-obj-c++-7-3.9.1.ppc64le.rpm gcc-objc-7-3.9.1.ppc64le.rpm libstdc++-devel-7-3.9.1.ppc64le.rpm cpp-7-3.9.1.aarch64.rpm gcc-7-3.9.1.aarch64.rpm gcc-PIE-7-3.9.1.aarch64.rpm gcc-ada-7-3.9.1.aarch64.rpm gcc-c++-7-3.9.1.aarch64.rpm gcc-fortran-7-3.9.1.aarch64.rpm gcc-go-7-3.9.1.aarch64.rpm gcc-info-7-3.9.1.aarch64.rpm gcc-locale-7-3.9.1.aarch64.rpm gcc-obj-c++-7-3.9.1.aarch64.rpm gcc-objc-7-3.9.1.aarch64.rpm libstdc++-devel-7-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3123 moderate SUSE Updates openSUSE-SLE 15.3 This update for libcroco fixes the following issues: - CVE-2020-12825: Fixed recursion issue in block and any productions (bsc#1171685). libcroco-0.6.13-3.3.1.src.rpm libcroco-0.6.13-3.3.1.x86_64.rpm libcroco-0_6-3-0.6.13-3.3.1.x86_64.rpm libcroco-0_6-3-32bit-0.6.13-3.3.1.x86_64.rpm libcroco-devel-0.6.13-3.3.1.x86_64.rpm libcroco-0.6.13-3.3.1.s390x.rpm libcroco-0_6-3-0.6.13-3.3.1.s390x.rpm libcroco-devel-0.6.13-3.3.1.s390x.rpm libcroco-0.6.13-3.3.1.ppc64le.rpm libcroco-0_6-3-0.6.13-3.3.1.ppc64le.rpm libcroco-devel-0.6.13-3.3.1.ppc64le.rpm libcroco-0.6.13-3.3.1.aarch64.rpm libcroco-0_6-3-0.6.13-3.3.1.aarch64.rpm libcroco-devel-0.6.13-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2958 important SUSE Updates openSUSE-SLE 15.3 This update for xerces-c fixes the following issues: - CVE-2018-1311: Fixed use-after-free inside XML parser during the scanning of external DTDs (bsc#1159552). libxerces-c-3_1-3.1.4-10.3.1.x86_64.rpm libxerces-c-3_1-32bit-3.1.4-10.3.1.x86_64.rpm xerces-c-3.1.4-10.3.1.src.rpm libxerces-c-3_1-3.1.4-10.3.1.s390x.rpm libxerces-c-3_1-3.1.4-10.3.1.ppc64le.rpm libxerces-c-3_1-3.1.4-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4154 important SUSE Updates openSUSE-SLE 15.3 This update for p11-kit fixes the following issues: - CVE-2020-29361: Fixed multiple integer overflows in rpc code (bsc#1180064) - Add support for CKA_NSS_{SERVER,EMAIL}_DISTRUST_AFTER (bsc#1187993). libp11-kit0-0.23.2-4.13.1.x86_64.rpm libp11-kit0-32bit-0.23.2-4.13.1.x86_64.rpm p11-kit-0.23.2-4.13.1.src.rpm p11-kit-0.23.2-4.13.1.x86_64.rpm p11-kit-32bit-0.23.2-4.13.1.x86_64.rpm p11-kit-devel-0.23.2-4.13.1.x86_64.rpm p11-kit-nss-trust-0.23.2-4.13.1.x86_64.rpm p11-kit-nss-trust-32bit-0.23.2-4.13.1.x86_64.rpm p11-kit-tools-0.23.2-4.13.1.x86_64.rpm libp11-kit0-0.23.2-4.13.1.s390x.rpm p11-kit-0.23.2-4.13.1.s390x.rpm p11-kit-devel-0.23.2-4.13.1.s390x.rpm p11-kit-nss-trust-0.23.2-4.13.1.s390x.rpm p11-kit-tools-0.23.2-4.13.1.s390x.rpm libp11-kit0-0.23.2-4.13.1.ppc64le.rpm p11-kit-0.23.2-4.13.1.ppc64le.rpm p11-kit-devel-0.23.2-4.13.1.ppc64le.rpm p11-kit-nss-trust-0.23.2-4.13.1.ppc64le.rpm p11-kit-tools-0.23.2-4.13.1.ppc64le.rpm libp11-kit0-0.23.2-4.13.1.aarch64.rpm p11-kit-0.23.2-4.13.1.aarch64.rpm p11-kit-devel-0.23.2-4.13.1.aarch64.rpm p11-kit-nss-trust-0.23.2-4.13.1.aarch64.rpm p11-kit-tools-0.23.2-4.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-3035 moderate SUSE Updates openSUSE-SLE 15.3 This update for ibus fixes the following issues: - Fixed an issue when 'Qt5 IBus IM' module cannot connect to 'IBus' daemon under 'GNOME Wayland' session. (bsc#1187202) ibus-1.5.23-3.3.1.src.rpm ibus-1.5.23-3.3.1.x86_64.rpm ibus-devel-1.5.23-3.3.1.x86_64.rpm ibus-dict-emoji-1.5.23-3.3.1.noarch.rpm ibus-gtk-1.5.23-3.3.1.x86_64.rpm ibus-gtk-32bit-1.5.23-3.3.1.x86_64.rpm ibus-gtk3-1.5.23-3.3.1.x86_64.rpm ibus-gtk3-32bit-1.5.23-3.3.1.x86_64.rpm ibus-lang-1.5.23-3.3.1.noarch.rpm libibus-1_0-5-1.5.23-3.3.1.x86_64.rpm libibus-1_0-5-32bit-1.5.23-3.3.1.x86_64.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.x86_64.rpm ibus-1.5.23-3.3.1.s390x.rpm ibus-devel-1.5.23-3.3.1.s390x.rpm ibus-gtk-1.5.23-3.3.1.s390x.rpm ibus-gtk3-1.5.23-3.3.1.s390x.rpm libibus-1_0-5-1.5.23-3.3.1.s390x.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.s390x.rpm ibus-1.5.23-3.3.1.ppc64le.rpm ibus-devel-1.5.23-3.3.1.ppc64le.rpm ibus-gtk-1.5.23-3.3.1.ppc64le.rpm ibus-gtk3-1.5.23-3.3.1.ppc64le.rpm libibus-1_0-5-1.5.23-3.3.1.ppc64le.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.ppc64le.rpm ibus-1.5.23-3.3.1.aarch64.rpm ibus-devel-1.5.23-3.3.1.aarch64.rpm ibus-gtk-1.5.23-3.3.1.aarch64.rpm ibus-gtk3-1.5.23-3.3.1.aarch64.rpm libibus-1_0-5-1.5.23-3.3.1.aarch64.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3203 moderate SUSE Updates openSUSE-SLE 15.3 This update for kmod fixes the following issues: - Use docbook 4 rather than docbook 5 for building man pages (bsc#1190190). - Enable support for ZSTD compressed modules - Display module information even for modules built into the running kernel (bsc#1189537) - '/usr/lib' should override '/lib' where both are available. Support '/usr/lib' for depmod.d as well. - Remove test patches included in release 29 - Update to release 29 * Fix `modinfo -F` not working for built-in modules and certain fields. * Fix a memory leak, overflow and double free on error path. kmod-29-4.9.1.src.rpm kmod-29-4.9.1.x86_64.rpm kmod-bash-completion-29-4.9.1.noarch.rpm libkmod-devel-29-4.9.1.x86_64.rpm libkmod2-29-4.9.1.x86_64.rpm kmod-29-4.9.1.s390x.rpm libkmod-devel-29-4.9.1.s390x.rpm libkmod2-29-4.9.1.s390x.rpm kmod-29-4.9.1.ppc64le.rpm libkmod-devel-29-4.9.1.ppc64le.rpm libkmod2-29-4.9.1.ppc64le.rpm kmod-29-4.9.1.aarch64.rpm libkmod-devel-29-4.9.1.aarch64.rpm libkmod2-29-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2935 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-saptune fixes the following issues: - Exchange the tuned daemon handling with the new saptune service. (bsc#1188321) - Add information, if the service is enabled or disabled. yast2-saptune-1.4-3.6.1.noarch.rpm yast2-saptune-1.4-3.6.1.src.rpm openSUSE-SLE-15.3-2021-3128 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint fixes the following issues: - Backport whitelisting of oddjob (bsc#1189106, bsc#1169494). rpmlint-1.10-7.25.1.noarch.rpm rpmlint-1.10-7.25.1.src.rpm openSUSE-SLE-15.3-2021-3129 moderate SUSE Updates openSUSE-SLE 15.3 This update for polkit-default-privs fixes the following issues: - malcontent: loosen restrictive ReadOwn actions to prevent spurious auth requests - whitelisting of GNOME malcontent parental controls (bsc#1177974) polkit-default-privs-13.2+20210813.1c5fb05-3.3.1.noarch.rpm polkit-default-privs-13.2+20210813.1c5fb05-3.3.1.src.rpm polkit-whitelisting-13.2+20210813.1c5fb05-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3036 moderate SUSE Updates openSUSE-SLE 15.3 This update for ocl-icd fixes the following issue: - provide a libOpenCL1-32bit for use by Wine. libOpenCL1-2.2.11-8.3.1.x86_64.rpm libOpenCL1-32bit-2.2.11-8.3.1.x86_64.rpm ocl-icd-2.2.11-8.3.1.src.rpm ocl-icd-devel-2.2.11-8.3.1.x86_64.rpm ocl-icd-devel-32bit-2.2.11-8.3.1.x86_64.rpm libOpenCL1-2.2.11-8.3.1.s390x.rpm ocl-icd-devel-2.2.11-8.3.1.s390x.rpm libOpenCL1-2.2.11-8.3.1.ppc64le.rpm ocl-icd-devel-2.2.11-8.3.1.ppc64le.rpm libOpenCL1-2.2.11-8.3.1.aarch64.rpm ocl-icd-devel-2.2.11-8.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2906 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-migration-services fixes the following issues: - Remove no-cd option from zypper-migration command - Make zypper ignore CD/DVDs repositories - Add a more informative message if problematic repos are found - Remote repos message in pre checks, potentially, will produce long lines. Add line breaks for better readability - doc/DC: Update to suse2021 stylesheets - Use download-in-advance mode for zypper dup. If the DMS was configured to use 'zypper dup' we should download packages in advance for more stability. - Fixed package build must not contain the pre-checks which are only relevant in the activation package - Setup package conflicts properly migration services and migration activation conflicts. The activation is installed on the host to migrate, the services are installed in the live migration image. There is no situation in which migration services and activation is installed on the same host. As both packages are build from the same python sources they have to conflict - Fixed migration services package build * Moving the sed original file over the changed one prior calling sdist invalidates the actual change * Fixed spec template for the activation - Add pre check to extend the activation package - Check no remote repositories - Check filesystem has LUKS encryption The checks are kept in their own files and run on the host, before rebooting. - Update option settings in 'zypper dup' mode. - Respect host kernel boot options for migration. (bsc#1182520) suse-migration-services-2.0.30-1.37.1.noarch.rpm suse-migration-services-2.0.30-1.37.1.src.rpm openSUSE-SLE-15.3-2021-2992 moderate SUSE Updates openSUSE-SLE 15.3 This update for drbd fixes the following issues: - bsc#1188472, update to 9.0.29 * fix data corruption when DRBD's backing disk is a degraded Linux software raid (MD) * add correct thawing of IO requests after IO was frozen due to loss of quorum * fix timeout detection after idle periods and for configs with ko-count when a disk on an a secondary stops delivering IO-completion events * fixed an issue where UUIDs where not shifted in the history slots; that caused false "unrelated data" events * fix switching resync sources by letting resync requests drain before issuing resync requests to the new source; before the fix, it could happen that the resync does not terminate since a late reply from the previous caused a out-of-sync bit set after the "scan point" * fix a temporal deadlock you could trigger when you exercise promotion races and mix some read-only openers into the test case * fix for bitmap-copy operation in a very specific and unlikely case where two nodes do a bitmap-based resync due to disk-states * fix size negotiation when combining nodes of different CPU architectures that have different page sizes * fix a very rare race where DRBD reported wrong magic in a header packet right after reconnecting * fix a case where DRBD ends up reporting unrelated data; it affected thinly allocated resources with a diskless node in a recreate from day0 event * speedup open() of drbd devices if promote has not chance to go through * new option "--reset-bitmap=no" for the invalidate and invalidate-remote commands; this allows to do a resync after online verify found differences * changes to socket buffer sizes get applied to established connections immediately; before it was applied after a re-connect * add exists events for path objects * forbid keyed hash algorithms for online verify, csyms and HMAC base alg * fix a regression introduces with 9.0.25; it failed to determine the right device size and the connection hangs in 'WFBitmapS/WFBitmapT' repl state; to trigger this you need to do a partial resync to a new node with different backing device size * fix an issue with netlink packets processed in parallel on multiple CPUs; the bug caused drbdadm adjust failing in very rare cases * fix a very rare occurrence of a reconciliation resync getting stuck * fix a race condition that causes a detach operation to hang; it is very hard to trigger * fix a kernel OOPS (via a BUG()) upon adding a timer twice under very rare timing * fix a counter imbalance that could lead to assertion messages when a protocol A peer disconnects with a certain timing * fix a rare race with receiving bitmap and a state change while establishing a connection * fix UUID handling to avoid false split-brain detections; this bug got triggered an isolated primary that gets demoted, and temporal network interruptions among the remaining nodes * fix resync decision to obey disk states when the generation UUIDs are equal; the effect of this bug was that you could end up with two Outdated nodes after resync * fix concurrent disk-attach operations * Fix possible kernel warning regarding an inbalance of backing device link/unlink * move some amount of kernel backward compatibility code moved from the old method (drbd_wrappers.h) to new cocci semantic patches * add support renaming resources while its devices might be in use and process IO requests * Allow setting c_max_rate to 0 with the meaning that the resync controller has no upper limit for the resync speed * Fix regression: allow live migration between two diskful peers again drbd-9.0.29~0+git.9a7bc817-3.3.1.src.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.x86_64.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.x86_64.rpm drbd-kmp-preempt-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.x86_64.rpm drbd-kmp-rt-9.0.29~0+git.9a7bc817_k5.3.18_8.13-3.3.1.x86_64.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.s390x.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.s390x.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.ppc64le.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.ppc64le.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.aarch64.rpm drbd-kmp-64kb-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.aarch64.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.aarch64.rpm drbd-kmp-preempt-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3037 moderate SUSE Updates openSUSE-SLE 15.3 This update for PackageKit fixes the following issues: - Fix crash when search string is NULL (bsc#1179287). - Fix hang in packagekit-glib2 client if daemon crashes. PackageKit-1.1.13-4.23.1.src.rpm PackageKit-1.1.13-4.23.1.x86_64.rpm PackageKit-backend-dnf-1.1.13-4.23.1.x86_64.rpm PackageKit-backend-zypp-1.1.13-4.23.1.x86_64.rpm PackageKit-branding-upstream-1.1.13-4.23.1.noarch.rpm PackageKit-devel-1.1.13-4.23.1.x86_64.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.x86_64.rpm PackageKit-gtk3-module-1.1.13-4.23.1.x86_64.rpm PackageKit-lang-1.1.13-4.23.1.noarch.rpm libpackagekit-glib2-18-1.1.13-4.23.1.x86_64.rpm libpackagekit-glib2-18-32bit-1.1.13-4.23.1.x86_64.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.x86_64.rpm libpackagekit-glib2-devel-32bit-1.1.13-4.23.1.x86_64.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.x86_64.rpm PackageKit-1.1.13-4.23.1.s390x.rpm PackageKit-backend-dnf-1.1.13-4.23.1.s390x.rpm PackageKit-backend-zypp-1.1.13-4.23.1.s390x.rpm PackageKit-devel-1.1.13-4.23.1.s390x.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.s390x.rpm PackageKit-gtk3-module-1.1.13-4.23.1.s390x.rpm libpackagekit-glib2-18-1.1.13-4.23.1.s390x.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.s390x.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.s390x.rpm PackageKit-1.1.13-4.23.1.ppc64le.rpm PackageKit-backend-dnf-1.1.13-4.23.1.ppc64le.rpm PackageKit-backend-zypp-1.1.13-4.23.1.ppc64le.rpm PackageKit-devel-1.1.13-4.23.1.ppc64le.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.ppc64le.rpm PackageKit-gtk3-module-1.1.13-4.23.1.ppc64le.rpm libpackagekit-glib2-18-1.1.13-4.23.1.ppc64le.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.ppc64le.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.ppc64le.rpm PackageKit-1.1.13-4.23.1.aarch64.rpm PackageKit-backend-dnf-1.1.13-4.23.1.aarch64.rpm PackageKit-backend-zypp-1.1.13-4.23.1.aarch64.rpm PackageKit-devel-1.1.13-4.23.1.aarch64.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.aarch64.rpm PackageKit-gtk3-module-1.1.13-4.23.1.aarch64.rpm libpackagekit-glib2-18-1.1.13-4.23.1.aarch64.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.aarch64.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.aarch64.rpm openSUSE-SLE-15.3-2021-3001 moderate SUSE Updates openSUSE-SLE 15.3 This update for netcfg fixes the following issues: - add submissions port/protocol to services file for message submission over TLS protocol [bsc#1189683] netcfg-11.6-3.3.1.noarch.rpm netcfg-11.6-3.3.1.src.rpm openSUSE-SLE-15.3-2021-3048 moderate SUSE Updates openSUSE-SLE 15.3 This update for libyui fixes the following issues: - Fixed sometimes patch category could be missing in the Online Update screen (bsc#1174390) - Obsolete older documentation packages in favour of updated ones (bsc#1184363) libyui-4.1.4-3.3.1.src.rpm libyui-bindings-4.1.4-3.3.1.src.rpm libyui-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-4.1.4-3.3.1.src.rpm libyui-ncurses-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-pkg-4.1.4-3.3.1.src.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-rest-api-4.1.4-3.3.1.src.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-tools-4.1.4-3.3.1.x86_64.rpm libyui-ncurses15-4.1.4-3.3.1.x86_64.rpm libyui-qt-4.1.4-3.3.1.src.rpm libyui-qt-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-graph-4.1.4-3.3.1.src.rpm libyui-qt-graph-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-graph15-4.1.4-3.3.1.x86_64.rpm libyui-qt-pkg-4.1.4-3.3.1.src.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-pkg15-4.1.4-3.3.1.x86_64.rpm libyui-qt-rest-api-4.1.4-3.3.1.src.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-rest-api15-4.1.4-3.3.1.x86_64.rpm libyui-qt15-4.1.4-3.3.1.x86_64.rpm libyui-rest-api-4.1.4-3.3.1.src.rpm libyui-rest-api-devel-4.1.4-3.3.1.x86_64.rpm libyui-rest-api15-4.1.4-3.3.1.x86_64.rpm libyui15-4.1.4-3.3.1.x86_64.rpm perl-yui-4.1.4-3.3.1.x86_64.rpm python3-yui-4.1.4-3.3.1.x86_64.rpm ruby-yui-4.1.4-3.3.1.x86_64.rpm libyui-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.s390x.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.s390x.rpm libyui-ncurses-tools-4.1.4-3.3.1.s390x.rpm libyui-ncurses15-4.1.4-3.3.1.s390x.rpm libyui-qt-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-graph-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-graph15-4.1.4-3.3.1.s390x.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-pkg15-4.1.4-3.3.1.s390x.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-rest-api15-4.1.4-3.3.1.s390x.rpm libyui-qt15-4.1.4-3.3.1.s390x.rpm libyui-rest-api-devel-4.1.4-3.3.1.s390x.rpm libyui-rest-api15-4.1.4-3.3.1.s390x.rpm libyui15-4.1.4-3.3.1.s390x.rpm perl-yui-4.1.4-3.3.1.s390x.rpm python3-yui-4.1.4-3.3.1.s390x.rpm ruby-yui-4.1.4-3.3.1.s390x.rpm libyui-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-tools-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses15-4.1.4-3.3.1.ppc64le.rpm libyui-qt-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-graph-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-graph15-4.1.4-3.3.1.ppc64le.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-pkg15-4.1.4-3.3.1.ppc64le.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-rest-api15-4.1.4-3.3.1.ppc64le.rpm libyui-qt15-4.1.4-3.3.1.ppc64le.rpm libyui-rest-api-devel-4.1.4-3.3.1.ppc64le.rpm libyui-rest-api15-4.1.4-3.3.1.ppc64le.rpm libyui15-4.1.4-3.3.1.ppc64le.rpm perl-yui-4.1.4-3.3.1.ppc64le.rpm python3-yui-4.1.4-3.3.1.ppc64le.rpm ruby-yui-4.1.4-3.3.1.ppc64le.rpm libyui-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-tools-4.1.4-3.3.1.aarch64.rpm libyui-ncurses15-4.1.4-3.3.1.aarch64.rpm libyui-qt-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-graph-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-graph15-4.1.4-3.3.1.aarch64.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-pkg15-4.1.4-3.3.1.aarch64.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-rest-api15-4.1.4-3.3.1.aarch64.rpm libyui-qt15-4.1.4-3.3.1.aarch64.rpm libyui-rest-api-devel-4.1.4-3.3.1.aarch64.rpm libyui-rest-api15-4.1.4-3.3.1.aarch64.rpm libyui15-4.1.4-3.3.1.aarch64.rpm perl-yui-4.1.4-3.3.1.aarch64.rpm python3-yui-4.1.4-3.3.1.aarch64.rpm ruby-yui-4.1.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3221 moderate SUSE Updates openSUSE-SLE 15.3 This update for apache2-mod_wsgi fixes the following issue: - Enable installation of Python 'sitelib' wrapper. (bsc#1189467) - This update will solve a 'DistributionNotFound' error providing the Python metadata and wrapper for 'mod_wsgi'. apache2-mod_wsgi-4.5.18-4.3.1.src.rpm apache2-mod_wsgi-4.5.18-4.3.1.x86_64.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.src.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.x86_64.rpm apache2-mod_wsgi-4.5.18-4.3.1.s390x.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.s390x.rpm apache2-mod_wsgi-4.5.18-4.3.1.ppc64le.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.ppc64le.rpm apache2-mod_wsgi-4.5.18-4.3.1.aarch64.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3115 moderate SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nspr fixes the following issues: mozilla-nspr was updated to version 4.32: * implement new socket option PR_SockOpt_DontFrag * support larger DNS records by increasing the default buffer size for DNS queries * Lock access to PRCallOnceType members in PR_CallOnce* for thread safety bmo#1686138 * PR_GetSystemInfo supports a new flag PR_SI_RELEASE_BUILD to get information about the operating system build version. Mozilla NSS was updated to version 3.68: * bmo#1713562 - Fix test leak. * bmo#1717452 - NSS 3.68 should depend on NSPR 4.32. * bmo#1693206 - Implement PKCS8 export of ECDSA keys. * bmo#1712883 - DTLS 1.3 draft-43. * bmo#1655493 - Support SHA2 HW acceleration using Intel SHA Extension. * bmo#1713562 - Validate ECH public names. * bmo#1717610 - Add function to get seconds from epoch from pkix::Time. update to NSS 3.67 * bmo#1683710 - Add a means to disable ALPN. * bmo#1715720 - Fix nssckbi version number in NSS 3.67 (was supposed to be incremented in 3.66). * bmo#1714719 - Set NSS_USE_64 on riscv64 target when using GYP/Ninja. * bmo#1566124 - Fix counter increase in ppc-gcm-wrap.c. * bmo#1566124 - Fix AES_GCM mode on ppc64le for messages of length more than 255-byte. update to NSS 3.66 * bmo#1710716 - Remove Expired Sonera Class2 CA from NSS. * bmo#1710716 - Remove Expired Root Certificates from NSS - QuoVadis Root Certification Authority. * bmo#1708307 - Remove Trustis FPS Root CA from NSS. * bmo#1707097 - Add Certum Trusted Root CA to NSS. * bmo#1707097 - Add Certum EC-384 CA to NSS. * bmo#1703942 - Add ANF Secure Server Root CA to NSS. * bmo#1697071 - Add GLOBALTRUST 2020 root cert to NSS. * bmo#1712184 - NSS tools manpages need to be updated to reflect that sqlite is the default database. * bmo#1712230 - Don't build ppc-gcm.s with clang integrated assembler. * bmo#1712211 - Strict prototype error when trying to compile nss code that includes blapi.h. * bmo#1710773 - NSS needs FIPS 180-3 FIPS indicators. * bmo#1709291 - Add VerifyCodeSigningCertificateChain. update to NSS 3.65 * bmo#1709654 - Update for NetBSD configuration. * bmo#1709750 - Disable HPKE test when fuzzing. * bmo#1566124 - Optimize AES-GCM for ppc64le. * bmo#1699021 - Add AES-256-GCM to HPKE. * bmo#1698419 - ECH -10 updates. * bmo#1692930 - Update HPKE to final version. * bmo#1707130 - NSS should use modern algorithms in PKCS#12 files by default. * bmo#1703936 - New coverity/cpp scanner errors. * bmo#1697303 - NSS needs to update it's csp clearing to FIPS 180-3 standards. * bmo#1702663 - Need to support RSA PSS with Hashing PKCS #11 Mechanisms. * bmo#1705119 - Deadlock when using GCM and non-thread safe tokens. update to NSS 3.64 * bmo#1705286 - Properly detect mips64. * bmo#1687164 - Introduce NSS_DISABLE_CRYPTO_VSX and disable_crypto_vsx. * bmo#1698320 - replace __builtin_cpu_supports("vsx") with ppc_crypto_support() for clang. * bmo#1613235 - Add POWER ChaCha20 stream cipher vector acceleration. Fixed in 3.63 * bmo#1697380 - Make a clang-format run on top of helpful contributions. * bmo#1683520 - ECCKiila P384, change syntax of nested structs initialization to prevent build isses with GCC 4.8. * bmo#1683520 - [lib/freebl/ecl] P-384: allow zero scalars in dual scalar multiplication. * bmo#1683520 - ECCKiila P521, change syntax of nested structs initialization to prevent build isses with GCC 4.8. * bmo#1683520 - [lib/freebl/ecl] P-521: allow zero scalars in dual scalar multiplication. * bmo#1696800 - HACL* update March 2021 - c95ab70fcb2bc21025d8845281bc4bc8987ca683. * bmo#1694214 - tstclnt can't enable middlebox compat mode. * bmo#1694392 - NSS does not work with PKCS #11 modules not supporting profiles. * bmo#1685880 - Minor fix to prevent unused variable on early return. * bmo#1685880 - Fix for the gcc compiler version 7 to support setenv with nss build. * bmo#1693217 - Increase nssckbi.h version number for March 2021 batch of root CA changes, CA list version 2.48. * bmo#1692094 - Set email distrust after to 21-03-01 for Camerfirma's 'Chambers of Commerce' and 'Global Chambersign' roots. * bmo#1618407 - Symantec root certs - Set CKA_NSS_EMAIL_DISTRUST_AFTER. * bmo#1693173 - Add GlobalSign R45, E45, R46, and E46 root certs to NSS. * bmo#1683738 - Add AC RAIZ FNMT-RCM SERVIDORES SEGUROS root cert to NSS. * bmo#1686854 - Remove GeoTrust PCA-G2 and VeriSign Universal root certs from NSS. * bmo#1687822 - Turn off Websites trust bit for the “Staat der Nederlanden Root CA - G3” root cert in NSS. * bmo#1692094 - Turn off Websites Trust Bit for 'Chambers of Commerce Root - 2008' and 'Global Chambersign Root - 2008’. * bmo#1694291 - Tracing fixes for ECH. update to NSS 3.62 * bmo#1688374 - Fix parallel build NSS-3.61 with make * bmo#1682044 - pkix_Build_GatherCerts() + pkix_CacheCert_Add() can corrupt "cachedCertTable" * bmo#1690583 - Fix CH padding extension size calculation * bmo#1690421 - Adjust 3.62 ABI report formatting for new libabigail * bmo#1690421 - Install packaged libabigail in docker-builds image * bmo#1689228 - Minor ECH -09 fixes for interop testing, fuzzing * bmo#1674819 - Fixup a51fae403328, enum type may be signed * bmo#1681585 - Add ECH support to selfserv * bmo#1681585 - Update ECH to Draft-09 * bmo#1678398 - Add Export/Import functions for HPKE context * bmo#1678398 - Update HPKE to draft-07 update to NSS 3.61 * bmo#1682071 - Fix issue with IKE Quick mode deriving incorrect key values under certain conditions. * bmo#1684300 - Fix default PBE iteration count when NSS is compiled with NSS_DISABLE_DBM. * bmo#1651411 - Improve constant-timeness in RSA operations. * bmo#1677207 - Upgrade Google Test version to latest release. * bmo#1654332 - Add aarch64-make target to nss-try. Update to NSS 3.60.1: Notable changes in NSS 3.60: * TLS 1.3 Encrypted Client Hello (draft-ietf-tls-esni-08) support has been added, replacing the previous ESNI (draft-ietf-tls-esni-01) implementation. See bmo#1654332 for more information. * December 2020 batch of Root CA changes, builtins library updated to version 2.46. See bmo#1678189, bmo#1678166, and bmo#1670769 for more information. Update to NSS 3.59.1: * bmo#1679290 - Fix potential deadlock with certain third-party PKCS11 modules Update to NSS 3.59: Notable changes: * Exported two existing functions from libnss: CERT_AddCertToListHeadWithData and CERT_AddCertToListTailWithData Bugfixes * bmo#1607449 - Lock cert->nssCertificate to prevent a potential data race * bmo#1672823 - Add Wycheproof test cases for HMAC, HKDF, and DSA * bmo#1663661 - Guard against NULL token in nssSlot_IsTokenPresent * bmo#1670835 - Support enabling and disabling signatures via Crypto Policy * bmo#1672291 - Resolve libpkix OCSP failures on SHA1 self-signed root certs when SHA1 signatures are disabled. * bmo#1644209 - Fix broken SelectedCipherSuiteReplacer filter to solve some test intermittents * bmo#1672703 - Tolerate the first CCS in TLS 1.3 to fix a regression in our CVE-2020-25648 fix that broke purple-discord (boo#1179382) * bmo#1666891 - Support key wrap/unwrap with RSA-OAEP * bmo#1667989 - Fix gyp linking on Solaris * bmo#1668123 - Export CERT_AddCertToListHeadWithData and CERT_AddCertToListTailWithData from libnss * bmo#1634584 - Set CKA_NSS_SERVER_DISTRUST_AFTER for Trustis FPS Root CA * bmo#1663091 - Remove unnecessary assertions in the streaming ASN.1 decoder that affected decoding certain PKCS8 private keys when using NSS debug builds * bmo#670839 - Use ARM crypto extension for AES, SHA1 and SHA2 on MacOS. update to NSS 3.58 Bugs fixed: * bmo#1641480 (CVE-2020-25648) Tighten CCS handling for middlebox compatibility mode. * bmo#1631890 - Add support for Hybrid Public Key Encryption (draft-irtf-cfrg-hpke) support for TLS Encrypted Client Hello (draft-ietf-tls-esni). * bmo#1657255 - Add CI tests that disable SHA1/SHA2 ARM crypto extensions. * bmo#1668328 - Handle spaces in the Python path name when using gyp on Windows. * bmo#1667153 - Add PK11_ImportDataKey for data object import. * bmo#1665715 - Pass the embedded SCT list extension (if present) to TrustDomain::CheckRevocation instead of the notBefore value. update to NSS 3.57 * The following CA certificates were Added: bmo#1663049 - CN=Trustwave Global Certification Authority SHA-256 Fingerprint: 97552015F5DDFC3C8788C006944555408894450084F100867086BC1A2BB58DC8 bmo#1663049 - CN=Trustwave Global ECC P256 Certification Authority SHA-256 Fingerprint: 945BBC825EA554F489D1FD51A73DDF2EA624AC7019A05205225C22A78CCFA8B4 bmo#1663049 - CN=Trustwave Global ECC P384 Certification Authority SHA-256 Fingerprint: 55903859C8C0C3EBB8759ECE4E2557225FF5758BBD38EBD48276601E1BD58097 * The following CA certificates were Removed: bmo#1651211 - CN=EE Certification Centre Root CA SHA-256 Fingerprint: 3E84BA4342908516E77573C0992F0979CA084E4685681FF195CCBA8A229B8A76 bmo#1656077 - O=Government Root Certification Authority; C=TW SHA-256 Fingerprint: 7600295EEFE85B9E1FD624DB76062AAAAE59818A54D2774CD4C0B2C01131E1B3 * Trust settings for the following CA certificates were Modified: bmo#1653092 - CN=OISTE WISeKey Global Root GA CA Websites (server authentication) trust bit removed. * https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.57_release_notes update to NSS 3.56 Notable changes * bmo#1650702 - Support SHA-1 HW acceleration on ARMv8 * bmo#1656981 - Use MPI comba and mulq optimizations on x86-64 MacOS. * bmo#1654142 - Add CPU feature detection for Intel SHA extension. * bmo#1648822 - Add stricter validation of DH keys in FIPS mode. * bmo#1656986 - Properly detect arm64 during GYP build architecture detection. * bmo#1652729 - Add build flag to disable RC2 and relocate to lib/freebl/deprecated. * bmo#1656429 - Correct RTT estimate used in 0-RTT anti-replay. * bmo#1588941 - Send empty certificate message when scheme selection fails. * bmo#1652032 - Fix failure to build in Windows arm64 makefile cross-compilation. * bmo#1625791 - Fix deadlock issue in nssSlot_IsTokenPresent. * bmo#1653975 - Fix 3.53 regression by setting "all" as the default makefile target. * bmo#1659792 - Fix broken libpkix tests with unexpired PayPal cert. * bmo#1659814 - Fix interop.sh failures with newer tls-interop commit and dependencies. * bmo#1656519 - NSPR dependency updated to 4.28 update to NSS 3.55 Notable changes * P384 and P521 elliptic curve implementations are replaced with verifiable implementations from Fiat-Crypto [0] and ECCKiila [1]. * PK11_FindCertInSlot is added. With this function, a given slot can be queried with a DER-Encoded certificate, providing performance and usability improvements over other mechanisms. (bmo#1649633) * DTLS 1.3 implementation is updated to draft-38. (bmo#1647752) Relevant Bugfixes * bmo#1631583 (CVE-2020-6829, CVE-2020-12400) - Replace P384 and P521 with new, verifiable implementations from Fiat-Crypto and ECCKiila. * bmo#1649487 - Move overzealous assertion in VFY_EndWithSignature. * bmo#1631573 (CVE-2020-12401) - Remove unnecessary scalar padding. * bmo#1636771 (CVE-2020-12403) - Explicitly disable multi-part ChaCha20 (which was not functioning correctly) and more strictly enforce tag length. * bmo#1649648 - Don't memcpy zero bytes (sanitizer fix). * bmo#1649316 - Don't memcpy zero bytes (sanitizer fix). * bmo#1649322 - Don't memcpy zero bytes (sanitizer fix). * bmo#1653202 - Fix initialization bug in blapitest when compiled with NSS_DISABLE_DEPRECATED_SEED. * bmo#1646594 - Fix AVX2 detection in makefile builds. * bmo#1649633 - Add PK11_FindCertInSlot to search a given slot for a DER-encoded certificate. * bmo#1651520 - Fix slotLock race in NSC_GetTokenInfo. * bmo#1647752 - Update DTLS 1.3 implementation to draft-38. * bmo#1649190 - Run cipher, sdr, and ocsp tests under standard test cycle in CI. * bmo#1649226 - Add Wycheproof ECDSA tests. * bmo#1637222 - Consistently enforce IV requirements for DES and 3DES. * bmo#1067214 - Enforce minimum PKCS#1 v1.5 padding length in RSA_CheckSignRecover. * bmo#1646324 - Advertise PKCS#1 schemes for certificates in the signature_algorithms extension. update to NSS 3.54 Notable changes * Support for TLS 1.3 external pre-shared keys (bmo#1603042). * Use ARM Cryptography Extension for SHA256, when available (bmo#1528113) * The following CA certificates were Added: bmo#1645186 - certSIGN Root CA G2. bmo#1645174 - e-Szigno Root CA 2017. bmo#1641716 - Microsoft ECC Root Certificate Authority 2017. bmo#1641716 - Microsoft RSA Root Certificate Authority 2017. * The following CA certificates were Removed: bmo#1645199 - AddTrust Class 1 CA Root. bmo#1645199 - AddTrust External CA Root. bmo#1641718 - LuxTrust Global Root 2. bmo#1639987 - Staat der Nederlanden Root CA - G2. bmo#1618402 - Symantec Class 2 Public Primary Certification Authority - G4. bmo#1618402 - Symantec Class 1 Public Primary Certification Authority - G4. bmo#1618402 - VeriSign Class 3 Public Primary Certification Authority - G3. * A number of certificates had their Email trust bit disabled. See bmo#1618402 for a complete list. Bugs fixed * bmo#1528113 - Use ARM Cryptography Extension for SHA256. * bmo#1603042 - Add TLS 1.3 external PSK support. * bmo#1642802 - Add uint128 support for HACL* curve25519 on Windows. * bmo#1645186 - Add "certSIGN Root CA G2" root certificate. * bmo#1645174 - Add Microsec's "e-Szigno Root CA 2017" root certificate. * bmo#1641716 - Add Microsoft's non-EV root certificates. * bmo1621151 - Disable email trust bit for "O=Government Root Certification Authority; C=TW" root. * bmo#1645199 - Remove AddTrust root certificates. * bmo#1641718 - Remove "LuxTrust Global Root 2" root certificate. * bmo#1639987 - Remove "Staat der Nederlanden Root CA - G2" root certificate. * bmo#1618402 - Remove Symantec root certificates and disable email trust bit. * bmo#1640516 - NSS 3.54 should depend on NSPR 4.26. * bmo#1642146 - Fix undefined reference to `PORT_ZAlloc_stub' in seed.c. * bmo#1642153 - Fix infinite recursion building NSS. * bmo#1642638 - Fix fuzzing assertion crash. * bmo#1642871 - Enable SSL_SendSessionTicket after resumption. * bmo#1643123 - Support SSL_ExportEarlyKeyingMaterial with External PSKs. * bmo#1643557 - Fix numerous compile warnings in NSS. * bmo#1644774 - SSL gtests to use ClearServerCache when resetting self-encrypt keys. * bmo#1645479 - Don't use SECITEM_MakeItem in secutil.c. * bmo#1646520 - Stricter enforcement of ASN.1 INTEGER encoding. libfreebl3-3.68-3.56.1.x86_64.rpm libfreebl3-32bit-3.68-3.56.1.x86_64.rpm libfreebl3-hmac-3.68-3.56.1.x86_64.rpm libfreebl3-hmac-32bit-3.68-3.56.1.x86_64.rpm libsoftokn3-3.68-3.56.1.x86_64.rpm libsoftokn3-32bit-3.68-3.56.1.x86_64.rpm libsoftokn3-hmac-3.68-3.56.1.x86_64.rpm libsoftokn3-hmac-32bit-3.68-3.56.1.x86_64.rpm mozilla-nspr-32bit-4.32-3.20.1.x86_64.rpm mozilla-nspr-4.32-3.20.1.src.rpm mozilla-nspr-4.32-3.20.1.x86_64.rpm mozilla-nspr-devel-4.32-3.20.1.x86_64.rpm mozilla-nss-3.68-3.56.1.src.rpm mozilla-nss-3.68-3.56.1.x86_64.rpm mozilla-nss-32bit-3.68-3.56.1.x86_64.rpm mozilla-nss-certs-3.68-3.56.1.x86_64.rpm mozilla-nss-certs-32bit-3.68-3.56.1.x86_64.rpm mozilla-nss-devel-3.68-3.56.1.x86_64.rpm mozilla-nss-sysinit-3.68-3.56.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.68-3.56.1.x86_64.rpm mozilla-nss-tools-3.68-3.56.1.x86_64.rpm libfreebl3-3.68-3.56.1.s390x.rpm libfreebl3-hmac-3.68-3.56.1.s390x.rpm libsoftokn3-3.68-3.56.1.s390x.rpm libsoftokn3-hmac-3.68-3.56.1.s390x.rpm mozilla-nspr-4.32-3.20.1.s390x.rpm mozilla-nspr-devel-4.32-3.20.1.s390x.rpm mozilla-nss-3.68-3.56.1.s390x.rpm mozilla-nss-certs-3.68-3.56.1.s390x.rpm mozilla-nss-devel-3.68-3.56.1.s390x.rpm mozilla-nss-sysinit-3.68-3.56.1.s390x.rpm mozilla-nss-tools-3.68-3.56.1.s390x.rpm libfreebl3-3.68-3.56.1.ppc64le.rpm libfreebl3-hmac-3.68-3.56.1.ppc64le.rpm libsoftokn3-3.68-3.56.1.ppc64le.rpm libsoftokn3-hmac-3.68-3.56.1.ppc64le.rpm mozilla-nspr-4.32-3.20.1.ppc64le.rpm mozilla-nspr-devel-4.32-3.20.1.ppc64le.rpm mozilla-nss-3.68-3.56.1.ppc64le.rpm mozilla-nss-certs-3.68-3.56.1.ppc64le.rpm mozilla-nss-devel-3.68-3.56.1.ppc64le.rpm mozilla-nss-sysinit-3.68-3.56.1.ppc64le.rpm mozilla-nss-tools-3.68-3.56.1.ppc64le.rpm libfreebl3-3.68-3.56.1.aarch64.rpm libfreebl3-hmac-3.68-3.56.1.aarch64.rpm libsoftokn3-3.68-3.56.1.aarch64.rpm libsoftokn3-hmac-3.68-3.56.1.aarch64.rpm mozilla-nspr-4.32-3.20.1.aarch64.rpm mozilla-nspr-devel-4.32-3.20.1.aarch64.rpm mozilla-nss-3.68-3.56.1.aarch64.rpm mozilla-nss-certs-3.68-3.56.1.aarch64.rpm mozilla-nss-devel-3.68-3.56.1.aarch64.rpm mozilla-nss-sysinit-3.68-3.56.1.aarch64.rpm mozilla-nss-tools-3.68-3.56.1.aarch64.rpm openSUSE-SLE-15.3-2021-3494 moderate SUSE Updates openSUSE-SLE 15.3 This update for pam fixes the following issues: - Added pam_faillock to the set of available PAM modules. (jsc#SLE-20638) - Added new file macros.pam on request of systemd. (bsc#1190052) pam-1.3.0-6.47.1.src.rpm pam-1.3.0-6.47.1.x86_64.rpm pam-32bit-1.3.0-6.47.1.x86_64.rpm pam-devel-1.3.0-6.47.1.x86_64.rpm pam-devel-32bit-1.3.0-6.47.1.x86_64.rpm pam-doc-1.3.0-6.47.1.noarch.rpm pam-extra-1.3.0-6.47.1.x86_64.rpm pam-extra-32bit-1.3.0-6.47.1.x86_64.rpm pam-1.3.0-6.47.1.s390x.rpm pam-devel-1.3.0-6.47.1.s390x.rpm pam-extra-1.3.0-6.47.1.s390x.rpm pam-1.3.0-6.47.1.ppc64le.rpm pam-devel-1.3.0-6.47.1.ppc64le.rpm pam-extra-1.3.0-6.47.1.ppc64le.rpm pam-1.3.0-6.47.1.aarch64.rpm pam-devel-1.3.0-6.47.1.aarch64.rpm pam-extra-1.3.0-6.47.1.aarch64.rpm openSUSE-SLE-15.3-2021-2905 important SUSE Updates openSUSE-SLE 15.3 This update for corosync fixes the following issue: - Add 'cancel_hold_on_retransmit' config option on corosync totem (bsc#1189680) - This option allows Corosync to hold the token by representative when there are too many retransmit messages. This allows the network to process increased load without overloading it. The used mechanism is same as described for the hold directive. Some deployments may prefer to never hold token when there is retransmit messages. If so, the option should be set to yes. The default value is no. corosync-2.4.5-12.3.1.src.rpm corosync-2.4.5-12.3.1.x86_64.rpm corosync-qdevice-2.4.5-12.3.1.x86_64.rpm corosync-qnetd-2.4.5-12.3.1.x86_64.rpm corosync-testagents-2.4.5-12.3.1.x86_64.rpm libcfg6-2.4.5-12.3.1.x86_64.rpm libcfg6-32bit-2.4.5-12.3.1.x86_64.rpm libcmap4-2.4.5-12.3.1.x86_64.rpm libcmap4-32bit-2.4.5-12.3.1.x86_64.rpm libcorosync-devel-2.4.5-12.3.1.x86_64.rpm libcorosync_common4-2.4.5-12.3.1.x86_64.rpm libcorosync_common4-32bit-2.4.5-12.3.1.x86_64.rpm libcpg4-2.4.5-12.3.1.x86_64.rpm libcpg4-32bit-2.4.5-12.3.1.x86_64.rpm libquorum5-2.4.5-12.3.1.x86_64.rpm libquorum5-32bit-2.4.5-12.3.1.x86_64.rpm libsam4-2.4.5-12.3.1.x86_64.rpm libsam4-32bit-2.4.5-12.3.1.x86_64.rpm libtotem_pg5-2.4.5-12.3.1.x86_64.rpm libtotem_pg5-32bit-2.4.5-12.3.1.x86_64.rpm libvotequorum8-2.4.5-12.3.1.x86_64.rpm libvotequorum8-32bit-2.4.5-12.3.1.x86_64.rpm corosync-2.4.5-12.3.1.s390x.rpm corosync-qdevice-2.4.5-12.3.1.s390x.rpm corosync-qnetd-2.4.5-12.3.1.s390x.rpm corosync-testagents-2.4.5-12.3.1.s390x.rpm libcfg6-2.4.5-12.3.1.s390x.rpm libcmap4-2.4.5-12.3.1.s390x.rpm libcorosync-devel-2.4.5-12.3.1.s390x.rpm libcorosync_common4-2.4.5-12.3.1.s390x.rpm libcpg4-2.4.5-12.3.1.s390x.rpm libquorum5-2.4.5-12.3.1.s390x.rpm libsam4-2.4.5-12.3.1.s390x.rpm libtotem_pg5-2.4.5-12.3.1.s390x.rpm libvotequorum8-2.4.5-12.3.1.s390x.rpm corosync-2.4.5-12.3.1.ppc64le.rpm corosync-qdevice-2.4.5-12.3.1.ppc64le.rpm corosync-qnetd-2.4.5-12.3.1.ppc64le.rpm corosync-testagents-2.4.5-12.3.1.ppc64le.rpm libcfg6-2.4.5-12.3.1.ppc64le.rpm libcmap4-2.4.5-12.3.1.ppc64le.rpm libcorosync-devel-2.4.5-12.3.1.ppc64le.rpm libcorosync_common4-2.4.5-12.3.1.ppc64le.rpm libcpg4-2.4.5-12.3.1.ppc64le.rpm libquorum5-2.4.5-12.3.1.ppc64le.rpm libsam4-2.4.5-12.3.1.ppc64le.rpm libtotem_pg5-2.4.5-12.3.1.ppc64le.rpm libvotequorum8-2.4.5-12.3.1.ppc64le.rpm corosync-2.4.5-12.3.1.aarch64.rpm corosync-qdevice-2.4.5-12.3.1.aarch64.rpm corosync-qnetd-2.4.5-12.3.1.aarch64.rpm corosync-testagents-2.4.5-12.3.1.aarch64.rpm libcfg6-2.4.5-12.3.1.aarch64.rpm libcmap4-2.4.5-12.3.1.aarch64.rpm libcorosync-devel-2.4.5-12.3.1.aarch64.rpm libcorosync_common4-2.4.5-12.3.1.aarch64.rpm libcpg4-2.4.5-12.3.1.aarch64.rpm libquorum5-2.4.5-12.3.1.aarch64.rpm libsam4-2.4.5-12.3.1.aarch64.rpm libtotem_pg5-2.4.5-12.3.1.aarch64.rpm libvotequorum8-2.4.5-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3183 low SUSE Updates openSUSE-SLE 15.3 This update for lsvpd fixes the following issues: - Drop upstreamed patches that are already fixed in the sources itself. lsvpd-1.7.12-3.12.1.ppc64le.rpm lsvpd-1.7.12-3.12.1.src.rpm openSUSE-SLE-15.3-2021-3331 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: This update contains the Firefox Extended Support Release 91.2.0 ESR. Firefox Extended Support Release 91.2.0 ESR * Fixed: Various stability, functionality, and security fixes MFSA 2021-45 (bsc#1191332) * CVE-2021-38496: Use-after-free in MessageTask * CVE-2021-38497: Validation message could have been overlaid on another origin * CVE-2021-38498: Use-after-free of nsLanguageAtomService object * CVE-2021-32810: Data race in crossbeam-deque https://github.com/crossbeam-rs/crossbeam/security/advisories/GHSA-pqqp-xmhj-wgcw) * CVE-2021-38500 (bmo#1725854, bmo#1728321) Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 * CVE-2021-38501 (bmo#1685354, bmo#1715755, bmo#1723176) Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 - Fixed crash in FIPS mode (bsc#1190710) * Fixed: Various stability, functionality, and security fixes MFSA 2021-40 (bsc#1190269, bsc#1190274): * CVE-2021-38492: Navigating to `mk:` URL scheme could load Internet Explorer * CVE-2021-38495: Memory safety bugs fixed in Firefox 92 and Firefox ESR 91.1 Firefox Extended Support Release 91.0.1 ESR * Fixed: Fixed an issue causing buttons on the tab bar to be resized when loading certain websites (bug 1704404) * Fixed: Fixed an issue which caused tabs from private windows to be visible in non-private windows when viewing switch-to- tab results in the address bar panel (bug 1720369) * Fixed: Various stability fixes * Fixed: Security fix MFSA 2021-37 (bsc#1189547) * CVE-2021-29991 (bmo#1724896) Header Splitting possible with HTTP/3 Responses Firefox Extended Support Release 91.0 ESR * New: Some of the highlights of the new Extended Support Release are: - A number of user interface changes. For more information, see the Firefox 89 release notes. - Firefox now supports logging into Microsoft, work, and school accounts using Windows single sign-on. Learn more - On Windows, updates can now be applied in the background while Firefox is not running. - Firefox for Windows now offers a new page about:third-party to help identify compatibility issues caused by third-party applications - Version 2 of Firefox's SmartBlock feature further improves private browsing. Third party Facebook scripts are blocked to prevent you from being tracked, but are now automatically loaded "just in time" if you decide to "Log in with Facebook" on any website. - Enhanced the privacy of the Firefox Browser's Private Browsing mode with Total Cookie Protection, which confines cookies to the site where they were created, preventing companis from using cookies to track your browsing across sites. This feature was originally launched in Firefox's ETP Strict mode. - PDF forms now support JavaScript embedded in PDF files. Some PDF forms use JavaScript for validation and other interactive features. - You'll encounter less website breakage in Private Browsing and Strict Enhanced Tracking Protection with SmartBlock, which provides stand-in scripts so that websites load properly. - Improved Print functionality with a cleaner design and better integration with your computer's printer settings. - Firefox now protects you from supercookies, a type of tracker that can stay hidden in your browser and track you online, even after you clear cookies. By isolating supercookies, Firefox prevents them from tracking your web browsing from one site to the next. - Firefox now remembers your preferred location for saved bookmarks, displays the bookmarks toolbar by default on new tabs, and gives you easy access to all of your bookmarks via a toolbar folder. - Native support for macOS devices built with Apple Silicon CPUs brings dramatic performance improvements over the non- native build that was shipped in Firefox 83: Firefox launches over 2.5 times faster and web apps are now twice as responsive (per the SpeedoMeter 2.0 test). If you are on a new Apple device, follow these steps to upgrade to the latest Firefox. - Pinch zooming will now be supported for our users with Windows touchscreen devices and touchpads on Mac devices. Firefox users may now use pinch to zoom on touch-capable devices to zoom in and out of webpages. - We’ve improved functionality and design for a number of Firefox search features: * Selecting a search engine at the bottom of the search panel now enters search mode for that engine, allowing you to see suggestions (if available) for your search terms. The old behavior (immediately performing a search) is available with a shift-click. * When Firefox autocompletes the URL of one of your search engines, you can now search with that engine directly in the address bar by selecting the shortcut in the address bar results. * We’ve added buttons at the bottom of the search panel to allow you to search your bookmarks, open tabs, and history. - Firefox supports AcroForm, which will allow you to fill in, print, and save supported PDF forms and the PDF viewer also has a new fresh look. - For our users in the US and Canada, Firefox can now save, manage, and auto-fill credit card information for you, making shopping on Firefox ever more convenient. - In addition to our default, dark and light themes, with this release, Firefox introduces the Alpenglow theme: a colorful appearance for buttons, menus, and windows. You can update your Firefox themes under settings or preferences. * Changed: Firefox no longer supports Adobe Flash. There is no setting available to re-enable Flash support. * Enterprise: Various bug fixes and new policies have been implemented in the latest version of Firefox. See more details in the Firefox for Enterprise 91 Release Notes. MFSA 2021-33 (bsc#1188891): * CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption * CVE-2021-29981: Live range splitting could have led to conflicting assignments in the JIT * CVE-2021-29988: Memory corruption as a result of incorrect style treatment * CVE-2021-29983: Firefox for Android could get stuck in fullscreen mode * CVE-2021-29984: Incorrect instruction reordering during JIT optimization * CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption * CVE-2021-29987: Users could have been tricked into accepting unwanted permissions on Linux * CVE-2021-29985: Use-after-free media channels * CVE-2021-29982: Single bit data leak due to incorrect JIT optimization and type confusion * CVE-2021-29989: Memory safety bugs fixed in Firefox 91 and Firefox ESR 78.13 * CVE-2021-29990: Memory safety bugs fixed in Firefox 91 rust-cbindgen-0.19.0-1.9.1.src.rpm rust-cbindgen-0.19.0-1.9.1.x86_64.rpm rust-cbindgen-0.19.0-1.9.1.s390x.rpm rust-cbindgen-0.19.0-1.9.1.ppc64le.rpm rust-cbindgen-0.19.0-1.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2907 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Fixed an issue when SAP Instance fails to detect SAP unit files for 'systemd'. (bsc#1189535) ldirectord-4.8.0+git30.d0077df0-8.11.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.11.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.11.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.11.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.11.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2872 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2020-36193: Fixed Archive_Tar directory traversal due to inadequate checking of symbolic links (bsc#1189591). php7-7.2.5-4.82.1.src.rpm php7-wddx-7.2.5-4.82.1.x86_64.rpm php7-wddx-7.2.5-4.82.1.s390x.rpm php7-wddx-7.2.5-4.82.1.ppc64le.rpm php7-wddx-7.2.5-4.82.1.aarch64.rpm openSUSE-SLE-15.3-2021-3018 important SUSE Updates openSUSE-SLE 15.3 This update for php7-pear fixes the following issues: - CVE-2020-36193: Fixed Archive_Tar directory traversal due to inadequate checking of symbolic links (bsc#1189591). php7-pear-1.10.21-3.6.1.noarch.rpm php7-pear-1.10.21-3.6.1.src.rpm php7-pecl-1.10.21-3.6.1.noarch.rpm openSUSE-SLE-15.3-2021-3127 moderate SUSE Updates openSUSE-SLE 15.3 This update for gimp fixes the following issues: - Recurse directories when looking for python plugins (bsc#1180362) gimp-2.10.12-3.6.2.src.rpm gimp-plugins-python-2.10.12-3.6.2.x86_64.rpm gimp-plugins-python-2.10.12-3.6.2.s390x.rpm gimp-plugins-python-2.10.12-3.6.2.ppc64le.rpm gimp-plugins-python-2.10.12-3.6.2.aarch64.rpm openSUSE-SLE-15.3-2021-2974 important SUSE Updates openSUSE-SLE 15.3 This update for librdkafka fixes the following issue: - Fixed thread creation on SUSE Linux Enterprise Server 15 SP3. (bsc#1189792) librdkafka-0.11.6-1.6.1.src.rpm librdkafka-devel-0.11.6-1.6.1.x86_64.rpm librdkafka1-0.11.6-1.6.1.x86_64.rpm librdkafka-devel-0.11.6-1.6.1.s390x.rpm librdkafka1-0.11.6-1.6.1.s390x.rpm librdkafka-devel-0.11.6-1.6.1.ppc64le.rpm librdkafka1-0.11.6-1.6.1.ppc64le.rpm librdkafka-devel-0.11.6-1.6.1.aarch64.rpm librdkafka1-0.11.6-1.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2897 moderate SUSE Updates openSUSE-SLE 15.3 This update for postfix fixes the following issues: - Include "submissions" service in master configuration (bsc#1189684) postfix-3.5.9-5.6.1.src.rpm postfix-3.5.9-5.6.1.x86_64.rpm postfix-bdb-3.5.9-5.6.1.src.rpm postfix-bdb-3.5.9-5.6.1.x86_64.rpm postfix-bdb-lmdb-3.5.9-5.6.1.x86_64.rpm postfix-devel-3.5.9-5.6.1.x86_64.rpm postfix-doc-3.5.9-5.6.1.noarch.rpm postfix-ldap-3.5.9-5.6.1.x86_64.rpm postfix-mysql-3.5.9-5.6.1.x86_64.rpm postfix-postgresql-3.5.9-5.6.1.x86_64.rpm postfix-3.5.9-5.6.1.s390x.rpm postfix-bdb-3.5.9-5.6.1.s390x.rpm postfix-bdb-lmdb-3.5.9-5.6.1.s390x.rpm postfix-devel-3.5.9-5.6.1.s390x.rpm postfix-ldap-3.5.9-5.6.1.s390x.rpm postfix-mysql-3.5.9-5.6.1.s390x.rpm postfix-postgresql-3.5.9-5.6.1.s390x.rpm postfix-3.5.9-5.6.1.ppc64le.rpm postfix-bdb-3.5.9-5.6.1.ppc64le.rpm postfix-bdb-lmdb-3.5.9-5.6.1.ppc64le.rpm postfix-devel-3.5.9-5.6.1.ppc64le.rpm postfix-ldap-3.5.9-5.6.1.ppc64le.rpm postfix-mysql-3.5.9-5.6.1.ppc64le.rpm postfix-postgresql-3.5.9-5.6.1.ppc64le.rpm postfix-3.5.9-5.6.1.aarch64.rpm postfix-bdb-3.5.9-5.6.1.aarch64.rpm postfix-bdb-lmdb-3.5.9-5.6.1.aarch64.rpm postfix-devel-3.5.9-5.6.1.aarch64.rpm postfix-ldap-3.5.9-5.6.1.aarch64.rpm postfix-mysql-3.5.9-5.6.1.aarch64.rpm postfix-postgresql-3.5.9-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3454 moderate SUSE Updates openSUSE-SLE 15.3 This update for krb5 fixes the following issues: - CVE-2021-37750: Fixed KDC null pointer dereference via a FAST inner body that lacks a server field (bsc#1189929). krb5-1.16.3-3.24.1.src.rpm krb5-1.16.3-3.24.1.x86_64.rpm krb5-32bit-1.16.3-3.24.1.x86_64.rpm krb5-client-1.16.3-3.24.1.x86_64.rpm krb5-devel-1.16.3-3.24.1.x86_64.rpm krb5-devel-32bit-1.16.3-3.24.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-3.24.1.x86_64.rpm krb5-plugin-preauth-otp-1.16.3-3.24.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.16.3-3.24.1.x86_64.rpm krb5-server-1.16.3-3.24.1.x86_64.rpm krb5-1.16.3-3.24.1.s390x.rpm krb5-client-1.16.3-3.24.1.s390x.rpm krb5-devel-1.16.3-3.24.1.s390x.rpm krb5-plugin-kdb-ldap-1.16.3-3.24.1.s390x.rpm krb5-plugin-preauth-otp-1.16.3-3.24.1.s390x.rpm krb5-plugin-preauth-pkinit-1.16.3-3.24.1.s390x.rpm krb5-server-1.16.3-3.24.1.s390x.rpm krb5-1.16.3-3.24.1.ppc64le.rpm krb5-client-1.16.3-3.24.1.ppc64le.rpm krb5-devel-1.16.3-3.24.1.ppc64le.rpm krb5-plugin-kdb-ldap-1.16.3-3.24.1.ppc64le.rpm krb5-plugin-preauth-otp-1.16.3-3.24.1.ppc64le.rpm krb5-plugin-preauth-pkinit-1.16.3-3.24.1.ppc64le.rpm krb5-server-1.16.3-3.24.1.ppc64le.rpm krb5-1.16.3-3.24.1.aarch64.rpm krb5-client-1.16.3-3.24.1.aarch64.rpm krb5-devel-1.16.3-3.24.1.aarch64.rpm krb5-plugin-kdb-ldap-1.16.3-3.24.1.aarch64.rpm krb5-plugin-preauth-otp-1.16.3-3.24.1.aarch64.rpm krb5-plugin-preauth-pkinit-1.16.3-3.24.1.aarch64.rpm krb5-server-1.16.3-3.24.1.aarch64.rpm openSUSE-SLE-15.3-2021-3325 moderate SUSE Updates openSUSE-SLE 15.3 This update for rabbitmq-server fixes the following issues: - CVE-2021-32718: Fixed improper neutralization of script-related HTML tags in a web page (basic XSS) in management UI (bsc#1187818). - CVE-2021-32719: Fixed improper neutralization of script-related HTML tags in a web page (basic XSS) in federation management plugin (bsc#1187819). - CVE-2021-22116: Fixed improper input validation may lead to DoS (bsc#1186203). - Use /run instead of /var/run in tmpfiles.d configuration (bsc#1185075). erlang-rabbitmq-client-3.8.11-3.3.3.x86_64.rpm rabbitmq-server-3.8.11-3.3.3.src.rpm rabbitmq-server-3.8.11-3.3.3.x86_64.rpm rabbitmq-server-plugins-3.8.11-3.3.3.x86_64.rpm erlang-rabbitmq-client-3.8.11-3.3.3.s390x.rpm rabbitmq-server-3.8.11-3.3.3.s390x.rpm rabbitmq-server-plugins-3.8.11-3.3.3.s390x.rpm erlang-rabbitmq-client-3.8.11-3.3.3.ppc64le.rpm rabbitmq-server-3.8.11-3.3.3.ppc64le.rpm rabbitmq-server-plugins-3.8.11-3.3.3.ppc64le.rpm erlang-rabbitmq-client-3.8.11-3.3.3.aarch64.rpm rabbitmq-server-3.8.11-3.3.3.aarch64.rpm rabbitmq-server-plugins-3.8.11-3.3.3.aarch64.rpm openSUSE-SLE-15.3-2021-3052 moderate SUSE Updates openSUSE-SLE 15.3 This update for lshw fixes the following issues: - Update to version B.02.19.2+git.20210619 (jsc#SLE-19399) lshw-B.02.19.2+git.20210619-3.9.1.src.rpm lshw-B.02.19.2+git.20210619-3.9.1.x86_64.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.x86_64.rpm lshw-lang-B.02.19.2+git.20210619-3.9.1.noarch.rpm lshw-B.02.19.2+git.20210619-3.9.1.s390x.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.s390x.rpm lshw-B.02.19.2+git.20210619-3.9.1.ppc64le.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.ppc64le.rpm lshw-B.02.19.2+git.20210619-3.9.1.aarch64.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3161 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Fix wrong relative paths resolution with Jinja renderer when importing subdirectories - Don't pass 'shell="/sbin/nologin"' to 'onlyif/unless' checks (bsc#1188259) - Add missing 'aarch64' to rpm package architectures - Fix failing tests for 'CMDRunRedirect' - Fix failing unit test for systemd - Fix error handling in openscap module (bsc#1188647) - Better handling of bad public keys from minions (bsc#1189040) - Add standalone formulas configuration for salt minion and remove salt-master requirement (bsc#1168327) python3-salt-3002.2-50.1.12.1.x86_64.rpm True salt-3002.2-50.1.12.1.src.rpm True salt-3002.2-50.1.12.1.x86_64.rpm True salt-api-3002.2-50.1.12.1.x86_64.rpm True salt-bash-completion-3002.2-50.1.12.1.noarch.rpm True salt-cloud-3002.2-50.1.12.1.x86_64.rpm True salt-doc-3002.2-50.1.12.1.x86_64.rpm True salt-fish-completion-3002.2-50.1.12.1.noarch.rpm True salt-master-3002.2-50.1.12.1.x86_64.rpm True salt-minion-3002.2-50.1.12.1.x86_64.rpm True salt-proxy-3002.2-50.1.12.1.x86_64.rpm True salt-ssh-3002.2-50.1.12.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.x86_64.rpm True salt-syndic-3002.2-50.1.12.1.x86_64.rpm True salt-transactional-update-3002.2-50.1.12.1.x86_64.rpm True salt-zsh-completion-3002.2-50.1.12.1.noarch.rpm True python3-salt-3002.2-50.1.12.1.s390x.rpm True salt-3002.2-50.1.12.1.s390x.rpm True salt-api-3002.2-50.1.12.1.s390x.rpm True salt-cloud-3002.2-50.1.12.1.s390x.rpm True salt-doc-3002.2-50.1.12.1.s390x.rpm True salt-master-3002.2-50.1.12.1.s390x.rpm True salt-minion-3002.2-50.1.12.1.s390x.rpm True salt-proxy-3002.2-50.1.12.1.s390x.rpm True salt-ssh-3002.2-50.1.12.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.s390x.rpm True salt-syndic-3002.2-50.1.12.1.s390x.rpm True salt-transactional-update-3002.2-50.1.12.1.s390x.rpm True python3-salt-3002.2-50.1.12.1.ppc64le.rpm True salt-3002.2-50.1.12.1.ppc64le.rpm True salt-api-3002.2-50.1.12.1.ppc64le.rpm True salt-cloud-3002.2-50.1.12.1.ppc64le.rpm True salt-doc-3002.2-50.1.12.1.ppc64le.rpm True salt-master-3002.2-50.1.12.1.ppc64le.rpm True salt-minion-3002.2-50.1.12.1.ppc64le.rpm True salt-proxy-3002.2-50.1.12.1.ppc64le.rpm True salt-ssh-3002.2-50.1.12.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.ppc64le.rpm True salt-syndic-3002.2-50.1.12.1.ppc64le.rpm True salt-transactional-update-3002.2-50.1.12.1.ppc64le.rpm True python3-salt-3002.2-50.1.12.1.aarch64.rpm True salt-3002.2-50.1.12.1.aarch64.rpm True salt-api-3002.2-50.1.12.1.aarch64.rpm True salt-cloud-3002.2-50.1.12.1.aarch64.rpm True salt-doc-3002.2-50.1.12.1.aarch64.rpm True salt-master-3002.2-50.1.12.1.aarch64.rpm True salt-minion-3002.2-50.1.12.1.aarch64.rpm True salt-proxy-3002.2-50.1.12.1.aarch64.rpm True salt-ssh-3002.2-50.1.12.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.aarch64.rpm True salt-syndic-3002.2-50.1.12.1.aarch64.rpm True salt-transactional-update-3002.2-50.1.12.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2932 critical SUSE Updates openSUSE-SLE 15.3 This update for suse-migration-services fixes the following issues: - Bump version: 2.0.30 → 2.0.31 - Remove SMT references (#223) SMT is no longer supported by SUSE and users are encouraged to migrate to RMT. We want users to use RMT servers, or SCC as targets for receiving system updates. Also improve requirements description and make the requirements for the repository server more explicit w.r.t. availability of the proper channels. - Add comment for lower case and reflect that on test - Update env and log it - In case of preserving the proxy file add those settings to the environment before starting the migration - Log environment variables, this information is helpful if a proxy is set (see bsc#1188594) suse-migration-services-2.0.31-1.40.1.noarch.rpm suse-migration-services-2.0.31-1.40.1.src.rpm openSUSE-SLE-15.3-2021-3229 moderate SUSE Updates openSUSE-SLE 15.3 This update for autoyast2 fixes the following issues: - Fixed handling of the "final_reboot" and "final_halt" options, add the custom scripts only once and avoid displaying a warning popup during installation. (bsc#1188356) - Copy the init-scripts to the right location during 1st stage. (bsc#1188360) - Ensure closing notification pop-ups even if a user script was not executed to prevent "No widget with ID ..." error pop-up. (bsc#1188930, bsc#1188716) autoyast2-4.3.89-3.22.1.noarch.rpm autoyast2-4.3.89-3.22.1.src.rpm autoyast2-installation-4.3.89-3.22.1.noarch.rpm openSUSE-SLE-15.3-2021-3015 moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - cls/rgw: look for plane entries in non-ascii plain namespace too (bsc#1184517) - rgw: check object locks in multi-object delete (bsc#1185246) - mgr/zabbix: adapt zabbix_sender default path (bsc#1186348) - mgr/cephadm: pass --container-init to "cephadm deploy" if specified (bsc#1188979) - mgr/dashboard: Downstream branding: Adapt latest upstream changes to branded navigation component (bsc#1189173) - qa/tasks/salt_manager: allow gatherlogs for files in subdir - qa/tasks/ceph_salt: gather /var/log/ceph/cephadm.out - mgr/zabbix: adapt zabbix_sender default path (bsc#1186348) - Revert "cephadm: default container_init to False" (bsc#1188979) - mgr/cephadm: alias rgw-nfs -> nfs (bsc#1181291) - mgr/cephadm: on ssh connection error, advice chmod 0600 (bsc#1183561) - Update _constraints: only honor physical memory, not 'any memory' (e.g. swap). ceph-15.2.14.84+gb6e5642e260-3.31.1.src.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-grafana-dashboards-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-mgr-cephadm-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-dashboard-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-k8sevents-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-modules-core-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-rook-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-prometheus-alerts-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-test-15.2.14.84+gb6e5642e260-3.31.1.src.rpm ceph-test-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm cephadm-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm openSUSE-SLE-15.3-2021-2966 low SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following issues: - CVE-2021-3712: This is an update for the incomplete fix for CVE-2021-3712. Read buffer overruns processing ASN.1 strings (bsc#1189521). libopenssl-1_1-devel-1.1.1d-11.30.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-11.30.1.x86_64.rpm openssl-1_1-1.1.1d-11.30.1.src.rpm openssl-1_1-1.1.1d-11.30.1.x86_64.rpm openssl-1_1-doc-1.1.1d-11.30.1.noarch.rpm libopenssl-1_1-devel-1.1.1d-11.30.1.s390x.rpm libopenssl1_1-1.1.1d-11.30.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.s390x.rpm openssl-1_1-1.1.1d-11.30.1.s390x.rpm libopenssl-1_1-devel-1.1.1d-11.30.1.ppc64le.rpm libopenssl1_1-1.1.1d-11.30.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.ppc64le.rpm openssl-1_1-1.1.1d-11.30.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-11.30.1.aarch64.rpm libopenssl1_1-1.1.1d-11.30.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.aarch64.rpm openssl-1_1-1.1.1d-11.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-2994 low SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_0_0 fixes the following issues: - CVE-2021-3712: This is an update for the incomplete fix for CVE-2021-3712. Read buffer overruns processing ASN.1 strings (bsc#1189521). libopenssl-1_0_0-devel-1.0.2p-3.43.1.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-3.43.1.x86_64.rpm libopenssl10-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-3.43.1.x86_64.rpm openssl-1_0_0-1.0.2p-3.43.1.src.rpm openssl-1_0_0-1.0.2p-3.43.1.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.x86_64.rpm openssl-1_0_0-doc-1.0.2p-3.43.1.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-3.43.1.s390x.rpm libopenssl10-1.0.2p-3.43.1.s390x.rpm libopenssl1_0_0-1.0.2p-3.43.1.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.s390x.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.s390x.rpm openssl-1_0_0-1.0.2p-3.43.1.s390x.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-3.43.1.ppc64le.rpm libopenssl10-1.0.2p-3.43.1.ppc64le.rpm libopenssl1_0_0-1.0.2p-3.43.1.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.ppc64le.rpm openssl-1_0_0-1.0.2p-3.43.1.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-3.43.1.aarch64.rpm libopenssl10-1.0.2p-3.43.1.aarch64.rpm libopenssl1_0_0-1.0.2p-3.43.1.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.aarch64.rpm openssl-1_0_0-1.0.2p-3.43.1.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.aarch64.rpm openSUSE-SLE-15.3-2021-2962 critical SUSE Updates openSUSE-SLE 15.3 This update for runc fixes the following issues: - Fixed an issue when toolbox container fails to start. (bsc#1189743) runc-1.0.0~rc93-1.17.1.src.rpm runc-1.0.0~rc93-1.17.1.x86_64.rpm runc-1.0.0~rc93-1.17.1.s390x.rpm runc-1.0.0~rc93-1.17.1.ppc64le.rpm runc-1.0.0~rc93-1.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3186 moderate SUSE Updates openSUSE-SLE 15.3 This update for gtk3 fixes the following issue: - Ensure printer entries from Avahi are usable (bsc#1094486, bsc#1189238). gettext-its-gtk3-3.24.20-3.6.1.x86_64.rpm gtk3-3.24.20-3.6.1.src.rpm gtk3-branding-upstream-3.24.20-3.6.1.noarch.rpm gtk3-data-3.24.20-3.6.1.noarch.rpm gtk3-devel-3.24.20-3.6.1.x86_64.rpm gtk3-devel-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-devel-doc-3.24.20-3.6.1.x86_64.rpm gtk3-doc-3.24.20-3.6.1.src.rpm gtk3-immodule-amharic-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-amharic-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-broadway-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-inuktitut-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-multipress-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-multipress-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-thai-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-thai-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-tigrigna-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-vietnamese-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-wayland-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-wayland-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-xim-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-xim-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-lang-3.24.20-3.6.1.noarch.rpm gtk3-schema-3.24.20-3.6.1.noarch.rpm gtk3-tools-3.24.20-3.6.1.x86_64.rpm gtk3-tools-32bit-3.24.20-3.6.1.x86_64.rpm libgtk-3-0-3.24.20-3.6.1.x86_64.rpm libgtk-3-0-32bit-3.24.20-3.6.1.x86_64.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.x86_64.rpm gettext-its-gtk3-3.24.20-3.6.1.s390x.rpm gtk3-devel-3.24.20-3.6.1.s390x.rpm gtk3-devel-doc-3.24.20-3.6.1.s390x.rpm gtk3-immodule-amharic-3.24.20-3.6.1.s390x.rpm gtk3-immodule-broadway-3.24.20-3.6.1.s390x.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.s390x.rpm gtk3-immodule-multipress-3.24.20-3.6.1.s390x.rpm gtk3-immodule-thai-3.24.20-3.6.1.s390x.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.s390x.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.s390x.rpm gtk3-immodule-wayland-3.24.20-3.6.1.s390x.rpm gtk3-immodule-xim-3.24.20-3.6.1.s390x.rpm gtk3-tools-3.24.20-3.6.1.s390x.rpm libgtk-3-0-3.24.20-3.6.1.s390x.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.s390x.rpm gettext-its-gtk3-3.24.20-3.6.1.ppc64le.rpm gtk3-devel-3.24.20-3.6.1.ppc64le.rpm gtk3-devel-doc-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-amharic-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-broadway-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-multipress-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-thai-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-wayland-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-xim-3.24.20-3.6.1.ppc64le.rpm gtk3-tools-3.24.20-3.6.1.ppc64le.rpm libgtk-3-0-3.24.20-3.6.1.ppc64le.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.ppc64le.rpm gettext-its-gtk3-3.24.20-3.6.1.aarch64.rpm gtk3-devel-3.24.20-3.6.1.aarch64.rpm gtk3-devel-doc-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-amharic-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-broadway-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-multipress-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-thai-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-wayland-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-xim-3.24.20-3.6.1.aarch64.rpm gtk3-tools-3.24.20-3.6.1.aarch64.rpm libgtk-3-0-3.24.20-3.6.1.aarch64.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3005 important SUSE Updates openSUSE-SLE 15.3 This update for libaom fixes the following issues: - CVE-2021-30475: Fixed buffer overflow in aom_dsp/noise_model.c (bsc#1189497). aom-tools-1.0.0-3.3.1.x86_64.rpm libaom-1.0.0-3.3.1.src.rpm libaom-devel-1.0.0-3.3.1.x86_64.rpm libaom-devel-doc-1.0.0-3.3.1.noarch.rpm libaom0-1.0.0-3.3.1.x86_64.rpm libaom0-32bit-1.0.0-3.3.1.x86_64.rpm aom-tools-1.0.0-3.3.1.s390x.rpm libaom-devel-1.0.0-3.3.1.s390x.rpm libaom0-1.0.0-3.3.1.s390x.rpm aom-tools-1.0.0-3.3.1.ppc64le.rpm libaom-devel-1.0.0-3.3.1.ppc64le.rpm libaom0-1.0.0-3.3.1.ppc64le.rpm aom-tools-1.0.0-3.3.1.aarch64.rpm libaom-devel-1.0.0-3.3.1.aarch64.rpm libaom0-1.0.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3202 moderate SUSE Updates openSUSE-SLE 15.3 This update for linuxptp fixes the following issues: - CVE-2021-3570: Fixed messageLength validation field of incoming messages (bsc#1187646). linuxptp-3.1.1-3.3.1.src.rpm linuxptp-3.1.1-3.3.1.x86_64.rpm linuxptp-3.1.1-3.3.1.s390x.rpm linuxptp-3.1.1-3.3.1.ppc64le.rpm linuxptp-3.1.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2975 moderate SUSE Updates openSUSE-SLE 15.3 This update for haproxy fixes the following issues: - CVE-2021-40346: Fixed request smuggling vulnerability in HTX (bsc#1189877). haproxy-2.0.14-11.11.1.src.rpm haproxy-2.0.14-11.11.1.x86_64.rpm haproxy-2.0.14-11.11.1.s390x.rpm haproxy-2.0.14-11.11.1.ppc64le.rpm haproxy-2.0.14-11.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3004 important SUSE Updates openSUSE-SLE 15.3 This update for libtpms fixes the following issues: - CVE-2021-3746: Fixed out-of-bounds access via specially crafted TPM 2 command packets (bsc#1189935). libtpms-0.8.2-3.3.1.src.rpm libtpms-devel-0.8.2-3.3.1.x86_64.rpm libtpms0-0.8.2-3.3.1.x86_64.rpm libtpms-devel-0.8.2-3.3.1.s390x.rpm libtpms0-0.8.2-3.3.1.s390x.rpm libtpms-devel-0.8.2-3.3.1.ppc64le.rpm libtpms0-0.8.2-3.3.1.ppc64le.rpm libtpms-devel-0.8.2-3.3.1.aarch64.rpm libtpms0-0.8.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3201 moderate SUSE Updates openSUSE-SLE 15.3 This update for hivex fixes the following issues: - CVE-2021-3622: Fixed stack overflow due to recursive call of _get_children() (bsc#1189060). hivex-1.3.14-5.6.1.src.rpm hivex-1.3.14-5.6.1.x86_64.rpm hivex-devel-1.3.14-5.6.1.x86_64.rpm hivex-lang-1.3.14-5.6.1.noarch.rpm libhivex0-1.3.14-5.6.1.x86_64.rpm ocaml-hivex-1.3.14-5.6.1.x86_64.rpm ocaml-hivex-devel-1.3.14-5.6.1.x86_64.rpm perl-Win-Hivex-1.3.14-5.6.1.x86_64.rpm python-hivex-1.3.14-5.6.1.x86_64.rpm hivex-1.3.14-5.6.1.s390x.rpm hivex-devel-1.3.14-5.6.1.s390x.rpm libhivex0-1.3.14-5.6.1.s390x.rpm ocaml-hivex-1.3.14-5.6.1.s390x.rpm ocaml-hivex-devel-1.3.14-5.6.1.s390x.rpm perl-Win-Hivex-1.3.14-5.6.1.s390x.rpm python-hivex-1.3.14-5.6.1.s390x.rpm hivex-1.3.14-5.6.1.ppc64le.rpm hivex-devel-1.3.14-5.6.1.ppc64le.rpm libhivex0-1.3.14-5.6.1.ppc64le.rpm ocaml-hivex-1.3.14-5.6.1.ppc64le.rpm ocaml-hivex-devel-1.3.14-5.6.1.ppc64le.rpm perl-Win-Hivex-1.3.14-5.6.1.ppc64le.rpm python-hivex-1.3.14-5.6.1.ppc64le.rpm hivex-1.3.14-5.6.1.aarch64.rpm hivex-devel-1.3.14-5.6.1.aarch64.rpm libhivex0-1.3.14-5.6.1.aarch64.rpm ocaml-hivex-1.3.14-5.6.1.aarch64.rpm ocaml-hivex-devel-1.3.14-5.6.1.aarch64.rpm perl-Win-Hivex-1.3.14-5.6.1.aarch64.rpm python-hivex-1.3.14-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3194 important SUSE Updates openSUSE-SLE 15.3 This update for grilo fixes the following issues: - CVE-2021-39365: Fixed missing TLS certificate verification (bsc#1189839). grilo-0.3.12-3.3.1.src.rpm grilo-devel-0.3.12-3.3.1.x86_64.rpm grilo-lang-0.3.12-3.3.1.noarch.rpm grilo-tools-0.3.12-3.3.1.x86_64.rpm libgrilo-0_3-0-0.3.12-3.3.1.x86_64.rpm libgrlnet-0_3-0-0.3.12-3.3.1.x86_64.rpm libgrlpls-0_3-0-0.3.12-3.3.1.x86_64.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.x86_64.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.x86_64.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.x86_64.rpm grilo-devel-0.3.12-3.3.1.s390x.rpm grilo-tools-0.3.12-3.3.1.s390x.rpm libgrilo-0_3-0-0.3.12-3.3.1.s390x.rpm libgrlnet-0_3-0-0.3.12-3.3.1.s390x.rpm libgrlpls-0_3-0-0.3.12-3.3.1.s390x.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.s390x.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.s390x.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.s390x.rpm grilo-devel-0.3.12-3.3.1.ppc64le.rpm grilo-tools-0.3.12-3.3.1.ppc64le.rpm libgrilo-0_3-0-0.3.12-3.3.1.ppc64le.rpm libgrlnet-0_3-0-0.3.12-3.3.1.ppc64le.rpm libgrlpls-0_3-0-0.3.12-3.3.1.ppc64le.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.ppc64le.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.ppc64le.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.ppc64le.rpm grilo-devel-0.3.12-3.3.1.aarch64.rpm grilo-tools-0.3.12-3.3.1.aarch64.rpm libgrilo-0_3-0-0.3.12-3.3.1.aarch64.rpm libgrlnet-0_3-0-0.3.12-3.3.1.aarch64.rpm libgrlpls-0_3-0-0.3.12-3.3.1.aarch64.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.aarch64.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.aarch64.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3169 moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following packages to SUSE Manager 4.2.2 Proxy and Server: ansible: - ansible and ansible-doc are added to SUSE Manager Proxy as L2 supported golang-github-prometheus-alertmanager: - golang-github-prometheus-alertmanager is added to SUSE Manager Proxy as L3 supported python-python-memcached: - python-python-memcached is added to SUSE Manager Proxy as L3 supported python-redis: - python-redis is added to SUSE Manager Proxy as L3 supported system-user-prometheus: - system-user-prometheus is added to SUSE Manager Proxy as L3 supported ansible-2.9.21-1.7.1.noarch.rpm ansible-2.9.21-1.7.1.src.rpm ansible-doc-2.9.21-1.7.1.noarch.rpm ansible-test-2.9.21-1.7.1.noarch.rpm python-python-memcached-1.59-3.7.1.src.rpm python-redis-3.4.1-3.5.1.src.rpm python2-python-memcached-1.59-3.7.1.noarch.rpm python2-redis-3.4.1-3.5.1.noarch.rpm python3-python-memcached-1.59-3.7.1.noarch.rpm python3-redis-3.4.1-3.5.1.noarch.rpm system-user-prometheus-1.0.0-3.10.1.noarch.rpm system-user-prometheus-1.0.0-3.10.1.src.rpm openSUSE-SLE-15.3-2021-3168 moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following package to SUSE Manager 4.2.2 Proxy python-pyvmomi: - python-pyvmomi is added to SUSE Manager Proxy as L3 supported. python-pyvmomi-6.7.3-3.2.1.src.rpm python2-pyvmomi-6.7.3-3.2.1.noarch.rpm python3-pyvmomi-6.7.3-3.2.1.noarch.rpm openSUSE-SLE-15.3-2021-3166 moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following package to SUSE Manager 4.2.2 Proxy golang-github-prometheus-prometheus: - golang-github-prometheus-prometheus is added to SUSE Manager Proxy as L3 supported. golang-github-prometheus-prometheus-2.27.1-3.10.1.src.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.x86_64.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.s390x.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.ppc64le.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3211 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: - CVE-2021-3672: Fixed missing input validation on hostnames (bsc#1188881). - CVE-2021-22931: Fixed improper handling of untypical characters in domain names (bsc#1189370). - CVE-2021-22940: Use after free on close http2 on stream canceling (bsc#1189368) - CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (bsc#1189369) - CVE-2021-22930: Fixed use after free on close http2 on stream canceling (bsc#1188917). nodejs14-14.17.5-5.15.5.src.rpm nodejs14-14.17.5-5.15.5.x86_64.rpm nodejs14-devel-14.17.5-5.15.5.x86_64.rpm nodejs14-docs-14.17.5-5.15.5.noarch.rpm npm14-14.17.5-5.15.5.x86_64.rpm nodejs14-14.17.5-5.15.5.s390x.rpm nodejs14-devel-14.17.5-5.15.5.s390x.rpm npm14-14.17.5-5.15.5.s390x.rpm nodejs14-14.17.5-5.15.5.ppc64le.rpm nodejs14-devel-14.17.5-5.15.5.ppc64le.rpm npm14-14.17.5-5.15.5.ppc64le.rpm nodejs14-14.17.5-5.15.5.aarch64.rpm nodejs14-devel-14.17.5-5.15.5.aarch64.rpm npm14-14.17.5-5.15.5.aarch64.rpm openSUSE-SLE-15.3-2021-3255 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - CVE-2021-3677: Fixed memory disclosure in certain queries (bsc#1189748). - Fixed build with llvm12 on s390x (bsc#1185952). - Re-enabled icu for PostgreSQL 10 (bsc#1179945). - Made the dependency of postgresqlXX-server-devel on llvm and clang optional (bsc#1187751). - llvm12 breaks PostgreSQL 11 and 12 on s390x. Use llvm11 as a workaround (bsc#1185952). libecpg6-13.4-5.16.2.x86_64.rpm libecpg6-32bit-13.4-5.16.2.x86_64.rpm libpq5-13.4-5.16.2.x86_64.rpm libpq5-32bit-13.4-5.16.2.x86_64.rpm postgresql13-13.4-5.16.1.src.rpm postgresql13-13.4-5.16.2.src.rpm postgresql13-13.4-5.16.2.x86_64.rpm postgresql13-contrib-13.4-5.16.2.x86_64.rpm postgresql13-devel-13.4-5.16.2.x86_64.rpm postgresql13-docs-13.4-5.16.2.noarch.rpm postgresql13-llvmjit-13.4-5.16.2.x86_64.rpm postgresql13-plperl-13.4-5.16.2.x86_64.rpm postgresql13-plpython-13.4-5.16.2.x86_64.rpm postgresql13-pltcl-13.4-5.16.2.x86_64.rpm postgresql13-server-13.4-5.16.2.x86_64.rpm postgresql13-server-devel-13.4-5.16.2.x86_64.rpm postgresql13-test-13.4-5.16.2.x86_64.rpm libecpg6-13.4-5.16.2.s390x.rpm libpq5-13.4-5.16.2.s390x.rpm postgresql13-13.4-5.16.2.s390x.rpm postgresql13-contrib-13.4-5.16.2.s390x.rpm postgresql13-devel-13.4-5.16.2.s390x.rpm postgresql13-llvmjit-13.4-5.16.2.s390x.rpm postgresql13-plperl-13.4-5.16.2.s390x.rpm postgresql13-plpython-13.4-5.16.2.s390x.rpm postgresql13-pltcl-13.4-5.16.2.s390x.rpm postgresql13-server-13.4-5.16.2.s390x.rpm postgresql13-server-devel-13.4-5.16.2.s390x.rpm postgresql13-test-13.4-5.16.2.s390x.rpm libecpg6-13.4-5.16.2.ppc64le.rpm libpq5-13.4-5.16.2.ppc64le.rpm postgresql13-13.4-5.16.2.ppc64le.rpm postgresql13-contrib-13.4-5.16.2.ppc64le.rpm postgresql13-devel-13.4-5.16.2.ppc64le.rpm postgresql13-llvmjit-13.4-5.16.2.ppc64le.rpm postgresql13-plperl-13.4-5.16.2.ppc64le.rpm postgresql13-plpython-13.4-5.16.2.ppc64le.rpm postgresql13-pltcl-13.4-5.16.2.ppc64le.rpm postgresql13-server-13.4-5.16.2.ppc64le.rpm postgresql13-server-devel-13.4-5.16.2.ppc64le.rpm postgresql13-test-13.4-5.16.2.ppc64le.rpm libecpg6-13.4-5.16.2.aarch64.rpm libpq5-13.4-5.16.2.aarch64.rpm postgresql13-13.4-5.16.2.aarch64.rpm postgresql13-contrib-13.4-5.16.2.aarch64.rpm postgresql13-devel-13.4-5.16.2.aarch64.rpm postgresql13-llvmjit-13.4-5.16.2.aarch64.rpm postgresql13-plperl-13.4-5.16.2.aarch64.rpm postgresql13-plpython-13.4-5.16.2.aarch64.rpm postgresql13-pltcl-13.4-5.16.2.aarch64.rpm postgresql13-server-13.4-5.16.2.aarch64.rpm postgresql13-server-devel-13.4-5.16.2.aarch64.rpm postgresql13-test-13.4-5.16.2.aarch64.rpm openSUSE-SLE-15.3-2021-3256 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: - CVE-2021-3677: Fixed memory disclosure in certain queries (bsc#1189748). - Fixed build with llvm12 on s390x (bsc#1185952). - Re-enabled icu for PostgreSQL 10 (bsc#1179945). - Made the dependency of postgresqlXX-server-devel on llvm and clang optional (bsc#1187751). - llvm12 breaks PostgreSQL 11 and 12 on s390x. Use llvm11 as a workaround (bsc#1185952). postgresql12-12.8-8.23.2.src.rpm postgresql12-12.8-8.23.2.x86_64.rpm postgresql12-contrib-12.8-8.23.2.x86_64.rpm postgresql12-devel-12.8-8.23.2.x86_64.rpm postgresql12-docs-12.8-8.23.2.noarch.rpm postgresql12-llvmjit-12.8-8.23.2.x86_64.rpm postgresql12-plperl-12.8-8.23.2.x86_64.rpm postgresql12-plpython-12.8-8.23.2.x86_64.rpm postgresql12-pltcl-12.8-8.23.2.x86_64.rpm postgresql12-server-12.8-8.23.2.x86_64.rpm postgresql12-server-devel-12.8-8.23.2.x86_64.rpm postgresql12-test-12.8-8.23.2.x86_64.rpm postgresql12-12.8-8.23.2.s390x.rpm postgresql12-contrib-12.8-8.23.2.s390x.rpm postgresql12-devel-12.8-8.23.2.s390x.rpm postgresql12-llvmjit-12.8-8.23.2.s390x.rpm postgresql12-plperl-12.8-8.23.2.s390x.rpm postgresql12-plpython-12.8-8.23.2.s390x.rpm postgresql12-pltcl-12.8-8.23.2.s390x.rpm postgresql12-server-12.8-8.23.2.s390x.rpm postgresql12-server-devel-12.8-8.23.2.s390x.rpm postgresql12-test-12.8-8.23.2.s390x.rpm postgresql12-12.8-8.23.2.ppc64le.rpm postgresql12-contrib-12.8-8.23.2.ppc64le.rpm postgresql12-devel-12.8-8.23.2.ppc64le.rpm postgresql12-llvmjit-12.8-8.23.2.ppc64le.rpm postgresql12-plperl-12.8-8.23.2.ppc64le.rpm postgresql12-plpython-12.8-8.23.2.ppc64le.rpm postgresql12-pltcl-12.8-8.23.2.ppc64le.rpm postgresql12-server-12.8-8.23.2.ppc64le.rpm postgresql12-server-devel-12.8-8.23.2.ppc64le.rpm postgresql12-test-12.8-8.23.2.ppc64le.rpm postgresql12-12.8-8.23.2.aarch64.rpm postgresql12-contrib-12.8-8.23.2.aarch64.rpm postgresql12-devel-12.8-8.23.2.aarch64.rpm postgresql12-llvmjit-12.8-8.23.2.aarch64.rpm postgresql12-plperl-12.8-8.23.2.aarch64.rpm postgresql12-plpython-12.8-8.23.2.aarch64.rpm postgresql12-pltcl-12.8-8.23.2.aarch64.rpm postgresql12-server-12.8-8.23.2.aarch64.rpm postgresql12-server-devel-12.8-8.23.2.aarch64.rpm postgresql12-test-12.8-8.23.2.aarch64.rpm openSUSE-SLE-15.3-2021-2971 important SUSE Updates openSUSE-SLE 15.3 This update for ntfs-3g_ntfsprogs fixes the following issues: Update to version 2021.8.22 (bsc#1189720): * Fixed compile error when building with libfuse < 2.8.0 * Fixed obsolete macros in configure.ac * Signalled support of UTIME_OMIT to external libfuse2 * Fixed an improper macro usage in ntfscp.c * Updated the repository change in the README * Fixed vulnerability threats caused by maliciously tampered NTFS partitions * Security fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253, CVE_2021-39254, CVE-2021-39255, CVE-2021-39256, CVE-2021-39257, CVE-2021-39258, CVE-2021-39259, CVE-2021-39260, CVE-2021-39261, CVE-2021-39262, CVE-2021-39263. - Library soversion is now 89 * Changes in version 2017.3.23 * Delegated processing of special reparse points to external plugins * Allowed kernel cacheing by lowntfs-3g when not using Posix ACLs * Enabled fallback to read-only mount when the volume is hibernated * Made a full check for whether an extended attribute is allowed * Moved secaudit and usermap to ntfsprogs (now ntfssecaudit and ntfsusermap) * Enabled encoding broken UTF-16 into broken UTF-8 * Autoconfigured selecting <sys/sysmacros.h> vs <sys/mkdev> * Allowed using the full library API on systems without extended attributes support * Fixed DISABLE_PLUGINS as the condition for not using plugins * Corrected validation of multi sector transfer protected records * Denied creating/removing files from $Extend * Returned the size of locale encoded target as the size of symlinks libntfs-3g-devel-2021.8.22-3.8.1.x86_64.rpm libntfs-3g87-2021.8.22-3.8.1.x86_64.rpm ntfs-3g-2021.8.22-3.8.1.x86_64.rpm ntfs-3g_ntfsprogs-2021.8.22-3.8.1.src.rpm ntfsprogs-2021.8.22-3.8.1.x86_64.rpm ntfsprogs-extra-2021.8.22-3.8.1.x86_64.rpm libntfs-3g-devel-2021.8.22-3.8.1.s390x.rpm libntfs-3g87-2021.8.22-3.8.1.s390x.rpm ntfs-3g-2021.8.22-3.8.1.s390x.rpm ntfsprogs-2021.8.22-3.8.1.s390x.rpm ntfsprogs-extra-2021.8.22-3.8.1.s390x.rpm libntfs-3g-devel-2021.8.22-3.8.1.ppc64le.rpm libntfs-3g87-2021.8.22-3.8.1.ppc64le.rpm ntfs-3g-2021.8.22-3.8.1.ppc64le.rpm ntfsprogs-2021.8.22-3.8.1.ppc64le.rpm ntfsprogs-extra-2021.8.22-3.8.1.ppc64le.rpm libntfs-3g-devel-2021.8.22-3.8.1.aarch64.rpm libntfs-3g87-2021.8.22-3.8.1.aarch64.rpm ntfs-3g-2021.8.22-3.8.1.aarch64.rpm ntfsprogs-2021.8.22-3.8.1.aarch64.rpm ntfsprogs-extra-2021.8.22-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2977 moderate SUSE Updates openSUSE-SLE 15.3 This update for usbutils fixes the following issue: - Update to version 0.14 (jira#SLE-19451) usbutils-014-3.3.1.src.rpm usbutils-014-3.3.1.x86_64.rpm usbutils-014-3.3.1.s390x.rpm usbutils-014-3.3.1.ppc64le.rpm usbutils-014-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3167 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: dracut-saltboot: - Fix dependencies of python libs (bsc#1188846) koan: - Only recommend 'virt-install' to unbreak scenarios where it is not available in the enabled modules of the system - The xend functionality is not expected to work since this the underlying tool was removed - Python 2 compatibility was fully removed - Add support for EFI reinstallation of a client (bsc#1170823) mgr-daemon: - Update translation strings spacecmd: - Update translation strings - Make schedule_deletearchived to get all actions without display limit - Allow passing a date limit for 'schedule_deletearchived' on 'spacecmd' (bsc#1181223) - Use correct API endpoint in 'list_proxies' (bsc#1188042) - Add schedule_deletearchived to bulk delete archived actions (bsc#1181223) spacewalk-client-tools: - Update translation strings dracut-saltboot-0.1.1628156312.dbd0dec-1.30.1.noarch.rpm dracut-saltboot-0.1.1628156312.dbd0dec-1.30.1.src.rpm koan-3.0.1-4.20.1.noarch.rpm koan-3.0.1-4.20.1.src.rpm mgr-daemon-4.2.8-1.29.1.noarch.rpm mgr-daemon-4.2.8-1.29.1.src.rpm python2-spacewalk-check-4.2.13-3.47.2.noarch.rpm python2-spacewalk-client-setup-4.2.13-3.47.2.noarch.rpm python2-spacewalk-client-tools-4.2.13-3.47.2.noarch.rpm python3-spacewalk-check-4.2.13-3.47.2.noarch.rpm python3-spacewalk-client-setup-4.2.13-3.47.2.noarch.rpm python3-spacewalk-client-tools-4.2.13-3.47.2.noarch.rpm spacecmd-4.2.12-3.65.1.noarch.rpm spacecmd-4.2.12-3.65.1.src.rpm spacewalk-check-4.2.13-3.47.2.noarch.rpm spacewalk-client-setup-4.2.13-3.47.2.noarch.rpm spacewalk-client-tools-4.2.13-3.47.2.noarch.rpm spacewalk-client-tools-4.2.13-3.47.2.src.rpm openSUSE-SLE-15.3-2021-3193 important SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2021-38171: Fixed adts_decode_extradata in libavformat/adtsenc.c to check the init_get_bits return value (bsc#1189724). ffmpeg-3.4.2-11.11.1.src.rpm ffmpeg-3.4.2-11.11.1.x86_64.rpm ffmpeg-private-devel-3.4.2-11.11.1.x86_64.rpm libavcodec-devel-3.4.2-11.11.1.x86_64.rpm libavcodec57-3.4.2-11.11.1.x86_64.rpm libavcodec57-32bit-3.4.2-11.11.1.x86_64.rpm libavdevice-devel-3.4.2-11.11.1.x86_64.rpm libavdevice57-3.4.2-11.11.1.x86_64.rpm libavdevice57-32bit-3.4.2-11.11.1.x86_64.rpm libavfilter-devel-3.4.2-11.11.1.x86_64.rpm libavfilter6-3.4.2-11.11.1.x86_64.rpm libavfilter6-32bit-3.4.2-11.11.1.x86_64.rpm libavformat-devel-3.4.2-11.11.1.x86_64.rpm libavformat57-3.4.2-11.11.1.x86_64.rpm libavformat57-32bit-3.4.2-11.11.1.x86_64.rpm libavresample-devel-3.4.2-11.11.1.x86_64.rpm libavresample3-3.4.2-11.11.1.x86_64.rpm libavresample3-32bit-3.4.2-11.11.1.x86_64.rpm libavutil-devel-3.4.2-11.11.1.x86_64.rpm libavutil55-3.4.2-11.11.1.x86_64.rpm libavutil55-32bit-3.4.2-11.11.1.x86_64.rpm libpostproc-devel-3.4.2-11.11.1.x86_64.rpm libpostproc54-3.4.2-11.11.1.x86_64.rpm libpostproc54-32bit-3.4.2-11.11.1.x86_64.rpm libswresample-devel-3.4.2-11.11.1.x86_64.rpm libswresample2-3.4.2-11.11.1.x86_64.rpm libswresample2-32bit-3.4.2-11.11.1.x86_64.rpm libswscale-devel-3.4.2-11.11.1.x86_64.rpm libswscale4-3.4.2-11.11.1.x86_64.rpm libswscale4-32bit-3.4.2-11.11.1.x86_64.rpm ffmpeg-3.4.2-11.11.1.s390x.rpm ffmpeg-private-devel-3.4.2-11.11.1.s390x.rpm libavcodec-devel-3.4.2-11.11.1.s390x.rpm libavcodec57-3.4.2-11.11.1.s390x.rpm libavdevice-devel-3.4.2-11.11.1.s390x.rpm libavdevice57-3.4.2-11.11.1.s390x.rpm libavfilter-devel-3.4.2-11.11.1.s390x.rpm libavfilter6-3.4.2-11.11.1.s390x.rpm libavformat-devel-3.4.2-11.11.1.s390x.rpm libavformat57-3.4.2-11.11.1.s390x.rpm libavresample-devel-3.4.2-11.11.1.s390x.rpm libavresample3-3.4.2-11.11.1.s390x.rpm libavutil-devel-3.4.2-11.11.1.s390x.rpm libavutil55-3.4.2-11.11.1.s390x.rpm libpostproc-devel-3.4.2-11.11.1.s390x.rpm libpostproc54-3.4.2-11.11.1.s390x.rpm libswresample-devel-3.4.2-11.11.1.s390x.rpm libswresample2-3.4.2-11.11.1.s390x.rpm libswscale-devel-3.4.2-11.11.1.s390x.rpm libswscale4-3.4.2-11.11.1.s390x.rpm ffmpeg-3.4.2-11.11.1.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.11.1.ppc64le.rpm libavcodec-devel-3.4.2-11.11.1.ppc64le.rpm libavcodec57-3.4.2-11.11.1.ppc64le.rpm libavdevice-devel-3.4.2-11.11.1.ppc64le.rpm libavdevice57-3.4.2-11.11.1.ppc64le.rpm libavfilter-devel-3.4.2-11.11.1.ppc64le.rpm libavfilter6-3.4.2-11.11.1.ppc64le.rpm libavformat-devel-3.4.2-11.11.1.ppc64le.rpm libavformat57-3.4.2-11.11.1.ppc64le.rpm libavresample-devel-3.4.2-11.11.1.ppc64le.rpm libavresample3-3.4.2-11.11.1.ppc64le.rpm libavutil-devel-3.4.2-11.11.1.ppc64le.rpm libavutil55-3.4.2-11.11.1.ppc64le.rpm libpostproc-devel-3.4.2-11.11.1.ppc64le.rpm libpostproc54-3.4.2-11.11.1.ppc64le.rpm libswresample-devel-3.4.2-11.11.1.ppc64le.rpm libswresample2-3.4.2-11.11.1.ppc64le.rpm libswscale-devel-3.4.2-11.11.1.ppc64le.rpm libswscale4-3.4.2-11.11.1.ppc64le.rpm ffmpeg-3.4.2-11.11.1.aarch64.rpm ffmpeg-private-devel-3.4.2-11.11.1.aarch64.rpm libavcodec-devel-3.4.2-11.11.1.aarch64.rpm libavcodec57-3.4.2-11.11.1.aarch64.rpm libavdevice-devel-3.4.2-11.11.1.aarch64.rpm libavdevice57-3.4.2-11.11.1.aarch64.rpm libavfilter-devel-3.4.2-11.11.1.aarch64.rpm libavfilter6-3.4.2-11.11.1.aarch64.rpm libavformat-devel-3.4.2-11.11.1.aarch64.rpm libavformat57-3.4.2-11.11.1.aarch64.rpm libavresample-devel-3.4.2-11.11.1.aarch64.rpm libavresample3-3.4.2-11.11.1.aarch64.rpm libavutil-devel-3.4.2-11.11.1.aarch64.rpm libavutil55-3.4.2-11.11.1.aarch64.rpm libpostproc-devel-3.4.2-11.11.1.aarch64.rpm libpostproc54-3.4.2-11.11.1.aarch64.rpm libswresample-devel-3.4.2-11.11.1.aarch64.rpm libswresample2-3.4.2-11.11.1.aarch64.rpm libswscale-devel-3.4.2-11.11.1.aarch64.rpm libswscale4-3.4.2-11.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3799 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc11 fixes the following issues: The additional GNU compiler collection GCC 11 is provided: To select these compilers install the packages: - gcc11 - gcc-c++11 - and others with 11 prefix. to select them for building: - CC="gcc-11" - CXX="g++-11" The compiler baselibraries (libgcc_s1, libstdc++6 and others) are being replaced by the GCC 11 variants. cpp11-11.2.1+git610-1.3.9.x86_64.rpm cross-aarch64-gcc11-11.2.1+git610-1.3.2.src.rpm cross-aarch64-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-aarch64-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-arm-gcc11-11.2.1+git610-1.3.2.src.rpm cross-arm-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-hppa-gcc11-11.2.1+git610-1.3.2.src.rpm cross-hppa-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-i386-gcc11-11.2.1+git610-1.3.2.src.rpm cross-i386-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-m68k-gcc11-11.2.1+git610-1.3.2.src.rpm cross-m68k-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-mips-gcc11-11.2.1+git610-1.3.2.src.rpm cross-mips-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-nvptx-gcc11-11.2.1+git610-1.3.1.src.rpm cross-nvptx-gcc11-11.2.1+git610-1.3.1.x86_64.rpm cross-nvptx-newlib11-devel-11.2.1+git610-1.3.1.x86_64.rpm cross-ppc64-gcc11-11.2.1+git610-1.3.2.src.rpm cross-ppc64-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-ppc64le-gcc11-11.2.1+git610-1.3.2.src.rpm cross-ppc64le-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-ppc64le-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-riscv64-gcc11-11.2.1+git610-1.3.2.src.rpm cross-riscv64-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-s390x-gcc11-11.2.1+git610-1.3.2.src.rpm cross-s390x-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-s390x-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-sparc-gcc11-11.2.1+git610-1.3.2.src.rpm cross-sparc-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-sparc64-gcc11-11.2.1+git610-1.3.2.src.rpm cross-sparc64-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm gcc11-11.2.1+git610-1.3.9.src.rpm gcc11-11.2.1+git610-1.3.9.x86_64.rpm gcc11-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-ada-11.2.1+git610-1.3.9.x86_64.rpm gcc11-ada-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-c++-11.2.1+git610-1.3.9.x86_64.rpm gcc11-c++-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-d-11.2.1+git610-1.3.9.x86_64.rpm gcc11-d-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-fortran-11.2.1+git610-1.3.9.x86_64.rpm gcc11-fortran-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-go-11.2.1+git610-1.3.9.x86_64.rpm gcc11-go-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-info-11.2.1+git610-1.3.9.noarch.rpm gcc11-locale-11.2.1+git610-1.3.9.x86_64.rpm gcc11-obj-c++-11.2.1+git610-1.3.9.x86_64.rpm gcc11-obj-c++-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-objc-11.2.1+git610-1.3.9.x86_64.rpm gcc11-objc-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-testresults-11.2.1+git610-1.3.9.src.rpm gcc11-testresults-11.2.1+git610-1.3.9.x86_64.rpm libada11-11.2.1+git610-1.3.9.x86_64.rpm libada11-32bit-11.2.1+git610-1.3.9.x86_64.rpm libasan6-11.2.1+git610-1.3.9.x86_64.rpm libasan6-32bit-11.2.1+git610-1.3.9.x86_64.rpm libatomic1-11.2.1+git610-1.3.9.x86_64.rpm libatomic1-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgcc_s1-11.2.1+git610-1.3.9.x86_64.rpm libgcc_s1-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgdruntime2-11.2.1+git610-1.3.9.x86_64.rpm libgdruntime2-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgfortran5-11.2.1+git610-1.3.9.x86_64.rpm libgfortran5-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgo19-11.2.1+git610-1.3.9.x86_64.rpm libgo19-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgomp1-11.2.1+git610-1.3.9.x86_64.rpm libgomp1-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgphobos2-11.2.1+git610-1.3.9.x86_64.rpm libgphobos2-32bit-11.2.1+git610-1.3.9.x86_64.rpm libitm1-11.2.1+git610-1.3.9.x86_64.rpm libitm1-32bit-11.2.1+git610-1.3.9.x86_64.rpm liblsan0-11.2.1+git610-1.3.9.x86_64.rpm libobjc4-11.2.1+git610-1.3.9.x86_64.rpm libobjc4-32bit-11.2.1+git610-1.3.9.x86_64.rpm libquadmath0-11.2.1+git610-1.3.9.x86_64.rpm libquadmath0-32bit-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-32bit-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-devel-gcc11-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-devel-gcc11-32bit-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-locale-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-pp-gcc11-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-pp-gcc11-32bit-11.2.1+git610-1.3.9.x86_64.rpm libtsan0-11.2.1+git610-1.3.9.x86_64.rpm libubsan1-11.2.1+git610-1.3.9.x86_64.rpm libubsan1-32bit-11.2.1+git610-1.3.9.x86_64.rpm cpp11-11.2.1+git610-1.3.9.s390x.rpm cross-aarch64-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-aarch64-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-arm-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-hppa-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-i386-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-m68k-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-mips-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-ppc64-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-ppc64le-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-ppc64le-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-riscv64-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-sparc-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-sparc64-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-x86_64-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-x86_64-gcc11-11.2.1+git610-1.3.2.src.rpm cross-x86_64-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm gcc11-11.2.1+git610-1.3.9.s390x.rpm gcc11-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-ada-11.2.1+git610-1.3.9.s390x.rpm gcc11-ada-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-c++-11.2.1+git610-1.3.9.s390x.rpm gcc11-c++-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-d-11.2.1+git610-1.3.9.s390x.rpm gcc11-d-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-fortran-11.2.1+git610-1.3.9.s390x.rpm gcc11-fortran-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-go-11.2.1+git610-1.3.9.s390x.rpm gcc11-go-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-locale-11.2.1+git610-1.3.9.s390x.rpm gcc11-obj-c++-11.2.1+git610-1.3.9.s390x.rpm gcc11-obj-c++-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-objc-11.2.1+git610-1.3.9.s390x.rpm gcc11-objc-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-testresults-11.2.1+git610-1.3.9.s390x.rpm libada11-11.2.1+git610-1.3.9.s390x.rpm libada11-32bit-11.2.1+git610-1.3.9.s390x.rpm libasan6-11.2.1+git610-1.3.9.s390x.rpm libasan6-32bit-11.2.1+git610-1.3.9.s390x.rpm libatomic1-11.2.1+git610-1.3.9.s390x.rpm libatomic1-32bit-11.2.1+git610-1.3.9.s390x.rpm libgcc_s1-11.2.1+git610-1.3.9.s390x.rpm libgcc_s1-32bit-11.2.1+git610-1.3.9.s390x.rpm libgdruntime2-11.2.1+git610-1.3.9.s390x.rpm libgdruntime2-32bit-11.2.1+git610-1.3.9.s390x.rpm libgfortran5-11.2.1+git610-1.3.9.s390x.rpm libgfortran5-32bit-11.2.1+git610-1.3.9.s390x.rpm libgo19-11.2.1+git610-1.3.9.s390x.rpm libgo19-32bit-11.2.1+git610-1.3.9.s390x.rpm libgomp1-11.2.1+git610-1.3.9.s390x.rpm libgomp1-32bit-11.2.1+git610-1.3.9.s390x.rpm libgphobos2-11.2.1+git610-1.3.9.s390x.rpm libgphobos2-32bit-11.2.1+git610-1.3.9.s390x.rpm libitm1-11.2.1+git610-1.3.9.s390x.rpm libitm1-32bit-11.2.1+git610-1.3.9.s390x.rpm libobjc4-11.2.1+git610-1.3.9.s390x.rpm libobjc4-32bit-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-32bit-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-devel-gcc11-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-devel-gcc11-32bit-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-locale-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-pp-gcc11-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-pp-gcc11-32bit-11.2.1+git610-1.3.9.s390x.rpm libubsan1-11.2.1+git610-1.3.9.s390x.rpm libubsan1-32bit-11.2.1+git610-1.3.9.s390x.rpm cpp11-11.2.1+git610-1.3.9.ppc64le.rpm cross-aarch64-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-aarch64-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-arm-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-hppa-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-i386-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-m68k-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-mips-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-ppc64-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-riscv64-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-s390x-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-s390x-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-sparc-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-sparc64-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-x86_64-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-x86_64-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm gcc11-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-ada-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-c++-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-fortran-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-go-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-locale-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-obj-c++-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-objc-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-testresults-11.2.1+git610-1.3.9.ppc64le.rpm libada11-11.2.1+git610-1.3.9.ppc64le.rpm libasan6-11.2.1+git610-1.3.9.ppc64le.rpm libatomic1-11.2.1+git610-1.3.9.ppc64le.rpm libgcc_s1-11.2.1+git610-1.3.9.ppc64le.rpm libgfortran5-11.2.1+git610-1.3.9.ppc64le.rpm libgo19-11.2.1+git610-1.3.9.ppc64le.rpm libgomp1-11.2.1+git610-1.3.9.ppc64le.rpm libitm1-11.2.1+git610-1.3.9.ppc64le.rpm liblsan0-11.2.1+git610-1.3.9.ppc64le.rpm libobjc4-11.2.1+git610-1.3.9.ppc64le.rpm libquadmath0-11.2.1+git610-1.3.9.ppc64le.rpm libstdc++6-11.2.1+git610-1.3.9.ppc64le.rpm libstdc++6-devel-gcc11-11.2.1+git610-1.3.9.ppc64le.rpm libstdc++6-locale-11.2.1+git610-1.3.9.ppc64le.rpm libstdc++6-pp-gcc11-11.2.1+git610-1.3.9.ppc64le.rpm libtsan0-11.2.1+git610-1.3.9.ppc64le.rpm libubsan1-11.2.1+git610-1.3.9.ppc64le.rpm cpp11-11.2.1+git610-1.3.9.aarch64.rpm cross-arm-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-hppa-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-i386-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-m68k-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-mips-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-ppc64-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-ppc64le-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-ppc64le-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-riscv64-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-s390x-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-s390x-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-sparc-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-sparc64-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-x86_64-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-x86_64-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm gcc11-11.2.1+git610-1.3.9.aarch64.rpm gcc11-ada-11.2.1+git610-1.3.9.aarch64.rpm gcc11-c++-11.2.1+git610-1.3.9.aarch64.rpm gcc11-d-11.2.1+git610-1.3.9.aarch64.rpm gcc11-fortran-11.2.1+git610-1.3.9.aarch64.rpm gcc11-go-11.2.1+git610-1.3.9.aarch64.rpm gcc11-locale-11.2.1+git610-1.3.9.aarch64.rpm gcc11-obj-c++-11.2.1+git610-1.3.9.aarch64.rpm gcc11-objc-11.2.1+git610-1.3.9.aarch64.rpm gcc11-testresults-11.2.1+git610-1.3.9.aarch64.rpm libada11-11.2.1+git610-1.3.9.aarch64.rpm libasan6-11.2.1+git610-1.3.9.aarch64.rpm libatomic1-11.2.1+git610-1.3.9.aarch64.rpm libgcc_s1-11.2.1+git610-1.3.9.aarch64.rpm libgdruntime2-11.2.1+git610-1.3.9.aarch64.rpm libgfortran5-11.2.1+git610-1.3.9.aarch64.rpm libgo19-11.2.1+git610-1.3.9.aarch64.rpm libgomp1-11.2.1+git610-1.3.9.aarch64.rpm libgphobos2-11.2.1+git610-1.3.9.aarch64.rpm libhwasan0-11.2.1+git610-1.3.9.aarch64.rpm libitm1-11.2.1+git610-1.3.9.aarch64.rpm liblsan0-11.2.1+git610-1.3.9.aarch64.rpm libobjc4-11.2.1+git610-1.3.9.aarch64.rpm libstdc++6-11.2.1+git610-1.3.9.aarch64.rpm libstdc++6-devel-gcc11-11.2.1+git610-1.3.9.aarch64.rpm libstdc++6-locale-11.2.1+git610-1.3.9.aarch64.rpm libstdc++6-pp-gcc11-11.2.1+git610-1.3.9.aarch64.rpm libtsan0-11.2.1+git610-1.3.9.aarch64.rpm libubsan1-11.2.1+git610-1.3.9.aarch64.rpm openSUSE-SLE-15.3-2021-3136 moderate SUSE Updates openSUSE-SLE 15.3 This update for SUSEConnect fixes the following issues: - Disallow registering via SUSEConnect if the system is managed by SUSE Manager. - Add subscription name to output of 'SUSEConnect --status'. - Send payload of GET requests as part of the url, not in the body. (bsc#1185611) SUSEConnect-0.3.31-13.1.src.rpm SUSEConnect-0.3.31-13.1.x86_64.rpm SUSEConnect-0.3.31-13.1.s390x.rpm SUSEConnect-0.3.31-13.1.ppc64le.rpm SUSEConnect-0.3.31-13.1.aarch64.rpm openSUSE-SLE-15.3-2021-2990 important SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - Update from version 1.3.8 to version 1.3.9 (bsc#1189015) - Raise the log rotation threshold to 1MB so that more history is preserved. - Fix checking HCNID array size at boot time - Set autoconnect-slaves on HNV connections. - When trying to detect HNV bond list all connections, not only active ones. - Use hexdump from util-linux rather than xxd from vim. - hcn-init.service: Start together with NetworkManager. - ofpathname: Fix OF to logical FC lookup for multipath and partitions - bootlist: Fix for multipath devices with > 5 paths - Add the missing substring extraction of the partition number from the logical device path so that the partition number is appended to OFPATH when the logical device is a partition. - Introducing 'lparnumascore' that is is computing the LPAR NUMA score for CPU and memory. - This new command detects CPU and memory resources the kernel keep binded to the NUMA node topology of the departure node. It computes a ratio, and print it to the standard output. The ratio is between 0 (worst) and 100 (best). The command is **not** locking '/var/lock/dr_config_lock' so user should ensure that there is not ongoing command impacting the computed scores. This allows the command to be run without special privileges. - Introduce 'of_associativity_to_node' - This device tree related function reads the ibm associativity property of a node and, using the specified 'min_common_deth', returns the NUMA node id - Rename 'is_lsslot_cmd' into 'read_dynamic_memory_v2' - Add manpage for the drmgr utility - Add a check against 'usr_drc_index' which is set when a remove by index operation is done to ensure the NUMA removal code is not triggered in that case. - Add support for the plug ID of a SCSI/SATA host - 'lpartstat': add '-x' option for the security flavor. - The output number means: - 0 = Speculative execution fully enabled - 1 = Speculative execution controls to mitigate user-to-kernel side-channel attacks - 2 = Speculative execution controls to mitigate user-to-kernel and user-to-user side-channel attacks - \- = The running kernel is not exposing the security flavor in '/proc/powerpc/lparcfg' - Introduce NUMA based LMB removal - When the NUMA topology can be read, all the LMBs found in the Device Tree are linked the corresponding node. LMB not associated to node are considered as not used. LMB associated to CPU less node are accounted separately because they will be targeted first to be remove. The LMB are removed from the CPU less nodes to reach an average number LMBs per CPU less node. The removal is done through the remove by DRC index API, allowing to remove a LMB at a time. When the requested amount of LMB could not be removed a partial status is reported. If the NUMA topology can't be read, we fallback using the legacy remove way. - Fix ofpathname race with udev rename - ofpathname: Use NVMe controller physical nsid - Use a loop to check for all related bonding connections and remove them explicitly one by one instead of using xargs - Avoid using 'ifcfg' file for checking bonding interface status - Wait for sysfs device ready when looking up device name - Avoid cleanup of bond interface at boot time when no HNV exists - Adds the option 'ppc64_cpu --version in 'ppc64_cpu --help' in the usage information of ppc64-cpu command. - Clean up dead network config interface after inactive migration - Disable 'vnic' as backup vdevice for migratable 'SR_IOV' - Fix qrydev checking for active interface error - Skip collecting lsdevinfo right before migration. When the LPARs has large number of devices, this can take quite a long time and flood the log message. - Wait for OS ready to lookup device name for configure HNV device. - The hybrid network virtualization is only supported on PowerVM LPAR. Exit the 'hcnmgr' gracefully on other power platform instead of return error. - Optimize 'lsdevinfo' filtering to prevent LPM timeouts (bsc#1189571) powerpc-utils-1.3.9-9.9.1.ppc64le.rpm powerpc-utils-1.3.9-9.9.1.src.rpm openSUSE-SLE-15.3-2021-3146 low SUSE Updates openSUSE-SLE 15.3 Initial release of Kubevirt for SUSE Linux Enterprise 15 SP3. kubevirt-0.45.0-8.4.3.src.rpm kubevirt-container-disk-0.45.0-8.4.3.x86_64.rpm kubevirt-manifests-0.45.0-8.4.3.x86_64.rpm kubevirt-tests-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-api-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-controller-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-handler-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-launcher-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-operator-0.45.0-8.4.3.x86_64.rpm kubevirt-virtctl-0.45.0-8.4.3.x86_64.rpm openSUSE-SLE-15.3-2021-3173 low SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: - Added note about NVIDIA vGPU support (jsc#SLE-17881) - Added note about Intel technologies (bsc#1189786) - Added note about ODBC drivers (jsc#SLE-17703) - Added note about NVIDIA BlueField-2 tech preview (jsc#SLE-13565) - Added note about kubevirt-virt-* (bsc#1187693) - Fixed typo in note about compat-libpthread-nonshared (bsc#1188511) - Removed mention of SES (bsc#1188305) release-notes-sles-15.3.20210903-3.9.1.noarch.rpm release-notes-sles-15.3.20210903-3.9.1.src.rpm openSUSE-SLE-15.3-2021-3138 moderate SUSE Updates openSUSE-SLE 15.3 This update for mdadm fixes the following issues: - Remove Spare drives line from details for external metadata. (bsc#1180661, bsc#1182642) - Arrays with external metadata do not have spare disks directly assigned to volumes; spare disks belong to containers and are moved to arrays when the array is degraded/reshaping. Thus, the display of zero spare disks in volume details is incorrect and can be confusing. - Don't associate spares with other arrays during RAID Examine. (bsc#1180661, bsc#1182642) - Spares in imsm belong to containers, not volumes, and must go into a separate container when assembling the RAID. Remove association spares with other arrays and make Examine print separate containers for spares. Auto assemble without config file already works like this. So make creating a config file and assembling from it consistent with auto assemble. With this change, 'mdadm -Es' will add this line to output if spares are found: 'ARRAY metadata=imsm UUID=00000000:00000000:00000000:00000000' mdadm-4.1-24.6.1.src.rpm mdadm-4.1-24.6.1.x86_64.rpm mdadm-4.1-24.6.1.s390x.rpm mdadm-4.1-24.6.1.ppc64le.rpm mdadm-4.1-24.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3182 moderate SUSE Updates openSUSE-SLE 15.3 This update for file fixes the following issues: - Fixes exception thrown by memory allocation problem (bsc#1189996) file-5.32-7.14.1.src.rpm file-5.32-7.14.1.x86_64.rpm file-devel-32bit-5.32-7.14.1.x86_64.rpm file-devel-5.32-7.14.1.x86_64.rpm file-magic-5.32-7.14.1.noarch.rpm libmagic1-32bit-5.32-7.14.1.x86_64.rpm libmagic1-5.32-7.14.1.x86_64.rpm python-magic-5.32-7.14.1.src.rpm python2-magic-5.32-7.14.1.x86_64.rpm python3-magic-5.32-7.14.1.x86_64.rpm file-5.32-7.14.1.s390x.rpm file-devel-5.32-7.14.1.s390x.rpm libmagic1-5.32-7.14.1.s390x.rpm python2-magic-5.32-7.14.1.s390x.rpm python3-magic-5.32-7.14.1.s390x.rpm file-5.32-7.14.1.ppc64le.rpm file-devel-5.32-7.14.1.ppc64le.rpm libmagic1-5.32-7.14.1.ppc64le.rpm python2-magic-5.32-7.14.1.ppc64le.rpm python3-magic-5.32-7.14.1.ppc64le.rpm file-5.32-7.14.1.aarch64.rpm file-devel-5.32-7.14.1.aarch64.rpm libmagic1-5.32-7.14.1.aarch64.rpm python2-magic-5.32-7.14.1.aarch64.rpm python3-magic-5.32-7.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3223 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnome-shell-extensions fixes the following issues: - Add gnome-shell-extensions-common as dependency (bsc#1190016 jsc#SLE-20311). gnome-shell-classic-3.34.2-5.12.1.noarch.rpm gnome-shell-classic-session-3.34.2-5.12.1.x86_64.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.x86_64.rpm gnome-shell-extensions-3.34.2-5.12.1.src.rpm gnome-shell-extensions-common-3.34.2-5.12.1.noarch.rpm gnome-shell-extensions-common-lang-3.34.2-5.12.1.noarch.rpm gnome-shell-classic-session-3.34.2-5.12.1.s390x.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.s390x.rpm gnome-shell-classic-session-3.34.2-5.12.1.ppc64le.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.ppc64le.rpm gnome-shell-classic-session-3.34.2-5.12.1.aarch64.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3040 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issue: Lifecycle data updates. (bsc#1020320) - Updates for 4_12_14-150_75, 4_12_14-197_99, 5_3_18-24_70, 5_3_18-24_75, 5_3_18-24_78, 5_3_18-59_13, 5_3_18-59_16, 5_3_18-59_19. lifecycle-data-sle-module-live-patching-15-4.60.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-4.60.1.src.rpm openSUSE-SLE-15.3-2021-3022 important SUSE Updates openSUSE-SLE 15.3 This update for c-ares fixes the following issue: - Allow '_' as part of DNS response. (bsc#1190225) - 'c-ares' 1.17.2 introduced response validation to prevent a security issue, however it was not listing '_' as a valid character for domain name responses which caused issues when a 'CNAME' referenced a 'SRV' record which contained underscores. c-ares-1.17.1+20200724-3.17.1.src.rpm c-ares-devel-1.17.1+20200724-3.17.1.x86_64.rpm c-ares-utils-1.17.1+20200724-3.17.1.x86_64.rpm libcares2-1.17.1+20200724-3.17.1.x86_64.rpm libcares2-32bit-1.17.1+20200724-3.17.1.x86_64.rpm c-ares-devel-1.17.1+20200724-3.17.1.s390x.rpm c-ares-utils-1.17.1+20200724-3.17.1.s390x.rpm libcares2-1.17.1+20200724-3.17.1.s390x.rpm c-ares-devel-1.17.1+20200724-3.17.1.ppc64le.rpm c-ares-utils-1.17.1+20200724-3.17.1.ppc64le.rpm libcares2-1.17.1+20200724-3.17.1.ppc64le.rpm c-ares-devel-1.17.1+20200724-3.17.1.aarch64.rpm c-ares-utils-1.17.1+20200724-3.17.1.aarch64.rpm libcares2-1.17.1+20200724-3.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3579 moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Avoid race confition with ca-certificates. (bsc#1189362) + Make the service run after ca-sertificates is done + Attempt multiple times to update the trust chain - New package to enable/disable access due to AHB. (bsc#1182026, jsc#SLE-21246, jsc#SLE-21247, jsc#SLE-21248, jsc#SLE-21249) cloud-regionsrv-client-9.2.1-6.51.1.noarch.rpm cloud-regionsrv-client-9.2.1-6.51.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-6.51.1.noarch.rpm cloud-regionsrv-client-plugin-azure-1.0.1-6.51.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.1-6.51.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-6.51.1.noarch.rpm openSUSE-SLE-15.3-2021-3205 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3640: Fixed a Use-After-Free vulnerability in function sco_sock_sendmsg() in the bluetooth stack (bsc#1188172). - CVE-2021-3653: Missing validation of the `int_ctl` VMCB field and allows a malicious L1 guest to enable AVIC support for the L2 guest. (bsc#1189399). - CVE-2021-3656: Missing validation of the the `virt_ext` VMCB field and allows a malicious L1 guest to disable both VMLOAD/VMSAVE intercepts and VLS for the L2 guest (bsc#1189400). - CVE-2021-3679: A lack of CPU resource in tracing module functionality was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service (bnc#1189057). - CVE-2021-3732: Mounting overlayfs inside an unprivileged user namespace can reveal files (bsc#1189706). - CVE-2021-3739: Fixed a NULL pointer dereference when deleting device by invalid id (bsc#1189832 ). - CVE-2021-3743: Fixed OOB Read in qrtr_endpoint_post (bsc#1189883). - CVE-2021-3753: Fixed race out-of-bounds in virtual terminal handling (bsc#1190025). - CVE-2021-38160: Data corruption or loss could be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190117) - CVE-2021-38198: arch/x86/kvm/mmu/paging_tmpl.h incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault (bnc#1189262). - CVE-2021-38204: drivers/usb/host/max3421-hcd.c allowed physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations (bnc#1189291). - CVE-2021-38205: drivers/net/ethernet/xilinx/xilinx_emaclite.c made it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer (i.e., the real IOMEM pointer) (bnc#1189292). - CVE-2021-38207: drivers/net/ethernet/xilinx/ll_temac_main.c allowed remote attackers to cause a denial of service (buffer overflow and lockup) by sending heavy network traffic for about ten minutes (bnc#1189298). - CVE-2021-38166: Fixed an integer overflow and out-of-bounds write when many elements are placed in a single bucket in kernel/bpf/hashtab.c (bnc#1189233 ). - CVE-2021-38209: Fixed allowed observation of changes in any net namespace via net/netfilter/nf_conntrack_standalone.c (bnc#1189393). - CVE-2021-38206: Fixed NULL pointer dereference in the radiotap parser inside the mac80211 subsystem (bnc#1189296). - CVE-2021-34556: Fixed side-channel attack via a Speculative Store Bypass via unprivileged BPF program that could have obtain sensitive information from kernel memory (bsc#1188983). - CVE-2021-35477: Fixed BPF stack frame pointer which could have been abused to disclose content of arbitrary kernel memory (bsc#1188985). - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks (bsc#1190115). - CVE-2020-12770: Fixed sg_remove_request call in a certain failure cases (bsc#1171420). The following non-security bugs were fixed: - ACPI: NFIT: Fix support for virtual SPA ranges (git-fixes). - ACPI: processor: Clean up acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export function to claim _CST control (bsc#1175543) - ACPI: processor: Introduce acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Make ACPI_PROCESSOR_CSTATE depend on ACPI_PROCESSOR (bsc#1175543) - ALSA: hda - fix the 'Capture Switch' value change notifications (git-fixes). - ALSA: hda/hdmi: Add quirk to force pin connectivity on NUC10 (git-fixes). - ALSA: hda/hdmi: fix max DP-MST dev_num for Intel TGL+ platforms (git-fixes). - ALSA: hda/hdmi: let new platforms assign the pcm slot dynamically (git-fixes). - ALSA: hda/realtek - Add ALC285 HP init procedure (git-fixes). - ALSA: hda/realtek - Add type for ALC287 (git-fixes). - ALSA: hda/realtek: Change device names for quirks to barebone names (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9510 laptop (git-fixes). - ALSA: hda/realtek: Fix headset mic for Acer SWIFT SF314-56 (ALC256) (git-fixes). - ALSA: hda/realtek: Limit mic boost on HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: add mic quirk for Acer SF314-42 (git-fixes). - ALSA: hda/realtek: fix mute led of the HP Pavilion 15-eh1xxx series (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 650 G8 Notebook PC (git-fixes). - ALSA: hda/via: Apply runtime PM workaround for ASUS B23E (git-fixes). - ALSA: hda: Add quirk for ASUS Flow x13 (git-fixes). - ALSA: hda: Fix hang during shutdown due to link reset (git-fixes). - ALSA: hda: Release controller display power during shutdown/reboot (git-fixes). - ALSA: pcm: Fix mmap breakage without explicit buffer setup (git-fixes). - ALSA: pcm: fix divide error in snd_pcm_lib_ioctl (git-fixes). - ALSA: seq: Fix racy deletion of subscriber (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum 600 (git-fixes). - ALSA: usb-audio: Avoid unnecessary or invalid connector selection at resume (git-fixes). - ALSA: usb-audio: Fix regression on Sony WALKMAN NW-A45 DAC (git-fixes). - ALSA: usb-audio: Fix superfluous autosuspend recovery (git-fixes). - ALSA: usb-audio: fix incorrect clock source setting (git-fixes). - ASoC: Intel: Skylake: Fix module resource and format selection (git-fixes). - ASoC: Intel: Skylake: Leave data as is when invoking TLV IPCs (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix format selection for max98373 (git-fixes). - ASoC: SOF: Intel: hda-ipc: fix reply size checking (git-fixes). - ASoC: amd: Fix reference to PCM buffer address (git-fixes). - ASoC: component: Remove misplaced prefix handling in pin control functions (git-fixes). - ASoC: cs42l42: Correct definition of ADC Volume control (git-fixes). - ASoC: cs42l42: Do not allow SND_SOC_DAIFMT_LEFT_J (git-fixes). - ASoC: cs42l42: Fix LRCLK frame start edge (git-fixes). - ASoC: cs42l42: Fix inversion of ADC Notch Switch control (git-fixes). - ASoC: cs42l42: Remove duplicate control for WNF filter frequency (git-fixes). - ASoC: intel: atom: Fix breakage for PCM buffer address setup (git-fixes). - ASoC: intel: atom: Fix reference to PCM buffer address (git-fixes). - ASoC: mediatek: mt8183: Fix Unbalanced pm_runtime_enable in mt8183_afe_pcm_dev_probe (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold again (git-fixes). - ASoC: rt5682: Fix the issue of garbled recording after powerd_dbus_suspend (git-fixes). - ASoC: ti: j721e-evm: Check for not initialized parent_clk_id (git-fixes). - ASoC: ti: j721e-evm: Fix unbalanced domain activity tracking during startup (git-fixes). - ASoC: tlv320aic31xx: Fix jack detection after suspend (git-fixes). - ASoC: tlv320aic31xx: fix reversed bclk/wclk master bits (git-fixes). - ASoC: uniphier: Fix reference to PCM buffer address (git-fixes). - ASoC: wcd9335: Disable irq on slave ports in the remove function (git-fixes). - ASoC: wcd9335: Fix a double irq free in the remove function (git-fixes). - ASoC: wcd9335: Fix a memory leak in the error handling path of the probe function (git-fixes). - ASoC: xilinx: Fix reference to PCM buffer address (git-fixes). - Avoid double printing SUSE specific flags in mod->taint (bsc#1190413). - Bluetooth: add timeout sanity check to hci_inquiry (git-fixes). - Bluetooth: btusb: Fix a unspported condition to set available debug features (git-fixes). - Bluetooth: btusb: check conditions before enabling USB ALT 3 for WBS (git-fixes). - Bluetooth: defer cleanup of resources in hci_unregister_dev() (git-fixes). - Bluetooth: fix repeated calls to sco_sock_kill (git-fixes). - Bluetooth: hidp: use correct wait queue when removing ctrl_wait (git-fixes). - Bluetooth: increase BTNAMSIZ to 21 chars to fix potential buffer overflow (git-fixes). - Bluetooth: mgmt: Fix wrong opcode in the response for add_adv cmd (git-fixes). - Bluetooth: sco: prevent information leak in sco_conn_defer_accept() (git-fixes). - Drop two intel_int0002_vgpio patches that cause Oops (bsc#1190412) - KVM: VMX: Drop guest CPUID check for VMXE in vmx_set_cr4() (bsc#1188786). - KVM: VMX: Enable machine check support for 32bit targets (bsc#1188787). - KVM: VMX: Explicitly clear RFLAGS.CF and RFLAGS.ZF in VM-Exit RSB path (bsc#1188788). - KVM: VMX: Extend VMXs #AC interceptor to handle split lock #AC in guest (bsc#1187959). - KVM: nVMX: Handle split-lock #AC exceptions that happen in L2 (bsc#1187959). - KVM: nVMX: Really make emulated nested preemption timer pinned (bsc#1188780). - KVM: nVMX: Reset the segment cache when stuffing guest segs (bsc#1188781). - KVM: nVMX: Skip IBPB when switching between vmcs01 and vmcs02 (bsc#1188782). - KVM: nVMX: Sync unsync'd vmcs02 state to vmcs12 on migration (bsc#1188783). - KVM: nVMX: Truncate bits 63:32 of VMCS field on nested check in !64-bit (bsc#1188784). - KVM: x86: Emulate split-lock access as a write in emulator (bsc#1187959). - KVM: x86: bit 8 of non-leaf PDPEs is not reserved (bsc#1188790). - NFS: Correct size calculation for create reply length (bsc#1189870). - NFSv4.1: Do not rebind to the same source port when (bnc#1186264 bnc#1189021) - NFSv4/pNFS: Do not call _nfs4_pnfs_v3_ds_connect multiple times (git-fixes). - NFSv4: Initialise connection to the server in nfs4_alloc_client() (bsc#1040364). - PCI/MSI: Correct misleading comments (git-fixes). - PCI/MSI: Do not set invalid bits in MSI mask (git-fixes). - PCI/MSI: Enable and mask MSI-X early (git-fixes). - PCI/MSI: Enforce MSI[X] entry updates to be visible (git-fixes). - PCI/MSI: Enforce that MSI-X table entry is masked for update (git-fixes). - PCI/MSI: Mask all unused MSI-X entries (git-fixes). - PCI/MSI: Skip masking MSI-X on Xen PV (git-fixes). - PCI/MSI: Use msi_mask_irq() in pci_msi_shutdown() (git-fixes). - PCI: Increase D3 delay for AMD Renoir/Cezanne XHCI (git-fixes). - PCI: PM: Avoid forcing PCI_D0 for wakeup reasons inconsistently (git-fixes). - PCI: PM: Enable PME if it can be signaled from D3cold (git-fixes). - RDMA/bnxt_re: Fix stats counters (bsc#1188231). - SUNRPC: 'Directory with parent 'rpc_clnt' already present!' (bsc#1168202 bsc#1188924). - SUNRPC: Fix the batch tasks count wraparound (git-fixes). - SUNRPC: Should wake up the privileged task firstly (git-fixes). - SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - SUNRPC: fix use-after-free in rpc_free_client_work() (bsc#1168202 bsc#1188924). - SUNRPC: improve error response to over-size gss credential (bsc#1190022). - SUNRPC: prevent port reuse on transports which do not request it (bnc#1186264 bnc#1189021). - USB: core: Avoid WARNings for 0-length descriptor requests (git-fixes). - USB: serial: ch341: fix character loss at high transfer rates (git-fixes). - USB: serial: ftdi_sio: add device ID for Auto-M3 OP-COM v2 (git-fixes). - USB: serial: option: add Telit FD980 composition 0x1056 (git-fixes). - USB: usbtmc: Fix RCU stall warning (git-fixes). - USB:ehci:fix Kunpeng920 ehci hardware problem (git-fixes). - VMCI: fix NULL pointer dereference when unmapping queue pair (git-fixes). - ath6kl: wmi: fix an error code in ath6kl_wmi_sync_point() (git-fixes). - ath9k: Clear key cache explicitly on disabling hardware (git-fixes). - ath: Use safer key clearing with key cache entries (git-fixes). - bcma: Fix memory leak for internally-handled cores (git-fixes). - bdi: Do not use freezable workqueue (bsc#1189573). - blk-iolatency: error out if blk_get_queue() failed in iolatency_set_limit() (bsc#1189507). - blk-mq-sched: Fix blk_mq_sched_alloc_tags() error handling (bsc#1189506). - blk-wbt: introduce a new disable state to prevent false positive by rwb_enabled() (bsc#1189503). - blk-wbt: make sure throttle is enabled properly (bsc#1189504). - block: fix trace completion for chained bio (bsc#1189505). - bnxt_en: Validate vlan protocol ID on RX packets (jsc#SLE-15075). - brcmfmac: pcie: fix oops on failure to resume and reprobe (git-fixes). - btrfs: Rename __btrfs_alloc_chunk to btrfs_alloc_chunk (bsc#1189077). - btrfs: add a trace class for dumping the current ENOSPC state (bsc#1135481). - btrfs: add a trace point for reserve tickets (bsc#1135481). - btrfs: adjust the flush trace point to include the source (bsc#1135481). - btrfs: check reclaim_size in need_preemptive_reclaim (bsc#1135481). - btrfs: factor out create_chunk() (bsc#1189077). - btrfs: factor out decide_stripe_size() (bsc#1189077). - btrfs: factor out gather_device_info() (bsc#1189077). - btrfs: factor out init_alloc_chunk_ctl (bsc#1189077). - btrfs: fix btrfs_calc_reclaim_metadata_size calculation (bsc#1135481). - btrfs: fix deadlock with concurrent chunk allocations involving system chunks (bsc#1189077). - btrfs: handle invalid profile in chunk allocation (bsc#1189077). - btrfs: implement space clamping for preemptive flushing (bsc#1135481). - btrfs: improve preemptive background space flushing (bsc#1135481). - btrfs: introduce a FORCE_COMMIT_TRANS flush operation (bsc#1135481). - btrfs: introduce alloc_chunk_ctl (bsc#1189077). - btrfs: introduce chunk allocation policy (bsc#1189077). - btrfs: make flush_space take a enum btrfs_flush_state instead of int (bsc#1135481). - btrfs: move the chunk_mutex in btrfs_read_chunk_tree (bsc#1189077). - btrfs: parameterize dev_extent_min for chunk allocation (bsc#1189077). - btrfs: refactor find_free_dev_extent_start() (bsc#1189077). - btrfs: remove FLUSH_DELAYED_REFS from data ENOSPC flushing (bsc#1135481). - btrfs: rename need_do_async_reclaim (bsc#1135481). - btrfs: rework btrfs_calc_reclaim_metadata_size (bsc#1135481). - btrfs: rework chunk allocation to avoid exhaustion of the system chunk array (bsc#1189077). - btrfs: rip out btrfs_space_info::total_bytes_pinned (bsc#1135481). - btrfs: rip the first_ticket_bytes logic from fail_all_tickets (bsc#1135481). - btrfs: simplify the logic in need_preemptive_flushing (bsc#1135481). - btrfs: tracepoints: convert flush states to using EM macros (bsc#1135481). - btrfs: tracepoints: fix btrfs_trigger_flush symbolic string for flags (bsc#1135481). - can: ti_hecc: Fix memleak in ti_hecc_probe (git-fixes). - can: usb: esd_usb2: esd_usb2_rx_event(): fix the interchange of the CAN RX and TX error counters (git-fixes). - ceph: clean up and optimize ceph_check_delayed_caps() (bsc#1187468). - ceph: reduce contention in ceph_check_delayed_caps() (bsc#1187468). - ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1189427). - cfg80211: Fix possible memory leak in function cfg80211_bss_update (git-fixes). - cifs: Remove unused inline function is_sysvol_or_netlogon() (bsc#1185902). - cifs: avoid starvation when refreshing dfs cache (bsc#1185902). - cifs: constify get_normalized_path() properly (bsc#1185902). - cifs: do not cargo-cult strndup() (bsc#1185902). - cifs: do not send tree disconnect to ipc shares (bsc#1185902). - cifs: do not share tcp servers with dfs mounts (bsc#1185902). - cifs: do not share tcp sessions of dfs connections (bsc#1185902). - cifs: fix check of dfs interlinks (bsc#1185902). - cifs: fix path comparison and hash calc (bsc#1185902). - cifs: get rid of @noreq param in __dfs_cache_find() (bsc#1185902). - cifs: handle different charsets in dfs cache (bsc#1185902). - cifs: keep referral server sessions alive (bsc#1185902). - cifs: missing null pointer check in cifs_mount (bsc#1185902). - cifs: prevent NULL deref in cifs_compose_mount_options() (bsc#1185902). - cifs: set a minimum of 2 minutes for refreshing dfs cache (bsc#1185902). - clk: fix leak on devm_clk_bulk_get_all() unwind (git-fixes). - clk: stm32f4: fix post divisor setup for I2S/SAI PLLs (git-fixes). - cpuidle: Allow idle states to be disabled by default (bsc#1175543) - cpuidle: Consolidate disabled state checks (bsc#1175543) - cpuidle: Drop disabled field from struct cpuidle_state (bsc#1175543) - cpuidle: Fix cpuidle_driver_state_disabled() (bsc#1175543) - cpuidle: Introduce cpuidle_driver_state_disabled() for driver quirks (bsc#1175543) - crypto: ccp - Annotate SEV Firmware file names (bsc#1189212). - crypto: qat - use proper type for vf_mask (git-fixes). - crypto: x86/curve25519 - fix cpu feature checking logic in mod_exit (git-fixes). - device-dax: Fix default return code of range_parse() (git-fixes). - dm integrity: fix missing goto in bitmap_flush_interval error handling (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (git-fixes). - dm verity: fix DM_VERITY_OPTS_MAX value (git-fixes). - dmaengine: idxd: fix setup sequence for MSIXPERM table (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-sdma: remove duplicated sdma_load_context (git-fixes). - dmaengine: of-dma: router_xlate to return -EPROBE_DEFER if controller is not yet available (git-fixes). - dmaengine: usb-dmac: Fix PM reference leak in usb_dmac_probe() (git-fixes). - dmaengine: xilinx_dma: Fix read-after-free bug when terminating transfers (git-fixes). - drivers/block/null_blk/main: Fix a double free in null_init (git-fixes). - drm/amd/display: Fix Dynamic bpp issue with 8K30 with Navi 1X (git-fixes). - drm/amd/display: Fix comparison error in dcn21 DML (git-fixes). - drm/amd/display: Fix max vstartup calculation for modes with borders (git-fixes). - drm/amd/display: Remove invalid assert for ODM + MPC case (git-fixes). - drm/amd/display: use GFP_ATOMIC in amdgpu_dm_irq_schedule_work (git-fixes). - drm/amd/display: workaround for hard hang on HPD on native DP (git-fixes). - drm/amdgpu/acp: Make PM domain really work (git-fixes). - drm/amdgpu/display: fix DMUB firmware version info (git-fixes). - drm/amdgpu/display: only enable aux backlight control for OLED panels (git-fixes). - drm/amdgpu: do not enable baco on boco platforms in runpm (git-fixes). - drm/amdgpu: fix the doorbell missing when in CGPG issue for renoir (git-fixes). - drm/dp_mst: Fix return code on sideband message failure (git-fixes). - drm/i915/dg1: gmbus pin mapping (bsc#1188700). - drm/i915/dg1: provide port/phy mapping for vbt (bsc#1188700). - drm/i915/gen9_bc: Add W/A for missing STRAP config on TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce HPD pin mappings for TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce TGP PCH DDC pin mappings (bsc#1188700). - drm/i915/gen9_bc: Recognize TGP PCH + CML combos (bsc#1188700). - drm/i915/rkl: new rkl ddc map for different PCH (bsc#1188700). - drm/i915: Add VBT AUX CH H and I (bsc#1188700). - drm/i915: Add VBT DVO ports H and I (bsc#1188700). - drm/i915: Add more AUX CHs to the enum (bsc#1188700). - drm/i915: Configure GEN11_{TBT,TC}_HOTPLUG_CTL for ports TC5/6 (bsc#1188700). - drm/i915: Correct SFC_DONE register offset (git-fixes). - drm/i915: Introduce HPD_PORT_TC&lt;n> (bsc#1188700). - drm/i915: Move hpd_pin setup to encoder init (bsc#1188700). - drm/i915: Nuke the redundant TC/TBT HPD bit defines (bsc#1188700). - drm/i915: Only access SFC_DONE when media domain is not fused off (git-fixes). - drm/meson: fix colour distortion from HDR set during vendor u-boot (git-fixes). - drm/msi/mdp4: populate priv->kms in mdp4_kms_init (git-fixes). - drm/msm/dpu: make dpu_hw_ctl_clear_all_blendstages clear necessary LMs (git-fixes). - drm/msm/dsi: Fix some reference counted resource leaks (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/nouveau/kms/nv50: workaround EFI GOP window channel format differences (git-fixes). - drm/of: free the iterator object on failure (git-fixes). - drm/of: free the right object (git-fixes). - drm/panfrost: Fix missing clk_disable_unprepare() on error in panfrost_clk_init() (git-fixes). - drm/prime: fix comment on PRIME Helpers (git-fixes). - ext4: cleanup in-core orphan list if ext4_truncate() failed to get a transaction handle (bsc#1189568). - ext4: correct the cache_nr in tracepoint ext4_es_shrink_exit (bsc#1189564). - ext4: fix avefreec in find_group_orlov (bsc#1189566). - ext4: fix kernel infoleak via ext4_extent_header (bsc#1189562). - ext4: fix potential htree corruption when growing large_dir directories (bsc#1189576). - ext4: remove check for zero nr_to_scan in ext4_es_scan() (bsc#1189565). - ext4: return error code when ext4_fill_flex_info() fails (bsc#1189563). - ext4: use ext4_grp_locked_error in mb_find_extent (bsc#1189567). - fanotify: fix copy_event_to_user() fid error clean up (bsc#1189574). - firmware_loader: fix use-after-free in firmware_fallback_sysfs (git-fixes). - firmware_loader: use -ETIMEDOUT instead of -EAGAIN in fw_load_sysfs_fallback (git-fixes). - fixup "rpm: support gz and zst compression methods" (bsc#1190358, bsc#1190428). - fpga: altera-freeze-bridge: Address warning about unused variable (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: xiilnx-spi: Address warning about unused variable (git-fixes). - fpga: zynqmp-fpga: Address warning about unused variable (git-fixes). - gpio: eic-sprd: break loop when getting NULL device resource (git-fixes). - gpio: tqmx86: really make IRQ optional (git-fixes). - i2c: dev: zero out array used for i2c reads from userspace (git-fixes). - i2c: highlander: add IRQ check (git-fixes). - i2c: iop3xx: fix deferred probing (git-fixes). - i2c: mt65xx: fix IRQ check (git-fixes). - i2c: s3c2410: fix IRQ check (git-fixes). - iio: adc: Fix incorrect exit of for-loop (git-fixes). - iio: adc: ti-ads7950: Ensure CS is deasserted after reading channels (git-fixes). - iio: humidity: hdc100x: Add margin to the conversion time (git-fixes). - intel_idle: Add module parameter to prevent ACPI _CST from being used (bsc#1175543) - intel_idle: Allow ACPI _CST to be used for selected known processors (bsc#1175543) - intel_idle: Annotate init time data structures (bsc#1175543) - intel_idle: Customize IceLake server support (bsc#1175543) - intel_idle: Disable ACPI _CST on Haswell (bsc#1175543, bsc#1177399, bsc#1180347, bsc#1180141) - intel_idle: Fix max_cstate for processor models without C-state tables (bsc#1175543) - intel_idle: Ignore _CST if control cannot be taken from the platform (bsc#1175543) - intel_idle: Refactor intel_idle_cpuidle_driver_init() (bsc#1175543) - intel_idle: Use ACPI _CST for processor models without C-state tables (bsc#1175543) - iommu/amd: Fix extended features logging (bsc#1189213). - iommu/amd: Move Stoney Ridge check to detect_ivrs() (bsc#1189762). - iommu/arm-smmu-v3: Decrease the queue size of evtq and priq (bsc#1189210). - iommu/arm-smmu-v3: add bit field SFM into GERROR_ERR_MASK (bsc#1189209). - iommu/dma: Fix IOVA reserve dma ranges (bsc#1189214). - iommu/dma: Fix compile warning in 32-bit builds (bsc#1189229). - iommu/vt-d: Check for allocation failure in aux_detach_device() (bsc#1189215). - iommu/vt-d: Define counter explicitly as unsigned int (bsc#1189216). - iommu/vt-d: Do not set then clear private data in prq_event_thread() (bsc#1189217). - iommu/vt-d: Fix sysfs leak in alloc_iommu() (bsc#1189218). - iommu/vt-d: Force to flush iotlb before creating superpage (bsc#1189219). - iommu/vt-d: Global devTLB flush when present context entry changed (bsc#1189220). - iommu/vt-d: Invalidate PASID cache when root/context entry changed (bsc#1189221). - iommu/vt-d: Reject unsupported page request modes (bsc#1189222). - ionic: add handling of larger descriptors (jsc#SLE-16649). - ionic: add new queue features to interface (jsc#SLE-16649). - ionic: aggregate Tx byte counting calls (jsc#SLE-16649). - ionic: block actions during fw reset (jsc#SLE-16649). - ionic: change mtu after queues are stopped (jsc#SLE-16649). - ionic: check for link after netdev registration (jsc#SLE-16649). - ionic: code cleanup details (jsc#SLE-16649). - ionic: fix sizeof usage (jsc#SLE-16649). - ionic: fix unchecked reference (jsc#SLE-16649). - ionic: fix up dim accounting for tx and rx (jsc#SLE-16649). - ionic: generic tx skb mapping (jsc#SLE-16649). - ionic: implement Rx page reuse (jsc#SLE-16649). - ionic: make all rx_mode work threadsafe (jsc#SLE-16649). - ionic: move rx_page_alloc and free (jsc#SLE-16649). - ionic: optimize fastpath struct usage (jsc#SLE-16649). - ionic: protect adminq from early destroy (jsc#SLE-16649). - ionic: rebuild debugfs on qcq swap (jsc#SLE-16649). - ionic: remove intr coalesce update from napi (jsc#SLE-16649). - ionic: remove some unnecessary oom messages (jsc#SLE-16649). - ionic: simplify TSO descriptor mapping (jsc#SLE-16649). - ionic: simplify rx skb alloc (jsc#SLE-16649). - ionic: simplify the intr_index use in txq_init (jsc#SLE-16649). - ionic: simplify tx clean (jsc#SLE-16649). - ionic: simplify use of completion types (jsc#SLE-16649). - ionic: start queues before announcing link up (jsc#SLE-16649). - ionic: stop watchdog when in broken state (jsc#SLE-16649). - ionic: useful names for booleans (jsc#SLE-16649). - iwlwifi: pnvm: accept multiple HW-type TLVs (git-fixes). - iwlwifi: rs-fw: do not support stbc for HE 160 (git-fixes). - iwlwifi: skip first element in the WTAS ACPI table (git-fixes). - kABI fix of usb_dcd_config_params (git-fixes). - kABI: Fix kABI after fixing vcpu-id indexed arrays (git-fixes). - kabi fix for NFSv4.1: Do not rebind to the same source port when reconnecting to the server (bnc#1186264 bnc#1189021) - kabi fix for SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - kernel, fs: Introduce and use set_restart_fn() and arch_set_restart_data() (bsc#1189153). - kernel-cert-subpackage: Fix certificate location in scriptlets (bsc#1189841). - leds: trigger: audio: Add an activate callback to ensure the initial brightness is set (git-fixes). - lib/mpi: use kcalloc in mpi_resize (git-fixes). - lib: Add zstd support to decompress (bsc#1187483, jsc#SLE-18766). - libata: fix ata_pio_sector for CONFIG_HIGHMEM (git-fixes). - mac80211: Fix insufficient headroom issue for AMSDU (git-fixes). - md/raid10: properly indicate failure when ending a failed write request (git-fixes). - md: revert io stats accounting (git-fixes). - media: TDA1997x: enable EDID support (git-fixes). - media: cxd2880-spi: Fix an error handling path (git-fixes). - media: drivers/media/usb: fix memory leak in zr364xx_probe (git-fixes). - media: dvb-usb: Fix error handling in dvb_usb_i2c_init (git-fixes). - media: dvb-usb: fix uninit-value in dvb_usb_adapter_dvb_init (git-fixes). - media: dvb-usb: fix uninit-value in vp702x_read_mac_addr (git-fixes). - media: em28xx-input: fix refcount bug in em28xx_usb_disconnect (git-fixes). - media: go7007: fix memory leak in go7007_usb_probe (git-fixes). - media: go7007: remove redundant initialization (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: stkwebcam: fix memory leak in stk_camera_probe (git-fixes). - media: venus: venc: Fix potential null pointer dereference on pointer fmt (git-fixes). - media: videobuf2-core: dequeue if start_streaming fails (git-fixes). - media: zr364xx: fix memory leaks in probe() (git-fixes). - media: zr364xx: propagate errors from zr364xx_start_readpipe() (git-fixes). - misc: atmel-ssc: lock with mutex instead of spinlock (git-fixes). - misc: rtsx: do not setting OC_POWER_DOWN reg in rtsx_pci_init_ocp() (git-fixes). - mm/thp: unmap_mapping_page() to fix THP truncate_cleanup_page() (bsc#1189569). - mm/vmscan: fix infinite loop in drop_slab_node (VM Functionality, bsc#1189301). - mm: fix memory_failure() handling of dax-namespace metadata (bsc#1189872). - mm: swap: properly update readahead statistics in unuse_pte_range() (bsc#1187619). - mmc: dw_mmc: Fix hang on data CRC error (git-fixes). - mmc: dw_mmc: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: moxart: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (git-fixes). - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (git-fixes). - mtd: cfi_cmdset_0002: fix crash when erasing/writing AMD cards (git-fixes). - nbd: Aovid double completion of a request (git-fixes). - nbd: Fix NULL pointer in flush_workqueue (git-fixes). - net/mlx5: Add ts_cqe_to_dest_cqn related bits (bsc#1188412) - net/mlx5: Properly convey driver version to firmware (git-fixes). - net/mlx5e: Add missing capability check for uplink follow (bsc#1188412) - net: dsa: mv88e6xxx: Avoid VTU corruption on 6097 (git-fixes). - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext (git-fixes). - net: stmmac: free tx skb buffer in stmmac_resume() (git-fixes). - net: usb: lan78xx: do not modify phy_device state concurrently (bsc#1188270) - nfs: fix acl memory leak of posix_acl_create() (git-fixes). - nvme-multipath: revalidate paths during rescan (bsc#1187211) - nvme-pci: Use u32 for nvme_dev.q_depth and nvme_queue.q_depth (bsc#1181972). - nvme-pci: fix NULL req in completion handler (bsc#1181972). - nvme-pci: limit maximum queue depth to 4095 (bsc#1181972). - nvme-pci: use unsigned for io queue depth (bsc#1181972). - nvme-tcp: Do not reset transport on data digest errors (bsc#1188418). - nvme-tcp: do not check blk_mq_tag_to_rq when receiving pdu data (bsc#1181972). - nvme: avoid possible double fetch in handling CQE (bsc#1181972). - nvme: code command_id with a genctr for use-after-free validation (bsc#1181972). - nvme: only call synchronize_srcu when clearing current path (bsc#1188067). - nvmet: use NVMET_MAX_NAMESPACES to set nn value (bsc#1189384). - ocfs2: fix snprintf() checking (bsc#1189581). - ocfs2: fix zero out valid data (bsc#1189579). - ocfs2: initialize ip_next_orphan (bsc#1186731). - ocfs2: issue zeroout to EOF blocks (bsc#1189582). - ovl: allow upperdir inside lowerdir (bsc#1189323). - ovl: expand warning in ovl_d_real() (bsc#1189323). - ovl: fix missing revert_creds() on error path (bsc#1189323). - ovl: perform vfs_getxattr() with mounter creds (bsc#1189323). - ovl: skip getxattr of security labels (bsc#1189323). - params: lift param_set_uint_minmax to common code (bsc#1181972). - pcmcia: i82092: fix a null pointer dereference bug (git-fixes). - perf/x86/amd: Do not touch the AMD64_EVENTSEL_HOSTONLY bit inside the guest (bsc#1189225). - pinctrl: tigerlake: Fix GPIO mapping for newer version of software (git-fixes). - platform/x86: pcengines-apuv2: Add missing terminating entries to gpio-lookup tables (git-fixes). - post.sh: detect /usr mountpoint too - power: supply: max17042: handle fails of reading status register (git-fixes). - powerpc/cacheinfo: Improve diagnostics about malformed cache lists (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Lookup cache by dt node and thread-group id (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Remove the redundant get_shared_cpu_map() (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Use name@unit instead of full DT path in debug messages (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/papr_scm: Make 'perf_stats' invisible if perf-stats unavailable (bsc#1175052 jsc#SLE-13823 bsc#1174969 jsc#SLE-12769 git-fixes). - powerpc/papr_scm: Reduce error severity if nvdimm stats inaccessible (bsc#1189197 ltc#193906). - powerpc/pseries: Fix regression while building external modules (bsc#1160010 ltc#183046 git-fixes). This changes a GPL symbol to general symbol which is kABI change but not kABI break. - powerpc/pseries: Fix update of LPAR security flavor after LPM (bsc#1188885 ltc#193722 git-fixes). - powerpc/smp: Make some symbols static (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Use existing L2 cache_map cpumask to find L3 cache siblings (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc: Fix is_kvm_guest() / kvm_para_available() (bsc#1181148 ltc#190702 git-fixes). - regulator: rt5033: Fix n_voltages settings for BUCK and LDO (git-fixes). - regulator: vctrl: Avoid lockdep warning in enable/disable ops (git-fixes). - regulator: vctrl: Use locked regulator_get_voltage in probe path (git-fixes). - rpm/kernel-binary.spec.in: Use kmod-zstd provide. This makes it possible to use kmod with ZSTD support on non-Tumbleweed. - rpm/kernel-obs-build.spec.in: make builds reproducible (bsc#1189305) - rpm/kernel-source.rpmlintrc: ignore new include/config files In 5.13, since 0e0345b77ac4, config files have no longer .h suffix. Adapt the zero-length check. Based on Martin Liska's change. - rq-qos: fix missed wake-ups in rq_qos_throttle try two (bsc#1189575). - rsi: fix an error code in rsi_probe() (git-fixes). - rsi: fix error code in rsi_load_9116_firmware() (git-fixes). - s390/ap: Fix hanging ioctl caused by wrong msg counter (bsc#1188982 LTC#193817). - s390/boot: fix use of expolines in the DMA code (bsc#1188878 ltc#193771). - scsi: blkcg: Add app identifier support for blkcg (bsc#1189385 jsc#SLE-18970). - scsi: blkcg: Fix application ID config options (bsc#1189385 jsc#SLE-18970). - scsi: cgroup: Add cgroup_get_from_id() (bsc#1189385 jsc#SLE-18970). - scsi: core: Add scsi_prot_ref_tag() helper (bsc#1189392). - scsi: ibmvfc: Do not wait for initial device scan (bsc#1127650). - scsi: libfc: Fix array index out of bound exception (bsc#1188616). - scsi: lpfc: Add 256 Gb link speed support (bsc#1189385). - scsi: lpfc: Add PCI ID support for LPe37000/LPe38000 series adapters (bsc#1189385). - scsi: lpfc: Call discovery state machine when handling PLOGI/ADISC completions (bsc#1189385). - scsi: lpfc: Clear outstanding active mailbox during PCI function reset (bsc#1189385). - scsi: lpfc: Copyright updates for 12.8.0.11 patches (bsc#1189385). - scsi: lpfc: Copyright updates for 14.0.0.0 patches (bsc#1189385). - scsi: lpfc: Delay unregistering from transport until GIDFT or ADISC completes (bsc#1189385). - scsi: lpfc: Discovery state machine fixes for LOGO handling (bsc#1189385). - scsi: lpfc: Enable adisc discovery after RSCN by default (bsc#1189385). - scsi: lpfc: Fix KASAN slab-out-of-bounds in lpfc_unreg_rpi() routine (bsc#1189385). - scsi: lpfc: Fix NULL ptr dereference with NPIV ports for RDF handling (bsc#1189385). - scsi: lpfc: Fix NVMe support reporting in log message (bsc#1189385). - scsi: lpfc: Fix build error in lpfc_scsi.c (bsc#1189385). - scsi: lpfc: Fix cq_id truncation in rq create (bsc#1189385). - scsi: lpfc: Fix function description comments for vmid routines (bsc#1189385). - scsi: lpfc: Fix memory leaks in error paths while issuing ELS RDF/SCR request (bsc#1189385). - scsi: lpfc: Fix possible ABBA deadlock in nvmet_xri_aborted() (bsc#1189385). - scsi: lpfc: Fix target reset handler from falsely returning FAILURE (bsc#1189385). - scsi: lpfc: Improve firmware download logging (bsc#1189385). - scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (bsc#1189385). - scsi: lpfc: Move initialization of phba->poll_list earlier to avoid crash (git-fixes). - scsi: lpfc: Remove REG_LOGIN check requirement to issue an ELS RDF (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer pcmd (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer temp_hdr (bsc#1189385). - scsi: lpfc: Remove use of kmalloc() in trace event logging (bsc#1189385). - scsi: lpfc: Revise Topology and RAS support checks for new adapters (bsc#1189385). - scsi: lpfc: Skip issuing ADISC when node is in NPR state (bsc#1189385). - scsi: lpfc: Skip reg_vpi when link is down for SLI3 in ADISC cmpl path (bsc#1189385). - scsi: lpfc: Update lpfc version to 12.8.0.11 (bsc#1189385). - scsi: lpfc: Update lpfc version to 14.0.0.0 (bsc#1189385). - scsi: lpfc: Use PBDE feature enabled bit to determine PBDE support (bsc#1189385). - scsi: lpfc: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189385). - scsi: lpfc: vmid: Add QFPA and VMID timeout check in worker thread (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add datastructure for supporting VMID in lpfc (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add support for VMID in mailbox command (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Append the VMID to the wqe before sending (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Functions to manage VMIDs (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement CT commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement ELS commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Introduce VMID in I/O path (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Timeout implementation for VMID (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: VMID parameter initialization (bsc#1189385 jsc#SLE-18970). - scsi: mpt3sas: Fix ReplyPostFree pool allocation (bsc#1181006). - scsi: qla2xxx: Add heartbeat check (bsc#1189392). - scsi: qla2xxx: Fix error return code in qla82xx_write_flash_dword() (bsc#1189392). - scsi: qla2xxx: Fix spelling mistakes "allloc" -> "alloc" (bsc#1189392). - scsi: qla2xxx: Fix use after free in debug code (bsc#1189392). - scsi: qla2xxx: Log PCI address in qla_nvme_unregister_remote_port() (bsc#1189392). - scsi: qla2xxx: Remove duplicate declarations (bsc#1189392). - scsi: qla2xxx: Remove redundant assignment to rval (bsc#1189392). - scsi: qla2xxx: Remove redundant continue statement in a for-loop (bsc#1189392). - scsi: qla2xxx: Remove redundant initialization of variable num_cnt (bsc#1189392). - scsi: qla2xxx: Remove unused variable 'status' (bsc#1189392). - scsi: qla2xxx: Update version to 10.02.00.107-k (bsc#1189392). - scsi: qla2xxx: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189392). - scsi: qla2xxx: Use the proper SCSI midlayer interfaces for PI (bsc#1189392). - scsi: qla2xxx: edif: Add authentication pass + fail bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add detection of secure device (bsc#1189392). - scsi: qla2xxx: edif: Add doorbell notification for app (bsc#1189392). - scsi: qla2xxx: edif: Add encryption to I/O path (bsc#1189392). - scsi: qla2xxx: edif: Add extraction of auth_els from the wire (bsc#1189392). - scsi: qla2xxx: edif: Add getfcinfo and statistic bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add key update (bsc#1189392). - scsi: qla2xxx: edif: Add send, receive, and accept for auth_els (bsc#1189392). - scsi: qla2xxx: edif: Add start + stop bsgs (bsc#1189392). - scsi: qla2xxx: edif: Increment command and completion counts (bsc#1189392). - scsi: scsi_transport_srp: Do not block target in SRP_PORT_LOST state (bsc#1184180). - scsi: target: qla2xxx: Wait for stop_phase1 at WWN removal (bsc#1189392). - scsi: zfcp: Report port fc_security as unknown early during remote cable pull (git-fixes). - serial: 8250: Mask out floating 16/32-bit bus bits (git-fixes). - serial: 8250_mtk: fix uart corruption issue when rx power off (git-fixes). - serial: 8250_pci: Avoid irq sharing for MSI(-X) interrupts (git-fixes). - serial: 8250_pci: Enumerate Elkhart Lake UARTs via dedicated driver (git-fixes). - serial: tegra: Only print FIFO error message when an error occurs (git-fixes). - slimbus: messaging: check for valid transaction id (git-fixes). - slimbus: messaging: start transaction ids from 1 instead of zero (git-fixes). - slimbus: ngd: reset dma setup during runtime pm (git-fixes). - soc: aspeed: lpc-ctrl: Fix boundary check for mmap (git-fixes). - soc: aspeed: p2a-ctrl: Fix boundary check for mmap (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: qcom: rpmhpd: Use corner in power_off (git-fixes). - soc: qcom: smsm: Fix missed interrupts if state changes while masked (git-fixes). - spi: imx: mx51-ecspi: Fix CONFIGREG delay comment (git-fixes). - spi: imx: mx51-ecspi: Fix low-speed CONFIGREG delay calculation (git-fixes). - spi: imx: mx51-ecspi: Reinstate low-speed CONFIGREG delay (git-fixes). - spi: mediatek: Fix fifo transfer (git-fixes). - spi: meson-spicc: fix memory leak in meson_spicc_remove (git-fixes). - spi: spi-fsl-dspi: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: spi-pic32: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: sprd: Fix the wrong WDG_LOAD_VAL (git-fixes). - spi: stm32h7: fix full duplex irq handler handling (git-fixes). - staging: rtl8192u: Fix bitwise vs logical operator in TranslateRxSignalStuff819xUsb() (git-fixes). - staging: rtl8712: get rid of flush_scheduled_work (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - tracing / histogram: Fix NULL pointer dereference on strcmp() on NULL event name (git-fixes). - tracing / histogram: Give calculation hist_fields a size (git-fixes). - tracing: Reject string operand in the histogram expression (git-fixes). - tty: serial: fsl_lpuart: fix the wrong mapbase value (git-fixes). - ubifs: Fix error return code in alloc_wbufs() (bsc#1189585). - ubifs: Fix memleak in ubifs_init_authentication (bsc#1189583). - ubifs: Only check replay with inode type to judge if inode linked (bsc#1187455). - ubifs: Set/Clear I_LINKABLE under i_lock for whiteout inode (bsc#1189587). - ubifs: journal: Fix error return code in ubifs_jnl_write_inode() (bsc#1189586). - usb: bdc: Fix an error handling path in 'bdc_probe()' when no suitable DMA config is available (git-fixes). - usb: dwc3: Disable phy suspend after power-on reset (git-fixes). - usb: dwc3: Separate field holding multiple properties (git-fixes). - usb: dwc3: Stop active transfers before halting the controller (git-fixes). - usb: dwc3: Use clk_bulk_prepare_enable() (git-fixes). - usb: dwc3: Use devres to get clocks (git-fixes). - usb: dwc3: core: do not do suspend for device mode if already suspended (git-fixes). - usb: dwc3: debug: Remove newline printout (git-fixes). - usb: dwc3: gadget: Check MPS of the request length (git-fixes). - usb: dwc3: gadget: Clear DCTL.ULSTCHNGREQ before set (git-fixes). - usb: dwc3: gadget: Clear DEP flags after stop transfers in ep disable (git-fixes). - usb: dwc3: gadget: Disable gadget IRQ during pullup disable (git-fixes). - usb: dwc3: gadget: Do not send unintended link state change (git-fixes). - usb: dwc3: gadget: Do not setup more than requested (git-fixes). - usb: dwc3: gadget: Fix dwc3_calc_trbs_left() (git-fixes). - usb: dwc3: gadget: Fix handling ZLP (git-fixes). - usb: dwc3: gadget: Give back staled requests (git-fixes). - usb: dwc3: gadget: Handle ZLP for sg requests (git-fixes). - usb: dwc3: gadget: Prevent EP queuing while stopping transfers (git-fixes). - usb: dwc3: gadget: Properly track pending and queued SG (git-fixes). - usb: dwc3: gadget: Restart DWC3 gadget when enabling pullup (git-fixes). - usb: dwc3: gadget: Set BESL config parameter (git-fixes). - usb: dwc3: gadget: Set link state to RX_Detect on disconnect (git-fixes). - usb: dwc3: gadget: Stop EP0 transfers during pullup disable (git-fixes). - usb: dwc3: gadget: Workaround Mirosoft's BESL check (git-fixes). - usb: dwc3: meson-g12a: add IRQ check (git-fixes). - usb: dwc3: meson-g12a: check return of dwc3_meson_g12a_usb_init (git-fixes). - usb: dwc3: of-simple: add a shutdown (git-fixes). - usb: dwc3: st: Add of_dev_put() in probe function (git-fixes). - usb: dwc3: st: Add of_node_put() before return in probe function (git-fixes). - usb: dwc3: support continuous runtime PM with dual role (git-fixes). - usb: ehci-orion: Handle errors of clk_prepare_enable() in probe (git-fixes). - usb: gadget: Export recommended BESL values (git-fixes). - usb: gadget: f_hid: added GET_IDLE and SET_IDLE handlers (git-fixes). - usb: gadget: f_hid: fixed NULL pointer dereference (git-fixes). - usb: gadget: f_hid: idle uses the highest byte for duration (git-fixes). - usb: gadget: mv_u3d: request_irq() after initializing UDC (git-fixes). - usb: gadget: udc: at91: add IRQ check (git-fixes). - usb: gadget: udc: renesas_usb3: Fix soc_device_match() abuse (git-fixes). - usb: host: ohci-tmio: add IRQ check (git-fixes). - usb: host: xhci-rcar: Do not reload firmware after the completion (git-fixes). - usb: mtu3: fix the wrong HS mult value (git-fixes). - usb: mtu3: use @mult for HS isoc or intr (git-fixes). - usb: phy: fsl-usb: add IRQ check (git-fixes). - usb: phy: tahvo: add IRQ check (git-fixes). - usb: phy: twl6030: add IRQ checks (git-fixes). - usr: Add support for zstd compressed initramfs (bsc#1187483, jsc#SLE-18766). - virt_wifi: fix error on connect (git-fixes). - wireguard: allowedips: allocate nodes in kmem_cache (git-fixes). - wireguard: allowedips: free empty intermediate nodes when removing single node (git-fixes). - wireguard: allowedips: remove nodes in O(1) (git-fixes). - writeback: fix obtain a reference to a freeing memcg css (bsc#1189577). - x86/fpu: Limit xstate copy size in xstateregs_set() (bsc#1152489). - x86/fpu: Make init_fpstate correct with optimized XSAVE (bsc#1152489). - x86/fpu: Reset state for all signal restore failures (bsc#1152489). - x86/kvm: fix vcpu-id indexed array sizes (git-fixes). - x86/sev: Make sure IRQs are disabled while GHCB is active (jsc#SLE-14337). - x86/sev: Split up runtime #VC handler for correct state tracking (jsc#SLE-14337). - x86/sev: Use "SEV: " prefix for messages from sev.c (jsc#SLE-14337). - x86/signal: Detect and prevent an alternate signal stack overflow (bsc#1152489). - x86/split_lock: Provide handle_guest_split_lock() (bsc#1187959). - xen/events: Fix race in set_evtchn_to_irq (git-fixes). - xprtrdma: Pad optimization, revisited (bsc#1189760). cluster-md-kmp-default-5.3.18-59.24.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.24.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.24.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True kernel-debug-5.3.18-59.24.1.nosrc.rpm True kernel-debug-5.3.18-59.24.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.24.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-default-5.3.18-59.24.1.nosrc.rpm True kernel-default-5.3.18-59.24.1.x86_64.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.src.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.x86_64.rpm True kernel-default-devel-5.3.18-59.24.1.x86_64.rpm True kernel-default-extra-5.3.18-59.24.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.24.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-default-optional-5.3.18-59.24.1.x86_64.rpm True kernel-devel-5.3.18-59.24.1.noarch.rpm True kernel-docs-5.3.18-59.24.1.noarch.rpm True kernel-docs-5.3.18-59.24.1.nosrc.rpm True kernel-docs-html-5.3.18-59.24.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.24.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.24.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.24.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-macros-5.3.18-59.24.1.noarch.rpm True kernel-obs-build-5.3.18-59.24.1.src.rpm True kernel-obs-build-5.3.18-59.24.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.24.1.src.rpm True kernel-obs-qa-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-5.3.18-59.24.1.nosrc.rpm True kernel-preempt-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.24.1.x86_64.rpm True kernel-source-5.3.18-59.24.1.noarch.rpm True kernel-source-5.3.18-59.24.1.src.rpm True kernel-source-vanilla-5.3.18-59.24.1.noarch.rpm True kernel-syms-5.3.18-59.24.1.src.rpm True kernel-syms-5.3.18-59.24.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.24.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.24.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.24.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.24.1.s390x.rpm True dlm-kmp-default-5.3.18-59.24.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.24.1.s390x.rpm True kernel-default-5.3.18-59.24.1.s390x.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.s390x.rpm True kernel-default-devel-5.3.18-59.24.1.s390x.rpm True kernel-default-extra-5.3.18-59.24.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.24.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.s390x.rpm True kernel-default-optional-5.3.18-59.24.1.s390x.rpm True kernel-obs-build-5.3.18-59.24.1.s390x.rpm True kernel-obs-qa-5.3.18-59.24.1.s390x.rpm True kernel-syms-5.3.18-59.24.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.24.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.24.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.24.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.24.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.24.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.24.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.24.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.24.1.ppc64le.rpm True kernel-debug-5.3.18-59.24.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-default-5.3.18-59.24.1.ppc64le.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.24.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.24.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.24.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.24.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.24.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.24.1.ppc64le.rpm True kernel-syms-5.3.18-59.24.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.24.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.24.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.24.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.24.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.24.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True dtb-aarch64-5.3.18-59.24.1.src.rpm True dtb-al-5.3.18-59.24.1.aarch64.rpm True dtb-allwinner-5.3.18-59.24.1.aarch64.rpm True dtb-altera-5.3.18-59.24.1.aarch64.rpm True dtb-amd-5.3.18-59.24.1.aarch64.rpm True dtb-amlogic-5.3.18-59.24.1.aarch64.rpm True dtb-apm-5.3.18-59.24.1.aarch64.rpm True dtb-arm-5.3.18-59.24.1.aarch64.rpm True dtb-broadcom-5.3.18-59.24.1.aarch64.rpm True dtb-cavium-5.3.18-59.24.1.aarch64.rpm True dtb-exynos-5.3.18-59.24.1.aarch64.rpm True dtb-freescale-5.3.18-59.24.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.24.1.aarch64.rpm True dtb-lg-5.3.18-59.24.1.aarch64.rpm True dtb-marvell-5.3.18-59.24.1.aarch64.rpm True dtb-mediatek-5.3.18-59.24.1.aarch64.rpm True dtb-nvidia-5.3.18-59.24.1.aarch64.rpm True dtb-qcom-5.3.18-59.24.1.aarch64.rpm True dtb-renesas-5.3.18-59.24.1.aarch64.rpm True dtb-rockchip-5.3.18-59.24.1.aarch64.rpm True dtb-socionext-5.3.18-59.24.1.aarch64.rpm True dtb-sprd-5.3.18-59.24.1.aarch64.rpm True dtb-xilinx-5.3.18-59.24.1.aarch64.rpm True dtb-zte-5.3.18-59.24.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.24.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-5.3.18-59.24.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.24.1.aarch64.rpm True kernel-default-5.3.18-59.24.1.aarch64.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.aarch64.rpm True kernel-default-devel-5.3.18-59.24.1.aarch64.rpm True kernel-default-extra-5.3.18-59.24.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.24.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.aarch64.rpm True kernel-default-optional-5.3.18-59.24.1.aarch64.rpm True kernel-obs-build-5.3.18-59.24.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.24.1.aarch64.rpm True kernel-syms-5.3.18-59.24.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.24.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.24.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.24.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3179 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3640: Fixed a Use-After-Free vulnerability in function sco_sock_sendmsg() in the bluetooth stack (bsc#1188172). - CVE-2021-3653: Missing validation of the `int_ctl` VMCB field and allows a malicious L1 guest to enable AVIC support for the L2 guest. (bsc#1189399). - CVE-2021-3656: Missing validation of the the `virt_ext` VMCB field and allows a malicious L1 guest to disable both VMLOAD/VMSAVE intercepts and VLS for the L2 guest (bsc#1189400). - CVE-2021-3679: A lack of CPU resource in tracing module functionality was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service (bnc#1189057). - CVE-2021-3732: Mounting overlayfs inside an unprivileged user namespace can reveal files (bsc#1189706). - CVE-2021-3739: Fixed a NULL pointer dereference when deleting device by invalid id (bsc#1189832 ). - CVE-2021-3743: Fixed OOB Read in qrtr_endpoint_post (bsc#1189883). - CVE-2021-3753: Fixed race out-of-bounds in virtual terminal handling (bsc#1190025). - CVE-2021-38160: Data corruption or loss could be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190117) - CVE-2021-38198: arch/x86/kvm/mmu/paging_tmpl.h incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault (bnc#1189262). - CVE-2021-38204: drivers/usb/host/max3421-hcd.c allowed physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations (bnc#1189291). - CVE-2021-38205: drivers/net/ethernet/xilinx/xilinx_emaclite.c made it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer (i.e., the real IOMEM pointer) (bnc#1189292). - CVE-2021-38207: drivers/net/ethernet/xilinx/ll_temac_main.c allowed remote attackers to cause a denial of service (buffer overflow and lockup) by sending heavy network traffic for about ten minutes (bnc#1189298). - CVE-2021-38166: Fixed an integer overflow and out-of-bounds write when many elements are placed in a single bucket in kernel/bpf/hashtab.c (bnc#1189233 ). - CVE-2021-38209: Fixed allowed observation of changes in any net namespace via net/netfilter/nf_conntrack_standalone.c (bnc#1189393). - CVE-2021-38206: Fixed NULL pointer dereference in the radiotap parser inside the mac80211 subsystem (bnc#1189296). - CVE-2021-34556: Fixed side-channel attack via a Speculative Store Bypass via unprivileged BPF program that could have obtain sensitive information from kernel memory (bsc#1188983). - CVE-2021-35477: Fixed BPF stack frame pointer which could have been abused to disclose content of arbitrary kernel memory (bsc#1188985). - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks (bsc#1190115). - CVE-2020-12770: Fixed sg_remove_request call in a certain failure cases (bsc#1171420). The following non-security bugs were fixed: - ACPI: NFIT: Fix support for virtual SPA ranges (git-fixes). - ACPI: processor: Clean up acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export function to claim _CST control (bsc#1175543) - ACPI: processor: Introduce acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Make ACPI_PROCESSOR_CSTATE depend on ACPI_PROCESSOR (bsc#1175543) - ALSA: hda - fix the 'Capture Switch' value change notifications (git-fixes). - ALSA: hda/hdmi: Add quirk to force pin connectivity on NUC10 (git-fixes). - ALSA: hda/hdmi: fix max DP-MST dev_num for Intel TGL+ platforms (git-fixes). - ALSA: hda/hdmi: let new platforms assign the pcm slot dynamically (git-fixes). - ALSA: hda/realtek - Add ALC285 HP init procedure (git-fixes). - ALSA: hda/realtek - Add type for ALC287 (git-fixes). - ALSA: hda/realtek: Change device names for quirks to barebone names (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9510 laptop (git-fixes). - ALSA: hda/realtek: Fix headset mic for Acer SWIFT SF314-56 (ALC256) (git-fixes). - ALSA: hda/realtek: Limit mic boost on HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: add mic quirk for Acer SF314-42 (git-fixes). - ALSA: hda/realtek: fix mute led of the HP Pavilion 15-eh1xxx series (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 650 G8 Notebook PC (git-fixes). - ALSA: hda/via: Apply runtime PM workaround for ASUS B23E (git-fixes). - ALSA: hda: Add quirk for ASUS Flow x13 (git-fixes). - ALSA: hda: Fix hang during shutdown due to link reset (git-fixes). - ALSA: hda: Release controller display power during shutdown/reboot (git-fixes). - ALSA: pcm: Fix mmap breakage without explicit buffer setup (git-fixes). - ALSA: pcm: fix divide error in snd_pcm_lib_ioctl (git-fixes). - ALSA: seq: Fix racy deletion of subscriber (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum 600 (git-fixes). - ALSA: usb-audio: Avoid unnecessary or invalid connector selection at resume (git-fixes). - ALSA: usb-audio: Fix regression on Sony WALKMAN NW-A45 DAC (git-fixes). - ALSA: usb-audio: Fix superfluous autosuspend recovery (git-fixes). - ALSA: usb-audio: fix incorrect clock source setting (git-fixes). - ASoC: Intel: Skylake: Fix module resource and format selection (git-fixes). - ASoC: Intel: Skylake: Leave data as is when invoking TLV IPCs (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix format selection for max98373 (git-fixes). - ASoC: SOF: Intel: hda-ipc: fix reply size checking (git-fixes). - ASoC: amd: Fix reference to PCM buffer address (git-fixes). - ASoC: component: Remove misplaced prefix handling in pin control functions (git-fixes). - ASoC: cs42l42: Correct definition of ADC Volume control (git-fixes). - ASoC: cs42l42: Do not allow SND_SOC_DAIFMT_LEFT_J (git-fixes). - ASoC: cs42l42: Fix LRCLK frame start edge (git-fixes). - ASoC: cs42l42: Fix inversion of ADC Notch Switch control (git-fixes). - ASoC: cs42l42: Remove duplicate control for WNF filter frequency (git-fixes). - ASoC: intel: atom: Fix breakage for PCM buffer address setup (git-fixes). - ASoC: intel: atom: Fix reference to PCM buffer address (git-fixes). - ASoC: mediatek: mt8183: Fix Unbalanced pm_runtime_enable in mt8183_afe_pcm_dev_probe (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold again (git-fixes). - ASoC: rt5682: Fix the issue of garbled recording after powerd_dbus_suspend (git-fixes). - ASoC: ti: j721e-evm: Check for not initialized parent_clk_id (git-fixes). - ASoC: ti: j721e-evm: Fix unbalanced domain activity tracking during startup (git-fixes). - ASoC: tlv320aic31xx: Fix jack detection after suspend (git-fixes). - ASoC: tlv320aic31xx: fix reversed bclk/wclk master bits (git-fixes). - ASoC: uniphier: Fix reference to PCM buffer address (git-fixes). - ASoC: wcd9335: Disable irq on slave ports in the remove function (git-fixes). - ASoC: wcd9335: Fix a double irq free in the remove function (git-fixes). - ASoC: wcd9335: Fix a memory leak in the error handling path of the probe function (git-fixes). - ASoC: xilinx: Fix reference to PCM buffer address (git-fixes). - Avoid double printing SUSE specific flags in mod->taint (bsc#1190413). - Bluetooth: add timeout sanity check to hci_inquiry (git-fixes). - Bluetooth: btusb: Fix a unspported condition to set available debug features (git-fixes). - Bluetooth: btusb: check conditions before enabling USB ALT 3 for WBS (git-fixes). - Bluetooth: defer cleanup of resources in hci_unregister_dev() (git-fixes). - Bluetooth: fix repeated calls to sco_sock_kill (git-fixes). - Bluetooth: hidp: use correct wait queue when removing ctrl_wait (git-fixes). - Bluetooth: increase BTNAMSIZ to 21 chars to fix potential buffer overflow (git-fixes). - Bluetooth: mgmt: Fix wrong opcode in the response for add_adv cmd (git-fixes). - Bluetooth: sco: prevent information leak in sco_conn_defer_accept() (git-fixes). - Documentation: admin-guide: PM: Add intel_idle document (bsc#1175543) - KVM: VMX: Drop guest CPUID check for VMXE in vmx_set_cr4() (bsc#1188786). - KVM: VMX: Enable machine check support for 32bit targets (bsc#1188787). - KVM: VMX: Explicitly clear RFLAGS.CF and RFLAGS.ZF in VM-Exit RSB path (bsc#1188788). - KVM: VMX: Extend VMXs #AC interceptor to handle split lock #AC in guest (bsc#1187959). - KVM: nVMX: Handle split-lock #AC exceptions that happen in L2 (bsc#1187959). - KVM: nVMX: Really make emulated nested preemption timer pinned (bsc#1188780). - KVM: nVMX: Reset the segment cache when stuffing guest segs (bsc#1188781). - KVM: nVMX: Skip IBPB when switching between vmcs01 and vmcs02 (bsc#1188782). - KVM: nVMX: Sync unsync'd vmcs02 state to vmcs12 on migration (bsc#1188783). - KVM: nVMX: Truncate bits 63:32 of VMCS field on nested check in !64-bit (bsc#1188784). - KVM: x86: Emulate split-lock access as a write in emulator (bsc#1187959). - KVM: x86: bit 8 of non-leaf PDPEs is not reserved (bsc#1188790). - NFS: Correct size calculation for create reply length (bsc#1189870). - NFSv4.1: Do not rebind to the same source port when (bnc#1186264 bnc#1189021) - NFSv4/pNFS: Do not call _nfs4_pnfs_v3_ds_connect multiple times (git-fixes). - NFSv4: Initialise connection to the server in nfs4_alloc_client() (bsc#1040364). - PCI/MSI: Correct misleading comments (git-fixes). - PCI/MSI: Do not set invalid bits in MSI mask (git-fixes). - PCI/MSI: Enable and mask MSI-X early (git-fixes). - PCI/MSI: Mask all unused MSI-X entries (git-fixes). - PCI/MSI: Skip masking MSI-X on Xen PV (git-fixes). - PCI/MSI: Use msi_mask_irq() in pci_msi_shutdown() (git-fixes). - PCI: Increase D3 delay for AMD Renoir/Cezanne XHCI (git-fixes). - PCI: PM: Avoid forcing PCI_D0 for wakeup reasons inconsistently (git-fixes). - PCI: PM: Enable PME if it can be signaled from D3cold (git-fixes). - RDMA/bnxt_re: Fix stats counters (bsc#1188231). - SUNRPC: 'Directory with parent 'rpc_clnt' already present!' (bsc#1168202 bsc#1188924). - SUNRPC: Fix the batch tasks count wraparound (git-fixes). - SUNRPC: Should wake up the privileged task firstly (git-fixes). - SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - SUNRPC: fix use-after-free in rpc_free_client_work() (bsc#1168202 bsc#1188924). - SUNRPC: improve error response to over-size gss credential (bsc#1190022). - SUNRPC: prevent port reuse on transports which do not request it (bnc#1186264 bnc#1189021). - USB: core: Avoid WARNings for 0-length descriptor requests (git-fixes). - USB: serial: ch341: fix character loss at high transfer rates (git-fixes). - USB: serial: ftdi_sio: add device ID for Auto-M3 OP-COM v2 (git-fixes). - USB: serial: option: add Telit FD980 composition 0x1056 (git-fixes). - USB: usbtmc: Fix RCU stall warning (git-fixes). - USB:ehci:fix Kunpeng920 ehci hardware problem (git-fixes). - VMCI: fix NULL pointer dereference when unmapping queue pair (git-fixes). - ath6kl: wmi: fix an error code in ath6kl_wmi_sync_point() (git-fixes). - ath9k: Clear key cache explicitly on disabling hardware (git-fixes). - ath: Use safer key clearing with key cache entries (git-fixes). - bcma: Fix memory leak for internally-handled cores (git-fixes). - bdi: Do not use freezable workqueue (bsc#1189573). - blk-iolatency: error out if blk_get_queue() failed in iolatency_set_limit() (bsc#1189507). - blk-mq-sched: Fix blk_mq_sched_alloc_tags() error handling (bsc#1189506). - blk-wbt: introduce a new disable state to prevent false positive by rwb_enabled() (bsc#1189503). - blk-wbt: make sure throttle is enabled properly (bsc#1189504). - block: fix trace completion for chained bio (bsc#1189505). - bnxt_en: Validate vlan protocol ID on RX packets (jsc#SLE-15075). - brcmfmac: pcie: fix oops on failure to resume and reprobe (git-fixes). - btrfs: Rename __btrfs_alloc_chunk to btrfs_alloc_chunk (bsc#1189079). - btrfs: add a trace class for dumping the current ENOSPC state (bsc#1135481). - btrfs: add a trace point for reserve tickets (bsc#1135481). - btrfs: adjust the flush trace point to include the source (bsc#1135481). - btrfs: check reclaim_size in need_preemptive_reclaim (bsc#1135481). - btrfs: factor out create_chunk() (bsc#1189077). - btrfs: factor out decide_stripe_size() (bsc#1189077). - btrfs: factor out gather_device_info() (bsc#1189077). - btrfs: factor out init_alloc_chunk_ctl (bsc#1189077). - btrfs: fix btrfs_calc_reclaim_metadata_size calculation (bsc#1135481). - btrfs: fix deadlock with concurrent chunk allocations involving system chunks (bsc#1189077). - btrfs: handle invalid profile in chunk allocation (bsc#1189077). - btrfs: implement space clamping for preemptive flushing (bsc#1135481). - btrfs: improve preemptive background space flushing (bsc#1135481). - btrfs: introduce a FORCE_COMMIT_TRANS flush operation (bsc#1135481). - btrfs: introduce alloc_chunk_ctl (bsc#1189077). - btrfs: introduce chunk allocation policy (bsc#1189077). - btrfs: make flush_space take a enum btrfs_flush_state instead of int (bsc#1135481). - btrfs: move the chunk_mutex in btrfs_read_chunk_tree (bsc#1189077). - btrfs: parameterize dev_extent_min for chunk allocation (bsc#1189077). - btrfs: refactor find_free_dev_extent_start() (bsc#1189077). - btrfs: remove FLUSH_DELAYED_REFS from data ENOSPC flushing (bsc#1135481). - btrfs: rename need_do_async_reclaim (bsc#1135481). - btrfs: rework btrfs_calc_reclaim_metadata_size (bsc#1135481). - btrfs: rework chunk allocation to avoid exhaustion of the system chunk array (bsc#1189077). - btrfs: rip out btrfs_space_info::total_bytes_pinned (bsc#1135481). - btrfs: rip the first_ticket_bytes logic from fail_all_tickets (bsc#1135481). - btrfs: simplify the logic in need_preemptive_flushing (bsc#1135481). - btrfs: tracepoints: convert flush states to using EM macros (bsc#1135481). - btrfs: tracepoints: fix btrfs_trigger_flush symbolic string for flags (bsc#1135481). - can: ti_hecc: Fix memleak in ti_hecc_probe (git-fixes). - can: usb: esd_usb2: esd_usb2_rx_event(): fix the interchange of the CAN RX and TX error counters (git-fixes). - ceph: clean up and optimize ceph_check_delayed_caps() (bsc#1187468). - ceph: reduce contention in ceph_check_delayed_caps() (bsc#1187468). - ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1189427). - cifs: Remove unused inline function is_sysvol_or_netlogon() (bsc#1185902). - cifs: avoid starvation when refreshing dfs cache (bsc#1185902). - cifs: constify get_normalized_path() properly (bsc#1185902). - cifs: do not cargo-cult strndup() (bsc#1185902). - cifs: do not send tree disconnect to ipc shares (bsc#1185902). - cifs: do not share tcp servers with dfs mounts (bsc#1185902). - cifs: do not share tcp sessions of dfs connections (bsc#1185902). - cifs: fix check of dfs interlinks (bsc#1185902). - cifs: fix path comparison and hash calc (bsc#1185902). - cifs: get rid of @noreq param in __dfs_cache_find() (bsc#1185902). - cifs: handle different charsets in dfs cache (bsc#1185902). - cifs: keep referral server sessions alive (bsc#1185902). - cifs: missing null pointer check in cifs_mount (bsc#1185902). - cifs: prevent NULL deref in cifs_compose_mount_options() (bsc#1185902). - cifs: set a minimum of 2 minutes for refreshing dfs cache (bsc#1185902). - clk: fix leak on devm_clk_bulk_get_all() unwind (git-fixes). - clk: stm32f4: fix post divisor setup for I2S/SAI PLLs (git-fixes). - cpuidle: Allow idle states to be disabled by default (bsc#1175543) - cpuidle: Consolidate disabled state checks (bsc#1175543) - cpuidle: Drop disabled field from struct cpuidle_state (bsc#1175543) - cpuidle: Fix cpuidle_driver_state_disabled() (bsc#1175543) - cpuidle: Introduce cpuidle_driver_state_disabled() for driver quirks (bsc#1175543) - crypto: ccp - Annotate SEV Firmware file names (bsc#1189212). - crypto: qat - use proper type for vf_mask (git-fixes). - crypto: x86/curve25519 - fix cpu feature checking logic in mod_exit (git-fixes). - device-dax: Fix default return code of range_parse() (git-fixes). - dm integrity: fix missing goto in bitmap_flush_interval error handling (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (git-fixes). - dm verity: fix DM_VERITY_OPTS_MAX value (git-fixes). - dmaengine: idxd: fix setup sequence for MSIXPERM table (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-sdma: remove duplicated sdma_load_context (git-fixes). - dmaengine: of-dma: router_xlate to return -EPROBE_DEFER if controller is not yet available (git-fixes). - dmaengine: usb-dmac: Fix PM reference leak in usb_dmac_probe() (git-fixes). - dmaengine: xilinx_dma: Fix read-after-free bug when terminating transfers (git-fixes). - drivers/block/null_blk/main: Fix a double free in null_init (git-fixes). - drm/amd/display: Fix Dynamic bpp issue with 8K30 with Navi 1X (git-fixes). - drm/amd/display: Fix comparison error in dcn21 DML (git-fixes). - drm/amd/display: Fix max vstartup calculation for modes with borders (git-fixes). - drm/amd/display: Remove invalid assert for ODM + MPC case (git-fixes). - drm/amd/display: use GFP_ATOMIC in amdgpu_dm_irq_schedule_work (git-fixes). - drm/amd/display: workaround for hard hang on HPD on native DP (git-fixes). - drm/amdgpu/acp: Make PM domain really work (git-fixes). - drm/amdgpu/display: fix DMUB firmware version info (git-fixes). - drm/amdgpu/display: only enable aux backlight control for OLED panels (git-fixes). - drm/amdgpu: do not enable baco on boco platforms in runpm (git-fixes). - drm/amdgpu: fix the doorbell missing when in CGPG issue for renoir (git-fixes). - drm/dp_mst: Fix return code on sideband message failure (git-fixes). - drm/i915/dg1: gmbus pin mapping (bsc#1188700). - drm/i915/dg1: provide port/phy mapping for vbt (bsc#1188700). - drm/i915/gen9_bc: Add W/A for missing STRAP config on TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce HPD pin mappings for TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce TGP PCH DDC pin mappings (bsc#1188700). - drm/i915/gen9_bc: Recognize TGP PCH + CML combos (bsc#1188700). - drm/i915/rkl: new rkl ddc map for different PCH (bsc#1188700). - drm/i915: Add VBT AUX CH H and I (bsc#1188700). - drm/i915: Add VBT DVO ports H and I (bsc#1188700). - drm/i915: Add more AUX CHs to the enum (bsc#1188700). - drm/i915: Configure GEN11_{TBT,TC}_HOTPLUG_CTL for ports TC5/6 (bsc#1188700). - drm/i915: Correct SFC_DONE register offset (git-fixes). - drm/i915: Introduce HPD_PORT_TC&lt;n> (bsc#1188700). - drm/i915: Move hpd_pin setup to encoder init (bsc#1188700). - drm/i915: Nuke the redundant TC/TBT HPD bit defines (bsc#1188700). - drm/i915: Only access SFC_DONE when media domain is not fused off (git-fixes). - drm/meson: fix colour distortion from HDR set during vendor u-boot (git-fixes). - drm/msi/mdp4: populate priv->kms in mdp4_kms_init (git-fixes). - drm/msm/dpu: make dpu_hw_ctl_clear_all_blendstages clear necessary LMs (git-fixes). - drm/msm/dsi: Fix some reference counted resource leaks (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/nouveau/kms/nv50: workaround EFI GOP window channel format differences (git-fixes). - drm/of: free the iterator object on failure (git-fixes). - drm/of: free the right object (git-fixes). - drm/panfrost: Fix missing clk_disable_unprepare() on error in panfrost_clk_init() (git-fixes). - drm/prime: fix comment on PRIME Helpers (git-fixes). - ext4: cleanup in-core orphan list if ext4_truncate() failed to get a transaction handle (bsc#1189568). - ext4: correct the cache_nr in tracepoint ext4_es_shrink_exit (bsc#1189564). - ext4: fix avefreec in find_group_orlov (bsc#1189566). - ext4: fix kernel infoleak via ext4_extent_header (bsc#1189562). - ext4: fix potential htree corruption when growing large_dir directories (bsc#1189576). - ext4: remove check for zero nr_to_scan in ext4_es_scan() (bsc#1189565). - ext4: return error code when ext4_fill_flex_info() fails (bsc#1189563). - ext4: use ext4_grp_locked_error in mb_find_extent (bsc#1189567). - fanotify: fix copy_event_to_user() fid error clean up (bsc#1189574). - firmware_loader: fix use-after-free in firmware_fallback_sysfs (git-fixes). - firmware_loader: use -ETIMEDOUT instead of -EAGAIN in fw_load_sysfs_fallback (git-fixes). - fixup "rpm: support gz and zst compression methods" (bsc#1190358, bsc#1190428). - fpga: altera-freeze-bridge: Address warning about unused variable (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: xiilnx-spi: Address warning about unused variable (git-fixes). - fpga: zynqmp-fpga: Address warning about unused variable (git-fixes). - gpio: eic-sprd: break loop when getting NULL device resource (git-fixes). - gpio: tqmx86: really make IRQ optional (git-fixes). - i2c: dev: zero out array used for i2c reads from userspace (git-fixes). - i2c: highlander: add IRQ check (git-fixes). - i2c: iop3xx: fix deferred probing (git-fixes). - i2c: mt65xx: fix IRQ check (git-fixes). - i2c: s3c2410: fix IRQ check (git-fixes). - iio: adc: Fix incorrect exit of for-loop (git-fixes). - iio: adc: ti-ads7950: Ensure CS is deasserted after reading channels (git-fixes). - iio: humidity: hdc100x: Add margin to the conversion time (git-fixes). - intel_idle: Add module parameter to prevent ACPI _CST from being used (bsc#1175543) - intel_idle: Allow ACPI _CST to be used for selected known processors (bsc#1175543) - intel_idle: Annotate init time data structures (bsc#1175543) - intel_idle: Customize IceLake server support (bsc#1175543) - intel_idle: Disable ACPI _CST on Haswell (bsc#1175543, bsc#1177399, bsc#1180347, bsc#1180141) - intel_idle: Fix max_cstate for processor models without C-state tables (bsc#1175543) - intel_idle: Ignore _CST if control cannot be taken from the platform (bsc#1175543) - intel_idle: Refactor intel_idle_cpuidle_driver_init() (bsc#1175543) - intel_idle: Use ACPI _CST for processor models without C-state tables (bsc#1175543) - iommu/amd: Fix extended features logging (bsc#1189213). - iommu/amd: Move Stoney Ridge check to detect_ivrs() (bsc#1189762). - iommu/arm-smmu-v3: Decrease the queue size of evtq and priq (bsc#1189210). - iommu/arm-smmu-v3: add bit field SFM into GERROR_ERR_MASK (bsc#1189209). - iommu/dma: Fix IOVA reserve dma ranges (bsc#1189214). - iommu/dma: Fix compile warning in 32-bit builds (bsc#1189229). - iommu/vt-d: Check for allocation failure in aux_detach_device() (bsc#1189215). - iommu/vt-d: Define counter explicitly as unsigned int (bsc#1189216). - iommu/vt-d: Do not set then clear private data in prq_event_thread() (bsc#1189217). - iommu/vt-d: Fix sysfs leak in alloc_iommu() (bsc#1189218). - iommu/vt-d: Force to flush iotlb before creating superpage (bsc#1189219). - iommu/vt-d: Global devTLB flush when present context entry changed (bsc#1189220). - iommu/vt-d: Invalidate PASID cache when root/context entry changed (bsc#1189221). - iommu/vt-d: Reject unsupported page request modes (bsc#1189222). - ionic: add handling of larger descriptors (jsc#SLE-16649). - ionic: add new queue features to interface (jsc#SLE-16649). - ionic: aggregate Tx byte counting calls (jsc#SLE-16649). - ionic: block actions during fw reset (jsc#SLE-16649). - ionic: change mtu after queues are stopped (jsc#SLE-16649). - ionic: check for link after netdev registration (jsc#SLE-16649). - ionic: code cleanup details (jsc#SLE-16649). - ionic: fix sizeof usage (jsc#SLE-16649). - ionic: fix unchecked reference (jsc#SLE-16649). - ionic: fix up dim accounting for tx and rx (jsc#SLE-16649). - ionic: generic tx skb mapping (jsc#SLE-16649). - ionic: implement Rx page reuse (jsc#SLE-16649). - ionic: make all rx_mode work threadsafe (jsc#SLE-16649). - ionic: move rx_page_alloc and free (jsc#SLE-16649). - ionic: optimize fastpath struct usage (jsc#SLE-16649). - ionic: protect adminq from early destroy (jsc#SLE-16649). - ionic: rebuild debugfs on qcq swap (jsc#SLE-16649). - ionic: remove intr coalesce update from napi (jsc#SLE-16649). - ionic: remove some unnecessary oom messages (jsc#SLE-16649). - ionic: simplify TSO descriptor mapping (jsc#SLE-16649). - ionic: simplify rx skb alloc (jsc#SLE-16649). - ionic: simplify the intr_index use in txq_init (jsc#SLE-16649). - ionic: simplify tx clean (jsc#SLE-16649). - ionic: simplify use of completion types (jsc#SLE-16649). - ionic: start queues before announcing link up (jsc#SLE-16649). - ionic: stop watchdog when in broken state (jsc#SLE-16649). - ionic: useful names for booleans (jsc#SLE-16649). - iwlwifi: pnvm: accept multiple HW-type TLVs (git-fixes). - iwlwifi: rs-fw: do not support stbc for HE 160 (git-fixes). - iwlwifi: skip first element in the WTAS ACPI table (git-fixes). - kABI fix of usb_dcd_config_params (git-fixes). - kABI: Fix kABI after fixing vcpu-id indexed arrays (git-fixes). - kabi fix for NFSv4.1: Do not rebind to the same source port when reconnecting to the server (bnc#1186264 bnc#1189021) - kabi fix for SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - kernel, fs: Introduce and use set_restart_fn() and arch_set_restart_data() (bsc#1189153). - kernel-cert-subpackage: Fix certificate location in scriptlets (bsc#1189841). - leds: trigger: audio: Add an activate callback to ensure the initial brightness is set (git-fixes). - lib/mpi: use kcalloc in mpi_resize (git-fixes). - lib: Add zstd support to decompress (bsc#1187483, jsc#SLE-18766). - libata: fix ata_pio_sector for CONFIG_HIGHMEM (git-fixes). - mac80211: Fix insufficient headroom issue for AMSDU (git-fixes). - md/raid10: properly indicate failure when ending a failed write request (git-fixes). - md: revert io stats accounting (git-fixes). - media: TDA1997x: enable EDID support (git-fixes). - media: cxd2880-spi: Fix an error handling path (git-fixes). - media: drivers/media/usb: fix memory leak in zr364xx_probe (git-fixes). - media: dvb-usb: Fix error handling in dvb_usb_i2c_init (git-fixes). - media: dvb-usb: fix uninit-value in dvb_usb_adapter_dvb_init (git-fixes). - media: dvb-usb: fix uninit-value in vp702x_read_mac_addr (git-fixes). - media: em28xx-input: fix refcount bug in em28xx_usb_disconnect (git-fixes). - media: go7007: fix memory leak in go7007_usb_probe (git-fixes). - media: go7007: remove redundant initialization (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: stkwebcam: fix memory leak in stk_camera_probe (git-fixes). - media: venus: venc: Fix potential null pointer dereference on pointer fmt (git-fixes). - media: videobuf2-core: dequeue if start_streaming fails (git-fixes). - media: zr364xx: fix memory leaks in probe() (git-fixes). - media: zr364xx: propagate errors from zr364xx_start_readpipe() (git-fixes). - misc: atmel-ssc: lock with mutex instead of spinlock (git-fixes). - misc: rtsx: do not setting OC_POWER_DOWN reg in rtsx_pci_init_ocp() (git-fixes). - mm/thp: unmap_mapping_page() to fix THP truncate_cleanup_page() (bsc#1189569). - mm/vmscan: fix infinite loop in drop_slab_node (VM Functionality, bsc#1189301). - mm: fix memory_failure() handling of dax-namespace metadata (bsc#1189872). - mm: swap: properly update readahead statistics in unuse_pte_range() (bsc#1187619). - mmc: dw_mmc: Fix hang on data CRC error (git-fixes). - mmc: dw_mmc: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: moxart: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (git-fixes). - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (git-fixes). - mtd: cfi_cmdset_0002: fix crash when erasing/writing AMD cards (git-fixes). - nbd: Aovid double completion of a request (git-fixes). - nbd: Fix NULL pointer in flush_workqueue (git-fixes). - net/mlx5: Add ts_cqe_to_dest_cqn related bits (bsc#1188412) - net/mlx5: Properly convey driver version to firmware (git-fixes). - net/mlx5e: Add missing capability check for uplink follow (bsc#1188412) - net: dsa: mv88e6xxx: Avoid VTU corruption on 6097 (git-fixes). - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext (git-fixes). - net: stmmac: free tx skb buffer in stmmac_resume() (git-fixes). - net: usb: lan78xx: do not modify phy_device state concurrently (bsc#1188270) - nfs: fix acl memory leak of posix_acl_create() (git-fixes). - nvme-multipath: revalidate paths during rescan (bsc#1187211) - nvme-pci: Use u32 for nvme_dev.q_depth and nvme_queue.q_depth (bsc#1181972). - nvme-pci: fix NULL req in completion handler (bsc#1181972). - nvme-pci: limit maximum queue depth to 4095 (bsc#1181972). - nvme-pci: use unsigned for io queue depth (bsc#1181972). - nvme-tcp: Do not reset transport on data digest errors (bsc#1188418). - nvme-tcp: do not check blk_mq_tag_to_rq when receiving pdu data (bsc#1181972). - nvme: avoid possible double fetch in handling CQE (bsc#1181972). - nvme: code command_id with a genctr for use-after-free validation (bsc#1181972). - nvme: only call synchronize_srcu when clearing current path (bsc#1188067). - nvmet: use NVMET_MAX_NAMESPACES to set nn value (bsc#1189384). - ocfs2: fix snprintf() checking (bsc#1189581). - ocfs2: fix zero out valid data (bsc#1189579). - ocfs2: initialize ip_next_orphan (bsc#1186731). - ocfs2: issue zeroout to EOF blocks (bsc#1189582). - ovl: allow upperdir inside lowerdir (bsc#1189323). - ovl: expand warning in ovl_d_real() (bsc#1189323). - ovl: fix missing revert_creds() on error path (bsc#1189323). - ovl: perform vfs_getxattr() with mounter creds (bsc#1189323). - ovl: skip getxattr of security labels (bsc#1189323). - params: lift param_set_uint_minmax to common code (bsc#1181972). - pcmcia: i82092: fix a null pointer dereference bug (git-fixes). - perf/x86/amd: Do not touch the AMD64_EVENTSEL_HOSTONLY bit inside the guest (bsc#1189225). - pinctrl: tigerlake: Fix GPIO mapping for newer version of software (git-fixes). - platform/x86: pcengines-apuv2: Add missing terminating entries to gpio-lookup tables (git-fixes). - post.sh: detect /usr mountpoint too - power: supply: max17042: handle fails of reading status register (git-fixes). - powerpc/cacheinfo: Improve diagnostics about malformed cache lists (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Lookup cache by dt node and thread-group id (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Remove the redundant get_shared_cpu_map() (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Use name@unit instead of full DT path in debug messages (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/papr_scm: Make 'perf_stats' invisible if perf-stats unavailable (bsc#1175052 jsc#SLE-13823 bsc#1174969 jsc#SLE-12769 git-fixes). - powerpc/papr_scm: Reduce error severity if nvdimm stats inaccessible (bsc#1189197 ltc#193906). - powerpc/pseries: Fix regression while building external modules (bsc#1160010 ltc#183046 git-fixes). - powerpc/pseries: Fix update of LPAR security flavor after LPM (bsc#1188885 ltc#193722 git-fixes). - powerpc/smp: Make some symbols static (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Use existing L2 cache_map cpumask to find L3 cache siblings (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc: Fix is_kvm_guest() / kvm_para_available() (bsc#1181148 ltc#190702 git-fixes). - regulator: rt5033: Fix n_voltages settings for BUCK and LDO (git-fixes). - regulator: vctrl: Avoid lockdep warning in enable/disable ops (git-fixes). - regulator: vctrl: Use locked regulator_get_voltage in probe path (git-fixes). - rpm/kernel-binary.spec.in: Use kmod-zstd provide. This makes it possible to use kmod with ZSTD support on non-Tumbleweed. - rpm/kernel-obs-build.spec.in: make builds reproducible (bsc#1189305) - rpm/kernel-source.rpmlintrc: ignore new include/config files In 5.13, since 0e0345b77ac4, config files have no longer .h suffix. Adapt the zero-length check. Based on Martin Liska's change. - rq-qos: fix missed wake-ups in rq_qos_throttle try two (bsc#1189575). - rsi: fix an error code in rsi_probe() (git-fixes). - rsi: fix error code in rsi_load_9116_firmware() (git-fixes). - s390/ap: Fix hanging ioctl caused by wrong msg counter (bsc#1188982 LTC#193817). - s390/boot: fix use of expolines in the DMA code (bsc#1188878 ltc#193771). - scsi: blkcg: Add app identifier support for blkcg (bsc#1189385 jsc#SLE-18970). - scsi: blkcg: Fix application ID config options (bsc#1189385 jsc#SLE-18970). - scsi: cgroup: Add cgroup_get_from_id() (bsc#1189385 jsc#SLE-18970). - scsi: core: Add scsi_prot_ref_tag() helper (bsc#1189392). - scsi: ibmvfc: Do not wait for initial device scan (bsc#1127650). - scsi: libfc: Fix array index out of bound exception (bsc#1188616). - scsi: lpfc: Add 256 Gb link speed support (bsc#1189385). - scsi: lpfc: Add PCI ID support for LPe37000/LPe38000 series adapters (bsc#1189385). - scsi: lpfc: Call discovery state machine when handling PLOGI/ADISC completions (bsc#1189385). - scsi: lpfc: Clear outstanding active mailbox during PCI function reset (bsc#1189385). - scsi: lpfc: Copyright updates for 12.8.0.11 patches (bsc#1189385). - scsi: lpfc: Copyright updates for 14.0.0.0 patches (bsc#1189385). - scsi: lpfc: Delay unregistering from transport until GIDFT or ADISC completes (bsc#1189385). - scsi: lpfc: Discovery state machine fixes for LOGO handling (bsc#1189385). - scsi: lpfc: Enable adisc discovery after RSCN by default (bsc#1189385). - scsi: lpfc: Fix KASAN slab-out-of-bounds in lpfc_unreg_rpi() routine (bsc#1189385). - scsi: lpfc: Fix NULL ptr dereference with NPIV ports for RDF handling (bsc#1189385). - scsi: lpfc: Fix NVMe support reporting in log message (bsc#1189385). - scsi: lpfc: Fix build error in lpfc_scsi.c (bsc#1189385). - scsi: lpfc: Fix cq_id truncation in rq create (bsc#1189385). - scsi: lpfc: Fix function description comments for vmid routines (bsc#1189385). - scsi: lpfc: Fix memory leaks in error paths while issuing ELS RDF/SCR request (bsc#1189385). - scsi: lpfc: Fix possible ABBA deadlock in nvmet_xri_aborted() (bsc#1189385). - scsi: lpfc: Fix target reset handler from falsely returning FAILURE (bsc#1189385). - scsi: lpfc: Improve firmware download logging (bsc#1189385). - scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (bsc#1189385). - scsi: lpfc: Move initialization of phba->poll_list earlier to avoid crash (git-fixes). - scsi: lpfc: Remove REG_LOGIN check requirement to issue an ELS RDF (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer pcmd (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer temp_hdr (bsc#1189385). - scsi: lpfc: Remove use of kmalloc() in trace event logging (bsc#1189385). - scsi: lpfc: Revise Topology and RAS support checks for new adapters (bsc#1189385). - scsi: lpfc: Skip issuing ADISC when node is in NPR state (bsc#1189385). - scsi: lpfc: Skip reg_vpi when link is down for SLI3 in ADISC cmpl path (bsc#1189385). - scsi: lpfc: Update lpfc version to 12.8.0.11 (bsc#1189385). - scsi: lpfc: Update lpfc version to 14.0.0.0 (bsc#1189385). - scsi: lpfc: Use PBDE feature enabled bit to determine PBDE support (bsc#1189385). - scsi: lpfc: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189385). - scsi: lpfc: vmid: Add QFPA and VMID timeout check in worker thread (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add datastructure for supporting VMID in lpfc (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add support for VMID in mailbox command (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Append the VMID to the wqe before sending (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Functions to manage VMIDs (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement CT commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement ELS commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Introduce VMID in I/O path (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Timeout implementation for VMID (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: VMID parameter initialization (bsc#1189385 jsc#SLE-18970). - scsi: mpt3sas: Fix ReplyPostFree pool allocation (bsc#1181006). - scsi: qla2xxx: Add heartbeat check (bsc#1189392). - scsi: qla2xxx: Fix error return code in qla82xx_write_flash_dword() (bsc#1189392). - scsi: qla2xxx: Fix spelling mistakes "allloc" -> "alloc" (bsc#1189392). - scsi: qla2xxx: Fix use after free in debug code (bsc#1189392). - scsi: qla2xxx: Log PCI address in qla_nvme_unregister_remote_port() (bsc#1189392). - scsi: qla2xxx: Remove duplicate declarations (bsc#1189392). - scsi: qla2xxx: Remove redundant assignment to rval (bsc#1189392). - scsi: qla2xxx: Remove redundant continue statement in a for-loop (bsc#1189392). - scsi: qla2xxx: Remove redundant initialization of variable num_cnt (bsc#1189392). - scsi: qla2xxx: Remove unused variable 'status' (bsc#1189392). - scsi: qla2xxx: Update version to 10.02.00.107-k (bsc#1189392). - scsi: qla2xxx: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189392). - scsi: qla2xxx: Use the proper SCSI midlayer interfaces for PI (bsc#1189392). - scsi: qla2xxx: edif: Add authentication pass + fail bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add detection of secure device (bsc#1189392). - scsi: qla2xxx: edif: Add doorbell notification for app (bsc#1189392). - scsi: qla2xxx: edif: Add encryption to I/O path (bsc#1189392). - scsi: qla2xxx: edif: Add extraction of auth_els from the wire (bsc#1189392). - scsi: qla2xxx: edif: Add getfcinfo and statistic bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add key update (bsc#1189392). - scsi: qla2xxx: edif: Add send, receive, and accept for auth_els (bsc#1189392). - scsi: qla2xxx: edif: Add start + stop bsgs (bsc#1189392). - scsi: qla2xxx: edif: Increment command and completion counts (bsc#1189392). - scsi: scsi_transport_srp: Do not block target in SRP_PORT_LOST state (bsc#1184180). - scsi: target: qla2xxx: Wait for stop_phase1 at WWN removal (bsc#1189392). - scsi: zfcp: Report port fc_security as unknown early during remote cable pull (git-fixes). - serial: 8250: Mask out floating 16/32-bit bus bits (git-fixes). - serial: 8250_mtk: fix uart corruption issue when rx power off (git-fixes). - serial: 8250_pci: Avoid irq sharing for MSI(-X) interrupts (git-fixes). - serial: 8250_pci: Enumerate Elkhart Lake UARTs via dedicated driver (git-fixes). - serial: tegra: Only print FIFO error message when an error occurs (git-fixes). - slimbus: messaging: check for valid transaction id (git-fixes). - slimbus: messaging: start transaction ids from 1 instead of zero (git-fixes). - slimbus: ngd: reset dma setup during runtime pm (git-fixes). - soc: aspeed: lpc-ctrl: Fix boundary check for mmap (git-fixes). - soc: aspeed: p2a-ctrl: Fix boundary check for mmap (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: qcom: rpmhpd: Use corner in power_off (git-fixes). - soc: qcom: smsm: Fix missed interrupts if state changes while masked (git-fixes). - spi: imx: mx51-ecspi: Fix CONFIGREG delay comment (git-fixes). - spi: imx: mx51-ecspi: Fix low-speed CONFIGREG delay calculation (git-fixes). - spi: imx: mx51-ecspi: Reinstate low-speed CONFIGREG delay (git-fixes). - spi: mediatek: Fix fifo transfer (git-fixes). - spi: meson-spicc: fix memory leak in meson_spicc_remove (git-fixes). - spi: spi-fsl-dspi: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: spi-pic32: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: sprd: Fix the wrong WDG_LOAD_VAL (git-fixes). - spi: stm32h7: fix full duplex irq handler handling (git-fixes). - staging: rtl8192u: Fix bitwise vs logical operator in TranslateRxSignalStuff819xUsb() (git-fixes). - staging: rtl8712: get rid of flush_scheduled_work (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - tracing / histogram: Fix NULL pointer dereference on strcmp() on NULL event name (git-fixes). - tracing / histogram: Give calculation hist_fields a size (git-fixes). - tracing: Reject string operand in the histogram expression (git-fixes). - tty: serial: fsl_lpuart: fix the wrong mapbase value (git-fixes). - ubifs: Fix error return code in alloc_wbufs() (bsc#1189585). - ubifs: Fix memleak in ubifs_init_authentication (bsc#1189583). - ubifs: Only check replay with inode type to judge if inode linked (bsc#1187455). - ubifs: Set/Clear I_LINKABLE under i_lock for whiteout inode (bsc#1189587). - ubifs: journal: Fix error return code in ubifs_jnl_write_inode() (bsc#1189586). - usb: bdc: Fix an error handling path in 'bdc_probe()' when no suitable DMA config is available (git-fixes). - usb: dwc3: Disable phy suspend after power-on reset (git-fixes). - usb: dwc3: Separate field holding multiple properties (git-fixes). - usb: dwc3: Stop active transfers before halting the controller (git-fixes). - usb: dwc3: Use clk_bulk_prepare_enable() (git-fixes). - usb: dwc3: Use devres to get clocks (git-fixes). - usb: dwc3: core: do not do suspend for device mode if already suspended (git-fixes). - usb: dwc3: debug: Remove newline printout (git-fixes). - usb: dwc3: gadget: Check MPS of the request length (git-fixes). - usb: dwc3: gadget: Clear DCTL.ULSTCHNGREQ before set (git-fixes). - usb: dwc3: gadget: Clear DEP flags after stop transfers in ep disable (git-fixes). - usb: dwc3: gadget: Disable gadget IRQ during pullup disable (git-fixes). - usb: dwc3: gadget: Do not send unintended link state change (git-fixes). - usb: dwc3: gadget: Do not setup more than requested (git-fixes). - usb: dwc3: gadget: Fix dwc3_calc_trbs_left() (git-fixes). - usb: dwc3: gadget: Fix handling ZLP (git-fixes). - usb: dwc3: gadget: Give back staled requests (git-fixes). - usb: dwc3: gadget: Handle ZLP for sg requests (git-fixes). - usb: dwc3: gadget: Prevent EP queuing while stopping transfers (git-fixes). - usb: dwc3: gadget: Properly track pending and queued SG (git-fixes). - usb: dwc3: gadget: Restart DWC3 gadget when enabling pullup (git-fixes). - usb: dwc3: gadget: Set BESL config parameter (git-fixes). - usb: dwc3: gadget: Set link state to RX_Detect on disconnect (git-fixes). - usb: dwc3: gadget: Stop EP0 transfers during pullup disable (git-fixes). - usb: dwc3: gadget: Workaround Mirosoft's BESL check (git-fixes). - usb: dwc3: meson-g12a: add IRQ check (git-fixes). - usb: dwc3: meson-g12a: check return of dwc3_meson_g12a_usb_init (git-fixes). - usb: dwc3: of-simple: add a shutdown (git-fixes). - usb: dwc3: st: Add of_dev_put() in probe function (git-fixes). - usb: dwc3: st: Add of_node_put() before return in probe function (git-fixes). - usb: dwc3: support continuous runtime PM with dual role (git-fixes). - usb: ehci-orion: Handle errors of clk_prepare_enable() in probe (git-fixes). - usb: gadget: Export recommended BESL values (git-fixes). - usb: gadget: f_hid: added GET_IDLE and SET_IDLE handlers (git-fixes). - usb: gadget: f_hid: fixed NULL pointer dereference (git-fixes). - usb: gadget: f_hid: idle uses the highest byte for duration (git-fixes). - usb: gadget: mv_u3d: request_irq() after initializing UDC (git-fixes). - usb: gadget: udc: at91: add IRQ check (git-fixes). - usb: gadget: udc: renesas_usb3: Fix soc_device_match() abuse (git-fixes). - usb: host: ohci-tmio: add IRQ check (git-fixes). - usb: host: xhci-rcar: Do not reload firmware after the completion (git-fixes). - usb: mtu3: fix the wrong HS mult value (git-fixes). - usb: mtu3: use @mult for HS isoc or intr (git-fixes). - usb: phy: fsl-usb: add IRQ check (git-fixes). - usb: phy: tahvo: add IRQ check (git-fixes). - usb: phy: twl6030: add IRQ checks (git-fixes). - usr: Add support for zstd compressed initramfs (bsc#1187483, jsc#SLE-18766). - virt_wifi: fix error on connect (git-fixes). - wireguard: allowedips: allocate nodes in kmem_cache (git-fixes). - wireguard: allowedips: free empty intermediate nodes when removing single node (git-fixes). - wireguard: allowedips: remove nodes in O(1) (git-fixes). - writeback: fix obtain a reference to a freeing memcg css (bsc#1189577). - x86/fpu: Limit xstate copy size in xstateregs_set() (bsc#1152489). - x86/fpu: Make init_fpstate correct with optimized XSAVE (bsc#1152489). - x86/fpu: Reset state for all signal restore failures (bsc#1152489). - x86/kvm: fix vcpu-id indexed array sizes (git-fixes). - x86/sev: Make sure IRQs are disabled while GHCB is active (jsc#SLE-14337). - x86/sev: Split up runtime #VC handler for correct state tracking (jsc#SLE-14337). - x86/sev: Use "SEV: " prefix for messages from sev.c (jsc#SLE-14337). - x86/signal: Detect and prevent an alternate signal stack overflow (bsc#1152489). - x86/split_lock: Provide handle_guest_split_lock() (bsc#1187959). - xen/events: Fix race in set_evtchn_to_irq (git-fixes). - xprtrdma: Pad optimization, revisited (bsc#1189760). cluster-md-kmp-azure-5.3.18-38.22.2.x86_64.rpm True dlm-kmp-azure-5.3.18-38.22.2.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.22.2.x86_64.rpm True kernel-azure-5.3.18-38.22.2.nosrc.rpm True kernel-azure-5.3.18-38.22.2.x86_64.rpm True kernel-azure-devel-5.3.18-38.22.2.x86_64.rpm True kernel-azure-extra-5.3.18-38.22.2.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.22.2.x86_64.rpm True kernel-azure-optional-5.3.18-38.22.2.x86_64.rpm True kernel-devel-azure-5.3.18-38.22.1.noarch.rpm True kernel-source-azure-5.3.18-38.22.1.noarch.rpm True kernel-source-azure-5.3.18-38.22.1.src.rpm True kernel-syms-azure-5.3.18-38.22.1.src.rpm True kernel-syms-azure-5.3.18-38.22.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.22.2.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.22.2.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.22.2.x86_64.rpm True openSUSE-SLE-15.3-2021-3300 low SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - CVE-2021-40330: Fixed unexpected cross-protocol requests via newline character in git_connect_git repository path (bsc#1189992). git-2.26.2-33.1.src.rpm openSUSE-SLE-15.3-2021-3140 moderate SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632). - Upstream bug fixes (bsc#1027519) xen-4.14.2_06-3.12.1.src.rpm xen-4.14.2_06-3.12.1.x86_64.rpm xen-devel-4.14.2_06-3.12.1.x86_64.rpm xen-doc-html-4.14.2_06-3.12.1.x86_64.rpm xen-libs-32bit-4.14.2_06-3.12.1.x86_64.rpm xen-libs-4.14.2_06-3.12.1.x86_64.rpm xen-tools-4.14.2_06-3.12.1.x86_64.rpm xen-tools-domU-4.14.2_06-3.12.1.x86_64.rpm xen-tools-xendomains-wait-disk-4.14.2_06-3.12.1.noarch.rpm xen-4.14.2_06-3.12.1.aarch64.rpm xen-devel-4.14.2_06-3.12.1.aarch64.rpm xen-doc-html-4.14.2_06-3.12.1.aarch64.rpm xen-libs-4.14.2_06-3.12.1.aarch64.rpm xen-tools-4.14.2_06-3.12.1.aarch64.rpm xen-tools-domU-4.14.2_06-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3298 moderate SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374). - CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373). curl-7.66.0-4.27.1.src.rpm curl-7.66.0-4.27.1.x86_64.rpm libcurl-devel-32bit-7.66.0-4.27.1.x86_64.rpm libcurl-devel-7.66.0-4.27.1.x86_64.rpm libcurl4-32bit-7.66.0-4.27.1.x86_64.rpm libcurl4-7.66.0-4.27.1.x86_64.rpm curl-7.66.0-4.27.1.s390x.rpm libcurl-devel-7.66.0-4.27.1.s390x.rpm libcurl4-7.66.0-4.27.1.s390x.rpm curl-7.66.0-4.27.1.ppc64le.rpm libcurl-devel-7.66.0-4.27.1.ppc64le.rpm libcurl4-7.66.0-4.27.1.ppc64le.rpm curl-7.66.0-4.27.1.aarch64.rpm libcurl-devel-7.66.0-4.27.1.aarch64.rpm libcurl4-7.66.0-4.27.1.aarch64.rpm openSUSE-SLE-15.3-2021-3130 moderate SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - Fixes a segfault with newer libcares2 versions when the library fails to parse a dns name. (bsc#1190021) libipa_hbac-devel-1.16.1-23.14.1.x86_64.rpm libipa_hbac0-1.16.1-23.14.1.x86_64.rpm libnfsidmap-sss-1.16.1-23.14.1.x86_64.rpm libsss_certmap-devel-1.16.1-23.14.1.x86_64.rpm libsss_certmap0-1.16.1-23.14.1.x86_64.rpm libsss_idmap-devel-1.16.1-23.14.1.x86_64.rpm libsss_idmap0-1.16.1-23.14.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.x86_64.rpm libsss_nss_idmap0-1.16.1-23.14.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-23.14.1.x86_64.rpm libsss_simpleifp0-1.16.1-23.14.1.x86_64.rpm python3-ipa_hbac-1.16.1-23.14.1.x86_64.rpm python3-sss-murmur-1.16.1-23.14.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-23.14.1.x86_64.rpm python3-sssd-config-1.16.1-23.14.1.x86_64.rpm sssd-1.16.1-23.14.1.src.rpm sssd-1.16.1-23.14.1.x86_64.rpm sssd-ad-1.16.1-23.14.1.x86_64.rpm sssd-common-1.16.1-23.14.1.x86_64.rpm sssd-dbus-1.16.1-23.14.1.x86_64.rpm sssd-ipa-1.16.1-23.14.1.x86_64.rpm sssd-krb5-1.16.1-23.14.1.x86_64.rpm sssd-krb5-common-1.16.1-23.14.1.x86_64.rpm sssd-ldap-1.16.1-23.14.1.x86_64.rpm sssd-proxy-1.16.1-23.14.1.x86_64.rpm sssd-tools-1.16.1-23.14.1.x86_64.rpm sssd-wbclient-1.16.1-23.14.1.x86_64.rpm sssd-wbclient-devel-1.16.1-23.14.1.x86_64.rpm sssd-winbind-idmap-1.16.1-23.14.1.x86_64.rpm libipa_hbac-devel-1.16.1-23.14.1.s390x.rpm libipa_hbac0-1.16.1-23.14.1.s390x.rpm libnfsidmap-sss-1.16.1-23.14.1.s390x.rpm libsss_certmap-devel-1.16.1-23.14.1.s390x.rpm libsss_certmap0-1.16.1-23.14.1.s390x.rpm libsss_idmap-devel-1.16.1-23.14.1.s390x.rpm libsss_idmap0-1.16.1-23.14.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.s390x.rpm libsss_nss_idmap0-1.16.1-23.14.1.s390x.rpm libsss_simpleifp-devel-1.16.1-23.14.1.s390x.rpm libsss_simpleifp0-1.16.1-23.14.1.s390x.rpm python3-ipa_hbac-1.16.1-23.14.1.s390x.rpm python3-sss-murmur-1.16.1-23.14.1.s390x.rpm python3-sss_nss_idmap-1.16.1-23.14.1.s390x.rpm python3-sssd-config-1.16.1-23.14.1.s390x.rpm sssd-1.16.1-23.14.1.s390x.rpm sssd-ad-1.16.1-23.14.1.s390x.rpm sssd-common-1.16.1-23.14.1.s390x.rpm sssd-dbus-1.16.1-23.14.1.s390x.rpm sssd-ipa-1.16.1-23.14.1.s390x.rpm sssd-krb5-1.16.1-23.14.1.s390x.rpm sssd-krb5-common-1.16.1-23.14.1.s390x.rpm sssd-ldap-1.16.1-23.14.1.s390x.rpm sssd-proxy-1.16.1-23.14.1.s390x.rpm sssd-tools-1.16.1-23.14.1.s390x.rpm sssd-wbclient-1.16.1-23.14.1.s390x.rpm sssd-wbclient-devel-1.16.1-23.14.1.s390x.rpm sssd-winbind-idmap-1.16.1-23.14.1.s390x.rpm libipa_hbac-devel-1.16.1-23.14.1.ppc64le.rpm libipa_hbac0-1.16.1-23.14.1.ppc64le.rpm libnfsidmap-sss-1.16.1-23.14.1.ppc64le.rpm libsss_certmap-devel-1.16.1-23.14.1.ppc64le.rpm libsss_certmap0-1.16.1-23.14.1.ppc64le.rpm libsss_idmap-devel-1.16.1-23.14.1.ppc64le.rpm libsss_idmap0-1.16.1-23.14.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-23.14.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-23.14.1.ppc64le.rpm libsss_simpleifp0-1.16.1-23.14.1.ppc64le.rpm python3-ipa_hbac-1.16.1-23.14.1.ppc64le.rpm python3-sss-murmur-1.16.1-23.14.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-23.14.1.ppc64le.rpm python3-sssd-config-1.16.1-23.14.1.ppc64le.rpm sssd-1.16.1-23.14.1.ppc64le.rpm sssd-ad-1.16.1-23.14.1.ppc64le.rpm sssd-common-1.16.1-23.14.1.ppc64le.rpm sssd-dbus-1.16.1-23.14.1.ppc64le.rpm sssd-ipa-1.16.1-23.14.1.ppc64le.rpm sssd-krb5-1.16.1-23.14.1.ppc64le.rpm sssd-krb5-common-1.16.1-23.14.1.ppc64le.rpm sssd-ldap-1.16.1-23.14.1.ppc64le.rpm sssd-proxy-1.16.1-23.14.1.ppc64le.rpm sssd-tools-1.16.1-23.14.1.ppc64le.rpm sssd-wbclient-1.16.1-23.14.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-23.14.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-23.14.1.ppc64le.rpm libipa_hbac-devel-1.16.1-23.14.1.aarch64.rpm libipa_hbac0-1.16.1-23.14.1.aarch64.rpm libnfsidmap-sss-1.16.1-23.14.1.aarch64.rpm libsss_certmap-devel-1.16.1-23.14.1.aarch64.rpm libsss_certmap0-1.16.1-23.14.1.aarch64.rpm libsss_idmap-devel-1.16.1-23.14.1.aarch64.rpm libsss_idmap0-1.16.1-23.14.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.aarch64.rpm libsss_nss_idmap0-1.16.1-23.14.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-23.14.1.aarch64.rpm libsss_simpleifp0-1.16.1-23.14.1.aarch64.rpm python3-ipa_hbac-1.16.1-23.14.1.aarch64.rpm python3-sss-murmur-1.16.1-23.14.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-23.14.1.aarch64.rpm python3-sssd-config-1.16.1-23.14.1.aarch64.rpm sssd-1.16.1-23.14.1.aarch64.rpm sssd-ad-1.16.1-23.14.1.aarch64.rpm sssd-common-1.16.1-23.14.1.aarch64.rpm sssd-dbus-1.16.1-23.14.1.aarch64.rpm sssd-ipa-1.16.1-23.14.1.aarch64.rpm sssd-krb5-1.16.1-23.14.1.aarch64.rpm sssd-krb5-common-1.16.1-23.14.1.aarch64.rpm sssd-ldap-1.16.1-23.14.1.aarch64.rpm sssd-proxy-1.16.1-23.14.1.aarch64.rpm sssd-tools-1.16.1-23.14.1.aarch64.rpm sssd-wbclient-1.16.1-23.14.1.aarch64.rpm sssd-wbclient-devel-1.16.1-23.14.1.aarch64.rpm sssd-winbind-idmap-1.16.1-23.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3400 moderate SUSE Updates openSUSE-SLE 15.3 This update for emacs fixes the following issues: - Fixed an issue when emacs hangs in isearch. (bsc#1178942) - Fix for a possible segmentation fault in case of stack overflow of etags. (bsc#1180353) emacs-25.3-3.9.2.src.rpm emacs-25.3-3.9.2.x86_64.rpm emacs-el-25.3-3.9.2.noarch.rpm emacs-info-25.3-3.9.2.noarch.rpm emacs-nox-25.3-3.9.2.x86_64.rpm emacs-x11-25.3-3.9.2.x86_64.rpm etags-25.3-3.9.2.x86_64.rpm emacs-25.3-3.9.2.s390x.rpm emacs-nox-25.3-3.9.2.s390x.rpm emacs-x11-25.3-3.9.2.s390x.rpm etags-25.3-3.9.2.s390x.rpm emacs-25.3-3.9.2.ppc64le.rpm emacs-nox-25.3-3.9.2.ppc64le.rpm emacs-x11-25.3-3.9.2.ppc64le.rpm etags-25.3-3.9.2.ppc64le.rpm emacs-25.3-3.9.2.aarch64.rpm emacs-nox-25.3-3.9.2.aarch64.rpm emacs-x11-25.3-3.9.2.aarch64.rpm etags-25.3-3.9.2.aarch64.rpm openSUSE-SLE-15.3-2021-3226 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Fix for 'hb_report': Using python way to collect ra trace files. (bsc#1189641) - Fix for 'bootstrap': Adjust host list for parallax to get and copy 'known_hosts' file. (bsc#1188971) crmsh-4.3.1+20210827.4fb174c4-5.65.1.noarch.rpm crmsh-4.3.1+20210827.4fb174c4-5.65.1.src.rpm crmsh-scripts-4.3.1+20210827.4fb174c4-5.65.1.noarch.rpm crmsh-test-4.3.1+20210827.4fb174c4-5.65.1.noarch.rpm openSUSE-SLE-15.3-2021-3312 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-installation fixes the following issues: - Display release notes during upgrade. (bsc#1186044) yast2-installation-4.3.42-3.10.1.noarch.rpm yast2-installation-4.3.42-3.10.1.src.rpm openSUSE-SLE-15.3-2021-3309 low SUSE Updates openSUSE-SLE 15.3 This update for google-roboto-mono-fonts fixes the following issue: - Add google-roboto-mono-fonts. (jsc#SLE-21182, jsc#SLE-17946, jsc#SLE-17947) google-roboto-mono-fonts-20160111-1.3.2.noarch.rpm google-roboto-mono-fonts-20160111-1.3.2.src.rpm openSUSE-SLE-15.3-2021-3451 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: This update contains the Firefox Extended Support Release 91.2.0 ESR. Release 91.2.0 ESR: * Fixed: Various stability, functionality, and security fixes MFSA 2021-45 (bsc#1191332): * CVE-2021-38496: Use-after-free in MessageTask * CVE-2021-38497: Validation message could have been overlaid on another origin * CVE-2021-38498: Use-after-free of nsLanguageAtomService object * CVE-2021-32810: Fixed Data race in crossbeam-deque * CVE-2021-38500: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 * CVE-2021-38501: Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 - Fixed crash in FIPS mode (bsc#1190710) Release 91.1.0 ESR: * Fixed: Various stability, functionality, and security fixes MFSA 2021-40 (bsc#1190269, bsc#1190274): * CVE-2021-38492: Navigating to `mk:` URL scheme could load Internet Explorer * CVE-2021-38495: Memory safety bugs fixed in Firefox 92 and Firefox ESR 91.1 Release 91.0.1esr ESR: * Fixed: Fixed an issue causing buttons on the tab bar to be resized when loading certain websites (bug 1704404) * Fixed: Fixed an issue which caused tabs from private windows to be visible in non-private windows when viewing switch-to- tab results in the address bar panel (bug 1720369) * Fixed: Various stability fixes * Fixed: Security fix MFSA 2021-37 (bsc#1189547) * CVE-2021-29991 (bmo#1724896) Header Splitting possible with HTTP/3 Responses Firefox Extended Support Release 91.0 ESR * New: Some of the highlights of the new Extended Support Release are: - A number of user interface changes. For more information, see the Firefox 89 release notes. - Firefox now supports logging into Microsoft, work, and school accounts using Windows single sign-on. Learn more - On Windows, updates can now be applied in the background while Firefox is not running. - Firefox for Windows now offers a new page about:third-party to help identify compatibility issues caused by third-party applications - Version 2 of Firefox's SmartBlock feature further improves private browsing. Third party Facebook scripts are blocked to prevent you from being tracked, but are now automatically loaded "just in time" if you decide to "Log in with Facebook" on any website. - Enhanced the privacy of the Firefox Browser's Private Browsing mode with Total Cookie Protection, which confines cookies to the site where they were created, preventing companis from using cookies to track your browsing across sites. This feature was originally launched in Firefox's ETP Strict mode. - PDF forms now support JavaScript embedded in PDF files. Some PDF forms use JavaScript for validation and other interactive features. - You'll encounter less website breakage in Private Browsing and Strict Enhanced Tracking Protection with SmartBlock, which provides stand-in scripts so that websites load properly. - Improved Print functionality with a cleaner design and better integration with your computer's printer settings. - Firefox now protects you from supercookies, a type of tracker that can stay hidden in your browser and track you online, even after you clear cookies. By isolating supercookies, Firefox prevents them from tracking your web browsing from one site to the next. - Firefox now remembers your preferred location for saved bookmarks, displays the bookmarks toolbar by default on new tabs, and gives you easy access to all of your bookmarks via a toolbar folder. - Native support for macOS devices built with Apple Silicon CPUs brings dramatic performance improvements over the non- native build that was shipped in Firefox 83: Firefox launches over 2.5 times faster and web apps are now twice as responsive (per the SpeedoMeter 2.0 test). If you are on a new Apple device, follow these steps to upgrade to the latest Firefox. - Pinch zooming will now be supported for our users with Windows touchscreen devices and touchpads on Mac devices. Firefox users may now use pinch to zoom on touch-capable devices to zoom in and out of webpages. - We’ve improved functionality and design for a number of Firefox search features: * Selecting a search engine at the bottom of the search panel now enters search mode for that engine, allowing you to see suggestions (if available) for your search terms. The old behavior (immediately performing a search) is available with a shift-click. * When Firefox autocompletes the URL of one of your search engines, you can now search with that engine directly in the address bar by selecting the shortcut in the address bar results. * We’ve added buttons at the bottom of the search panel to allow you to search your bookmarks, open tabs, and history. - Firefox supports AcroForm, which will allow you to fill in, print, and save supported PDF forms and the PDF viewer also has a new fresh look. - For our users in the US and Canada, Firefox can now save, manage, and auto-fill credit card information for you, making shopping on Firefox ever more convenient. - In addition to our default, dark and light themes, with this release, Firefox introduces the Alpenglow theme: a colorful appearance for buttons, menus, and windows. You can update your Firefox themes under settings or preferences. * Changed: Firefox no longer supports Adobe Flash. There is no setting available to re-enable Flash support. * Enterprise: Various bug fixes and new policies have been implemented in the latest version of Firefox. See more details in the Firefox for Enterprise 91 Release Notes. MFSA 2021-33 (bsc#1188891): * CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption * CVE-2021-29981: Live range splitting could have led to conflicting assignments in the JIT * CVE-2021-29988: Memory corruption as a result of incorrect style treatment * CVE-2021-29983: Firefox for Android could get stuck in fullscreen mode * CVE-2021-29984: Incorrect instruction reordering during JIT optimization * CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption * CVE-2021-29987: Users could have been tricked into accepting unwanted permissions on Linux * CVE-2021-29985: Use-after-free media channels * CVE-2021-29982: Single bit data leak due to incorrect JIT optimization and type confusion * CVE-2021-29989: Memory safety bugs fixed in Firefox 91 and Firefox ESR 78.13 * CVE-2021-29990: Memory safety bugs fixed in Firefox 91 MozillaFirefox-91.2.0-8.54.1.src.rpm MozillaFirefox-91.2.0-8.54.1.x86_64.rpm MozillaFirefox-branding-SLE-91-9.5.1.src.rpm MozillaFirefox-branding-SLE-91-9.5.1.x86_64.rpm MozillaFirefox-branding-upstream-91.2.0-8.54.1.x86_64.rpm MozillaFirefox-devel-91.2.0-8.54.1.x86_64.rpm MozillaFirefox-translations-common-91.2.0-8.54.1.x86_64.rpm MozillaFirefox-translations-other-91.2.0-8.54.1.x86_64.rpm MozillaFirefox-91.2.0-8.54.1.s390x.rpm MozillaFirefox-branding-SLE-91-9.5.1.s390x.rpm MozillaFirefox-branding-upstream-91.2.0-8.54.1.s390x.rpm MozillaFirefox-devel-91.2.0-8.54.1.s390x.rpm MozillaFirefox-translations-common-91.2.0-8.54.1.s390x.rpm MozillaFirefox-translations-other-91.2.0-8.54.1.s390x.rpm MozillaFirefox-91.2.0-8.54.1.ppc64le.rpm MozillaFirefox-branding-SLE-91-9.5.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.2.0-8.54.1.ppc64le.rpm MozillaFirefox-devel-91.2.0-8.54.1.ppc64le.rpm MozillaFirefox-translations-common-91.2.0-8.54.1.ppc64le.rpm MozillaFirefox-translations-other-91.2.0-8.54.1.ppc64le.rpm MozillaFirefox-91.2.0-8.54.1.aarch64.rpm MozillaFirefox-branding-SLE-91-9.5.1.aarch64.rpm MozillaFirefox-branding-upstream-91.2.0-8.54.1.aarch64.rpm MozillaFirefox-devel-91.2.0-8.54.1.aarch64.rpm MozillaFirefox-translations-common-91.2.0-8.54.1.aarch64.rpm MozillaFirefox-translations-other-91.2.0-8.54.1.aarch64.rpm openSUSE-SLE-15.3-2021-3301 moderate SUSE Updates openSUSE-SLE 15.3 This update for libcryptopp fixes the following issues: - CVE-2016-9939: Fixed potential DoS in Crypto++ (libcryptopp) ASN.1 parser (bsc#1015243). libcryptopp-5.6.5-1.6.1.src.rpm libcryptopp-devel-5.6.5-1.6.1.x86_64.rpm libcryptopp5_6_5-32bit-5.6.5-1.6.1.x86_64.rpm libcryptopp5_6_5-5.6.5-1.6.1.x86_64.rpm libcryptopp-devel-5.6.5-1.6.1.s390x.rpm libcryptopp5_6_5-5.6.5-1.6.1.s390x.rpm libcryptopp-devel-5.6.5-1.6.1.ppc64le.rpm libcryptopp5_6_5-5.6.5-1.6.1.ppc64le.rpm libcryptopp-devel-5.6.5-1.6.1.aarch64.rpm libcryptopp5_6_5-5.6.5-1.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3350 low SUSE Updates openSUSE-SLE 15.3 This update for libaom fixes the following issues: - CVE-2021-30474: Fixed use-after-free in aom_dsp/grain_table.c (bsc#1186799). aom-tools-1.0.0-3.6.1.x86_64.rpm libaom-1.0.0-3.6.1.src.rpm libaom-devel-1.0.0-3.6.1.x86_64.rpm libaom-devel-doc-1.0.0-3.6.1.noarch.rpm libaom0-1.0.0-3.6.1.x86_64.rpm libaom0-32bit-1.0.0-3.6.1.x86_64.rpm aom-tools-1.0.0-3.6.1.s390x.rpm libaom-devel-1.0.0-3.6.1.s390x.rpm libaom0-1.0.0-3.6.1.s390x.rpm aom-tools-1.0.0-3.6.1.ppc64le.rpm libaom-devel-1.0.0-3.6.1.ppc64le.rpm libaom0-1.0.0-3.6.1.ppc64le.rpm aom-tools-1.0.0-3.6.1.aarch64.rpm libaom-devel-1.0.0-3.6.1.aarch64.rpm libaom0-1.0.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3175 moderate SUSE Updates openSUSE-SLE 15.3 This update for grafana-piechart-panel fixes the following issues: - CVE-2020-13429: Fixed XSS via the Values Header option in the piechart-panel (bsc#1172125). grafana-piechart-panel-1.6.1-3.6.1.noarch.rpm grafana-piechart-panel-1.6.1-3.6.1.src.rpm openSUSE-SLE-15.3-2021-3236 moderate SUSE Updates openSUSE-SLE 15.3 This update for gd fixes the following issues: - CVE-2021-40812: Fixed out-of-bounds read caused by the lack of certain gdGetBuf and gdPutBuf return value checks (bsc#1190400). gd-2.2.5-11.3.1.src.rpm gd-2.2.5-11.3.1.x86_64.rpm gd-devel-2.2.5-11.3.1.x86_64.rpm libgd3-2.2.5-11.3.1.x86_64.rpm libgd3-32bit-2.2.5-11.3.1.x86_64.rpm gd-2.2.5-11.3.1.s390x.rpm gd-devel-2.2.5-11.3.1.s390x.rpm libgd3-2.2.5-11.3.1.s390x.rpm gd-2.2.5-11.3.1.ppc64le.rpm gd-devel-2.2.5-11.3.1.ppc64le.rpm libgd3-2.2.5-11.3.1.ppc64le.rpm gd-2.2.5-11.3.1.aarch64.rpm gd-devel-2.2.5-11.3.1.aarch64.rpm libgd3-2.2.5-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3617 moderate SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - Fix wrong 'kvno' exported to keytab after 'net ads changetrustpw' due to replication delay. (bsc#1188727) libndr0-32bit-4.11.14+git.263.a1d04a0b95e-4.25.8.x86_64.rpm libndr0-4.11.14+git.263.a1d04a0b95e-4.25.8.x86_64.rpm samba-4.11.14+git.263.a1d04a0b95e-4.25.8.src.rpm libndr0-4.11.14+git.263.a1d04a0b95e-4.25.8.s390x.rpm libndr0-4.11.14+git.263.a1d04a0b95e-4.25.8.ppc64le.rpm libndr0-4.11.14+git.263.a1d04a0b95e-4.25.8.aarch64.rpm openSUSE-SLE-15.3-2021-3171 important SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - Implement FIPS support in OpenJDK - Fix build with 'glibc-2.34' (bsc#1189201) - Add support for 'riscv64' (zero VM) - Make NSS the default security provider. (bsc#1190252) java-11-openjdk-11.0.12.0-3.62.1.src.rpm java-11-openjdk-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-javadoc-11.0.12.0-3.62.1.noarch.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-src-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-src-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-src-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-src-11.0.12.0-3.62.1.aarch64.rpm openSUSE-SLE-15.3-2021-3634 moderate SUSE Updates openSUSE-SLE 15.3 This update for rubygem-activerecord-5_1 fixes the following issues: - CVE-2021-22880: Fixed possible DoS vector in PostgreSQL money type (bsc#1182169). ruby2.5-rubygem-activerecord-5_1-5.1.4-5.3.3.x86_64.rpm rubygem-activerecord-5_1-5.1.4-5.3.3.src.rpm ruby2.5-rubygem-activerecord-5_1-5.1.4-5.3.3.s390x.rpm ruby2.5-rubygem-activerecord-5_1-5.1.4-5.3.3.ppc64le.rpm ruby2.5-rubygem-activerecord-5_1-5.1.4-5.3.3.aarch64.rpm openSUSE-SLE-15.3-2021-3348 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-33910: Fixed use of strdupa() on a path (bsc#1188063). - logind: terminate cleanly on SIGTERM/SIGINT (bsc#1188018). - Adopting BFQ to control I/O (jsc#SLE-21032, bsc#1134353). - Rules weren't applied to dm devices (multipath) (bsc#1188713). - Ignore obsolete "elevator" kernel parameter (bsc#1184994, bsc#1190234). - Make sure the versions of both udev and systemd packages are always the same (bsc#1189480). - Avoid error message when udev is updated due to udev being already active when the sockets are started again (bsc#1188291). - Allow the systemd sysusers config files to be overriden during system installation (bsc#1171962). systemd-234-24.93.1.src.rpm True systemd-bash-completion-234-24.93.1.noarch.rpm True openSUSE-SLE-15.3-2021-3291 moderate SUSE Updates openSUSE-SLE 15.3 This update for glibc fixes the following issues: - CVE-2021-33574: Fixed use __pthread_attr_copy in mq_notify (bsc#1186489). - CVE-2021-35942: Fixed wordexp handle overflow in positional parameter number (bsc#1187911). glibc-2.31-9.3.2.src.rpm glibc-2.31-9.3.2.x86_64.rpm glibc-32bit-2.31-9.3.2.x86_64.rpm glibc-devel-2.31-9.3.2.x86_64.rpm glibc-devel-32bit-2.31-9.3.2.x86_64.rpm glibc-devel-static-2.31-9.3.2.x86_64.rpm glibc-devel-static-32bit-2.31-9.3.2.x86_64.rpm glibc-extra-2.31-9.3.2.x86_64.rpm glibc-html-2.31-9.3.2.noarch.rpm glibc-i18ndata-2.31-9.3.2.noarch.rpm glibc-info-2.31-9.3.2.noarch.rpm glibc-lang-2.31-9.3.2.noarch.rpm glibc-locale-2.31-9.3.2.x86_64.rpm glibc-locale-base-2.31-9.3.2.x86_64.rpm glibc-locale-base-32bit-2.31-9.3.2.x86_64.rpm glibc-profile-2.31-9.3.2.x86_64.rpm glibc-profile-32bit-2.31-9.3.2.x86_64.rpm glibc-utils-2.31-9.3.2.x86_64.rpm glibc-utils-32bit-2.31-9.3.2.x86_64.rpm glibc-utils-src-2.31-9.3.2.src.rpm nscd-2.31-9.3.2.x86_64.rpm glibc-2.31-9.3.2.s390x.rpm glibc-devel-2.31-9.3.2.s390x.rpm glibc-devel-static-2.31-9.3.2.s390x.rpm glibc-extra-2.31-9.3.2.s390x.rpm glibc-locale-2.31-9.3.2.s390x.rpm glibc-locale-base-2.31-9.3.2.s390x.rpm glibc-profile-2.31-9.3.2.s390x.rpm glibc-utils-2.31-9.3.2.s390x.rpm nscd-2.31-9.3.2.s390x.rpm glibc-2.31-9.3.2.ppc64le.rpm glibc-devel-2.31-9.3.2.ppc64le.rpm glibc-devel-static-2.31-9.3.2.ppc64le.rpm glibc-extra-2.31-9.3.2.ppc64le.rpm glibc-locale-2.31-9.3.2.ppc64le.rpm glibc-locale-base-2.31-9.3.2.ppc64le.rpm glibc-profile-2.31-9.3.2.ppc64le.rpm glibc-utils-2.31-9.3.2.ppc64le.rpm nscd-2.31-9.3.2.ppc64le.rpm glibc-2.31-9.3.2.aarch64.rpm glibc-devel-2.31-9.3.2.aarch64.rpm glibc-devel-static-2.31-9.3.2.aarch64.rpm glibc-extra-2.31-9.3.2.aarch64.rpm glibc-locale-2.31-9.3.2.aarch64.rpm glibc-locale-base-2.31-9.3.2.aarch64.rpm glibc-profile-2.31-9.3.2.aarch64.rpm glibc-utils-2.31-9.3.2.aarch64.rpm nscd-2.31-9.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-3545 low SUSE Updates openSUSE-SLE 15.3 This update for less fixes the following issues: - Add missing runtime dependency on package "which", that is used by lessopen.sh (bsc#1190552) less-530-3.3.2.src.rpm less-530-3.3.2.x86_64.rpm less-530-3.3.2.s390x.rpm less-530-3.3.2.ppc64le.rpm less-530-3.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-3638 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: Features added: - Add Certificate Auto Enrollment Policy. (jsc#SLE-18456) Bugs fixed: - Fix wrong kvno exported to keytab after net ads changetrustpw due to replication delay. (bsc#1188727) - Fix 'net rpc' authentication when using the machine account. (bsc#1189017) Samba was updated to 4.13.10 * s3: smbd: Ensure POSIX default ACL is mapped into returned Windows ACL for directory handles; (bso#14708); * Take a copy to make sure we don't reference free'd memory; (bso#14721); * s3: lib: Fix talloc heirarcy error in parent_smb_fname(); (bso#14722); * s3: smbd: Remove erroneous TALLOC_FREE(smb_fname_parent) in change_file_owner_to_parent() error path; (bso#14736); * samba-tool: Give better error information when the 'domain backup restore' fails with a duplicate SID; (bso#14575); * smbd: Correctly initialize close timestamp fields; (bso#14714); * Spotlight RPC service doesn't work with vfs_glusterfs; (bso#14740); * ctdb: Fix a crash in run_proc_signal_handler(); (bso#14475); * gensec_krb5: Restore ipv6 support for kpasswd; (bso#14750); * smbXsrv_{open,session,tcon}: Protect smbXsrv_{open,session,tcon}_global_traverse_fn against invalid records; (bso#14752); * samba-tool domain backup offline doesn't work against bind DLZ backend; (bso#14027); * netcmd: Use next_free_rid() function to calculate a SID for restoring a backup; (bso#14669); Samba was updated to 4.13.9: * s3: smbd: SMB1 SMBsplwr doesn't send a reply packet on success; (bso#14696); * Add documentation for dsdb_group_audit and dsdb_group_json_audit to "log level", synchronise "log level" in smb.conf with the code; (bso#14689); * Fix smbd panic when two clients open same file; (bso#14672); * Fix memory leak in the RPC server; (bso#14675); * s3: smbd: Fix deferred renames; (bso#14679); * s3-iremotewinspool: Set the per-request memory context; (bso#14675); * rpc_server3: Fix a memleak for internal pipes; (bso#14675); * third_party: Update socket_wrapper to version 1.3.2; (bso#11899); * third_party: Update socket_wrapper to version 1.3.3; (bso#14639); * idmap_rfc2307 and idmap_nss return wrong mapping for uid/gid conflict; (bso#14663); * Fix the build on OmniOS; (bso#14288); Update to 4.13.7 * Release with dependency on ldb version 2.2.1. - Fix wrong kvno exported to keytab after net ads changetrustpw due to replication delay (bsc#1188727) cepces-0.3.4-7.3.1.noarch.rpm cepces-0.3.4-7.3.1.src.rpm cepces-certmonger-0.3.4-7.3.1.noarch.rpm certmonger-0.79.13-7.3.1.src.rpm certmonger-0.79.13-7.3.1.x86_64.rpm ctdb-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm ctdb-pcp-pmda-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm ctdb-tests-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-binding0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-binding0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-samr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-samr0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-samr0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-krb5pac-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-krb5pac0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-krb5pac0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-nbt-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-nbt0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-nbt0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-standard-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-standard0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-standard0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr1-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr1-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libnetapi-devel-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libnetapi-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libnetapi0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libnetapi0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-credentials-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-credentials0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-credentials0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-errors-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-errors0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-errors0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-hostconfig-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-hostconfig0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-hostconfig0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-passdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-passdb0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-passdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-policy-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-policy-python3-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-policy0-python3-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-policy0-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-util0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamdb0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbclient0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbconf-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbconf0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbconf0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbldap-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbldap2-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbldap2-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libtevent-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libtevent-util0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libtevent-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libwbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libwbclient0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libwbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libxmlrpc++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_abyss++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_abyss3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_client++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_client3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_cpp8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_packetsocket8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server_abyss++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server_abyss3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server_cgi++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server_cgi3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server_pstream++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_util++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_util4-1.51.07-7.3.1.x86_64.rpm python-pykerberos-1.2.1-3.5.1.src.rpm python-requests-kerberos-0.12.0-3.3.1.src.rpm python2-pykerberos-1.2.1-3.5.1.x86_64.rpm python2-requests-kerberos-0.12.0-3.3.1.noarch.rpm python3-cepces-0.3.4-7.3.1.noarch.rpm python3-pykerberos-1.2.1-3.5.1.x86_64.rpm python3-requests-kerberos-0.12.0-3.3.1.noarch.rpm samba-4.13.10+git.236.0517d0e6bdf-3.7.12.src.rpm samba-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-ad-dc-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-ad-dc-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-ceph-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-client-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-client-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-core-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-doc-4.13.10+git.236.0517d0e6bdf-3.7.12.noarch.rpm samba-dsdb-modules-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-gpupdate-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-ldb-ldap-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-libs-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-libs-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-libs-python3-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-libs-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-test-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-winbind-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-winbind-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm sscep-0.7.0-7.3.1.src.rpm sscep-0.7.0-7.3.1.x86_64.rpm xmlrpc-c-1.51.07-7.3.1.src.rpm xmlrpc-c-devel-1.51.07-7.3.1.x86_64.rpm certmonger-0.79.13-7.3.1.s390x.rpm ctdb-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm ctdb-pcp-pmda-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm ctdb-tests-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libdcerpc-binding0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libdcerpc-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libdcerpc-samr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libdcerpc-samr0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libdcerpc0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-krb5pac-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-krb5pac0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-nbt-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-nbt0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-standard-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-standard0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr1-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libnetapi-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libnetapi0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-credentials-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-credentials0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-errors-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-errors0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-hostconfig-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-hostconfig0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-passdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-passdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-policy-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-policy-python3-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-policy0-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbconf-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbconf0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbldap-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbldap2-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libtevent-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libtevent-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libwbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libwbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libxmlrpc++8-1.51.07-7.3.1.s390x.rpm libxmlrpc3-1.51.07-7.3.1.s390x.rpm libxmlrpc_abyss++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_abyss3-1.51.07-7.3.1.s390x.rpm libxmlrpc_client++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_client3-1.51.07-7.3.1.s390x.rpm libxmlrpc_cpp8-1.51.07-7.3.1.s390x.rpm libxmlrpc_packetsocket8-1.51.07-7.3.1.s390x.rpm libxmlrpc_server++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_server3-1.51.07-7.3.1.s390x.rpm libxmlrpc_server_abyss++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_server_abyss3-1.51.07-7.3.1.s390x.rpm libxmlrpc_server_cgi++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_server_cgi3-1.51.07-7.3.1.s390x.rpm libxmlrpc_server_pstream++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_util++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_util4-1.51.07-7.3.1.s390x.rpm python2-pykerberos-1.2.1-3.5.1.s390x.rpm python3-pykerberos-1.2.1-3.5.1.s390x.rpm samba-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-ad-dc-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-client-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-core-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-dsdb-modules-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-gpupdate-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-ldb-ldap-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-libs-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-libs-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-test-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-winbind-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm sscep-0.7.0-7.3.1.s390x.rpm xmlrpc-c-devel-1.51.07-7.3.1.s390x.rpm certmonger-0.79.13-7.3.1.ppc64le.rpm ctdb-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm ctdb-pcp-pmda-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm ctdb-tests-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libdcerpc-binding0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libdcerpc-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libdcerpc-samr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libdcerpc-samr0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libdcerpc0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-krb5pac-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-krb5pac0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-nbt-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-nbt0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-standard-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-standard0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr1-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libnetapi-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libnetapi0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-credentials-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-credentials0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-errors-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-errors0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-hostconfig-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-hostconfig0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-passdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-passdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-policy-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-policy-python3-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-policy0-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbconf-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbconf0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbldap-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbldap2-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libtevent-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libtevent-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libwbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libwbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libxmlrpc++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_abyss++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_abyss3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_client++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_client3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_cpp8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_packetsocket8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server_abyss++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server_abyss3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server_cgi++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server_cgi3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server_pstream++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_util++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_util4-1.51.07-7.3.1.ppc64le.rpm python2-pykerberos-1.2.1-3.5.1.ppc64le.rpm python3-pykerberos-1.2.1-3.5.1.ppc64le.rpm samba-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-ad-dc-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-client-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-core-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-dsdb-modules-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-gpupdate-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-ldb-ldap-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-libs-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-libs-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-test-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-winbind-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm sscep-0.7.0-7.3.1.ppc64le.rpm xmlrpc-c-devel-1.51.07-7.3.1.ppc64le.rpm certmonger-0.79.13-7.3.1.aarch64.rpm ctdb-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm ctdb-pcp-pmda-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm ctdb-tests-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc-binding0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc-binding0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libdcerpc-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc-samr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc-samr0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc-samr0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libdcerpc0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libndr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-krb5pac-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-krb5pac0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-krb5pac0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libndr-nbt-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-nbt0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-nbt0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libndr-standard-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-standard0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-standard0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libndr1-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr1-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libnetapi-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libnetapi-devel-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libnetapi0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libnetapi0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-credentials-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-credentials0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-credentials0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-errors-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-errors0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-errors0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-hostconfig-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-hostconfig0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-hostconfig0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-passdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-passdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-passdb0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-policy-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-policy-python3-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-policy0-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-policy0-python3-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-util0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamdb0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsmbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbclient0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsmbconf-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbconf0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbconf0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsmbldap-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbldap2-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbldap2-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libtevent-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libtevent-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libtevent-util0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libwbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libwbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libwbclient0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libxmlrpc++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_abyss++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_abyss3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_client++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_client3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_cpp8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_packetsocket8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server_abyss++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server_abyss3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server_cgi++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server_cgi3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server_pstream++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_util++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_util4-1.51.07-7.3.1.aarch64.rpm python2-pykerberos-1.2.1-3.5.1.aarch64.rpm python3-pykerberos-1.2.1-3.5.1.aarch64.rpm samba-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-ad-dc-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-ad-dc-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm samba-ceph-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-client-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-client-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm samba-core-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-dsdb-modules-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-gpupdate-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-ldb-ldap-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-libs-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-libs-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm samba-libs-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-libs-python3-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm samba-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-test-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-winbind-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-winbind-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm sscep-0.7.0-7.3.1.aarch64.rpm xmlrpc-c-devel-1.51.07-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3317 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: - Upgrade to version 10.18. (bsc#1190177) - A dump/restore is not required for those running 10.X. - if you are upgrading from a version older than 10.16 a reindexing of indexes after the upgrade may be advisable. - Allow PostgreSQL version 10 to build with ICU 69 and newer - Clarify error messages referring to 'non-negative' values - Fix incorrect log message when 'point-in-time' recovery stops at a 'ROLLBACK PREPARED' record - In 'contrib/postgres_fdw', avoid attempting catalog lookups after an error - Messages about data conversion errors will now mention the query's table and column aliases (if used) rather than the true underlying name of a foreign table or column. - Avoid problems when 'switching pg_receivewal' between compressed and non-compressed 'WAL' storage - Extend 'pg_upgrade' to detect and warn about extensions that should be upgraded. - Make 'pg_upgrade' carry forward the old installation's 'oldestXID' value. - This solves unwanted forced shutdowns happening soon after an upgrade in particular on installations using large values of 'autovacuum_freeze_max_age'. - Avoid 'invalid creation date in header' warnings observed when running 'pg_restore' on an archive file created in a different time zone. - In psql and other client programs, avoid overrunning the ends of strings when dealing with invalidly-encoded data. - Don't abort the process for an out-of-memory failure in libpq's printing functions - Fix uninitialized-variable bug that could cause 'PL/pgSQL' to act as though an 'INTO' clause specified 'STRICT', even though it didn't. - Fix latent crash in sorting code - Fix possible race condition when releasing BackgroundWorkerSlots - Solve a build issue fix build with 'llvm12' on s390x. (bsc#1185952) - Re-enable 'icu' for 'PostgreSQL 10'. (bsc#1179945) - Relax the dependency of 'postgresqlXX-server-devel' on 'llvm' and 'clang'. (bsc#1187751) postgresql10-10.18-8.38.1.src.rpm postgresql10-10.18-8.38.1.x86_64.rpm postgresql10-contrib-10.18-8.38.1.x86_64.rpm postgresql10-docs-10.18-8.38.1.noarch.rpm postgresql10-plperl-10.18-8.38.1.x86_64.rpm postgresql10-plpython-10.18-8.38.1.x86_64.rpm postgresql10-pltcl-10.18-8.38.1.x86_64.rpm postgresql10-server-10.18-8.38.1.x86_64.rpm postgresql10-test-10.18-8.38.1.x86_64.rpm postgresql10-10.18-8.38.1.s390x.rpm postgresql10-contrib-10.18-8.38.1.s390x.rpm postgresql10-plperl-10.18-8.38.1.s390x.rpm postgresql10-plpython-10.18-8.38.1.s390x.rpm postgresql10-pltcl-10.18-8.38.1.s390x.rpm postgresql10-server-10.18-8.38.1.s390x.rpm postgresql10-test-10.18-8.38.1.s390x.rpm postgresql10-10.18-8.38.1.ppc64le.rpm postgresql10-contrib-10.18-8.38.1.ppc64le.rpm postgresql10-plperl-10.18-8.38.1.ppc64le.rpm postgresql10-plpython-10.18-8.38.1.ppc64le.rpm postgresql10-pltcl-10.18-8.38.1.ppc64le.rpm postgresql10-server-10.18-8.38.1.ppc64le.rpm postgresql10-test-10.18-8.38.1.ppc64le.rpm postgresql10-10.18-8.38.1.aarch64.rpm postgresql10-contrib-10.18-8.38.1.aarch64.rpm postgresql10-plperl-10.18-8.38.1.aarch64.rpm postgresql10-plpython-10.18-8.38.1.aarch64.rpm postgresql10-pltcl-10.18-8.38.1.aarch64.rpm postgresql10-server-10.18-8.38.1.aarch64.rpm postgresql10-test-10.18-8.38.1.aarch64.rpm openSUSE-SLE-15.3-2021-3314 moderate SUSE Updates openSUSE-SLE 15.3 This update for xerces-c fixes the following issues: - release libxerces-c-3_1 for SLE-15.3 (bsc#1190105) libxerces-c-3_1-3.1.4-10.5.1.x86_64.rpm libxerces-c-3_1-32bit-3.1.4-10.5.1.x86_64.rpm xerces-c-3.1.4-10.5.1.src.rpm libxerces-c-3_1-3.1.4-10.5.1.s390x.rpm libxerces-c-3_1-3.1.4-10.5.1.ppc64le.rpm libxerces-c-3_1-3.1.4-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-3241 important SUSE Updates openSUSE-SLE 15.3 This update for multipath-tools provides the following fixes: - Update to version 0.8.5+82+suse.746b76e: * libmultipath: avoid buffer size warning with systemd 240+. (bsc#1189176) - Add a versioned dependency of multipath-tools on libmpath0. (bsc#1190622) kpartx-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.src.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm kpartx-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm kpartx-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm kpartx-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3245 important SUSE Updates openSUSE-SLE 15.3 This update for docker fixes the following issues: - Return ENOSYS for clone3 in the seccomp profile to avoid breaking containers using glibc 2.34. - Add shell requires for the *-completion subpackages. Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? docker-20.10.6_ce-153.1.src.rpm docker-20.10.6_ce-153.1.x86_64.rpm docker-bash-completion-20.10.6_ce-153.1.noarch.rpm docker-fish-completion-20.10.6_ce-153.1.noarch.rpm docker-kubic-20.10.6_ce-6.52.1.src.rpm docker-kubic-20.10.6_ce-6.52.1.x86_64.rpm docker-kubic-bash-completion-20.10.6_ce-6.52.1.noarch.rpm docker-kubic-fish-completion-20.10.6_ce-6.52.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.x86_64.rpm docker-kubic-zsh-completion-20.10.6_ce-6.52.1.noarch.rpm docker-zsh-completion-20.10.6_ce-153.1.noarch.rpm docker-20.10.6_ce-153.1.s390x.rpm docker-kubic-20.10.6_ce-6.52.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.s390x.rpm docker-20.10.6_ce-153.1.ppc64le.rpm docker-kubic-20.10.6_ce-6.52.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.ppc64le.rpm docker-20.10.6_ce-153.1.aarch64.rpm docker-kubic-20.10.6_ce-6.52.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.aarch64.rpm openSUSE-SLE-15.3-2021-3353 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - Update to version 2.32.4 - CVE-2021-30858: Fixed a security bug that could allow maliciously crafted web content to achieve arbitrary code execution. (bsc#1190701) - CVE-2021-21806: Fixed an exploitable use-after-free vulnerability via specially crafted HTML web page. (bsc#1188697) libjavascriptcoregtk-4_0-18-2.32.4-12.3.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.32.4-12.3.x86_64.rpm libwebkit2gtk-4_0-37-2.32.4-12.3.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.32.4-12.3.x86_64.rpm libwebkit2gtk3-lang-2.32.4-12.3.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3.x86_64.rpm typelib-1_0-WebKit2-4_0-2.32.4-12.3.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3.x86_64.rpm webkit-jsc-4-2.32.4-12.3.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.32.4-12.3.x86_64.rpm webkit2gtk3-2.32.4-12.3.src.rpm webkit2gtk3-devel-2.32.4-12.3.x86_64.rpm webkit2gtk3-minibrowser-2.32.4-12.3.x86_64.rpm libjavascriptcoregtk-4_0-18-2.32.4-12.3.s390x.rpm libwebkit2gtk-4_0-37-2.32.4-12.3.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3.s390x.rpm typelib-1_0-WebKit2-4_0-2.32.4-12.3.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3.s390x.rpm webkit-jsc-4-2.32.4-12.3.s390x.rpm webkit2gtk-4_0-injected-bundles-2.32.4-12.3.s390x.rpm webkit2gtk3-devel-2.32.4-12.3.s390x.rpm webkit2gtk3-minibrowser-2.32.4-12.3.s390x.rpm libjavascriptcoregtk-4_0-18-2.32.4-12.3.ppc64le.rpm libwebkit2gtk-4_0-37-2.32.4-12.3.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.32.4-12.3.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3.ppc64le.rpm webkit-jsc-4-2.32.4-12.3.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.32.4-12.3.ppc64le.rpm webkit2gtk3-devel-2.32.4-12.3.ppc64le.rpm webkit2gtk3-minibrowser-2.32.4-12.3.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.32.4-12.3.aarch64.rpm libwebkit2gtk-4_0-37-2.32.4-12.3.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3.aarch64.rpm typelib-1_0-WebKit2-4_0-2.32.4-12.3.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3.aarch64.rpm webkit-jsc-4-2.32.4-12.3.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.32.4-12.3.aarch64.rpm webkit2gtk3-devel-2.32.4-12.3.aarch64.rpm webkit2gtk3-minibrowser-2.32.4-12.3.aarch64.rpm openSUSE-SLE-15.3-2021-3263 moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following packages to SUSE Manager 4.1.11 Proxy golang-github-prometheus-alertmanager: - golang-github-prometheus-alertmanager is added to SUSE Manager Proxy as L3 supported system-user-prometheus: - system-user-prometheus is added to SUSE Manager Proxy as L3 supported system-user-prometheus-1.0.0-6.1.noarch.rpm system-user-prometheus-1.0.0-6.1.src.rpm openSUSE-SLE-15.3-2021-3310 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Switch I/O scheduler from 'mq-deadline' to 'bfq' for rotating disks(HD's) (jsc#SLE-21032, bsc#1134353). - Multipath: Rules weren't applied to dm devices (bsc#1188713). - Ignore obsolete "elevator" kernel parameter (bsc#1184994). - Remove kernel unsupported single-queue block I/O. - Make sure the versions of both udev and systemd packages are always the same (bsc#1189480). - Avoid error message when updating active udev on sockets restart (bsc#1188291). - Merge of v246.16, for a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/8d8f5fc31eece95644b299b784bbfb8f836d0108...f5c33d9f82d3d782d28938df9ff09484360c540d - Drop 1007-tmpfiles-follow-SUSE-policies.patch: Since most of the tmpfiles config files shipped by upstream are ignored (see previous commit "Drop most of the tmpfiles that deal with generic paths"), this patch is no more relevant. Additional fixes: - core: make sure cgroup_oom_queue is flushed on manager exit. - cgroup: do 'catchup' for unit cgroup inotify watch files. - journalctl: never fail at flushing when the flushed flag is set (bsc#1188588). - manager: reexecute on SIGRTMIN+25, user instances only. - manager: fix HW watchdog when systemd starts before driver loaded (bsc#1189446). - pid1: watchdog modernizations. libsystemd0-246.16-7.14.1.x86_64.rpm libsystemd0-32bit-246.16-7.14.1.x86_64.rpm libudev-devel-246.16-7.14.1.x86_64.rpm libudev-devel-32bit-246.16-7.14.1.x86_64.rpm libudev1-246.16-7.14.1.x86_64.rpm libudev1-32bit-246.16-7.14.1.x86_64.rpm nss-myhostname-246.16-7.14.1.x86_64.rpm nss-myhostname-32bit-246.16-7.14.1.x86_64.rpm nss-mymachines-246.16-7.14.1.x86_64.rpm nss-mymachines-32bit-246.16-7.14.1.x86_64.rpm nss-resolve-246.16-7.14.1.x86_64.rpm nss-systemd-246.16-7.14.1.x86_64.rpm systemd-246.16-7.14.1.src.rpm systemd-246.16-7.14.1.x86_64.rpm systemd-32bit-246.16-7.14.1.x86_64.rpm systemd-container-246.16-7.14.1.x86_64.rpm systemd-coredump-246.16-7.14.1.x86_64.rpm systemd-devel-246.16-7.14.1.x86_64.rpm systemd-doc-246.16-7.14.1.x86_64.rpm systemd-journal-remote-246.16-7.14.1.x86_64.rpm systemd-lang-246.16-7.14.1.noarch.rpm systemd-logger-246.16-7.14.1.x86_64.rpm systemd-network-246.16-7.14.1.x86_64.rpm systemd-sysvinit-246.16-7.14.1.x86_64.rpm udev-246.16-7.14.1.x86_64.rpm libsystemd0-246.16-7.14.1.s390x.rpm libudev-devel-246.16-7.14.1.s390x.rpm libudev1-246.16-7.14.1.s390x.rpm nss-myhostname-246.16-7.14.1.s390x.rpm nss-mymachines-246.16-7.14.1.s390x.rpm nss-resolve-246.16-7.14.1.s390x.rpm nss-systemd-246.16-7.14.1.s390x.rpm systemd-246.16-7.14.1.s390x.rpm systemd-container-246.16-7.14.1.s390x.rpm systemd-coredump-246.16-7.14.1.s390x.rpm systemd-devel-246.16-7.14.1.s390x.rpm systemd-doc-246.16-7.14.1.s390x.rpm systemd-journal-remote-246.16-7.14.1.s390x.rpm systemd-logger-246.16-7.14.1.s390x.rpm systemd-network-246.16-7.14.1.s390x.rpm systemd-sysvinit-246.16-7.14.1.s390x.rpm udev-246.16-7.14.1.s390x.rpm libsystemd0-246.16-7.14.1.ppc64le.rpm libudev-devel-246.16-7.14.1.ppc64le.rpm libudev1-246.16-7.14.1.ppc64le.rpm nss-myhostname-246.16-7.14.1.ppc64le.rpm nss-mymachines-246.16-7.14.1.ppc64le.rpm nss-resolve-246.16-7.14.1.ppc64le.rpm nss-systemd-246.16-7.14.1.ppc64le.rpm systemd-246.16-7.14.1.ppc64le.rpm systemd-container-246.16-7.14.1.ppc64le.rpm systemd-coredump-246.16-7.14.1.ppc64le.rpm systemd-devel-246.16-7.14.1.ppc64le.rpm systemd-doc-246.16-7.14.1.ppc64le.rpm systemd-journal-remote-246.16-7.14.1.ppc64le.rpm systemd-logger-246.16-7.14.1.ppc64le.rpm systemd-network-246.16-7.14.1.ppc64le.rpm systemd-sysvinit-246.16-7.14.1.ppc64le.rpm udev-246.16-7.14.1.ppc64le.rpm libsystemd0-246.16-7.14.1.aarch64.rpm libudev-devel-246.16-7.14.1.aarch64.rpm libudev1-246.16-7.14.1.aarch64.rpm nss-myhostname-246.16-7.14.1.aarch64.rpm nss-mymachines-246.16-7.14.1.aarch64.rpm nss-resolve-246.16-7.14.1.aarch64.rpm nss-systemd-246.16-7.14.1.aarch64.rpm systemd-246.16-7.14.1.aarch64.rpm systemd-container-246.16-7.14.1.aarch64.rpm systemd-coredump-246.16-7.14.1.aarch64.rpm systemd-devel-246.16-7.14.1.aarch64.rpm systemd-doc-246.16-7.14.1.aarch64.rpm systemd-journal-remote-246.16-7.14.1.aarch64.rpm systemd-logger-246.16-7.14.1.aarch64.rpm systemd-network-246.16-7.14.1.aarch64.rpm systemd-sysvinit-246.16-7.14.1.aarch64.rpm udev-246.16-7.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3262 moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following packages to SUSE Manager 4.1.11 Proxy golang-github-prometheus-prometheus: - golang-github-prometheus-prometheus is added to SUSE Manager Proxy as L3 supported golang-github-prometheus-prometheus-2.27.1-3.12.1.src.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.x86_64.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.s390x.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.ppc64le.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3311 moderate SUSE Updates openSUSE-SLE 15.3 This update for perl-Bootloader fixes the following issues: - Report error if config file could not be updated (bsc#1188768). - Fix typo in update-bootloader. perl-Bootloader-0.936-3.3.1.src.rpm perl-Bootloader-0.936-3.3.1.x86_64.rpm perl-Bootloader-YAML-0.936-3.3.1.x86_64.rpm perl-Bootloader-0.936-3.3.1.s390x.rpm perl-Bootloader-YAML-0.936-3.3.1.s390x.rpm perl-Bootloader-0.936-3.3.1.ppc64le.rpm perl-Bootloader-YAML-0.936-3.3.1.ppc64le.rpm perl-Bootloader-0.936-3.3.1.aarch64.rpm perl-Bootloader-YAML-0.936-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3306 moderate SUSE Updates openSUSE-SLE 15.3 This update for numactl fixes the following issues: - Fix System call numbers on s390x. - Debug verify for --preferred option. - Description for the usage of numactl. - Varios memleacks on source files: sysfs.c, shm.c and numactl.c - Description for numa_node_size64 and definition for numa_node_size in manpage. - link with -latomic when needed. - Clear race conditions on numa_police_memory(). - numademo: Use first two nodes instead of node 0 and 1 - Enhance _service settings - Enable automake libnuma-devel-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm libnuma1-32bit-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm numactl-2.0.14.20.g4ee5e0c-10.1.src.rpm numactl-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm libnuma-devel-2.0.14.20.g4ee5e0c-10.1.s390x.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.s390x.rpm numactl-2.0.14.20.g4ee5e0c-10.1.s390x.rpm libnuma-devel-2.0.14.20.g4ee5e0c-10.1.ppc64le.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.ppc64le.rpm numactl-2.0.14.20.g4ee5e0c-10.1.ppc64le.rpm libnuma-devel-2.0.14.20.g4ee5e0c-10.1.aarch64.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.aarch64.rpm numactl-2.0.14.20.g4ee5e0c-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3522 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: - CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703) - CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. (bsc#1190702) - CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666) - CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669) apache2-2.4.43-3.32.1.src.rpm apache2-2.4.43-3.32.1.x86_64.rpm apache2-devel-2.4.43-3.32.1.x86_64.rpm apache2-doc-2.4.43-3.32.1.noarch.rpm apache2-event-2.4.43-3.32.1.x86_64.rpm apache2-example-pages-2.4.43-3.32.1.x86_64.rpm apache2-prefork-2.4.43-3.32.1.x86_64.rpm apache2-utils-2.4.43-3.32.1.x86_64.rpm apache2-worker-2.4.43-3.32.1.x86_64.rpm apache2-2.4.43-3.32.1.s390x.rpm apache2-devel-2.4.43-3.32.1.s390x.rpm apache2-event-2.4.43-3.32.1.s390x.rpm apache2-example-pages-2.4.43-3.32.1.s390x.rpm apache2-prefork-2.4.43-3.32.1.s390x.rpm apache2-utils-2.4.43-3.32.1.s390x.rpm apache2-worker-2.4.43-3.32.1.s390x.rpm apache2-2.4.43-3.32.1.ppc64le.rpm apache2-devel-2.4.43-3.32.1.ppc64le.rpm apache2-event-2.4.43-3.32.1.ppc64le.rpm apache2-example-pages-2.4.43-3.32.1.ppc64le.rpm apache2-prefork-2.4.43-3.32.1.ppc64le.rpm apache2-utils-2.4.43-3.32.1.ppc64le.rpm apache2-worker-2.4.43-3.32.1.ppc64le.rpm apache2-2.4.43-3.32.1.aarch64.rpm apache2-devel-2.4.43-3.32.1.aarch64.rpm apache2-event-2.4.43-3.32.1.aarch64.rpm apache2-example-pages-2.4.43-3.32.1.aarch64.rpm apache2-prefork-2.4.43-3.32.1.aarch64.rpm apache2-utils-2.4.43-3.32.1.aarch64.rpm apache2-worker-2.4.43-3.32.1.aarch64.rpm openSUSE-SLE-15.3-2021-3220 moderate SUSE Updates openSUSE-SLE 15.3 This update for kglobalaccel fixes the following issues: - Refuse app. to start with wrong uid (bsc#1178488). kglobalaccel-5.76.0-3.6.1.src.rpm kglobalaccel-devel-32bit-5.76.0-3.6.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.6.1.x86_64.rpm kglobalaccel5-5.76.0-3.6.1.x86_64.rpm libKF5GlobalAccel5-32bit-5.76.0-3.6.1.x86_64.rpm libKF5GlobalAccel5-5.76.0-3.6.1.x86_64.rpm libKF5GlobalAccel5-lang-5.76.0-3.6.1.noarch.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.6.1.s390x.rpm kglobalaccel5-5.76.0-3.6.1.s390x.rpm libKF5GlobalAccel5-5.76.0-3.6.1.s390x.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.s390x.rpm kglobalaccel-devel-5.76.0-3.6.1.ppc64le.rpm kglobalaccel5-5.76.0-3.6.1.ppc64le.rpm libKF5GlobalAccel5-5.76.0-3.6.1.ppc64le.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.ppc64le.rpm kglobalaccel-devel-5.76.0-3.6.1.aarch64.rpm kglobalaccel5-5.76.0-3.6.1.aarch64.rpm libKF5GlobalAccel5-5.76.0-3.6.1.aarch64.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3307 moderate SUSE Updates openSUSE-SLE 15.3 This update for virt-what fixes the following issues: - Nutanix Acropolis Hypervisor detection - podman detection - Add "which" to requires virt-what-1.21-3.3.1.src.rpm virt-what-1.21-3.3.1.x86_64.rpm virt-what-1.21-3.3.1.s390x.rpm virt-what-1.21-3.3.1.ppc64le.rpm virt-what-1.21-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3530 moderate SUSE Updates openSUSE-SLE 15.3 This update for dnsmasq fixes the following issues: Update to version 2.86 - CVE-2021-3448: fixed outgoing port used when --server is used with an interface name. (bsc#1183709) - CVE-2020-14312: Set --local-service by default (bsc#1173646). - Open inotify socket only when used (bsc#1180914). dnsmasq-2.86-7.14.1.src.rpm dnsmasq-2.86-7.14.1.x86_64.rpm dnsmasq-utils-2.86-7.14.1.x86_64.rpm dnsmasq-2.86-7.14.1.s390x.rpm dnsmasq-utils-2.86-7.14.1.s390x.rpm dnsmasq-2.86-7.14.1.ppc64le.rpm dnsmasq-utils-2.86-7.14.1.ppc64le.rpm dnsmasq-2.86-7.14.1.aarch64.rpm dnsmasq-utils-2.86-7.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-167 moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-netconfig fixes the following issues: - Update to version 1.6: + Ignore proxy when accessing metadata (bsc#1187939) + Print warning in case metadata is not accessible + Documentation update cloud-netconfig-azure-1.6-25.5.1.noarch.rpm cloud-netconfig-azure-1.6-25.5.1.src.rpm cloud-netconfig-ec2-1.6-25.5.1.noarch.rpm cloud-netconfig-ec2-1.6-25.5.1.src.rpm cloud-netconfig-gce-1.6-25.5.1.noarch.rpm cloud-netconfig-gce-1.6-25.5.1.src.rpm openSUSE-SLE-15.3-2021-3327 low SUSE Updates openSUSE-SLE 15.3 This optional update for coreutils fixes the following issue: - Provide coreutils documentation, 'coreutils-doc', with 'L2' support level. (bsc#1189454) coreutils-8.32-3.2.1.src.rpm coreutils-8.32-3.2.1.x86_64.rpm coreutils-doc-8.32-3.2.1.noarch.rpm coreutils-lang-8.32-3.2.1.noarch.rpm coreutils-single-8.32-3.2.1.src.rpm coreutils-single-8.32-3.2.1.x86_64.rpm coreutils-testsuite-8.32-3.2.1.src.rpm coreutils-testsuite-8.32-3.2.1.x86_64.rpm coreutils-8.32-3.2.1.s390x.rpm coreutils-single-8.32-3.2.1.s390x.rpm coreutils-testsuite-8.32-3.2.1.s390x.rpm coreutils-8.32-3.2.1.ppc64le.rpm coreutils-single-8.32-3.2.1.ppc64le.rpm coreutils-testsuite-8.32-3.2.1.ppc64le.rpm coreutils-8.32-3.2.1.aarch64.rpm coreutils-single-8.32-3.2.1.aarch64.rpm coreutils-testsuite-8.32-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-3402 moderate SUSE Updates openSUSE-SLE 15.3 This update for 389-ds fixes the following issues: - rebase lib389 and cockpit in 1.4.4 - Updated several dsconf --help entries (typos, wrong descriptions, etc.) - Account Policy plugin does not set the config entry DN - Add support for nsslapd-state to CLI and UI - IPA failure in ipa user-del --preserve - backport lib389 cert list fix - dsidm command crashing when account policy plugin is enabled - db reindex corrupts RUV tombstone nsuiqueid index - Fix retro cl trimming misuse of monotonic/realtime clocks 389-ds-1.4.4.17~git0.5e1e392ae-3.7.1.src.rpm 389-ds-1.4.4.17~git0.5e1e392ae-3.7.1.x86_64.rpm 389-ds-devel-1.4.4.17~git0.5e1e392ae-3.7.1.x86_64.rpm 389-ds-snmp-1.4.4.17~git0.5e1e392ae-3.7.1.x86_64.rpm lib389-1.4.4.17~git0.5e1e392ae-3.7.1.x86_64.rpm libsvrcore0-1.4.4.17~git0.5e1e392ae-3.7.1.x86_64.rpm 389-ds-1.4.4.17~git0.5e1e392ae-3.7.1.s390x.rpm 389-ds-devel-1.4.4.17~git0.5e1e392ae-3.7.1.s390x.rpm 389-ds-snmp-1.4.4.17~git0.5e1e392ae-3.7.1.s390x.rpm lib389-1.4.4.17~git0.5e1e392ae-3.7.1.s390x.rpm libsvrcore0-1.4.4.17~git0.5e1e392ae-3.7.1.s390x.rpm 389-ds-1.4.4.17~git0.5e1e392ae-3.7.1.ppc64le.rpm 389-ds-devel-1.4.4.17~git0.5e1e392ae-3.7.1.ppc64le.rpm 389-ds-snmp-1.4.4.17~git0.5e1e392ae-3.7.1.ppc64le.rpm lib389-1.4.4.17~git0.5e1e392ae-3.7.1.ppc64le.rpm libsvrcore0-1.4.4.17~git0.5e1e392ae-3.7.1.ppc64le.rpm 389-ds-1.4.4.17~git0.5e1e392ae-3.7.1.aarch64.rpm 389-ds-devel-1.4.4.17~git0.5e1e392ae-3.7.1.aarch64.rpm 389-ds-snmp-1.4.4.17~git0.5e1e392ae-3.7.1.aarch64.rpm lib389-1.4.4.17~git0.5e1e392ae-3.7.1.aarch64.rpm libsvrcore0-1.4.4.17~git0.5e1e392ae-3.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3349 moderate SUSE Updates openSUSE-SLE 15.3 This update for libgphoto2 fixes the following issues: libgphoto2 was updated to the 2.5.27 release (jsc#SLE-21615) - Lots of new camera models added. - Camera support enhanced for Sony Alpha, Fuji XT, Nikon Z, Canon EOS R, Panasonic Lumix, Leica SL, ... - Better support for files over 4GB - Lumix Wifi, Docupen support added. - Lots of bugfixes libgphoto2-2.5.27-3.4.1.src.rpm libgphoto2-6-2.5.27-3.4.1.x86_64.rpm libgphoto2-6-32bit-2.5.27-3.4.1.x86_64.rpm libgphoto2-6-lang-2.5.27-3.4.1.noarch.rpm libgphoto2-devel-2.5.27-3.4.1.x86_64.rpm libgphoto2-devel-32bit-2.5.27-3.4.1.x86_64.rpm libgphoto2-devel-doc-2.5.27-3.4.1.x86_64.rpm libgphoto2-doc-2.5.27-3.4.1.x86_64.rpm libgphoto2-6-2.5.27-3.4.1.s390x.rpm libgphoto2-devel-2.5.27-3.4.1.s390x.rpm libgphoto2-devel-doc-2.5.27-3.4.1.s390x.rpm libgphoto2-doc-2.5.27-3.4.1.s390x.rpm libgphoto2-6-2.5.27-3.4.1.ppc64le.rpm libgphoto2-devel-2.5.27-3.4.1.ppc64le.rpm libgphoto2-devel-doc-2.5.27-3.4.1.ppc64le.rpm libgphoto2-doc-2.5.27-3.4.1.ppc64le.rpm libgphoto2-6-2.5.27-3.4.1.aarch64.rpm libgphoto2-devel-2.5.27-3.4.1.aarch64.rpm libgphoto2-devel-doc-2.5.27-3.4.1.aarch64.rpm libgphoto2-doc-2.5.27-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3293 moderate SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2020-22042: Fixed a denial of service vulnerability led by a memory leak in the link_filter_inouts function in libavfilter/graphparser.c. (bsc#1186761) ffmpeg-3.4.2-11.14.1.src.rpm ffmpeg-3.4.2-11.14.1.x86_64.rpm ffmpeg-private-devel-3.4.2-11.14.1.x86_64.rpm libavcodec-devel-3.4.2-11.14.1.x86_64.rpm libavcodec57-3.4.2-11.14.1.x86_64.rpm libavcodec57-32bit-3.4.2-11.14.1.x86_64.rpm libavdevice-devel-3.4.2-11.14.1.x86_64.rpm libavdevice57-3.4.2-11.14.1.x86_64.rpm libavdevice57-32bit-3.4.2-11.14.1.x86_64.rpm libavfilter-devel-3.4.2-11.14.1.x86_64.rpm libavfilter6-3.4.2-11.14.1.x86_64.rpm libavfilter6-32bit-3.4.2-11.14.1.x86_64.rpm libavformat-devel-3.4.2-11.14.1.x86_64.rpm libavformat57-3.4.2-11.14.1.x86_64.rpm libavformat57-32bit-3.4.2-11.14.1.x86_64.rpm libavresample-devel-3.4.2-11.14.1.x86_64.rpm libavresample3-3.4.2-11.14.1.x86_64.rpm libavresample3-32bit-3.4.2-11.14.1.x86_64.rpm libavutil-devel-3.4.2-11.14.1.x86_64.rpm libavutil55-3.4.2-11.14.1.x86_64.rpm libavutil55-32bit-3.4.2-11.14.1.x86_64.rpm libpostproc-devel-3.4.2-11.14.1.x86_64.rpm libpostproc54-3.4.2-11.14.1.x86_64.rpm libpostproc54-32bit-3.4.2-11.14.1.x86_64.rpm libswresample-devel-3.4.2-11.14.1.x86_64.rpm libswresample2-3.4.2-11.14.1.x86_64.rpm libswresample2-32bit-3.4.2-11.14.1.x86_64.rpm libswscale-devel-3.4.2-11.14.1.x86_64.rpm libswscale4-3.4.2-11.14.1.x86_64.rpm libswscale4-32bit-3.4.2-11.14.1.x86_64.rpm ffmpeg-3.4.2-11.14.1.s390x.rpm ffmpeg-private-devel-3.4.2-11.14.1.s390x.rpm libavcodec-devel-3.4.2-11.14.1.s390x.rpm libavcodec57-3.4.2-11.14.1.s390x.rpm libavdevice-devel-3.4.2-11.14.1.s390x.rpm libavdevice57-3.4.2-11.14.1.s390x.rpm libavfilter-devel-3.4.2-11.14.1.s390x.rpm libavfilter6-3.4.2-11.14.1.s390x.rpm libavformat-devel-3.4.2-11.14.1.s390x.rpm libavformat57-3.4.2-11.14.1.s390x.rpm libavresample-devel-3.4.2-11.14.1.s390x.rpm libavresample3-3.4.2-11.14.1.s390x.rpm libavutil-devel-3.4.2-11.14.1.s390x.rpm libavutil55-3.4.2-11.14.1.s390x.rpm libpostproc-devel-3.4.2-11.14.1.s390x.rpm libpostproc54-3.4.2-11.14.1.s390x.rpm libswresample-devel-3.4.2-11.14.1.s390x.rpm libswresample2-3.4.2-11.14.1.s390x.rpm libswscale-devel-3.4.2-11.14.1.s390x.rpm libswscale4-3.4.2-11.14.1.s390x.rpm ffmpeg-3.4.2-11.14.1.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.14.1.ppc64le.rpm libavcodec-devel-3.4.2-11.14.1.ppc64le.rpm libavcodec57-3.4.2-11.14.1.ppc64le.rpm libavdevice-devel-3.4.2-11.14.1.ppc64le.rpm libavdevice57-3.4.2-11.14.1.ppc64le.rpm libavfilter-devel-3.4.2-11.14.1.ppc64le.rpm libavfilter6-3.4.2-11.14.1.ppc64le.rpm libavformat-devel-3.4.2-11.14.1.ppc64le.rpm libavformat57-3.4.2-11.14.1.ppc64le.rpm libavresample-devel-3.4.2-11.14.1.ppc64le.rpm libavresample3-3.4.2-11.14.1.ppc64le.rpm libavutil-devel-3.4.2-11.14.1.ppc64le.rpm libavutil55-3.4.2-11.14.1.ppc64le.rpm libpostproc-devel-3.4.2-11.14.1.ppc64le.rpm libpostproc54-3.4.2-11.14.1.ppc64le.rpm libswresample-devel-3.4.2-11.14.1.ppc64le.rpm libswresample2-3.4.2-11.14.1.ppc64le.rpm libswscale-devel-3.4.2-11.14.1.ppc64le.rpm libswscale4-3.4.2-11.14.1.ppc64le.rpm ffmpeg-3.4.2-11.14.1.aarch64.rpm ffmpeg-private-devel-3.4.2-11.14.1.aarch64.rpm libavcodec-devel-3.4.2-11.14.1.aarch64.rpm libavcodec57-3.4.2-11.14.1.aarch64.rpm libavdevice-devel-3.4.2-11.14.1.aarch64.rpm libavdevice57-3.4.2-11.14.1.aarch64.rpm libavfilter-devel-3.4.2-11.14.1.aarch64.rpm libavfilter6-3.4.2-11.14.1.aarch64.rpm libavformat-devel-3.4.2-11.14.1.aarch64.rpm libavformat57-3.4.2-11.14.1.aarch64.rpm libavresample-devel-3.4.2-11.14.1.aarch64.rpm libavresample3-3.4.2-11.14.1.aarch64.rpm libavutil-devel-3.4.2-11.14.1.aarch64.rpm libavutil55-3.4.2-11.14.1.aarch64.rpm libpostproc-devel-3.4.2-11.14.1.aarch64.rpm libpostproc54-3.4.2-11.14.1.aarch64.rpm libswresample-devel-3.4.2-11.14.1.aarch64.rpm libswresample2-3.4.2-11.14.1.aarch64.rpm libswscale-devel-3.4.2-11.14.1.aarch64.rpm libswscale4-3.4.2-11.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3343 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - controller: ensure newly joining node learns the node names of non-DCs. (bsc#1180618) - libcrmcommon: Correctly handle case-sensitive ids of xml objects when changing a value. (bsc#1187414) - libpe_status: handle pending migrations correctly. (bsc#1177212) - scheduler: add test for probe of unmanaged resource on pending node (bsc#1188653): scheduler: update existing tests for probe scheduling change. scheduler: don't schedule probes of unmanaged resources on pending nodes. - controld-fencing: add notice-log for successful fencer-connect (bsc#1181744): controld-fencing: remove-notifications upon connection-destroy. fenced: Remove relayed stonith operation. fence-history: resync fence-history after fenced crash. fence-history: add notification upon history-synced. fence-history: fail leftover pending-actions after fenced-restart. st_client: make safe to remove notifications from notifications. libpacemaker-devel-2.0.5+20201202.ba59be712-4.9.1.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.9.1.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-4.9.1.src.rpm pacemaker-2.0.5+20201202.ba59be712-4.9.1.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.9.1.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-4.9.1.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.9.1.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.9.1.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.9.1.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-4.9.1.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.9.1.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.9.1.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.9.1.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.9.1.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-4.9.1.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.9.1.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.9.1.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.9.1.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.9.1.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-4.9.1.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.9.1.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3274 important SUSE Updates openSUSE-SLE 15.3 This update for ca-certificates-mozilla fixes the following issues: - remove one of the Letsencrypt CAs DST_Root_CA_X3.pem, as it expires September 30th 2021 and openssl certificate chain handling does not handle this correctly in openssl 1.0.2 and older. (bsc#1190858) ca-certificates-mozilla-2.44-18.1.noarch.rpm ca-certificates-mozilla-2.44-18.1.src.rpm openSUSE-SLE-15.3-2021-3315 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: This is the initial go 1.17 shipment. go1.17.1 (released 2021-09-09) includes a security fix to the archive/zip package, as well as bug fixes to the compiler, linker, the go command, and to the crypto/rand, embed, go/types, html/template, and net/http packages. (bsc#1190649) CVE-2021-39293: Fixed an overflow in preallocation check that can cause OOM panic in archive/zip (bsc#1190589) go1.17 (released 2021-08-16) is a major release of Go. go1.17.x minor releases will be provided through August 2022. See https://github.com/golang/go/wiki/Go-Release-Cycle Most changes are in the implementation of the toolchain, runtime, and libraries. As always, the release maintains the Go 1 promise of compatibility. We expect almost all Go programs to continue to compile and run as before. (bsc#1190649) * See release notes https://golang.org/doc/go1.17. Excerpts relevant to OBS environment and for SUSE/openSUSE follow: * The compiler now implements a new way of passing function arguments and results using registers instead of the stack. Benchmarks for a representative set of Go packages and programs show performance improvements of about 5%, and a typical reduction in binary size of about 2%. This is currently enabled for Linux, macOS, and Windows on the 64-bit x86 architecture (the linux/amd64, darwin/amd64, and windows/amd64 ports). This change does not affect the functionality of any safe Go code and is designed to have no impact on most assembly code. * When the linker uses external linking mode, which is the default when linking a program that uses cgo, and the linker is invoked with a -I option, the option will now be passed to the external linker as a -Wl,--dynamic-linker option. * The runtime/cgo package now provides a new facility that allows to turn any Go values to a safe representation that can be used to pass values between C and Go safely. See runtime/cgo.Handle for more information. * ARM64 Go programs now maintain stack frame pointers on the 64-bit ARM architecture on all operating systems. Previously, stack frame pointers were only enabled on Linux, macOS, and iOS. * Pruned module graphs in go 1.17 modules: If a module specifies go 1.17 or higher, the module graph includes only the immediate dependencies of other go 1.17 modules, not their full transitive dependencies. To convert the go.mod file for an existing module to Go 1.17 without changing the selected versions of its dependencies, run: go mod tidy -go=1.17 By default, go mod tidy verifies that the selected versions of dependencies relevant to the main module are the same versions that would be used by the prior Go release (Go 1.16 for a module that specifies go 1.17), and preserves the go.sum entries needed by that release even for dependencies that are not normally needed by other commands. The -compat flag allows that version to be overridden to support older (or only newer) versions, up to the version specified by the go directive in the go.mod file. To tidy a go 1.17 module for Go 1.17 only, without saving checksums for (or checking for consistency with) Go 1.16: go mod tidy -compat=1.17 Note that even if the main module is tidied with -compat=1.17, users who require the module from a go 1.16 or earlier module will still be able to use it, provided that the packages use only compatible language and library features. The go mod graph subcommand also supports the -go flag, which causes it to report the graph as seen by the indicated Go version, showing dependencies that may otherwise be pruned out. * Module deprecation comments: Module authors may deprecate a module by adding a // Deprecated: comment to go.mod, then tagging a new version. go get now prints a warning if a module needed to build packages named on the command line is deprecated. go list -m -u prints deprecations for all dependencies (use -f or -json to show the full message). The go command considers different major versions to be distinct modules, so this mechanism may be used, for example, to provide users with migration instructions for a new major version. * go get -insecure flag is deprecated and has been removed. To permit the use of insecure schemes when fetching dependencies, please use the GOINSECURE environment variable. The -insecure flag also bypassed module sum validation, use GOPRIVATE or GONOSUMDB if you need that functionality. See go help environment for details. * go get prints a deprecation warning when installing commands outside the main module (without the -d flag). go install cmd@version should be used instead to install a command at a specific version, using a suffix like @latest or @v1.2.3. In Go 1.18, the -d flag will always be enabled, and go get will only be used to change dependencies in go.mod. * go.mod files missing go directives: If the main module's go.mod file does not contain a go directive and the go command cannot update the go.mod file, the go command now assumes go 1.11 instead of the current release. (go mod init has added go directives automatically since Go 1.12.) If a module dependency lacks an explicit go.mod file, or its go.mod file does not contain a go directive, the go command now assumes go 1.16 for that dependency instead of the current release. (Dependencies developed in GOPATH mode may lack a go.mod file, and the vendor/modules.txt has to date never recorded the go versions indicated by dependencies' go.mod files.) * vendor contents: If the main module specifies go 1.17 or higher, go mod vendor now annotates vendor/modules.txt with the go version indicated by each vendored module in its own go.mod file. The annotated version is used when building the module's packages from vendored source code. If the main module specifies go 1.17 or higher, go mod vendor now omits go.mod and go.sum files for vendored dependencies, which can otherwise interfere with the ability of the go command to identify the correct module root when invoked within the vendor tree. * Password prompts: The go command by default now suppresses SSH password prompts and Git Credential Manager prompts when fetching Git repositories using SSH, as it already did previously for other Git password prompts. Users authenticating to private Git repos with password-protected SSH may configure an ssh-agent to enable the go command to use password-protected SSH keys. * go mod download: When go mod download is invoked without arguments, it will no longer save sums for downloaded module content to go.sum. It may still make changes to go.mod and go.sum needed to load the build list. This is the same as the behavior in Go 1.15. To save sums for all modules, use: go mod download all * The go command now understands //go:build lines and prefers them over // +build lines. The new syntax uses boolean expressions, just like Go, and should be less error-prone. As of this release, the new syntax is fully supported, and all Go files should be updated to have both forms with the same meaning. To aid in migration, gofmt now automatically synchronizes the two forms. For more details on the syntax and migration plan, see https://golang.org/design/draft-gobuild. * go run now accepts arguments with version suffixes (for example, go run example.com/cmd@v1.0.0). This causes go run to build and run packages in module-aware mode, ignoring the go.mod file in the current directory or any parent directory, if there is one. This is useful for running executables without installing them or without changing dependencies of the current module. * The format of stack traces from the runtime (printed when an uncaught panic occurs, or when runtime.Stack is called) is improved. * TLS strict ALPN: When Config.NextProtos is set, servers now enforce that there is an overlap between the configured protocols and the ALPN protocols advertised by the client, if any. If there is no mutually supported protocol, the connection is closed with the no_application_protocol alert, as required by RFC 7301. This helps mitigate the ALPACA cross-protocol attack. As an exception, when the value "h2" is included in the server's Config.NextProtos, HTTP/1.1 clients will be allowed to connect as if they didn't support ALPN. See issue go#46310 for more information. * crypto/ed25519: The crypto/ed25519 package has been rewritten, and all operations are now approximately twice as fast on amd64 and arm64. The observable behavior has not otherwise changed. * crypto/elliptic: CurveParams methods now automatically invoke faster and safer dedicated implementations for known curves (P-224, P-256, and P-521) when available. Note that this is a best-effort approach and applications should avoid using the generic, not constant-time CurveParams methods and instead use dedicated Curve implementations such as P256. The P521 curve implementation has been rewritten using code generated by the fiat-crypto project, which is based on a formally-verified model of the arithmetic operations. It is now constant-time and three times faster on amd64 and arm64. The observable behavior has not otherwise changed. * crypto/tls: The new Conn.HandshakeContext method allows the user to control cancellation of an in-progress TLS handshake. The provided context is accessible from various callbacks through the new ClientHelloInfo.Context and CertificateRequestInfo.Context methods. Canceling the context after the handshake has finished has no effect. Cipher suite ordering is now handled entirely by the crypto/tls package. Currently, cipher suites are sorted based on their security, performance, and hardware support taking into account both the local and peer's hardware. The order of the Config.CipherSuites field is now ignored, as well as the Config.PreferServerCipherSuites field. Note that Config.CipherSuites still allows applications to choose what TLS 1.0–1.2 cipher suites to enable. The 3DES cipher suites have been moved to InsecureCipherSuites due to fundamental block size-related weakness. They are still enabled by default but only as a last resort, thanks to the cipher suite ordering change above. Beginning in the next release, Go 1.18, the Config.MinVersion for crypto/tls clients will default to TLS 1.2, disabling TLS 1.0 and TLS 1.1 by default. Applications will be able to override the change by explicitly setting Config.MinVersion. This will not affect crypto/tls servers. * crypto/x509: CreateCertificate now returns an error if the provided private key doesn't match the parent's public key, if any. The resulting certificate would have failed to verify. * crypto/x509: The temporary GODEBUG=x509ignoreCN=0 flag has been removed. * crypto/x509: ParseCertificate has been rewritten, and now consumes ~70% fewer resources. The observable behavior has not otherwise changed, except for error messages. * crypto/x509: Beginning in the next release, Go 1.18, crypto/x509 will reject certificates signed with the SHA-1 hash function. This doesn't apply to self-signed root certificates. Practical attacks against SHA-1 have been demonstrated in 2017 and publicly trusted Certificate Authorities have not issued SHA-1 certificates since 2015. * go/build: The new Context.ToolTags field holds the build tags appropriate to the current Go toolchain configuration. * net/http package now uses the new (*tls.Conn).HandshakeContext with the Request context when performing TLS handshakes in the client or server. * syscall: On Unix-like systems, the process group of a child process is now set with signals blocked. This avoids sending a SIGTTOU to the child when the parent is in a background process group. * time: The new Time.IsDST method can be used to check whether the time is in Daylight Savings Time in its configured location. * time: The new Time.UnixMilli and Time.UnixMicro methods return the number of milliseconds and microseconds elapsed since January 1, 1970 UTC respectively. * time: The new UnixMilli and UnixMicro functions return the local Time corresponding to the given Unix time. - Add bash scripts used by go tool commands to provide a more complete cross-compiling go toolchain install. go1.17-1.17.1-1.3.1.i586.rpm go1.17-1.17.1-1.3.1.src.rpm go1.17-doc-1.17.1-1.3.1.i586.rpm go1.17-1.17.1-1.3.1.x86_64.rpm go1.17-doc-1.17.1-1.3.1.x86_64.rpm go1.17-race-1.17.1-1.3.1.x86_64.rpm go1.17-1.17.1-1.3.1.s390x.rpm go1.17-doc-1.17.1-1.3.1.s390x.rpm go1.17-1.17.1-1.3.1.ppc64le.rpm go1.17-doc-1.17.1-1.3.1.ppc64le.rpm go1.17-1.17.1-1.3.1.aarch64.rpm go1.17-doc-1.17.1-1.3.1.aarch64.rpm go1.17-race-1.17.1-1.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3292 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: - Update to go 1.16.8 - CVE-2021-39293: Fixed a buffer overflow issue in preallocation check that can cause OOM panic. (bas#) go1.16-1.16.8-1.26.1.src.rpm go1.16-1.16.8-1.26.1.x86_64.rpm go1.16-doc-1.16.8-1.26.1.x86_64.rpm go1.16-race-1.16.8-1.26.1.x86_64.rpm go1.16-1.16.8-1.26.1.s390x.rpm go1.16-doc-1.16.8-1.26.1.s390x.rpm go1.16-1.16.8-1.26.1.ppc64le.rpm go1.16-doc-1.16.8-1.26.1.ppc64le.rpm go1.16-1.16.8-1.26.1.aarch64.rpm go1.16-doc-1.16.8-1.26.1.aarch64.rpm go1.16-race-1.16.8-1.26.1.aarch64.rpm openSUSE-SLE-15.3-2021-3471 moderate SUSE Updates openSUSE-SLE 15.3 This update for habootstrap-formula fixes the following issues: Update to version 0.4.4 - Wait for cluster startup after a 'corosync' restart. (bsc#1190940) - Add support for The Oracle Cluster File System v2 (OCFS2) - Enable native fencing for 'microsoft-azure' - Add documentation on how to enable native fencing habootstrap-formula-0.4.4+git.1632747498.2caa677-3.20.1.noarch.rpm habootstrap-formula-0.4.4+git.1632747498.2caa677-3.20.1.src.rpm openSUSE-SLE-15.3-2021-3395 important SUSE Updates openSUSE-SLE 15.3 This update for sbd fixes the following issues: Update to version 1.5.0+20210720.f4ca41f - 'sbd-inquisitor': - Implement default delay start for diskless 'sbd'. (bsc#1189398) - Sanitize numeric arguments. - Tolerate and strip any leading spaces of command line option values. (bsc#1187547) - Tell the actual watchdog device specified with '-w'. (bsc#1187547) Important notes on 'sync_resource_startup_default': - This configuration has to be in sync with the configuration in 'pacemaker' where it is called 'sbd_sync'. The syncing enabled per default will lead to syncing enabled on upgrade without adaption of the config. The setting can still be overruled via 'sysconfig'. The setting in the 'config-template' packaged will follow the default if it is left empty. It is possible to have the setting in the 'config-template' deviate from the default by setting it to an explicit 'yes' or 'no'. sbd-1.5.0+20210720.f4ca41f-3.6.1.src.rpm sbd-1.5.0+20210720.f4ca41f-3.6.1.x86_64.rpm sbd-devel-1.5.0+20210720.f4ca41f-3.6.1.x86_64.rpm sbd-1.5.0+20210720.f4ca41f-3.6.1.s390x.rpm sbd-devel-1.5.0+20210720.f4ca41f-3.6.1.s390x.rpm sbd-1.5.0+20210720.f4ca41f-3.6.1.ppc64le.rpm sbd-devel-1.5.0+20210720.f4ca41f-3.6.1.ppc64le.rpm sbd-1.5.0+20210720.f4ca41f-3.6.1.aarch64.rpm sbd-devel-1.5.0+20210720.f4ca41f-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3321 moderate SUSE Updates openSUSE-SLE 15.3 This update for autoyast2 fixes the following issues: - Update elements on rules.xml schema: Add the "hostname" (bsc#1190696). Add Installed_product and installed_product_version (boo#1176089). Add Dialog section (bsc#1188153). autoyast2-4.3.90-3.25.1.noarch.rpm autoyast2-4.3.90-3.25.1.src.rpm autoyast2-installation-4.3.90-3.25.1.noarch.rpm yast2-schema-4.3.25-3.6.1.src.rpm yast2-schema-4.3.25-3.6.1.x86_64.rpm yast2-schema-4.3.25-3.6.1.s390x.rpm yast2-schema-4.3.25-3.6.1.ppc64le.rpm yast2-schema-4.3.25-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3397 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issue: - Remove ownership of '%{_rpmconfigdir}/macros.d' that belongs to RPM. (bsc#1182218) libmariadbd-devel-10.5.12-3.9.1.x86_64.rpm libmariadbd19-10.5.12-3.9.1.x86_64.rpm mariadb-10.5.12-3.9.1.src.rpm mariadb-10.5.12-3.9.1.x86_64.rpm mariadb-bench-10.5.12-3.9.1.x86_64.rpm mariadb-client-10.5.12-3.9.1.x86_64.rpm mariadb-errormessages-10.5.12-3.9.1.noarch.rpm mariadb-rpm-macros-10.5.12-3.9.1.x86_64.rpm mariadb-test-10.5.12-3.9.1.x86_64.rpm mariadb-tools-10.5.12-3.9.1.x86_64.rpm libmariadbd-devel-10.5.12-3.9.1.s390x.rpm libmariadbd19-10.5.12-3.9.1.s390x.rpm mariadb-10.5.12-3.9.1.s390x.rpm mariadb-bench-10.5.12-3.9.1.s390x.rpm mariadb-client-10.5.12-3.9.1.s390x.rpm mariadb-rpm-macros-10.5.12-3.9.1.s390x.rpm mariadb-test-10.5.12-3.9.1.s390x.rpm mariadb-tools-10.5.12-3.9.1.s390x.rpm libmariadbd-devel-10.5.12-3.9.1.ppc64le.rpm libmariadbd19-10.5.12-3.9.1.ppc64le.rpm mariadb-10.5.12-3.9.1.ppc64le.rpm mariadb-bench-10.5.12-3.9.1.ppc64le.rpm mariadb-client-10.5.12-3.9.1.ppc64le.rpm mariadb-rpm-macros-10.5.12-3.9.1.ppc64le.rpm mariadb-test-10.5.12-3.9.1.ppc64le.rpm mariadb-tools-10.5.12-3.9.1.ppc64le.rpm libmariadbd-devel-10.5.12-3.9.1.aarch64.rpm libmariadbd19-10.5.12-3.9.1.aarch64.rpm mariadb-10.5.12-3.9.1.aarch64.rpm mariadb-bench-10.5.12-3.9.1.aarch64.rpm mariadb-client-10.5.12-3.9.1.aarch64.rpm mariadb-rpm-macros-10.5.12-3.9.1.aarch64.rpm mariadb-test-10.5.12-3.9.1.aarch64.rpm mariadb-tools-10.5.12-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3476 important SUSE Updates openSUSE-SLE 15.3 This update for xstream fixes the following issues: - Upgrade to 1.4.18 - CVE-2021-39139: Fixed an issue that allowed an attacker to execute arbitrary code execution by manipulating the processed input stream with type information. (bsc#1189798) - CVE-2021-39140: Fixed an issue that allowed an attacker to execute a DoS attack by manipulating the processed input stream. (bsc#1189798) - CVE-2021-39141: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39144: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39145: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39146: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39147: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39148: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39149: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39150: Fixed an issue that allowed an attacker to access protected resources hosted within the intranet or in the host itself. (bsc#1189798) - CVE-2021-39151: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39152: Fixed an issue that allowed an attacker to access protected resources hosted within the intranet or in the host itself. (bsc#1189798) - CVE-2021-39153: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39154: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) xstream-1.4.18-3.14.1.noarch.rpm xstream-1.4.18-3.14.1.src.rpm xstream-benchmark-1.4.18-3.14.1.noarch.rpm xstream-javadoc-1.4.18-3.14.1.noarch.rpm xstream-parent-1.4.18-3.14.1.noarch.rpm openSUSE-SLE-15.3-2021-3398 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnome-packagekit fixes the following issue: - List all the available updates when getting system updates. (bsc#1190330) gnome-packagekit-3.32.0-7.1.src.rpm gnome-packagekit-3.32.0-7.1.x86_64.rpm gnome-packagekit-extras-3.32.0-7.1.x86_64.rpm gnome-packagekit-lang-3.32.0-7.1.noarch.rpm gnome-packagekit-3.32.0-7.1.s390x.rpm gnome-packagekit-extras-3.32.0-7.1.s390x.rpm gnome-packagekit-3.32.0-7.1.ppc64le.rpm gnome-packagekit-extras-3.32.0-7.1.ppc64le.rpm gnome-packagekit-3.32.0-7.1.aarch64.rpm gnome-packagekit-extras-3.32.0-7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3392 important SUSE Updates openSUSE-SLE 15.3 This update for rsync fixes the following issues: - Fix a memory protection issue in 'iconv' (bsc#1188258) rsync-3.1.3-4.7.1.src.rpm rsync-3.1.3-4.7.1.x86_64.rpm rsync-3.1.3-4.7.1.s390x.rpm rsync-3.1.3-4.7.1.ppc64le.rpm rsync-3.1.3-4.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3399 moderate SUSE Updates openSUSE-SLE 15.3 This update for NetworkManager fixes the following issues: - Exclude 'systemd.automount' from NFS processing and avoid failures after a suspend/resume cycle. (bsc#1116625) NetworkManager-1.22.10-3.10.1.src.rpm NetworkManager-1.22.10-3.10.1.x86_64.rpm NetworkManager-branding-upstream-1.22.10-3.10.1.noarch.rpm NetworkManager-devel-1.22.10-3.10.1.x86_64.rpm NetworkManager-devel-32bit-1.22.10-3.10.1.x86_64.rpm NetworkManager-lang-1.22.10-3.10.1.noarch.rpm libnm0-1.22.10-3.10.1.x86_64.rpm typelib-1_0-NM-1_0-1.22.10-3.10.1.x86_64.rpm NetworkManager-1.22.10-3.10.1.s390x.rpm NetworkManager-devel-1.22.10-3.10.1.s390x.rpm libnm0-1.22.10-3.10.1.s390x.rpm typelib-1_0-NM-1_0-1.22.10-3.10.1.s390x.rpm NetworkManager-1.22.10-3.10.1.ppc64le.rpm NetworkManager-devel-1.22.10-3.10.1.ppc64le.rpm libnm0-1.22.10-3.10.1.ppc64le.rpm typelib-1_0-NM-1_0-1.22.10-3.10.1.ppc64le.rpm NetworkManager-1.22.10-3.10.1.aarch64.rpm NetworkManager-devel-1.22.10-3.10.1.aarch64.rpm libnm0-1.22.10-3.10.1.aarch64.rpm typelib-1_0-NM-1_0-1.22.10-3.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3354 moderate SUSE Updates openSUSE-SLE 15.3 This update for libqt5-qtsvg fixes the following issues: - CVE-2021-3481: Fixed an out of bounds read in function QRadialFetchSimd from crafted svg file. (bsc#1184783) libQt5Svg5-32bit-5.12.7-3.3.1.x86_64.rpm libQt5Svg5-5.12.7-3.3.1.x86_64.rpm libqt5-qtsvg-5.12.7-3.3.1.src.rpm libqt5-qtsvg-devel-32bit-5.12.7-3.3.1.x86_64.rpm libqt5-qtsvg-devel-5.12.7-3.3.1.x86_64.rpm libqt5-qtsvg-examples-5.12.7-3.3.1.x86_64.rpm libqt5-qtsvg-private-headers-devel-5.12.7-3.3.1.noarch.rpm libQt5Svg5-5.12.7-3.3.1.s390x.rpm libqt5-qtsvg-devel-5.12.7-3.3.1.s390x.rpm libqt5-qtsvg-examples-5.12.7-3.3.1.s390x.rpm libQt5Svg5-5.12.7-3.3.1.ppc64le.rpm libqt5-qtsvg-devel-5.12.7-3.3.1.ppc64le.rpm libqt5-qtsvg-examples-5.12.7-3.3.1.ppc64le.rpm libQt5Svg5-5.12.7-3.3.1.aarch64.rpm libqt5-qtsvg-devel-5.12.7-3.3.1.aarch64.rpm libqt5-qtsvg-examples-5.12.7-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3304 moderate SUSE Updates openSUSE-SLE 15.3 This update for kdump fixes the following issues: - Do not iterate past end of string (bsc#1186037). - Fix incorrect exit code checking after "local" with assignment (bsc#1184616). - Avoid an endless loop when resolving a hostname fails with EAI_AGAIN (bsc#1183070). - Install /etc/resolv.conf using its resolved path (bsc#1183070). - Make sure that initrd.target.wants directory exists (bsc#1172670). kdump-0.9.0-18.3.1.src.rpm kdump-0.9.0-18.3.1.x86_64.rpm kdump-0.9.0-18.3.1.s390x.rpm kdump-0.9.0-18.3.1.ppc64le.rpm kdump-0.9.0-18.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3328 moderate SUSE Updates openSUSE-SLE 15.3 This update for patterns-sap fixes the following issue: - Remove 'libssh2-1' from SAP-HANA pattern (jsc#SLE-20033) - 'libssh2-1' is not longer needed for newer HANA 2.0 versions - Adjust the 'patterns-sap' version to 15.3 patterns-sap-15.3-9.5.1.src.rpm patterns-sap-15.3-9.5.1.x86_64.rpm patterns-sap-b1-15.3-9.5.1.x86_64.rpm patterns-sap-hana-15.3-9.5.1.x86_64.rpm patterns-sap-nw-15.3-9.5.1.x86_64.rpm patterns-sap-15.3-9.5.1.ppc64le.rpm patterns-sap-b1-15.3-9.5.1.ppc64le.rpm patterns-sap-hana-15.3-9.5.1.ppc64le.rpm patterns-sap-nw-15.3-9.5.1.ppc64le.rpm openSUSE-SLE-15.3-2021-3536 low SUSE Updates openSUSE-SLE 15.3 This update for yast2-storage-ng fixes the following issues: - Fix desktop file so the control center tooltip is translated. (bsc#1187270) - Recommend to install libyui-qt-graph package in order to offer the View/Device Graphs menu option. (bsc#1191109) - Fix (un)masking systemd units by using the systemctl --plain flag. (bsc#1191347). yast2-storage-ng-4.3.56-3.12.1.src.rpm yast2-storage-ng-4.3.56-3.12.1.x86_64.rpm yast2-storage-ng-4.3.56-3.12.1.s390x.rpm yast2-storage-ng-4.3.56-3.12.1.ppc64le.rpm yast2-storage-ng-4.3.56-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3390 moderate SUSE Updates openSUSE-SLE 15.3 This update for fcoe-utils fixes the following issues: Update to version 1.0.34 (bsc#1182804) - Fix 21 string-op truncation, format truncation, and format overflow errors - Use of uninitialized values detected during LTO - fix VLAN device name overflow check - Fix an issue caused by 'safe_makepath' change in 'libopenfcoe.c' - Char can be unsigned on ARM, so set signed explicitly as the check expects it can be negative - Handle NIC names longer than 7 characters. (bsc#1010047) - Change debug->log message if daemon running - Remove references to 'open-fcoe.org' - Fix two gcc-11 compiler warnings. - Exit 'fcoemon' command if 'fcoemon' daemon is already running. - Update systemd service files fcoe-utils-1.0.34-12.3.1.src.rpm fcoe-utils-1.0.34-12.3.1.x86_64.rpm fcoe-utils-1.0.34-12.3.1.s390x.rpm fcoe-utils-1.0.34-12.3.1.ppc64le.rpm fcoe-utils-1.0.34-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3479 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Fix usage information for -f parameter. (bsc#1187470) - Fix obsolete reference to 96insmodpost in manpage. (bsc#1187774) - Remove references to INITRD_MODULES. (bsc#1187115) - Multipath FCoE configurations may not boot when using only one path. (bsc#1186260) - Adjust path for SUSE: /var/lib/nfs/statd/sm to /var/lib/nfs/sm. (bsc#1184970) - Systemd coredump unit files are missing in initrd. (1190845) - Use $kernel rather than $(uname -r). - Exclude modules that are built-in. - Restore INITRD_MODULES in mkinitrd script. - Call dracut_instmods with hostonly. dracut-049.1+suse.209.gebcf4f33-3.40.1.src.rpm dracut-049.1+suse.209.gebcf4f33-3.40.1.x86_64.rpm dracut-extra-049.1+suse.209.gebcf4f33-3.40.1.x86_64.rpm dracut-fips-049.1+suse.209.gebcf4f33-3.40.1.x86_64.rpm dracut-ima-049.1+suse.209.gebcf4f33-3.40.1.x86_64.rpm dracut-tools-049.1+suse.209.gebcf4f33-3.40.1.x86_64.rpm dracut-049.1+suse.209.gebcf4f33-3.40.1.s390x.rpm dracut-extra-049.1+suse.209.gebcf4f33-3.40.1.s390x.rpm dracut-fips-049.1+suse.209.gebcf4f33-3.40.1.s390x.rpm dracut-ima-049.1+suse.209.gebcf4f33-3.40.1.s390x.rpm dracut-tools-049.1+suse.209.gebcf4f33-3.40.1.s390x.rpm dracut-049.1+suse.209.gebcf4f33-3.40.1.ppc64le.rpm dracut-extra-049.1+suse.209.gebcf4f33-3.40.1.ppc64le.rpm dracut-fips-049.1+suse.209.gebcf4f33-3.40.1.ppc64le.rpm dracut-ima-049.1+suse.209.gebcf4f33-3.40.1.ppc64le.rpm dracut-tools-049.1+suse.209.gebcf4f33-3.40.1.ppc64le.rpm dracut-049.1+suse.209.gebcf4f33-3.40.1.aarch64.rpm dracut-extra-049.1+suse.209.gebcf4f33-3.40.1.aarch64.rpm dracut-fips-049.1+suse.209.gebcf4f33-3.40.1.aarch64.rpm dracut-ima-049.1+suse.209.gebcf4f33-3.40.1.aarch64.rpm dracut-tools-049.1+suse.209.gebcf4f33-3.40.1.aarch64.rpm openSUSE-SLE-15.3-2021-3474 moderate SUSE Updates openSUSE-SLE 15.3 This update for util-linux fixes the following issues: - CVE-2021-37600: Fixed an integer overflow which could lead to a buffer overflow in get_sem_elements() in sys-utils/ipcutils.c. (bsc#1188921) libblkid-devel-2.36.2-4.5.1.x86_64.rpm libblkid-devel-32bit-2.36.2-4.5.1.x86_64.rpm libblkid-devel-static-2.36.2-4.5.1.x86_64.rpm libblkid1-2.36.2-4.5.1.x86_64.rpm libblkid1-32bit-2.36.2-4.5.1.x86_64.rpm libfdisk-devel-2.36.2-4.5.1.x86_64.rpm libfdisk-devel-32bit-2.36.2-4.5.1.x86_64.rpm libfdisk-devel-static-2.36.2-4.5.1.x86_64.rpm libfdisk1-2.36.2-4.5.1.x86_64.rpm libfdisk1-32bit-2.36.2-4.5.1.x86_64.rpm libmount-devel-2.36.2-4.5.1.x86_64.rpm libmount-devel-32bit-2.36.2-4.5.1.x86_64.rpm libmount-devel-static-2.36.2-4.5.1.x86_64.rpm libmount1-2.36.2-4.5.1.x86_64.rpm libmount1-32bit-2.36.2-4.5.1.x86_64.rpm libsmartcols-devel-2.36.2-4.5.1.x86_64.rpm libsmartcols-devel-32bit-2.36.2-4.5.1.x86_64.rpm libsmartcols-devel-static-2.36.2-4.5.1.x86_64.rpm libsmartcols1-2.36.2-4.5.1.x86_64.rpm libsmartcols1-32bit-2.36.2-4.5.1.x86_64.rpm libuuid-devel-2.36.2-4.5.1.x86_64.rpm libuuid-devel-32bit-2.36.2-4.5.1.x86_64.rpm libuuid-devel-static-2.36.2-4.5.1.x86_64.rpm libuuid1-2.36.2-4.5.1.x86_64.rpm libuuid1-32bit-2.36.2-4.5.1.x86_64.rpm python3-libmount-2.36.2-4.5.1.src.rpm python3-libmount-2.36.2-4.5.1.x86_64.rpm util-linux-2.36.2-4.5.1.src.rpm util-linux-2.36.2-4.5.1.x86_64.rpm util-linux-lang-2.36.2-4.5.1.noarch.rpm util-linux-systemd-2.36.2-4.5.1.src.rpm util-linux-systemd-2.36.2-4.5.1.x86_64.rpm uuidd-2.36.2-4.5.1.x86_64.rpm libblkid-devel-2.36.2-4.5.1.s390x.rpm libblkid-devel-static-2.36.2-4.5.1.s390x.rpm libblkid1-2.36.2-4.5.1.s390x.rpm libfdisk-devel-2.36.2-4.5.1.s390x.rpm libfdisk-devel-static-2.36.2-4.5.1.s390x.rpm libfdisk1-2.36.2-4.5.1.s390x.rpm libmount-devel-2.36.2-4.5.1.s390x.rpm libmount-devel-static-2.36.2-4.5.1.s390x.rpm libmount1-2.36.2-4.5.1.s390x.rpm libsmartcols-devel-2.36.2-4.5.1.s390x.rpm libsmartcols-devel-static-2.36.2-4.5.1.s390x.rpm libsmartcols1-2.36.2-4.5.1.s390x.rpm libuuid-devel-2.36.2-4.5.1.s390x.rpm libuuid-devel-static-2.36.2-4.5.1.s390x.rpm libuuid1-2.36.2-4.5.1.s390x.rpm python3-libmount-2.36.2-4.5.1.s390x.rpm util-linux-2.36.2-4.5.1.s390x.rpm util-linux-systemd-2.36.2-4.5.1.s390x.rpm uuidd-2.36.2-4.5.1.s390x.rpm libblkid-devel-2.36.2-4.5.1.ppc64le.rpm libblkid-devel-static-2.36.2-4.5.1.ppc64le.rpm libblkid1-2.36.2-4.5.1.ppc64le.rpm libfdisk-devel-2.36.2-4.5.1.ppc64le.rpm libfdisk-devel-static-2.36.2-4.5.1.ppc64le.rpm libfdisk1-2.36.2-4.5.1.ppc64le.rpm libmount-devel-2.36.2-4.5.1.ppc64le.rpm libmount-devel-static-2.36.2-4.5.1.ppc64le.rpm libmount1-2.36.2-4.5.1.ppc64le.rpm libsmartcols-devel-2.36.2-4.5.1.ppc64le.rpm libsmartcols-devel-static-2.36.2-4.5.1.ppc64le.rpm libsmartcols1-2.36.2-4.5.1.ppc64le.rpm libuuid-devel-2.36.2-4.5.1.ppc64le.rpm libuuid-devel-static-2.36.2-4.5.1.ppc64le.rpm libuuid1-2.36.2-4.5.1.ppc64le.rpm python3-libmount-2.36.2-4.5.1.ppc64le.rpm util-linux-2.36.2-4.5.1.ppc64le.rpm util-linux-systemd-2.36.2-4.5.1.ppc64le.rpm uuidd-2.36.2-4.5.1.ppc64le.rpm libblkid-devel-2.36.2-4.5.1.aarch64.rpm libblkid-devel-static-2.36.2-4.5.1.aarch64.rpm libblkid1-2.36.2-4.5.1.aarch64.rpm libfdisk-devel-2.36.2-4.5.1.aarch64.rpm libfdisk-devel-static-2.36.2-4.5.1.aarch64.rpm libfdisk1-2.36.2-4.5.1.aarch64.rpm libmount-devel-2.36.2-4.5.1.aarch64.rpm libmount-devel-static-2.36.2-4.5.1.aarch64.rpm libmount1-2.36.2-4.5.1.aarch64.rpm libsmartcols-devel-2.36.2-4.5.1.aarch64.rpm libsmartcols-devel-static-2.36.2-4.5.1.aarch64.rpm libsmartcols1-2.36.2-4.5.1.aarch64.rpm libuuid-devel-2.36.2-4.5.1.aarch64.rpm libuuid-devel-static-2.36.2-4.5.1.aarch64.rpm libuuid1-2.36.2-4.5.1.aarch64.rpm python3-libmount-2.36.2-4.5.1.aarch64.rpm util-linux-2.36.2-4.5.1.aarch64.rpm util-linux-systemd-2.36.2-4.5.1.aarch64.rpm uuidd-2.36.2-4.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-3410 moderate SUSE Updates openSUSE-SLE 15.3 This update for xkeyboard-config fixes the following issue: - Wrong keyboard mapping causing input delays with ABNT2 keyboards. (bsc#1191242) xkeyboard-config-2.23.1-3.9.1.noarch.rpm xkeyboard-config-2.23.1-3.9.1.src.rpm xkeyboard-config-lang-2.23.1-3.9.1.noarch.rpm openSUSE-SLE-15.3-2021-3406 moderate SUSE Updates openSUSE-SLE 15.3 This update for ServiceReport fixes the following issues: - ServiceReport v2.2.3 release.(jsc#18193) - Added hardening to systemd service(s). - Run-on supported architectures only. - [fadump] Update crashkernel recommendation. - [Daemon] check active status along with enabled. - Take crashkernel recommendation from kdump-lib.sh scripts. ServiceReport-2.2.3+git1.55a13db1c256-3.3.1.noarch.rpm ServiceReport-2.2.3+git1.55a13db1c256-3.3.1.src.rpm openSUSE-SLE-15.3-2021-3411 moderate SUSE Updates openSUSE-SLE 15.3 This update for lvm2 fixes the following issues: - Do not crash vgextend when extending VG with missing PV. (bsc#1191019) device-mapper-1.02.163-8.36.1.x86_64.rpm device-mapper-devel-1.02.163-8.36.1.x86_64.rpm device-mapper-devel-32bit-1.02.163-8.36.1.x86_64.rpm libdevmapper-event1_03-1.02.163-8.36.1.x86_64.rpm libdevmapper-event1_03-32bit-1.02.163-8.36.1.x86_64.rpm libdevmapper1_03-1.02.163-8.36.1.x86_64.rpm libdevmapper1_03-32bit-1.02.163-8.36.1.x86_64.rpm liblvm2cmd2_03-2.03.05-8.36.1.x86_64.rpm lvm2-2.03.05-8.36.1.src.rpm lvm2-2.03.05-8.36.1.x86_64.rpm lvm2-devel-2.03.05-8.36.1.x86_64.rpm lvm2-device-mapper-2.03.05-8.36.1.src.rpm lvm2-lockd-2.03.05-8.36.1.x86_64.rpm lvm2-lvmlockd-2.03.05-8.36.1.src.rpm lvm2-testsuite-2.03.05-8.36.1.x86_64.rpm device-mapper-1.02.163-8.36.1.s390x.rpm device-mapper-devel-1.02.163-8.36.1.s390x.rpm libdevmapper-event1_03-1.02.163-8.36.1.s390x.rpm libdevmapper1_03-1.02.163-8.36.1.s390x.rpm liblvm2cmd2_03-2.03.05-8.36.1.s390x.rpm lvm2-2.03.05-8.36.1.s390x.rpm lvm2-devel-2.03.05-8.36.1.s390x.rpm lvm2-lockd-2.03.05-8.36.1.s390x.rpm lvm2-testsuite-2.03.05-8.36.1.s390x.rpm device-mapper-1.02.163-8.36.1.ppc64le.rpm device-mapper-devel-1.02.163-8.36.1.ppc64le.rpm libdevmapper-event1_03-1.02.163-8.36.1.ppc64le.rpm libdevmapper1_03-1.02.163-8.36.1.ppc64le.rpm liblvm2cmd2_03-2.03.05-8.36.1.ppc64le.rpm lvm2-2.03.05-8.36.1.ppc64le.rpm lvm2-devel-2.03.05-8.36.1.ppc64le.rpm lvm2-lockd-2.03.05-8.36.1.ppc64le.rpm lvm2-testsuite-2.03.05-8.36.1.ppc64le.rpm device-mapper-1.02.163-8.36.1.aarch64.rpm device-mapper-devel-1.02.163-8.36.1.aarch64.rpm libdevmapper-event1_03-1.02.163-8.36.1.aarch64.rpm libdevmapper1_03-1.02.163-8.36.1.aarch64.rpm liblvm2cmd2_03-2.03.05-8.36.1.aarch64.rpm lvm2-2.03.05-8.36.1.aarch64.rpm lvm2-devel-2.03.05-8.36.1.aarch64.rpm lvm2-lockd-2.03.05-8.36.1.aarch64.rpm lvm2-testsuite-2.03.05-8.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-3407 low SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Live migration fails in some scenarios. (bsc#1180668) ldirectord-4.8.0+git30.d0077df0-8.14.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.14.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.14.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.14.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.14.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.14.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.14.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.14.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.14.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3798 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc7 fixes the following issues: - Fixed a build issue when built with recent kernel headers. - Backport the "-fpatchable-function-entry" feature from newer GCC. (jsc#SLE-20049) - do not handle exceptions in std::thread (jsc#CAR-1182) cpp7-7.5.0+r278197-4.30.1.x86_64.rpm cross-aarch64-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-aarch64-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-aarch64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-arm-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-arm-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-arm-none-gcc7-bootstrap-7.5.0+r278197-4.30.1.src.rpm cross-arm-none-gcc7-bootstrap-7.5.0+r278197-4.30.1.x86_64.rpm cross-avr-gcc7-bootstrap-7.5.0+r278197-4.30.1.src.rpm cross-avr-gcc7-bootstrap-7.5.0+r278197-4.30.1.x86_64.rpm cross-epiphany-gcc7-bootstrap-7.5.0+r278197-4.30.1.src.rpm cross-epiphany-gcc7-bootstrap-7.5.0+r278197-4.30.1.x86_64.rpm cross-hppa-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-hppa-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-hppa-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-i386-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-i386-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-i386-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-m68k-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-m68k-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-m68k-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-mips-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-mips-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-mips-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-nvptx-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-nvptx-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-nvptx-newlib7-devel-7.5.0+r278197-4.30.1.x86_64.rpm cross-ppc64-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-ppc64-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-ppc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-ppc64le-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-ppc64le-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-ppc64le-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-rx-gcc7-bootstrap-7.5.0+r278197-4.30.1.src.rpm cross-rx-gcc7-bootstrap-7.5.0+r278197-4.30.1.x86_64.rpm cross-s390x-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-s390x-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-s390x-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-sparc-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-sparc-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-sparc64-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-sparc64-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-sparc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-sparcv9-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-7.5.0+r278197-4.30.1.src.rpm gcc7-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-ada-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-ada-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-c++-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-c++-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-fortran-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-fortran-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-go-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-go-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-info-7.5.0+r278197-4.30.1.noarch.rpm gcc7-locale-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-obj-c++-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-obj-c++-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-objc-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-objc-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-testresults-7.5.0+r278197-4.30.1.src.rpm gcc7-testresults-7.5.0+r278197-4.30.1.x86_64.rpm libada7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libada7-7.5.0+r278197-4.30.1.x86_64.rpm libasan4-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libasan4-7.5.0+r278197-4.30.1.x86_64.rpm libatomic1-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libatomic1-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libcilkrts5-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libcilkrts5-7.5.0+r278197-4.30.1.x86_64.rpm libgcc_s1-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libgcc_s1-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libgfortran4-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libgfortran4-7.5.0+r278197-4.30.1.x86_64.rpm libgo11-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libgo11-7.5.0+r278197-4.30.1.x86_64.rpm libgomp1-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libgomp1-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libitm1-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libitm1-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm liblsan0-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libmpx2-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libmpx2-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libmpxwrappers2-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libmpxwrappers2-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libobjc4-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libobjc4-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libquadmath0-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libquadmath0-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libstdc++6-devel-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libstdc++6-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libstdc++6-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libstdc++6-gcc7-locale-7.5.0+r278197-4.30.1.x86_64.rpm libtsan0-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libubsan0-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libubsan0-7.5.0+r278197-4.30.1.x86_64.rpm cpp7-7.5.0+r278197-4.30.1.s390x.rpm cross-aarch64-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-aarch64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-arm-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-arm-none-gcc7-bootstrap-7.5.0+r278197-4.30.1.s390x.rpm cross-avr-gcc7-bootstrap-7.5.0+r278197-4.30.1.s390x.rpm cross-epiphany-gcc7-bootstrap-7.5.0+r278197-4.30.1.s390x.rpm cross-hppa-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-hppa-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-i386-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-i386-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-m68k-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-m68k-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-mips-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-mips-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-ppc64-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-ppc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-ppc64le-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-ppc64le-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-rx-gcc7-bootstrap-7.5.0+r278197-4.30.1.s390x.rpm cross-sparc-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-sparc64-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-sparc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-sparcv9-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-x86_64-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-x86_64-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-x86_64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-7.5.0+r278197-4.30.1.s390x.rpm gcc7-ada-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-ada-7.5.0+r278197-4.30.1.s390x.rpm gcc7-c++-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-c++-7.5.0+r278197-4.30.1.s390x.rpm gcc7-fortran-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-fortran-7.5.0+r278197-4.30.1.s390x.rpm gcc7-go-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-go-7.5.0+r278197-4.30.1.s390x.rpm gcc7-locale-7.5.0+r278197-4.30.1.s390x.rpm gcc7-obj-c++-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-obj-c++-7.5.0+r278197-4.30.1.s390x.rpm gcc7-objc-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-objc-7.5.0+r278197-4.30.1.s390x.rpm gcc7-testresults-7.5.0+r278197-4.30.1.s390x.rpm libada7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libada7-7.5.0+r278197-4.30.1.s390x.rpm libasan4-32bit-7.5.0+r278197-4.30.1.s390x.rpm libasan4-7.5.0+r278197-4.30.1.s390x.rpm libatomic1-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libatomic1-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libgcc_s1-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libgcc_s1-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libgfortran4-32bit-7.5.0+r278197-4.30.1.s390x.rpm libgfortran4-7.5.0+r278197-4.30.1.s390x.rpm libgo11-32bit-7.5.0+r278197-4.30.1.s390x.rpm libgo11-7.5.0+r278197-4.30.1.s390x.rpm libgomp1-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libgomp1-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libitm1-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libitm1-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libobjc4-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libobjc4-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libstdc++6-devel-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libstdc++6-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libstdc++6-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libstdc++6-gcc7-locale-7.5.0+r278197-4.30.1.s390x.rpm libubsan0-32bit-7.5.0+r278197-4.30.1.s390x.rpm libubsan0-7.5.0+r278197-4.30.1.s390x.rpm cpp7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-aarch64-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-aarch64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-arm-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-arm-none-gcc7-bootstrap-7.5.0+r278197-4.30.1.ppc64le.rpm cross-avr-gcc7-bootstrap-7.5.0+r278197-4.30.1.ppc64le.rpm cross-epiphany-gcc7-bootstrap-7.5.0+r278197-4.30.1.ppc64le.rpm cross-hppa-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-hppa-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-i386-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-i386-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-m68k-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-m68k-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-mips-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-mips-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-ppc64-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-ppc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-rx-gcc7-bootstrap-7.5.0+r278197-4.30.1.ppc64le.rpm cross-s390x-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-s390x-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-sparc-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-sparc64-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-sparc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-sparcv9-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-x86_64-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-x86_64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-ada-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-c++-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-fortran-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-go-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-locale-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-obj-c++-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-objc-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-testresults-7.5.0+r278197-4.30.1.ppc64le.rpm libada7-7.5.0+r278197-4.30.1.ppc64le.rpm libasan4-7.5.0+r278197-4.30.1.ppc64le.rpm libatomic1-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libgcc_s1-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libgfortran4-7.5.0+r278197-4.30.1.ppc64le.rpm libgo11-7.5.0+r278197-4.30.1.ppc64le.rpm libgomp1-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libitm1-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm liblsan0-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libobjc4-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libstdc++6-devel-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libstdc++6-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libstdc++6-gcc7-locale-7.5.0+r278197-4.30.1.ppc64le.rpm libtsan0-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libubsan0-7.5.0+r278197-4.30.1.ppc64le.rpm cpp7-7.5.0+r278197-4.30.1.aarch64.rpm cross-arm-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-arm-none-gcc7-bootstrap-7.5.0+r278197-4.30.1.aarch64.rpm cross-avr-gcc7-bootstrap-7.5.0+r278197-4.30.1.aarch64.rpm cross-epiphany-gcc7-bootstrap-7.5.0+r278197-4.30.1.aarch64.rpm cross-hppa-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-hppa-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-i386-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-i386-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-m68k-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-m68k-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-mips-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-mips-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-ppc64-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-ppc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-ppc64le-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-ppc64le-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-rx-gcc7-bootstrap-7.5.0+r278197-4.30.1.aarch64.rpm cross-s390x-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-s390x-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-sparc-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-sparc64-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-sparc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-sparcv9-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-x86_64-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-x86_64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-ada-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-c++-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-fortran-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-go-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-locale-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-obj-c++-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-objc-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-testresults-7.5.0+r278197-4.30.1.aarch64.rpm libada7-7.5.0+r278197-4.30.1.aarch64.rpm libasan4-7.5.0+r278197-4.30.1.aarch64.rpm libatomic1-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libgcc_s1-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libgfortran4-7.5.0+r278197-4.30.1.aarch64.rpm libgo11-7.5.0+r278197-4.30.1.aarch64.rpm libgomp1-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libitm1-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm liblsan0-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libobjc4-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libstdc++6-devel-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libstdc++6-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libstdc++6-gcc7-locale-7.5.0+r278197-4.30.1.aarch64.rpm libtsan0-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libubsan0-7.5.0+r278197-4.30.1.aarch64.rpm openSUSE-SLE-15.3-2022-1065 important SUSE Updates openSUSE-SLE 15.3 This update for kernel-firmware fixes the following issues: Update Intel Wireless firmware for 9xxx (INTEL-SA-00539, bsc#1196333): CVE-2021-0161: Improper input validation in firmware for Intel PROSet/Wireless Wi-Fi and Killer Wi-Fi may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2021-0164: Improper access control in firmware for Intel PROSet/Wireless Wi-Fi and Killer Wi-Fi may allow an unauthenticated user to potentially enable escalation of privilege via local access. CVE-2021-0165: Improper input validation in firmware for Intel PROSet/Wireless Wi-Fi and Killer Wi-Fi may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-0066: Improper input validation in firmware for Intel PROSet/Wireless Wi-Fi and Killer Wi-Fi may allow an unauthenticated user to potentially enable escalation of privilege via local access. CVE-2021-0166: Exposure of Sensitive Information to an Unauthorized Actor in firmware for some Intel PROSet/Wireless Wi-Fi and some Killer Wi-Fi may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2021-0168: Improper input validation in firmware for some Intel PROSet/Wireless Wi-Fi and some Killer Wi-Fi may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2021-0170: Exposure of Sensitive Information to an Unauthorized Actor in firmware for some Intel PROSet/Wireless Wi-Fi and some Killer Wi-Fi may allow an authenticated user to potentially enable information disclosure via local access. CVE-2021-0172: Improper input validation in firmware for some Intel PROSet/Wireless Wi-Fi and some Killer Wi-Fi may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-0173: Improper Validation of Consistency within input in firmware for some Intel PROSet/Wireless Wi-Fi and some Killer Wi-Fi may allow a unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-0174: Improper Use of Validation Framework in firmware for some Intel PROSet/Wireless Wi-Fi and some Killer Wi-Fi may allow a unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-0175: Improper Validation of Specified Index, Position, or Offset in Input in firmware for some Intel PROSet/Wireless Wi-Fi and some Killer Wi-Fi may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-0076: Improper Validation of Specified Index, Position, or Offset in Input in firmware for some Intel PROSet/Wireless Wi-Fi and some Killer Wi-Fi may allow a privileged user to potentially enable denial of service via local access. CVE-2021-0176: Improper input validation in firmware for some Intel PROSet/Wireless Wi-Fi and some Killer Wi-Fi may allow a privileged user to potentially enable denial of service via local access. CVE-2021-0183: Improper Validation of Specified Index, Position, or Offset in Input in software for some Intel PROSet/Wireless Wi-Fi and some Killer Wi-Fi may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-0072: Improper input validation in firmware for some Intel PROSet/Wireless Wi-Fi and some Killer Wi-Fi may allow a privileged user to potentially enable information disclosure via local access. CVE-2021-0071: Improper input validation in firmware for some Intel PROSet/Wireless WiFi in UEFI may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. Update Intel Bluetooth firmware (INTEL-SA-00604,bsc#1195786): - CVE-2021-33139: Improper conditions check in firmware for some Intel Wireless Bluetooth and Killer Bluetooth products before may allow an authenticated user to potentially enable denial of service via adjacent access. - CVE-2021-33155: Improper input validation in firmware for some Intel Wireless Bluetooth and Killer Bluetooth products before may allow an authenticated user to potentially enable denial of service via adjacent access. Bug fixes: - Updated the AMD SEV firmware (bsc#1186938) - Reduced the LZMA2 dictionary size (bsc#1188662) kernel-firmware-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-20210208-150300.4.7.1.src.rpm True kernel-firmware-all-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-amdgpu-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-ath10k-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-ath11k-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-atheros-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-bluetooth-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-bnx2-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-brcm-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-chelsio-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-dpaa2-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-i915-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-intel-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-iwlwifi-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-liquidio-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-marvell-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-media-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-mediatek-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-mellanox-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-mwifiex-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-network-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-nfp-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-nvidia-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-platform-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-prestera-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-qlogic-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-radeon-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-realtek-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-serial-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-sound-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-ti-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-ueagle-20210208-150300.4.7.1.noarch.rpm True kernel-firmware-usb-network-20210208-150300.4.7.1.noarch.rpm True ucode-amd-20210208-150300.4.7.1.noarch.rpm True openSUSE-SLE-15.3-2021-3413 important SUSE Updates openSUSE-SLE 15.3 This update for suse-module-tools fixes the following issues: - Fixed an issue where the queuing of secure boot certificates did not happen (bsc#1189841, bsc#1190598) - Fixed an issue where initrd was not always rebuilding after installing any kernel-*-extra package (bsc#1189441) suse-module-tools-15.3.10-3.8.1.src.rpm suse-module-tools-15.3.10-3.8.1.x86_64.rpm suse-module-tools-legacy-15.3.10-3.8.1.x86_64.rpm suse-module-tools-15.3.10-3.8.1.s390x.rpm suse-module-tools-legacy-15.3.10-3.8.1.s390x.rpm suse-module-tools-15.3.10-3.8.1.ppc64le.rpm suse-module-tools-legacy-15.3.10-3.8.1.ppc64le.rpm suse-module-tools-15.3.10-3.8.1.aarch64.rpm suse-module-tools-legacy-15.3.10-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3489 moderate SUSE Updates openSUSE-SLE 15.3 This update for python fixes the following issues: - CVE-2021-3737: Fixed http client infinite line reading (DoS) after a http 100. (bsc#1189241) - CVE-2021-3733: Fixed ReDoS in urllib.request. (bsc#1189287) libpython2_7-1_0-2.7.18-33.1.x86_64.rpm libpython2_7-1_0-32bit-2.7.18-33.1.x86_64.rpm python-2.7.18-33.1.src.rpm python-2.7.18-33.1.x86_64.rpm python-32bit-2.7.18-33.1.x86_64.rpm python-base-2.7.18-33.1.src.rpm python-base-2.7.18-33.1.x86_64.rpm python-base-32bit-2.7.18-33.1.x86_64.rpm python-curses-2.7.18-33.1.x86_64.rpm python-demo-2.7.18-33.1.x86_64.rpm python-devel-2.7.18-33.1.x86_64.rpm python-doc-2.7.18-33.1.noarch.rpm python-doc-2.7.18-33.1.src.rpm python-doc-pdf-2.7.18-33.1.noarch.rpm python-gdbm-2.7.18-33.1.x86_64.rpm python-idle-2.7.18-33.1.x86_64.rpm python-tk-2.7.18-33.1.x86_64.rpm python-xml-2.7.18-33.1.x86_64.rpm libpython2_7-1_0-2.7.18-33.1.s390x.rpm python-2.7.18-33.1.s390x.rpm python-base-2.7.18-33.1.s390x.rpm python-curses-2.7.18-33.1.s390x.rpm python-demo-2.7.18-33.1.s390x.rpm python-devel-2.7.18-33.1.s390x.rpm python-gdbm-2.7.18-33.1.s390x.rpm python-idle-2.7.18-33.1.s390x.rpm python-tk-2.7.18-33.1.s390x.rpm python-xml-2.7.18-33.1.s390x.rpm libpython2_7-1_0-2.7.18-33.1.ppc64le.rpm python-2.7.18-33.1.ppc64le.rpm python-base-2.7.18-33.1.ppc64le.rpm python-curses-2.7.18-33.1.ppc64le.rpm python-demo-2.7.18-33.1.ppc64le.rpm python-devel-2.7.18-33.1.ppc64le.rpm python-gdbm-2.7.18-33.1.ppc64le.rpm python-idle-2.7.18-33.1.ppc64le.rpm python-tk-2.7.18-33.1.ppc64le.rpm python-xml-2.7.18-33.1.ppc64le.rpm libpython2_7-1_0-2.7.18-33.1.aarch64.rpm python-2.7.18-33.1.aarch64.rpm python-base-2.7.18-33.1.aarch64.rpm python-curses-2.7.18-33.1.aarch64.rpm python-demo-2.7.18-33.1.aarch64.rpm python-devel-2.7.18-33.1.aarch64.rpm python-gdbm-2.7.18-33.1.aarch64.rpm python-idle-2.7.18-33.1.aarch64.rpm python-tk-2.7.18-33.1.aarch64.rpm python-xml-2.7.18-33.1.aarch64.rpm openSUSE-SLE-15.3-2021-3447 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP2 kernel was updated. The following security bugs were fixed: - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bnc#1191193) - CVE-2021-3752: Fixed a use after free vulnerability in the Linux kernel's bluetooth module. (bsc#1190023) - CVE-2021-40490: Fixed a race condition discovered in the ext4 subsystem that could leat to local priviledge escalation. (bnc#1190159) - CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1189884) - CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1190534) - CVE-2021-3669: Fixed a bug that doesn't allow /proc/sysvipc/shm to scale with large shared memory segment counts which could lead to resource exhaustion and DoS. (bsc#1188986) The following non-security bugs were fixed: - ALSA: firewire-motu: fix truncated bytes in message tracepoints (git-fixes). - apparmor: remove duplicate macro list_entry_is_head() (git-fixes). - ASoC: fsl_micfil: register platform component before registering cpu dai (git-fixes). - ASoC: mediatek: common: handle NULL case in suspend/resume function (git-fixes). - ASoC: rockchip: i2s: Fix regmap_ops hang (git-fixes). - ASoC: rockchip: i2s: Fixup config for DAIFMT_DSP_A/B (git-fixes). - ASoC: SOF: Fix DSP oops stack dump output contents (git-fixes). - ath9k: fix OOB read ar9300_eeprom_restore_internal (git-fixes). - ath9k: fix sleeping in atomic context (git-fixes). - blk-mq: do not deactivate hctx if managed irq isn't used (bsc#1185762). - blk-mq: kABI fixes for blk_mq_queue_map (bsc#1185762). - blk-mq: mark if one queue map uses managed irq (bsc#1185762). - Bluetooth: skip invalid hci_sync_conn_complete_evt (git-fixes). - bnx2x: fix an error code in bnx2x_nic_load() (git-fixes). - bnxt_en: Add missing DMA memory barriers (git-fixes). - bnxt_en: Disable aRFS if running on 212 firmware (git-fixes). - bnxt_en: Do not enable legacy TX push on older firmware (git-fixes). - bnxt_en: Store the running firmware version code (git-fixes). - bnxt: count Tx drops (git-fixes). - bnxt: disable napi before canceling DIM (git-fixes). - bnxt: do not lock the tx queue from napi poll (git-fixes). - bnxt: make sure xmit_more + errors does not miss doorbells (git-fixes). - btrfs: prevent rename2 from exchanging a subvol with a directory from different parents (bsc#1190626). - clk: at91: clk-generated: Limit the requested rate to our range (git-fixes). - clk: at91: clk-generated: pass the id of changeable parent at registration (git-fixes). - console: consume APC, DM, DCS (git-fixes). - cuse: fix broken release (bsc#1190596). - cxgb4: dont touch blocked freelist bitmap after free (git-fixes). - debugfs: Return error during {full/open}_proxy_open() on rmmod (bsc#1173746). - devlink: Break parameter notification sequence to be before/after unload/load driver (bsc#1154353). - dmaengine: ioat: depends on !UML (git-fixes). - dmaengine: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - dmaengine: xilinx_dma: Set DMA mask for coherent APIs (git-fixes). - docs: Fix infiniband uverbs minor number (git-fixes). - drivers: gpu: amd: Initialize amdgpu_dm_backlight_caps object to 0 in amdgpu_dm_update_backlight_caps (git-fixes). - drm: avoid blocking in drm_clients_info's rcu section (git-fixes). - drm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex (git-fixes). - drm/amd/display: Fix timer_per_pixel unit error (git-fixes). - drm/amdgpu: Fix BUG_ON assert (git-fixes). - drm/gma500: Fix end of loop tests for list_for_each_entry (git-fixes). - drm/nouveau/nvkm: Replace -ENOSYS with -ENODEV (git-fixes). - drm/panfrost: Clamp lock region to Bifrost minimum (git-fixes). - e1000e: Do not take care about recovery NVM checksum (jsc#SLE-8100). - e1000e: Fix the max snoop/no-snoop latency for 10M (git-fixes). - EDAC/i10nm: Fix NVDIMM detection (bsc#1152489). - EDAC/synopsys: Fix wrong value type assignment for edac_mode (bsc#1152489). - erofs: fix up erofs_lookup tracepoint (git-fixes). - fbmem: do not allow too huge resolutions (git-fixes). - fpga: machxo2-spi: Fix missing error code in machxo2_write_complete() (git-fixes). - fpga: machxo2-spi: Return an error on failure (git-fixes). - fuse: flush extending writes (bsc#1190595). - fuse: truncate pagecache on atomic_o_trunc (bsc#1190705). - genirq: add device_has_managed_msi_irq (bsc#1185762). - gpio: uniphier: Fix void functions to remove return value (git-fixes). - gpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable access in amdgpu_i2c_router_select_ddc_port() (git-fixes). - gve: fix the wrong AdminQ buffer overflow check (bsc#1176940). - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726). - hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726). - hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs (git-fixes). - hwmon: (tmp421) fix rounding for negative values (git-fixes). - hwmon: (tmp421) report /PVLD condition as fault (git-fixes). - i40e: Add additional info to PHY type error (git-fixes). - i40e: Fix firmware LLDP agent related warning (git-fixes). - i40e: Fix log TC creation failure when max num of queues is exceeded (git-fixes). - i40e: Fix logic of disabling queues (git-fixes). - i40e: Fix queue-to-TC mapping on Tx (git-fixes). - iavf: Fix ping is lost after untrusted VF had tried to change MAC (jsc#SLE-7940). - iavf: Set RSS LUT and key in reset handle path (git-fixes). - ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510). - ibmvnic: Consolidate code in replenish_rx_pool() (bsc#1190758 ltc#191943). - ibmvnic: Fix up some comments and messages (bsc#1190758 ltc#191943). - ibmvnic: init_tx_pools move loop-invariant code (bsc#1190758 ltc#191943). - ibmvnic: Reuse LTB when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse rx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse tx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Use bitmap for LTB map_ids (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_rx_pools (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_tx_pools (bsc#1190758 ltc#191943). - ice: Prevent probing virtual functions (git-fixes). - iio: dac: ad5624r: Fix incorrect handling of an optional regulator (git-fixes). - include/linux/list.h: add a macro to test if entry is pointing to the head (git-fixes). - iomap: Fix negative assignment to unsigned sis->pages in iomap_swapfile_activate (bsc#1190784). - ionic: cleanly release devlink instance (bsc#1167773). - ionic: count csum_none when offload enabled (bsc#1167773). - ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115). - ipc/util.c: use binary search for max_idx (bsc#1159886). - ipvs: allow connection reuse for unconfirmed conntrack (bsc#1190467). - ipvs: avoid expiring many connections from timer (bsc#1190467). - ipvs: Fix up kabi for expire_nodest_conn_work addition (bsc#1190467). - ipvs: queue delayed work to expire no destination connections if expire_nodest_conn=1 (bsc#1190467). - iwlwifi: mvm: fix a memory leak in iwl_mvm_mac_ctxt_beacon_changed (git-fixes). - kernel-binary.spec: Check for no kernel signing certificates. Also remove unused variable. - kernel-binary.spec: Do not fail silently when KMP is empty (bsc#1190358). Copy the code from kernel-module-subpackage that deals with empty KMPs. - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167 bsc#1191240 ltc#194716). - kernel-binary.spec.in Stop templating the scriptlets for subpackages (bsc#1190358). The script part for base package case is completely separate from the part for subpackages. Remove the part for subpackages from the base package script and use the KMP scripts for subpackages instead. - libata: fix ata_host_start() (git-fixes). - mac80211-hwsim: fix late beacon hrtimer handling (git-fixes). - mac80211: Fix ieee80211_amsdu_aggregate frag_tail bug (git-fixes). - mac80211: fix use-after-free in CCMP/GCMP RX (git-fixes). - mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap (git-fixes). - mac80211: mesh: fix potentially unaligned access (git-fixes). - media: cedrus: Fix SUNXI tile size calculation (git-fixes). - media: coda: fix frame_mem_ctrl for YUV420 and YVU420 formats (git-fixes). - media: dib8000: rewrite the init prbs logic (git-fixes). - media: imx258: Limit the max analogue gain to 480 (git-fixes). - media: imx258: Rectify mismatch of VTS value (git-fixes). - media: rc-loopback: return number of emitters rather than error (git-fixes). - media: TDA1997x: fix tda1997x_query_dv_timings() return value (git-fixes). - media: uvc: do not do DMA on stack (git-fixes). - media: v4l2-dv-timings.c: fix wrong condition in two for-loops (git-fixes). - mfd: Do not use irq_create_mapping() to resolve a mapping (git-fixes). - mlx4: Fix missing error code in mlx4_load_one() (git-fixes). - mm: always have io_remap_pfn_range() set pgprot_decrypted() (git-fixes). - mm/swap: consider max pages in iomap_swapfile_add_extent (bsc#1190785). - mmc: core: Return correct emmc response in case of ioctl error (git-fixes). - mmc: rtsx_pci: Fix long reads when clock is prescaled (git-fixes). - mmc: sdhci-of-arasan: Check return value of non-void funtions (git-fixes). - net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726). - net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726). - net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726). - net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726). - net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726). - net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726). - net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726). - net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726). - net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726). - net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726). - net: qlcnic: add missed unlock in qlcnic_83xx_flash_read32 (git-fixes). - net: sched: sch_teql: fix null-pointer dereference (bsc#1190717). - net/mlx5: E-Switch, handle devcom events only for ports on the same device (git-fixes). - net/mlx5: Fix flow table chaining (git-fixes). - net/mlx5: Fix return value from tracer initialization (git-fixes). - net/mlx5: Unload device upon firmware fatal error (git-fixes). - net/mlx5e: Avoid creating tunnel headers for local route (git-fixes). - net/mlx5e: Fix nullptr in mlx5e_hairpin_get_mdev() (git-fixes). - net/mlx5e: Prohibit inner indir TIRs in IPoIB (git-fixes). - netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (bsc#1190062). - nfp: update ethtool reporting of pauseframe control (git-fixes). - NFS: change nfs_access_get_cached to only report the mask (bsc#1190746). - NFS: do not store 'struct cred *' in struct nfs_access_entry (bsc#1190746). - NFS: pass cred explicitly for access tests (bsc#1190746). - nvme: avoid race in shutdown namespace removal (bsc#1188067). - nvme: fix refcounting imbalance when all paths are down (bsc#1188067). - parport: remove non-zero check on count (git-fixes). - PCI: aardvark: Fix checking for PIO status (git-fixes). - PCI: aardvark: Fix masking and unmasking legacy INTx interrupts (git-fixes). - PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response (git-fixes). - PCI: Add ACS quirks for Cavium multi-function devices (git-fixes). - PCI: Add ACS quirks for NXP LX2xx0 and LX2xx2 platforms (git-fixes). - PCI: Add AMD GPU multi-function power dependencies (git-fixes). - PCI: ibmphp: Fix double unmap of io_mem (git-fixes). - PCI: pci-bridge-emul: Add PCIe Root Capabilities Register (git-fixes). - PCI: pci-bridge-emul: Fix array overruns, improve safety (git-fixes). - PCI: pci-bridge-emul: Fix big-endian support (git-fixes). - PCI: Restrict ASMedia ASM1062 SATA Max Payload Size Supported (git-fixes). - PCI: Use pci_update_current_state() in pci_enable_device_flags() (git-fixes). - PM: base: power: do not try to use non-existing RTC for storing data (git-fixes). - PM: EM: Increase energy calculation precision (git-fixes). - power: supply: axp288_fuel_gauge: Report register-address on readb / writeb errors (git-fixes). - power: supply: max17042_battery: fix typo in MAx17042_TOFF (git-fixes). - powercap: intel_rapl: add support for Sapphire Rapids (jsc#SLE-15289). - powerpc: fix function annotations to avoid section mismatch warnings with gcc-10 (bsc#1148868). - powerpc/drmem: Make LMB walk a bit more flexible (bsc#1190543 ltc#194523). - powerpc/perf: Drop the case of returning 0 as instruction pointer (bsc#1065729). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (bsc#1065729). - powerpc/perf: Fix the check for SIAR value (bsc#1065729). - powerpc/perf: Use regs->nip when SIAR is zero (bsc#1065729). - powerpc/perf: Use stack siar instead of mfspr (bsc#1065729). - powerpc/perf: Use the address from SIAR register to set cpumode flags (bsc#1065729). - powerpc/perf/hv-gpci: Fix counter value parsing (bsc#1065729). - powerpc/powernv: Fix machine check reporting of async store errors (bsc#1065729). - powerpc/pseries: Prevent free CPU ids being reused on another node (bsc#1190620 ltc#194498). - powerpc/pseries/dlpar: use rtas_get_sensor() (bsc#1065729). - pseries/drmem: update LMBs after LPM (bsc#1190543 ltc#194523). - pwm: img: Do not modify HW state in .remove() callback (git-fixes). - pwm: rockchip: Do not modify HW state in .remove() callback (git-fixes). - pwm: stm32-lp: Do not modify HW state in .remove() callback (git-fixes). - qlcnic: Remove redundant unlock in qlcnic_pinit_from_rom (git-fixes). - RDMA/bnxt_re: Remove unpaired rtnl unlock in bnxt_re_dev_init() (bsc#1170774). - Re-enable UAS for LaCie Rugged USB3-FW with fk quirk (git-fixes). - regmap: fix page selection for noinc reads (git-fixes). - regmap: fix page selection for noinc writes (git-fixes). - regmap: fix the offset of register error log (git-fixes). - Restore kabi after NFS: pass cred explicitly for access tests (bsc#1190746). - rpm: Abolish scritplet templating (bsc#1189841). Outsource kernel-binary and KMP scriptlets to suse-module-tools. This allows fixing bugs in the scriptlets as well as defining initrd regeneration policy independent of the kernel packages. - rpm/kernel-binary.spec: Use only non-empty certificates. - rpm/kernel-binary.spec.in: avoid conflicting suse-release suse-release had arbitrary values in staging, we can't use it for dependencies. The filesystem one has to be enough (boo#1184804). - rtc: rx8010: select REGMAP_I2C (git-fixes). - rtc: tps65910: Correct driver module alias (git-fixes). - s390/unwind: use current_frame_address() to unwind current task (bsc#1185677). - sched/fair: Add ancestors of unthrottled undecayed cfs_rq (bsc#1191292). - scsi: core: Add helper to return number of logical blocks in a request (bsc#1190576). - scsi: core: Introduce the scsi_cmd_to_rq() function (bsc#1190576). - scsi: fc: Add EDC ELS definition (bsc#1190576). - scsi: fc: Update formal FPIN descriptor definitions (bsc#1190576). - scsi: lpfc: Add bsg support for retrieving adapter cmf data (bsc#1190576). - scsi: lpfc: Add cm statistics buffer support (bsc#1190576). - scsi: lpfc: Add cmf_info sysfs entry (bsc#1190576). - scsi: lpfc: Add cmfsync WQE support (bsc#1190576). - scsi: lpfc: Add debugfs support for cm framework buffers (bsc#1190576). - scsi: lpfc: Add EDC ELS support (bsc#1190576). - scsi: lpfc: Add MIB feature enablement support (bsc#1190576). - scsi: lpfc: Add rx monitoring statistics (bsc#1190576). - scsi: lpfc: Add SET_HOST_DATA mbox cmd to pass date/time info to firmware (bsc#1190576). - scsi: lpfc: Add support for cm enablement buffer (bsc#1190576). - scsi: lpfc: Add support for maintaining the cm statistics buffer (bsc#1190576). - scsi: lpfc: Add support for the CM framework (bsc#1190576). - scsi: lpfc: Adjust bytes received vales during cmf timer interval (bsc#1190576). - scsi: lpfc: Copyright updates for 14.0.0.1 patches (bsc#1190576). - scsi: lpfc: Do not release final kref on Fport node while ABTS outstanding (bsc#1190576). - scsi: lpfc: Do not remove ndlp on PRLI errors in P2P mode (bsc#1190576). - scsi: lpfc: Expand FPIN and RDF receive logging (bsc#1190576). - scsi: lpfc: Fix compilation errors on kernels with no CONFIG_DEBUG_FS (bsc#1190576). - scsi: lpfc: Fix CPU to/from endian warnings introduced by ELS processing (bsc#1190576). - scsi: lpfc: Fix EEH support for NVMe I/O (bsc#1190576). - scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (bsc#1190576). - scsi: lpfc: Fix gcc -Wstringop-overread warning, again (bsc#1190576). - scsi: lpfc: Fix hang on unload due to stuck fport node (bsc#1190576). - scsi: lpfc: Fix I/O block after enabling managed congestion mode (bsc#1190576). - scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() (bsc#1190576). - scsi: lpfc: Fix NVMe I/O failover to non-optimized path (bsc#1190576). - scsi: lpfc: Fix premature rpi release for unsolicited TPLS and LS_RJT (bsc#1190576). - scsi: lpfc: Fix rediscovery of tape device after LIP (bsc#1190576). - scsi: lpfc: Fix sprintf() overflow in lpfc_display_fpin_wwpn() (bsc#1190576). - scsi: lpfc: Improve PBDE checks during SGL processing (bsc#1190576). - scsi: lpfc: Remove unneeded variable (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.1 (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.2 (bsc#1190576). - scsi: lpfc: Use correct scnprintf() limit (bsc#1190576). - scsi: lpfc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190576). - scsi: lpfc: Use the proper SCSI midlayer interfaces for PI (bsc#1190576). - scsi: lpfc: Zero CGN stats only during initial driver load and stat reset (bsc#1190576). - scsi: scsi_devinfo: Add blacklist entry for HPE OPEN-V (bsc#1189297). - serial: 8250_pci: make setup_port() parameters explicitly unsigned (git-fixes). - serial: 8250: Define RX trigger levels for OxSemi 950 devices (git-fixes). - serial: mvebu-uart: fix driver's tx_empty callback (git-fixes). - serial: sh-sci: fix break handling for sysrq (git-fixes). - spi: Fix tegra20 build with CONFIG_PM=n (git-fixes). - staging: board: Fix uninitialized spinlock when attaching genpd (git-fixes). - staging: ks7010: Fix the initialization of the 'sleep_status' structure (git-fixes). - staging: rts5208: Fix get_ms_information() heap buffer size (git-fixes). - thermal/core: Potential buffer overflow in thermal_build_list_of_policies() (git-fixes). - time: Handle negative seconds correctly in timespec64_to_ns() (git-fixes). - tty: Fix data race between tiocsti() and flush_to_ldisc() (git-fixes). - tty: serial: jsm: hold port lock when reporting modem line changes (git-fixes). - tty: synclink_gt, drop unneeded forward declarations (git-fixes). - usb-storage: Add quirk for ScanLogic SL11R-IDE older than 2.6c (git-fixes). - usb: core: hcd: Add support for deferring roothub registration (git-fixes). - usb: dwc2: Add missing cleanups when usb_add_gadget_udc() fails (git-fixes). - usb: dwc2: Avoid leaving the error_debugfs label unused (git-fixes). - usb: dwc2: gadget: Fix ISOC flow for BDMA and Slave (git-fixes). - usb: dwc2: gadget: Fix ISOC transfer complete handling for DDMA (git-fixes). - usb: EHCI: ehci-mv: improve error handling in mv_ehci_enable() (git-fixes). - usb: gadget: r8a66597: fix a loop in set_feature() (git-fixes). - usb: gadget: u_ether: fix a potential null pointer dereference (git-fixes). - usb: host: fotg210: fix the actual_length of an iso packet (git-fixes). - usb: host: fotg210: fix the endpoint's transactional opportunities calculation (git-fixes). - usb: musb: musb_dsps: request_irq() after initializing musb (git-fixes). - usb: musb: tusb6010: uninitialized data in tusb_fifo_write_unaligned() (git-fixes). - usb: serial: cp210x: add ID for GW Instek GDM-834x Digital Multimeter (git-fixes). - usb: serial: option: add device id for Foxconn T99W265 (git-fixes). - usb: serial: option: add Telit LN920 compositions (git-fixes). - usb: serial: option: remove duplicate USB device ID (git-fixes). - usbip: give back URBs for unsent unlink requests during cleanup (git-fixes). - usbip:vhci_hcd USB port can get stuck in the disabled state (git-fixes). - video: fbdev: asiliantfb: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: fix a DoS bug by restricting user input (git-fixes). - video: fbdev: riva: Error out if 'pixclock' equals zero (git-fixes). - vmxnet3: add support for 32 Tx/Rx queues (bsc#1190406). - vmxnet3: add support for ESP IPv6 RSS (bsc#1190406). - vmxnet3: increase maximum configurable mtu to 9190 (bsc#1190406). - vmxnet3: prepare for version 6 changes (bsc#1190406). - vmxnet3: remove power of 2 limitation on the queues (bsc#1190406). - vmxnet3: set correct hash type based on rss information (bsc#1190406). - vmxnet3: update to version 6 (bsc#1190406). - watchdog/sb_watchdog: fix compilation problem due to COMPILE_TEST (git-fixes). - x86/alternatives: Teach text_poke_bp() to emulate instructions (bsc#1185302). - x86/apic/msi: Plug non-maskable MSI affinity race (bsc#1184439). - x86/cpu: Fix core name for Sapphire Rapids (jsc#SLE-15289). - x86/mm: Fix kern_addr_valid() to cope with existing but not present entries (bsc#1152489). - x86/resctrl: Fix a maybe-uninitialized build warning treated as error (bsc#1152489). - x86/resctrl: Fix default monitoring groups reporting (bsc#1152489). - xfs: allow mount/remount when stripe width alignment is zero (bsc#1188651). - xfs: sync lazy sb accounting on quiesce of read-only mounts (bsc#1190679). - xgene-v2: Fix a resource leak in the error handling path of 'xge_probe()' (git-fixes). - xhci: Set HCD flag to defer primary roothub registration (git-fixes). kmod-25-6.10.1.src.rpm True kmod-compat-25-6.10.1.x86_64.rpm True kmod-compat-25-6.10.1.s390x.rpm True kmod-compat-25-6.10.1.ppc64le.rpm True kmod-compat-25-6.10.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3338 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bnc#1191193) - CVE-2021-3752: Fixed a use after free vulnerability in the Linux kernel's bluetooth module. (bsc#1190023) - CVE-2021-40490: Fixed a race condition discovered in the ext4 subsystem that could leat to local priviledge escalation. (bnc#1190159) - CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1189884) - CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1190534) - CVE-2021-3669: Fixed a bug that doesn't allow /proc/sysvipc/shm to scale with large shared memory segment counts which could lead to resource exhaustion and DoS. (bsc#1188986) The following non-security bugs were fixed: - ALSA: firewire-motu: fix truncated bytes in message tracepoints (git-fixes). - apparmor: remove duplicate macro list_entry_is_head() (git-fixes). - ASoC: fsl_micfil: register platform component before registering cpu dai (git-fixes). - ASoC: Intel: Fix platform ID matching (git-fixes). - ASoC: mediatek: common: handle NULL case in suspend/resume function (git-fixes). - ASoC: rockchip: i2s: Fix regmap_ops hang (git-fixes). - ASoC: rockchip: i2s: Fixup config for DAIFMT_DSP_A/B (git-fixes). - ASoC: rt5682: Implement remove callback (git-fixes). - ASoC: rt5682: Properly turn off regulators if wrong device ID (git-fixes). - ASoC: rt5682: Remove unused variable in rt5682_i2c_remove() (git-fixes). - ASoC: SOF: Fix DSP oops stack dump output contents (git-fixes). - ath9k: fix OOB read ar9300_eeprom_restore_internal (git-fixes). - ath9k: fix sleeping in atomic context (git-fixes). - backlight: pwm_bl: Improve bootloader/kernel device handover (git-fixes). - bareudp: Fix invalid read beyond skb's linear data (jsc#SLE-15172). - blk-mq: do not deactivate hctx if managed irq isn't used (bsc#1185762). - blk-mq: do not deactivate hctx if managed irq isn't used (bsc#1185762). - blk-mq: kABI fixes for blk_mq_queue_map (bsc#1185762). - blk-mq: kABI fixes for blk_mq_queue_map (bsc#1185762). - blk-mq: mark if one queue map uses managed irq (bsc#1185762). - blk-mq: mark if one queue map uses managed irq (bsc#1185762). - Bluetooth: skip invalid hci_sync_conn_complete_evt (git-fixes). - bnx2x: fix an error code in bnx2x_nic_load() (git-fixes). - bnxt_en: Add missing DMA memory barriers (git-fixes). - bnxt_en: Disable aRFS if running on 212 firmware (git-fixes). - bnxt_en: Do not enable legacy TX push on older firmware (git-fixes). - bnxt_en: Fix asic.rev in devlink dev info command (jsc#SLE-16649). - bnxt_en: fix stored FW_PSID version masks (jsc#SLE-16649). - bnxt_en: Store the running firmware version code (git-fixes). - bnxt: count Tx drops (git-fixes). - bnxt: disable napi before canceling DIM (git-fixes). - bnxt: do not lock the tx queue from napi poll (git-fixes). - bnxt: make sure xmit_more + errors does not miss doorbells (git-fixes). - bpf, samples: Add missing mprog-disable to xdp_redirect_cpu's optstring (git-fixes). - bpf: Fix ringbuf helper function compatibility (git-fixes). - bpftool: Add sock_release help info for cgroup attach/prog load command (bsc#1177028). - btrfs: prevent rename2 from exchanging a subvol with a directory from different parents (bsc#1190626). - clk: at91: clk-generated: Limit the requested rate to our range (git-fixes). - clk: at91: clk-generated: pass the id of changeable parent at registration (git-fixes). - console: consume APC, DM, DCS (git-fixes). - cpuidle: pseries: Do not cap the CEDE0 latency in fixup_cede0_latency() (bsc#1185550 ltc#192610 git-fixes jsc#SLE-18128). - cuse: fix broken release (bsc#1190596). - cxgb4: dont touch blocked freelist bitmap after free (git-fixes). - debugfs: Return error during {full/open}_proxy_open() on rmmod (bsc#1173746). - devlink: Break parameter notification sequence to be before/after unload/load driver (bsc#1154353). - devlink: Clear whole devlink_flash_notify struct (bsc#1176447). - dma-buf: DMABUF_MOVE_NOTIFY should depend on DMA_SHARED_BUFFER (git-fixes). - dmaengine: ioat: depends on !UML (git-fixes). - dmaengine: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - dmaengine: xilinx_dma: Set DMA mask for coherent APIs (git-fixes). - docs: Fix infiniband uverbs minor number (git-fixes). - drivers: gpu: amd: Initialize amdgpu_dm_backlight_caps object to 0 in amdgpu_dm_update_backlight_caps (git-fixes). - drm: avoid blocking in drm_clients_info's rcu section (git-fixes). - drm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex (git-fixes). - drm/amd/display: Fix timer_per_pixel unit error (git-fixes). - drm/amdgpu: Fix BUG_ON assert (git-fixes). - drm/ast: Fix missing conversions to managed API (git-fixes). - drm/gma500: Fix end of loop tests for list_for_each_entry (git-fixes). - drm/i915: Allow the sysadmin to override security mitigations (git-fixes). - drm/i915/rkl: Remove require_force_probe protection (bsc#1189257). - drm/ingenic: Switch IPU plane to type OVERLAY (git-fixes). - drm/mgag200: Select clock in PLL update functions (git-fixes). - drm/msm/mdp4: move HW revision detection to earlier phase (git-fixes). - drm/msm/mdp4: refactor HW revision detection into read_mdp_hw_revision (git-fixes). - drm/nouveau/nvkm: Replace -ENOSYS with -ENODEV (git-fixes). - drm/panfrost: Clamp lock region to Bifrost minimum (git-fixes). - drm/pl111: depend on CONFIG_VEXPRESS_CONFIG (git-fixes). - drm/rockchip: cdn-dp-core: Make cdn_dp_core_resume __maybe_unused (git-fixes). - e1000e: Do not take care about recovery NVM checksum (jsc#SLE-8100). - e1000e: Fix the max snoop/no-snoop latency for 10M (git-fixes). - EDAC/i10nm: Fix NVDIMM detection (bsc#1152489). - EDAC/mce_amd: Do not load edac_mce_amd module on guests (bsc#1190138). - EDAC/synopsys: Fix wrong value type assignment for edac_mode (bsc#1152489). - enetc: Fix uninitialized struct dim_sample field usage (git-fixes). - erofs: fix up erofs_lookup tracepoint (git-fixes). - fbmem: do not allow too huge resolutions (git-fixes). - fpga: machxo2-spi: Fix missing error code in machxo2_write_complete() (git-fixes). - fpga: machxo2-spi: Return an error on failure (git-fixes). - fuse: flush extending writes (bsc#1190595). - fuse: truncate pagecache on atomic_o_trunc (bsc#1190705). - genirq: add device_has_managed_msi_irq (bsc#1185762). - genirq: add device_has_managed_msi_irq (bsc#1185762). - gpio: uniphier: Fix void functions to remove return value (git-fixes). - gpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable access in amdgpu_i2c_router_select_ddc_port() (git-fixes). - gve: fix the wrong AdminQ buffer overflow check (bsc#1176940). - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726). - hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726). - hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs (git-fixes). - hwmon: (tmp421) fix rounding for negative values (git-fixes). - hwmon: (tmp421) report /PVLD condition as fault (git-fixes). - i40e: Add additional info to PHY type error (git-fixes). - i40e: Fix firmware LLDP agent related warning (git-fixes). - i40e: Fix log TC creation failure when max num of queues is exceeded (git-fixes). - i40e: Fix logic of disabling queues (git-fixes). - i40e: Fix queue-to-TC mapping on Tx (git-fixes). - i40e: improve locking of mac_filter_hash (jsc#SLE-13701). - iavf: Fix ping is lost after untrusted VF had tried to change MAC (jsc#SLE-7940). - iavf: Set RSS LUT and key in reset handle path (git-fixes). - IB/hfi1: Indicate DMA wait when txq is queued for wakeup (jsc#SLE-13208). - ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510). - ibmvnic: Consolidate code in replenish_rx_pool() (bsc#1190758 ltc#191943). - ibmvnic: Fix up some comments and messages (bsc#1190758 ltc#191943). - ibmvnic: init_tx_pools move loop-invariant code (bsc#1190758 ltc#191943). - ibmvnic: Reuse LTB when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse rx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse tx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Use bitmap for LTB map_ids (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_rx_pools (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_tx_pools (bsc#1190758 ltc#191943). - ice: do not abort devlink info if board identifier can't be found (jsc#SLE-12878). - ice: do not remove netdev->dev_addr from uc sync list (git-fixes). - ice: Prevent probing virtual functions (git-fixes). - igc: Use num_tx_queues when iterating over tx_ring queue (jsc#SLE-13533). - iio: dac: ad5624r: Fix incorrect handling of an optional regulator (git-fixes). - include/linux/list.h: add a macro to test if entry is pointing to the head (git-fixes). - iomap: Fix negative assignment to unsigned sis->pages in iomap_swapfile_activate (bsc#1190784). - ionic: cleanly release devlink instance (bsc#1167773). - ionic: cleanly release devlink instance (bsc#1167773). - ionic: count csum_none when offload enabled (bsc#1167773). - ionic: drop useless check of PCI driver data validity (bsc#1167773). - ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115). - ipc/util.c: use binary search for max_idx (bsc#1159886). - ipvs: allow connection reuse for unconfirmed conntrack (bsc#1190467). - ipvs: avoid expiring many connections from timer (bsc#1190467). - ipvs: Fix up kabi for expire_nodest_conn_work addition (bsc#1190467). - ipvs: queue delayed work to expire no destination connections if expire_nodest_conn=1 (bsc#1190467). - iwlwifi Add support for ax201 in Samsung Galaxy Book Flex2 Alpha (git-fixes). - iwlwifi: mvm: fix a memory leak in iwl_mvm_mac_ctxt_beacon_changed (git-fixes). - kernel-binary.spec: Check for no kernel signing certificates. Also remove unused variable. - kernel-binary.spec: Do not fail silently when KMP is empty (bsc#1190358). Copy the code from kernel-module-subpackage that deals with empty KMPs. - kernel-binary.spec.in Stop templating the scriptlets for subpackages (bsc#1190358). The script part for base package case is completely separate from the part for subpackages. Remove the part for subpackages from the base package script and use the KMP scripts for subpackages instead. - libata: fix ata_host_start() (git-fixes). - libbpf: Fix removal of inner map in bpf_object__create_map (git-fixes). - libbpf: Fix the possible memory leak on error (git-fixes). - mac80211-hwsim: fix late beacon hrtimer handling (git-fixes). - mac80211: Fix ieee80211_amsdu_aggregate frag_tail bug (git-fixes). - mac80211: fix use-after-free in CCMP/GCMP RX (git-fixes). - mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap (git-fixes). - mac80211: mesh: fix potentially unaligned access (git-fixes). - media: cedrus: Fix SUNXI tile size calculation (git-fixes). - media: coda: fix frame_mem_ctrl for YUV420 and YVU420 formats (git-fixes). - media: dib8000: rewrite the init prbs logic (git-fixes). - media: imx258: Limit the max analogue gain to 480 (git-fixes). - media: imx258: Rectify mismatch of VTS value (git-fixes). - media: rc-loopback: return number of emitters rather than error (git-fixes). - media: TDA1997x: fix tda1997x_query_dv_timings() return value (git-fixes). - media: uvc: do not do DMA on stack (git-fixes). - media: v4l2-dv-timings.c: fix wrong condition in two for-loops (git-fixes). - mfd: Do not use irq_create_mapping() to resolve a mapping (git-fixes). - misc: sram: Only map reserved areas in Tegra SYSRAM (git-fixes). - misc: sram: use devm_platform_ioremap_resource_wc() (git-fixes). - mlx4: Fix missing error code in mlx4_load_one() (git-fixes). - mm: always have io_remap_pfn_range() set pgprot_decrypted() (git-fixes). - mm/swap: consider max pages in iomap_swapfile_add_extent (bsc#1190785). - mmc: core: Return correct emmc response in case of ioctl error (git-fixes). - mmc: rtsx_pci: Fix long reads when clock is prescaled (git-fixes). - mmc: sdhci-of-arasan: Check return value of non-void funtions (git-fixes). - mmc: sdhci: Fix issue with uninitialized dma_slave_config (git-fixes). - net: ethernet: ti: cpsw: fix min eth packet size for non-switch use-cases (git-fixes). - net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726). - net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726). - net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726). - net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726). - net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726). - net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726). - net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726). - net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726). - net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726). - net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726). - net: qlcnic: add missed unlock in qlcnic_83xx_flash_read32 (git-fixes). - net: sched: sch_teql: fix null-pointer dereference (bsc#1190717). - net/mlx5: E-Switch, handle devcom events only for ports on the same device (git-fixes). - net/mlx5: Fix flow table chaining (git-fixes). - net/mlx5: Fix missing return value in mlx5_devlink_eswitch_inline_mode_set() (jsc#SLE-15172). - net/mlx5: Fix return value from tracer initialization (git-fixes). - net/mlx5: Unload device upon firmware fatal error (git-fixes). - net/mlx5e: Avoid creating tunnel headers for local route (git-fixes). - net/mlx5e: Fix nullptr in mlx5e_hairpin_get_mdev() (git-fixes). - net/mlx5e: Prohibit inner indir TIRs in IPoIB (git-fixes). - netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (bsc#1190062). - nfp: update ethtool reporting of pauseframe control (git-fixes). - NFS: change nfs_access_get_cached to only report the mask (bsc#1190746). - NFS: do not store 'struct cred *' in struct nfs_access_entry (bsc#1190746). - NFS: pass cred explicitly for access tests (bsc#1190746). - nvme-multipath: revalidate paths during rescan (bsc#1187211). - nvme-tcp: Do not reset transport on data digest errors (bsc#1188418). - nvme: avoid race in shutdown namespace removal (bsc#1188067). - nvme: fix refcounting imbalance when all paths are down (bsc#1188067). - nvme: only call synchronize_srcu when clearing current path (bsc#1188067). - optee: Fix memory leak when failing to register shm pages (git-fixes). - parport: remove non-zero check on count (git-fixes). - PCI: aardvark: Fix checking for PIO status (git-fixes). - PCI: aardvark: Fix masking and unmasking legacy INTx interrupts (git-fixes). - PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response (git-fixes). - PCI: Add ACS quirks for Cavium multi-function devices (git-fixes). - PCI: Add ACS quirks for NXP LX2xx0 and LX2xx2 platforms (git-fixes). - PCI: Add AMD GPU multi-function power dependencies (git-fixes). - PCI: ibmphp: Fix double unmap of io_mem (git-fixes). - PCI: of: Do not fail devm_pci_alloc_host_bridge() on missing 'ranges' (git-fixes). - PCI: pci-bridge-emul: Add PCIe Root Capabilities Register (git-fixes). - PCI: pci-bridge-emul: Fix array overruns, improve safety (git-fixes). - PCI: pci-bridge-emul: Fix big-endian support (git-fixes). - PCI: Restrict ASMedia ASM1062 SATA Max Payload Size Supported (git-fixes). - PCI: Use pci_update_current_state() in pci_enable_device_flags() (git-fixes). - phy: tegra: xusb: Fix dangling pointer on probe failure (git-fixes). - PM: base: power: do not try to use non-existing RTC for storing data (git-fixes). - PM: EM: Increase energy calculation precision (git-fixes). - power: supply: axp288_fuel_gauge: Report register-address on readb / writeb errors (git-fixes). - power: supply: max17042_battery: fix typo in MAx17042_TOFF (git-fixes). - powercap: intel_rapl: add support for Sapphire Rapids (jsc#SLE-15289). - powerpc: fix function annotations to avoid section mismatch warnings with gcc-10 (bsc#1148868). - powerpc/drmem: Make LMB walk a bit more flexible (bsc#1190543 ltc#194523). - powerpc/numa: Consider the max NUMA node for migratable LPAR (bsc#1190544 ltc#194520). - powerpc/perf: Drop the case of returning 0 as instruction pointer (bsc#1065729). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (bsc#1065729). - powerpc/perf: Fix the check for SIAR value (bsc#1065729). - powerpc/perf: Use regs->nip when SIAR is zero (bsc#1065729). - powerpc/perf: Use stack siar instead of mfspr (bsc#1065729). - powerpc/perf: Use the address from SIAR register to set cpumode flags (bsc#1065729). - powerpc/perf/hv-gpci: Fix counter value parsing (bsc#1065729). - powerpc/powernv: Fix machine check reporting of async store errors (bsc#1065729). - powerpc/pseries: Prevent free CPU ids being reused on another node (bsc#1190620 ltc#194498). - powerpc/pseries/dlpar: use rtas_get_sensor() (bsc#1065729). - pseries/drmem: update LMBs after LPM (bsc#1190543 ltc#194523). - pwm: img: Do not modify HW state in .remove() callback (git-fixes). - pwm: rockchip: Do not modify HW state in .remove() callback (git-fixes). - pwm: stm32-lp: Do not modify HW state in .remove() callback (git-fixes). - qlcnic: Remove redundant unlock in qlcnic_pinit_from_rom (git-fixes). - RDMA/bnxt_re: Remove unpaired rtnl unlock in bnxt_re_dev_init() (bsc#1170774). - RDMA/hns: Fix QP's resp incomplete assignment (jsc#SLE-14777). - RDMA/mlx5: Delay emptying a cache entry when a new MR is added to it recently (jsc#SLE-15175). - RDMA/mlx5: Delete not-available udata check (jsc#SLE-15175). - RDMA/rtrs: Remove a useless kfree() (jsc#SLE-15176). - Re-enable UAS for LaCie Rugged USB3-FW with fk quirk (git-fixes). - regmap: fix page selection for noinc reads (git-fixes). - regmap: fix page selection for noinc writes (git-fixes). - regmap: fix the offset of register error log (git-fixes). - Restore kabi after NFS: pass cred explicitly for access tests (bsc#1190746). - rpm: Abolish scritplet templating (bsc#1189841). Outsource kernel-binary and KMP scriptlets to suse-module-tools. This allows fixing bugs in the scriptlets as well as defining initrd regeneration policy independent of the kernel packages. - rpm/kernel-binary.spec: Use only non-empty certificates. - rpm/kernel-binary.spec.in: avoid conflicting suse-release suse-release had arbitrary values in staging, we can't use it for dependencies. The filesystem one has to be enough (boo#1184804). - rtc: rx8010: select REGMAP_I2C (git-fixes). - rtc: tps65910: Correct driver module alias (git-fixes). - s390/unwind: use current_frame_address() to unwind current task (bsc#1185677). - sch_cake: fix srchost/dsthost hashing mode (bsc#1176447). - sched/fair: Add ancestors of unthrottled undecayed cfs_rq (bsc#1191292). - scsi: core: Add helper to return number of logical blocks in a request (bsc#1190576). - scsi: core: Introduce the scsi_cmd_to_rq() function (bsc#1190576). - scsi: fc: Add EDC ELS definition (bsc#1190576). - scsi: fc: Update formal FPIN descriptor definitions (bsc#1190576). - scsi: lpfc: Add bsg support for retrieving adapter cmf data (bsc#1190576). - scsi: lpfc: Add cm statistics buffer support (bsc#1190576). - scsi: lpfc: Add cmf_info sysfs entry (bsc#1190576). - scsi: lpfc: Add cmfsync WQE support (bsc#1190576). - scsi: lpfc: Add debugfs support for cm framework buffers (bsc#1190576). - scsi: lpfc: Add EDC ELS support (bsc#1190576). - scsi: lpfc: Add MIB feature enablement support (bsc#1190576). - scsi: lpfc: Add rx monitoring statistics (bsc#1190576). - scsi: lpfc: Add SET_HOST_DATA mbox cmd to pass date/time info to firmware (bsc#1190576). - scsi: lpfc: Add support for cm enablement buffer (bsc#1190576). - scsi: lpfc: Add support for maintaining the cm statistics buffer (bsc#1190576). - scsi: lpfc: Add support for the CM framework (bsc#1190576). - scsi: lpfc: Adjust bytes received vales during cmf timer interval (bsc#1190576). - scsi: lpfc: Copyright updates for 14.0.0.1 patches (bsc#1190576). - scsi: lpfc: Do not release final kref on Fport node while ABTS outstanding (bsc#1190576). - scsi: lpfc: Do not remove ndlp on PRLI errors in P2P mode (bsc#1190576). - scsi: lpfc: Expand FPIN and RDF receive logging (bsc#1190576). - scsi: lpfc: Fix compilation errors on kernels with no CONFIG_DEBUG_FS (bsc#1190576). - scsi: lpfc: Fix CPU to/from endian warnings introduced by ELS processing (bsc#1190576). - scsi: lpfc: Fix EEH support for NVMe I/O (bsc#1190576). - scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (bsc#1190576). - scsi: lpfc: Fix gcc -Wstringop-overread warning, again (bsc#1190576). - scsi: lpfc: Fix hang on unload due to stuck fport node (bsc#1190576). - scsi: lpfc: Fix I/O block after enabling managed congestion mode (bsc#1190576). - scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() (bsc#1190576). - scsi: lpfc: Fix NVMe I/O failover to non-optimized path (bsc#1190576). - scsi: lpfc: Fix premature rpi release for unsolicited TPLS and LS_RJT (bsc#1190576). - scsi: lpfc: Fix rediscovery of tape device after LIP (bsc#1190576). - scsi: lpfc: Fix sprintf() overflow in lpfc_display_fpin_wwpn() (bsc#1190576). - scsi: lpfc: Improve PBDE checks during SGL processing (bsc#1190576). - scsi: lpfc: Remove unneeded variable (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.1 (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.2 (bsc#1190576). - scsi: lpfc: Use correct scnprintf() limit (bsc#1190576). - scsi: lpfc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190576). - scsi: lpfc: Use the proper SCSI midlayer interfaces for PI (bsc#1190576). - scsi: lpfc: Zero CGN stats only during initial driver load and stat reset (bsc#1190576). - scsi: scsi_devinfo: Add blacklist entry for HPE OPEN-V (bsc#1189297). - scsi/fc: kABI fixes for new ELS_EDC, ELS_RDP definition (bsc#1171688 bsc#1174003 bsc#1190576). - selftests/bpf: Define string const as global for test_sysctl_prog.c (git-fixes). - selftests/bpf: Fix bpf-iter-tcp4 test to print correctly the dest IP (git-fixes). - selftests/bpf: Fix test_sysctl_loop{1, 2} failure due to clang change (git-fixes). - selftests/bpf: Whitelist test_progs.h from .gitignore (git-fixes). - serial: 8250_pci: make setup_port() parameters explicitly unsigned (git-fixes). - serial: 8250: Define RX trigger levels for OxSemi 950 devices (git-fixes). - serial: mvebu-uart: fix driver's tx_empty callback (git-fixes). - serial: sh-sci: fix break handling for sysrq (git-fixes). - spi: Fix tegra20 build with CONFIG_PM=n (git-fixes). - staging: board: Fix uninitialized spinlock when attaching genpd (git-fixes). - staging: ks7010: Fix the initialization of the 'sleep_status' structure (git-fixes). - staging: rts5208: Fix get_ms_information() heap buffer size (git-fixes). - thermal/core: Potential buffer overflow in thermal_build_list_of_policies() (git-fixes). - time: Handle negative seconds correctly in timespec64_to_ns() (git-fixes). - tools: bpf: Fix error in 'make -C tools/ bpf_install' (git-fixes). - tty: Fix data race between tiocsti() and flush_to_ldisc() (git-fixes). - tty: serial: jsm: hold port lock when reporting modem line changes (git-fixes). - tty: synclink_gt, drop unneeded forward declarations (git-fixes). - usb-storage: Add quirk for ScanLogic SL11R-IDE older than 2.6c (git-fixes). - usb: core: hcd: Add support for deferring roothub registration (git-fixes). - usb: dwc2: Add missing cleanups when usb_add_gadget_udc() fails (git-fixes). - usb: dwc2: Avoid leaving the error_debugfs label unused (git-fixes). - usb: dwc2: gadget: Fix ISOC flow for BDMA and Slave (git-fixes). - usb: dwc2: gadget: Fix ISOC transfer complete handling for DDMA (git-fixes). - usb: EHCI: ehci-mv: improve error handling in mv_ehci_enable() (git-fixes). - usb: gadget: r8a66597: fix a loop in set_feature() (git-fixes). - usb: gadget: u_ether: fix a potential null pointer dereference (git-fixes). - usb: host: fotg210: fix the actual_length of an iso packet (git-fixes). - usb: host: fotg210: fix the endpoint's transactional opportunities calculation (git-fixes). - usb: musb: musb_dsps: request_irq() after initializing musb (git-fixes). - usb: musb: tusb6010: uninitialized data in tusb_fifo_write_unaligned() (git-fixes). - usb: serial: cp210x: add ID for GW Instek GDM-834x Digital Multimeter (git-fixes). - usb: serial: option: add device id for Foxconn T99W265 (git-fixes). - usb: serial: option: add Telit LN920 compositions (git-fixes). - usb: serial: option: remove duplicate USB device ID (git-fixes). - usbip: give back URBs for unsent unlink requests during cleanup (git-fixes). - usbip:vhci_hcd USB port can get stuck in the disabled state (git-fixes). - video: fbdev: asiliantfb: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: fix a DoS bug by restricting user input (git-fixes). - video: fbdev: riva: Error out if 'pixclock' equals zero (git-fixes). - vmxnet3: add support for 32 Tx/Rx queues (bsc#1190406). - vmxnet3: add support for ESP IPv6 RSS (bsc#1190406). - vmxnet3: increase maximum configurable mtu to 9190 (bsc#1190406). - vmxnet3: prepare for version 6 changes (bsc#1190406). - vmxnet3: remove power of 2 limitation on the queues (bsc#1190406). - vmxnet3: set correct hash type based on rss information (bsc#1190406). - vmxnet3: update to version 6 (bsc#1190406). - watchdog/sb_watchdog: fix compilation problem due to COMPILE_TEST (git-fixes). - x86/alternatives: Teach text_poke_bp() to emulate instructions (bsc#1185302). - x86/alternatives: Teach text_poke_bp() to emulate instructions (bsc#1190561). - x86/apic/msi: Plug non-maskable MSI affinity race (bsc#1184439). - x86/asm: Fix SETZ size enqcmds() build failure (bsc#1178134). - x86/cpu: Fix core name for Sapphire Rapids (jsc#SLE-15289). - x86/mm: Fix kern_addr_valid() to cope with existing but not present entries (bsc#1152489). - x86/resctrl: Fix a maybe-uninitialized build warning treated as error (bsc#1152489). - x86/resctrl: Fix default monitoring groups reporting (bsc#1152489). - xfs: allow mount/remount when stripe width alignment is zero (bsc#1188651). - xfs: sync lazy sb accounting on quiesce of read-only mounts (bsc#1190679). - xgene-v2: Fix a resource leak in the error handling path of 'xge_probe()' (git-fixes). - xhci: Set HCD flag to defer primary roothub registration (git-fixes). cluster-md-kmp-azure-5.3.18-38.25.2.x86_64.rpm True dlm-kmp-azure-5.3.18-38.25.2.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.25.2.x86_64.rpm True kernel-azure-5.3.18-38.25.2.nosrc.rpm True kernel-azure-5.3.18-38.25.2.x86_64.rpm True kernel-azure-devel-5.3.18-38.25.2.x86_64.rpm True kernel-azure-extra-5.3.18-38.25.2.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.25.2.x86_64.rpm True kernel-azure-optional-5.3.18-38.25.2.x86_64.rpm True kernel-devel-azure-5.3.18-38.25.2.noarch.rpm True kernel-source-azure-5.3.18-38.25.2.noarch.rpm True kernel-source-azure-5.3.18-38.25.2.src.rpm True kernel-syms-azure-5.3.18-38.25.1.src.rpm True kernel-syms-azure-5.3.18-38.25.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.25.2.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.25.2.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.25.2.x86_64.rpm True openSUSE-SLE-15.3-2021-3409 low SUSE Updates openSUSE-SLE 15.3 This update for libGLw fixes the following issue: - fix libGLw.so symlink of devel package. (bsc#1191122) libGLw-8.0.0-3.4.1.src.rpm libGLw-devel-8.0.0-3.4.1.x86_64.rpm libGLw1-32bit-8.0.0-3.4.1.x86_64.rpm libGLw1-8.0.0-3.4.1.x86_64.rpm libGLwM1-32bit-8.0.0-3.4.1.x86_64.rpm libGLwM1-8.0.0-3.4.1.x86_64.rpm libGLw-devel-8.0.0-3.4.1.s390x.rpm libGLw1-8.0.0-3.4.1.s390x.rpm libGLwM1-8.0.0-3.4.1.s390x.rpm libGLw-devel-8.0.0-3.4.1.ppc64le.rpm libGLw1-8.0.0-3.4.1.ppc64le.rpm libGLwM1-8.0.0-3.4.1.ppc64le.rpm libGLw-devel-8.0.0-3.4.1.aarch64.rpm libGLw1-8.0.0-3.4.1.aarch64.rpm libGLwM1-8.0.0-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3506 important SUSE Updates openSUSE-SLE 15.3 This update for containerd, docker, runc fixes the following issues: Docker was updated to 20.10.9-ce. (bsc#1191355) See upstream changelog in the packaged /usr/share/doc/packages/docker/CHANGELOG.md. CVE-2021-41092 CVE-2021-41089 CVE-2021-41091 CVE-2021-41103 container was updated to v1.4.11, to fix CVE-2021-41103. bsc#1191355 - CVE-2021-32760: Fixed that a archive package allows chmod of file outside of unpack target directory (bsc#1188282) - Install systemd service file as well (bsc#1190826) Update to runc v1.0.2. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.2 * Fixed a failure to set CPU quota period in some cases on cgroup v1. * Fixed the inability to start a container with the "adding seccomp filter rule for syscall ..." error, caused by redundant seccomp rules (i.e. those that has action equal to the default one). Such redundant rules are now skipped. * Made release builds reproducible from now on. * Fixed a rare debug log race in runc init, which can result in occasional harmful "failed to decode ..." errors from runc run or exec. * Fixed the check in cgroup v1 systemd manager if a container needs to be frozen before Set, and add a setting to skip such freeze unconditionally. The previous fix for that issue, done in runc 1.0.1, was not working. Update to runc v1.0.1. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.1 * Fixed occasional runc exec/run failure ("interrupted system call") on an Azure volume. * Fixed "unable to find groups ... token too long" error with /etc/group containing lines longer than 64K characters. * cgroup/systemd/v1: fix leaving cgroup frozen after Set if a parent cgroup is frozen. This is a regression in 1.0.0, not affecting runc itself but some of libcontainer users (e.g Kubernetes). * cgroupv2: bpf: Ignore inaccessible existing programs in case of permission error when handling replacement of existing bpf cgroup programs. This fixes a regression in 1.0.0, where some SELinux policies would block runc from being able to run entirely. * cgroup/systemd/v2: don't freeze cgroup on Set. * cgroup/systemd/v1: avoid unnecessary freeze on Set. - fix issues with runc under openSUSE MicroOS's SELinux policy. bsc#1187704 Update to runc v1.0.0. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0 ! The usage of relative paths for mountpoints will now produce a warning (such configurations are outside of the spec, and in future runc will produce an error when given such configurations). * cgroupv2: devices: rework the filter generation to produce consistent results with cgroupv1, and always clobber any existing eBPF program(s) to fix runc update and avoid leaking eBPF programs (resulting in errors when managing containers). * cgroupv2: correctly convert "number of IOs" statistics in a cgroupv1-compatible way. * cgroupv2: support larger than 32-bit IO statistics on 32-bit architectures. * cgroupv2: wait for freeze to finish before returning from the freezing code, optimize the method for checking whether a cgroup is frozen. * cgroups/systemd: fixed "retry on dbus disconnect" logic introduced in rc94 * cgroups/systemd: fixed returning "unit already exists" error from a systemd cgroup manager (regression in rc94) + cgroupv2: support SkipDevices with systemd driver + cgroup/systemd: return, not ignore, stop unit error from Destroy + Make "runc --version" output sane even when built with go get or otherwise outside of our build scripts. + cgroups: set SkipDevices during runc update (so we don't modify cgroups at all during runc update). + cgroup1: blkio: support BFQ weights. + cgroupv2: set per-device io weights if BFQ IO scheduler is available. Update to runc v1.0.0~rc95. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc95 This release of runc contains a fix for CVE-2021-30465, and users are strongly recommended to update (especially if you are providing semi-limited access to spawn containers to untrusted users). (bsc#1185405) Update to runc v1.0.0~rc94. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc94 Breaking Changes: * cgroupv1: kernel memory limits are now always ignored, as kmemcg has been effectively deprecated by the kernel. Users should make use of regular memory cgroup controls. Regression Fixes: * seccomp: fix 32-bit compilation errors * runc init: fix a hang caused by deadlock in seccomp/ebpf loading code * runc start: fix "chdir to cwd: permission denied" for some setups Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? containerd-1.4.11-56.1.src.rpm containerd-1.4.11-56.1.x86_64.rpm containerd-ctr-1.4.11-56.1.x86_64.rpm docker-20.10.9_ce-156.1.src.rpm docker-20.10.9_ce-156.1.x86_64.rpm docker-bash-completion-20.10.9_ce-156.1.noarch.rpm docker-fish-completion-20.10.9_ce-156.1.noarch.rpm docker-kubic-20.10.9_ce-156.1.src.rpm docker-kubic-20.10.9_ce-156.1.x86_64.rpm docker-kubic-bash-completion-20.10.9_ce-156.1.noarch.rpm docker-kubic-fish-completion-20.10.9_ce-156.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.9_ce-156.1.x86_64.rpm docker-kubic-zsh-completion-20.10.9_ce-156.1.noarch.rpm docker-zsh-completion-20.10.9_ce-156.1.noarch.rpm runc-1.0.2-23.1.src.rpm runc-1.0.2-23.1.x86_64.rpm containerd-1.4.11-56.1.s390x.rpm containerd-ctr-1.4.11-56.1.s390x.rpm docker-20.10.9_ce-156.1.s390x.rpm docker-kubic-20.10.9_ce-156.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.9_ce-156.1.s390x.rpm runc-1.0.2-23.1.s390x.rpm containerd-1.4.11-56.1.ppc64le.rpm containerd-ctr-1.4.11-56.1.ppc64le.rpm docker-20.10.9_ce-156.1.ppc64le.rpm docker-kubic-20.10.9_ce-156.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.9_ce-156.1.ppc64le.rpm runc-1.0.2-23.1.ppc64le.rpm containerd-1.4.11-56.1.aarch64.rpm containerd-ctr-1.4.11-56.1.aarch64.rpm docker-20.10.9_ce-156.1.aarch64.rpm docker-kubic-20.10.9_ce-156.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.9_ce-156.1.aarch64.rpm runc-1.0.2-23.1.aarch64.rpm openSUSE-SLE-15.3-2021-3382 moderate SUSE Updates openSUSE-SLE 15.3 This update for ca-certificates-mozilla fixes the following issues: - A new sub-package for minimal base containers (jsc#SLE-22162) ca-certificates-mozilla-2.44-21.1.noarch.rpm ca-certificates-mozilla-2.44-21.1.src.rpm ca-certificates-mozilla-prebuilt-2.44-21.1.noarch.rpm ca-certificates-mozilla-prebuilt-2.44-21.1.src.rpm openSUSE-SLE-15.3-2021-3448 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: The scap-security-guide was updated to 0.1.58 release (jsc#ECO-3319) - Support for Script Checking Engine (SCE) - Split RHEL 8 CIS profile using new controls file format - CIS Profiles for SUSE Linux Enterprise 12 - Initial Ubuntu 20.04 STIG Profiles - Addition of an automated CCE adder scap-security-guide-0.1.58-1.21.1.noarch.rpm scap-security-guide-0.1.58-1.21.1.src.rpm scap-security-guide-debian-0.1.58-1.21.1.noarch.rpm scap-security-guide-redhat-0.1.58-1.21.1.noarch.rpm scap-security-guide-ubuntu-0.1.58-1.21.1.noarch.rpm openSUSE-SLE-15.3-2021-3387 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bnc#1191193) - CVE-2021-3752: Fixed a use after free vulnerability in the Linux kernel's bluetooth module. (bsc#1190023) - CVE-2021-40490: Fixed a race condition discovered in the ext4 subsystem that could leat to local priviledge escalation. (bnc#1190159) - CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1189884) - CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1190534) - CVE-2021-3669: Fixed a bug that doesn't allow /proc/sysvipc/shm to scale with large shared memory segment counts which could lead to resource exhaustion and DoS. (bsc#1188986) - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks (bsc#1190115). The following non-security bugs were fixed: - ALSA: firewire-motu: fix truncated bytes in message tracepoints (git-fixes). - apparmor: remove duplicate macro list_entry_is_head() (git-fixes). - ASoC: fsl_micfil: register platform component before registering cpu dai (git-fixes). - ASoC: Intel: Fix platform ID matching (git-fixes). - ASoC: mediatek: common: handle NULL case in suspend/resume function (git-fixes). - ASoC: rockchip: i2s: Fix regmap_ops hang (git-fixes). - ASoC: rockchip: i2s: Fixup config for DAIFMT_DSP_A/B (git-fixes). - ASoC: rt5682: Implement remove callback (git-fixes). - ASoC: rt5682: Properly turn off regulators if wrong device ID (git-fixes). - ASoC: rt5682: Remove unused variable in rt5682_i2c_remove() (git-fixes). - ASoC: SOF: Fix DSP oops stack dump output contents (git-fixes). - ath9k: fix OOB read ar9300_eeprom_restore_internal (git-fixes). - ath9k: fix sleeping in atomic context (git-fixes). - backlight: pwm_bl: Improve bootloader/kernel device handover (git-fixes). - bareudp: Fix invalid read beyond skb's linear data (jsc#SLE-15172). - blk-mq: do not deactivate hctx if managed irq isn't used (bsc#1185762). - blk-mq: do not deactivate hctx if managed irq isn't used (bsc#1185762). - blk-mq: kABI fixes for blk_mq_queue_map (bsc#1185762). - blk-mq: kABI fixes for blk_mq_queue_map (bsc#1185762). - blk-mq: mark if one queue map uses managed irq (bsc#1185762). - blk-mq: mark if one queue map uses managed irq (bsc#1185762). - Bluetooth: skip invalid hci_sync_conn_complete_evt (git-fixes). - bnx2x: fix an error code in bnx2x_nic_load() (git-fixes). - bnxt_en: Add missing DMA memory barriers (git-fixes). - bnxt_en: Disable aRFS if running on 212 firmware (git-fixes). - bnxt_en: Do not enable legacy TX push on older firmware (git-fixes). - bnxt_en: Fix asic.rev in devlink dev info command (jsc#SLE-16649). - bnxt_en: fix stored FW_PSID version masks (jsc#SLE-16649). - bnxt_en: Store the running firmware version code (git-fixes). - bnxt: count Tx drops (git-fixes). - bnxt: disable napi before canceling DIM (git-fixes). - bnxt: do not lock the tx queue from napi poll (git-fixes). - bnxt: make sure xmit_more + errors does not miss doorbells (git-fixes). - bpf, samples: Add missing mprog-disable to xdp_redirect_cpu's optstring (git-fixes). - bpf: Fix ringbuf helper function compatibility (git-fixes). - bpftool: Add sock_release help info for cgroup attach/prog load command (bsc#1177028). - btrfs: prevent rename2 from exchanging a subvol with a directory from different parents (bsc#1190626). - clk: at91: clk-generated: Limit the requested rate to our range (git-fixes). - clk: at91: clk-generated: pass the id of changeable parent at registration (git-fixes). - console: consume APC, DM, DCS (git-fixes). - cpuidle: pseries: Do not cap the CEDE0 latency in fixup_cede0_latency() (bsc#1185550 ltc#192610 git-fixes jsc#SLE-18128). - cuse: fix broken release (bsc#1190596). - cxgb4: dont touch blocked freelist bitmap after free (git-fixes). - debugfs: Return error during {full/open}_proxy_open() on rmmod (bsc#1173746). - devlink: Break parameter notification sequence to be before/after unload/load driver (bsc#1154353). - devlink: Clear whole devlink_flash_notify struct (bsc#1176447). - dma-buf: DMABUF_MOVE_NOTIFY should depend on DMA_SHARED_BUFFER (git-fixes). - dmaengine: ioat: depends on !UML (git-fixes). - dmaengine: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - dmaengine: xilinx_dma: Set DMA mask for coherent APIs (git-fixes). - docs: Fix infiniband uverbs minor number (git-fixes). - drivers: gpu: amd: Initialize amdgpu_dm_backlight_caps object to 0 in amdgpu_dm_update_backlight_caps (git-fixes). - drm: avoid blocking in drm_clients_info's rcu section (git-fixes). - drm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex (git-fixes). - drm/amd/display: Fix timer_per_pixel unit error (git-fixes). - drm/amdgpu: Fix BUG_ON assert (git-fixes). - drm/ast: Fix missing conversions to managed API (git-fixes). - drm/gma500: Fix end of loop tests for list_for_each_entry (git-fixes). - drm/i915: Allow the sysadmin to override security mitigations (git-fixes). - drm/i915/rkl: Remove require_force_probe protection (bsc#1189257). - drm/ingenic: Switch IPU plane to type OVERLAY (git-fixes). - drm/mgag200: Select clock in PLL update functions (git-fixes). - drm/msm/mdp4: move HW revision detection to earlier phase (git-fixes). - drm/msm/mdp4: refactor HW revision detection into read_mdp_hw_revision (git-fixes). - drm/nouveau/nvkm: Replace -ENOSYS with -ENODEV (git-fixes). - drm/panfrost: Clamp lock region to Bifrost minimum (git-fixes). - drm/pl111: depend on CONFIG_VEXPRESS_CONFIG (git-fixes). - drm/rockchip: cdn-dp-core: Make cdn_dp_core_resume __maybe_unused (git-fixes). - e1000e: Do not take care about recovery NVM checksum (jsc#SLE-8100). - e1000e: Fix the max snoop/no-snoop latency for 10M (git-fixes). - EDAC/i10nm: Fix NVDIMM detection (bsc#1152489). - EDAC/mce_amd: Do not load edac_mce_amd module on guests (bsc#1190138). - EDAC/synopsys: Fix wrong value type assignment for edac_mode (bsc#1152489). - enetc: Fix uninitialized struct dim_sample field usage (git-fixes). - erofs: fix up erofs_lookup tracepoint (git-fixes). - fbmem: do not allow too huge resolutions (git-fixes). - fpga: machxo2-spi: Fix missing error code in machxo2_write_complete() (git-fixes). - fpga: machxo2-spi: Return an error on failure (git-fixes). - fuse: flush extending writes (bsc#1190595). - fuse: truncate pagecache on atomic_o_trunc (bsc#1190705). - genirq: add device_has_managed_msi_irq (bsc#1185762). - genirq: add device_has_managed_msi_irq (bsc#1185762). - gpio: uniphier: Fix void functions to remove return value (git-fixes). - gpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable access in amdgpu_i2c_router_select_ddc_port() (git-fixes). - gve: fix the wrong AdminQ buffer overflow check (bsc#1176940). - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726). - hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726). - hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs (git-fixes). - hwmon: (tmp421) fix rounding for negative values (git-fixes). - hwmon: (tmp421) report /PVLD condition as fault (git-fixes). - i40e: Add additional info to PHY type error (git-fixes). - i40e: Fix firmware LLDP agent related warning (git-fixes). - i40e: Fix log TC creation failure when max num of queues is exceeded (git-fixes). - i40e: Fix logic of disabling queues (git-fixes). - i40e: Fix queue-to-TC mapping on Tx (git-fixes). - i40e: improve locking of mac_filter_hash (jsc#SLE-13701). - iavf: Fix ping is lost after untrusted VF had tried to change MAC (jsc#SLE-7940). - iavf: Set RSS LUT and key in reset handle path (git-fixes). - IB/hfi1: Indicate DMA wait when txq is queued for wakeup (jsc#SLE-13208). - ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510). - ibmvnic: Consolidate code in replenish_rx_pool() (bsc#1190758 ltc#191943). - ibmvnic: Fix up some comments and messages (bsc#1190758 ltc#191943). - ibmvnic: init_tx_pools move loop-invariant code (bsc#1190758 ltc#191943). - ibmvnic: Reuse LTB when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse rx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse tx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Use bitmap for LTB map_ids (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_rx_pools (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_tx_pools (bsc#1190758 ltc#191943). - ice: do not abort devlink info if board identifier can't be found (jsc#SLE-12878). - ice: do not remove netdev->dev_addr from uc sync list (git-fixes). - ice: Prevent probing virtual functions (git-fixes). - igc: Use num_tx_queues when iterating over tx_ring queue (jsc#SLE-13533). - iio: dac: ad5624r: Fix incorrect handling of an optional regulator (git-fixes). - include/linux/list.h: add a macro to test if entry is pointing to the head (git-fixes). - iomap: Fix negative assignment to unsigned sis->pages in iomap_swapfile_activate (bsc#1190784). - ionic: cleanly release devlink instance (bsc#1167773). - ionic: cleanly release devlink instance (bsc#1167773). - ionic: count csum_none when offload enabled (bsc#1167773). - ionic: drop useless check of PCI driver data validity (bsc#1167773). - ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115). - ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115). - ipc/util.c: use binary search for max_idx (bsc#1159886). - ipvs: allow connection reuse for unconfirmed conntrack (bsc#1190467). - ipvs: avoid expiring many connections from timer (bsc#1190467). - ipvs: Fix up kabi for expire_nodest_conn_work addition (bsc#1190467). - ipvs: queue delayed work to expire no destination connections if expire_nodest_conn=1 (bsc#1190467). - iwlwifi Add support for ax201 in Samsung Galaxy Book Flex2 Alpha (git-fixes). - iwlwifi: mvm: fix a memory leak in iwl_mvm_mac_ctxt_beacon_changed (git-fixes). - kernel-binary.spec: Check for no kernel signing certificates. Also remove unused variable. - kernel-binary.spec: Do not fail silently when KMP is empty (bsc#1190358). Copy the code from kernel-module-subpackage that deals with empty KMPs. - kernel-binary.spec.in Stop templating the scriptlets for subpackages (bsc#1190358). The script part for base package case is completely separate from the part for subpackages. Remove the part for subpackages from the base package script and use the KMP scripts for subpackages instead. - libata: fix ata_host_start() (git-fixes). - libbpf: Fix removal of inner map in bpf_object__create_map (git-fixes). - libbpf: Fix the possible memory leak on error (git-fixes). - mac80211-hwsim: fix late beacon hrtimer handling (git-fixes). - mac80211: Fix ieee80211_amsdu_aggregate frag_tail bug (git-fixes). - mac80211: fix use-after-free in CCMP/GCMP RX (git-fixes). - mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap (git-fixes). - mac80211: mesh: fix potentially unaligned access (git-fixes). - media: cedrus: Fix SUNXI tile size calculation (git-fixes). - media: coda: fix frame_mem_ctrl for YUV420 and YVU420 formats (git-fixes). - media: dib8000: rewrite the init prbs logic (git-fixes). - media: imx258: Limit the max analogue gain to 480 (git-fixes). - media: imx258: Rectify mismatch of VTS value (git-fixes). - media: rc-loopback: return number of emitters rather than error (git-fixes). - media: TDA1997x: fix tda1997x_query_dv_timings() return value (git-fixes). - media: uvc: do not do DMA on stack (git-fixes). - media: v4l2-dv-timings.c: fix wrong condition in two for-loops (git-fixes). - mfd: Do not use irq_create_mapping() to resolve a mapping (git-fixes). - misc: sram: Only map reserved areas in Tegra SYSRAM (git-fixes). - misc: sram: use devm_platform_ioremap_resource_wc() (git-fixes). - mlx4: Fix missing error code in mlx4_load_one() (git-fixes). - mm: always have io_remap_pfn_range() set pgprot_decrypted() (git-fixes). - mm/swap: consider max pages in iomap_swapfile_add_extent (bsc#1190785). - mmc: core: Return correct emmc response in case of ioctl error (git-fixes). - mmc: rtsx_pci: Fix long reads when clock is prescaled (git-fixes). - mmc: sdhci-of-arasan: Check return value of non-void funtions (git-fixes). - mmc: sdhci: Fix issue with uninitialized dma_slave_config (git-fixes). - net: ethernet: ti: cpsw: fix min eth packet size for non-switch use-cases (git-fixes). - net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726). - net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726). - net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726). - net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726). - net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726). - net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726). - net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726). - net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726). - net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726). - net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726). - net: qlcnic: add missed unlock in qlcnic_83xx_flash_read32 (git-fixes). - net: sched: sch_teql: fix null-pointer dereference (bsc#1190717). - net/mlx5: E-Switch, handle devcom events only for ports on the same device (git-fixes). - net/mlx5: Fix flow table chaining (git-fixes). - net/mlx5: Fix missing return value in mlx5_devlink_eswitch_inline_mode_set() (jsc#SLE-15172). - net/mlx5: Fix return value from tracer initialization (git-fixes). - net/mlx5: Unload device upon firmware fatal error (git-fixes). - net/mlx5e: Avoid creating tunnel headers for local route (git-fixes). - net/mlx5e: Fix nullptr in mlx5e_hairpin_get_mdev() (git-fixes). - net/mlx5e: Prohibit inner indir TIRs in IPoIB (git-fixes). - netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (bsc#1190062). - nfp: update ethtool reporting of pauseframe control (git-fixes). - NFS: change nfs_access_get_cached to only report the mask (bsc#1190746). - NFS: do not store 'struct cred *' in struct nfs_access_entry (bsc#1190746). - NFS: pass cred explicitly for access tests (bsc#1190746). - nvme-multipath: revalidate paths during rescan (bsc#1187211). - nvme-tcp: Do not reset transport on data digest errors (bsc#1188418). - nvme: avoid race in shutdown namespace removal (bsc#1188067). - nvme: fix refcounting imbalance when all paths are down (bsc#1188067). - nvme: only call synchronize_srcu when clearing current path (bsc#1188067). - optee: Fix memory leak when failing to register shm pages (git-fixes). - parport: remove non-zero check on count (git-fixes). - PCI: aardvark: Fix checking for PIO status (git-fixes). - PCI: aardvark: Fix masking and unmasking legacy INTx interrupts (git-fixes). - PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response (git-fixes). - PCI: Add ACS quirks for Cavium multi-function devices (git-fixes). - PCI: Add ACS quirks for NXP LX2xx0 and LX2xx2 platforms (git-fixes). - PCI: Add AMD GPU multi-function power dependencies (git-fixes). - PCI: ibmphp: Fix double unmap of io_mem (git-fixes). - PCI: of: Do not fail devm_pci_alloc_host_bridge() on missing 'ranges' (git-fixes). - PCI: pci-bridge-emul: Add PCIe Root Capabilities Register (git-fixes). - PCI: pci-bridge-emul: Fix array overruns, improve safety (git-fixes). - PCI: pci-bridge-emul: Fix big-endian support (git-fixes). - PCI: Restrict ASMedia ASM1062 SATA Max Payload Size Supported (git-fixes). - PCI: Use pci_update_current_state() in pci_enable_device_flags() (git-fixes). - phy: tegra: xusb: Fix dangling pointer on probe failure (git-fixes). - PM: base: power: do not try to use non-existing RTC for storing data (git-fixes). - PM: EM: Increase energy calculation precision (git-fixes). - power: supply: axp288_fuel_gauge: Report register-address on readb / writeb errors (git-fixes). - power: supply: max17042_battery: fix typo in MAx17042_TOFF (git-fixes). - powercap: intel_rapl: add support for Sapphire Rapids (jsc#SLE-15289). - powerpc: fix function annotations to avoid section mismatch warnings with gcc-10 (bsc#1148868). - powerpc/drmem: Make LMB walk a bit more flexible (bsc#1190543 ltc#194523). - powerpc/numa: Consider the max NUMA node for migratable LPAR (bsc#1190544 ltc#194520). - powerpc/perf: Drop the case of returning 0 as instruction pointer (bsc#1065729). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (bsc#1065729). - powerpc/perf: Fix the check for SIAR value (bsc#1065729). - powerpc/perf: Use regs->nip when SIAR is zero (bsc#1065729). - powerpc/perf: Use stack siar instead of mfspr (bsc#1065729). - powerpc/perf: Use the address from SIAR register to set cpumode flags (bsc#1065729). - powerpc/perf/hv-gpci: Fix counter value parsing (bsc#1065729). - powerpc/powernv: Fix machine check reporting of async store errors (bsc#1065729). - powerpc/pseries: Prevent free CPU ids being reused on another node (bsc#1190620 ltc#194498). - powerpc/pseries/dlpar: use rtas_get_sensor() (bsc#1065729). - pseries/drmem: update LMBs after LPM (bsc#1190543 ltc#194523). - pwm: img: Do not modify HW state in .remove() callback (git-fixes). - pwm: rockchip: Do not modify HW state in .remove() callback (git-fixes). - pwm: stm32-lp: Do not modify HW state in .remove() callback (git-fixes). - qlcnic: Remove redundant unlock in qlcnic_pinit_from_rom (git-fixes). - RDMA/bnxt_re: Remove unpaired rtnl unlock in bnxt_re_dev_init() (bsc#1170774). - RDMA/hns: Fix QP's resp incomplete assignment (jsc#SLE-14777). - RDMA/mlx5: Delay emptying a cache entry when a new MR is added to it recently (jsc#SLE-15175). - RDMA/mlx5: Delete not-available udata check (jsc#SLE-15175). - RDMA/rtrs: Remove a useless kfree() (jsc#SLE-15176). - Re-enable UAS for LaCie Rugged USB3-FW with fk quirk (git-fixes). - regmap: fix page selection for noinc reads (git-fixes). - regmap: fix page selection for noinc writes (git-fixes). - regmap: fix the offset of register error log (git-fixes). - Restore kabi after NFS: pass cred explicitly for access tests (bsc#1190746). - rpm: Abolish scritplet templating (bsc#1189841). Outsource kernel-binary and KMP scriptlets to suse-module-tools. This allows fixing bugs in the scriptlets as well as defining initrd regeneration policy independent of the kernel packages. - rpm/kernel-binary.spec: Use only non-empty certificates. - rpm/kernel-binary.spec.in: avoid conflicting suse-release suse-release had arbitrary values in staging, we can't use it for dependencies. The filesystem one has to be enough (boo#1184804). - rtc: rx8010: select REGMAP_I2C (git-fixes). - rtc: tps65910: Correct driver module alias (git-fixes). - s390/unwind: use current_frame_address() to unwind current task (bsc#1185677). - sch_cake: fix srchost/dsthost hashing mode (bsc#1176447). - sched/fair: Add ancestors of unthrottled undecayed cfs_rq (bsc#1191292). - scsi: core: Add helper to return number of logical blocks in a request (bsc#1190576). - scsi: core: Introduce the scsi_cmd_to_rq() function (bsc#1190576). - scsi: fc: Add EDC ELS definition (bsc#1190576). - scsi: fc: Update formal FPIN descriptor definitions (bsc#1190576). - scsi: lpfc: Add bsg support for retrieving adapter cmf data (bsc#1190576). - scsi: lpfc: Add cm statistics buffer support (bsc#1190576). - scsi: lpfc: Add cmf_info sysfs entry (bsc#1190576). - scsi: lpfc: Add cmfsync WQE support (bsc#1190576). - scsi: lpfc: Add debugfs support for cm framework buffers (bsc#1190576). - scsi: lpfc: Add EDC ELS support (bsc#1190576). - scsi: lpfc: Add MIB feature enablement support (bsc#1190576). - scsi: lpfc: Add rx monitoring statistics (bsc#1190576). - scsi: lpfc: Add SET_HOST_DATA mbox cmd to pass date/time info to firmware (bsc#1190576). - scsi: lpfc: Add support for cm enablement buffer (bsc#1190576). - scsi: lpfc: Add support for maintaining the cm statistics buffer (bsc#1190576). - scsi: lpfc: Add support for the CM framework (bsc#1190576). - scsi: lpfc: Adjust bytes received vales during cmf timer interval (bsc#1190576). - scsi: lpfc: Copyright updates for 14.0.0.1 patches (bsc#1190576). - scsi: lpfc: Do not release final kref on Fport node while ABTS outstanding (bsc#1190576). - scsi: lpfc: Do not remove ndlp on PRLI errors in P2P mode (bsc#1190576). - scsi: lpfc: Expand FPIN and RDF receive logging (bsc#1190576). - scsi: lpfc: Fix compilation errors on kernels with no CONFIG_DEBUG_FS (bsc#1190576). - scsi: lpfc: Fix CPU to/from endian warnings introduced by ELS processing (bsc#1190576). - scsi: lpfc: Fix EEH support for NVMe I/O (bsc#1190576). - scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (bsc#1190576). - scsi: lpfc: Fix gcc -Wstringop-overread warning, again (bsc#1190576). - scsi: lpfc: Fix hang on unload due to stuck fport node (bsc#1190576). - scsi: lpfc: Fix I/O block after enabling managed congestion mode (bsc#1190576). - scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() (bsc#1190576). - scsi: lpfc: Fix NVMe I/O failover to non-optimized path (bsc#1190576). - scsi: lpfc: Fix premature rpi release for unsolicited TPLS and LS_RJT (bsc#1190576). - scsi: lpfc: Fix rediscovery of tape device after LIP (bsc#1190576). - scsi: lpfc: Fix sprintf() overflow in lpfc_display_fpin_wwpn() (bsc#1190576). - scsi: lpfc: Improve PBDE checks during SGL processing (bsc#1190576). - scsi: lpfc: Remove unneeded variable (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.1 (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.2 (bsc#1190576). - scsi: lpfc: Use correct scnprintf() limit (bsc#1190576). - scsi: lpfc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190576). - scsi: lpfc: Use the proper SCSI midlayer interfaces for PI (bsc#1190576). - scsi: lpfc: Zero CGN stats only during initial driver load and stat reset (bsc#1190576). - scsi: scsi_devinfo: Add blacklist entry for HPE OPEN-V (bsc#1189297). - scsi/fc: kABI fixes for new ELS_EDC, ELS_RDP definition (bsc#1171688 bsc#1174003 bsc#1190576). - selftests/bpf: Define string const as global for test_sysctl_prog.c (git-fixes). - selftests/bpf: Fix bpf-iter-tcp4 test to print correctly the dest IP (git-fixes). - selftests/bpf: Fix test_sysctl_loop{1, 2} failure due to clang change (git-fixes). - selftests/bpf: Whitelist test_progs.h from .gitignore (git-fixes). - serial: 8250_pci: make setup_port() parameters explicitly unsigned (git-fixes). - serial: 8250: Define RX trigger levels for OxSemi 950 devices (git-fixes). - serial: mvebu-uart: fix driver's tx_empty callback (git-fixes). - serial: sh-sci: fix break handling for sysrq (git-fixes). - spi: Fix tegra20 build with CONFIG_PM=n (git-fixes). - staging: board: Fix uninitialized spinlock when attaching genpd (git-fixes). - staging: ks7010: Fix the initialization of the 'sleep_status' structure (git-fixes). - staging: rts5208: Fix get_ms_information() heap buffer size (git-fixes). - thermal/core: Potential buffer overflow in thermal_build_list_of_policies() (git-fixes). - time: Handle negative seconds correctly in timespec64_to_ns() (git-fixes). - tools: bpf: Fix error in 'make -C tools/ bpf_install' (git-fixes). - tty: Fix data race between tiocsti() and flush_to_ldisc() (git-fixes). - tty: serial: jsm: hold port lock when reporting modem line changes (git-fixes). - tty: synclink_gt, drop unneeded forward declarations (git-fixes). - usb-storage: Add quirk for ScanLogic SL11R-IDE older than 2.6c (git-fixes). - usb: core: hcd: Add support for deferring roothub registration (git-fixes). - usb: dwc2: Add missing cleanups when usb_add_gadget_udc() fails (git-fixes). - usb: dwc2: Avoid leaving the error_debugfs label unused (git-fixes). - usb: dwc2: gadget: Fix ISOC flow for BDMA and Slave (git-fixes). - usb: dwc2: gadget: Fix ISOC transfer complete handling for DDMA (git-fixes). - usb: EHCI: ehci-mv: improve error handling in mv_ehci_enable() (git-fixes). - usb: gadget: r8a66597: fix a loop in set_feature() (git-fixes). - usb: gadget: u_ether: fix a potential null pointer dereference (git-fixes). - usb: host: fotg210: fix the actual_length of an iso packet (git-fixes). - usb: host: fotg210: fix the endpoint's transactional opportunities calculation (git-fixes). - usb: musb: musb_dsps: request_irq() after initializing musb (git-fixes). - usb: musb: tusb6010: uninitialized data in tusb_fifo_write_unaligned() (git-fixes). - usb: serial: cp210x: add ID for GW Instek GDM-834x Digital Multimeter (git-fixes). - usb: serial: option: add device id for Foxconn T99W265 (git-fixes). - usb: serial: option: add Telit LN920 compositions (git-fixes). - usb: serial: option: remove duplicate USB device ID (git-fixes). - usbip: give back URBs for unsent unlink requests during cleanup (git-fixes). - usbip:vhci_hcd USB port can get stuck in the disabled state (git-fixes). - video: fbdev: asiliantfb: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: fix a DoS bug by restricting user input (git-fixes). - video: fbdev: riva: Error out if 'pixclock' equals zero (git-fixes). - vmxnet3: add support for 32 Tx/Rx queues (bsc#1190406). - vmxnet3: add support for ESP IPv6 RSS (bsc#1190406). - vmxnet3: increase maximum configurable mtu to 9190 (bsc#1190406). - vmxnet3: prepare for version 6 changes (bsc#1190406). - vmxnet3: remove power of 2 limitation on the queues (bsc#1190406). - vmxnet3: set correct hash type based on rss information (bsc#1190406). - vmxnet3: update to version 6 (bsc#1190406). - watchdog/sb_watchdog: fix compilation problem due to COMPILE_TEST (git-fixes). - x86/alternatives: Teach text_poke_bp() to emulate instructions (bsc#1185302). - x86/alternatives: Teach text_poke_bp() to emulate instructions (bsc#1190561). - x86/apic/msi: Plug non-maskable MSI affinity race (bsc#1184439). - x86/asm: Fix SETZ size enqcmds() build failure (bsc#1178134). - x86/cpu: Fix core name for Sapphire Rapids (jsc#SLE-15289). - x86/mm: Fix kern_addr_valid() to cope with existing but not present entries (bsc#1152489). - x86/resctrl: Fix a maybe-uninitialized build warning treated as error (bsc#1152489). - x86/resctrl: Fix default monitoring groups reporting (bsc#1152489). - xfs: allow mount/remount when stripe width alignment is zero (bsc#1188651). - xfs: sync lazy sb accounting on quiesce of read-only mounts (bsc#1190679). - xgene-v2: Fix a resource leak in the error handling path of 'xge_probe()' (git-fixes). - xhci: Set HCD flag to defer primary roothub registration (git-fixes). cluster-md-kmp-default-5.3.18-59.27.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.27.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.27.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True kernel-debug-5.3.18-59.27.1.nosrc.rpm True kernel-debug-5.3.18-59.27.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.27.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.27.1.x86_64.rpm True kernel-default-5.3.18-59.27.1.nosrc.rpm True kernel-default-5.3.18-59.27.1.x86_64.rpm True kernel-default-base-5.3.18-59.27.1.18.15.1.src.rpm True kernel-default-base-5.3.18-59.27.1.18.15.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.27.1.18.15.1.x86_64.rpm True kernel-default-devel-5.3.18-59.27.1.x86_64.rpm True kernel-default-extra-5.3.18-59.27.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.27.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.27.1.x86_64.rpm True kernel-default-optional-5.3.18-59.27.1.x86_64.rpm True kernel-devel-5.3.18-59.27.1.noarch.rpm True kernel-docs-5.3.18-59.27.1.noarch.rpm True kernel-docs-5.3.18-59.27.1.nosrc.rpm True kernel-docs-html-5.3.18-59.27.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.27.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.27.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.27.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.27.1.x86_64.rpm True kernel-macros-5.3.18-59.27.1.noarch.rpm True kernel-obs-build-5.3.18-59.27.1.src.rpm True kernel-obs-build-5.3.18-59.27.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.27.1.src.rpm True kernel-obs-qa-5.3.18-59.27.1.x86_64.rpm True kernel-preempt-5.3.18-59.27.1.nosrc.rpm True kernel-preempt-5.3.18-59.27.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.27.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.27.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.27.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.27.1.x86_64.rpm True kernel-source-5.3.18-59.27.1.noarch.rpm True kernel-source-5.3.18-59.27.1.src.rpm True kernel-source-vanilla-5.3.18-59.27.1.noarch.rpm True kernel-syms-5.3.18-59.27.1.src.rpm True kernel-syms-5.3.18-59.27.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.27.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.27.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.27.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.27.1.s390x.rpm True dlm-kmp-default-5.3.18-59.27.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.27.1.s390x.rpm True kernel-default-5.3.18-59.27.1.s390x.rpm True kernel-default-base-5.3.18-59.27.1.18.15.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.27.1.18.15.1.s390x.rpm True kernel-default-devel-5.3.18-59.27.1.s390x.rpm True kernel-default-extra-5.3.18-59.27.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.27.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.27.1.s390x.rpm True kernel-default-optional-5.3.18-59.27.1.s390x.rpm True kernel-obs-build-5.3.18-59.27.1.s390x.rpm True kernel-obs-qa-5.3.18-59.27.1.s390x.rpm True kernel-syms-5.3.18-59.27.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.27.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.27.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.27.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.27.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.27.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.27.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.27.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.27.1.ppc64le.rpm True kernel-debug-5.3.18-59.27.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-default-5.3.18-59.27.1.ppc64le.rpm True kernel-default-base-5.3.18-59.27.1.18.15.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.27.1.18.15.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.27.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.27.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.27.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.27.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.27.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.27.1.ppc64le.rpm True kernel-syms-5.3.18-59.27.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.27.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.27.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.27.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.27.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.27.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True dtb-aarch64-5.3.18-59.27.1.src.rpm True dtb-al-5.3.18-59.27.1.aarch64.rpm True dtb-allwinner-5.3.18-59.27.1.aarch64.rpm True dtb-altera-5.3.18-59.27.1.aarch64.rpm True dtb-amd-5.3.18-59.27.1.aarch64.rpm True dtb-amlogic-5.3.18-59.27.1.aarch64.rpm True dtb-apm-5.3.18-59.27.1.aarch64.rpm True dtb-arm-5.3.18-59.27.1.aarch64.rpm True dtb-broadcom-5.3.18-59.27.1.aarch64.rpm True dtb-cavium-5.3.18-59.27.1.aarch64.rpm True dtb-exynos-5.3.18-59.27.1.aarch64.rpm True dtb-freescale-5.3.18-59.27.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.27.1.aarch64.rpm True dtb-lg-5.3.18-59.27.1.aarch64.rpm True dtb-marvell-5.3.18-59.27.1.aarch64.rpm True dtb-mediatek-5.3.18-59.27.1.aarch64.rpm True dtb-nvidia-5.3.18-59.27.1.aarch64.rpm True dtb-qcom-5.3.18-59.27.1.aarch64.rpm True dtb-renesas-5.3.18-59.27.1.aarch64.rpm True dtb-rockchip-5.3.18-59.27.1.aarch64.rpm True dtb-socionext-5.3.18-59.27.1.aarch64.rpm True dtb-sprd-5.3.18-59.27.1.aarch64.rpm True dtb-xilinx-5.3.18-59.27.1.aarch64.rpm True dtb-zte-5.3.18-59.27.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.27.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True kernel-64kb-5.3.18-59.27.1.aarch64.rpm True kernel-64kb-5.3.18-59.27.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.27.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.27.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.27.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.27.1.aarch64.rpm True kernel-default-5.3.18-59.27.1.aarch64.rpm True kernel-default-base-5.3.18-59.27.1.18.15.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.27.1.18.15.1.aarch64.rpm True kernel-default-devel-5.3.18-59.27.1.aarch64.rpm True kernel-default-extra-5.3.18-59.27.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.27.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.27.1.aarch64.rpm True kernel-default-optional-5.3.18-59.27.1.aarch64.rpm True kernel-obs-build-5.3.18-59.27.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.27.1.aarch64.rpm True kernel-preempt-5.3.18-59.27.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.27.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.27.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.27.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.27.1.aarch64.rpm True kernel-syms-5.3.18-59.27.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.27.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.27.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.27.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3495 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-add-on fixes the following issue: - Don't crash Auto client when importing from an empty add-on section. (bsc#1189154) yast2-add-on-4.3.9-3.5.2.noarch.rpm yast2-add-on-4.3.9-3.5.2.src.rpm openSUSE-SLE-15.3-2021-3485 moderate SUSE Updates openSUSE-SLE 15.3 This update for squid fixes the following issues: Update to version 4.17: - CVE-2021-28116: Fixed a out-of-bounds read in the WCCP protocol (bsc#1189403). squid-4.17-5.29.1.src.rpm squid-4.17-5.29.1.x86_64.rpm squid-4.17-5.29.1.s390x.rpm squid-4.17-5.29.1.ppc64le.rpm squid-4.17-5.29.1.aarch64.rpm openSUSE-SLE-15.3-2021-3832 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issue: - Update to version 0.353 (bsc#1191375) hwdata-0.353-3.36.1.noarch.rpm hwdata-0.353-3.36.1.src.rpm openSUSE-SLE-15.3-2021-3558 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: koan: - Readding the requires for runtime dependencies on python3-netifaces and python3-distro (bsc#1191448) spacecmd: - Version 4.2.13-1 * Update translation strings * configchannel_updatefile handles directory properly (bsc#1190512) * Add schedule_archivecompleted to mass archive actions (bsc#1181223) * Remove whoami from the list of unauthenticated commands (bsc#1188977) spacewalk-client-tools: - Version 4.2.14-1 * Update translation strings koan-3.0.1-4.23.1.noarch.rpm koan-3.0.1-4.23.1.src.rpm spacecmd-4.2.13-3.68.1.noarch.rpm spacecmd-4.2.13-3.68.1.src.rpm openSUSE-SLE-15.3-2021-3383 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-migration-services fixes the following issues: - The migration services were updated to version 2.0.31 suse-migration-services-2.0.32-1.43.1.noarch.rpm suse-migration-services-2.0.32-1.43.1.src.rpm openSUSE-SLE-15.3-2021-3493 moderate SUSE Updates openSUSE-SLE 15.3 This update for fetchmail fixes the following issues: - CVE-2021-39272: Fix failure to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH. (bsc#1190069) fetchmail-6.3.26-20.17.1.src.rpm fetchmail-6.3.26-20.17.1.x86_64.rpm fetchmailconf-6.3.26-20.17.1.x86_64.rpm fetchmail-6.3.26-20.17.1.s390x.rpm fetchmailconf-6.3.26-20.17.1.s390x.rpm fetchmail-6.3.26-20.17.1.ppc64le.rpm fetchmailconf-6.3.26-20.17.1.ppc64le.rpm fetchmail-6.3.26-20.17.1.aarch64.rpm fetchmailconf-6.3.26-20.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3472 important SUSE Updates openSUSE-SLE 15.3 This update for flatpak fixes the following issues: - Update to version 1.10.5: - CVE-2021-41133: Fixed a bug that could lead to sandbox bypass via recent VFS-manipulating syscalls. (bsc#1191507) flatpak-1.10.5-4.9.1.src.rpm flatpak-1.10.5-4.9.1.x86_64.rpm flatpak-devel-1.10.5-4.9.1.x86_64.rpm flatpak-zsh-completion-1.10.5-4.9.1.x86_64.rpm libflatpak0-1.10.5-4.9.1.x86_64.rpm system-user-flatpak-1.10.5-4.9.1.x86_64.rpm typelib-1_0-Flatpak-1_0-1.10.5-4.9.1.x86_64.rpm flatpak-1.10.5-4.9.1.s390x.rpm flatpak-devel-1.10.5-4.9.1.s390x.rpm flatpak-zsh-completion-1.10.5-4.9.1.s390x.rpm libflatpak0-1.10.5-4.9.1.s390x.rpm system-user-flatpak-1.10.5-4.9.1.s390x.rpm typelib-1_0-Flatpak-1_0-1.10.5-4.9.1.s390x.rpm flatpak-1.10.5-4.9.1.ppc64le.rpm flatpak-devel-1.10.5-4.9.1.ppc64le.rpm flatpak-zsh-completion-1.10.5-4.9.1.ppc64le.rpm libflatpak0-1.10.5-4.9.1.ppc64le.rpm system-user-flatpak-1.10.5-4.9.1.ppc64le.rpm typelib-1_0-Flatpak-1_0-1.10.5-4.9.1.ppc64le.rpm flatpak-1.10.5-4.9.1.aarch64.rpm flatpak-devel-1.10.5-4.9.1.aarch64.rpm flatpak-zsh-completion-1.10.5-4.9.1.aarch64.rpm libflatpak0-1.10.5-4.9.1.aarch64.rpm system-user-flatpak-1.10.5-4.9.1.aarch64.rpm typelib-1_0-Flatpak-1_0-1.10.5-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3557 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - CVE-2021-21996: Exclude the full path of a download URL to prevent injection of malicious code. (bsc#1190265) python3-salt-3002.2-50.1.15.1.x86_64.rpm True salt-3002.2-50.1.15.1.src.rpm True salt-3002.2-50.1.15.1.x86_64.rpm True salt-api-3002.2-50.1.15.1.x86_64.rpm True salt-bash-completion-3002.2-50.1.15.1.noarch.rpm True salt-cloud-3002.2-50.1.15.1.x86_64.rpm True salt-doc-3002.2-50.1.15.1.x86_64.rpm True salt-fish-completion-3002.2-50.1.15.1.noarch.rpm True salt-master-3002.2-50.1.15.1.x86_64.rpm True salt-minion-3002.2-50.1.15.1.x86_64.rpm True salt-proxy-3002.2-50.1.15.1.x86_64.rpm True salt-ssh-3002.2-50.1.15.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.15.1.x86_64.rpm True salt-syndic-3002.2-50.1.15.1.x86_64.rpm True salt-transactional-update-3002.2-50.1.15.1.x86_64.rpm True salt-zsh-completion-3002.2-50.1.15.1.noarch.rpm True python3-salt-3002.2-50.1.15.1.s390x.rpm True salt-3002.2-50.1.15.1.s390x.rpm True salt-api-3002.2-50.1.15.1.s390x.rpm True salt-cloud-3002.2-50.1.15.1.s390x.rpm True salt-doc-3002.2-50.1.15.1.s390x.rpm True salt-master-3002.2-50.1.15.1.s390x.rpm True salt-minion-3002.2-50.1.15.1.s390x.rpm True salt-proxy-3002.2-50.1.15.1.s390x.rpm True salt-ssh-3002.2-50.1.15.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-50.1.15.1.s390x.rpm True salt-syndic-3002.2-50.1.15.1.s390x.rpm True salt-transactional-update-3002.2-50.1.15.1.s390x.rpm True python3-salt-3002.2-50.1.15.1.ppc64le.rpm True salt-3002.2-50.1.15.1.ppc64le.rpm True salt-api-3002.2-50.1.15.1.ppc64le.rpm True salt-cloud-3002.2-50.1.15.1.ppc64le.rpm True salt-doc-3002.2-50.1.15.1.ppc64le.rpm True salt-master-3002.2-50.1.15.1.ppc64le.rpm True salt-minion-3002.2-50.1.15.1.ppc64le.rpm True salt-proxy-3002.2-50.1.15.1.ppc64le.rpm True salt-ssh-3002.2-50.1.15.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-50.1.15.1.ppc64le.rpm True salt-syndic-3002.2-50.1.15.1.ppc64le.rpm True salt-transactional-update-3002.2-50.1.15.1.ppc64le.rpm True python3-salt-3002.2-50.1.15.1.aarch64.rpm True salt-3002.2-50.1.15.1.aarch64.rpm True salt-api-3002.2-50.1.15.1.aarch64.rpm True salt-cloud-3002.2-50.1.15.1.aarch64.rpm True salt-doc-3002.2-50.1.15.1.aarch64.rpm True salt-master-3002.2-50.1.15.1.aarch64.rpm True salt-minion-3002.2-50.1.15.1.aarch64.rpm True salt-proxy-3002.2-50.1.15.1.aarch64.rpm True salt-ssh-3002.2-50.1.15.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.15.1.aarch64.rpm True salt-syndic-3002.2-50.1.15.1.aarch64.rpm True salt-transactional-update-3002.2-50.1.15.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3500 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-vm-tools fixes the following issues: - New/Updated features: * Added a configurable logging capability to the network script * The hgfsmounter (mount.vmhgfs) command has been removed from open-vm-tools. It has been replaced by hgfs-fuse. - Resolved issues: * Customization: Retry the Linux reboot if telinit is a soft link to systemctl * open-vm-tools commands would hang if configured with "--enable-valgrind" libvmtools-devel-11.3.5-13.1.x86_64.rpm libvmtools0-11.3.5-13.1.x86_64.rpm open-vm-tools-11.3.5-13.1.src.rpm open-vm-tools-11.3.5-13.1.x86_64.rpm open-vm-tools-desktop-11.3.5-13.1.x86_64.rpm open-vm-tools-sdmp-11.3.5-13.1.x86_64.rpm libvmtools-devel-11.3.5-13.1.aarch64.rpm libvmtools0-11.3.5-13.1.aarch64.rpm open-vm-tools-11.3.5-13.1.aarch64.rpm open-vm-tools-desktop-11.3.5-13.1.aarch64.rpm open-vm-tools-sdmp-11.3.5-13.1.aarch64.rpm openSUSE-SLE-15.3-2021-3501 moderate SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper, libsolv and protobuf fixes the following issues: - Choice rules: treat orphaned packages as newest (bsc#1190465) - Avoid calling 'su' to detect a too restrictive sudo user umask (bsc#1186602) - Do not check of signatures and keys two times(redundant) (bsc#1190059) - Rephrase vendor conflict message in case 2 packages are involved (bsc#1187760) - Show key fpr from signature when signature check fails (bsc#1187224) - Fix solver jobs for PTFs (bsc#1186503) - Fix purge-kernels fails (bsc#1187738) - Fix obs:// platform guessing for Leap (bsc#1187425) - Make sure to keep states alives while transitioning. (bsc#1190199) - Manpage: Improve description about patch updates(bsc#1187466) - Manpage: Recommend the needs-rebooting command to test whether a system reboot is suggested. - Fix kernel-*-livepatch removal in purge-kernels. (bsc#1190815) - Fix crashes in logging code when shutting down (bsc#1189031) - Do not download full files even if the checkExistsOnly flag is set. (bsc#1190712) - Add need reboot/restart hint to XML install summary (bsc#1188435) - Prompt: choose exact match if prompt options are not prefix free (bsc#1188156) - Include libprotobuf-lite20 in products to enable parallel downloads. (jsc#ECO-2911, jsc#SLE-16862) libprotobuf-lite20-3.9.2-4.9.1.x86_64.rpm True libprotobuf-lite20-32bit-3.9.2-4.9.1.x86_64.rpm True libprotobuf20-3.9.2-4.9.1.x86_64.rpm True libprotobuf20-32bit-3.9.2-4.9.1.x86_64.rpm True libprotoc20-3.9.2-4.9.1.x86_64.rpm True libprotoc20-32bit-3.9.2-4.9.1.x86_64.rpm True libsolv-0.7.20-9.2.src.rpm True libsolv-demo-0.7.20-9.2.x86_64.rpm True libsolv-devel-0.7.20-9.2.x86_64.rpm True libsolv-tools-0.7.20-9.2.x86_64.rpm True libzypp-17.28.5-15.2.src.rpm True libzypp-17.28.5-15.2.x86_64.rpm True libzypp-devel-17.28.5-15.2.x86_64.rpm True libzypp-devel-doc-17.28.5-15.2.x86_64.rpm True perl-solv-0.7.20-9.2.x86_64.rpm True protobuf-3.9.2-4.9.1.src.rpm True protobuf-devel-3.9.2-4.9.1.x86_64.rpm True protobuf-java-3.9.2-4.9.1.x86_64.rpm True protobuf-source-3.9.2-4.9.1.noarch.rpm True python-solv-0.7.20-9.2.x86_64.rpm True python2-protobuf-3.9.2-4.9.1.x86_64.rpm True python3-protobuf-3.9.2-4.9.1.x86_64.rpm True python3-solv-0.7.20-9.2.x86_64.rpm True ruby-solv-0.7.20-9.2.x86_64.rpm True zypper-1.14.49-16.1.src.rpm True zypper-1.14.49-16.1.x86_64.rpm True zypper-aptitude-1.14.49-16.1.noarch.rpm True zypper-log-1.14.49-16.1.noarch.rpm True zypper-needs-restarting-1.14.49-16.1.noarch.rpm True libprotobuf-lite20-3.9.2-4.9.1.s390x.rpm True libprotobuf20-3.9.2-4.9.1.s390x.rpm True libprotoc20-3.9.2-4.9.1.s390x.rpm True libsolv-demo-0.7.20-9.2.s390x.rpm True libsolv-devel-0.7.20-9.2.s390x.rpm True libsolv-tools-0.7.20-9.2.s390x.rpm True libzypp-17.28.5-15.2.s390x.rpm True libzypp-devel-17.28.5-15.2.s390x.rpm True libzypp-devel-doc-17.28.5-15.2.s390x.rpm True perl-solv-0.7.20-9.2.s390x.rpm True protobuf-devel-3.9.2-4.9.1.s390x.rpm True protobuf-java-3.9.2-4.9.1.s390x.rpm True python-solv-0.7.20-9.2.s390x.rpm True python2-protobuf-3.9.2-4.9.1.s390x.rpm True python3-protobuf-3.9.2-4.9.1.s390x.rpm True python3-solv-0.7.20-9.2.s390x.rpm True ruby-solv-0.7.20-9.2.s390x.rpm True zypper-1.14.49-16.1.s390x.rpm True libprotobuf-lite20-3.9.2-4.9.1.ppc64le.rpm True libprotobuf20-3.9.2-4.9.1.ppc64le.rpm True libprotoc20-3.9.2-4.9.1.ppc64le.rpm True libsolv-demo-0.7.20-9.2.ppc64le.rpm True libsolv-devel-0.7.20-9.2.ppc64le.rpm True libsolv-tools-0.7.20-9.2.ppc64le.rpm True libzypp-17.28.5-15.2.ppc64le.rpm True libzypp-devel-17.28.5-15.2.ppc64le.rpm True libzypp-devel-doc-17.28.5-15.2.ppc64le.rpm True perl-solv-0.7.20-9.2.ppc64le.rpm True protobuf-devel-3.9.2-4.9.1.ppc64le.rpm True protobuf-java-3.9.2-4.9.1.ppc64le.rpm True python-solv-0.7.20-9.2.ppc64le.rpm True python2-protobuf-3.9.2-4.9.1.ppc64le.rpm True python3-protobuf-3.9.2-4.9.1.ppc64le.rpm True python3-solv-0.7.20-9.2.ppc64le.rpm True ruby-solv-0.7.20-9.2.ppc64le.rpm True zypper-1.14.49-16.1.ppc64le.rpm True libprotobuf-lite20-3.9.2-4.9.1.aarch64.rpm True libprotobuf20-3.9.2-4.9.1.aarch64.rpm True libprotoc20-3.9.2-4.9.1.aarch64.rpm True libsolv-demo-0.7.20-9.2.aarch64.rpm True libsolv-devel-0.7.20-9.2.aarch64.rpm True libsolv-tools-0.7.20-9.2.aarch64.rpm True libzypp-17.28.5-15.2.aarch64.rpm True libzypp-devel-17.28.5-15.2.aarch64.rpm True libzypp-devel-doc-17.28.5-15.2.aarch64.rpm True perl-solv-0.7.20-9.2.aarch64.rpm True protobuf-devel-3.9.2-4.9.1.aarch64.rpm True protobuf-java-3.9.2-4.9.1.aarch64.rpm True python-solv-0.7.20-9.2.aarch64.rpm True python2-protobuf-3.9.2-4.9.1.aarch64.rpm True python3-protobuf-3.9.2-4.9.1.aarch64.rpm True python3-solv-0.7.20-9.2.aarch64.rpm True ruby-solv-0.7.20-9.2.aarch64.rpm True zypper-1.14.49-16.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3445 important SUSE Updates openSUSE-SLE 15.3 This update for rpm fixes the following issues: Security issues fixed: - PGP hardening changes (bsc#1185299) Maintaince issues fixed: - Fixed zstd detection (bsc#1187670) - Added ndb rofs support (bsc#1188548) - Fixed deadlock when multiple rpm processes try tp acquire the database lock (bsc#1183659) python-rpm-4.14.3-40.1.src.rpm python2-rpm-4.14.3-40.1.x86_64.rpm python3-rpm-4.14.3-40.1.x86_64.rpm rpm-32bit-4.14.3-40.1.x86_64.rpm rpm-4.14.3-40.1.src.rpm rpm-4.14.3-40.1.x86_64.rpm rpm-build-4.14.3-40.1.x86_64.rpm rpm-devel-4.14.3-40.1.x86_64.rpm rpm-ndb-32bit-4.14.3-40.1.x86_64.rpm rpm-ndb-4.14.3-40.1.src.rpm rpm-ndb-4.14.3-40.1.x86_64.rpm python2-rpm-4.14.3-40.1.s390x.rpm python3-rpm-4.14.3-40.1.s390x.rpm rpm-4.14.3-40.1.s390x.rpm rpm-build-4.14.3-40.1.s390x.rpm rpm-devel-4.14.3-40.1.s390x.rpm rpm-ndb-4.14.3-40.1.s390x.rpm python2-rpm-4.14.3-40.1.ppc64le.rpm python3-rpm-4.14.3-40.1.ppc64le.rpm rpm-4.14.3-40.1.ppc64le.rpm rpm-build-4.14.3-40.1.ppc64le.rpm rpm-devel-4.14.3-40.1.ppc64le.rpm rpm-ndb-4.14.3-40.1.ppc64le.rpm python2-rpm-4.14.3-40.1.aarch64.rpm python3-rpm-4.14.3-40.1.aarch64.rpm rpm-4.14.3-40.1.aarch64.rpm rpm-build-4.14.3-40.1.aarch64.rpm rpm-devel-4.14.3-40.1.aarch64.rpm rpm-ndb-4.14.3-40.1.aarch64.rpm openSUSE-SLE-15.3-2021-3487 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Update to go1.16.9 - CVE-2021-38297: misc/wasm, cmd/link: do not let command line args overwrite global data (bsc#1191468) go1.16-1.16.9-1.29.1.src.rpm go1.16-1.16.9-1.29.1.x86_64.rpm go1.16-doc-1.16.9-1.29.1.x86_64.rpm go1.16-race-1.16.9-1.29.1.x86_64.rpm go1.16-1.16.9-1.29.1.s390x.rpm go1.16-doc-1.16.9-1.29.1.s390x.rpm go1.16-1.16.9-1.29.1.ppc64le.rpm go1.16-doc-1.16.9-1.29.1.ppc64le.rpm go1.16-1.16.9-1.29.1.aarch64.rpm go1.16-doc-1.16.9-1.29.1.aarch64.rpm go1.16-race-1.16.9-1.29.1.aarch64.rpm openSUSE-SLE-15.3-2021-3488 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: Update to go1.17.2 - CVE-2021-38297: misc/wasm, cmd/link: do not let command line args overwrite global data (bsc#1191468) go1.17-1.17.2-1.6.2.i586.rpm go1.17-1.17.2-1.6.2.src.rpm go1.17-doc-1.17.2-1.6.2.i586.rpm go1.17-1.17.2-1.6.2.x86_64.rpm go1.17-doc-1.17.2-1.6.2.x86_64.rpm go1.17-race-1.17.2-1.6.2.x86_64.rpm go1.17-1.17.2-1.6.2.s390x.rpm go1.17-doc-1.17.2-1.6.2.s390x.rpm go1.17-1.17.2-1.6.2.ppc64le.rpm go1.17-doc-1.17.2-1.6.2.ppc64le.rpm go1.17-1.17.2-1.6.2.aarch64.rpm go1.17-doc-1.17.2-1.6.2.aarch64.rpm go1.17-race-1.17.2-1.6.2.aarch64.rpm openSUSE-SLE-15.3-2021-4150 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Update to version 91.4 MFSA 2021-54 (bsc#1193485) - CVE-2021-43536: URL leakage when navigating while executing asynchronous function - CVE-2021-43537: Heap buffer overflow when using structured clone - CVE-2021-43538: Missing fullscreen and pointer lock notification when requesting both - CVE-2021-43539: GC rooting failure when calling wasm instance methods - CVE-2021-43541: External protocol handler parameters were unescaped - CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of an external protocol handler - CVE-2021-43543: Bypass of CSP sandbox directive when embedding - CVE-2021-43545: Denial of Service when using the Location API in a loop - CVE-2021-43546: Cursor spoofing could overlay user interface when native cursor is zoomed - CVE-2021-43528: JavaScript unexpectedly enabled for the composition area - Update to version 91.3.2 - CVE-2021-40529: Fixed ElGamal implementation could allow plaintext recovery (bsc#1190244) - Update to version 91.3 MFSA 2021-50 (bsc#1192250) - CVE-2021-38503: Fixed iframe sandbox rules did not apply to XSLT stylesheets - CVE-2021-38504: Fixed use-after-free in file picker dialog - CVE-2021-38505: Fixed Windows 10 Cloud Clipboard may have recorded sensitive user data - CVE-2021-38506: Fixed Thunderbird could be coaxed into going into fullscreen mode without notification or warning - CVE-2021-38507: Fixed opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports - CVE-2021-38508: Fixed permission Prompt could be overlaid, resulting in user confusion and potential spoofing - CVE-2021-38509: Fixed Javascript alert box could have been spoofed onto an arbitrary domain - CVE-2021-38510: Fixed Download Protections were bypassed by .inetloc files on Mac OS - Fixed plain text reformatting regression (bsc#1182863) - Update to version 91.2 MFSA 2021-47 (bsc#1191332) - CVE-2021-29981: Live range splitting could have led to conflicting assignments in the JIT - CVE-2021-29982: Single bit data leak due to incorrect JIT optimization and type confusion - CVE-2021-29987: Users could have been tricked into accepting unwanted permissions on Linux - CVE-2021-32810: Data race in crossbeam-deque - CVE-2021-38493: Memory safety bugs fixed in Thunderbird 78.14 and Thunderbird 91.1 - CVE-2021-38496: Use-after-free in MessageTask - CVE-2021-38497: Validation message could have been overlaid on another origin - CVE-2021-38498: Use-after-free of nsLanguageAtomService object - CVE-2021-38500: Memory safety bugs fixed in Thunderbird 91.2 - CVE-2021-38501: Memory safety bugs fixed in Thunderbird 91.2 - CVE-2021-38502: Downgrade attack on SMTP STARTTLS connections - Update to version 91.1.0 MFSA 2021-41 (bsc#1190269) - CVE-2021-38492: Navigating to `mk:` URL scheme could load Internet Explorer - CVE-2021-38495: Memory safety bugs fixed in Thunderbird 91.1 - Update to version 91.0.1 MFSA 2021-37 (bsc#1189547) - CVE-2021-29991: Header Splitting possible with HTTP/3 Responses MozillaThunderbird-91.4.0-8.45.2.src.rpm MozillaThunderbird-91.4.0-8.45.2.x86_64.rpm MozillaThunderbird-translations-common-91.4.0-8.45.2.x86_64.rpm MozillaThunderbird-translations-other-91.4.0-8.45.2.x86_64.rpm MozillaThunderbird-91.4.0-8.45.2.s390x.rpm MozillaThunderbird-translations-common-91.4.0-8.45.2.s390x.rpm MozillaThunderbird-translations-other-91.4.0-8.45.2.s390x.rpm MozillaThunderbird-91.4.0-8.45.2.ppc64le.rpm MozillaThunderbird-translations-common-91.4.0-8.45.2.ppc64le.rpm MozillaThunderbird-translations-other-91.4.0-8.45.2.ppc64le.rpm MozillaThunderbird-91.4.0-8.45.2.aarch64.rpm MozillaThunderbird-translations-common-91.4.0-8.45.2.aarch64.rpm MozillaThunderbird-translations-other-91.4.0-8.45.2.aarch64.rpm openSUSE-SLE-15.3-2021-3496 low SUSE Updates openSUSE-SLE 15.3 This update for bash-completion fixes the following issue: - modinfo completion fails to recognize .ko.xz (bsc#1190929) bash-completion-2.7-4.6.1.noarch.rpm bash-completion-2.7-4.6.1.src.rpm bash-completion-devel-2.7-4.6.1.noarch.rpm bash-completion-doc-2.7-4.6.1.noarch.rpm bash-completion-doc-2.7-4.6.1.src.rpm openSUSE-SLE-15.3-2021-3498 low SUSE Updates openSUSE-SLE 15.3 This update for texlive-specs-i fixes the following issue: - Fix "undefined control sequence" error when using with XeLaTeX (bsc#1190640) texlive-eqnarray-2017.133.1.3svn20641-7.3.1.noarch.rpm texlive-eqnarray-doc-2017.133.1.3svn20641-7.3.1.noarch.rpm texlive-eqparbox-2017.133.4.0svn29419-7.3.1.noarch.rpm texlive-eqparbox-doc-2017.133.4.0svn29419-7.3.1.noarch.rpm texlive-erdc-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-erdc-doc-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-erewhon-2017.133.1.08svn43506-7.3.1.noarch.rpm texlive-erewhon-doc-2017.133.1.08svn43506-7.3.1.noarch.rpm texlive-erewhon-fonts-2017.133.1.08svn43506-7.3.1.noarch.rpm texlive-errata-2017.133.0.0.3svn42428-7.3.1.noarch.rpm texlive-errata-doc-2017.133.0.0.3svn42428-7.3.1.noarch.rpm texlive-es-tex-faq-2017.133.1.97svn15878-7.3.1.noarch.rpm texlive-esami-2017.133.2.1svn41774-7.3.1.noarch.rpm texlive-esami-doc-2017.133.2.1svn41774-7.3.1.noarch.rpm texlive-esdiff-2017.133.1.2svn21385-7.3.1.noarch.rpm texlive-esdiff-doc-2017.133.1.2svn21385-7.3.1.noarch.rpm texlive-esint-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-esint-doc-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-esint-type1-2017.133.svn15878-7.3.1.noarch.rpm texlive-esint-type1-doc-2017.133.svn15878-7.3.1.noarch.rpm texlive-esint-type1-fonts-2017.133.svn15878-7.3.1.noarch.rpm texlive-esk-2017.133.1.0svn18115-7.3.1.noarch.rpm texlive-esk-doc-2017.133.1.0svn18115-7.3.1.noarch.rpm texlive-eskd-2017.133.svn15878-7.3.1.noarch.rpm texlive-eskd-doc-2017.133.svn15878-7.3.1.noarch.rpm texlive-eskdx-2017.133.0.0.98svn29235-7.3.1.noarch.rpm texlive-eskdx-doc-2017.133.0.0.98svn29235-7.3.1.noarch.rpm texlive-eso-pic-2017.133.2.0gsvn37925-7.3.1.noarch.rpm texlive-eso-pic-doc-2017.133.2.0gsvn37925-7.3.1.noarch.rpm texlive-esrelation-2017.133.svn37236-7.3.1.noarch.rpm texlive-esrelation-doc-2017.133.svn37236-7.3.1.noarch.rpm texlive-esrelation-fonts-2017.133.svn37236-7.3.1.noarch.rpm texlive-esstix-2017.133.1.0svn22426-7.3.1.noarch.rpm texlive-esstix-doc-2017.133.1.0svn22426-7.3.1.noarch.rpm texlive-esstix-fonts-2017.133.1.0svn22426-7.3.1.noarch.rpm texlive-estcpmm-2017.133.0.0.4svn17335-7.3.1.noarch.rpm texlive-estcpmm-doc-2017.133.0.0.4svn17335-7.3.1.noarch.rpm texlive-esvect-2017.133.1.3svn32098-7.3.1.noarch.rpm texlive-esvect-doc-2017.133.1.3svn32098-7.3.1.noarch.rpm texlive-esvect-fonts-2017.133.1.3svn32098-7.3.1.noarch.rpm texlive-etaremune-2017.133.1.2svn15878-7.3.1.noarch.rpm texlive-etaremune-doc-2017.133.1.2svn15878-7.3.1.noarch.rpm texlive-etdipa-2017.133.2.6svn36354-7.3.1.noarch.rpm texlive-etex-2017.133.svn37057-7.3.1.noarch.rpm texlive-etex-doc-2017.133.svn37057-7.3.1.noarch.rpm texlive-etex-pkg-2017.133.2.7svn41784-7.3.1.noarch.rpm texlive-etex-pkg-doc-2017.133.2.7svn41784-7.3.1.noarch.rpm texlive-etextools-2017.133.3.1415926svn20694-7.3.1.noarch.rpm texlive-etextools-doc-2017.133.3.1415926svn20694-7.3.1.noarch.rpm texlive-ethiop-2017.133.0.0.7svn15878-7.3.1.noarch.rpm texlive-ethiop-doc-2017.133.0.0.7svn15878-7.3.1.noarch.rpm texlive-ethiop-t1-2017.133.svn15878-7.3.1.noarch.rpm texlive-ethiop-t1-doc-2017.133.svn15878-7.3.1.noarch.rpm texlive-ethiop-t1-fonts-2017.133.svn15878-7.3.1.noarch.rpm texlive-etoc-2017.133.1.08isvn42182-7.3.1.noarch.rpm texlive-etoc-doc-2017.133.1.08isvn42182-7.3.1.noarch.rpm texlive-etoolbox-2017.133.2.4svn42855-7.3.1.noarch.rpm texlive-etoolbox-de-2017.133.1svn21906-7.3.1.noarch.rpm texlive-etoolbox-doc-2017.133.2.4svn42855-7.3.1.noarch.rpm texlive-euenc-2017.133.0.0.1hsvn19795-7.3.1.noarch.rpm texlive-euenc-doc-2017.133.0.0.1hsvn19795-7.3.1.noarch.rpm texlive-eukdate-2017.133.1.04svn15878-7.3.1.noarch.rpm texlive-eukdate-doc-2017.133.1.04svn15878-7.3.1.noarch.rpm texlive-euler-2017.133.2.5svn42428-7.3.1.noarch.rpm texlive-euler-doc-2017.133.2.5svn42428-7.3.1.noarch.rpm texlive-eulerpx-2017.133.0.0.2.1svn43735-7.3.1.noarch.rpm texlive-eulerpx-doc-2017.133.0.0.2.1svn43735-7.3.1.noarch.rpm texlive-eulervm-2017.133.4.0svn15878-7.3.1.noarch.rpm texlive-eulervm-doc-2017.133.4.0svn15878-7.3.1.noarch.rpm texlive-euro-2017.133.1.1svn22191-7.3.1.noarch.rpm texlive-euro-ce-2017.133.3.0bsvn25714-7.3.1.noarch.rpm texlive-euro-ce-doc-2017.133.3.0bsvn25714-7.3.1.noarch.rpm texlive-euro-doc-2017.133.1.1svn22191-7.3.1.noarch.rpm texlive-europasscv-2017.133.svn43033-7.3.1.noarch.rpm texlive-europasscv-doc-2017.133.svn43033-7.3.1.noarch.rpm texlive-europecv-2017.133.svn34454-7.3.1.noarch.rpm texlive-europecv-doc-2017.133.svn34454-7.3.1.noarch.rpm texlive-eurosym-2017.133.1.4_subrfixsvn17265-7.3.1.noarch.rpm texlive-eurosym-doc-2017.133.1.4_subrfixsvn17265-7.3.1.noarch.rpm texlive-eurosym-fonts-2017.133.1.4_subrfixsvn17265-7.3.1.noarch.rpm texlive-euxm-2017.133.svn20202-7.3.1.noarch.rpm texlive-everyhook-2017.133.1.2svn35675-7.3.1.noarch.rpm texlive-everyhook-doc-2017.133.1.2svn35675-7.3.1.noarch.rpm texlive-everypage-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-everypage-doc-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-exam-2017.133.2.5svn37279-7.3.1.noarch.rpm texlive-exam-doc-2017.133.2.5svn37279-7.3.1.noarch.rpm texlive-exam-n-2017.133.1.1.4svn42755-7.3.1.noarch.rpm texlive-exam-n-doc-2017.133.1.1.4svn42755-7.3.1.noarch.rpm texlive-examdesign-2017.133.1.101svn15878-7.3.1.noarch.rpm texlive-examdesign-doc-2017.133.1.101svn15878-7.3.1.noarch.rpm texlive-example-2017.133.svn33398-7.3.1.noarch.rpm texlive-examplep-2017.133.0.0.04svn16916-7.3.1.noarch.rpm texlive-examplep-doc-2017.133.0.0.04svn16916-7.3.1.noarch.rpm texlive-exceltex-2017.133.0.0.5.1svn26313-7.3.1.noarch.rpm texlive-exceltex-doc-2017.133.0.0.5.1svn26313-7.3.1.noarch.rpm texlive-excludeonly-2017.133.1.0svn17262-7.3.1.noarch.rpm texlive-excludeonly-doc-2017.133.1.0svn17262-7.3.1.noarch.rpm texlive-exercise-2017.133.1.6svn35417-7.3.1.noarch.rpm texlive-exercise-doc-2017.133.1.6svn35417-7.3.1.noarch.rpm texlive-exercises-2017.133.1.0svn42428-7.3.1.noarch.rpm texlive-exercises-doc-2017.133.1.0svn42428-7.3.1.noarch.rpm texlive-exp-testopt-2017.133.0.0.3svn15878-7.3.1.noarch.rpm texlive-exp-testopt-doc-2017.133.0.0.3svn15878-7.3.1.noarch.rpm texlive-expdlist-2017.133.2.4svn15878-7.3.1.noarch.rpm texlive-expdlist-doc-2017.133.2.4svn15878-7.3.1.noarch.rpm texlive-expex-2017.133.5.1bsvn44499-7.3.1.noarch.rpm texlive-expex-doc-2017.133.5.1bsvn44499-7.3.1.noarch.rpm texlive-export-2017.133.1.8svn27206-7.3.1.noarch.rpm texlive-export-doc-2017.133.1.8svn27206-7.3.1.noarch.rpm texlive-expressg-2017.133.1.5svn29349-7.3.1.noarch.rpm texlive-expressg-doc-2017.133.1.5svn29349-7.3.1.noarch.rpm texlive-exsheets-2017.133.0.0.21isvn43188-7.3.1.noarch.rpm texlive-exsheets-doc-2017.133.0.0.21isvn43188-7.3.1.noarch.rpm texlive-exsol-2017.133.1.2svn41377-7.3.1.noarch.rpm texlive-exsol-doc-2017.133.1.2svn41377-7.3.1.noarch.rpm texlive-extarrows-2017.133.1.0bsvn15878-7.3.1.noarch.rpm texlive-extarrows-doc-2017.133.1.0bsvn15878-7.3.1.noarch.rpm texlive-exteps-2017.133.0.0.41svn19859-7.3.1.noarch.rpm texlive-exteps-doc-2017.133.0.0.41svn19859-7.3.1.noarch.rpm texlive-extpfeil-2017.133.0.0.4svn16243-7.3.1.noarch.rpm texlive-extpfeil-doc-2017.133.0.0.4svn16243-7.3.1.noarch.rpm texlive-extract-2017.133.1.8svn15878-7.3.1.noarch.rpm texlive-extract-doc-2017.133.1.8svn15878-7.3.1.noarch.rpm texlive-extsizes-2017.133.1.4asvn17263-7.3.1.noarch.rpm texlive-extsizes-doc-2017.133.1.4asvn17263-7.3.1.noarch.rpm texlive-facsimile-2017.133.1.0svn21328-7.3.1.noarch.rpm texlive-facsimile-doc-2017.133.1.0svn21328-7.3.1.noarch.rpm texlive-factura-2017.133.3.00svn43470-7.3.1.noarch.rpm texlive-factura-doc-2017.133.3.00svn43470-7.3.1.noarch.rpm texlive-facture-2017.133.1.2.2svn43865-7.3.1.noarch.rpm texlive-facture-doc-2017.133.1.2.2svn43865-7.3.1.noarch.rpm texlive-faktor-2017.133.0.0.1bsvn15878-7.3.1.noarch.rpm texlive-faktor-doc-2017.133.0.0.1bsvn15878-7.3.1.noarch.rpm texlive-fancybox-2017.133.1.4svn18304-7.3.1.noarch.rpm texlive-fancybox-doc-2017.133.1.4svn18304-7.3.1.noarch.rpm texlive-fancyhdr-2017.133.3.9svn44479-7.3.1.noarch.rpm texlive-fancyhdr-doc-2017.133.3.9svn44479-7.3.1.noarch.rpm texlive-fancyhdr-it-2017.133.svn21912-7.3.1.noarch.rpm texlive-fancylabel-2017.133.1.0svn34684-7.3.1.noarch.rpm texlive-fancylabel-doc-2017.133.1.0svn34684-7.3.1.noarch.rpm texlive-fancynum-2017.133.0.0.92svn15878-7.3.1.noarch.rpm texlive-fancynum-doc-2017.133.0.0.92svn15878-7.3.1.noarch.rpm texlive-fancypar-2017.133.1.1svn18018-7.3.1.noarch.rpm texlive-fancypar-doc-2017.133.1.1svn18018-7.3.1.noarch.rpm texlive-fancyref-2017.133.0.0.9csvn15878-7.3.1.noarch.rpm texlive-fancyref-doc-2017.133.0.0.9csvn15878-7.3.1.noarch.rpm texlive-fancyslides-2017.133.1.0svn36263-7.3.1.noarch.rpm texlive-fancyslides-doc-2017.133.1.0svn36263-7.3.1.noarch.rpm texlive-fancytabs-2017.133.1.9svn41549-7.3.1.noarch.rpm texlive-fancytabs-doc-2017.133.1.9svn41549-7.3.1.noarch.rpm texlive-fancytooltips-2017.133.1.8svn27129-7.3.1.noarch.rpm texlive-fancytooltips-doc-2017.133.1.8svn27129-7.3.1.noarch.rpm texlive-fancyvrb-2017.133.2.8svn18492-7.3.1.noarch.rpm texlive-fancyvrb-doc-2017.133.2.8svn18492-7.3.1.noarch.rpm texlive-fandol-2017.133.0.0.3svn37889-7.3.1.noarch.rpm texlive-fandol-doc-2017.133.0.0.3svn37889-7.3.1.noarch.rpm texlive-fandol-fonts-2017.133.0.0.3svn37889-7.3.1.noarch.rpm texlive-fast-diagram-2017.133.1.1svn29264-7.3.1.noarch.rpm texlive-fast-diagram-doc-2017.133.1.1svn29264-7.3.1.noarch.rpm texlive-fbb-2017.133.1.12svn43464-7.3.1.noarch.rpm texlive-fbb-doc-2017.133.1.12svn43464-7.3.1.noarch.rpm texlive-fbb-fonts-2017.133.1.12svn43464-7.3.1.noarch.rpm texlive-fbithesis-2017.133.1.2msvn21340-7.3.1.noarch.rpm texlive-fbithesis-doc-2017.133.1.2msvn21340-7.3.1.noarch.rpm texlive-fbs-2017.133.svn15878-7.3.1.noarch.rpm texlive-fc-2017.133.1.4svn32796-7.3.1.noarch.rpm texlive-fc-doc-2017.133.1.4svn32796-7.3.1.noarch.rpm texlive-fcavtex-2017.133.1.1svn38074-7.3.1.noarch.rpm texlive-fcavtex-doc-2017.133.1.1svn38074-7.3.1.noarch.rpm texlive-fcltxdoc-2017.133.1.0svn24500-7.3.1.noarch.rpm texlive-fcltxdoc-doc-2017.133.1.0svn24500-7.3.1.noarch.rpm texlive-fcolumn-2017.133.1.1.1svn38489-7.3.1.noarch.rpm texlive-fcolumn-doc-2017.133.1.1.1svn38489-7.3.1.noarch.rpm texlive-fdsymbol-2017.133.0.0.8svn26722-7.3.1.noarch.rpm texlive-fdsymbol-doc-2017.133.0.0.8svn26722-7.3.1.noarch.rpm texlive-fdsymbol-fonts-2017.133.0.0.8svn26722-7.3.1.noarch.rpm texlive-featpost-2017.133.0.0.8.8svn35346-7.3.1.noarch.rpm texlive-featpost-doc-2017.133.0.0.8.8svn35346-7.3.1.noarch.rpm texlive-fei-2017.133.3.0.6svn43630-7.3.1.noarch.rpm texlive-fei-doc-2017.133.3.0.6svn43630-7.3.1.noarch.rpm texlive-fenixpar-2017.133.0.0.92svn24730-7.3.1.noarch.rpm texlive-fenixpar-doc-2017.133.0.0.92svn24730-7.3.1.noarch.rpm texlive-fetamont-2017.133.svn43812-7.3.1.noarch.rpm texlive-fetamont-doc-2017.133.svn43812-7.3.1.noarch.rpm texlive-fetamont-fonts-2017.133.svn43812-7.3.1.noarch.rpm texlive-feupphdteses-2017.133.4.0svn30962-7.3.1.noarch.rpm texlive-feupphdteses-doc-2017.133.4.0svn30962-7.3.1.noarch.rpm texlive-feyn-2017.133.0.0.3.3svn15878-7.3.1.noarch.rpm texlive-feyn-doc-2017.133.0.0.3.3svn15878-7.3.1.noarch.rpm texlive-feynmf-2017.133.1.08svn17259-7.3.1.noarch.rpm texlive-feynmf-doc-2017.133.1.08svn17259-7.3.1.noarch.rpm texlive-feynmp-auto-2017.133.1.1svn30223-7.3.1.noarch.rpm texlive-feynmp-auto-doc-2017.133.1.1svn30223-7.3.1.noarch.rpm texlive-ffslides-2017.133.svn38895-7.3.1.noarch.rpm texlive-ffslides-doc-2017.133.svn38895-7.3.1.noarch.rpm texlive-fge-2017.133.1.25svn37628-7.3.1.noarch.rpm texlive-fge-doc-2017.133.1.25svn37628-7.3.1.noarch.rpm texlive-fge-fonts-2017.133.1.25svn37628-7.3.1.noarch.rpm texlive-fgruler-2017.133.1.0svn42966-7.3.1.noarch.rpm texlive-fgruler-doc-2017.133.1.0svn42966-7.3.1.noarch.rpm texlive-fibeamer-2017.133.1.1.7svn44239-7.3.1.noarch.rpm texlive-fibeamer-doc-2017.133.1.1.7svn44239-7.3.1.noarch.rpm texlive-fifinddo-info-2017.133.1.1bsvn29349-7.3.1.noarch.rpm texlive-fifinddo-info-doc-2017.133.1.1bsvn29349-7.3.1.noarch.rpm texlive-fifo-stack-2017.133.1.0svn33288-7.3.1.noarch.rpm texlive-fifo-stack-doc-2017.133.1.0svn33288-7.3.1.noarch.rpm texlive-fig4latex-2017.133.0.0.2svn26313-7.3.1.noarch.rpm texlive-fig4latex-doc-2017.133.0.0.2svn26313-7.3.1.noarch.rpm texlive-figbas-2017.133.1.0.3svn28943-7.3.1.noarch.rpm texlive-figbas-doc-2017.133.1.0.3svn28943-7.3.1.noarch.rpm texlive-figbas-fonts-2017.133.1.0.3svn28943-7.3.1.noarch.rpm texlive-figbib-2017.133.svn19388-7.3.1.noarch.rpm texlive-figbib-doc-2017.133.svn19388-7.3.1.noarch.rpm texlive-figflow-2017.133.svn21462-7.3.1.noarch.rpm texlive-figflow-doc-2017.133.svn21462-7.3.1.noarch.rpm texlive-figsize-2017.133.0.0.1svn18784-7.3.1.noarch.rpm texlive-figsize-doc-2017.133.0.0.1svn18784-7.3.1.noarch.rpm texlive-filecontents-2017.133.1.3svn24250-7.3.1.noarch.rpm texlive-filecontents-doc-2017.133.1.3svn24250-7.3.1.noarch.rpm texlive-filecontentsdef-2017.133.1.2svn42107-7.3.1.noarch.rpm texlive-filecontentsdef-doc-2017.133.1.2svn42107-7.3.1.noarch.rpm texlive-filedate-2017.133.svn29529-7.3.1.noarch.rpm texlive-filedate-doc-2017.133.svn29529-7.3.1.noarch.rpm texlive-filehook-2017.133.0.0.5dsvn24280-7.3.1.noarch.rpm texlive-filehook-doc-2017.133.0.0.5dsvn24280-7.3.1.noarch.rpm texlive-fileinfo-2017.133.0.0.81asvn28421-7.3.1.noarch.rpm texlive-fileinfo-doc-2017.133.0.0.81asvn28421-7.3.1.noarch.rpm texlive-filemod-2017.133.1.2svn24042-7.3.1.noarch.rpm texlive-filemod-doc-2017.133.1.2svn24042-7.3.1.noarch.rpm texlive-finbib-2017.133.svn15878-7.3.1.noarch.rpm texlive-findhyph-2017.133.3.4svn38674-7.3.1.noarch.rpm texlive-findhyph-doc-2017.133.3.4svn38674-7.3.1.noarch.rpm texlive-fink-2017.133.2.2.1svn24329-7.3.1.noarch.rpm texlive-fink-doc-2017.133.2.2.1svn24329-7.3.1.noarch.rpm texlive-finstrut-2017.133.0.0.5svn21719-7.3.1.noarch.rpm texlive-finstrut-doc-2017.133.0.0.5svn21719-7.3.1.noarch.rpm texlive-fira-2017.133.4.2svn42501-7.3.1.noarch.rpm texlive-fira-doc-2017.133.4.2svn42501-7.3.1.noarch.rpm texlive-fira-fonts-2017.133.4.2svn42501-7.3.1.noarch.rpm texlive-first-latex-doc-2017.133.svn15878-7.3.1.noarch.rpm texlive-fitbox-2017.133.1.00svn38139-7.3.1.noarch.rpm texlive-fitbox-doc-2017.133.1.00svn38139-7.3.1.noarch.rpm texlive-fithesis-2017.133.0.0.3.46svn44472-7.3.1.noarch.rpm texlive-fithesis-doc-2017.133.0.0.3.46svn44472-7.3.1.noarch.rpm texlive-fix2col-2017.133.0.0.04svn38770-7.3.1.noarch.rpm texlive-fix2col-doc-2017.133.0.0.04svn38770-7.3.1.noarch.rpm texlive-fixcmex-2017.133.1.0svn38816-7.3.1.noarch.rpm texlive-fixcmex-doc-2017.133.1.0svn38816-7.3.1.noarch.rpm texlive-fixfoot-2017.133.0.0.3asvn17131-7.3.1.noarch.rpm texlive-fixfoot-doc-2017.133.0.0.3asvn17131-7.3.1.noarch.rpm texlive-fixlatvian-2017.133.1asvn21631-7.3.1.noarch.rpm texlive-fixlatvian-doc-2017.133.1asvn21631-7.3.1.noarch.rpm texlive-specs-i-2017-7.3.1.src.rpm openSUSE-SLE-15.3-2021-3534 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - Drop unformatted log message about log permissions. (bsc#1190821) libpacemaker-devel-2.0.5+20201202.ba59be712-4.13.1.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.13.1.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-4.13.1.src.rpm pacemaker-2.0.5+20201202.ba59be712-4.13.1.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.13.1.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-4.13.1.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.13.1.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.13.1.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.13.1.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-4.13.1.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.13.1.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.13.1.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.13.1.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.13.1.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-4.13.1.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.13.1.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.13.1.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.13.1.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.13.1.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-4.13.1.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.13.1.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-3542 moderate SUSE Updates openSUSE-SLE 15.3 This update for openscap fixes the following issues: - Since upstream has moved to Python 3, switch the BuildRequires from 'python-devel' to 'python3-devel'. - Add definitions for SUSE Linux Enterprise Server, SUSE Linux Enterprise Desktop, openSUSE Tumbleweed, openSUSE Leap and Fedora to the CPE dictionary. (bsc#1186735) - Add updated definitions for openSUSE Tumbleweed, openSUSE Leap and Wind River Linux using the Open Vulnerability and Assessment Language. (bsc#1186735) - openscap 1.3.5 - New features - Made 'schematron-based' validation enabled by default for validate command of 'oval' and 'xccdf' modules - Added SCAP 1.3 source data stream Schematron - Added XML Signature Validation - Added '--enforce-signature' option for eval, guide, and fix modules - Added <content> entity support (OVAL/yamlfilecontent) - Allowed to clamp mtime to SOURCE_DATE_EPOCH - Added severity and role attributes - Added support for requires/conflicts elements of the Rule and Group (XCCDF) - Added Kubernetes remediation to HTML report - Maintenance, bug fix - Fixed CMake warnings - Made 'gpfs', 'proc' and 'sysfs' filesystems non-local - Fixed handling of '--arg=val'-styled common options - Documented used environment variables - Updated man page and help texts - Added '--skip-validation' option synonym for '--skip-valid' - Fixed behavior of StateType operator - Fixed coverity warnings - Ignoring namespace in XPath expressions - Fixed how 'oval_probe_ext_eval' checks absence of the response from the probe (obtrusive data warning) - Described SWID tags detection - Improved documentation about '--stig-viewer' option - File probe behaviour fixed (symlink traversal now behaves as defined by OVAL) - Fixed multiple segfaults and broken test in '--stig-viewer' feature - Added dpkg version comparison algorithm - Fixed 'TestResult/benchmark/@href' attribute - Fixed memory allocation - Fixed field names for cases where key selection section is followed by a set section (probes/yamfilecontent) - Changing hard coded libperl path in favor of FindPerlLibs method - Check local filesystems when using 'filepath' element libopenscap25-1.3.5-3.6.1.x86_64.rpm libopenscap_sce25-1.3.5-3.6.1.x86_64.rpm openscap-1.3.5-3.6.1.src.rpm openscap-1.3.5-3.6.1.x86_64.rpm openscap-content-1.3.5-3.6.1.x86_64.rpm openscap-devel-1.3.5-3.6.1.x86_64.rpm openscap-docker-1.3.5-3.6.1.x86_64.rpm openscap-utils-1.3.5-3.6.1.x86_64.rpm libopenscap25-1.3.5-3.6.1.s390x.rpm libopenscap_sce25-1.3.5-3.6.1.s390x.rpm openscap-1.3.5-3.6.1.s390x.rpm openscap-content-1.3.5-3.6.1.s390x.rpm openscap-devel-1.3.5-3.6.1.s390x.rpm openscap-docker-1.3.5-3.6.1.s390x.rpm openscap-utils-1.3.5-3.6.1.s390x.rpm libopenscap25-1.3.5-3.6.1.ppc64le.rpm libopenscap_sce25-1.3.5-3.6.1.ppc64le.rpm openscap-1.3.5-3.6.1.ppc64le.rpm openscap-content-1.3.5-3.6.1.ppc64le.rpm openscap-devel-1.3.5-3.6.1.ppc64le.rpm openscap-docker-1.3.5-3.6.1.ppc64le.rpm openscap-utils-1.3.5-3.6.1.ppc64le.rpm libopenscap25-1.3.5-3.6.1.aarch64.rpm libopenscap_sce25-1.3.5-3.6.1.aarch64.rpm openscap-1.3.5-3.6.1.aarch64.rpm openscap-content-1.3.5-3.6.1.aarch64.rpm openscap-devel-1.3.5-3.6.1.aarch64.rpm openscap-docker-1.3.5-3.6.1.aarch64.rpm openscap-utils-1.3.5-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3467 important SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: A feature was added: - Add auth_els plugin to support Marvell FC-SP encryption (jsc#SLE-20151) Security issues fixed: - CVE-2021-41991: Fixed an integer overflow when replacing certificates in cache. (bsc#1191435) - CVE-2021-41990: Fixed an integer Overflow in the gmp Plugin. (bsc#1191367) strongswan-5.8.2-11.21.1.src.rpm strongswan-5.8.2-11.21.1.x86_64.rpm strongswan-doc-5.8.2-11.21.1.noarch.rpm strongswan-hmac-5.8.2-11.21.1.x86_64.rpm strongswan-ipsec-5.8.2-11.21.1.x86_64.rpm strongswan-libs0-5.8.2-11.21.1.x86_64.rpm strongswan-mysql-5.8.2-11.21.1.x86_64.rpm strongswan-nm-5.8.2-11.21.1.x86_64.rpm strongswan-sqlite-5.8.2-11.21.1.x86_64.rpm strongswan-5.8.2-11.21.1.s390x.rpm strongswan-hmac-5.8.2-11.21.1.s390x.rpm strongswan-ipsec-5.8.2-11.21.1.s390x.rpm strongswan-libs0-5.8.2-11.21.1.s390x.rpm strongswan-mysql-5.8.2-11.21.1.s390x.rpm strongswan-nm-5.8.2-11.21.1.s390x.rpm strongswan-sqlite-5.8.2-11.21.1.s390x.rpm strongswan-5.8.2-11.21.1.ppc64le.rpm strongswan-hmac-5.8.2-11.21.1.ppc64le.rpm strongswan-ipsec-5.8.2-11.21.1.ppc64le.rpm strongswan-libs0-5.8.2-11.21.1.ppc64le.rpm strongswan-mysql-5.8.2-11.21.1.ppc64le.rpm strongswan-nm-5.8.2-11.21.1.ppc64le.rpm strongswan-sqlite-5.8.2-11.21.1.ppc64le.rpm strongswan-5.8.2-11.21.1.aarch64.rpm strongswan-hmac-5.8.2-11.21.1.aarch64.rpm strongswan-ipsec-5.8.2-11.21.1.aarch64.rpm strongswan-libs0-5.8.2-11.21.1.aarch64.rpm strongswan-mysql-5.8.2-11.21.1.aarch64.rpm strongswan-nm-5.8.2-11.21.1.aarch64.rpm strongswan-sqlite-5.8.2-11.21.1.aarch64.rpm openSUSE-SLE-15.3-2021-3490 moderate SUSE Updates openSUSE-SLE 15.3 This update for ncurses fixes the following issues: - CVE-2021-39537: Fixed an heap-based buffer overflow in _nc_captoinfo. (bsc#1190793) libncurses5-32bit-6.1-5.9.1.x86_64.rpm libncurses5-6.1-5.9.1.x86_64.rpm libncurses6-32bit-6.1-5.9.1.x86_64.rpm libncurses6-6.1-5.9.1.x86_64.rpm ncurses-6.1-5.9.1.src.rpm ncurses-devel-32bit-6.1-5.9.1.x86_64.rpm ncurses-devel-6.1-5.9.1.x86_64.rpm ncurses-utils-6.1-5.9.1.x86_64.rpm ncurses5-devel-32bit-6.1-5.9.1.x86_64.rpm ncurses5-devel-6.1-5.9.1.x86_64.rpm tack-6.1-5.9.1.x86_64.rpm terminfo-6.1-5.9.1.x86_64.rpm terminfo-base-6.1-5.9.1.x86_64.rpm terminfo-iterm-6.1-5.9.1.x86_64.rpm terminfo-screen-6.1-5.9.1.x86_64.rpm libncurses5-6.1-5.9.1.s390x.rpm libncurses6-6.1-5.9.1.s390x.rpm ncurses-devel-6.1-5.9.1.s390x.rpm ncurses-utils-6.1-5.9.1.s390x.rpm ncurses5-devel-6.1-5.9.1.s390x.rpm tack-6.1-5.9.1.s390x.rpm terminfo-6.1-5.9.1.s390x.rpm terminfo-base-6.1-5.9.1.s390x.rpm terminfo-iterm-6.1-5.9.1.s390x.rpm terminfo-screen-6.1-5.9.1.s390x.rpm libncurses5-6.1-5.9.1.ppc64le.rpm libncurses6-6.1-5.9.1.ppc64le.rpm ncurses-devel-6.1-5.9.1.ppc64le.rpm ncurses-utils-6.1-5.9.1.ppc64le.rpm ncurses5-devel-6.1-5.9.1.ppc64le.rpm tack-6.1-5.9.1.ppc64le.rpm terminfo-6.1-5.9.1.ppc64le.rpm terminfo-base-6.1-5.9.1.ppc64le.rpm terminfo-iterm-6.1-5.9.1.ppc64le.rpm terminfo-screen-6.1-5.9.1.ppc64le.rpm libncurses5-6.1-5.9.1.aarch64.rpm libncurses6-6.1-5.9.1.aarch64.rpm ncurses-devel-6.1-5.9.1.aarch64.rpm ncurses-utils-6.1-5.9.1.aarch64.rpm ncurses5-devel-6.1-5.9.1.aarch64.rpm tack-6.1-5.9.1.aarch64.rpm terminfo-6.1-5.9.1.aarch64.rpm terminfo-base-6.1-5.9.1.aarch64.rpm terminfo-iterm-6.1-5.9.1.aarch64.rpm terminfo-screen-6.1-5.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3483 moderate SUSE Updates openSUSE-SLE 15.3 This update for saptune fixes the following issues: Update saptune from version 2.0.3 to version 3.0.0 (jsc#SLE-20985) - This will be additional reflected in the saptune version found in '/etc/sysconfig/saptune' '(SAPTUNE_VERSION)' - Strengthen configuration process with staging, checks of external changes and expansion of automation to new platforms (Azure, AWS) and hardware specifics (jsc#SLE-20985) - Remove saptune version 1 (jsc#SLE-10823, jsc#SLE-10842) - Remove usage of 'tuned' from saptune - Add an own systemd service file for saptune to 'start/stop' tuning of parameter values during a reboot of the system. - Add a new saptune action 'service' to handle the 'saptune.service' supporting 'start/stop/enable/disable/status'. - The saptune action 'daemon', which handled 'tuned.service' in the past, is now flagged as 'deprecated' and internally linked to the new action 'service'. (jsc#SLE-5589, jsc#SLE-5588, jsc#SLE-6457) - Add a sanity check to detect Note definition files which do not exist anymore. (bsc#1149205) This can happen when a Note is renamed or deleted, but without reverting the Note before. saptune will now print an error message, remove the Note from the tracking variables in '/etc/sysconfig/saptune' and try to revert the related parameter settings. - Validate if the json input file is empty and handle left-over files from the migration from saptune v1 to saptune v2 (bsc#1167618) - To support system parameters only relevant for specific SUSE Linux Enterprise Server releases, service packs and/or hardware architectures saptune now supports 'tagged' sections inside the Note definition files. (jsc#SLE-13246, jsc#SLE-13245) - New kernel requirement for Power added to SAP-Note 2205917 and 2684254 (bsc#1167416) SAP Note 2205917 updated to Version 61 SAP Note 2684254 updated to Version 15 - SAP Note 2382421 updated to Version 37 (bsc#1170672) - Move all 'not-well-defined' parameters from the 'reminder' section into the 'sysctl' section, but with 'empty' values. - Use an override file to define the values fitting your system requirements - Support empty parameter values in the Note definition files and not only in the override file. (bsc#1170672, jsc#TEAM-1702) - This is needed for the support of SAP Notes like 2382421, so that the customer is able to simply use an override file to define some special parameters instead of using a customer specific Note definition file. - Report an 'error' instead of 'info' and set the exit code to '1', if we reject the apply of a solution (bsc#1167213) - Skip perf bias change if secure boot is enabled. (bsc#1176243) - When a system is in lockdown mode, i.e., Secure Boot is enabled, MSR cannot be altered in user-space. So check, if Secure Boot is enabled using the mokutil utility and skip setting the perf bias in case it is. - Rework the internal block device handling to speed up the apply of block device related tunings on systems with a high number of block devices. (bsc#1178207) - Change block device handling to handle multipath devices correctly. Only the DM multipath devices will be used for the settings, but not its paths. (bsc#1179275) - fixed wrong comparison used for setting FORCE_LATENCY (bsc#1185702) - add keyword 'all' to the 'rpm' section description in the man page saptune-note(5). (bsc#1182287) - support note definition versions containing digits, upper-case and lower-case letters, dots, underscores, minus and plus signs. (bsc#1182289) - fixed issue with 'verify' operation and parameter 'VSZ_TMPFS_PERCENT'. As this parameter is only used to calculate the value of 'ShmFileSystemSizeMB' (if it is not set to a value >0 in the Note definition file) it will not be checked and compared during the saptune operation 'verify'. A footnote is pointing this out. (bsc#1182009) - SAP Note 1771258 update nofile values (bsc#1164720) - SAP Note 2684254 updated to Version 20 SAP Note 2578899 updated to Version 39 SAP Note 1680803 updated to Version 26 - enhancements for saptune version 3 (jsc#SLE-16972) - Implement a lock to avoid multiple instances of saptune running in parallel. (jsc#TEAM-1700) - Support for non-colorized output (jsc#TEAM-1679) - If redirecting the output from saptune to a pipe, you no longer need to deal with the 'ugly' control sequences for the colorized output. - Add enable/disable for systemd units and support all systemd unit types in section [service] (jsc#TEAM-1701) - remove script '/usr/share/doc/packages/saptune/sapconf2saptune' and the associated man page (jsc#TEAM-1707) - implement staging of Note definition file and solution definitions. (jsc#TEAM-1844) - The idea is to freeze the saptune configuration to avoid config changes on package update when adding/removing/changing notes or solutions within the package - support custom solutions and override files for solutions. (jsc#TEAM-1706) - Partners and customers will now be able to define their own solution definitions by using files in '/etc/saptune/extra' or to override the shipped solution definitions by using override files in '/etc/saptune/override' - support for device specific configurations (jsc#TEAM-1728) - only supported for the [block] section, tags are 'vendor' and 'model' to support special block devices of a dedicated hardware vendor or a dedicated hardware model - add support for AZURE cloud (SAP Note 2993054) (jsc#TEAM-2676) - add support for AWS cloud (SAP Note 1656250) (jsc#TEAM-1754, jsc#TEAM-1755) - add NVMe support to the block device handling to support AWS (jsc#TEAM-2675) - add SAP Note 3024346 (a NetApp note) (jsc#TEAM-3454) - rework daemon and service actions (jsc#TEAM-3154) - add support for 'read_ahead_kb' and 'max_sectors_kb' to the [block] section (jsc#TEAM-1699) - add a warning to the reminder section of SAP Note 2382421 regarding iSCSI devices and setting of 'net.ipv4.tcp_syn_retries' (jsc#TEAM-1705) - For the actions 'note customise' and 'note create' check, if the customer has changed something during the editor session. If not, remove the temporary created note definition file. (jsc#TEAM-825) - add support for [sys] section and handle double configurations for parameters defined in the [sys] section (jsc#TEAM-3342) - check system sysctl config files as mentioned in the comments of '/etc/sysctl.conf' and in man page 'sysctl.conf(5)' for 'sysctl' parameters currently set by saptune notes. Print a warning and a footnote for 'verify' and 'customize'. (jsc#TEAM-1696) - add support for [filesystem] section only check filesystem mount options, not modify. Starting with filesystem type 'xfs' (jsc#TEAM-4093) - add SAP Note 900929 for SAP Netweaver workloads. (jsc#TEAM-4386) - It's the equivalent to the HANA Note 1980196. - move state files from '/var/lib/saptune' to '/run/saptune' to solve the problem of state files surviving a reboot. - add '/sbin/saptune_check' - add the description of the solution definitions shipped with saptune to the man page saptune(8) (jsc#TEAM-4260) saptune-3.0.0-8.16.1.src.rpm saptune-3.0.0-8.16.1.x86_64.rpm saptune-3.0.0-8.16.1.ppc64le.rpm openSUSE-SLE-15.3-2021-3465 moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv contains the following fixes: - Update to version 8.1.2 (bsc#1190250) + Place certificate key in proper destination - Update to version 8.1.1 (bsc#1190250) + Use a cross-filesystem compatible method to move certificates cloud-regionsrv-8.1.2-11.6.1.noarch.rpm cloud-regionsrv-8.1.2-11.6.1.src.rpm cloud-regionsrv-generic-config-1.0.0-11.6.1.noarch.rpm openSUSE-SLE-15.3-2021-3527 moderate SUSE Updates openSUSE-SLE 15.3 This update for wireguard-tools fixes the following issues: - Removed world-readable permissions from /etc/wireguard (bsc#1191224) wireguard-tools-1.0.20200827-5.9.1.src.rpm wireguard-tools-1.0.20200827-5.9.1.x86_64.rpm wireguard-tools-1.0.20200827-5.9.1.s390x.rpm wireguard-tools-1.0.20200827-5.9.1.ppc64le.rpm wireguard-tools-1.0.20200827-5.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3610 low SUSE Updates openSUSE-SLE 15.3 This update for slurm_20_11 fixes the following issue: - Adds libslurm36-debuginfo to the repositores. (bsc#1191666) libnss_slurm2_20_11-20.11.7-6.7.1.x86_64.rpm libpmi0_20_11-20.11.7-6.7.1.x86_64.rpm perl-slurm_20_11-20.11.7-6.7.1.x86_64.rpm slurm_20_11-20.11.7-6.7.1.src.rpm slurm_20_11-20.11.7-6.7.1.x86_64.rpm slurm_20_11-auth-none-20.11.7-6.7.1.x86_64.rpm slurm_20_11-config-20.11.7-6.7.1.x86_64.rpm slurm_20_11-config-man-20.11.7-6.7.1.x86_64.rpm slurm_20_11-cray-20.11.7-6.7.1.x86_64.rpm slurm_20_11-devel-20.11.7-6.7.1.x86_64.rpm slurm_20_11-doc-20.11.7-6.7.1.x86_64.rpm slurm_20_11-hdf5-20.11.7-6.7.1.x86_64.rpm slurm_20_11-lua-20.11.7-6.7.1.x86_64.rpm slurm_20_11-munge-20.11.7-6.7.1.x86_64.rpm slurm_20_11-node-20.11.7-6.7.1.x86_64.rpm slurm_20_11-openlava-20.11.7-6.7.1.x86_64.rpm slurm_20_11-pam_slurm-20.11.7-6.7.1.x86_64.rpm slurm_20_11-plugins-20.11.7-6.7.1.x86_64.rpm slurm_20_11-rest-20.11.7-6.7.1.x86_64.rpm slurm_20_11-seff-20.11.7-6.7.1.x86_64.rpm slurm_20_11-sjstat-20.11.7-6.7.1.x86_64.rpm slurm_20_11-slurmdbd-20.11.7-6.7.1.x86_64.rpm slurm_20_11-sql-20.11.7-6.7.1.x86_64.rpm slurm_20_11-sview-20.11.7-6.7.1.x86_64.rpm slurm_20_11-torque-20.11.7-6.7.1.x86_64.rpm slurm_20_11-webdoc-20.11.7-6.7.1.x86_64.rpm libnss_slurm2_20_11-20.11.7-6.7.1.s390x.rpm libpmi0_20_11-20.11.7-6.7.1.s390x.rpm perl-slurm_20_11-20.11.7-6.7.1.s390x.rpm slurm_20_11-20.11.7-6.7.1.s390x.rpm slurm_20_11-auth-none-20.11.7-6.7.1.s390x.rpm slurm_20_11-config-20.11.7-6.7.1.s390x.rpm slurm_20_11-config-man-20.11.7-6.7.1.s390x.rpm slurm_20_11-cray-20.11.7-6.7.1.s390x.rpm slurm_20_11-devel-20.11.7-6.7.1.s390x.rpm slurm_20_11-doc-20.11.7-6.7.1.s390x.rpm slurm_20_11-hdf5-20.11.7-6.7.1.s390x.rpm slurm_20_11-lua-20.11.7-6.7.1.s390x.rpm slurm_20_11-munge-20.11.7-6.7.1.s390x.rpm slurm_20_11-node-20.11.7-6.7.1.s390x.rpm slurm_20_11-openlava-20.11.7-6.7.1.s390x.rpm slurm_20_11-pam_slurm-20.11.7-6.7.1.s390x.rpm slurm_20_11-plugins-20.11.7-6.7.1.s390x.rpm slurm_20_11-rest-20.11.7-6.7.1.s390x.rpm slurm_20_11-seff-20.11.7-6.7.1.s390x.rpm slurm_20_11-sjstat-20.11.7-6.7.1.s390x.rpm slurm_20_11-slurmdbd-20.11.7-6.7.1.s390x.rpm slurm_20_11-sql-20.11.7-6.7.1.s390x.rpm slurm_20_11-sview-20.11.7-6.7.1.s390x.rpm slurm_20_11-torque-20.11.7-6.7.1.s390x.rpm slurm_20_11-webdoc-20.11.7-6.7.1.s390x.rpm libnss_slurm2_20_11-20.11.7-6.7.1.ppc64le.rpm libpmi0_20_11-20.11.7-6.7.1.ppc64le.rpm perl-slurm_20_11-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-auth-none-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-config-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-config-man-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-cray-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-devel-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-doc-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-hdf5-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-lua-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-munge-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-node-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-openlava-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-pam_slurm-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-plugins-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-rest-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-seff-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-sjstat-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-slurmdbd-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-sql-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-sview-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-torque-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-webdoc-20.11.7-6.7.1.ppc64le.rpm libnss_slurm2_20_11-20.11.7-6.7.1.aarch64.rpm libpmi0_20_11-20.11.7-6.7.1.aarch64.rpm perl-slurm_20_11-20.11.7-6.7.1.aarch64.rpm slurm_20_11-20.11.7-6.7.1.aarch64.rpm slurm_20_11-auth-none-20.11.7-6.7.1.aarch64.rpm slurm_20_11-config-20.11.7-6.7.1.aarch64.rpm slurm_20_11-config-man-20.11.7-6.7.1.aarch64.rpm slurm_20_11-cray-20.11.7-6.7.1.aarch64.rpm slurm_20_11-devel-20.11.7-6.7.1.aarch64.rpm slurm_20_11-doc-20.11.7-6.7.1.aarch64.rpm slurm_20_11-hdf5-20.11.7-6.7.1.aarch64.rpm slurm_20_11-lua-20.11.7-6.7.1.aarch64.rpm slurm_20_11-munge-20.11.7-6.7.1.aarch64.rpm slurm_20_11-node-20.11.7-6.7.1.aarch64.rpm slurm_20_11-openlava-20.11.7-6.7.1.aarch64.rpm slurm_20_11-pam_slurm-20.11.7-6.7.1.aarch64.rpm slurm_20_11-plugins-20.11.7-6.7.1.aarch64.rpm slurm_20_11-rest-20.11.7-6.7.1.aarch64.rpm slurm_20_11-seff-20.11.7-6.7.1.aarch64.rpm slurm_20_11-sjstat-20.11.7-6.7.1.aarch64.rpm slurm_20_11-slurmdbd-20.11.7-6.7.1.aarch64.rpm slurm_20_11-sql-20.11.7-6.7.1.aarch64.rpm slurm_20_11-sview-20.11.7-6.7.1.aarch64.rpm slurm_20_11-torque-20.11.7-6.7.1.aarch64.rpm slurm_20_11-webdoc-20.11.7-6.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3570 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-installation fixes the following issues: - Fix file copying when using relurl:// and file:// naming schemes (bsc#1191160) yast2-installation-4.3.43-3.13.1.noarch.rpm yast2-installation-4.3.43-3.13.1.src.rpm openSUSE-SLE-15.3-2021-3529 moderate SUSE Updates openSUSE-SLE 15.3 This update for pcre fixes the following issues: Update pcre to version 8.45: - CVE-2020-14155: Fixed integer overflow via a large number after a '(?C' substring (bsc#1172974). - CVE-2019-20838: Fixed buffer over-read in JIT compiler (bsc#1172973) libpcre1-32bit-8.45-20.10.1.x86_64.rpm libpcre1-8.45-20.10.1.x86_64.rpm libpcre16-0-32bit-8.45-20.10.1.x86_64.rpm libpcre16-0-8.45-20.10.1.x86_64.rpm libpcrecpp0-32bit-8.45-20.10.1.x86_64.rpm libpcrecpp0-8.45-20.10.1.x86_64.rpm libpcreposix0-32bit-8.45-20.10.1.x86_64.rpm libpcreposix0-8.45-20.10.1.x86_64.rpm pcre-8.45-20.10.1.src.rpm pcre-devel-8.45-20.10.1.x86_64.rpm pcre-devel-static-8.45-20.10.1.x86_64.rpm pcre-doc-8.45-20.10.1.noarch.rpm pcre-tools-8.45-20.10.1.x86_64.rpm libpcre1-8.45-20.10.1.s390x.rpm libpcre16-0-8.45-20.10.1.s390x.rpm libpcrecpp0-8.45-20.10.1.s390x.rpm libpcreposix0-8.45-20.10.1.s390x.rpm pcre-devel-8.45-20.10.1.s390x.rpm pcre-devel-static-8.45-20.10.1.s390x.rpm pcre-tools-8.45-20.10.1.s390x.rpm libpcre1-8.45-20.10.1.ppc64le.rpm libpcre16-0-8.45-20.10.1.ppc64le.rpm libpcrecpp0-8.45-20.10.1.ppc64le.rpm libpcreposix0-8.45-20.10.1.ppc64le.rpm pcre-devel-8.45-20.10.1.ppc64le.rpm pcre-devel-static-8.45-20.10.1.ppc64le.rpm pcre-tools-8.45-20.10.1.ppc64le.rpm libpcre1-8.45-20.10.1.aarch64.rpm libpcre16-0-8.45-20.10.1.aarch64.rpm libpcrecpp0-8.45-20.10.1.aarch64.rpm libpcreposix0-8.45-20.10.1.aarch64.rpm pcre-devel-8.45-20.10.1.aarch64.rpm pcre-devel-static-8.45-20.10.1.aarch64.rpm pcre-tools-8.45-20.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3521 moderate SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2021-3566: Fixed information leak (bsc#1189166). - CVE-2021-38093: Fixed integer overflow vulnerability in filter_robert() (bsc#1190734) - CVE-2021-38092: Fixed integer overflow vulnerability in filter_prewitt() (bsc#1190733) - CVE-2021-38094: Fixed integer overflow vulnerability in filter_sobel() (bsc#1190735) - CVE-2020-22037: Fixed denial of service vulnerability caused by memory leak in avcodec_alloc_context3() (bsc#1186756) - CVE-2020-35965: Fixed out-of-bounds write in decode_frame() (bsc#1187852) - CVE-2020-20892: Fixed an issue with filter_frame() (bsc#1190719) - CVE-2020-20891: Fixed a buffer overflow vulnerability in config_input() (bsc#1190718) - CVE-2020-20895: Fixed a buffer overflow vulnerability in function filter_vertically_##name (bsc#1190722) - CVE-2020-20896: Fixed an issue with latm_write_packet() (bsc#1190723) - CVE-2020-20899: Fixed a buffer overflow vulnerability in config_props() (bsc#1190726) - CVE-2020-20902: Fixed an out-of-bounds read vulnerabilit long_term_filter() (bsc#1190729) ffmpeg-3.4.2-11.17.1.src.rpm ffmpeg-3.4.2-11.17.1.x86_64.rpm ffmpeg-private-devel-3.4.2-11.17.1.x86_64.rpm libavcodec-devel-3.4.2-11.17.1.x86_64.rpm libavcodec57-3.4.2-11.17.1.x86_64.rpm libavcodec57-32bit-3.4.2-11.17.1.x86_64.rpm libavdevice-devel-3.4.2-11.17.1.x86_64.rpm libavdevice57-3.4.2-11.17.1.x86_64.rpm libavdevice57-32bit-3.4.2-11.17.1.x86_64.rpm libavfilter-devel-3.4.2-11.17.1.x86_64.rpm libavfilter6-3.4.2-11.17.1.x86_64.rpm libavfilter6-32bit-3.4.2-11.17.1.x86_64.rpm libavformat-devel-3.4.2-11.17.1.x86_64.rpm libavformat57-3.4.2-11.17.1.x86_64.rpm libavformat57-32bit-3.4.2-11.17.1.x86_64.rpm libavresample-devel-3.4.2-11.17.1.x86_64.rpm libavresample3-3.4.2-11.17.1.x86_64.rpm libavresample3-32bit-3.4.2-11.17.1.x86_64.rpm libavutil-devel-3.4.2-11.17.1.x86_64.rpm libavutil55-3.4.2-11.17.1.x86_64.rpm libavutil55-32bit-3.4.2-11.17.1.x86_64.rpm libpostproc-devel-3.4.2-11.17.1.x86_64.rpm libpostproc54-3.4.2-11.17.1.x86_64.rpm libpostproc54-32bit-3.4.2-11.17.1.x86_64.rpm libswresample-devel-3.4.2-11.17.1.x86_64.rpm libswresample2-3.4.2-11.17.1.x86_64.rpm libswresample2-32bit-3.4.2-11.17.1.x86_64.rpm libswscale-devel-3.4.2-11.17.1.x86_64.rpm libswscale4-3.4.2-11.17.1.x86_64.rpm libswscale4-32bit-3.4.2-11.17.1.x86_64.rpm ffmpeg-3.4.2-11.17.1.s390x.rpm ffmpeg-private-devel-3.4.2-11.17.1.s390x.rpm libavcodec-devel-3.4.2-11.17.1.s390x.rpm libavcodec57-3.4.2-11.17.1.s390x.rpm libavdevice-devel-3.4.2-11.17.1.s390x.rpm libavdevice57-3.4.2-11.17.1.s390x.rpm libavfilter-devel-3.4.2-11.17.1.s390x.rpm libavfilter6-3.4.2-11.17.1.s390x.rpm libavformat-devel-3.4.2-11.17.1.s390x.rpm libavformat57-3.4.2-11.17.1.s390x.rpm libavresample-devel-3.4.2-11.17.1.s390x.rpm libavresample3-3.4.2-11.17.1.s390x.rpm libavutil-devel-3.4.2-11.17.1.s390x.rpm libavutil55-3.4.2-11.17.1.s390x.rpm libpostproc-devel-3.4.2-11.17.1.s390x.rpm libpostproc54-3.4.2-11.17.1.s390x.rpm libswresample-devel-3.4.2-11.17.1.s390x.rpm libswresample2-3.4.2-11.17.1.s390x.rpm libswscale-devel-3.4.2-11.17.1.s390x.rpm libswscale4-3.4.2-11.17.1.s390x.rpm ffmpeg-3.4.2-11.17.1.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.17.1.ppc64le.rpm libavcodec-devel-3.4.2-11.17.1.ppc64le.rpm libavcodec57-3.4.2-11.17.1.ppc64le.rpm libavdevice-devel-3.4.2-11.17.1.ppc64le.rpm libavdevice57-3.4.2-11.17.1.ppc64le.rpm libavfilter-devel-3.4.2-11.17.1.ppc64le.rpm libavfilter6-3.4.2-11.17.1.ppc64le.rpm libavformat-devel-3.4.2-11.17.1.ppc64le.rpm libavformat57-3.4.2-11.17.1.ppc64le.rpm libavresample-devel-3.4.2-11.17.1.ppc64le.rpm libavresample3-3.4.2-11.17.1.ppc64le.rpm libavutil-devel-3.4.2-11.17.1.ppc64le.rpm libavutil55-3.4.2-11.17.1.ppc64le.rpm libpostproc-devel-3.4.2-11.17.1.ppc64le.rpm libpostproc54-3.4.2-11.17.1.ppc64le.rpm libswresample-devel-3.4.2-11.17.1.ppc64le.rpm libswresample2-3.4.2-11.17.1.ppc64le.rpm libswscale-devel-3.4.2-11.17.1.ppc64le.rpm libswscale4-3.4.2-11.17.1.ppc64le.rpm ffmpeg-3.4.2-11.17.1.aarch64.rpm ffmpeg-private-devel-3.4.2-11.17.1.aarch64.rpm libavcodec-devel-3.4.2-11.17.1.aarch64.rpm libavcodec57-3.4.2-11.17.1.aarch64.rpm libavdevice-devel-3.4.2-11.17.1.aarch64.rpm libavdevice57-3.4.2-11.17.1.aarch64.rpm libavfilter-devel-3.4.2-11.17.1.aarch64.rpm libavfilter6-3.4.2-11.17.1.aarch64.rpm libavformat-devel-3.4.2-11.17.1.aarch64.rpm libavformat57-3.4.2-11.17.1.aarch64.rpm libavresample-devel-3.4.2-11.17.1.aarch64.rpm libavresample3-3.4.2-11.17.1.aarch64.rpm libavutil-devel-3.4.2-11.17.1.aarch64.rpm libavutil55-3.4.2-11.17.1.aarch64.rpm libpostproc-devel-3.4.2-11.17.1.aarch64.rpm libpostproc54-3.4.2-11.17.1.aarch64.rpm libswresample-devel-3.4.2-11.17.1.aarch64.rpm libswresample2-3.4.2-11.17.1.aarch64.rpm libswscale-devel-3.4.2-11.17.1.aarch64.rpm libswscale4-3.4.2-11.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3605 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3713: Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702) - CVE-2021-3748: Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938) Non-security issues fixed: - Add transfer length item in block limits page of scsi vpd (bsc#1190425) - Fix qemu crash while deleting xen-block (bsc#1189234) qemu-5.2.0-106.4.src.rpm qemu-5.2.0-106.4.x86_64.rpm qemu-arm-5.2.0-106.4.x86_64.rpm qemu-audio-alsa-5.2.0-106.4.x86_64.rpm qemu-audio-pa-5.2.0-106.4.x86_64.rpm qemu-audio-spice-5.2.0-106.4.x86_64.rpm qemu-block-curl-5.2.0-106.4.x86_64.rpm qemu-block-dmg-5.2.0-106.4.x86_64.rpm qemu-block-gluster-5.2.0-106.4.x86_64.rpm qemu-block-iscsi-5.2.0-106.4.x86_64.rpm qemu-block-nfs-5.2.0-106.4.x86_64.rpm qemu-block-rbd-5.2.0-106.4.x86_64.rpm qemu-block-ssh-5.2.0-106.4.x86_64.rpm qemu-chardev-baum-5.2.0-106.4.x86_64.rpm qemu-chardev-spice-5.2.0-106.4.x86_64.rpm qemu-extra-5.2.0-106.4.x86_64.rpm qemu-guest-agent-5.2.0-106.4.x86_64.rpm qemu-hw-display-qxl-5.2.0-106.4.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-106.4.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-106.4.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-106.4.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-106.4.x86_64.rpm qemu-hw-usb-redirect-5.2.0-106.4.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-106.4.x86_64.rpm qemu-ipxe-1.0.0+-106.4.noarch.rpm qemu-ivshmem-tools-5.2.0-106.4.x86_64.rpm qemu-ksm-5.2.0-106.4.x86_64.rpm qemu-kvm-5.2.0-106.4.x86_64.rpm qemu-lang-5.2.0-106.4.x86_64.rpm qemu-linux-user-5.2.0-106.3.src.rpm qemu-linux-user-5.2.0-106.3.x86_64.rpm qemu-microvm-5.2.0-106.4.noarch.rpm qemu-ppc-5.2.0-106.4.x86_64.rpm qemu-s390x-5.2.0-106.4.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-106.4.noarch.rpm qemu-sgabios-8-106.4.noarch.rpm qemu-skiboot-5.2.0-106.4.noarch.rpm qemu-testsuite-5.2.0-106.3.src.rpm qemu-testsuite-5.2.0-106.3.x86_64.rpm qemu-tools-5.2.0-106.4.x86_64.rpm qemu-ui-curses-5.2.0-106.4.x86_64.rpm qemu-ui-gtk-5.2.0-106.4.x86_64.rpm qemu-ui-opengl-5.2.0-106.4.x86_64.rpm qemu-ui-spice-app-5.2.0-106.4.x86_64.rpm qemu-ui-spice-core-5.2.0-106.4.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-106.4.noarch.rpm qemu-vhost-user-gpu-5.2.0-106.4.x86_64.rpm qemu-x86-5.2.0-106.4.x86_64.rpm qemu-5.2.0-106.4.s390x.rpm qemu-arm-5.2.0-106.4.s390x.rpm qemu-audio-alsa-5.2.0-106.4.s390x.rpm qemu-audio-pa-5.2.0-106.4.s390x.rpm qemu-audio-spice-5.2.0-106.4.s390x.rpm qemu-block-curl-5.2.0-106.4.s390x.rpm qemu-block-dmg-5.2.0-106.4.s390x.rpm qemu-block-gluster-5.2.0-106.4.s390x.rpm qemu-block-iscsi-5.2.0-106.4.s390x.rpm qemu-block-nfs-5.2.0-106.4.s390x.rpm qemu-block-rbd-5.2.0-106.4.s390x.rpm qemu-block-ssh-5.2.0-106.4.s390x.rpm qemu-chardev-baum-5.2.0-106.4.s390x.rpm qemu-chardev-spice-5.2.0-106.4.s390x.rpm qemu-extra-5.2.0-106.4.s390x.rpm qemu-guest-agent-5.2.0-106.4.s390x.rpm qemu-hw-display-qxl-5.2.0-106.4.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-106.4.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-106.4.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-106.4.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-106.4.s390x.rpm qemu-hw-usb-redirect-5.2.0-106.4.s390x.rpm qemu-hw-usb-smartcard-5.2.0-106.4.s390x.rpm qemu-ivshmem-tools-5.2.0-106.4.s390x.rpm qemu-ksm-5.2.0-106.4.s390x.rpm qemu-kvm-5.2.0-106.4.s390x.rpm qemu-lang-5.2.0-106.4.s390x.rpm qemu-linux-user-5.2.0-106.3.s390x.rpm qemu-ppc-5.2.0-106.4.s390x.rpm qemu-s390x-5.2.0-106.4.s390x.rpm qemu-testsuite-5.2.0-106.3.s390x.rpm qemu-tools-5.2.0-106.4.s390x.rpm qemu-ui-curses-5.2.0-106.4.s390x.rpm qemu-ui-gtk-5.2.0-106.4.s390x.rpm qemu-ui-opengl-5.2.0-106.4.s390x.rpm qemu-ui-spice-app-5.2.0-106.4.s390x.rpm qemu-ui-spice-core-5.2.0-106.4.s390x.rpm qemu-vhost-user-gpu-5.2.0-106.4.s390x.rpm qemu-x86-5.2.0-106.4.s390x.rpm qemu-5.2.0-106.4.ppc64le.rpm qemu-arm-5.2.0-106.4.ppc64le.rpm qemu-audio-alsa-5.2.0-106.4.ppc64le.rpm qemu-audio-pa-5.2.0-106.4.ppc64le.rpm qemu-audio-spice-5.2.0-106.4.ppc64le.rpm qemu-block-curl-5.2.0-106.4.ppc64le.rpm qemu-block-dmg-5.2.0-106.4.ppc64le.rpm qemu-block-gluster-5.2.0-106.4.ppc64le.rpm qemu-block-iscsi-5.2.0-106.4.ppc64le.rpm qemu-block-nfs-5.2.0-106.4.ppc64le.rpm qemu-block-rbd-5.2.0-106.4.ppc64le.rpm qemu-block-ssh-5.2.0-106.4.ppc64le.rpm qemu-chardev-baum-5.2.0-106.4.ppc64le.rpm qemu-chardev-spice-5.2.0-106.4.ppc64le.rpm qemu-extra-5.2.0-106.4.ppc64le.rpm qemu-guest-agent-5.2.0-106.4.ppc64le.rpm qemu-hw-display-qxl-5.2.0-106.4.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-106.4.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-106.4.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-106.4.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-106.4.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-106.4.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-106.4.ppc64le.rpm qemu-ivshmem-tools-5.2.0-106.4.ppc64le.rpm qemu-ksm-5.2.0-106.4.ppc64le.rpm qemu-lang-5.2.0-106.4.ppc64le.rpm qemu-linux-user-5.2.0-106.3.ppc64le.rpm qemu-ppc-5.2.0-106.4.ppc64le.rpm qemu-s390x-5.2.0-106.4.ppc64le.rpm qemu-testsuite-5.2.0-106.3.ppc64le.rpm qemu-tools-5.2.0-106.4.ppc64le.rpm qemu-ui-curses-5.2.0-106.4.ppc64le.rpm qemu-ui-gtk-5.2.0-106.4.ppc64le.rpm qemu-ui-opengl-5.2.0-106.4.ppc64le.rpm qemu-ui-spice-app-5.2.0-106.4.ppc64le.rpm qemu-ui-spice-core-5.2.0-106.4.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-106.4.ppc64le.rpm qemu-x86-5.2.0-106.4.ppc64le.rpm qemu-5.2.0-106.4.aarch64.rpm qemu-arm-5.2.0-106.4.aarch64.rpm qemu-audio-alsa-5.2.0-106.4.aarch64.rpm qemu-audio-pa-5.2.0-106.4.aarch64.rpm qemu-audio-spice-5.2.0-106.4.aarch64.rpm qemu-block-curl-5.2.0-106.4.aarch64.rpm qemu-block-dmg-5.2.0-106.4.aarch64.rpm qemu-block-gluster-5.2.0-106.4.aarch64.rpm qemu-block-iscsi-5.2.0-106.4.aarch64.rpm qemu-block-nfs-5.2.0-106.4.aarch64.rpm qemu-block-rbd-5.2.0-106.4.aarch64.rpm qemu-block-ssh-5.2.0-106.4.aarch64.rpm qemu-chardev-baum-5.2.0-106.4.aarch64.rpm qemu-chardev-spice-5.2.0-106.4.aarch64.rpm qemu-extra-5.2.0-106.4.aarch64.rpm qemu-guest-agent-5.2.0-106.4.aarch64.rpm qemu-hw-display-qxl-5.2.0-106.4.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-106.4.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-106.4.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-106.4.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-106.4.aarch64.rpm qemu-hw-usb-redirect-5.2.0-106.4.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-106.4.aarch64.rpm qemu-ivshmem-tools-5.2.0-106.4.aarch64.rpm qemu-ksm-5.2.0-106.4.aarch64.rpm qemu-lang-5.2.0-106.4.aarch64.rpm qemu-linux-user-5.2.0-106.3.aarch64.rpm qemu-ppc-5.2.0-106.4.aarch64.rpm qemu-s390x-5.2.0-106.4.aarch64.rpm qemu-testsuite-5.2.0-106.3.aarch64.rpm qemu-tools-5.2.0-106.4.aarch64.rpm qemu-ui-curses-5.2.0-106.4.aarch64.rpm qemu-ui-gtk-5.2.0-106.4.aarch64.rpm qemu-ui-opengl-5.2.0-106.4.aarch64.rpm qemu-ui-spice-app-5.2.0-106.4.aarch64.rpm qemu-ui-spice-core-5.2.0-106.4.aarch64.rpm qemu-vhost-user-gpu-5.2.0-106.4.aarch64.rpm qemu-x86-5.2.0-106.4.aarch64.rpm openSUSE-SLE-15.3-2021-3604 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3713: Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702) - CVE-2021-3748: Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938) Non-security issues fixed: - Add transfer length item in block limits page of scsi vpd (bsc#1190425) - Fix qemu crash while deleting xen-block (bsc#1189234) qemu-4.2.1-11.31.3.src.rpm qemu-s390-4.2.1-11.31.3.x86_64.rpm qemu-s390-4.2.1-11.31.3.s390x.rpm qemu-s390-4.2.1-11.31.3.ppc64le.rpm qemu-s390-4.2.1-11.31.3.aarch64.rpm openSUSE-SLE-15.3-2021-3599 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql, postgresql13, postgresql14 fixes the following issues: This update ships postgresql14. (jsc#SLE-20675 jsc#SLE-20676) Feature changes in postgresql14: - https://www.postgresql.org/about/news/postgresql-14-released-2318/ - https://www.postgresql.org/docs/14/release-14.html Changes in postgresql13: - Stop building the mini and lib packages as they are now coming from postgresql14. Changes in postgresql: - Bump version to 14, leave default at 12. libecpg6-14.0-5.3.1.x86_64.rpm libecpg6-32bit-14.0-5.3.1.x86_64.rpm libpq5-14.0-5.3.1.x86_64.rpm libpq5-32bit-14.0-5.3.1.x86_64.rpm postgresql13-13.4-5.19.1.src.rpm postgresql13-13.4-5.19.1.x86_64.rpm postgresql13-contrib-13.4-5.19.1.x86_64.rpm postgresql13-devel-13.4-5.19.1.x86_64.rpm postgresql13-docs-13.4-5.19.1.noarch.rpm postgresql13-llvmjit-13.4-5.19.1.x86_64.rpm postgresql13-plperl-13.4-5.19.1.x86_64.rpm postgresql13-plpython-13.4-5.19.1.x86_64.rpm postgresql13-pltcl-13.4-5.19.1.x86_64.rpm postgresql13-server-13.4-5.19.1.x86_64.rpm postgresql13-server-devel-13.4-5.19.1.x86_64.rpm postgresql13-test-13.4-5.19.1.x86_64.rpm postgresql14-14.0-5.3.1.src.rpm postgresql14-14.0-5.3.1.x86_64.rpm postgresql14-contrib-14.0-5.3.1.x86_64.rpm postgresql14-devel-14.0-5.3.1.x86_64.rpm postgresql14-devel-mini-14.0-5.3.1.x86_64.rpm postgresql14-docs-14.0-5.3.1.noarch.rpm postgresql14-llvmjit-14.0-5.3.1.x86_64.rpm postgresql14-plperl-14.0-5.3.1.x86_64.rpm postgresql14-plpython-14.0-5.3.1.x86_64.rpm postgresql14-pltcl-14.0-5.3.1.x86_64.rpm postgresql14-server-14.0-5.3.1.x86_64.rpm postgresql14-server-devel-14.0-5.3.1.x86_64.rpm postgresql14-test-14.0-5.3.1.x86_64.rpm libecpg6-14.0-5.3.1.s390x.rpm libpq5-14.0-5.3.1.s390x.rpm postgresql13-13.4-5.19.1.s390x.rpm postgresql13-contrib-13.4-5.19.1.s390x.rpm postgresql13-devel-13.4-5.19.1.s390x.rpm postgresql13-llvmjit-13.4-5.19.1.s390x.rpm postgresql13-plperl-13.4-5.19.1.s390x.rpm postgresql13-plpython-13.4-5.19.1.s390x.rpm postgresql13-pltcl-13.4-5.19.1.s390x.rpm postgresql13-server-13.4-5.19.1.s390x.rpm postgresql13-server-devel-13.4-5.19.1.s390x.rpm postgresql13-test-13.4-5.19.1.s390x.rpm postgresql14-14.0-5.3.1.s390x.rpm postgresql14-contrib-14.0-5.3.1.s390x.rpm postgresql14-devel-14.0-5.3.1.s390x.rpm postgresql14-devel-mini-14.0-5.3.1.s390x.rpm postgresql14-llvmjit-14.0-5.3.1.s390x.rpm postgresql14-plperl-14.0-5.3.1.s390x.rpm postgresql14-plpython-14.0-5.3.1.s390x.rpm postgresql14-pltcl-14.0-5.3.1.s390x.rpm postgresql14-server-14.0-5.3.1.s390x.rpm postgresql14-server-devel-14.0-5.3.1.s390x.rpm postgresql14-test-14.0-5.3.1.s390x.rpm libecpg6-14.0-5.3.1.ppc64le.rpm libpq5-14.0-5.3.1.ppc64le.rpm postgresql13-13.4-5.19.1.ppc64le.rpm postgresql13-contrib-13.4-5.19.1.ppc64le.rpm postgresql13-devel-13.4-5.19.1.ppc64le.rpm postgresql13-llvmjit-13.4-5.19.1.ppc64le.rpm postgresql13-plperl-13.4-5.19.1.ppc64le.rpm postgresql13-plpython-13.4-5.19.1.ppc64le.rpm postgresql13-pltcl-13.4-5.19.1.ppc64le.rpm postgresql13-server-13.4-5.19.1.ppc64le.rpm postgresql13-server-devel-13.4-5.19.1.ppc64le.rpm postgresql13-test-13.4-5.19.1.ppc64le.rpm postgresql14-14.0-5.3.1.ppc64le.rpm postgresql14-contrib-14.0-5.3.1.ppc64le.rpm postgresql14-devel-14.0-5.3.1.ppc64le.rpm postgresql14-devel-mini-14.0-5.3.1.ppc64le.rpm postgresql14-llvmjit-14.0-5.3.1.ppc64le.rpm postgresql14-plperl-14.0-5.3.1.ppc64le.rpm postgresql14-plpython-14.0-5.3.1.ppc64le.rpm postgresql14-pltcl-14.0-5.3.1.ppc64le.rpm postgresql14-server-14.0-5.3.1.ppc64le.rpm postgresql14-server-devel-14.0-5.3.1.ppc64le.rpm postgresql14-test-14.0-5.3.1.ppc64le.rpm libecpg6-14.0-5.3.1.aarch64.rpm libpq5-14.0-5.3.1.aarch64.rpm postgresql13-13.4-5.19.1.aarch64.rpm postgresql13-contrib-13.4-5.19.1.aarch64.rpm postgresql13-devel-13.4-5.19.1.aarch64.rpm postgresql13-llvmjit-13.4-5.19.1.aarch64.rpm postgresql13-plperl-13.4-5.19.1.aarch64.rpm postgresql13-plpython-13.4-5.19.1.aarch64.rpm postgresql13-pltcl-13.4-5.19.1.aarch64.rpm postgresql13-server-13.4-5.19.1.aarch64.rpm postgresql13-server-devel-13.4-5.19.1.aarch64.rpm postgresql13-test-13.4-5.19.1.aarch64.rpm postgresql14-14.0-5.3.1.aarch64.rpm postgresql14-contrib-14.0-5.3.1.aarch64.rpm postgresql14-devel-14.0-5.3.1.aarch64.rpm postgresql14-devel-mini-14.0-5.3.1.aarch64.rpm postgresql14-llvmjit-14.0-5.3.1.aarch64.rpm postgresql14-plperl-14.0-5.3.1.aarch64.rpm postgresql14-plpython-14.0-5.3.1.aarch64.rpm postgresql14-pltcl-14.0-5.3.1.aarch64.rpm postgresql14-server-14.0-5.3.1.aarch64.rpm postgresql14-server-devel-14.0-5.3.1.aarch64.rpm postgresql14-test-14.0-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3600 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql fixes the following issues: - Bump version to 14, leave default at 13. postgresql-14-10.6.2.noarch.rpm postgresql-14-10.6.2.src.rpm postgresql-contrib-14-10.6.2.noarch.rpm postgresql-devel-14-10.6.2.noarch.rpm postgresql-docs-14-10.6.2.noarch.rpm postgresql-llvmjit-14-10.6.2.noarch.rpm postgresql-plperl-14-10.6.2.noarch.rpm postgresql-plpython-14-10.6.2.noarch.rpm postgresql-pltcl-14-10.6.2.noarch.rpm postgresql-server-14-10.6.2.noarch.rpm postgresql-server-devel-14-10.6.2.noarch.rpm postgresql-test-14-10.6.2.noarch.rpm openSUSE-SLE-15.3-2021-3787 moderate SUSE Updates openSUSE-SLE 15.3 This update for xfsprogs fixes the following issues: - Make libhandle1 an explicit dependency in the xfsprogs-devel package (bsc#1191566) - Remove deprecated barrier/nobarrier mount options from manual pages section 5 (bsc#1191675) - xfs_io: include support for label command (bsc#1191500) - xfs_quota: state command to report all three (-ugp) grace times separately (bsc#1189983) - xfs_admin: add support for external log devices (bsc#1189984) libhandle1-4.15.0-4.52.1.x86_64.rpm xfsprogs-4.15.0-4.52.1.src.rpm xfsprogs-4.15.0-4.52.1.x86_64.rpm xfsprogs-devel-4.15.0-4.52.1.x86_64.rpm libhandle1-4.15.0-4.52.1.s390x.rpm xfsprogs-4.15.0-4.52.1.s390x.rpm xfsprogs-devel-4.15.0-4.52.1.s390x.rpm libhandle1-4.15.0-4.52.1.ppc64le.rpm xfsprogs-4.15.0-4.52.1.ppc64le.rpm xfsprogs-devel-4.15.0-4.52.1.ppc64le.rpm libhandle1-4.15.0-4.52.1.aarch64.rpm xfsprogs-4.15.0-4.52.1.aarch64.rpm xfsprogs-devel-4.15.0-4.52.1.aarch64.rpm openSUSE-SLE-15.3-2021-3573 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-theme fixes the following issues: - Remove unnecesary rej file and add icon for Budgie pattern (bsc#1191830, bsc#1176164) yast2-theme-4.3.11-3.6.1.noarch.rpm yast2-theme-4.3.11-3.6.1.src.rpm openSUSE-SLE-15.3-2021-3571 moderate SUSE Updates openSUSE-SLE 15.3 This update for postfix fixes the following issues: - Adapt config.postfix to filter out lmdb files from the alias maps (bsc#1190945) postfix-3.5.9-5.9.2.src.rpm postfix-3.5.9-5.9.2.x86_64.rpm postfix-bdb-3.5.9-5.9.2.src.rpm postfix-bdb-3.5.9-5.9.2.x86_64.rpm postfix-bdb-lmdb-3.5.9-5.9.2.x86_64.rpm postfix-devel-3.5.9-5.9.2.x86_64.rpm postfix-doc-3.5.9-5.9.2.noarch.rpm postfix-ldap-3.5.9-5.9.2.x86_64.rpm postfix-mysql-3.5.9-5.9.2.x86_64.rpm postfix-postgresql-3.5.9-5.9.2.x86_64.rpm postfix-3.5.9-5.9.2.s390x.rpm postfix-bdb-3.5.9-5.9.2.s390x.rpm postfix-bdb-lmdb-3.5.9-5.9.2.s390x.rpm postfix-devel-3.5.9-5.9.2.s390x.rpm postfix-ldap-3.5.9-5.9.2.s390x.rpm postfix-mysql-3.5.9-5.9.2.s390x.rpm postfix-postgresql-3.5.9-5.9.2.s390x.rpm postfix-3.5.9-5.9.2.ppc64le.rpm postfix-bdb-3.5.9-5.9.2.ppc64le.rpm postfix-bdb-lmdb-3.5.9-5.9.2.ppc64le.rpm postfix-devel-3.5.9-5.9.2.ppc64le.rpm postfix-ldap-3.5.9-5.9.2.ppc64le.rpm postfix-mysql-3.5.9-5.9.2.ppc64le.rpm postfix-postgresql-3.5.9-5.9.2.ppc64le.rpm postfix-3.5.9-5.9.2.aarch64.rpm postfix-bdb-3.5.9-5.9.2.aarch64.rpm postfix-bdb-lmdb-3.5.9-5.9.2.aarch64.rpm postfix-devel-3.5.9-5.9.2.aarch64.rpm postfix-ldap-3.5.9-5.9.2.aarch64.rpm postfix-mysql-3.5.9-5.9.2.aarch64.rpm postfix-postgresql-3.5.9-5.9.2.aarch64.rpm openSUSE-SLE-15.3-2021-3538 moderate SUSE Updates openSUSE-SLE 15.3 This update for iproute2 fixes the following issues: - Follow-up fixes backported from upstream. (bsc#1160242) iproute2-5.3-5.5.1.src.rpm iproute2-5.3-5.5.1.x86_64.rpm iproute2-arpd-5.3-5.5.1.x86_64.rpm iproute2-bash-completion-5.3-5.5.1.x86_64.rpm libnetlink-devel-5.3-5.5.1.x86_64.rpm iproute2-5.3-5.5.1.s390x.rpm iproute2-arpd-5.3-5.5.1.s390x.rpm iproute2-bash-completion-5.3-5.5.1.s390x.rpm libnetlink-devel-5.3-5.5.1.s390x.rpm iproute2-5.3-5.5.1.ppc64le.rpm iproute2-arpd-5.3-5.5.1.ppc64le.rpm iproute2-bash-completion-5.3-5.5.1.ppc64le.rpm libnetlink-devel-5.3-5.5.1.ppc64le.rpm iproute2-5.3-5.5.1.aarch64.rpm iproute2-arpd-5.3-5.5.1.aarch64.rpm iproute2-bash-completion-5.3-5.5.1.aarch64.rpm libnetlink-devel-5.3-5.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-3569 moderate SUSE Updates openSUSE-SLE 15.3 This update for orarun fixes the following issues: - Fixed warning messages, changed $ORACLE_HOME to $ORACLE_BASE/product/21c in oracle.sh (bsc#1191350) orarun-2.1-17.3.1.src.rpm orarun-2.1-17.3.1.x86_64.rpm orarun-2.1-17.3.1.s390x.rpm openSUSE-SLE-15.3-2021-3574 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint fixes the following issues: - whitelisting of systemd-od (bsc#1191821) and pam_u2f (bsc#1190790 jsc#SLE-21888) rpmlint-1.10-7.30.1.noarch.rpm rpmlint-1.10-7.30.1.src.rpm openSUSE-SLE-15.3-2021-3512 moderate SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: - Allow accessing /proc/sys/crypto/fips_enabled from within the newly introduced socket process sandbox. (bsc#1191815, bsc#1190141) - Add a way to let users overwrite MOZ_ENABLE_WAYLAND MozillaFirefox-91.2.0-152.3.1.src.rpm MozillaFirefox-91.2.0-152.3.1.x86_64.rpm MozillaFirefox-branding-upstream-91.2.0-152.3.1.x86_64.rpm MozillaFirefox-devel-91.2.0-152.3.1.x86_64.rpm MozillaFirefox-translations-common-91.2.0-152.3.1.x86_64.rpm MozillaFirefox-translations-other-91.2.0-152.3.1.x86_64.rpm MozillaFirefox-91.2.0-152.3.1.s390x.rpm MozillaFirefox-branding-upstream-91.2.0-152.3.1.s390x.rpm MozillaFirefox-devel-91.2.0-152.3.1.s390x.rpm MozillaFirefox-translations-common-91.2.0-152.3.1.s390x.rpm MozillaFirefox-translations-other-91.2.0-152.3.1.s390x.rpm MozillaFirefox-91.2.0-152.3.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.2.0-152.3.1.ppc64le.rpm MozillaFirefox-devel-91.2.0-152.3.1.ppc64le.rpm MozillaFirefox-translations-common-91.2.0-152.3.1.ppc64le.rpm MozillaFirefox-translations-other-91.2.0-152.3.1.ppc64le.rpm MozillaFirefox-91.2.0-152.3.1.aarch64.rpm MozillaFirefox-branding-upstream-91.2.0-152.3.1.aarch64.rpm MozillaFirefox-devel-91.2.0-152.3.1.aarch64.rpm MozillaFirefox-translations-common-91.2.0-152.3.1.aarch64.rpm MozillaFirefox-translations-other-91.2.0-152.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3543 moderate SUSE Updates openSUSE-SLE 15.3 This update for system-role-common-criteria ships it to the Server Applications Module. system-role-common-criteria-15.2.1-8.1.src.rpm system-role-common-criteria-15.2.1-8.1.x86_64.rpm system-role-common-criteria-15.2.1-8.1.s390x.rpm system-role-common-criteria-15.2.1-8.1.ppc64le.rpm system-role-common-criteria-15.2.1-8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3568 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Update to parse lifetime option correctly in ui_resource (bsc#1191508) crmsh-4.3.1+20211012.52d4086a-5.68.1.noarch.rpm crmsh-4.3.1+20211012.52d4086a-5.68.1.src.rpm crmsh-scripts-4.3.1+20211012.52d4086a-5.68.1.noarch.rpm crmsh-test-4.3.1+20211012.52d4086a-5.68.1.noarch.rpm openSUSE-SLE-15.3-2021-3790 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-iscsi fixes the following issues: - Ensure executables are not moved from /sbin to /usr/sbin in SLE (bsc#1192013)(bsc#1191054) - iscsi-init.service default dependencies can cause the boot to hang so they have been removed (bsc#1187190) - IPv6 offload iSCSI lun needs to be exposed during installation (bsc#1187958) - iscsid needs to use the new prctl(PR_SET_IO_FLUSHER) system call (bsc#1188869) - The iscsi-init.service unit can run too early, when root is read-only, causing it to fail (bsc#1192568) iscsiuio-0.7.8.6-32.12.1.x86_64.rpm libopeniscsiusr0_2_0-2.1.5-32.12.1.x86_64.rpm open-iscsi-2.1.5-32.12.1.src.rpm open-iscsi-2.1.5-32.12.1.x86_64.rpm open-iscsi-devel-2.1.5-32.12.1.x86_64.rpm iscsiuio-0.7.8.6-32.12.1.s390x.rpm libopeniscsiusr0_2_0-2.1.5-32.12.1.s390x.rpm open-iscsi-2.1.5-32.12.1.s390x.rpm open-iscsi-devel-2.1.5-32.12.1.s390x.rpm iscsiuio-0.7.8.6-32.12.1.ppc64le.rpm libopeniscsiusr0_2_0-2.1.5-32.12.1.ppc64le.rpm open-iscsi-2.1.5-32.12.1.ppc64le.rpm open-iscsi-devel-2.1.5-32.12.1.ppc64le.rpm iscsiuio-0.7.8.6-32.12.1.aarch64.rpm libopeniscsiusr0_2_0-2.1.5-32.12.1.aarch64.rpm open-iscsi-2.1.5-32.12.1.aarch64.rpm open-iscsi-devel-2.1.5-32.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3731 moderate SUSE Updates openSUSE-SLE 15.3 This update for spack fixes the following issues: - Make sure modules are not called recursively even if modules are loaded in an out-of-order fashion from python-Sphinx. - Fix typo to export prefix in patch. (bsc#1191395) spack-0.16.1-5.3.1.noarch.rpm spack-0.16.1-5.3.1.src.rpm spack-info-0.16.1-5.3.1.noarch.rpm spack-man-0.16.1-5.3.1.noarch.rpm spack-recipes-0.16.1-5.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3587 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-country fixes the following issues: - Move the keyboards database to lib/ to make the module compatible with the self-update mechanism. (bsc#1189461) - Use official China timezone Asia/Shanghai. (bsc#1187857) yast2-country-4.3.18-3.11.1.src.rpm yast2-country-4.3.18-3.11.1.x86_64.rpm yast2-country-data-4.3.18-3.11.1.x86_64.rpm yast2-country-4.3.18-3.11.1.s390x.rpm yast2-country-data-4.3.18-3.11.1.s390x.rpm yast2-country-4.3.18-3.11.1.ppc64le.rpm yast2-country-data-4.3.18-3.11.1.ppc64le.rpm yast2-country-4.3.18-3.11.1.aarch64.rpm yast2-country-data-4.3.18-3.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3671 important SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: Update to 11.0.13+8 (October 2021 CPU) - CVE-2021-35550, bsc#1191901: Update the default enabled cipher suites preference - CVE-2021-35565, bsc#1191909: com.sun.net.HttpsServer spins on TLS session close - CVE-2021-35556, bsc#1191910: Richer Text Editors - CVE-2021-35559, bsc#1191911: Enhanced style for RTF kit - CVE-2021-35561, bsc#1191912: Better hashing support - CVE-2021-35564, bsc#1191913: Improve Keystore integrity - CVE-2021-35567, bsc#1191903: More Constrained Delegation - CVE-2021-35578, bsc#1191904: Improve TLS client handshaking - CVE-2021-35586, bsc#1191914: Better BMP support - CVE-2021-35603, bsc#1191906: Better session identification - Improve Stream handling for SSL - Improve requests of certificates - Correct certificate requests - Enhance DTLS client handshake java-11-openjdk-11.0.13.0-3.65.1.src.rpm java-11-openjdk-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-accessibility-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-demo-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-devel-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-headless-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-javadoc-11.0.13.0-3.65.1.noarch.rpm java-11-openjdk-jmods-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-src-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-accessibility-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-demo-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-devel-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-headless-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-jmods-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-src-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-demo-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-devel-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-headless-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-jmods-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-src-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-accessibility-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-demo-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-devel-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-headless-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-jmods-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-src-11.0.13.0-3.65.1.aarch64.rpm openSUSE-SLE-15.3-2021-3509 important SUSE Updates openSUSE-SLE 15.3 This update for suse-module-tools fixes the following issues: Update to version 15.3.13: - Fix bad exit status in openQA. (bsc#1191922) - Ignore kernel keyring for kernel certificates. (bsc#1191480) - Deal with existing certificates that should be de-enrolled. (bsc#1191804) - Don't pass existing files to weak-modules2. (bsc#1191200) - Skip certificate scriptlet on non-UEFI systems. (bsc#1191260) suse-module-tools-15.3.13-3.11.1.src.rpm suse-module-tools-15.3.13-3.11.1.x86_64.rpm suse-module-tools-legacy-15.3.13-3.11.1.x86_64.rpm suse-module-tools-15.3.13-3.11.1.s390x.rpm suse-module-tools-legacy-15.3.13-3.11.1.s390x.rpm suse-module-tools-15.3.13-3.11.1.ppc64le.rpm suse-module-tools-legacy-15.3.13-3.11.1.ppc64le.rpm suse-module-tools-15.3.13-3.11.1.aarch64.rpm suse-module-tools-legacy-15.3.13-3.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3510 important SUSE Updates openSUSE-SLE 15.3 This update for pam fixes the following issues: - Fixed a bad directive file which resulted in the "securetty" file to be installed as "macros.pam". (bsc#1191987) pam-1.3.0-6.50.1.src.rpm pam-1.3.0-6.50.1.x86_64.rpm pam-32bit-1.3.0-6.50.1.x86_64.rpm pam-devel-1.3.0-6.50.1.x86_64.rpm pam-devel-32bit-1.3.0-6.50.1.x86_64.rpm pam-doc-1.3.0-6.50.1.noarch.rpm pam-extra-1.3.0-6.50.1.x86_64.rpm pam-extra-32bit-1.3.0-6.50.1.x86_64.rpm pam-1.3.0-6.50.1.s390x.rpm pam-devel-1.3.0-6.50.1.s390x.rpm pam-extra-1.3.0-6.50.1.s390x.rpm pam-1.3.0-6.50.1.ppc64le.rpm pam-devel-1.3.0-6.50.1.ppc64le.rpm pam-extra-1.3.0-6.50.1.ppc64le.rpm pam-1.3.0-6.50.1.aarch64.rpm pam-devel-1.3.0-6.50.1.aarch64.rpm pam-extra-1.3.0-6.50.1.aarch64.rpm openSUSE-SLE-15.3-2021-3564 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpm-config-SUSE fixes the following issues: - Support ZSTD compressed kernel modules. (bsc#1190850) rpm-config-SUSE-1-5.3.1.noarch.rpm rpm-config-SUSE-1-5.3.1.src.rpm openSUSE-SLE-15.3-2021-3589 moderate SUSE Updates openSUSE-SLE 15.3 This update for apparmor fixes the following issues: - Fixed an issue when apparmor provides python2 and python3 libraries with the same name. (bsc#1191690) apache2-mod_apparmor-2.13.6-3.3.1.x86_64.rpm apparmor-2.13.6-3.3.1.src.rpm apparmor-abstractions-2.13.6-3.3.1.noarch.rpm apparmor-docs-2.13.6-3.3.1.noarch.rpm apparmor-parser-2.13.6-3.3.1.x86_64.rpm apparmor-parser-lang-2.13.6-3.3.1.noarch.rpm apparmor-profiles-2.13.6-3.3.1.noarch.rpm apparmor-utils-2.13.6-3.3.1.noarch.rpm apparmor-utils-lang-2.13.6-3.3.1.noarch.rpm libapparmor-2.13.6-3.3.1.src.rpm libapparmor-devel-2.13.6-3.3.1.x86_64.rpm libapparmor1-2.13.6-3.3.1.x86_64.rpm libapparmor1-32bit-2.13.6-3.3.1.x86_64.rpm pam_apparmor-2.13.6-3.3.1.x86_64.rpm pam_apparmor-32bit-2.13.6-3.3.1.x86_64.rpm perl-apparmor-2.13.6-3.3.1.x86_64.rpm python3-apparmor-2.13.6-3.3.1.x86_64.rpm ruby-apparmor-2.13.6-3.3.1.x86_64.rpm apache2-mod_apparmor-2.13.6-3.3.1.s390x.rpm apparmor-parser-2.13.6-3.3.1.s390x.rpm libapparmor-devel-2.13.6-3.3.1.s390x.rpm libapparmor1-2.13.6-3.3.1.s390x.rpm pam_apparmor-2.13.6-3.3.1.s390x.rpm perl-apparmor-2.13.6-3.3.1.s390x.rpm python3-apparmor-2.13.6-3.3.1.s390x.rpm ruby-apparmor-2.13.6-3.3.1.s390x.rpm apache2-mod_apparmor-2.13.6-3.3.1.ppc64le.rpm apparmor-parser-2.13.6-3.3.1.ppc64le.rpm libapparmor-devel-2.13.6-3.3.1.ppc64le.rpm libapparmor1-2.13.6-3.3.1.ppc64le.rpm pam_apparmor-2.13.6-3.3.1.ppc64le.rpm perl-apparmor-2.13.6-3.3.1.ppc64le.rpm python3-apparmor-2.13.6-3.3.1.ppc64le.rpm ruby-apparmor-2.13.6-3.3.1.ppc64le.rpm apache2-mod_apparmor-2.13.6-3.3.1.aarch64.rpm apparmor-parser-2.13.6-3.3.1.aarch64.rpm libapparmor-devel-2.13.6-3.3.1.aarch64.rpm libapparmor1-2.13.6-3.3.1.aarch64.rpm pam_apparmor-2.13.6-3.3.1.aarch64.rpm perl-apparmor-2.13.6-3.3.1.aarch64.rpm python3-apparmor-2.13.6-3.3.1.aarch64.rpm ruby-apparmor-2.13.6-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3619 moderate SUSE Updates openSUSE-SLE 15.3 This update for libvirt fixes the following issues: - lxc: controller: Fix container launch on cgroup v1. (bsc#1183247) - supportconfig: Use systemctl command 'is-active' instead of 'is-enabled' when checking if libvirtd is active. - qemu: Do not report error in the logs when processing monitor IO. (bsc#1190917) - spec: Fix an issue when package update hangs (bsc#1177902, bsc#1190693) - spec: Don't add '--timeout' argument to '/etc/sysconfig/libvirtd' when running in traditional mode without socket activation. (bsc#1190695) - libxl: Improve reporting of 'die_id' in capabilities. (bsc#1190493) - libxl: Fix driver reload. (bsc#1190420) - qemu: Set label on virtual host network device when hotplugging. (bsc#1186398) - supportconfig: When checking for installed hypervisor drivers, use the libvirtr-daemon-driver-<hypervisor> package instead of libvirt-daemon-<hypervisor>. The latter are not required packages for a functioning hypervisor driver. libvirt-7.1.0-6.8.1.src.rpm libvirt-7.1.0-6.8.1.x86_64.rpm libvirt-admin-7.1.0-6.8.1.x86_64.rpm libvirt-bash-completion-7.1.0-6.8.1.noarch.rpm libvirt-client-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-xen-7.1.0-6.8.1.x86_64.rpm libvirt-devel-32bit-7.1.0-6.8.1.x86_64.rpm libvirt-devel-7.1.0-6.8.1.x86_64.rpm libvirt-doc-7.1.0-6.8.1.noarch.rpm libvirt-libs-7.1.0-6.8.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-6.8.1.x86_64.rpm libvirt-nss-7.1.0-6.8.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-6.8.1.x86_64.rpm libvirt-7.1.0-6.8.1.s390x.rpm libvirt-admin-7.1.0-6.8.1.s390x.rpm libvirt-client-7.1.0-6.8.1.s390x.rpm libvirt-daemon-7.1.0-6.8.1.s390x.rpm libvirt-daemon-config-network-7.1.0-6.8.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.8.1.s390x.rpm libvirt-daemon-hooks-7.1.0-6.8.1.s390x.rpm libvirt-daemon-lxc-7.1.0-6.8.1.s390x.rpm libvirt-daemon-qemu-7.1.0-6.8.1.s390x.rpm libvirt-devel-7.1.0-6.8.1.s390x.rpm libvirt-libs-7.1.0-6.8.1.s390x.rpm libvirt-lock-sanlock-7.1.0-6.8.1.s390x.rpm libvirt-nss-7.1.0-6.8.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-6.8.1.s390x.rpm libvirt-7.1.0-6.8.1.ppc64le.rpm libvirt-admin-7.1.0-6.8.1.ppc64le.rpm libvirt-client-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-6.8.1.ppc64le.rpm libvirt-devel-7.1.0-6.8.1.ppc64le.rpm libvirt-libs-7.1.0-6.8.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-6.8.1.ppc64le.rpm libvirt-nss-7.1.0-6.8.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-6.8.1.ppc64le.rpm libvirt-7.1.0-6.8.1.aarch64.rpm libvirt-admin-7.1.0-6.8.1.aarch64.rpm libvirt-client-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-6.8.1.aarch64.rpm libvirt-devel-7.1.0-6.8.1.aarch64.rpm libvirt-libs-7.1.0-6.8.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-6.8.1.aarch64.rpm libvirt-nss-7.1.0-6.8.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-6.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3532 important SUSE Updates openSUSE-SLE 15.3 This update for pmdk fixes the following issues: - Fixed an issue when 'PMDK' causes data corruption on power failure. (bsc#1191339) libpmem-devel-1.9-3.3.1.x86_64.rpm libpmem1-1.9-3.3.1.x86_64.rpm libpmemblk-devel-1.9-3.3.1.x86_64.rpm libpmemblk1-1.9-3.3.1.x86_64.rpm libpmemlog-devel-1.9-3.3.1.x86_64.rpm libpmemlog1-1.9-3.3.1.x86_64.rpm libpmemobj-devel-1.9-3.3.1.x86_64.rpm libpmemobj1-1.9-3.3.1.x86_64.rpm libpmempool-devel-1.9-3.3.1.x86_64.rpm libpmempool1-1.9-3.3.1.x86_64.rpm librpmem-devel-1.9-3.3.1.x86_64.rpm librpmem1-1.9-3.3.1.x86_64.rpm pmdk-1.9-3.3.1.src.rpm pmdk-1.9-3.3.1.x86_64.rpm pmdk-devel-doc-1.9-3.3.1.x86_64.rpm pmdk-tools-1.9-3.3.1.x86_64.rpm rpmemd-1.9-3.3.1.x86_64.rpm libpmem-devel-1.9-3.3.1.ppc64le.rpm libpmem1-1.9-3.3.1.ppc64le.rpm libpmemblk-devel-1.9-3.3.1.ppc64le.rpm libpmemblk1-1.9-3.3.1.ppc64le.rpm libpmemlog-devel-1.9-3.3.1.ppc64le.rpm libpmemlog1-1.9-3.3.1.ppc64le.rpm libpmemobj-devel-1.9-3.3.1.ppc64le.rpm libpmemobj1-1.9-3.3.1.ppc64le.rpm libpmempool-devel-1.9-3.3.1.ppc64le.rpm libpmempool1-1.9-3.3.1.ppc64le.rpm librpmem-devel-1.9-3.3.1.ppc64le.rpm librpmem1-1.9-3.3.1.ppc64le.rpm pmdk-1.9-3.3.1.ppc64le.rpm pmdk-devel-doc-1.9-3.3.1.ppc64le.rpm pmdk-tools-1.9-3.3.1.ppc64le.rpm rpmemd-1.9-3.3.1.ppc64le.rpm openSUSE-SLE-15.3-2021-3609 low SUSE Updates openSUSE-SLE 15.3 This update for autoyast2 fixes the following issues: - Add the "keep_unknown_lv" element to the partitioning schema. (bsc#1191968) autoyast2-4.3.91-3.28.1.noarch.rpm autoyast2-4.3.91-3.28.1.src.rpm autoyast2-installation-4.3.91-3.28.1.noarch.rpm openSUSE-SLE-15.3-2021-3606 moderate SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: - 15.3.20211025 (tracked in bsc#933411) - Added note about NVMe-oF TCP support (bsc#1190394) - Added note about manual pages (bsc#1188302) - Added keepalived to support exceptions (bsc#1183906) - Updated note about support information (bsc#1189989) - Updated SELinux note to include warning (bsc#1186099) release-notes-sles-15.3.20211025-3.12.2.noarch.rpm release-notes-sles-15.3.20211025-3.12.2.src.rpm openSUSE-SLE-15.3-2021-3846 moderate SUSE Updates openSUSE-SLE 15.3 This update for blktrace fixes the following issues: - Fix a rare crash due to dropped first event while using pipe input. (bsc#1191788) blktrace-1.1.0+git.20170126-3.6.1.src.rpm blktrace-1.1.0+git.20170126-3.6.1.x86_64.rpm blktrace-1.1.0+git.20170126-3.6.1.s390x.rpm blktrace-1.1.0+git.20170126-3.6.1.ppc64le.rpm blktrace-1.1.0+git.20170126-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3796 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issues: Lifecycle data updates. (bsc#1020320) - Updates for 5_3_18-24_83, 5_3_18-24_86, 5_3_18-59_24, 5_3_18-59_27. lifecycle-data-sle-module-live-patching-15-4.63.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-4.63.1.src.rpm openSUSE-SLE-15.3-2021-3884 moderate SUSE Updates openSUSE-SLE 15.3 This update for libmwaw and libetonyek fixes the following issues: libetonyek: update to version 0.1.10 (jsc#SLE-18214) - Use mdds-1.5 by default. - Parse shadow. - Improve detection of the "new" formats. - Fix handling of text baseline shift. - Improve various formats. - Various small bugfixes and fuzzer fixes libmwaw: update to 0.3.20 (jsc#SLE-18214) - add a parser for Student Writing Center files (v1) - add a parser for Word Maker files (v1) - add a parser for Canvas 9/10 files (Mac) - add a parser for Canvas 7/8 files (Mac) - add a parser for Canvas Image files (Mac 5-8, Windows 5-6) - add a parser for Canvas 6 (Mac and Windows) - remove many coverity warnings - add a parser for Canvas 5 (Mac and Windows) - add basic support for hatch - add basic support for drop cap libetonyek-0.1.10-3.3.1.src.rpm libetonyek-0_1-1-0.1.10-3.3.1.x86_64.rpm libetonyek-devel-0.1.10-3.3.1.x86_64.rpm libetonyek-devel-doc-0.1.10-3.3.1.noarch.rpm libetonyek-tools-0.1.10-3.3.1.x86_64.rpm libmwaw-0.3.20-4.14.1.src.rpm libmwaw-0_3-3-0.3.20-4.14.1.x86_64.rpm libmwaw-devel-0.3.20-4.14.1.x86_64.rpm libmwaw-devel-doc-0.3.20-4.14.1.noarch.rpm libmwaw-tools-0.3.20-4.14.1.x86_64.rpm libetonyek-0_1-1-0.1.10-3.3.1.s390x.rpm libetonyek-devel-0.1.10-3.3.1.s390x.rpm libetonyek-tools-0.1.10-3.3.1.s390x.rpm libmwaw-0_3-3-0.3.20-4.14.1.s390x.rpm libmwaw-devel-0.3.20-4.14.1.s390x.rpm libmwaw-tools-0.3.20-4.14.1.s390x.rpm libetonyek-0_1-1-0.1.10-3.3.1.ppc64le.rpm libetonyek-devel-0.1.10-3.3.1.ppc64le.rpm libetonyek-tools-0.1.10-3.3.1.ppc64le.rpm libmwaw-0_3-3-0.3.20-4.14.1.ppc64le.rpm libmwaw-devel-0.3.20-4.14.1.ppc64le.rpm libmwaw-tools-0.3.20-4.14.1.ppc64le.rpm libetonyek-0_1-1-0.1.10-3.3.1.aarch64.rpm libetonyek-devel-0.1.10-3.3.1.aarch64.rpm libetonyek-tools-0.1.10-3.3.1.aarch64.rpm libmwaw-0_3-3-0.3.20-4.14.1.aarch64.rpm libmwaw-devel-0.3.20-4.14.1.aarch64.rpm libmwaw-tools-0.3.20-4.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3616 moderate SUSE Updates openSUSE-SLE 15.3 This update for binutils fixes the following issues: Update to binutils 2.37: * The GNU Binutils sources now requires a C99 compiler and library to build. * Support for Realm Management Extension (RME) for AArch64 has been added. * A new linker option '-z report-relative-reloc' for x86 ELF targets has been added to report dynamic relative relocations. * A new linker option '-z start-stop-gc' has been added to disable special treatment of __start_*/__stop_* references when --gc-sections. * A new linker options '-Bno-symbolic' has been added which will cancel the '-Bsymbolic' and '-Bsymbolic-functions' options. * The readelf tool has a new command line option which can be used to specify how the numeric values of symbols are reported. --sym-base=0|8|10|16 tells readelf to display the values in base 8, base 10 or base 16. A sym base of 0 represents the default action of displaying values under 10000 in base 10 and values above that in base 16. * A new format has been added to the nm program. Specifying '--format=just-symbols' (or just using -j) will tell the program to only display symbol names and nothing else. * A new command line option '--keep-section-symbols' has been added to objcopy and strip. This stops the removal of unused section symbols when the file is copied. Removing these symbols saves space, but sometimes they are needed by other tools. * The '--weaken', '--weaken-symbol' and '--weaken-symbols' options supported by objcopy now make undefined symbols weak on targets that support weak symbols. * Readelf and objdump can now display and use the contents of .debug_sup sections. * Readelf and objdump will now follow links to separate debug info files by default. This behaviour can be stopped via the use of the new '-wN' or '--debug-dump=no-follow-links' options for readelf and the '-WN' or '--dwarf=no-follow-links' options for objdump. Also the old behaviour can be restored by the use of the '--enable-follow-debug-links=no' configure time option. The semantics of the =follow-links option have also been slightly changed. When enabled, the option allows for the loading of symbol tables and string tables from the separate files which can be used to enhance the information displayed when dumping other sections, but it does not automatically imply that information from the separate files should be displayed. If other debug section display options are also enabled (eg '--debug-dump=info') then the contents of matching sections in both the main file and the separate debuginfo file *will* be displayed. This is because in most cases the debug section will only be present in one of the files. If however non-debug section display options are enabled (eg '--sections') then the contents of matching parts of the separate debuginfo file will *not* be displayed. This is because in most cases the user probably only wanted to load the symbol information from the separate debuginfo file. In order to change this behaviour a new command line option --process-links can be used. This will allow di0pslay options to applied to both the main file and any separate debuginfo files. * Nm has a new command line option: '--quiet'. This suppresses "no symbols" diagnostic. Update to binutils 2.36: New features in the Assembler: - General: * When setting the link order attribute of ELF sections, it is now possible to use a numeric section index instead of symbol name. * Added a .nop directive to generate a single no-op instruction in a target neutral manner. This instruction does have an effect on DWARF line number generation, if that is active. * Removed --reduce-memory-overheads and --hash-size as gas now uses hash tables that can be expand and shrink automatically. - X86/x86_64: * Add support for AVX VNNI, HRESET, UINTR, TDX, AMX and Key Locker instructions. * Support non-absolute segment values for lcall and ljmp. * Add {disp16} pseudo prefix to x86 assembler. * Configure with --enable-x86-used-note by default for Linux/x86. - ARM/AArch64: * Add support for Cortex-A78, Cortex-A78AE and Cortex-X1, Cortex-R82, Neoverse V1, and Neoverse N2 cores. * Add support for ETMv4 (Embedded Trace Macrocell), ETE (Embedded Trace Extension), TRBE (Trace Buffer Extension), CSRE (Call Stack Recorder Extension) and BRBE (Branch Record Buffer Extension) system registers. * Add support for Armv8-R and Armv8.7-A ISA extensions. * Add support for DSB memory nXS barrier, WFET and WFIT instruction for Armv8.7. * Add support for +csre feature for -march. Add CSR PDEC instruction for CSRE feature in AArch64. * Add support for +flagm feature for -march in Armv8.4 AArch64. * Add support for +ls64 feature for -march in Armv8.7 AArch64. Add atomic 64-byte load/store instructions for this feature. * Add support for +pauth (Pointer Authentication) feature for -march in AArch64. New features in the Linker: * Add --error-handling-script=<NAME> command line option to allow a helper script to be invoked when an undefined symbol or a missing library is encountered. This option can be suppressed via the configure time switch: --enable-error-handling-script=no. * Add -z x86-64-{baseline|v[234]} to the x86 ELF linker to mark x86-64-{baseline|v[234]} ISA level as needed. * Add -z unique-symbol to avoid duplicated local symbol names. * The creation of PE format DLLs now defaults to using a more secure set of DLL characteristics. * The linker now deduplicates the types in .ctf sections. The new command-line option --ctf-share-types describes how to do this: its default value, share-unconflicted, produces the most compact output. * The linker now omits the "variable section" from .ctf sections by default, saving space. This is almost certainly what you want unless you are working on a project that has its own analogue of symbol tables that are not reflected in the ELF symtabs. New features in other binary tools: * The ar tool's previously unused l modifier is now used for specifying dependencies of a static library. The arguments of this option (or --record-libdeps long form option) will be stored verbatim in the __.LIBDEP member of the archive, which the linker may read at link time. * Readelf can now display the contents of LTO symbol table sections when asked to do so via the --lto-syms command line option. * Readelf now accepts the -C command line option to enable the demangling of symbol names. In addition the --demangle=<style>, --no-demangle, --recurse-limit and --no-recurse-limit options are also now availale. The following security fixes are addressed by the update: - CVE-2021-20197: Fixed a race condition which allows users to own arbitrary files (bsc#1181452). - CVE-2021-20284: Fixed a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in elf.c (bsc#1183511). - CVE-2021-3487: Fixed a denial of service via excessive debug section size causing excessive memory consumption in bfd's dwarf2.c read_section() (bsc#1184620). - CVE-2020-35448: Fixed a heap-based buffer over-read in bfd_getl_signed_32() in libbfd.c (bsc#1184794). - CVE-2020-16590: Fixed a double free vulnerability in process_symbol_table() (bsc#1179898). - CVE-2020-16591: Fixed an invalid read in process_symbol_table() (bsc#1179899). - CVE-2020-16592: Fixed an use-after-free in bfd_hash_lookup() (bsc#1179900). - CVE-2020-16593: Fixed a null pointer dereference in scan_unit_for_symbols() (bsc#1179901). - CVE-2020-16598: Fixed a null pointer dereference in debug_get_real_type() (bsc#1179902). - CVE-2020-16599: Fixed a null pointer dereference in _bfd_elf_get_symbol_version_string() (bsc#1179903) - CVE-2020-35493: Fixed heap-based buffer overflow in bfd_pef_parse_function_stubs function in bfd/pef.c via crafted PEF file (bsc#1180451). - CVE-2020-35496: Fixed multiple null pointer dereferences in bfd module due to not checking return value of bfd_malloc (bsc#1180454). - CVE-2020-35507: Fixed a null pointer dereference in bfd_pef_parse_function_stubs() (bsc#1180461). binutils-2.37-7.21.2.src.rpm binutils-2.37-7.21.2.x86_64.rpm binutils-devel-2.37-7.21.2.x86_64.rpm binutils-devel-32bit-2.37-7.21.2.x86_64.rpm binutils-gold-2.37-7.21.2.x86_64.rpm bpftrace-0.11.4-3.2.1.src.rpm bpftrace-0.11.4-3.2.1.x86_64.rpm bpftrace-tools-0.11.4-3.2.1.noarch.rpm cross-aarch64-binutils-2.37-7.21.1.src.rpm cross-aarch64-binutils-2.37-7.21.1.x86_64.rpm cross-arm-binutils-2.37-7.21.1.src.rpm cross-arm-binutils-2.37-7.21.1.x86_64.rpm cross-avr-binutils-2.37-7.21.1.src.rpm cross-avr-binutils-2.37-7.21.1.x86_64.rpm cross-epiphany-binutils-2.37-7.21.1.src.rpm cross-epiphany-binutils-2.37-7.21.1.x86_64.rpm cross-hppa-binutils-2.37-7.21.1.src.rpm cross-hppa-binutils-2.37-7.21.1.x86_64.rpm cross-hppa64-binutils-2.37-7.21.1.src.rpm cross-hppa64-binutils-2.37-7.21.1.x86_64.rpm cross-i386-binutils-2.37-7.21.1.src.rpm cross-i386-binutils-2.37-7.21.1.x86_64.rpm cross-ia64-binutils-2.37-7.21.1.src.rpm cross-ia64-binutils-2.37-7.21.1.x86_64.rpm cross-m68k-binutils-2.37-7.21.1.src.rpm cross-m68k-binutils-2.37-7.21.1.x86_64.rpm cross-mips-binutils-2.37-7.21.1.src.rpm cross-mips-binutils-2.37-7.21.1.x86_64.rpm cross-ppc-binutils-2.37-7.21.1.src.rpm cross-ppc-binutils-2.37-7.21.1.x86_64.rpm cross-ppc64-binutils-2.37-7.21.1.src.rpm cross-ppc64-binutils-2.37-7.21.1.x86_64.rpm cross-ppc64le-binutils-2.37-7.21.1.src.rpm cross-ppc64le-binutils-2.37-7.21.1.x86_64.rpm cross-riscv64-binutils-2.37-7.21.1.src.rpm cross-riscv64-binutils-2.37-7.21.1.x86_64.rpm cross-rx-binutils-2.37-7.21.1.src.rpm cross-rx-binutils-2.37-7.21.1.x86_64.rpm cross-s390-binutils-2.37-7.21.1.src.rpm cross-s390-binutils-2.37-7.21.1.x86_64.rpm cross-s390x-binutils-2.37-7.21.1.src.rpm cross-s390x-binutils-2.37-7.21.1.x86_64.rpm cross-sparc-binutils-2.37-7.21.1.src.rpm cross-sparc-binutils-2.37-7.21.1.x86_64.rpm cross-sparc64-binutils-2.37-7.21.1.src.rpm cross-sparc64-binutils-2.37-7.21.1.x86_64.rpm cross-spu-binutils-2.37-7.21.1.src.rpm cross-spu-binutils-2.37-7.21.1.x86_64.rpm libctf-nobfd0-2.37-7.21.2.x86_64.rpm libctf0-2.37-7.21.2.x86_64.rpm binutils-2.37-7.21.2.s390x.rpm binutils-devel-2.37-7.21.2.s390x.rpm binutils-gold-2.37-7.21.2.s390x.rpm bpftrace-0.11.4-3.2.1.s390x.rpm cross-aarch64-binutils-2.37-7.21.1.s390x.rpm cross-arm-binutils-2.37-7.21.1.s390x.rpm cross-avr-binutils-2.37-7.21.1.s390x.rpm cross-epiphany-binutils-2.37-7.21.1.s390x.rpm cross-hppa-binutils-2.37-7.21.1.s390x.rpm cross-hppa64-binutils-2.37-7.21.1.s390x.rpm cross-i386-binutils-2.37-7.21.1.s390x.rpm cross-ia64-binutils-2.37-7.21.1.s390x.rpm cross-m68k-binutils-2.37-7.21.1.s390x.rpm cross-mips-binutils-2.37-7.21.1.s390x.rpm cross-ppc-binutils-2.37-7.21.1.s390x.rpm cross-ppc64-binutils-2.37-7.21.1.s390x.rpm cross-ppc64le-binutils-2.37-7.21.1.s390x.rpm cross-riscv64-binutils-2.37-7.21.1.s390x.rpm cross-rx-binutils-2.37-7.21.1.s390x.rpm cross-s390-binutils-2.37-7.21.1.s390x.rpm cross-sparc-binutils-2.37-7.21.1.s390x.rpm cross-sparc64-binutils-2.37-7.21.1.s390x.rpm cross-spu-binutils-2.37-7.21.1.s390x.rpm cross-x86_64-binutils-2.37-7.21.1.s390x.rpm cross-x86_64-binutils-2.37-7.21.1.src.rpm libctf-nobfd0-2.37-7.21.2.s390x.rpm libctf0-2.37-7.21.2.s390x.rpm binutils-2.37-7.21.2.ppc64le.rpm binutils-devel-2.37-7.21.2.ppc64le.rpm binutils-gold-2.37-7.21.2.ppc64le.rpm bpftrace-0.11.4-3.2.1.ppc64le.rpm cross-aarch64-binutils-2.37-7.21.1.ppc64le.rpm cross-arm-binutils-2.37-7.21.1.ppc64le.rpm cross-avr-binutils-2.37-7.21.1.ppc64le.rpm cross-epiphany-binutils-2.37-7.21.1.ppc64le.rpm cross-hppa-binutils-2.37-7.21.1.ppc64le.rpm cross-hppa64-binutils-2.37-7.21.1.ppc64le.rpm cross-i386-binutils-2.37-7.21.1.ppc64le.rpm cross-ia64-binutils-2.37-7.21.1.ppc64le.rpm cross-m68k-binutils-2.37-7.21.1.ppc64le.rpm cross-mips-binutils-2.37-7.21.1.ppc64le.rpm cross-ppc-binutils-2.37-7.21.1.ppc64le.rpm cross-ppc64-binutils-2.37-7.21.1.ppc64le.rpm cross-riscv64-binutils-2.37-7.21.1.ppc64le.rpm cross-rx-binutils-2.37-7.21.1.ppc64le.rpm cross-s390-binutils-2.37-7.21.1.ppc64le.rpm cross-s390x-binutils-2.37-7.21.1.ppc64le.rpm cross-sparc-binutils-2.37-7.21.1.ppc64le.rpm cross-sparc64-binutils-2.37-7.21.1.ppc64le.rpm cross-spu-binutils-2.37-7.21.1.ppc64le.rpm cross-x86_64-binutils-2.37-7.21.1.ppc64le.rpm libctf-nobfd0-2.37-7.21.2.ppc64le.rpm libctf0-2.37-7.21.2.ppc64le.rpm binutils-2.37-7.21.2.aarch64.rpm binutils-devel-2.37-7.21.2.aarch64.rpm binutils-gold-2.37-7.21.2.aarch64.rpm bpftrace-0.11.4-3.2.1.aarch64.rpm cross-arm-binutils-2.37-7.21.1.aarch64.rpm cross-avr-binutils-2.37-7.21.1.aarch64.rpm cross-epiphany-binutils-2.37-7.21.1.aarch64.rpm cross-hppa-binutils-2.37-7.21.1.aarch64.rpm cross-hppa64-binutils-2.37-7.21.1.aarch64.rpm cross-i386-binutils-2.37-7.21.1.aarch64.rpm cross-ia64-binutils-2.37-7.21.1.aarch64.rpm cross-m68k-binutils-2.37-7.21.1.aarch64.rpm cross-mips-binutils-2.37-7.21.1.aarch64.rpm cross-ppc-binutils-2.37-7.21.1.aarch64.rpm cross-ppc64-binutils-2.37-7.21.1.aarch64.rpm cross-ppc64le-binutils-2.37-7.21.1.aarch64.rpm cross-riscv64-binutils-2.37-7.21.1.aarch64.rpm cross-rx-binutils-2.37-7.21.1.aarch64.rpm cross-s390-binutils-2.37-7.21.1.aarch64.rpm cross-s390x-binutils-2.37-7.21.1.aarch64.rpm cross-sparc-binutils-2.37-7.21.1.aarch64.rpm cross-sparc64-binutils-2.37-7.21.1.aarch64.rpm cross-spu-binutils-2.37-7.21.1.aarch64.rpm cross-x86_64-binutils-2.37-7.21.1.aarch64.rpm libctf-nobfd0-2.37-7.21.2.aarch64.rpm libctf0-2.37-7.21.2.aarch64.rpm openSUSE-SLE-15.3-2021-3591 moderate SUSE Updates openSUSE-SLE 15.3 This update for man-pages fixes the following issues: - Added missing manual entry for kernel_lockdown in section 7 (bsc#1185534) man-pages-4.16-13.3.1.noarch.rpm man-pages-4.16-13.3.1.src.rpm openSUSE-SLE-15.3-2021-3590 moderate SUSE Updates openSUSE-SLE 15.3 This update for libyui fixes the following issues: - Fixed crash in NCurses online update when retracted packages are present (bsc#1191130) libyui-4.1.5-3.6.1.src.rpm libyui-bindings-4.1.5-3.6.1.src.rpm libyui-devel-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-4.1.5-3.6.1.src.rpm libyui-ncurses-devel-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-pkg-4.1.5-3.6.1.src.rpm libyui-ncurses-pkg-devel-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-pkg15-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-rest-api-4.1.5-3.6.1.src.rpm libyui-ncurses-rest-api-devel-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-rest-api15-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-tools-4.1.5-3.6.1.x86_64.rpm libyui-ncurses15-4.1.5-3.6.1.x86_64.rpm libyui-qt-4.1.5-3.6.1.src.rpm libyui-qt-devel-4.1.5-3.6.1.x86_64.rpm libyui-qt-graph-4.1.5-3.6.1.src.rpm libyui-qt-graph-devel-4.1.5-3.6.1.x86_64.rpm libyui-qt-graph15-4.1.5-3.6.1.x86_64.rpm libyui-qt-pkg-4.1.5-3.6.1.src.rpm libyui-qt-pkg-devel-4.1.5-3.6.1.x86_64.rpm libyui-qt-pkg15-4.1.5-3.6.1.x86_64.rpm libyui-qt-rest-api-4.1.5-3.6.1.src.rpm libyui-qt-rest-api-devel-4.1.5-3.6.1.x86_64.rpm libyui-qt-rest-api15-4.1.5-3.6.1.x86_64.rpm libyui-qt15-4.1.5-3.6.1.x86_64.rpm libyui-rest-api-4.1.5-3.6.1.src.rpm libyui-rest-api-devel-4.1.5-3.6.1.x86_64.rpm libyui-rest-api15-4.1.5-3.6.1.x86_64.rpm libyui15-4.1.5-3.6.1.x86_64.rpm perl-yui-4.1.5-3.6.1.x86_64.rpm python3-yui-4.1.5-3.6.1.x86_64.rpm ruby-yui-4.1.5-3.6.1.x86_64.rpm libyui-devel-4.1.5-3.6.1.s390x.rpm libyui-ncurses-devel-4.1.5-3.6.1.s390x.rpm libyui-ncurses-pkg-devel-4.1.5-3.6.1.s390x.rpm libyui-ncurses-pkg15-4.1.5-3.6.1.s390x.rpm libyui-ncurses-rest-api-devel-4.1.5-3.6.1.s390x.rpm libyui-ncurses-rest-api15-4.1.5-3.6.1.s390x.rpm libyui-ncurses-tools-4.1.5-3.6.1.s390x.rpm libyui-ncurses15-4.1.5-3.6.1.s390x.rpm libyui-qt-devel-4.1.5-3.6.1.s390x.rpm libyui-qt-graph-devel-4.1.5-3.6.1.s390x.rpm libyui-qt-graph15-4.1.5-3.6.1.s390x.rpm libyui-qt-pkg-devel-4.1.5-3.6.1.s390x.rpm libyui-qt-pkg15-4.1.5-3.6.1.s390x.rpm libyui-qt-rest-api-devel-4.1.5-3.6.1.s390x.rpm libyui-qt-rest-api15-4.1.5-3.6.1.s390x.rpm libyui-qt15-4.1.5-3.6.1.s390x.rpm libyui-rest-api-devel-4.1.5-3.6.1.s390x.rpm libyui-rest-api15-4.1.5-3.6.1.s390x.rpm libyui15-4.1.5-3.6.1.s390x.rpm perl-yui-4.1.5-3.6.1.s390x.rpm python3-yui-4.1.5-3.6.1.s390x.rpm ruby-yui-4.1.5-3.6.1.s390x.rpm libyui-devel-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-devel-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-pkg-devel-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-pkg15-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-rest-api-devel-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-rest-api15-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-tools-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses15-4.1.5-3.6.1.ppc64le.rpm libyui-qt-devel-4.1.5-3.6.1.ppc64le.rpm libyui-qt-graph-devel-4.1.5-3.6.1.ppc64le.rpm libyui-qt-graph15-4.1.5-3.6.1.ppc64le.rpm libyui-qt-pkg-devel-4.1.5-3.6.1.ppc64le.rpm libyui-qt-pkg15-4.1.5-3.6.1.ppc64le.rpm libyui-qt-rest-api-devel-4.1.5-3.6.1.ppc64le.rpm libyui-qt-rest-api15-4.1.5-3.6.1.ppc64le.rpm libyui-qt15-4.1.5-3.6.1.ppc64le.rpm libyui-rest-api-devel-4.1.5-3.6.1.ppc64le.rpm libyui-rest-api15-4.1.5-3.6.1.ppc64le.rpm libyui15-4.1.5-3.6.1.ppc64le.rpm perl-yui-4.1.5-3.6.1.ppc64le.rpm python3-yui-4.1.5-3.6.1.ppc64le.rpm ruby-yui-4.1.5-3.6.1.ppc64le.rpm libyui-devel-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-devel-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-pkg-devel-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-pkg15-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-rest-api-devel-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-rest-api15-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-tools-4.1.5-3.6.1.aarch64.rpm libyui-ncurses15-4.1.5-3.6.1.aarch64.rpm libyui-qt-devel-4.1.5-3.6.1.aarch64.rpm libyui-qt-graph-devel-4.1.5-3.6.1.aarch64.rpm libyui-qt-graph15-4.1.5-3.6.1.aarch64.rpm libyui-qt-pkg-devel-4.1.5-3.6.1.aarch64.rpm libyui-qt-pkg15-4.1.5-3.6.1.aarch64.rpm libyui-qt-rest-api-devel-4.1.5-3.6.1.aarch64.rpm libyui-qt-rest-api15-4.1.5-3.6.1.aarch64.rpm libyui-qt15-4.1.5-3.6.1.aarch64.rpm libyui-rest-api-devel-4.1.5-3.6.1.aarch64.rpm libyui-rest-api15-4.1.5-3.6.1.aarch64.rpm libyui15-4.1.5-3.6.1.aarch64.rpm perl-yui-4.1.5-3.6.1.aarch64.rpm python3-yui-4.1.5-3.6.1.aarch64.rpm ruby-yui-4.1.5-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3596 moderate SUSE Updates openSUSE-SLE 15.3 This update for libyui-ncurses-pkg fixes the following issues: - Fixed crash in NCurses online update when retracted packages are present (bsc#1191130) libyui-ncurses-pkg-2.50.8-3.3.1.src.rpm libyui-ncurses-pkg-doc-2.50.8-3.3.1.noarch.rpm libyui-ncurses-pkg-doc-2.50.8-3.3.1.src.rpm libyui-ncurses-pkg11-2.50.8-3.3.1.x86_64.rpm libyui-ncurses-pkg11-2.50.8-3.3.1.s390x.rpm libyui-ncurses-pkg11-2.50.8-3.3.1.ppc64le.rpm libyui-ncurses-pkg11-2.50.8-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3603 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - CVE-2021-42762: Updated seccomp rules with latest changes from flatpak (bsc#1191937). libjavascriptcoregtk-4_0-18-2.32.4-15.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.32.4-15.1.x86_64.rpm libwebkit2gtk-4_0-37-2.32.4-15.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.32.4-15.1.x86_64.rpm libwebkit2gtk3-lang-2.32.4-15.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-15.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.32.4-15.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-15.1.x86_64.rpm webkit-jsc-4-2.32.4-15.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.32.4-15.1.x86_64.rpm webkit2gtk3-2.32.4-15.1.src.rpm webkit2gtk3-devel-2.32.4-15.1.x86_64.rpm webkit2gtk3-minibrowser-2.32.4-15.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.32.4-15.1.s390x.rpm libwebkit2gtk-4_0-37-2.32.4-15.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-15.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.32.4-15.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-15.1.s390x.rpm webkit-jsc-4-2.32.4-15.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.32.4-15.1.s390x.rpm webkit2gtk3-devel-2.32.4-15.1.s390x.rpm webkit2gtk3-minibrowser-2.32.4-15.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.32.4-15.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.32.4-15.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-15.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.32.4-15.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-15.1.ppc64le.rpm webkit-jsc-4-2.32.4-15.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.32.4-15.1.ppc64le.rpm webkit2gtk3-devel-2.32.4-15.1.ppc64le.rpm webkit2gtk3-minibrowser-2.32.4-15.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.32.4-15.1.aarch64.rpm libwebkit2gtk-4_0-37-2.32.4-15.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-15.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.32.4-15.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-15.1.aarch64.rpm webkit-jsc-4-2.32.4-15.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.32.4-15.1.aarch64.rpm webkit2gtk3-devel-2.32.4-15.1.aarch64.rpm webkit2gtk3-minibrowser-2.32.4-15.1.aarch64.rpm openSUSE-SLE-15.3-2021-3584 important SUSE Updates openSUSE-SLE 15.3 This update for transfig fixes the following issues: Update to fig2dev version 3.2.8 Patchlevel 8b (Aug 2021) - bsc#1190618, CVE-2020-21529: stack buffer overflow in the bezier_spline function in genepic.c. - bsc#1190615, CVE-2020-21530: segmentation fault in the read_objects function in read.c. - bsc#1190617, CVE-2020-21531: global buffer overflow in the conv_pattern_index function in gencgm.c. - bsc#1190616, CVE-2020-21532: global buffer overflow in the setfigfont function in genepic.c. - bsc#1190612, CVE-2020-21533: stack buffer overflow in the read_textobject function in read.c. - bsc#1190611, CVE-2020-21534: global buffer overflow in the get_line function in read.c. - bsc#1190607, CVE-2020-21535: segmentation fault in the gencgm_start function in gencgm.c. - bsc#1192019, CVE-2021-32280: NULL pointer dereference in compute_closed_spline() in trans_spline.c transfig-3.2.8b-4.15.1.src.rpm transfig-3.2.8b-4.15.1.x86_64.rpm transfig-3.2.8b-4.15.1.s390x.rpm transfig-3.2.8b-4.15.1.ppc64le.rpm transfig-3.2.8b-4.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-3663 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-module-tools fixes the following issues: - Update to version 15.3.14: * more fixes for updates under secure boot * cert-script: Deal with existing $cert.delete file (bsc#1191804). suse-module-tools-15.3.14-3.14.1.src.rpm suse-module-tools-15.3.14-3.14.1.x86_64.rpm suse-module-tools-legacy-15.3.14-3.14.1.x86_64.rpm suse-module-tools-15.3.14-3.14.1.s390x.rpm suse-module-tools-legacy-15.3.14-3.14.1.s390x.rpm suse-module-tools-15.3.14-3.14.1.ppc64le.rpm suse-module-tools-legacy-15.3.14-3.14.1.ppc64le.rpm suse-module-tools-15.3.14-3.14.1.aarch64.rpm suse-module-tools-legacy-15.3.14-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3943 moderate SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21703: Fixed local privilege escalation via PHP-FPM (bsc#1192050). - CVE-2021-21707: Fixed special character breaks path in xml parsing (bsc#1193041). - Added patch to prevent memory access violation in php7 when running test suite (bsc#1175508) apache2-mod_php7-7.4.6-3.29.1.x86_64.rpm php7-7.4.6-3.29.1.src.rpm php7-7.4.6-3.29.1.x86_64.rpm php7-bcmath-7.4.6-3.29.1.x86_64.rpm php7-bz2-7.4.6-3.29.1.x86_64.rpm php7-calendar-7.4.6-3.29.1.x86_64.rpm php7-ctype-7.4.6-3.29.1.x86_64.rpm php7-curl-7.4.6-3.29.1.x86_64.rpm php7-dba-7.4.6-3.29.1.x86_64.rpm php7-devel-7.4.6-3.29.1.x86_64.rpm php7-dom-7.4.6-3.29.1.x86_64.rpm php7-embed-7.4.6-3.29.1.x86_64.rpm php7-enchant-7.4.6-3.29.1.x86_64.rpm php7-exif-7.4.6-3.29.1.x86_64.rpm php7-fastcgi-7.4.6-3.29.1.x86_64.rpm php7-fileinfo-7.4.6-3.29.1.x86_64.rpm php7-firebird-7.4.6-3.29.1.x86_64.rpm php7-fpm-7.4.6-3.29.1.x86_64.rpm php7-ftp-7.4.6-3.29.1.x86_64.rpm php7-gd-7.4.6-3.29.1.x86_64.rpm php7-gettext-7.4.6-3.29.1.x86_64.rpm php7-gmp-7.4.6-3.29.1.x86_64.rpm php7-iconv-7.4.6-3.29.1.x86_64.rpm php7-intl-7.4.6-3.29.1.x86_64.rpm php7-json-7.4.6-3.29.1.x86_64.rpm php7-ldap-7.4.6-3.29.1.x86_64.rpm php7-mbstring-7.4.6-3.29.1.x86_64.rpm php7-mysql-7.4.6-3.29.1.x86_64.rpm php7-odbc-7.4.6-3.29.1.x86_64.rpm php7-opcache-7.4.6-3.29.1.x86_64.rpm php7-openssl-7.4.6-3.29.1.x86_64.rpm php7-pcntl-7.4.6-3.29.1.x86_64.rpm php7-pdo-7.4.6-3.29.1.x86_64.rpm php7-pgsql-7.4.6-3.29.1.x86_64.rpm php7-phar-7.4.6-3.29.1.x86_64.rpm php7-posix-7.4.6-3.29.1.x86_64.rpm php7-readline-7.4.6-3.29.1.x86_64.rpm php7-shmop-7.4.6-3.29.1.x86_64.rpm php7-snmp-7.4.6-3.29.1.x86_64.rpm php7-soap-7.4.6-3.29.1.x86_64.rpm php7-sockets-7.4.6-3.29.1.x86_64.rpm php7-sodium-7.4.6-3.29.1.x86_64.rpm php7-sqlite-7.4.6-3.29.1.x86_64.rpm php7-sysvmsg-7.4.6-3.29.1.x86_64.rpm php7-sysvsem-7.4.6-3.29.1.x86_64.rpm php7-sysvshm-7.4.6-3.29.1.x86_64.rpm php7-test-7.4.6-3.29.1.src.rpm php7-test-7.4.6-3.29.1.x86_64.rpm php7-tidy-7.4.6-3.29.1.x86_64.rpm php7-tokenizer-7.4.6-3.29.1.x86_64.rpm php7-xmlreader-7.4.6-3.29.1.x86_64.rpm php7-xmlrpc-7.4.6-3.29.1.x86_64.rpm php7-xmlwriter-7.4.6-3.29.1.x86_64.rpm php7-xsl-7.4.6-3.29.1.x86_64.rpm php7-zip-7.4.6-3.29.1.x86_64.rpm php7-zlib-7.4.6-3.29.1.x86_64.rpm apache2-mod_php7-7.4.6-3.29.1.s390x.rpm php7-7.4.6-3.29.1.s390x.rpm php7-bcmath-7.4.6-3.29.1.s390x.rpm php7-bz2-7.4.6-3.29.1.s390x.rpm php7-calendar-7.4.6-3.29.1.s390x.rpm php7-ctype-7.4.6-3.29.1.s390x.rpm php7-curl-7.4.6-3.29.1.s390x.rpm php7-dba-7.4.6-3.29.1.s390x.rpm php7-devel-7.4.6-3.29.1.s390x.rpm php7-dom-7.4.6-3.29.1.s390x.rpm php7-embed-7.4.6-3.29.1.s390x.rpm php7-enchant-7.4.6-3.29.1.s390x.rpm php7-exif-7.4.6-3.29.1.s390x.rpm php7-fastcgi-7.4.6-3.29.1.s390x.rpm php7-fileinfo-7.4.6-3.29.1.s390x.rpm php7-firebird-7.4.6-3.29.1.s390x.rpm php7-fpm-7.4.6-3.29.1.s390x.rpm php7-ftp-7.4.6-3.29.1.s390x.rpm php7-gd-7.4.6-3.29.1.s390x.rpm php7-gettext-7.4.6-3.29.1.s390x.rpm php7-gmp-7.4.6-3.29.1.s390x.rpm php7-iconv-7.4.6-3.29.1.s390x.rpm php7-intl-7.4.6-3.29.1.s390x.rpm php7-json-7.4.6-3.29.1.s390x.rpm php7-ldap-7.4.6-3.29.1.s390x.rpm php7-mbstring-7.4.6-3.29.1.s390x.rpm php7-mysql-7.4.6-3.29.1.s390x.rpm php7-odbc-7.4.6-3.29.1.s390x.rpm php7-opcache-7.4.6-3.29.1.s390x.rpm php7-openssl-7.4.6-3.29.1.s390x.rpm php7-pcntl-7.4.6-3.29.1.s390x.rpm php7-pdo-7.4.6-3.29.1.s390x.rpm php7-pgsql-7.4.6-3.29.1.s390x.rpm php7-phar-7.4.6-3.29.1.s390x.rpm php7-posix-7.4.6-3.29.1.s390x.rpm php7-readline-7.4.6-3.29.1.s390x.rpm php7-shmop-7.4.6-3.29.1.s390x.rpm php7-snmp-7.4.6-3.29.1.s390x.rpm php7-soap-7.4.6-3.29.1.s390x.rpm php7-sockets-7.4.6-3.29.1.s390x.rpm php7-sodium-7.4.6-3.29.1.s390x.rpm php7-sqlite-7.4.6-3.29.1.s390x.rpm php7-sysvmsg-7.4.6-3.29.1.s390x.rpm php7-sysvsem-7.4.6-3.29.1.s390x.rpm php7-sysvshm-7.4.6-3.29.1.s390x.rpm php7-test-7.4.6-3.29.1.s390x.rpm php7-tidy-7.4.6-3.29.1.s390x.rpm php7-tokenizer-7.4.6-3.29.1.s390x.rpm php7-xmlreader-7.4.6-3.29.1.s390x.rpm php7-xmlrpc-7.4.6-3.29.1.s390x.rpm php7-xmlwriter-7.4.6-3.29.1.s390x.rpm php7-xsl-7.4.6-3.29.1.s390x.rpm php7-zip-7.4.6-3.29.1.s390x.rpm php7-zlib-7.4.6-3.29.1.s390x.rpm apache2-mod_php7-7.4.6-3.29.1.ppc64le.rpm php7-7.4.6-3.29.1.ppc64le.rpm php7-bcmath-7.4.6-3.29.1.ppc64le.rpm php7-bz2-7.4.6-3.29.1.ppc64le.rpm php7-calendar-7.4.6-3.29.1.ppc64le.rpm php7-ctype-7.4.6-3.29.1.ppc64le.rpm php7-curl-7.4.6-3.29.1.ppc64le.rpm php7-dba-7.4.6-3.29.1.ppc64le.rpm php7-devel-7.4.6-3.29.1.ppc64le.rpm php7-dom-7.4.6-3.29.1.ppc64le.rpm php7-embed-7.4.6-3.29.1.ppc64le.rpm php7-enchant-7.4.6-3.29.1.ppc64le.rpm php7-exif-7.4.6-3.29.1.ppc64le.rpm php7-fastcgi-7.4.6-3.29.1.ppc64le.rpm php7-fileinfo-7.4.6-3.29.1.ppc64le.rpm php7-firebird-7.4.6-3.29.1.ppc64le.rpm php7-fpm-7.4.6-3.29.1.ppc64le.rpm php7-ftp-7.4.6-3.29.1.ppc64le.rpm php7-gd-7.4.6-3.29.1.ppc64le.rpm php7-gettext-7.4.6-3.29.1.ppc64le.rpm php7-gmp-7.4.6-3.29.1.ppc64le.rpm php7-iconv-7.4.6-3.29.1.ppc64le.rpm php7-intl-7.4.6-3.29.1.ppc64le.rpm php7-json-7.4.6-3.29.1.ppc64le.rpm php7-ldap-7.4.6-3.29.1.ppc64le.rpm php7-mbstring-7.4.6-3.29.1.ppc64le.rpm php7-mysql-7.4.6-3.29.1.ppc64le.rpm php7-odbc-7.4.6-3.29.1.ppc64le.rpm php7-opcache-7.4.6-3.29.1.ppc64le.rpm php7-openssl-7.4.6-3.29.1.ppc64le.rpm php7-pcntl-7.4.6-3.29.1.ppc64le.rpm php7-pdo-7.4.6-3.29.1.ppc64le.rpm php7-pgsql-7.4.6-3.29.1.ppc64le.rpm php7-phar-7.4.6-3.29.1.ppc64le.rpm php7-posix-7.4.6-3.29.1.ppc64le.rpm php7-readline-7.4.6-3.29.1.ppc64le.rpm php7-shmop-7.4.6-3.29.1.ppc64le.rpm php7-snmp-7.4.6-3.29.1.ppc64le.rpm php7-soap-7.4.6-3.29.1.ppc64le.rpm php7-sockets-7.4.6-3.29.1.ppc64le.rpm php7-sodium-7.4.6-3.29.1.ppc64le.rpm php7-sqlite-7.4.6-3.29.1.ppc64le.rpm php7-sysvmsg-7.4.6-3.29.1.ppc64le.rpm php7-sysvsem-7.4.6-3.29.1.ppc64le.rpm php7-sysvshm-7.4.6-3.29.1.ppc64le.rpm php7-test-7.4.6-3.29.1.ppc64le.rpm php7-tidy-7.4.6-3.29.1.ppc64le.rpm php7-tokenizer-7.4.6-3.29.1.ppc64le.rpm php7-xmlreader-7.4.6-3.29.1.ppc64le.rpm php7-xmlrpc-7.4.6-3.29.1.ppc64le.rpm php7-xmlwriter-7.4.6-3.29.1.ppc64le.rpm php7-xsl-7.4.6-3.29.1.ppc64le.rpm php7-zip-7.4.6-3.29.1.ppc64le.rpm php7-zlib-7.4.6-3.29.1.ppc64le.rpm apache2-mod_php7-7.4.6-3.29.1.aarch64.rpm php7-7.4.6-3.29.1.aarch64.rpm php7-bcmath-7.4.6-3.29.1.aarch64.rpm php7-bz2-7.4.6-3.29.1.aarch64.rpm php7-calendar-7.4.6-3.29.1.aarch64.rpm php7-ctype-7.4.6-3.29.1.aarch64.rpm php7-curl-7.4.6-3.29.1.aarch64.rpm php7-dba-7.4.6-3.29.1.aarch64.rpm php7-devel-7.4.6-3.29.1.aarch64.rpm php7-dom-7.4.6-3.29.1.aarch64.rpm php7-embed-7.4.6-3.29.1.aarch64.rpm php7-enchant-7.4.6-3.29.1.aarch64.rpm php7-exif-7.4.6-3.29.1.aarch64.rpm php7-fastcgi-7.4.6-3.29.1.aarch64.rpm php7-fileinfo-7.4.6-3.29.1.aarch64.rpm php7-firebird-7.4.6-3.29.1.aarch64.rpm php7-fpm-7.4.6-3.29.1.aarch64.rpm php7-ftp-7.4.6-3.29.1.aarch64.rpm php7-gd-7.4.6-3.29.1.aarch64.rpm php7-gettext-7.4.6-3.29.1.aarch64.rpm php7-gmp-7.4.6-3.29.1.aarch64.rpm php7-iconv-7.4.6-3.29.1.aarch64.rpm php7-intl-7.4.6-3.29.1.aarch64.rpm php7-json-7.4.6-3.29.1.aarch64.rpm php7-ldap-7.4.6-3.29.1.aarch64.rpm php7-mbstring-7.4.6-3.29.1.aarch64.rpm php7-mysql-7.4.6-3.29.1.aarch64.rpm php7-odbc-7.4.6-3.29.1.aarch64.rpm php7-opcache-7.4.6-3.29.1.aarch64.rpm php7-openssl-7.4.6-3.29.1.aarch64.rpm php7-pcntl-7.4.6-3.29.1.aarch64.rpm php7-pdo-7.4.6-3.29.1.aarch64.rpm php7-pgsql-7.4.6-3.29.1.aarch64.rpm php7-phar-7.4.6-3.29.1.aarch64.rpm php7-posix-7.4.6-3.29.1.aarch64.rpm php7-readline-7.4.6-3.29.1.aarch64.rpm php7-shmop-7.4.6-3.29.1.aarch64.rpm php7-snmp-7.4.6-3.29.1.aarch64.rpm php7-soap-7.4.6-3.29.1.aarch64.rpm php7-sockets-7.4.6-3.29.1.aarch64.rpm php7-sodium-7.4.6-3.29.1.aarch64.rpm php7-sqlite-7.4.6-3.29.1.aarch64.rpm php7-sysvmsg-7.4.6-3.29.1.aarch64.rpm php7-sysvsem-7.4.6-3.29.1.aarch64.rpm php7-sysvshm-7.4.6-3.29.1.aarch64.rpm php7-test-7.4.6-3.29.1.aarch64.rpm php7-tidy-7.4.6-3.29.1.aarch64.rpm php7-tokenizer-7.4.6-3.29.1.aarch64.rpm php7-xmlreader-7.4.6-3.29.1.aarch64.rpm php7-xmlrpc-7.4.6-3.29.1.aarch64.rpm php7-xmlwriter-7.4.6-3.29.1.aarch64.rpm php7-xsl-7.4.6-3.29.1.aarch64.rpm php7-zip-7.4.6-3.29.1.aarch64.rpm php7-zlib-7.4.6-3.29.1.aarch64.rpm openSUSE-SLE-15.3-2021-3581 important SUSE Updates openSUSE-SLE 15.3 This update for SUSEConnect contains the following fix: - Update to 0.3.32: - Allow --regcode and --instance-data attributes at the same time. (jsc#PCT-164) - Document that 'debug' can also get set in the config file - --status will also print the subscription name SUSEConnect-0.3.32-16.1.src.rpm SUSEConnect-0.3.32-16.1.x86_64.rpm SUSEConnect-0.3.32-16.1.s390x.rpm SUSEConnect-0.3.32-16.1.ppc64le.rpm SUSEConnect-0.3.32-16.1.aarch64.rpm openSUSE-SLE-15.3-2021-3672 moderate SUSE Updates openSUSE-SLE 15.3 This update for tomcat fixes the following issues: - CVE-2021-30640: Escape parameters in JNDI Realm queries (bsc#1188279). - CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients (bsc#1188278). - CVE-2021-41079: Fixed a denial of service caused by an unexpected TLS packet (bsc#1190558). tomcat-9.0.36-13.1.noarch.rpm tomcat-9.0.36-13.1.src.rpm tomcat-admin-webapps-9.0.36-13.1.noarch.rpm tomcat-docs-webapp-9.0.36-13.1.noarch.rpm tomcat-el-3_0-api-9.0.36-13.1.noarch.rpm tomcat-embed-9.0.36-13.1.noarch.rpm tomcat-javadoc-9.0.36-13.1.noarch.rpm tomcat-jsp-2_3-api-9.0.36-13.1.noarch.rpm tomcat-jsvc-9.0.36-13.1.noarch.rpm tomcat-lib-9.0.36-13.1.noarch.rpm tomcat-servlet-4_0-api-9.0.36-13.1.noarch.rpm tomcat-webapps-9.0.36-13.1.noarch.rpm openSUSE-SLE-15.3-2021-3873 important SUSE Updates openSUSE-SLE 15.3 This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 https://sourceforge.net/p/ezxml/bugs/23 not relevant for netcdf: code isn't used. * CVE-2019-20005 https://sourceforge.net/p/ezxml/bugs/14 Issue cannot be reproduced and no patch is available upstream. libnetcdf-gnu-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-mpich-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf18-32bit-4.7.4-4.3.2.x86_64.rpm libnetcdf18-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi2-32bit-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi2-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi3-32bit-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi3-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi4-32bit-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi4-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.x86_64.rpm netcdf-4.7.4-4.3.2.src.rpm netcdf-4.7.4-4.3.2.x86_64.rpm netcdf-devel-4.7.4-4.3.2.x86_64.rpm netcdf-devel-data-4.7.4-4.3.2.x86_64.rpm netcdf-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf-gnu-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-gnu-mpich-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-mpich-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-gnu-mvapich2-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-mvapich2-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi2-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi2-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi3-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi3-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi4-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi4-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-openmpi2-4.7.4-4.3.2.src.rpm netcdf-openmpi2-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi2-devel-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi2-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi3-4.7.4-4.3.2.src.rpm netcdf-openmpi3-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi3-devel-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi3-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi4-4.7.4-4.3.2.src.rpm netcdf-openmpi4-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi4-devel-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi4-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-mpich-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf18-4.7.4-4.3.2.s390x.rpm libnetcdf18-openmpi2-4.7.4-4.3.2.s390x.rpm libnetcdf18-openmpi3-4.7.4-4.3.2.s390x.rpm libnetcdf18-openmpi4-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.s390x.rpm netcdf-4.7.4-4.3.2.s390x.rpm netcdf-devel-4.7.4-4.3.2.s390x.rpm netcdf-devel-data-4.7.4-4.3.2.s390x.rpm netcdf-devel-static-4.7.4-4.3.2.s390x.rpm netcdf-openmpi2-4.7.4-4.3.2.s390x.rpm netcdf-openmpi2-devel-4.7.4-4.3.2.s390x.rpm netcdf-openmpi2-devel-static-4.7.4-4.3.2.s390x.rpm netcdf-openmpi3-4.7.4-4.3.2.s390x.rpm netcdf-openmpi3-devel-4.7.4-4.3.2.s390x.rpm netcdf-openmpi3-devel-static-4.7.4-4.3.2.s390x.rpm netcdf-openmpi4-4.7.4-4.3.2.s390x.rpm netcdf-openmpi4-devel-4.7.4-4.3.2.s390x.rpm netcdf-openmpi4-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-mpich-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf18-4.7.4-4.3.2.ppc64le.rpm libnetcdf18-openmpi2-4.7.4-4.3.2.ppc64le.rpm libnetcdf18-openmpi3-4.7.4-4.3.2.ppc64le.rpm libnetcdf18-openmpi4-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf-4.7.4-4.3.2.ppc64le.rpm netcdf-devel-4.7.4-4.3.2.ppc64le.rpm netcdf-devel-data-4.7.4-4.3.2.ppc64le.rpm netcdf-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi2-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi2-devel-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi2-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi3-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi3-devel-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi3-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi4-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi4-devel-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi4-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf-gnu-mpich-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf18-4.7.4-4.3.2.aarch64.rpm libnetcdf18-openmpi2-4.7.4-4.3.2.aarch64.rpm libnetcdf18-openmpi3-4.7.4-4.3.2.aarch64.rpm libnetcdf18-openmpi4-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.aarch64.rpm netcdf-4.7.4-4.3.2.aarch64.rpm netcdf-devel-4.7.4-4.3.2.aarch64.rpm netcdf-devel-data-4.7.4-4.3.2.aarch64.rpm netcdf-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi2-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi2-devel-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi2-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi3-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi3-devel-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi3-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi4-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi4-devel-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi4-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-3805 important SUSE Updates openSUSE-SLE 15.3 This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 https://sourceforge.net/p/ezxml/bugs/23 not relevant for netcdf: code isn't used. * CVE-2019-20005 https://sourceforge.net/p/ezxml/bugs/14 Issue cannot be reproduced and no patch is available upstream. libnetcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.x86_64.rpm libnetcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.x86_64.rpm libnetcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.x86_64.rpm libnetcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.x86_64.rpm libnetcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.src.rpm netcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-hpc-devel-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-hpc-devel-static-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.src.rpm netcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-static-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.src.rpm netcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-static-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.src.rpm netcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-static-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.src.rpm netcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-static-4.7.3-3.7.2.x86_64.rpm libnetcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.ppc64le.rpm libnetcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.ppc64le.rpm libnetcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.ppc64le.rpm libnetcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.ppc64le.rpm libnetcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-hpc-devel-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-hpc-devel-static-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-static-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-static-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-static-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-static-4.7.3-3.7.2.ppc64le.rpm libnetcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.aarch64.rpm libnetcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.aarch64.rpm libnetcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.aarch64.rpm libnetcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.aarch64.rpm libnetcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-hpc-devel-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-hpc-devel-static-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-static-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-static-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-static-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-static-4.7.3-3.7.2.aarch64.rpm openSUSE-SLE-15.3-2021-3815 important SUSE Updates openSUSE-SLE 15.3 This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 https://sourceforge.net/p/ezxml/bugs/23 not relevant for netcdf: code isn't used. * CVE-2019-20005 https://sourceforge.net/p/ezxml/bugs/14 Issue cannot be reproduced and no patch is available upstream. libnetcdf-gnu-openmpi1-hpc-4.6.1-10.7.2.x86_64.rpm libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.x86_64.rpm libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.x86_64.rpm libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.x86_64.rpm libnetcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.x86_64.rpm libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.x86_64.rpm netcdf-gnu-openmpi1-hpc-4.6.1-10.7.2.noarch.rpm netcdf-gnu-openmpi1-hpc-devel-4.6.1-10.7.2.noarch.rpm netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.src.rpm netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-hpc-devel-data-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.src.rpm netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.src.rpm netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.src.rpm netcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-static-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.src.rpm netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2.x86_64.rpm libnetcdf-gnu-openmpi1-hpc-4.6.1-10.7.2.ppc64le.rpm libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.ppc64le.rpm libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.ppc64le.rpm libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.ppc64le.rpm libnetcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.ppc64le.rpm libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-hpc-devel-data-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-static-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2.ppc64le.rpm libnetcdf-gnu-openmpi1-hpc-4.6.1-10.7.2.aarch64.rpm libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.aarch64.rpm libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.aarch64.rpm libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.aarch64.rpm libnetcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.aarch64.rpm libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-hpc-devel-data-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-static-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2.aarch64.rpm openSUSE-SLE-15.3-2021-3804 important SUSE Updates openSUSE-SLE 15.3 This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 https://sourceforge.net/p/ezxml/bugs/23 not relevant for netcdf: code isn't used. * CVE-2019-20005 https://sourceforge.net/p/ezxml/bugs/14 Issue cannot be reproduced and no patch is available upstream. libnetcdf13-32bit-4.6.1-5.7.1.x86_64.rpm libnetcdf13-4.6.1-5.7.1.x86_64.rpm libnetcdf13-openmpi-32bit-4.6.1-5.7.1.x86_64.rpm libnetcdf13-openmpi-4.6.1-5.7.1.x86_64.rpm netcdf-4.6.1-5.7.1.src.rpm netcdf-openmpi-4.6.1-5.7.1.src.rpm netcdf-openmpi-4.6.1-5.7.1.x86_64.rpm netcdf-openmpi-devel-4.6.1-5.7.1.x86_64.rpm netcdf-openmpi-devel-data-4.6.1-5.7.1.x86_64.rpm netcdf-openmpi-devel-static-4.6.1-5.7.1.x86_64.rpm libnetcdf13-4.6.1-5.7.1.ppc64le.rpm libnetcdf13-openmpi-4.6.1-5.7.1.ppc64le.rpm netcdf-openmpi-4.6.1-5.7.1.ppc64le.rpm netcdf-openmpi-devel-4.6.1-5.7.1.ppc64le.rpm netcdf-openmpi-devel-data-4.6.1-5.7.1.ppc64le.rpm netcdf-openmpi-devel-static-4.6.1-5.7.1.ppc64le.rpm libnetcdf13-4.6.1-5.7.1.aarch64.rpm libnetcdf13-openmpi-4.6.1-5.7.1.aarch64.rpm netcdf-openmpi-4.6.1-5.7.1.aarch64.rpm netcdf-openmpi-devel-4.6.1-5.7.1.aarch64.rpm netcdf-openmpi-devel-data-4.6.1-5.7.1.aarch64.rpm netcdf-openmpi-devel-static-4.6.1-5.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3899 moderate SUSE Updates openSUSE-SLE 15.3 This update for aaa_base fixes the following issues: - Allowed ping and ICMP commands without CAP_NET_RAW (bsc#1174504). - Add $HOME/.local/bin to PATH, if it exists (bsc#1192248). - Fixed get_kernel_version.c to work also for recent kernels on the s390/X platform (bsc#1191563). - Support xz compressed kernel (bsc#1162581) aaa_base-84.87+git20180409.04c9dae-3.52.1.src.rpm aaa_base-84.87+git20180409.04c9dae-3.52.1.x86_64.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.52.1.x86_64.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.52.1.x86_64.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.52.1.x86_64.rpm aaa_base-84.87+git20180409.04c9dae-3.52.1.s390x.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.52.1.s390x.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.52.1.s390x.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.52.1.s390x.rpm aaa_base-84.87+git20180409.04c9dae-3.52.1.ppc64le.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.52.1.ppc64le.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.52.1.ppc64le.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.52.1.ppc64le.rpm aaa_base-84.87+git20180409.04c9dae-3.52.1.aarch64.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.52.1.aarch64.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.52.1.aarch64.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.52.1.aarch64.rpm openSUSE-SLE-15.3-2021-3766 moderate SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - Installation of the "git-daemon" package needs nogroup group dependency (bsc#1192023) git-2.31.1-10.6.1.src.rpm git-2.31.1-10.6.1.x86_64.rpm git-arch-2.31.1-10.6.1.x86_64.rpm git-core-2.31.1-10.6.1.x86_64.rpm git-credential-gnome-keyring-2.31.1-10.6.1.x86_64.rpm git-credential-libsecret-2.31.1-10.6.1.x86_64.rpm git-cvs-2.31.1-10.6.1.x86_64.rpm git-daemon-2.31.1-10.6.1.x86_64.rpm git-doc-2.31.1-10.6.1.noarch.rpm git-email-2.31.1-10.6.1.x86_64.rpm git-gui-2.31.1-10.6.1.x86_64.rpm git-p4-2.31.1-10.6.1.x86_64.rpm git-svn-2.31.1-10.6.1.x86_64.rpm git-web-2.31.1-10.6.1.x86_64.rpm gitk-2.31.1-10.6.1.x86_64.rpm perl-Git-2.31.1-10.6.1.x86_64.rpm git-2.31.1-10.6.1.s390x.rpm git-arch-2.31.1-10.6.1.s390x.rpm git-core-2.31.1-10.6.1.s390x.rpm git-credential-gnome-keyring-2.31.1-10.6.1.s390x.rpm git-credential-libsecret-2.31.1-10.6.1.s390x.rpm git-cvs-2.31.1-10.6.1.s390x.rpm git-daemon-2.31.1-10.6.1.s390x.rpm git-email-2.31.1-10.6.1.s390x.rpm git-gui-2.31.1-10.6.1.s390x.rpm git-p4-2.31.1-10.6.1.s390x.rpm git-svn-2.31.1-10.6.1.s390x.rpm git-web-2.31.1-10.6.1.s390x.rpm gitk-2.31.1-10.6.1.s390x.rpm perl-Git-2.31.1-10.6.1.s390x.rpm git-2.31.1-10.6.1.ppc64le.rpm git-arch-2.31.1-10.6.1.ppc64le.rpm git-core-2.31.1-10.6.1.ppc64le.rpm git-credential-gnome-keyring-2.31.1-10.6.1.ppc64le.rpm git-credential-libsecret-2.31.1-10.6.1.ppc64le.rpm git-cvs-2.31.1-10.6.1.ppc64le.rpm git-daemon-2.31.1-10.6.1.ppc64le.rpm git-email-2.31.1-10.6.1.ppc64le.rpm git-gui-2.31.1-10.6.1.ppc64le.rpm git-p4-2.31.1-10.6.1.ppc64le.rpm git-svn-2.31.1-10.6.1.ppc64le.rpm git-web-2.31.1-10.6.1.ppc64le.rpm gitk-2.31.1-10.6.1.ppc64le.rpm perl-Git-2.31.1-10.6.1.ppc64le.rpm git-2.31.1-10.6.1.aarch64.rpm git-arch-2.31.1-10.6.1.aarch64.rpm git-core-2.31.1-10.6.1.aarch64.rpm git-credential-gnome-keyring-2.31.1-10.6.1.aarch64.rpm git-credential-libsecret-2.31.1-10.6.1.aarch64.rpm git-cvs-2.31.1-10.6.1.aarch64.rpm git-daemon-2.31.1-10.6.1.aarch64.rpm git-email-2.31.1-10.6.1.aarch64.rpm git-gui-2.31.1-10.6.1.aarch64.rpm git-p4-2.31.1-10.6.1.aarch64.rpm git-svn-2.31.1-10.6.1.aarch64.rpm git-web-2.31.1-10.6.1.aarch64.rpm gitk-2.31.1-10.6.1.aarch64.rpm perl-Git-2.31.1-10.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3774 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issue: - Improve client fail over to regain access to nfs share (bsc#1184382) ldirectord-4.8.0+git30.d0077df0-8.17.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.17.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.17.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.17.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.17.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.17.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.17.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.17.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.17.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3615 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openj9 fixes the following issues: Update to OpenJDK 8u312 build 07 with OpenJ9 0.29.0 virtual machine including Oracle July 2021 and October 2021 CPU changes - CVE-2021-2161: Fixed incorrect handling of partially quoted arguments in ProcessBuilder on Windows (bsc#1185056). - CVE-2021-2163: Fixed incomplete enforcement of JAR signing disabled algorithms (bsc#1185055). - CVE-2021-2341: Fixed flaw inside the FtpClient (bsc#1188564). - CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files (bsc#1188565). - CVE-2021-2388: Fixed flaw inside the Hotspot component performed range check elimination (bsc#1188566). - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906). java-1_8_0-openj9-1.8.0.312-3.18.2.src.rpm java-1_8_0-openj9-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-accessibility-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-demo-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-devel-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-headless-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-javadoc-1.8.0.312-3.18.2.noarch.rpm java-1_8_0-openj9-src-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-accessibility-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-demo-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-devel-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-headless-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-src-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-1.8.0.312-3.18.2.ppc64le.rpm java-1_8_0-openj9-accessibility-1.8.0.312-3.18.2.ppc64le.rpm java-1_8_0-openj9-demo-1.8.0.312-3.18.2.ppc64le.rpm java-1_8_0-openj9-devel-1.8.0.312-3.18.2.ppc64le.rpm java-1_8_0-openj9-headless-1.8.0.312-3.18.2.ppc64le.rpm java-1_8_0-openj9-src-1.8.0.312-3.18.2.ppc64le.rpm openSUSE-SLE-15.3-2021-3778 moderate SUSE Updates openSUSE-SLE 15.3 This update for tuned fixes the following issues: - Follow upstream and set backup latency requirement to 3 (bsc#1191341) tuned-2.10.0-11.6.1.noarch.rpm tuned-2.10.0-11.6.1.src.rpm tuned-gtk-2.10.0-11.6.1.noarch.rpm tuned-profiles-atomic-2.10.0-11.6.1.noarch.rpm tuned-profiles-nfv-2.10.0-11.6.1.noarch.rpm tuned-profiles-oracle-2.10.0-11.6.1.noarch.rpm tuned-profiles-realtime-2.10.0-11.6.1.noarch.rpm tuned-utils-2.10.0-11.6.1.noarch.rpm tuned-utils-systemtap-2.10.0-11.6.1.noarch.rpm openSUSE-SLE-15.3-2021-3612 moderate SUSE Updates openSUSE-SLE 15.3 This update for post-build-checks-malwarescan fixes the following issues: - Ensure that busybox cpio is supported post-build-checks-malwarescan-0.1-3.19.1.noarch.rpm post-build-checks-malwarescan-0.1-3.19.1.src.rpm openSUSE-SLE-15.3-2021-3655 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. NOTE: This update was retracted due to a NFS regression. The following security bugs were fixed: - CVE-2021-3772: Fixed sctp vtag check in sctp_sf_ootb (bsc#1190351). - CVE-2021-3655: Fixed a missing size validations on inbound SCTP packets, which may have allowed the kernel to read uninitialized memory (bsc#1188563). - CVE-2021-43056: Fixed possible KVM host crash via malicious KVM guest on Power8 (bnc#1192107). - CVE-2021-3896: Fixed a array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c (bsc#1191958). - CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev->rf_conn_info object (bsc#1190067). - CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673). - CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063). - CVE-2021-33033: Fixed a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled (bsc#1186109). - CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349). - CVE-2021-34866: Fixed eBPF Type Confusion Privilege Escalation Vulnerability (bsc#1191645). - CVE-2021-42252: Fixed an issue inside aspeed_lpc_ctrl_mmap that could have allowed local attackers to access the Aspeed LPC control interface to overwrite memory in the kernel and potentially execute privileges (bnc#1190479). - CVE-2021-41864: Fixed prealloc_elems_and_freelist that allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317). - CVE-2021-42008: Fixed a slab out-of-bounds write in the decode_data function in drivers/net/hamradio/6pack.c. Input from a process that had the CAP_NET_ADMIN capability could have lead to root access (bsc#1191315). The following non-security bugs were fixed: - ACPI: NFIT: Use fallback node id when numa info in NFIT table is incorrect (git-fixes). - ACPI: bgrt: Fix CFI violation (git-fixes). - ACPI: fix NULL pointer dereference (git-fixes). - ACPI: fix NULL pointer dereference (git-fixes). - ALSA: hda - Enable headphone mic on Dell Latitude laptops with ALC3254 (git-fixes). - ALSA: hda/realtek - ALC236 headset MIC recording issue (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PC50HS (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo X170KM-G (git-fixes). - ALSA: hda/realtek: Add quirk for TongFang PHxTxX1 (git-fixes). - ALSA: hda/realtek: Complete partial device name to avoid ambiguity (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell Precision 5560 laptop (git-fixes). - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo 13s Gen2 (git-fixes). - ALSA: hda/realtek: Fix the mic type detection issue for ASUS G551JW (git-fixes). - ALSA: hda/realtek: Quirks to enable speaker output for Lenovo Legion 7i 15IMHG05, Yoga 7i 14ITL5/15ITL5, and 13s Gen2 laptops (git-fixes). - ALSA: hda: avoid write to STATESTS if controller is in reset (git-fixes). - ALSA: hda: intel: Allow repeatedly probing on codec configuration errors (bsc#1190801). - ALSA: pcm: Workaround for a wrong offset in SYNC_PTR compat ioctl (git-fixes). - ALSA: seq: Fix a potential UAF by wrong private_free call order (git-fixes). - ALSA: usb-audio: Add quirk for VF0770 (git-fixes). - ALSA: usb-audio: Provide quirk for Sennheiser GSP670 Headset (git-fixes). - ASoC: DAPM: Fix missing kctl change notifications (git-fixes). - ASoC: Intel: Skylake: Fix module configuration for KPB and MIXER (git-fixes). - ASoC: Intel: Skylake: Fix passing loadable flag for module (git-fixes). - ASoC: Intel: bytcr_rt5640: Move "Platform Clock" routes to the maps for the matching in-/output (git-fixes). - ASoC: Intel: sof_sdw: tag SoundWire BEs as non-atomic (git-fixes). - ASoC: SOF: imx: imx8: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: imx: imx8m: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: loader: release_firmware() on load failure to avoid batching (git-fixes). - ASoC: atmel: ATMEL drivers do not need HAS_DMA (git-fixes). - ASoC: dapm: use component prefix when checking widget names (git-fixes). - ASoC: fsl_spdif: register platform component before registering cpu dai (git-fixes). - ASoC: wm8960: Fix clock configuration on slave mode (git-fixes). - Add obsolete_rebuilds_subpackage (boo#1172073 bsc#1191731). - Configure mpi3mr as currently unsupported (jsc#SLE-18120) - HID: apple: Fix logical maximum and usage maximum of Magic Keyboard JIS (git-fixes). - HID: betop: fix slab-out-of-bounds Write in betop_probe (git-fixes). - HID: u2fzero: ignore incomplete packets without data (git-fixes). - HID: usbhid: free raw_report buffers in usbhid_stop (git-fixes). - HID: wacom: Add new Intuos BT (CTL-4100WL/CTL-6100WL) device IDs (git-fixes). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - Input: snvs_pwrkey - add clk handling (git-fixes). - Input: xpad - add support for another USB ID of Nacon GC-100 (git-fixes). - KVM: PPC: Book3S HV Nested: Reflect guest PMU in-use to L0 when guest SPRs are live (bsc#1156395). - KVM: PPC: Book3S HV Nested: Sanitise H_ENTER_NESTED TM state (bsc#1156395). - KVM: PPC: Book3S HV: Fix copy_tofrom_guest routines (jsc#SLE-12936 git-fixes). - KVM: PPC: Book3S HV: Save host FSCR in the P7/8 path (bsc#1065729). - KVM: PPC: Book3S HV: Tolerate treclaim. in fake-suspend mode changing registers (bsc#1156395). - KVM: PPC: Fix clearing never mapped TCEs in realmode (bsc#1156395). - KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak (bsc#1156395). - NFC: digital: fix possible memory leak in digital_in_send_sdd_req() (git-fixes). - NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() (git-fixes). - NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628). - PCI: Fix pci_host_bridge struct device release/free handling (git-fixes). - PM / devfreq: rk3399_dmc: Add missing of_node_put() (git-fixes). - PM / devfreq: rk3399_dmc: Disable devfreq-event device when fails (git-fixes). - PM / devfreq: rk3399_dmc: Fix kernel oops when rockchip,pmu is absent (git-fixes). - PM / devfreq: rk3399_dmc: Fix spelling typo (git-fixes). - PM / devfreq: rk3399_dmc: Remove unneeded semicolon (git-fixes). - RDMA/cma: Do not change route.addr.src_addr.ss_family (bsc#1181147). - RDMA/cma: Fix listener leak in rdma_cma_listen_on_all() failure (bsc#1181147). - USB: cdc-acm: clean up probe error labels (git-fixes). - USB: cdc-acm: fix minor-number release (git-fixes). - USB: serial: option: add Quectel EC200S-CN module support (git-fixes). - USB: serial: option: add Telit LE910Cx composition 0x1204 (git-fixes). - USB: serial: option: add prod. id for Quectel EG91 (git-fixes). - USB: serial: qcserial: add EM9191 QDL support (git-fixes). - USB: xhci: dbc: fix tty registration race (git-fixes). - acpi/arm64: fix next_platform_timer() section mismatch error (git-fixes). - acpi/arm64: fix next_platform_timer() section mismatch error (git-fixes). - ata: ahci_platform: fix null-ptr-deref in ahci_platform_enable_regulators() (git-fixes). - ata: sata_dwc_460ex: No need to call phy_exit() befre phy_init() (git-fixes). - audit: fix possible null-pointer dereference in audit_filter_rules (git-fixes). - bfq: Remove merged request already in bfq_requests_merged() (bsc#1191456). - blk: Fix lock inversion between ioc lock and bfqd lock (bsc#1191456). - blktrace: Fix uaf in blk_trace access after removing by sysfs (bsc#1191452). - block: bfq: fix bfq_set_next_ioprio_data() (bsc#1191451). - bnxt_en: make bnxt_free_skbs() safe to call after bnxt_free_mem() (jsc#SLE-16649). - bpf: Add bpf_patch_call_args prototype to include/linux/bpf.h (git-fixes). - bpf: Fix OOB read when printing XDP link fdinfo (git-fixes). - bpf: Fix a typo of reuseport map in bpf.h (git-fixes). - bpf: Fix up bpf_skb_adjust_room helper's skb csum setting (git-fixes). - can: dev: can_restart: fix use after free bug (git-fixes). - can: peak_pci: peak_pci_remove(): fix UAF (git-fixes). - can: peak_usb: fix use after free bugs (git-fixes). - can: peak_usb: pcan_usb_fd_decode_status(): fix back to ERROR_ACTIVE state notification (git-fixes). - can: rcar_can: fix suspend/resume (git-fixes). - can: ti_hecc: ti_hecc_probe(): add missed clk_disable_unprepare() in error path (git-fixes). - can: xilinx_can: handle failure cases of pm_runtime_get_sync (git-fixes). - cb710: avoid NULL pointer subtraction (git-fixes). - ceph: fix handling of "meta" errors (bsc#1192041). - ceph: skip existing superblocks that are blocklisted or shut down when mounting (bsc#1192040). - cfg80211: correct bridge/4addr mode check (git-fixes). - cfg80211: fix management registrations locking (git-fixes). - cfg80211: scan: fix RCU in cfg80211_add_nontrans_list() (git-fixes). - cpuidle: pseries: Mark pseries_idle_proble() as __init (jsc#SLE-13614 bsc#1176914 ltc#186394 git-fixes). - drm/amd/display: Pass PCI deviceid into DC (git-fixes). - drm/amdgpu: correct initial cp_hqd_quantum for gfx9 (git-fixes). - drm/amdgpu: fix gart.bo pin_count leak (git-fixes). - drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read (git-fixes). - drm/i915: Fix syncmap memory leak (bsc#1152489) Backporting notes: * context changes in intel_timeline_fini() - drm/msm/dsi: Fix an error code in msm_dsi_modeset_init() (git-fixes). - drm/msm/dsi: fix off by one in dsi_bus_clk_enable error handling (git-fixes). - drm/msm: Avoid potential overflow in timeout_to_jiffies() (git-fixes). - drm/msm: Fix null pointer dereference on pointer edp (git-fixes). - drm/nouveau/debugfs: fix file release memory leak (git-fixes). - drm/nouveau/kms/nv50-: fix file release memory leak (git-fixes). - drm/nouveau/kms/tu102-: delay enabling cursor until after assign_windows (git-fixes). - drm/nouveau: avoid a use-after-free when BO init fails (bsc#1152472) - drm/panel: olimex-lcd-olinuxino: select CRC32 (git-fixes). - drm/panfrost: Make sure MMU context lifetime is not bound to (bsc#1152472) - drm/sun4i: dw-hdmi: Fix HDMI PHY clock setup (git-fixes). - e1000e: Drop patch to avoid regressions until real fix is available (bsc#1191663). - e1000e: Fix packet loss on Tiger Lake and later (git-fixes). - e100: fix buffer overrun in e100_get_regs (git-fixes). - e100: fix length calculation in e100_get_regs_len (git-fixes). - e100: handle eeprom as little endian (git-fixes). - ext4: fix reserved space counter leakage (bsc#1191450). - ext4: report correct st_size for encrypted symlinks (bsc#1191449). - fs, mm: fix race in unlinking swapfile (bsc#1191455). - fscrypt: add fscrypt_symlink_getattr() for computing st_size (bsc#1191449). - gpio: pca953x: Improve bias setting (git-fixes). - hso: fix bailout in error case of probe (git-fixes). - i2c: acpi: fix resource leak in reconfiguration device addition (git-fixes). - ice: fix getting UDP tunnel entry (jsc#SLE-12878). - iio: adc128s052: Fix the error handling path of 'adc128_probe()' (git-fixes). - iio: adc: aspeed: set driver data when adc probe (git-fixes). - iio: dac: ti-dac5571: fix an error code in probe() (git-fixes). - iio: light: opt3001: Fixed timeout error when 0 lux (git-fixes). - iio: mtk-auxadc: fix case IIO_CHAN_INFO_PROCESSED (git-fixes). - iio: ssp_sensors: add more range checking in ssp_parse_dataframe() (git-fixes). - iio: ssp_sensors: fix error code in ssp_print_mcu_debug() (git-fixes). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241). - isdn: cpai: check ctr->cnr to avoid array index out of bound (git-fixes). - isdn: mISDN: Fix sleeping function called from invalid context (git-fixes). - iwlwifi: pcie: add configuration of a Wi-Fi adapter on Dell XPS 15 (git-fixes). - ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes). - kABI workaround for HD-audio probe retry changes (bsc#1190801). - kABI workaround for cfg80211 mgmt_registration_lock changes (git-fixes). - kabi: block: Fix kabi of blk_mq_sched_try_insert_merge() (bsc#1191456). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167 bsc#1191240 ltc#194716). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167). - kernel-binary.spec: suse-kernel-rpm-scriptlets required for uninstall as well. Fixes: e98096d5cf85 ("rpm: Abolish scritplet templating (bsc#1189841).") - kernel-spec-macros: Since rpm 4.17 %verbose is unusable (bsc#1191229). - lan78xx: select CRC32 (git-fixes). - libata: Add ATA_HORKAGE_NO_NCQ_ON_ATI for Samsung 860 and 870 SSD (git-fixes). - mac80211: Drop frames from invalid MAC address in ad-hoc mode (git-fixes). - mac80211: check return value of rhashtable_init (git-fixes). - mei: me: add Ice Lake-N device id (git-fixes). - mmc: dw_mmc: exynos: fix the finding clock sample value (git-fixes). - mmc: meson-gx: do not use memcpy_to/fromio for dram-access-quirk (git-fixes). - mmc: vub300: fix control-message timeouts (git-fixes). - net/mlx5: E-Switch, Fix double allocation of acl flow counter (jsc#SLE-15172). - net/mlx5e: IPSEC RX, enable checksum complete (jsc#SLE-15172). - net/mlx5e: RX, Avoid possible data corruption when relaxed ordering and LRO combined (jsc#SLE-15172). - net/sched: ets: fix crash when flipping from 'strict' to 'quantum' (bsc#1176774). - net: batman-adv: fix error handling (git-fixes). - net: can: ems_usb: fix use-after-free in ems_usb_disconnect() (git-fixes). - net: cdc_eem: fix tx fixup skb leak (git-fixes). - net: cdc_ncm: correct overhead in delayed_ndp_size (git-fixes). - net: hns3: check queue id range before using (jsc#SLE-14777). - net: hso: add failure handler for add_net_device (git-fixes). - net: hso: fix NULL-deref on disconnect regression (git-fixes). - net: hso: fix null-ptr-deref during tty device unregistration (git-fixes). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: lan78xx: fix division by zero in send path (git-fixes). - net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191800). - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() (git-fixes). - netfilter: Drop fragmented ndisc packets assembled in netfilter (git-fixes). - netfilter: conntrack: collect all entries in one cycle (bsc#1173604). - netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value (bsc#1176447). - nfc: fix error handling of nfc_proto_register() (git-fixes). - nfc: port100: fix using -ERRNO as command type mask (git-fixes). - nvme-fc: avoid race between time out and tear down (bsc#1185762). - nvme-fc: remove freeze/unfreeze around update_nr_hw_queues (bsc#1185762). - nvme-fc: update hardware queues before using them (bsc#1185762). - nvme-pci: Fix abort command id (git-fixes). - nvme-pci: fix error unwind in nvme_map_data (bsc#1191934). - nvme-pci: fix error unwind in nvme_map_data (bsc#1191934). - nvme-pci: refactor nvme_unmap_data (bsc#1191934). - nvme-pci: refactor nvme_unmap_data (bsc#1191934). - nvme: add command id quirk for apple controllers (git-fixes). - ocfs2: fix data corruption after conversion from inline format (bsc#1190795). - pata_legacy: fix a couple uninitialized variable bugs (git-fixes). - phy: mdio: fix memory leak (git-fixes). - platform/mellanox: mlxreg-io: Fix argument base in kstrtou32() call (git-fixes). - platform/mellanox: mlxreg-io: Fix read access of n-bytes size attributes (git-fixes). - platform/x86: dell-smbios-wmi: Add missing kfree in error-exit from run_smbios_call (git-fixes). - platform/x86: intel_scu_ipc: Fix busy loop expiry time (git-fixes). - powerpc/64s: Fix entry flush patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Fix stf mitigation patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Remove irq mask workaround in accumulate_stolen_time() (jsc#SLE-9246 git-fixes). - powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729). - powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729). - powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729). - powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729). - powerpc/bpf: Use bctrl for making function calls (bsc#1065729). - powerpc/bpf: Use bctrl for making function calls (bsc#1065729). - powerpc/lib/code-patching: Do not use struct 'ppc_inst' for runnable code in tests (jsc#SLE-13847 git-fixes). - powerpc/lib/code-patching: Make instr_is_branch_to_addr() static (jsc#SLE-13847 git-fixes). - powerpc/lib: Fix emulate_step() std test (bsc#1065729). - powerpc/numa: Update cpu_cpu_map on CPU online/offline (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/pseries: Fix build error when NUMA=n (bsc#1190620 ltc#194498 git-fixes). - powerpc/smp: Cache CPU to chip lookup (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Enable CACHE domain for shared processor (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fix a crash while booting kvm guest with nr_cpus=2 (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fold cpu_die() into its only caller (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Set numa node before updating mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Update cpu_core_map on all PowerPc systems (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/uprobes: Validation for prefixed instruction (jsc#SLE-13847 git-fixes). - powerpc/xive: Discard disabled interrupts in get_irqchip_state() (bsc#1085030 git-fixes). - powerpc: Do not dereference code as 'struct ppc_inst' (uprobe, code-patching, feature-fixups) (jsc#SLE-13847 git-fixes). - powerpc: Do not use 'struct ppc_inst' to reference instruction location (jsc#SLE-13847 git-fixes). - powerpc: Move arch_cpu_idle_dead() into smp.c (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - pseries/eeh: Fix the kdump kernel crash during eeh_pseries_init (git-fixes). - ptp_pch: Load module automatically if ID matches (git-fixes). - ptp_pch: Restore dependency on PCI (git-fixes). - regmap: Fix possible double-free in regcache_rbtree_exit() (git-fixes). - rpm: fix kmp install path - rpm: use _rpmmacrodir (boo#1191384) - scsi: ibmvfc: Fix up duplicate response detection (bsc#1191867 ltc#194757). - scsi: iscsi: Fix deadlock on recovery path during GFP_IO reclaim (git-fixes). - scsi: lpfc: Allow PLOGI retry if previous PLOGI was aborted (bsc#1192145). - scsi: lpfc: Allow fabric node recovery if recovery is in progress before devloss (bsc#1192145). - scsi: lpfc: Correct sysfs reporting of loop support after SFP status change (bsc#1192145). - scsi: lpfc: Fix link down processing to address NULL pointer dereference (bsc#1192145). - scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349). - scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine (bsc#1192145). - scsi: lpfc: Revert LOG_TRACE_EVENT back to LOG_INIT prior to driver_resource_setup() (bsc#1192145). - scsi: lpfc: Update lpfc version to 14.0.0.3 (bsc#1192145). - scsi: lpfc: Wait for successful restart of SLI3 adapter during host sg_reset (bsc#1192145). - scsi: mpi3mr: Add EEDP DIF DIX support (jsc#SLE-18120). - scsi: mpi3mr: Add bios_param SCSI host template hook (jsc#SLE-18120). - scsi: mpi3mr: Add change queue depth support (jsc#SLE-18120). - scsi: mpi3mr: Add event handling debug prints (jsc#SLE-18120). - scsi: mpi3mr: Add mpi30 Rev-R headers and Kconfig (jsc#SLE-18120). - scsi: mpi3mr: Add support for DSN secure firmware check (jsc#SLE-18120). - scsi: mpi3mr: Add support for PCIe device event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for PM suspend and resume (jsc#SLE-18120). - scsi: mpi3mr: Add support for device add/remove event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for internal watchdog thread (jsc#SLE-18120). - scsi: mpi3mr: Add support for queue command processing (jsc#SLE-18120). - scsi: mpi3mr: Add support for recovering controller (jsc#SLE-18120). - scsi: mpi3mr: Add support for threaded ISR (jsc#SLE-18120). - scsi: mpi3mr: Add support for timestamp sync with firmware (jsc#SLE-18120). - scsi: mpi3mr: Additional event handling (jsc#SLE-18120). - scsi: mpi3mr: Allow certain commands during pci-remove hook (jsc#SLE-18120). - scsi: mpi3mr: Base driver code (jsc#SLE-18120). - scsi: mpi3mr: Complete support for soft reset (jsc#SLE-18120). - scsi: mpi3mr: Create operational request and reply queue pair (jsc#SLE-18120). - scsi: mpi3mr: Fix error handling in mpi3mr_setup_isr() (git-fixes). - scsi: mpi3mr: Fix missing unlock on error (git-fixes). - scsi: mpi3mr: Hardware workaround for UNMAP commands to NVMe drives (jsc#SLE-18120). - scsi: mpi3mr: Implement SCSI error handler hooks (jsc#SLE-18120). - scsi: mpi3mr: Print IOC info for debugging (jsc#SLE-18120). - scsi: mpi3mr: Print pending host I/Os for debugging (jsc#SLE-18120). - scsi: mpi3mr: Set up IRQs in resume path (jsc#SLE-18120). - scsi: mpi3mr: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (jsc#SLE-18120). - scsi: mpi3mr: Use the proper SCSI midlayer interfaces for PI (jsc#SLE-18120). - scsi: mpi3mr: Wait for pending I/O completions upon detection of VD I/O timeout (jsc#SLE-18120). - scsi: qla2xxx: Add debug print of 64G link speed (bsc#1190941). - scsi: qla2xxx: Add host attribute to trigger MPI hang (bsc#1190941). - scsi: qla2xxx: Add support for mailbox passthru (bsc#1190941). - scsi: qla2xxx: Adjust request/response queue size for 28xx (bsc#1190941). - scsi: qla2xxx: Call process_response_queue() in Tx path (bsc#1190941). - scsi: qla2xxx: Changes to support FCP2 Target (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel for NVMe BFS (bsc#1190941). - scsi: qla2xxx: Check for firmware capability before creating QPair (bsc#1190941). - scsi: qla2xxx: Display 16G only as supported speeds for 3830c card (bsc#1190941). - scsi: qla2xxx: Do not call fc_block_scsi_eh() during bus reset (bsc#1190941). - scsi: qla2xxx: Fix NPIV create erroneous error (bsc#1190941). - scsi: qla2xxx: Fix NVMe retry (bsc#1190941). - scsi: qla2xxx: Fix NVMe session down detection (bsc#1190941). - scsi: qla2xxx: Fix NVMe | FCP personality change (bsc#1190941). - scsi: qla2xxx: Fix crash in NVMe abort path (bsc#1190941). - scsi: qla2xxx: Fix excessive messages during device logout (bsc#1190941). - scsi: qla2xxx: Fix hang during NVMe session tear down (bsc#1190941). - scsi: qla2xxx: Fix hang on NVMe command timeouts (bsc#1190941). - scsi: qla2xxx: Fix kernel crash when accessing port_speed sysfs file (bsc#1190941). - scsi: qla2xxx: Fix port type info (bsc#1190941). - scsi: qla2xxx: Fix unsafe removal from linked list (bsc#1190941). - scsi: qla2xxx: Fix use after free in eh_abort path (bsc#1190941). - scsi: qla2xxx: Move heartbeat handling from DPC thread to workqueue (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_device_reset() (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_target_reset() (bsc#1190941). - scsi: qla2xxx: Remove redundant initialization of pointer req (bsc#1190941). - scsi: qla2xxx: Restore initiator in dual mode (bsc#1190941). - scsi: qla2xxx: Show OS name and version in FDMI-1 (bsc#1190941). - scsi: qla2xxx: Suppress unnecessary log messages during login (bsc#1190941). - scsi: qla2xxx: Sync queue idx with queue_pair_map idx (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.100-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.200-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.07.100-k (bsc#1190941). - scsi: qla2xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190941). - scsi: qla2xxx: edif: Add N2N support for EDIF (bsc#1190941). - scsi: qla2xxx: edif: Do secure PLOGI when auth app is present (bsc#1190941). - scsi: qla2xxx: edif: Fix EDIF enable flag (bsc#1190941). - scsi: qla2xxx: edif: Fix returnvar.cocci warnings (bsc#1190941). - scsi: qla2xxx: edif: Fix stale session (bsc#1190941). - scsi: qla2xxx: edif: Reject AUTH ELS on session down (bsc#1190941). - scsi: qla2xxx: edif: Use link event to wake up app (bsc#1190941). - scsi: target: Fix the pgr/alua_support_store functions (git-fixes). - sctp: check asoc peer.asconf_capable before processing asconf (bsc#1190351). - soc: qcom: mdt_loader: Drop PT_LOAD check on hash segment (git-fixes). - spi: spi-nxp-fspi: do not depend on a specific node name erratum workaround (git-fixes). - tpm: ibmvtpm: Avoid error message when process gets signal while waiting (bsc#1065729). - usb: chipidea: ci_hdrc_imx: Also search for 'phys' phandle (git-fixes). - usb: hso: fix error handling code of hso_create_net_device (git-fixes). - usb: hso: remove the bailout parameter (git-fixes). - usb: musb: dsps: Fix the probe error path (git-fixes). - video: fbdev: gbefb: Only instantiate device when built for IP32 (git-fixes). - virtio: write back F_VERSION_1 before validate (git-fixes). - watchdog: orion: use 0 for unset heartbeat (git-fixes). - x86/pat: Pass valid address to sanitize_phys() (bsc#1152489). - x86/resctrl: Free the ctrlval arrays when domain_setup_mon_state() fails (bsc#1152489). - x86/sev: Return an error on a returned non-zero SW_EXITINFO1[31:0] (bsc#1178134). - xen: fix setting of max_pfn in shared_info (git-fixes). - xen: reset legacy rtc flag for PV domU (git-fixes). - xfs: Fixed non-directory creation in SGID directories introduced by CVE-2018-13405 patch (bsc#1190006). - xfs: ensure that the inode uid/gid match values match the icdinode ones (bsc#1190006). - xfs: fix I_DONTCACHE (bsc#1192074). - xfs: fix log intent recovery ENOSPC shutdowns when inactivating inodes (bsc#1190642). - xfs: merge the projid fields in struct xfs_icdinode (bsc#1190006). - xfs: remove the icdinode di_uid/di_gid members (bsc#1190006). - xhci: Enable trust tx length quirk for Fresco FL11 USB controller (git-fixes). - xhci: Fix command ring pointer corruption while aborting a command (git-fixes). - xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes). - xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes). cluster-md-kmp-default-5.3.18-59.30.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.30.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.30.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True kernel-debug-5.3.18-59.30.1.nosrc.rpm True kernel-debug-5.3.18-59.30.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.30.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.30.1.x86_64.rpm True kernel-default-5.3.18-59.30.1.nosrc.rpm True kernel-default-5.3.18-59.30.1.x86_64.rpm True kernel-default-base-5.3.18-59.30.1.18.17.1.src.rpm True kernel-default-base-5.3.18-59.30.1.18.17.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.30.1.18.17.1.x86_64.rpm True kernel-default-devel-5.3.18-59.30.1.x86_64.rpm True kernel-default-extra-5.3.18-59.30.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.30.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.30.1.x86_64.rpm True kernel-default-optional-5.3.18-59.30.1.x86_64.rpm True kernel-devel-5.3.18-59.30.1.noarch.rpm True kernel-docs-5.3.18-59.30.1.noarch.rpm True kernel-docs-5.3.18-59.30.1.nosrc.rpm True kernel-docs-html-5.3.18-59.30.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.30.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.30.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.30.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.30.1.x86_64.rpm True kernel-macros-5.3.18-59.30.1.noarch.rpm True kernel-obs-build-5.3.18-59.30.1.src.rpm True kernel-obs-build-5.3.18-59.30.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.30.1.src.rpm True kernel-obs-qa-5.3.18-59.30.1.x86_64.rpm True kernel-preempt-5.3.18-59.30.1.nosrc.rpm True kernel-preempt-5.3.18-59.30.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.30.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.30.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.30.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.30.1.x86_64.rpm True kernel-source-5.3.18-59.30.1.noarch.rpm True kernel-source-5.3.18-59.30.1.src.rpm True kernel-source-vanilla-5.3.18-59.30.1.noarch.rpm True kernel-syms-5.3.18-59.30.1.src.rpm True kernel-syms-5.3.18-59.30.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.30.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.30.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.30.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.30.1.s390x.rpm True dlm-kmp-default-5.3.18-59.30.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.30.1.s390x.rpm True kernel-default-5.3.18-59.30.1.s390x.rpm True kernel-default-base-5.3.18-59.30.1.18.17.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.30.1.18.17.1.s390x.rpm True kernel-default-devel-5.3.18-59.30.1.s390x.rpm True kernel-default-extra-5.3.18-59.30.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.30.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.30.1.s390x.rpm True kernel-default-optional-5.3.18-59.30.1.s390x.rpm True kernel-obs-build-5.3.18-59.30.1.s390x.rpm True kernel-obs-qa-5.3.18-59.30.1.s390x.rpm True kernel-syms-5.3.18-59.30.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.30.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.30.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.30.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.30.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.30.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.30.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.30.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.30.1.ppc64le.rpm True kernel-debug-5.3.18-59.30.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-default-5.3.18-59.30.1.ppc64le.rpm True kernel-default-base-5.3.18-59.30.1.18.17.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.30.1.18.17.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.30.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.30.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.30.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.30.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.30.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.30.1.ppc64le.rpm True kernel-syms-5.3.18-59.30.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.30.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.30.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.30.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.30.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.30.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True dtb-aarch64-5.3.18-59.30.1.src.rpm True dtb-al-5.3.18-59.30.1.aarch64.rpm True dtb-allwinner-5.3.18-59.30.1.aarch64.rpm True dtb-altera-5.3.18-59.30.1.aarch64.rpm True dtb-amd-5.3.18-59.30.1.aarch64.rpm True dtb-amlogic-5.3.18-59.30.1.aarch64.rpm True dtb-apm-5.3.18-59.30.1.aarch64.rpm True dtb-arm-5.3.18-59.30.1.aarch64.rpm True dtb-broadcom-5.3.18-59.30.1.aarch64.rpm True dtb-cavium-5.3.18-59.30.1.aarch64.rpm True dtb-exynos-5.3.18-59.30.1.aarch64.rpm True dtb-freescale-5.3.18-59.30.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.30.1.aarch64.rpm True dtb-lg-5.3.18-59.30.1.aarch64.rpm True dtb-marvell-5.3.18-59.30.1.aarch64.rpm True dtb-mediatek-5.3.18-59.30.1.aarch64.rpm True dtb-nvidia-5.3.18-59.30.1.aarch64.rpm True dtb-qcom-5.3.18-59.30.1.aarch64.rpm True dtb-renesas-5.3.18-59.30.1.aarch64.rpm True dtb-rockchip-5.3.18-59.30.1.aarch64.rpm True dtb-socionext-5.3.18-59.30.1.aarch64.rpm True dtb-sprd-5.3.18-59.30.1.aarch64.rpm True dtb-xilinx-5.3.18-59.30.1.aarch64.rpm True dtb-zte-5.3.18-59.30.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.30.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True kernel-64kb-5.3.18-59.30.1.aarch64.rpm True kernel-64kb-5.3.18-59.30.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.30.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.30.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.30.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.30.1.aarch64.rpm True kernel-default-5.3.18-59.30.1.aarch64.rpm True kernel-default-base-5.3.18-59.30.1.18.17.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.30.1.18.17.1.aarch64.rpm True kernel-default-devel-5.3.18-59.30.1.aarch64.rpm True kernel-default-extra-5.3.18-59.30.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.30.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.30.1.aarch64.rpm True kernel-default-optional-5.3.18-59.30.1.aarch64.rpm True kernel-obs-build-5.3.18-59.30.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.30.1.aarch64.rpm True kernel-preempt-5.3.18-59.30.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.30.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.30.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.30.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.30.1.aarch64.rpm True kernel-syms-5.3.18-59.30.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.30.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.30.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.30.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3641 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3772: Fixed sctp vtag check in sctp_sf_ootb (bsc#1190351). - CVE-2021-3655: Fixed a missing size validations on inbound SCTP packets, which may have allowed the kernel to read uninitialized memory (bsc#1188563). - CVE-2021-43056: Fixed possible KVM host crash via malicious KVM guest on Power8 (bnc#1192107). - CVE-2021-3896: Fixed a array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c (bsc#1191958). - CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev->rf_conn_info object (bsc#1190067). - CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673). - CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063). - CVE-2021-33033: Fixed a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled (bsc#1186109). - CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349). - CVE-2021-34866: Fixed eBPF Type Confusion Privilege Escalation Vulnerability (bsc#1191645). - CVE-2021-42252: Fixed an issue inside aspeed_lpc_ctrl_mmap that could have allowed local attackers to access the Aspeed LPC control interface to overwrite memory in the kernel and potentially execute privileges (bnc#1190479). - CVE-2021-41864: Fixed prealloc_elems_and_freelist that allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317). - CVE-2021-42008: Fixed a slab out-of-bounds write in the decode_data function in drivers/net/hamradio/6pack.c. Input from a process that had the CAP_NET_ADMIN capability could have lead to root access (bsc#1191315). The following non-security bugs were fixed: - ACPI: NFIT: Use fallback node id when numa info in NFIT table is incorrect (git-fixes). - ACPI: bgrt: Fix CFI violation (git-fixes). - ACPI: fix NULL pointer dereference (git-fixes). - ACPI: fix NULL pointer dereference (git-fixes). - ALSA: hda - Enable headphone mic on Dell Latitude laptops with ALC3254 (git-fixes). - ALSA: hda/realtek - ALC236 headset MIC recording issue (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PC50HS (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo X170KM-G (git-fixes). - ALSA: hda/realtek: Add quirk for TongFang PHxTxX1 (git-fixes). - ALSA: hda/realtek: Complete partial device name to avoid ambiguity (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell Precision 5560 laptop (git-fixes). - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo 13s Gen2 (git-fixes). - ALSA: hda/realtek: Fix the mic type detection issue for ASUS G551JW (git-fixes). - ALSA: hda/realtek: Quirks to enable speaker output for Lenovo Legion 7i 15IMHG05, Yoga 7i 14ITL5/15ITL5, and 13s Gen2 laptops (git-fixes). - ALSA: hda: avoid write to STATESTS if controller is in reset (git-fixes). - ALSA: hda: intel: Allow repeatedly probing on codec configuration errors (bsc#1190801). - ALSA: pcm: Workaround for a wrong offset in SYNC_PTR compat ioctl (git-fixes). - ALSA: seq: Fix a potential UAF by wrong private_free call order (git-fixes). - ALSA: usb-audio: Add quirk for VF0770 (git-fixes). - ALSA: usb-audio: Provide quirk for Sennheiser GSP670 Headset (git-fixes). - ASoC: DAPM: Fix missing kctl change notifications (git-fixes). - ASoC: Intel: Skylake: Fix module configuration for KPB and MIXER (git-fixes). - ASoC: Intel: Skylake: Fix passing loadable flag for module (git-fixes). - ASoC: Intel: bytcr_rt5640: Move "Platform Clock" routes to the maps for the matching in-/output (git-fixes). - ASoC: Intel: sof_sdw: tag SoundWire BEs as non-atomic (git-fixes). - ASoC: SOF: imx: imx8: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: imx: imx8m: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: loader: release_firmware() on load failure to avoid batching (git-fixes). - ASoC: atmel: ATMEL drivers do not need HAS_DMA (git-fixes). - ASoC: dapm: use component prefix when checking widget names (git-fixes). - ASoC: fsl_spdif: register platform component before registering cpu dai (git-fixes). - ASoC: wm8960: Fix clock configuration on slave mode (git-fixes). - Add obsolete_rebuilds_subpackage (boo#1172073 bsc#1191731). - Configure mpi3mr as currently unsupported (jsc#SLE-18120) - HID: apple: Fix logical maximum and usage maximum of Magic Keyboard JIS (git-fixes). - HID: betop: fix slab-out-of-bounds Write in betop_probe (git-fixes). - HID: u2fzero: ignore incomplete packets without data (git-fixes). - HID: usbhid: free raw_report buffers in usbhid_stop (git-fixes). - HID: wacom: Add new Intuos BT (CTL-4100WL/CTL-6100WL) device IDs (git-fixes). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - Input: snvs_pwrkey - add clk handling (git-fixes). - Input: xpad - add support for another USB ID of Nacon GC-100 (git-fixes). - KVM: PPC: Book3S HV Nested: Reflect guest PMU in-use to L0 when guest SPRs are live (bsc#1156395). - KVM: PPC: Book3S HV Nested: Sanitise H_ENTER_NESTED TM state (bsc#1156395). - KVM: PPC: Book3S HV: Fix copy_tofrom_guest routines (jsc#SLE-12936 git-fixes). - KVM: PPC: Book3S HV: Save host FSCR in the P7/8 path (bsc#1065729). - KVM: PPC: Book3S HV: Tolerate treclaim. in fake-suspend mode changing registers (bsc#1156395). - KVM: PPC: Fix clearing never mapped TCEs in realmode (bsc#1156395). - KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak (bsc#1156395). - NFC: digital: fix possible memory leak in digital_in_send_sdd_req() (git-fixes). - NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() (git-fixes). - NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628). - PCI: Fix pci_host_bridge struct device release/free handling (git-fixes). - PM / devfreq: rk3399_dmc: Add missing of_node_put() (git-fixes). - PM / devfreq: rk3399_dmc: Disable devfreq-event device when fails (git-fixes). - PM / devfreq: rk3399_dmc: Fix kernel oops when rockchip,pmu is absent (git-fixes). - PM / devfreq: rk3399_dmc: Fix spelling typo (git-fixes). - PM / devfreq: rk3399_dmc: Remove unneeded semicolon (git-fixes). - RDMA/cma: Do not change route.addr.src_addr.ss_family (bsc#1181147). - RDMA/cma: Fix listener leak in rdma_cma_listen_on_all() failure (bsc#1181147). - USB: cdc-acm: clean up probe error labels (git-fixes). - USB: cdc-acm: fix minor-number release (git-fixes). - USB: serial: option: add Quectel EC200S-CN module support (git-fixes). - USB: serial: option: add Telit LE910Cx composition 0x1204 (git-fixes). - USB: serial: option: add prod. id for Quectel EG91 (git-fixes). - USB: serial: qcserial: add EM9191 QDL support (git-fixes). - USB: xhci: dbc: fix tty registration race (git-fixes). - acpi/arm64: fix next_platform_timer() section mismatch error (git-fixes). - acpi/arm64: fix next_platform_timer() section mismatch error (git-fixes). - ata: ahci_platform: fix null-ptr-deref in ahci_platform_enable_regulators() (git-fixes). - ata: sata_dwc_460ex: No need to call phy_exit() befre phy_init() (git-fixes). - audit: fix possible null-pointer dereference in audit_filter_rules (git-fixes). - bfq: Remove merged request already in bfq_requests_merged() (bsc#1191456). - blk: Fix lock inversion between ioc lock and bfqd lock (bsc#1191456). - blktrace: Fix uaf in blk_trace access after removing by sysfs (bsc#1191452). - block: bfq: fix bfq_set_next_ioprio_data() (bsc#1191451). - bnxt_en: make bnxt_free_skbs() safe to call after bnxt_free_mem() (jsc#SLE-16649). - bpf: Add bpf_patch_call_args prototype to include/linux/bpf.h (git-fixes). - bpf: Fix OOB read when printing XDP link fdinfo (git-fixes). - bpf: Fix a typo of reuseport map in bpf.h (git-fixes). - bpf: Fix up bpf_skb_adjust_room helper's skb csum setting (git-fixes). - can: dev: can_restart: fix use after free bug (git-fixes). - can: peak_pci: peak_pci_remove(): fix UAF (git-fixes). - can: peak_usb: fix use after free bugs (git-fixes). - can: peak_usb: pcan_usb_fd_decode_status(): fix back to ERROR_ACTIVE state notification (git-fixes). - can: rcar_can: fix suspend/resume (git-fixes). - can: ti_hecc: ti_hecc_probe(): add missed clk_disable_unprepare() in error path (git-fixes). - can: xilinx_can: handle failure cases of pm_runtime_get_sync (git-fixes). - cb710: avoid NULL pointer subtraction (git-fixes). - ceph: fix handling of "meta" errors (bsc#1192041). - ceph: skip existing superblocks that are blocklisted or shut down when mounting (bsc#1192040). - cfg80211: correct bridge/4addr mode check (git-fixes). - cfg80211: fix management registrations locking (git-fixes). - cfg80211: scan: fix RCU in cfg80211_add_nontrans_list() (git-fixes). - cpuidle: pseries: Mark pseries_idle_proble() as __init (jsc#SLE-13614 bsc#1176914 ltc#186394 git-fixes). - drm/amd/display: Pass PCI deviceid into DC (git-fixes). - drm/amdgpu: correct initial cp_hqd_quantum for gfx9 (git-fixes). - drm/amdgpu: fix gart.bo pin_count leak (git-fixes). - drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read (git-fixes). - drm/i915: Fix syncmap memory leak (bsc#1152489) Backporting notes: * context changes in intel_timeline_fini() - drm/msm/dsi: Fix an error code in msm_dsi_modeset_init() (git-fixes). - drm/msm/dsi: fix off by one in dsi_bus_clk_enable error handling (git-fixes). - drm/msm: Avoid potential overflow in timeout_to_jiffies() (git-fixes). - drm/msm: Fix null pointer dereference on pointer edp (git-fixes). - drm/nouveau/debugfs: fix file release memory leak (git-fixes). - drm/nouveau/kms/nv50-: fix file release memory leak (git-fixes). - drm/nouveau/kms/tu102-: delay enabling cursor until after assign_windows (git-fixes). - drm/nouveau: avoid a use-after-free when BO init fails (bsc#1152472) - drm/panel: olimex-lcd-olinuxino: select CRC32 (git-fixes). - drm/panfrost: Make sure MMU context lifetime is not bound to (bsc#1152472) - drm/sun4i: dw-hdmi: Fix HDMI PHY clock setup (git-fixes). - e1000e: Drop patch to avoid regressions until real fix is available (bsc#1191663). - e1000e: Fix packet loss on Tiger Lake and later (git-fixes). - e100: fix buffer overrun in e100_get_regs (git-fixes). - e100: fix length calculation in e100_get_regs_len (git-fixes). - e100: handle eeprom as little endian (git-fixes). - ext4: fix reserved space counter leakage (bsc#1191450). - ext4: report correct st_size for encrypted symlinks (bsc#1191449). - fs, mm: fix race in unlinking swapfile (bsc#1191455). - fscrypt: add fscrypt_symlink_getattr() for computing st_size (bsc#1191449). - gpio: pca953x: Improve bias setting (git-fixes). - hso: fix bailout in error case of probe (git-fixes). - i2c: acpi: fix resource leak in reconfiguration device addition (git-fixes). - ice: fix getting UDP tunnel entry (jsc#SLE-12878). - iio: adc128s052: Fix the error handling path of 'adc128_probe()' (git-fixes). - iio: adc: aspeed: set driver data when adc probe (git-fixes). - iio: dac: ti-dac5571: fix an error code in probe() (git-fixes). - iio: light: opt3001: Fixed timeout error when 0 lux (git-fixes). - iio: mtk-auxadc: fix case IIO_CHAN_INFO_PROCESSED (git-fixes). - iio: ssp_sensors: add more range checking in ssp_parse_dataframe() (git-fixes). - iio: ssp_sensors: fix error code in ssp_print_mcu_debug() (git-fixes). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241). - isdn: cpai: check ctr->cnr to avoid array index out of bound (git-fixes). - isdn: mISDN: Fix sleeping function called from invalid context (git-fixes). - iwlwifi: pcie: add configuration of a Wi-Fi adapter on Dell XPS 15 (git-fixes). - ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes). - kABI workaround for HD-audio probe retry changes (bsc#1190801). - kABI workaround for cfg80211 mgmt_registration_lock changes (git-fixes). - kabi: block: Fix kabi of blk_mq_sched_try_insert_merge() (bsc#1191456). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167 bsc#1191240 ltc#194716). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167). - kernel-binary.spec: suse-kernel-rpm-scriptlets required for uninstall as well. Fixes: e98096d5cf85 ("rpm: Abolish scritplet templating (bsc#1189841).") - kernel-spec-macros: Since rpm 4.17 %verbose is unusable (bsc#1191229). - lan78xx: select CRC32 (git-fixes). - libata: Add ATA_HORKAGE_NO_NCQ_ON_ATI for Samsung 860 and 870 SSD (git-fixes). - mac80211: Drop frames from invalid MAC address in ad-hoc mode (git-fixes). - mac80211: check return value of rhashtable_init (git-fixes). - mei: me: add Ice Lake-N device id (git-fixes). - mmc: dw_mmc: exynos: fix the finding clock sample value (git-fixes). - mmc: meson-gx: do not use memcpy_to/fromio for dram-access-quirk (git-fixes). - mmc: vub300: fix control-message timeouts (git-fixes). - net/mlx5: E-Switch, Fix double allocation of acl flow counter (jsc#SLE-15172). - net/mlx5e: IPSEC RX, enable checksum complete (jsc#SLE-15172). - net/mlx5e: RX, Avoid possible data corruption when relaxed ordering and LRO combined (jsc#SLE-15172). - net/sched: ets: fix crash when flipping from 'strict' to 'quantum' (bsc#1176774). - net: batman-adv: fix error handling (git-fixes). - net: can: ems_usb: fix use-after-free in ems_usb_disconnect() (git-fixes). - net: cdc_eem: fix tx fixup skb leak (git-fixes). - net: cdc_ncm: correct overhead in delayed_ndp_size (git-fixes). - net: hns3: check queue id range before using (jsc#SLE-14777). - net: hso: add failure handler for add_net_device (git-fixes). - net: hso: fix NULL-deref on disconnect regression (git-fixes). - net: hso: fix null-ptr-deref during tty device unregistration (git-fixes). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: lan78xx: fix division by zero in send path (git-fixes). - net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191800). - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() (git-fixes). - netfilter: Drop fragmented ndisc packets assembled in netfilter (git-fixes). - netfilter: conntrack: collect all entries in one cycle (bsc#1173604). - netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value (bsc#1176447). - nfc: fix error handling of nfc_proto_register() (git-fixes). - nfc: port100: fix using -ERRNO as command type mask (git-fixes). - nvme-fc: avoid race between time out and tear down (bsc#1185762). - nvme-fc: remove freeze/unfreeze around update_nr_hw_queues (bsc#1185762). - nvme-fc: update hardware queues before using them (bsc#1185762). - nvme-pci: Fix abort command id (git-fixes). - nvme-pci: fix error unwind in nvme_map_data (bsc#1191934). - nvme-pci: fix error unwind in nvme_map_data (bsc#1191934). - nvme-pci: refactor nvme_unmap_data (bsc#1191934). - nvme-pci: refactor nvme_unmap_data (bsc#1191934). - nvme: add command id quirk for apple controllers (git-fixes). - ocfs2: fix data corruption after conversion from inline format (bsc#1190795). - pata_legacy: fix a couple uninitialized variable bugs (git-fixes). - phy: mdio: fix memory leak (git-fixes). - platform/mellanox: mlxreg-io: Fix argument base in kstrtou32() call (git-fixes). - platform/mellanox: mlxreg-io: Fix read access of n-bytes size attributes (git-fixes). - platform/x86: dell-smbios-wmi: Add missing kfree in error-exit from run_smbios_call (git-fixes). - platform/x86: intel_scu_ipc: Fix busy loop expiry time (git-fixes). - powerpc/64s: Fix entry flush patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Fix stf mitigation patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Remove irq mask workaround in accumulate_stolen_time() (jsc#SLE-9246 git-fixes). - powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729). - powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729). - powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729). - powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729). - powerpc/bpf: Use bctrl for making function calls (bsc#1065729). - powerpc/bpf: Use bctrl for making function calls (bsc#1065729). - powerpc/lib/code-patching: Do not use struct 'ppc_inst' for runnable code in tests (jsc#SLE-13847 git-fixes). - powerpc/lib/code-patching: Make instr_is_branch_to_addr() static (jsc#SLE-13847 git-fixes). - powerpc/lib: Fix emulate_step() std test (bsc#1065729). - powerpc/numa: Update cpu_cpu_map on CPU online/offline (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/pseries: Fix build error when NUMA=n (bsc#1190620 ltc#194498 git-fixes). - powerpc/smp: Cache CPU to chip lookup (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Enable CACHE domain for shared processor (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fix a crash while booting kvm guest with nr_cpus=2 (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fold cpu_die() into its only caller (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Set numa node before updating mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Update cpu_core_map on all PowerPc systems (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/uprobes: Validation for prefixed instruction (jsc#SLE-13847 git-fixes). - powerpc/xive: Discard disabled interrupts in get_irqchip_state() (bsc#1085030 git-fixes). - powerpc: Do not dereference code as 'struct ppc_inst' (uprobe, code-patching, feature-fixups) (jsc#SLE-13847 git-fixes). - powerpc: Do not use 'struct ppc_inst' to reference instruction location (jsc#SLE-13847 git-fixes). - powerpc: Move arch_cpu_idle_dead() into smp.c (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - pseries/eeh: Fix the kdump kernel crash during eeh_pseries_init (git-fixes). - ptp_pch: Load module automatically if ID matches (git-fixes). - ptp_pch: Restore dependency on PCI (git-fixes). - regmap: Fix possible double-free in regcache_rbtree_exit() (git-fixes). - rpm: fix kmp install path - rpm: use _rpmmacrodir (boo#1191384) - scsi: ibmvfc: Fix up duplicate response detection (bsc#1191867 ltc#194757). - scsi: iscsi: Fix deadlock on recovery path during GFP_IO reclaim (git-fixes). - scsi: lpfc: Allow PLOGI retry if previous PLOGI was aborted (bsc#1192145). - scsi: lpfc: Allow fabric node recovery if recovery is in progress before devloss (bsc#1192145). - scsi: lpfc: Correct sysfs reporting of loop support after SFP status change (bsc#1192145). - scsi: lpfc: Fix link down processing to address NULL pointer dereference (bsc#1192145). - scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349). - scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine (bsc#1192145). - scsi: lpfc: Revert LOG_TRACE_EVENT back to LOG_INIT prior to driver_resource_setup() (bsc#1192145). - scsi: lpfc: Update lpfc version to 14.0.0.3 (bsc#1192145). - scsi: lpfc: Wait for successful restart of SLI3 adapter during host sg_reset (bsc#1192145). - scsi: mpi3mr: Add EEDP DIF DIX support (jsc#SLE-18120). - scsi: mpi3mr: Add bios_param SCSI host template hook (jsc#SLE-18120). - scsi: mpi3mr: Add change queue depth support (jsc#SLE-18120). - scsi: mpi3mr: Add event handling debug prints (jsc#SLE-18120). - scsi: mpi3mr: Add mpi30 Rev-R headers and Kconfig (jsc#SLE-18120). - scsi: mpi3mr: Add support for DSN secure firmware check (jsc#SLE-18120). - scsi: mpi3mr: Add support for PCIe device event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for PM suspend and resume (jsc#SLE-18120). - scsi: mpi3mr: Add support for device add/remove event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for internal watchdog thread (jsc#SLE-18120). - scsi: mpi3mr: Add support for queue command processing (jsc#SLE-18120). - scsi: mpi3mr: Add support for recovering controller (jsc#SLE-18120). - scsi: mpi3mr: Add support for threaded ISR (jsc#SLE-18120). - scsi: mpi3mr: Add support for timestamp sync with firmware (jsc#SLE-18120). - scsi: mpi3mr: Additional event handling (jsc#SLE-18120). - scsi: mpi3mr: Allow certain commands during pci-remove hook (jsc#SLE-18120). - scsi: mpi3mr: Base driver code (jsc#SLE-18120). - scsi: mpi3mr: Complete support for soft reset (jsc#SLE-18120). - scsi: mpi3mr: Create operational request and reply queue pair (jsc#SLE-18120). - scsi: mpi3mr: Fix error handling in mpi3mr_setup_isr() (git-fixes). - scsi: mpi3mr: Fix missing unlock on error (git-fixes). - scsi: mpi3mr: Hardware workaround for UNMAP commands to NVMe drives (jsc#SLE-18120). - scsi: mpi3mr: Implement SCSI error handler hooks (jsc#SLE-18120). - scsi: mpi3mr: Print IOC info for debugging (jsc#SLE-18120). - scsi: mpi3mr: Print pending host I/Os for debugging (jsc#SLE-18120). - scsi: mpi3mr: Set up IRQs in resume path (jsc#SLE-18120). - scsi: mpi3mr: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (jsc#SLE-18120). - scsi: mpi3mr: Use the proper SCSI midlayer interfaces for PI (jsc#SLE-18120). - scsi: mpi3mr: Wait for pending I/O completions upon detection of VD I/O timeout (jsc#SLE-18120). - scsi: qla2xxx: Add debug print of 64G link speed (bsc#1190941). - scsi: qla2xxx: Add host attribute to trigger MPI hang (bsc#1190941). - scsi: qla2xxx: Add support for mailbox passthru (bsc#1190941). - scsi: qla2xxx: Adjust request/response queue size for 28xx (bsc#1190941). - scsi: qla2xxx: Call process_response_queue() in Tx path (bsc#1190941). - scsi: qla2xxx: Changes to support FCP2 Target (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel for NVMe BFS (bsc#1190941). - scsi: qla2xxx: Check for firmware capability before creating QPair (bsc#1190941). - scsi: qla2xxx: Display 16G only as supported speeds for 3830c card (bsc#1190941). - scsi: qla2xxx: Do not call fc_block_scsi_eh() during bus reset (bsc#1190941). - scsi: qla2xxx: Fix NPIV create erroneous error (bsc#1190941). - scsi: qla2xxx: Fix NVMe retry (bsc#1190941). - scsi: qla2xxx: Fix NVMe session down detection (bsc#1190941). - scsi: qla2xxx: Fix NVMe | FCP personality change (bsc#1190941). - scsi: qla2xxx: Fix crash in NVMe abort path (bsc#1190941). - scsi: qla2xxx: Fix excessive messages during device logout (bsc#1190941). - scsi: qla2xxx: Fix hang during NVMe session tear down (bsc#1190941). - scsi: qla2xxx: Fix hang on NVMe command timeouts (bsc#1190941). - scsi: qla2xxx: Fix kernel crash when accessing port_speed sysfs file (bsc#1190941). - scsi: qla2xxx: Fix port type info (bsc#1190941). - scsi: qla2xxx: Fix unsafe removal from linked list (bsc#1190941). - scsi: qla2xxx: Fix use after free in eh_abort path (bsc#1190941). - scsi: qla2xxx: Move heartbeat handling from DPC thread to workqueue (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_device_reset() (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_target_reset() (bsc#1190941). - scsi: qla2xxx: Remove redundant initialization of pointer req (bsc#1190941). - scsi: qla2xxx: Restore initiator in dual mode (bsc#1190941). - scsi: qla2xxx: Show OS name and version in FDMI-1 (bsc#1190941). - scsi: qla2xxx: Suppress unnecessary log messages during login (bsc#1190941). - scsi: qla2xxx: Sync queue idx with queue_pair_map idx (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.100-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.200-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.07.100-k (bsc#1190941). - scsi: qla2xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190941). - scsi: qla2xxx: edif: Add N2N support for EDIF (bsc#1190941). - scsi: qla2xxx: edif: Do secure PLOGI when auth app is present (bsc#1190941). - scsi: qla2xxx: edif: Fix EDIF enable flag (bsc#1190941). - scsi: qla2xxx: edif: Fix returnvar.cocci warnings (bsc#1190941). - scsi: qla2xxx: edif: Fix stale session (bsc#1190941). - scsi: qla2xxx: edif: Reject AUTH ELS on session down (bsc#1190941). - scsi: qla2xxx: edif: Use link event to wake up app (bsc#1190941). - scsi: target: Fix the pgr/alua_support_store functions (git-fixes). - sctp: check asoc peer.asconf_capable before processing asconf (bsc#1190351). - soc: qcom: mdt_loader: Drop PT_LOAD check on hash segment (git-fixes). - spi: spi-nxp-fspi: do not depend on a specific node name erratum workaround (git-fixes). - tpm: ibmvtpm: Avoid error message when process gets signal while waiting (bsc#1065729). - usb: chipidea: ci_hdrc_imx: Also search for 'phys' phandle (git-fixes). - usb: hso: fix error handling code of hso_create_net_device (git-fixes). - usb: hso: remove the bailout parameter (git-fixes). - usb: musb: dsps: Fix the probe error path (git-fixes). - video: fbdev: gbefb: Only instantiate device when built for IP32 (git-fixes). - virtio: write back F_VERSION_1 before validate (git-fixes). - watchdog: orion: use 0 for unset heartbeat (git-fixes). - x86/pat: Pass valid address to sanitize_phys() (bsc#1152489). - x86/resctrl: Free the ctrlval arrays when domain_setup_mon_state() fails (bsc#1152489). - x86/sev: Return an error on a returned non-zero SW_EXITINFO1[31:0] (bsc#1178134). - xen: fix setting of max_pfn in shared_info (git-fixes). - xen: reset legacy rtc flag for PV domU (git-fixes). - xfs: Fixed non-directory creation in SGID directories introduced by CVE-2018-13405 patch (bsc#1190006). - xfs: ensure that the inode uid/gid match values match the icdinode ones (bsc#1190006). - xfs: fix I_DONTCACHE (bsc#1192074). - xfs: fix log intent recovery ENOSPC shutdowns when inactivating inodes (bsc#1190642). - xfs: merge the projid fields in struct xfs_icdinode (bsc#1190006). - xfs: remove the icdinode di_uid/di_gid members (bsc#1190006). - xhci: Enable trust tx length quirk for Fresco FL11 USB controller (git-fixes). - xhci: Fix command ring pointer corruption while aborting a command (git-fixes). - xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes). - xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes). cluster-md-kmp-azure-5.3.18-38.28.2.x86_64.rpm True dlm-kmp-azure-5.3.18-38.28.2.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.28.2.x86_64.rpm True kernel-azure-5.3.18-38.28.2.nosrc.rpm True kernel-azure-5.3.18-38.28.2.x86_64.rpm True kernel-azure-devel-5.3.18-38.28.2.x86_64.rpm True kernel-azure-extra-5.3.18-38.28.2.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.28.2.x86_64.rpm True kernel-azure-optional-5.3.18-38.28.2.x86_64.rpm True kernel-devel-azure-5.3.18-38.28.2.noarch.rpm True kernel-source-azure-5.3.18-38.28.2.noarch.rpm True kernel-source-azure-5.3.18-38.28.2.src.rpm True kernel-syms-azure-5.3.18-38.28.1.src.rpm True kernel-syms-azure-5.3.18-38.28.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.28.2.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.28.2.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.28.2.x86_64.rpm True openSUSE-SLE-15.3-2021-3821 moderate SUSE Updates openSUSE-SLE 15.3 This update for subversions fixes the following issue: - the kde wallet plugin is now built and shipped again for openSUSE Leap 15.3 (bsc#1191282) libsvn_auth_gnome_keyring-1-0-1.10.6-10.5.1.x86_64.rpm libsvn_auth_kwallet-1-0-1.10.6-10.5.1.x86_64.rpm subversion-1.10.6-10.5.1.src.rpm subversion-1.10.6-10.5.1.x86_64.rpm subversion-bash-completion-1.10.6-10.5.1.noarch.rpm subversion-devel-1.10.6-10.5.1.x86_64.rpm subversion-perl-1.10.6-10.5.1.x86_64.rpm subversion-python-1.10.6-10.5.1.x86_64.rpm subversion-python-ctypes-1.10.6-10.5.1.x86_64.rpm subversion-ruby-1.10.6-10.5.1.x86_64.rpm subversion-server-1.10.6-10.5.1.x86_64.rpm subversion-tools-1.10.6-10.5.1.x86_64.rpm libsvn_auth_gnome_keyring-1-0-1.10.6-10.5.1.s390x.rpm libsvn_auth_kwallet-1-0-1.10.6-10.5.1.s390x.rpm subversion-1.10.6-10.5.1.s390x.rpm subversion-devel-1.10.6-10.5.1.s390x.rpm subversion-perl-1.10.6-10.5.1.s390x.rpm subversion-python-1.10.6-10.5.1.s390x.rpm subversion-python-ctypes-1.10.6-10.5.1.s390x.rpm subversion-ruby-1.10.6-10.5.1.s390x.rpm subversion-server-1.10.6-10.5.1.s390x.rpm subversion-tools-1.10.6-10.5.1.s390x.rpm libsvn_auth_gnome_keyring-1-0-1.10.6-10.5.1.ppc64le.rpm libsvn_auth_kwallet-1-0-1.10.6-10.5.1.ppc64le.rpm subversion-1.10.6-10.5.1.ppc64le.rpm subversion-devel-1.10.6-10.5.1.ppc64le.rpm subversion-perl-1.10.6-10.5.1.ppc64le.rpm subversion-python-1.10.6-10.5.1.ppc64le.rpm subversion-python-ctypes-1.10.6-10.5.1.ppc64le.rpm subversion-ruby-1.10.6-10.5.1.ppc64le.rpm subversion-server-1.10.6-10.5.1.ppc64le.rpm subversion-tools-1.10.6-10.5.1.ppc64le.rpm libsvn_auth_gnome_keyring-1-0-1.10.6-10.5.1.aarch64.rpm libsvn_auth_kwallet-1-0-1.10.6-10.5.1.aarch64.rpm subversion-1.10.6-10.5.1.aarch64.rpm subversion-devel-1.10.6-10.5.1.aarch64.rpm subversion-perl-1.10.6-10.5.1.aarch64.rpm subversion-python-1.10.6-10.5.1.aarch64.rpm subversion-python-ctypes-1.10.6-10.5.1.aarch64.rpm subversion-ruby-1.10.6-10.5.1.aarch64.rpm subversion-server-1.10.6-10.5.1.aarch64.rpm subversion-tools-1.10.6-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-3625 moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - osd: move down peers out from peer_purged (bsc#1187709) - osd: fix scrub reschedule bug (bsc#1187584) - osd: marked down causes wrong backfill_toofull (bsc#1188911) - osd: panic occur repeatedly when recovery an object after disk replacement (bsc#1190415) - rgw: allow to set ssl options and ciphers for beast frontend (bsc#1185747) - bucket removal operation fails (bsc#1191357) - os/bluestore: fix erroneous SharedBlob record removal during repair - os/bluestore: Remove possibility of replay log and file inconsistency - mgr/dashboard/api: set a UTF-8 locale when running pip - mgr/DaemonServer: skip redundant update of pgp_num_actual - pybind/mgr/insights: Don't persist report data - common/options: Set osd_client_message_cap to 256 - pybind/ceph_volume_client: use cephfs mkdirs api ceph-14.2.22.445+ga68959d39a6-3.72.1.src.rpm ceph-dashboard-e2e-14.2.22.445+ga68959d39a6-3.72.1.noarch.rpm ceph-mgr-ssh-14.2.22.445+ga68959d39a6-3.72.1.noarch.rpm openSUSE-SLE-15.3-2021-3745 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: MozillaFirefox was updated to Extended Support Release 91.3.0 ESR * Fixed: Various stability, functionality, and security fixes MFSA 2021-49 (bsc#1192250) * CVE-2021-38503: iframe sandbox rules did not apply to XSLT stylesheets * CVE-2021-38504: Use-after-free in file picker dialog * CVE-2021-38505: Windows 10 Cloud Clipboard may have recorded sensitive user data * CVE-2021-38506: Firefox could be coaxed into going into fullscreen mode without notification or warning * CVE-2021-38507: Opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports * CVE-2021-38508: Permission Prompt could be overlaid, resulting in user confusion and potential spoofing * CVE-2021-38509: Javascript alert box could have been spoofed onto an arbitrary domain * CVE-2021-38510: Download Protections were bypassed by .inetloc files on Mac OS * MOZ-2021-0008: Use-after-free in HTTP2 Session object * MOZ-2021-0007: Memory safety bugs fixed in Firefox 94 and Firefox ESR 91.3 MozillaFirefox-91.3.0-152.6.1.src.rpm MozillaFirefox-91.3.0-152.6.1.x86_64.rpm MozillaFirefox-branding-upstream-91.3.0-152.6.1.x86_64.rpm MozillaFirefox-devel-91.3.0-152.6.1.x86_64.rpm MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64.rpm MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64.rpm MozillaFirefox-91.3.0-152.6.1.s390x.rpm MozillaFirefox-branding-upstream-91.3.0-152.6.1.s390x.rpm MozillaFirefox-devel-91.3.0-152.6.1.s390x.rpm MozillaFirefox-translations-common-91.3.0-152.6.1.s390x.rpm MozillaFirefox-translations-other-91.3.0-152.6.1.s390x.rpm MozillaFirefox-91.3.0-152.6.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.3.0-152.6.1.ppc64le.rpm MozillaFirefox-devel-91.3.0-152.6.1.ppc64le.rpm MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le.rpm MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le.rpm MozillaFirefox-91.3.0-152.6.1.aarch64.rpm MozillaFirefox-branding-upstream-91.3.0-152.6.1.aarch64.rpm MozillaFirefox-devel-91.3.0-152.6.1.aarch64.rpm MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64.rpm MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3773 important SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - CVE-2021-25219: Fixed lame cache that could have been abused to severely degrade resolver performance (bsc#1192146). bind-9.16.6-12.57.1.src.rpm bind-devel-32bit-9.16.6-12.57.1.x86_64.rpm libbind9-1600-32bit-9.16.6-12.57.1.x86_64.rpm libdns1605-32bit-9.16.6-12.57.1.x86_64.rpm libirs1601-32bit-9.16.6-12.57.1.x86_64.rpm libisc1606-32bit-9.16.6-12.57.1.x86_64.rpm libisccc1600-32bit-9.16.6-12.57.1.x86_64.rpm libisccfg1600-32bit-9.16.6-12.57.1.x86_64.rpm libns1604-32bit-9.16.6-12.57.1.x86_64.rpm openSUSE-SLE-15.3-2021-3767 moderate SUSE Updates openSUSE-SLE 15.3 This update for apr-util fixes the following problem: - The dbm backend is shipped in the libapr-util1-dbm-db package in the Legacy Module. apr-util-1.6.1-18.2.1.src.rpm apr-util-devel-1.6.1-18.2.1.x86_64.rpm libapr-util1-1.6.1-18.2.1.x86_64.rpm libapr-util1-dbd-mysql-1.6.1-18.2.1.x86_64.rpm libapr-util1-dbd-pgsql-1.6.1-18.2.1.x86_64.rpm libapr-util1-dbd-sqlite3-1.6.1-18.2.1.x86_64.rpm libapr-util1-dbm-db-1.6.1-18.2.1.x86_64.rpm apr-util-devel-1.6.1-18.2.1.s390x.rpm libapr-util1-1.6.1-18.2.1.s390x.rpm libapr-util1-dbd-mysql-1.6.1-18.2.1.s390x.rpm libapr-util1-dbd-pgsql-1.6.1-18.2.1.s390x.rpm libapr-util1-dbd-sqlite3-1.6.1-18.2.1.s390x.rpm libapr-util1-dbm-db-1.6.1-18.2.1.s390x.rpm apr-util-devel-1.6.1-18.2.1.ppc64le.rpm libapr-util1-1.6.1-18.2.1.ppc64le.rpm libapr-util1-dbd-mysql-1.6.1-18.2.1.ppc64le.rpm libapr-util1-dbd-pgsql-1.6.1-18.2.1.ppc64le.rpm libapr-util1-dbd-sqlite3-1.6.1-18.2.1.ppc64le.rpm libapr-util1-dbm-db-1.6.1-18.2.1.ppc64le.rpm apr-util-devel-1.6.1-18.2.1.aarch64.rpm libapr-util1-1.6.1-18.2.1.aarch64.rpm libapr-util1-dbd-mysql-1.6.1-18.2.1.aarch64.rpm libapr-util1-dbd-pgsql-1.6.1-18.2.1.aarch64.rpm libapr-util1-dbd-sqlite3-1.6.1-18.2.1.aarch64.rpm libapr-util1-dbm-db-1.6.1-18.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-3792 moderate SUSE Updates openSUSE-SLE 15.3 This update for kmod fixes the following issues: - Enable ZSTD compression (bsc#1192104)(jsc#SLE-21256) kmod-29-4.12.1.src.rpm kmod-29-4.12.1.x86_64.rpm kmod-bash-completion-29-4.12.1.noarch.rpm libkmod-devel-29-4.12.1.x86_64.rpm libkmod2-29-4.12.1.x86_64.rpm kmod-29-4.12.1.s390x.rpm libkmod-devel-29-4.12.1.s390x.rpm libkmod2-29-4.12.1.s390x.rpm kmod-29-4.12.1.ppc64le.rpm libkmod-devel-29-4.12.1.ppc64le.rpm libkmod2-29-4.12.1.ppc64le.rpm kmod-29-4.12.1.aarch64.rpm libkmod-devel-29-4.12.1.aarch64.rpm libkmod2-29-4.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3793 moderate SUSE Updates openSUSE-SLE 15.3 This update for u-boot fixes the following issues: - Fix boot error on DE0-Nano-Soc board (bsc#1191966) u-boot-2021.01-7.3.1.src.rpm u-boot-tools-2021.01-7.3.1.x86_64.rpm u-boot-tools-2021.01-7.3.1.s390x.rpm u-boot-tools-2021.01-7.3.1.ppc64le.rpm u-boot-avnetultra96rev1-2021.01-7.3.1.aarch64.rpm u-boot-avnetultra96rev1-2021.01-7.3.1.src.rpm u-boot-avnetultra96rev1-doc-2021.01-7.3.1.aarch64.rpm u-boot-bananapim64-2021.01-7.3.1.aarch64.rpm u-boot-bananapim64-2021.01-7.3.1.src.rpm u-boot-bananapim64-doc-2021.01-7.3.1.aarch64.rpm u-boot-dragonboard410c-2021.01-7.3.1.aarch64.rpm u-boot-dragonboard410c-2021.01-7.3.1.src.rpm u-boot-dragonboard410c-doc-2021.01-7.3.1.aarch64.rpm u-boot-dragonboard820c-2021.01-7.3.1.aarch64.rpm u-boot-dragonboard820c-2021.01-7.3.1.src.rpm u-boot-dragonboard820c-doc-2021.01-7.3.1.aarch64.rpm u-boot-evb-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-evb-rk3399-2021.01-7.3.1.src.rpm u-boot-evb-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-7.3.1.src.rpm u-boot-firefly-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-geekbox-2021.01-7.3.1.aarch64.rpm u-boot-geekbox-2021.01-7.3.1.src.rpm u-boot-geekbox-doc-2021.01-7.3.1.aarch64.rpm u-boot-hikey-2021.01-7.3.1.aarch64.rpm u-boot-hikey-2021.01-7.3.1.src.rpm u-boot-hikey-doc-2021.01-7.3.1.aarch64.rpm u-boot-khadas-vim-2021.01-7.3.1.aarch64.rpm u-boot-khadas-vim-2021.01-7.3.1.src.rpm u-boot-khadas-vim-doc-2021.01-7.3.1.aarch64.rpm u-boot-khadas-vim2-2021.01-7.3.1.aarch64.rpm u-boot-khadas-vim2-2021.01-7.3.1.src.rpm u-boot-khadas-vim2-doc-2021.01-7.3.1.aarch64.rpm u-boot-libretech-ac-2021.01-7.3.1.aarch64.rpm u-boot-libretech-ac-2021.01-7.3.1.src.rpm u-boot-libretech-ac-doc-2021.01-7.3.1.aarch64.rpm u-boot-libretech-cc-2021.01-7.3.1.aarch64.rpm u-boot-libretech-cc-2021.01-7.3.1.src.rpm u-boot-libretech-cc-doc-2021.01-7.3.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-7.3.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-7.3.1.src.rpm u-boot-ls1012afrdmqspi-doc-2021.01-7.3.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-7.3.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-7.3.1.src.rpm u-boot-mvebudb-88f3720-doc-2021.01-7.3.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-7.3.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-7.3.1.src.rpm u-boot-mvebudbarmada8k-doc-2021.01-7.3.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-7.3.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-7.3.1.src.rpm u-boot-mvebuespressobin-88f3720-doc-2021.01-7.3.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-7.3.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-7.3.1.src.rpm u-boot-mvebumcbin-88f8040-doc-2021.01-7.3.1.aarch64.rpm u-boot-nanopia64-2021.01-7.3.1.aarch64.rpm u-boot-nanopia64-2021.01-7.3.1.src.rpm u-boot-nanopia64-doc-2021.01-7.3.1.aarch64.rpm u-boot-odroid-c2-2021.01-7.3.1.aarch64.rpm u-boot-odroid-c2-2021.01-7.3.1.src.rpm u-boot-odroid-c2-doc-2021.01-7.3.1.aarch64.rpm u-boot-odroid-c4-2021.01-7.3.1.aarch64.rpm u-boot-odroid-c4-2021.01-7.3.1.src.rpm u-boot-odroid-c4-doc-2021.01-7.3.1.aarch64.rpm u-boot-odroid-n2-2021.01-7.3.1.aarch64.rpm u-boot-odroid-n2-2021.01-7.3.1.src.rpm u-boot-odroid-n2-doc-2021.01-7.3.1.aarch64.rpm u-boot-orangepipc2-2021.01-7.3.1.aarch64.rpm u-boot-orangepipc2-2021.01-7.3.1.src.rpm u-boot-orangepipc2-doc-2021.01-7.3.1.aarch64.rpm u-boot-p2371-2180-2021.01-7.3.1.aarch64.rpm u-boot-p2371-2180-2021.01-7.3.1.src.rpm u-boot-p2371-2180-doc-2021.01-7.3.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-7.3.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-7.3.1.src.rpm u-boot-p2771-0000-500-doc-2021.01-7.3.1.aarch64.rpm u-boot-p3450-0000-2021.01-7.3.1.aarch64.rpm u-boot-p3450-0000-2021.01-7.3.1.src.rpm u-boot-p3450-0000-doc-2021.01-7.3.1.aarch64.rpm u-boot-pine64plus-2021.01-7.3.1.aarch64.rpm u-boot-pine64plus-2021.01-7.3.1.src.rpm u-boot-pine64plus-doc-2021.01-7.3.1.aarch64.rpm u-boot-pinebook-2021.01-7.3.1.aarch64.rpm u-boot-pinebook-2021.01-7.3.1.src.rpm u-boot-pinebook-doc-2021.01-7.3.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-7.3.1.src.rpm u-boot-pinebook-pro-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-pineh64-2021.01-7.3.1.aarch64.rpm u-boot-pineh64-2021.01-7.3.1.src.rpm u-boot-pineh64-doc-2021.01-7.3.1.aarch64.rpm u-boot-pinephone-2021.01-7.3.1.aarch64.rpm u-boot-pinephone-2021.01-7.3.1.src.rpm u-boot-pinephone-doc-2021.01-7.3.1.aarch64.rpm u-boot-poplar-2021.01-7.3.1.aarch64.rpm u-boot-poplar-2021.01-7.3.1.src.rpm u-boot-poplar-doc-2021.01-7.3.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-7.3.1.src.rpm u-boot-rock-pi-4-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-7.3.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-7.3.1.src.rpm u-boot-rock64-rk3328-doc-2021.01-7.3.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-7.3.1.src.rpm u-boot-rock960-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-7.3.1.src.rpm u-boot-rockpro64-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-rpi3-2021.01-7.3.1.aarch64.rpm u-boot-rpi3-2021.01-7.3.1.src.rpm u-boot-rpi3-doc-2021.01-7.3.1.aarch64.rpm u-boot-rpi4-2021.01-7.3.1.aarch64.rpm u-boot-rpi4-2021.01-7.3.1.src.rpm u-boot-rpi4-doc-2021.01-7.3.1.aarch64.rpm u-boot-rpiarm64-2021.01-7.3.1.aarch64.rpm u-boot-rpiarm64-2021.01-7.3.1.src.rpm u-boot-rpiarm64-doc-2021.01-7.3.1.aarch64.rpm u-boot-tools-2021.01-7.3.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-7.3.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-7.3.1.src.rpm u-boot-xilinxzynqmpvirt-doc-2021.01-7.3.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-7.3.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-7.3.1.src.rpm u-boot-xilinxzynqmpzcu102rev10-doc-2021.01-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3782 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Fixed multipath devices that always default to bfq scheduler (bsc#1188713) - Fixed unbootable system when testing kernel 5.14 (bsc#1190326) - Add support for the new iscsiadm "no-wait" (-W) command (bsc#1187190) - Add iscsid.service requirements (bsc#1187190) dracut-049.1+suse.216.gf705637b-3.45.1.src.rpm dracut-049.1+suse.216.gf705637b-3.45.1.x86_64.rpm dracut-extra-049.1+suse.216.gf705637b-3.45.1.x86_64.rpm dracut-fips-049.1+suse.216.gf705637b-3.45.1.x86_64.rpm dracut-ima-049.1+suse.216.gf705637b-3.45.1.x86_64.rpm dracut-tools-049.1+suse.216.gf705637b-3.45.1.x86_64.rpm dracut-049.1+suse.216.gf705637b-3.45.1.s390x.rpm dracut-extra-049.1+suse.216.gf705637b-3.45.1.s390x.rpm dracut-fips-049.1+suse.216.gf705637b-3.45.1.s390x.rpm dracut-ima-049.1+suse.216.gf705637b-3.45.1.s390x.rpm dracut-tools-049.1+suse.216.gf705637b-3.45.1.s390x.rpm dracut-049.1+suse.216.gf705637b-3.45.1.ppc64le.rpm dracut-extra-049.1+suse.216.gf705637b-3.45.1.ppc64le.rpm dracut-fips-049.1+suse.216.gf705637b-3.45.1.ppc64le.rpm dracut-ima-049.1+suse.216.gf705637b-3.45.1.ppc64le.rpm dracut-tools-049.1+suse.216.gf705637b-3.45.1.ppc64le.rpm dracut-049.1+suse.216.gf705637b-3.45.1.aarch64.rpm dracut-extra-049.1+suse.216.gf705637b-3.45.1.aarch64.rpm dracut-fips-049.1+suse.216.gf705637b-3.45.1.aarch64.rpm dracut-ima-049.1+suse.216.gf705637b-3.45.1.aarch64.rpm dracut-tools-049.1+suse.216.gf705637b-3.45.1.aarch64.rpm openSUSE-SLE-15.3-2021-3659 important SUSE Updates openSUSE-SLE 15.3 This update for gnome-control-center fixes the following issues: - Restore patch that prompts error messages when wicked is used as network manager (bsc#1190875) gnome-control-center-3.34.6-9.3.1.src.rpm gnome-control-center-3.34.6-9.3.1.x86_64.rpm gnome-control-center-color-3.34.6-9.3.1.x86_64.rpm gnome-control-center-devel-3.34.6-9.3.1.x86_64.rpm gnome-control-center-goa-3.34.6-9.3.1.x86_64.rpm gnome-control-center-lang-3.34.6-9.3.1.noarch.rpm gnome-control-center-user-faces-3.34.6-9.3.1.x86_64.rpm gnome-control-center-3.34.6-9.3.1.s390x.rpm gnome-control-center-color-3.34.6-9.3.1.s390x.rpm gnome-control-center-devel-3.34.6-9.3.1.s390x.rpm gnome-control-center-goa-3.34.6-9.3.1.s390x.rpm gnome-control-center-user-faces-3.34.6-9.3.1.s390x.rpm gnome-control-center-3.34.6-9.3.1.ppc64le.rpm gnome-control-center-color-3.34.6-9.3.1.ppc64le.rpm gnome-control-center-devel-3.34.6-9.3.1.ppc64le.rpm gnome-control-center-goa-3.34.6-9.3.1.ppc64le.rpm gnome-control-center-user-faces-3.34.6-9.3.1.ppc64le.rpm gnome-control-center-3.34.6-9.3.1.aarch64.rpm gnome-control-center-color-3.34.6-9.3.1.aarch64.rpm gnome-control-center-devel-3.34.6-9.3.1.aarch64.rpm gnome-control-center-goa-3.34.6-9.3.1.aarch64.rpm gnome-control-center-user-faces-3.34.6-9.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3808 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Add timestamp to D-Bus events to improve traceability (jsc#SLE-17798) - Fix fd_is_mount_point() when both the parent and directory are network file systems (bsc#1190984) - Support detection for ARM64 Hyper-V guests (bsc#1186071) - Fix systemd-detect-virt not detecting Amazon EC2 Nitro instance (bsc#1190440) - Enable support for Portable Services in openSUSE Leap only (jsc#SLE-21694) - Fix IO scheduler udev rules to address performance issues (jsc#SLE-21032, bsc#1192161) libsystemd0-246.16-7.21.1.x86_64.rpm True libsystemd0-32bit-246.16-7.21.1.x86_64.rpm True libudev-devel-246.16-7.21.1.x86_64.rpm True libudev-devel-32bit-246.16-7.21.1.x86_64.rpm True libudev1-246.16-7.21.1.x86_64.rpm True libudev1-32bit-246.16-7.21.1.x86_64.rpm True nss-myhostname-246.16-7.21.1.x86_64.rpm True nss-myhostname-32bit-246.16-7.21.1.x86_64.rpm True nss-mymachines-246.16-7.21.1.x86_64.rpm True nss-mymachines-32bit-246.16-7.21.1.x86_64.rpm True nss-resolve-246.16-7.21.1.x86_64.rpm True nss-systemd-246.16-7.21.1.x86_64.rpm True systemd-246.16-7.21.1.src.rpm True systemd-246.16-7.21.1.x86_64.rpm True systemd-32bit-246.16-7.21.1.x86_64.rpm True systemd-container-246.16-7.21.1.x86_64.rpm True systemd-coredump-246.16-7.21.1.x86_64.rpm True systemd-devel-246.16-7.21.1.x86_64.rpm True systemd-doc-246.16-7.21.1.x86_64.rpm True systemd-journal-remote-246.16-7.21.1.x86_64.rpm True systemd-lang-246.16-7.21.1.noarch.rpm True systemd-logger-246.16-7.21.1.x86_64.rpm True systemd-network-246.16-7.21.1.x86_64.rpm True systemd-sysvinit-246.16-7.21.1.x86_64.rpm True udev-246.16-7.21.1.x86_64.rpm True libsystemd0-246.16-7.21.1.s390x.rpm True libudev-devel-246.16-7.21.1.s390x.rpm True libudev1-246.16-7.21.1.s390x.rpm True nss-myhostname-246.16-7.21.1.s390x.rpm True nss-mymachines-246.16-7.21.1.s390x.rpm True nss-resolve-246.16-7.21.1.s390x.rpm True nss-systemd-246.16-7.21.1.s390x.rpm True systemd-246.16-7.21.1.s390x.rpm True systemd-container-246.16-7.21.1.s390x.rpm True systemd-coredump-246.16-7.21.1.s390x.rpm True systemd-devel-246.16-7.21.1.s390x.rpm True systemd-doc-246.16-7.21.1.s390x.rpm True systemd-journal-remote-246.16-7.21.1.s390x.rpm True systemd-logger-246.16-7.21.1.s390x.rpm True systemd-network-246.16-7.21.1.s390x.rpm True systemd-sysvinit-246.16-7.21.1.s390x.rpm True udev-246.16-7.21.1.s390x.rpm True libsystemd0-246.16-7.21.1.ppc64le.rpm True libudev-devel-246.16-7.21.1.ppc64le.rpm True libudev1-246.16-7.21.1.ppc64le.rpm True nss-myhostname-246.16-7.21.1.ppc64le.rpm True nss-mymachines-246.16-7.21.1.ppc64le.rpm True nss-resolve-246.16-7.21.1.ppc64le.rpm True nss-systemd-246.16-7.21.1.ppc64le.rpm True systemd-246.16-7.21.1.ppc64le.rpm True systemd-container-246.16-7.21.1.ppc64le.rpm True systemd-coredump-246.16-7.21.1.ppc64le.rpm True systemd-devel-246.16-7.21.1.ppc64le.rpm True systemd-doc-246.16-7.21.1.ppc64le.rpm True systemd-journal-remote-246.16-7.21.1.ppc64le.rpm True systemd-logger-246.16-7.21.1.ppc64le.rpm True systemd-network-246.16-7.21.1.ppc64le.rpm True systemd-sysvinit-246.16-7.21.1.ppc64le.rpm True udev-246.16-7.21.1.ppc64le.rpm True libsystemd0-246.16-7.21.1.aarch64.rpm True libudev-devel-246.16-7.21.1.aarch64.rpm True libudev1-246.16-7.21.1.aarch64.rpm True nss-myhostname-246.16-7.21.1.aarch64.rpm True nss-mymachines-246.16-7.21.1.aarch64.rpm True nss-resolve-246.16-7.21.1.aarch64.rpm True nss-systemd-246.16-7.21.1.aarch64.rpm True systemd-246.16-7.21.1.aarch64.rpm True systemd-container-246.16-7.21.1.aarch64.rpm True systemd-coredump-246.16-7.21.1.aarch64.rpm True systemd-devel-246.16-7.21.1.aarch64.rpm True systemd-doc-246.16-7.21.1.aarch64.rpm True systemd-journal-remote-246.16-7.21.1.aarch64.rpm True systemd-logger-246.16-7.21.1.aarch64.rpm True systemd-network-246.16-7.21.1.aarch64.rpm True systemd-sysvinit-246.16-7.21.1.aarch64.rpm True udev-246.16-7.21.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3789 important SUSE Updates openSUSE-SLE 15.3 This update for yast2-installation fixes the following issues: - Filter the installation proposals (in the Installation Settings screen) according to the AutoYaST profile even before tab switching (related to bsc#1190294) yast2-installation-4.3.44-3.16.1.noarch.rpm yast2-installation-4.3.44-3.16.1.src.rpm openSUSE-SLE-15.3-2021-3647 important SUSE Updates openSUSE-SLE 15.3 This update for samba and ldb fixes the following issues: - CVE-2020-25718: Fixed that an RODC can issue (forge) administrator tickets to other servers (bsc#1192246). - CVE-2021-3738: Fixed crash in dsdb stack (bsc#1192215). - CVE-2016-2124: Fixed not to fallback to non spnego authentication if we require kerberos (bsc#1014440). - CVE-2020-25717: Fixed privilege escalation inside an AD Domain where a user could become root on domain members (bsc#1192284). - CVE-2020-25719: Fixed AD DC Username based races when no PAC is given (bsc#1192247). - CVE-2020-25722: Fixed AD DC UPN vs samAccountName not checked (top-level bug for AD DC validation issues) (bsc#1192283). - CVE-2021-23192: Fixed dcerpc requests to don't check all fragments against the first auth_state (bsc#1192214). - CVE-2020-25721: Fixed fill in the new HAS_SAM_NAME_AND_SID values (bsc#1192505). Samba was updated to 4.13.13 * rodc_rwdc test flaps;(bso#14868). * Backport bronze bit fixes, tests, and selftest improvements; (bso#14881). * Provide a fix for MS CVE-2020-17049 in Samba [SECURITY] 'Bronze bit' S4U2Proxy Constrained Delegation bypass in Samba with embedded Heimdal;(bso#14642). * Python ldb.msg_diff() memory handling failure;(bso#14836). * "in" operator on ldb.Message is case sensitive;(bso#14845). * Fix Samba support for UF_NO_AUTH_DATA_REQUIRED;(bso#14871). * Allow special chars like "@" in samAccountName when generating the salt;(bso#14874). * Fix transit path validation;(bso#12998). * Prepare to operate with MIT krb5 >= 1.20;(bso#14870). * rpcclient NetFileEnum and net rpc file both cause lock order violation: brlock.tdb, share_entries.tdb;(bso#14645). * Python ldb.msg_diff() memory handling failure;(bso#14836). * Release LDB 2.3.1 for Samba 4.14.9;(bso#14848). Samba was updated to 4.13.12: * Address a signifcant performance regression in database access in the AD DC since Samba 4.12;(bso#14806). * Fix performance regression in lsa_LookupSids3/LookupNames4 since Samba 4.9 by using an explicit database handle cache; (bso#14807). * An unuthenticated user can crash the AD DC KDC by omitting the server name in a TGS-REQ;(bso#14817). * Address flapping samba_tool_drs_showrepl test;(bso#14818). * Address flapping dsdb_schema_attributes test;(bso#14819). * An unuthenticated user can crash the AD DC KDC by omitting the server name in a TGS-REQ;(bso#14817). * Fix CTDB flag/status update race conditions(bso#14784). Samba was updated to 4.13.11: * smbd: panic on force-close share during offload write; (bso#14769). * Fix returned attributes on fake quota file handle and avoid hitting the VFS;(bso#14731). * smbd: "deadtime" parameter doesn't work anymore;(bso#14783). * net conf list crashes when run as normal user;(bso#14787). * Work around special SMB2 READ response behavior of NetApp Ontap 7.3.7;(bso#14607). * Start the SMB encryption as soon as possible;(bso#14793). * Winbind should not start if the socket path for the privileged pipe is too long;(bso#14792). ldb was updated to 2.2.2: + CVE-2020-25718: samba: An RODC can issue (forge) administrator tickets to other servers; (bsc#1192246); (bso#14558) + CVE-2021-3738: samba: crash in dsdb stack; (bsc#1192215);(bso#14848) Release ldb 2.2.2 + Corrected python behaviour for 'in' for LDAP attributes contained as part of ldb.Message;(bso#14845). + Fix memory handling in ldb.msg_diff Corrected python docstrings;(bso#14836) + Backport bronze bit fixes, tests, and selftest improvements; (bso#14881). ctdb-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm ctdb-pcp-pmda-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm ctdb-tests-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm ldb-2.2.2-3.3.1.src.rpm ldb-tools-2.2.2-3.3.1.x86_64.rpm libdcerpc-binding0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc-binding0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc-samr-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc-samr0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc-samr0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libldb-devel-2.2.2-3.3.1.x86_64.rpm libldb2-2.2.2-3.3.1.x86_64.rpm libldb2-32bit-2.2.2-3.3.1.x86_64.rpm libndr-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-krb5pac-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-krb5pac0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-krb5pac0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-nbt-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-nbt0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-nbt0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-standard-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-standard0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-standard0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr1-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr1-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libnetapi-devel-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libnetapi-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libnetapi0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libnetapi0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-credentials-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-credentials0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-credentials0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-errors-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-errors0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-errors0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-hostconfig-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-hostconfig0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-hostconfig0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-passdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-passdb0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-passdb0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-policy-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-policy-python3-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-policy0-python3-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-policy0-python3-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-util0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-util0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamdb0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamdb0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbclient0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbclient0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbconf-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbconf0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbconf0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbldap-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbldap2-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbldap2-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libtevent-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libtevent-util0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libtevent-util0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libwbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libwbclient0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libwbclient0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm python3-ldb-2.2.2-3.3.1.x86_64.rpm python3-ldb-32bit-2.2.2-3.3.1.x86_64.rpm python3-ldb-devel-2.2.2-3.3.1.x86_64.rpm samba-4.13.13+git.528.140935f8d6a-3.12.1.src.rpm samba-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-ad-dc-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-ad-dc-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-ceph-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-client-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-client-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-core-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-doc-4.13.13+git.528.140935f8d6a-3.12.1.noarch.rpm samba-dsdb-modules-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-gpupdate-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-ldb-ldap-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-libs-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-libs-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-libs-python3-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-libs-python3-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-python3-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-test-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-winbind-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-winbind-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm ctdb-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm ctdb-pcp-pmda-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm ctdb-tests-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm ldb-tools-2.2.2-3.3.1.s390x.rpm libdcerpc-binding0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libdcerpc-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libdcerpc-samr-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libdcerpc-samr0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libdcerpc0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libldb-devel-2.2.2-3.3.1.s390x.rpm libldb2-2.2.2-3.3.1.s390x.rpm libndr-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-krb5pac-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-krb5pac0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-nbt-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-nbt0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-standard-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-standard0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr1-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libnetapi-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libnetapi0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-credentials-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-credentials0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-errors-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-errors0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-hostconfig-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-hostconfig0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-passdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-passdb0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-policy-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-policy-python3-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-policy0-python3-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-util0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamdb0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbclient0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbconf-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbconf0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbldap-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbldap2-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libtevent-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libtevent-util0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libwbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libwbclient0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm python3-ldb-2.2.2-3.3.1.s390x.rpm python3-ldb-devel-2.2.2-3.3.1.s390x.rpm samba-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-ad-dc-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-client-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-core-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-dsdb-modules-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-gpupdate-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-ldb-ldap-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-libs-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-libs-python3-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-python3-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-test-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-winbind-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm ctdb-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm ctdb-pcp-pmda-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm ctdb-tests-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm ldb-tools-2.2.2-3.3.1.ppc64le.rpm libdcerpc-binding0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libdcerpc-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libdcerpc-samr-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libdcerpc-samr0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libdcerpc0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libldb-devel-2.2.2-3.3.1.ppc64le.rpm libldb2-2.2.2-3.3.1.ppc64le.rpm libndr-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-krb5pac-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-krb5pac0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-nbt-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-nbt0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-standard-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-standard0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr1-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libnetapi-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libnetapi0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-credentials-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-credentials0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-errors-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-errors0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-hostconfig-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-hostconfig0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-passdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-passdb0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-policy-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-policy-python3-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-policy0-python3-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-util0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamdb0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbclient0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbconf-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbconf0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbldap-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbldap2-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libtevent-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libtevent-util0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libwbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libwbclient0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm python3-ldb-2.2.2-3.3.1.ppc64le.rpm python3-ldb-devel-2.2.2-3.3.1.ppc64le.rpm samba-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-ad-dc-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-client-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-core-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-dsdb-modules-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-gpupdate-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-ldb-ldap-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-libs-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-libs-python3-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-python3-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-test-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-winbind-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm ctdb-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm ctdb-pcp-pmda-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm ctdb-tests-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm ldb-tools-2.2.2-3.3.1.aarch64.rpm libdcerpc-binding0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libdcerpc-binding0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libdcerpc-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libdcerpc-samr-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libdcerpc-samr0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libdcerpc-samr0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libdcerpc0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libdcerpc0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libldb-devel-2.2.2-3.3.1.aarch64.rpm libldb2-2.2.2-3.3.1.aarch64.rpm libndr-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-krb5pac-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-krb5pac0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-krb5pac0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libndr-nbt-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-nbt0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-nbt0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libndr-standard-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-standard0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-standard0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libndr1-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr1-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libnetapi-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libnetapi-devel-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libnetapi0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libnetapi0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-credentials-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-credentials0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-credentials0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-errors-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-errors0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-errors0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-hostconfig-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-hostconfig0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-hostconfig0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-passdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-passdb0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-passdb0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-policy-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-policy-python3-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-policy0-python3-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-policy0-python3-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-util0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-util0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamdb0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamdb0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsmbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbclient0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbclient0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsmbconf-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbconf0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbconf0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsmbldap-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbldap2-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbldap2-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libtevent-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libtevent-util0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libtevent-util0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libwbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libwbclient0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libwbclient0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm python3-ldb-2.2.2-3.3.1.aarch64.rpm python3-ldb-devel-2.2.2-3.3.1.aarch64.rpm samba-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-ad-dc-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-ad-dc-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm samba-ceph-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-client-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-client-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm samba-core-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-dsdb-modules-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-gpupdate-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-ldb-ldap-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-libs-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-libs-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm samba-libs-python3-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-libs-python3-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm samba-python3-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-test-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-winbind-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-winbind-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm openSUSE-SLE-15.3-2021-3643 moderate SUSE Updates openSUSE-SLE 15.3 This update for binutils fixes the following issues: - For compatibility on old code stream that expect 'brcl 0,label' to not be disassembled as 'jgnop label' on s390x. (bsc#1192267) This reverts IBM zSeries HLASM support for now. - Fixed that ppc64 optflags did not enable LTO (bsc#1188941). - Fix empty man-pages from broken release tarball - Fixed a memory corruption with rpath option (bsc#1191473). - Fixed slow performance of stripping some binaries (bsc#1183909). Security issue fixed: - CVE-2021-20294: Fixed out-of-bounds write in print_dynamic_symbol in readelf (bnc#1184519) binutils-2.37-7.26.1.src.rpm binutils-2.37-7.26.1.x86_64.rpm binutils-devel-2.37-7.26.1.x86_64.rpm binutils-devel-32bit-2.37-7.26.1.x86_64.rpm binutils-gold-2.37-7.26.1.x86_64.rpm cross-aarch64-binutils-2.37-7.26.1.src.rpm cross-aarch64-binutils-2.37-7.26.1.x86_64.rpm cross-arm-binutils-2.37-7.26.1.src.rpm cross-arm-binutils-2.37-7.26.1.x86_64.rpm cross-avr-binutils-2.37-7.26.1.src.rpm cross-avr-binutils-2.37-7.26.1.x86_64.rpm cross-epiphany-binutils-2.37-7.26.1.src.rpm cross-epiphany-binutils-2.37-7.26.1.x86_64.rpm cross-hppa-binutils-2.37-7.26.1.src.rpm cross-hppa-binutils-2.37-7.26.1.x86_64.rpm cross-hppa64-binutils-2.37-7.26.1.src.rpm cross-hppa64-binutils-2.37-7.26.1.x86_64.rpm cross-i386-binutils-2.37-7.26.1.src.rpm cross-i386-binutils-2.37-7.26.1.x86_64.rpm cross-ia64-binutils-2.37-7.26.1.src.rpm cross-ia64-binutils-2.37-7.26.1.x86_64.rpm cross-m68k-binutils-2.37-7.26.1.src.rpm cross-m68k-binutils-2.37-7.26.1.x86_64.rpm cross-mips-binutils-2.37-7.26.1.src.rpm cross-mips-binutils-2.37-7.26.1.x86_64.rpm cross-ppc-binutils-2.37-7.26.1.src.rpm cross-ppc-binutils-2.37-7.26.1.x86_64.rpm cross-ppc64-binutils-2.37-7.26.1.src.rpm cross-ppc64-binutils-2.37-7.26.1.x86_64.rpm cross-ppc64le-binutils-2.37-7.26.1.src.rpm cross-ppc64le-binutils-2.37-7.26.1.x86_64.rpm cross-riscv64-binutils-2.37-7.26.1.src.rpm cross-riscv64-binutils-2.37-7.26.1.x86_64.rpm cross-rx-binutils-2.37-7.26.1.src.rpm cross-rx-binutils-2.37-7.26.1.x86_64.rpm cross-s390-binutils-2.37-7.26.1.src.rpm cross-s390-binutils-2.37-7.26.1.x86_64.rpm cross-s390x-binutils-2.37-7.26.1.src.rpm cross-s390x-binutils-2.37-7.26.1.x86_64.rpm cross-sparc-binutils-2.37-7.26.1.src.rpm cross-sparc-binutils-2.37-7.26.1.x86_64.rpm cross-sparc64-binutils-2.37-7.26.1.src.rpm cross-sparc64-binutils-2.37-7.26.1.x86_64.rpm cross-spu-binutils-2.37-7.26.1.src.rpm cross-spu-binutils-2.37-7.26.1.x86_64.rpm libctf-nobfd0-2.37-7.26.1.x86_64.rpm libctf0-2.37-7.26.1.x86_64.rpm binutils-2.37-7.26.1.s390x.rpm binutils-devel-2.37-7.26.1.s390x.rpm binutils-gold-2.37-7.26.1.s390x.rpm cross-aarch64-binutils-2.37-7.26.1.s390x.rpm cross-arm-binutils-2.37-7.26.1.s390x.rpm cross-avr-binutils-2.37-7.26.1.s390x.rpm cross-epiphany-binutils-2.37-7.26.1.s390x.rpm cross-hppa-binutils-2.37-7.26.1.s390x.rpm cross-hppa64-binutils-2.37-7.26.1.s390x.rpm cross-i386-binutils-2.37-7.26.1.s390x.rpm cross-ia64-binutils-2.37-7.26.1.s390x.rpm cross-m68k-binutils-2.37-7.26.1.s390x.rpm cross-mips-binutils-2.37-7.26.1.s390x.rpm cross-ppc-binutils-2.37-7.26.1.s390x.rpm cross-ppc64-binutils-2.37-7.26.1.s390x.rpm cross-ppc64le-binutils-2.37-7.26.1.s390x.rpm cross-riscv64-binutils-2.37-7.26.1.s390x.rpm cross-rx-binutils-2.37-7.26.1.s390x.rpm cross-s390-binutils-2.37-7.26.1.s390x.rpm cross-sparc-binutils-2.37-7.26.1.s390x.rpm cross-sparc64-binutils-2.37-7.26.1.s390x.rpm cross-spu-binutils-2.37-7.26.1.s390x.rpm cross-x86_64-binutils-2.37-7.26.1.s390x.rpm cross-x86_64-binutils-2.37-7.26.1.src.rpm libctf-nobfd0-2.37-7.26.1.s390x.rpm libctf0-2.37-7.26.1.s390x.rpm binutils-2.37-7.26.1.ppc64le.rpm binutils-devel-2.37-7.26.1.ppc64le.rpm binutils-gold-2.37-7.26.1.ppc64le.rpm cross-aarch64-binutils-2.37-7.26.1.ppc64le.rpm cross-arm-binutils-2.37-7.26.1.ppc64le.rpm cross-avr-binutils-2.37-7.26.1.ppc64le.rpm cross-epiphany-binutils-2.37-7.26.1.ppc64le.rpm cross-hppa-binutils-2.37-7.26.1.ppc64le.rpm cross-hppa64-binutils-2.37-7.26.1.ppc64le.rpm cross-i386-binutils-2.37-7.26.1.ppc64le.rpm cross-ia64-binutils-2.37-7.26.1.ppc64le.rpm cross-m68k-binutils-2.37-7.26.1.ppc64le.rpm cross-mips-binutils-2.37-7.26.1.ppc64le.rpm cross-ppc-binutils-2.37-7.26.1.ppc64le.rpm cross-ppc64-binutils-2.37-7.26.1.ppc64le.rpm cross-riscv64-binutils-2.37-7.26.1.ppc64le.rpm cross-rx-binutils-2.37-7.26.1.ppc64le.rpm cross-s390-binutils-2.37-7.26.1.ppc64le.rpm cross-s390x-binutils-2.37-7.26.1.ppc64le.rpm cross-sparc-binutils-2.37-7.26.1.ppc64le.rpm cross-sparc64-binutils-2.37-7.26.1.ppc64le.rpm cross-spu-binutils-2.37-7.26.1.ppc64le.rpm cross-x86_64-binutils-2.37-7.26.1.ppc64le.rpm libctf-nobfd0-2.37-7.26.1.ppc64le.rpm libctf0-2.37-7.26.1.ppc64le.rpm binutils-2.37-7.26.1.aarch64.rpm binutils-devel-2.37-7.26.1.aarch64.rpm binutils-gold-2.37-7.26.1.aarch64.rpm cross-arm-binutils-2.37-7.26.1.aarch64.rpm cross-avr-binutils-2.37-7.26.1.aarch64.rpm cross-epiphany-binutils-2.37-7.26.1.aarch64.rpm cross-hppa-binutils-2.37-7.26.1.aarch64.rpm cross-hppa64-binutils-2.37-7.26.1.aarch64.rpm cross-i386-binutils-2.37-7.26.1.aarch64.rpm cross-ia64-binutils-2.37-7.26.1.aarch64.rpm cross-m68k-binutils-2.37-7.26.1.aarch64.rpm cross-mips-binutils-2.37-7.26.1.aarch64.rpm cross-ppc-binutils-2.37-7.26.1.aarch64.rpm cross-ppc64-binutils-2.37-7.26.1.aarch64.rpm cross-ppc64le-binutils-2.37-7.26.1.aarch64.rpm cross-riscv64-binutils-2.37-7.26.1.aarch64.rpm cross-rx-binutils-2.37-7.26.1.aarch64.rpm cross-s390-binutils-2.37-7.26.1.aarch64.rpm cross-s390x-binutils-2.37-7.26.1.aarch64.rpm cross-sparc-binutils-2.37-7.26.1.aarch64.rpm cross-sparc64-binutils-2.37-7.26.1.aarch64.rpm cross-spu-binutils-2.37-7.26.1.aarch64.rpm cross-x86_64-binutils-2.37-7.26.1.aarch64.rpm libctf-nobfd0-2.37-7.26.1.aarch64.rpm libctf0-2.37-7.26.1.aarch64.rpm openSUSE-SLE-15.3-2021-3834 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Security update go1.16.10 (released 2021-11-04) (bsc#1182345). - CVE-2021-41771: Fixed invalid dynamic symbol table command that could have caused panic (bsc#1192377). - CVE-2021-41772: Fixed panic on (*Reader).Open (bsc#1192378). go1.16-1.16.10-1.32.1.src.rpm go1.16-1.16.10-1.32.1.x86_64.rpm go1.16-doc-1.16.10-1.32.1.x86_64.rpm go1.16-race-1.16.10-1.32.1.x86_64.rpm go1.16-1.16.10-1.32.1.s390x.rpm go1.16-doc-1.16.10-1.32.1.s390x.rpm go1.16-1.16.10-1.32.1.ppc64le.rpm go1.16-doc-1.16.10-1.32.1.ppc64le.rpm go1.16-1.16.10-1.32.1.aarch64.rpm go1.16-doc-1.16.10-1.32.1.aarch64.rpm go1.16-race-1.16.10-1.32.1.aarch64.rpm openSUSE-SLE-15.3-2021-3833 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: Security update go1.17.3 (released 2021-11-04) (bsc#1190649). - CVE-2021-41771: Fixed invalid dynamic symbol table command that could have caused panic (bsc#1192377). - CVE-2021-41772: Fixed panic on (*Reader).Open (bsc#1192378). go1.17-1.17.3-1.9.1.i586.rpm go1.17-1.17.3-1.9.1.src.rpm go1.17-doc-1.17.3-1.9.1.i586.rpm go1.17-1.17.3-1.9.1.x86_64.rpm go1.17-doc-1.17.3-1.9.1.x86_64.rpm go1.17-race-1.17.3-1.9.1.x86_64.rpm go1.17-1.17.3-1.9.1.s390x.rpm go1.17-doc-1.17.3-1.9.1.s390x.rpm go1.17-1.17.3-1.9.1.ppc64le.rpm go1.17-doc-1.17.3-1.9.1.ppc64le.rpm go1.17-1.17.3-1.9.1.aarch64.rpm go1.17-doc-1.17.3-1.9.1.aarch64.rpm go1.17-race-1.17.3-1.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3981 moderate SUSE Updates openSUSE-SLE 15.3 This update for ocfs2-tools and libdlm fixes the following issues: ocfs2-tools: - Fix mounted.ocfs2 output when some devices are not ready (bsc#1191810) - Rollback when dir_index creation fails (bsc#1192103) libdlm: - Added libdlm to fix missing dependency libdlm-4.0.9-6.8.1.src.rpm libdlm-4.0.9-6.8.1.x86_64.rpm libdlm-devel-4.0.9-6.8.1.x86_64.rpm libdlm3-4.0.9-6.8.1.x86_64.rpm ocfs2-tools-1.8.5-12.11.1.src.rpm ocfs2-tools-1.8.5-12.11.1.x86_64.rpm ocfs2-tools-devel-1.8.5-12.11.1.x86_64.rpm ocfs2-tools-devel-static-1.8.5-12.11.1.x86_64.rpm ocfs2-tools-o2cb-1.8.5-12.11.1.x86_64.rpm libdlm-4.0.9-6.8.1.s390x.rpm libdlm-devel-4.0.9-6.8.1.s390x.rpm libdlm3-4.0.9-6.8.1.s390x.rpm ocfs2-tools-1.8.5-12.11.1.s390x.rpm ocfs2-tools-devel-1.8.5-12.11.1.s390x.rpm ocfs2-tools-devel-static-1.8.5-12.11.1.s390x.rpm ocfs2-tools-o2cb-1.8.5-12.11.1.s390x.rpm libdlm-4.0.9-6.8.1.ppc64le.rpm libdlm-devel-4.0.9-6.8.1.ppc64le.rpm libdlm3-4.0.9-6.8.1.ppc64le.rpm ocfs2-tools-1.8.5-12.11.1.ppc64le.rpm ocfs2-tools-devel-1.8.5-12.11.1.ppc64le.rpm ocfs2-tools-devel-static-1.8.5-12.11.1.ppc64le.rpm ocfs2-tools-o2cb-1.8.5-12.11.1.ppc64le.rpm libdlm-4.0.9-6.8.1.aarch64.rpm libdlm-devel-4.0.9-6.8.1.aarch64.rpm libdlm3-4.0.9-6.8.1.aarch64.rpm ocfs2-tools-1.8.5-12.11.1.aarch64.rpm ocfs2-tools-devel-1.8.5-12.11.1.aarch64.rpm ocfs2-tools-devel-static-1.8.5-12.11.1.aarch64.rpm ocfs2-tools-o2cb-1.8.5-12.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3724 moderate SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issue: - Avoid error with HCN IDs containing same consecutive bytes (bsc#1192095) powerpc-utils-1.3.9-9.12.1.ppc64le.rpm powerpc-utils-1.3.9-9.12.1.src.rpm openSUSE-SLE-15.3-2021-3822 moderate SUSE Updates openSUSE-SLE 15.3 This update for virt-manager fixes the following issues: - DomU won't boot after adding phys hard drive (bsc#1188223) - Virtual Machine Manager shows disconnected after rebooting virtual machine in Xen mode (bsc#1191358) - Add Support for SUSE Product SLE-HPC to virt-install (bsc#1190215) virt-install-3.2.0-7.7.1.noarch.rpm virt-manager-3.2.0-7.7.1.noarch.rpm virt-manager-3.2.0-7.7.1.src.rpm virt-manager-common-3.2.0-7.7.1.noarch.rpm openSUSE-SLE-15.3-2021-3674 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - CVE-2016-2124: Fixed not to fallback to non spnego authentication if we require kerberos (bsc#1014440). - CVE-2020-25717: Fixed privilege escalation inside an AD Domain where a user could become root on domain members (bsc#1192284). libsamba-policy-python-devel-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm libsamba-policy0-32bit-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm libsamba-policy0-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm samba-4.9.5+git.471.5edbe3dcae7-3.57.2.src.rpm samba-libs-python-32bit-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm samba-libs-python-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm samba-python-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm libsamba-policy-python-devel-4.9.5+git.471.5edbe3dcae7-3.57.2.s390x.rpm libsamba-policy0-4.9.5+git.471.5edbe3dcae7-3.57.2.s390x.rpm samba-libs-python-4.9.5+git.471.5edbe3dcae7-3.57.2.s390x.rpm samba-python-4.9.5+git.471.5edbe3dcae7-3.57.2.s390x.rpm libsamba-policy-python-devel-4.9.5+git.471.5edbe3dcae7-3.57.2.ppc64le.rpm libsamba-policy0-4.9.5+git.471.5edbe3dcae7-3.57.2.ppc64le.rpm samba-libs-python-4.9.5+git.471.5edbe3dcae7-3.57.2.ppc64le.rpm samba-python-4.9.5+git.471.5edbe3dcae7-3.57.2.ppc64le.rpm libsamba-policy-python-devel-4.9.5+git.471.5edbe3dcae7-3.57.2.aarch64.rpm libsamba-policy0-4.9.5+git.471.5edbe3dcae7-3.57.2.aarch64.rpm samba-libs-python-4.9.5+git.471.5edbe3dcae7-3.57.2.aarch64.rpm samba-python-4.9.5+git.471.5edbe3dcae7-3.57.2.aarch64.rpm openSUSE-SLE-15.3-2021-3827 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-network and yast2-schema fixes the following issues: - Replace calls to dropped method. (bsc#1192560) Fixed interfaces table description for s390 Group devices. - AutoYaST: Use"device" and "name" elements use "device" as "name" and "name" as "description". (bsc#1192270) - Do not crash when checking if a virtual interface is connected (bsc#1192183, bsc#1192270) - Add 'description' to the interfaces in the networking section (bsc#1192270) - Add the "keep_unknown_lv" element to the partitioning schema (bsc#1191968) yast2-network-4.3.81-3.23.1.noarch.rpm yast2-network-4.3.81-3.23.1.src.rpm yast2-schema-4.3.27-3.9.1.src.rpm yast2-schema-4.3.27-3.9.1.x86_64.rpm yast2-schema-4.3.27-3.9.1.s390x.rpm yast2-schema-4.3.27-3.9.1.ppc64le.rpm yast2-schema-4.3.27-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3650 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - CVE-2016-2124: Fixed not to fallback to non spnego authentication if we require kerberos (bsc#1014440). - CVE-2020-25717: Fixed privilege escalation inside an AD Domain where a user could become root on domain members (bsc#1192284). - CVE-2021-23192: Fixed dcerpc requests to don't check all fragments against the first auth_state (bsc#1192214). libndr0-32bit-4.11.14+git.308.666c63d4eea-4.28.1.x86_64.rpm libndr0-4.11.14+git.308.666c63d4eea-4.28.1.x86_64.rpm samba-4.11.14+git.308.666c63d4eea-4.28.1.src.rpm libndr0-4.11.14+git.308.666c63d4eea-4.28.1.s390x.rpm libndr0-4.11.14+git.308.666c63d4eea-4.28.1.ppc64le.rpm libndr0-4.11.14+git.308.666c63d4eea-4.28.1.aarch64.rpm openSUSE-SLE-15.3-2021-3639 low SUSE Updates openSUSE-SLE 15.3 This update for tinyxml fixes the following issues: - CVE-2021-42260: Fixed an infinite loop for inputs containing the sequence 0xEF0x00 (bsc#1191576) libtinyxml0-2.6.2-3.3.1.x86_64.rpm tinyxml-2.6.2-3.3.1.src.rpm tinyxml-devel-2.6.2-3.3.1.x86_64.rpm tinyxml-docs-2.6.2-3.3.1.x86_64.rpm libtinyxml0-2.6.2-3.3.1.s390x.rpm tinyxml-devel-2.6.2-3.3.1.s390x.rpm tinyxml-docs-2.6.2-3.3.1.s390x.rpm libtinyxml0-2.6.2-3.3.1.ppc64le.rpm tinyxml-devel-2.6.2-3.3.1.ppc64le.rpm tinyxml-docs-2.6.2-3.3.1.ppc64le.rpm libtinyxml0-2.6.2-3.3.1.aarch64.rpm tinyxml-devel-2.6.2-3.3.1.aarch64.rpm tinyxml-docs-2.6.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3656 moderate SUSE Updates openSUSE-SLE 15.3 This update for bpftrace fixes the following issue: - rebuilt against the latest binutils version update. bpftrace-0.11.4-3.4.2.src.rpm bpftrace-0.11.4-3.4.2.x86_64.rpm bpftrace-tools-0.11.4-3.4.2.noarch.rpm bpftrace-0.11.4-3.4.2.s390x.rpm bpftrace-0.11.4-3.4.2.ppc64le.rpm bpftrace-0.11.4-3.4.2.aarch64.rpm openSUSE-SLE-15.3-2021-3809 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Add timestamp to D-Bus events to improve traceability (jsc#SLE-21862, jsc#SLE-18102, jsc#SLE-18103) - Fix IO scheduler udev rules to address performance issues (jsc#SLE-21032, bsc#1192161) - shutdown: Reduce log level of unmounts (bsc#1191252) - pid1: make use of new "prohibit_ipc" logging flag in PID 1 (bsc#1189803) - core: rework how we connect to the bus (bsc#1190325) - mount-util: fix fd_is_mount_point() when both the parent and directory are network fs (bsc#1190984) - virt: detect Amazon EC2 Nitro instance (bsc#1190440) - Several fixes for umount - busctl: use usec granularity for the timestamp printed by the busctl monitor command - fix unitialized fields in MountPoint in dm_list_get() - shutdown: explicitly set a log target - mount-util: add mount_option_mangle() - dissect: automatically mark partitions read-only that have a read-only file system - build-sys: require proper libmount version - systemd-shutdown: use log_set_prohibit_ipc(true) - rationalize interface for opening/closing logging - pid1: when we can't log to journal, remember our fallback log target - log: remove LOG_TARGET_SAFE pseudo log target - log: add brief comment for log_set_open_when_needed() and log_set_always_reopen_console() - log: add new "prohibit_ipc" flag to logging system - log: make log_set_upgrade_syslog_to_journal() take effect immediately - dbus: split up bus_done() into seperate functions - machine-id-setup: generate machine-id from DMI product ID on Amazon EC2 - virt: if we detect Xen by DMI, trust that over CPUID systemd-234-24.99.1.src.rpm systemd-bash-completion-234-24.99.1.noarch.rpm openSUSE-SLE-15.3-2021-3957 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-packager fixes the following issues: - When editing a repository display the repository alias as a fallback if the repository name is not set, do not display empty name (bsc#1184935) - Fix the tooltip in the control center is properly translated (bsc#1187270) - Use consistent names for the Full medium repositories (bsc#1191652) yast2-packager-4.3.25-3.8.1.src.rpm yast2-packager-4.3.25-3.8.1.x86_64.rpm yast2-packager-4.3.25-3.8.1.s390x.rpm yast2-packager-4.3.25-3.8.1.ppc64le.rpm yast2-packager-4.3.25-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3802 important SUSE Updates openSUSE-SLE 15.3 This update for dolly fixes the following issues: - Fix hostname resolution is not done in case of usage of an external configuration file. (bsc#1191613) dolly-0.63.1-3.3.1.src.rpm dolly-0.63.1-3.3.1.x86_64.rpm dolly-0.63.1-3.3.1.s390x.rpm dolly-0.63.1-3.3.1.ppc64le.rpm dolly-0.63.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3772 important SUSE Updates openSUSE-SLE 15.3 This update for redis fixes the following issues: - CVE-2021-32627: Fixed integer to heap buffer overflows with streams (bsc#1191305). - CVE-2021-32628: Fixed integer to heap buffer overflows handling ziplist-encoded data types (bsc#1191305). - CVE-2021-32687: Fixed integer to heap buffer overflow with intsets (bsc#1191302). - CVE-2021-32762: Fixed integer to heap buffer overflow issue in redis-cli and redis-sentinel (bsc#1191300). - CVE-2021-32626: Fixed heap buffer overflow caused by specially crafted Lua scripts (bsc#1191306). - CVE-2021-32672: Fixed random heap reading issue with Lua Debugger (bsc#1191304). - CVE-2021-32675: Fixed Denial Of Service when processing RESP request payloads with a large number of elements on many connections (bsc#1191303). - CVE-2021-41099: Fixed integer to heap buffer overflow handling certain string commands and network payloads (bsc#1191299). redis-6.0.14-6.8.1.src.rpm redis-6.0.14-6.8.1.x86_64.rpm redis-6.0.14-6.8.1.s390x.rpm redis-6.0.14-6.8.1.ppc64le.rpm redis-6.0.14-6.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3823 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-registration fixes the following issues: - Report properly that no product is selected in autoinstallation (bsc#1188211) - Fixed evaluating the update repositories: (bsc#1188717) The SUSE Manager update repositories were not disabled when installing the system without updates. yast2-registration-4.3.25-3.9.1.noarch.rpm yast2-registration-4.3.25-3.9.1.src.rpm openSUSE-SLE-15.3-2021-4062 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-python-bindings fixes the following issues: - Fix backtrace formatting for Python exceptions (bsc#1181595). yast2-python-bindings-4.2.0-3.3.1.src.rpm yast2-python-bindings-4.2.0-3.3.1.x86_64.rpm yast2-python3-bindings-4.2.0-3.3.1.x86_64.rpm yast2-python-bindings-4.2.0-3.3.1.s390x.rpm yast2-python3-bindings-4.2.0-3.3.1.s390x.rpm yast2-python-bindings-4.2.0-3.3.1.ppc64le.rpm yast2-python3-bindings-4.2.0-3.3.1.ppc64le.rpm yast2-python-bindings-4.2.0-3.3.1.aarch64.rpm yast2-python3-bindings-4.2.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3824 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-storage-ng fixes the following issues: - Set the volume group extent size according to the AutoYaST profile (bsc#1192124). yast2-storage-ng-4.3.57-3.15.1.src.rpm yast2-storage-ng-4.3.57-3.15.1.x86_64.rpm yast2-storage-ng-4.3.57-3.15.1.s390x.rpm yast2-storage-ng-4.3.57-3.15.1.ppc64le.rpm yast2-storage-ng-4.3.57-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-3835 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.5.13: - CVE-2021-35604: Fixed InnoDB vulnerability that allowed an high privileged attacker with network access via multiple protocols to compromise MySQL (bsc#1192497). libmariadbd-devel-10.5.13-3.12.1.x86_64.rpm libmariadbd19-10.5.13-3.12.1.x86_64.rpm mariadb-10.5.13-3.12.1.src.rpm mariadb-10.5.13-3.12.1.x86_64.rpm mariadb-bench-10.5.13-3.12.1.x86_64.rpm mariadb-client-10.5.13-3.12.1.x86_64.rpm mariadb-errormessages-10.5.13-3.12.1.noarch.rpm mariadb-rpm-macros-10.5.13-3.12.1.x86_64.rpm mariadb-test-10.5.13-3.12.1.x86_64.rpm mariadb-tools-10.5.13-3.12.1.x86_64.rpm libmariadbd-devel-10.5.13-3.12.1.s390x.rpm libmariadbd19-10.5.13-3.12.1.s390x.rpm mariadb-10.5.13-3.12.1.s390x.rpm mariadb-bench-10.5.13-3.12.1.s390x.rpm mariadb-client-10.5.13-3.12.1.s390x.rpm mariadb-rpm-macros-10.5.13-3.12.1.s390x.rpm mariadb-test-10.5.13-3.12.1.s390x.rpm mariadb-tools-10.5.13-3.12.1.s390x.rpm libmariadbd-devel-10.5.13-3.12.1.ppc64le.rpm libmariadbd19-10.5.13-3.12.1.ppc64le.rpm mariadb-10.5.13-3.12.1.ppc64le.rpm mariadb-bench-10.5.13-3.12.1.ppc64le.rpm mariadb-client-10.5.13-3.12.1.ppc64le.rpm mariadb-rpm-macros-10.5.13-3.12.1.ppc64le.rpm mariadb-test-10.5.13-3.12.1.ppc64le.rpm mariadb-tools-10.5.13-3.12.1.ppc64le.rpm libmariadbd-devel-10.5.13-3.12.1.aarch64.rpm libmariadbd19-10.5.13-3.12.1.aarch64.rpm mariadb-10.5.13-3.12.1.aarch64.rpm mariadb-bench-10.5.13-3.12.1.aarch64.rpm mariadb-client-10.5.13-3.12.1.aarch64.rpm mariadb-rpm-macros-10.5.13-3.12.1.aarch64.rpm mariadb-test-10.5.13-3.12.1.aarch64.rpm mariadb-tools-10.5.13-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3675 important SUSE Updates openSUSE-SLE 15.3 The following security bugs were fixed: - CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063). - CVE-2021-3655: Fixed a missing size validations on inbound SCTP packets, which may have allowed the kernel to read uninitialized memory (bsc#1188563). - CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349). - CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev->rf_conn_info object (bsc#1190067). - CVE-2021-3772: Fixed sctp vtag check in sctp_sf_ootb (bsc#1190351). - CVE-2021-3896: Fixed a array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c (bsc#1191958). - CVE-2021-33033: Fixed a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled (bsc#1186109). - CVE-2021-34866: Fixed eBPF Type Confusion Privilege Escalation Vulnerability (bsc#1191645). - CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601). - CVE-2021-41864: Fixed prealloc_elems_and_freelist that allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317). - CVE-2021-42008: Fixed a slab out-of-bounds write in the decode_data function in drivers/net/hamradio/6pack.c. Input from a process that had the CAP_NET_ADMIN capability could have lead to root access (bsc#1191315). - CVE-2021-42252: Fixed an issue inside aspeed_lpc_ctrl_mmap that could have allowed local attackers to access the Aspeed LPC control interface to overwrite memory in the kernel and potentially execute privileges (bnc#1190479). - CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673). - CVE-2021-43056: Fixed possible KVM host crash via malicious KVM guest on Power8 (bnc#1192107). - CVE-2021-43389: There was an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958). The following non-security bugs were fixed: - acpi/arm64: fix next_platform_timer() section mismatch error (git-fixes). - ACPI: bgrt: Fix CFI violation (git-fixes). - ACPI: fix NULL pointer dereference (git-fixes). - ACPI: NFIT: Use fallback node id when numa info in NFIT table is incorrect (git-fixes). - Add obsolete_rebuilds_subpackage (boo#1172073 bsc#1191731). - ALSA: hda: avoid write to STATESTS if controller is in reset (git-fixes). - ALSA: hda - Enable headphone mic on Dell Latitude laptops with ALC3254 (git-fixes). - ALSA: hda: intel: Allow repeatedly probing on codec configuration errors (bsc#1190801). - ALSA: hda/realtek: Add quirk for Clevo PC50HS (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo X170KM-G (git-fixes). - ALSA: hda/realtek: Add quirk for TongFang PHxTxX1 (git-fixes). - ALSA: hda/realtek - ALC236 headset MIC recording issue (git-fixes). - ALSA: hda/realtek: Complete partial device name to avoid ambiguity (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell Precision 5560 laptop (git-fixes). - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo 13s Gen2 (git-fixes). - ALSA: hda/realtek: Fix mic mute LED for the HP Spectre x360 14 (git-fixes). - ALSA: hda/realtek: Fix the mic type detection issue for ASUS G551JW (git-fixes). - ALSA: hda/realtek: Quirks to enable speaker output for Lenovo Legion 7i 15IMHG05, Yoga 7i 14ITL5/15ITL5, and 13s Gen2 laptops (git-fixes). - ALSA: hda: Reduce udelay() at SKL+ position reporting (git-fixes). - ALSA: hda: Use position buffer for SKL+ again (git-fixes). - ALSA: pcm: Workaround for a wrong offset in SYNC_PTR compat ioctl (git-fixes). - ALSA: seq: Fix a potential UAF by wrong private_free call order (git-fixes). - ALSA: ua101: fix division by zero at probe (git-fixes). - ALSA: uapi: Fix a C++ style comment in asound.h (git-fixes). - ALSA: usb-audio: Add quirk for VF0770 (git-fixes). - ALSA: usb-audio: Provide quirk for Sennheiser GSP670 Headset (git-fixes). - ASoC: atmel: ATMEL drivers do not need HAS_DMA (git-fixes). - ASoC: cs42l42: Correct some register default values (git-fixes). - ASoC: cs42l42: Defer probe if request_threaded_irq() returns EPROBE_DEFER (git-fixes). - ASoC: cs42l42: Do not set defaults for volatile registers (git-fixes). - ASoC: DAPM: Fix missing kctl change notifications (git-fixes). - ASoC: dapm: use component prefix when checking widget names (git-fixes). - ASoC: dt-bindings: cs42l42: Correct description of ts-inv (git-fixes). - ASoC: fsl_spdif: register platform component before registering cpu dai (git-fixes). - ASoC: Intel: bytcr_rt5640: Move "Platform Clock" routes to the maps for the matching in-/output (git-fixes). - ASoC: Intel: Skylake: Fix module configuration for KPB and MIXER (git-fixes). - ASoC: Intel: Skylake: Fix passing loadable flag for module (git-fixes). - ASoC: Intel: sof_sdw: tag SoundWire BEs as non-atomic (git-fixes). - ASoC: mediatek: mt8195: Remove unsued irqs_lock (git-fixes). - ASoC: rockchip: Use generic dmaengine code (git-fixes). - ASoC: SOF: imx: imx8: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: imx: imx8m: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: loader: release_firmware() on load failure to avoid batching (git-fixes). - ASoC: SOF: topology: do not power down primary core during topology removal (git-fixes). - ASoC: topology: Fix stub for snd_soc_tplg_component_remove() (git-fixes). - ASoC: wm8960: Fix clock configuration on slave mode (git-fixes). - ata: ahci_platform: fix null-ptr-deref in ahci_platform_enable_regulators() (git-fixes). - ata: sata_dwc_460ex: No need to call phy_exit() befre phy_init() (git-fixes). - ata: sata_mv: Fix the error handling of mv_chip_id() (git-fixes). - ath10k: fix control-message timeout (git-fixes). - ath10k: fix division by zero in send path (git-fixes). - ath10k: fix max antenna gain unit (git-fixes). - ath10k: Fix missing frame timestamp for beacon/probe-resp (git-fixes). - ath10k: sdio: Add missing BH locking around napi_schdule() (git-fixes). - ath6kl: fix control-message timeout (git-fixes). - ath6kl: fix division by zero in send path (git-fixes). - ath9k: Fix potential interrupt storm on queue reset (git-fixes). - audit: fix possible null-pointer dereference in audit_filter_rules (git-fixes). - b43: fix a lower bounds test (git-fixes). - b43legacy: fix a lower bounds test (git-fixes). - bfq: Remove merged request already in bfq_requests_merged() (bsc#1191456). - blk: Fix lock inversion between ioc lock and bfqd lock (bsc#1191456). - blktrace: Fix uaf in blk_trace access after removing by sysfs (bsc#1191452). - block: bfq: fix bfq_set_next_ioprio_data() (bsc#1191451). - Bluetooth: btmtkuart: fix a memleak in mtk_hci_wmt_sync (git-fixes). - Bluetooth: fix init and cleanup of sco_conn.timeout_work (git-fixes). - bnxt_en: Fix TX timeout when TX ring size is set to the smallest (git-fixes). - bnxt_en: make bnxt_free_skbs() safe to call after bnxt_free_mem() (jsc#SLE-16649). - bpf: Add bpf_patch_call_args prototype to include/linux/bpf.h (git-fixes). - bpf: Fix a typo of reuseport map in bpf.h (git-fixes). - bpf: Fix OOB read when printing XDP link fdinfo (git-fixes). - bpf: Fix up bpf_skb_adjust_room helper's skb csum setting (git-fixes). - can: dev: can_restart: fix use after free bug (git-fixes). - can: peak_pci: peak_pci_remove(): fix UAF (git-fixes). - can: peak_usb: fix use after free bugs (git-fixes). - can: peak_usb: pcan_usb_fd_decode_status(): fix back to ERROR_ACTIVE state notification (git-fixes). - can: rcar_can: fix suspend/resume (git-fixes). - can: ti_hecc: ti_hecc_probe(): add missed clk_disable_unprepare() in error path (git-fixes). - can: xilinx_can: handle failure cases of pm_runtime_get_sync (git-fixes). - cb710: avoid NULL pointer subtraction (git-fixes). - ceph: fix handling of "meta" errors (bsc#1192041). - ceph: skip existing superblocks that are blocklisted or shut down when mounting (bsc#1192040). - cfg80211: correct bridge/4addr mode check (git-fixes). - cfg80211: fix management registrations locking (git-fixes). - cfg80211: scan: fix RCU in cfg80211_add_nontrans_list() (git-fixes). - Configure mpi3mr as currently unsupported (jsc#SLE-18120) - cpuidle: pseries: Mark pseries_idle_proble() as __init (jsc#SLE-13614 bsc#1176914 ltc#186394 git-fixes). - driver core: add a min_align_mask field to struct device_dma_parameters (bsc#1191851). - drm/amd/display: Pass PCI deviceid into DC (git-fixes). - drm/amdgpu: correct initial cp_hqd_quantum for gfx9 (git-fixes). - drm/amdgpu/display: add quirk handling for stutter mode (git-fixes). - drm/amdgpu: fix gart.bo pin_count leak (git-fixes). - drm/amdgpu: fix warning for overflow check (git-fixes). - drm/amdgpu/gmc6: fix DMA mask from 44 to 40 bits (git-fixes). - drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read (git-fixes). - drm/i915: Fix syncmap memory leak (bsc#1152489) Backporting notes: * context changes in intel_timeline_fini() - drm/msm: Avoid potential overflow in timeout_to_jiffies() (git-fixes). - drm/msm/dsi: Fix an error code in msm_dsi_modeset_init() (git-fixes). - drm/msm/dsi: fix off by one in dsi_bus_clk_enable error handling (git-fixes). - drm/msm: Fix null pointer dereference on pointer edp (git-fixes). - drm/msm: Fix potential NULL dereference in DPU SSPP (git-fixes). - drm/msm: potential error pointer dereference in init() (git-fixes). - drm/msm: uninitialized variable in msm_gem_import() (git-fixes). - drm/nouveau: avoid a use-after-free when BO init fails (bsc#1152472) - drm/nouveau/debugfs: fix file release memory leak (git-fixes). - drm/nouveau/kms/nv50-: fix file release memory leak (git-fixes). - drm/nouveau/kms/tu102-: delay enabling cursor until after assign_windows (git-fixes). - drm/panel: olimex-lcd-olinuxino: select CRC32 (git-fixes). - drm/panfrost: Make sure MMU context lifetime is not bound to (bsc#1152472) - drm/sun4i: dw-hdmi: Fix HDMI PHY clock setup (git-fixes). - drm/sun4i: Fix macros in sun8i_csc.h (git-fixes). - drm/ttm: stop calling tt_swapin in vm_access (git-fixes). - drm/v3d: fix wait for TMU write combiner flush (git-fixes). - e1000e: Drop patch to avoid regressions until real fix is available (bsc#1191663). - e1000e: Fix packet loss on Tiger Lake and later (git-fixes). - e100: fix buffer overrun in e100_get_regs (git-fixes). - e100: fix length calculation in e100_get_regs_len (git-fixes). - e100: handle eeprom as little endian (git-fixes). - EDAC/amd64: Set proper family type for Family 19h Models 20h-2Fh (bsc#1192288). - ext4: fix reserved space counter leakage (bsc#1191450). - ext4: report correct st_size for encrypted symlinks (bsc#1191449). - firmware/psci: fix application of sizeof to pointer (git-fixes). - fscrypt: add fscrypt_symlink_getattr() for computing st_size (bsc#1191449). - fs, mm: fix race in unlinking swapfile (bsc#1191455). - ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267). - genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP (bsc#1152489). - gpio: pca953x: Improve bias setting (git-fixes). - gve: Avoid freeing NULL pointer (git-fixes). - gve: Correct available tx qpl check (git-fixes). - gve: fix gve_get_stats() (git-fixes). - gve: Properly handle errors in gve_assign_qpl (bsc#1176940). - gve: report 64bit tx_bytes counter from gve_handle_report_stats() (bsc#1176940). - HID: apple: Fix logical maximum and usage maximum of Magic Keyboard JIS (git-fixes). - HID: betop: fix slab-out-of-bounds Write in betop_probe (git-fixes). - HID: u2fzero: ignore incomplete packets without data (git-fixes). - HID: usbhid: free raw_report buffers in usbhid_stop (git-fixes). - HID: wacom: Add new Intuos BT (CTL-4100WL/CTL-6100WL) device IDs (git-fixes). - hso: fix bailout in error case of probe (git-fixes). - hwmon: Fix possible memleak in __hwmon_device_register() (git-fixes). - hwmon: (pmbus/lm25066) Add offset coefficients (git-fixes). - hwmon: (pmbus/lm25066) Let compiler determine outer dimension of lm25066_coeff (git-fixes). - hwrng: mtk - Force runtime pm ops for sleep ops (git-fixes). - i2c: acpi: fix resource leak in reconfiguration device addition (git-fixes). - i40e: Fix ATR queue selection (git-fixes). - i40e: fix endless loop under rtnl (git-fixes). - i40e: Fix freeing of uninitialized misc IRQ vector (git-fixes). - iavf: fix double unlock of crit_lock (git-fixes). - ibmvnic: delay complete() (bsc#1094840 ltc#167098 git-fixes). - ice: Add missing E810 device ids (jsc#SLE-7966 bsc#1157177). - ice: fix getting UDP tunnel entry (jsc#SLE-12878). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241). - iio: adc128s052: Fix the error handling path of 'adc128_probe()' (git-fixes). - iio: adc: aspeed: set driver data when adc probe (git-fixes). - iio: dac: ti-dac5571: fix an error code in probe() (git-fixes). - iio: light: opt3001: Fixed timeout error when 0 lux (git-fixes). - iio: mtk-auxadc: fix case IIO_CHAN_INFO_PROCESSED (git-fixes). - iio: ssp_sensors: add more range checking in ssp_parse_dataframe() (git-fixes). - iio: ssp_sensors: fix error code in ssp_print_mcu_debug() (git-fixes). - Input: i8042 - Add quirk for Fujitsu Lifebook T725 (bsc#1191980). - Input: snvs_pwrkey - add clk handling (git-fixes). - Input: xpad - add support for another USB ID of Nacon GC-100 (git-fixes). - ionic: do not remove netdev->dev_addr when syncing uc list (bsc#1167773). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - isdn: cpai: check ctr->cnr to avoid array index out of bound (git-fixes). - isdn: mISDN: Fix sleeping function called from invalid context (git-fixes). - iwlwifi: mvm: fix some kerneldoc issues (git-fixes). - iwlwifi: pcie: add configuration of a Wi-Fi adapter on Dell XPS 15 (git-fixes). - ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes). - kabi: block: Fix kabi of blk_mq_sched_try_insert_merge() (bsc#1191456). - kABI: Fix kABI after 36950f2da1ea (bsc#1191851). - kABI workaround for cfg80211 mgmt_registration_lock changes (git-fixes). - kABI workaround for HD-audio probe retry changes (bsc#1190801). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167 bsc#1191240 ltc#194716). - kernel-binary.spec: suse-kernel-rpm-scriptlets required for uninstall as well. Fixes: e98096d5cf85 ("rpm: Abolish scritplet templating (bsc#1189841).") - kernel-spec-macros: Since rpm 4.17 %verbose is unusable (bsc#1191229). - KVM: PPC: Book3S HV: Fix copy_tofrom_guest routines (jsc#SLE-12936 git-fixes). - KVM: PPC: Book3S HV Nested: Reflect guest PMU in-use to L0 when guest SPRs are live (bsc#1156395). - KVM: PPC: Book3S HV Nested: Sanitise H_ENTER_NESTED TM state (bsc#1156395). - KVM: PPC: Book3S HV: Save host FSCR in the P7/8 path (bsc#1065729). - KVM: PPC: Book3S HV: Tolerate treclaim. in fake-suspend mode changing registers (bsc#1156395). - KVM: PPC: Fix clearing never mapped TCEs in realmode (bsc#1156395). - KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak (bsc#1156395). - KVM: s390: extend kvm_s390_shadow_fault to return entry pointer (bsc#1133021). - KVM: s390: index kvm->arch.idle_mask by vcpu_idx (bsc#1133021). - KVM: s390: split kvm_s390_logical_to_effective (bsc#1133021). - KVM: s390: VSIE: correctly handle MVPG when in VSIE (bsc#1133021). - lan78xx: select CRC32 (git-fixes). - libata: Add ATA_HORKAGE_NO_NCQ_ON_ATI for Samsung 860 and 870 SSD (git-fixes). - libertas: Fix possible memory leak in probe and disconnect (git-fixes). - libertas_tf: Fix possible memory leak in probe and disconnect (git-fixes). - mac80211: check return value of rhashtable_init (git-fixes). - mac80211: Drop frames from invalid MAC address in ad-hoc mode (git-fixes). - media: cedrus: Fix SUNXI tile size calculation (git-fixes). - media: cx23885: Fix snd_card_free call on null card pointer (git-fixes). - media: cxd2880-spi: Fix a null pointer dereference on error handling path (git-fixes). - media: dvb-frontends: mn88443x: Handle errors of clk_prepare_enable() (git-fixes). - media: dvb-usb: fix ununit-value in az6027_rc_query (git-fixes). - media: em28xx: add missing em28xx_close_extension (git-fixes). - media: em28xx: Do not use ops->suspend if it is NULL (git-fixes). - media: i2c: ths8200 needs V4L2_ASYNC (git-fixes). - media: ite-cir: IR receiver stop working after receive overflow (git-fixes). - media: mtk-vpu: Fix a resource leak in the error handling path of 'mtk_vpu_probe()' (git-fixes). - media: mxl111sf: change mutex_init() location (git-fixes). - media: radio-wl1273: Avoid card name truncation (git-fixes). - media: si470x: Avoid card name truncation (git-fixes). - media: staging/intel-ipu3: css: Fix wrong size comparison imgu_css_fw_init (git-fixes). - media: TDA1997x: handle short reads of hdmi info frame (git-fixes). - media: tm6000: Avoid card name truncation (git-fixes). - media: v4l2-ioctl: Fix check_ext_ctrls (git-fixes). - media: v4l2-ioctl: S_CTRL output the right value (git-fixes). - mei: me: add Ice Lake-N device id (git-fixes). - memory: fsl_ifc: fix leak of irq and nand_irq in fsl_ifc_ctrl_probe (git-fixes). - memstick: avoid out-of-range warning (git-fixes). - memstick: jmb38x_ms: use appropriate free function in jmb38x_ms_alloc_host() (git-fixes). - mlx5: count all link events (git-fixes). - mlxsw: thermal: Fix out-of-bounds memory accesses (git-fixes). - mmc: dw_mmc: exynos: fix the finding clock sample value (git-fixes). - mmc: meson-gx: do not use memcpy_to/fromio for dram-access-quirk (git-fixes). - mmc: mxs-mmc: disable regulator on error and in the remove function (git-fixes). - mmc: sdhci: Map more voltage level to SDHCI_POWER_330 (git-fixes). - mmc: sdhci-omap: Fix NULL pointer exception if regulator is not configured (git-fixes). - mmc: vub300: fix control-message timeouts (git-fixes). - mt76: mt7615: fix endianness warning in mt7615_mac_write_txwi (git-fixes). - mt76: mt76x02: fix endianness warnings in mt76x02_mac.c (git-fixes). - mt76: mt7915: fix muar_idx in mt7915_mcu_alloc_sta_req() (git-fixes). - mt76: mt7915: fix possible infinite loop release semaphore (git-fixes). - mt76: mt7915: fix sta_rec_wtbl tag len (git-fixes). - mwifiex: fix division by zero in fw download path (git-fixes). - mwifiex: Send DELBA requests according to spec (git-fixes). - net/af_unix: fix a data-race in unix_dgram_poll (bsc#1154353). - net: batman-adv: fix error handling (git-fixes). - net: bridge: use nla_total_size_64bit() in br_get_linkxstats_size() (git-fixes). - net: can: ems_usb: fix use-after-free in ems_usb_disconnect() (git-fixes). - net: cdc_eem: fix tx fixup skb leak (git-fixes). - net: cdc_ncm: correct overhead in delayed_ndp_size (git-fixes). - netfilter: conntrack: collect all entries in one cycle (bsc#1173604). - netfilter: Drop fragmented ndisc packets assembled in netfilter (git-fixes). - netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value (bsc#1176447). - net: hns3: check queue id range before using (jsc#SLE-14777). - net: hns3: fix vf reset workqueue cannot exit (bsc#1154353). - net: hso: add failure handler for add_net_device (git-fixes). - net: hso: fix NULL-deref on disconnect regression (git-fixes). - net: hso: fix null-ptr-deref during tty device unregistration (git-fixes). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: lan78xx: fix division by zero in send path (git-fixes). - net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191800). - net/mlx4_en: Do not allow aRFS for encapsulated packets (git-fixes). - net/mlx4_en: Resolve bad operstate value (git-fixes). - net/mlx5e: IPSEC RX, enable checksum complete (jsc#SLE-15172). - net/mlx5e: Mutually exclude RX-FCS and RX-port-timestamp (git-fixes). - net/mlx5e: RX, Avoid possible data corruption when relaxed ordering and LRO combined (jsc#SLE-15172). - net/mlx5: E-Switch, Fix double allocation of acl flow counter (jsc#SLE-15172). - net/mlx5: Fix unpublish devlink parameters (jsc#SLE-8464). - net/mlx5: FWTrace, cancel work on alloc pd error flow (git-fixes). - net/sched: ets: fix crash when flipping from 'strict' to 'quantum' (bsc#1176774). - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() (git-fixes). - NFC: digital: fix possible memory leak in digital_in_send_sdd_req() (git-fixes). - NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() (git-fixes). - nfc: fix error handling of nfc_proto_register() (git-fixes). - nfc: port100: fix using -ERRNO as command type mask (git-fixes). - nfs: dir_cookie is a pointer to the cookie in older kernels, not the cookie itself. (bsc#1191628 bsc#1192549). - NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628). - nvme: add command id quirk for apple controllers (git-fixes). - nvme-fc: avoid race between time out and tear down (bsc#1185762). - nvme-fc: remove freeze/unfreeze around update_nr_hw_queues (bsc#1185762). - nvme-fc: update hardware queues before using them (bsc#1185762). - nvme-pci: Fix abort command id (git-fixes). - nvme-pci: fix error unwind in nvme_map_data (bsc#1191934). - nvme-pci: refactor nvme_unmap_data (bsc#1191934). - nvme-pci: set min_align_mask (bsc#1191851). - ocfs2: fix data corruption after conversion from inline format (bsc#1190795). - pata_legacy: fix a couple uninitialized variable bugs (git-fixes). - PCI: Fix pci_host_bridge struct device release/free handling (git-fixes). - phy: mdio: fix memory leak (git-fixes). - platform/mellanox: mlxreg-io: Fix argument base in kstrtou32() call (git-fixes). - platform/mellanox: mlxreg-io: Fix read access of n-bytes size attributes (git-fixes). - platform/x86: dell-smbios-wmi: Add missing kfree in error-exit from run_smbios_call (git-fixes). - platform/x86: intel_scu_ipc: Fix busy loop expiry time (git-fixes). - platform/x86: thinkpad_acpi: Fix bitwise vs. logical warning (git-fixes). - PM / devfreq: rk3399_dmc: Add missing of_node_put() (git-fixes). - PM / devfreq: rk3399_dmc: Disable devfreq-event device when fails (git-fixes). - PM / devfreq: rk3399_dmc: Fix kernel oops when rockchip,pmu is absent (git-fixes). - PM / devfreq: rk3399_dmc: Fix spelling typo (git-fixes). - PM / devfreq: rk3399_dmc: Remove unneeded semicolon (git-fixes). - PM: sleep: Do not let "syscore" devices runtime-suspend during system transitions (git-fixes). - powerpc/64s: Fix entry flush patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Fix stf mitigation patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Remove irq mask workaround in accumulate_stolen_time() (jsc#SLE-9246 git-fixes). - powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729). - powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729). - powerpc/bpf: Use bctrl for making function calls (bsc#1065729). - powerpc: Do not dereference code as 'struct ppc_inst' (uprobe, code-patching, feature-fixups) (jsc#SLE-13847 git-fixes). - powerpc: Do not use 'struct ppc_inst' to reference instruction location (jsc#SLE-13847 git-fixes). - powerpc/lib/code-patching: Do not use struct 'ppc_inst' for runnable code in tests (jsc#SLE-13847 git-fixes). - powerpc/lib/code-patching: Make instr_is_branch_to_addr() static (jsc#SLE-13847 git-fixes). - powerpc/lib: Fix emulate_step() std test (bsc#1065729). - powerpc: Move arch_cpu_idle_dead() into smp.c (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/numa: Update cpu_cpu_map on CPU online/offline (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/pseries: Fix build error when NUMA=n (bsc#1190620 ltc#194498 git-fixes). - powerpc/smp: Cache CPU to chip lookup (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Enable CACHE domain for shared processor (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fix a crash while booting kvm guest with nr_cpus=2 (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fold cpu_die() into its only caller (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Set numa node before updating mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Update cpu_core_map on all PowerPc systems (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/uprobes: Validation for prefixed instruction (jsc#SLE-13847 git-fixes). - powerpc/xive: Discard disabled interrupts in get_irqchip_state() (bsc#1085030 git-fixes). - pseries/eeh: Fix the kdump kernel crash during eeh_pseries_init (git-fixes). - ptp_pch: Load module automatically if ID matches (git-fixes). - ptp_pch: Restore dependency on PCI (git-fixes). - qed: Fix missing error code in qed_slowpath_start() (git-fixes). - qed: Handle management FW error (git-fixes). - qed: rdma - do not wait for resources under hw error recovery flow (git-fixes). - RDMA/cma: Do not change route.addr.src_addr.ss_family (bsc#1181147). - RDMA/cma: Fix listener leak in rdma_cma_listen_on_all() failure (bsc#1181147). - regmap: Fix possible double-free in regcache_rbtree_exit() (git-fixes). - regulator: dt-bindings: samsung,s5m8767: correct s5m8767,pmic-buck-default-dvs-idx property (git-fixes). - regulator: s5m8767: do not use reset value as DVS voltage if GPIO DVS is disabled (git-fixes). - rpm: fix kmp install path - rpm: use _rpmmacrodir (boo#1191384) - rsi: fix control-message timeout (git-fixes). - rsi: Fix module dev_oper_mode parameter description (git-fixes). - rsi: stop thread firstly in rsi_91x_init() error handling (git-fixes). - rtl8187: fix control-message timeouts (git-fixes). - scsi: ibmvfc: Fix up duplicate response detection (bsc#1191867 ltc#194757). - scsi: iscsi: Fix deadlock on recovery path during GFP_IO reclaim (git-fixes). - scsi: lpfc: Allow fabric node recovery if recovery is in progress before devloss (bsc#1192145). - scsi: lpfc: Allow PLOGI retry if previous PLOGI was aborted (bsc#1192145). - scsi: lpfc: Correct sysfs reporting of loop support after SFP status change (bsc#1192145). - scsi: lpfc: Fix link down processing to address NULL pointer dereference (bsc#1192145). - scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349). - scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine (bsc#1192145). - scsi: lpfc: Revert LOG_TRACE_EVENT back to LOG_INIT prior to driver_resource_setup() (bsc#1192145). - scsi: lpfc: Update lpfc version to 14.0.0.3 (bsc#1192145). - scsi: lpfc: Wait for successful restart of SLI3 adapter during host sg_reset (bsc#1192145). - scsi: mpi3mr: Add bios_param SCSI host template hook (jsc#SLE-18120). - scsi: mpi3mr: Add change queue depth support (jsc#SLE-18120). - scsi: mpi3mr: Add EEDP DIF DIX support (jsc#SLE-18120). - scsi: mpi3mr: Add event handling debug prints (jsc#SLE-18120). - scsi: mpi3mr: Additional event handling (jsc#SLE-18120). - scsi: mpi3mr: Add mpi30 Rev-R headers and Kconfig (jsc#SLE-18120). - scsi: mpi3mr: Add support for device add/remove event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for DSN secure firmware check (jsc#SLE-18120). - scsi: mpi3mr: Add support for internal watchdog thread (jsc#SLE-18120). - scsi: mpi3mr: Add support for PCIe device event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for PM suspend and resume (jsc#SLE-18120). - scsi: mpi3mr: Add support for queue command processing (jsc#SLE-18120). - scsi: mpi3mr: Add support for recovering controller (jsc#SLE-18120). - scsi: mpi3mr: Add support for threaded ISR (jsc#SLE-18120). - scsi: mpi3mr: Add support for timestamp sync with firmware (jsc#SLE-18120). - scsi: mpi3mr: Allow certain commands during pci-remove hook (jsc#SLE-18120). - scsi: mpi3mr: Base driver code (jsc#SLE-18120). - scsi: mpi3mr: Complete support for soft reset (jsc#SLE-18120). - scsi: mpi3mr: Create operational request and reply queue pair (jsc#SLE-18120). - scsi: mpi3mr: Fix error handling in mpi3mr_setup_isr() (git-fixes). - scsi: mpi3mr: Fix missing unlock on error (git-fixes). - scsi: mpi3mr: Hardware workaround for UNMAP commands to NVMe drives (jsc#SLE-18120). - scsi: mpi3mr: Implement SCSI error handler hooks (jsc#SLE-18120). - scsi: mpi3mr: Print IOC info for debugging (jsc#SLE-18120). - scsi: mpi3mr: Print pending host I/Os for debugging (jsc#SLE-18120). - scsi: mpi3mr: Set up IRQs in resume path (jsc#SLE-18120). - scsi: mpi3mr: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (jsc#SLE-18120). - scsi: mpi3mr: Use the proper SCSI midlayer interfaces for PI (jsc#SLE-18120). - scsi: mpi3mr: Wait for pending I/O completions upon detection of VD I/O timeout (jsc#SLE-18120). - scsi: qla2xxx: Add debug print of 64G link speed (bsc#1190941). - scsi: qla2xxx: Add host attribute to trigger MPI hang (bsc#1190941). - scsi: qla2xxx: Add support for mailbox passthru (bsc#1190941). - scsi: qla2xxx: Adjust request/response queue size for 28xx (bsc#1190941). - scsi: qla2xxx: Call process_response_queue() in Tx path (bsc#1190941). - scsi: qla2xxx: Changes to support FCP2 Target (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel for NVMe BFS (bsc#1190941). - scsi: qla2xxx: Check for firmware capability before creating QPair (bsc#1190941). - scsi: qla2xxx: Display 16G only as supported speeds for 3830c card (bsc#1190941). - scsi: qla2xxx: Do not call fc_block_scsi_eh() during bus reset (bsc#1190941). - scsi: qla2xxx: edif: Add N2N support for EDIF (bsc#1190941). - scsi: qla2xxx: edif: Do secure PLOGI when auth app is present (bsc#1190941). - scsi: qla2xxx: edif: Fix EDIF enable flag (bsc#1190941). - scsi: qla2xxx: edif: Fix returnvar.cocci warnings (bsc#1190941). - scsi: qla2xxx: edif: Fix stale session (bsc#1190941). - scsi: qla2xxx: edif: Reject AUTH ELS on session down (bsc#1190941). - scsi: qla2xxx: edif: Use link event to wake up app (bsc#1190941). - scsi: qla2xxx: Fix crash in NVMe abort path (bsc#1190941). - scsi: qla2xxx: Fix excessive messages during device logout (bsc#1190941). - scsi: qla2xxx: Fix hang during NVMe session tear down (bsc#1190941). - scsi: qla2xxx: Fix hang on NVMe command timeouts (bsc#1190941). - scsi: qla2xxx: Fix kernel crash when accessing port_speed sysfs file (bsc#1190941). - scsi: qla2xxx: Fix NPIV create erroneous error (bsc#1190941). - scsi: qla2xxx: Fix NVMe | FCP personality change (bsc#1190941). - scsi: qla2xxx: Fix NVMe retry (bsc#1190941). - scsi: qla2xxx: Fix NVMe session down detection (bsc#1190941). - scsi: qla2xxx: Fix port type info (bsc#1190941). - scsi: qla2xxx: Fix unsafe removal from linked list (bsc#1190941). - scsi: qla2xxx: Fix use after free in eh_abort path (bsc#1190941). - scsi: qla2xxx: Move heartbeat handling from DPC thread to workqueue (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_device_reset() (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_target_reset() (bsc#1190941). - scsi: qla2xxx: Remove redundant initialization of pointer req (bsc#1190941). - scsi: qla2xxx: Restore initiator in dual mode (bsc#1190941). - scsi: qla2xxx: Show OS name and version in FDMI-1 (bsc#1190941). - scsi: qla2xxx: Suppress unnecessary log messages during login (bsc#1190941). - scsi: qla2xxx: Sync queue idx with queue_pair_map idx (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.100-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.200-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.07.100-k (bsc#1190941). - scsi: qla2xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190941). - scsi: target: Fix the pgr/alua_support_store functions (git-fixes). - sctp: check asoc peer.asconf_capable before processing asconf (bsc#1190351). - soc: qcom: mdt_loader: Drop PT_LOAD check on hash segment (git-fixes). - spi: spi-nxp-fspi: do not depend on a specific node name erratum workaround (git-fixes). - swiotlb: add a IO_TLB_SIZE define (bsc#1191851). - swiotlb: clean up swiotlb_tbl_unmap_single (bsc#1191851). - swiotlb: do not modify orig_addr in swiotlb_tbl_sync_single (bsc#1191851). - swiotlb: factor out an io_tlb_offset helper (bsc#1191851). - swiotlb: factor out a nr_slots helper (bsc#1191851). - swiotlb: refactor swiotlb_tbl_map_single (bsc#1191851). - swiotlb: respect min_align_mask (bsc#1191851). - swiotlb: Split size parameter to map/unmap APIs (bsc#1191851). - tpm: Check for integer overflow in tpm2_map_response_body() (git-fixes). - tpm: ibmvtpm: Avoid error message when process gets signal while waiting (bsc#1065729). - Update patch reference for AMDGPU fix (bsc#1180749) - USB: cdc-acm: clean up probe error labels (git-fixes). - USB: cdc-acm: fix minor-number release (git-fixes). - usb: chipidea: ci_hdrc_imx: Also search for 'phys' phandle (git-fixes). - usb: hso: fix error handling code of hso_create_net_device (git-fixes). - usb: hso: remove the bailout parameter (git-fixes). - usb: musb: dsps: Fix the probe error path (git-fixes). - usbnet: fix error return code in usbnet_probe() (git-fixes). - usbnet: sanity check for maxpacket (git-fixes). - USB: serial: option: add prod. id for Quectel EG91 (git-fixes). - USB: serial: option: add Quectel EC200S-CN module support (git-fixes). - USB: serial: option: add Telit LE910Cx composition 0x1204 (git-fixes). - USB: serial: qcserial: add EM9191 QDL support (git-fixes). - USB: xhci: dbc: fix tty registration race (git-fixes). - video: fbdev: gbefb: Only instantiate device when built for IP32 (git-fixes). - virtio-gpu: fix possible memory allocation failure (git-fixes). - virtio: write back F_VERSION_1 before validate (git-fixes). - watchdog: orion: use 0 for unset heartbeat (git-fixes). - wcn36xx: Add ability for wcn36xx_smd_dump_cmd_req to pass two's complement (git-fixes). - wcn36xx: add proper DMA memory barriers in rx path (git-fixes). - wcn36xx: Fix HT40 capability for 2Ghz band (git-fixes). - x86/ioapic: Force affinity setup before startup (bsc#1152489). - x86/msi: Force affinity setup before startup (bsc#1152489). - x86/pat: Pass valid address to sanitize_phys() (bsc#1152489). - x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions (bsc#1152489). - x86/resctrl: Free the ctrlval arrays when domain_setup_mon_state() fails (bsc#1152489). - x86/sev: Return an error on a returned non-zero SW_EXITINFO1[31:0] (bsc#1178134). - xen: fix setting of max_pfn in shared_info (git-fixes). - xen: reset legacy rtc flag for PV domU (git-fixes). - xfs: do not allow log writes if the data device is readonly (bsc#1192229). - xfs: ensure that the inode uid/gid match values match the icdinode ones (bsc#1190006). - xfs: Fixed non-directory creation in SGID directories introduced by CVE-2018-13405 patch (bsc#1190006). - xfs: fix I_DONTCACHE (bsc#1192074). - xfs: fix log intent recovery ENOSPC shutdowns when inactivating inodes (bsc#1190642). - xfs: merge the projid fields in struct xfs_icdinode (bsc#1190006). - xfs: remove the icdinode di_uid/di_gid members (bsc#1190006). - xhci: Enable trust tx length quirk for Fresco FL11 USB controller (git-fixes). - xhci: Fix command ring pointer corruption while aborting a command (git-fixes). - xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes). cluster-md-kmp-default-5.3.18-59.34.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.34.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.34.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True kernel-debug-5.3.18-59.34.1.nosrc.rpm True kernel-debug-5.3.18-59.34.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.34.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.34.1.x86_64.rpm True kernel-default-5.3.18-59.34.1.nosrc.rpm True kernel-default-5.3.18-59.34.1.x86_64.rpm True kernel-default-base-5.3.18-59.34.1.18.21.1.src.rpm True kernel-default-base-5.3.18-59.34.1.18.21.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.34.1.18.21.1.x86_64.rpm True kernel-default-devel-5.3.18-59.34.1.x86_64.rpm True kernel-default-extra-5.3.18-59.34.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.34.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.34.1.x86_64.rpm True kernel-default-optional-5.3.18-59.34.1.x86_64.rpm True kernel-devel-5.3.18-59.34.1.noarch.rpm True kernel-docs-5.3.18-59.34.1.noarch.rpm True kernel-docs-5.3.18-59.34.1.nosrc.rpm True kernel-docs-html-5.3.18-59.34.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.34.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.34.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.34.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.34.1.x86_64.rpm True kernel-macros-5.3.18-59.34.1.noarch.rpm True kernel-obs-build-5.3.18-59.34.1.src.rpm True kernel-obs-build-5.3.18-59.34.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.34.1.src.rpm True kernel-obs-qa-5.3.18-59.34.1.x86_64.rpm True kernel-preempt-5.3.18-59.34.1.nosrc.rpm True kernel-preempt-5.3.18-59.34.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.34.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.34.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.34.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.34.1.x86_64.rpm True kernel-source-5.3.18-59.34.1.noarch.rpm True kernel-source-5.3.18-59.34.1.src.rpm True kernel-source-vanilla-5.3.18-59.34.1.noarch.rpm True kernel-syms-5.3.18-59.34.1.src.rpm True kernel-syms-5.3.18-59.34.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.34.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.34.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.34.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.34.1.s390x.rpm True dlm-kmp-default-5.3.18-59.34.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.34.1.s390x.rpm True kernel-default-5.3.18-59.34.1.s390x.rpm True kernel-default-base-5.3.18-59.34.1.18.21.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.34.1.18.21.1.s390x.rpm True kernel-default-devel-5.3.18-59.34.1.s390x.rpm True kernel-default-extra-5.3.18-59.34.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.34.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.34.1.s390x.rpm True kernel-default-optional-5.3.18-59.34.1.s390x.rpm True kernel-obs-build-5.3.18-59.34.1.s390x.rpm True kernel-obs-qa-5.3.18-59.34.1.s390x.rpm True kernel-syms-5.3.18-59.34.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.34.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.34.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.34.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.34.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.34.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.34.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.34.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.34.1.ppc64le.rpm True kernel-debug-5.3.18-59.34.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-default-5.3.18-59.34.1.ppc64le.rpm True kernel-default-base-5.3.18-59.34.1.18.21.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.34.1.18.21.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.34.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.34.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.34.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.34.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.34.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.34.1.ppc64le.rpm True kernel-syms-5.3.18-59.34.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.34.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.34.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.34.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.34.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.34.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True dtb-aarch64-5.3.18-59.34.1.src.rpm True dtb-al-5.3.18-59.34.1.aarch64.rpm True dtb-allwinner-5.3.18-59.34.1.aarch64.rpm True dtb-altera-5.3.18-59.34.1.aarch64.rpm True dtb-amd-5.3.18-59.34.1.aarch64.rpm True dtb-amlogic-5.3.18-59.34.1.aarch64.rpm True dtb-apm-5.3.18-59.34.1.aarch64.rpm True dtb-arm-5.3.18-59.34.1.aarch64.rpm True dtb-broadcom-5.3.18-59.34.1.aarch64.rpm True dtb-cavium-5.3.18-59.34.1.aarch64.rpm True dtb-exynos-5.3.18-59.34.1.aarch64.rpm True dtb-freescale-5.3.18-59.34.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.34.1.aarch64.rpm True dtb-lg-5.3.18-59.34.1.aarch64.rpm True dtb-marvell-5.3.18-59.34.1.aarch64.rpm True dtb-mediatek-5.3.18-59.34.1.aarch64.rpm True dtb-nvidia-5.3.18-59.34.1.aarch64.rpm True dtb-qcom-5.3.18-59.34.1.aarch64.rpm True dtb-renesas-5.3.18-59.34.1.aarch64.rpm True dtb-rockchip-5.3.18-59.34.1.aarch64.rpm True dtb-socionext-5.3.18-59.34.1.aarch64.rpm True dtb-sprd-5.3.18-59.34.1.aarch64.rpm True dtb-xilinx-5.3.18-59.34.1.aarch64.rpm True dtb-zte-5.3.18-59.34.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.34.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True kernel-64kb-5.3.18-59.34.1.aarch64.rpm True kernel-64kb-5.3.18-59.34.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.34.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.34.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.34.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.34.1.aarch64.rpm True kernel-default-5.3.18-59.34.1.aarch64.rpm True kernel-default-base-5.3.18-59.34.1.18.21.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.34.1.18.21.1.aarch64.rpm True kernel-default-devel-5.3.18-59.34.1.aarch64.rpm True kernel-default-extra-5.3.18-59.34.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.34.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.34.1.aarch64.rpm True kernel-default-optional-5.3.18-59.34.1.aarch64.rpm True kernel-obs-build-5.3.18-59.34.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.34.1.aarch64.rpm True kernel-preempt-5.3.18-59.34.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.34.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.34.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.34.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.34.1.aarch64.rpm True kernel-syms-5.3.18-59.34.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.34.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.34.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.34.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3662 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - Fix regression introduced by CVE-2020-25717 patches, winbindd does not start when 'allow trusted domains' is off; (bso#14899); ctdb-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm ctdb-pcp-pmda-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm ctdb-tests-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-binding0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-binding0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-samr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-samr0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-samr0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-krb5pac-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-krb5pac0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-krb5pac0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-nbt-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-nbt0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-nbt0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-standard-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-standard0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-standard0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr1-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr1-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libnetapi-devel-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libnetapi-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libnetapi0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libnetapi0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-credentials-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-credentials0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-credentials0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-errors-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-errors0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-errors0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-hostconfig-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-hostconfig0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-hostconfig0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-passdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-passdb0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-passdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-policy-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-policy-python3-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-policy0-python3-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-policy0-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-util0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamdb0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbclient0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbconf-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbconf0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbconf0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbldap-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbldap2-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbldap2-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libtevent-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libtevent-util0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libtevent-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libwbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libwbclient0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libwbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-4.13.13+git.531.903f5c0ccdc-3.17.1.src.rpm samba-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-ad-dc-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-ad-dc-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-ceph-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-client-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-client-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-core-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-doc-4.13.13+git.531.903f5c0ccdc-3.17.1.noarch.rpm samba-dsdb-modules-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-gpupdate-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-ldb-ldap-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-libs-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-libs-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-libs-python3-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-libs-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-test-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-winbind-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-winbind-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm ctdb-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm ctdb-pcp-pmda-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm ctdb-tests-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libdcerpc-binding0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libdcerpc-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libdcerpc-samr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libdcerpc-samr0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libdcerpc0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-krb5pac-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-krb5pac0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-nbt-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-nbt0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-standard-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-standard0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr1-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libnetapi-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libnetapi0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-credentials-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-credentials0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-errors-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-errors0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-hostconfig-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-hostconfig0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-passdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-passdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-policy-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-policy-python3-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-policy0-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbconf-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbconf0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbldap-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbldap2-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libtevent-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libtevent-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libwbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libwbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-ad-dc-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-client-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-core-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-dsdb-modules-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-gpupdate-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-ldb-ldap-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-libs-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-libs-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-test-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-winbind-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm ctdb-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm ctdb-pcp-pmda-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm ctdb-tests-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libdcerpc-binding0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libdcerpc-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libdcerpc-samr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libdcerpc-samr0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libdcerpc0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-krb5pac-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-krb5pac0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-nbt-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-nbt0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-standard-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-standard0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr1-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libnetapi-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libnetapi0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-credentials-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-credentials0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-errors-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-errors0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-hostconfig-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-hostconfig0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-passdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-passdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-policy-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-policy-python3-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-policy0-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbconf-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbconf0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbldap-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbldap2-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libtevent-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libtevent-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libwbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libwbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-ad-dc-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-client-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-core-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-dsdb-modules-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-gpupdate-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-ldb-ldap-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-libs-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-libs-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-test-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-winbind-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm ctdb-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm ctdb-pcp-pmda-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm ctdb-tests-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc-binding0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc-binding0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libdcerpc-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc-samr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc-samr0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc-samr0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libdcerpc0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libndr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-krb5pac-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-krb5pac0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-krb5pac0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libndr-nbt-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-nbt0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-nbt0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libndr-standard-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-standard0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-standard0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libndr1-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr1-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libnetapi-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libnetapi-devel-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libnetapi0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libnetapi0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-credentials-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-credentials0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-credentials0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-errors-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-errors0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-errors0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-hostconfig-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-hostconfig0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-hostconfig0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-passdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-passdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-passdb0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-policy-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-policy-python3-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-policy0-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-policy0-python3-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-util0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamdb0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsmbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbclient0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsmbconf-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbconf0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbconf0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsmbldap-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbldap2-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbldap2-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libtevent-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libtevent-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libtevent-util0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libwbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libwbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libwbclient0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm samba-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-ad-dc-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-ad-dc-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm samba-ceph-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-client-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-client-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm samba-core-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-dsdb-modules-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-gpupdate-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-ldb-ldap-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-libs-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-libs-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm samba-libs-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-libs-python3-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm samba-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-test-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-winbind-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-winbind-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm openSUSE-SLE-15.3-2021-3860 moderate SUSE Updates openSUSE-SLE 15.3 This update for speex fixes the following issues: - CVE-2020-23903: Fixed zero division error in read_samples (bsc#1192580). libspeex1-1.2-3.3.1.x86_64.rpm libspeex1-32bit-1.2-3.3.1.x86_64.rpm speex-1.2-3.3.1.src.rpm speex-1.2-3.3.1.x86_64.rpm speex-devel-1.2-3.3.1.x86_64.rpm libspeex1-1.2-3.3.1.s390x.rpm speex-1.2-3.3.1.s390x.rpm speex-devel-1.2-3.3.1.s390x.rpm libspeex1-1.2-3.3.1.ppc64le.rpm speex-1.2-3.3.1.ppc64le.rpm speex-devel-1.2-3.3.1.ppc64le.rpm libspeex1-1.2-3.3.1.aarch64.rpm speex-1.2-3.3.1.aarch64.rpm speex-devel-1.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3762 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). postgresql13-13.5-5.22.1.src.rpm postgresql13-13.5-5.22.1.x86_64.rpm postgresql13-contrib-13.5-5.22.1.x86_64.rpm postgresql13-devel-13.5-5.22.1.x86_64.rpm postgresql13-docs-13.5-5.22.1.noarch.rpm postgresql13-llvmjit-13.5-5.22.1.x86_64.rpm postgresql13-plperl-13.5-5.22.1.x86_64.rpm postgresql13-plpython-13.5-5.22.1.x86_64.rpm postgresql13-pltcl-13.5-5.22.1.x86_64.rpm postgresql13-server-13.5-5.22.1.x86_64.rpm postgresql13-server-devel-13.5-5.22.1.x86_64.rpm postgresql13-test-13.5-5.22.1.x86_64.rpm postgresql13-13.5-5.22.1.s390x.rpm postgresql13-contrib-13.5-5.22.1.s390x.rpm postgresql13-devel-13.5-5.22.1.s390x.rpm postgresql13-llvmjit-13.5-5.22.1.s390x.rpm postgresql13-plperl-13.5-5.22.1.s390x.rpm postgresql13-plpython-13.5-5.22.1.s390x.rpm postgresql13-pltcl-13.5-5.22.1.s390x.rpm postgresql13-server-13.5-5.22.1.s390x.rpm postgresql13-server-devel-13.5-5.22.1.s390x.rpm postgresql13-test-13.5-5.22.1.s390x.rpm postgresql13-13.5-5.22.1.ppc64le.rpm postgresql13-contrib-13.5-5.22.1.ppc64le.rpm postgresql13-devel-13.5-5.22.1.ppc64le.rpm postgresql13-llvmjit-13.5-5.22.1.ppc64le.rpm postgresql13-plperl-13.5-5.22.1.ppc64le.rpm postgresql13-plpython-13.5-5.22.1.ppc64le.rpm postgresql13-pltcl-13.5-5.22.1.ppc64le.rpm postgresql13-server-13.5-5.22.1.ppc64le.rpm postgresql13-server-devel-13.5-5.22.1.ppc64le.rpm postgresql13-test-13.5-5.22.1.ppc64le.rpm postgresql13-13.5-5.22.1.aarch64.rpm postgresql13-contrib-13.5-5.22.1.aarch64.rpm postgresql13-devel-13.5-5.22.1.aarch64.rpm postgresql13-llvmjit-13.5-5.22.1.aarch64.rpm postgresql13-plperl-13.5-5.22.1.aarch64.rpm postgresql13-plpython-13.5-5.22.1.aarch64.rpm postgresql13-pltcl-13.5-5.22.1.aarch64.rpm postgresql13-server-13.5-5.22.1.aarch64.rpm postgresql13-server-devel-13.5-5.22.1.aarch64.rpm postgresql13-test-13.5-5.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-3758 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: - CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). postgresql12-12.9-8.26.1.src.rpm postgresql12-12.9-8.26.1.x86_64.rpm postgresql12-contrib-12.9-8.26.1.x86_64.rpm postgresql12-devel-12.9-8.26.1.x86_64.rpm postgresql12-docs-12.9-8.26.1.noarch.rpm postgresql12-llvmjit-12.9-8.26.1.x86_64.rpm postgresql12-plperl-12.9-8.26.1.x86_64.rpm postgresql12-plpython-12.9-8.26.1.x86_64.rpm postgresql12-pltcl-12.9-8.26.1.x86_64.rpm postgresql12-server-12.9-8.26.1.x86_64.rpm postgresql12-server-devel-12.9-8.26.1.x86_64.rpm postgresql12-test-12.9-8.26.1.x86_64.rpm postgresql12-12.9-8.26.1.s390x.rpm postgresql12-contrib-12.9-8.26.1.s390x.rpm postgresql12-devel-12.9-8.26.1.s390x.rpm postgresql12-llvmjit-12.9-8.26.1.s390x.rpm postgresql12-plperl-12.9-8.26.1.s390x.rpm postgresql12-plpython-12.9-8.26.1.s390x.rpm postgresql12-pltcl-12.9-8.26.1.s390x.rpm postgresql12-server-12.9-8.26.1.s390x.rpm postgresql12-server-devel-12.9-8.26.1.s390x.rpm postgresql12-test-12.9-8.26.1.s390x.rpm postgresql12-12.9-8.26.1.ppc64le.rpm postgresql12-contrib-12.9-8.26.1.ppc64le.rpm postgresql12-devel-12.9-8.26.1.ppc64le.rpm postgresql12-llvmjit-12.9-8.26.1.ppc64le.rpm postgresql12-plperl-12.9-8.26.1.ppc64le.rpm postgresql12-plpython-12.9-8.26.1.ppc64le.rpm postgresql12-pltcl-12.9-8.26.1.ppc64le.rpm postgresql12-server-12.9-8.26.1.ppc64le.rpm postgresql12-server-devel-12.9-8.26.1.ppc64le.rpm postgresql12-test-12.9-8.26.1.ppc64le.rpm postgresql12-12.9-8.26.1.aarch64.rpm postgresql12-contrib-12.9-8.26.1.aarch64.rpm postgresql12-devel-12.9-8.26.1.aarch64.rpm postgresql12-llvmjit-12.9-8.26.1.aarch64.rpm postgresql12-plperl-12.9-8.26.1.aarch64.rpm postgresql12-plpython-12.9-8.26.1.aarch64.rpm postgresql12-pltcl-12.9-8.26.1.aarch64.rpm postgresql12-server-12.9-8.26.1.aarch64.rpm postgresql12-server-devel-12.9-8.26.1.aarch64.rpm postgresql12-test-12.9-8.26.1.aarch64.rpm openSUSE-SLE-15.3-2021-4058 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: - CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). postgresql10-10.19-8.41.1.src.rpm postgresql10-10.19-8.41.1.x86_64.rpm postgresql10-contrib-10.19-8.41.1.x86_64.rpm postgresql10-docs-10.19-8.41.1.noarch.rpm postgresql10-plperl-10.19-8.41.1.x86_64.rpm postgresql10-plpython-10.19-8.41.1.x86_64.rpm postgresql10-pltcl-10.19-8.41.1.x86_64.rpm postgresql10-server-10.19-8.41.1.x86_64.rpm postgresql10-test-10.19-8.41.1.x86_64.rpm postgresql10-10.19-8.41.1.s390x.rpm postgresql10-contrib-10.19-8.41.1.s390x.rpm postgresql10-plperl-10.19-8.41.1.s390x.rpm postgresql10-plpython-10.19-8.41.1.s390x.rpm postgresql10-pltcl-10.19-8.41.1.s390x.rpm postgresql10-server-10.19-8.41.1.s390x.rpm postgresql10-test-10.19-8.41.1.s390x.rpm postgresql10-10.19-8.41.1.ppc64le.rpm postgresql10-contrib-10.19-8.41.1.ppc64le.rpm postgresql10-plperl-10.19-8.41.1.ppc64le.rpm postgresql10-plpython-10.19-8.41.1.ppc64le.rpm postgresql10-pltcl-10.19-8.41.1.ppc64le.rpm postgresql10-server-10.19-8.41.1.ppc64le.rpm postgresql10-test-10.19-8.41.1.ppc64le.rpm postgresql10-10.19-8.41.1.aarch64.rpm postgresql10-contrib-10.19-8.41.1.aarch64.rpm postgresql10-plperl-10.19-8.41.1.aarch64.rpm postgresql10-plpython-10.19-8.41.1.aarch64.rpm postgresql10-pltcl-10.19-8.41.1.aarch64.rpm postgresql10-server-10.19-8.41.1.aarch64.rpm postgresql10-test-10.19-8.41.1.aarch64.rpm openSUSE-SLE-15.3-2021-3759 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql14 fixes the following issues: - CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - Let rpmlint ignore shlib-policy-name-error (boo#1191782). libecpg6-14.1-5.6.1.x86_64.rpm libecpg6-32bit-14.1-5.6.1.x86_64.rpm libpq5-14.1-5.6.1.x86_64.rpm libpq5-32bit-14.1-5.6.1.x86_64.rpm postgresql14-14.1-5.6.1.src.rpm postgresql14-14.1-5.6.1.x86_64.rpm postgresql14-contrib-14.1-5.6.1.x86_64.rpm postgresql14-devel-14.1-5.6.1.x86_64.rpm postgresql14-devel-mini-14.1-5.6.1.x86_64.rpm postgresql14-docs-14.1-5.6.1.noarch.rpm postgresql14-llvmjit-14.1-5.6.1.x86_64.rpm postgresql14-plperl-14.1-5.6.1.x86_64.rpm postgresql14-plpython-14.1-5.6.1.x86_64.rpm postgresql14-pltcl-14.1-5.6.1.x86_64.rpm postgresql14-server-14.1-5.6.1.x86_64.rpm postgresql14-server-devel-14.1-5.6.1.x86_64.rpm postgresql14-test-14.1-5.6.1.x86_64.rpm libecpg6-14.1-5.6.1.s390x.rpm libpq5-14.1-5.6.1.s390x.rpm postgresql14-14.1-5.6.1.s390x.rpm postgresql14-contrib-14.1-5.6.1.s390x.rpm postgresql14-devel-14.1-5.6.1.s390x.rpm postgresql14-devel-mini-14.1-5.6.1.s390x.rpm postgresql14-llvmjit-14.1-5.6.1.s390x.rpm postgresql14-plperl-14.1-5.6.1.s390x.rpm postgresql14-plpython-14.1-5.6.1.s390x.rpm postgresql14-pltcl-14.1-5.6.1.s390x.rpm postgresql14-server-14.1-5.6.1.s390x.rpm postgresql14-server-devel-14.1-5.6.1.s390x.rpm postgresql14-test-14.1-5.6.1.s390x.rpm libecpg6-14.1-5.6.1.ppc64le.rpm libpq5-14.1-5.6.1.ppc64le.rpm postgresql14-14.1-5.6.1.ppc64le.rpm postgresql14-contrib-14.1-5.6.1.ppc64le.rpm postgresql14-devel-14.1-5.6.1.ppc64le.rpm postgresql14-devel-mini-14.1-5.6.1.ppc64le.rpm postgresql14-llvmjit-14.1-5.6.1.ppc64le.rpm postgresql14-plperl-14.1-5.6.1.ppc64le.rpm postgresql14-plpython-14.1-5.6.1.ppc64le.rpm postgresql14-pltcl-14.1-5.6.1.ppc64le.rpm postgresql14-server-14.1-5.6.1.ppc64le.rpm postgresql14-server-devel-14.1-5.6.1.ppc64le.rpm postgresql14-test-14.1-5.6.1.ppc64le.rpm libecpg6-14.1-5.6.1.aarch64.rpm libpq5-14.1-5.6.1.aarch64.rpm postgresql14-14.1-5.6.1.aarch64.rpm postgresql14-contrib-14.1-5.6.1.aarch64.rpm postgresql14-devel-14.1-5.6.1.aarch64.rpm postgresql14-devel-mini-14.1-5.6.1.aarch64.rpm postgresql14-llvmjit-14.1-5.6.1.aarch64.rpm postgresql14-plperl-14.1-5.6.1.aarch64.rpm postgresql14-plpython-14.1-5.6.1.aarch64.rpm postgresql14-pltcl-14.1-5.6.1.aarch64.rpm postgresql14-server-14.1-5.6.1.aarch64.rpm postgresql14-server-devel-14.1-5.6.1.aarch64.rpm postgresql14-test-14.1-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3844 moderate SUSE Updates openSUSE-SLE 15.3 This update for openexr fixes the following issues: - CVE-2021-3941: Fixed divide-by-zero in Imf_3_1:RGBtoXYZ (bsc#1192556). - CVE-2021-3933: Fixed integer-overflow in Imf_3_1:bytesPerDeepLineTable (bsc#1192498). libIlmImf-2_2-23-2.2.1-3.38.1.x86_64.rpm libIlmImf-2_2-23-32bit-2.2.1-3.38.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-3.38.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-3.38.1.x86_64.rpm openexr-2.2.1-3.38.1.src.rpm openexr-2.2.1-3.38.1.x86_64.rpm openexr-devel-2.2.1-3.38.1.x86_64.rpm openexr-doc-2.2.1-3.38.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-3.38.1.s390x.rpm libIlmImfUtil-2_2-23-2.2.1-3.38.1.s390x.rpm openexr-2.2.1-3.38.1.s390x.rpm openexr-devel-2.2.1-3.38.1.s390x.rpm openexr-doc-2.2.1-3.38.1.s390x.rpm libIlmImf-2_2-23-2.2.1-3.38.1.ppc64le.rpm libIlmImfUtil-2_2-23-2.2.1-3.38.1.ppc64le.rpm openexr-2.2.1-3.38.1.ppc64le.rpm openexr-devel-2.2.1-3.38.1.ppc64le.rpm openexr-doc-2.2.1-3.38.1.ppc64le.rpm libIlmImf-2_2-23-2.2.1-3.38.1.aarch64.rpm libIlmImfUtil-2_2-23-2.2.1-3.38.1.aarch64.rpm openexr-2.2.1-3.38.1.aarch64.rpm openexr-devel-2.2.1-3.38.1.aarch64.rpm openexr-doc-2.2.1-3.38.1.aarch64.rpm openSUSE-SLE-15.3-2021-3871 moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-cf-files fixes the following issues: - Resolves compatibility issue between binutils and imake (bsc#1192589) xorg-cf-files-1.0.6-3.3.1.noarch.rpm xorg-cf-files-1.0.6-3.3.1.src.rpm openSUSE-SLE-15.3-2021-3872 moderate SUSE Updates openSUSE-SLE 15.3 This update for cracklib fixes the following issues: - Enable build time tests (bsc#1191736) cracklib-2.9.7-11.6.1.src.rpm cracklib-2.9.7-11.6.1.x86_64.rpm cracklib-devel-2.9.7-11.6.1.x86_64.rpm cracklib-devel-32bit-2.9.7-11.6.1.x86_64.rpm cracklib-dict-small-2.9.7-11.6.1.x86_64.rpm libcrack2-2.9.7-11.6.1.x86_64.rpm libcrack2-32bit-2.9.7-11.6.1.x86_64.rpm cracklib-2.9.7-11.6.1.s390x.rpm cracklib-devel-2.9.7-11.6.1.s390x.rpm cracklib-dict-small-2.9.7-11.6.1.s390x.rpm libcrack2-2.9.7-11.6.1.s390x.rpm cracklib-2.9.7-11.6.1.ppc64le.rpm cracklib-devel-2.9.7-11.6.1.ppc64le.rpm cracklib-dict-small-2.9.7-11.6.1.ppc64le.rpm libcrack2-2.9.7-11.6.1.ppc64le.rpm cracklib-2.9.7-11.6.1.aarch64.rpm cracklib-devel-2.9.7-11.6.1.aarch64.rpm cracklib-dict-small-2.9.7-11.6.1.aarch64.rpm libcrack2-2.9.7-11.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3857 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-sqlparse fixes the following issues: - CVE-2021-32839: Fixed ReDoS via regular expression in StripComments filter (bsc#1190741). python-sqlparse-0.4.2-3.3.1.src.rpm python3-sqlparse-0.4.2-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3870 moderate SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: libzypp: - Check log writer before accessing it (bsc#1192337) - Zypper should keep cached files if transaction is aborted (bsc#1190356) - Require a minimum number of mirrors for multicurl (bsc#1191609) - Fixed slowdowns when rlimit is too high by using procfs to detect niumber of open file descriptors (bsc#1191324) - Fixed zypper incomplete messages when using non English localization (bsc#1191370) - RepoManager: Don't probe for plaindir repository if the URL schema is a plugin (bsc#1191286) - Disable logger in the child process after fork (bsc#1192436) zypper: - Fixed Zypper removing a kernel explicitely pinned that uses uname -r output format as name (openSUSE/zypper#418) libzypp-17.28.8-20.1.src.rpm True libzypp-17.28.8-20.1.x86_64.rpm True libzypp-devel-17.28.8-20.1.x86_64.rpm True libzypp-devel-doc-17.28.8-20.1.x86_64.rpm True zypper-1.14.50-21.1.src.rpm True zypper-1.14.50-21.1.x86_64.rpm True zypper-aptitude-1.14.50-21.1.noarch.rpm True zypper-log-1.14.50-21.1.noarch.rpm True zypper-needs-restarting-1.14.50-21.1.noarch.rpm True libzypp-17.28.8-20.1.s390x.rpm True libzypp-devel-17.28.8-20.1.s390x.rpm True libzypp-devel-doc-17.28.8-20.1.s390x.rpm True zypper-1.14.50-21.1.s390x.rpm True libzypp-17.28.8-20.1.ppc64le.rpm True libzypp-devel-17.28.8-20.1.ppc64le.rpm True libzypp-devel-doc-17.28.8-20.1.ppc64le.rpm True zypper-1.14.50-21.1.ppc64le.rpm True libzypp-17.28.8-20.1.aarch64.rpm True libzypp-devel-17.28.8-20.1.aarch64.rpm True libzypp-devel-doc-17.28.8-20.1.aarch64.rpm True zypper-1.14.50-21.1.aarch64.rpm True openSUSE-SLE-15.3-2022-122 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for zxing-cpp fixes the following issues: Update LibreOffice from version 7.1.4.2 to 7.2.3.2 (jsc#SLE-18214): - Fix UI scaling on HIDPI Wayland/KDE screens - Fix gtk popover usage on gtk 3.20 for SUSE Linux Enterprise 12 - Fix inteaction between multi-column shape text and automatic height. (bsc#1187982) - Fix interaction of transparent cell fill and transparent shadow. (bsc#1189813) - Use external `poppler` version 21.01.0 (jsc#SLE-18214) - Use external `CMIS` version 0.5.2 - Update external `boost` to version 1.75.0 - Update external `pdfium` to version 4500 - Update external `skia` to version `m90` - Do not use `qrcodegen-devel` but move to `zxing-cpp` (jsc#SLE-18214) - Keep upstream desktop file names (bsc#1183655) - Display math icon (bsc#1180479) - Source `profile.d/alljava.sh` from either `/etc` (if found) or `/usr/etc`. Provide `zxing-cpp` 1.2.0 as new LibreOffice dependency. (jsc#SLE-18214) - Do not build examples to avoid a cycle with `QT5Multimedia` - Use `cmake3-full` package instead of `cmake` on SUSE Linux Enterprise 12 - Do not build examples on SUSE Linux Enterprise 12 - Only build blackbox tests on openSUSE Tumbleweed - New `BarcodeFormat` - New ZXingQtCamReader demo app based on `QtMultimedia` and `QtQuick` - New QRCode reader, faster and better support for rotated symbols - Add `Structured Append` support for `DataMatrix`, `Aztec` and `MaxiCode` - Add `DMRE` support for `DataMatrix` - Switch to the reimplemented 1D detectors, about 5x faster - Faster and more capable `isPure` detection for all 2D codes - 20% faster `ReedSolomon` error correction. - `ReedSolomon` error detection code 2x speedup. - PDF417 is faster and supports flipped symbols - Reduced false positive rate for `UPC/EAN` barcodes and improved Add-On symbol handling - Fix country-code metadata decoding for UPC/EAN codes. - Proper ECI handling in all 2D barcodes - Add baselibs.conf - Many performance improvements for 1D readers - More meta-data exported when reading specific format - Improve DataMatrix encoder - Add interface to simplify basic usage - WASM API to support pixels array as input - `LuminanceSource` based API is now deprecated but still compiles. - New BarcodeFormats flag type to specify the set of barcodes to look for. - New simplified and consistent Python API - Slightly improved QRCode detection for rotated symbols. libZXing1-1.2.0-9.4.1.x86_64.rpm zxing-cpp-1.2.0-9.4.1.src.rpm zxing-cpp-devel-1.2.0-9.4.1.x86_64.rpm libZXing1-1.2.0-9.4.1.s390x.rpm zxing-cpp-devel-1.2.0-9.4.1.s390x.rpm libZXing1-1.2.0-9.4.1.ppc64le.rpm zxing-cpp-devel-1.2.0-9.4.1.ppc64le.rpm libZXing1-1.2.0-9.4.1.aarch64.rpm zxing-cpp-devel-1.2.0-9.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3801 important SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Update to version 9.3.0 - Support AHB-v3 - Support registration of BYOS instances against the update infrastructure - Properly extract the region for local zones in AWS to ensure instances get connected to the proper update servers - Azure addon service and executable rename - Support non SLE repos - Fix handling of regionservers configured with DNS names This update for regionServiceClientConfigEC2 fixes the following issues: - Update to version 3.1.0 (bsc#1029162) - Add IPv6 addresses to config - Include IPv6 certificates cloud-regionsrv-client-9.3.0-6.54.1.noarch.rpm cloud-regionsrv-client-9.3.0-6.54.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-6.54.1.noarch.rpm cloud-regionsrv-client-plugin-azure-1.0.1-6.54.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-6.54.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-6.54.1.noarch.rpm regionServiceClientConfigEC2-3.1.0-3.18.1.noarch.rpm regionServiceClientConfigEC2-3.1.0-3.18.1.src.rpm openSUSE-SLE-15.3-2021-3818 moderate SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Fix reading /sys/kernel/mm/page_idle/bitmap could cause hang up on reading offline pages (bsc#1192599) libekmfweb1-2.15.1-8.8.1.s390x.rpm libekmfweb1-devel-2.15.1-8.8.1.s390x.rpm osasnmpd-2.15.1-8.8.1.s390x.rpm s390-tools-2.15.1-8.8.1.s390x.rpm s390-tools-2.15.1-8.8.1.src.rpm s390-tools-hmcdrvfs-2.15.1-8.8.1.s390x.rpm s390-tools-zdsfs-2.15.1-8.8.1.s390x.rpm openSUSE-SLE-15.3-2021-4198 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for ssh-import-id provides the following feature: - Support importing public ssh keys from GitHub (jsc#SLE-20868, bsc#1154502) ssh-import-id-5.11-5.5.1.noarch.rpm ssh-import-id-5.11-5.5.1.src.rpm openSUSE-SLE-15.3-2021-3925 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: prometheus-blackbox_exporter: - Provide 'prometheus-blackbox_exporter' version 0.19.0 (jsc#SLE-22351) - Use '%set_permissions' and '%verify_permissions' for SUSE Linux Enterprise 12 (bsc#1191194) - Set 'CAP_NET_RAW' capability to allow ICMP requests grafana: - Add URL to package source code in the login page footer spacecmd: - Update translation strings spacewalk-client-tools: - Update translation strings zypp-plugin-spacewalk: - Use proxy configured in 'up2date' config when it is defined - Added RHEL8 build. spacecmd-4.2.14-3.71.1.noarch.rpm spacecmd-4.2.14-3.71.1.src.rpm openSUSE-SLE-15.3-2021-3786 important SUSE Updates openSUSE-SLE 15.3 This update for rpm-config-SUSE fixes the following issues: - Add support for the kernel xz-compressed firmware files (bsc#1192160) rpm-config-SUSE-1-5.6.1.noarch.rpm rpm-config-SUSE-1-5.6.1.src.rpm openSUSE-SLE-15.3-2021-3922 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Use 'dnfnotify' instead 'yumnotify' for relevant distributions - Remove 'wrong _parse_cpe_name' from 'grains.core' - dnfnotify pkgset plugin implementation - Add 'rpm_vercmp' python library support for version comparison - Prevent pkg plugins errors on missing cookie path (bsc#1186738) - Fix 'ip6_interface' grain to not leak secondary IPv4 aliases (bsc#1191412) - Make "salt-api" package to require 'python3-cherrypy' on RHEL systems - 'tar' is required by minion on 'transactional-update' system - Do not consider skipped targets as failed for 'ansible.playbooks' state (bsc#1190446) - Fix 'traceback.*_exc()' calls python3-salt-3002.2-53.4.1.x86_64.rpm True salt-3002.2-53.4.1.src.rpm True salt-3002.2-53.4.1.x86_64.rpm True salt-api-3002.2-53.4.1.x86_64.rpm True salt-bash-completion-3002.2-53.4.1.noarch.rpm True salt-cloud-3002.2-53.4.1.x86_64.rpm True salt-doc-3002.2-53.4.1.x86_64.rpm True salt-fish-completion-3002.2-53.4.1.noarch.rpm True salt-master-3002.2-53.4.1.x86_64.rpm True salt-minion-3002.2-53.4.1.x86_64.rpm True salt-proxy-3002.2-53.4.1.x86_64.rpm True salt-ssh-3002.2-53.4.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-53.4.1.x86_64.rpm True salt-syndic-3002.2-53.4.1.x86_64.rpm True salt-transactional-update-3002.2-53.4.1.x86_64.rpm True salt-zsh-completion-3002.2-53.4.1.noarch.rpm True python3-salt-3002.2-53.4.1.s390x.rpm True salt-3002.2-53.4.1.s390x.rpm True salt-api-3002.2-53.4.1.s390x.rpm True salt-cloud-3002.2-53.4.1.s390x.rpm True salt-doc-3002.2-53.4.1.s390x.rpm True salt-master-3002.2-53.4.1.s390x.rpm True salt-minion-3002.2-53.4.1.s390x.rpm True salt-proxy-3002.2-53.4.1.s390x.rpm True salt-ssh-3002.2-53.4.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-53.4.1.s390x.rpm True salt-syndic-3002.2-53.4.1.s390x.rpm True salt-transactional-update-3002.2-53.4.1.s390x.rpm True python3-salt-3002.2-53.4.1.ppc64le.rpm True salt-3002.2-53.4.1.ppc64le.rpm True salt-api-3002.2-53.4.1.ppc64le.rpm True salt-cloud-3002.2-53.4.1.ppc64le.rpm True salt-doc-3002.2-53.4.1.ppc64le.rpm True salt-master-3002.2-53.4.1.ppc64le.rpm True salt-minion-3002.2-53.4.1.ppc64le.rpm True salt-proxy-3002.2-53.4.1.ppc64le.rpm True salt-ssh-3002.2-53.4.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-53.4.1.ppc64le.rpm True salt-syndic-3002.2-53.4.1.ppc64le.rpm True salt-transactional-update-3002.2-53.4.1.ppc64le.rpm True python3-salt-3002.2-53.4.1.aarch64.rpm True salt-3002.2-53.4.1.aarch64.rpm True salt-api-3002.2-53.4.1.aarch64.rpm True salt-cloud-3002.2-53.4.1.aarch64.rpm True salt-doc-3002.2-53.4.1.aarch64.rpm True salt-master-3002.2-53.4.1.aarch64.rpm True salt-minion-3002.2-53.4.1.aarch64.rpm True salt-proxy-3002.2-53.4.1.aarch64.rpm True salt-ssh-3002.2-53.4.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-53.4.1.aarch64.rpm True salt-syndic-3002.2-53.4.1.aarch64.rpm True salt-transactional-update-3002.2-53.4.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3949 moderate SUSE Updates openSUSE-SLE 15.3 This update for clamav fixes the following issues: - Update to 0.103.4 (bsc#1192346). - Update to 0.103.3 (bsc#1188284). clamav-0.103.4-3.32.1.src.rpm clamav-0.103.4-3.32.1.x86_64.rpm clamav-devel-0.103.4-3.32.1.x86_64.rpm libclamav9-0.103.4-3.32.1.x86_64.rpm libfreshclam2-0.103.4-3.32.1.x86_64.rpm clamav-0.103.4-3.32.1.s390x.rpm clamav-devel-0.103.4-3.32.1.s390x.rpm libclamav9-0.103.4-3.32.1.s390x.rpm libfreshclam2-0.103.4-3.32.1.s390x.rpm clamav-0.103.4-3.32.1.ppc64le.rpm clamav-devel-0.103.4-3.32.1.ppc64le.rpm libclamav9-0.103.4-3.32.1.ppc64le.rpm libfreshclam2-0.103.4-3.32.1.ppc64le.rpm clamav-0.103.4-3.32.1.aarch64.rpm clamav-devel-0.103.4-3.32.1.aarch64.rpm libclamav9-0.103.4-3.32.1.aarch64.rpm libfreshclam2-0.103.4-3.32.1.aarch64.rpm openSUSE-SLE-15.3-2021-3770 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: Update to version OpenJDK 8u312 (October 2021 CPU): - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906). java-1_8_0-openjdk-1.8.0.312-3.58.2.src.rpm java-1_8_0-openjdk-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.312-3.58.2.noarch.rpm java-1_8_0-openjdk-src-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-src-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-1.8.0.312-3.58.2.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.58.2.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.58.2.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.58.2.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.58.2.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.312-3.58.2.aarch64.rpm openSUSE-SLE-15.3-2021-3946 moderate SUSE Updates openSUSE-SLE 15.3 This update for gmp fixes the following issues: - CVE-2021-43618: Fixed buffer overflow via crafted input in mpz/inp_raw.c (bsc#1192717). gmp-6.1.2-4.9.1.src.rpm gmp-devel-32bit-6.1.2-4.9.1.x86_64.rpm gmp-devel-6.1.2-4.9.1.x86_64.rpm libgmp10-32bit-6.1.2-4.9.1.x86_64.rpm libgmp10-6.1.2-4.9.1.x86_64.rpm libgmpxx4-32bit-6.1.2-4.9.1.x86_64.rpm libgmpxx4-6.1.2-4.9.1.x86_64.rpm gmp-devel-6.1.2-4.9.1.s390x.rpm libgmp10-6.1.2-4.9.1.s390x.rpm libgmpxx4-6.1.2-4.9.1.s390x.rpm gmp-devel-6.1.2-4.9.1.ppc64le.rpm libgmp10-6.1.2-4.9.1.ppc64le.rpm libgmpxx4-6.1.2-4.9.1.ppc64le.rpm gmp-devel-6.1.2-4.9.1.aarch64.rpm libgmp10-6.1.2-4.9.1.aarch64.rpm libgmpxx4-6.1.2-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-4104 moderate SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - CVE-2021-3426: Fixed information disclosure via pydoc (bsc#1183374). - CVE-2021-3733: Fixed infinitely reading potential HTTP headers after a 100 Continue status response from the server (bsc#1189241). - CVE-2021-3737: Fixed ReDoS in urllib.request (bsc#1189287). - We do not require python-rpm-macros package (bsc#1180125). - Use versioned python-Sphinx to avoid dependency on other version of Python (bsc#1183858). - Stop providing "python" symbol, which means python2 currently (bsc#1185588). - Modify Lib/ensurepip/__init__.py to contain the same version numbers as are in reality the ones in the bundled wheels (bsc#1187668). libpython3_6m1_0-3.6.15-10.9.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.15-10.9.1.x86_64.rpm python3-3.6.15-10.9.1.src.rpm python3-3.6.15-10.9.1.x86_64.rpm python3-base-3.6.15-10.9.1.x86_64.rpm python3-core-3.6.15-10.9.1.src.rpm python3-curses-3.6.15-10.9.1.x86_64.rpm python3-dbm-3.6.15-10.9.1.x86_64.rpm python3-devel-3.6.15-10.9.1.x86_64.rpm python3-doc-3.6.15-10.9.1.x86_64.rpm python3-doc-devhelp-3.6.15-10.9.1.x86_64.rpm python3-documentation-3.6.15-10.9.1.src.rpm python3-idle-3.6.15-10.9.1.x86_64.rpm python3-testsuite-3.6.15-10.9.1.x86_64.rpm python3-tk-3.6.15-10.9.1.x86_64.rpm python3-tools-3.6.15-10.9.1.x86_64.rpm libpython3_6m1_0-3.6.15-10.9.1.s390x.rpm python3-3.6.15-10.9.1.s390x.rpm python3-base-3.6.15-10.9.1.s390x.rpm python3-curses-3.6.15-10.9.1.s390x.rpm python3-dbm-3.6.15-10.9.1.s390x.rpm python3-devel-3.6.15-10.9.1.s390x.rpm python3-doc-3.6.15-10.9.1.s390x.rpm python3-doc-devhelp-3.6.15-10.9.1.s390x.rpm python3-idle-3.6.15-10.9.1.s390x.rpm python3-testsuite-3.6.15-10.9.1.s390x.rpm python3-tk-3.6.15-10.9.1.s390x.rpm python3-tools-3.6.15-10.9.1.s390x.rpm libpython3_6m1_0-3.6.15-10.9.1.ppc64le.rpm python3-3.6.15-10.9.1.ppc64le.rpm python3-base-3.6.15-10.9.1.ppc64le.rpm python3-curses-3.6.15-10.9.1.ppc64le.rpm python3-dbm-3.6.15-10.9.1.ppc64le.rpm python3-devel-3.6.15-10.9.1.ppc64le.rpm python3-doc-3.6.15-10.9.1.ppc64le.rpm python3-doc-devhelp-3.6.15-10.9.1.ppc64le.rpm python3-idle-3.6.15-10.9.1.ppc64le.rpm python3-testsuite-3.6.15-10.9.1.ppc64le.rpm python3-tk-3.6.15-10.9.1.ppc64le.rpm python3-tools-3.6.15-10.9.1.ppc64le.rpm libpython3_6m1_0-3.6.15-10.9.1.aarch64.rpm python3-3.6.15-10.9.1.aarch64.rpm python3-base-3.6.15-10.9.1.aarch64.rpm python3-curses-3.6.15-10.9.1.aarch64.rpm python3-dbm-3.6.15-10.9.1.aarch64.rpm python3-devel-3.6.15-10.9.1.aarch64.rpm python3-doc-3.6.15-10.9.1.aarch64.rpm python3-doc-devhelp-3.6.15-10.9.1.aarch64.rpm python3-idle-3.6.15-10.9.1.aarch64.rpm python3-testsuite-3.6.15-10.9.1.aarch64.rpm python3-tk-3.6.15-10.9.1.aarch64.rpm python3-tools-3.6.15-10.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3917 low SUSE Updates openSUSE-SLE 15.3 This update for grafana fixes the following issue: - Add URL to package source code in the login page footer. grafana-7.5.7-3.15.1.src.rpm grafana-7.5.7-3.15.1.x86_64.rpm grafana-7.5.7-3.15.1.s390x.rpm grafana-7.5.7-3.15.1.ppc64le.rpm grafana-7.5.7-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-3883 moderate SUSE Updates openSUSE-SLE 15.3 This update for timezone fixes the following issues: Update timezone to 2021e (bsc#1177460) - Palestine will fall back 10-29 (not 10-30) at 01:00 - Fiji suspends DST for the 2021/2022 season - 'zic -r' marks unspecified timestamps with "-00" - Fix a bug in 'zic -b fat' that caused old timestamps to be mishandled in 32-bit-only readers - Refresh timezone info for china timezone-2021e-75.4.1.src.rpm timezone-2021e-75.4.1.x86_64.rpm timezone-java-2021e-3.50.1.noarch.rpm timezone-java-2021e-3.50.1.src.rpm timezone-2021e-75.4.1.s390x.rpm timezone-2021e-75.4.1.ppc64le.rpm timezone-2021e-75.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3963 moderate SUSE Updates openSUSE-SLE 15.3 This update for system-users fixes the following issues: - system-user-tss.conf: Removed group entry because it's not needed and contained syntax errors (bsc#1190401) system-group-hardware-20170617-17.3.1.noarch.rpm system-group-kvm-20170617-17.3.1.noarch.rpm system-group-libvirt-20170617-17.3.1.noarch.rpm system-group-obsolete-20170617-17.3.1.noarch.rpm system-group-wheel-20170617-17.3.1.noarch.rpm system-user-bin-20170617-17.3.1.noarch.rpm system-user-daemon-20170617-17.3.1.noarch.rpm system-user-ftp-20170617-17.3.1.noarch.rpm system-user-games-20170617-17.3.1.noarch.rpm system-user-lp-20170617-17.3.1.noarch.rpm system-user-mail-20170617-17.3.1.noarch.rpm system-user-man-20170617-17.3.1.noarch.rpm system-user-news-20170617-17.3.1.noarch.rpm system-user-nobody-20170617-17.3.1.noarch.rpm system-user-qemu-20170617-17.3.1.noarch.rpm system-user-tftp-20170617-17.3.1.noarch.rpm system-user-tss-20170617-17.3.1.noarch.rpm system-user-upsd-20170617-17.3.1.noarch.rpm system-user-uucp-20170617-17.3.1.noarch.rpm system-user-uuidd-20170617-17.3.1.noarch.rpm system-user-wwwrun-20170617-17.3.1.noarch.rpm system-users-20170617-17.3.1.src.rpm openSUSE-SLE-15.3-2021-3868 moderate SUSE Updates openSUSE-SLE 15.3 This update for acct fixes the following issues: - Migrate pacct log file to new location when upgrading from SLE12 (bsc#1188159) acct-6.6.4-4.3.1.src.rpm acct-6.6.4-4.3.1.x86_64.rpm acct-6.6.4-4.3.1.s390x.rpm acct-6.6.4-4.3.1.ppc64le.rpm acct-6.6.4-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-868 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for tcl and tk fixes the following issues: Update tcl and tk to version 8.6.12 (jsc#SLE-21016, jsc#SLE-23284): - Move tcl.macros to /usr/lib/rpm/macros.d (bsc#1185662) - Use FAT LTO objects in order to provide proper static library (bsc#1138797) - Fix a bug in itcl that was affecting iwidgets (bsc#903017) - Add [combobox current] support "end" index - Add fixes in [text] bindings - Add missing "deferred clear code" support to GIF photo images - Add new virtual event <<TkWorldChanged>> - Add new keycodes: CodeInput, SingleCandidate, MultipleCandidate, PreviousCandidate - Add new support for POSIX error: EILSEQ - Add new command [tcl::unsupported::corotype] - Add new command [tcl::unsupported::timerate] for performance testing - Add new option -state to [ttk::scale] - Add portable keycodes: OE, oe, Ydiaeresis - Add support for backrefs in [array names -regexp] - Add support for Unicode 14 - Disfavor Master/Slave terminology - Enhance [oo::object] to acquire or lose a class identity dynamically - Fix canvas rotated text overlap detection - Fix canvas closed polylines yo fully honor -joinstyle - Fix display of Long non-wrapped lines in text - Fix display treeview focus ring when -selectmode none - Fix focus events not to break entry validation - Fix [package prefer stable] failing case - Fix auto_path initialization by Safe Base interps - Fix bad interaction between grab and mouse pointer warp - Fix borderwidth calculations on menu items - Fix cascade tearoff menu redraw artifacts - Fix coords rounding when drawing canvas items - Fix corrupt result from [$c postscript] with -file or -channel - Fix errno management in socket full close - Fix failure when a [proc] argument name is computed, not literal - Fix focus on unmapped windows - Fix handling of duplicates in spinbox -values list - Fix incomplete read of multi-image GIF - Fix initialization order of static package in wish - Fix issue when trying to display angled text without Xft - Fix issue with font initialization when no font is installed - Fix problems with Noto Color Emoji font - Fix race conditions in [file delete] and [file mkdir] - Fix Std channel initialization for multi-thread operations - Fix tearoff menu redraw artifacts - Fix up arrow key in [text] to correctly move cursor to index 1.0 - Fix various cursor issues - Fix various encoding issues - Fix various fontchooser issues - Fix various issues causing crashes and hang in - Fix various memory issues - Fix various scrolling bugs and add improvements - Fix 32/64-bit confusion of FS DIR operations reported for AIX - Improve appearance of text selection in [*entry] widgets - Improve checkbutton handling of -selectcolor - Improve handling of resolution changes - Improve multi-thread safety when Xft is in use - Improve ttk high-contrast-mode support - Improve emoji support - Improve legacy support for [tk_setPalette] - Make combobox -postoffset option work with default style - Make spinbox use proper names in query of option database - Menu flaws when empty menubar clicked - New index argument in [$menubutton post x y index] - Preserve canvas tag list order during add/delete - Prevent cross-manager loops of geom management - Rewrite of zlib inflation for multi-stream and completeness - Run fileevents in proper thread after [thread::attach $channel] - Stop [unload] corruption of list of loaded packages - Stop app switching exposing withdrawn windows as zombies - Tk now denied access to PRIMARY selection from safe interps - TkpDrawAngledCharsInContext leaked a CGColor - Try to restore Tcl's [update] command when Tk is unloaded - Changed [info * methods] to include mixins - [package require] is now NR-enabled The following fixes might show some potential incompatibilities with existing software: - Revised [binary (en|de)code base64] for RFC compliance and roundtrip - Tcl_DStringAppendElement # quoting precision, dstring-2.13, dstring-3.10 - Extended [clock scan] ISO format and time zone support - Allow for select/copy from disabled text widget on all platforms - Revised case of [info loaded] module names - [info hostname] reports DNS name, not NetBIOS name - Force -eofchar \032 when evaluating library scripts - Revised error messages: "too few" => "not enough" - Performed rewrite of Tk event loop to prevent ring overflow - Refactored all MouseWheel bindings - Revised precision of ::scale widget tick mark values - Prevent transient window cycles (crashed on Aqua) - Builds no longer use -lieee - Quoting of command line arguments by [exec] on Windows revised. Prior quoting rules left holes where some values would not pass through, but could trigger substitutions or program execution. See https://core.tcl-lang.org/tcl/info/21b0629c81 - [lreplace] accepts all out-of-range index values tcl-32bit-8.6.12-150300.14.3.1.x86_64.rpm tcl-8.6.12-150300.14.3.1.src.rpm tcl-8.6.12-150300.14.3.1.x86_64.rpm tcl-devel-8.6.12-150300.14.3.1.x86_64.rpm tk-32bit-8.6.12-150300.10.3.1.x86_64.rpm tk-8.6.12-150300.10.3.1.src.rpm tk-8.6.12-150300.10.3.1.x86_64.rpm tk-devel-8.6.12-150300.10.3.1.x86_64.rpm tcl-8.6.12-150300.14.3.1.s390x.rpm tcl-devel-8.6.12-150300.14.3.1.s390x.rpm tk-8.6.12-150300.10.3.1.s390x.rpm tk-devel-8.6.12-150300.10.3.1.s390x.rpm tcl-8.6.12-150300.14.3.1.ppc64le.rpm tcl-devel-8.6.12-150300.14.3.1.ppc64le.rpm tk-8.6.12-150300.10.3.1.ppc64le.rpm tk-devel-8.6.12-150300.10.3.1.ppc64le.rpm tcl-8.6.12-150300.14.3.1.aarch64.rpm tcl-devel-8.6.12-150300.14.3.1.aarch64.rpm tk-8.6.12-150300.10.3.1.aarch64.rpm tk-devel-8.6.12-150300.10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3936 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust1.55 fixes the following issues: - Implement rust version 1.55.0 on SLE 15 SP3. (jsc#SLE-19210) - Add BuildRequire: 'llvm12-devel' on Tumbleweed. (bsc#1192067) - Change 'llvm_bundling' to be required on 'x86_64', 'aarch64' and 'ppc64le' on 15.3, too. Otherwise cargo segfaults when building MozillaFirefox-93.0. - Swap to internal 'libgit' due to issue in current platform 'libgit2'. - Remove un-needed compiler docs. - Remove conflicting shell completions. - Remove developer tools in favour of rustup. cargo-1.55.0-21.9.1.x86_64.rpm cargo1.55-1.55.0-7.3.1.x86_64.rpm rust-1.55.0-21.9.1.src.rpm rust-1.55.0-21.9.1.x86_64.rpm rust1.55-1.55.0-7.3.1.src.rpm rust1.55-1.55.0-7.3.1.x86_64.rpm cargo-1.55.0-21.9.1.s390x.rpm cargo1.55-1.55.0-7.3.1.s390x.rpm rust-1.55.0-21.9.1.s390x.rpm rust1.55-1.55.0-7.3.1.s390x.rpm cargo-1.55.0-21.9.1.ppc64le.rpm cargo1.55-1.55.0-7.3.1.ppc64le.rpm rust-1.55.0-21.9.1.ppc64le.rpm rust1.55-1.55.0-7.3.1.ppc64le.rpm cargo-1.55.0-21.9.1.aarch64.rpm cargo1.55-1.55.0-7.3.1.aarch64.rpm rust-1.55.0-21.9.1.aarch64.rpm rust1.55-1.55.0-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3924 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for golang-github-prometheus-alertmanager fixes the following issue: Provide version 0.21.0 of golang-github-prometheus-alertmanager (jsc#SLE-21859) - Exclude s390 architecture - Remove systemd and shadow hard requirements - Use the system user provided by the 'system-user-prometheus' subpackge - Add 'prometheus-alertmanager' package alias - Fix building amtool (bsc#1176943) - Fix permissions for '/var/lib/prometheus' to match 'golang-github-prometheus-prometheus' package and avoid installation checks failures - Remove HipChat integration as it is end-of-life. - Remove default assignment of environment variables. - Enforce 512KB event size limit. - Add cluster command to show cluster and peer statuses. - Add redirection from '/' to the routes prefix when it isn't empty. - Add 'max_alerts' option to limit the number of alerts included in the payload. - Improve logs for API v2, notifications and clustering. - Fix child routes not inheriting their parent route's grouping when 'group_by: [...]'. - Fix the receiver selector in the Alerts page when the receiver name contains regular expression metacharacters such as '+'. - Fix error message about start and end time validation. - Fix a potential race condition in dispatcher. - Return an empty array of peers when the clustering is disabled. - Fix the registration of 'alertmanager_dispatcher_aggregation_groups' and 'alertmanager_dispatcher_alert_processing_duration_seconds' metrics. - Always retry notifications with back-off. - Update to build with go1.14 - Refresh example config from upstream - Add 'network-online' (Wants and After) dependency to systemd unit (bsc#1143913) golang-github-prometheus-alertmanager-0.21.0-4.4.1.src.rpm golang-github-prometheus-alertmanager-0.21.0-4.4.1.x86_64.rpm golang-github-prometheus-alertmanager-0.21.0-4.4.1.s390x.rpm golang-github-prometheus-alertmanager-0.21.0-4.4.1.ppc64le.rpm golang-github-prometheus-alertmanager-0.21.0-4.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3968 moderate SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363). - CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557). - CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559). - CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554). - Update to Xen 4.14.3 bug fix release (bsc#1027519). xen-4.14.3_04-3.15.1.src.rpm True xen-4.14.3_04-3.15.1.x86_64.rpm True xen-devel-4.14.3_04-3.15.1.x86_64.rpm True xen-doc-html-4.14.3_04-3.15.1.x86_64.rpm True xen-libs-32bit-4.14.3_04-3.15.1.x86_64.rpm True xen-libs-4.14.3_04-3.15.1.x86_64.rpm True xen-tools-4.14.3_04-3.15.1.x86_64.rpm True xen-tools-domU-4.14.3_04-3.15.1.x86_64.rpm True xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch.rpm True xen-4.14.3_04-3.15.1.aarch64.rpm True xen-devel-4.14.3_04-3.15.1.aarch64.rpm True xen-doc-html-4.14.3_04-3.15.1.aarch64.rpm True xen-libs-4.14.3_04-3.15.1.aarch64.rpm True xen-tools-4.14.3_04-3.15.1.aarch64.rpm True xen-tools-domU-4.14.3_04-3.15.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3817 important SUSE Updates openSUSE-SLE 15.3 This update for saptune fixes the following issues: - Fix the scheduler settings for multi path devices and suppress missleading warning messages regarding vendor and model information during block device detection (bsc#1192460) - Fix override of custom solutions (bsc#1192062) - Fix Cloud Notes marked as manually reverted after update from saptune2 to saptune3 (bsc#1192053) - saptune_check: degraded system is no longer considered an error (bsc#1192272) - Log missing model and vendor information to the saptune log file (bsc#1190509) saptune-3.0.1-8.19.1.src.rpm saptune-3.0.1-8.19.1.x86_64.rpm saptune-3.0.1-8.19.1.ppc64le.rpm openSUSE-SLE-15.3-2021-3866 moderate SUSE Updates openSUSE-SLE 15.3 This update for rsync fixes the following issues: - Fixed an error when using the external compression library where files larger that 1GB would not be transferred completely and failing (bsc#1190828) rsync-3.1.3-4.10.1.src.rpm rsync-3.1.3-4.10.1.x86_64.rpm rsync-3.1.3-4.10.1.s390x.rpm rsync-3.1.3-4.10.1.ppc64le.rpm rsync-3.1.3-4.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-4018 moderate SUSE Updates openSUSE-SLE 15.3 This update for fetchmail fixes the following issues: - CVE-2021-36386: Fixed DoS or information disclosure in some configurations (bsc#1188875). - CVE-2021-39272: Fixed STARTTLS session encryption bypassing (fetchmail-SA-2021-02) (bsc#1190069). - Update to 6.4.22 (bsc#1152964, jsc#SLE-18159, jsc#SLE-17903, jsc#SLE-18059) - Remove all python2 dependencies (bsc#1190896). - De-hardcode /usr/lib path for launch executable (bsc#1174075). - Added hardening to systemd service(s) (bsc#1181400). fetchmail-6.4.22-20.20.1.src.rpm fetchmail-6.4.22-20.20.1.x86_64.rpm fetchmailconf-6.4.22-20.20.1.x86_64.rpm fetchmail-6.4.22-20.20.1.s390x.rpm fetchmailconf-6.4.22-20.20.1.s390x.rpm fetchmail-6.4.22-20.20.1.ppc64le.rpm fetchmailconf-6.4.22-20.20.1.ppc64le.rpm fetchmail-6.4.22-20.20.1.aarch64.rpm fetchmailconf-6.4.22-20.20.1.aarch64.rpm openSUSE-SLE-15.3-2021-3938 moderate SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: - Update to Wireshark 3.4.10: - CVE-2021-39920: IPPUSB dissector crash (bsc#1192830). - CVE-2021-39921: Modbus dissector crash (bsc#1192830). - CVE-2021-39922: C12.22 dissector crash (bsc#1192830). - CVE-2021-39924: Bluetooth DHT dissector large loop (bsc#1192830). - CVE-2021-39925: Bluetooth SDP dissector crash (bsc#1192830). - CVE-2021-39926: Bluetooth HCI_ISO dissector crash (bsc#1192830). - CVE-2021-39928: IEEE 802.11 dissector crash (bsc#1192830). - CVE-2021-39929: Bluetooth DHT dissector crash (bsc#1192830). libwireshark14-3.4.10-3.62.1.x86_64.rpm libwiretap11-3.4.10-3.62.1.x86_64.rpm libwsutil12-3.4.10-3.62.1.x86_64.rpm wireshark-3.4.10-3.62.1.src.rpm wireshark-3.4.10-3.62.1.x86_64.rpm wireshark-devel-3.4.10-3.62.1.x86_64.rpm wireshark-ui-qt-3.4.10-3.62.1.x86_64.rpm libwireshark14-3.4.10-3.62.1.s390x.rpm libwiretap11-3.4.10-3.62.1.s390x.rpm libwsutil12-3.4.10-3.62.1.s390x.rpm wireshark-3.4.10-3.62.1.s390x.rpm wireshark-devel-3.4.10-3.62.1.s390x.rpm wireshark-ui-qt-3.4.10-3.62.1.s390x.rpm libwireshark14-3.4.10-3.62.1.ppc64le.rpm libwiretap11-3.4.10-3.62.1.ppc64le.rpm libwsutil12-3.4.10-3.62.1.ppc64le.rpm wireshark-3.4.10-3.62.1.ppc64le.rpm wireshark-devel-3.4.10-3.62.1.ppc64le.rpm wireshark-ui-qt-3.4.10-3.62.1.ppc64le.rpm libwireshark14-3.4.10-3.62.1.aarch64.rpm libwiretap11-3.4.10-3.62.1.aarch64.rpm libwsutil12-3.4.10-3.62.1.aarch64.rpm wireshark-3.4.10-3.62.1.aarch64.rpm wireshark-devel-3.4.10-3.62.1.aarch64.rpm wireshark-ui-qt-3.4.10-3.62.1.aarch64.rpm openSUSE-SLE-15.3-2021-3893 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issue: - Fix: ui_resource: Parse node and lifetime correctly (bsc#1192618) crmsh-4.3.1+20211119.97feb471-5.71.1.noarch.rpm crmsh-4.3.1+20211119.97feb471-5.71.1.src.rpm crmsh-scripts-4.3.1+20211119.97feb471-5.71.1.noarch.rpm crmsh-test-4.3.1+20211119.97feb471-5.71.1.noarch.rpm openSUSE-SLE-15.3-2021-3838 important SUSE Updates openSUSE-SLE 15.3 This update for ruby2.5 fixes the following issues: - CVE-2021-31799: Fixed Command injection vulnerability in RDoc (bsc#1190375). - CVE-2021-31810: Fixed trusting FTP PASV responses vulnerability in Net:FTP (bsc#1188161). - CVE-2021-32066: Fixed StartTLS stripping vulnerability in Net:IMAP (bsc#1188160). libruby2_5-2_5-2.5.9-4.20.1.x86_64.rpm ruby2.5-2.5.9-4.20.1.src.rpm ruby2.5-2.5.9-4.20.1.x86_64.rpm ruby2.5-devel-2.5.9-4.20.1.x86_64.rpm ruby2.5-devel-extra-2.5.9-4.20.1.x86_64.rpm ruby2.5-doc-2.5.9-4.20.1.x86_64.rpm ruby2.5-doc-ri-2.5.9-4.20.1.noarch.rpm ruby2.5-stdlib-2.5.9-4.20.1.x86_64.rpm libruby2_5-2_5-2.5.9-4.20.1.s390x.rpm ruby2.5-2.5.9-4.20.1.s390x.rpm ruby2.5-devel-2.5.9-4.20.1.s390x.rpm ruby2.5-devel-extra-2.5.9-4.20.1.s390x.rpm ruby2.5-doc-2.5.9-4.20.1.s390x.rpm ruby2.5-stdlib-2.5.9-4.20.1.s390x.rpm libruby2_5-2_5-2.5.9-4.20.1.ppc64le.rpm ruby2.5-2.5.9-4.20.1.ppc64le.rpm ruby2.5-devel-2.5.9-4.20.1.ppc64le.rpm ruby2.5-devel-extra-2.5.9-4.20.1.ppc64le.rpm ruby2.5-doc-2.5.9-4.20.1.ppc64le.rpm ruby2.5-stdlib-2.5.9-4.20.1.ppc64le.rpm libruby2_5-2_5-2.5.9-4.20.1.aarch64.rpm ruby2.5-2.5.9-4.20.1.aarch64.rpm ruby2.5-devel-2.5.9-4.20.1.aarch64.rpm ruby2.5-devel-extra-2.5.9-4.20.1.aarch64.rpm ruby2.5-doc-2.5.9-4.20.1.aarch64.rpm ruby2.5-stdlib-2.5.9-4.20.1.aarch64.rpm openSUSE-SLE-15.3-2021-3941 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573) You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0) - CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045 ). - CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781). - CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790) - CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961). The following non-security bugs were fixed: - ABI: sysfs-kernel-slab: Document some stats (git-fixes). - ALSA: hda: fix general protection fault in azx_runtime_idle (git-fixes). - ALSA: hda: Free card instance properly at probe errors (git-fixes). - ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes). - ALSA: usb-audio: Add minimal-mute notion in dB mapping table (bsc#1192375). - ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes). - ALSA: usb-audio: Fix dB level of Bose Revolve+ SoundLink (bsc#1192375). - ALSA: usb-audio: Use int for dB map values (bsc#1192375). - ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (bsc#1192473). - auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes). - auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes). - auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes). - bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573) - bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22574) - bpf: Disallow unprivileged bpf by default (jsc#SLE-22573). - bpf: Disallow unprivileged bpf by default (jsc#SLE-22574). - bpf: Fix BPF_JIT kconfig symbol dependency (git-fixes jsc#SLE-22574). - bpf: Fix potential race in tail call compatibility check (git-fixes). - bpf, kconfig: Add consolidated menu entry for bpf with core options (jsc#SLE-22574). - btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896). - btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896). - btrfs: fix memory ordering between normal and ordered work functions (git-fixes). - btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896). - cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes). - config: disable unprivileged BPF by default (jsc#SLE-22573) Backport of mainline commit 8a03e56b253e ("bpf: Disallow unprivileged bpf by default") only changes kconfig default, used e.g. for "make oldconfig" when the config option is missing, but does not update our kernel configs used for build. Update also these to make sure unprivileged BPF is really disabled by default. - crypto: caam - disable pkc for non-E SoCs (git-fixes). - crypto: qat - detect PFVF collision after ACK (git-fixes). - crypto: qat - disregard spurious PFVF interrupts (git-fixes). - drm/i915: Introduce intel_hpd_hotplug_irqs() (bsc#1192758). - drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802). - EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489). - Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then. - exfat: fix erroneous discard when clear cluster bit (git-fixes). - exfat: handle wrong stream entry size in exfat_readdir() (git-fixes). - exfat: properly set s_time_gran (bsc#1192328). - exfat: truncate atimes to 2s granularity (bsc#1192328). - Fix problem with missing installkernel on Tumbleweed. - fuse: fix page stealing (bsc#1192718). - gpio: mpc8xxx: Use 'devm_gpiochip_add_data()' to simplify the code and avoid a leak (git-fixes). - gpio/rockchip: add driver for rockchip gpio (bsc#1192217). - gpio/rockchip: drop irq_gc_lock/irq_gc_unlock for irq set type (bsc#1192217). - gpio/rockchip: extended debounce support is only available on v2 (bsc#1192217). - gpio/rockchip: fetch deferred output settings on probe (bsc#1192217). - gpio/rockchip: fix get_direction value handling (bsc#1192217). - gpio/rockchip: support next version gpio controller (bsc#1192217). - gpio/rockchip: use struct rockchip_gpio_regs for gpio controller (bsc#1192217). - HID: u2fzero: clarify error check and length calculations (git-fixes). - HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes). - ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510). - ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629). - ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629). - iio: dac: ad5446: Fix ad5622_write() return value (git-fixes). - Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918). - kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740). - mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906). - Move upstreamed sound fix into sorted section - net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes). - net: mscc: ocelot: fix hardware timestamp dequeue logic. - net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes). - net/smc: Correct smc link connection counter in case of smc client (git-fixes). - net/smc: fix 'workqueue leaked lock' in smc_conn_abort_work (git-fixes). - ocfs2: do not zero pages beyond i_size (bsc#1190795). - ocfs2: fix data corruption on truncate (bsc#1190795). - PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes). - PCI: aardvark: Do not spam about PIO Response Status (git-fixes). - PCI: aardvark: Do not unmask unused interrupts (git-fixes). - PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes). - PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes). - PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes). - PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes). - PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263). - PCI/ACPI: Clarify message about _OSC failure (bsc#1169263). - PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263). - PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263). - PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263). - PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263). - PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes). - PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes). - pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes). - pinctrl: pinctrl-rockchip: Fix a bunch of kerneldoc misdemeanours (bsc#1192217). - pinctrl/rockchip: add a queue for deferred pin output settings on probe (bsc#1192217). - pinctrl/rockchip: add pinctrl device to gpio bank struct (bsc#1192217). - pinctrl: rockchip: add rk3308 SoC support (bsc#1192217). - pinctrl: rockchip: add support for rk3568 (bsc#1192217). - pinctrl/rockchip: always enable clock for gpio controller (bsc#1192217). - pinctrl: rockchip: clear int status when driver probed (bsc#1192217). - pinctrl: rockchip: create irq mapping in gpio_to_irq (bsc#1192217). - pinctrl: rockchip: do coding style for mux route struct (bsc#1192217). - pinctrl/rockchip: drop the gpio related codes (bsc#1192217). - pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq (bsc#1192217). - pinctrl: rockchip: make driver be tristate module (bsc#1192217). - pinctrl: rockchip: Replace HTTP links with HTTPS ones (bsc#1192217). - pinctrl: rockchip: return ENOMEM instead of EINVAL if allocation fails (bsc#1192217). - pinctrl/rockchip: separate struct rockchip_pin_bank to a head file (bsc#1192217). - power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes). - power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes). - power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes). - power: supply: rt5033-battery: Change voltage values to 5V (git-fixes). - printk/console: Allow to disable console output by using console="" or console=null (bsc#1192753). - printk: handle blank console arguments passed in (bsc#1192753). - qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802). - r8152: add a helper function about setting EEE (git-fixes). - r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes). - r8152: Disable PLA MCU clock speed down (git-fixes). - r8152: disable U2P3 for RTL8153B (git-fixes). - r8152: divide the tx and rx bottom functions (git-fixes). - r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes). - r8152: fix runtime resume for linking change (git-fixes). - r8152: replace array with linking list for rx information (git-fixes). - r8152: reset flow control patch when linking on for RTL8153B (git-fixes). - r8152: saving the settings of EEE (git-fixes). - r8152: separate the rx buffer size (git-fixes). - r8152: use alloc_pages for rx buffer (git-fixes). - random: fix crash on multiple early calls to add_bootloader_randomness() (bsc#1184924) - Revert "ibmvnic: check failover_pending in login response" (bsc#1190523 ltc#194510). - Revert "platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes" (git-fixes). - Revert "r8152: adjust the settings about MAC clock speed down for RTL8153" (git-fixes). - Revert "scsi: ufs: fix a missing check of devm_reset_control_get" (git-fixes). - Revert "x86/kvm: fix vcpu-id indexed array sizes" (git-fixes). - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes). - s390/dasd: fix use after free in dasd path handling (git-fixes). - s390/pci: fix use after free of zpci_dev (git-fixes). - s390/pci: fix zpci_zdev_put() on reserve (git-fixes). - s390/qeth: fix deadlock during failing recovery (git-fixes). - s390/qeth: Fix deadlock in remove_discipline (git-fixes). - s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes). - s390/topology: clear thread/group maps for offline cpus (git-fixes). - scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes). - scsi: BusLogic: Fix missing pr_cont() use (git-fixes). - scsi: core: Fix spelling in a source code comment (git-fixes). - scsi: csiostor: Add module softdep on cxgb4 (git-fixes). - scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes). - scsi: dc395: Fix error case unwinding (git-fixes). - scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes). - scsi: FlashPoint: Rename si_flags field (git-fixes). - scsi: iscsi: Fix iface sysfs attr detection (git-fixes). - scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes). - scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes). - scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes). - scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes). - scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes). - scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes). - scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes). - scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes). - scsi: snic: Fix an error message (git-fixes). - scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes). - scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes). - serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes). - serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes). - staging: r8712u: fix control-message timeout (git-fixes). - staging: rtl8192u: fix control-message timeouts (git-fixes). - stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes). - tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745). - Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set - Update config files: pull BPF configs together - usb: gadget: hid: fix error code in do_config() (git-fixes). - USB: iowarrior: fix control-message timeouts (git-fixes). - usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes). - usb: musb: Balance list entry in musb_gadget_queue (git-fixes). - USB: serial: keyspan: fix memleak on probe errors (git-fixes). - video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes). - x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489). - x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes). - xen-pciback: Fix return in pm_ctrl_init() (git-fixes). - xen: Fix implicit type conversion (git-fixes). cluster-md-kmp-default-5.3.18-59.37.2.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True dlm-kmp-default-5.3.18-59.37.2.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True gfs2-kmp-default-5.3.18-59.37.2.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True kernel-debug-5.3.18-59.37.2.nosrc.rpm True kernel-debug-5.3.18-59.37.2.x86_64.rpm True kernel-debug-devel-5.3.18-59.37.2.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64.rpm True kernel-default-5.3.18-59.37.2.nosrc.rpm True kernel-default-5.3.18-59.37.2.x86_64.rpm True kernel-default-base-5.3.18-59.37.2.18.23.3.src.rpm True kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64.rpm True kernel-default-devel-5.3.18-59.37.2.x86_64.rpm True kernel-default-extra-5.3.18-59.37.2.x86_64.rpm True kernel-default-livepatch-5.3.18-59.37.2.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64.rpm True kernel-default-optional-5.3.18-59.37.2.x86_64.rpm True kernel-devel-5.3.18-59.37.2.noarch.rpm True kernel-docs-5.3.18-59.37.2.noarch.rpm True kernel-docs-5.3.18-59.37.2.nosrc.rpm True kernel-docs-html-5.3.18-59.37.2.noarch.rpm True kernel-kvmsmall-5.3.18-59.37.2.nosrc.rpm True kernel-kvmsmall-5.3.18-59.37.2.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64.rpm True kernel-macros-5.3.18-59.37.2.noarch.rpm True kernel-obs-build-5.3.18-59.37.3.src.rpm True kernel-obs-build-5.3.18-59.37.3.x86_64.rpm True kernel-obs-qa-5.3.18-59.37.1.src.rpm True kernel-obs-qa-5.3.18-59.37.1.x86_64.rpm True kernel-preempt-5.3.18-59.37.2.nosrc.rpm True kernel-preempt-5.3.18-59.37.2.x86_64.rpm True kernel-preempt-devel-5.3.18-59.37.2.x86_64.rpm True kernel-preempt-extra-5.3.18-59.37.2.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64.rpm True kernel-preempt-optional-5.3.18-59.37.2.x86_64.rpm True kernel-source-5.3.18-59.37.2.noarch.rpm True kernel-source-5.3.18-59.37.2.src.rpm True kernel-source-vanilla-5.3.18-59.37.2.noarch.rpm True kernel-syms-5.3.18-59.37.1.src.rpm True kernel-syms-5.3.18-59.37.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.37.2.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.37.2.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.37.2.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.37.2.s390x.rpm True dlm-kmp-default-5.3.18-59.37.2.s390x.rpm True gfs2-kmp-default-5.3.18-59.37.2.s390x.rpm True kernel-default-5.3.18-59.37.2.s390x.rpm True kernel-default-base-5.3.18-59.37.2.18.23.3.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x.rpm True kernel-default-devel-5.3.18-59.37.2.s390x.rpm True kernel-default-extra-5.3.18-59.37.2.s390x.rpm True kernel-default-livepatch-5.3.18-59.37.2.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.37.2.s390x.rpm True kernel-default-optional-5.3.18-59.37.2.s390x.rpm True kernel-obs-build-5.3.18-59.37.3.s390x.rpm True kernel-obs-qa-5.3.18-59.37.1.s390x.rpm True kernel-syms-5.3.18-59.37.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.37.2.nosrc.rpm True kernel-zfcpdump-5.3.18-59.37.2.s390x.rpm True kselftests-kmp-default-5.3.18-59.37.2.s390x.rpm True ocfs2-kmp-default-5.3.18-59.37.2.s390x.rpm True reiserfs-kmp-default-5.3.18-59.37.2.s390x.rpm True cluster-md-kmp-default-5.3.18-59.37.2.ppc64le.rpm True dlm-kmp-default-5.3.18-59.37.2.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.37.2.ppc64le.rpm True kernel-debug-5.3.18-59.37.2.ppc64le.rpm True kernel-debug-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-default-5.3.18-59.37.2.ppc64le.rpm True kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le.rpm True kernel-default-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-default-extra-5.3.18-59.37.2.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.37.2.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-default-optional-5.3.18-59.37.2.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.37.2.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-obs-build-5.3.18-59.37.3.ppc64le.rpm True kernel-obs-qa-5.3.18-59.37.1.ppc64le.rpm True kernel-syms-5.3.18-59.37.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.37.2.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.37.2.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.37.2.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.37.2.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True dlm-kmp-default-5.3.18-59.37.2.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True dtb-aarch64-5.3.18-59.37.1.src.rpm True dtb-al-5.3.18-59.37.1.aarch64.rpm True dtb-allwinner-5.3.18-59.37.1.aarch64.rpm True dtb-altera-5.3.18-59.37.1.aarch64.rpm True dtb-amd-5.3.18-59.37.1.aarch64.rpm True dtb-amlogic-5.3.18-59.37.1.aarch64.rpm True dtb-apm-5.3.18-59.37.1.aarch64.rpm True dtb-arm-5.3.18-59.37.1.aarch64.rpm True dtb-broadcom-5.3.18-59.37.1.aarch64.rpm True dtb-cavium-5.3.18-59.37.1.aarch64.rpm True dtb-exynos-5.3.18-59.37.1.aarch64.rpm True dtb-freescale-5.3.18-59.37.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.37.1.aarch64.rpm True dtb-lg-5.3.18-59.37.1.aarch64.rpm True dtb-marvell-5.3.18-59.37.1.aarch64.rpm True dtb-mediatek-5.3.18-59.37.1.aarch64.rpm True dtb-nvidia-5.3.18-59.37.1.aarch64.rpm True dtb-qcom-5.3.18-59.37.1.aarch64.rpm True dtb-renesas-5.3.18-59.37.1.aarch64.rpm True dtb-rockchip-5.3.18-59.37.1.aarch64.rpm True dtb-socionext-5.3.18-59.37.1.aarch64.rpm True dtb-sprd-5.3.18-59.37.1.aarch64.rpm True dtb-xilinx-5.3.18-59.37.1.aarch64.rpm True dtb-zte-5.3.18-59.37.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True gfs2-kmp-default-5.3.18-59.37.2.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True kernel-64kb-5.3.18-59.37.2.aarch64.rpm True kernel-64kb-5.3.18-59.37.2.nosrc.rpm True kernel-64kb-devel-5.3.18-59.37.2.aarch64.rpm True kernel-64kb-extra-5.3.18-59.37.2.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64.rpm True kernel-64kb-optional-5.3.18-59.37.2.aarch64.rpm True kernel-default-5.3.18-59.37.2.aarch64.rpm True kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64.rpm True kernel-default-devel-5.3.18-59.37.2.aarch64.rpm True kernel-default-extra-5.3.18-59.37.2.aarch64.rpm True kernel-default-livepatch-5.3.18-59.37.2.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64.rpm True kernel-default-optional-5.3.18-59.37.2.aarch64.rpm True kernel-obs-build-5.3.18-59.37.3.aarch64.rpm True kernel-obs-qa-5.3.18-59.37.1.aarch64.rpm True kernel-preempt-5.3.18-59.37.2.aarch64.rpm True kernel-preempt-devel-5.3.18-59.37.2.aarch64.rpm True kernel-preempt-extra-5.3.18-59.37.2.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64.rpm True kernel-preempt-optional-5.3.18-59.37.2.aarch64.rpm True kernel-syms-5.3.18-59.37.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True kselftests-kmp-default-5.3.18-59.37.2.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.37.2.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.37.2.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True openSUSE-SLE-15.3-2021-3874 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - CVE-2021-30846: Fixed memory corruption issue that could lead to arbitrary code execution when processing maliciously crafted web content (bsc#1192063). - CVE-2021-30851: Fixed memory corruption vulnerability that could lead to arbitrary code execution when processing maliciously crafted web content (bsc#1192063). libjavascriptcoregtk-4_0-18-2.34.1-18.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.34.1-18.1.x86_64.rpm libwebkit2gtk-4_0-37-2.34.1-18.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.34.1-18.1.x86_64.rpm libwebkit2gtk3-lang-2.34.1-18.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.34.1-18.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.34.1-18.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.1-18.1.x86_64.rpm webkit-jsc-4-2.34.1-18.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.34.1-18.1.x86_64.rpm webkit2gtk3-2.34.1-18.1.src.rpm webkit2gtk3-devel-2.34.1-18.1.x86_64.rpm webkit2gtk3-minibrowser-2.34.1-18.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.34.1-18.1.s390x.rpm libwebkit2gtk-4_0-37-2.34.1-18.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.34.1-18.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.34.1-18.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.1-18.1.s390x.rpm webkit-jsc-4-2.34.1-18.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.34.1-18.1.s390x.rpm webkit2gtk3-devel-2.34.1-18.1.s390x.rpm webkit2gtk3-minibrowser-2.34.1-18.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.34.1-18.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.34.1-18.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.34.1-18.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.34.1-18.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.1-18.1.ppc64le.rpm webkit-jsc-4-2.34.1-18.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.34.1-18.1.ppc64le.rpm webkit2gtk3-devel-2.34.1-18.1.ppc64le.rpm webkit2gtk3-minibrowser-2.34.1-18.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.34.1-18.1.aarch64.rpm libwebkit2gtk-4_0-37-2.34.1-18.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.34.1-18.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.34.1-18.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.1-18.1.aarch64.rpm webkit-jsc-4-2.34.1-18.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.34.1-18.1.aarch64.rpm webkit2gtk3-devel-2.34.1-18.1.aarch64.rpm webkit2gtk3-minibrowser-2.34.1-18.1.aarch64.rpm openSUSE-SLE-15.3-2022-91 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: Apache2 was updated to the current stable version 2.4.51 (jsc#SLE-22733 jsc#SLE-22849) It fixes all CVEs and selected bugs represented by patches found between 2.4.23 and 2.4.51. See https://downloads.apache.org/httpd/CHANGES_2.4 for a complete change log. Also fixed: - CVE-2021-44224: Fixed NULL dereference or SSRF in forward proxy configurations (bsc#1193943) - CVE-2021-44790: Fixed buffer overflow when parsing multipart content in mod_lua (bsc#1193942) apache2-2.4.51-3.37.1.src.rpm apache2-2.4.51-3.37.1.x86_64.rpm apache2-devel-2.4.51-3.37.1.x86_64.rpm apache2-doc-2.4.51-3.37.1.noarch.rpm apache2-event-2.4.51-3.37.1.x86_64.rpm apache2-example-pages-2.4.51-3.37.1.x86_64.rpm apache2-prefork-2.4.51-3.37.1.x86_64.rpm apache2-utils-2.4.51-3.37.1.x86_64.rpm apache2-worker-2.4.51-3.37.1.x86_64.rpm apache2-2.4.51-3.37.1.s390x.rpm apache2-devel-2.4.51-3.37.1.s390x.rpm apache2-event-2.4.51-3.37.1.s390x.rpm apache2-example-pages-2.4.51-3.37.1.s390x.rpm apache2-prefork-2.4.51-3.37.1.s390x.rpm apache2-utils-2.4.51-3.37.1.s390x.rpm apache2-worker-2.4.51-3.37.1.s390x.rpm apache2-2.4.51-3.37.1.ppc64le.rpm apache2-devel-2.4.51-3.37.1.ppc64le.rpm apache2-event-2.4.51-3.37.1.ppc64le.rpm apache2-example-pages-2.4.51-3.37.1.ppc64le.rpm apache2-prefork-2.4.51-3.37.1.ppc64le.rpm apache2-utils-2.4.51-3.37.1.ppc64le.rpm apache2-worker-2.4.51-3.37.1.ppc64le.rpm apache2-2.4.51-3.37.1.aarch64.rpm apache2-devel-2.4.51-3.37.1.aarch64.rpm apache2-event-2.4.51-3.37.1.aarch64.rpm apache2-example-pages-2.4.51-3.37.1.aarch64.rpm apache2-prefork-2.4.51-3.37.1.aarch64.rpm apache2-utils-2.4.51-3.37.1.aarch64.rpm apache2-worker-2.4.51-3.37.1.aarch64.rpm openSUSE-SLE-15.3-2021-3891 moderate SUSE Updates openSUSE-SLE 15.3 This update for keyutils fixes the following issues: - Add /etc/keys/ and /usr/etc/keys/ directory (bsc#1187654) keyutils was updated to 1.6.3 (jsc#SLE-20016): * Revert the change notifications that were using /dev/watch_queue. * Apply the change notifications that use pipe2(O_NOTIFICATION_PIPE). * Allow "keyctl supports" to retrieve raw capability data. * Allow "keyctl id" to turn a symbolic key ID into a numeric ID. * Allow "keyctl new_session" to name the keyring. * Allow "keyctl add/padd/etc." to take hex-encoded data. * Add "keyctl watch*" to expose kernel change notifications on keys. * Add caps for namespacing and notifications. * Set a default TTL on keys that upcall for name resolution. * Explicitly clear memory after it's held sensitive information. * Various manual page fixes. * Fix C++-related errors. * Add support for keyctl_move(). * Add support for keyctl_capabilities(). * Make key=val list optional for various public-key ops. * Fix system call signature for KEYCTL_PKEY_QUERY. * Fix 'keyctl pkey_query' argument passing. * Use keyctl_read_alloc() in dump_key_tree_aux(). * Various manual page fixes. Updated to 1.6: * Apply various specfile cleanups from Fedora. * request-key: Provide a command line option to suppress helper execution. * request-key: Find least-wildcard match rather than first match. * Remove the dependency on MIT Kerberos. * Fix some error messages * keyctl_dh_compute.3: Suggest /proc/crypto for list of available hashes. * Fix doc and comment typos. * Add public key ops for encrypt, decrypt, sign and verify (needs linux-4.20). * Add pkg-config support for finding libkeyutils. * upstream isn't offering PGP signatures for the source tarballs anymore Updated to 1.5.11 (bsc#1113013) * Add keyring restriction support. * Add KDF support to the Diffie-Helman function. * DNS: Add support for AFS config files and SRV records keyutils-1.6.3-5.6.1.src.rpm keyutils-1.6.3-5.6.1.x86_64.rpm keyutils-devel-1.6.3-5.6.1.x86_64.rpm keyutils-devel-32bit-1.6.3-5.6.1.x86_64.rpm libkeyutils1-1.6.3-5.6.1.x86_64.rpm libkeyutils1-32bit-1.6.3-5.6.1.x86_64.rpm keyutils-1.6.3-5.6.1.s390x.rpm keyutils-devel-1.6.3-5.6.1.s390x.rpm libkeyutils1-1.6.3-5.6.1.s390x.rpm keyutils-1.6.3-5.6.1.ppc64le.rpm keyutils-devel-1.6.3-5.6.1.ppc64le.rpm libkeyutils1-1.6.3-5.6.1.ppc64le.rpm keyutils-1.6.3-5.6.1.aarch64.rpm keyutils-devel-1.6.3-5.6.1.aarch64.rpm libkeyutils1-1.6.3-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3974 moderate SUSE Updates openSUSE-SLE 15.3 This update for crash fixes the following issues: - Fix module loading (bsc#1190743) crash-7.2.9-23.8.1.src.rpm crash-7.2.9-23.8.1.x86_64.rpm crash-devel-7.2.9-23.8.1.x86_64.rpm crash-doc-7.2.9-23.8.1.x86_64.rpm crash-eppic-7.2.9-23.8.1.x86_64.rpm crash-gcore-7.2.9-23.8.1.x86_64.rpm crash-kmp-default-7.2.9_k5.3.18_59.34-23.8.1.x86_64.rpm crash-kmp-preempt-7.2.9_k5.3.18_59.34-23.8.1.x86_64.rpm crash-7.2.9-23.8.1.s390x.rpm crash-devel-7.2.9-23.8.1.s390x.rpm crash-doc-7.2.9-23.8.1.s390x.rpm crash-eppic-7.2.9-23.8.1.s390x.rpm crash-kmp-default-7.2.9_k5.3.18_59.34-23.8.1.s390x.rpm crash-7.2.9-23.8.1.ppc64le.rpm crash-devel-7.2.9-23.8.1.ppc64le.rpm crash-doc-7.2.9-23.8.1.ppc64le.rpm crash-eppic-7.2.9-23.8.1.ppc64le.rpm crash-kmp-default-7.2.9_k5.3.18_59.34-23.8.1.ppc64le.rpm crash-7.2.9-23.8.1.aarch64.rpm crash-devel-7.2.9-23.8.1.aarch64.rpm crash-doc-7.2.9-23.8.1.aarch64.rpm crash-eppic-7.2.9-23.8.1.aarch64.rpm crash-kmp-64kb-7.2.9_k5.3.18_59.34-23.8.1.aarch64.rpm crash-kmp-default-7.2.9_k5.3.18_59.34-23.8.1.aarch64.rpm crash-kmp-preempt-7.2.9_k5.3.18_59.34-23.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3806 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel for Azure was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573) You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0) - CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045). - CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781). - CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790) - CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961). - CVE-2021-43389: There was an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958). - CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601). The following non-security bugs were fixed: - ABI: sysfs-kernel-slab: Document some stats (git-fixes). - ALSA: hda: fix general protection fault in azx_runtime_idle (git-fixes). - ALSA: hda: Free card instance properly at probe errors (git-fixes). - ALSA: hda/realtek: Fix mic mute LED for the HP Spectre x360 14 (git-fixes). - ALSA: hda: Reduce udelay() at SKL+ position reporting (git-fixes). - ALSA: hda: Use position buffer for SKL+ again (git-fixes). - ALSA: ua101: fix division by zero at probe (git-fixes). - ALSA: uapi: Fix a C++ style comment in asound.h (git-fixes). - ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes). - ALSA: usb-audio: Add minimal-mute notion in dB mapping table (bsc#1192375). - ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes). - ALSA: usb-audio: Fix dB level of Bose Revolve+ SoundLink (bsc#1192375). - ALSA: usb-audio: Use int for dB map values (bsc#1192375). - ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (bsc#1192473). - ASoC: cs42l42: Correct some register default values (git-fixes). - ASoC: cs42l42: Defer probe if request_threaded_irq() returns EPROBE_DEFER (git-fixes). - ASoC: cs42l42: Do not set defaults for volatile registers (git-fixes). - ASoC: dt-bindings: cs42l42: Correct description of ts-inv (git-fixes). - ASoC: mediatek: mt8195: Remove unsued irqs_lock (git-fixes). - ASoC: rockchip: Use generic dmaengine code (git-fixes). - ASoC: SOF: topology: do not power down primary core during topology removal (git-fixes). - ASoC: topology: Fix stub for snd_soc_tplg_component_remove() (git-fixes). - ata: sata_mv: Fix the error handling of mv_chip_id() (git-fixes). - ath10k: fix control-message timeout (git-fixes). - ath10k: fix division by zero in send path (git-fixes). - ath10k: fix max antenna gain unit (git-fixes). - ath10k: Fix missing frame timestamp for beacon/probe-resp (git-fixes). - ath10k: sdio: Add missing BH locking around napi_schdule() (git-fixes). - ath6kl: fix control-message timeout (git-fixes). - ath6kl: fix division by zero in send path (git-fixes). - ath9k: Fix potential interrupt storm on queue reset (git-fixes). - auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes). - auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes). - auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes). - b43: fix a lower bounds test (git-fixes). - b43legacy: fix a lower bounds test (git-fixes). - blacklist.conf: 5c9d706f6133 ("bpf: Fix BPF_LSM kconfig symbol dependency") Not needed since 30897832d8b9 ("bpf: Allow local storage to be used from LSM programs") is not backported. - Bluetooth: btmtkuart: fix a memleak in mtk_hci_wmt_sync (git-fixes). - Bluetooth: fix init and cleanup of sco_conn.timeout_work (git-fixes). - bnxt_en: Fix TX timeout when TX ring size is set to the smallest (git-fixes). - bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573) - bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22574) - bpf: Disallow unprivileged bpf by default (jsc#SLE-22573). - bpf: Disallow unprivileged bpf by default (jsc#SLE-22574). - bpf: Fix BPF_JIT kconfig symbol dependency (git-fixes jsc#SLE-22574). - bpf: Fix potential race in tail call compatibility check (git-fixes). - bpf, kconfig: Add consolidated menu entry for bpf with core options (jsc#SLE-22574). - btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896). - btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896). - btrfs: fix memory ordering between normal and ordered work functions (git-fixes). - btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896). - cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes). - config: disable unprivileged BPF by default (jsc#SLE-22573) - crypto: caam - disable pkc for non-E SoCs (git-fixes). - crypto: qat - detect PFVF collision after ACK (git-fixes). - crypto: qat - disregard spurious PFVF interrupts (git-fixes). - driver core: add a min_align_mask field to struct device_dma_parameters (bsc#1191851). - drm/amdgpu/display: add quirk handling for stutter mode (git-fixes). - drm/amdgpu: fix warning for overflow check (git-fixes). - drm/amdgpu/gmc6: fix DMA mask from 44 to 40 bits (git-fixes). - drm/i915: Introduce intel_hpd_hotplug_irqs() (bsc#1192758). - drm/msm: Fix potential NULL dereference in DPU SSPP (git-fixes). - drm/msm: potential error pointer dereference in init() (git-fixes). - drm/msm: uninitialized variable in msm_gem_import() (git-fixes). - drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802). - drm/sun4i: Fix macros in sun8i_csc.h (git-fixes). - drm/ttm: stop calling tt_swapin in vm_access (git-fixes). - drm/v3d: fix wait for TMU write combiner flush (git-fixes). - EDAC/amd64: Set proper family type for Family 19h Models 20h-2Fh (bsc#1192288). - EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489). - Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then. - exfat: fix erroneous discard when clear cluster bit (git-fixes). - exfat: handle wrong stream entry size in exfat_readdir() (git-fixes). - exfat: properly set s_time_gran (bsc#1192328). - exfat: truncate atimes to 2s granularity (bsc#1192328). - firmware/psci: fix application of sizeof to pointer (git-fixes). - ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267). - fuse: fix page stealing (bsc#1192718). - genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP (bsc#1152489). - gpio: mpc8xxx: Use 'devm_gpiochip_add_data()' to simplify the code and avoid a leak (git-fixes). - gpio/rockchip: add driver for rockchip gpio (bsc#1192217). - gpio/rockchip: drop irq_gc_lock/irq_gc_unlock for irq set type (bsc#1192217). - gpio/rockchip: extended debounce support is only available on v2 (bsc#1192217). - gpio/rockchip: fetch deferred output settings on probe (bsc#1192217). - gpio/rockchip: fix get_direction value handling (bsc#1192217). - gpio/rockchip: support next version gpio controller (bsc#1192217). - gpio/rockchip: use struct rockchip_gpio_regs for gpio controller (bsc#1192217). - gve: Avoid freeing NULL pointer (git-fixes). - gve: Correct available tx qpl check (git-fixes). - gve: fix gve_get_stats() (git-fixes). - gve: Properly handle errors in gve_assign_qpl (bsc#1176940). - gve: report 64bit tx_bytes counter from gve_handle_report_stats() (bsc#1176940). - HID: u2fzero: clarify error check and length calculations (git-fixes). - HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes). - hwmon: Fix possible memleak in __hwmon_device_register() (git-fixes). - hwmon: (pmbus/lm25066) Add offset coefficients (git-fixes). - hwmon: (pmbus/lm25066) Let compiler determine outer dimension of lm25066_coeff (git-fixes). - hwrng: mtk - Force runtime pm ops for sleep ops (git-fixes). - i40e: Fix ATR queue selection (git-fixes). - i40e: fix endless loop under rtnl (git-fixes). - i40e: Fix freeing of uninitialized misc IRQ vector (git-fixes). - iavf: fix double unlock of crit_lock (git-fixes). - ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510). - ibmvnic: delay complete() (bsc#1094840 ltc#167098 git-fixes). - ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629). - ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629). - ice: Add missing E810 device ids (jsc#SLE-7966 bsc#1157177). - iio: dac: ad5446: Fix ad5622_write() return value (git-fixes). - Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918). - Input: i8042 - Add quirk for Fujitsu Lifebook T725 (bsc#1191980). - ionic: do not remove netdev->dev_addr when syncing uc list (bsc#1167773). - iwlwifi: mvm: fix some kerneldoc issues (git-fixes). - ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes). - kABI: Fix kABI after 36950f2da1ea (bsc#1191851). - kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740). - KVM: s390: extend kvm_s390_shadow_fault to return entry pointer (bsc#1133021). - KVM: s390: index kvm->arch.idle_mask by vcpu_idx (bsc#1133021). - KVM: s390: split kvm_s390_logical_to_effective (bsc#1133021). - KVM: s390: VSIE: correctly handle MVPG when in VSIE (bsc#1133021). - libertas: Fix possible memory leak in probe and disconnect (git-fixes). - libertas_tf: Fix possible memory leak in probe and disconnect (git-fixes). - media: cedrus: Fix SUNXI tile size calculation (git-fixes). - media: cx23885: Fix snd_card_free call on null card pointer (git-fixes). - media: cxd2880-spi: Fix a null pointer dereference on error handling path (git-fixes). - media: dvb-frontends: mn88443x: Handle errors of clk_prepare_enable() (git-fixes). - media: dvb-usb: fix ununit-value in az6027_rc_query (git-fixes). - media: em28xx: add missing em28xx_close_extension (git-fixes). - media: em28xx: Do not use ops->suspend if it is NULL (git-fixes). - media: i2c: ths8200 needs V4L2_ASYNC (git-fixes). - media: ite-cir: IR receiver stop working after receive overflow (git-fixes). - media: mtk-vpu: Fix a resource leak in the error handling path of 'mtk_vpu_probe()' (git-fixes). - media: mxl111sf: change mutex_init() location (git-fixes). - media: radio-wl1273: Avoid card name truncation (git-fixes). - media: si470x: Avoid card name truncation (git-fixes). - media: staging/intel-ipu3: css: Fix wrong size comparison imgu_css_fw_init (git-fixes). - media: TDA1997x: handle short reads of hdmi info frame (git-fixes). - media: tm6000: Avoid card name truncation (git-fixes). - media: v4l2-ioctl: Fix check_ext_ctrls (git-fixes). - media: v4l2-ioctl: S_CTRL output the right value (git-fixes). - memory: fsl_ifc: fix leak of irq and nand_irq in fsl_ifc_ctrl_probe (git-fixes). - memstick: avoid out-of-range warning (git-fixes). - memstick: jmb38x_ms: use appropriate free function in jmb38x_ms_alloc_host() (git-fixes). - mlx5: count all link events (git-fixes). - mlxsw: thermal: Fix out-of-bounds memory accesses (git-fixes). - mmc: mxs-mmc: disable regulator on error and in the remove function (git-fixes). - mmc: sdhci: Map more voltage level to SDHCI_POWER_330 (git-fixes). - mmc: sdhci-omap: Fix NULL pointer exception if regulator is not configured (git-fixes). - mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906). - Move upstreamed sound fix into sorted section - mt76: mt7615: fix endianness warning in mt7615_mac_write_txwi (git-fixes). - mt76: mt76x02: fix endianness warnings in mt76x02_mac.c (git-fixes). - mt76: mt7915: fix muar_idx in mt7915_mcu_alloc_sta_req() (git-fixes). - mt76: mt7915: fix possible infinite loop release semaphore (git-fixes). - mt76: mt7915: fix sta_rec_wtbl tag len (git-fixes). - mwifiex: fix division by zero in fw download path (git-fixes). - mwifiex: Send DELBA requests according to spec (git-fixes). - net/af_unix: fix a data-race in unix_dgram_poll (bsc#1154353). - net: bridge: use nla_total_size_64bit() in br_get_linkxstats_size() (git-fixes). - net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes). - net: hns3: fix vf reset workqueue cannot exit (bsc#1154353). - net/mlx4_en: Do not allow aRFS for encapsulated packets (git-fixes). - net/mlx4_en: Resolve bad operstate value (git-fixes). - net/mlx5e: Mutually exclude RX-FCS and RX-port-timestamp (git-fixes). - net/mlx5: Fix unpublish devlink parameters (jsc#SLE-8464). - net/mlx5: FWTrace, cancel work on alloc pd error flow (git-fixes). - net: mscc: ocelot: fix hardware timestamp dequeue logic. - net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes). - net/smc: Correct smc link connection counter in case of smc client (git-fixes). - net/smc: fix 'workqueue leaked lock' in smc_conn_abort_work (git-fixes). - nvme-pci: set min_align_mask (bsc#1191851). - ocfs2: do not zero pages beyond i_size (bsc#1190795). - ocfs2: fix data corruption on truncate (bsc#1190795). - PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes). - PCI: aardvark: Do not spam about PIO Response Status (git-fixes). - PCI: aardvark: Do not unmask unused interrupts (git-fixes). - PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes). - PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes). - PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes). - PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes). - PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263). - PCI/ACPI: Clarify message about _OSC failure (bsc#1169263). - PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263). - PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263). - PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263). - PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263). - PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes). - PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes). - pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes). - pinctrl: pinctrl-rockchip: Fix a bunch of kerneldoc misdemeanours (bsc#1192217). - pinctrl/rockchip: add a queue for deferred pin output settings on probe (bsc#1192217). - pinctrl/rockchip: add pinctrl device to gpio bank struct (bsc#1192217). - pinctrl: rockchip: add rk3308 SoC support (bsc#1192217). - pinctrl: rockchip: add support for rk3568 (bsc#1192217). - pinctrl/rockchip: always enable clock for gpio controller (bsc#1192217). - pinctrl: rockchip: clear int status when driver probed (bsc#1192217). - pinctrl: rockchip: create irq mapping in gpio_to_irq (bsc#1192217). - pinctrl: rockchip: do coding style for mux route struct (bsc#1192217). - pinctrl/rockchip: drop the gpio related codes (bsc#1192217). - pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq (bsc#1192217). - pinctrl: rockchip: make driver be tristate module (bsc#1192217). - pinctrl: rockchip: Replace HTTP links with HTTPS ones (bsc#1192217). - pinctrl: rockchip: return ENOMEM instead of EINVAL if allocation fails (bsc#1192217). - pinctrl/rockchip: separate struct rockchip_pin_bank to a head file (bsc#1192217). - platform/x86: thinkpad_acpi: Fix bitwise vs. logical warning (git-fixes). - PM: sleep: Do not let "syscore" devices runtime-suspend during system transitions (git-fixes). - power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes). - power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes). - power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes). - printk/console: Allow to disable console output by using console="" or console=null (bsc#1192753). - printk: handle blank console arguments passed in (bsc#1192753). - qed: Fix missing error code in qed_slowpath_start() (git-fixes). - qed: Handle management FW error (git-fixes). - qed: rdma - do not wait for resources under hw error recovery flow (git-fixes). - qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802). - r8152: add a helper function about setting EEE (git-fixes). - r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes). - r8152: Disable PLA MCU clock speed down (git-fixes). - r8152: disable U2P3 for RTL8153B (git-fixes). - r8152: divide the tx and rx bottom functions (git-fixes). - r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes). - r8152: fix runtime resume for linking change (git-fixes). - r8152: replace array with linking list for rx information (git-fixes). - r8152: reset flow control patch when linking on for RTL8153B (git-fixes). - r8152: saving the settings of EEE (git-fixes). - r8152: separate the rx buffer size (git-fixes). - r8152: use alloc_pages for rx buffer (git-fixes). - random: fix crash on multiple early calls to add_bootloader_randomness() (bsc#1184924) - README.BRANCH: Add Oscar Salvador as SLE15-SP3 maintainer - regulator: dt-bindings: samsung,s5m8767: correct s5m8767,pmic-buck-default-dvs-idx property (git-fixes). - regulator: s5m8767: do not use reset value as DVS voltage if GPIO DVS is disabled (git-fixes). - Revert "ibmvnic: check failover_pending in login response" (bsc#1190523 ltc#194510). - Revert "platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes" (git-fixes). - Revert "r8152: adjust the settings about MAC clock speed down for RTL8153" (git-fixes). - Revert "scsi: ufs: fix a missing check of devm_reset_control_get" (git-fixes). - Revert "x86/kvm: fix vcpu-id indexed array sizes" (git-fixes). - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes). - rsi: fix control-message timeout (git-fixes). - rsi: Fix module dev_oper_mode parameter description (git-fixes). - rsi: stop thread firstly in rsi_91x_init() error handling (git-fixes). - rtl8187: fix control-message timeouts (git-fixes). - s390/dasd: fix use after free in dasd path handling (git-fixes). - s390/pci: fix use after free of zpci_dev (git-fixes). - s390/pci: fix zpci_zdev_put() on reserve (git-fixes). - s390/qeth: fix deadlock during failing recovery (git-fixes). - s390/qeth: Fix deadlock in remove_discipline (git-fixes). - s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes). - s390/topology: clear thread/group maps for offline cpus (git-fixes). - scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes). - scsi: BusLogic: Fix missing pr_cont() use (git-fixes). - scsi: core: Fix spelling in a source code comment (git-fixes). - scsi: csiostor: Add module softdep on cxgb4 (git-fixes). - scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes). - scsi: dc395: Fix error case unwinding (git-fixes). - scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes). - scsi: FlashPoint: Rename si_flags field (git-fixes). - scsi: iscsi: Fix iface sysfs attr detection (git-fixes). - scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes). - scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes). - scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes). - scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes). - scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes). - scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes). - scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes). - scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes). - scsi: snic: Fix an error message (git-fixes). - scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes). - scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes). - serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes). - serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes). - staging: r8712u: fix control-message timeout (git-fixes). - staging: rtl8192u: fix control-message timeouts (git-fixes). - stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes). - swiotlb: add a IO_TLB_SIZE define (bsc#1191851). - swiotlb: clean up swiotlb_tbl_unmap_single (bsc#1191851). - swiotlb: do not modify orig_addr in swiotlb_tbl_sync_single (bsc#1191851). - swiotlb: factor out an io_tlb_offset helper (bsc#1191851). - swiotlb: factor out a nr_slots helper (bsc#1191851). - swiotlb: refactor swiotlb_tbl_map_single (bsc#1191851). - swiotlb: respect min_align_mask (bsc#1191851). - swiotlb: Split size parameter to map/unmap APIs (bsc#1191851). - tpm: Check for integer overflow in tpm2_map_response_body() (git-fixes). - tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745). - Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set - Update patches.suse/NFS-Do-uncached-readdir-when-we-re-seeking-a-cookie-.patch (bsc#1191628 bsc#1192549). dir_cookie is a pointer to the cookie in older kernels, not the cookie itself. - Update patch reference for AMDGPU fix (bsc#1180749) - usb: gadget: hid: fix error code in do_config() (git-fixes). - USB: iowarrior: fix control-message timeouts (git-fixes). - usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes). - usb: musb: Balance list entry in musb_gadget_queue (git-fixes). - usbnet: fix error return code in usbnet_probe() (git-fixes). - usbnet: sanity check for maxpacket (git-fixes). - USB: serial: keyspan: fix memleak on probe errors (git-fixes). - video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes). - virtio-gpu: fix possible memory allocation failure (git-fixes). - wcn36xx: Add ability for wcn36xx_smd_dump_cmd_req to pass two's complement (git-fixes). - wcn36xx: add proper DMA memory barriers in rx path (git-fixes). - wcn36xx: Fix HT40 capability for 2Ghz band (git-fixes). - x86/ioapic: Force affinity setup before startup (bsc#1152489). - x86/msi: Force affinity setup before startup (bsc#1152489). - x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions (bsc#1152489). - x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489). - x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes). - xen: Fix implicit type conversion (git-fixes). - xen-pciback: Fix return in pm_ctrl_init() (git-fixes). - xfs: do not allow log writes if the data device is readonly (bsc#1192229). cluster-md-kmp-azure-5.3.18-38.31.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.31.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.31.1.x86_64.rpm True kernel-azure-5.3.18-38.31.1.nosrc.rpm True kernel-azure-5.3.18-38.31.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.31.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.31.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.31.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.31.1.noarch.rpm True kernel-source-azure-5.3.18-38.31.1.noarch.rpm True kernel-source-azure-5.3.18-38.31.1.src.rpm True kernel-syms-azure-5.3.18-38.31.1.src.rpm True kernel-syms-azure-5.3.18-38.31.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.31.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.31.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.31.1.x86_64.rpm True openSUSE-SLE-15.3-2021-3890 moderate SUSE Updates openSUSE-SLE 15.3 This update for gdb fixes the following issues: Rebase to 11.1 release (as in fedora 35 @ 9cd9368): * GDB now supports general memory tagging functionality if the underlying architecture supports the proper primitives and hooks. Currently this is enabled only for AArch64 MTE. * GDB will now look for the .gdbinit file in a config directory before looking for ~/.gdbinit. The file is searched for in the following locations: $XDG_CONFIG_HOME/gdb/gdbinit, $HOME/.config/gdb/gdbinit, $HOME/.gdbinit. * GDB will now load and process commands from ~/.config/gdb/gdbearlyinit or ~/.gdbearlyinit if these files are present. These files are processed earlier than any of the other initialization files and can affect parts of GDB's startup that previously had already been completed before the initialization files were read, for example styling of the initial GDB greeting. * GDB now has two new options "--early-init-command" and "--early-init-eval-command" with corresponding short options "-eix" and "-eiex" that allow options (that would normally appear in a gdbearlyinit file) to be passed on the command line. * set startup-quietly on|off show startup-quietly When 'on', this causes GDB to act as if "-silent" were passed on the command line. This command needs to be added to an early initialization file (e.g. ~/.config/gdb/gdbearlyinit) in order to affect GDB. * For RISC-V targets, the target feature "org.gnu.gdb.riscv.vector" is now understood by GDB, and can be used to describe the vector registers of a target. * TUI windows now support mouse actions. The mouse wheel scrolls the appropriate window. * Key combinations that do not have a specific action on the focused window are passed to GDB. For example, you now can use Ctrl-Left/Ctrl-Right to move between words in the command window regardless of which window is in focus. Previously you would need to focus on the command window for such key combinations to work. * set python ignore-environment on|off show python ignore-environment When 'on', this causes GDB's builtin Python to ignore any environment variables that would otherwise affect how Python behaves. This command needs to be added to an early initialization file (e.g. ~/.config/gdb/gdbearlyinit) in order to affect GDB. * set python dont-write-bytecode auto|on|off show python dont-write-bytecode When 'on', this causes GDB's builtin Python to not write any byte-code (.pyc files) to disk. This command needs to be added to an early initialization file (e.g. ~/.config/gdb/gdbearlyinit) in order to affect GDB. When 'off' byte-code will always be written. When set to 'auto' (the default) Python will check the PYTHONDONTWRITEBYTECODE environment variable. * break [PROBE_MODIFIER] [LOCATION] [thread THREADNUM] [-force-condition] [if CONDITION] This command would previously refuse setting a breakpoint if the CONDITION expression is invalid at a location. It now accepts and defines the breakpoint if there is at least one location at which the CONDITION is valid. The locations for which the CONDITION is invalid, are automatically disabled. If CONDITION is invalid at all of the locations, setting the breakpoint is still rejected. However, the '-force-condition' flag can be used in this case for forcing GDB to define the breakpoint, making all the current locations automatically disabled. This may be useful if the user knows the condition will become meaningful at a future location, e.g. due to a shared library load. - Update libipt to v2.0.4. gdb-11.1-8.27.1.src.rpm gdb-11.1-8.27.1.x86_64.rpm gdb-testresults-11.1-8.27.1.nosrc.rpm gdb-testresults-11.1-8.27.1.x86_64.rpm gdbserver-11.1-8.27.1.x86_64.rpm gdb-11.1-8.27.1.s390x.rpm gdb-testresults-11.1-8.27.1.s390x.rpm gdbserver-11.1-8.27.1.s390x.rpm gdb-11.1-8.27.1.ppc64le.rpm gdb-testresults-11.1-8.27.1.ppc64le.rpm gdbserver-11.1-8.27.1.ppc64le.rpm gdb-11.1-8.27.1.aarch64.rpm gdb-testresults-11.1-8.27.1.aarch64.rpm gdbserver-11.1-8.27.1.aarch64.rpm openSUSE-SLE-15.3-2021-4143 moderate SUSE Updates openSUSE-SLE 15.3 This update for libteam fixes the following issues: - Fix permission issues in NetworkManager (bsc#1185424) libteam-1.27-4.3.1.src.rpm libteam-devel-1.27-4.3.1.x86_64.rpm libteam-tools-1.27-4.3.1.x86_64.rpm libteam5-1.27-4.3.1.x86_64.rpm libteamdctl0-1.27-4.3.1.x86_64.rpm python-libteam-1.27-4.3.1.x86_64.rpm libteam-devel-1.27-4.3.1.s390x.rpm libteam-tools-1.27-4.3.1.s390x.rpm libteam5-1.27-4.3.1.s390x.rpm libteamdctl0-1.27-4.3.1.s390x.rpm python-libteam-1.27-4.3.1.s390x.rpm libteam-devel-1.27-4.3.1.ppc64le.rpm libteam-tools-1.27-4.3.1.ppc64le.rpm libteam5-1.27-4.3.1.ppc64le.rpm libteamdctl0-1.27-4.3.1.ppc64le.rpm python-libteam-1.27-4.3.1.ppc64le.rpm libteam-devel-1.27-4.3.1.aarch64.rpm libteam-tools-1.27-4.3.1.aarch64.rpm libteam5-1.27-4.3.1.aarch64.rpm libteamdctl0-1.27-4.3.1.aarch64.rpm python-libteam-1.27-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4144 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_0_0 fixes the following issues: - Fix parameters by name ffdheXXXX and modp_XXXX sometimes result in "not found" (bsc#1190885) - Fix binaries not linked as position independent executables (bsc#1186495) - Add RFC3526 and RFC7919 groups to 'openssl genpkey' so that it can output FIPS-appropriate parameter (bsc#1180995) libopenssl-1_0_0-devel-1.0.2p-3.46.2.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-3.46.2.x86_64.rpm libopenssl10-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-3.46.2.x86_64.rpm openssl-1_0_0-1.0.2p-3.46.2.src.rpm openssl-1_0_0-1.0.2p-3.46.2.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-3.46.2.x86_64.rpm openssl-1_0_0-doc-1.0.2p-3.46.2.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-3.46.2.s390x.rpm libopenssl10-1.0.2p-3.46.2.s390x.rpm libopenssl1_0_0-1.0.2p-3.46.2.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-3.46.2.s390x.rpm libopenssl1_0_0-steam-1.0.2p-3.46.2.s390x.rpm openssl-1_0_0-1.0.2p-3.46.2.s390x.rpm openssl-1_0_0-cavs-1.0.2p-3.46.2.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-3.46.2.ppc64le.rpm libopenssl10-1.0.2p-3.46.2.ppc64le.rpm libopenssl1_0_0-1.0.2p-3.46.2.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-3.46.2.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-3.46.2.ppc64le.rpm openssl-1_0_0-1.0.2p-3.46.2.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-3.46.2.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-3.46.2.aarch64.rpm libopenssl10-1.0.2p-3.46.2.aarch64.rpm libopenssl1_0_0-1.0.2p-3.46.2.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-3.46.2.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-3.46.2.aarch64.rpm openssl-1_0_0-1.0.2p-3.46.2.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-3.46.2.aarch64.rpm openSUSE-SLE-15.3-2021-4145 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following issues: - Remove previously applied patch because it interferes with FIPS validation (bsc#1161276) libopenssl-1_1-devel-1.1.1d-11.33.2.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-11.33.2.x86_64.rpm libopenssl1_1-1.1.1d-11.33.2.x86_64.rpm libopenssl1_1-32bit-1.1.1d-11.33.2.x86_64.rpm libopenssl1_1-hmac-1.1.1d-11.33.2.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-11.33.2.x86_64.rpm openssl-1_1-1.1.1d-11.33.2.src.rpm openssl-1_1-1.1.1d-11.33.2.x86_64.rpm openssl-1_1-doc-1.1.1d-11.33.2.noarch.rpm libopenssl-1_1-devel-1.1.1d-11.33.2.s390x.rpm libopenssl1_1-1.1.1d-11.33.2.s390x.rpm libopenssl1_1-hmac-1.1.1d-11.33.2.s390x.rpm openssl-1_1-1.1.1d-11.33.2.s390x.rpm libopenssl-1_1-devel-1.1.1d-11.33.2.ppc64le.rpm libopenssl1_1-1.1.1d-11.33.2.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-11.33.2.ppc64le.rpm openssl-1_1-1.1.1d-11.33.2.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-11.33.2.aarch64.rpm libopenssl1_1-1.1.1d-11.33.2.aarch64.rpm libopenssl1_1-hmac-1.1.1d-11.33.2.aarch64.rpm openssl-1_1-1.1.1d-11.33.2.aarch64.rpm openSUSE-SLE-15.3-2021-3841 important SUSE Updates openSUSE-SLE 15.3 This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input (bsc#1184812). python-Pygments-2.2.0-4.9.1.src.rpm python2-Pygments-2.2.0-4.9.1.noarch.rpm openSUSE-SLE-15.3-2021-3839 important SUSE Updates openSUSE-SLE 15.3 This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input (bsc#1184812). python-Pygments-2.6.1-4.3.1.src.rpm python3-Pygments-2.6.1-4.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3980 moderate SUSE Updates openSUSE-SLE 15.3 glibc was updated to fix the following issue: - Support for new IBM Z Hardware (bsc#1191592, jsc#IBM-869) glibc-2.31-9.6.1.src.rpm glibc-2.31-9.6.1.x86_64.rpm glibc-32bit-2.31-9.6.1.x86_64.rpm glibc-devel-2.31-9.6.1.x86_64.rpm glibc-devel-32bit-2.31-9.6.1.x86_64.rpm glibc-devel-static-2.31-9.6.1.x86_64.rpm glibc-devel-static-32bit-2.31-9.6.1.x86_64.rpm glibc-extra-2.31-9.6.1.x86_64.rpm glibc-html-2.31-9.6.1.noarch.rpm glibc-i18ndata-2.31-9.6.1.noarch.rpm glibc-info-2.31-9.6.1.noarch.rpm glibc-lang-2.31-9.6.1.noarch.rpm glibc-locale-2.31-9.6.1.x86_64.rpm glibc-locale-base-2.31-9.6.1.x86_64.rpm glibc-locale-base-32bit-2.31-9.6.1.x86_64.rpm glibc-profile-2.31-9.6.1.x86_64.rpm glibc-profile-32bit-2.31-9.6.1.x86_64.rpm glibc-utils-2.31-9.6.1.x86_64.rpm glibc-utils-32bit-2.31-9.6.1.x86_64.rpm glibc-utils-src-2.31-9.6.1.src.rpm nscd-2.31-9.6.1.x86_64.rpm glibc-2.31-9.6.1.s390x.rpm glibc-devel-2.31-9.6.1.s390x.rpm glibc-devel-static-2.31-9.6.1.s390x.rpm glibc-extra-2.31-9.6.1.s390x.rpm glibc-locale-2.31-9.6.1.s390x.rpm glibc-locale-base-2.31-9.6.1.s390x.rpm glibc-profile-2.31-9.6.1.s390x.rpm glibc-utils-2.31-9.6.1.s390x.rpm nscd-2.31-9.6.1.s390x.rpm glibc-2.31-9.6.1.ppc64le.rpm glibc-devel-2.31-9.6.1.ppc64le.rpm glibc-devel-static-2.31-9.6.1.ppc64le.rpm glibc-extra-2.31-9.6.1.ppc64le.rpm glibc-locale-2.31-9.6.1.ppc64le.rpm glibc-locale-base-2.31-9.6.1.ppc64le.rpm glibc-profile-2.31-9.6.1.ppc64le.rpm glibc-utils-2.31-9.6.1.ppc64le.rpm nscd-2.31-9.6.1.ppc64le.rpm glibc-2.31-9.6.1.aarch64.rpm glibc-devel-2.31-9.6.1.aarch64.rpm glibc-devel-static-2.31-9.6.1.aarch64.rpm glibc-extra-2.31-9.6.1.aarch64.rpm glibc-locale-2.31-9.6.1.aarch64.rpm glibc-locale-base-2.31-9.6.1.aarch64.rpm glibc-profile-2.31-9.6.1.aarch64.rpm glibc-utils-2.31-9.6.1.aarch64.rpm nscd-2.31-9.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4135 moderate SUSE Updates openSUSE-SLE 15.3 bluez was updated to fix the following issue: - The bluez-deprecated package is readded to the Basesystem module as it was removed unexpectedly. In future SPs it might move to the Legacy module. (bsc#1192151) bluez-5.55-3.8.1.src.rpm bluez-5.55-3.8.1.x86_64.rpm bluez-auto-enable-devices-5.55-3.8.1.noarch.rpm bluez-cups-5.55-3.8.1.x86_64.rpm bluez-deprecated-5.55-3.8.1.x86_64.rpm bluez-devel-32bit-5.55-3.8.1.x86_64.rpm bluez-devel-5.55-3.8.1.x86_64.rpm bluez-test-5.55-3.8.1.x86_64.rpm libbluetooth3-32bit-5.55-3.8.1.x86_64.rpm libbluetooth3-5.55-3.8.1.x86_64.rpm bluez-5.55-3.8.1.s390x.rpm bluez-cups-5.55-3.8.1.s390x.rpm bluez-deprecated-5.55-3.8.1.s390x.rpm bluez-devel-5.55-3.8.1.s390x.rpm bluez-test-5.55-3.8.1.s390x.rpm libbluetooth3-5.55-3.8.1.s390x.rpm bluez-5.55-3.8.1.ppc64le.rpm bluez-cups-5.55-3.8.1.ppc64le.rpm bluez-deprecated-5.55-3.8.1.ppc64le.rpm bluez-devel-5.55-3.8.1.ppc64le.rpm bluez-test-5.55-3.8.1.ppc64le.rpm libbluetooth3-5.55-3.8.1.ppc64le.rpm bluez-5.55-3.8.1.aarch64.rpm bluez-cups-5.55-3.8.1.aarch64.rpm bluez-deprecated-5.55-3.8.1.aarch64.rpm bluez-devel-5.55-3.8.1.aarch64.rpm bluez-test-5.55-3.8.1.aarch64.rpm libbluetooth3-5.55-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3876 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP1 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573) You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0) - CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045). - CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781). - CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790) - CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961). - CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601). - CVE-2021-3772: Fixed sctp vtag check in sctp_sf_ootb (bsc#1190351). - CVE-2021-3655: Missing size validations on inbound SCTP packets may have allowed the kernel to read uninitialized memory (bnc#1188563). - CVE-2021-33033: The Linux kernel has a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled, aka CID-ad5d07f4a9cd. This leads to writing an arbitrary value (bnc#1186109 bnc#1186390 bnc#1188876). - CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev->rf_conn_info object (bsc#1190067). - CVE-2021-42739: The firewire subsystem in the Linux kernel has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bnc#1184673). - CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063). - CVE-2018-13405: The inode_init_owner function in fs/inode.c in the Linux kernel allowed local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the non-member can trigger creation of a plain file whose group ownership is that group. The intended behavior was that the non-member can trigger creation of a directory (but not a plain file) whose group ownership is that group. The non-member can escalate privileges by making the plain file executable and SGID (bnc#1100416 bnc#1129735). - CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349). - CVE-2021-34556: An unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack (bnc#1188983). - CVE-2021-35477: An unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation did not necessarily occur before a store operation that has an attacker-controlled value (bnc#1188985). - CVE-2021-42252: An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs because a certain comparison uses values that are not memory sizes (bnc#1190479). - CVE-2021-41864: prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317). - CVE-2021-42008: The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access (bnc#1191315). - CVE-2021-3759: Unaccounted ipc objects could have lead to breaking memcg limits and DoS attacks (bsc#1190115). - CVE-2020-3702: Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic (bnc#1191193). - CVE-2021-3752: Fixed a use after free vulnerability in the bluetooth module. (bsc#1190023) - CVE-2021-40490: A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel (bnc#1190159 bnc#1192775) - CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1189884) - CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1190534) - CVE-2020-12770: An issue was discovered in the Linux kernel sg_write lacks an sg_remove_request call in a certain failure case, aka CID-83c6f2390040 (bnc#1171420). - CVE-2021-3640: Fixed a Use-After-Free vulnerability in function sco_sock_sendmsg() in the bluetooth stack (bsc#1188172). - CVE-2019-3900: An infinite loop issue was found in the vhost_net kernel module, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest user, maybe remote one, could use this flaw to stall the vhost_net kernel thread, resulting in a DoS scenario (bnc#1133374). - CVE-2019-3874: The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. (bnc#1129898). - CVE-2018-9517: In pppol2tp_connect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. (bnc#1108488). - CVE-2021-38160: Data corruption or loss could be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190117) - CVE-2021-3753: Fixed race out-of-bounds in virtual terminal handling (bsc#1190025). - CVE-2021-3732: Mounting overlayfs inside an unprivileged user namespace can reveal files (bsc#1189706). - CVE-2021-3653: A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the "int_ctl" field, this issue could allow a malicious L1 to enable AVIC support (Advanced Virtual Interrupt Controller) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape. This flaw affects Linux kernel versions prior to 5.14-rc7 (bnc#1189399). - CVE-2021-3656: Missing validation of the the `virt_ext` VMCB field and allows a malicious L1 guest to disable both VMLOAD/VMSAVE intercepts and VLS for the L2 guest (bsc#1189400). - CVE-2021-38204: drivers/usb/host/max3421-hcd.c allowed physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations (bnc#1189291). - CVE-2021-3679: A lack of CPU resource in the tracing module functionality was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service (bnc#1189057). - CVE-2020-4788: IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296 (bnc#0 bnc#1177666 bnc#1181158). - CVE-2021-3659: Fixed a NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (bsc#1188876). - CVE-2020-0429: In l2tp_session_delete and related functions of l2tp_core.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1176724). - CVE-2021-37576: arch/powerpc/kvm/book3s_rtas.c on the powerpc platform allowed KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e (bnc#1188838 bnc#1190276). - CVE-2021-22543: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allowed users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation (bnc#1186482 bnc#1190276). - CVE-2021-33909: fs/seq_file.c did not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05 (bnc#1188062 bnc#1188063). The following non-security bugs were fixed: - Add arch-dependent support markers in supported.conf (bsc#1186672) - Add the support for kernel-FLAVOR-optional subpackage (jsc#SLE-11796) - bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22913) - bpf: Disallow unprivileged bpf by default (jsc#SLE-22913). - ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1191888). - config: disable unprivileged BPF by default (jsc#SLE-22913) - cpufreq: intel_pstate: Add Icelake servers support in no-HWP mode (bsc#1185758,bsc#1192400). - drm: fix spectre issue in vmw_execbuf_ioctl (bsc#1192802). - ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267). - gigaset: fix spectre issue in do_data_b3_req (bsc#1192802). - hisax: fix spectre issues (bsc#1192802). - hv: mana: adjust mana_select_queue to old API (jsc#SLE-18779, bsc#1185726). - hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726). - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726). - hysdn: fix spectre issue in hycapi_send_message (bsc#1192802). - infiniband: fix spectre issue in ib_uverbs_write (bsc#1192802). - infiniband: fix spectre issue in ib_uverbs_write (bsc#1192802). - ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115). - iwlwifi: fix spectre issue in iwl_dbgfs_update_pm (bsc#1192802). - kernel-binary.spec: Exctract s390 decompression code (jsc#SLE-17042). - kernel-binary.spec: Fix up usrmerge for non-modular kernels. - kernel-binary.spec.in: build-id check requires elfutils. - kernel-binary.spec.in: Regenerate makefile when not using mkmakefile. - kernel-binary.spec: Only use mkmakefile when it exists Linux 5.13 no longer had a mkmakefile script - kernel-binary.spec: Remove obsolete and wrong comment mkmakefile is repleced by echo on newer kernel - kernel-docs.spec.in: Build using an utf-8 locale. Sphinx cannot handle UTF-8 input in non-UTF-8 locale. - media: dvb_ca_en50221: prevent using slot_info for Spectre attacs (bsc#1192802). - media: dvb_ca_en50221: sanity check slot number from userspace (bsc#1192802). - media: wl128x: get rid of a potential spectre issue (bsc#1192802). - memcg: enable accounting for file lock caches (bsc#1190115). - mm/memory.c: do_fault: avoid usage of stale vm_area_struct (bsc#1136513). - mpt3sas: fix spectre issues (bsc#1192802). - net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726). - net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726). - net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726). - net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726). - net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191800). - net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726). - net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726). - net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726). - net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726). - net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726). - net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726). - net_sched: cls_route: remove the right filter from hashtable (networking-stable-20_03_28). - net: sched: sch_teql: fix null-pointer dereference (bsc#1190717). - net: sock_diag: Fix spectre v1 gadget in __sock_diag_cmd() (bsc#1192802). - NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628). - objtool: Do not fail on missing symbol table (bsc#1192379). - osst: fix spectre issue in osst_verify_frame (bsc#1192802). - ovl: check whiteout in ovl_create_over_whiteout() (bsc#1189846). - ovl: filter of trusted xattr results in audit (bsc#1189846). - ovl: fix dentry leak in ovl_get_redirect (bsc#1189846). - ovl: initialize error in ovl_copy_xattr (bsc#1189846). - ovl: relax WARN_ON() on rename to self (bsc#1189846). - PCI: hv: Use expected affinity when unmasking IRQ (bsc#1185973). - Revert "memcg: enable accounting for file lock caches (bsc#1190115)." This reverts commit 912b4421a3e9bb9f0ef1aadc64a436666259bd4d. It's effectively upstream commit 3754707bcc3e190e5dadc978d172b61e809cb3bd applied to kernel-source (to avoid proliferation of patches). Make a note in blacklist.conf too. - s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant (bsc#1190601). - s390/bpf: Fix branch shortening during codegen pass (bsc#1190601). - s390/bpf: Fix optimizing out zero-extensions (bsc#1190601). - s390: bpf: implement jitting of BPF_ALU | BPF_ARSH | BPF_* (bsc#1190601). - s390/bpf: Wrap JIT macro parameter usages in parentheses (bsc#1190601). - scripts/git_sort/git_sort.py: add bpf git repo - scripts/git_sort/git_sort.py: Update nvme repositories - scsi: libfc: Fix array index out of bound exception (bsc#1188616). - scsi: lpfc: Fix FLOGI failure due to accessing a freed node (bsc#1191349). - scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349 bsc#1191457). - scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (bsc#1191349 bsc#1191457). - scsi: target: avoid using lun_tg_pt_gp after unlock (bsc#1186078). - sctp: check asoc peer.asconf_capable before processing asconf (bsc#1190351). - sctp: fully initialize v4 addr in some functions (bsc#1188563). - sysvipc/sem: mitigate semnum index against spectre v1 (bsc#1192802). - target: core: Fix sense key for invalid XCOPY request (bsc#1186078). - Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set - Use /usr/lib/modules as module dir when usermerge is active in the target distro. - UsrMerge the kernel (boo#1184804) - x86/CPU: Add more Icelake model numbers (bsc#1185758,bsc#1192400). - xfrm: xfrm_state_mtu should return at least 1280 for ipv6 (bsc#1185377). kernel-debug-4.12.14-197.102.2.nosrc.rpm True kernel-debug-base-4.12.14-197.102.2.x86_64.rpm True kernel-default-4.12.14-197.102.2.nosrc.rpm True kernel-kvmsmall-4.12.14-197.102.2.nosrc.rpm True kernel-kvmsmall-base-4.12.14-197.102.2.x86_64.rpm True kernel-vanilla-4.12.14-197.102.2.nosrc.rpm True kernel-vanilla-4.12.14-197.102.2.x86_64.rpm True kernel-vanilla-base-4.12.14-197.102.2.x86_64.rpm True kernel-vanilla-devel-4.12.14-197.102.2.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64.rpm True kernel-default-man-4.12.14-197.102.2.s390x.rpm True kernel-vanilla-4.12.14-197.102.2.s390x.rpm True kernel-vanilla-base-4.12.14-197.102.2.s390x.rpm True kernel-vanilla-devel-4.12.14-197.102.2.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x.rpm True kernel-zfcpdump-4.12.14-197.102.2.nosrc.rpm True kernel-zfcpdump-man-4.12.14-197.102.2.s390x.rpm True kernel-debug-base-4.12.14-197.102.2.ppc64le.rpm True kernel-vanilla-4.12.14-197.102.2.ppc64le.rpm True kernel-vanilla-base-4.12.14-197.102.2.ppc64le.rpm True kernel-vanilla-devel-4.12.14-197.102.2.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le.rpm True kernel-vanilla-4.12.14-197.102.2.aarch64.rpm True kernel-vanilla-base-4.12.14-197.102.2.aarch64.rpm True kernel-vanilla-devel-4.12.14-197.102.2.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64.rpm True openSUSE-SLE-15.3-2021-3961 moderate SUSE Updates openSUSE-SLE 15.3 This update for dnsmasq fixes the following issues: - Fix a segfault when re-reading an empty resolv.conf (bsc#1192529) dnsmasq-2.86-7.17.1.src.rpm dnsmasq-2.86-7.17.1.x86_64.rpm dnsmasq-utils-2.86-7.17.1.x86_64.rpm dnsmasq-2.86-7.17.1.s390x.rpm dnsmasq-utils-2.86-7.17.1.s390x.rpm dnsmasq-2.86-7.17.1.ppc64le.rpm dnsmasq-utils-2.86-7.17.1.ppc64le.rpm dnsmasq-2.86-7.17.1.aarch64.rpm dnsmasq-utils-2.86-7.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-4009 low SUSE Updates openSUSE-SLE 15.3 This update for systemd-rpm-macros fixes the following issues: - Introduce rpm macro %_systemd_util_dir systemd-rpm-macros-9-7.21.1.noarch.rpm systemd-rpm-macros-9-7.21.1.src.rpm openSUSE-SLE-15.3-2021-4204 moderate SUSE Updates openSUSE-SLE 15.3 This update for pptp fixes the following issues: - Fix issue when connecting to Microtic routers (bsc#1191717) - Remove UID related output from routing because not needed and prompts error (bsc#1131960) - Prevent pptpsetup creating world-readable peers file - Allow setting up passwords with quotes and trailing spaces - Fix tunnel file generation to make sure it can be used by a non-root user - Fix a memory leak in pqueue - Fix read and writes beyond allocated memory - Fix Use-After-Free in call close request handler - Allow missing window value to be specified in command line instead of being hardcoded - Randomise call-id to allow connecting with simultaneous pptp sessions - Fix file descriptor in call to ttyname. Resulting error was a common message: "pptp: GRE-to-PPP gateway on (null)" pptp-1.10.0-3.3.1.src.rpm pptp-1.10.0-3.3.1.x86_64.rpm pptp-1.10.0-3.3.1.s390x.rpm pptp-1.10.0-3.3.1.ppc64le.rpm pptp-1.10.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3950 important SUSE Updates openSUSE-SLE 15.3 This update for openssh fixes the following issues: - CVE-2021-41617: Fixed privilege escalation when AuthorizedKeysCommand/AuthorizedPrincipalsCommand are configured (bsc#1190975). openssh-8.4p1-3.6.1.src.rpm openssh-8.4p1-3.6.1.x86_64.rpm openssh-askpass-gnome-8.4p1-3.6.1.src.rpm openssh-askpass-gnome-8.4p1-3.6.1.x86_64.rpm openssh-cavs-8.4p1-3.6.1.x86_64.rpm openssh-clients-8.4p1-3.6.1.x86_64.rpm openssh-common-8.4p1-3.6.1.x86_64.rpm openssh-fips-8.4p1-3.6.1.x86_64.rpm openssh-helpers-8.4p1-3.6.1.x86_64.rpm openssh-server-8.4p1-3.6.1.x86_64.rpm openssh-8.4p1-3.6.1.s390x.rpm openssh-askpass-gnome-8.4p1-3.6.1.s390x.rpm openssh-cavs-8.4p1-3.6.1.s390x.rpm openssh-clients-8.4p1-3.6.1.s390x.rpm openssh-common-8.4p1-3.6.1.s390x.rpm openssh-fips-8.4p1-3.6.1.s390x.rpm openssh-helpers-8.4p1-3.6.1.s390x.rpm openssh-server-8.4p1-3.6.1.s390x.rpm openssh-8.4p1-3.6.1.ppc64le.rpm openssh-askpass-gnome-8.4p1-3.6.1.ppc64le.rpm openssh-cavs-8.4p1-3.6.1.ppc64le.rpm openssh-clients-8.4p1-3.6.1.ppc64le.rpm openssh-common-8.4p1-3.6.1.ppc64le.rpm openssh-fips-8.4p1-3.6.1.ppc64le.rpm openssh-helpers-8.4p1-3.6.1.ppc64le.rpm openssh-server-8.4p1-3.6.1.ppc64le.rpm openssh-8.4p1-3.6.1.aarch64.rpm openssh-askpass-gnome-8.4p1-3.6.1.aarch64.rpm openssh-cavs-8.4p1-3.6.1.aarch64.rpm openssh-clients-8.4p1-3.6.1.aarch64.rpm openssh-common-8.4p1-3.6.1.aarch64.rpm openssh-fips-8.4p1-3.6.1.aarch64.rpm openssh-helpers-8.4p1-3.6.1.aarch64.rpm openssh-server-8.4p1-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4070 important SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - CVE-2021-4008: Fixed Privilege Escalation Vulnerability via Out-Of-Bounds Access in SProcRenderCompositeGlyphs (bsc#1193030). xorg-x11-server-1.20.3-22.5.39.1.src.rpm xorg-x11-server-1.20.3-22.5.39.1.x86_64.rpm xorg-x11-server-extra-1.20.3-22.5.39.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-22.5.39.1.x86_64.rpm xorg-x11-server-source-1.20.3-22.5.39.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-22.5.39.1.x86_64.rpm xorg-x11-server-1.20.3-22.5.39.1.s390x.rpm xorg-x11-server-extra-1.20.3-22.5.39.1.s390x.rpm xorg-x11-server-sdk-1.20.3-22.5.39.1.s390x.rpm xorg-x11-server-source-1.20.3-22.5.39.1.s390x.rpm xorg-x11-server-wayland-1.20.3-22.5.39.1.s390x.rpm xorg-x11-server-1.20.3-22.5.39.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-22.5.39.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-22.5.39.1.ppc64le.rpm xorg-x11-server-source-1.20.3-22.5.39.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-22.5.39.1.ppc64le.rpm xorg-x11-server-1.20.3-22.5.39.1.aarch64.rpm xorg-x11-server-extra-1.20.3-22.5.39.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-22.5.39.1.aarch64.rpm xorg-x11-server-source-1.20.3-22.5.39.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-22.5.39.1.aarch64.rpm openSUSE-SLE-15.3-2021-3940 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - CVE-2021-22959: Fixed HTTP Request Smuggling due to spaced in headers (bsc#1191601). - CVE-2021-22960: Fixed HTTP Request Smuggling when parsing the body (bsc#1191602). - CVE-2021-37701: Fixed arbitrary file creation and overwrite in nodejs-tar (bsc#1190057). - CVE-2021-37712: Fixed arbitrary file creation and overwrite in nodejs-tar (bsc#1190056). - CVE-2021-37713: Fixed arbitrary code execution and file creation and overwrite in nodejs-tar (bsc#1190055). - CVE-2021-39134: Fixed symling following vulnerability in nodejs-arborist (bsc#1190054). - CVE-2021-39135: Fixed symling following vulnerability in nodejs-arborist (bsc#1190053). nodejs12-12.22.7-4.22.1.src.rpm nodejs12-12.22.7-4.22.1.x86_64.rpm nodejs12-devel-12.22.7-4.22.1.x86_64.rpm nodejs12-docs-12.22.7-4.22.1.noarch.rpm npm12-12.22.7-4.22.1.x86_64.rpm nodejs12-12.22.7-4.22.1.s390x.rpm nodejs12-devel-12.22.7-4.22.1.s390x.rpm npm12-12.22.7-4.22.1.s390x.rpm nodejs12-12.22.7-4.22.1.ppc64le.rpm nodejs12-devel-12.22.7-4.22.1.ppc64le.rpm npm12-12.22.7-4.22.1.ppc64le.rpm nodejs12-12.22.7-4.22.1.aarch64.rpm nodejs12-devel-12.22.7-4.22.1.aarch64.rpm npm12-12.22.7-4.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-3945 important SUSE Updates openSUSE-SLE 15.3 This update for python-Babel fixes the following issues: - CVE-2021-42771: Fixed relative path traversal that may lead to arbitrary locale files loading and arbitrary code execution (bsc#1185768). python-Babel-2.8.0-3.3.1.src.rpm python-Babel-doc-2.8.0-3.3.1.noarch.rpm python-Babel-doc-2.8.0-3.3.1.src.rpm python2-Babel-2.8.0-3.3.1.noarch.rpm python3-Babel-2.8.0-3.3.1.noarch.rpm python3-Babel-doc-2.8.0-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3942 moderate SUSE Updates openSUSE-SLE 15.3 This update for brotli fixes the following issues: - CVE-2020-8927: Fixed integer overflow when input chunk is larger than 2GiB (bsc#1175825). brotli-1.0.7-3.3.1.src.rpm brotli-1.0.7-3.3.1.x86_64.rpm libbrotli-devel-1.0.7-3.3.1.x86_64.rpm libbrotlicommon1-1.0.7-3.3.1.x86_64.rpm libbrotlicommon1-32bit-1.0.7-3.3.1.x86_64.rpm libbrotlidec1-1.0.7-3.3.1.x86_64.rpm libbrotlidec1-32bit-1.0.7-3.3.1.x86_64.rpm libbrotlienc1-1.0.7-3.3.1.x86_64.rpm libbrotlienc1-32bit-1.0.7-3.3.1.x86_64.rpm brotli-1.0.7-3.3.1.s390x.rpm libbrotli-devel-1.0.7-3.3.1.s390x.rpm libbrotlicommon1-1.0.7-3.3.1.s390x.rpm libbrotlidec1-1.0.7-3.3.1.s390x.rpm libbrotlienc1-1.0.7-3.3.1.s390x.rpm brotli-1.0.7-3.3.1.ppc64le.rpm libbrotli-devel-1.0.7-3.3.1.ppc64le.rpm libbrotlicommon1-1.0.7-3.3.1.ppc64le.rpm libbrotlidec1-1.0.7-3.3.1.ppc64le.rpm libbrotlienc1-1.0.7-3.3.1.ppc64le.rpm brotli-1.0.7-3.3.1.aarch64.rpm libbrotli-devel-1.0.7-3.3.1.aarch64.rpm libbrotlicommon1-1.0.7-3.3.1.aarch64.rpm libbrotlidec1-1.0.7-3.3.1.aarch64.rpm libbrotlienc1-1.0.7-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4134 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-lldp fixes the following issues: Backport fixes: - agent: reset frame status on message delete - Avoiding null pointer dereference liblldp_clif1-1.1+44.0f781b4162d3-3.3.1.x86_64.rpm open-lldp-1.1+44.0f781b4162d3-3.3.1.src.rpm open-lldp-1.1+44.0f781b4162d3-3.3.1.x86_64.rpm open-lldp-devel-1.1+44.0f781b4162d3-3.3.1.x86_64.rpm liblldp_clif1-1.1+44.0f781b4162d3-3.3.1.s390x.rpm open-lldp-1.1+44.0f781b4162d3-3.3.1.s390x.rpm open-lldp-devel-1.1+44.0f781b4162d3-3.3.1.s390x.rpm liblldp_clif1-1.1+44.0f781b4162d3-3.3.1.ppc64le.rpm open-lldp-1.1+44.0f781b4162d3-3.3.1.ppc64le.rpm open-lldp-devel-1.1+44.0f781b4162d3-3.3.1.ppc64le.rpm liblldp_clif1-1.1+44.0f781b4162d3-3.3.1.aarch64.rpm open-lldp-1.1+44.0f781b4162d3-3.3.1.aarch64.rpm open-lldp-devel-1.1+44.0f781b4162d3-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3991 important SUSE Updates openSUSE-SLE 15.3 This update for python-boto3 fixes the following issues: -Disables Py 2 build for SLE 15 -Py 2 is considered legacy with limited support. -Update to version 1.18.7 (bsc#1189649) - S3 Access Point aliases can be used anywhere you use S3 bucket names to access data in S3 - Adds support for AnalyzeExpense, a new API to extract relevant data such as contact information, items purchased, and vendor name, from almost any invoice or receipt without the need for any templates or configuration. - Documentation-only update links - Documentation updates for SSO API Ref. - Update cloudwatch client to latest version - CloudWatch Synthetics now supports visual testing in its canaries. - Added product name, company name, and Region fields for security findings. Added details objects for RDS event subscriptions and AWS ECS services. Added fields to the details for AWS Elasticsearch domains. - Update to documentation to reapply missing change to SSM uninstall switch default value and improve description. - Add on-premise access type support for endpoints - MediaLive now supports passing through style data on WebVTT caption outputs. - This SDK release adds two new features: 1) Output to Native JDBC destinations and 2) Adding configurations to profile jobs - Update elbv2 client to latest version - Documentation updates for Amazon S3-control - This release allows customers to assign prefixes to their elastic network interface and to reserve IP blocks in their subnet CIDRs. These reserved blocks can be used to assign prefixes to elastic network interfaces or be excluded from auto-assignment. - Amazon QLDB now supports ledgers encrypted with customer managed KMS keys. Changes in CreateLedger, UpdateLedger and DescribeLedger APIs to support the changes. - Amazon Kendra now provides a data source connector for Amazon WorkDocs. - Documentation updates for AWS Proton - Documentation updates for AWS Identity and Access Management (IAM). - Adds the OriginalSnapshotCreateTime field to the DBSnapshot response object. This field timestamps the underlying data of a snapshot and doesn't change when the snapshot is copied. - Update elbv2 client to latest version - New ResourceConflictException error code for PutFunctionEventInvokeConfig, UpdateFunctionEventInvokeConfig, and DeleteFunctionEventInvokeConfig operations. - AWS CodeBuild now allows you to set the access permissions for build artifacts, project artifacts, and log files that are uploaded to an Amazon S3 bucket that is owned by another account. - My AWS Service (placeholder) -Making minProvisionedTPS an optional parameter when creating a campaign. If not provided, it defaults to 1. - Update emr client to latest version - Documentation updates for Compute Optimizer - Added idempotency to the CreateVolume API using the ClientToken request parameter - Documentation updates for reversal of default value for additional instance configuration SSM switch, plus improved descriptions for semantic versioning. - Documentation updates for directconnect - In the Health API, the maximum number of entities for the EventFilter and EntityFilter data types has changed from 100 to 99. This change is related to an internal optimization of the AWS Health service. - This release allows customers to create a new version of WorldTemplates with support for Doors. - Add five new API operations: UpdateGeofenceCollection, UpdateMap, UpdatePlaceIndex, UpdateRouteCalculator, UpdateTracker. - Updated DescribeManagedEndpoint and ListManagedEndpoints to return failureReason and stateDetails in API response. - Documentation update for AppIntegrations Service - This SDK release adds Account Status as one of the attributes in Account API response - This release relaxes the S3 URL character restrictions in AWS Audit Manager. Regex patterns have been updated for the following attributes: s3RelativePath, destination, and s3ResourcePath. 'AWS' terms have also been replaced with entities to align with China Rebrand documentation efforts. - This feature enables customers to specify weekly recurring time window(s) for scheduled events that reboot, stop or terminate EC2 instances. - Documentation updates for cognito-idp - Documentation updates for support of awsvpc mode on Windows. Lex now supports the en-IN locale - Update the default endpoint for the APIs used to manage asset models, assets, gateways, tags, and account configurations. If you have firewalls with strict egress rules, configure the rules to grant you access to api.iotsitewise.[region].amazonaws.com or api.iotsitewise.[cn-region].amazonaws.com.cn. - Drop support for Python 2.7 - Dropped support for Python 2.7 - Release of feature needed for ECA-Endpoint settings. This allows customer to delete a field in endpoint settings by using --exact-settings flag in modify-endpoint api. This also displays default values for certain required fields of endpoint settings in describe-endpoint-settings api. - Add support for Event Driven Workflows - Added support for RSA 3072 SSL certificate import - General availability for Amazon HealthLake. StartFHIRImportJob and StartFHIRExportJob APIs now require AWS KMS parameter. For more information, see the Amazon HealthLake Documentation https://docs.aws.amazon.com/healthlake/index.html. - This update provides support for Well- Architected API users to mark answer choices as not applicable. - This release adds support for the Amazon Lightsail object storage service, which allows you to create buckets and store objects. - Added Sign in with Apple OAuth provider. - Release new APIs to support new Redshift feature -Authentication Profile - Changes to OpsCenter APIs to support a new feature, operational insights. - Customers can now migrate bots built with Lex V1 APIs to V2 APIs. This release adds APIs to initiate and manage the migration of a bot. - This release adds a new filed named awsLogicalDeviceId that it displays the AWS Direct Connect endpoint which terminates a physical connection's BGP Sessions. - Documentation updates for api.pricing - Documentation updates for Wesley to support the parallel node upgrade feature. - Amazon Kendra now supports Principal Store - Releasing new APIs related to Tuning steps in model building pipelines. - This release adds support for ML Explainability to display model variable importance value in Amazon Fraud Detector. - MediaConvert now supports color, style and position information passthrough from 608 and Teletext to SRT and WebVTT subtitles. MediaConvert now also supports Automatic QVBR quality levels for QVBR RateControlMode. - Added waiters for EKS FargateProfiles. - Added property filters for listOutposts - AWS Firewall Manager now supports route table monitoring, and provides remediation action recommendations to security administrators for AWS Network Firewall policies with misconfigured routes. - Add ListAlerts for Channel, Program, Source Location, and VOD Source to return alerts for resources. - Add AnomalyReportedTimeRange field to include open and close time of anomalies. - Updated description for CreateContactChannel contactId. - Documentation updates for AWS Identity and Access Management (IAM). - Documentation updates for AWS Security Token Service. - adds support for modifying the maintenance window for brokers. - Amazon CloudFront now provides two new APIs, ListConflictingAliases and AssociateAlias, that help locate and move Alternate Domain Names (CNAMEs) if you encounter the CNAMEAlreadyExists error code. - Releasing new APIs for AWS Chime MediaCapturePipeline - This release add storage configuration APIs for AWS IoT SiteWise. - Adding support for oplocks for SMB file shares, S3 Access Point and S3 Private Link for all file shares and IP address support for file system associations - This release adds resource ids and tagging support for VPC security group rules. - Added support for AmazonMQRabbitMQ as an event source. Added support for VIRTUAL_HOST as SourceAccessType for streams event source mappings. - Adds support for specifying parameters to customize components for recipes. Expands configuration of the Amazon EC2 instances that are used for building and testing images, including the ability to specify commands to run on launch, and more control over installation and removal of the SSM agent. - Bug fix: Remove not supported EBS encryption type "NONE" - Adding new error code UnsupportedAddonModification for Addons in EKS - Sensitive data findings in Amazon Macie now include enhanced location data for JSON and JSON Lines files - Documentation updates for Amazon SNS. - Update elbv2 client to latest version - This release removes network-insights-boundary - SageMaker model registry now supports up to 5 containers and associated environment variables. - Documentation updates for Amazon SQS. - Adding a new reserved field to support future infrastructure improvements for Amazon EC2 Fleet. - Amazon EC2 Auto Scaling infrastructure improvements and optimizations. - Amazon Kendra Enterprise Edition now offered in smaller more granular units to enable customers with smaller workloads. Virtual Storage Capacity units now offer scaling in increments of 100,000 documents (up to 30GB) per unit and Virtual Query Units offer scaling increments of 8,000 queries per day. - Add support for Widevine DRM on CMAF packaging configurations. Both Widevine and FairPlay DRMs can now be used simultaneously, with CBCS encryption. - Fixes the tag key length range to 128 chars, tag value length to 256 chars; Adds support for UTF-8 chars for contact and channel names, Allows users to unset name in UpdateContact API; Adds throttling exception to StopEngagement API, validation exception to APIs UntagResource, ListTagsForResource - Adds support for the output of job results to the AWS Glue Data Catalog. - AWS Cloud Map now allows configuring the TTL of the SOA record for a hosted zone to control the negative caching for new services. - Sagemaker Neo now supports running compilation jobs using customer's Amazon VPC - Add JSON Support for Glue Schema Registry - Added InvalidClusterStateFault to the DisableLogging API, thrown when calling the API on a non available cluster. - MediaConvert adds support for HDR10+, ProRes 4444, and XAVC outputs, ADM/DAMF support for Dolby Atmos ingest, and alternative audio and WebVTT caption ingest via HLS inputs. MediaConvert also now supports creating trickplay outputs for Roku devices for HLS, CMAF, and DASH output groups. - Added waiters for template registration, service operations, and environment deployments. - Imports an existing backend authentication resource. - AWS Snow Family customers can remotely monitor and operate their connected AWS Snowcone devices. AWS Snowball Edge Storage Optimized customers can now import and export their data using NFS. - Adds EventIngestionUrl field to MediaPlacement - Minor update to AWS Cloud9 documentation to allow correct parsing of outputted text - Released Amazon Connect quick connects management API for general availability (GA). For more information, see https://docs.aws.amazon.com/connect/latest/APIReference/Welcome.html - Add support for encryption in transit to DAX clusters. - Added support for 15 new text transformation. - Amazon Kendra now supports SharePoint 2013 and SharePoint 2016 when using a SharePoint data source. - Added new resource details for ECS clusters and ECS task definitions. Added additional information for S3 buckets, Elasticsearch domains, and API Gateway V2 stages. - Customers can successfully use legacy clients with Transfer Family endpoints enabled for FTPS and FTP behind routers, firewalls, and load balancers by providing a Custom IP address used for data channel communication. - BucketOwnerAccess is currently not supported - DocumentDB documentation-only edits - Updated documentation for CreateEnvironmentEC2 to explain that because Amazon Linux AMI has ended standard support as of December 31, 2020, we recommend you choose Amazon Linux 2--which includes long term support through 2023--for new AWS Cloud9 environments. - Releasing new APIs for AWS QuickSight Folders - Update GetChannelSchedule to return information on ad breaks. - Amazon CloudFront adds support for a new security policy, TLSv1.2_2021. - AWS License Manager now allows license administrators and end users to communicate to each other by setting custom status reasons when updating the status on a granted license. - This release adds support for provisioning your own IP (BYOIP) range in multiple regions. This feature is in limited Preview for this release. Contact your account manager if you are interested in this feature. - Added the following parameters to ECS targets: CapacityProviderStrategy, EnableECSManagedTags, EnableExecuteCommand, PlacementConstraints, PlacementStrategy, PropagateTags, ReferenceId, and Tags - This release replaces previous generation CloudSearch instances with equivalent new instances that provide better stability at the same price. - Adds support for S3 based full repository analysis and changed lines scan. - CloudFormation registry service now supports 3rd party public type sharing - Amazon Kendra now supports the indexing of web documents for search through the web crawler. - Enable ml.g4dn instance types for SageMaker Batch Transform and SageMaker Processing - This release enables Database Activity Streams for RDS Oracle - This release adds a new API UpdateSipMediaApplicationCall, to update an in-progress call for SipMediaApplication. - Adds support for multi-Region keys - This release adds support for VLAN-tagged network traffic over an Elastic Network Interface (ENI). This feature is in limited Preview for this release. Contact your account manager if you are interested in this feature. - This release enables fast cloning in Aurora Serverless. You can now clone between Aurora Serverless clusters and Aurora Provisioned clusters. - Adds AWS Secrets Manager Access Token Authentication for Source Locations - Redshift Data API service now supports SQL parameterization. - This release adds new sets of APIs: AssociateBot, DisassociateBot, and ListBots. You can use it to programmatically add an Amazon Lex bot or Amazon Lex V2 bot on the specified Amazon Connect instance - EC2 M5n, M5dn, R5n, R5dn metal instances with 100 Gbps network performance and Elastic Fabric Adapter (EFA) for ultra low latency - Update lexv2-runtime client to latest version - Update lexv2-models client to latest version - Added "LEARNING" status for anomaly detector and updated description for "Offset" parameter in MetricSet APIs. - Adds support for data store partitions. - We have verified the APIs being released here and are ready to release - Amazon EC2 adds new AMI property to flag outdated AMIs - AWS MediaLive now supports OCR-based conversion of DVB-Sub and SCTE-27 image-based source captions to WebVTT, and supports ingest of ad avail decorations in HLS input manifests. - When you enable source failover, you can now designate one of two sources as the primary source. You can choose between two failover modes to prevent any disruption to the video stream. Merge combines the sources into a single stream. Failover allows switching between a primary and a backup stream. - Using SageMaker Edge Manager with AWS IoT Greengrass v2 simplifies accessing, maintaining, and deploying models to your devices. You can now create deployable IoT Greengrass components during edge packaging jobs. You can choose to create a device fleet with or without creating an AWS IoT role alias. - AppMesh now supports additional routing capabilities in match and rewrites for Gateway Routes and Routes. Additionally, App Mesh also supports specifying DNS Response Types in Virtual Nodes. - Added InvalidClusterStateFault to the ModifyAquaConfiguration API, thrown when calling the API on a non available cluster. - This SDK release adds support for UpdateAccount API to allow users to update their default license on Chime account. - This release adds a new optional parameter connectivityType (public, private) for the CreateNatGateway API. Private NatGateway does not require customers to attach an InternetGateway to the VPC and can be used for communication with other VPCs and on-premise networks. - AWS Resource Access Manager (RAM) is releasing new field isResourceTypeDefault in ListPermissions and GetPermission response, and adding permissionArn parameter to GetResourceShare request to filter by permission attached - Release BatchGetRecord API for AWS SageMaker Feature Store Runtime. - Amazon Cognito now supports targeted sign out through refresh token revocation - Adding MAP_ALL task type support. - This release supports KMS customer-managed Customer Master Keys (CMKs) on member-specific Hyperledger Fabric resources. - Documentation updates for the AWS Transfer Family service. - Support for unstructured text inputs in the items dataset to to automatically extract key information from product/content description as an input when creating solution versions. - This is the initial SDK release for AWS Proton - AWS Kendra now supports checking document status. - This release adds support for auditing end-user access to files, folders, and file shares using Windows event logs, enabling customers to meet their security and compliance needs. - increase max pagesize for List/Search apis - This release of the Amazon Macie API introduces stricter validation of S3 object criteria for classification jobs. - Documentation updates for cognito-idp - AWS SageMaker -Releasing new APIs related to Callback steps in model building pipelines. Adds experiment integration to model building pipelines. - Add SampleSize variable to S3Target to enable s3-sampling feature through API. - Update regex validation in kmsKeyArn and s3 path API parameters for AWS Personalize APIs - Added updateConfig option that allows customers to control upgrade velocity in Managed Node Group. - Documentation updates for RDS: fixing an outdated link to the RDS documentation in DBInstance$DBInstanceStatus - The new GetDimensionKeyDetails action retrieves the attributes of the specified dimension group for a DB instance or data source. - AWS CloudTrail supports data events on new service resources, including Amazon DynamoDB tables and S3 Object Lambda access points. - Add support for automatically setting the H.264 adaptive quantization and GOP B-frame fields. - Documentation updates for Amazon EC2 Auto Scaling - Documentation updates for Amazon QLDB - S3 Inventory now supports Bucket Key Status - Amazon S3 Batch Operations now supports S3 Bucket Keys. - Documentation updates for Route 53 Resolver - Documentation updates for ssm to fix customer reported issue - Added optional field AutoMLOverrideStrategy to CreatePredictor API that allows users to customize AutoML strategy. If provided in CreatePredictor request, this field is visible in DescribePredictor and GetAccuracyMetrics responses. - Update BuildRequires and Requires from setup.py - Update to version 1.17.86 - You can now launch EC2 instances with GP3 volumes when using Auto Scaling groups with Launch Configurations - Documentation updates for Lightsail - Documentation updates for Amazon ECS. - This SDK release adds support for DocDB global clusters. - Documentation updates for AWS Identity and Access Management (IAM). - Introduction of a RETIRED status for devices. - This release adds SMS sandbox in Amazon SNS and the ability to view all configured origination numbers. The SMS sandbox provides a safe environment for sending SMS messages, without risking your reputation as an SMS sender. - Amazon Polly adds new Canadian French voice -Gabrielle. Gabrielle is available as Neural voice only. - Added idempotency to CreateNetworkInterface using the ClientToken parameter. - Added six new public customer logging APIs to allow customers to set/get/reset log levels at resource type and resource id level. The log level set from the APIs will be used to filter log messages that can be emitted to CloudWatch in customer accounts. - Bugfixes -The DiscoverInstances API operation now provides an option to return all instances for health-checked services when there are no healthy instances available. - Allowing dot(.) character in table name for RDS and Redshift as source connector. - Adds support for calculation of routes, resource tagging and customer provided KMS keys. - Added SecurityDescriptorCopyFlags option that allows for control of which components of SMB security descriptors are copied from source to destination objects. - Releasing new APIs for AWS IoT Events Alarms - Introduces support for using our desktop testing service with applications hosted within your Virtual Private Cloud (VPC). - Amazon Kendra now suggests popular queries in order to help guide query typing and help overall accuracy. - IoT SiteWise Monitor Portal API updates to add alarms feature configuration. - Documentation updates for Resource Groups. - Documentation updates for Lightsail - Releasing new APIs for AWS IoT Events Alarms - This release adds LZ4 data compression support to FSx for Lustre to reduce storage consumption of both file system storage and file system backups. - Documentation updates for Amazon SQS for General Availability of high throughput for FIFO queues. - This release removes resource ids and tagging support for VPC security group rules. - Support STANDARD permissions mode in CreateLedger and DescribeLedger. Add UpdateLedgerPermissionsMode to update permissions mode on existing ledgers. - Documentation fix for CloudFront - Add ConflictException to DeleteOutpost, CreateOutpost - Adds scheduler count selection for Environments using Airflow version 2.0.2 or later. - This release adds resource ids and tagging support for VPC security group rules. - The release adds support for registering External instances to your Amazon ECS clusters. - This release enables customers to store CRLs in S3 buckets with Block Public Access enabled. The release adds the S3ObjectAcl parameter to the CreateCertificateAuthority and UpdateCertificateAuthority APIs to allow customers to choose whether their CRL will be publicly available. - AWS Transfer Family customers can now use AWS Managed Active Directory or AD Connector to authenticate their end users, enabling seamless migration of file transfer workflows that rely on AD authentication, without changing end users' credentials or needing a custom authorizer. - This release includes support for a new feature: Job templates for AWS IoT Device Management Jobs. The release includes job templates as a new resource and APIs for managing job templates. - Adds support for Linux device types in WorkspaceAccessProperties - Add new parameters on RegisterUser and UpdateUser APIs to assign or update external ID associated to QuickSight users federated through web identity. - Introduced FindingReasonCodes, PlatformDifferences, DiskResourceUtilization and NetworkResourceUtilization to GetRightsizingRecommendation action - Adds support for 1) additional instance types, 2) additional instance metrics, 3) finding reasons for instance recommendations, and 4) platform differences between a current instance and a recommended instance type. - This release adds support for creating and managing EC2 On-Demand Capacity Reservations on Outposts. - This release provides dimensions and unit support for metric filters. - Update efs client to latest version - Documentation updates for Amazon S3 - Updated attribute statistics in DescribeDatasetImportJob response to support Long values - New PUPPET_API_CRL attribute returned by DescribeServers API; new EngineVersion of 2019 available for Puppet Enterprise servers. - Added new API to stop a solution version creation that is pending or in progress for Amazon Personalize - Update lexv2-models client to latest version - Add ARN based Row Level Security support to CreateDataSet/UpdateDataSet APIs. - Documentation updates for AWS Identity and Access Management (IAM). - Kinesis Data Analytics now allows rapid iteration on Apache Flink stream processing through the Kinesis Data Analytics Studio feature. - Amazon Rekognition Custom Labels adds support for customer managed encryption, using AWS Key Management Service, of image files copied into the service and files written back to the customer. - Add pagination to ListUserTags operation - Update the EKS AddonActive waiter. - With this release, customers can easily use Predictive Scaling as a policy directly through Amazon EC2 Auto Scaling configurations to proactively scale their applications ahead of predicted demand. - Documentation updates for Amazon Lightsail. - Update BuildRequires and Requires from setup.py -Update to version 1.17.75 - Documentation updates for support - AWS App Runner is a service that provides a fast, simple, and cost-effective way to deploy from source code or a container image directly to a scalable and secure web application in the AWS Cloud. - This release enables compute optimizer to support exporting recommendations to Amazon S3 for EBS volumes and Lambda Functions. - Amazon Personalize now supports the ability to optimize a solution for a custom objective in addition to maximizing relevance. - AWS License Manager now supports periodic report generation. - Documentation updates for AWS IoT SiteWise. - Update lexv2-models client to latest version - MediaConnect now supports JPEG XS for AWS Cloud Digital Interface (AWS CDI) uncompressed workflows, allowing you to establish a bridge between your on-premises live video network and the AWS Cloud. - Documentation updates for Amazon A2I Runtime model - APIs for AWS Application Cost Profiler - Neptune support for CopyTagsToSnapshots - AWS IoT Core Device Advisor is fully managed test capability for IoT devices. Device manufacturers can use Device Advisor to test their IoT devices for reliable and secure connectivity with AWS IoT. - Documentation updates for elasticache - Update InputTransformer variable limit from 10 to 100 variables. - Block endpoint resolution of clients configured with S3 pseudo-regions (e.g. aws-global, s3-external-1) that will never resolve to a correct access point endpoint. - This release of the Amazon Macie API adds support for defining run-time, S3 bucket criteria for classification jobs. It also adds resources for querying data about AWS resources that Macie monitors. - Adds support for cold storage. - Updated descriptions to add notes on array lengths. - Updated descriptions of array parameters to add the restrictions on the array and value lengths. - Transcribe Medical now supports identification of PHI entities within transcripts - Text-only updates for bundled documentation feedback tickets -spring 2021. - Add validation to only attempt to connect to FIPS endpoints with a FIPS pseudo-region if the pseudo-region is explicitly known to the SDK. - High Memory virtual instances are powered by Intel Sky Lake CPUs and offer up to 12TB of memory. - AWS Systems Manager Incident Manager enables faster resolution of critical application availability and performance issues, management of contacts and post-incident analysis - Documentation updates for Amazon S3-control - AWS Elemental MediaConvert SDK has added support for Kantar SNAP File Audio Watermarking with a Kantar Watermarking account, and Display Definition Segment(DDS) segment data controls for DVB-Sub caption outputs. - This release contains updates for Amazon ECS. - Documentation updates for CodeArtifact - This release updates create-nodegroup and update-nodegroup-config APIs for adding/updating taints on managed nodegroups. - Add three new optional fields to support filtering and configurable sub-band in WirelessGateway APIs. The filtering is for all the RF region supported. The sub-band configuration is only applicable to LoRa gateways of US915 or AU915 RF region. - This release adds new APIs to associate, disassociate and list related items in SSM OpsCenter; and this release adds DisplayName as a version-level attribute for SSM Documents and introduces two new document types: ProblemAnalysis, ProblemAnalysisTemplate. - Amazon Kinesis Analytics now supports ListApplicationVersions and DescribeApplicationVersion API for Apache Flink applications - Adds paginator to multiple APIs: By default, the paginator allows user to iterate over the results and allows the CLI to return up to 1000 results. - This release adds Tag Based Access Control to AWS Lake Formation service - Enforcing UUID style for parameters that are already in UUID format today. Documentation specifying eventual consistency of lookoutmetrics resources. - Adds tagging support for Connect APIs CreateIntegrationAssociation and CreateUseCase. - Bugfix: Improved input validation for RegisterInstance action, InstanceId field - IAM Access Control for Amazon MSK enables you to create clusters that use IAM to authenticate clients and to allow or deny Apache Kafka actions for those clients. - SSM feature release -ChangeCalendar integration with StateManager. - AWS Snow Family adds APIs for ordering and managing Snow jobs with long term pricing - This release updates the CreateAssessmentFrameworkControlSet and UpdateAssessmentFrameworkControlSet API data types. For both of these data types, the control set name is now a required attribute. - Documentation Updates for Amazon Nimble Studio. - Amazon Kinesis Analytics now supports RollbackApplication for Apache Flink applications to revert the application to the previous running version - Amazon SageMaker Autopilot now provides the ability to automatically deploy the best model to an endpoint - Documentation updates for FinSpace API. - Documentation updates for FinSpaceData API. - Added GetCostEstimation and StartCostEstimation to get the monthly resource usage cost and added ability to view resource health by AWS service name and to search insights be AWS service name. - This release adds the KeyStorageSecurityStandard parameter to the CreateCertificateAuthority API to allow customers to mandate a security standard to which the CA key will be stored within. - Documentation updates for health - This release adds the ability to search for and order international phone numbers for Amazon Chime SIP media applications. - Enable retrying Training and Tuning Jobs that fail with InternalServerError by setting RetryStrategy. - Update FinSpace Data serviceAbbreviation - This is the initial SDK release for the data APIs for Amazon FinSpace. Amazon FinSpace is a data management and analytics application for the financial services industry (FSI). - Update mturk client to latest version - Added new BatchCreateChannelMembership API to support multiple membership creation for channels - This is the initial SDK release for the management APIs for Amazon FinSpace. Amazon FinSpace is a data management and analytics service for the financial services industry (FSI). - Updated ASFF to add the following new resource details objects: AwsEc2NetworkAcl, AwsEc2Subnet, and AwsElasticBeanstalkEnvironment. - Update URL for dataset export job documentation. - Allows user defined names for Changes in a ChangeSet. Users can use ChangeNames to reference properties in another Change within a ChangeSet. This feature allows users to make changes to an entity when the entity identifier is not yet available while constructing the StartChangeSet request. - Added new DeleteResourceTree operation that helps in deleting all the child resources of a given resource including the given resource. - Adds ROS2 Foxy as a supported Robot Software Suite Version and Gazebo 11 as a supported Simulation Software Suite Version - CloudFront now supports CloudFront Functions, a native feature of CloudFront that enables you to write lightweight functions in JavaScript for high-scale, latency-sensitive CDN customizations. - This release introduces GetMatches and MergeProfiles APIs to fetch and merge duplicate profiles - The Amazon Macie API now provides S3 bucket metadata that indicates whether a bucket policy requires server-side encryption of objects when objects are uploaded to the bucket. - Minor text updates for AWS Organizations API Reference - Add support for EphemeralStorage on TaskDefinition and TaskOverride - Increase AppInstanceUserId length to 64 characters - Updated max number of tags that can be attached from 200 to 50. MaxContacts is now an optional parameter for the UpdateQueueMaxContact API. - MediaPackage now offers the option to place your Sequence Parameter Set (SPS), Picture Parameter Set (PPS), and Video Parameter Set (VPS) encoder metadata in every video segment instead of in the init fragment for DASH and CMAF endpoints. - Amazon Nimble Studio is a virtual studio service that empowers visual effects, animation, and interactive content teams to create content securely within a scalable, private cloud service. - AWS IoT SiteWise interpolation API will get interpolated values for an asset property per specified time interval during a period of time. - Add CallAs parameter to GetTemplateSummary to enable use with StackSets delegated administrator integration - This release restricts using backslashes in control, assessment, and framework names. The controlSetName field of the UpdateAssessmentFrameworkControlSet API now allows strings without backslashes. - Adding support for Red Hat Enterprise Linux with HA for Reserved Instances. - Add a new optional field MessageType to support Sidewalk devices in SendDataToWirelessDevice API - Amazon Kinesis Data Analytics now supports custom application maintenance configuration using UpdateApplicationMaintenanceConfiguration API for Apache Flink applications. Customers will have visibility when their application is under maintenance status using 'MAINTENANCE' application status. - Added support for exporting data imported into an Amazon Personalize dataset to a specified data source (Amazon S3 bucket). - Documentation updates for mediaconvert - Include KMS Key Details in Repository Association APIs to enable usage of customer managed KMS Keys. - Adding Kafka Client Auth Related Parameters - This release updates existing Amazon EKS input validation so customers will see an InvalidParameterException instead of a ParamValidationError when they enter 0 for minSize and/or desiredSize. It also adds LaunchTemplate information to update responses and a new "CUSTOM" value for AMIType. - Add support for Widevine DRM on CMAF origin endpoints. Both Widevine and FairPlay DRMs can now be used simultaneously, with CBCS encryption. - Amazon SNS adds two new attributes, TemplateId and EntityId, for using sender IDs to send SMS messages to destinations in India. - This release adds EstimatedTimeRemaining minutes field to the DescribeDatasetImportJob, DescribePredictor, DescribeForecast API response which denotes the time remaining to complete the job IN_PROGRESS. - Replaced the term "master" with "administrator". Added new actions to replace AcceptInvitation, GetMasterAccount, and DisassociateFromMasterAccount. In Member, replaced MasterId with AdministratorId. - Documentation updates for cognito-idp - This release introduces log delivery of Redis slow log from Amazon ElastiCache. - Added parameters to track the data volume in bytes for a member account. Deprecated the existing parameters that tracked the volume as a percentage of the allowed volume for a behavior graph. Changes reflected in MemberDetails object. - Add operations: AddPartner, DescribePartners, DeletePartner, and UpdatePartnerStatus to support tracking integration status with data partners. - Support new S3 Recording Config allowing customers to write downlink data directly to S3. - Amazon Kendra now enables users to override index-level boosting configurations for each query. - Added support for creating and updating stack sets with self-managed permissions from templates that reference macros. - Added support for Amazon SageMaker in Machine Learning Savings Plans - Adding support for Sagemaker savings plans in GetSavingsPlansPurchaseRecommendation API - STS now supports assume role with Web Identity using JWT token length upto 20000 characters - AWS DMS added support of TLS for Kafka endpoint. Added Describe endpoint setting API for DMS endpoints. - For flows that use Listener protocols, you can now easily locate an output's outbound IP address for a private internet. Additionally, MediaConnect now supports the Waiters feature that makes it easier to poll for the status of a flow until it reaches its desired state. - Add exception for DeleteRemediationConfiguration and DescribeRemediationExecutionStatus - Documentation updates for route53 - This release adds tagging support for CodeStar Connections Host resources - Documentation updates for Amazon Lightsail. - This release adds the SourceIdentity parameter that can be set when assuming a role. - The InferICD10CM API now returns TIME_EXPRESSION entities that refer to medical conditions. - Clarify that enabling or disabling automated backups causes a brief downtime, not an outage. - Added support to enable AQUA in Amazon Redshift clusters. - Support for cross-region and cross-account backup copies - AWS CodeBuild now allows you to set the access permissions for build artifacts, project artifacts, and log files that are uploaded to an Amazon S3 bucket that is owned by another account. - Add support for case sensitive table level restore - Add paginator support to DescribeStoreImageTasks and update documentation. - CreateProtection now throws InvalidParameterException instead of InternalErrorException when system tags (tag with keys prefixed with "aws:") are passed in. - This release introduces support for Amazon Lookout for Equipment. - Documentation updates for archived.kinesisvideo - This release allows RoboMaker customers to specify custom tools to run with their simulation job - This release provides support for image updates - Documentation updates for AWS RAM resource sharing - Documentation updates for Put-Integration API - Amazon EC2 Auto Scaling announces Warm Pools that help applications to scale out faster by pre-initializing EC2 instances and save money by requiring fewer continuously running instances - File Gateway APIs now support FSx for Windows as a cloud storage. - IAM Access Analyzer now analyzes your CloudTrail events to identify actions and services that have been used by an IAM entity (user or role) and generates an IAM policy that is based on that activity. - This release adds tagging support for all AWS ElastiCache resources except Global Replication Groups. - This release adds support for the Auto-Record to S3 feature. Amazon IVS now enables you to save your live video to Amazon S3. - Add new service -Application Migration Service. - Supports removing a label or labels from a parameter, enables ScheduledEndTime and ChangeDetails for StartChangeRequestExecution API, supports critical/security/other noncompliant count for patch API. - MediaLive VPC outputs update to include Availability Zones, Security groups, Elastic Network Interfaces, and Subnet Ids in channel response - This release adds support for storing EBS-backed AMIs in S3 and restoring them from S3 to enable cross-partition copying of AMIs - Documentation updates for Cloud9 - AWS Audit Manager has updated the GetAssessment API operation to include a new response field called userRole. The userRole field indicates the role information and IAM ARN of the API caller. - MediaLive now support HTML5 Motion Graphics overlay - Added destination properties for Zendesk. - SPEKE v2 is an upgrade to the existing SPEKE API to support multiple encryption keys, based on an encryption contract selected by the customer. - This release adds support for Block Device Mappings for container image builds, and adds distribution configuration support for EC2 launch templates in AMI builds. - Route 53 Resolver DNS Firewall is a firewall service that allows you to filter and regulate outbound DNS traffic for your VPCs. - MediaConvert now supports HLS ingest, sidecar WebVTT ingest, Teletext color & style passthrough to TTML subtitles, TTML to WebVTT subtitle conversion with style, & DRC profiles in AC3 audio. - This release adds support for state detail for Amazon Lightsail container services. - AWS Kendra's ServiceNow data source now supports OAuth 2.0 authentication and knowledge article filtering via a ServiceNow query. - Lex now supports the ja-JP locale - Update lex-runtime client to latest version - Added Firewall Manager policy support for AWS Route 53 Resolver DNS Firewall. - VPC Flow Logs Service adds a new API, GetFlowLogsIntegrationTemplate, which generates CloudFormation templates for Athena. - Added support for ScopeDownStatement for ManagedRuleGroups, Labels, LabelMatchStatement, and LoggingFilter. For more information on these features, see the AWS WAF Developer Guide. - Added ability to prefix search on attribute value for ListThings API. - Minor documentation and link updates. - Amazon Transcribe now supports creating custom language models in the following languages: British English (en-GB), Australian English (en-AU), Indian Hindi (hi-IN), and US Spanish (es-US). - Minor documentation and link updates. - Support for customer managed KMS encryption of Comprehend custom models - Minor documentation updates and link updates. - AWS Batch adds support for Amazon EFS File System - Added the ability to assign tag values to Detective behavior graphs. Tag values can be used for attribute-based access control, and for cost allocation for billing. - Add Sidewalk support to APIs: GetWirelessDevice, ListWirelessDevices, GetWirelessDeviceStatistics. Add Gateway connection status in GetWirelessGatewayStatistics API. - 1. Added a new parameter RegionConcurrencyType in OperationPreferences. 2. Changed the name of AccountUrl to AccountsUrl in DeploymentTargets parameter. - Add ImageId input parameter to CreateEnvironmentEC2 endpoint. New parameter enables creation of environments with different AMIs. - This release adds MACsec support to AWS Direct Connect - Enable customers to share access to their Redshift clusters from other VPCs (including VPCs from other accounts). - This release adds support for mobile device access rules management in Amazon WorkMail. - Minor documentation updates and link updates. - Minor documentation updates and link updates. - Amazon SageMaker Autopilot now supports 1) feature importance reports for AutoML jobs and 2) PartialFailures for AutoML jobs - Adding support to push SSH keys to the EC2 serial console in order to allow an SSH connection to your Amazon EC2 instance's serial port. - Update cloudwatch client to latest version - This SDK release adds two new dataset features: 1) support for specifying a database connection as a dataset input 2) support for dynamic datasets that accept configurable parameters in S3 path. - This release adds support for Batch Predictions in Amazon Fraud Detector. - ReplaceRootVolume feature enables customers to replace the EBS root volume of a running instance to a previously known state. Add support to grant account-level access to the EC2 serial console - Adding new APIs to support ConformancePack Compliance CI in Aggregators - Added support for journey pause/resume, journey updatable import segment and journey quiet time wait. - Added custom request handling and custom response support in rule actions and default action; Added the option to inspect the web request body as parsed and filtered JSON. - AWS Identity and Access Management GetAccessKeyLastUsed API will throw a custom error if customer public key is not found for access keys. - Allow Dots in Registry and Schema Names for CreateRegistry, CreateSchema; Fixed issue when duplicate keys are present and not returned as part of QuerySchemaVersionMetadata. - This release adds support for Event Subscriptions to DocumentDB. - Amazon Location added support for specifying pricing plan information on resources in alignment with our cost model. - Support tag-on-create for WirelessDevice. - This release adds an optional parameter named FlowDefinition in PutIntegrationRequest. - Add support for SageMaker Model Builder Pipelines Targets to EventBridge - Amazon Transcribe now supports tagging words that match your vocabulary filter for batch transcription. - Allowing uppercase alphabets for RDS and Redshift database names. - Documentation updates for Amazon SQS - This release introduces AWS tagging support for Amazon Rekognition collections, stream processors, and Custom Label models. - This feature allows customer to specify the environment variables in their CreateTrainingJob requests. - EML now supports handling HDR10 and HLG 2020 color space from a Link input. - Amazon Lookout for Metrics is now generally available. You can use Lookout for Metrics to monitor your data for anomalies. For more information, see the Amazon Lookout for Metrics Developer Guide. - Added support for enabling and disabling data retention in the CreateProfile and UpdateProfile APIs and retrieving the state of data retention for a profile in the GetProfile API. - This release allows SSM Explorer customers to enable OpsData sources across their organization when creating a resource data sync. - Documentation updates for route53 - Fix an issue with XML newline normalization in PutBucketLifecycleConfiguration requests. - Documentation updates for Amazon S3 - Documentation updates for s3-control - maximumEfaInterfaces added to DescribeInstanceTypes API - Updated the parameters to make name required for CreateGroup API. - You can now create cost categories with inherited value rules and specify default values for any uncategorized costs. - Updated maximum allowed size of action parameter from 64 to 1024 - Removed APIs to control AQUA on clusters. - Documentation updates for IAM operations and descriptions. - GameLift adds support for using event notifications to monitor game session placements. Specify an SNS topic or use CloudWatch Events to track activity for a game session queue. - This release adds support for UEFI boot on selected AMD-and Intel-based EC2 instances. - Added support to enable AQUA in Amazon Redshift clusters. - Documentation updates for CodeArtifact - This release of the Amazon Macie API adds support for publishing sensitive data findings to AWS Security Hub and specifying which categories of findings to publish to Security Hub. - Adding authentication support for pulling images stored in private Docker registries to build containers for real-time inference. - X2gd instances are the next generation of memory-optimized instances powered by AWS-designed, Arm-based AWS Graviton2 processors. - Updated mislabeled exceptions for S3 Object Lambda - Amazon EC2 Auto Scaling Instance Refresh now supports phased deployments. - S3 Object Lambda is a new S3 feature that enables users to apply their own custom code to process the output of a standard S3 GET request by automatically invoking a Lambda function with a GET request - Add new fields for additional information about VPC endpoint for clusters with reallocation enabled, and a new field for total storage capacity for all clusters. - S3 Object Lambda is a new S3 feature that enables users to apply their own custom code to process the output of a standard S3 GET request by automatically invoking a Lambda function with a GET request - New object for separate provider and customer values. New objects track S3 Public Access Block configuration and identify sensitive data. BatchImportFinding requests are limited to 100 findings. - Support new target device ml_eia2 in SageMaker CreateCompilationJob API - Making serviceRole an optional parameter when creating a compute environment. If serviceRole is not provided then Service Linked Role will be created (or reused if it already exists). - Allow empty list for function response types - Documentation updates for AWS Identity and Access Management (IAM). - This release adds support for the SRT-listener protocol on sources and outputs. - This release adds support for the ValidatePolicy API. IAM Access Analyzer is adding over 100 policy checks and actionable recommendations that help you validate your policies during authoring. - MediaTailor channel assembly is a new manifest-only service that allows you to assemble linear streams using your existing VOD content. - This release adds UPDATE_FAILED and UNAVAILABLE MWAA environment states. - GameLift expands to six new AWS Regions, adds support for multi-location fleets to streamline management of hosting resources, and lets you customize more of the game session placement process. - Initial release of AWS Fault Injection Simulator, a managed service that enables you to perform fault injection experiments on your AWS workloads - AWS CodeDeploy can now detect instances running an outdated revision of your application and automatically update them with the latest revision. - Update emr client to latest version - This is for ecs exec feature release which includes two new APIs -execute-command and update-cluster and an AWS CLI customization for execute-command API - MediaTailor channel assembly is a new manifest-only service that allows you to assemble linear streams using your existing VOD content. - Adds API support for WorkSpaces bundle management operations. - Added optional billingViewArn field for OSG. - Update comprehend client to latest version - Update wafv2 client to latest version - Update medialive client to latest version - Update network-firewall client to latest version - Update accessanalyzer client to latest version - Update ssm client to latest version - Update s3 client to latest version - Update backup client to latest version - Update rds client to latest version - Update codeguruprofiler client to latest version - Update autoscaling client to latest version - Update iotwireless client to latest version - Update efs client to latest version - Update lambda client to latest version - Update emr client to latest version - Update kinesis-video-archived-media client to latest version - Update s3 client to latest version - Update s3control client to latest version - Update autoscaling client to latest version - Update license-manager client to latest version - Update network-firewall client to latest version - Update ec2 client to latest version - Update athena client to latest version - Update medialive client to latest version - Update shield client to latest version - Update codepipeline client to latest version - Update appflow client to latest version - Update servicediscovery client to latest version - Update events client to latest version - Update sagemaker client to latest version - Update mwaa client to latest version - Update forecast client to latest version - Update secretsmanager client to latest version - Update macie2 client to latest version - Update codebuild client to latest version - Update es client to latest version - Update acm client to latest version - Update wellarchitected client to latest version - Update iotwireless client to latest version - Update directconnect client to latest version - Fix an issue with XML newline normalization that could result in the DeleteObjects operation incorrectly deleting the wrong keys. - Update managedblockchain client to latest version - Update events client to latest version - Update compute-optimizer client to latest version - Update datasync client to latest version - Add a `__bytes__` method to the `Binary` DynamoDB type. - Update alexaforbusiness client to latest version - Update ssm client to latest version - Update codepipeline client to latest version - Update eks client to latest version - Update s3 client to latest version - Update sso-admin client to latest version - Update eks client to latest version - Update emr client to latest version - Update databrew client to latest version - Update detective client to latest version - Update lightsail client to latest version - Update imagebuilder client to latest version - Update transfer client to latest version - Update es client to latest version - Update mediapackage-vod client to latest version - Update appflow client to latest version - Update ecr-public client to latest version - Update compute-optimizer client to latest version - Update glue client to latest version - Update redshift-data client to latest version - Update s3control client to latest version - Update autoscaling client to latest version - Update pinpoint client to latest version - Update quicksight client to latest version - Update iotevents client to latest version - Update connect client to latest version - Update sagemaker-runtime client to latest version - Update sagemaker client to latest version - Update rds client to latest version - Update health client to latest version - Update sagemaker client to latest version - Update cloudformation client to latest version - Update codebuild client to latest version - Update ec2 client to latest version - Update config client to latest version - Update lookoutvision client to latest version This update for python-s3transfer fixes the following issues: - Update 0.5.0: (bsc#1189649) - Add set_exception to CRTTransferFuture to allow setting exceptions in subscribers. - Add optional AWS Common Runtime (CRT) support. The AWS CRT provides a C-based S3 transfer client that can improve transfer throughput. - Fix seek behavior in ReadFileChunk class - Block TransferManager methods for S3 Object Lambda resources - Add server side encryption context into allowed list - Update to version 0.2.1 (bsc#1146853) - Update to 0.1.13 (bsc#1075263) This update for aws-cli fixes the following issues: - Update to version 1.20.7 (bsc#1189649) - Update Requires in spec file from setup.py aws-cli-1.20.7-30.3.1.noarch.rpm aws-cli-1.20.7-30.3.1.src.rpm python-boto3-1.18.7-23.4.1.src.rpm python-botocore-1.21.7-37.4.1.src.rpm python-s3transfer-0.5.0-9.4.1.src.rpm python3-boto3-1.18.7-23.4.1.noarch.rpm python3-botocore-1.21.7-37.4.1.noarch.rpm python3-s3transfer-0.5.0-9.4.1.noarch.rpm openSUSE-SLE-15.3-2021-3964 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: nodejs14 was updated to 14.18.1: * deps: update llhttp to 2.1.4 - HTTP Request Smuggling due to spaced in headers (bsc#1191601, CVE-2021-22959) - HTTP Request Smuggling when parsing the body (bsc#1191602, CVE-2021-22960) Changes in 14.18.0: * buffer: + introduce Blob + add base64url encoding option * child_process: + allow options.cwd receive a URL + add timeout to spawn and fork + allow promisified exec to be cancel + add 'overlapped' stdio flag * dns: add "tries" option to Resolve options * fs: + allow empty string for temp directory prefix + allow no-params fsPromises fileHandle read + add support for async iterators to fsPromises.writeFile * http2: add support for sensitive headers * process: add 'worker' event * tls: allow reading data into a static buffer * worker: add setEnvironmentData/getEnvironmentData Changes in 14.17.6 * deps: upgrade npm to 6.14.15 which fixes a number of security issues (bsc#1190057, CVE-2021-37701, bsc#1190056, CVE-2021-37712, bsc#1190055, CVE-2021-37713, bsc#1190054, CVE-2021-39134, bsc#1190053, CVE-2021-39135) nodejs14-14.18.1-15.21.2.src.rpm nodejs14-14.18.1-15.21.2.x86_64.rpm nodejs14-devel-14.18.1-15.21.2.x86_64.rpm nodejs14-docs-14.18.1-15.21.2.noarch.rpm npm14-14.18.1-15.21.2.x86_64.rpm nodejs14-14.18.1-15.21.2.s390x.rpm nodejs14-devel-14.18.1-15.21.2.s390x.rpm npm14-14.18.1-15.21.2.s390x.rpm nodejs14-14.18.1-15.21.2.ppc64le.rpm nodejs14-devel-14.18.1-15.21.2.ppc64le.rpm npm14-14.18.1-15.21.2.ppc64le.rpm nodejs14-14.18.1-15.21.2.aarch64.rpm nodejs14-devel-14.18.1-15.21.2.aarch64.rpm npm14-14.18.1-15.21.2.aarch64.rpm openSUSE-SLE-15.3-2021-3959 moderate SUSE Updates openSUSE-SLE 15.3 This update for aide fixes the following issues: - Fix issue with Libgcrypt FIPS mode and AIDE by disabling MD5 in FIPS mode (bsc#1191422) aide-0.16-3.9.1.src.rpm aide-0.16-3.9.1.x86_64.rpm aide-test-0.16-3.9.1.x86_64.rpm aide-0.16-3.9.1.s390x.rpm aide-test-0.16-3.9.1.s390x.rpm aide-0.16-3.9.1.ppc64le.rpm aide-test-0.16-3.9.1.ppc64le.rpm aide-0.16-3.9.1.aarch64.rpm aide-test-0.16-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-4183 moderate SUSE Updates openSUSE-SLE 15.3 This update for cpuset fixes the following issues: - Fix wrong parentheses in the code that lead to an unsupported operand error (bsc#1191418) cpuset-1.6-3.3.1.noarch.rpm cpuset-1.6-3.3.1.src.rpm openSUSE-SLE-15.3-2022-18 moderate SUSE Updates openSUSE-SLE 15.3 This update for targetcli-fb fixes the following issues: - Fix sparse file creation - Do not install systemd files in 'setup.py', python2-targetcli-fb-2.1.54-3.3.1.noarch.rpm python3-targetcli-fb-2.1.54-3.3.1.noarch.rpm targetcli-fb-2.1.54-3.3.1.src.rpm targetcli-fb-common-2.1.54-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3896 low SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: Release notes update to version 15.3.20211201. (bsc#933411) - Added note about the disabled usage of unprivileged eBPF (jsc#SLE-22593) - Document the value change for 'ping_group_range'. (bsc#1193054) - Document the deprecation of 'KillMode=none'. (bsc#1183034) - Document the removal of NodeJS 10. (bsc#1191917) - Document where Vagrant Boxes is supported. - Updated note about PostgreSQL support. (bsc#1183998) - Updated note about AutoYaST compact mode. (bsc#1191408) release-notes-sles-15.3.20211201-3.17.1.noarch.rpm release-notes-sles-15.3.20211201-3.17.1.src.rpm openSUSE-SLE-15.3-2021-3953 moderate SUSE Updates openSUSE-SLE 15.3 This update for nvme-cli fixes the following issues: - Allow -1 as ctrl_loss_tmo value (bsc#1192348) - Fix segfauls while discovering (bsc#1191935) - Adding missing hunk (bsc#1182591) - Use pkg-config for libuuid dependency setup nvme-cli-1.13-3.10.1.src.rpm nvme-cli-1.13-3.10.1.x86_64.rpm nvme-cli-regress-script-1.13-3.10.1.x86_64.rpm nvme-cli-1.13-3.10.1.s390x.rpm nvme-cli-regress-script-1.13-3.10.1.s390x.rpm nvme-cli-1.13-3.10.1.ppc64le.rpm nvme-cli-regress-script-1.13-3.10.1.ppc64le.rpm nvme-cli-1.13-3.10.1.aarch64.rpm nvme-cli-regress-script-1.13-3.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-70 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-configshell-fb fixes the following issues: - Upgrade to latest upstream version v1.1.29 (jsc#SLE-17360): * setup.py: specify a version range for pyparsing * setup.py: lets stick to pyparsing v2.4.7 * Don't warn if prefs file doesn't exist - Update to version v1.1.28 from v1.1.27 (jsc#SLE-17360): * version 1.1.28 * Ensure that all output reaches the client when daemonized * Remove Epydoc markup from command messages * Remove epydoc imports and epydoc calls python-configshell-fb-1.1.29-3.3.1.src.rpm python2-configshell-fb-1.1.29-3.3.1.noarch.rpm python3-configshell-fb-1.1.29-3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-8 moderate SUSE Updates openSUSE-SLE 15.3 This update for mailx fixes the following issues: - To add description how to avoid such mailx does not send mails unless run via strace or in verbose mode. (bsc#1192916) - Fix name argument when calling '/usr/sbin/sendmail' (bsc#1180355) - If the openssl RNG is already seeded (on linux it always is) skip snake-oil reeseeding from file. Update man page accordingly. - Update man page with information that ssl2 and ssl3 are not only deprecated but currently unavailable and that tls1 forces TLS 1.0 but not later versions. mailx-12.5-3.3.1.src.rpm mailx-12.5-3.3.1.x86_64.rpm mailx-12.5-3.3.1.s390x.rpm mailx-12.5-3.3.1.ppc64le.rpm mailx-12.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-71 moderate SUSE Updates openSUSE-SLE 15.3 This update for container-suseconnect is a rebuild against updated go toolchain to ensure an up to date GO runtime. container-suseconnect-2.3.0-4.17.1.src.rpm container-suseconnect-2.3.0-4.17.1.x86_64.rpm container-suseconnect-2.3.0-4.17.1.s390x.rpm container-suseconnect-2.3.0-4.17.1.ppc64le.rpm container-suseconnect-2.3.0-4.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3944 important SUSE Updates openSUSE-SLE 15.3 This update for glib-networking fixes the following issues: Update to version 2.62.4: - CVE-2020-13645: Fixed a connection failure when the server identity is unset (bsc#1172460). glib-networking-2.62.4-3.3.1.src.rpm glib-networking-2.62.4-3.3.1.x86_64.rpm glib-networking-32bit-2.62.4-3.3.1.x86_64.rpm glib-networking-lang-2.62.4-3.3.1.noarch.rpm glib-networking-2.62.4-3.3.1.s390x.rpm glib-networking-2.62.4-3.3.1.ppc64le.rpm glib-networking-2.62.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3934 important SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nss fixes the following issues: Update to version 3.68.1: - CVE-2021-43527: Fixed a Heap overflow in NSS when verifying DER-encoded DSA or RSA-PSS signatures (bsc#1193170). libfreebl3-3.68.1-3.61.1.x86_64.rpm libfreebl3-32bit-3.68.1-3.61.1.x86_64.rpm libfreebl3-hmac-3.68.1-3.61.1.x86_64.rpm libfreebl3-hmac-32bit-3.68.1-3.61.1.x86_64.rpm libsoftokn3-3.68.1-3.61.1.x86_64.rpm libsoftokn3-32bit-3.68.1-3.61.1.x86_64.rpm libsoftokn3-hmac-3.68.1-3.61.1.x86_64.rpm libsoftokn3-hmac-32bit-3.68.1-3.61.1.x86_64.rpm mozilla-nss-3.68.1-3.61.1.src.rpm mozilla-nss-3.68.1-3.61.1.x86_64.rpm mozilla-nss-32bit-3.68.1-3.61.1.x86_64.rpm mozilla-nss-certs-3.68.1-3.61.1.x86_64.rpm mozilla-nss-certs-32bit-3.68.1-3.61.1.x86_64.rpm mozilla-nss-devel-3.68.1-3.61.1.x86_64.rpm mozilla-nss-sysinit-3.68.1-3.61.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.68.1-3.61.1.x86_64.rpm mozilla-nss-tools-3.68.1-3.61.1.x86_64.rpm libfreebl3-3.68.1-3.61.1.s390x.rpm libfreebl3-hmac-3.68.1-3.61.1.s390x.rpm libsoftokn3-3.68.1-3.61.1.s390x.rpm libsoftokn3-hmac-3.68.1-3.61.1.s390x.rpm mozilla-nss-3.68.1-3.61.1.s390x.rpm mozilla-nss-certs-3.68.1-3.61.1.s390x.rpm mozilla-nss-devel-3.68.1-3.61.1.s390x.rpm mozilla-nss-sysinit-3.68.1-3.61.1.s390x.rpm mozilla-nss-tools-3.68.1-3.61.1.s390x.rpm libfreebl3-3.68.1-3.61.1.ppc64le.rpm libfreebl3-hmac-3.68.1-3.61.1.ppc64le.rpm libsoftokn3-3.68.1-3.61.1.ppc64le.rpm libsoftokn3-hmac-3.68.1-3.61.1.ppc64le.rpm mozilla-nss-3.68.1-3.61.1.ppc64le.rpm mozilla-nss-certs-3.68.1-3.61.1.ppc64le.rpm mozilla-nss-devel-3.68.1-3.61.1.ppc64le.rpm mozilla-nss-sysinit-3.68.1-3.61.1.ppc64le.rpm mozilla-nss-tools-3.68.1-3.61.1.ppc64le.rpm libfreebl3-3.68.1-3.61.1.aarch64.rpm libfreebl3-hmac-3.68.1-3.61.1.aarch64.rpm libsoftokn3-3.68.1-3.61.1.aarch64.rpm libsoftokn3-hmac-3.68.1-3.61.1.aarch64.rpm mozilla-nss-3.68.1-3.61.1.aarch64.rpm mozilla-nss-certs-3.68.1-3.61.1.aarch64.rpm mozilla-nss-devel-3.68.1-3.61.1.aarch64.rpm mozilla-nss-sysinit-3.68.1-3.61.1.aarch64.rpm mozilla-nss-tools-3.68.1-3.61.1.aarch64.rpm openSUSE-SLE-15.3-2021-4014 moderate SUSE Updates openSUSE-SLE 15.3 This update for apparmor fixes the following issues: Changes in apparmor: - Add a profile for 'samba-bgqd'. (bsc#1191532) - Fix 'Requires' of python3 module. (bsc#1191690) apache2-mod_apparmor-2.13.6-3.8.1.x86_64.rpm apparmor-2.13.6-3.8.1.src.rpm apparmor-abstractions-2.13.6-3.8.1.noarch.rpm apparmor-docs-2.13.6-3.8.1.noarch.rpm apparmor-parser-2.13.6-3.8.1.x86_64.rpm apparmor-parser-lang-2.13.6-3.8.1.noarch.rpm apparmor-profiles-2.13.6-3.8.1.noarch.rpm apparmor-utils-2.13.6-3.8.1.noarch.rpm apparmor-utils-lang-2.13.6-3.8.1.noarch.rpm libapparmor-2.13.6-3.8.1.src.rpm libapparmor-devel-2.13.6-3.8.1.x86_64.rpm libapparmor1-2.13.6-3.8.1.x86_64.rpm libapparmor1-32bit-2.13.6-3.8.1.x86_64.rpm pam_apparmor-2.13.6-3.8.1.x86_64.rpm pam_apparmor-32bit-2.13.6-3.8.1.x86_64.rpm perl-apparmor-2.13.6-3.8.1.x86_64.rpm python3-apparmor-2.13.6-3.8.1.x86_64.rpm ruby-apparmor-2.13.6-3.8.1.x86_64.rpm apache2-mod_apparmor-2.13.6-3.8.1.s390x.rpm apparmor-parser-2.13.6-3.8.1.s390x.rpm libapparmor-devel-2.13.6-3.8.1.s390x.rpm libapparmor1-2.13.6-3.8.1.s390x.rpm pam_apparmor-2.13.6-3.8.1.s390x.rpm perl-apparmor-2.13.6-3.8.1.s390x.rpm python3-apparmor-2.13.6-3.8.1.s390x.rpm ruby-apparmor-2.13.6-3.8.1.s390x.rpm apache2-mod_apparmor-2.13.6-3.8.1.ppc64le.rpm apparmor-parser-2.13.6-3.8.1.ppc64le.rpm libapparmor-devel-2.13.6-3.8.1.ppc64le.rpm libapparmor1-2.13.6-3.8.1.ppc64le.rpm pam_apparmor-2.13.6-3.8.1.ppc64le.rpm perl-apparmor-2.13.6-3.8.1.ppc64le.rpm python3-apparmor-2.13.6-3.8.1.ppc64le.rpm ruby-apparmor-2.13.6-3.8.1.ppc64le.rpm apache2-mod_apparmor-2.13.6-3.8.1.aarch64.rpm apparmor-parser-2.13.6-3.8.1.aarch64.rpm libapparmor-devel-2.13.6-3.8.1.aarch64.rpm libapparmor1-2.13.6-3.8.1.aarch64.rpm pam_apparmor-2.13.6-3.8.1.aarch64.rpm perl-apparmor-2.13.6-3.8.1.aarch64.rpm python3-apparmor-2.13.6-3.8.1.aarch64.rpm ruby-apparmor-2.13.6-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3982 moderate SUSE Updates openSUSE-SLE 15.3 This update for librsvg fixes the following issues: - Bump required rust version to rust-1.53, in order to avoid a ppc64le crash (bsc#1189304, bsc#1191114) gdk-pixbuf-loader-rsvg-2.46.5-3.6.1.x86_64.rpm gdk-pixbuf-loader-rsvg-32bit-2.46.5-3.6.1.x86_64.rpm librsvg-2-2-2.46.5-3.6.1.x86_64.rpm librsvg-2-2-32bit-2.46.5-3.6.1.x86_64.rpm librsvg-2.46.5-3.6.1.src.rpm librsvg-devel-2.46.5-3.6.1.x86_64.rpm librsvg-lang-2.46.5-3.6.1.noarch.rpm rsvg-convert-2.46.5-3.6.1.x86_64.rpm rsvg-thumbnailer-2.46.5-3.6.1.noarch.rpm typelib-1_0-Rsvg-2_0-2.46.5-3.6.1.x86_64.rpm gdk-pixbuf-loader-rsvg-2.46.5-3.6.1.s390x.rpm librsvg-2-2-2.46.5-3.6.1.s390x.rpm librsvg-devel-2.46.5-3.6.1.s390x.rpm rsvg-convert-2.46.5-3.6.1.s390x.rpm typelib-1_0-Rsvg-2_0-2.46.5-3.6.1.s390x.rpm gdk-pixbuf-loader-rsvg-2.46.5-3.6.1.ppc64le.rpm librsvg-2-2-2.46.5-3.6.1.ppc64le.rpm librsvg-devel-2.46.5-3.6.1.ppc64le.rpm rsvg-convert-2.46.5-3.6.1.ppc64le.rpm typelib-1_0-Rsvg-2_0-2.46.5-3.6.1.ppc64le.rpm gdk-pixbuf-loader-rsvg-2.46.5-3.6.1.aarch64.rpm librsvg-2-2-2.46.5-3.6.1.aarch64.rpm librsvg-devel-2.46.5-3.6.1.aarch64.rpm rsvg-convert-2.46.5-3.6.1.aarch64.rpm typelib-1_0-Rsvg-2_0-2.46.5-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4007 moderate SUSE Updates openSUSE-SLE 15.3 This update for libstorage-ng fixes the following issues: - Fix having an empty partition table and a filesystem directly on the logical unit number (LUN), which confuses the yast2-partitioner. The solution is to prefer file system over empty MS-DOS partition table (bsc#1186823) libstorage-ng-4.3.109-3.8.1.src.rpm libstorage-ng-devel-4.3.109-3.8.1.x86_64.rpm libstorage-ng-integration-tests-4.3.109-3.8.1.x86_64.rpm libstorage-ng-lang-4.3.109-3.8.1.noarch.rpm libstorage-ng-python3-4.3.109-3.8.1.x86_64.rpm libstorage-ng-ruby-4.3.109-3.8.1.x86_64.rpm libstorage-ng-utils-4.3.109-3.8.1.x86_64.rpm libstorage-ng1-4.3.109-3.8.1.x86_64.rpm libstorage-ng-devel-4.3.109-3.8.1.s390x.rpm libstorage-ng-integration-tests-4.3.109-3.8.1.s390x.rpm libstorage-ng-python3-4.3.109-3.8.1.s390x.rpm libstorage-ng-ruby-4.3.109-3.8.1.s390x.rpm libstorage-ng-utils-4.3.109-3.8.1.s390x.rpm libstorage-ng1-4.3.109-3.8.1.s390x.rpm libstorage-ng-devel-4.3.109-3.8.1.ppc64le.rpm libstorage-ng-integration-tests-4.3.109-3.8.1.ppc64le.rpm libstorage-ng-python3-4.3.109-3.8.1.ppc64le.rpm libstorage-ng-ruby-4.3.109-3.8.1.ppc64le.rpm libstorage-ng-utils-4.3.109-3.8.1.ppc64le.rpm libstorage-ng1-4.3.109-3.8.1.ppc64le.rpm libstorage-ng-devel-4.3.109-3.8.1.aarch64.rpm libstorage-ng-integration-tests-4.3.109-3.8.1.aarch64.rpm libstorage-ng-python3-4.3.109-3.8.1.aarch64.rpm libstorage-ng-ruby-4.3.109-3.8.1.aarch64.rpm libstorage-ng-utils-4.3.109-3.8.1.aarch64.rpm libstorage-ng1-4.3.109-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3928 critical SUSE Updates openSUSE-SLE 15.3 This update for rmt-server fixes the following issues: PubCloud: - Update the way allowed paths are checked SUMA requested a new feature where it is possible to validate all versions of the same product and arch (that are allowed to that system) PubCloud: - De-register BYOS systems using RMT as a proxy from SCC - De-activate a single product from a BYOS proxy system PubCloud: - Add the handling of the BYOS systems that use RMT as a SCC proxy In order to do that: - New boolean column in systems table in db: proxy_byos - Skip the sync with SCC (using that column) - Registration of the system to SCC (announce system call and then use SCC credentials) - Activation of products - Check subscription is active/valid for a product/repo to be accessed - Version 2.7.0 - Add subscription support in RMT. RMT can now consume registration codes supplied when registering a system. - Add host's login header to API requests to SCC. If the information is available, RMT will send it on requests to attach the registration proxy to a host system in SCC. - Add extra check to product dependency on RMT API. Now, when a system tries to activate a module through RMT, if it requires a root product which is not activated, the activation will fail (bsc#951189). - Load global configuration only if it can be ready by the current process. - Version 2.6.12 - Re-fix broken symlinks: This version fixes the bug-fix deployed with version 2.6.11. Reference bug (bsc#1188043) - Handle special characters in package names (bsc#1189805) rmt-server-2.7.0-3.12.1.src.rpm rmt-server-2.7.0-3.12.1.x86_64.rpm rmt-server-config-2.7.0-3.12.1.x86_64.rpm rmt-server-pubcloud-2.7.0-3.12.1.x86_64.rpm rmt-server-2.7.0-3.12.1.s390x.rpm rmt-server-config-2.7.0-3.12.1.s390x.rpm rmt-server-pubcloud-2.7.0-3.12.1.s390x.rpm rmt-server-2.7.0-3.12.1.ppc64le.rpm rmt-server-config-2.7.0-3.12.1.ppc64le.rpm rmt-server-pubcloud-2.7.0-3.12.1.ppc64le.rpm rmt-server-2.7.0-3.12.1.aarch64.rpm rmt-server-config-2.7.0-3.12.1.aarch64.rpm rmt-server-pubcloud-2.7.0-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-4163 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: - Fixed an issue when 'lvmid' disk cannot be found after second disk added to the root volume group. (bsc#1189874, bsc#1071559) - Fix for an error when '/boot/grub2/locale/POSIX.gmo' not found. (bsc#1189769) - Fix unknown TPM error on buggy uefi firmware. (bsc#1191504) - Fix arm64 kernel image not aligned on 64k boundary. (bsc#1192522) grub2-2.04-22.6.3.src.rpm grub2-2.04-22.6.3.x86_64.rpm grub2-arm64-efi-2.04-22.6.3.noarch.rpm grub2-arm64-efi-debug-2.04-22.6.3.noarch.rpm grub2-branding-upstream-2.04-22.6.3.x86_64.rpm grub2-i386-pc-2.04-22.6.3.noarch.rpm grub2-i386-pc-debug-2.04-22.6.3.noarch.rpm grub2-powerpc-ieee1275-2.04-22.6.3.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-22.6.3.noarch.rpm grub2-snapper-plugin-2.04-22.6.3.noarch.rpm grub2-systemd-sleep-plugin-2.04-22.6.3.noarch.rpm grub2-x86_64-efi-2.04-22.6.3.noarch.rpm grub2-x86_64-efi-debug-2.04-22.6.3.noarch.rpm grub2-x86_64-xen-2.04-22.6.3.noarch.rpm grub2-2.04-22.6.3.s390x.rpm grub2-branding-upstream-2.04-22.6.3.s390x.rpm grub2-s390x-emu-2.04-22.6.3.s390x.rpm grub2-s390x-emu-debug-2.04-22.6.3.s390x.rpm grub2-2.04-22.6.3.ppc64le.rpm grub2-branding-upstream-2.04-22.6.3.ppc64le.rpm grub2-2.04-22.6.3.aarch64.rpm grub2-branding-upstream-2.04-22.6.3.aarch64.rpm openSUSE-SLE-15.3-2021-4164 moderate SUSE Updates openSUSE-SLE 15.3 This update for adcli fixes the following issues: - Add 'dont-expire-password' option. (jsc#SLE-21224, jsc#SLE-22892) adcli-0.8.2-9.6.1.src.rpm adcli-0.8.2-9.6.1.x86_64.rpm adcli-doc-0.8.2-9.6.1.x86_64.rpm adcli-0.8.2-9.6.1.s390x.rpm adcli-doc-0.8.2-9.6.1.s390x.rpm adcli-0.8.2-9.6.1.ppc64le.rpm adcli-doc-0.8.2-9.6.1.ppc64le.rpm adcli-0.8.2-9.6.1.aarch64.rpm adcli-doc-0.8.2-9.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4101 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for kiwi-templates-JeOS fixes the following issues: - Install AppArmor pattern and audit (jsc#SLE-22705, jsc#SLE-23028) kiwi-templates-JeOS-15.3-4.4.1.noarch.rpm kiwi-templates-JeOS-15.3-4.4.1.src.rpm openSUSE-SLE-15.3-2021-4001 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pip fixes the following issues: - CVE-2021-3572: Fixed incorrect handling of unicode separators in git references (bsc#1186819). python-pip-20.0.2-6.15.1.src.rpm python2-pip-20.0.2-6.15.1.noarch.rpm python3-pip-20.0.2-6.15.1.noarch.rpm openSUSE-SLE-15.3-2021-4002 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pip fixes the following issues: - CVE-2021-3572: Fixed incorrect handling of unicode separators in git references (bsc#1186819). python-pip-wheel-10.0.1-3.9.1.src.rpm python2-pip-wheel-10.0.1-3.9.1.noarch.rpm python3-pip-wheel-10.0.1-3.9.1.noarch.rpm openSUSE-SLE-15.3-2021-4184 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for tboot fixes the following issues: Update to upstream version 1.10.2 of tboot to sync with SLE-15-SP4 status (jsc#SLE-19516) - `acminfo` and `parse_err` now are called `txt-acminfo` and `txt-parse_err` - lcptools are deprecated (tpm 1.2, TrouSerS dependency) and are no longer packaged - tpmnv_* binaries are deprecated and no longer packaged - lcptools-v2: implement SM2 signing and SM2 signature verification and add pconf2 policy element support - Add SHA256, SHA384 and SHA512 support in `tb_polgen` - Add Doxygen documentation - Add SHA384 and SHA512 digest algorithms - Add support for 64bit framebuffer address - Add warning when using SHA1 as hashing algorithm - Default to D/A mapping instead of legacy when TPM1.2 and CBnT platform - Enable VGA logging for EFI platforms - Ensure `txt-acminfo` does not print false information if msr module is not loaded - Fix ACM chipset/processor list validation - Fix a harmless overflow caused by wrong loop limits - Fix issue with TPM1.2 - invalid default policy - Fix issue with multiboot(1) booting - infinite loop during boot - Fix warnings after "Avoid unsafe functions" scan - Print latest tag in logs - README is now README.md - Replace VMAC with Poly1305 - Strip executable file before generating tboot.gz - Update GRUB scripts to use multiboot2 only - Use SHA256 as default hashing algorithm - Validate TPM NV index attributes tboot-20170711_1.10.2-15.12.1.src.rpm tboot-20170711_1.10.2-15.12.1.x86_64.rpm openSUSE-SLE-15.3-2021-4186 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: Updated to upstream version 1.17.5 to include fixes to the compiler, linker, syscall, runtime, the net/http, go/types, and time packages (bsc#1190649) - CVE-2021-44717: syscall: don't close fd 0 on ForkExec error (bsc#1193598). - CVE-2021-44716: net/http: limit growth of header canonicalization cache (bsc#1193597). go1.17-1.17.5-1.14.2.i586.rpm go1.17-1.17.5-1.14.2.src.rpm go1.17-doc-1.17.5-1.14.2.i586.rpm go1.17-1.17.5-1.14.2.x86_64.rpm go1.17-doc-1.17.5-1.14.2.x86_64.rpm go1.17-race-1.17.5-1.14.2.x86_64.rpm go1.17-1.17.5-1.14.2.s390x.rpm go1.17-doc-1.17.5-1.14.2.s390x.rpm go1.17-1.17.5-1.14.2.ppc64le.rpm go1.17-doc-1.17.5-1.14.2.ppc64le.rpm go1.17-1.17.5-1.14.2.aarch64.rpm go1.17-doc-1.17.5-1.14.2.aarch64.rpm go1.17-race-1.17.5-1.14.2.aarch64.rpm openSUSE-SLE-15.3-2021-4182 moderate SUSE Updates openSUSE-SLE 15.3 This update for zlib fixes the following issues: - Fix hardware compression incorrect result on z15 hardware (bsc#1192688) libminizip1-1.2.11-3.24.1.x86_64.rpm libminizip1-32bit-1.2.11-3.24.1.x86_64.rpm libz1-1.2.11-3.24.1.x86_64.rpm libz1-32bit-1.2.11-3.24.1.x86_64.rpm minizip-devel-1.2.11-3.24.1.x86_64.rpm zlib-1.2.11-3.24.1.src.rpm zlib-devel-1.2.11-3.24.1.x86_64.rpm zlib-devel-32bit-1.2.11-3.24.1.x86_64.rpm zlib-devel-static-1.2.11-3.24.1.x86_64.rpm zlib-devel-static-32bit-1.2.11-3.24.1.x86_64.rpm libminizip1-1.2.11-3.24.1.s390x.rpm libz1-1.2.11-3.24.1.s390x.rpm minizip-devel-1.2.11-3.24.1.s390x.rpm zlib-devel-1.2.11-3.24.1.s390x.rpm zlib-devel-static-1.2.11-3.24.1.s390x.rpm libminizip1-1.2.11-3.24.1.ppc64le.rpm libz1-1.2.11-3.24.1.ppc64le.rpm minizip-devel-1.2.11-3.24.1.ppc64le.rpm zlib-devel-1.2.11-3.24.1.ppc64le.rpm zlib-devel-static-1.2.11-3.24.1.ppc64le.rpm libminizip1-1.2.11-3.24.1.aarch64.rpm libz1-1.2.11-3.24.1.aarch64.rpm minizip-devel-1.2.11-3.24.1.aarch64.rpm zlib-devel-1.2.11-3.24.1.aarch64.rpm zlib-devel-static-1.2.11-3.24.1.aarch64.rpm openSUSE-SLE-15.3-2022-6 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for numatop fixes the following issues: - Add support for ICX processors (jsc#SLE-19499, jsc#SLE-23044) numatop-2.2-3.3.1.src.rpm numatop-2.2-3.3.1.x86_64.rpm numatop-2.2-3.3.1.ppc64le.rpm openSUSE-SLE-15.3-2021-3985 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-module-tools fixes the following issues: - Blacklist isst_if_mbox_msr driver because uses hardware information based on CPU family and model, which is too unspecific. On large systems, this causes a lot of failing loading attempts for this driver, leading to slow or even stalled boot (bsc#1187196) suse-module-tools-15.3.15-3.17.1.src.rpm suse-module-tools-15.3.15-3.17.1.x86_64.rpm suse-module-tools-legacy-15.3.15-3.17.1.x86_64.rpm suse-module-tools-15.3.15-3.17.1.s390x.rpm suse-module-tools-legacy-15.3.15-3.17.1.s390x.rpm suse-module-tools-15.3.15-3.17.1.ppc64le.rpm suse-module-tools-legacy-15.3.15-3.17.1.ppc64le.rpm suse-module-tools-15.3.15-3.17.1.aarch64.rpm suse-module-tools-legacy-15.3.15-3.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-4169 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Updated to upstream version 1.16.12 to include security fixes to the compiler, syscall, runtime, the net/http, net/http/httptest, and time packages (bsc#1182345) - CVE-2021-44717: syscall: don't close fd 0 on ForkExec error (bsc#1193598). - CVE-2021-44716: net/http: limit growth of header canonicalization cache (bsc#1193597). go1.16-1.16.12-1.37.2.src.rpm go1.16-1.16.12-1.37.2.x86_64.rpm go1.16-doc-1.16.12-1.37.2.x86_64.rpm go1.16-race-1.16.12-1.37.2.x86_64.rpm go1.16-1.16.12-1.37.2.s390x.rpm go1.16-doc-1.16.12-1.37.2.s390x.rpm go1.16-1.16.12-1.37.2.ppc64le.rpm go1.16-doc-1.16.12-1.37.2.ppc64le.rpm go1.16-1.16.12-1.37.2.aarch64.rpm go1.16-doc-1.16.12-1.37.2.aarch64.rpm go1.16-race-1.16.12-1.37.2.aarch64.rpm openSUSE-SLE-15.3-2021-4171 moderate SUSE Updates openSUSE-SLE 15.3 This update for runc fixes the following issues: Update to runc v1.0.3. * CVE-2021-43784: Fixed a potential vulnerability related to the internal usage of netlink, which is believed to not be exploitable with any released versions of runc (bsc#1193436) * Fixed inability to start a container with read-write bind mount of a read-only fuse host mount. * Fixed inability to start when read-only /dev in set in spec. * Fixed not removing sub-cgroups upon container delete, when rootless cgroup v2 is used with older systemd. * Fixed returning error from GetStats when hugetlb is unsupported (which causes excessive logging for kubernetes). runc-1.0.3-27.1.src.rpm runc-1.0.3-27.1.x86_64.rpm runc-1.0.3-27.1.s390x.rpm runc-1.0.3-27.1.ppc64le.rpm runc-1.0.3-27.1.aarch64.rpm openSUSE-SLE-15.3-2022-55 moderate SUSE Updates openSUSE-SLE 15.3 This update for rsyslog fixes the following issues: - Upgrade to rsyslog 8.2106.0: * The prime new feature is support for TLS and non-TLS connections via imtcp in parallel. Furthermore, most TLS parameters can now be overriden at the input() level. The notable exceptions are certificate files, something that is due to be implemented as next step. * New global option "parser.supportCompressionExtension" This permits to turn off rsyslog's single-message compression extension when it interferes with non-syslog message processing (the parser subsystem expects syslog messages, not generic text) closes https://github.com/rsyslog/rsyslog/issues/4598 * imtcp: add more override config params to input() It is now possible to override all module parameters at the input() level. Module parameters serve as defaults. Existing configs need no modification. * imtcp: add stream driver parameter to input() configuration This permits to have different inputs use different stream drivers and stream driver parameters. * imtcp: permit to run multiple inputs in parallel Previously, a single server was used to run all imtcp inputs. This had a couple of drawsbacks. First and foremost, we could not use different stream drivers in the varios inputs. This patch now provides a baseline to do that, but does still not implement the capability (in this sense it is a staging patch). Secondly, we now ensure that each input has at least one exclusive thread for processing, untangling the performance of multiple inputs from each other. * tcpsrv bugfix: potential sluggishnes and hang on shutdown tcpsrv is used by multiple other modules (imtcp, imdiag, imgssapi, and, in theory, also others - even ones we do not know about). However, the internal synchornization did not properly take multiple tcpsrv users in consideration. As such, a single user could hang under some circumstances. This was caused by improperly awaking all users from a pthread condition wait. That in turn could lead to some sluggish behaviour and, in rare cases, a hang at shutdown. Note: it was highly unlikely to experience real problems with the officially provided modules. * refactoring of syslog/tcp driver parameter passing This has now been generalized to a parameter block, which makes it much cleaner and also easier to add new parameters in the future. * config script: add re_match_i() and re_extract_i() functions This provides case-insensitive regex functionality. - Upgrade to rsyslog 8.2104.0: * rainerscript: call getgrnam_r repeatedly to get all group members (bsc#1178490) * new built-in function get_property() to access property vars * mmdblookup: add support for mmdb DB reload on HUP * new contributed function module fmunflatten * test bugfix: some tests did not work with newer TLS library versions - Update 'remote.conf' example file to new 'Address' and 'Port' notation. (bsc#1182653) - Upgrade to rsyslog 8.2102.0: * omfwd: add stats counter for sent bytes * omfwd: add error reporting configuration option * action stats counter bugfix: failure count was not properly incremented * action stats counter bugfix: resume count was not incremented * omfwd bugfix: segfault or error if port not given * lookup table bugfix: data race on lookup table reload * testbench modernization * testbench: fix invalid sequence of kafka tests runs * testbench: fix kafkacat issues * testbench: fix year-dependendt clickhouse test - Upgrade to rsyslog 8.2012.0: * testbench bugfix: some tests did not work in make distcheck * immark: rewrite with many improvements * usability: re-phrase error message to help users better understand cause * add new system property $now-unixtimestamp * omfwd: add new rate limit option * omfwd bug: param "StreamDriver.PermitExpiredCerts" is not "off" by default - prepare usrmerge (bsc#1029961) - remove legacy stuff from specfile * sysvinit is not supported anymore, so remove all tests related to systemv in the specfile - Upgrade to rsyslog 8.2010.0: * gnutls TLS subsystem bugfix: handshake error handling * core/msg bugfix: memory leak * core/msg bugfix: segfault in jsonPathFindNext() when <root> not an object * openssl TLS subsystem: improvments of error and status messages * core bugfix: do not create empty JSON objects on non-existent key access * gnutls subsysem bugfix: potential hang on session closure * core/network bugfix: obey net.enableDNS=off when querying local hostname * core bugfix: potential segfault on query of PROGRAMNAME property * imtcp bugfix: broken connection not necessariy detected * new module: imhttp - http input * mmdarwin bugfix: potential zero uuid when reusing existing one * imdocker bugfix: build issue on some platforms * omudpspoof bugfix: make compatbile with Solaris build * testbench fix: python 3 incompatibility * core bugfix: segfault if disk-queue file cannot be created * cosmetic: fix dummy module name in debug output * config bugfix: intended warning emitted as error - Upgrade to rsyslog 8.2008.0 - Added custom unit file rsyslog.service because systemd service file was removed from upstream project - Use systemd_ordering instead of requiring to make rsyslog useable in containers. - Fix the URL for bug reporting, should not point to 'novell.com'. (bsc#1173433) - Add support for 'omkafka'. - Avoid build error with gcc flag '-fno-common'. (bsc#1160414) librdkafka-0.11.6-1.8.1.src.rpm librdkafka-devel-0.11.6-1.8.1.x86_64.rpm librdkafka1-0.11.6-1.8.1.x86_64.rpm rsyslog-8.2106.0-4.13.1.src.rpm rsyslog-8.2106.0-4.13.1.x86_64.rpm rsyslog-diag-tools-8.2106.0-4.13.1.x86_64.rpm rsyslog-doc-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-elasticsearch-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-gcrypt-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-gssapi-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-gtls-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-mmnormalize-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-mysql-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-omamqp1-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-omhttpfs-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-omtcl-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-ossl-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-pgsql-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-relp-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-snmp-8.2106.0-4.13.1.x86_64.rpm librdkafka-devel-0.11.6-1.8.1.s390x.rpm librdkafka1-0.11.6-1.8.1.s390x.rpm rsyslog-8.2106.0-4.13.1.s390x.rpm rsyslog-diag-tools-8.2106.0-4.13.1.s390x.rpm rsyslog-doc-8.2106.0-4.13.1.s390x.rpm rsyslog-module-elasticsearch-8.2106.0-4.13.1.s390x.rpm rsyslog-module-gcrypt-8.2106.0-4.13.1.s390x.rpm rsyslog-module-gssapi-8.2106.0-4.13.1.s390x.rpm rsyslog-module-gtls-8.2106.0-4.13.1.s390x.rpm rsyslog-module-mmnormalize-8.2106.0-4.13.1.s390x.rpm rsyslog-module-mysql-8.2106.0-4.13.1.s390x.rpm rsyslog-module-omamqp1-8.2106.0-4.13.1.s390x.rpm rsyslog-module-omhttpfs-8.2106.0-4.13.1.s390x.rpm rsyslog-module-omtcl-8.2106.0-4.13.1.s390x.rpm rsyslog-module-ossl-8.2106.0-4.13.1.s390x.rpm rsyslog-module-pgsql-8.2106.0-4.13.1.s390x.rpm rsyslog-module-relp-8.2106.0-4.13.1.s390x.rpm rsyslog-module-snmp-8.2106.0-4.13.1.s390x.rpm librdkafka-devel-0.11.6-1.8.1.ppc64le.rpm librdkafka1-0.11.6-1.8.1.ppc64le.rpm rsyslog-8.2106.0-4.13.1.ppc64le.rpm rsyslog-diag-tools-8.2106.0-4.13.1.ppc64le.rpm rsyslog-doc-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-elasticsearch-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-gcrypt-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-gssapi-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-gtls-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-mmnormalize-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-mysql-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-omamqp1-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-omhttpfs-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-omtcl-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-ossl-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-pgsql-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-relp-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-snmp-8.2106.0-4.13.1.ppc64le.rpm librdkafka-devel-0.11.6-1.8.1.aarch64.rpm librdkafka1-0.11.6-1.8.1.aarch64.rpm rsyslog-8.2106.0-4.13.1.aarch64.rpm rsyslog-diag-tools-8.2106.0-4.13.1.aarch64.rpm rsyslog-doc-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-elasticsearch-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-gcrypt-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-gssapi-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-gtls-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-mmnormalize-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-mysql-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-omamqp1-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-omhttpfs-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-omtcl-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-ossl-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-pgsql-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-relp-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-snmp-8.2106.0-4.13.1.aarch64.rpm openSUSE-SLE-15.3-2022-19 moderate SUSE Updates openSUSE-SLE 15.3 This update for ghostscript, gswrap fixes the following issues: We now ship an additional wraper for ghostscript, called gswrap, for SLE 15 SP2 and SLE15 SP3. You can install this wrapper by installing the gswrap package. - Allow the `gswrap` package to use its wrapper script for `ghostscript` (jsc#SLE-21705 jsc#SLE-21706) - Use `update-alternatives` to get the real `ghostscript` binary from `/usr/bin/gs` to `/usr/bin/gs.bin` ghostscript-9.52-158.1.src.rpm ghostscript-9.52-158.1.x86_64.rpm ghostscript-devel-9.52-158.1.x86_64.rpm ghostscript-x11-9.52-158.1.x86_64.rpm gswrap-0.1-1.3.1.noarch.rpm gswrap-0.1-1.3.1.src.rpm ghostscript-9.52-158.1.s390x.rpm ghostscript-devel-9.52-158.1.s390x.rpm ghostscript-x11-9.52-158.1.s390x.rpm ghostscript-9.52-158.1.ppc64le.rpm ghostscript-devel-9.52-158.1.ppc64le.rpm ghostscript-x11-9.52-158.1.ppc64le.rpm ghostscript-9.52-158.1.aarch64.rpm ghostscript-devel-9.52-158.1.aarch64.rpm ghostscript-x11-9.52-158.1.aarch64.rpm openSUSE-SLE-15.3-2021-4063 important SUSE Updates openSUSE-SLE 15.3 This update for icu.691 fixes the following issues: - Renamed package from icu 69.1 for SUSE:SLE-15-SP3:Update. (jsc#SLE-17893) - Fix undefined behaviour in 'ComplexUnitsConverter::applyRounder' - Update to release 69.1 - For Norwegian, "no" is back to being the canonical code, with "nb" treated as equivalent. This aligns handling of Norwegian with other macro language codes. - Binary prefixes in measurement units (KiB, MiB, etc.) - Time zone offsets from local time with new APIs. - Don't disable testsuite under 'qemu-linux-user' - Fixed an issue when ICU test on 'aarch64 fails. (bsc#1182645) - Drop 'SUSE_ASNEEDED' as the issue was in binutils. (bsc#1182252) - Fix 'pthread' dependency issue. (bsc#1182252) - Update to release 68.2 - Fix memory problem in 'FormattedStringBuilder' - Fix assertion when 'setKeywordValue w/' long value. - Fix UBSan breakage on 8bit of rbbi - fix int32_t overflow in listFormat - Fix memory handling in MemoryPool::operator=() - Fix memory leak in AliasReplacer - Add back icu.keyring. - Update to release 68.1 - PluralRules selection for ranges of numbers - Locale ID canonicalization now conforms to the CLDR spec including edge cases - DateIntervalFormat supports output options such as capitalization - Measurement units are normalized in skeleton string output - Time zone data (tzdata) version 2020d - Add the provides for libicu to Make .Net core can install successfully. (bsc#1167603, bsc#1161007) - Update to version 67.1 - Unicode 13 (ICU-20893, same as in ICU 66) - Total of 5930 new characters - 4 new scripts - 55 new emoji characters, plus additional new sequences - New CJK extension, first characters in plane 3: U+30000..U+3134A - New language at Modern coverage: Nigerian Pidgin - New languages at Basic coverage: Fulah (Adlam), Maithili, Manipuri, Santali, Sindhi (Devanagari), Sundanese - Region containment: EU no longer includes GB - Unicode 13 root collation data and Chinese data for collation and transliteration - DateTimePatternGenerator now obeys the "hc" preference in the locale identifier - Various other improvements for ECMA-402 conformance - Number skeletons have a new "concise" form that can be used in MessageFormat strings - Currency formatting options for formal and other currency display name variants - ListFormatter: new public API to select the style & type - ListFormatter now selects the proper “and”/“or” form for Spanish & Hebrew. - Locale ID canonicalization upgraded to implement the complete CLDR spec. - LocaleMatcher: New option to ignore one-way matches - acceptLanguage() reimplemented via LocaleMatcher - Data build tool: tzdbNames.res moved from the "zone_tree" category to the "zone_supplemental" category - Fixed uses of u8"literals" broken by the C++20 introduction of the incompatible char8_t type - and added a few API overloads to reduce the need for reinterpret_cast. - Support for manipulating CLDR 37 unit identifiers in MeasureUnit. - Drop icu-versioning. (bsc#1159131) - Update to version 66.1 - Unicode 13 support - Fix uses of u8"literals" broken by C++20 introduction of incompatible char8_t type. - Fixed an issue when Qt apps can't handle non-ASCII filesystem path. ([bsc#1162882) - Remove '/usr/lib(64)/icu/current'. (bsc#1158955) icu.691-69.1-7.3.2.src.rpm icu.691-69.1-7.3.2.x86_64.rpm icu.691-devel-69.1-7.3.2.x86_64.rpm icu.691-doc-69.1-7.3.2.x86_64.rpm libicu69-69.1-7.3.2.x86_64.rpm libicu69-bedata-69.1-7.3.2.noarch.rpm libicu69-ledata-69.1-7.3.2.noarch.rpm icu.691-69.1-7.3.2.s390x.rpm icu.691-devel-69.1-7.3.2.s390x.rpm icu.691-doc-69.1-7.3.2.s390x.rpm libicu69-69.1-7.3.2.s390x.rpm icu.691-69.1-7.3.2.ppc64le.rpm icu.691-devel-69.1-7.3.2.ppc64le.rpm icu.691-doc-69.1-7.3.2.ppc64le.rpm libicu69-69.1-7.3.2.ppc64le.rpm icu.691-69.1-7.3.2.aarch64.rpm icu.691-devel-69.1-7.3.2.aarch64.rpm icu.691-doc-69.1-7.3.2.aarch64.rpm libicu69-69.1-7.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-143 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - Java Cryptography was always operating in FIPS mode if crypto-policies was not used. - Allow plain key import in fips mode unless "com.suse.fips.plainKeySupport" is set to false java-11-openjdk-11.0.13.0-3.68.1.src.rpm java-11-openjdk-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-accessibility-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-demo-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-devel-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-headless-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-javadoc-11.0.13.0-3.68.1.noarch.rpm java-11-openjdk-jmods-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-src-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-accessibility-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-demo-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-devel-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-headless-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-jmods-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-src-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-demo-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-devel-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-headless-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-jmods-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-src-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-accessibility-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-demo-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-devel-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-headless-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-jmods-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-src-11.0.13.0-3.68.1.aarch64.rpm openSUSE-SLE-15.3-2022-46 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: - When system crypto policy files are not available, use the information from the java.security file that we distribute with OpenJDK as a fallback. (bsc#1193314) java-1_8_0-openjdk-1.8.0.312-3.61.3.src.rpm java-1_8_0-openjdk-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.312-3.61.3.noarch.rpm java-1_8_0-openjdk-src-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-src-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-1.8.0.312-3.61.3.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.61.3.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.61.3.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.61.3.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.61.3.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.312-3.61.3.aarch64.rpm openSUSE-SLE-15.3-2021-4165 moderate SUSE Updates openSUSE-SLE 15.3 This update for kmod fixes the following issues: - Ensure that kmod and packages linking to libkmod provide same features. (bsc#1193430) kmod-29-4.15.1.src.rpm kmod-29-4.15.1.x86_64.rpm kmod-bash-completion-29-4.15.1.noarch.rpm libkmod-devel-29-4.15.1.x86_64.rpm libkmod2-29-4.15.1.x86_64.rpm kmod-29-4.15.1.s390x.rpm libkmod-devel-29-4.15.1.s390x.rpm libkmod2-29-4.15.1.s390x.rpm kmod-29-4.15.1.ppc64le.rpm libkmod-devel-29-4.15.1.ppc64le.rpm libkmod2-29-4.15.1.ppc64le.rpm kmod-29-4.15.1.aarch64.rpm libkmod-devel-29-4.15.1.aarch64.rpm libkmod2-29-4.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-4189 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: - updated to 0.1.59 release (jsc#ECO-3319) - Support for Debian 11 - NERC CIP profiles for OCP4 and RHCOS - HIPAA profile for SLE15 - Delta Tailoring Files for STIG profiles scap-security-guide-0.1.59-1.24.3.noarch.rpm scap-security-guide-0.1.59-1.24.3.src.rpm scap-security-guide-debian-0.1.59-1.24.3.noarch.rpm scap-security-guide-redhat-0.1.59-1.24.3.noarch.rpm scap-security-guide-ubuntu-0.1.59-1.24.3.noarch.rpm openSUSE-SLE-15.3-2021-3996 moderate SUSE Updates openSUSE-SLE 15.3 This update for ImageMagick fixes the following issues: - CVE-2021-20176: Fixed division by zero caused by processing crafted file (bsc#1181836). ImageMagick-7.0.7.34-10.18.1.src.rpm ImageMagick-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-config-7-upstream-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-devel-32bit-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-devel-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-doc-7.0.7.34-10.18.1.noarch.rpm ImageMagick-extra-7.0.7.34-10.18.1.x86_64.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-10.18.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.18.1.x86_64.rpm libMagick++-devel-32bit-7.0.7.34-10.18.1.x86_64.rpm libMagick++-devel-7.0.7.34-10.18.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-10.18.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.18.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-10.18.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.18.1.x86_64.rpm perl-PerlMagick-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-7.0.7.34-10.18.1.s390x.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.18.1.s390x.rpm ImageMagick-config-7-upstream-7.0.7.34-10.18.1.s390x.rpm ImageMagick-devel-7.0.7.34-10.18.1.s390x.rpm ImageMagick-extra-7.0.7.34-10.18.1.s390x.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.18.1.s390x.rpm libMagick++-devel-7.0.7.34-10.18.1.s390x.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.18.1.s390x.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.18.1.s390x.rpm perl-PerlMagick-7.0.7.34-10.18.1.s390x.rpm ImageMagick-7.0.7.34-10.18.1.ppc64le.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.18.1.ppc64le.rpm ImageMagick-config-7-upstream-7.0.7.34-10.18.1.ppc64le.rpm ImageMagick-devel-7.0.7.34-10.18.1.ppc64le.rpm ImageMagick-extra-7.0.7.34-10.18.1.ppc64le.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.18.1.ppc64le.rpm libMagick++-devel-7.0.7.34-10.18.1.ppc64le.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.18.1.ppc64le.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.18.1.ppc64le.rpm perl-PerlMagick-7.0.7.34-10.18.1.ppc64le.rpm ImageMagick-7.0.7.34-10.18.1.aarch64.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.18.1.aarch64.rpm ImageMagick-config-7-upstream-7.0.7.34-10.18.1.aarch64.rpm ImageMagick-devel-7.0.7.34-10.18.1.aarch64.rpm ImageMagick-extra-7.0.7.34-10.18.1.aarch64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.18.1.aarch64.rpm libMagick++-devel-7.0.7.34-10.18.1.aarch64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.18.1.aarch64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.18.1.aarch64.rpm perl-PerlMagick-7.0.7.34-10.18.1.aarch64.rpm openSUSE-SLE-15.3-2021-3993 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Update to Extended Support Release 91.4.0 (bsc#1193485): - CVE-2021-43536: URL leakage when navigating while executing asynchronous function - CVE-2021-43537: Heap buffer overflow when using structured clone - CVE-2021-43538: Missing fullscreen and pointer lock notification when requesting both - CVE-2021-43539: GC rooting failure when calling wasm instance methods - CVE-2021-43541: External protocol handler parameters were unescaped - CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of an external protocol handler - CVE-2021-43543: Bypass of CSP sandbox directive when embedding - CVE-2021-43545: Denial of Service when using the Location API in a loop - CVE-2021-43546: Cursor spoofing could overlay user interface when native cursor is zoomed - Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4 - Removed x-scheme-handler/ftp from MozillaFirefox.desktop (bsc#1193321) MozillaFirefox-91.4.0-152.9.1.src.rpm MozillaFirefox-91.4.0-152.9.1.x86_64.rpm MozillaFirefox-branding-upstream-91.4.0-152.9.1.x86_64.rpm MozillaFirefox-devel-91.4.0-152.9.1.x86_64.rpm MozillaFirefox-translations-common-91.4.0-152.9.1.x86_64.rpm MozillaFirefox-translations-other-91.4.0-152.9.1.x86_64.rpm MozillaFirefox-91.4.0-152.9.1.s390x.rpm MozillaFirefox-branding-upstream-91.4.0-152.9.1.s390x.rpm MozillaFirefox-devel-91.4.0-152.9.1.s390x.rpm MozillaFirefox-translations-common-91.4.0-152.9.1.s390x.rpm MozillaFirefox-translations-other-91.4.0-152.9.1.s390x.rpm MozillaFirefox-91.4.0-152.9.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.4.0-152.9.1.ppc64le.rpm MozillaFirefox-devel-91.4.0-152.9.1.ppc64le.rpm MozillaFirefox-translations-common-91.4.0-152.9.1.ppc64le.rpm MozillaFirefox-translations-other-91.4.0-152.9.1.ppc64le.rpm MozillaFirefox-91.4.0-152.9.1.aarch64.rpm MozillaFirefox-branding-upstream-91.4.0-152.9.1.aarch64.rpm MozillaFirefox-devel-91.4.0-152.9.1.aarch64.rpm MozillaFirefox-translations-common-91.4.0-152.9.1.aarch64.rpm MozillaFirefox-translations-other-91.4.0-152.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-4170 moderate SUSE Updates openSUSE-SLE 15.3 This update for libaom fixes the following issues: - CVE-2020-36129: Fixed stack buffer overflow via the component src/aom_image.c (bsc#1193356). - CVE-2020-36131: Fixed stack buffer overflow via the component stats/rate_hist.c (bsc#1193365). - CVE-2020-36135: Fixed NULL pointer dereference via the component rate_hist.c (bsc#1193366). - CVE-2020-36130: Fixed NULL pointer dereference via the component av1/av1_dx_iface.c (bsc#1193369). aom-tools-1.0.0-3.9.1.x86_64.rpm libaom-1.0.0-3.9.1.src.rpm libaom-devel-1.0.0-3.9.1.x86_64.rpm libaom-devel-doc-1.0.0-3.9.1.noarch.rpm libaom0-1.0.0-3.9.1.x86_64.rpm libaom0-32bit-1.0.0-3.9.1.x86_64.rpm aom-tools-1.0.0-3.9.1.s390x.rpm libaom-devel-1.0.0-3.9.1.s390x.rpm libaom0-1.0.0-3.9.1.s390x.rpm aom-tools-1.0.0-3.9.1.ppc64le.rpm libaom-devel-1.0.0-3.9.1.ppc64le.rpm libaom0-1.0.0-3.9.1.ppc64le.rpm aom-tools-1.0.0-3.9.1.aarch64.rpm libaom-devel-1.0.0-3.9.1.aarch64.rpm libaom0-1.0.0-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-4167 moderate SUSE Updates openSUSE-SLE 15.3 This update for openscap fixes the following issues: - add SLES support to oscap-docker (bsc#1179314) Note that the oscap-docker currently requires python3-docker from PackageHub. libopenscap25-1.3.5-3.10.1.x86_64.rpm libopenscap_sce25-1.3.5-3.10.1.x86_64.rpm openscap-1.3.5-3.10.1.src.rpm openscap-1.3.5-3.10.1.x86_64.rpm openscap-content-1.3.5-3.10.1.x86_64.rpm openscap-devel-1.3.5-3.10.1.x86_64.rpm openscap-docker-1.3.5-3.10.1.x86_64.rpm openscap-utils-1.3.5-3.10.1.x86_64.rpm libopenscap25-1.3.5-3.10.1.s390x.rpm libopenscap_sce25-1.3.5-3.10.1.s390x.rpm openscap-1.3.5-3.10.1.s390x.rpm openscap-content-1.3.5-3.10.1.s390x.rpm openscap-devel-1.3.5-3.10.1.s390x.rpm openscap-docker-1.3.5-3.10.1.s390x.rpm openscap-utils-1.3.5-3.10.1.s390x.rpm libopenscap25-1.3.5-3.10.1.ppc64le.rpm libopenscap_sce25-1.3.5-3.10.1.ppc64le.rpm openscap-1.3.5-3.10.1.ppc64le.rpm openscap-content-1.3.5-3.10.1.ppc64le.rpm openscap-devel-1.3.5-3.10.1.ppc64le.rpm openscap-docker-1.3.5-3.10.1.ppc64le.rpm openscap-utils-1.3.5-3.10.1.ppc64le.rpm libopenscap25-1.3.5-3.10.1.aarch64.rpm libopenscap_sce25-1.3.5-3.10.1.aarch64.rpm openscap-1.3.5-3.10.1.aarch64.rpm openscap-content-1.3.5-3.10.1.aarch64.rpm openscap-devel-1.3.5-3.10.1.aarch64.rpm openscap-docker-1.3.5-3.10.1.aarch64.rpm openscap-utils-1.3.5-3.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-4179 moderate SUSE Updates openSUSE-SLE 15.3 This update for corosync fixes the following issues: - Fix corosync not recognizing isolated nodes when interface is down (bsc#1192467) corosync-2.4.5-12.7.1.src.rpm corosync-2.4.5-12.7.1.x86_64.rpm corosync-qdevice-2.4.5-12.7.1.x86_64.rpm corosync-qnetd-2.4.5-12.7.1.x86_64.rpm corosync-testagents-2.4.5-12.7.1.x86_64.rpm libcfg6-2.4.5-12.7.1.x86_64.rpm libcfg6-32bit-2.4.5-12.7.1.x86_64.rpm libcmap4-2.4.5-12.7.1.x86_64.rpm libcmap4-32bit-2.4.5-12.7.1.x86_64.rpm libcorosync-devel-2.4.5-12.7.1.x86_64.rpm libcorosync_common4-2.4.5-12.7.1.x86_64.rpm libcorosync_common4-32bit-2.4.5-12.7.1.x86_64.rpm libcpg4-2.4.5-12.7.1.x86_64.rpm libcpg4-32bit-2.4.5-12.7.1.x86_64.rpm libquorum5-2.4.5-12.7.1.x86_64.rpm libquorum5-32bit-2.4.5-12.7.1.x86_64.rpm libsam4-2.4.5-12.7.1.x86_64.rpm libsam4-32bit-2.4.5-12.7.1.x86_64.rpm libtotem_pg5-2.4.5-12.7.1.x86_64.rpm libtotem_pg5-32bit-2.4.5-12.7.1.x86_64.rpm libvotequorum8-2.4.5-12.7.1.x86_64.rpm libvotequorum8-32bit-2.4.5-12.7.1.x86_64.rpm corosync-2.4.5-12.7.1.s390x.rpm corosync-qdevice-2.4.5-12.7.1.s390x.rpm corosync-qnetd-2.4.5-12.7.1.s390x.rpm corosync-testagents-2.4.5-12.7.1.s390x.rpm libcfg6-2.4.5-12.7.1.s390x.rpm libcmap4-2.4.5-12.7.1.s390x.rpm libcorosync-devel-2.4.5-12.7.1.s390x.rpm libcorosync_common4-2.4.5-12.7.1.s390x.rpm libcpg4-2.4.5-12.7.1.s390x.rpm libquorum5-2.4.5-12.7.1.s390x.rpm libsam4-2.4.5-12.7.1.s390x.rpm libtotem_pg5-2.4.5-12.7.1.s390x.rpm libvotequorum8-2.4.5-12.7.1.s390x.rpm corosync-2.4.5-12.7.1.ppc64le.rpm corosync-qdevice-2.4.5-12.7.1.ppc64le.rpm corosync-qnetd-2.4.5-12.7.1.ppc64le.rpm corosync-testagents-2.4.5-12.7.1.ppc64le.rpm libcfg6-2.4.5-12.7.1.ppc64le.rpm libcmap4-2.4.5-12.7.1.ppc64le.rpm libcorosync-devel-2.4.5-12.7.1.ppc64le.rpm libcorosync_common4-2.4.5-12.7.1.ppc64le.rpm libcpg4-2.4.5-12.7.1.ppc64le.rpm libquorum5-2.4.5-12.7.1.ppc64le.rpm libsam4-2.4.5-12.7.1.ppc64le.rpm libtotem_pg5-2.4.5-12.7.1.ppc64le.rpm libvotequorum8-2.4.5-12.7.1.ppc64le.rpm corosync-2.4.5-12.7.1.aarch64.rpm corosync-qdevice-2.4.5-12.7.1.aarch64.rpm corosync-qnetd-2.4.5-12.7.1.aarch64.rpm corosync-testagents-2.4.5-12.7.1.aarch64.rpm libcfg6-2.4.5-12.7.1.aarch64.rpm libcmap4-2.4.5-12.7.1.aarch64.rpm libcorosync-devel-2.4.5-12.7.1.aarch64.rpm libcorosync_common4-2.4.5-12.7.1.aarch64.rpm libcpg4-2.4.5-12.7.1.aarch64.rpm libquorum5-2.4.5-12.7.1.aarch64.rpm libsam4-2.4.5-12.7.1.aarch64.rpm libtotem_pg5-2.4.5-12.7.1.aarch64.rpm libvotequorum8-2.4.5-12.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-4153 important SUSE Updates openSUSE-SLE 15.3 This update for openssh fixes the following issues: - CVE-2021-28041: Fixed double free in ssh-agent (bsc#1183137). openssh-8.4p1-3.9.1.src.rpm openssh-8.4p1-3.9.1.x86_64.rpm openssh-askpass-gnome-8.4p1-3.9.1.src.rpm openssh-askpass-gnome-8.4p1-3.9.1.x86_64.rpm openssh-cavs-8.4p1-3.9.1.x86_64.rpm openssh-clients-8.4p1-3.9.1.x86_64.rpm openssh-common-8.4p1-3.9.1.x86_64.rpm openssh-fips-8.4p1-3.9.1.x86_64.rpm openssh-helpers-8.4p1-3.9.1.x86_64.rpm openssh-server-8.4p1-3.9.1.x86_64.rpm openssh-8.4p1-3.9.1.s390x.rpm openssh-askpass-gnome-8.4p1-3.9.1.s390x.rpm openssh-cavs-8.4p1-3.9.1.s390x.rpm openssh-clients-8.4p1-3.9.1.s390x.rpm openssh-common-8.4p1-3.9.1.s390x.rpm openssh-fips-8.4p1-3.9.1.s390x.rpm openssh-helpers-8.4p1-3.9.1.s390x.rpm openssh-server-8.4p1-3.9.1.s390x.rpm openssh-8.4p1-3.9.1.ppc64le.rpm openssh-askpass-gnome-8.4p1-3.9.1.ppc64le.rpm openssh-cavs-8.4p1-3.9.1.ppc64le.rpm openssh-clients-8.4p1-3.9.1.ppc64le.rpm openssh-common-8.4p1-3.9.1.ppc64le.rpm openssh-fips-8.4p1-3.9.1.ppc64le.rpm openssh-helpers-8.4p1-3.9.1.ppc64le.rpm openssh-server-8.4p1-3.9.1.ppc64le.rpm openssh-8.4p1-3.9.1.aarch64.rpm openssh-askpass-gnome-8.4p1-3.9.1.aarch64.rpm openssh-cavs-8.4p1-3.9.1.aarch64.rpm openssh-clients-8.4p1-3.9.1.aarch64.rpm openssh-common-8.4p1-3.9.1.aarch64.rpm openssh-fips-8.4p1-3.9.1.aarch64.rpm openssh-helpers-8.4p1-3.9.1.aarch64.rpm openssh-server-8.4p1-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3999 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issues: - CVE-2021-44228: Fix a remote code execution vulnerability that existed in the LDAP JNDI parser. [bsc#1193611, CVE-2021-44228] log4j-2.13.0-4.3.1.noarch.rpm log4j-2.13.0-4.3.1.src.rpm log4j-javadoc-2.13.0-4.3.1.noarch.rpm log4j-jcl-2.13.0-4.3.1.noarch.rpm log4j-slf4j-2.13.0-4.3.1.noarch.rpm openSUSE-SLE-15.3-2021-4142 important SUSE Updates openSUSE-SLE 15.3 This update for xdg-desktop-portal-gtk fixes the following issues: - Fix xdg-desktop-portal-gtk process hanging the logout. Make the process exit after one second unless it has active sessions (bsc#1179465) xdg-desktop-portal-gtk-1.8.0-3.6.1.src.rpm xdg-desktop-portal-gtk-1.8.0-3.6.1.x86_64.rpm xdg-desktop-portal-gtk-lang-1.8.0-3.6.1.noarch.rpm xdg-desktop-portal-gtk-1.8.0-3.6.1.s390x.rpm xdg-desktop-portal-gtk-1.8.0-3.6.1.ppc64le.rpm xdg-desktop-portal-gtk-1.8.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4141 important SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Add iscsi-init.service requirements (bsc#1193512) dracut-049.1+suse.218.gca24e614-3.48.3.src.rpm dracut-049.1+suse.218.gca24e614-3.48.3.x86_64.rpm dracut-extra-049.1+suse.218.gca24e614-3.48.3.x86_64.rpm dracut-fips-049.1+suse.218.gca24e614-3.48.3.x86_64.rpm dracut-ima-049.1+suse.218.gca24e614-3.48.3.x86_64.rpm dracut-tools-049.1+suse.218.gca24e614-3.48.3.x86_64.rpm dracut-049.1+suse.218.gca24e614-3.48.3.s390x.rpm dracut-extra-049.1+suse.218.gca24e614-3.48.3.s390x.rpm dracut-fips-049.1+suse.218.gca24e614-3.48.3.s390x.rpm dracut-ima-049.1+suse.218.gca24e614-3.48.3.s390x.rpm dracut-tools-049.1+suse.218.gca24e614-3.48.3.s390x.rpm dracut-049.1+suse.218.gca24e614-3.48.3.ppc64le.rpm dracut-extra-049.1+suse.218.gca24e614-3.48.3.ppc64le.rpm dracut-fips-049.1+suse.218.gca24e614-3.48.3.ppc64le.rpm dracut-ima-049.1+suse.218.gca24e614-3.48.3.ppc64le.rpm dracut-tools-049.1+suse.218.gca24e614-3.48.3.ppc64le.rpm dracut-049.1+suse.218.gca24e614-3.48.3.aarch64.rpm dracut-extra-049.1+suse.218.gca24e614-3.48.3.aarch64.rpm dracut-fips-049.1+suse.218.gca24e614-3.48.3.aarch64.rpm dracut-ima-049.1+suse.218.gca24e614-3.48.3.aarch64.rpm dracut-tools-049.1+suse.218.gca24e614-3.48.3.aarch64.rpm openSUSE-SLE-15.3-2022-485 moderate SUSE Updates openSUSE-SLE 15.3 This update for tomcat fixes the following issues: - Fix Null Pointer Exception in JNDIRealm, when userRoleAttribute is not set (bsc#1193569) tomcat-9.0.36-16.1.noarch.rpm tomcat-9.0.36-16.1.src.rpm tomcat-admin-webapps-9.0.36-16.1.noarch.rpm tomcat-docs-webapp-9.0.36-16.1.noarch.rpm tomcat-el-3_0-api-9.0.36-16.1.noarch.rpm tomcat-embed-9.0.36-16.1.noarch.rpm tomcat-javadoc-9.0.36-16.1.noarch.rpm tomcat-jsp-2_3-api-9.0.36-16.1.noarch.rpm tomcat-jsvc-9.0.36-16.1.noarch.rpm tomcat-lib-9.0.36-16.1.noarch.rpm tomcat-servlet-4_0-api-9.0.36-16.1.noarch.rpm tomcat-webapps-9.0.36-16.1.noarch.rpm openSUSE-SLE-15.3-2021-4195 important SUSE Updates openSUSE-SLE 15.3 This update for autoyast2 and yast2 fixes the following issues: autoyast2: - During autoupgrade, merge the selected product workflow in order to execute 2nd stage modules (bsc#1192437) - Process the `add-on` section only during 1st stage and not again during the 2nd stage (bsc#1192185) - Stop autoyast installation when registration failed on online medium (bsc#1188211) yast2: - Do not reinitialize the packaging system during offline upgrade (bsc#1193784, bsc#1192437) autoyast2-4.3.94-3.32.1.noarch.rpm autoyast2-4.3.94-3.32.1.src.rpm autoyast2-installation-4.3.94-3.32.1.noarch.rpm yast2-4.3.66-3.14.1.src.rpm yast2-4.3.66-3.14.1.x86_64.rpm yast2-logs-4.3.66-3.14.1.x86_64.rpm yast2-4.3.66-3.14.1.s390x.rpm yast2-logs-4.3.66-3.14.1.s390x.rpm yast2-4.3.66-3.14.1.ppc64le.rpm yast2-logs-4.3.66-3.14.1.ppc64le.rpm yast2-4.3.66-3.14.1.aarch64.rpm yast2-logs-4.3.66-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-4149 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: The username map advice from the CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails (bsc#1192849). ctdb-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm ctdb-pcp-pmda-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm ctdb-tests-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-binding0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-binding0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-samr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-samr0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-samr0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-krb5pac-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-krb5pac0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-krb5pac0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-nbt-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-nbt0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-nbt0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-standard-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-standard0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-standard0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr1-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr1-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libnetapi-devel-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libnetapi-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libnetapi0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libnetapi0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-credentials-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-credentials0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-credentials0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-errors0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-errors0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-hostconfig-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-hostconfig0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-hostconfig0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-passdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-passdb0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-passdb0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-policy-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-policy-python3-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-policy0-python3-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-policy0-python3-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-util0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-util0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamdb0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamdb0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbclient0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbconf-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbconf0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbconf0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbldap-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbldap2-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbldap2-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libtevent-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libtevent-util0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libtevent-util0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libwbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libwbclient0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libwbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-4.13.13+git.539.fdbc44a8598-3.20.2.src.rpm samba-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-ad-dc-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-ad-dc-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-ceph-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-client-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-client-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-core-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-doc-4.13.13+git.539.fdbc44a8598-3.20.2.noarch.rpm samba-dsdb-modules-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-gpupdate-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-ldb-ldap-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-libs-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-libs-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-libs-python3-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-libs-python3-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-python3-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-test-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-winbind-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-winbind-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm ctdb-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm ctdb-pcp-pmda-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm ctdb-tests-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libdcerpc-binding0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libdcerpc-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libdcerpc-samr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libdcerpc-samr0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libdcerpc0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-krb5pac-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-krb5pac0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-nbt-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-nbt0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-standard-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-standard0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr1-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libnetapi-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libnetapi0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-credentials-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-credentials0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-errors0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-hostconfig-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-hostconfig0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-passdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-passdb0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-policy-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-policy-python3-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-policy0-python3-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-util0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamdb0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbconf-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbconf0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbldap-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbldap2-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libtevent-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libtevent-util0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libwbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libwbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-ad-dc-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-client-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-core-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-dsdb-modules-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-gpupdate-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-ldb-ldap-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-libs-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-libs-python3-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-python3-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-test-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-winbind-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm ctdb-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm ctdb-pcp-pmda-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm ctdb-tests-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libdcerpc-binding0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libdcerpc-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libdcerpc-samr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libdcerpc-samr0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libdcerpc0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-krb5pac-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-krb5pac0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-nbt-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-nbt0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-standard-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-standard0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr1-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libnetapi-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libnetapi0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-credentials-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-credentials0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-errors0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-hostconfig-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-hostconfig0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-passdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-passdb0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-policy-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-policy-python3-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-policy0-python3-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-util0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamdb0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbconf-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbconf0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbldap-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbldap2-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libtevent-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libtevent-util0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libwbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libwbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-ad-dc-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-client-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-core-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-dsdb-modules-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-gpupdate-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-ldb-ldap-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-libs-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-libs-python3-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-python3-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-test-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-winbind-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm ctdb-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm ctdb-pcp-pmda-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm ctdb-tests-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc-binding0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc-binding0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libdcerpc-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc-samr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc-samr0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc-samr0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libdcerpc0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libndr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-krb5pac-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-krb5pac0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-krb5pac0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libndr-nbt-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-nbt0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-nbt0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libndr-standard-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-standard0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-standard0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libndr1-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr1-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libnetapi-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libnetapi-devel-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libnetapi0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libnetapi0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-credentials-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-credentials0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-credentials0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-errors0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-errors0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-hostconfig-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-hostconfig0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-hostconfig0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-passdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-passdb0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-passdb0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-policy-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-policy-python3-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-policy0-python3-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-policy0-python3-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-util0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-util0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamdb0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamdb0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsmbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbclient0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsmbconf-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbconf0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbconf0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsmbldap-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbldap2-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbldap2-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libtevent-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libtevent-util0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libtevent-util0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libwbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libwbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libwbclient0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm samba-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-ad-dc-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-ad-dc-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm samba-ceph-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-client-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-client-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm samba-core-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-dsdb-modules-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-gpupdate-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-ldb-ldap-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-libs-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-libs-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm samba-libs-python3-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-libs-python3-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm samba-python3-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-test-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-winbind-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-winbind-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm openSUSE-SLE-15.3-2021-4173 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: The username map advice from the CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails (bsc#1192849). libndr0-32bit-4.11.14+git.313.d4e302805e1-4.32.1.x86_64.rpm libndr0-4.11.14+git.313.d4e302805e1-4.32.1.x86_64.rpm samba-4.11.14+git.313.d4e302805e1-4.32.1.src.rpm libndr0-4.11.14+git.313.d4e302805e1-4.32.1.s390x.rpm libndr0-4.11.14+git.313.d4e302805e1-4.32.1.ppc64le.rpm libndr0-4.11.14+git.313.d4e302805e1-4.32.1.aarch64.rpm openSUSE-SLE-15.3-2021-4117 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: The username map advice from the CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails (bsc#1192849). libsamba-policy-python-devel-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm libsamba-policy0-32bit-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm libsamba-policy0-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm samba-4.9.5+git.477.8163dd03413-3.61.1.src.rpm samba-libs-python-32bit-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm samba-libs-python-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm samba-python-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm libsamba-policy-python-devel-4.9.5+git.477.8163dd03413-3.61.1.s390x.rpm libsamba-policy0-4.9.5+git.477.8163dd03413-3.61.1.s390x.rpm samba-libs-python-4.9.5+git.477.8163dd03413-3.61.1.s390x.rpm samba-python-4.9.5+git.477.8163dd03413-3.61.1.s390x.rpm libsamba-policy-python-devel-4.9.5+git.477.8163dd03413-3.61.1.ppc64le.rpm libsamba-policy0-4.9.5+git.477.8163dd03413-3.61.1.ppc64le.rpm samba-libs-python-4.9.5+git.477.8163dd03413-3.61.1.ppc64le.rpm samba-python-4.9.5+git.477.8163dd03413-3.61.1.ppc64le.rpm libsamba-policy-python-devel-4.9.5+git.477.8163dd03413-3.61.1.aarch64.rpm libsamba-policy0-4.9.5+git.477.8163dd03413-3.61.1.aarch64.rpm samba-libs-python-4.9.5+git.477.8163dd03413-3.61.1.aarch64.rpm samba-python-4.9.5+git.477.8163dd03413-3.61.1.aarch64.rpm openSUSE-SLE-15.3-2022-66 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: Rust is shipped in version 1.56.1. (jsc#SLE-18627 jsc#SLE-18626) cargo-1.56.1-21.12.1.x86_64.rpm cargo1.56-1.56.1-7.3.2.x86_64.rpm rust-1.56.1-21.12.1.src.rpm rust-1.56.1-21.12.1.x86_64.rpm rust1.56-1.56.1-7.3.2.src.rpm rust1.56-1.56.1-7.3.2.x86_64.rpm cargo-1.56.1-21.12.1.s390x.rpm cargo1.56-1.56.1-7.3.2.s390x.rpm rust-1.56.1-21.12.1.s390x.rpm rust1.56-1.56.1-7.3.2.s390x.rpm cargo-1.56.1-21.12.1.ppc64le.rpm cargo1.56-1.56.1-7.3.2.ppc64le.rpm rust-1.56.1-21.12.1.ppc64le.rpm rust1.56-1.56.1-7.3.2.ppc64le.rpm cargo-1.56.1-21.12.1.aarch64.rpm cargo1.56-1.56.1-7.3.2.aarch64.rpm rust-1.56.1-21.12.1.aarch64.rpm rust1.56-1.56.1-7.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-4139 critical SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Revert "core: rework how we connect to the bus" (bsc#1193521 bsc#1193481) sleep-config: partitions can't be deleted, only files can shared/sleep-config: exclude zram devices from hibernation candidates systemd-234-24.102.1.src.rpm True systemd-bash-completion-234-24.102.1.noarch.rpm True openSUSE-SLE-15.3-2021-4175 important SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Bump the max number of inodes for /dev to a million (bsc#1192858) - sleep: don't skip resume device with low priority/available space (bsc#1192423) - test: use kbd-mode-map we ship in one more test case - test-keymap-util: always use kbd-model-map we ship - Add rules for virtual devices and enforce "none" for loop devices. (bsc#1193759) libsystemd0-246.16-7.28.1.x86_64.rpm True libsystemd0-32bit-246.16-7.28.1.x86_64.rpm True libudev-devel-246.16-7.28.1.x86_64.rpm True libudev-devel-32bit-246.16-7.28.1.x86_64.rpm True libudev1-246.16-7.28.1.x86_64.rpm True libudev1-32bit-246.16-7.28.1.x86_64.rpm True nss-myhostname-246.16-7.28.1.x86_64.rpm True nss-myhostname-32bit-246.16-7.28.1.x86_64.rpm True nss-mymachines-246.16-7.28.1.x86_64.rpm True nss-mymachines-32bit-246.16-7.28.1.x86_64.rpm True nss-resolve-246.16-7.28.1.x86_64.rpm True nss-systemd-246.16-7.28.1.x86_64.rpm True systemd-246.16-7.28.1.src.rpm True systemd-246.16-7.28.1.x86_64.rpm True systemd-32bit-246.16-7.28.1.x86_64.rpm True systemd-container-246.16-7.28.1.x86_64.rpm True systemd-coredump-246.16-7.28.1.x86_64.rpm True systemd-devel-246.16-7.28.1.x86_64.rpm True systemd-doc-246.16-7.28.1.x86_64.rpm True systemd-journal-remote-246.16-7.28.1.x86_64.rpm True systemd-lang-246.16-7.28.1.noarch.rpm True systemd-logger-246.16-7.28.1.x86_64.rpm True systemd-network-246.16-7.28.1.x86_64.rpm True systemd-sysvinit-246.16-7.28.1.x86_64.rpm True udev-246.16-7.28.1.x86_64.rpm True libsystemd0-246.16-7.28.1.s390x.rpm True libudev-devel-246.16-7.28.1.s390x.rpm True libudev1-246.16-7.28.1.s390x.rpm True nss-myhostname-246.16-7.28.1.s390x.rpm True nss-mymachines-246.16-7.28.1.s390x.rpm True nss-resolve-246.16-7.28.1.s390x.rpm True nss-systemd-246.16-7.28.1.s390x.rpm True systemd-246.16-7.28.1.s390x.rpm True systemd-container-246.16-7.28.1.s390x.rpm True systemd-coredump-246.16-7.28.1.s390x.rpm True systemd-devel-246.16-7.28.1.s390x.rpm True systemd-doc-246.16-7.28.1.s390x.rpm True systemd-journal-remote-246.16-7.28.1.s390x.rpm True systemd-logger-246.16-7.28.1.s390x.rpm True systemd-network-246.16-7.28.1.s390x.rpm True systemd-sysvinit-246.16-7.28.1.s390x.rpm True udev-246.16-7.28.1.s390x.rpm True libsystemd0-246.16-7.28.1.ppc64le.rpm True libudev-devel-246.16-7.28.1.ppc64le.rpm True libudev1-246.16-7.28.1.ppc64le.rpm True nss-myhostname-246.16-7.28.1.ppc64le.rpm True nss-mymachines-246.16-7.28.1.ppc64le.rpm True nss-resolve-246.16-7.28.1.ppc64le.rpm True nss-systemd-246.16-7.28.1.ppc64le.rpm True systemd-246.16-7.28.1.ppc64le.rpm True systemd-container-246.16-7.28.1.ppc64le.rpm True systemd-coredump-246.16-7.28.1.ppc64le.rpm True systemd-devel-246.16-7.28.1.ppc64le.rpm True systemd-doc-246.16-7.28.1.ppc64le.rpm True systemd-journal-remote-246.16-7.28.1.ppc64le.rpm True systemd-logger-246.16-7.28.1.ppc64le.rpm True systemd-network-246.16-7.28.1.ppc64le.rpm True systemd-sysvinit-246.16-7.28.1.ppc64le.rpm True udev-246.16-7.28.1.ppc64le.rpm True libsystemd0-246.16-7.28.1.aarch64.rpm True libudev-devel-246.16-7.28.1.aarch64.rpm True libudev1-246.16-7.28.1.aarch64.rpm True nss-myhostname-246.16-7.28.1.aarch64.rpm True nss-mymachines-246.16-7.28.1.aarch64.rpm True nss-resolve-246.16-7.28.1.aarch64.rpm True nss-systemd-246.16-7.28.1.aarch64.rpm True systemd-246.16-7.28.1.aarch64.rpm True systemd-container-246.16-7.28.1.aarch64.rpm True systemd-coredump-246.16-7.28.1.aarch64.rpm True systemd-devel-246.16-7.28.1.aarch64.rpm True systemd-doc-246.16-7.28.1.aarch64.rpm True systemd-journal-remote-246.16-7.28.1.aarch64.rpm True systemd-logger-246.16-7.28.1.aarch64.rpm True systemd-network-246.16-7.28.1.aarch64.rpm True systemd-sysvinit-246.16-7.28.1.aarch64.rpm True udev-246.16-7.28.1.aarch64.rpm True openSUSE-SLE-15.3-2022-12 moderate SUSE Updates openSUSE-SLE 15.3 This recommended update for cairo, jbigkit, libjpeg-turbo, libwebp, libxcb, openjpeg2, pixman, poppler, tiff provides the following fix: - Ship some missing binaries to PackageHub. cairo-1.16.0-5.2.1.src.rpm cairo-devel-1.16.0-5.2.1.x86_64.rpm cairo-devel-32bit-1.16.0-5.2.1.x86_64.rpm cairo-tools-1.16.0-5.2.1.x86_64.rpm jbigkit-2.1-3.2.1.src.rpm jbigkit-2.1-3.2.1.x86_64.rpm libcairo-gobject2-1.16.0-5.2.1.x86_64.rpm libcairo-gobject2-32bit-1.16.0-5.2.1.x86_64.rpm libcairo-script-interpreter2-1.16.0-5.2.1.x86_64.rpm libcairo-script-interpreter2-32bit-1.16.0-5.2.1.x86_64.rpm libcairo2-1.16.0-5.2.1.x86_64.rpm libcairo2-32bit-1.16.0-5.2.1.x86_64.rpm libjbig-devel-2.1-3.2.1.x86_64.rpm libjbig-devel-32bit-2.1-3.2.1.x86_64.rpm libjbig2-2.1-3.2.1.x86_64.rpm libjbig2-32bit-2.1-3.2.1.x86_64.rpm libjpeg-turbo-1.5.3-32.2.1.src.rpm libjpeg-turbo-1.5.3-32.2.1.x86_64.rpm libjpeg62-32bit-62.2.0-32.0.1.x86_64.rpm libjpeg62-62.2.0-32.0.1.x86_64.rpm libjpeg62-devel-32bit-62.2.0-32.0.1.x86_64.rpm libjpeg62-devel-62.2.0-32.0.1.x86_64.rpm libjpeg62-turbo-1.5.3-32.0.1.src.rpm libjpeg62-turbo-1.5.3-32.0.1.x86_64.rpm libjpeg8-32bit-8.1.2-32.2.1.x86_64.rpm libjpeg8-8.1.2-32.2.1.x86_64.rpm libjpeg8-devel-32bit-8.1.2-32.2.1.x86_64.rpm libjpeg8-devel-8.1.2-32.2.1.x86_64.rpm libopenjp2-7-2.3.0-3.2.2.x86_64.rpm libopenjp2-7-32bit-2.3.0-3.2.2.x86_64.rpm libpixman-1-0-0.34.0-7.2.1.x86_64.rpm libpixman-1-0-32bit-0.34.0-7.2.1.x86_64.rpm libpixman-1-0-devel-0.34.0-7.2.1.x86_64.rpm libpoppler-cpp0-0.79.0-3.5.1.x86_64.rpm libpoppler-cpp0-32bit-0.79.0-3.5.1.x86_64.rpm libpoppler-devel-0.79.0-3.5.1.x86_64.rpm libpoppler-glib-devel-0.79.0-3.5.1.x86_64.rpm libpoppler-glib8-0.79.0-3.5.1.x86_64.rpm libpoppler-glib8-32bit-0.79.0-3.5.1.x86_64.rpm libpoppler-qt5-1-0.79.0-3.5.1.x86_64.rpm libpoppler-qt5-1-32bit-0.79.0-3.5.1.x86_64.rpm libpoppler-qt5-devel-0.79.0-3.5.1.x86_64.rpm libpoppler89-0.79.0-3.5.1.x86_64.rpm libpoppler89-32bit-0.79.0-3.5.1.x86_64.rpm libtiff-devel-32bit-4.0.9-45.2.1.x86_64.rpm libtiff-devel-4.0.9-45.2.1.x86_64.rpm libtiff5-32bit-4.0.9-45.2.1.x86_64.rpm libtiff5-4.0.9-45.2.1.x86_64.rpm libturbojpeg0-32bit-8.1.2-32.2.1.x86_64.rpm libturbojpeg0-8.1.2-32.2.1.x86_64.rpm libwebp-1.0.3-3.2.1.src.rpm libwebp-devel-1.0.3-3.2.1.x86_64.rpm libwebp-devel-32bit-1.0.3-3.2.1.x86_64.rpm libwebp-tools-1.0.3-3.2.1.x86_64.rpm libwebp7-1.0.3-3.2.1.x86_64.rpm libwebp7-32bit-1.0.3-3.2.1.x86_64.rpm libwebpdecoder3-1.0.3-3.2.1.x86_64.rpm libwebpdecoder3-32bit-1.0.3-3.2.1.x86_64.rpm libwebpdemux2-1.0.3-3.2.1.x86_64.rpm libwebpdemux2-32bit-1.0.3-3.2.1.x86_64.rpm libwebpmux3-1.0.3-3.2.1.x86_64.rpm libwebpmux3-32bit-1.0.3-3.2.1.x86_64.rpm libxcb-1.13-3.7.1.src.rpm libxcb-composite0-1.13-3.7.1.x86_64.rpm libxcb-composite0-32bit-1.13-3.7.1.x86_64.rpm libxcb-damage0-1.13-3.7.1.x86_64.rpm libxcb-damage0-32bit-1.13-3.7.1.x86_64.rpm libxcb-devel-1.13-3.7.1.x86_64.rpm libxcb-devel-32bit-1.13-3.7.1.x86_64.rpm libxcb-devel-doc-1.13-3.7.1.noarch.rpm libxcb-dpms0-1.13-3.7.1.x86_64.rpm libxcb-dpms0-32bit-1.13-3.7.1.x86_64.rpm libxcb-dri2-0-1.13-3.7.1.x86_64.rpm libxcb-dri2-0-32bit-1.13-3.7.1.x86_64.rpm libxcb-dri3-0-1.13-3.7.1.x86_64.rpm libxcb-dri3-0-32bit-1.13-3.7.1.x86_64.rpm libxcb-glx0-1.13-3.7.1.x86_64.rpm libxcb-glx0-32bit-1.13-3.7.1.x86_64.rpm libxcb-present0-1.13-3.7.1.x86_64.rpm libxcb-present0-32bit-1.13-3.7.1.x86_64.rpm libxcb-randr0-1.13-3.7.1.x86_64.rpm libxcb-randr0-32bit-1.13-3.7.1.x86_64.rpm libxcb-record0-1.13-3.7.1.x86_64.rpm libxcb-record0-32bit-1.13-3.7.1.x86_64.rpm libxcb-render0-1.13-3.7.1.x86_64.rpm libxcb-render0-32bit-1.13-3.7.1.x86_64.rpm libxcb-res0-1.13-3.7.1.x86_64.rpm libxcb-res0-32bit-1.13-3.7.1.x86_64.rpm libxcb-screensaver0-1.13-3.7.1.x86_64.rpm libxcb-screensaver0-32bit-1.13-3.7.1.x86_64.rpm libxcb-shape0-1.13-3.7.1.x86_64.rpm libxcb-shape0-32bit-1.13-3.7.1.x86_64.rpm libxcb-shm0-1.13-3.7.1.x86_64.rpm libxcb-shm0-32bit-1.13-3.7.1.x86_64.rpm libxcb-sync1-1.13-3.7.1.x86_64.rpm libxcb-sync1-32bit-1.13-3.7.1.x86_64.rpm libxcb-xf86dri0-1.13-3.7.1.x86_64.rpm libxcb-xf86dri0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xfixes0-1.13-3.7.1.x86_64.rpm libxcb-xfixes0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xinerama0-1.13-3.7.1.x86_64.rpm libxcb-xinerama0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xinput0-1.13-3.7.1.x86_64.rpm libxcb-xinput0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xkb1-1.13-3.7.1.x86_64.rpm libxcb-xkb1-32bit-1.13-3.7.1.x86_64.rpm libxcb-xtest0-1.13-3.7.1.x86_64.rpm libxcb-xtest0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xv0-1.13-3.7.1.x86_64.rpm libxcb-xv0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xvmc0-1.13-3.7.1.x86_64.rpm libxcb-xvmc0-32bit-1.13-3.7.1.x86_64.rpm libxcb1-1.13-3.7.1.x86_64.rpm libxcb1-32bit-1.13-3.7.1.x86_64.rpm openjpeg2-2.3.0-3.2.2.src.rpm openjpeg2-2.3.0-3.2.2.x86_64.rpm openjpeg2-devel-2.3.0-3.2.2.x86_64.rpm pixman-0.34.0-7.2.1.src.rpm poppler-0.79.0-3.5.1.src.rpm poppler-qt5-0.79.0-3.5.1.src.rpm poppler-tools-0.79.0-3.5.1.x86_64.rpm tiff-4.0.9-45.2.1.src.rpm tiff-4.0.9-45.2.1.x86_64.rpm typelib-1_0-Poppler-0_18-0.79.0-3.5.1.x86_64.rpm cairo-devel-1.16.0-5.2.1.s390x.rpm cairo-tools-1.16.0-5.2.1.s390x.rpm jbigkit-2.1-3.2.1.s390x.rpm libcairo-gobject2-1.16.0-5.2.1.s390x.rpm libcairo-script-interpreter2-1.16.0-5.2.1.s390x.rpm libcairo2-1.16.0-5.2.1.s390x.rpm libjbig-devel-2.1-3.2.1.s390x.rpm libjbig2-2.1-3.2.1.s390x.rpm libjpeg-turbo-1.5.3-32.2.1.s390x.rpm libjpeg62-62.2.0-32.0.1.s390x.rpm libjpeg62-devel-62.2.0-32.0.1.s390x.rpm libjpeg62-turbo-1.5.3-32.0.1.s390x.rpm libjpeg8-8.1.2-32.2.1.s390x.rpm libjpeg8-devel-8.1.2-32.2.1.s390x.rpm libopenjp2-7-2.3.0-3.2.2.s390x.rpm libpixman-1-0-0.34.0-7.2.1.s390x.rpm libpixman-1-0-devel-0.34.0-7.2.1.s390x.rpm libpoppler-cpp0-0.79.0-3.5.1.s390x.rpm libpoppler-devel-0.79.0-3.5.1.s390x.rpm libpoppler-glib-devel-0.79.0-3.5.1.s390x.rpm libpoppler-glib8-0.79.0-3.5.1.s390x.rpm libpoppler-qt5-1-0.79.0-3.5.1.s390x.rpm libpoppler-qt5-devel-0.79.0-3.5.1.s390x.rpm libpoppler89-0.79.0-3.5.1.s390x.rpm libtiff-devel-4.0.9-45.2.1.s390x.rpm libtiff5-4.0.9-45.2.1.s390x.rpm libturbojpeg0-8.1.2-32.2.1.s390x.rpm libwebp-devel-1.0.3-3.2.1.s390x.rpm libwebp-tools-1.0.3-3.2.1.s390x.rpm libwebp7-1.0.3-3.2.1.s390x.rpm libwebpdecoder3-1.0.3-3.2.1.s390x.rpm libwebpdemux2-1.0.3-3.2.1.s390x.rpm libwebpmux3-1.0.3-3.2.1.s390x.rpm libxcb-composite0-1.13-3.7.1.s390x.rpm libxcb-damage0-1.13-3.7.1.s390x.rpm libxcb-devel-1.13-3.7.1.s390x.rpm libxcb-dpms0-1.13-3.7.1.s390x.rpm libxcb-dri2-0-1.13-3.7.1.s390x.rpm libxcb-dri3-0-1.13-3.7.1.s390x.rpm libxcb-glx0-1.13-3.7.1.s390x.rpm libxcb-present0-1.13-3.7.1.s390x.rpm libxcb-randr0-1.13-3.7.1.s390x.rpm libxcb-record0-1.13-3.7.1.s390x.rpm libxcb-render0-1.13-3.7.1.s390x.rpm libxcb-res0-1.13-3.7.1.s390x.rpm libxcb-screensaver0-1.13-3.7.1.s390x.rpm libxcb-shape0-1.13-3.7.1.s390x.rpm libxcb-shm0-1.13-3.7.1.s390x.rpm libxcb-sync1-1.13-3.7.1.s390x.rpm libxcb-xf86dri0-1.13-3.7.1.s390x.rpm libxcb-xfixes0-1.13-3.7.1.s390x.rpm libxcb-xinerama0-1.13-3.7.1.s390x.rpm libxcb-xinput0-1.13-3.7.1.s390x.rpm libxcb-xkb1-1.13-3.7.1.s390x.rpm libxcb-xtest0-1.13-3.7.1.s390x.rpm libxcb-xv0-1.13-3.7.1.s390x.rpm libxcb-xvmc0-1.13-3.7.1.s390x.rpm libxcb1-1.13-3.7.1.s390x.rpm openjpeg2-2.3.0-3.2.2.s390x.rpm openjpeg2-devel-2.3.0-3.2.2.s390x.rpm poppler-tools-0.79.0-3.5.1.s390x.rpm tiff-4.0.9-45.2.1.s390x.rpm typelib-1_0-Poppler-0_18-0.79.0-3.5.1.s390x.rpm cairo-devel-1.16.0-5.2.1.ppc64le.rpm cairo-tools-1.16.0-5.2.1.ppc64le.rpm jbigkit-2.1-3.2.1.ppc64le.rpm libcairo-gobject2-1.16.0-5.2.1.ppc64le.rpm libcairo-script-interpreter2-1.16.0-5.2.1.ppc64le.rpm libcairo2-1.16.0-5.2.1.ppc64le.rpm libjbig-devel-2.1-3.2.1.ppc64le.rpm libjbig2-2.1-3.2.1.ppc64le.rpm libjpeg-turbo-1.5.3-32.2.1.ppc64le.rpm libjpeg62-62.2.0-32.0.1.ppc64le.rpm libjpeg62-devel-62.2.0-32.0.1.ppc64le.rpm libjpeg62-turbo-1.5.3-32.0.1.ppc64le.rpm libjpeg8-8.1.2-32.2.1.ppc64le.rpm libjpeg8-devel-8.1.2-32.2.1.ppc64le.rpm libopenjp2-7-2.3.0-3.2.2.ppc64le.rpm libpixman-1-0-0.34.0-7.2.1.ppc64le.rpm libpixman-1-0-devel-0.34.0-7.2.1.ppc64le.rpm libpoppler-cpp0-0.79.0-3.5.1.ppc64le.rpm libpoppler-devel-0.79.0-3.5.1.ppc64le.rpm libpoppler-glib-devel-0.79.0-3.5.1.ppc64le.rpm libpoppler-glib8-0.79.0-3.5.1.ppc64le.rpm libpoppler-qt5-1-0.79.0-3.5.1.ppc64le.rpm libpoppler-qt5-devel-0.79.0-3.5.1.ppc64le.rpm libpoppler89-0.79.0-3.5.1.ppc64le.rpm libtiff-devel-4.0.9-45.2.1.ppc64le.rpm libtiff5-4.0.9-45.2.1.ppc64le.rpm libturbojpeg0-8.1.2-32.2.1.ppc64le.rpm libwebp-devel-1.0.3-3.2.1.ppc64le.rpm libwebp-tools-1.0.3-3.2.1.ppc64le.rpm libwebp7-1.0.3-3.2.1.ppc64le.rpm libwebpdecoder3-1.0.3-3.2.1.ppc64le.rpm libwebpdemux2-1.0.3-3.2.1.ppc64le.rpm libwebpmux3-1.0.3-3.2.1.ppc64le.rpm libxcb-composite0-1.13-3.7.1.ppc64le.rpm libxcb-damage0-1.13-3.7.1.ppc64le.rpm libxcb-devel-1.13-3.7.1.ppc64le.rpm libxcb-dpms0-1.13-3.7.1.ppc64le.rpm libxcb-dri2-0-1.13-3.7.1.ppc64le.rpm libxcb-dri3-0-1.13-3.7.1.ppc64le.rpm libxcb-glx0-1.13-3.7.1.ppc64le.rpm libxcb-present0-1.13-3.7.1.ppc64le.rpm libxcb-randr0-1.13-3.7.1.ppc64le.rpm libxcb-record0-1.13-3.7.1.ppc64le.rpm libxcb-render0-1.13-3.7.1.ppc64le.rpm libxcb-res0-1.13-3.7.1.ppc64le.rpm libxcb-screensaver0-1.13-3.7.1.ppc64le.rpm libxcb-shape0-1.13-3.7.1.ppc64le.rpm libxcb-shm0-1.13-3.7.1.ppc64le.rpm libxcb-sync1-1.13-3.7.1.ppc64le.rpm libxcb-xf86dri0-1.13-3.7.1.ppc64le.rpm libxcb-xfixes0-1.13-3.7.1.ppc64le.rpm libxcb-xinerama0-1.13-3.7.1.ppc64le.rpm libxcb-xinput0-1.13-3.7.1.ppc64le.rpm libxcb-xkb1-1.13-3.7.1.ppc64le.rpm libxcb-xtest0-1.13-3.7.1.ppc64le.rpm libxcb-xv0-1.13-3.7.1.ppc64le.rpm libxcb-xvmc0-1.13-3.7.1.ppc64le.rpm libxcb1-1.13-3.7.1.ppc64le.rpm openjpeg2-2.3.0-3.2.2.ppc64le.rpm openjpeg2-devel-2.3.0-3.2.2.ppc64le.rpm poppler-tools-0.79.0-3.5.1.ppc64le.rpm tiff-4.0.9-45.2.1.ppc64le.rpm typelib-1_0-Poppler-0_18-0.79.0-3.5.1.ppc64le.rpm cairo-devel-1.16.0-5.2.1.aarch64.rpm cairo-tools-1.16.0-5.2.1.aarch64.rpm jbigkit-2.1-3.2.1.aarch64.rpm libcairo-gobject2-1.16.0-5.2.1.aarch64.rpm libcairo-script-interpreter2-1.16.0-5.2.1.aarch64.rpm libcairo2-1.16.0-5.2.1.aarch64.rpm libjbig-devel-2.1-3.2.1.aarch64.rpm libjbig2-2.1-3.2.1.aarch64.rpm libjpeg-turbo-1.5.3-32.2.1.aarch64.rpm libjpeg62-62.2.0-32.0.1.aarch64.rpm libjpeg62-devel-62.2.0-32.0.1.aarch64.rpm libjpeg62-turbo-1.5.3-32.0.1.aarch64.rpm libjpeg8-8.1.2-32.2.1.aarch64.rpm libjpeg8-devel-8.1.2-32.2.1.aarch64.rpm libopenjp2-7-2.3.0-3.2.2.aarch64.rpm libpixman-1-0-0.34.0-7.2.1.aarch64.rpm libpixman-1-0-devel-0.34.0-7.2.1.aarch64.rpm libpoppler-cpp0-0.79.0-3.5.1.aarch64.rpm libpoppler-devel-0.79.0-3.5.1.aarch64.rpm libpoppler-glib-devel-0.79.0-3.5.1.aarch64.rpm libpoppler-glib8-0.79.0-3.5.1.aarch64.rpm libpoppler-qt5-1-0.79.0-3.5.1.aarch64.rpm libpoppler-qt5-devel-0.79.0-3.5.1.aarch64.rpm libpoppler89-0.79.0-3.5.1.aarch64.rpm libtiff-devel-4.0.9-45.2.1.aarch64.rpm libtiff5-4.0.9-45.2.1.aarch64.rpm libturbojpeg0-8.1.2-32.2.1.aarch64.rpm libwebp-devel-1.0.3-3.2.1.aarch64.rpm libwebp-tools-1.0.3-3.2.1.aarch64.rpm libwebp7-1.0.3-3.2.1.aarch64.rpm libwebpdecoder3-1.0.3-3.2.1.aarch64.rpm libwebpdemux2-1.0.3-3.2.1.aarch64.rpm libwebpmux3-1.0.3-3.2.1.aarch64.rpm libxcb-composite0-1.13-3.7.1.aarch64.rpm libxcb-damage0-1.13-3.7.1.aarch64.rpm libxcb-devel-1.13-3.7.1.aarch64.rpm libxcb-dpms0-1.13-3.7.1.aarch64.rpm libxcb-dri2-0-1.13-3.7.1.aarch64.rpm libxcb-dri3-0-1.13-3.7.1.aarch64.rpm libxcb-glx0-1.13-3.7.1.aarch64.rpm libxcb-present0-1.13-3.7.1.aarch64.rpm libxcb-randr0-1.13-3.7.1.aarch64.rpm libxcb-record0-1.13-3.7.1.aarch64.rpm libxcb-render0-1.13-3.7.1.aarch64.rpm libxcb-res0-1.13-3.7.1.aarch64.rpm libxcb-screensaver0-1.13-3.7.1.aarch64.rpm libxcb-shape0-1.13-3.7.1.aarch64.rpm libxcb-shm0-1.13-3.7.1.aarch64.rpm libxcb-sync1-1.13-3.7.1.aarch64.rpm libxcb-xf86dri0-1.13-3.7.1.aarch64.rpm libxcb-xfixes0-1.13-3.7.1.aarch64.rpm libxcb-xinerama0-1.13-3.7.1.aarch64.rpm libxcb-xinput0-1.13-3.7.1.aarch64.rpm libxcb-xkb1-1.13-3.7.1.aarch64.rpm libxcb-xtest0-1.13-3.7.1.aarch64.rpm libxcb-xv0-1.13-3.7.1.aarch64.rpm libxcb-xvmc0-1.13-3.7.1.aarch64.rpm libxcb1-1.13-3.7.1.aarch64.rpm openjpeg2-2.3.0-3.2.2.aarch64.rpm openjpeg2-devel-2.3.0-3.2.2.aarch64.rpm poppler-tools-0.79.0-3.5.1.aarch64.rpm tiff-4.0.9-45.2.1.aarch64.rpm typelib-1_0-Poppler-0_18-0.79.0-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-4166 moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - Rebase on top of Ceph v15.2.15 tag - Re-do some downstream patches - Fix parsing of kwargs arguments. (bsc#1192840, jsc#SES-704) (fixes an issue caused by downstream commit "pybing/mgr/mgr_module: allow keyword arguments") ceph-15.2.15.83+gf72054fa653-3.34.1.src.rpm ceph-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-base-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-common-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-fuse-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-grafana-dashboards-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-immutable-object-cache-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-mds-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-mgr-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-mgr-cephadm-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-dashboard-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-k8sevents-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-modules-core-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-rook-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mon-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-osd-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-prometheus-alerts-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-radosgw-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-test-15.2.15.83+gf72054fa653-3.34.1.src.rpm ceph-test-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm cephadm-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm cephfs-shell-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm libcephfs-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm libcephfs2-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librados-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librados2-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm libradospp-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librbd-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librbd1-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librgw-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librgw2-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-ceph-argparse-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-ceph-common-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-cephfs-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-rados-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-rbd-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-rgw-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm rados-objclass-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm rbd-fuse-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm rbd-mirror-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm rbd-nbd-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-base-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-common-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-fuse-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-immutable-object-cache-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-mds-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-mgr-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-mon-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-osd-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-radosgw-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm cephfs-shell-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm libcephfs-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm libcephfs2-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librados-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librados2-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm libradospp-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librbd-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librbd1-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librgw-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librgw2-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-ceph-argparse-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-ceph-common-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-cephfs-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-rados-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-rbd-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-rgw-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm rados-objclass-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm rbd-fuse-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm rbd-mirror-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm rbd-nbd-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-base-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-common-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-fuse-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-immutable-object-cache-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-mds-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-mgr-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-mon-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-osd-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-radosgw-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm cephfs-shell-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm libcephfs-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm libcephfs2-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librados-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librados2-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm libradospp-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librbd-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librbd1-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librgw-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librgw2-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-ceph-argparse-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-ceph-common-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-cephfs-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-rados-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-rbd-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-rgw-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm rados-objclass-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm rbd-fuse-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm rbd-mirror-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm rbd-nbd-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-base-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-common-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-fuse-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-immutable-object-cache-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-mds-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-mgr-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-mon-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-osd-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-radosgw-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm cephfs-shell-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm libcephfs-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm libcephfs2-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librados-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librados2-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm libradospp-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librbd-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librbd1-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librgw-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librgw2-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-ceph-argparse-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-ceph-common-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-cephfs-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-rados-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-rbd-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-rgw-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm rados-objclass-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm rbd-fuse-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm rbd-mirror-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm rbd-nbd-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm openSUSE-SLE-15.3-2022-727 moderate SUSE Updates openSUSE-SLE 15.3 This security update for libeconf, shadow and util-linux fix the following issues: libeconf: - Add libeconf to SLE-Module-Basesystem_15-SP3 because needed by 'util-linux' and 'shadow' to fix autoyast handling of security related parameters (bsc#1192954, jsc#SLE-23384, jsc#SLE-23402) Issues fixed in libeconf: - Reading numbers with different bases (e.g. oktal) (bsc#1193632) (#157) - Fixed different issues while writing string values to file. - Writing comments to file too. - Fixed crash while merging values. - Added econftool cat option (#146) - new API call: econf_readDirsHistory (showing ALL locations) - new API call: econf_getPath (absolute path of the configuration file) - Man pages libeconf.3 and econftool.8. - Handling multiline strings. - Added libeconf_ext which returns more information like line_nr, comments, path of the configuration file,... - Econftool, an command line interface for handling configuration files. - Generating HTML API documentation with doxygen. - Improving error handling and semantic file check. - Joining entries with the same key to one single entry if env variable ECONF_JOIN_SAME_ENTRIES has been set. shadow: - The legacy code does not support /etc/login.defs.d used by YaST. Enable libeconf to read it (bsc#1192954, jsc#SLE-23384, jsc#SLE-23402) util-linux: - The legacy code does not support /etc/login.defs.d used by YaST. Enable libeconf to read it (bsc#1192954, jsc#SLE-23384, jsc#SLE-23402) - Allow use of larger values for start sector to prevent `blockdev --report` aborting (bsc#1188507) - Fixed `blockdev --report` using non-space characters as a field separator (bsc#1188507) - CVE-2021-3995: Fixed unauthorized unmount in util-linux's libmount. (bsc#1194976) - CVE-2021-3996: Fixed unauthorized unmount in util-linux's libmount. (bsc#1194976) libblkid-devel-2.36.2-150300.4.14.3.x86_64.rpm libblkid-devel-32bit-2.36.2-150300.4.14.3.x86_64.rpm libblkid-devel-static-2.36.2-150300.4.14.3.x86_64.rpm libblkid1-2.36.2-150300.4.14.3.x86_64.rpm libblkid1-32bit-2.36.2-150300.4.14.3.x86_64.rpm libeconf-0.4.4+git20220104.962774f-150300.3.6.2.src.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.6.2.x86_64.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.6.2.x86_64.rpm libeconf0-32bit-0.4.4+git20220104.962774f-150300.3.6.2.x86_64.rpm libfdisk-devel-2.36.2-150300.4.14.3.x86_64.rpm libfdisk-devel-32bit-2.36.2-150300.4.14.3.x86_64.rpm libfdisk-devel-static-2.36.2-150300.4.14.3.x86_64.rpm libfdisk1-2.36.2-150300.4.14.3.x86_64.rpm libfdisk1-32bit-2.36.2-150300.4.14.3.x86_64.rpm libmount-devel-2.36.2-150300.4.14.3.x86_64.rpm libmount-devel-32bit-2.36.2-150300.4.14.3.x86_64.rpm libmount-devel-static-2.36.2-150300.4.14.3.x86_64.rpm libmount1-2.36.2-150300.4.14.3.x86_64.rpm libmount1-32bit-2.36.2-150300.4.14.3.x86_64.rpm libsmartcols-devel-2.36.2-150300.4.14.3.x86_64.rpm libsmartcols-devel-32bit-2.36.2-150300.4.14.3.x86_64.rpm libsmartcols-devel-static-2.36.2-150300.4.14.3.x86_64.rpm libsmartcols1-2.36.2-150300.4.14.3.x86_64.rpm libsmartcols1-32bit-2.36.2-150300.4.14.3.x86_64.rpm libuuid-devel-2.36.2-150300.4.14.3.x86_64.rpm libuuid-devel-32bit-2.36.2-150300.4.14.3.x86_64.rpm libuuid-devel-static-2.36.2-150300.4.14.3.x86_64.rpm libuuid1-2.36.2-150300.4.14.3.x86_64.rpm libuuid1-32bit-2.36.2-150300.4.14.3.x86_64.rpm login_defs-4.8.1-150300.4.3.8.noarch.rpm python3-libmount-2.36.2-150300.4.14.2.src.rpm python3-libmount-2.36.2-150300.4.14.2.x86_64.rpm shadow-4.8.1-150300.4.3.8.src.rpm shadow-4.8.1-150300.4.3.8.x86_64.rpm util-linux-2.36.2-150300.4.14.3.src.rpm util-linux-2.36.2-150300.4.14.3.x86_64.rpm util-linux-lang-2.36.2-150300.4.14.3.noarch.rpm util-linux-systemd-2.36.2-150300.4.14.2.src.rpm util-linux-systemd-2.36.2-150300.4.14.2.x86_64.rpm uuidd-2.36.2-150300.4.14.2.x86_64.rpm libblkid-devel-2.36.2-150300.4.14.3.s390x.rpm libblkid-devel-static-2.36.2-150300.4.14.3.s390x.rpm libblkid1-2.36.2-150300.4.14.3.s390x.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.6.2.s390x.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.6.2.s390x.rpm libfdisk-devel-2.36.2-150300.4.14.3.s390x.rpm libfdisk-devel-static-2.36.2-150300.4.14.3.s390x.rpm libfdisk1-2.36.2-150300.4.14.3.s390x.rpm libmount-devel-2.36.2-150300.4.14.3.s390x.rpm libmount-devel-static-2.36.2-150300.4.14.3.s390x.rpm libmount1-2.36.2-150300.4.14.3.s390x.rpm libsmartcols-devel-2.36.2-150300.4.14.3.s390x.rpm libsmartcols-devel-static-2.36.2-150300.4.14.3.s390x.rpm libsmartcols1-2.36.2-150300.4.14.3.s390x.rpm libuuid-devel-2.36.2-150300.4.14.3.s390x.rpm libuuid-devel-static-2.36.2-150300.4.14.3.s390x.rpm libuuid1-2.36.2-150300.4.14.3.s390x.rpm python3-libmount-2.36.2-150300.4.14.2.s390x.rpm shadow-4.8.1-150300.4.3.8.s390x.rpm util-linux-2.36.2-150300.4.14.3.s390x.rpm util-linux-systemd-2.36.2-150300.4.14.2.s390x.rpm uuidd-2.36.2-150300.4.14.2.s390x.rpm libblkid-devel-2.36.2-150300.4.14.3.ppc64le.rpm libblkid-devel-static-2.36.2-150300.4.14.3.ppc64le.rpm libblkid1-2.36.2-150300.4.14.3.ppc64le.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.6.2.ppc64le.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.6.2.ppc64le.rpm libfdisk-devel-2.36.2-150300.4.14.3.ppc64le.rpm libfdisk-devel-static-2.36.2-150300.4.14.3.ppc64le.rpm libfdisk1-2.36.2-150300.4.14.3.ppc64le.rpm libmount-devel-2.36.2-150300.4.14.3.ppc64le.rpm libmount-devel-static-2.36.2-150300.4.14.3.ppc64le.rpm libmount1-2.36.2-150300.4.14.3.ppc64le.rpm libsmartcols-devel-2.36.2-150300.4.14.3.ppc64le.rpm libsmartcols-devel-static-2.36.2-150300.4.14.3.ppc64le.rpm libsmartcols1-2.36.2-150300.4.14.3.ppc64le.rpm libuuid-devel-2.36.2-150300.4.14.3.ppc64le.rpm libuuid-devel-static-2.36.2-150300.4.14.3.ppc64le.rpm libuuid1-2.36.2-150300.4.14.3.ppc64le.rpm python3-libmount-2.36.2-150300.4.14.2.ppc64le.rpm shadow-4.8.1-150300.4.3.8.ppc64le.rpm util-linux-2.36.2-150300.4.14.3.ppc64le.rpm util-linux-systemd-2.36.2-150300.4.14.2.ppc64le.rpm uuidd-2.36.2-150300.4.14.2.ppc64le.rpm libblkid-devel-2.36.2-150300.4.14.3.aarch64.rpm libblkid-devel-static-2.36.2-150300.4.14.3.aarch64.rpm libblkid1-2.36.2-150300.4.14.3.aarch64.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.6.2.aarch64.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.6.2.aarch64.rpm libfdisk-devel-2.36.2-150300.4.14.3.aarch64.rpm libfdisk-devel-static-2.36.2-150300.4.14.3.aarch64.rpm libfdisk1-2.36.2-150300.4.14.3.aarch64.rpm libmount-devel-2.36.2-150300.4.14.3.aarch64.rpm libmount-devel-static-2.36.2-150300.4.14.3.aarch64.rpm libmount1-2.36.2-150300.4.14.3.aarch64.rpm libsmartcols-devel-2.36.2-150300.4.14.3.aarch64.rpm libsmartcols-devel-static-2.36.2-150300.4.14.3.aarch64.rpm libsmartcols1-2.36.2-150300.4.14.3.aarch64.rpm libuuid-devel-2.36.2-150300.4.14.3.aarch64.rpm libuuid-devel-static-2.36.2-150300.4.14.3.aarch64.rpm libuuid1-2.36.2-150300.4.14.3.aarch64.rpm python3-libmount-2.36.2-150300.4.14.2.aarch64.rpm shadow-4.8.1-150300.4.3.8.aarch64.rpm util-linux-2.36.2-150300.4.14.3.aarch64.rpm util-linux-systemd-2.36.2-150300.4.14.2.aarch64.rpm uuidd-2.36.2-150300.4.14.2.aarch64.rpm openSUSE-SLE-15.3-2021-4094 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issue: CVE-2021-44228: The previously published fix by upstream turned out to be incomplete. Therefore, upstream has recommended disabling JNDI support in log4j by default to be completely sure that this vulnerability cannot be exploited. This update implements that recommendation and disables JNDI support by default. [bsc#1193611, CVE-2021-44228] CVE-2021-45046: A Thread Context Message Pattern and Context Lookup Pattern vulnerable to a denial of service attack is also fixed by disabling JNDI support by default (bsc#1193743) log4j-2.13.0-4.6.1.noarch.rpm log4j-2.13.0-4.6.1.src.rpm log4j-javadoc-2.13.0-4.6.1.noarch.rpm log4j-jcl-2.13.0-4.6.1.noarch.rpm log4j-slf4j-2.13.0-4.6.1.noarch.rpm openSUSE-SLE-15.3-2021-4136 important SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - CVE-2021-4009: The handler for the CreatePointerBarrier request of the XFixes extension does not properly validate the request length leading to out of bounds memory write. (bsc#1190487) - CVE-2021-4010: The handler for the Suspend request of the Screen Saver extension does not properly validate the request length leading to out of bounds memory write. (bsc#1190488) - CVE-2021-4011: The handlers for the RecordCreateContext and RecordRegisterClients requests of the Record extension do not properly validate the request length leading to out of bounds memory write. (bsc#1190489) xorg-x11-server-1.20.3-22.5.42.1.src.rpm xorg-x11-server-1.20.3-22.5.42.1.x86_64.rpm xorg-x11-server-extra-1.20.3-22.5.42.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-22.5.42.1.x86_64.rpm xorg-x11-server-source-1.20.3-22.5.42.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-22.5.42.1.x86_64.rpm xorg-x11-server-1.20.3-22.5.42.1.s390x.rpm xorg-x11-server-extra-1.20.3-22.5.42.1.s390x.rpm xorg-x11-server-sdk-1.20.3-22.5.42.1.s390x.rpm xorg-x11-server-source-1.20.3-22.5.42.1.s390x.rpm xorg-x11-server-wayland-1.20.3-22.5.42.1.s390x.rpm xorg-x11-server-1.20.3-22.5.42.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-22.5.42.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-22.5.42.1.ppc64le.rpm xorg-x11-server-source-1.20.3-22.5.42.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-22.5.42.1.ppc64le.rpm xorg-x11-server-1.20.3-22.5.42.1.aarch64.rpm xorg-x11-server-extra-1.20.3-22.5.42.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-22.5.42.1.aarch64.rpm xorg-x11-server-source-1.20.3-22.5.42.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-22.5.42.1.aarch64.rpm openSUSE-SLE-15.3-2021-4107 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issue: - Previously published fixes for log4jshell turned out to be incomplete. Upstream has followed up on the original patch for CVE-2021-44228 with several additional changes (LOG4J2-3198, LOG4J2-3201, LOG4J2-3208, and LOG4J2-3211) that are included in this update. Since the totality of those patches is pretty much equivalent to an update to the latest version of log4j, we did update the package's tarball from version 2.13.0 to 2.16.0 instead of trying to apply those patches to the old version. This change brings in a new dependency on "jakarta-servlet" and a version update of "disruptor". [bsc#1193743, CVE-2021-45046] disruptor-3.4.4-3.3.1.noarch.rpm disruptor-3.4.4-3.3.1.src.rpm disruptor-javadoc-3.4.4-3.3.1.noarch.rpm jakarta-servlet-5.0.0-5.3.1.noarch.rpm jakarta-servlet-5.0.0-5.3.1.src.rpm jakarta-servlet-javadoc-5.0.0-5.3.1.noarch.rpm log4j-2.16.0-4.10.1.noarch.rpm log4j-2.16.0-4.10.1.src.rpm log4j-javadoc-2.16.0-4.10.1.noarch.rpm log4j-jcl-2.16.0-4.10.1.noarch.rpm log4j-slf4j-2.16.0-4.10.1.noarch.rpm openSUSE-SLE-15.3-2021-4111 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issue: - CVE-2021-4104: Disable the JMSAppender class from log4j to protect against the log4jshell vulnerability. [bsc#1193662] log4j-1.2.17-5.6.1.src.rpm log4j-manual-1.2.17-5.6.1.noarch.rpm openSUSE-SLE-15.3-2021-4112 important SUSE Updates openSUSE-SLE 15.3 This update for log4j12 fixes the following issues: - CVE-2021-4104: Disable the JMSAppender class from log4j to protect against the log4jshell vulnerability. [bsc#1193662] log4j12-1.2.17-4.3.1.noarch.rpm log4j12-1.2.17-4.3.1.src.rpm log4j12-javadoc-1.2.17-4.3.1.noarch.rpm log4j12-manual-1.2.17-4.3.1.noarch.rpm openSUSE-SLE-15.3-2021-4158 important SUSE Updates openSUSE-SLE 15.3 This update for python3-ec2imgutils fixes the following issues: - Update to version 9.0.4 (bsc#1192298) - Set a time out for the ssh connection to avoid hang in a multi threaded environment - Update to version 9.0.3 (bsc#1190538) - Support setting the boot mode for EC2 images, either to legacy-bios or uefi. Argument is optional, without it instance will use the default boot mode for the given instance type. - Update to version 9.0.2 (bsc#1189649) - In addition to tagging images in AWS also set them to deprecated in EC2. This allows the framework to hide the images from new users when images are no longer supposed to be used. python3-ec2imgutils-9.0.4-6.4.1.noarch.rpm python3-ec2imgutils-9.0.4-6.4.1.src.rpm openSUSE-SLE-15.3-2021-4109 important SUSE Updates openSUSE-SLE 15.3 This update for logback fixes the following issues: Upgrade to version 1.2.8 + In response to log4Shell/CVE-2021-44228, all JNDI lookup code in logback has been disabled until further notice. This impacts ContextJNDISelector and insertFromJNDI element in configuration files. + Also in response to log4Shell/CVE-2021-44228, all database (JDBC) related code in the project has been removed with no replacement. + Note that the vulnerability mentioned in LOGBACK-1591 requires write access to logback's configuration file as a prerequisite. The log4Shell/CVE-2021-44228 and LOGBACK-1591 are of different severity levels. A successful RCE requires all of the following conditions to be met: - write access to logback.xml - use of versions lower then 1.2.8 - reloading of poisoned configuration data, which implies application restart or scan="true" set prior to attack logback-1.2.8-3.3.1.noarch.rpm logback-1.2.8-3.3.1.src.rpm logback-access-1.2.8-3.3.1.noarch.rpm logback-examples-1.2.8-3.3.1.noarch.rpm logback-javadoc-1.2.8-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-4205 important SUSE Updates openSUSE-SLE 15.3 This update for yast2-storage-ng fixes the following issues: - AutoYaST: fixes for reusing encrypted devices, RAIDs and bcache devices. (bsc#1193450) - Fix duplicate PV error detection with disabled multipath. (bsc#1170216) yast2-storage-ng-4.3.59-3.18.1.src.rpm yast2-storage-ng-4.3.59-3.18.1.x86_64.rpm yast2-storage-ng-4.3.59-3.18.1.s390x.rpm yast2-storage-ng-4.3.59-3.18.1.ppc64le.rpm yast2-storage-ng-4.3.59-3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-186 moderate SUSE Updates openSUSE-SLE 15.3 This update for gdm fixes the following issues: -Fixed an issue when X server does not restart after using "ctrl-alt-backspace". (bsc#1190230) -Fixed an issue when Xorg does not log to 'var/log/Xorg.*.log'. (bsc#1192177) gdm-3.34.1-8.21.3.src.rpm gdm-3.34.1-8.21.3.x86_64.rpm gdm-branding-upstream-3.34.1-8.21.3.noarch.rpm gdm-devel-3.34.1-8.21.3.x86_64.rpm gdm-lang-3.34.1-8.21.3.noarch.rpm gdm-systemd-3.34.1-8.21.3.noarch.rpm gdmflexiserver-3.34.1-8.21.3.noarch.rpm libgdm1-3.34.1-8.21.3.x86_64.rpm typelib-1_0-Gdm-1_0-3.34.1-8.21.3.x86_64.rpm gdm-3.34.1-8.21.3.s390x.rpm gdm-devel-3.34.1-8.21.3.s390x.rpm libgdm1-3.34.1-8.21.3.s390x.rpm typelib-1_0-Gdm-1_0-3.34.1-8.21.3.s390x.rpm gdm-3.34.1-8.21.3.ppc64le.rpm gdm-devel-3.34.1-8.21.3.ppc64le.rpm libgdm1-3.34.1-8.21.3.ppc64le.rpm typelib-1_0-Gdm-1_0-3.34.1-8.21.3.ppc64le.rpm gdm-3.34.1-8.21.3.aarch64.rpm gdm-devel-3.34.1-8.21.3.aarch64.rpm libgdm1-3.34.1-8.21.3.aarch64.rpm typelib-1_0-Gdm-1_0-3.34.1-8.21.3.aarch64.rpm openSUSE-SLE-15.3-2021-4118 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issues: - Update to 2.17.0 - CVE-2021-45105: Apache Log4j2 does not always protect from infinite recursion in lookup evaluation. (bsc#1193887, bsc#1193888) log4j-2.17.0-4.13.1.noarch.rpm log4j-2.17.0-4.13.1.src.rpm log4j-javadoc-2.17.0-4.13.1.noarch.rpm log4j-jcl-2.17.0-4.13.1.noarch.rpm log4j-slf4j-2.17.0-4.13.1.noarch.rpm openSUSE-SLE-15.3-2022-4 moderate SUSE Updates openSUSE-SLE 15.3 This update for libgcrypt fixes the following issues: - Fix function gcry_mpi_sub_ui subtracting from negative value (bsc#1193480) libgcrypt-1.8.2-8.42.1.src.rpm libgcrypt-cavs-1.8.2-8.42.1.x86_64.rpm libgcrypt-devel-1.8.2-8.42.1.x86_64.rpm libgcrypt-devel-32bit-1.8.2-8.42.1.x86_64.rpm libgcrypt20-1.8.2-8.42.1.x86_64.rpm libgcrypt20-32bit-1.8.2-8.42.1.x86_64.rpm libgcrypt20-hmac-1.8.2-8.42.1.x86_64.rpm libgcrypt20-hmac-32bit-1.8.2-8.42.1.x86_64.rpm libgcrypt-cavs-1.8.2-8.42.1.s390x.rpm libgcrypt-devel-1.8.2-8.42.1.s390x.rpm libgcrypt20-1.8.2-8.42.1.s390x.rpm libgcrypt20-hmac-1.8.2-8.42.1.s390x.rpm libgcrypt-cavs-1.8.2-8.42.1.ppc64le.rpm libgcrypt-devel-1.8.2-8.42.1.ppc64le.rpm libgcrypt20-1.8.2-8.42.1.ppc64le.rpm libgcrypt20-hmac-1.8.2-8.42.1.ppc64le.rpm libgcrypt-cavs-1.8.2-8.42.1.aarch64.rpm libgcrypt-devel-1.8.2-8.42.1.aarch64.rpm libgcrypt20-1.8.2-8.42.1.aarch64.rpm libgcrypt20-hmac-1.8.2-8.42.1.aarch64.rpm openSUSE-SLE-15.3-2022-11 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issue: Lifecycle data updates. (bsc#1020320) - Updates for 4_12_14-150_78, 4_12_14-197_102, 5_3_18-24_93, 5_3_18-24_96, 5_3_18-59_30, 5_3_18-59_34, 5_3_18-59_37. lifecycle-data-sle-module-live-patching-15-4.66.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-4.66.1.src.rpm openSUSE-SLE-15.3-2022-303 moderate SUSE Updates openSUSE-SLE 15.3 This update for hplip fixes the following issues: - Replace keyserver with `pgp.surf.nl` (bsc#1193656) - Add build dependency on `python-rpm-macros` (bsc#1193718) - Update hplip to version 3.21.10 and added support for the following new printers: * HP Color LaserJet Enterprise M455dn * HP Color LaserJet Enterprise MFP M480f * HP Color LaserJet Managed E45028dn * HP Color LaserJet Managed MFP E47528f * HP DesignJet Z6 Pro 64in * HP DesignJet Z9 Pro 64in * HP DeskJet Ink Advantage Ultra 4800 All-in-One Printer series * HP ENVY Inspire 7200e series * HP ENVY Inspire 7900e series * HP Envy 6400 series * HP Lasejet M211d * HP LaserJet Enterprise M406dn * HP LaserJet Enterprise M407dn * HP LaserJet Enterprise MFP M430f * HP LaserJet Enterprise MFP M431f * HP LaserJet M109a * HP LaserJet M109w * HP LaserJet M109we * HP LaserJet M110a * HP LaserJet M110w * HP LaserJet M110we * HP LaserJet M111a * HP LaserJet M111w * HP LaserJet M111we * HP LaserJet M112a * HP LaserJet M112w * HP LaserJet M112we * HP LaserJet M212dwe * HP LaserJet MFP M139a * HP LaserJet MFP M139w * HP LaserJet MFP M139we * HP LaserJet MFP M140a * HP LaserJet MFP M140w * HP LaserJet MFP M140we * HP LaserJet MFP M141a * HP LaserJet MFP M141w * HP LaserJet MFP M141we * HP LaserJet MFP M142a * HP LaserJet MFP M142w * HP LaserJet MFP M142we * HP LaserJet MFP M232d * HP LaserJet MFP M232dw * HP LaserJet MFP M232dwc * HP LaserJet MFP M232sdn * HP LaserJet MFP M232sdw * HP LaserJet MFP M233d * HP LaserJet MFP M233dw * HP LaserJet MFP M233sdn * HP LaserJet MFP M233sdw * HP LaserJet MFP M234dw * HP LaserJet MFP M234dwe * HP LaserJet MFP M234sdn * HP LaserJet MFP M234sdne * HP LaserJet MFP M234sdw * HP LaserJet MFP M234sdwe * HP LaserJet MFP M235d * HP LaserJet MFP M235dw * HP LaserJet MFP M235dwe * HP LaserJet MFP M235sdn * HP LaserJet MFP M235sdne * HP LaserJet MFP M235sdw * HP LaserJet MFP M235sdwe * HP LaserJet MFP M236d * HP LaserJet MFP M236dw * HP LaserJet MFP M236sdn * HP LaserJet MFP M236sdw * HP LaserJet MFP M237d * HP LaserJet MFP M237dw * HP LaserJet MFP M237dwe * HP LaserJet MFP M237sdn * HP LaserJet MFP M237sdne * HP LaserJet MFP M237sdw * HP LaserJet MFP M237sdwe * HP LaserJet Managed E40040dn * HP LaserJet Managed MFP E42540f * HP Laserjet M207d * HP Laserjet M207dw * HP Laserjet M208d * HP Laserjet M208dw * HP Laserjet M209d * HP Laserjet M209dw * HP Laserjet M209dwe * HP Laserjet M210d * HP Laserjet M210dw * HP Laserjet M210dwe * HP Laserjet M211dw * HP Laserjet M212d * HP Laserjet M212dw * HP PageWide XL 3920 MFP * HP PageWide XL 3920 MFP * HP PageWide XL 4200 Multifunction Printer * HP PageWide XL 4200 Multifunction Printer * HP PageWide XL 4200 Printer * HP PageWide XL 4200 Printer * HP PageWide XL 4700 Multifunction Printer * HP PageWide XL 4700 Multifunction Printer * HP PageWide XL 4700 Printer * HP PageWide XL 4700 Printer * HP PageWide XL 5200 Multifunction Printer * HP PageWide XL 5200 Multifunction Printer * HP PageWide XL 5200 Printer * HP PageWide XL 5200 Printer * HP PageWide XL 8200 Printer * HP PageWide XL 8200 Printer * HP PageWide XL Pro 5200 PS MFP series * HP PageWide XL Pro 8200 PS MFP series * HP Smart Tank 500 series * HP Smart Tank 530 series * HP Smart Tank 750 * HP Smart Tank 7600 * HP Smart Tank 790 * HP Smart Tank Plus 570 series * HP Smart Tank Plus 6000 * HP Smart Tank Plus 660-670 * HP Smart Tank Plus 7000 * HP Smart Tank Plus 710-720 - Remove libtool archives - Fixes to the built artifacts: * Disabled image processor build with the configure option `--disable-imageProcessor-build` * Remove executable bit in `%{_datadir}/hplip/` * Ignore duplicate files in `hplip-rpmlintrc ("__init__.*.pyc?")` hplip-3.21.10-4.3.1.src.rpm hplip-3.21.10-4.3.1.x86_64.rpm hplip-devel-3.21.10-4.3.1.x86_64.rpm hplip-hpijs-3.21.10-4.3.1.x86_64.rpm hplip-sane-3.21.10-4.3.1.x86_64.rpm hplip-scan-utils-3.21.10-4.3.1.x86_64.rpm hplip-3.21.10-4.3.1.s390x.rpm hplip-devel-3.21.10-4.3.1.s390x.rpm hplip-hpijs-3.21.10-4.3.1.s390x.rpm hplip-sane-3.21.10-4.3.1.s390x.rpm hplip-scan-utils-3.21.10-4.3.1.s390x.rpm hplip-3.21.10-4.3.1.ppc64le.rpm hplip-devel-3.21.10-4.3.1.ppc64le.rpm hplip-hpijs-3.21.10-4.3.1.ppc64le.rpm hplip-sane-3.21.10-4.3.1.ppc64le.rpm hplip-scan-utils-3.21.10-4.3.1.ppc64le.rpm hplip-3.21.10-4.3.1.aarch64.rpm hplip-devel-3.21.10-4.3.1.aarch64.rpm hplip-hpijs-3.21.10-4.3.1.aarch64.rpm hplip-sane-3.21.10-4.3.1.aarch64.rpm hplip-scan-utils-3.21.10-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4178 important SUSE Updates openSUSE-SLE 15.3 This update for cpupower fixes the following issues: - Fix `turbostat` immediately exiting on AMD Zen machines (bsc#1193557) cpupower-5.10-3.6.1.src.rpm cpupower-5.10-3.6.1.x86_64.rpm cpupower-bench-5.10-3.6.1.x86_64.rpm cpupower-devel-5.10-3.6.1.x86_64.rpm libcpupower0-5.10-3.6.1.x86_64.rpm cpupower-5.10-3.6.1.s390x.rpm cpupower-bench-5.10-3.6.1.s390x.rpm cpupower-devel-5.10-3.6.1.s390x.rpm libcpupower0-5.10-3.6.1.s390x.rpm cpupower-5.10-3.6.1.ppc64le.rpm cpupower-bench-5.10-3.6.1.ppc64le.rpm cpupower-devel-5.10-3.6.1.ppc64le.rpm libcpupower0-5.10-3.6.1.ppc64le.rpm cpupower-5.10-3.6.1.aarch64.rpm cpupower-bench-5.10-3.6.1.aarch64.rpm cpupower-devel-5.10-3.6.1.aarch64.rpm libcpupower0-5.10-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2 moderate SUSE Updates openSUSE-SLE 15.3 This update for lvm2 fixes the following issues: - Fix lvconvert not taking `--stripes` option (bsc#1183905) - Fix LVM vgimportclone not working on hardware snapshot (bsc#1193181) device-mapper-1.02.163-8.39.1.x86_64.rpm device-mapper-devel-1.02.163-8.39.1.x86_64.rpm device-mapper-devel-32bit-1.02.163-8.39.1.x86_64.rpm libdevmapper-event1_03-1.02.163-8.39.1.x86_64.rpm libdevmapper-event1_03-32bit-1.02.163-8.39.1.x86_64.rpm libdevmapper1_03-1.02.163-8.39.1.x86_64.rpm libdevmapper1_03-32bit-1.02.163-8.39.1.x86_64.rpm liblvm2cmd2_03-2.03.05-8.39.1.x86_64.rpm lvm2-2.03.05-8.39.1.src.rpm lvm2-2.03.05-8.39.1.x86_64.rpm lvm2-devel-2.03.05-8.39.1.x86_64.rpm lvm2-device-mapper-2.03.05-8.39.1.src.rpm lvm2-lockd-2.03.05-8.39.1.x86_64.rpm lvm2-lvmlockd-2.03.05-8.39.1.src.rpm lvm2-testsuite-2.03.05-8.39.1.x86_64.rpm device-mapper-1.02.163-8.39.1.s390x.rpm device-mapper-devel-1.02.163-8.39.1.s390x.rpm libdevmapper-event1_03-1.02.163-8.39.1.s390x.rpm libdevmapper1_03-1.02.163-8.39.1.s390x.rpm liblvm2cmd2_03-2.03.05-8.39.1.s390x.rpm lvm2-2.03.05-8.39.1.s390x.rpm lvm2-devel-2.03.05-8.39.1.s390x.rpm lvm2-lockd-2.03.05-8.39.1.s390x.rpm lvm2-testsuite-2.03.05-8.39.1.s390x.rpm device-mapper-1.02.163-8.39.1.ppc64le.rpm device-mapper-devel-1.02.163-8.39.1.ppc64le.rpm libdevmapper-event1_03-1.02.163-8.39.1.ppc64le.rpm libdevmapper1_03-1.02.163-8.39.1.ppc64le.rpm liblvm2cmd2_03-2.03.05-8.39.1.ppc64le.rpm lvm2-2.03.05-8.39.1.ppc64le.rpm lvm2-devel-2.03.05-8.39.1.ppc64le.rpm lvm2-lockd-2.03.05-8.39.1.ppc64le.rpm lvm2-testsuite-2.03.05-8.39.1.ppc64le.rpm device-mapper-1.02.163-8.39.1.aarch64.rpm device-mapper-devel-1.02.163-8.39.1.aarch64.rpm libdevmapper-event1_03-1.02.163-8.39.1.aarch64.rpm libdevmapper1_03-1.02.163-8.39.1.aarch64.rpm liblvm2cmd2_03-2.03.05-8.39.1.aarch64.rpm lvm2-2.03.05-8.39.1.aarch64.rpm lvm2-devel-2.03.05-8.39.1.aarch64.rpm lvm2-lockd-2.03.05-8.39.1.aarch64.rpm lvm2-testsuite-2.03.05-8.39.1.aarch64.rpm openSUSE-SLE-15.3-2021-4177 important SUSE Updates openSUSE-SLE 15.3 This update for ServiceReport fixes the following issues: - Fix build to require python-rpm-macros (bsc#1193718) ServiceReport-2.2.3+git1.55a13db1c256-3.6.1.noarch.rpm ServiceReport-2.2.3+git1.55a13db1c256-3.6.1.src.rpm openSUSE-SLE-15.3-2022-482 moderate SUSE Updates openSUSE-SLE 15.3 This update for libreoffice fixes the following issues: Update LibreOffice from version 7.1.4.2 to 7.2.3.2 (jsc#SLE-18214) - Improve the rendering and loading rendering of shapes. (bsc#1183308) - Removed unrecognized option `--disable-vlc` This option has been removed from upstream in commit https://gerrit.libreoffice.org/c/core/+/108283 There's no real change in our build given that the VLC avmedia backend was explicitly disabled. - Fix gtk popover usage on gtk 3.20 - Revert upstream commit https://gerrit.libreoffice.org/c/core/+/116884 - Fix generated list of files for python scripts - Updating some LibreOffice buildrequires - Fix UI scaling on HIDPI Wayland/KDE screens - Fix inteaction between multi-column shape text and automatic height. (bsc#1187982) - Fix interaction of transparent cell fill and transparent shadow. (bsc#1189813) - Use vendored boost for all codestreams except Tumbleweed. Update boost vendored version. - Add vendored poppler to use for all codestreams except Tumbleweed. - Keep upstream desktop file names (bsc#1183655) and display math icon (bsc#1180479) - Source profile.d/alljava.sh from either /etc (if found) or /usr/etc). libreoffice-7.2.3.2-150300.14.22.15.3.src.rpm libreoffice-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-base-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-base-drivers-postgresql-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-branding-upstream-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-calc-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-calc-extensions-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-draw-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-filters-optional-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-gdb-pretty-printers-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-glade-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-gnome-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-gtk3-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-icon-themes-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-impress-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-l10n-af-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-am-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ar-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-as-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ast-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-be-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-bg-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-bn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-bn_IN-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-bo-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-br-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-brx-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-bs-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ca-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ca_valencia-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ckb-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-cs-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-cy-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-da-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-de-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-dgo-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-dsb-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-dz-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-el-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-en-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-en_GB-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-en_ZA-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-eo-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-es-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-et-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-eu-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-fa-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-fi-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-fr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-fur-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-fy-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ga-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-gd-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-gl-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-gu-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-gug-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-he-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-hi-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-hr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-hsb-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-hu-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-id-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-is-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-it-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ja-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ka-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-kab-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-kk-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-km-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-kmr_Latn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-kn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ko-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-kok-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ks-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-lb-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-lo-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-lt-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-lv-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-mai-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-mk-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ml-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-mn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-mni-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-mr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-my-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-nb-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ne-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-nl-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-nn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-nr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-nso-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-oc-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-om-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-or-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-pa-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-pl-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-pt_BR-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-pt_PT-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ro-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ru-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-rw-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sa_IN-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sat-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sd-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-si-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sid-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sk-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sl-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sq-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ss-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-st-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sv-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sw_TZ-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-szl-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ta-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-te-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-tg-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-th-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-tn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-tr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ts-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-tt-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ug-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-uk-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-uz-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ve-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-vec-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-vi-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-xh-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-zh_CN-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-zh_TW-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-zu-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-librelogo-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-mailmerge-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-math-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-officebean-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-pyuno-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-qt5-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-sdk-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-sdk-doc-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-writer-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-writer-extensions-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreofficekit-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreofficekit-devel-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-base-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-base-drivers-postgresql-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-calc-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-calc-extensions-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-draw-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-filters-optional-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-gnome-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-gtk3-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-impress-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-librelogo-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-mailmerge-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-math-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-officebean-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-pyuno-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-qt5-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-sdk-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-sdk-doc-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-writer-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-writer-extensions-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreofficekit-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreofficekit-devel-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-base-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-base-drivers-postgresql-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-calc-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-calc-extensions-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-draw-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-filters-optional-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-gnome-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-gtk3-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-impress-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-librelogo-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-mailmerge-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-math-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-officebean-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-pyuno-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-qt5-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-sdk-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-sdk-doc-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-writer-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-writer-extensions-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreofficekit-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreofficekit-devel-7.2.3.2-150300.14.22.15.3.aarch64.rpm openSUSE-SLE-15.3-2022-50 important SUSE Updates openSUSE-SLE 15.3 This update for net-snmp fixes the following issues: - CVE-2020-15862: Make extended MIB read-only (bsc#1174961) - CVE-2018-18065: Fix remote DoS in agent/helpers/table.c (bsc#1111122) libsnmp30-32bit-5.7.3-10.9.1.x86_64.rpm libsnmp30-5.7.3-10.9.1.x86_64.rpm net-snmp-5.7.3-10.9.1.src.rpm net-snmp-5.7.3-10.9.1.x86_64.rpm net-snmp-devel-32bit-5.7.3-10.9.1.x86_64.rpm net-snmp-devel-5.7.3-10.9.1.x86_64.rpm perl-SNMP-5.7.3-10.9.1.x86_64.rpm python2-net-snmp-5.7.3-10.9.1.x86_64.rpm python3-net-snmp-5.7.3-10.9.1.x86_64.rpm snmp-mibs-5.7.3-10.9.1.x86_64.rpm libsnmp30-5.7.3-10.9.1.s390x.rpm net-snmp-5.7.3-10.9.1.s390x.rpm net-snmp-devel-5.7.3-10.9.1.s390x.rpm perl-SNMP-5.7.3-10.9.1.s390x.rpm python2-net-snmp-5.7.3-10.9.1.s390x.rpm python3-net-snmp-5.7.3-10.9.1.s390x.rpm snmp-mibs-5.7.3-10.9.1.s390x.rpm libsnmp30-5.7.3-10.9.1.ppc64le.rpm net-snmp-5.7.3-10.9.1.ppc64le.rpm net-snmp-devel-5.7.3-10.9.1.ppc64le.rpm perl-SNMP-5.7.3-10.9.1.ppc64le.rpm python2-net-snmp-5.7.3-10.9.1.ppc64le.rpm python3-net-snmp-5.7.3-10.9.1.ppc64le.rpm snmp-mibs-5.7.3-10.9.1.ppc64le.rpm libsnmp30-5.7.3-10.9.1.aarch64.rpm net-snmp-5.7.3-10.9.1.aarch64.rpm net-snmp-devel-5.7.3-10.9.1.aarch64.rpm perl-SNMP-5.7.3-10.9.1.aarch64.rpm python2-net-snmp-5.7.3-10.9.1.aarch64.rpm python3-net-snmp-5.7.3-10.9.1.aarch64.rpm snmp-mibs-5.7.3-10.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-127 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-docker_label_helper fixes the following issues: - Support new syntax which makes Dockerfiles compatible with plain Docker/podman build. The new syntax uses entry/exit point to determine whether labels should be expanded. Doing so makes the Dockerfile compatible with standard `docker build` and `podman build` command. (bsc#1193429) - Retain compatibility with old syntax. Update documentation - Improve summary, description and README.md a bit - Improve regexp instead of having two as proposed by Fabian Vogt obs-service-docker_label_helper-0.0-5.6.1.noarch.rpm obs-service-docker_label_helper-0.0-5.6.1.src.rpm openSUSE-SLE-15.3-2021-4194 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-ibmca fixes the following issues: - Use the ".include" directive to update the openssl.cnf file and make checking of line count in sample file unnecessary (bsc#1004463) openssl-ibmca-2.1.1-3.3.1.s390x.rpm openssl-ibmca-2.1.1-3.3.1.src.rpm openSUSE-SLE-15.3-2022-72 important SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nss and MozillaFirefox fix the following issues: mozilla-nss: - Update from version 3.68.1 to 3.68.2 (bsc#1193845) - Add SHA-2 support to mozilla::pkix's Online Certificate Status Protocol implementation MozillaFirefox: - Firefox Extended Support Release 91.4.1 ESR (bsc#1193845) - Add SHA-2 support to mozilla::pkix's Online Certificate Status Protocol implementation to fix frequent MOZILLA_PKIX_ERROR_OCSP_RESPONSE_FOR_CERT_MISSING error messages when trying to connect to various microsoft.com domains libfreebl3-3.68.2-3.64.2.x86_64.rpm libfreebl3-32bit-3.68.2-3.64.2.x86_64.rpm libfreebl3-hmac-3.68.2-3.64.2.x86_64.rpm libfreebl3-hmac-32bit-3.68.2-3.64.2.x86_64.rpm libsoftokn3-3.68.2-3.64.2.x86_64.rpm libsoftokn3-32bit-3.68.2-3.64.2.x86_64.rpm libsoftokn3-hmac-3.68.2-3.64.2.x86_64.rpm libsoftokn3-hmac-32bit-3.68.2-3.64.2.x86_64.rpm mozilla-nss-3.68.2-3.64.2.src.rpm mozilla-nss-3.68.2-3.64.2.x86_64.rpm mozilla-nss-32bit-3.68.2-3.64.2.x86_64.rpm mozilla-nss-certs-3.68.2-3.64.2.x86_64.rpm mozilla-nss-certs-32bit-3.68.2-3.64.2.x86_64.rpm mozilla-nss-devel-3.68.2-3.64.2.x86_64.rpm mozilla-nss-sysinit-3.68.2-3.64.2.x86_64.rpm mozilla-nss-sysinit-32bit-3.68.2-3.64.2.x86_64.rpm mozilla-nss-tools-3.68.2-3.64.2.x86_64.rpm libfreebl3-3.68.2-3.64.2.s390x.rpm libfreebl3-hmac-3.68.2-3.64.2.s390x.rpm libsoftokn3-3.68.2-3.64.2.s390x.rpm libsoftokn3-hmac-3.68.2-3.64.2.s390x.rpm mozilla-nss-3.68.2-3.64.2.s390x.rpm mozilla-nss-certs-3.68.2-3.64.2.s390x.rpm mozilla-nss-devel-3.68.2-3.64.2.s390x.rpm mozilla-nss-sysinit-3.68.2-3.64.2.s390x.rpm mozilla-nss-tools-3.68.2-3.64.2.s390x.rpm libfreebl3-3.68.2-3.64.2.ppc64le.rpm libfreebl3-hmac-3.68.2-3.64.2.ppc64le.rpm libsoftokn3-3.68.2-3.64.2.ppc64le.rpm libsoftokn3-hmac-3.68.2-3.64.2.ppc64le.rpm mozilla-nss-3.68.2-3.64.2.ppc64le.rpm mozilla-nss-certs-3.68.2-3.64.2.ppc64le.rpm mozilla-nss-devel-3.68.2-3.64.2.ppc64le.rpm mozilla-nss-sysinit-3.68.2-3.64.2.ppc64le.rpm mozilla-nss-tools-3.68.2-3.64.2.ppc64le.rpm libfreebl3-3.68.2-3.64.2.aarch64.rpm libfreebl3-hmac-3.68.2-3.64.2.aarch64.rpm libsoftokn3-3.68.2-3.64.2.aarch64.rpm libsoftokn3-hmac-3.68.2-3.64.2.aarch64.rpm mozilla-nss-3.68.2-3.64.2.aarch64.rpm mozilla-nss-certs-3.68.2-3.64.2.aarch64.rpm mozilla-nss-devel-3.68.2-3.64.2.aarch64.rpm mozilla-nss-sysinit-3.68.2-3.64.2.aarch64.rpm mozilla-nss-tools-3.68.2-3.64.2.aarch64.rpm openSUSE-SLE-15.3-2022-37 moderate SUSE Updates openSUSE-SLE 15.3 This update for s3fs fixes the following issues: - Update to version 1.90 (bsc#1193236) + Don't ignore nomultipart when storage is low + Fix POSIX compatibility issues found by pjdfstest + Fail CheckBucket when S3 returns PermanentRedirect + Do not create zero-byte object when creating file + Allow arbitrary size AWS secret keys + Fix race conditions + Set explicit Content-Length: 0 when initiating MPU + Set CURLOPT_UNRESTRICTED_AUTH when authenticating + Add jitter to avoid thundering herd + Loosen CheckBucket to check only the bucket + Add support for AWS-style environment variables - Update to version 1.89 + Fix a regression when writing objects larger than 10 GB during periodic dirty data flush (on by default). + Propagate S3 errors to errno more accurately + Allow writing > 5 GB single-part objects supported by some non-AWS S3 + Allow configuration of multipart copy size and limit to 5 GB + Allow configuration of multipart upload threshold and reduce default to 25 MB + Set default stat timeout to 900 seconds correctly + Fix data corruption while updating metadata with use_cache - Update to version 1.88 + Fixed a bug about move file over limit of ensure space + Fix multiple race conditions + Dynamically determine whether lseek extended options are supported + Add support for deep archive storage class + Plug FdEntity leaks + Fix use_session_token option parsing + Allow 32-bit platforms to upload single-part objects > 2 GB + Fix dead lock in disk insufficient and optimize code + Ensure environment variable is set when using ECS + Do not call put headers if not exist pending meta + Do not send SSE headers during bucket creation + Add sigv4 only option + Add atime and correct atime/mtime/ctime operations + Fixed a bug that symlink could not be read after restarting s3fs + Periodically flush written data to reduce temporary local storage + Added logfile option for non-syslog logging + Add AWS IMDSv2 support + Fix multiple issues when retrying requests - Update to version 1.87 + use correct content-type when complete multipart upload + Fixed a bug of stats cache compression + Fixed the truncation bug of stat file for cache file + Improved strictness of cache file stats(file) + Fixed insufficient upload size for mix multipart upload + Warn about missing MIME types instead of exiting + Not abort process by exception threw from s3fs_strtoofft + Support Google Cloud Storage headers + Added a parameter to output body to curldbg option + Fix renames of open files with nocopyapi option + Relink cache stats file atomically via rename + Ignore case when comparing ETags + Retry with exponential backoff during 500 error + Fixed a bug about serializing from cache file + Fixed about ParallelMixMultipartUpload + Add support for glacier storage class + Fixed upload error about mixuploading sparse file and truncating file + Added SIGUSR1 option for cache file integrity test + Change default stat_cache_expire - Update to version 1.86 + enable various optimizations when using modern curl + allow SSE-C keys to have NUL bytes + add session token support + allow large files on 32-bit systems like Raspberry Pi + fix data corruption when external modification changes a cached object + fix data corruption when opening a second fd to an unflushed file + fix clock skew errors when writing large files + allow concurrent metadata queries during data operations + use server-side copy for partially modified files + fix multiple concurrency issues + add requester_pays support + add symlink cache + add intelligent_ia storage tier - Make COPYING file a license file - Update to version 1.85 + add Backblaze B2 + Fix typo s/mutliple/multiple/ + Made instructions for creating password file more obvious. + Enable big writes if capable + For RPM distributions fuse-libs is enough + Add support for storage class ONEZONE_IA. + Simplify hex conversion + New installation instructions for Fedora >= 27 and CentOS7 + Improve template for issues + Make the compilation instructions generic + Replace all mentions to MacOS X to macOS + Correct typo + Correctly compare list_object_max_keys + Allow credentials from ${HOME}/.aws/credentials + Replace ~ with ${HOME} in examples + Include StackOverflow in FAQs + Add icon for s3fs + Upload S3 parts without batching + Add 'profile' option to command line help. + fix multihead warning check + Multi-arch support for ppc64le + Correct typos in command-line parsing + Address cppcheck 1.86 errors + Check arguments and environment before .aws/creds + [curl] Assume long encryption keys are base64 encoded + Update s3fs_util.cpp for correspondence of Nextcloud contype + Add Server Fault to FAQs + Repair xattr tests + Store and retrieve file change time + Default uid/gid/mode when object lacks permissions + Emit more friendly error for buckets with dots + Flush file before renaming + Tighten up HTTP response code check + Plug memory leak + Plug memory leaks + Avoid pass-by-value when not necessary + Prefer find(char) over find(const char *) + Remove unnecessary calls to std::string::c_str + Fix comparison in s3fs_strtoofft + Prefer HTTPS links where possible + Added an error message when HTTP 301 status + Ignore after period character of floating point in x-amz-meta-mtime + Added a missing extension to .gitignore, and formatted dot files + Added detail error message when HTTP 301/307 status + Automatic region change made possible other than us-east-1(default) + Prefer abort over assert(false) + Issue readdir HEAD requests without batching + Reference better-known AWS CLI for compatibility + Load tail range during overwrite + Add test for mv non-empty directory + Remove unnecessary string copies + Remove redundant string initializations + Reverted automatic region change and changed messages + Prefer empty over size checks + Remove redundant null checks before delete + Accept paths with : in them + Correct enable_content_md5 docs + Correct sigv2 typo + Prefer AutoLock for synchronization + Remove mirror path when deleting cache + Checked and corrected all typo + Disable malloc_trim + Remove unneeded void parameter + Prefer specific [io]stringstream where possible + Copy parts in parallel + Ensure s3fs compiles with C++03 + Return not supported when hard linking + Repair utility mode + Simplify async request completion code + Add logging for too many parts + Implement exponential backoff for 503 + Added S3FS_MALLOC_TRIM build switch + Added a non-interactive option to utility mode + Automatically abort failed multipart requests + Update s3ql link + Clear containers instead of individual erases + Address miscellaneous clang-tidy warnings + Upgrade to S3Proxy 1.6.1 + Document lack of inotify support + Fixed code for latest cppcheck error on OSX + Wtf8 + Work around cppcheck warnings + Improvement of curl session pool for multipart + Increase FdEntity reference count when returning + Fix lazy typo + Remove from file from stat cache during rename + Add instructions for Amazon Linux + Changed the description order of man page options + Fixed ref-count when error occurred. + Make macOS instructions consistent with others - Update to version 1.84 + Update README.md with details about .passwd-s3fs + add disk space reservation + Added Cygwin build options + reduce lock contention on file open + don't fail multirequest on single thread error + add an instance_name option for logging + FreeBSD build fixes + More useful error message for dupe entries in passwd file + cleanup curl handle state on retries + don't fail mkdir when directory exists + fix xpath selector in bucket listing + Validate the URL format for http/https + Added reset curl handle when returning to handle pool + Optimize defaults + Simplify installation for Ubuntu 16.04 + Upgrade to S3Proxy 1.6.0 + cleanup curl handles before curl share + Remove false multihead warnings + Add Debian installation instructions + Remove s3fs-python + Fixed memory leak + Revert "enable FUSE read_sync by default" + Option for IAM authentication endpoint + gnutls_auth: initialize libgcrypt + Fixed an error by cppcheck on OSX + Log messages for 5xx and 4xx HTTP response code + Instructions for SUSE and openSUSE prebuilt packages + Added list_object_max_keys option based on #783 PR s3fs-1.90-3.6.1.src.rpm s3fs-1.90-3.6.1.x86_64.rpm s3fs-1.90-3.6.1.s390x.rpm s3fs-1.90-3.6.1.ppc64le.rpm s3fs-1.90-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4192 moderate SUSE Updates openSUSE-SLE 15.3 This update for permissions fixes the following issues: - Update to version 20181225: * drop ping capabilities in favor of ICMP_PROTO sockets (bsc#1174504) permissions-20181225-23.9.1.src.rpm permissions-20181225-23.9.1.x86_64.rpm permissions-zypp-plugin-20181225-23.9.1.noarch.rpm permissions-20181225-23.9.1.s390x.rpm permissions-20181225-23.9.1.ppc64le.rpm permissions-20181225-23.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-9 important SUSE Updates openSUSE-SLE 15.3 This update for ovmf fixes the following issue: - VM enters crash/reset loop inside OVMF on reboots (bsc#1192126) ovmf-202008-10.11.1.src.rpm ovmf-202008-10.11.1.x86_64.rpm ovmf-tools-202008-10.11.1.x86_64.rpm qemu-ovmf-ia32-202008-10.11.1.noarch.rpm qemu-ovmf-x86_64-202008-10.11.1.noarch.rpm qemu-ovmf-x86_64-debug-202008-10.11.1.x86_64.rpm qemu-uefi-aarch32-202008-10.11.1.noarch.rpm qemu-uefi-aarch64-202008-10.11.1.noarch.rpm ovmf-202008-10.11.1.aarch64.rpm ovmf-tools-202008-10.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-84 moderate SUSE Updates openSUSE-SLE 15.3 This update for dosfstools fixes the following issues: - To be able to create filesystems compatible with previous version, add -g command line option to mkfs (bsc#1188401) - BREAKING CHANGES: After fixing of bsc#1172863 in the last update, mkfs started to create different images than before. Applications that depend on exact FAT file format (e. g. embedded systems) may be broken in two ways: * The introduction of the alignment may create smaller images than before, with a different positions of important image elements. It can break existing software that expect images in doststools <= 4.1 style. To work around these problems, use "-a" command line argument. * The new image may contain a different geometry values. Geometry sensitive applications expecting doststools <= 4.1 style images can fails to accept different geometry values. There is no direct work around for this problem. But you can take the old image, use "file -s $IMAGE", check its "sectors/track" and "heads", and use them in the newly introduced "-g" command line argument. dosfstools-4.1-3.6.1.src.rpm dosfstools-4.1-3.6.1.x86_64.rpm dosfstools-4.1-3.6.1.s390x.rpm dosfstools-4.1-3.6.1.ppc64le.rpm dosfstools-4.1-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1 important SUSE Updates openSUSE-SLE 15.3 This update for ha-cluster-bootstrap fixes the following issues: - Add deprecated warning when using ha-cluster-bootstrap (bsc#1193437) ha-cluster-bootstrap-0.5-13.3.1.noarch.rpm ha-cluster-bootstrap-0.5-13.3.1.src.rpm openSUSE-SLE-15.3-2022-96 important SUSE Updates openSUSE-SLE 15.3 This update for rpm fixes the following issues: - Fix header check so that old rpms no longer get rejected (bsc#1190824) - Add explicit requirement on python-rpm-macros (bsc#1180125, bsc#1193711) python-rpm-4.14.3-43.1.src.rpm python2-rpm-4.14.3-43.1.x86_64.rpm python3-rpm-4.14.3-43.1.x86_64.rpm rpm-32bit-4.14.3-43.1.x86_64.rpm rpm-4.14.3-43.1.src.rpm rpm-4.14.3-43.1.x86_64.rpm rpm-build-4.14.3-43.1.x86_64.rpm rpm-devel-4.14.3-43.1.x86_64.rpm rpm-ndb-32bit-4.14.3-43.1.x86_64.rpm rpm-ndb-4.14.3-43.1.src.rpm rpm-ndb-4.14.3-43.1.x86_64.rpm python2-rpm-4.14.3-43.1.s390x.rpm python3-rpm-4.14.3-43.1.s390x.rpm rpm-4.14.3-43.1.s390x.rpm rpm-build-4.14.3-43.1.s390x.rpm rpm-devel-4.14.3-43.1.s390x.rpm rpm-ndb-4.14.3-43.1.s390x.rpm python2-rpm-4.14.3-43.1.ppc64le.rpm python3-rpm-4.14.3-43.1.ppc64le.rpm rpm-4.14.3-43.1.ppc64le.rpm rpm-build-4.14.3-43.1.ppc64le.rpm rpm-devel-4.14.3-43.1.ppc64le.rpm rpm-ndb-4.14.3-43.1.ppc64le.rpm python2-rpm-4.14.3-43.1.aarch64.rpm python3-rpm-4.14.3-43.1.aarch64.rpm rpm-4.14.3-43.1.aarch64.rpm rpm-build-4.14.3-43.1.aarch64.rpm rpm-devel-4.14.3-43.1.aarch64.rpm rpm-ndb-4.14.3-43.1.aarch64.rpm openSUSE-SLE-15.3-2022-35 low SUSE Updates openSUSE-SLE 15.3 This update for telnet fixes the following issues: - Update Source location to use Gentoo mirror, fixes bsc#1129925 telnet-1.2-3.3.1.src.rpm telnet-1.2-3.3.1.x86_64.rpm telnet-server-1.2-3.3.1.x86_64.rpm telnet-1.2-3.3.1.s390x.rpm telnet-server-1.2-3.3.1.s390x.rpm telnet-1.2-3.3.1.ppc64le.rpm telnet-server-1.2-3.3.1.ppc64le.rpm telnet-1.2-3.3.1.aarch64.rpm telnet-server-1.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4210 important SUSE Updates openSUSE-SLE 15.3 This update for gegl fixes the following issues: - CVE-2021-45463: fixed shell expansion via crafted pathname in the ImageMagick convert fallback (bsc#1194045). gegl-0.3.34-3.3.1.src.rpm gegl-0_3-0.3.34-3.3.1.x86_64.rpm gegl-0_3-lang-0.3.34-3.3.1.noarch.rpm libgegl-0_3-0-0.3.34-3.3.1.x86_64.rpm typelib-1_0-Gegl-0_3-0.3.34-3.3.1.x86_64.rpm gegl-0_3-0.3.34-3.3.1.s390x.rpm libgegl-0_3-0-0.3.34-3.3.1.s390x.rpm typelib-1_0-Gegl-0_3-0.3.34-3.3.1.s390x.rpm gegl-0_3-0.3.34-3.3.1.ppc64le.rpm libgegl-0_3-0-0.3.34-3.3.1.ppc64le.rpm typelib-1_0-Gegl-0_3-0.3.34-3.3.1.ppc64le.rpm gegl-0_3-0.3.34-3.3.1.aarch64.rpm libgegl-0_3-0-0.3.34-3.3.1.aarch64.rpm typelib-1_0-Gegl-0_3-0.3.34-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4209 important SUSE Updates openSUSE-SLE 15.3 This update for gegl fixes the following issues: - CVE-2021-45463: fixed shell expansion via crafted pathname in the ImageMagick convert fallback (bsc#1194045). gegl-0.4.16-3.3.1.src.rpm gegl-0.4.16-3.3.1.x86_64.rpm gegl-0_4-0.4.16-3.3.1.x86_64.rpm gegl-0_4-lang-0.4.16-3.3.1.noarch.rpm gegl-devel-0.4.16-3.3.1.x86_64.rpm gegl-doc-0.4.16-3.3.1.x86_64.rpm libgegl-0_4-0-0.4.16-3.3.1.x86_64.rpm libgegl-0_4-0-32bit-0.4.16-3.3.1.x86_64.rpm typelib-1_0-Gegl-0_4-0.4.16-3.3.1.x86_64.rpm gegl-0.4.16-3.3.1.s390x.rpm gegl-0_4-0.4.16-3.3.1.s390x.rpm gegl-devel-0.4.16-3.3.1.s390x.rpm gegl-doc-0.4.16-3.3.1.s390x.rpm libgegl-0_4-0-0.4.16-3.3.1.s390x.rpm typelib-1_0-Gegl-0_4-0.4.16-3.3.1.s390x.rpm gegl-0.4.16-3.3.1.ppc64le.rpm gegl-0_4-0.4.16-3.3.1.ppc64le.rpm gegl-devel-0.4.16-3.3.1.ppc64le.rpm gegl-doc-0.4.16-3.3.1.ppc64le.rpm libgegl-0_4-0-0.4.16-3.3.1.ppc64le.rpm typelib-1_0-Gegl-0_4-0.4.16-3.3.1.ppc64le.rpm gegl-0.4.16-3.3.1.aarch64.rpm gegl-0_4-0.4.16-3.3.1.aarch64.rpm gegl-devel-0.4.16-3.3.1.aarch64.rpm gegl-doc-0.4.16-3.3.1.aarch64.rpm libgegl-0_4-0-0.4.16-3.3.1.aarch64.rpm typelib-1_0-Gegl-0_4-0.4.16-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-40 important SUSE Updates openSUSE-SLE 15.3 This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container fixes the following issues: - CVE-2021-43565: Fixes a vulnerability in the golang.org/x/crypto/ssh package which allowed unauthenticated clients to cause a panic in SSH servers. (bsc#1193930) kubevirt-0.45.0-8.7.1.src.rpm kubevirt-container-disk-0.45.0-8.7.1.x86_64.rpm kubevirt-manifests-0.45.0-8.7.1.x86_64.rpm kubevirt-tests-0.45.0-8.7.1.x86_64.rpm kubevirt-virt-api-0.45.0-8.7.1.x86_64.rpm kubevirt-virt-controller-0.45.0-8.7.1.x86_64.rpm kubevirt-virt-handler-0.45.0-8.7.1.x86_64.rpm kubevirt-virt-launcher-0.45.0-8.7.1.x86_64.rpm kubevirt-virt-operator-0.45.0-8.7.1.x86_64.rpm kubevirt-virtctl-0.45.0-8.7.1.x86_64.rpm obs-service-kubevirt_containers_meta-0.45.0-8.7.1.x86_64.rpm openSUSE-SLE-15.3-2022-348 important SUSE Updates openSUSE-SLE 15.3 This update for libzypp fixes the following issues: - RepoManager: remember execution errors in exception history (bsc#1193007) - Fix exception handling when reading or writing credentials (bsc#1194898) - Fix install path for parser (bsc#1194597) - Fix Legacy include (bsc#1194597) - Public header files on older distros must use c++11 (bsc#1194597) - Use the default zypp.conf settings if no zypp.conf exists (bsc#1193488) - Fix wrong encoding of URI compontents of ISO images (bsc#954813) - When invoking 32bit mode in userland of an aarch64 kernel, handle armv8l as armv7hl compatible - Introduce zypp-curl as a sublibrary for CURL related code - zypp-rpm: Increase rpm loglevel if ZYPP_RPM_DEBUG is set - Save all signatures associated with a public key in its PublicKeyData libzypp-17.29.3-27.1.src.rpm True libzypp-17.29.3-27.1.x86_64.rpm True libzypp-devel-17.29.3-27.1.x86_64.rpm True libzypp-devel-doc-17.29.3-27.1.x86_64.rpm True zypper-1.14.51-24.1.src.rpm True zypper-1.14.51-24.1.x86_64.rpm True zypper-aptitude-1.14.51-24.1.noarch.rpm True zypper-log-1.14.51-24.1.noarch.rpm True zypper-needs-restarting-1.14.51-24.1.noarch.rpm True libzypp-17.29.3-27.1.s390x.rpm True libzypp-devel-17.29.3-27.1.s390x.rpm True libzypp-devel-doc-17.29.3-27.1.s390x.rpm True zypper-1.14.51-24.1.s390x.rpm True libzypp-17.29.3-27.1.ppc64le.rpm True libzypp-devel-17.29.3-27.1.ppc64le.rpm True libzypp-devel-doc-17.29.3-27.1.ppc64le.rpm True zypper-1.14.51-24.1.ppc64le.rpm True libzypp-17.29.3-27.1.aarch64.rpm True libzypp-devel-17.29.3-27.1.aarch64.rpm True libzypp-devel-doc-17.29.3-27.1.aarch64.rpm True zypper-1.14.51-24.1.aarch64.rpm True openSUSE-SLE-15.3-2022-187 moderate SUSE Updates openSUSE-SLE 15.3 This update for vsftpd fixes the following issues: - Fix several issues related to SSL/TLS support (bsc#1021387) - Fix a seccomp failure that used to occur in FIPS mode when SSL is enabled (bsc#1052900) - Fix seccomp bug where the process would hang trying access syslog (bsc#971784) vsftpd-3.0.3-12.6.1.src.rpm vsftpd-3.0.3-12.6.1.x86_64.rpm vsftpd-3.0.3-12.6.1.s390x.rpm vsftpd-3.0.3-12.6.1.ppc64le.rpm vsftpd-3.0.3-12.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4208 moderate SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issues: - CVE-2021-44832: Fixes a remote code execution via JDBC Appender (bsc#1194127) log4j-2.17.0-4.16.1.noarch.rpm log4j-2.17.0-4.16.1.src.rpm log4j-javadoc-2.17.0-4.16.1.noarch.rpm log4j-jcl-2.17.0-4.16.1.noarch.rpm log4j-slf4j-2.17.0-4.16.1.noarch.rpm openSUSE-SLE-15.3-2022-21 important SUSE Updates openSUSE-SLE 15.3 This update for libvirt fixes the following issues: - CVE-2021-4147: libxl: Fix libvirtd deadlocks and segfaults. (bsc#1194041) libvirt-7.1.0-6.11.1.src.rpm libvirt-7.1.0-6.11.1.x86_64.rpm libvirt-admin-7.1.0-6.11.1.x86_64.rpm libvirt-bash-completion-7.1.0-6.11.1.noarch.rpm libvirt-client-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-xen-7.1.0-6.11.1.x86_64.rpm libvirt-devel-32bit-7.1.0-6.11.1.x86_64.rpm libvirt-devel-7.1.0-6.11.1.x86_64.rpm libvirt-doc-7.1.0-6.11.1.noarch.rpm libvirt-libs-7.1.0-6.11.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-6.11.1.x86_64.rpm libvirt-nss-7.1.0-6.11.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-6.11.1.x86_64.rpm libvirt-7.1.0-6.11.1.s390x.rpm libvirt-admin-7.1.0-6.11.1.s390x.rpm libvirt-client-7.1.0-6.11.1.s390x.rpm libvirt-daemon-7.1.0-6.11.1.s390x.rpm libvirt-daemon-config-network-7.1.0-6.11.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.11.1.s390x.rpm libvirt-daemon-hooks-7.1.0-6.11.1.s390x.rpm libvirt-daemon-lxc-7.1.0-6.11.1.s390x.rpm libvirt-daemon-qemu-7.1.0-6.11.1.s390x.rpm libvirt-devel-7.1.0-6.11.1.s390x.rpm libvirt-libs-7.1.0-6.11.1.s390x.rpm libvirt-lock-sanlock-7.1.0-6.11.1.s390x.rpm libvirt-nss-7.1.0-6.11.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-6.11.1.s390x.rpm libvirt-7.1.0-6.11.1.ppc64le.rpm libvirt-admin-7.1.0-6.11.1.ppc64le.rpm libvirt-client-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-6.11.1.ppc64le.rpm libvirt-devel-7.1.0-6.11.1.ppc64le.rpm libvirt-libs-7.1.0-6.11.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-6.11.1.ppc64le.rpm libvirt-nss-7.1.0-6.11.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-6.11.1.ppc64le.rpm libvirt-7.1.0-6.11.1.aarch64.rpm libvirt-admin-7.1.0-6.11.1.aarch64.rpm libvirt-client-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-6.11.1.aarch64.rpm libvirt-devel-7.1.0-6.11.1.aarch64.rpm libvirt-libs-7.1.0-6.11.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-6.11.1.aarch64.rpm libvirt-nss-7.1.0-6.11.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-6.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-52 important SUSE Updates openSUSE-SLE 15.3 This update for libsndfile fixes the following issues: - CVE-2021-4156: Fixed heap buffer overflow in flac_buffer_copy that could potentially lead to heap exploitation (bsc#1194006). libsndfile-1.0.28-5.15.1.src.rpm libsndfile-devel-1.0.28-5.15.1.x86_64.rpm libsndfile-progs-1.0.28-5.15.1.src.rpm libsndfile-progs-1.0.28-5.15.1.x86_64.rpm libsndfile1-1.0.28-5.15.1.x86_64.rpm libsndfile1-32bit-1.0.28-5.15.1.x86_64.rpm libsndfile-devel-1.0.28-5.15.1.s390x.rpm libsndfile-progs-1.0.28-5.15.1.s390x.rpm libsndfile1-1.0.28-5.15.1.s390x.rpm libsndfile-devel-1.0.28-5.15.1.ppc64le.rpm libsndfile-progs-1.0.28-5.15.1.ppc64le.rpm libsndfile1-1.0.28-5.15.1.ppc64le.rpm libsndfile-devel-1.0.28-5.15.1.aarch64.rpm libsndfile-progs-1.0.28-5.15.1.aarch64.rpm libsndfile1-1.0.28-5.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-313 moderate SUSE Updates openSUSE-SLE 15.3 This update for infinipath-psm fixes the following issues: - Fix compilation with GCC10. (bsc#1160270) - Disable LTO. (bsc#1133133) - Fix build date. (bsc#1047218) infinipath-psm-3.3-5.3.1.src.rpm infinipath-psm-devel-3.3-5.3.1.x86_64.rpm libinfinipath4-3.3-5.3.1.x86_64.rpm libinfinipath4-32bit-3.3-5.3.1.x86_64.rpm libpsm_infinipath1-3.3-5.3.1.x86_64.rpm libpsm_infinipath1-32bit-3.3-5.3.1.x86_64.rpm openSUSE-SLE-15.3-2022-48 moderate SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - Don't use OpenSSL 1.1 on platforms which don't have it. - Remove shebangs from python-base libraries in '_libdir'. (bsc#1193179, bsc#1192249). - Build against 'openssl 1.1' as it is incompatible with 'openssl 3.0+' (bsc#1190566) - Fix for permission error when changing the mtime of the source file in presence of 'SOURCE_DATE_EPOCH'. libpython3_6m1_0-3.6.15-10.15.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.15-10.15.1.x86_64.rpm python3-3.6.15-10.15.1.src.rpm python3-3.6.15-10.15.1.x86_64.rpm python3-base-3.6.15-10.15.1.x86_64.rpm python3-core-3.6.15-10.15.1.src.rpm python3-curses-3.6.15-10.15.1.x86_64.rpm python3-dbm-3.6.15-10.15.1.x86_64.rpm python3-devel-3.6.15-10.15.1.x86_64.rpm python3-doc-3.6.15-10.15.1.x86_64.rpm python3-doc-devhelp-3.6.15-10.15.1.x86_64.rpm python3-documentation-3.6.15-10.15.1.src.rpm python3-idle-3.6.15-10.15.1.x86_64.rpm python3-testsuite-3.6.15-10.15.1.x86_64.rpm python3-tk-3.6.15-10.15.1.x86_64.rpm python3-tools-3.6.15-10.15.1.x86_64.rpm libpython3_6m1_0-3.6.15-10.15.1.s390x.rpm python3-3.6.15-10.15.1.s390x.rpm python3-base-3.6.15-10.15.1.s390x.rpm python3-curses-3.6.15-10.15.1.s390x.rpm python3-dbm-3.6.15-10.15.1.s390x.rpm python3-devel-3.6.15-10.15.1.s390x.rpm python3-doc-3.6.15-10.15.1.s390x.rpm python3-doc-devhelp-3.6.15-10.15.1.s390x.rpm python3-idle-3.6.15-10.15.1.s390x.rpm python3-testsuite-3.6.15-10.15.1.s390x.rpm python3-tk-3.6.15-10.15.1.s390x.rpm python3-tools-3.6.15-10.15.1.s390x.rpm libpython3_6m1_0-3.6.15-10.15.1.ppc64le.rpm python3-3.6.15-10.15.1.ppc64le.rpm python3-base-3.6.15-10.15.1.ppc64le.rpm python3-curses-3.6.15-10.15.1.ppc64le.rpm python3-dbm-3.6.15-10.15.1.ppc64le.rpm python3-devel-3.6.15-10.15.1.ppc64le.rpm python3-doc-3.6.15-10.15.1.ppc64le.rpm python3-doc-devhelp-3.6.15-10.15.1.ppc64le.rpm python3-idle-3.6.15-10.15.1.ppc64le.rpm python3-testsuite-3.6.15-10.15.1.ppc64le.rpm python3-tk-3.6.15-10.15.1.ppc64le.rpm python3-tools-3.6.15-10.15.1.ppc64le.rpm libpython3_6m1_0-3.6.15-10.15.1.aarch64.rpm python3-3.6.15-10.15.1.aarch64.rpm python3-base-3.6.15-10.15.1.aarch64.rpm python3-curses-3.6.15-10.15.1.aarch64.rpm python3-dbm-3.6.15-10.15.1.aarch64.rpm python3-devel-3.6.15-10.15.1.aarch64.rpm python3-doc-3.6.15-10.15.1.aarch64.rpm python3-doc-devhelp-3.6.15-10.15.1.aarch64.rpm python3-idle-3.6.15-10.15.1.aarch64.rpm python3-testsuite-3.6.15-10.15.1.aarch64.rpm python3-tk-3.6.15-10.15.1.aarch64.rpm python3-tools-3.6.15-10.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-317 moderate SUSE Updates openSUSE-SLE 15.3 This update for wicked fixes the following issues: - Fix device rename issue when done via Yast2 (bsc#1194392) - Prepare RPM packaging for migration of dbus configuration files from /etc to /usr, however this change does not affect SUSE Linux Enterprise 15 Service Pack 3 (bsc#1183407,jsc#SLE-9750) - Parse sysctl files in the correct order - Fix sysctl values for loopback device (bsc#1181163, bsc#1178357) - Add option for dhcp4 to set route pref-src to dhcp IP (bsc#1192353) - Cleanup warnings, time calculations and add dhcp fixes to reduce resource usage (bsc#1188019) - Avoid sysfs attribute read error when the kernel has already deleted the TUN/TAP interface (bsc#1192311) - Fix warning in `ifstatus` about unexpected interface flag combination (bsc#1192164) - Fix `ifstatus` not to show link as "up" when interface is not running - Make firewalld zone assignment permanent (bsc#1189560) - Initial fixes for dracut integration and improved option handling (bsc#1182227) - Fix `nanny` to identify node owner exit condition - Add `ethtool --get-permanent-address` option in the client - Reconnect on unexpected wpa_supplicant restart (bsc#1183495) - Migrate wireless to wpa-supplicant v1 DBus interface (bsc#1156920) - Support multiple wireless networks configurations per interface - Show wireless connection status and scan-results (bsc#1160654) - Fix eap-tls,ttls cetificate handling and fix open vs. shared wep,open,psk,eap-tls,ttls,peap parsing from ifcfg (bsc#1057592) - Updated `man ifcfg-wireless` manual pages wicked-0.6.68-150300.4.5.1.src.rpm wicked-0.6.68-150300.4.5.1.x86_64.rpm wicked-service-0.6.68-150300.4.5.1.x86_64.rpm wicked-0.6.68-150300.4.5.1.s390x.rpm wicked-service-0.6.68-150300.4.5.1.s390x.rpm wicked-0.6.68-150300.4.5.1.ppc64le.rpm wicked-service-0.6.68-150300.4.5.1.ppc64le.rpm wicked-0.6.68-150300.4.5.1.aarch64.rpm wicked-service-0.6.68-150300.4.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-108 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-ibm fixes the following issues: - Update to Java 8.0 Service Refresh 7 Fix Pack 0 - CVE-2021-41035: before version 0.29.0, the openj9 JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface methods. (bsc#1194198, bsc#1192052) - CVE-2021-35586: Excessive memory allocation in BMPImageReader. (bsc#1191914) - CVE-2021-35564: Certificates with end dates too far in the future can corrupt keystore. (bsc#1191913) - CVE-2021-35559: Excessive memory allocation in RTFReader. (bsc#1191911) - CVE-2021-35556: Excessive memory allocation in RTFParser. (bsc#1191910) - CVE-2021-35565: Loop in HttpsServer triggered during TLS session close. (bsc#1191909) - CVE-2021-35588: Incomplete validation of inner class references in ClassFileParser. (bsc#1191905) - CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564) - CVE-2021-2369: JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565) - CVE-2021-2163: Incomplete enforcement of JAR signing disabled algorithms. (bsc#1185055) - CVE-2021-35560: Fixed a vulnerability in the component Deployment. (bsc#1191902) - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake. (bsc#1191904) java-1_8_0-ibm-1.8.0_sr7.0-3.53.1.nosrc.rpm java-1_8_0-ibm-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-32bit-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-alsa-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-demo-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-devel-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-devel-32bit-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-plugin-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-src-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-1.8.0_sr7.0-3.53.1.s390x.rpm java-1_8_0-ibm-demo-1.8.0_sr7.0-3.53.1.s390x.rpm java-1_8_0-ibm-devel-1.8.0_sr7.0-3.53.1.s390x.rpm java-1_8_0-ibm-src-1.8.0_sr7.0-3.53.1.s390x.rpm java-1_8_0-ibm-1.8.0_sr7.0-3.53.1.ppc64le.rpm java-1_8_0-ibm-demo-1.8.0_sr7.0-3.53.1.ppc64le.rpm java-1_8_0-ibm-devel-1.8.0_sr7.0-3.53.1.ppc64le.rpm java-1_8_0-ibm-src-1.8.0_sr7.0-3.53.1.ppc64le.rpm openSUSE-SLE-15.3-2022-58 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 91.4.1 - CVE-2021-4126: OpenPGP signature status doesn't consider additional message content. (bsc#1194215) - CVE-2021-44538: Matrix chat library libolm bundled with Thunderbird vulnerable to a buffer overflow. (bsc#1194020) MozillaThunderbird-91.4.1-8.48.1.src.rpm MozillaThunderbird-91.4.1-8.48.1.x86_64.rpm MozillaThunderbird-translations-common-91.4.1-8.48.1.x86_64.rpm MozillaThunderbird-translations-other-91.4.1-8.48.1.x86_64.rpm MozillaThunderbird-91.4.1-8.48.1.s390x.rpm MozillaThunderbird-translations-common-91.4.1-8.48.1.s390x.rpm MozillaThunderbird-translations-other-91.4.1-8.48.1.s390x.rpm MozillaThunderbird-91.4.1-8.48.1.ppc64le.rpm MozillaThunderbird-translations-common-91.4.1-8.48.1.ppc64le.rpm MozillaThunderbird-translations-other-91.4.1-8.48.1.ppc64le.rpm MozillaThunderbird-91.4.1-8.48.1.aarch64.rpm MozillaThunderbird-translations-common-91.4.1-8.48.1.aarch64.rpm MozillaThunderbird-translations-other-91.4.1-8.48.1.aarch64.rpm openSUSE-SLE-15.3-2022-203 important SUSE Updates openSUSE-SLE 15.3 This update for cloud-init fixes the following issues: - Update to version 21.2 (bsc#1186004) + Add \r\n check for SSH keys in Azure (#889) + Revert "Add support to resize rootfs if using LVM (#721)" (#887) (LP: #1922742) + Add Vultaire as contributor (#881) [Paul Goins] + Azure: adding support for consuming userdata from IMDS (#884) [Anh Vo] + test_upgrade: modify test_upgrade_package to run for more sources (#883) + Fix chef module run failure when chef_license is set (#868) [Ben Hughes] + Azure: Retry net metadata during nic attach for non-timeout errs (#878) [aswinrajamannar] + Azure: Retrieve username and hostname from IMDS (#865) [Thomas Stringer] + Azure: eject the provisioning iso before reporting ready (#861) [Anh Vo] + Use `partprobe` to re-read partition table if available (#856) [Nicolas Bock] (LP: #1920939) + fix error on upgrade caused by new vendordata2 attributes (#869) (LP: #1922739) + add prefer_fqdn_over_hostname config option (#859) [hamalq] (LP: #1921004) + Emit dots on travis to avoid timeout (#867) + doc: Replace remaining references to user-scripts as a config module (#866) [Ryan Harper] + azure: Removing ability to invoke walinuxagent (#799) [Anh Vo] + Add Vultr support (#827) [David Dymko] + Fix unpickle for source paths missing run_dir (#863) [lucasmoura] (LP: #1899299) + sysconfig: use BONDING_MODULE_OPTS on SUSE (#831) [Jens Sandmann] + bringup_static_routes: fix gateway check (#850) [Petr Fedchenkov] + add hamalq user (#860) [hamalq] + Add support to resize rootfs if using LVM (#721) [Eduardo Otubo] (LP: #1799953) + Fix mis-detecting network configuration in initramfs cmdline (#844) (LP: #1919188) + tools/write-ssh-key-fingerprints: do not display empty header/footer (#817) [dermotbradley] + Azure helper: Ensure Azure http handler sleeps between retries (#842) [Johnson Shi] + Fix chef apt source example (#826) [timothegenzmer] + .travis.yml: generate an SSH key before running tests (#848) + write passwords only to serial console, lock down cloud-init-output.log (#847) (LP: #1918303) + Fix apt default integration test (#845) + integration_tests: bump pycloudlib dependency (#846) + Fix stack trace if vendordata_raw contained an array (#837) [eb3095] + archlinux: Fix broken locale logic (#841) [Kristian Klausen] (LP: #1402406) + Integration test for #783 (#832) + integration_tests: mount more paths IN_PLACE (#838) + Fix requiring device-number on EC2 derivatives (#836) (LP: #1917875) + Remove the vi comment from the part-handler example (#835) + net: exclude OVS internal interfaces in get_interfaces (#829) (LP: #1912844) + tox.ini: pass OS_* environment variables to integration tests (#830) + integration_tests: add OpenStack as a platform (#804) + Add flexibility to IMDS api-version (#793) [Thomas Stringer] + Fix the TestApt tests using apt-key on Xenial and Hirsute (#823) [Paride Legovini] (LP: #1916629) + doc: remove duplicate "it" from nocloud.rst (#825) [V.I. Wood] + archlinux: Use hostnamectl to set the transient hostname (#797) [Kristian Klausen] + cc_keys_to_console.py: Add documentation for recently added config key (#824) [dermotbradley] + Update cc_set_hostname documentation (#818) [Toshi Aoyama] From 21.1 + Azure: Support for VMs without ephemeral resource disks. (#800) [Johnson Shi] (LP: #1901011) + cc_keys_to_console: add option to disable key emission (#811) [Michael Hudson-Doyle] (LP: #1915460) + integration_tests: introduce lxd_use_exec mark (#802) + azure: case-insensitive UUID to avoid new IID during kernel upgrade (#798) (LP: #1835584) + stale.yml: don't ask submitters to reopen PRs (#816) + integration_tests: fix use of SSH agent within tox (#815) + integration_tests: add UPGRADE CloudInitSource (#812) + integration_tests: use unique MAC addresses for tests (#813) + Update .gitignore (#814) + Port apt cloud_tests to integration tests (#808) + integration_tests: fix test_gh626 on LXD VMs (#809) + Fix attempting to decode binary data in test_seed_random_data test (#806) + Remove wait argument from tests with session_cloud calls (#805) + Datasource for UpCloud (#743) [Antti Myyrä] + test_gh668: fix failure on LXD VMs (#801) + openstack: read the dynamic metadata group vendor_data2.json (#777) [Andrew Bogott] (LP: #1841104) + includedir in suoders can be prefixed by "arroba" (#783) [Jordi Massaguer Pla] + [VMware] change default max wait time to 15s (#774) [xiaofengw-vmware] + Revert integration test associated with reverted #586 (#784) + Add jordimassaguerpla as contributor (#787) [Jordi Massaguer Pla] + Add Rick Harding to CLA signers (#792) [Rick Harding] + HACKING.rst: add clarifying note to LP CLA process section (#789) + Stop linting cloud_tests (#791) + cloud-tests: update cryptography requirement (#790) [Joshua Powers] + Remove 'remove-raise-on-failure' calls from integration_tests (#788) + Use more cloud defaults in integration tests (#757) + Adding self to cla signers (#776) [Andrew Bogott] + doc: avoid two warnings (#781) [Dan Kenigsberg] + Use proper spelling for Red Hat (#778) [Dan Kenigsberg] + Add antonyc to .github-cla-signers (#747) [Anton Chaporgin] + integration_tests: log image serial if available (#772) + [VMware] Support cloudinit raw data feature (#691) [xiaofengw-vmware] + net: Fix static routes to host in eni renderer (#668) [Pavel Abalikhin] + .travis.yml: don't run cloud_tests in CI (#756) + test_upgrade: add some missing commas (#769) + cc_seed_random: update documentation and fix integration test (#771) (LP: #1911227) + Fix test gh-632 test to only run on NoCloud (#770) (LP: #1911230) + archlinux: fix package upgrade command handling (#768) [Bao Trinh] + integration_tests: add integration test for LP: #1910835 (#761) + Fix regression with handling of IMDS ssh keys (#760) [Thomas Stringer] + integration_tests: log cloud-init version in SUT (#758) + Add ajmyyra as contributor (#742) [Antti Myyrä] + net_convert: add some missing help text (#755) + Missing IPV6_AUTOCONF=no to render sysconfig dhcp6 stateful on RHEL (#753) [Eduardo Otubo] + doc: document missing IPv6 subnet types (#744) [Antti Myyrä] + Add example configuration for datasource `AliYun` (#751) [Xiaoyu Zhong] + integration_tests: add SSH key selection settings (#754) + fix a typo in man page cloud-init.1 (#752) [Amy Chen] + network-config-format-v2.rst: add Netplan Passthrough section (#750) + stale: re-enable post holidays (#749) + integration_tests: port ca_certs tests from cloud_tests (#732) + Azure: Add telemetry for poll IMDS (#741) [Johnson Shi] + doc: move testing section from HACKING to its own doc (#739) + No longer allow integration test failures on travis (#738) + stale: fix error in definition (#740) + integration_tests: set log-cli-level to INFO by default (#737) + PULL_REQUEST_TEMPLATE.md: use backticks around commit message (#736) + stale: disable check for holiday break (#735) + integration_tests: log the path we collect logs into (#733) + .travis.yml: add (most) supported Python versions to CI (#734) + integration_tests: fix IN_PLACE CLOUD_INIT_SOURCE (#731) + cc_ca_certs: add RHEL support (#633) [cawamata] + Azure: only generate config for NICs with addresses (#709) [Thomas Stringer] + doc: fix CloudStack configuration example (#707) [Olivier Lemasle] + integration_tests: restrict test_lxd_bridge appropriately (#730) + Add integration tests for CLI functionality (#729) + Integration test for gh-626 (#728) + Some test_upgrade fixes (#726) + Ensure overriding test vars with env vars works for booleans (#727) + integration_tests: port lxd_bridge test from cloud_tests (#718) + Integration test for gh-632. (#725) + Integration test for gh-671 (#724) + integration-requirements.txt: bump pycloudlib commit (#723) + Drop unnecessary shebang from cmd/main.py (#722) [Eduardo Otubo] + Integration test for LP: #1813396 and #669 (#719) + integration_tests: include timestamp in log output (#720) + integration_tests: add test for LP: #1898997 (#713) + Add integration test for power_state_change module (#717) + Update documentation for network-config-format-v2 (#701) [ggiesen] + sandbox CA Cert tests to not require ca-certificates (#715) [Eduardo Otubo] + Add upgrade integration test (#693) + Integration test for 570 (#712) + Add ability to keep snapshotted images in integration tests (#711) + Integration test for pull #586 (#706) + integration_tests: introduce skipping of tests by OS (#702) + integration_tests: introduce IntegrationInstance.restart (#708) + Add lxd-vm to list of valid integration test platforms (#705) + Adding BOOTPROTO = dhcp to render sysconfig dhcp6 stateful on RHEL (#685) [Eduardo Otubo] + Delete image snapshots created for integration tests (#682) + Parametrize ssh_keys_provided integration test (#700) [lucasmoura] + Drop use_sudo attribute on IntegrationInstance (#694) [lucasmoura] + cc_apt_configure: add riscv64 as a ports arch (#687) [Dimitri John Ledkov] + cla: add xnox (#692) [Dimitri John Ledkov] + Collect logs from integration test runs (#675) From 20.4.1 + Revert "ssh_util: handle non-default AuthorizedKeysFile config (#586)" From 20.4 + tox: avoid tox testenv subsvars for xenial support (#684) + Ensure proper root permissions in integration tests (#664) [James Falcon] + LXD VM support in integration tests (#678) [James Falcon] + Integration test for fallocate falling back to dd (#681) [James Falcon] + .travis.yml: correctly integration test the built .deb (#683) + Ability to hot-attach NICs to preprovisioned VMs before reprovisioning (#613) [aswinrajamannar] + Support configuring SSH host certificates. (#660) [Jonathan Lung] + add integration test for LP: #1900837 (#679) + cc_resizefs on FreeBSD: Fix _can_skip_ufs_resize (#655) [Mina Galić] (LP: #1901958, #1901958) + DataSourceAzure: push dmesg log to KVP (#670) [Anh Vo] + Make mount in place for tests work (#667) [James Falcon] + integration_tests: restore emission of settings to log (#657) + DataSourceAzure: update password for defuser if exists (#671) [Anh Vo] + tox.ini: only select "ci" marked tests for CI runs (#677) + Azure helper: Increase Azure Endpoint HTTP retries (#619) [Johnson Shi] + DataSourceAzure: send failure signal on Azure datasource failure (#594) [Johnson Shi] + test_persistence: simplify VersionIsPoppedFromState (#674) + only run a subset of integration tests in CI (#672) + cli: add + -system param to allow validating system user-data on a machine (#575) + test_persistence: add VersionIsPoppedFromState test (#673) + introduce an upgrade framework and related testing (#659) + add + -no-tty option to gpg (#669) [Till Riedel] (LP: #1813396) + Pin pycloudlib to a working commit (#666) [James Falcon] + DataSourceOpenNebula: exclude SRANDOM from context output (#665) + cloud_tests: add hirsute release definition (#662) + split integration and cloud_tests requirements (#652) + faq.rst: add warning to answer that suggests running `clean` (#661) + Fix stacktrace in DataSourceRbxCloud if no metadata disk is found (#632) [Scott Moser] + Make wakeonlan Network Config v2 setting actually work (#626) [dermotbradley] + HACKING.md: unify network-refactoring namespace (#658) [Mina Galić] + replace usage of dmidecode with kenv on FreeBSD (#621) [Mina Galić] + Prevent timeout on travis integration tests. (#651) [James Falcon] + azure: enable pushing the log to KVP from the last pushed byte (#614) [Moustafa Moustafa] + Fix launch_kwargs bug in integration tests (#654) [James Falcon] + split read_fs_info into linux & freebsd parts (#625) [Mina Galić] + PULL_REQUEST_TEMPLATE.md: expand commit message section (#642) + Make some language improvements in growpart documentation (#649) [Shane Frasier] + Revert ".travis.yml: use a known-working version of lxd (#643)" (#650) + Fix not sourcing default 50-cloud-init ENI file on Debian (#598) [WebSpider] + remove unnecessary reboot from gpart resize (#646) [Mina Galić] + cloudinit: move dmi functions out of util (#622) [Scott Moser] + integration_tests: various launch improvements (#638) + test_lp1886531: don't assume /etc/fstab exists (#639) + Remove Ubuntu restriction from PR template (#648) [James Falcon] + util: fix mounting of vfat on *BSD (#637) [Mina Galić] + conftest: improve docstring for disable_subp_usage (#644) + doc: add example query commands to debug Jinja templates (#645) + Correct documentation and testcase data for some user-data YAML (#618) [dermotbradley] + Hetzner: Fix instance_id / SMBIOS serial comparison (#640) [Markus Schade] + .travis.yml: use a known-working version of lxd (#643) + tools/build-on-freebsd: fix comment explaining purpose of the script (#635) [Mina Galić] + Hetzner: initialize instance_id from system-serial-number (#630) [Markus Schade] (LP: #1885527) + Explicit set IPV6_AUTOCONF and IPV6_FORCE_ACCEPT_RA on static6 (#634) [Eduardo Otubo] + get_interfaces: don't exclude Open vSwitch bridge/bond members (#608) [Lukas Märdian] (LP: #1898997) + Add config modules for controlling IBM PowerVM RMC. (#584) [Aman306] (LP: #1895979) + Update network config docs to clarify MAC address quoting (#623) [dermotbradley] + gentoo: fix hostname rendering when value has a comment (#611) [Manuel Aguilera] + refactor integration testing infrastructure (#610) [James Falcon] + stages: don't reset permissions of cloud-init.log every boot (#624) (LP: #1900837) + docs: Add how to use cloud-localds to boot qemu (#617) [Joshua Powers] + Drop vestigial update_resolve_conf_file function (#620) [Scott Moser] + cc_mounts: correctly fallback to dd if fallocate fails (#585) (LP: #1897099) + .travis.yml: add integration-tests to Travis matrix (#600) + ssh_util: handle non-default AuthorizedKeysFile config (#586) [Eduardo Otubo] + Multiple file fix for AuthorizedKeysFile config (#60) [Eduardo Otubo] + bddeb: new + -packaging-branch argument to pull packaging from branch (#576) [Paride Legovini] + Add more integration tests (#615) [lucasmoura] + DataSourceAzure: write marker file after report ready in preprovisioning (#590) [Johnson Shi] + integration_tests: emit settings to log during setup (#601) + integration_tests: implement citest tests run in Travis (#605) + Add Azure support to integration test framework (#604) [James Falcon] + openstack: consider product_name as valid chassis tag (#580) [Adrian Vladu] (LP: #1895976) + azure: clean up and refactor report_diagnostic_event (#563) [Johnson Shi] + net: add the ability to blacklist network interfaces based on driver during enumeration of physical network devices (#591) [Anh Vo] + integration_tests: don't error on cloud-init failure (#596) + integration_tests: improve cloud-init.log assertions (#593) + conftest.py: remove top-level import of httpretty (#599) + tox.ini: add integration-tests testenv definition (#595) + PULL_REQUEST_TEMPLATE.md: empty checkboxes need a space (#597) + add integration test for LP: #1886531 (#592) + Initial implementation of integration testing infrastructure (#581) [James Falcon] + Fix name of ntp and chrony service on CentOS and RHEL. (#589) [Scott Moser] (LP: #1897915) + Adding a PR template (#587) [James Falcon] + Azure parse_network_config uses fallback cfg when generate IMDS network cfg fails (#549) [Johnson Shi] + features: refresh docs for easier out-of-context reading (#582) + Fix typo in resolv_conf module's description (#578) [Wacław Schiller] + cc_users_groups: minor doc formatting fix (#577) + Fix typo in disk_setup module's description (#579) [Wacław Schiller] + Add vendor-data support to seedfrom parameter for NoCloud and OVF (#570) [Johann Queuniet] + boot.rst: add First Boot Determination section (#568) (LP: #1888858) + opennebula.rst: minor readability improvements (#573) [Mina Galić] + cloudinit: remove unused LOG variables (#574) + create a shutdown_command method in distro classes (#567) [Emmanuel Thomé] + user_data: remove unused constant (#566) + network: Fix type and respect name when rendering vlan in sysconfig. (#541) [Eduardo Otubo] (LP: #1788915, #1826608) + Retrieve SSH keys from IMDS first with OVF as a fallback (#509) [Thomas Stringer] + Add jqueuniet as contributor (#569) [Johann Queuniet] + distros: minor typo fix (#562) + Bump the integration-requirements versioned dependencies (#565) [Paride Legovini] + network-config-format-v1: fix typo in nameserver example (#564) [Stanislas] + Run cloud-init-local.service after the hv_kvp_daemon (#505) [Robert Schweikert] + Add method type hints for Azure helper (#540) [Johnson Shi] + systemd: add Before=shutdown.target when Conflicts=shutdown.target is used (#546) [Paride Legovini] + LXD: detach network from profile before deleting it (#542) [Paride Legovini] (LP: #1776958) + redhat spec: add missing BuildRequires (#552) [Paride Legovini] + util: remove debug statement (#556) [Joshua Powers] + Fix cloud config on chef example (#551) [lucasmoura] From 20.3 + Azure: Add netplan driver filter when using hv_netvsc driver (#539) [James Falcon] (LP: #1830740) + query: do not handle non-decodable non-gzipped content (#543) + DHCP sandboxing failing on noexec mounted /var/tmp (#521) [Eduardo Otubo] + Update the list of valid ssh keys. (#487) [Ole-Martin Bratteng] (LP: #1877869) + cmd: cloud-init query to handle compressed userdata (#516) (LP: #1889938) + Pushing cloud-init log to the KVP (#529) [Moustafa Moustafa] + Add Alpine Linux support. (#535) [dermotbradley] + Detect kernel version before swap file creation (#428) [Eduardo Otubo] + cli: add devel make-mime subcommand (#518) + user-data: only verify mime-types for TYPE_NEEDED and x-shellscript (#511) (LP: #1888822) + DataSourceOracle: retry twice (and document why we retry at all) (#536) + Refactor Azure report ready code (#468) [Johnson Shi] + tox.ini: pin correct version of httpretty in xenial{,-dev} envs (#531) + Support Oracle IMDSv2 API (#528) [James Falcon] + .travis.yml: run a doc build during CI (#534) + doc/rtd/topics/datasources/ovf.rst: fix doc8 errors (#533) + Fix 'Users and Groups' configuration documentation (#530) [sshedi] + cloudinit.distros: update docstrings of add_user and create_user (#527) + Fix headers for device types in network v2 docs (#532) [Caleb Xavier Berger] + Add AlexBaranowski as contributor (#508) [Aleksander Baranowski] + DataSourceOracle: refactor to use only OPC v1 endpoint (#493) + .github/workflows/stale.yml: s/Josh/Rick/ (#526) + Fix a typo in apt pipelining module (#525) [Xiao Liang] + test_util: parametrize devlist tests (#523) [James Falcon] + Recognize LABEL_FATBOOT labels (#513) [James Falcon] (LP: #1841466) + Handle additional identifier for SLES For HPC (#520) [Robert Schweikert] + Revert "test-requirements.txt: pin pytest to <6 (#512)" (#515) + test-requirements.txt: pin pytest to <6 (#512) + Add "tsanghan" as contributor (#504) [tsanghan] + fix brpm building (LP: #1886107) + Adding eandersson as a contributor (#502) [Erik Olof Gunnar Andersson] + azure: disable bouncing hostname when setting hostname fails (#494) [Anh Vo] + VMware: Support parsing DEFAULT-RUN-POST-CUST-SCRIPT (#441) [xiaofengw-vmware] + DataSourceAzure: Use ValueError when JSONDecodeError is not available (#490) [Anh Vo] + cc_ca_certs.py: fix blank line problem when removing CAs and adding new one (#483) [dermotbradley] + freebsd: py37-serial is now py37-pyserial (#492) [Gonéri Le Bouder] + ssh exit with non-zero status on disabled user (#472) [Eduardo Otubo] (LP: #1170059) + cloudinit: remove global disable of pylint W0107 and fix errors (#489) + networking: refactor wait_for_physdevs from cloudinit.net (#466) (LP: #1884626) + HACKING.rst: add pytest.param pytest gotcha (#481) + cloudinit: remove global disable of pylint W0105 and fix errors (#480) + Fix two minor warnings (#475) + test_data: fix faulty patch (#476) + cc_mounts: handle missing fstab (#484) (LP: #1886531) + LXD cloud_tests: support more lxd image formats (#482) [Paride Legovini] + Add update_etc_hosts as default module on *BSD (#479) [Adam Dobrawy] + cloudinit: fix tip-pylint failures and bump pinned pylint version (#478) + Added BirknerAlex as contributor and sorted the file (#477) [Alexander Birkner] + Update list of types of modules in cli.rst [saurabhvartak1982] + tests: use markers to configure disable_subp_usage (#473) + Add mention of vendor-data to no-cloud format documentation (#470) [Landon Kirk] + Fix broken link to OpenStack metadata service docs (#467) [Matt Riedemann] + Disable ec2 mirror for non aws instances (#390) [lucasmoura] (LP: #1456277) + cloud_tests: don't pass + -python-version to read-dependencies (#465) + networking: refactor is_physical from cloudinit.net (#457) (LP: #1884619) + Enable use of the caplog fixture in pytest tests, and add a cc_final_message test using it (#461) + RbxCloud: Add support for FreeBSD (#464) [Adam Dobrawy] + Add schema for cc_chef module (#375) [lucasmoura] (LP: #1858888) + test_util: add (partial) testing for util.mount_cb (#463) + .travis.yml: revert to installing ubuntu-dev-tools (#460) + HACKING.rst: add details of net refactor tracking (#456) + .travis.yml: rationalise installation of dependencies in host (#449) + Add dermotbradley as contributor. (#458) [dermotbradley] + net/networking: remove unused functions/methods (#453) + distros.networking: initial implementation of layout (#391) + cloud-init.service.tmpl: use "rhel" instead of "redhat" (#452) + Change from redhat to rhel in systemd generator tmpl (#450) [Eduardo Otubo] + Hetzner: support reading user-data that is base64 encoded. (#448) [Scott Moser] (LP: #1884071) + HACKING.rst: add strpath gotcha to testing gotchas section (#446) + cc_final_message: don't create directories when writing boot-finished (#445) (LP: #1883903) + .travis.yml: only store new schroot if something has changed (#440) + util: add ensure_dir_exists parameter to write_file (#443) + printing the error stream of the dhclient process before killing it (#369) [Moustafa Moustafa] + Fix link to the MAAS documentation (#442) [Paride Legovini] (LP: #1883666) + RPM build: disable the dynamic mirror URLs when using a proxy (#437) [Paride Legovini] + util: rename write_file's copy_mode parameter to preserve_mode (#439) + .travis.yml: use $TRAVIS_BUILD_DIR for lxd_image caching (#438) + cli.rst: alphabetise devel subcommands and add net-convert to list (#430) + Default to UTF-8 in /var/log/cloud-init.log (#427) [James Falcon] + travis: cache the chroot we use for package builds (#429) + test: fix all flake8 E126 errors (#425) [Joshua Powers] + Fixes KeyError for bridge with no "parameters:" setting (#423) [Brian Candler] (LP: #1879673) + When tools.conf does not exist, running cmd "vmware-toolbox-cmd config get deployPkg enable-custom-scripts", the return code will be EX_UNAVAILABLE(69), on this condition, it should not take it as error. (#413) [chengcheng-chcheng] + Document CloudStack data-server well-known hostname (#399) [Gregor Riepl] + test: move conftest.py to top-level, to cover tests/ also (#414) + Replace cc_chef is_installed with use of subp.is_exe. (#421) [Scott Moser] + Move runparts to subp. (#420) [Scott Moser] + Move subp into its own module. (#416) [Scott Moser] + readme: point at travis-ci.com (#417) [Joshua Powers] + New feature flag functionality and fix includes failing silently (#367) [James Falcon] (LP: #1734939) + Enhance poll imds logging (#365) [Moustafa Moustafa] + test: fix all flake8 E121 and E123 errors (#404) [Joshua Powers] + test: fix all flake8 E241 (#403) [Joshua Powers] + test: ignore flake8 E402 errors in main.py (#402) [Joshua Powers] + cc_grub_dpkg: determine idevs in more robust manner with grub-probe (#358) [Matthew Ruffell] (LP: #1877491) + test: fix all flake8 E741 errors (#401) [Joshua Powers] + tests: add groovy integration tests for ubuntu (#400) + Enable chef_license support for chef infra client (#389) [Bipin Bachhao] + testing: use flake8 again (#392) [Joshua Powers] + enable Puppet, Chef mcollective in default config (#385) [Mina Galić (deprecated: Igor Galić)] (LP: #1880279) + HACKING.rst: introduce .net + > Networking refactor section (#384) + Travis: do not install python3-contextlib2 (dropped dependency) (#388) [Paride Legovini] + HACKING: mention that .github-cla-signers is alpha-sorted (#380) + Add bipinbachhao as contributor (#379) [Bipin Bachhao] + cc_snap: validate that assertions property values are strings (#370) + conftest: implement partial disable_subp_usage (#371) + test_resolv_conf: refresh stale comment (#374) + cc_snap: apply validation to snap.commands properties (#364) + make finding libc platform independent (#366) [Mina Galić (deprecated: Igor Galić)] + doc/rtd/topics/faq: Updates LXD docs links to current site (#368) [TomP] + templater: drop Jinja Python 2 compatibility shim (#353) + cloudinit: minor pylint fixes (#360) + cloudinit: remove unneeded __future__ imports (#362) + migrating momousta lp user to Moustafa-Moustafa GitHub user (#361) [Moustafa Moustafa] + cloud_tests: emit dots on Travis while fetching images (#347) + Add schema to apt configure config (#357) [lucasmoura] (LP: #1858884) + conftest: add docs and tests regarding CiTestCase's subp functionality (#343) + analyze/dump: refactor shared string into variable (#350) + doc: update boot.rst with correct timing of runcmd (#351) + HACKING.rst: change contact info to Rick Harding (#359) [lucasmoura] + HACKING.rst: guide people to add themselves to the CLA file (#349) + HACKING.rst: more unit testing documentation (#354) + .travis.yml: don't run lintian during integration test package builds (#352) + Add test to ensure docs examples are valid cloud-init configs (#355) [James Falcon] (LP: #1876414) + make suse and sles support 127.0.1.1 (#336) [chengcheng-chcheng] + Create tests to validate schema examples (#348) [lucasmoura] (LP: #1876412) + analyze/dump: add support for Amazon Linux 2 log lines (#346) (LP: #1876323) + bsd: upgrade support (#305) [Gonéri Le Bouder] + Add lucasmoura as contributor (#345) [lucasmoura] + Add "therealfalcon" as contributor (#344) [James Falcon] + Adapt the package building scripts to use Python 3 (#231) [Paride Legovini] + DataSourceEc2: use metadata's NIC ordering to determine route-metrics (#342) (LP: #1876312) + .travis.yml: introduce caching (#329) + cc_locale: introduce schema (#335) + doc/rtd/conf.py: bump copyright year to 2020 (#341) + yum_add_repo: Add Centos to the supported distro list (#340) - Fix unit test fail in TestGetPackageMirrorInfo::test_substitution. - Add patch from upstream to remove python2 compatibility so cloud-init builds fine in Tumbleweed with a recent Jinja2 version. This patch is only applied in TW. cloud-init-21.2-8.51.1.src.rpm cloud-init-21.2-8.51.1.x86_64.rpm cloud-init-config-suse-21.2-8.51.1.x86_64.rpm cloud-init-doc-21.2-8.51.1.x86_64.rpm cloud-init-21.2-8.51.1.s390x.rpm cloud-init-config-suse-21.2-8.51.1.s390x.rpm cloud-init-doc-21.2-8.51.1.s390x.rpm cloud-init-21.2-8.51.1.ppc64le.rpm cloud-init-config-suse-21.2-8.51.1.ppc64le.rpm cloud-init-doc-21.2-8.51.1.ppc64le.rpm cloud-init-21.2-8.51.1.aarch64.rpm cloud-init-config-suse-21.2-8.51.1.aarch64.rpm cloud-init-doc-21.2-8.51.1.aarch64.rpm openSUSE-SLE-15.3-2022-131 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573) You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0) The following security bugs were fixed: - CVE-2021-45485: Fixed an information leak because of certain use of a hash table which use IPv6 source addresses. (bsc#1194094) - CVE-2021-45486: Fixed an information leak because the hash table is very small in net/ipv4/route.c. (bnc#1194087). - CVE-2021-4001: Fixed a race condition when the EBPF map is frozen. (bsc#1192990) - CVE-2021-28715: Fixed an issue where a guest could force Linux netback driver to hog large amounts of kernel memory by do not queueing unlimited number of packages. (bsc#1193442) - CVE-2021-28714: Fixed an issue where a guest could force Linux netback driver to hog large amounts of kernel memory by fixing rx queue stall detection. (bsc#1193442) - CVE-2021-28713: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening hvc_xen against event channel storms. (bsc#1193440) - CVE-2021-28712: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening netfront against event channel storms. (bsc#1193440) - CVE-2021-28711: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening blkfront against event channel storms. (bsc#1193440) - CVE-2020-24504: Fixed an uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapter drivers that may have allowed an authenticated user to potentially enable denial of service via local access. (bnc#1182404) - CVE-2021-43975: Fixed a flaw in hw_atl_utils_fw_rpc_wait that could allow an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value. (bnc#1192845) - CVE-2021-43976: Fixed a flaw that could allow an attacker (who can connect a crafted USB device) to cause a denial of service. (bnc#1192847) - CVE-2021-4002: Added a missing TLB flush that could lead to leak or corruption of data in hugetlbfs. (bsc#1192946) - CVE-2020-27820: Fixed a vulnerability where a use-after-frees in nouveau's postclose() handler could happen if removing device. (bnc#1179599) The following non-security bugs were fixed: - ACPI: battery: Accept charges over the design capacity as full (git-fixes). - ACPI: PMIC: Fix intel_pmic_regs_handler() read accesses (git-fixes). - ACPICA: Avoid evaluating methods too early during system resume (git-fixes). - Add SMB 2 support for getting and setting SACLs (bsc#1192606). - Add to supported.conf: fs/smbfs_common/cifs_arc4 fs/smbfs_common/cifs_md4 - ALSA: ctxfi: Fix out-of-range access (git-fixes). - ALSA: gus: fix null pointer dereference on pointer block (git-fixes). - ALSA: hda: hdac_ext_stream: fix potential locking issues (git-fixes). - ALSA: hda: hdac_stream: fix potential locking issue in snd_hdac_stream_assign() (git-fixes). - ALSA: hda/realtek: Add a quirk for Acer Spin SP513-54N (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS UX550VE (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PC70HS (git-fixes). - ALSA: hda/realtek: Add quirk for HP EliteBook 840 G7 mute LED (git-fixes). - ALSA: ISA: not for M68K (git-fixes). - ALSA: synth: missing check for possible NULL after the call to kstrdup (git-fixes). - ALSA: timer: Fix use-after-free problem (git-fixes). - ALSA: timer: Unconditionally unlink slave instances, too (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum 400 (git-fixes). - ARM: 8970/1: decompressor: increase tag size (git-fixes). - ARM: 8974/1: use SPARSMEM_STATIC when SPARSEMEM is enabled (git-fixes) - ARM: 8986/1: hw_breakpoint: Do not invoke overflow handler on uaccess watchpoints (git-fixes) - ARM: 9007/1: l2c: fix prefetch bits init in L2X0_AUX_CTRL using DT (git-fixes) - ARM: 9019/1: kprobes: Avoid fortify_panic() when copying optprobe (git-fixes) - ARM: 9046/1: decompressor: Do not clear SCTLR.nTLSMD for ARMv7+ cores (git-fixes) - ARM: 9064/1: hw_breakpoint: Do not directly check the event's (git-fixes) - ARM: 9071/1: uprobes: Do not hook on thumb instructions (git-fixes) - ARM: 9081/1: fix gcc-10 thumb2-kernel regression (git-fixes) - ARM: 9091/1: Revert "mm: qsd8x50: Fix incorrect permission faults" (git-fixes) - ARM: 9133/1: mm: proc-macros: ensure *_tlb_fns are 4B aligned (git-fixes) - ARM: 9134/1: remove duplicate memcpy() definition (git-fixes) - ARM: 9139/1: kprobes: fix arch_init_kprobes() prototype (git-fixes) - ARM: 9141/1: only warn about XIP address when not compile testing (git-fixes) - ARM: 9155/1: fix early early_iounmap() (git-fixes) - ARM: at91: pm: add missing put_device() call in at91_pm_sram_init() (git-fixes) - ARM: at91: pm: of_node_put() after its usage (git-fixes) - ARM: at91: pm: use proper master clock register offset (git-fixes) - ARM: bcm: Select ARM_TIMER_SP804 for ARCH_BCM_NSP (git-fixes) - ARM: dts sunxi: Relax a bit the CMA pool allocation range (git-fixes) - ARM: dts: am335x-pocketbeagle: Fix mmc0 Write Protect (git-fixes) - ARM: dts: am335x: align ti,pindir-d0-out-d1-in property with dt-shema (git-fixes) - ARM: dts: am437x-idk-evm: Fix incorrect OPP node names (git-fixes) - ARM: dts: am437x-l4: fix typo in can@0 node (git-fixes) - ARM: dts: armada-38x: fix NETA lockup when repeatedly switching speeds (git-fixes) - ARM: dts: armada388-helios4: assign pinctrl to each fan (git-fixes) - ARM: dts: armada388-helios4: assign pinctrl to LEDs (git-fixes) - ARM: dts: aspeed: s2600wf: Fix VGA memory region location (git-fixes) - ARM: dts: aspeed: tiogapass: Remove vuart (git-fixes) - ARM: dts: at91-sama5d27_som1: fix phy address to 7 (git-fixes) - ARM: dts: at91: add pinctrl-{names, 0} for all gpios (git-fixes) - ARM: dts: at91: at91sam9rl: fix ADC triggers (git-fixes) - ARM: dts: at91: sama5d2_ptc_ek: fix sdmmc0 node description (git-fixes) - ARM: dts: at91: sama5d2_ptc_ek: fix vbus pin (git-fixes) - ARM: dts: at91: sama5d2_xplained: classd: pull-down the R1 and R3 lines (git-fixes) - ARM: dts: at91: sama5d2: fix CAN message ram offset and size (git-fixes) - ARM: dts: at91: sama5d2: map securam as device (git-fixes) - ARM: dts: at91: sama5d3_xplained: add pincontrol for USB Host (git-fixes) - ARM: dts: at91: sama5d4_xplained: add pincontrol for USB Host (git-fixes) - ARM: dts: at91: sama5d4: fix pinctrl muxing (git-fixes) - ARM: dts: at91: tse850: the emaclt;->phy interface is rmii (git-fixes) - ARM: dts: bcm: HR2: Fix PPI interrupt types (git-fixes) - ARM: dts: bcm: HR2: Fixed QSPI compatible string (git-fixes) - ARM: dts: bcm2835-rpi-zero-w: Fix led polarity (git-fixes) - ARM: dts: BCM5301X: Add interrupt properties to GPIO node (git-fixes) - ARM: dts: BCM5301X: Fix I2C controller interrupt (git-fixes) - ARM: dts: BCM5301X: Fixed QSPI compatible string (git-fixes) - ARM: dts: colibri-imx6ull: limit SDIO clock to 25MHz (git-fixes) - ARM: dts: Configure missing thermal interrupt for 4430 (git-fixes) - ARM: dts: dra76x: Fix mmc3 max-frequency (git-fixes) - ARM: dts: dra76x: m_can: fix order of clocks (git-fixes) - ARM: dts: dra7xx-clocks: Fixup IPU1 mux clock parent source (git-fixes) - ARM: dts: exynos: correct fuel gauge interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct MUIC interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Arndale (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Artik 5 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Monk (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Odroid X/U3 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Odroid XU3 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Rinato (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on SMDK5250 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Snow (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Spring (git-fixes) - ARM: dts: exynos: Fix GPIO polarity for thr GalaxyS3 CM36651 sensor's bus (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid HC1 (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid XU/XU3 (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid XU4 (git-fixes) - ARM: dts: exynos: fix roles of USB 3.0 ports on Odroid XU (git-fixes) - ARM: dts: exynos: fix USB 3.0 pins supply being turned off on Odroid (git-fixes) - ARM: dts: exynos: fix USB 3.0 VBUS control and over-current pins on (git-fixes) - ARM: dts: Fix dcan driver probe failed on am437x platform (git-fixes) - ARM: dts: Fix duovero smsc interrupt for suspend (git-fixes) - ARM: dts: gemini-rut1xx: remove duplicate ethernet node (git-fixes) - ARM: dts: gose: Fix ports node name for adv7180 (git-fixes) - ARM: dts: gose: Fix ports node name for adv7612 (git-fixes) - ARM: dts: imx: emcon-avari: Fix nxp,pca8574 #gpio-cells (git-fixes) - ARM: dts: imx: Fix USB host power regulator polarity on M53Menlo (git-fixes) - ARM: dts: imx: Swap M53Menlo pinctrl_power_button/pinctrl_power_out (git-fixes) - ARM: dts: imx27-phytec-phycard-s-rdk: Fix the I2C1 pinctrl entries (git-fixes) - ARM: dts: imx50-evk: Fix the chip select 1 IOMUX (git-fixes) - ARM: dts: imx6: pbab01: Set vmmc supply for both SD interfaces (git-fixes) - ARM: dts: imx6: phycore-som: fix arm and soc minimum voltage (git-fixes) - ARM: dts: imx6: phycore-som: fix emmc supply (git-fixes) - ARM: dts: imx6: Use gpc for FEC interrupt controller to fix wake on LAN (git-fixes) - ARM: dts: imx6dl-colibri-eval-v3: fix sram compatible properties (git-fixes). - ARM: dts: imx6dl-yapp4: Fix RGMII connection to QCA8334 switch (git-fixes) - ARM: dts: imx6dl-yapp4: Fix Ursa board Ethernet connection (git-fixes) - ARM: dts: imx6q-dhcom: Add gpios pinctrl for i2c bus recovery (git-fixes) - ARM: dts: imx6q-dhcom: Add PU,VDD1P1,VDD2P5 regulators (git-fixes) - ARM: dts: imx6q-dhcom: Fix ethernet plugin detection problems (git-fixes) - ARM: dts: imx6q-dhcom: Fix ethernet reset time properties (git-fixes) - ARM: dts: imx6qdl-gw52xx: fix duplicate regulator naming (git-fixes) - ARM: dts: imx6qdl-gw551x: Do not use 'simple-audio-card,dai-link' (git-fixes) - ARM: dts: imx6qdl-gw551x: fix audio SSI (git-fixes) - ARM: dts: imx6qdl-icore: Fix OTG_ID pin and sdcard detect (git-fixes) - ARM: dts: imx6qdl-kontron-samx6i: fix i2c_lcd/cam default status (git-fixes) - ARM: dts: imx6qdl-kontron-samx6i: fix I2C_PM scl pin (git-fixes) - ARM: dts: imx6qdl-sr-som: Increase the PHY reset duration to 10ms (git-fixes) - ARM: dts: imx6qdl-udoo: fix rgmii phy-mode for ksz9031 phy (git-fixes) - ARM: dts: imx6sl: fix rng node (git-fixes) - ARM: dts: imx6sx-sabreauto: Fix the phy-mode on fec2 (git-fixes) - ARM: dts: imx6sx-sdb: Fix the phy-mode on fec2 (git-fixes) - ARM: dts: imx6sx: Add missing UART RTS/CTS pins mux (git-fixes) - ARM: dts: imx6sx: fix the pad QSPI1B_SCLK mux mode for uart3 (git-fixes) - ARM: dts: imx6sx: Improve UART pins macro defines (git-fixes) - ARM: dts: imx7-colibri: Fix frequency for sd/mmc (git-fixes) - ARM: dts: imx7-colibri: fix muxing of usbc_det pin (git-fixes) - ARM: dts: imx7-colibri: prepare module device tree for FlexCAN (git-fixes) - ARM: dts: imx7d-meerkat96: Fix the 'tuning-step' property (git-fixes) - ARM: dts: imx7d-pico: Fix the 'tuning-step' property (git-fixes) - ARM: dts: imx7d: Correct speed grading fuse settings (git-fixes) - ARM: dts: imx7d: fix opp-supported-hw (git-fixes) - ARM: dts: imx7ulp: Correct gpio ranges (git-fixes) - ARM: dts: logicpd-som-lv-baseboard: Fix broken audio (git-fixes) - ARM: dts: logicpd-som-lv-baseboard: Fix missing video (git-fixes) - ARM: dts: logicpd-torpedo-baseboard: Fix broken audio (git-fixes) - ARM: dts: lpc32xx: Revert set default clock rate of HCLK PLL (git-fixes) - ARM: dts: ls1021a: fix QuadSPI-memory reg range (git-fixes) - ARM: dts: ls1021a: Restore MDIO compatible to gianfar (git-fixes) - ARM: dts: meson: fix PHY deassert timing requirements (git-fixes) - ARM: dts: meson8: remove two invalid interrupt lines from the GPU (git-fixes) - ARM: dts: meson8: Use a higher default GPU clock frequency (git-fixes) - ARM: dts: meson8b: ec100: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: meson8b: mxq: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: meson8b: odroidc1: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: mt7623: add missing pause for switchport (git-fixes) - ARM: dts: N900: fix onenand timings (git-fixes). - ARM: dts: NSP: Correct FA2 mailbox node (git-fixes) - ARM: dts: NSP: Disable PL330 by default, add dma-coherent property (git-fixes) - ARM: dts: NSP: Fixed QSPI compatible string (git-fixes) - ARM: dts: omap3-gta04a4: accelerometer irq fix (git-fixes) - ARM: dts: omap3430-sdp: Fix NAND device node (git-fixes) - ARM: dts: owl-s500: Fix incorrect PPI interrupt specifiers (git-fixes) - ARM: dts: oxnas: Fix clear-mask property (git-fixes) - ARM: dts: pandaboard: fix pinmux for gpio user button of Pandaboard (git-fixes) - ARM: dts: qcom: apq8064: Use 27MHz PXO clock as DSI PLL reference (git-fixes) - ARM: dts: qcom: msm8974: Add xo_board reference clock to DSI0 PHY (git-fixes) - ARM: dts: r7s9210: Remove bogus clock-names from OSTM nodes (git-fixes) - ARM: dts: r8a73a4: Add missing CMT1 interrupts (git-fixes) - ARM: dts: r8a7740: Add missing extal2 to CPG node (git-fixes) - ARM: dts: r8a7779, marzen: Fix DU clock names (git-fixes) - ARM: dts: Remove non-existent i2c1 from 98dx3236 (git-fixes) - ARM: dts: renesas: Fix IOMMU device node names (git-fixes) - ARM: dts: s5pv210: Set keep-power-in-suspend for SDHCI1 on Aries (git-fixes) - ARM: dts: socfpga: Align L2 cache-controller nodename with dtschema (git-fixes) - ARM: dts: socfpga: fix register entry for timer3 on Arria10 (git-fixes) - ARM: dts: stm32: fix a typo for DAC io-channel-cells on stm32f429 (git-fixes) - ARM: dts: stm32: fix a typo for DAC io-channel-cells on stm32h743 (git-fixes) - ARM: dts: sun6i: a31-hummingbird: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun7i: a20: bananapro: Fix ethernet phy-mode (git-fixes) - ARM: dts: sun7i: bananapi-m1-plus: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun7i: bananapi: Enable RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun7i: cubietruck: Enable RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun7i: pcduino3-nano: enable RGMII RX/TX delay on PHY (git-fixes) - ARM: dts: sun8i-a83t-tbs-a711: Fix USB OTG mode detection (git-fixes) - ARM: dts: sun8i-h2-plus-bananapi-m2-zero: Fix led polarity (git-fixes) - ARM: dts: sun8i: a83t: Enable both RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun8i: h3: orangepi-plus2e: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-berry: Fix dcdc1 regulator (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-ultra: Fix dcdc1 regulator (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-ultra: Fix ethernet node (git-fixes) - ARM: dts: sun8i: r40: Move AHCI device node based on address order (git-fixes) - ARM: dts: sun8i: v3s: fix GIC node memory range (git-fixes) - ARM: dts: sun8i: v40: bananapi-m2-berry: Fix ethernet node (git-fixes) - ARM: dts: sun9i: Enable both RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sunxi: bananapi-m2-plus-v1.2: Fix CPU supply voltages (git-fixes) - ARM: dts: sunxi: bananapi-m2-plus: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sunxi: Fix DE2 clocks register range (git-fixes) - ARM: dts: turris-omnia: add comphy handle to eth2 (git-fixes) - ARM: dts: turris-omnia: add SFP node (git-fixes) - ARM: dts: turris-omnia: configure LED[2]/INTn pin as interrupt pin (git-fixes) - ARM: dts: turris-omnia: describe switch interrupt (git-fixes) - ARM: dts: turris-omnia: enable HW buffer management (git-fixes) - ARM: dts: turris-omnia: fix hardware buffer management (git-fixes) - ARM: dts: uniphier: Change phy-mode to RGMII-ID to enable delay pins (git-fixes) - ARM: dts: uniphier: Set SCSSI clock and reset IDs for each channel (git-fixes). - ARM: dts: vf610-zii-dev-rev-b: Remove #address-cells and #size-cells (git-fixes) - ARM: dts: vfxxx: Add syscon compatible with OCOTP (git-fixes) - ARM: exynos: add missing of_node_put for loop iteration (git-fixes) - ARM: exynos: MCPM: Restore big.LITTLE cpuidle support (git-fixes) - ARM: footbridge: fix PCI interrupt mapping (git-fixes) - ARM: imx: add missing clk_disable_unprepare() (git-fixes) - ARM: imx: add missing iounmap() (git-fixes) - ARM: imx: build suspend-imx6.S with arm instruction set (git-fixes) - ARM: imx: fix missing 3rd argument in macro imx_mmdc_perf_init (git-fixes) - ARM: imx5: add missing put_device() call in imx_suspend_alloc_ocram() (git-fixes) - ARM: imx6: disable the GIC CPU interface before calling stby-poweroff (git-fixes) - ARM: mvebu: drop pointless check for coherency_base (git-fixes) - ARM: OMAP2+: Fix legacy mode dss_reset (git-fixes) - ARM: OMAP2+: omap_device: fix idling of devices during probe (git-fixes) - ARM: OMAP2+: pm33xx-core: Make am43xx_get_rtc_base_addr static (git-fixes) - ARM: p2v: fix handling of LPAE translation in BE mode (git-fixes) - ARM: s3c: irq-s3c24xx: Fix return value check for s3c24xx_init_intc() (git-fixes) - ARM: s3c24xx: fix missing system reset (git-fixes) - ARM: s3c24xx: fix mmc gpio lookup tables (git-fixes) - ARM: samsung: do not build plat/pm-common for Exynos (git-fixes) - ARM: samsung: fix PM debug build with DEBUG_LL but !MMU (git-fixes) - ARM: socfpga: PM: add missing put_device() call in socfpga_setup_ocram_self_refresh() (git-fixes) - ASoC: DAPM: Cover regression by kctl change notification fix (git-fixes). - ASoC: nau8824: Add DMI quirk mechanism for active-high jack-detect (git-fixes). - ASoC: qdsp6: q6routing: Conditionally reset FrontEnd Mixer (git-fixes). - ASoC: SOF: Intel: hda-dai: fix potential locking issue (git-fixes). - ASoC: topology: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ath: dfs_pattern_detector: Fix possible null-pointer dereference in channel_detector_create() (git-fixes). - ath10k: fix invalid dma_addr_t token assignment (git-fixes). - ath10k: high latency fixes for beacon buffer (git-fixes). - Bbluetooth: btusb: Add another Bluetooth part for Realtek 8852AE (bsc#1193655). - bfq: Limit number of requests consumed by each cgroup (bsc#1184318). - bfq: Store full bitmap depth in bfq_data (bsc#1184318). - bfq: Track number of allocated requests in bfq_entity (bsc#1184318). - block: Fix use-after-free issue accessing struct io_cq (bsc#1193042). - block: Provide blk_mq_sched_get_icq() (bsc#1184318). - Bluetooth: Add additional Bluetooth part for Realtek 8852AE (bsc#1193655). - Bluetooth: btrtl: Refine the ic_id_table for clearer and more regular (bsc#1193655). - Bluetooth: btusb: Add the more support IDs for Realtek RTL8822CE (bsc#1193655). - Bluetooth: btusb: Add the new support ID for Realtek RTL8852A (bsc#1193655). - Bluetooth: btusb: btrtl: Add support for RTL8852A (bsc#1193655). - Bluetooth: fix use-after-free error in lock_sock_nested() (git-fixes). - bnxt_en: reject indirect blk offload when hw-tc-offload is off (jsc#SLE-8372 bsc#1153275). - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (git-fixes). - bpf, arm: Fix register clobbering in div/mod implementation (git-fixes) - bpf, s390: Fix potential memory leak about jit_data (git-fixes). - bpf, x86: Fix "no previous prototype" warning (git-fixes). - brcmfmac: Add DMI nvram filename quirk for Cyberbook T116 tablet (git-fixes). - btrfs: do not ignore error from btrfs_next_leaf() when inserting checksums (bsc#1193002). - btrfs: fix fsync failure and transaction abort after writes to prealloc extents (bsc#1193002). - btrfs: fix lost inode on log replay after mix of fsync, rename and inode eviction (bsc#1192998). - btrfs: fix race causing unnecessary inode logging during link and rename (bsc#1192998). - btrfs: make checksum item extension more efficient (bsc#1193002). - cfg80211: call cfg80211_stop_ap when switch from P2P_GO type (git-fixes). - cifs use true,false for bool variable (bsc#1164565). - cifs_atomic_open(): fix double-put on late allocation failure (bsc#1192606). - cifs_debug: use %pd instead of messing with ->d_name (bsc#1192606). - cifs: add a debug macro that prints \\server\share for errors (bsc#1164565). - cifs: add a function to get a cached dir based on its dentry (bsc#1192606). - cifs: add a helper to find an existing readable handle to a file (bsc#1154355). - cifs: add a timestamp to track when the lease of the cached dir was taken (bsc#1192606). - cifs: add an smb3_fs_context to cifs_sb (bsc#1192606). - cifs: add FALLOC_FL_INSERT_RANGE support (bsc#1192606). - cifs: add files to host new mount api (bsc#1192606). - cifs: add fs_context param to parsing helpers (bsc#1192606). - cifs: Add get_security_type_str function to return sec type (bsc#1192606). - cifs: add initial reconfigure support (bsc#1192606). - cifs: add missing mount option to /proc/mounts (bsc#1164565). - cifs: add missing parsing of backupuid (bsc#1192606). - cifs: Add missing sentinel to smb3_fs_parameters (bsc#1192606). - cifs: add mount parameter tcpnodelay (bsc#1192606). - cifs: add multichannel mount options and data structs (bsc#1192606). - cifs: add new debugging macro cifs_server_dbg (bsc#1164565). - cifs: Add new mount parameter "acdirmax" to allow caching directory metadata (bsc#1192606). - cifs: Add new parameter "acregmax" for distinct file and directory metadata timeout (bsc#1192606). - cifs: add NULL check for ses->tcon_ipc (bsc#1178270). - cifs: add passthrough for smb2 setinfo (bsc#1164565). - cifs: add server param (bsc#1192606). - cifs: add shutdown support (bsc#1192606). - cifs: add smb2 POSIX info level (bsc#1164565). - cifs: add SMB2_open() arg to return POSIX data (bsc#1164565). - cifs: add SMB3 change notification support (bsc#1164565). - cifs: add support for FALLOC_FL_COLLAPSE_RANGE (bsc#1192606). - cifs: add support for fallocate mode 0 for non-sparse files (bsc#1164565). - cifs: add support for flock (bsc#1164565). - cifs: Add support for setting owner info, dos attributes, and create time (bsc#1164565). - cifs: Add tracepoints for errors on flush or fsync (bsc#1164565). - cifs: Add witness information to debug data dump (bsc#1192606). - cifs: add witness mount option and data structs (bsc#1192606). - cifs: added WARN_ON for all the count decrements (bsc#1192606). - cifs: Adjust indentation in smb2_open_file (bsc#1164565). - cifs: Adjust key sizes and key generation routines for AES256 encryption (bsc#1192606). - cifs: allocate buffer in the caller of build_path_from_dentry() (bsc#1192606). - cifs: Allocate crypto structures on the fly for calculating signatures of incoming packets (bsc#1192606). - cifs: Allocate encryption header through kmalloc (bsc#1192606). - cifs: allow chmod to set mode bits using special sid (bsc#1164565). - cifs: allow syscalls to be restarted in __smb_send_rqst() (bsc#1176956). - cifs: allow unlock flock and OFD lock across fork (bsc#1192606). - cifs: Always update signing key of first channel (bsc#1192606). - cifs: ask for more credit on async read/write code paths (bsc#1192606). - cifs: Assign boolean values to a bool variable (bsc#1192606). - cifs: Avoid doing network I/O while holding cache lock (bsc#1164565). - cifs: Avoid error pointer dereference (bsc#1192606). - cifs: avoid extra calls in posix_info_parse (bsc#1192606). - cifs: Avoid field over-reading memcpy() (bsc#1192606). - cifs: avoid starvation when refreshing dfs cache (bsc#1185902). - cifs: avoid using MID 0xFFFF (bnc#1151927 5.3.8). - cifs: call wake_up(server->response_q) inside of cifs_reconnect() (bsc#1164565). - cifs: change confusing field serverName (to ip_addr) (bsc#1192606). - cifs: change format of CIFS_FULL_KEY_DUMP ioctl (bsc#1192606). - cifs: change noisy error message to FYI (bsc#1181507). - cifs: Change SIDs in ACEs while transferring file ownership (bsc#1192606). - cifs: check all path components in resolved dfs target (bsc#1181710). - cifs: check new file size when extending file by fallocate (bsc#1192606). - cifs: check pointer before freeing (bsc#1183534). - cifs: check the timestamp for the cached dirent when deciding on revalidate (bsc#1192606). - cifs: cifs_md4 convert to SPDX identifier (bsc#1192606). - cifs: cifspdu.h: Replace one-element array with flexible-array member (bsc#1192606). - cifs: cifspdu.h: Replace zero-length array with flexible-array member (bsc#1192606). - cifs: cifsssmb: remove redundant assignment to variable ret (bsc#1164565). - cifs: clarify comment about timestamp granularity for old servers (bsc#1192606). - cifs: clarify hostname vs ip address in /proc/fs/cifs/DebugData (bsc#1192606). - cifs: Clarify SMB1 code for delete (bsc#1192606). - cifs: Clarify SMB1 code for POSIX Create (bsc#1192606). - cifs: Clarify SMB1 code for POSIX delete file (bsc#1192606). - cifs: Clarify SMB1 code for POSIX Lock (bsc#1192606). - cifs: Clarify SMB1 code for rename open file (bsc#1192606). - cifs: Clarify SMB1 code for SetFileSize (bsc#1192606). - cifs: clarify SMB1 code for UnixCreateHardLink (bsc#1192606). - cifs: Clarify SMB1 code for UnixCreateSymLink (bsc#1192606). - cifs: Clarify SMB1 code for UnixSetPathInfo (bsc#1192606). - cifs: Clean up DFS referral cache (bsc#1164565). - cifs: cleanup a few le16 vs. le32 uses in cifsacl.c (bsc#1192606). - cifs: cleanup misc.c (bsc#1192606). - cifs: clear PF_MEMALLOC before exiting demultiplex thread (bsc#1192606). - cifs: Close cached root handle only if it had a lease (bsc#1164565). - cifs: Close open handle after interrupted close (bsc#1164565). - cifs: close the shared root handle on tree disconnect (bsc#1164565). - cifs: compute full_path already in cifs_readdir() (bsc#1192606). - cifs: connect individual channel servers to primary channel server (bsc#1192606). - cifs: connect: style: Simplify bool comparison (bsc#1192606). - cifs: constify get_normalized_path() properly (bsc#1185902). - cifs: constify path argument of ->make_node() (bsc#1192606). - cifs: constify pathname arguments in a bunch of helpers (bsc#1192606). - cifs: Constify static struct genl_ops (bsc#1192606). - cifs: convert list_for_each to entry variant (bsc#1192606, jsc#SLE-20042). - cifs: convert list_for_each to entry variant in cifs_debug.c (bsc#1192606). - cifs: convert list_for_each to entry variant in smb2misc.c (bsc#1192606). - cifs: convert revalidate of directories to using directory metadata cache timeout (bsc#1192606). - cifs: convert to use be32_add_cpu() (bsc#1192606). - cifs: Convert to use the fallthrough macro (bsc#1192606). - cifs: correct comments explaining internal semaphore usage in the module (bsc#1192606). - cifs: correct four aliased mount parms to allow use of previous names (bsc#1192606). - cifs: create a helper function to parse the query-directory response buffer (bsc#1164565). - cifs: create a helper to find a writeable handle by path name (bsc#1154355). - cifs: create a MD4 module and switch cifs.ko to use it (bsc#1192606). - cifs: Create a new shared file holding smb2 pdu definitions (bsc#1192606). - cifs: create sd context must be a multiple of 8 (bsc#1192606). - cifs: Deal with some warnings from W=1 (bsc#1192606). - cifs: Delete a stray unlock in cifs_swn_reconnect() (bsc#1192606). - cifs: delete duplicated words in header files (bsc#1192606). - cifs: detect dead connections only when echoes are enabled (bsc#1192606). - cifs: Display local UID details for SMB sessions in DebugData (bsc#1192606). - cifs: do d_move in rename (bsc#1164565). - cifs: do not allow changing posix_paths during remount (bsc#1192606). - cifs: do not cargo-cult strndup() (bsc#1185902). - cifs: do not create a temp nls in cifs_setup_ipc (bsc#1192606). - cifs: do not disable noperm if multiuser mount option is not provided (bsc#1192606). - cifs: Do not display RDMA transport on reconnect (bsc#1164565). - cifs: do not duplicate fscache cookie for secondary channels (bsc#1192606). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (git-fixes). - cifs: do not ignore the SYNC flags in getattr (bsc#1164565). - cifs: do not leak -EAGAIN for stat() during reconnect (bsc#1164565). - cifs: Do not leak EDEADLK to dgetents64 for STATUS_USER_SESSION_DELETED (bsc#1192606). - cifs: Do not miss cancelled OPEN responses (bsc#1164565). - cifs: do not negotiate session if session already exists (bsc#1192606). - cifs: do not send close in compound create+close requests (bsc#1181507). - cifs: do not send tree disconnect to ipc shares (bsc#1185902). - cifs: do not share tcons with DFS (bsc#1178270). - cifs: do not share tcp servers with dfs mounts (bsc#1185902). - cifs: do not share tcp sessions of dfs connections (bsc#1185902). - cifs: do not use 'pre:' for MODULE_SOFTDEP (bsc#1164565). - cifs: Do not use iov_iter::type directly (bsc#1192606). - cifs: Do not use the original cruid when following DFS links for multiuser mounts (bsc#1192606). - cifs: document and cleanup dfs mount (bsc#1178270). - cifs: dump channel info in DebugData (bsc#1192606). - cifs: dump Security Type info in DebugData (bsc#1192606). - cifs: dump the session id and keys also for SMB2 sessions (bsc#1192606). - cifs: enable change notification for SMB2.1 dialect (bsc#1164565). - cifs: enable extended stats by default (bsc#1192606). - cifs: Enable sticky bit with cifsacl mount option (bsc#1192606). - cifs: ensure correct super block for DFS reconnect (bsc#1178270). - cifs: escape spaces in share names (bsc#1192606). - cifs: export supported mount options via new mount_params /proc file (bsc#1192606). - cifs: fail i/o on soft mounts if sessionsetup errors out (bsc#1164565). - cifs: fiemap: do not return EINVAL if get nothing (bsc#1192606). - cifs: fix a comment for the timeouts when sending echos (bsc#1164565). - cifs: fix a memleak with modefromsid (bsc#1192606). - cifs: fix a sign extension bug (bsc#1192606). - cifs: fix a white space issue in cifs_get_inode_info() (bsc#1164565). - cifs: fix allocation size on newly created files (bsc#1192606). - cifs: Fix an error pointer dereference in cifs_mount() (bsc#1178270). - cifs: Fix atime update check vs mtime (bsc#1164565). - cifs: Fix bug which the return value by asynchronous read is error (bsc#1192606). - cifs: Fix cached_fid refcnt leak in open_shroot (bsc#1192606). - cifs: fix channel signing (bsc#1192606). - cifs: fix check of dfs interlinks (bsc#1185902). - cifs: fix check of tcon dfs in smb1 (bsc#1178270). - cifs: Fix chmod with modefromsid when an older ACE already exists (bsc#1192606). - cifs: fix chown and chgrp when idsfromsid mount option enabled (bsc#1192606). - cifs: Fix cifsacl ACE mask for group and others (bsc#1192606). - cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs (bnc#1151927 5.3.10). - cifs: fix credit accounting for extra channel (bsc#1192606). - cifs: fix dereference on ses before it is null checked (bsc#1164565). - cifs: fix dfs domain referrals (bsc#1192606). - cifs: fix DFS failover (bsc#1192606). - cifs: fix DFS mount with cifsacl/modefromsid (bsc#1178270). - cifs: fix dfs-links (bsc#1192606). - cifs: fix doc warnings in cifs_dfs_ref.c (bsc#1192606). - cifs: Fix double add page to memcg when cifs_readpages (bsc#1192606). - cifs: fix double free error on share and prefix (bsc#1178270). - cifs: Fix fall-through warnings for Clang (bsc#1192606). - cifs: fix fallocate when trying to allocate a hole (bsc#1192606). - cifs: fix gcc warning in sid_to_id (bsc#1192606). - cifs: fix handling of escaped ',' in the password mount argument (bsc#1192606). - cifs: Fix in error types returned for out-of-credit situations (bsc#1192606). - cifs: Fix incomplete memory allocation on setxattr path (bsc#1179211). - cifs: Fix inconsistent indenting (bsc#1192606). - cifs: Fix inconsistent IS_ERR and PTR_ERR (bsc#1192606). - cifs: fix incorrect check for null pointer in header_assemble (bsc#1192606). - cifs: fix incorrect kernel doc comments (bsc#1192606). - cifs: fix interrupted close commands (git-fixes). - cifs: fix ipv6 formating in cifs_ses_add_channel (bsc#1192606). - cifs: fix leak in cifs_smb3_do_mount() ctx (bsc#1192606). - cifs: Fix leak when handling lease break for cached root fid (bsc#1176242). - cifs: fix leaked reference on requeued write (bsc#1178270). - cifs: Fix lookup of root ses in DFS referral cache (bsc#1164565). - cifs: Fix lookup of SMB connections on multichannel (bsc#1192606). - cifs: fix max ea value size (bnc#1151927 5.3.4). - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() (bsc#1164565). - cifs: fix memory leak in smb2_copychunk_range (git-fixes). - cifs: fix memory leak of smb3_fs_context_dup::server_hostname (bsc#1192606). - cifs: fix minor typos in comments and log messages (bsc#1192606). - cifs: Fix missed free operations (bnc#1151927 5.3.8). - cifs: fix missing null session check in mount (bsc#1192606). - cifs: fix missing spinlock around update to ses->status (bsc#1192606). - cifs: fix misspellings using codespell tool (bsc#1192606). - cifs: fix mode bits from dir listing when mounted with modefromsid (bsc#1164565). - cifs: Fix mode output in debugging statements (bsc#1164565). - cifs: fix mount option display for sec=krb5i (bsc#1161907). - cifs: Fix mount options set in automount (bsc#1164565). - cifs: fix mounts to subdirectories of target (bsc#1192606). - cifs: fix nodfs mount option (bsc#1181710). - cifs: fix NULL dereference in match_prepath (bsc#1164565). - cifs: fix NULL dereference in smb2_check_message() (bsc#1192606). - cifs: Fix null pointer check in cifs_read (bsc#1192606). - cifs: Fix NULL pointer dereference in mid callback (bsc#1164565). - cifs: Fix NULL-pointer dereference in smb2_push_mandatory_locks (bnc#1151927 5.3.16). - cifs: Fix oplock handling for SMB 2.1+ protocols (bnc#1151927 5.3.4). - cifs: fix out-of-bound memory access when calling smb3_notify() at mount point (bsc#1192606). - cifs: fix path comparison and hash calc (bsc#1185902). - cifs: fix possible uninitialized access and race on iface_list (bsc#1192606). - cifs: Fix potential deadlock when updating vol in cifs_reconnect() (bsc#1164565). - cifs: fix potential mismatch of UNC paths (bsc#1164565). - cifs: Fix potential softlockups while refreshing DFS cache (bsc#1164565). - cifs: fix potential use-after-free bugs (bsc#1192606, jsc#SLE-20042). - cifs: fix potential use-after-free in cifs_echo_request() (bsc#1139944). - cifs: Fix preauth hash corruption (git-fixes). - cifs: fix print of hdr_flags in dfscache_proc_show() (bsc#1192606, jsc#SLE-20042). - cifs: fix reference leak for tlink (bsc#1192606). - cifs: fix regression when mounting shares with prefix paths (bsc#1192606). - cifs: fix rename() by ensuring source handle opened with DELETE bit (bsc#1164565). - cifs: Fix resource leak (bsc#1192606). - cifs: Fix retrieval of DFS referrals in cifs_mount() (bsc#1164565). - cifs: Fix retry mid list corruption on reconnects (bnc#1151927 5.3.10). - cifs: Fix return value in __update_cache_entry (bsc#1164565). - cifs: fix rsize/wsize to be negotiated values (bsc#1192606). - cifs: fix SMB1 error path in cifs_get_file_info_unix (bsc#1192606). - cifs: Fix SMB2 oplock break processing (bsc#1154355 bnc#1151927 5.3.16). - cifs: fix soft mounts hanging in the reconnect code (bsc#1164565). - cifs: fix soft mounts hanging in the reconnect code (bsc#1164565). - cifs: Fix some error pointers handling detected by static checker (bsc#1192606). - cifs: Fix spelling of 'security' (bsc#1192606). - cifs: fix string declarations and assignments in tracepoints (bsc#1192606). - cifs: Fix support for remount when not changing rsize/wsize (bsc#1192606). - cifs: Fix task struct use-after-free on reconnect (bsc#1164565). - cifs: fix the out of range assignment to bit fields in parse_server_interfaces (bsc#1192606). - cifs: Fix the target file was deleted when rename failed (bsc#1192606). - cifs: fix trivial typo (bsc#1192606). - cifs: fix uninitialised lease_key in open_shroot() (bsc#1178270). - cifs: fix uninitialized variable in smb3_fs_context_parse_param (bsc#1192606). - cifs: fix unitialized variable poential problem with network I/O cache lock patch (bsc#1164565). - cifs: Fix unix perm bits to cifsacl conversion for "other" bits (bsc#1192606). - cifs: fix unneeded null check (bsc#1192606). - cifs: fix use after free in cifs_smb3_do_mount() (bsc#1192606). - cifs: Fix use after free of file info structures (bnc#1151927 5.3.8). - cifs: Fix use-after-free bug in cifs_reconnect() (bsc#1164565). - cifs: fix wrong release in sess_alloc_buffer() failed path (bsc#1192606). - cifs: for compound requests, use open handle if possible (bsc#1192606). - cifs: Force reval dentry if LOOKUP_REVAL flag is set (bnc#1151927 5.3.7). - cifs: Force revalidate inode when dentry is stale (bnc#1151927 5.3.7). - cifs: fork arc4 and create a separate module for it for cifs and other users (bsc#1192606). - cifs: get mode bits from special sid on stat (bsc#1164565). - cifs: get rid of @noreq param in __dfs_cache_find() (bsc#1185902). - cifs: get rid of cifs_sb->mountdata (bsc#1192606). - cifs: Get rid of kstrdup_const()'d paths (bsc#1164565). - cifs: get rid of unused parameter in reconn_setup_dfs_targets() (bsc#1178270). - cifs: Grab a reference for the dentry of the cached directory during the lifetime of the cache (bsc#1192606). - cifs: Gracefully handle QueryInfo errors during open (bnc#1151927 5.3.7). - cifs: handle -EINTR in cifs_setattr (bsc#1192606). - cifs: handle "guest" mount parameter (bsc#1192606). - cifs: handle "nolease" option for vers=1.0 (bsc#1192606). - cifs: handle different charsets in dfs cache (bsc#1185902). - cifs: handle empty list of targets in cifs_reconnect() (bsc#1178270). - cifs: handle hostnames that resolve to same ip in failover (bsc#1178270). - cifs: handle prefix paths in reconnect (bsc#1164565). - cifs: handle reconnect of tcon when there is no cached dfs referral (bsc#1192606). - cifs: handle RESP_GET_DFS_REFERRAL.PathConsumed in reconnect (bsc#1178270). - cifs: Handle witness client move notification (bsc#1192606). - cifs: have ->mkdir() handle race with another client sanely (bsc#1192606). - cifs: have cifs_fattr_to_inode() refuse to change type on live inode (bsc#1192606). - cifs: Identify a connection by a conn_id (bsc#1192606). - cifs: If a corrupted DACL is returned by the server, bail out (bsc#1192606). - cifs: ignore auto and noauto options if given (bsc#1192606). - cifs: ignore cached share root handle closing errors (bsc#1166780). - cifs: improve fallocate emulation (bsc#1192606). - cifs: improve read performance for page size 64KB cache=strict vers=2.1+ (bsc#1192606). - cifs: In the new mount api we get the full devname as source= (bsc#1192606). - cifs: Increment num_remote_opens stats counter even in case of smb2_query_dir_first (bsc#1192606). - cifs: Initialize filesystem timestamp ranges (bsc#1164565). - cifs: introduce cifs_ses_mark_for_reconnect() helper (bsc#1192606). - cifs: introduce helper for finding referral server (bsc#1181710). - cifs: Introduce helpers for finding TCP connection (bsc#1164565). - cifs: introduce new helper for cifs_reconnect() (bsc#1192606, jsc#SLE-20042). - cifs: keep referral server sessions alive (bsc#1185902). - cifs: log mount errors using cifs_errorf() (bsc#1192606). - cifs: log warning message (once) if out of disk space (bsc#1164565). - cifs: make build_path_from_dentry() return const char * (bsc#1192606). - cifs: make const array static, makes object smaller (bsc#1192606). - cifs: Make extract_hostname function public (bsc#1192606). - cifs: Make extract_sharename function public (bsc#1192606). - cifs: make fs_context error logging wrapper (bsc#1192606). - cifs: make locking consistent around the server session status (bsc#1192606). - cifs: make multichannel warning more visible (bsc#1192606). - cifs: Make SMB2_notify_init static (bsc#1164565). - cifs: make sure we do not overflow the max EA buffer size (bsc#1164565). - cifs: make use of cap_unix(ses) in cifs_reconnect_tcon() (bsc#1164565). - cifs: map STATUS_ACCOUNT_LOCKED_OUT to -EACCES (bsc#1192606). - cifs: merge __{cifs,smb2}_reconnect[_tcon]() into cifs_tree_connect() (bsc#1178270). - cifs: Merge is_path_valid() into get_normalized_path() (bsc#1164565). - cifs: minor fix to two debug messages (bsc#1192606). - cifs: minor kernel style fixes for comments (bsc#1192606). - cifs: minor simplification to smb2_is_network_name_deleted (bsc#1192606). - cifs: minor update to comments around the cifs_tcp_ses_lock mutex (bsc#1192606). - cifs: minor updates to Kconfig (bsc#1192606). - cifs: misc: Use array_size() in if-statement controlling expression (bsc#1192606). - cifs: missed ref-counting smb session in find (bsc#1192606). - cifs: missing null check for newinode pointer (bsc#1192606). - cifs: missing null pointer check in cifs_mount (bsc#1185902). - cifs: modefromsid: make room for 4 ACE (bsc#1164565). - cifs: modefromsid: write mode ACE first (bsc#1164565). - cifs: move [brw]size from cifs_sb to cifs_sb->ctx (bsc#1192606). - cifs: move cache mount options to fs_context.ch (bsc#1192606). - cifs: move cifs_cleanup_volume_info[_content] to fs_context.c (bsc#1192606). - cifs: move cifs_parse_devname to fs_context.c (bsc#1192606). - cifs: move cifsFileInfo_put logic into a work-queue (bsc#1154355). - cifs: move debug print out of spinlock (bsc#1192606). - cifs: Move more definitions into the shared area (bsc#1192606). - cifs: move NEGOTIATE_PROTOCOL definitions out into the common area (bsc#1192606). - cifs: move security mount options into fs_context.ch (bsc#1192606). - cifs: move SMB FSCTL definitions to common code (bsc#1192606). - cifs: move smb version mount options into fs_context.c (bsc#1192606). - cifs: Move SMB2_Create definitions to the shared area (bsc#1192606). - cifs: move some variables off the stack in smb2_ioctl_query_info (bsc#1192606). - cifs: move the check for nohandlecache into open_shroot (bsc#1192606). - cifs: move the enum for cifs parameters into fs_context.h (bsc#1192606). - cifs: move update of flags into a separate function (bsc#1192606). - cifs: multichannel: always zero struct cifs_io_parms (bsc#1192606). - cifs: multichannel: move channel selection above transport layer (bsc#1192606). - cifs: multichannel: move channel selection in function (bsc#1192606). - cifs: multichannel: try to rebind when reconnecting a channel (bsc#1192606). - cifs: multichannel: use pointer for binding channel (bsc#1192606). - cifs: mute -Wunused-const-variable message (bnc#1151927 5.3.9). - cifs: New optype for session operations (bsc#1181507). - cifs: nosharesock should be set on new server (bsc#1192606). - cifs: nosharesock should not share socket with future sessions (bsc#1192606). - cifs: On cifs_reconnect, resolve the hostname again (bsc#1192606). - cifs: only update prefix path of DFS links in cifs_tree_connect() (bsc#1178270). - cifs: only write 64kb at a time when fallocating a small region of a file (bsc#1192606). - cifs: Optimize readdir on reparse points (bsc#1164565). - cifs: pass a path to open_shroot and check if it is the root or not (bsc#1192606). - cifs: pass the dentry instead of the inode down to the revalidation check functions (bsc#1192606). - cifs: plumb smb2 POSIX dir enumeration (bsc#1164565). - cifs: populate server_hostname for extra channels (bsc#1192606). - cifs: potential unintitliazed error code in cifs_getattr() (bsc#1164565). - cifs: prepare SMB2_Flush to be usable in compounds (bsc#1154355). - cifs: prepare SMB2_query_directory to be used with compounding (bsc#1164565). - cifs: prevent NULL deref in cifs_compose_mount_options() (bsc#1185902). - cifs: prevent truncation from long to int in wait_for_free_credits (bsc#1192606). - cifs: print MIDs in decimal notation (bsc#1181507). - cifs: Print the address and port we are connecting to in generic_ip_connect() (bsc#1192606). - cifs: print warning mounting with vers=1.0 (bsc#1164565). - cifs: properly invalidate cached root handle when closing it (bsc#1192606). - cifs: Properly process SMB3 lease breaks (bsc#1164565). - cifs: protect session channel fields with chan_lock (bsc#1192606). - cifs: protect srv_count with cifs_tcp_ses_lock (bsc#1192606). - cifs: protect updating server->dstaddr with a spinlock (bsc#1192606). - cifs: Re-indent cifs_swn_reconnect() (bsc#1192606). - cifs: reduce number of referral requests in DFS link lookups (bsc#1178270). - cifs: reduce stack use in smb2_compound_op (bsc#1192606). - cifs: refactor cifs_get_inode_info() (bsc#1164565). - cifs: refactor create_sd_buf() and and avoid corrupting the buffer (bsc#1192606). - cifs: Reformat DebugData and index connections by conn_id (bsc#1192606). - cifs: Register generic netlink family (bsc#1192606). Update configs with CONFIG_SWN_UPCALL unset. - cifs: release lock earlier in dequeue_mid error case (bsc#1192606). - cifs: remove [gu]id/backup[gu]id/file_mode/dir_mode from cifs_sb (bsc#1192606). - cifs: remove actimeo from cifs_sb (bsc#1192606). - cifs: remove bogus debug code (bsc#1179427). - cifs: remove ctx argument from cifs_setup_cifs_sb (bsc#1192606). - cifs: remove duplicated prototype (bsc#1192606). - cifs: remove old dead code (bsc#1192606). - cifs: remove pathname for file from SPDX header (bsc#1192606). - cifs: remove redundant assignment to pointer pneg_ctxt (bsc#1164565). - cifs: remove redundant assignment to variable rc (bsc#1164565). - cifs: remove redundant initialization of variable rc (bsc#1192606). - cifs: remove redundant initialization of variable rc (bsc#1192606). - cifs: Remove repeated struct declaration (bsc#1192606). - cifs: Remove set but not used variable 'capabilities' (bsc#1164565). - cifs: remove set but not used variable 'server' (bsc#1164565). - cifs: remove set but not used variables 'cinode' and 'netfid' (bsc#1164565). - cifs: remove set but not used variables (bsc#1164565). - cifs: remove some minor warnings pointed out by kernel test robot (bsc#1192606). - cifs: remove the devname argument to cifs_compose_mount_options (bsc#1192606). - cifs: remove the retry in cifs_poxis_lock_set (bsc#1192606). - cifs: Remove the superfluous break (bsc#1192606). - cifs: remove two cases where rc is set unnecessarily in sid_to_id (bsc#1192606). - cifs: remove unnecessary copies of tcon->crfid.fid (bsc#1192606). - cifs: Remove unnecessary struct declaration (bsc#1192606). - cifs: remove unneeded variable in smb3_fs_context_dup (bsc#1192606). - cifs: Remove unused inline function is_sysvol_or_netlogon() (bsc#1185902). - cifs: remove unused variable 'server' (bsc#1192606). - cifs: remove unused variable 'sid_user' (bsc#1164565). - cifs: remove unused variable (bsc#1164565). - cifs: Remove useless variable (bsc#1192606). - cifs: remove various function description warnings (bsc#1192606). - cifs: rename a variable in SendReceive() (bsc#1164565). - cifs: rename cifs_common to smbfs_common (bsc#1192606). - cifs: rename dup_vol to smb3_fs_context_dup and move it into fs_context.c (bsc#1192606). - cifs: rename posix create rsp (bsc#1164565). - cifs: rename reconn_inval_dfs_target() (bsc#1178270). - cifs: rename smb_vol as smb3_fs_context and move it to fs_context.h (bsc#1192606). - cifs: rename the *_shroot* functions to *_cached_dir* (bsc#1192606). - cifs: report error instead of invalid when revalidating a dentry fails (bsc#1177440). - cifs: Respect O_SYNC and O_DIRECT flags during reconnect (bsc#1164565). - cifs: Retain old ACEs when converting between mode bits and ACL (bsc#1192606). - cifs: retry lookup and readdir when EAGAIN is returned (bsc#1192606). - cifs: return cached_fid from open_shroot (bsc#1192606). - cifs: Return correct error code from smb2_get_enc_key (git-fixes). - cifs: Return directly after a failed build_path_from_dentry() in cifs_do_create() (bsc#1164565). - cifs: return proper error code in statfs(2) (bsc#1181507). - cifs: Return the error from crypt_message when enc/dec key not found (bsc#1179426). - cifs: returning mount parm processing errors correctly (bsc#1192606). - cifs: revalidate mapping when we open files for SMB1 POSIX (bsc#1192606). - cifs: Send witness register and unregister commands to userspace daemon (bsc#1192606). - cifs: Send witness register messages to userspace daemon in echo task (bsc#1192606). - cifs: send workstation name during ntlmssp session setup (bsc#1192606). - cifs: set a minimum of 120s for next dns resolution (bsc#1192606). - cifs: set a minimum of 2 minutes for refreshing dfs cache (bsc#1185902). - cifs: Set CIFS_MOUNT_USE_PREFIX_PATH flag on setting cifs_sb->prepath (bsc#1192606). - cifs: set correct max-buffer-size for smb2_ioctl_init() (bsc#1164565). - cifs: set server->cipher_type to AES-128-CCM for SMB3.0 (bsc#1192606). - cifs: set up next DFS target before generic_ip_connect() (bsc#1178270). - cifs: Set witness notification handler for messages from userspace daemon (bsc#1192606). - cifs: Silently ignore unknown oplock break handle (bsc#1192606). - cifs: Simplify bool comparison (bsc#1192606). - cifs: simplify handling of cifs_sb/ctx->local_nls (bsc#1192606). - cifs: Simplify reconnect code when dfs upcall is enabled (bsc#1192606). - cifs: simplify SWN code with dummy funcs instead of ifdefs (bsc#1192606). - cifs: smb1: Try failing back to SetFileInfo if SetPathInfo fails (bsc#1192606). - cifs: smb2pdu.h: Replace zero-length array with flexible-array member (bsc#1192606). - cifs: smbd: Add messages on RDMA session destroy and reconnection (bsc#1164565). - cifs: smbd: Calculate the correct maximum packet size for segmented SMBDirect send/receive (bsc#1192606). - cifs: smbd: Check and extend sender credits in interrupt context (bsc#1192606). - cifs: smbd: Check send queue size before posting a send (bsc#1192606). - cifs: smbd: Do not schedule work to send immediate packet on every receive (bsc#1192606). - cifs: smbd: Invalidate and deregister memory registration on re-send for direct I/O (bsc#1164565). - cifs: smbd: Merge code to track pending packets (bsc#1192606). - cifs: smbd: Only queue work for error recovery on memory registration (bsc#1164565). - cifs: smbd: Properly process errors on ib_post_send (bsc#1192606). - cifs: smbd: Return -EAGAIN when transport is reconnecting (bsc#1164565). - cifs: smbd: Return -ECONNABORTED when trasnport is not in connected state (bsc#1164565). - cifs: smbd: Return -EINVAL when the number of iovs exceeds SMBDIRECT_MAX_SGE (bsc#1164565). - cifs: smbd: Update receive credits before sending and deal with credits roll back on failure before sending (bsc#1192606). - cifs: sort interface list by speed (bsc#1192606). - cifs: Spelling s/EACCESS/EACCES/ (bsc#1192606). - cifs: split out dfs code from cifs_reconnect() (bsc#1192606, jsc#SLE-20042). - cifs: Standardize logging output (bsc#1192606). - cifs: store a pointer to the root dentry in cifs_sb_info once we have completed mounting the share (bsc#1192606). - cifs: style: replace one-element array with flexible-array (bsc#1192606). - cifs: support nested dfs links over reconnect (bsc#1192606, jsc#SLE-20042). - cifs: support share failover when remounting (bsc#1192606, jsc#SLE-20042). - cifs: switch build_path_from_dentry() to using dentry_path_raw() (bsc#1192606). - cifs: switch servers depending on binding state (bsc#1192606). - cifs: switch to new mount api (bsc#1192606). - cifs: To match file servers, make sure the server hostname matches (bsc#1192606). - cifs: Tracepoints and logs for tracing credit changes (bsc#1181507). - cifs: try harder to open new channels (bsc#1192606). - cifs: try opening channels after mounting (bsc#1192606). - cifs: uncomplicate printing the iocharset parameter (bsc#1192606). - cifs: Unlock on errors in cifs_swn_reconnect() (bsc#1192606). - cifs: update ctime and mtime during truncate (bsc#1192606). - cifs: update FSCTL definitions (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update mnt_cifs_flags during reconfigure (bsc#1192606). - cifs: update new ACE pointer after populate_new_aces (bsc#1192606). - cifs: update super_operations to show_devname (bsc#1192606). - cifs: Use #define in cifs_dbg (bsc#1164565). - cifs: use cifsInodeInfo->open_file_lock while iterating to avoid a panic (bnc#1151927 5.3.7). - cifs: Use common error handling code in smb2_ioctl_query_info() (bsc#1164565). - cifs: use compounding for open and first query-dir for readdir() (bsc#1164565). - cifs: use discard iterator to discard unneeded network data more efficiently (bsc#1192606). - cifs: use echo_interval even when connection not ready (bsc#1192606). - cifs: use existing handle for compound_op(OP_SET_INFO) when possible (bsc#1154355). - cifs: use helpers when parsing uid/gid mount options and validate them (bsc#1192606). - cifs: Use memdup_user() rather than duplicating its implementation (bsc#1164565). - cifs: use mod_delayed_work() for server->reconnect if already queued (bsc#1164565). - cifs: use PTR_ERR_OR_ZERO() to simplify code (bsc#1164565). - cifs: use SPDX-Licence-Identifier (bsc#1192606). - cifs: use the expiry output of dns_query to schedule next resolution (bsc#1192606). - cifs: use true,false for bool variable (bsc#1164565). - cifs: warn and fail if trying to use rootfs without the config option (bsc#1192606). - cifs: Warn less noisily on default mount (bsc#1192606). - cifs: we do not allow changing username/password/unc/... during remount (bsc#1192606). - cifs/smb3: Fix data inconsistent when punch hole (bsc#1176544). - cifs/smb3: Fix data inconsistent when zero file range (bsc#1176536). - cifs`: handle ERRBaduid for SMB1 (bsc#1192606). - clk: imx: imx6ul: Move csi_sel mux to correct base register (git-fixes). - clk: ingenic: Fix bugs with divided dividers (git-fixes). - config: refresh BPF configs (jsc#SLE-22574) The SUSE-commit 9a413cc7eb56 ("config: disable unprivileged BPF by default (jsc#SLE-22573)") inherited from SLE15-SP2 puts the BPF config into the wrong place due to SLE15-SP3 additionally backported b24abcff918a ("bpf, kconfig: Add consolidated menu entry for bpf with core options"), and leads to duplicate CONFIG_BPF_UNPRIV_DEFAULT_OFF entires; this commit remove those BPF config. Also, disable unprivileged BPF for armv7hl, which did not inherit the config change from SLE15-SP2. - constraints: Build aarch64 on recent ARMv8.1 builders. Request asimdrdm feature which is available only on recent ARMv8.1 CPUs. This should prevent scheduling the kernel on an older slower builder. - Convert trailing spaces and periods in path components (bsc#1179424). - crypto: ecc - fix CRYPTO_DEFAULT_RNG dependency (git-fixes). - crypto: pcrypt - Delay write to padata->info (git-fixes). - crypto: s5p-sss - Add error handling in s5p_aes_probe() (git-fixes). - cxgb4: fix eeprom len when diagnostics not implemented (git-fixes). - dm raid: remove unnecessary discard limits for raid0 and raid10 (bsc#1192320). - dm: fix deadlock when swapping to encrypted device (bsc#1186332). - dmaengine: at_xdmac: fix AT_XDMAC_CC_PERID() macro (git-fixes). - dmaengine: dmaengine_desc_callback_valid(): Check for `callback_result` (git-fixes). - do_cifs_create(): do not set ->i_mode of something we had not created (bsc#1192606). - drm: panel-orientation-quirks: Add quirk for Aya Neo 2021 (git-fixes). - drm: panel-orientation-quirks: Add quirk for GPD Win3 (git-fixes). - drm: panel-orientation-quirks: Add quirk for KD Kurio Smart C15200 2-in-1 (git-fixes). - drm: panel-orientation-quirks: Add quirk for the Samsung Galaxy Book 10.6 (git-fixes). - drm: panel-orientation-quirks: Update the Lenovo Ideapad D330 quirk (v2) (git-fixes). - drm/amd/display: Set plane update flags for all planes in reset (git-fixes). - drm/amdgpu: fix set scaling mode Full/Full aspect/Center not works on vga and dvi connectors (git-fixes). - drm/msm: Do hw_init() before capturing GPU state (git-fixes). - drm/msm/a6xx: Allocate enough space for GMU registers (git-fixes). - drm/nouveau: hdmigv100.c: fix corrupted HDMI Vendor InfoFrame (git-fixes). - drm/nouveau/acr: fix a couple NULL vs IS_ERR() checks (git-fixes). - drm/nouveau/svm: Fix refcount leak bug and missing check against null bug (git-fixes). - drm/panel-orientation-quirks: add Valve Steam Deck (git-fixes). - drm/pl111: Actually fix CONFIG_VEXPRESS_CONFIG depends (git-fixes). - drm/plane-helper: fix uninitialized variable reference (git-fixes). - drm/vc4: fix error code in vc4_create_object() (git-fixes). - drop superfluous empty lines - e1000e: Separate TGP board type from SPT (bsc#1192874). - EDAC/amd64: Handle three rank interleaving mode (bsc#1152489). - elfcore: correct reference to CONFIG_UML (git-fixes). - elfcore: fix building with clang (bsc#1169514). - ethtool: fix ethtool msg len calculation for pause stats (jsc#SLE-15075). - firmware: qcom_scm: Mark string array const (git-fixes). - fuse: release pipe buf after last use (bsc#1193318). - gve: Add netif_set_xps_queue call (bsc#1176940). - gve: Add rx buffer pagecnt bias (bsc#1176940). - gve: Allow pageflips on larger pages (bsc#1176940). - gve: Do lazy cleanup in TX path (git-fixes). - gve: DQO: avoid unused variable warnings (bsc#1176940). - gve: Switch to use napi_complete_done (git-fixes). - gve: Track RX buffer allocation failures (bsc#1176940). - hwmon: (k10temp) Add additional missing Zen2 and Zen3 APUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Add support for yellow carp (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Add support for Zen3 CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Create common functions and macros for Zen CPU families (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Define SVI telemetry and current factors for Zen2 CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Do not show Tdie for all Zen/Zen2/Zen3 CPU/APU (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) make some symbols static (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Remove residues of current and voltage (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Remove support for displaying voltage and current on Zen CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Reorganize and simplify temperature support detection (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Rework the temperature offset calculation (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) support Zen3 APUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Swap Tdie and Tctl on Family 17h CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Update documentation and add temp2_input info (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Update driver documentation (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Zen3 Ryzen Desktop CPUs support (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - i2c: cbus-gpio: set atomic transfer callback (git-fixes). - i2c: stm32f7: flush TX FIFO upon transfer errors (git-fixes). - i2c: stm32f7: recover the bus on access timeout (git-fixes). - i2c: stm32f7: stop dma transfer in case of NACK (git-fixes). - i2c: xlr: Fix a resource leak in the error handling path of 'xlr_i2c_probe()' (git-fixes). - i40e: Fix changing previously set num_queue_pairs for PFs (git-fixes). - i40e: Fix correct max_pkt_size on VF RX queue (git-fixes). - i40e: Fix creation of first queue by omitting it if is not power of two (git-fixes). - i40e: Fix display error code in dmesg (git-fixes). - i40e: Fix failed opcode appearing if handling messages from VF (git-fixes). - i40e: Fix NULL ptr dereference on VSI filter sync (git-fixes). - i40e: Fix ping is lost after configuring ADq on VF (git-fixes). - i40e: Fix pre-set max number of queues for VF (git-fixes). - i40e: Fix warning message and call stack during rmmod i40e driver (git-fixes). - iavf: check for null in iavf_fix_features (git-fixes). - iavf: do not clear a lock we do not hold (git-fixes). - iavf: Fix failure to exit out from last all-multicast mode (git-fixes). - iavf: Fix for setting queues to 0 (jsc#SLE-12877). - iavf: Fix for the false positive ASQ/ARQ errors while issuing VF reset (git-fixes). - iavf: Fix reporting when setting descriptor count (git-fixes). - iavf: Fix return of set the new channel count (jsc#SLE-12877). - iavf: free q_vectors before queues in iavf_disable_vf (git-fixes). - iavf: prevent accidental free of filter structure (git-fixes). - iavf: Prevent changing static ITR values if adaptive moderation is on (git-fixes). - iavf: Restore VLAN filters after link down (git-fixes). - iavf: validate pointers (git-fixes). - ibmvnic: drop bad optimization in reuse_rx_pools() (bsc#1193349 ltc#195568). - ibmvnic: drop bad optimization in reuse_tx_pools() (bsc#1193349 ltc#195568). - ice: avoid bpf_prog refcount underflow (jsc#SLE-7926). - ice: avoid bpf_prog refcount underflow (jsc#SLE-7926). - ice: Delete always true check of PF pointer (git-fixes). - ice: Fix not stopping Tx queues for VFs (jsc#SLE-7926). - ice: Fix VF true promiscuous mode (jsc#SLE-12878). - ice: fix vsi->txq_map sizing (jsc#SLE-7926). - ice: ignore dropped packets during init (git-fixes). - ice: Remove toggling of antispoof for VF trusted promiscuous mode (jsc#SLE-12878). - igb: fix netpoll exit with traffic (git-fixes). - igc: Remove _I_PHY_ID checking (bsc#1193169). - igc: Remove phy->type checking (bsc#1193169). - iio: imu: st_lsm6dsx: Avoid potential array overflow in st_lsm6dsx_set_odr() (git-fixes). - Input: iforce - fix control-message timeout (git-fixes). - iommu: Check if group is NULL before remove device (git-fixes). - iommu/amd: Relocate GAMSup check to early_enable_iommus (git-fixes). - iommu/amd: Remove iommu_init_ga() (git-fixes). - iommu/mediatek: Fix out-of-range warning with clang (git-fixes). - iommu/vt-d: Consolidate duplicate cache invaliation code (git-fixes). - iommu/vt-d: Fix incomplete cache flush in intel_pasid_tear_down_entry() (git-fixes). - iommu/vt-d: Update the virtual command related registers (git-fixes). - ipmi: Disable some operations during a panic (git-fixes). - kABI: dm: fix deadlock when swapping to encrypted device (bsc#1186332). - kabi: hide changes to struct uv_info (git-fixes). - kernel-obs-build: include the preferred kernel parameters Currently the Open Build Service hardcodes the kernel boot parameters globally. Recently functionality was added to control the parameters by the kernel-obs-build package, so make use of that. parameters here will overwrite what is used by OBS otherwise. - kernel-obs-build: inform build service about virtio-serial Inform the build worker code that this kernel supports virtio-serial, which improves performance and relability of logging. - kernel-obs-build: remove duplicated/unused parameters lbs=0 - this parameters is just giving "unused parameter" and it looks like I can not find any version that implemented this. rd.driver.pre=binfmt_misc is not needed when setup_obs is used, it alread loads the kernel module. quiet and panic=1 will now be also always added by OBS, so we do not have to set it here anymore. - kernel-source.spec: install-kernel-tools also required on 15.4 - lib/xz: Avoid overlapping memcpy() with invalid input with in-place decompression (git-fixes). - lib/xz: Validate the value before assigning it to an enum variable (git-fixes). - libata: fix checking of DMA state (git-fixes). - linux/parser.h: add include guards (bsc#1192606). - lpfc: Reintroduce old IRQ probe logic (bsc#1183897). - md: add md_submit_discard_bio() for submitting discard bio (bsc#1192320). - md: fix a lock order reversal in md_alloc (git-fixes). - md/raid10: extend r10bio devs to raid disks (bsc#1192320). - md/raid10: improve discard request for far layout (bsc#1192320). - md/raid10: improve raid10 discard request (bsc#1192320). - md/raid10: initialize r10_bio->read_slot before use (bsc#1192320). - md/raid10: pull the code that wait for blocked dev into one function (bsc#1192320). - md/raid10: Remove unnecessary rcu_dereference in raid10_handle_discard (bsc#1192320). - mdio: aspeed: Fix "Link is Down" issue (bsc#1176447). - media: imx: set a media_device bus_info string (git-fixes). - media: ipu3-imgu: imgu_fmt: Handle properly try (git-fixes). - media: ipu3-imgu: VIDIOC_QUERYCAP: Fix bus_info (git-fixes). - media: ir-kbd-i2c: improve responsiveness of hauppauge zilog receivers (git-fixes). - media: mceusb: return without resubmitting URB in case of -EPROTO error (git-fixes). - media: mt9p031: Fix corrupted frame after restarting stream (git-fixes). - media: netup_unidvb: handle interrupt properly according to the firmware (git-fixes). - media: rcar-csi2: Add checking to rcsi2_start_receiver() (git-fixes). - media: s5p-mfc: fix possible null-pointer dereference in s5p_mfc_probe() (git-fixes). - media: stm32: Potential NULL pointer dereference in dcmi_irq_thread() (git-fixes). - media: usb: dvd-usb: fix uninit-value bug in dibusb_read_eeprom_byte() (git-fixes). - media: uvcvideo: Return -EIO for control errors (git-fixes). - media: uvcvideo: Set capability in s_param (git-fixes). - media: uvcvideo: Set unique vdev name based in type (git-fixes). - memstick: r592: Fix a UAF bug when removing the driver (git-fixes). - MM: reclaim mustn't enter FS for swap-over-NFS (bsc#1191876). - mmc: dw_mmc: Dont wait for DRTO on Write RSP error (git-fixes). - mmc: winbond: do not build on M68K (git-fixes). - mtd: core: do not remove debugfs directory if device is in use (git-fixes). - mwifiex: Properly initialize private structure on interface type changes (git-fixes). - mwifiex: Read a PCI register after writing the TX ring write pointer (git-fixes). - mwifiex: Run SET_BSS_MODE when changing from P2P to STATION vif-type (git-fixes). - mwl8k: Fix use-after-free in mwl8k_fw_state_machine() (git-fixes). - net: asix: fix uninit value bugs (git-fixes). - net: bnx2x: fix variable dereferenced before check (git-fixes). - net: bridge: fix under estimation in br_get_linkxstats_size() (bsc#1176447). - net: cdc_ncm: Allow for dwNtbOutMaxSize to be unset or zero (git-fixes). - net: delete redundant function declaration (git-fixes). - net: hns3: change affinity_mask to numa node range (bsc#1154353). - net: hns3: fix misuse vf id and vport id in some logs (bsc#1154353). - net: hns3: remove check VF uc mac exist when set by PF (bsc#1154353). - net: hso: fix control-request directions (git-fixes). - net: hso: fix muxed tty registration (git-fixes). - net: linkwatch: fix failure to restore device state across suspend/resume (bsc#1192511). - net: mana: Allow setting the number of queues while the NIC is down (jsc#SLE-18779, bsc#1185726). - net: mana: Fix memory leak in mana_hwc_create_wq (jsc#SLE-18779, bsc#1185726). - net: mana: Fix spelling mistake "calledd" -> "called" (jsc#SLE-18779, bsc#1185726). - net: mana: Fix the netdev_err()'s vPort argument in mana_init_port() (jsc#SLE-18779, bsc#1185726). - net: mana: Improve the HWC error handling (jsc#SLE-18779, bsc#1185726). - net: mana: Support hibernation and kexec (jsc#SLE-18779, bsc#1185726). - net: mana: Use kcalloc() instead of kzalloc() (jsc#SLE-18779, bsc#1185726). - net: pegasus: fix uninit-value in get_interrupt_interval (git-fixes). - net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() (git-fixes). - net: stmmac: add EHL 2.5Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL PSE0 PSE1 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL RGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL SGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add TGL SGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: create dwmac-intel.c to contain all Intel platform (bsc#1192691). - net: stmmac: pci: Add HAPS support using GMAC5 (bsc#1192691). - net: usb: lan78xx: lan78xx_phy_init(): use PHY_POLL instead of "0" if no IRQ is available (git-fixes). - net: usb: lan78xx: lan78xx_phy_init(): use PHY_POLL instead of "0" if no IRQ is available (git-fixes). - net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (git-fixes). - net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() (git-fixes). - net/mlx5: E-Switch, return error if encap isn't supported (jsc#SLE-15172). - net/mlx5e: reset XPS on error flow if netdev isn't registered yet (git-fixes). - net/sched: sch_ets: do not peek at classes beyond 'nbands' (bsc#1176774). - netfilter: ctnetlink: do not erase error code with EINVAL (bsc#1176447). - netfilter: ctnetlink: fix filtering with CTA_TUPLE_REPLY (bsc#1176447). - netfilter: flowtable: fix IPv6 tunnel addr match (bsc#1176447). - NFC: add NCI_UNREG flag to eliminate the race (git-fixes). - NFC: pn533: Fix double free when pn533_fill_fragment_skbs() fails (git-fixes). - NFC: reorder the logic in nfc_{un,}register_device (git-fixes). - NFC: reorganize the functions in nci_request (git-fixes). - nfp: checking parameter process for rx-usecs/tx-usecs is invalid (git-fixes). - nfp: Fix memory leak in nfp_cpp_area_cache_add() (git-fixes). - NFS: Do not set NFS_INO_DATA_INVAL_DEFER and NFS_INO_INVALID_DATA (git-fixes). - NFS: do not take i_rwsem for swap IO (bsc#1191876). - NFS: Fix deadlocks in nfs_scan_commit_list() (git-fixes). - NFS: Fix up commit deadlocks (git-fixes). - NFS: move generic_write_checks() call from nfs_file_direct_write() to nfs_file_write() (bsc#1191876). - nfsd: do not alloc under spinlock in rpc_parse_scope_id (git-fixes). - nfsd: fix error handling of register_pernet_subsys() in init_nfsd() (git-fixes). - nfsd4: Handle the NFSv4 READDIR 'dircount' hint being zero (git-fixes). - NFSv4: Fix a regression in nfs_set_open_stateid_locked() (git-fixes). - nvme-multipath: Skip not ready namespaces when revalidating paths (bsc#1191793 bsc#1192507 bsc#1192969). - nvme-pci: add NO APST quirk for Kioxia device (git-fixes). - objtool: Support Clang non-section symbols in ORC generation (bsc#1169514). - PCI: Add PCI_EXP_DEVCTL_PAYLOAD_* macros (git-fixes). - PCI: Mark Atheros QCA6174 to avoid bus reset (git-fixes). - PCI/MSI: Deal with devices lying about their MSI mask capability (git-fixes). - perf: Correctly handle failed perf_get_aux_event() (git-fixes). - perf/x86/intel: Fix unchecked MSR access error caused by VLBR_EVENT (git-fixes). - perf/x86/intel/uncore: Fix Intel ICX IIO event constraints (git-fixes). - perf/x86/intel/uncore: Fix M2M event umask for Ice Lake server (git-fixes). - perf/x86/intel/uncore: Fix the scale of the IMC free-running events (git-fixes). - perf/x86/intel/uncore: Support extra IMC channel on Ice Lake server (git-fixes). - perf/x86/vlbr: Add c->flags to vlbr event constraints (git-fixes). - platform/x86: hp_accel: Fix an error handling path in 'lis3lv02d_probe()' (git-fixes). - platform/x86: wmi: do not fail if disabling fails (git-fixes). - PM: hibernate: Get block device exclusively in swsusp_check() (git-fixes). - PM: hibernate: use correct mode for swsusp_close() (git-fixes). - pnfs/flexfiles: Fix misplaced barrier in nfs4_ff_layout_prepare_ds (git-fixes). - powerpc: fix unbalanced node refcount in check_kvm_guest() (jsc#SLE-15869 jsc#SLE-16321 git-fixes). - powerpc/iommu: Report the correct most efficient DMA mask for PCI devices (git-fixes). - powerpc/paravirt: correct preempt debug splat in vcpu_is_preempted() (bsc#1181148 ltc#190702 git-fixes). - powerpc/paravirt: vcpu_is_preempted() commentary (bsc#1181148 ltc#190702 git-fixes). - powerpc/perf: Fix cycles/instructions as PM_CYC/PM_INST_CMPL in power10 (jsc#SLE-13513 git-fixes). - powerpc/pseries: Move some PAPR paravirt functions to their own file (bsc#1181148 ltc#190702 git-fixes). - powerpc/watchdog: Avoid holding wd_smp_lock over printk and smp_send_nmi_ipi (bsc#1187541 ltc#192129). - powerpc/watchdog: Fix missed watchdog reset due to memory ordering race (bsc#1187541 ltc#192129). - powerpc/watchdog: Fix wd_smp_last_reset_tb reporting (bsc#1187541 ltc#192129). - powerpc/watchdog: read TB close to where it is used (bsc#1187541 ltc#192129). - powerpc/watchdog: tighten non-atomic read-modify-write access (bsc#1187541 ltc#192129). - printk: Remove printk.h inclusion in percpu.h (bsc#1192987). - qede: validate non LSO skb length (git-fixes). - r8152: limit the RX buffer size of RTL8153A for USB 2.0 (git-fixes). - r8169: Add device 10ec:8162 to driver r8169 (git-fixes). - RDMA/bnxt_re: Update statistics counter name (jsc#SLE-16649). - recordmcount.pl: fix typo in s390 mcount regex (bsc#1192267). - recordmcount.pl: look for jgnop instruction as well as bcrl on s390 (bsc#1192267). - reset: socfpga: add empty driver allowing consumers to probe (git-fixes). - ring-buffer: Protect ring_buffer_reset() from reentrancy (bsc#1179960). - rpm/*.spec.in: use buildroot macro instead of env variable The RPM_BUILD_ROOT variable is considered deprecated over a buildroot macro. future proof the spec files. - rpm/kernel-binary.spec.in: do not strip vmlinux again (bsc#1193306) After usrmerge, vmlinux file is not named vmlinux-lt;version>, but simply vmlinux. And this is not reflected in STRIP_KEEP_SYMTAB we set. So fix this by removing the dash... - rpm/kernel-obs-build.spec.in: move to zstd for the initrd Newer distros have capability to decompress zstd, which provides a 2-5% better compression ratio at very similar cpu overhead. Plus this tests the zstd codepaths now as well. - rt2x00: do not mark device gone on EPROTO errors during start (git-fixes). - rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() (bsc#1154353 bnc#1151927 5.3.9). - s390: mm: Fix secure storage access exception handling (git-fixes). - s390/bpf: Fix branch shortening during codegen pass (bsc#1193993). - s390/uv: fully validate the VMA before calling follow_page() (git-fixes). - scsi: iscsi: Adjust iface sysfs attr detection (git-fixes). - scsi: lpfc: Fix non-recovery of remote ports following an unsolicited LOGO (bsc#1189126). - scsi: mpi3mr: Fix duplicate device entries when scanning through sysfs (git-fixes). - scsi: mpt3sas: Fix kernel panic during drive powercycle test (git-fixes). - scsi: mpt3sas: Fix system going into read-only mode (git-fixes). - scsi: pm80xx: Do not call scsi_remove_host() in pm8001_alloc() (git-fixes). - scsi: qla2xxx: Fix gnl list corruption (git-fixes). - scsi: qla2xxx: Relogin during fabric disturbance (git-fixes). - scsi: qla2xxx: Turn off target reset during issue_lip (git-fixes). - serial: 8250_pci: Fix ACCES entries in pci_serial_quirks array (git-fixes). - serial: 8250_pci: rewrite pericom_do_set_divisor() (git-fixes). - serial: 8250: Fix RTS modem control while in rs485 mode (git-fixes). - serial: core: fix transmit-buffer reset and memleak (git-fixes). - smb2: clarify rc initialization in smb2_reconnect (bsc#1192606). - smb2: fix use-after-free in smb2_ioctl_query_info() (bsc#1192606). - smb3: add additional null check in SMB2_ioctl (bsc#1192606). - smb3: add additional null check in SMB2_open (bsc#1192606). - smb3: add additional null check in SMB2_tcon (bsc#1192606). - smb3: add additional null check in SMB311_posix_mkdir (bsc#1192606). - smb3: Add debug message for new file creation with idsfromsid mount option (bsc#1192606). - smb3: add debug messages for closing unmatched open (bsc#1164565). - smb3: add defines for new crypto algorithms (bsc#1192606). - smb3: Add defines for new information level, FileIdInformation (bsc#1164565). - smb3: add defines for new signing negotiate context (bsc#1192606). - smb3: add dynamic trace point to trace when credits obtained (bsc#1181507). - smb3: add dynamic trace points for socket connection (bsc#1192606). - smb3: add dynamic tracepoints for flush and close (bsc#1164565). - smb3: add indatalen that can be a non-zero value to calculation of credit charge in smb2 ioctl (bsc#1192606). - smb3: add missing flag definitions (bsc#1164565). - smb3: Add missing reparse tags (bsc#1164565). - smb3: add missing worker function for SMB3 change notify (bsc#1164565). - smb3: add mount option to allow forced caching of read only share (bsc#1164565). - smb3: add mount option to allow RW caching of share accessed by only 1 client (bsc#1164565). - smb3: Add new compression flags (bsc#1192606). - smb3: Add new info level for query directory (bsc#1192606). - smb3: add new module load parm enable_gcm_256 (bsc#1192606). - smb3: add new module load parm require_gcm_256 (bsc#1192606). - smb3: Add new parm "nodelete" (bsc#1192606). - smb3: add one more dynamic tracepoint missing from strict fsync path (bsc#1164565). - smb3: add rasize mount parameter to improve readahead performance (bsc#1192606). - smb3: add some missing definitions from MS-FSCC (bsc#1192606). - smb3: add some more descriptive messages about share when mounting cache=ro (bsc#1164565). - smb3: Add support for getting and setting SACLs (bsc#1192606). - smb3: Add support for lookup with posix extensions query info (bsc#1192606). - smb3: Add support for negotiating signing algorithm (bsc#1192606). - smb3: Add support for query info using posix extensions (level 100) (bsc#1192606). - smb3: add support for recognizing WSL reparse tags (bsc#1192606). - smb3: Add support for SMB311 query info (non-compounded) (bsc#1192606). - smb3: add support for stat of WSL reparse points for special file types (bsc#1192606). - smb3: add support for using info level for posix extensions query (bsc#1192606). - smb3: Add tracepoints for new compound posix query info (bsc#1192606). - smb3: Additional compression structures (bsc#1192606). - smb3: allow decryption keys to be dumped by admin for debugging (bsc#1164565). - smb3: allow disabling requesting leases (bnc#1151927 5.3.4). - smb3: allow dumping GCM256 keys to improve debugging of encrypted shares (bsc#1192606). - smb3: allow dumping keys for multiuser mounts (bsc#1192606). - smb3: allow parallelizing decryption of reads (bsc#1164565). - smb3: allow skipping signature verification for perf sensitive configurations (bsc#1164565). - smb3: allow uid and gid owners to be set on create with idsfromsid mount option (bsc#1192606). - smb3: avoid confusing warning message on mount to Azure (bsc#1192606). - smb3: Avoid Mid pending list corruption (bsc#1192606). - smb3: Backup intent flag missing from some more ops (bsc#1164565). - smb3: Call cifs reconnect from demultiplex thread (bsc#1192606). - smb3: change noisy error message to FYI (bsc#1192606). - smb3: cleanup some recent endian errors spotted by updated sparse (bsc#1164565). - smb3: correct server pointer dereferencing check to be more consistent (bsc#1192606). - smb3: correct smb3 ACL security descriptor (bsc#1192606). - smb3: default to minimum of two channels when multichannel specified (bsc#1192606). - smb3: display max smb3 requests in flight at any one time (bsc#1164565). - smb3: do not attempt multichannel to server which does not support it (bsc#1192606). - smb3: do not error on fsync when readonly (bsc#1192606). - smb3: do not fail if no encryption required but server does not support it (bsc#1192606). - smb3: do not log warning message if server does not populate salt (bsc#1192606). - smb3: do not setup the fscache_super_cookie until fsinfo initialized (bsc#1192606). - smb3: do not try to cache root directory if dir leases not supported (bsc#1192606). - smb3: dump in_send and num_waiters stats counters by default (bsc#1164565). - smb3: enable negotiating stronger encryption by default (bsc#1192606). - smb3: enable offload of decryption of large reads via mount option (bsc#1164565). - smb3: enable swap on SMB3 mounts (bsc#1192606). - smb3: extend fscache mount volume coherency check (bsc#1192606). - smb3: fix access denied on change notify request to some servers (bsc#1192606). - smb3: fix cached file size problems in duplicate extents (reflink) (bsc#1192606). - smb3: Fix crash in SMB2_open_init due to uninitialized field in compounding path (bsc#1164565). - smb3: fix crediting for compounding when only one request in flight (bsc#1181507). - smb3: fix default permissions on new files when mounting with modefromsid (bsc#1164565). - smb3: Fix ids returned in POSIX query dir (bsc#1192606). - smb3: fix incorrect number of credits when ioctl MaxOutputResponse > 64K (bsc#1192606). - smb3: fix leak in "open on server" perf counter (bnc#1151927 5.3.4). - smb3: Fix mkdir when idsfromsid configured on mount (bsc#1192606). - smb3: fix mode passed in on create for modetosid mount option (bsc#1164565). - smb3: fix mount failure to some servers when compression enabled (bsc#1192606). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1183540). - smb3: fix performance regression with setting mtime (bsc#1164565). - smb3: Fix persistent handles reconnect (bnc#1151927 5.3.11). - smb3: fix posix extensions mount option (bsc#1192606). - smb3: fix possible access to uninitialized pointer to DACL (bsc#1192606). - smb3: fix potential null dereference in decrypt offload (bsc#1164565). - smb3: fix problem with null cifs super block with previous patch (bsc#1164565). - smb3: fix readpage for large swap cache (bsc#1192606). - smb3: fix refcount underflow warning on unmount when no directory leases (bsc#1164565). - smb3: Fix regression in time handling (bsc#1164565). - smb3: fix signing verification of large reads (bsc#1154355). - smb3: fix stat when special device file and mounted with modefromsid (bsc#1192606). - smb3: fix typo in compression flag (bsc#1192606). - smb3: fix typo in header file (bsc#1192606). - smb3: fix typo in mount options displayed in /proc/mounts (bsc#1192606). - smb3: fix uninitialized value for port in witness protocol move (bsc#1192606). - smb3: fix unmount hang in open_shroot (bnc#1151927 5.3.4). - smb3: fix unneeded error message on change notify (bsc#1192606). - smb3: Handle error case during offload read path (bsc#1192606). - smb3: Honor 'handletimeout' flag for multiuser mounts (bsc#1176558). - smb3: Honor 'posix' flag for multiuser mounts (bsc#1176559). - smb3: Honor 'seal' flag for multiuser mounts (bsc#1176545). - smb3: Honor lease disabling for multiuser mounts (git-fixes). - smb3: Honor persistent/resilient handle flags for multiuser mounts (bsc#1176546). - smb3: if max_channels set to more than one channel request multichannel (bsc#1192606). - smb3: improve check for when we send the security descriptor context on create (bsc#1164565). - smb3: improve handling of share deleted (and share recreated) (bsc#1154355). - smb3: incorrect file id in requests compounded with open (bsc#1192606). - smb3: Incorrect size for netname negotiate context (bsc#1154355). - smb3: limit noisy error (bsc#1192606). - smb3: log warning if CSC policy conflicts with cache mount option (bsc#1164565). - smb3: Minor cleanup of protocol definitions (bsc#1192606). - smb3: minor update to compression header definitions (bsc#1192606). - smb3: missing ACL related flags (bsc#1164565). - smb3: negotiate current dialect (SMB3.1.1) when version 3 or greater requested (bsc#1192606). - smb3: only offload decryption of read responses if multiple requests (bsc#1164565). - smb3: pass mode bits into create calls (bsc#1164565). - smb3: prevent races updating CurrentMid (bsc#1192606). - smb3: print warning if server does not support requested encryption type (bsc#1192606). - smb3: print warning once if posix context returned on open (bsc#1164565). - smb3: query attributes on file close (bsc#1164565). - smb3: rc uninitialized in one fallocate path (bsc#1192606). - smb3: remind users that witness protocol is experimental (bsc#1192606). - smb3: remove confusing dmesg when mounting with encryption ("seal") (bsc#1164565). - smb3: remove confusing mount warning when no SPNEGO info on negprot rsp (bsc#1192606). - smb3: remove dead code for non compounded posix query info (bsc#1192606). - smb3: remove noisy debug message and minor cleanup (bsc#1164565). - smb3: remove overly noisy debug line in signing errors (bsc#1192606). - smb3: remove static checker warning (bsc#1192606). - smb3: remove trivial dfs compile warning (bsc#1192606, jsc#SLE-20042). - smb3: remove two unused variables (bsc#1192606). - smb3: remove unused flag passed into close functions (bsc#1164565). - smb3: rename nonces used for GCM and CCM encryption (bsc#1192606). - smb3: Resolve data corruption of TCP server info fields (bsc#1192606). - smb3: set COMPOUND_FID to FileID field of subsequent compound request (bsc#1192606). - smb3: set gcm256 when requested (bsc#1192606). - smb3: smbdirect support can be configured by default (bsc#1192606). - smb3: update comments clarifying SPNEGO info in negprot response (bsc#1192606). - smb3: update protocol header definitions based to include new flags (bsc#1192606). - smb3: update structures for new compression protocol definitions (bsc#1192606). - smb3: use SMB2_SIGNATURE_SIZE define (bsc#1192606). - smb3: warn on confusing error scenario with sec=krb5 (bsc#1176548). - smb3: when mounting with multichannel include it in requested capabilities (bsc#1192606). - smbdirect: missing rc checks while waiting for rdma events (bsc#1192606). - soc/tegra: Fix an error handling path in tegra_powergate_power_up() (git-fixes). - soc/tegra: pmc: Fix imbalanced clock disabling in error code path (git-fixes). - spi: bcm-qspi: Fix missing clk_disable_unprepare() on error in bcm_qspi_probe() (git-fixes). - spi: spl022: fix Microwire full duplex mode (git-fixes). - SUNRPC: improve 'swap' handling: scheduling and PF_MEMALLOC (bsc#1191876). - SUNRPC: remove scheduling boost for "SWAPPER" tasks (bsc#1191876). - SUNRPC/auth: async tasks mustn't block waiting for memory (bsc#1191876). - SUNRPC/call_alloc: async tasks mustn't block waiting for memory (bsc#1191876). - SUNRPC/xprt: async tasks mustn't block waiting for memory (bsc#1191876). - supported.conf: add pwm-rockchip References: jsc#SLE-22615 - swiotlb: avoid double free (git-fixes). - swiotlb: Fix the type of index (git-fixes). - TCON Reconnect during STATUS_NETWORK_NAME_DELETED (bsc#1192606). - tlb: mmu_gather: add tlb_flush_*_range APIs - tracing: Add length protection to histogram string copies (git-fixes). - tracing: Change STR_VAR_MAX_LEN (git-fixes). - tracing: Check pid filtering when creating events (git-fixes). - tracing: Fix pid filtering when triggers are attached (git-fixes). - tracing: use %ps format string to print symbols (git-fixes). - tracing/histogram: Do not copy the fixed-size char array field over the field size (git-fixes). - tty: hvc: replace BUG_ON() with negative return value (git-fixes). - tty: serial: msm_serial: Deactivate RX DMA for polling support (git-fixes). - tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc (git-fixes). - usb-storage: Add compatibility quirk flags for iODD 2531/2541 (git-fixes). - usb: chipidea: ci_hdrc_imx: fix potential error pointer dereference in probe (git-fixes). - usb: dwc2: gadget: Fix ISOC flow for elapsed frames (git-fixes). - usb: dwc2: hcd_queue: Fix use of floating point literal (git-fixes). - usb: host: ohci-tmio: check return value after calling platform_get_resource() (git-fixes). - usb: musb: tusb6010: check return value after calling platform_get_resource() (git-fixes). - usb: serial: option: add Fibocom FM101-GL variants (git-fixes). - usb: serial: option: add Telit LE910S1 0x9200 composition (git-fixes). - usb: typec: fusb302: Fix masking of comparator and bc_lvl interrupts (git-fixes). - usb: typec: tcpm: Wait in SNK_DEBOUNCED until disconnect (git-fixes). - usb: typec: tcpm: Wait in SNK_DEBOUNCED until disconnect (git-fixes). - usb: xhci: Enable runtime-pm by default on AMD Yellow Carp platform (git-fixes). - vfs: do not parse forbidden flags (bsc#1192606). - x86/amd_nb: Add AMD family 19h model 50h PCI ids (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - x86/cpu: Fix migration safety with X86_BUG_NULL_SEL (bsc#1152489). - x86/efi: Restore Firmware IDT before calling ExitBootServices() (git-fixes). - x86/entry: Add a fence for kernel entry SWAPGS in paranoid_entry() (bsc#1178134). - x86/mpx: Disable MPX for 32-bit userland (bsc#1193139). - x86/pkey: Fix undefined behaviour with PKRU_WD_BIT (bsc#1152489). - x86/pvh: add prototype for xen_pvh_init() (git-fixes). - x86/sev: Allow #VC exceptions on the VC2 stack (git-fixes). - x86/sev: Fix SEV-ES INS/OUTS instructions for word, dword, and qword (bsc#1178134). - x86/sev: Fix stack type check in vc_switch_off_ist() (git-fixes). - x86/xen: Add xenpv_restore_regs_and_return_to_usermode() (bsc#1152489). - x86/Xen: swap NX determination and GDT setup on BSP (git-fixes). - xen: sync include/xen/interface/io/ring.h with Xen's newest version (git-fixes). - xen/blkfront: do not take local copy of a request from the ring page (git-fixes). - xen/blkfront: do not trust the backend response data blindly (git-fixes). - xen/blkfront: read response from backend only once (git-fixes). - xen/netfront: disentangle tx_skb_freelist (git-fixes). - xen/netfront: do not read data from request on the ring page (git-fixes). - xen/netfront: do not trust the backend response data blindly (git-fixes). - xen/netfront: read response from backend only once (git-fixes). - xen/privcmd: fix error handling in mmap-resource processing (git-fixes). - xen/pvh: add missing prototype to header (git-fixes). - xen/x86: fix PV trap handling on secondary processors (git-fixes). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (bsc#1192569). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (bsc#1192569). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (git-fixes). - xhci: Fix USB 3.1 enumeration issues by increasing roothub power-on-good delay (git-fixes). - zram: fix return value on writeback_store (git-fixes). - zram: off by one in read_block_state() (git-fixes). cluster-md-kmp-default-5.3.18-59.40.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.40.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.40.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True kernel-debug-5.3.18-59.40.1.nosrc.rpm True kernel-debug-5.3.18-59.40.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.40.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.40.1.x86_64.rpm True kernel-default-5.3.18-59.40.1.nosrc.rpm True kernel-default-5.3.18-59.40.1.x86_64.rpm True kernel-default-base-5.3.18-59.40.1.18.25.1.src.rpm True kernel-default-base-5.3.18-59.40.1.18.25.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.40.1.18.25.1.x86_64.rpm True kernel-default-devel-5.3.18-59.40.1.x86_64.rpm True kernel-default-extra-5.3.18-59.40.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.40.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.40.1.x86_64.rpm True kernel-default-optional-5.3.18-59.40.1.x86_64.rpm True kernel-devel-5.3.18-59.40.1.noarch.rpm True kernel-docs-5.3.18-59.40.1.noarch.rpm True kernel-docs-5.3.18-59.40.1.nosrc.rpm True kernel-docs-html-5.3.18-59.40.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.40.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.40.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.40.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.40.1.x86_64.rpm True kernel-macros-5.3.18-59.40.1.noarch.rpm True kernel-obs-build-5.3.18-59.40.1.src.rpm True kernel-obs-build-5.3.18-59.40.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.40.1.src.rpm True kernel-obs-qa-5.3.18-59.40.1.x86_64.rpm True kernel-preempt-5.3.18-59.40.1.nosrc.rpm True kernel-preempt-5.3.18-59.40.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.40.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.40.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.40.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.40.1.x86_64.rpm True kernel-source-5.3.18-59.40.1.noarch.rpm True kernel-source-5.3.18-59.40.1.src.rpm True kernel-source-vanilla-5.3.18-59.40.1.noarch.rpm True kernel-syms-5.3.18-59.40.1.src.rpm True kernel-syms-5.3.18-59.40.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.40.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.40.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.40.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.40.1.s390x.rpm True dlm-kmp-default-5.3.18-59.40.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.40.1.s390x.rpm True kernel-default-5.3.18-59.40.1.s390x.rpm True kernel-default-base-5.3.18-59.40.1.18.25.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.40.1.18.25.1.s390x.rpm True kernel-default-devel-5.3.18-59.40.1.s390x.rpm True kernel-default-extra-5.3.18-59.40.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.40.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.40.1.s390x.rpm True kernel-default-optional-5.3.18-59.40.1.s390x.rpm True kernel-obs-build-5.3.18-59.40.1.s390x.rpm True kernel-obs-qa-5.3.18-59.40.1.s390x.rpm True kernel-syms-5.3.18-59.40.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.40.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.40.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.40.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.40.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.40.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.40.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.40.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.40.1.ppc64le.rpm True kernel-debug-5.3.18-59.40.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-default-5.3.18-59.40.1.ppc64le.rpm True kernel-default-base-5.3.18-59.40.1.18.25.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.40.1.18.25.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.40.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.40.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.40.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.40.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.40.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.40.1.ppc64le.rpm True kernel-syms-5.3.18-59.40.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.40.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.40.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.40.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.40.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.40.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True dtb-aarch64-5.3.18-59.40.1.src.rpm True dtb-al-5.3.18-59.40.1.aarch64.rpm True dtb-allwinner-5.3.18-59.40.1.aarch64.rpm True dtb-altera-5.3.18-59.40.1.aarch64.rpm True dtb-amd-5.3.18-59.40.1.aarch64.rpm True dtb-amlogic-5.3.18-59.40.1.aarch64.rpm True dtb-apm-5.3.18-59.40.1.aarch64.rpm True dtb-arm-5.3.18-59.40.1.aarch64.rpm True dtb-broadcom-5.3.18-59.40.1.aarch64.rpm True dtb-cavium-5.3.18-59.40.1.aarch64.rpm True dtb-exynos-5.3.18-59.40.1.aarch64.rpm True dtb-freescale-5.3.18-59.40.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.40.1.aarch64.rpm True dtb-lg-5.3.18-59.40.1.aarch64.rpm True dtb-marvell-5.3.18-59.40.1.aarch64.rpm True dtb-mediatek-5.3.18-59.40.1.aarch64.rpm True dtb-nvidia-5.3.18-59.40.1.aarch64.rpm True dtb-qcom-5.3.18-59.40.1.aarch64.rpm True dtb-renesas-5.3.18-59.40.1.aarch64.rpm True dtb-rockchip-5.3.18-59.40.1.aarch64.rpm True dtb-socionext-5.3.18-59.40.1.aarch64.rpm True dtb-sprd-5.3.18-59.40.1.aarch64.rpm True dtb-xilinx-5.3.18-59.40.1.aarch64.rpm True dtb-zte-5.3.18-59.40.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.40.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True kernel-64kb-5.3.18-59.40.1.aarch64.rpm True kernel-64kb-5.3.18-59.40.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.40.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.40.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.40.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.40.1.aarch64.rpm True kernel-default-5.3.18-59.40.1.aarch64.rpm True kernel-default-base-5.3.18-59.40.1.18.25.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.40.1.18.25.1.aarch64.rpm True kernel-default-devel-5.3.18-59.40.1.aarch64.rpm True kernel-default-extra-5.3.18-59.40.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.40.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.40.1.aarch64.rpm True kernel-default-optional-5.3.18-59.40.1.aarch64.rpm True kernel-obs-build-5.3.18-59.40.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.40.1.aarch64.rpm True kernel-preempt-5.3.18-59.40.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.40.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.40.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.40.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.40.1.aarch64.rpm True kernel-syms-5.3.18-59.40.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.40.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.40.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.40.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True openSUSE-SLE-15.3-2022-56 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2021-45485: Fixed an information leak because of certain use of a hash table which use IPv6 source addresses. (bsc#1194094) - CVE-2021-45486: Fixed an information leak because the hash table is very small in net/ipv4/route.c. (bnc#1194087). - CVE-2021-4001: Fixed a race condition when the EBPF map is frozen. (bsc#1192990) - CVE-2021-28715: Fixed an issue where a guest could force Linux netback driver to hog large amounts of kernel memory by do not queueing unlimited number of packages. (bsc#1193442) - CVE-2021-28714: Fixed an issue where a guest could force Linux netback driver to hog large amounts of kernel memory by fixing rx queue stall detection. (bsc#1193442) - CVE-2021-28713: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening hvc_xen against event channel storms. (bsc#1193440) - CVE-2021-28712: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening netfront against event channel storms. (bsc#1193440) - CVE-2021-28711: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening blkfront against event channel storms. (bsc#1193440) - CVE-2020-24504: Fixed an uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapter drivers that may have allowed an authenticated user to potentially enable denial of service via local access. (bnc#1182404) - CVE-2021-43975: Fixed a flaw in hw_atl_utils_fw_rpc_wait that could allow an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value. (bnc#1192845) - CVE-2021-43976: Fixed a flaw that could allow an attacker (who can connect a crafted USB device) to cause a denial of service. (bnc#1192847) - CVE-2021-4002: Added a missing TLB flush that could lead to leak or corruption of data in hugetlbfs. (bsc#1192946) - CVE-2020-27820: Fixed a vulnerability where a use-after-frees in nouveau's postclose() handler could happen if removing device. (bnc#1179599) - CVE-2021-33098: Fixed a potential denial of service in Intel(R) Ethernet ixgbe driver due to improper input validation. (bnc#1192877) The following non-security bugs were fixed: - ACPI: battery: Accept charges over the design capacity as full (git-fixes). - ACPI: PMIC: Fix intel_pmic_regs_handler() read accesses (git-fixes). - ACPICA: Avoid evaluating methods too early during system resume (git-fixes). - ALSA: ctxfi: Fix out-of-range access (git-fixes). - ALSA: gus: fix null pointer dereference on pointer block (git-fixes). - ALSA: hda: hdac_ext_stream: fix potential locking issues (git-fixes). - ALSA: hda: hdac_stream: fix potential locking issue in snd_hdac_stream_assign() (git-fixes). - ALSA: hda/realtek: Add a quirk for Acer Spin SP513-54N (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS UX550VE (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PC70HS (git-fixes). - ALSA: hda/realtek: Add quirk for HP EliteBook 840 G7 mute LED (git-fixes). - ALSA: ISA: not for M68K (git-fixes). - ALSA: synth: missing check for possible NULL after the call to kstrdup (git-fixes). - ALSA: timer: Fix use-after-free problem (git-fixes). - ALSA: timer: Unconditionally unlink slave instances, too (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum 400 (git-fixes). - ARM: 8970/1: decompressor: increase tag size (git-fixes). - ARM: 8974/1: use SPARSMEM_STATIC when SPARSEMEM is enabled (git-fixes) - ARM: 8986/1: hw_breakpoint: Do not invoke overflow handler on uaccess watchpoints (git-fixes) - ARM: 9007/1: l2c: fix prefetch bits init in L2X0_AUX_CTRL using DT (git-fixes) - ARM: 9019/1: kprobes: Avoid fortify_panic() when copying optprobe (git-fixes) - ARM: 9046/1: decompressor: Do not clear SCTLR.nTLSMD for ARMv7+ cores (git-fixes) - ARM: 9064/1: hw_breakpoint: Do not directly check the event's (git-fixes) - ARM: 9071/1: uprobes: Do not hook on thumb instructions (git-fixes) - ARM: 9081/1: fix gcc-10 thumb2-kernel regression (git-fixes) - ARM: 9091/1: Revert "mm: qsd8x50: Fix incorrect permission faults" (git-fixes) - ARM: 9133/1: mm: proc-macros: ensure *_tlb_fns are 4B aligned (git-fixes) - ARM: 9134/1: remove duplicate memcpy() definition (git-fixes) - ARM: 9139/1: kprobes: fix arch_init_kprobes() prototype (git-fixes) - ARM: 9141/1: only warn about XIP address when not compile testing (git-fixes) - ARM: 9155/1: fix early early_iounmap() (git-fixes) - ARM: at91: pm: add missing put_device() call in at91_pm_sram_init() (git-fixes) - ARM: at91: pm: of_node_put() after its usage (git-fixes) - ARM: at91: pm: use proper master clock register offset (git-fixes) - ARM: bcm: Select ARM_TIMER_SP804 for ARCH_BCM_NSP (git-fixes) - ARM: dts sunxi: Relax a bit the CMA pool allocation range (git-fixes) - ARM: dts: am335x-pocketbeagle: Fix mmc0 Write Protect (git-fixes) - ARM: dts: am335x: align ti,pindir-d0-out-d1-in property with dt-shema (git-fixes) - ARM: dts: am437x-idk-evm: Fix incorrect OPP node names (git-fixes) - ARM: dts: am437x-l4: fix typo in can@0 node (git-fixes) - ARM: dts: armada-38x: fix NETA lockup when repeatedly switching speeds (git-fixes) - ARM: dts: armada388-helios4: assign pinctrl to each fan (git-fixes) - ARM: dts: armada388-helios4: assign pinctrl to LEDs (git-fixes) - ARM: dts: aspeed: s2600wf: Fix VGA memory region location (git-fixes) - ARM: dts: aspeed: tiogapass: Remove vuart (git-fixes) - ARM: dts: at91-sama5d27_som1: fix phy address to 7 (git-fixes) - ARM: dts: at91: add pinctrl-{names, 0} for all gpios (git-fixes) - ARM: dts: at91: at91sam9rl: fix ADC triggers (git-fixes) - ARM: dts: at91: sama5d2_ptc_ek: fix sdmmc0 node description (git-fixes) - ARM: dts: at91: sama5d2_ptc_ek: fix vbus pin (git-fixes) - ARM: dts: at91: sama5d2_xplained: classd: pull-down the R1 and R3 lines (git-fixes) - ARM: dts: at91: sama5d2: fix CAN message ram offset and size (git-fixes) - ARM: dts: at91: sama5d2: map securam as device (git-fixes) - ARM: dts: at91: sama5d3_xplained: add pincontrol for USB Host (git-fixes) - ARM: dts: at91: sama5d4_xplained: add pincontrol for USB Host (git-fixes) - ARM: dts: at91: sama5d4: fix pinctrl muxing (git-fixes) - ARM: dts: at91: tse850: the emaclt;->phy interface is rmii (git-fixes) - ARM: dts: bcm: HR2: Fix PPI interrupt types (git-fixes) - ARM: dts: bcm: HR2: Fixed QSPI compatible string (git-fixes) - ARM: dts: bcm2835-rpi-zero-w: Fix led polarity (git-fixes) - ARM: dts: BCM5301X: Add interrupt properties to GPIO node (git-fixes) - ARM: dts: BCM5301X: Fix I2C controller interrupt (git-fixes) - ARM: dts: BCM5301X: Fixed QSPI compatible string (git-fixes) - ARM: dts: colibri-imx6ull: limit SDIO clock to 25MHz (git-fixes) - ARM: dts: Configure missing thermal interrupt for 4430 (git-fixes) - ARM: dts: dra76x: Fix mmc3 max-frequency (git-fixes) - ARM: dts: dra76x: m_can: fix order of clocks (git-fixes) - ARM: dts: dra7xx-clocks: Fixup IPU1 mux clock parent source (git-fixes) - ARM: dts: exynos: correct fuel gauge interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct MUIC interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Arndale (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Artik 5 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Monk (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Odroid X/U3 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Odroid XU3 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Rinato (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on SMDK5250 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Snow (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Spring (git-fixes) - ARM: dts: exynos: Fix GPIO polarity for thr GalaxyS3 CM36651 sensor's bus (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid HC1 (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid XU/XU3 (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid XU4 (git-fixes) - ARM: dts: exynos: fix roles of USB 3.0 ports on Odroid XU (git-fixes) - ARM: dts: exynos: fix USB 3.0 pins supply being turned off on Odroid (git-fixes) - ARM: dts: exynos: fix USB 3.0 VBUS control and over-current pins on (git-fixes) - ARM: dts: Fix dcan driver probe failed on am437x platform (git-fixes) - ARM: dts: Fix duovero smsc interrupt for suspend (git-fixes) - ARM: dts: gemini-rut1xx: remove duplicate ethernet node (git-fixes) - ARM: dts: gose: Fix ports node name for adv7180 (git-fixes) - ARM: dts: gose: Fix ports node name for adv7612 (git-fixes) - ARM: dts: imx: emcon-avari: Fix nxp,pca8574 #gpio-cells (git-fixes) - ARM: dts: imx: Fix USB host power regulator polarity on M53Menlo (git-fixes) - ARM: dts: imx: Swap M53Menlo pinctrl_power_button/pinctrl_power_out (git-fixes) - ARM: dts: imx27-phytec-phycard-s-rdk: Fix the I2C1 pinctrl entries (git-fixes) - ARM: dts: imx50-evk: Fix the chip select 1 IOMUX (git-fixes) - ARM: dts: imx6: pbab01: Set vmmc supply for both SD interfaces (git-fixes) - ARM: dts: imx6: phycore-som: fix arm and soc minimum voltage (git-fixes) - ARM: dts: imx6: phycore-som: fix emmc supply (git-fixes) - ARM: dts: imx6: Use gpc for FEC interrupt controller to fix wake on LAN (git-fixes) - ARM: dts: imx6dl-colibri-eval-v3: fix sram compatible properties (git-fixes). - ARM: dts: imx6dl-yapp4: Fix RGMII connection to QCA8334 switch (git-fixes) - ARM: dts: imx6dl-yapp4: Fix Ursa board Ethernet connection (git-fixes) - ARM: dts: imx6q-dhcom: Add gpios pinctrl for i2c bus recovery (git-fixes) - ARM: dts: imx6q-dhcom: Add PU,VDD1P1,VDD2P5 regulators (git-fixes) - ARM: dts: imx6q-dhcom: Fix ethernet plugin detection problems (git-fixes) - ARM: dts: imx6q-dhcom: Fix ethernet reset time properties (git-fixes) - ARM: dts: imx6qdl-gw52xx: fix duplicate regulator naming (git-fixes) - ARM: dts: imx6qdl-gw551x: Do not use 'simple-audio-card,dai-link' (git-fixes) - ARM: dts: imx6qdl-gw551x: fix audio SSI (git-fixes) - ARM: dts: imx6qdl-icore: Fix OTG_ID pin and sdcard detect (git-fixes) - ARM: dts: imx6qdl-kontron-samx6i: fix i2c_lcd/cam default status (git-fixes) - ARM: dts: imx6qdl-kontron-samx6i: fix I2C_PM scl pin (git-fixes) - ARM: dts: imx6qdl-sr-som: Increase the PHY reset duration to 10ms (git-fixes) - ARM: dts: imx6qdl-udoo: fix rgmii phy-mode for ksz9031 phy (git-fixes) - ARM: dts: imx6sl: fix rng node (git-fixes) - ARM: dts: imx6sx-sabreauto: Fix the phy-mode on fec2 (git-fixes) - ARM: dts: imx6sx-sdb: Fix the phy-mode on fec2 (git-fixes) - ARM: dts: imx6sx: Add missing UART RTS/CTS pins mux (git-fixes) - ARM: dts: imx6sx: fix the pad QSPI1B_SCLK mux mode for uart3 (git-fixes) - ARM: dts: imx6sx: Improve UART pins macro defines (git-fixes) - ARM: dts: imx7-colibri: Fix frequency for sd/mmc (git-fixes) - ARM: dts: imx7-colibri: fix muxing of usbc_det pin (git-fixes) - ARM: dts: imx7-colibri: prepare module device tree for FlexCAN (git-fixes) - ARM: dts: imx7d-meerkat96: Fix the 'tuning-step' property (git-fixes) - ARM: dts: imx7d-pico: Fix the 'tuning-step' property (git-fixes) - ARM: dts: imx7d: Correct speed grading fuse settings (git-fixes) - ARM: dts: imx7d: fix opp-supported-hw (git-fixes) - ARM: dts: imx7ulp: Correct gpio ranges (git-fixes) - ARM: dts: logicpd-som-lv-baseboard: Fix broken audio (git-fixes) - ARM: dts: logicpd-som-lv-baseboard: Fix missing video (git-fixes) - ARM: dts: logicpd-torpedo-baseboard: Fix broken audio (git-fixes) - ARM: dts: lpc32xx: Revert set default clock rate of HCLK PLL (git-fixes) - ARM: dts: ls1021a: fix QuadSPI-memory reg range (git-fixes) - ARM: dts: ls1021a: Restore MDIO compatible to gianfar (git-fixes) - ARM: dts: meson: fix PHY deassert timing requirements (git-fixes) - ARM: dts: meson8: remove two invalid interrupt lines from the GPU (git-fixes) - ARM: dts: meson8: Use a higher default GPU clock frequency (git-fixes) - ARM: dts: meson8b: ec100: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: meson8b: mxq: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: meson8b: odroidc1: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: mt7623: add missing pause for switchport (git-fixes) - ARM: dts: N900: fix onenand timings (git-fixes). - ARM: dts: NSP: Correct FA2 mailbox node (git-fixes) - ARM: dts: NSP: Disable PL330 by default, add dma-coherent property (git-fixes) - ARM: dts: NSP: Fixed QSPI compatible string (git-fixes) - ARM: dts: omap3-gta04a4: accelerometer irq fix (git-fixes) - ARM: dts: omap3430-sdp: Fix NAND device node (git-fixes) - ARM: dts: owl-s500: Fix incorrect PPI interrupt specifiers (git-fixes) - ARM: dts: oxnas: Fix clear-mask property (git-fixes) - ARM: dts: pandaboard: fix pinmux for gpio user button of Pandaboard (git-fixes) - ARM: dts: qcom: apq8064: Use 27MHz PXO clock as DSI PLL reference (git-fixes) - ARM: dts: qcom: msm8974: Add xo_board reference clock to DSI0 PHY (git-fixes) - ARM: dts: r7s9210: Remove bogus clock-names from OSTM nodes (git-fixes) - ARM: dts: r8a73a4: Add missing CMT1 interrupts (git-fixes) - ARM: dts: r8a7740: Add missing extal2 to CPG node (git-fixes) - ARM: dts: r8a7779, marzen: Fix DU clock names (git-fixes) - ARM: dts: Remove non-existent i2c1 from 98dx3236 (git-fixes) - ARM: dts: renesas: Fix IOMMU device node names (git-fixes) - ARM: dts: s5pv210: Set keep-power-in-suspend for SDHCI1 on Aries (git-fixes) - ARM: dts: socfpga: Align L2 cache-controller nodename with dtschema (git-fixes) - ARM: dts: socfpga: fix register entry for timer3 on Arria10 (git-fixes) - ARM: dts: stm32: fix a typo for DAC io-channel-cells on stm32f429 (git-fixes) - ARM: dts: stm32: fix a typo for DAC io-channel-cells on stm32h743 (git-fixes) - ARM: dts: sun6i: a31-hummingbird: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun7i: a20: bananapro: Fix ethernet phy-mode (git-fixes) - ARM: dts: sun7i: bananapi-m1-plus: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun7i: bananapi: Enable RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun7i: cubietruck: Enable RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun7i: pcduino3-nano: enable RGMII RX/TX delay on PHY (git-fixes) - ARM: dts: sun8i-a83t-tbs-a711: Fix USB OTG mode detection (git-fixes) - ARM: dts: sun8i-h2-plus-bananapi-m2-zero: Fix led polarity (git-fixes) - ARM: dts: sun8i: a83t: Enable both RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun8i: h3: orangepi-plus2e: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-berry: Fix dcdc1 regulator (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-ultra: Fix dcdc1 regulator (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-ultra: Fix ethernet node (git-fixes) - ARM: dts: sun8i: r40: Move AHCI device node based on address order (git-fixes) - ARM: dts: sun8i: v3s: fix GIC node memory range (git-fixes) - ARM: dts: sun8i: v40: bananapi-m2-berry: Fix ethernet node (git-fixes) - ARM: dts: sun9i: Enable both RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sunxi: bananapi-m2-plus-v1.2: Fix CPU supply voltages (git-fixes) - ARM: dts: sunxi: bananapi-m2-plus: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sunxi: Fix DE2 clocks register range (git-fixes) - ARM: dts: turris-omnia: add comphy handle to eth2 (git-fixes) - ARM: dts: turris-omnia: add SFP node (git-fixes) - ARM: dts: turris-omnia: configure LED[2]/INTn pin as interrupt pin (git-fixes) - ARM: dts: turris-omnia: describe switch interrupt (git-fixes) - ARM: dts: turris-omnia: enable HW buffer management (git-fixes) - ARM: dts: turris-omnia: fix hardware buffer management (git-fixes) - ARM: dts: uniphier: Change phy-mode to RGMII-ID to enable delay pins (git-fixes) - ARM: dts: uniphier: Set SCSSI clock and reset IDs for each channel (git-fixes). - ARM: dts: vf610-zii-dev-rev-b: Remove #address-cells and #size-cells (git-fixes) - ARM: dts: vfxxx: Add syscon compatible with OCOTP (git-fixes) - ARM: exynos: add missing of_node_put for loop iteration (git-fixes) - ARM: exynos: MCPM: Restore big.LITTLE cpuidle support (git-fixes) - ARM: footbridge: fix PCI interrupt mapping (git-fixes) - ARM: imx: add missing clk_disable_unprepare() (git-fixes) - ARM: imx: add missing iounmap() (git-fixes) - ARM: imx: build suspend-imx6.S with arm instruction set (git-fixes) - ARM: imx: fix missing 3rd argument in macro imx_mmdc_perf_init (git-fixes) - ARM: imx5: add missing put_device() call in imx_suspend_alloc_ocram() (git-fixes) - ARM: imx6: disable the GIC CPU interface before calling stby-poweroff (git-fixes) - ARM: mvebu: drop pointless check for coherency_base (git-fixes) - ARM: OMAP2+: Fix legacy mode dss_reset (git-fixes) - ARM: OMAP2+: omap_device: fix idling of devices during probe (git-fixes) - ARM: OMAP2+: pm33xx-core: Make am43xx_get_rtc_base_addr static (git-fixes) - ARM: p2v: fix handling of LPAE translation in BE mode (git-fixes) - ARM: s3c: irq-s3c24xx: Fix return value check for s3c24xx_init_intc() (git-fixes) - ARM: s3c24xx: fix missing system reset (git-fixes) - ARM: s3c24xx: fix mmc gpio lookup tables (git-fixes) - ARM: samsung: do not build plat/pm-common for Exynos (git-fixes) - ARM: samsung: fix PM debug build with DEBUG_LL but !MMU (git-fixes) - ARM: socfpga: PM: add missing put_device() call in socfpga_setup_ocram_self_refresh() (git-fixes) - ASoC: DAPM: Cover regression by kctl change notification fix (git-fixes). - ASoC: nau8824: Add DMI quirk mechanism for active-high jack-detect (git-fixes). - ASoC: qdsp6: q6routing: Conditionally reset FrontEnd Mixer (git-fixes). - ASoC: SOF: Intel: hda-dai: fix potential locking issue (git-fixes). - ASoC: topology: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ath: dfs_pattern_detector: Fix possible null-pointer dereference in channel_detector_create() (git-fixes). - ath10k: fix invalid dma_addr_t token assignment (git-fixes). - ath10k: high latency fixes for beacon buffer (git-fixes). - bfq: Limit number of requests consumed by each cgroup (bsc#1184318). - bfq: Store full bitmap depth in bfq_data (bsc#1184318). - bfq: Track number of allocated requests in bfq_entity (bsc#1184318). - block: Fix use-after-free issue accessing struct io_cq (bsc#1193042). - block: Provide blk_mq_sched_get_icq() (bsc#1184318). - Bluetooth: Add additional Bluetooth part for Realtek 8852AE (bsc#1193655). - Bluetooth: btrtl: Refine the ic_id_table for clearer and more regular (bsc#1193655). - Bluetooth: btusb: Add another Bluetooth part for Realtek 8852AE (bsc#1193655). - Bluetooth: btusb: Add the more support IDs for Realtek RTL8822CE (bsc#1193655). - Bluetooth: btusb: Add the new support ID for Realtek RTL8852A (bsc#1193655). - Bluetooth: btusb: btrtl: Add support for RTL8852A (bsc#1193655). - Bluetooth: fix use-after-free error in lock_sock_nested() (git-fixes). - bnxt_en: reject indirect blk offload when hw-tc-offload is off (jsc#SLE-8372 bsc#1153275). - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (git-fixes). - bpf, arm: Fix register clobbering in div/mod implementation (git-fixes) - bpf, s390: Fix potential memory leak about jit_data (git-fixes). - bpf, x86: Fix "no previous prototype" warning (git-fixes). - brcmfmac: Add DMI nvram filename quirk for Cyberbook T116 tablet (git-fixes). - btrfs: do not ignore error from btrfs_next_leaf() when inserting checksums (bsc#1193002). - btrfs: fix fsync failure and transaction abort after writes to prealloc extents (bsc#1193002). - btrfs: fix lost inode on log replay after mix of fsync, rename and inode eviction (bsc#1192998). - btrfs: fix race causing unnecessary inode logging during link and rename (bsc#1192998). - btrfs: make checksum item extension more efficient (bsc#1193002). - cfg80211: call cfg80211_stop_ap when switch from P2P_GO type (git-fixes). - cifs: add a debug macro that prints \\server\share for errors (bsc#1164565). - cifs: add a function to get a cached dir based on its dentry (bsc#1192606). - cifs: add a helper to find an existing readable handle to a file (bsc#1154355). - cifs: add a timestamp to track when the lease of the cached dir was taken (bsc#1192606). - cifs: add an smb3_fs_context to cifs_sb (bsc#1192606). - cifs: add FALLOC_FL_INSERT_RANGE support (bsc#1192606). - cifs: add files to host new mount api (bsc#1192606). - cifs: add fs_context param to parsing helpers (bsc#1192606). - cifs: Add get_security_type_str function to return sec type (bsc#1192606). - cifs: add initial reconfigure support (bsc#1192606). - cifs: add missing mount option to /proc/mounts (bsc#1164565). - cifs: add missing parsing of backupuid (bsc#1192606). - cifs: Add missing sentinel to smb3_fs_parameters (bsc#1192606). - cifs: add mount parameter tcpnodelay (bsc#1192606). - cifs: add multichannel mount options and data structs (bsc#1192606). - cifs: add new debugging macro cifs_server_dbg (bsc#1164565). - cifs: Add new mount parameter "acdirmax" to allow caching directory metadata (bsc#1192606). - cifs: Add new parameter "acregmax" for distinct file and directory metadata timeout (bsc#1192606). - cifs: add NULL check for ses->tcon_ipc (bsc#1178270). - cifs: add passthrough for smb2 setinfo (bsc#1164565). - cifs: add server param (bsc#1192606). - cifs: add shutdown support (bsc#1192606). - cifs: add smb2 POSIX info level (bsc#1164565). - cifs: add SMB2_open() arg to return POSIX data (bsc#1164565). - cifs: add SMB3 change notification support (bsc#1164565). - cifs: add support for FALLOC_FL_COLLAPSE_RANGE (bsc#1192606). - cifs: add support for fallocate mode 0 for non-sparse files (bsc#1164565). - cifs: add support for flock (bsc#1164565). - cifs: Add support for setting owner info, dos attributes, and create time (bsc#1164565). - cifs: Add tracepoints for errors on flush or fsync (bsc#1164565). - cifs: Add witness information to debug data dump (bsc#1192606). - cifs: add witness mount option and data structs (bsc#1192606). - cifs: added WARN_ON for all the count decrements (bsc#1192606). - cifs: Adjust indentation in smb2_open_file (bsc#1164565). - cifs: Adjust key sizes and key generation routines for AES256 encryption (bsc#1192606). - cifs: allocate buffer in the caller of build_path_from_dentry() (bsc#1192606). - cifs: Allocate crypto structures on the fly for calculating signatures of incoming packets (bsc#1192606). - cifs: Allocate encryption header through kmalloc (bsc#1192606). - cifs: allow chmod to set mode bits using special sid (bsc#1164565). - cifs: allow syscalls to be restarted in __smb_send_rqst() (bsc#1176956). - cifs: allow unlock flock and OFD lock across fork (bsc#1192606). - cifs: Always update signing key of first channel (bsc#1192606). - cifs: ask for more credit on async read/write code paths (bsc#1192606). - cifs: Assign boolean values to a bool variable (bsc#1192606). - cifs: Avoid doing network I/O while holding cache lock (bsc#1164565). - cifs: Avoid error pointer dereference (bsc#1192606). - cifs: avoid extra calls in posix_info_parse (bsc#1192606). - cifs: Avoid field over-reading memcpy() (bsc#1192606). - cifs: avoid starvation when refreshing dfs cache (bsc#1185902). - cifs: avoid using MID 0xFFFF (bnc#1151927 5.3.8). - cifs: call wake_up(server->response_q) inside of cifs_reconnect() (bsc#1164565). - cifs: change confusing field serverName (to ip_addr) (bsc#1192606). - cifs: change format of CIFS_FULL_KEY_DUMP ioctl (bsc#1192606). - cifs: change noisy error message to FYI (bsc#1181507). - cifs: Change SIDs in ACEs while transferring file ownership (bsc#1192606). - cifs: check all path components in resolved dfs target (bsc#1181710). - cifs: check new file size when extending file by fallocate (bsc#1192606). - cifs: check pointer before freeing (bsc#1183534). - cifs: check the timestamp for the cached dirent when deciding on revalidate (bsc#1192606). - cifs: cifs_md4 convert to SPDX identifier (bsc#1192606). - cifs: cifspdu.h: Replace one-element array with flexible-array member (bsc#1192606). - cifs: cifspdu.h: Replace zero-length array with flexible-array member (bsc#1192606). - cifs: cifsssmb: remove redundant assignment to variable ret (bsc#1164565). - cifs: clarify comment about timestamp granularity for old servers (bsc#1192606). - cifs: clarify hostname vs ip address in /proc/fs/cifs/DebugData (bsc#1192606). - cifs: Clarify SMB1 code for delete (bsc#1192606). - cifs: Clarify SMB1 code for POSIX Create (bsc#1192606). - cifs: Clarify SMB1 code for POSIX delete file (bsc#1192606). - cifs: Clarify SMB1 code for POSIX Lock (bsc#1192606). - cifs: Clarify SMB1 code for rename open file (bsc#1192606). - cifs: Clarify SMB1 code for SetFileSize (bsc#1192606). - cifs: clarify SMB1 code for UnixCreateHardLink (bsc#1192606). - cifs: Clarify SMB1 code for UnixCreateSymLink (bsc#1192606). - cifs: Clarify SMB1 code for UnixSetPathInfo (bsc#1192606). - cifs: Clean up DFS referral cache (bsc#1164565). - cifs: cleanup a few le16 vs. le32 uses in cifsacl.c (bsc#1192606). - cifs: cleanup misc.c (bsc#1192606). - cifs: clear PF_MEMALLOC before exiting demultiplex thread (bsc#1192606). - cifs: Close cached root handle only if it had a lease (bsc#1164565). - cifs: Close open handle after interrupted close (bsc#1164565). - cifs: close the shared root handle on tree disconnect (bsc#1164565). - cifs: compute full_path already in cifs_readdir() (bsc#1192606). - cifs: connect individual channel servers to primary channel server (bsc#1192606). - cifs: connect: style: Simplify bool comparison (bsc#1192606). - cifs: constify get_normalized_path() properly (bsc#1185902). - cifs: constify path argument of ->make_node() (bsc#1192606). - cifs: constify pathname arguments in a bunch of helpers (bsc#1192606). - cifs: Constify static struct genl_ops (bsc#1192606). - cifs: convert list_for_each to entry variant (bsc#1192606, jsc#SLE-20042). - cifs: convert list_for_each to entry variant in cifs_debug.c (bsc#1192606). - cifs: convert list_for_each to entry variant in smb2misc.c (bsc#1192606). - cifs: convert revalidate of directories to using directory metadata cache timeout (bsc#1192606). - cifs: convert to use be32_add_cpu() (bsc#1192606). - cifs: Convert to use the fallthrough macro (bsc#1192606). - cifs: correct comments explaining internal semaphore usage in the module (bsc#1192606). - cifs: correct four aliased mount parms to allow use of previous names (bsc#1192606). - cifs: create a helper function to parse the query-directory response buffer (bsc#1164565). - cifs: create a helper to find a writeable handle by path name (bsc#1154355). - cifs: create a MD4 module and switch cifs.ko to use it (bsc#1192606). - cifs: Create a new shared file holding smb2 pdu definitions (bsc#1192606). - cifs: create sd context must be a multiple of 8 (bsc#1192606). - cifs: Deal with some warnings from W=1 (bsc#1192606). - cifs: Delete a stray unlock in cifs_swn_reconnect() (bsc#1192606). - cifs: delete duplicated words in header files (bsc#1192606). - cifs: detect dead connections only when echoes are enabled (bsc#1192606). - cifs: Display local UID details for SMB sessions in DebugData (bsc#1192606). - cifs: do d_move in rename (bsc#1164565). - cifs: do not allow changing posix_paths during remount (bsc#1192606). - cifs: do not cargo-cult strndup() (bsc#1185902). - cifs: do not create a temp nls in cifs_setup_ipc (bsc#1192606). - cifs: do not disable noperm if multiuser mount option is not provided (bsc#1192606). - cifs: Do not display RDMA transport on reconnect (bsc#1164565). - cifs: do not duplicate fscache cookie for secondary channels (bsc#1192606). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (git-fixes). - cifs: do not ignore the SYNC flags in getattr (bsc#1164565). - cifs: do not leak -EAGAIN for stat() during reconnect (bsc#1164565). - cifs: Do not leak EDEADLK to dgetents64 for STATUS_USER_SESSION_DELETED (bsc#1192606). - cifs: Do not miss cancelled OPEN responses (bsc#1164565). - cifs: do not negotiate session if session already exists (bsc#1192606). - cifs: do not send close in compound create+close requests (bsc#1181507). - cifs: do not send tree disconnect to ipc shares (bsc#1185902). - cifs: do not set ->i_mode of something we had not created (bsc#1192606). - cifs: do not share tcons with DFS (bsc#1178270). - cifs: do not share tcp servers with dfs mounts (bsc#1185902). - cifs: do not share tcp sessions of dfs connections (bsc#1185902). - cifs: do not use 'pre:' for MODULE_SOFTDEP (bsc#1164565). - cifs: Do not use iov_iter::type directly (bsc#1192606). - cifs: Do not use the original cruid when following DFS links for multiuser mounts (bsc#1192606). - cifs: document and cleanup dfs mount (bsc#1178270). - cifs: dump channel info in DebugData (bsc#1192606). - cifs: dump Security Type info in DebugData (bsc#1192606). - cifs: dump the session id and keys also for SMB2 sessions (bsc#1192606). - cifs: enable change notification for SMB2.1 dialect (bsc#1164565). - cifs: enable extended stats by default (bsc#1192606). - cifs: Enable sticky bit with cifsacl mount option (bsc#1192606). - cifs: ensure correct super block for DFS reconnect (bsc#1178270). - cifs: escape spaces in share names (bsc#1192606). - cifs: export supported mount options via new mount_params /proc file (bsc#1192606). - cifs: fail i/o on soft mounts if sessionsetup errors out (bsc#1164565). - cifs: fiemap: do not return EINVAL if get nothing (bsc#1192606). - cifs: fix a comment for the timeouts when sending echos (bsc#1164565). - cifs: fix a memleak with modefromsid (bsc#1192606). - cifs: fix a sign extension bug (bsc#1192606). - cifs: fix a white space issue in cifs_get_inode_info() (bsc#1164565). - cifs: fix allocation size on newly created files (bsc#1192606). - cifs: Fix an error pointer dereference in cifs_mount() (bsc#1178270). - cifs: Fix atime update check vs mtime (bsc#1164565). - cifs: Fix bug which the return value by asynchronous read is error (bsc#1192606). - cifs: Fix cached_fid refcnt leak in open_shroot (bsc#1192606). - cifs: fix channel signing (bsc#1192606). - cifs: fix check of dfs interlinks (bsc#1185902). - cifs: fix check of tcon dfs in smb1 (bsc#1178270). - cifs: Fix chmod with modefromsid when an older ACE already exists (bsc#1192606). - cifs: fix chown and chgrp when idsfromsid mount option enabled (bsc#1192606). - cifs: Fix cifsacl ACE mask for group and others (bsc#1192606). - cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs (bnc#1151927 5.3.10). - cifs: fix credit accounting for extra channel (bsc#1192606). - cifs: Fix data inconsistent when punch hole (bsc#1176544). - cifs: Fix data inconsistent when zero file range (bsc#1176536). - cifs: fix dereference on ses before it is null checked (bsc#1164565). - cifs: fix dfs domain referrals (bsc#1192606). - cifs: fix DFS failover (bsc#1192606). - cifs: fix DFS mount with cifsacl/modefromsid (bsc#1178270). - cifs: fix dfs-links (bsc#1192606). - cifs: fix doc warnings in cifs_dfs_ref.c (bsc#1192606). - cifs: Fix double add page to memcg when cifs_readpages (bsc#1192606). - cifs: fix double free error on share and prefix (bsc#1178270). - cifs: fix double-put on late allocation failure (bsc#1192606). - cifs: Fix fall-through warnings for Clang (bsc#1192606). - cifs: fix fallocate when trying to allocate a hole (bsc#1192606). - cifs: fix gcc warning in sid_to_id (bsc#1192606). - cifs: fix handling of escaped ',' in the password mount argument (bsc#1192606). - cifs: Fix in error types returned for out-of-credit situations (bsc#1192606). - cifs: Fix incomplete memory allocation on setxattr path (bsc#1179211). - cifs: Fix inconsistent indenting (bsc#1192606). - cifs: Fix inconsistent IS_ERR and PTR_ERR (bsc#1192606). - cifs: fix incorrect check for null pointer in header_assemble (bsc#1192606). - cifs: fix incorrect kernel doc comments (bsc#1192606). - cifs: fix interrupted close commands (git-fixes). - cifs: fix ipv6 formating in cifs_ses_add_channel (bsc#1192606). - cifs: fix leak in cifs_smb3_do_mount() ctx (bsc#1192606). - cifs: Fix leak when handling lease break for cached root fid (bsc#1176242). - cifs: fix leaked reference on requeued write (bsc#1178270). - cifs: Fix lookup of root ses in DFS referral cache (bsc#1164565). - cifs: Fix lookup of SMB connections on multichannel (bsc#1192606). - cifs: fix max ea value size (bnc#1151927 5.3.4). - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() (bsc#1164565). - cifs: fix memory leak in smb2_copychunk_range (git-fixes). - cifs: fix memory leak of smb3_fs_context_dup::server_hostname (bsc#1192606). - cifs: fix minor typos in comments and log messages (bsc#1192606). - cifs: Fix missed free operations (bnc#1151927 5.3.8). - cifs: fix missing null session check in mount (bsc#1192606). - cifs: fix missing spinlock around update to ses->status (bsc#1192606). - cifs: fix misspellings using codespell tool (bsc#1192606). - cifs: fix mode bits from dir listing when mounted with modefromsid (bsc#1164565). - cifs: Fix mode output in debugging statements (bsc#1164565). - cifs: fix mount option display for sec=krb5i (bsc#1161907). - cifs: Fix mount options set in automount (bsc#1164565). - cifs: fix mounts to subdirectories of target (bsc#1192606). - cifs: fix nodfs mount option (bsc#1181710). - cifs: fix NULL dereference in match_prepath (bsc#1164565). - cifs: fix NULL dereference in smb2_check_message() (bsc#1192606). - cifs: Fix null pointer check in cifs_read (bsc#1192606). - cifs: Fix NULL pointer dereference in mid callback (bsc#1164565). - cifs: Fix NULL-pointer dereference in smb2_push_mandatory_locks (bnc#1151927 5.3.16). - cifs: Fix oplock handling for SMB 2.1+ protocols (bnc#1151927 5.3.4). - cifs: fix out-of-bound memory access when calling smb3_notify() at mount point (bsc#1192606). - cifs: fix path comparison and hash calc (bsc#1185902). - cifs: fix possible uninitialized access and race on iface_list (bsc#1192606). - cifs: Fix potential deadlock when updating vol in cifs_reconnect() (bsc#1164565). - cifs: fix potential mismatch of UNC paths (bsc#1164565). - cifs: Fix potential softlockups while refreshing DFS cache (bsc#1164565). - cifs: fix potential use-after-free bugs (bsc#1192606, jsc#SLE-20042). - cifs: fix potential use-after-free in cifs_echo_request() (bsc#1139944). - cifs: Fix preauth hash corruption (git-fixes). - cifs: fix print of hdr_flags in dfscache_proc_show() (bsc#1192606, jsc#SLE-20042). - cifs: fix reference leak for tlink (bsc#1192606). - cifs: fix regression when mounting shares with prefix paths (bsc#1192606). - cifs: fix rename() by ensuring source handle opened with DELETE bit (bsc#1164565). - cifs: Fix resource leak (bsc#1192606). - cifs: Fix retrieval of DFS referrals in cifs_mount() (bsc#1164565). - cifs: Fix retry mid list corruption on reconnects (bnc#1151927 5.3.10). - cifs: Fix return value in __update_cache_entry (bsc#1164565). - cifs: fix rsize/wsize to be negotiated values (bsc#1192606). - cifs: fix SMB1 error path in cifs_get_file_info_unix (bsc#1192606). - cifs: Fix SMB2 oplock break processing (bsc#1154355 bnc#1151927 5.3.16). - cifs: fix soft mounts hanging in the reconnect code (bsc#1164565). - cifs: fix soft mounts hanging in the reconnect code (bsc#1164565). - cifs: Fix some error pointers handling detected by static checker (bsc#1192606). - cifs: Fix spelling of 'security' (bsc#1192606). - cifs: fix string declarations and assignments in tracepoints (bsc#1192606). - cifs: Fix support for remount when not changing rsize/wsize (bsc#1192606). - cifs: Fix task struct use-after-free on reconnect (bsc#1164565). - cifs: fix the out of range assignment to bit fields in parse_server_interfaces (bsc#1192606). - cifs: Fix the target file was deleted when rename failed (bsc#1192606). - cifs: fix trivial typo (bsc#1192606). - cifs: fix uninitialised lease_key in open_shroot() (bsc#1178270). - cifs: fix uninitialized variable in smb3_fs_context_parse_param (bsc#1192606). - cifs: fix unitialized variable poential problem with network I/O cache lock patch (bsc#1164565). - cifs: Fix unix perm bits to cifsacl conversion for "other" bits (bsc#1192606). - cifs: fix unneeded null check (bsc#1192606). - cifs: fix use after free in cifs_smb3_do_mount() (bsc#1192606). - cifs: Fix use after free of file info structures (bnc#1151927 5.3.8). - cifs: Fix use-after-free bug in cifs_reconnect() (bsc#1164565). - cifs: fix wrong release in sess_alloc_buffer() failed path (bsc#1192606). - cifs: for compound requests, use open handle if possible (bsc#1192606). - cifs: Force reval dentry if LOOKUP_REVAL flag is set (bnc#1151927 5.3.7). - cifs: Force revalidate inode when dentry is stale (bnc#1151927 5.3.7). - cifs: fork arc4 and create a separate module for it for cifs and other users (bsc#1192606). - cifs: get mode bits from special sid on stat (bsc#1164565). - cifs: get rid of @noreq param in __dfs_cache_find() (bsc#1185902). - cifs: get rid of cifs_sb->mountdata (bsc#1192606). - cifs: Get rid of kstrdup_const()'d paths (bsc#1164565). - cifs: get rid of unused parameter in reconn_setup_dfs_targets() (bsc#1178270). - cifs: Grab a reference for the dentry of the cached directory during the lifetime of the cache (bsc#1192606). - cifs: Gracefully handle QueryInfo errors during open (bnc#1151927 5.3.7). - cifs: handle -EINTR in cifs_setattr (bsc#1192606). - cifs: handle "guest" mount parameter (bsc#1192606). - cifs: handle "nolease" option for vers=1.0 (bsc#1192606). - cifs: handle different charsets in dfs cache (bsc#1185902). - cifs: handle empty list of targets in cifs_reconnect() (bsc#1178270). - cifs: handle ERRBaduid for SMB1 (bsc#1192606). - cifs: handle hostnames that resolve to same ip in failover (bsc#1178270). - cifs: handle prefix paths in reconnect (bsc#1164565). - cifs: handle reconnect of tcon when there is no cached dfs referral (bsc#1192606). - cifs: handle RESP_GET_DFS_REFERRAL.PathConsumed in reconnect (bsc#1178270). - cifs: Handle witness client move notification (bsc#1192606). - cifs: have ->mkdir() handle race with another client sanely (bsc#1192606). - cifs: have cifs_fattr_to_inode() refuse to change type on live inode (bsc#1192606). - cifs: Identify a connection by a conn_id (bsc#1192606). - cifs: If a corrupted DACL is returned by the server, bail out (bsc#1192606). - cifs: ignore auto and noauto options if given (bsc#1192606). - cifs: ignore cached share root handle closing errors (bsc#1166780). - cifs: improve fallocate emulation (bsc#1192606). - cifs: improve read performance for page size 64KB cache=strict vers=2.1+ (bsc#1192606). - cifs: In the new mount api we get the full devname as source= (bsc#1192606). - cifs: Increment num_remote_opens stats counter even in case of smb2_query_dir_first (bsc#1192606). - cifs: Initialize filesystem timestamp ranges (bsc#1164565). - cifs: introduce cifs_ses_mark_for_reconnect() helper (bsc#1192606). - cifs: introduce helper for finding referral server (bsc#1181710). - cifs: Introduce helpers for finding TCP connection (bsc#1164565). - cifs: introduce new helper for cifs_reconnect() (bsc#1192606, jsc#SLE-20042). - cifs: keep referral server sessions alive (bsc#1185902). - cifs: log mount errors using cifs_errorf() (bsc#1192606). - cifs: log warning message (once) if out of disk space (bsc#1164565). - cifs: make build_path_from_dentry() return const char * (bsc#1192606). - cifs: make const array static, makes object smaller (bsc#1192606). - cifs: Make extract_hostname function public (bsc#1192606). - cifs: Make extract_sharename function public (bsc#1192606). - cifs: make fs_context error logging wrapper (bsc#1192606). - cifs: make locking consistent around the server session status (bsc#1192606). - cifs: make multichannel warning more visible (bsc#1192606). - cifs: Make SMB2_notify_init static (bsc#1164565). - cifs: make sure we do not overflow the max EA buffer size (bsc#1164565). - cifs: make use of cap_unix(ses) in cifs_reconnect_tcon() (bsc#1164565). - cifs: map STATUS_ACCOUNT_LOCKED_OUT to -EACCES (bsc#1192606). - cifs: merge __{cifs,smb2}_reconnect[_tcon]() into cifs_tree_connect() (bsc#1178270). - cifs: Merge is_path_valid() into get_normalized_path() (bsc#1164565). - cifs: minor fix to two debug messages (bsc#1192606). - cifs: minor kernel style fixes for comments (bsc#1192606). - cifs: minor simplification to smb2_is_network_name_deleted (bsc#1192606). - cifs: minor update to comments around the cifs_tcp_ses_lock mutex (bsc#1192606). - cifs: minor updates to Kconfig (bsc#1192606). - cifs: misc: Use array_size() in if-statement controlling expression (bsc#1192606). - cifs: missed ref-counting smb session in find (bsc#1192606). - cifs: missing null check for newinode pointer (bsc#1192606). - cifs: missing null pointer check in cifs_mount (bsc#1185902). - cifs: modefromsid: make room for 4 ACE (bsc#1164565). - cifs: modefromsid: write mode ACE first (bsc#1164565). - cifs: move [brw]size from cifs_sb to cifs_sb->ctx (bsc#1192606). - cifs: move cache mount options to fs_context.ch (bsc#1192606). - cifs: move cifs_cleanup_volume_info[_content] to fs_context.c (bsc#1192606). - cifs: move cifs_parse_devname to fs_context.c (bsc#1192606). - cifs: move cifsFileInfo_put logic into a work-queue (bsc#1154355). - cifs: move debug print out of spinlock (bsc#1192606). - cifs: Move more definitions into the shared area (bsc#1192606). - cifs: move NEGOTIATE_PROTOCOL definitions out into the common area (bsc#1192606). - cifs: move security mount options into fs_context.ch (bsc#1192606). - cifs: move SMB FSCTL definitions to common code (bsc#1192606). - cifs: move smb version mount options into fs_context.c (bsc#1192606). - cifs: Move SMB2_Create definitions to the shared area (bsc#1192606). - cifs: move some variables off the stack in smb2_ioctl_query_info (bsc#1192606). - cifs: move the check for nohandlecache into open_shroot (bsc#1192606). - cifs: move the enum for cifs parameters into fs_context.h (bsc#1192606). - cifs: move update of flags into a separate function (bsc#1192606). - cifs: multichannel: always zero struct cifs_io_parms (bsc#1192606). - cifs: multichannel: move channel selection above transport layer (bsc#1192606). - cifs: multichannel: move channel selection in function (bsc#1192606). - cifs: multichannel: try to rebind when reconnecting a channel (bsc#1192606). - cifs: multichannel: use pointer for binding channel (bsc#1192606). - cifs: mute -Wunused-const-variable message (bnc#1151927 5.3.9). - cifs: New optype for session operations (bsc#1181507). - cifs: nosharesock should be set on new server (bsc#1192606). - cifs: nosharesock should not share socket with future sessions (bsc#1192606). - cifs: On cifs_reconnect, resolve the hostname again (bsc#1192606). - cifs: only update prefix path of DFS links in cifs_tree_connect() (bsc#1178270). - cifs: only write 64kb at a time when fallocating a small region of a file (bsc#1192606). - cifs: Optimize readdir on reparse points (bsc#1164565). - cifs: pass a path to open_shroot and check if it is the root or not (bsc#1192606). - cifs: pass the dentry instead of the inode down to the revalidation check functions (bsc#1192606). - cifs: plumb smb2 POSIX dir enumeration (bsc#1164565). - cifs: populate server_hostname for extra channels (bsc#1192606). - cifs: potential unintitliazed error code in cifs_getattr() (bsc#1164565). - cifs: prepare SMB2_Flush to be usable in compounds (bsc#1154355). - cifs: prepare SMB2_query_directory to be used with compounding (bsc#1164565). - cifs: prevent NULL deref in cifs_compose_mount_options() (bsc#1185902). - cifs: prevent truncation from long to int in wait_for_free_credits (bsc#1192606). - cifs: print MIDs in decimal notation (bsc#1181507). - cifs: Print the address and port we are connecting to in generic_ip_connect() (bsc#1192606). - cifs: print warning mounting with vers=1.0 (bsc#1164565). - cifs: properly invalidate cached root handle when closing it (bsc#1192606). - cifs: Properly process SMB3 lease breaks (bsc#1164565). - cifs: protect session channel fields with chan_lock (bsc#1192606). - cifs: protect srv_count with cifs_tcp_ses_lock (bsc#1192606). - cifs: protect updating server->dstaddr with a spinlock (bsc#1192606). - cifs: Re-indent cifs_swn_reconnect() (bsc#1192606). - cifs: reduce number of referral requests in DFS link lookups (bsc#1178270). - cifs: reduce stack use in smb2_compound_op (bsc#1192606). - cifs: refactor cifs_get_inode_info() (bsc#1164565). - cifs: refactor create_sd_buf() and and avoid corrupting the buffer (bsc#1192606). - cifs: Reformat DebugData and index connections by conn_id (bsc#1192606). - cifs: Register generic netlink family (bsc#1192606). Update configs with CONFIG_SWN_UPCALL unset. - cifs: release lock earlier in dequeue_mid error case (bsc#1192606). - cifs: remove [gu]id/backup[gu]id/file_mode/dir_mode from cifs_sb (bsc#1192606). - cifs: remove actimeo from cifs_sb (bsc#1192606). - cifs: remove bogus debug code (bsc#1179427). - cifs: remove ctx argument from cifs_setup_cifs_sb (bsc#1192606). - cifs: remove duplicated prototype (bsc#1192606). - cifs: remove old dead code (bsc#1192606). - cifs: remove pathname for file from SPDX header (bsc#1192606). - cifs: remove redundant assignment to pointer pneg_ctxt (bsc#1164565). - cifs: remove redundant assignment to variable rc (bsc#1164565). - cifs: remove redundant initialization of variable rc (bsc#1192606). - cifs: remove redundant initialization of variable rc (bsc#1192606). - cifs: Remove repeated struct declaration (bsc#1192606). - cifs: Remove set but not used variable 'capabilities' (bsc#1164565). - cifs: remove set but not used variable 'server' (bsc#1164565). - cifs: remove set but not used variables 'cinode' and 'netfid' (bsc#1164565). - cifs: remove set but not used variables (bsc#1164565). - cifs: remove some minor warnings pointed out by kernel test robot (bsc#1192606). - cifs: remove the devname argument to cifs_compose_mount_options (bsc#1192606). - cifs: remove the retry in cifs_poxis_lock_set (bsc#1192606). - cifs: Remove the superfluous break (bsc#1192606). - cifs: remove two cases where rc is set unnecessarily in sid_to_id (bsc#1192606). - cifs: remove unnecessary copies of tcon->crfid.fid (bsc#1192606). - cifs: Remove unnecessary struct declaration (bsc#1192606). - cifs: remove unneeded variable in smb3_fs_context_dup (bsc#1192606). - cifs: Remove unused inline function is_sysvol_or_netlogon() (bsc#1185902). - cifs: remove unused variable 'server' (bsc#1192606). - cifs: remove unused variable 'sid_user' (bsc#1164565). - cifs: remove unused variable (bsc#1164565). - cifs: Remove useless variable (bsc#1192606). - cifs: remove various function description warnings (bsc#1192606). - cifs: rename a variable in SendReceive() (bsc#1164565). - cifs: rename cifs_common to smbfs_common (bsc#1192606). - cifs: rename dup_vol to smb3_fs_context_dup and move it into fs_context.c (bsc#1192606). - cifs: rename posix create rsp (bsc#1164565). - cifs: rename reconn_inval_dfs_target() (bsc#1178270). - cifs: rename smb_vol as smb3_fs_context and move it to fs_context.h (bsc#1192606). - cifs: rename the *_shroot* functions to *_cached_dir* (bsc#1192606). - cifs: report error instead of invalid when revalidating a dentry fails (bsc#1177440). - cifs: Respect O_SYNC and O_DIRECT flags during reconnect (bsc#1164565). - cifs: Retain old ACEs when converting between mode bits and ACL (bsc#1192606). - cifs: retry lookup and readdir when EAGAIN is returned (bsc#1192606). - cifs: return cached_fid from open_shroot (bsc#1192606). - cifs: Return correct error code from smb2_get_enc_key (git-fixes). - cifs: Return directly after a failed build_path_from_dentry() in cifs_do_create() (bsc#1164565). - cifs: return proper error code in statfs(2) (bsc#1181507). - cifs: Return the error from crypt_message when enc/dec key not found (bsc#1179426). - cifs: returning mount parm processing errors correctly (bsc#1192606). - cifs: revalidate mapping when we open files for SMB1 POSIX (bsc#1192606). - cifs: Send witness register and unregister commands to userspace daemon (bsc#1192606). - cifs: Send witness register messages to userspace daemon in echo task (bsc#1192606). - cifs: send workstation name during ntlmssp session setup (bsc#1192606). - cifs: set a minimum of 120s for next dns resolution (bsc#1192606). - cifs: set a minimum of 2 minutes for refreshing dfs cache (bsc#1185902). - cifs: Set CIFS_MOUNT_USE_PREFIX_PATH flag on setting cifs_sb->prepath (bsc#1192606). - cifs: set correct max-buffer-size for smb2_ioctl_init() (bsc#1164565). - cifs: set server->cipher_type to AES-128-CCM for SMB3.0 (bsc#1192606). - cifs: set up next DFS target before generic_ip_connect() (bsc#1178270). - cifs: Set witness notification handler for messages from userspace daemon (bsc#1192606). - cifs: Silently ignore unknown oplock break handle (bsc#1192606). - cifs: Simplify bool comparison (bsc#1192606). - cifs: simplify handling of cifs_sb/ctx->local_nls (bsc#1192606). - cifs: Simplify reconnect code when dfs upcall is enabled (bsc#1192606). - cifs: simplify SWN code with dummy funcs instead of ifdefs (bsc#1192606). - cifs: smb1: Try failing back to SetFileInfo if SetPathInfo fails (bsc#1192606). - cifs: smb2pdu.h: Replace zero-length array with flexible-array member (bsc#1192606). - cifs: smbd: Add messages on RDMA session destroy and reconnection (bsc#1164565). - cifs: smbd: Calculate the correct maximum packet size for segmented SMBDirect send/receive (bsc#1192606). - cifs: smbd: Check and extend sender credits in interrupt context (bsc#1192606). - cifs: smbd: Check send queue size before posting a send (bsc#1192606). - cifs: smbd: Do not schedule work to send immediate packet on every receive (bsc#1192606). - cifs: smbd: Invalidate and deregister memory registration on re-send for direct I/O (bsc#1164565). - cifs: smbd: Merge code to track pending packets (bsc#1192606). - cifs: smbd: Only queue work for error recovery on memory registration (bsc#1164565). - cifs: smbd: Properly process errors on ib_post_send (bsc#1192606). - cifs: smbd: Return -EAGAIN when transport is reconnecting (bsc#1164565). - cifs: smbd: Return -ECONNABORTED when trasnport is not in connected state (bsc#1164565). - cifs: smbd: Return -EINVAL when the number of iovs exceeds SMBDIRECT_MAX_SGE (bsc#1164565). - cifs: smbd: Update receive credits before sending and deal with credits roll back on failure before sending (bsc#1192606). - cifs: sort interface list by speed (bsc#1192606). - cifs: Spelling s/EACCESS/EACCES/ (bsc#1192606). - cifs: split out dfs code from cifs_reconnect() (bsc#1192606, jsc#SLE-20042). - cifs: Standardize logging output (bsc#1192606). - cifs: store a pointer to the root dentry in cifs_sb_info once we have completed mounting the share (bsc#1192606). - cifs: style: replace one-element array with flexible-array (bsc#1192606). - cifs: support nested dfs links over reconnect (bsc#1192606, jsc#SLE-20042). - cifs: support share failover when remounting (bsc#1192606, jsc#SLE-20042). - cifs: switch build_path_from_dentry() to using dentry_path_raw() (bsc#1192606). - cifs: switch servers depending on binding state (bsc#1192606). - cifs: switch to new mount api (bsc#1192606). - cifs: To match file servers, make sure the server hostname matches (bsc#1192606). - cifs: Tracepoints and logs for tracing credit changes (bsc#1181507). - cifs: try harder to open new channels (bsc#1192606). - cifs: try opening channels after mounting (bsc#1192606). - cifs: uncomplicate printing the iocharset parameter (bsc#1192606). - cifs: Unlock on errors in cifs_swn_reconnect() (bsc#1192606). - cifs: update ctime and mtime during truncate (bsc#1192606). - cifs: update FSCTL definitions (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update mnt_cifs_flags during reconfigure (bsc#1192606). - cifs: update new ACE pointer after populate_new_aces (bsc#1192606). - cifs: update super_operations to show_devname (bsc#1192606). - cifs: Use #define in cifs_dbg (bsc#1164565). - cifs: use %pd instead of messing with ->d_name (bsc#1192606). - cifs: use cifsInodeInfo->open_file_lock while iterating to avoid a panic (bnc#1151927 5.3.7). - cifs: Use common error handling code in smb2_ioctl_query_info() (bsc#1164565). - cifs: use compounding for open and first query-dir for readdir() (bsc#1164565). - cifs: use discard iterator to discard unneeded network data more efficiently (bsc#1192606). - cifs: use echo_interval even when connection not ready (bsc#1192606). - cifs: use existing handle for compound_op(OP_SET_INFO) when possible (bsc#1154355). - cifs: use helpers when parsing uid/gid mount options and validate them (bsc#1192606). - cifs: Use memdup_user() rather than duplicating its implementation (bsc#1164565). - cifs: use mod_delayed_work() for server->reconnect if already queued (bsc#1164565). - cifs: use PTR_ERR_OR_ZERO() to simplify code (bsc#1164565). - cifs: use SPDX-Licence-Identifier (bsc#1192606). - cifs: use the expiry output of dns_query to schedule next resolution (bsc#1192606). - cifs: use true,false for bool variable (bsc#1164565). - cifs: use true,false for bool variable (bsc#1164565). - cifs: warn and fail if trying to use rootfs without the config option (bsc#1192606). - cifs: Warn less noisily on default mount (bsc#1192606). - cifs: we do not allow changing username/password/unc/... during remount (bsc#1192606). - clk: imx: imx6ul: Move csi_sel mux to correct base register (git-fixes). - clk: ingenic: Fix bugs with divided dividers (git-fixes). - crypto: ecc - fix CRYPTO_DEFAULT_RNG dependency (git-fixes). - crypto: pcrypt - Delay write to padata->info (git-fixes). - crypto: s5p-sss - Add error handling in s5p_aes_probe() (git-fixes). - cxgb4: fix eeprom len when diagnostics not implemented (git-fixes). - dm: fix deadlock when swapping to encrypted device (bsc#1186332). - dm: remove unnecessary discard limits for raid0 and raid10 (bsc#1192320). - dmaengine: at_xdmac: fix AT_XDMAC_CC_PERID() macro (git-fixes). - dmaengine: dmaengine_desc_callback_valid(): Check for `callback_result` (git-fixes). - drm: panel-orientation-quirks: Add quirk for Aya Neo 2021 (git-fixes). - drm: panel-orientation-quirks: Add quirk for GPD Win3 (git-fixes). - drm: panel-orientation-quirks: Add quirk for KD Kurio Smart C15200 2-in-1 (git-fixes). - drm: panel-orientation-quirks: Add quirk for the Samsung Galaxy Book 10.6 (git-fixes). - drm: panel-orientation-quirks: Update the Lenovo Ideapad D330 quirk (v2) (git-fixes). - drm/amd/display: Set plane update flags for all planes in reset (git-fixes). - drm/amdgpu: fix set scaling mode Full/Full aspect/Center not works on vga and dvi connectors (git-fixes). - drm/msm: Do hw_init() before capturing GPU state (git-fixes). - drm/msm/a6xx: Allocate enough space for GMU registers (git-fixes). - drm/nouveau: hdmigv100.c: fix corrupted HDMI Vendor InfoFrame (git-fixes). - drm/nouveau/acr: fix a couple NULL vs IS_ERR() checks (git-fixes). - drm/nouveau/svm: Fix refcount leak bug and missing check against null bug (git-fixes). - drm/panel-orientation-quirks: add Valve Steam Deck (git-fixes). - drm/pl111: Actually fix CONFIG_VEXPRESS_CONFIG depends (git-fixes). - drm/plane-helper: fix uninitialized variable reference (git-fixes). - drm/vc4: fix error code in vc4_create_object() (git-fixes). - e1000e: Separate TGP board type from SPT (bsc#1192874). - EDAC/amd64: Handle three rank interleaving mode (bsc#1152489). - elfcore: correct reference to CONFIG_UML (git-fixes). - elfcore: fix building with clang (bsc#1169514). - ethtool: fix ethtool msg len calculation for pause stats (jsc#SLE-15075). - firmware: qcom_scm: Mark string array const (git-fixes). - fuse: release pipe buf after last use (bsc#1193318). - gve: Add netif_set_xps_queue call (bsc#1176940). - gve: Add rx buffer pagecnt bias (bsc#1176940). - gve: Allow pageflips on larger pages (bsc#1176940). - gve: Do lazy cleanup in TX path (git-fixes). - gve: DQO: avoid unused variable warnings (bsc#1176940). - gve: Switch to use napi_complete_done (git-fixes). - gve: Track RX buffer allocation failures (bsc#1176940). - hwmon: (k10temp) Add additional missing Zen2 and Zen3 APUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Add support for yellow carp (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Add support for Zen3 CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Create common functions and macros for Zen CPU families (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Define SVI telemetry and current factors for Zen2 CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Do not show Tdie for all Zen/Zen2/Zen3 CPU/APU (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) make some symbols static (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Remove residues of current and voltage (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Remove support for displaying voltage and current on Zen CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Reorganize and simplify temperature support detection (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Rework the temperature offset calculation (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) support Zen3 APUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Swap Tdie and Tctl on Family 17h CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Update documentation and add temp2_input info (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Update driver documentation (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Zen3 Ryzen Desktop CPUs support (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - i2c: cbus-gpio: set atomic transfer callback (git-fixes). - i2c: stm32f7: flush TX FIFO upon transfer errors (git-fixes). - i2c: stm32f7: recover the bus on access timeout (git-fixes). - i2c: stm32f7: stop dma transfer in case of NACK (git-fixes). - i2c: xlr: Fix a resource leak in the error handling path of 'xlr_i2c_probe()' (git-fixes). - i40e: Fix changing previously set num_queue_pairs for PFs (git-fixes). - i40e: Fix correct max_pkt_size on VF RX queue (git-fixes). - i40e: Fix creation of first queue by omitting it if is not power of two (git-fixes). - i40e: Fix display error code in dmesg (git-fixes). - i40e: Fix failed opcode appearing if handling messages from VF (git-fixes). - i40e: Fix NULL ptr dereference on VSI filter sync (git-fixes). - i40e: Fix ping is lost after configuring ADq on VF (git-fixes). - i40e: Fix pre-set max number of queues for VF (git-fixes). - i40e: Fix warning message and call stack during rmmod i40e driver (git-fixes). - iavf: check for null in iavf_fix_features (git-fixes). - iavf: do not clear a lock we do not hold (git-fixes). - iavf: Fix failure to exit out from last all-multicast mode (git-fixes). - iavf: Fix for setting queues to 0 (jsc#SLE-12877). - iavf: Fix for the false positive ASQ/ARQ errors while issuing VF reset (git-fixes). - iavf: Fix reporting when setting descriptor count (git-fixes). - iavf: Fix return of set the new channel count (jsc#SLE-12877). - iavf: free q_vectors before queues in iavf_disable_vf (git-fixes). - iavf: prevent accidental free of filter structure (git-fixes). - iavf: Prevent changing static ITR values if adaptive moderation is on (git-fixes). - iavf: Restore VLAN filters after link down (git-fixes). - iavf: validate pointers (git-fixes). - ibmvnic: drop bad optimization in reuse_rx_pools() (bsc#1193349 ltc#195568). - ibmvnic: drop bad optimization in reuse_tx_pools() (bsc#1193349 ltc#195568). - ice: avoid bpf_prog refcount underflow (jsc#SLE-7926). - ice: avoid bpf_prog refcount underflow (jsc#SLE-7926). - ice: Delete always true check of PF pointer (git-fixes). - ice: Fix not stopping Tx queues for VFs (jsc#SLE-7926). - ice: Fix VF true promiscuous mode (jsc#SLE-12878). - ice: fix vsi->txq_map sizing (jsc#SLE-7926). - ice: ignore dropped packets during init (git-fixes). - ice: Remove toggling of antispoof for VF trusted promiscuous mode (jsc#SLE-12878). - igb: fix netpoll exit with traffic (git-fixes). - igc: Remove _I_PHY_ID checking (bsc#1193169). - igc: Remove phy->type checking (bsc#1193169). - iio: imu: st_lsm6dsx: Avoid potential array overflow in st_lsm6dsx_set_odr() (git-fixes). - Input: iforce - fix control-message timeout (git-fixes). - iommu: Check if group is NULL before remove device (git-fixes). - iommu/amd: Relocate GAMSup check to early_enable_iommus (git-fixes). - iommu/amd: Remove iommu_init_ga() (git-fixes). - iommu/mediatek: Fix out-of-range warning with clang (git-fixes). - iommu/vt-d: Consolidate duplicate cache invaliation code (git-fixes). - iommu/vt-d: Fix incomplete cache flush in intel_pasid_tear_down_entry() (git-fixes). - iommu/vt-d: Update the virtual command related registers (git-fixes). - ipmi: Disable some operations during a panic (git-fixes). - kABI: dm: fix deadlock when swapping to encrypted device (bsc#1186332). - kabi: hide changes to struct uv_info (git-fixes). - lib/xz: Avoid overlapping memcpy() with invalid input with in-place decompression (git-fixes). - lib/xz: Validate the value before assigning it to an enum variable (git-fixes). - libata: fix checking of DMA state (git-fixes). - linux/parser.h: add include guards (bsc#1192606). - lpfc: Reintroduce old IRQ probe logic (bsc#1183897). - md: add md_submit_discard_bio() for submitting discard bio (bsc#1192320). - md: extend r10bio devs to raid disks (bsc#1192320). - md: fix a lock order reversal in md_alloc (git-fixes). - md: improve discard request for far layout (bsc#1192320). - md: improve raid10 discard request (bsc#1192320). - md: initialize r10_bio->read_slot before use (bsc#1192320). - md: pull the code that wait for blocked dev into one function (bsc#1192320). - md: Remove unnecessary rcu_dereference in raid10_handle_discard (bsc#1192320). - mdio: aspeed: Fix "Link is Down" issue (bsc#1176447). - media: imx: set a media_device bus_info string (git-fixes). - media: ipu3-imgu: imgu_fmt: Handle properly try (git-fixes). - media: ipu3-imgu: VIDIOC_QUERYCAP: Fix bus_info (git-fixes). - media: ir-kbd-i2c: improve responsiveness of hauppauge zilog receivers (git-fixes). - media: mceusb: return without resubmitting URB in case of -EPROTO error (git-fixes). - media: mt9p031: Fix corrupted frame after restarting stream (git-fixes). - media: netup_unidvb: handle interrupt properly according to the firmware (git-fixes). - media: rcar-csi2: Add checking to rcsi2_start_receiver() (git-fixes). - media: s5p-mfc: fix possible null-pointer dereference in s5p_mfc_probe() (git-fixes). - media: stm32: Potential NULL pointer dereference in dcmi_irq_thread() (git-fixes). - media: usb: dvd-usb: fix uninit-value bug in dibusb_read_eeprom_byte() (git-fixes). - media: uvcvideo: Return -EIO for control errors (git-fixes). - media: uvcvideo: Set capability in s_param (git-fixes). - media: uvcvideo: Set unique vdev name based in type (git-fixes). - memstick: r592: Fix a UAF bug when removing the driver (git-fixes). - MM: reclaim mustn't enter FS for swap-over-NFS (bsc#1191876). - mmc: dw_mmc: Dont wait for DRTO on Write RSP error (git-fixes). - mmc: winbond: do not build on M68K (git-fixes). - mtd: core: do not remove debugfs directory if device is in use (git-fixes). - mwifiex: Properly initialize private structure on interface type changes (git-fixes). - mwifiex: Read a PCI register after writing the TX ring write pointer (git-fixes). - mwifiex: Run SET_BSS_MODE when changing from P2P to STATION vif-type (git-fixes). - mwl8k: Fix use-after-free in mwl8k_fw_state_machine() (git-fixes). - net: asix: fix uninit value bugs (git-fixes). - net: bnx2x: fix variable dereferenced before check (git-fixes). - net: bridge: fix under estimation in br_get_linkxstats_size() (bsc#1176447). - net: cdc_ncm: Allow for dwNtbOutMaxSize to be unset or zero (git-fixes). - net: delete redundant function declaration (git-fixes). - net: hns3: change affinity_mask to numa node range (bsc#1154353). - net: hns3: fix misuse vf id and vport id in some logs (bsc#1154353). - net: hns3: remove check VF uc mac exist when set by PF (bsc#1154353). - net: hso: fix control-request directions (git-fixes). - net: hso: fix muxed tty registration (git-fixes). - net: linkwatch: fix failure to restore device state across suspend/resume (bsc#1192511). - net: mana: Allow setting the number of queues while the NIC is down (jsc#SLE-18779, bsc#1185726). - net: mana: Fix memory leak in mana_hwc_create_wq (jsc#SLE-18779, bsc#1185726). - net: mana: Fix spelling mistake "calledd" -> "called" (jsc#SLE-18779, bsc#1185726). - net: mana: Fix the netdev_err()'s vPort argument in mana_init_port() (jsc#SLE-18779, bsc#1185726). - net: mana: Improve the HWC error handling (jsc#SLE-18779, bsc#1185726). - net: mana: Support hibernation and kexec (jsc#SLE-18779, bsc#1185726). - net: mana: Use kcalloc() instead of kzalloc() (jsc#SLE-18779, bsc#1185726). - net: pegasus: fix uninit-value in get_interrupt_interval (git-fixes). - net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() (git-fixes). - net: stmmac: add EHL 2.5Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL PSE0 PSE1 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL RGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL SGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add TGL SGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: create dwmac-intel.c to contain all Intel platform (bsc#1192691). - net: stmmac: pci: Add HAPS support using GMAC5 (bsc#1192691). - net: usb: lan78xx: lan78xx_phy_init(): use PHY_POLL instead of "0" if no IRQ is available (git-fixes). - net: usb: lan78xx: lan78xx_phy_init(): use PHY_POLL instead of "0" if no IRQ is available (git-fixes). - net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (git-fixes). - net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() (git-fixes). - net/mlx5: E-Switch, return error if encap isn't supported (jsc#SLE-15172). - net/mlx5e: reset XPS on error flow if netdev isn't registered yet (git-fixes). - net/sched: sch_ets: do not peek at classes beyond 'nbands' (bsc#1176774). - netfilter: ctnetlink: do not erase error code with EINVAL (bsc#1176447). - netfilter: ctnetlink: fix filtering with CTA_TUPLE_REPLY (bsc#1176447). - netfilter: flowtable: fix IPv6 tunnel addr match (bsc#1176447). - NFC: add NCI_UNREG flag to eliminate the race (git-fixes). - NFC: pn533: Fix double free when pn533_fill_fragment_skbs() fails (git-fixes). - NFC: reorder the logic in nfc_{un,}register_device (git-fixes). - NFC: reorganize the functions in nci_request (git-fixes). - nfp: checking parameter process for rx-usecs/tx-usecs is invalid (git-fixes). - nfp: Fix memory leak in nfp_cpp_area_cache_add() (git-fixes). - NFS: do not alloc under spinlock in rpc_parse_scope_id (git-fixes). - NFS: Do not set NFS_INO_DATA_INVAL_DEFER and NFS_INO_INVALID_DATA (git-fixes). - NFS: do not take i_rwsem for swap IO (bsc#1191876). - NFS: Fix a regression in nfs_set_open_stateid_locked() (git-fixes). - NFS: Fix deadlocks in nfs_scan_commit_list() (git-fixes). - NFS: fix error handling of register_pernet_subsys() in init_nfsd() (git-fixes). - NFS: Fix up commit deadlocks (git-fixes). - NFS: Handle the NFSv4 READDIR 'dircount' hint being zero (git-fixes). - NFS: move generic_write_checks() call from nfs_file_direct_write() to nfs_file_write() (bsc#1191876). - nvme: add NO APST quirk for Kioxia device (git-fixes). - nvme: Skip not ready namespaces when revalidating paths (bsc#1191793 bsc#1192507 bsc#1192969). - objtool: Support Clang non-section symbols in ORC generation (bsc#1169514). - Pass consistent param->type to fs_parse() (bsc#1192606). [ ematsumiya: - drop the case fs_param_is_fd - leave .has_value in fs_parse_result so it does not break kabi - still set .has_value in fs_parse() for real kabi compatibility ] - PCI: Add PCI_EXP_DEVCTL_PAYLOAD_* macros (git-fixes). - PCI: Mark Atheros QCA6174 to avoid bus reset (git-fixes). - PCI/MSI: Deal with devices lying about their MSI mask capability (git-fixes). - perf: Correctly handle failed perf_get_aux_event() (git-fixes). - perf/x86/intel: Fix unchecked MSR access error caused by VLBR_EVENT (git-fixes). - perf/x86/intel/uncore: Fix Intel ICX IIO event constraints (git-fixes). - perf/x86/intel/uncore: Fix M2M event umask for Ice Lake server (git-fixes). - perf/x86/intel/uncore: Fix the scale of the IMC free-running events (git-fixes). - perf/x86/intel/uncore: Support extra IMC channel on Ice Lake server (git-fixes). - perf/x86/vlbr: Add c->flags to vlbr event constraints (git-fixes). - platform/x86: hp_accel: Fix an error handling path in 'lis3lv02d_probe()' (git-fixes). - platform/x86: wmi: do not fail if disabling fails (git-fixes). - PM: hibernate: Get block device exclusively in swsusp_check() (git-fixes). - PM: hibernate: use correct mode for swsusp_close() (git-fixes). - pnfs/flexfiles: Fix misplaced barrier in nfs4_ff_layout_prepare_ds (git-fixes). - powerpc: fix unbalanced node refcount in check_kvm_guest() (jsc#SLE-15869 jsc#SLE-16321 git-fixes). - powerpc/iommu: Report the correct most efficient DMA mask for PCI devices (git-fixes). - powerpc/paravirt: correct preempt debug splat in vcpu_is_preempted() (bsc#1181148 ltc#190702 git-fixes). - powerpc/paravirt: vcpu_is_preempted() commentary (bsc#1181148 ltc#190702 git-fixes). - powerpc/perf: Fix cycles/instructions as PM_CYC/PM_INST_CMPL in power10 (jsc#SLE-13513 git-fixes). - powerpc/pseries: Move some PAPR paravirt functions to their own file (bsc#1181148 ltc#190702 git-fixes). - powerpc/watchdog: Avoid holding wd_smp_lock over printk and smp_send_nmi_ipi (bsc#1187541 ltc#192129). - powerpc/watchdog: Fix missed watchdog reset due to memory ordering race (bsc#1187541 ltc#192129). - powerpc/watchdog: Fix wd_smp_last_reset_tb reporting (bsc#1187541 ltc#192129). - powerpc/watchdog: read TB close to where it is used (bsc#1187541 ltc#192129). - powerpc/watchdog: tighten non-atomic read-modify-write access (bsc#1187541 ltc#192129). - printk: Remove printk.h inclusion in percpu.h (bsc#1192987). - qede: validate non LSO skb length (git-fixes). - r8152: limit the RX buffer size of RTL8153A for USB 2.0 (git-fixes). - r8169: Add device 10ec:8162 to driver r8169 (git-fixes). - RDMA/bnxt_re: Update statistics counter name (jsc#SLE-16649). - recordmcount.pl: fix typo in s390 mcount regex (bsc#1192267). - recordmcount.pl: look for jgnop instruction as well as bcrl on s390 (bsc#1192267). - reset: socfpga: add empty driver allowing consumers to probe (git-fixes). - ring-buffer: Protect ring_buffer_reset() from reentrancy (bsc#1179960). - rpm/*.spec.in: use buildroot macro instead of env variable The RPM_BUILD_ROOT variable is considered deprecated over a buildroot macro. future proof the spec files. - rpm/kernel-binary.spec.in: do not strip vmlinux again (bsc#1193306) After usrmerge, vmlinux file is not named vmlinux-lt;version>, but simply vmlinux. And this is not reflected in STRIP_KEEP_SYMTAB we set. So fix this by removing the dash... - rpm/kernel-obs-build.spec.in: move to zstd for the initrd Newer distros have capability to decompress zstd, which provides a 2-5% better compression ratio at very similar cpu overhead. Plus this tests the zstd codepaths now as well. - rt2x00: do not mark device gone on EPROTO errors during start (git-fixes). - rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() (bsc#1154353 bnc#1151927 5.3.9). - s390: mm: Fix secure storage access exception handling (git-fixes). - s390/bpf: Fix branch shortening during codegen pass (bsc#1193993). - s390/uv: fully validate the VMA before calling follow_page() (git-fixes). - scsi: iscsi: Adjust iface sysfs attr detection (git-fixes). - scsi: lpfc: Add additional debugfs support for CMF (bsc#1194266). - scsi: lpfc: Adjust CMF total bytes and rxmonitor (bsc#1194266). - scsi: lpfc: Cap CMF read bytes to MBPI (bsc#1194266). - scsi: lpfc: Change return code on I/Os received during link bounce (bsc#1194266). - scsi: lpfc: Fix leaked lpfc_dmabuf mbox allocations with NPIV (bsc#1194266). - scsi: lpfc: Fix lpfc_force_rscn ndlp kref imbalance (bsc#1194266). - scsi: lpfc: Fix non-recovery of remote ports following an unsolicited LOGO (bsc#1189126). - scsi: lpfc: Fix NPIV port deletion crash (bsc#1194266). - scsi: lpfc: Trigger SLI4 firmware dump before doing driver cleanup (bsc#1194266). - scsi: lpfc: Update lpfc version to 14.0.0.4 (bsc#1194266). - scsi: mpi3mr: Fix duplicate device entries when scanning through sysfs (git-fixes). - scsi: mpt3sas: Fix kernel panic during drive powercycle test (git-fixes). - scsi: mpt3sas: Fix system going into read-only mode (git-fixes). - scsi: pm80xx: Do not call scsi_remove_host() in pm8001_alloc() (git-fixes). - scsi: qla2xxx: edif: Fix app start delay (git-fixes). - scsi: qla2xxx: edif: Fix app start fail (git-fixes). - scsi: qla2xxx: edif: Fix EDIF bsg (git-fixes). - scsi: qla2xxx: edif: Fix off by one bug in qla_edif_app_getfcinfo() (git-fixes). - scsi: qla2xxx: edif: Flush stale events and msgs on session down (git-fixes). - scsi: qla2xxx: edif: Increase ELS payload (git-fixes). - scsi: qla2xxx: Fix gnl list corruption (git-fixes). - scsi: qla2xxx: Fix mailbox direction flags in qla2xxx_get_adapter_id() (git-fixes). - scsi: qla2xxx: Format log strings only if needed (git-fixes). - scsi: qla2xxx: Relogin during fabric disturbance (git-fixes). - scsi: qla2xxx: Turn off target reset during issue_lip (git-fixes). - serial: 8250_pci: Fix ACCES entries in pci_serial_quirks array (git-fixes). - serial: 8250_pci: rewrite pericom_do_set_divisor() (git-fixes). - serial: 8250: Fix RTS modem control while in rs485 mode (git-fixes). - serial: core: fix transmit-buffer reset and memleak (git-fixes). - smb2: clarify rc initialization in smb2_reconnect (bsc#1192606). - smb2: fix use-after-free in smb2_ioctl_query_info() (bsc#1192606). - smb3: add additional null check in SMB2_ioctl (bsc#1192606). - smb3: add additional null check in SMB2_open (bsc#1192606). - smb3: add additional null check in SMB2_tcon (bsc#1192606). - smb3: add additional null check in SMB311_posix_mkdir (bsc#1192606). - smb3: Add debug message for new file creation with idsfromsid mount option (bsc#1192606). - smb3: add debug messages for closing unmatched open (bsc#1164565). - smb3: add defines for new crypto algorithms (bsc#1192606). - smb3: Add defines for new information level, FileIdInformation (bsc#1164565). - smb3: add defines for new signing negotiate context (bsc#1192606). - smb3: add dynamic trace point to trace when credits obtained (bsc#1181507). - smb3: add dynamic trace points for socket connection (bsc#1192606). - smb3: add dynamic tracepoints for flush and close (bsc#1164565). - smb3: add indatalen that can be a non-zero value to calculation of credit charge in smb2 ioctl (bsc#1192606). - smb3: add missing flag definitions (bsc#1164565). - smb3: Add missing reparse tags (bsc#1164565). - smb3: add missing worker function for SMB3 change notify (bsc#1164565). - smb3: add mount option to allow forced caching of read only share (bsc#1164565). - smb3: add mount option to allow RW caching of share accessed by only 1 client (bsc#1164565). - smb3: Add new compression flags (bsc#1192606). - smb3: Add new info level for query directory (bsc#1192606). - smb3: add new module load parm enable_gcm_256 (bsc#1192606). - smb3: add new module load parm require_gcm_256 (bsc#1192606). - smb3: Add new parm "nodelete" (bsc#1192606). - smb3: add one more dynamic tracepoint missing from strict fsync path (bsc#1164565). - smb3: add rasize mount parameter to improve readahead performance (bsc#1192606). - smb3: add some missing definitions from MS-FSCC (bsc#1192606). - smb3: add some more descriptive messages about share when mounting cache=ro (bsc#1164565). - smb3: Add support for getting and setting SACLs (bsc#1192606). - smb3: Add support for lookup with posix extensions query info (bsc#1192606). - smb3: Add support for negotiating signing algorithm (bsc#1192606). - smb3: Add support for query info using posix extensions (level 100) (bsc#1192606). - smb3: add support for recognizing WSL reparse tags (bsc#1192606). - smb3: Add support for SMB311 query info (non-compounded) (bsc#1192606). - smb3: add support for stat of WSL reparse points for special file types (bsc#1192606). - smb3: add support for using info level for posix extensions query (bsc#1192606). - smb3: Add tracepoints for new compound posix query info (bsc#1192606). - smb3: Additional compression structures (bsc#1192606). - smb3: allow decryption keys to be dumped by admin for debugging (bsc#1164565). - smb3: allow disabling requesting leases (bnc#1151927 5.3.4). - smb3: allow dumping GCM256 keys to improve debugging of encrypted shares (bsc#1192606). - smb3: allow dumping keys for multiuser mounts (bsc#1192606). - smb3: allow parallelizing decryption of reads (bsc#1164565). - smb3: allow skipping signature verification for perf sensitive configurations (bsc#1164565). - smb3: allow uid and gid owners to be set on create with idsfromsid mount option (bsc#1192606). - smb3: avoid confusing warning message on mount to Azure (bsc#1192606). - smb3: Avoid Mid pending list corruption (bsc#1192606). - smb3: Backup intent flag missing from some more ops (bsc#1164565). - smb3: Call cifs reconnect from demultiplex thread (bsc#1192606). - smb3: change noisy error message to FYI (bsc#1192606). - smb3: cleanup some recent endian errors spotted by updated sparse (bsc#1164565). - smb3: correct server pointer dereferencing check to be more consistent (bsc#1192606). - smb3: correct smb3 ACL security descriptor (bsc#1192606). - smb3: default to minimum of two channels when multichannel specified (bsc#1192606). - smb3: display max smb3 requests in flight at any one time (bsc#1164565). - smb3: do not attempt multichannel to server which does not support it (bsc#1192606). - smb3: do not error on fsync when readonly (bsc#1192606). - smb3: do not fail if no encryption required but server does not support it (bsc#1192606). - smb3: do not log warning message if server does not populate salt (bsc#1192606). - smb3: do not setup the fscache_super_cookie until fsinfo initialized (bsc#1192606). - smb3: do not try to cache root directory if dir leases not supported (bsc#1192606). - smb3: dump in_send and num_waiters stats counters by default (bsc#1164565). - smb3: enable negotiating stronger encryption by default (bsc#1192606). - smb3: enable offload of decryption of large reads via mount option (bsc#1164565). - smb3: enable swap on SMB3 mounts (bsc#1192606). - smb3: extend fscache mount volume coherency check (bsc#1192606). - smb3: fix access denied on change notify request to some servers (bsc#1192606). - smb3: fix cached file size problems in duplicate extents (reflink) (bsc#1192606). - smb3: Fix crash in SMB2_open_init due to uninitialized field in compounding path (bsc#1164565). - smb3: fix crediting for compounding when only one request in flight (bsc#1181507). - smb3: fix default permissions on new files when mounting with modefromsid (bsc#1164565). - smb3: Fix ids returned in POSIX query dir (bsc#1192606). - smb3: fix incorrect number of credits when ioctl MaxOutputResponse > 64K (bsc#1192606). - smb3: fix leak in "open on server" perf counter (bnc#1151927 5.3.4). - smb3: Fix mkdir when idsfromsid configured on mount (bsc#1192606). - smb3: fix mode passed in on create for modetosid mount option (bsc#1164565). - smb3: fix mount failure to some servers when compression enabled (bsc#1192606). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1183540). - smb3: fix performance regression with setting mtime (bsc#1164565). - smb3: Fix persistent handles reconnect (bnc#1151927 5.3.11). - smb3: fix posix extensions mount option (bsc#1192606). - smb3: fix possible access to uninitialized pointer to DACL (bsc#1192606). - smb3: fix potential null dereference in decrypt offload (bsc#1164565). - smb3: fix problem with null cifs super block with previous patch (bsc#1164565). - smb3: fix readpage for large swap cache (bsc#1192606). - smb3: fix refcount underflow warning on unmount when no directory leases (bsc#1164565). - smb3: Fix regression in time handling (bsc#1164565). - smb3: fix signing verification of large reads (bsc#1154355). - smb3: fix stat when special device file and mounted with modefromsid (bsc#1192606). - smb3: fix typo in compression flag (bsc#1192606). - smb3: fix typo in header file (bsc#1192606). - smb3: fix typo in mount options displayed in /proc/mounts (bsc#1192606). - smb3: fix uninitialized value for port in witness protocol move (bsc#1192606). - smb3: fix unmount hang in open_shroot (bnc#1151927 5.3.4). - smb3: fix unneeded error message on change notify (bsc#1192606). - smb3: Handle error case during offload read path (bsc#1192606). - smb3: Honor 'handletimeout' flag for multiuser mounts (bsc#1176558). - smb3: Honor 'posix' flag for multiuser mounts (bsc#1176559). - smb3: Honor 'seal' flag for multiuser mounts (bsc#1176545). - smb3: Honor lease disabling for multiuser mounts (git-fixes). - smb3: Honor persistent/resilient handle flags for multiuser mounts (bsc#1176546). - smb3: if max_channels set to more than one channel request multichannel (bsc#1192606). - smb3: improve check for when we send the security descriptor context on create (bsc#1164565). - smb3: improve handling of share deleted (and share recreated) (bsc#1154355). - smb3: incorrect file id in requests compounded with open (bsc#1192606). - smb3: Incorrect size for netname negotiate context (bsc#1154355). - smb3: limit noisy error (bsc#1192606). - smb3: log warning if CSC policy conflicts with cache mount option (bsc#1164565). - smb3: Minor cleanup of protocol definitions (bsc#1192606). - smb3: minor update to compression header definitions (bsc#1192606). - smb3: missing ACL related flags (bsc#1164565). - smb3: negotiate current dialect (SMB3.1.1) when version 3 or greater requested (bsc#1192606). - smb3: only offload decryption of read responses if multiple requests (bsc#1164565). - smb3: pass mode bits into create calls (bsc#1164565). - smb3: prevent races updating CurrentMid (bsc#1192606). - smb3: print warning if server does not support requested encryption type (bsc#1192606). - smb3: print warning once if posix context returned on open (bsc#1164565). - smb3: query attributes on file close (bsc#1164565). - smb3: rc uninitialized in one fallocate path (bsc#1192606). - smb3: remind users that witness protocol is experimental (bsc#1192606). - smb3: remove confusing dmesg when mounting with encryption ("seal") (bsc#1164565). - smb3: remove confusing mount warning when no SPNEGO info on negprot rsp (bsc#1192606). - smb3: remove dead code for non compounded posix query info (bsc#1192606). - smb3: remove noisy debug message and minor cleanup (bsc#1164565). - smb3: remove overly noisy debug line in signing errors (bsc#1192606). - smb3: remove static checker warning (bsc#1192606). - smb3: remove trivial dfs compile warning (bsc#1192606, jsc#SLE-20042). - smb3: remove two unused variables (bsc#1192606). - smb3: remove unused flag passed into close functions (bsc#1164565). - smb3: rename nonces used for GCM and CCM encryption (bsc#1192606). - smb3: Resolve data corruption of TCP server info fields (bsc#1192606). - smb3: set COMPOUND_FID to FileID field of subsequent compound request (bsc#1192606). - smb3: set gcm256 when requested (bsc#1192606). - smb3: smbdirect support can be configured by default (bsc#1192606). - smb3: update comments clarifying SPNEGO info in negprot response (bsc#1192606). - smb3: update protocol header definitions based to include new flags (bsc#1192606). - smb3: update structures for new compression protocol definitions (bsc#1192606). - smb3: use SMB2_SIGNATURE_SIZE define (bsc#1192606). - smb3: warn on confusing error scenario with sec=krb5 (bsc#1176548). - smb3: when mounting with multichannel include it in requested capabilities (bsc#1192606). - smbdirect: missing rc checks while waiting for rdma events (bsc#1192606). - soc/tegra: Fix an error handling path in tegra_powergate_power_up() (git-fixes). - soc/tegra: pmc: Fix imbalanced clock disabling in error code path (git-fixes). - spi: bcm-qspi: Fix missing clk_disable_unprepare() on error in bcm_qspi_probe() (git-fixes). - spi: spl022: fix Microwire full duplex mode (git-fixes). - SUNRPC: async tasks mustn't block waiting for memory (bsc#1191876). - SUNRPC: async tasks mustn't block waiting for memory (bsc#1191876). - SUNRPC: async tasks mustn't block waiting for memory (bsc#1191876). - SUNRPC: improve 'swap' handling: scheduling and PF_MEMALLOC (bsc#1191876). - SUNRPC: remove scheduling boost for "SWAPPER" tasks (bsc#1191876). - supported.conf: add pwm-rockchip References: jsc#SLE-22615 - swiotlb-xen: avoid double free (git-fixes). - swiotlb: Fix the type of index (git-fixes). - TCON Reconnect during STATUS_NETWORK_NAME_DELETED (bsc#1192606). - tlb: mmu_gather: add tlb_flush_*_range APIs - tracing: Add length protection to histogram string copies (git-fixes). - tracing: Change STR_VAR_MAX_LEN (git-fixes). - tracing: Check pid filtering when creating events (git-fixes). - tracing: Fix pid filtering when triggers are attached (git-fixes). - tracing: use %ps format string to print symbols (git-fixes). - tracing/histogram: Do not copy the fixed-size char array field over the field size (git-fixes). - tty: hvc: replace BUG_ON() with negative return value (git-fixes). - tty: serial: msm_serial: Deactivate RX DMA for polling support (git-fixes). - tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc (git-fixes). - update structure definitions from updated protocol documentation (bsc#1192606). - usb: Add compatibility quirk flags for iODD 2531/2541 (git-fixes). - usb: chipidea: ci_hdrc_imx: fix potential error pointer dereference in probe (git-fixes). - usb: dwc2: gadget: Fix ISOC flow for elapsed frames (git-fixes). - usb: dwc2: hcd_queue: Fix use of floating point literal (git-fixes). - usb: host: ohci-tmio: check return value after calling platform_get_resource() (git-fixes). - usb: musb: tusb6010: check return value after calling platform_get_resource() (git-fixes). - usb: serial: option: add Fibocom FM101-GL variants (git-fixes). - usb: serial: option: add Telit LE910S1 0x9200 composition (git-fixes). - usb: typec: fusb302: Fix masking of comparator and bc_lvl interrupts (git-fixes). - usb: typec: tcpm: Wait in SNK_DEBOUNCED until disconnect (git-fixes). - usb: typec: tcpm: Wait in SNK_DEBOUNCED until disconnect (git-fixes). - usb: xhci: Enable runtime-pm by default on AMD Yellow Carp platform (git-fixes). - vfs: do not parse forbidden flags (bsc#1192606). - wireguard: allowedips: add missing __rcu annotation to satisfy sparse (git-fixes). - wireguard: device: reset peer src endpoint when netns exits (git-fixes). - wireguard: ratelimiter: use kvcalloc() instead of kvzalloc() (git-fixes). - wireguard: receive: drop handshakes if queue lock is contended (git-fixes). - wireguard: receive: use ring buffer for incoming handshakes (git-fixes). - wireguard: selftests: actually test for routing loops (git-fixes). - wireguard: selftests: increase default dmesg log size (git-fixes). - x86/amd_nb: Add AMD family 19h model 50h PCI ids (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - x86/cpu: Fix migration safety with X86_BUG_NULL_SEL (bsc#1152489). - x86/efi: Restore Firmware IDT before calling ExitBootServices() (git-fixes). - x86/entry: Add a fence for kernel entry SWAPGS in paranoid_entry() (bsc#1178134). - x86/mpx: Disable MPX for 32-bit userland (bsc#1193139). - x86/pkey: Fix undefined behaviour with PKRU_WD_BIT (bsc#1152489). - x86/pvh: add prototype for xen_pvh_init() (git-fixes). - x86/sev: Allow #VC exceptions on the VC2 stack (git-fixes). - x86/sev: Fix SEV-ES INS/OUTS instructions for word, dword, and qword (bsc#1178134). - x86/sev: Fix stack type check in vc_switch_off_ist() (git-fixes). - x86/xen: Add xenpv_restore_regs_and_return_to_usermode() (bsc#1152489). - x86/Xen: swap NX determination and GDT setup on BSP (git-fixes). - xen: sync include/xen/interface/io/ring.h with Xen's newest version (git-fixes). - xen/blkfront: do not take local copy of a request from the ring page (git-fixes). - xen/blkfront: do not trust the backend response data blindly (git-fixes). - xen/blkfront: read response from backend only once (git-fixes). - xen/netfront: disentangle tx_skb_freelist (git-fixes). - xen/netfront: do not read data from request on the ring page (git-fixes). - xen/netfront: do not trust the backend response data blindly (git-fixes). - xen/netfront: read response from backend only once (git-fixes). - xen/privcmd: fix error handling in mmap-resource processing (git-fixes). - xen/pvh: add missing prototype to header (git-fixes). - xen/x86: fix PV trap handling on secondary processors (git-fixes). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (bsc#1192569). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (bsc#1192569). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (git-fixes). - xhci: Fix USB 3.1 enumeration issues by increasing roothub power-on-good delay (git-fixes). - zram: fix return value on writeback_store (git-fixes). - zram: off by one in read_block_state() (git-fixes). cluster-md-kmp-azure-5.3.18-38.34.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.34.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.34.1.x86_64.rpm True kernel-azure-5.3.18-38.34.1.nosrc.rpm True kernel-azure-5.3.18-38.34.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.34.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.34.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.34.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.34.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.34.1.noarch.rpm True kernel-source-azure-5.3.18-38.34.1.noarch.rpm True kernel-source-azure-5.3.18-38.34.1.src.rpm True kernel-syms-azure-5.3.18-38.34.1.src.rpm True kernel-syms-azure-5.3.18-38.34.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.34.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.34.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.34.1.x86_64.rpm True openSUSE-SLE-15.3-2022-93 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following issues: - Add RSA_get0_pss_params() accessor that is used by nodejs16 and provide openssl-has-RSA_get0_pss_params (bsc#1192489) libopenssl-1_1-devel-1.1.1d-11.38.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-11.38.1.x86_64.rpm libopenssl1_1-1.1.1d-11.38.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-11.38.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-11.38.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-11.38.1.x86_64.rpm openssl-1_1-1.1.1d-11.38.1.src.rpm openssl-1_1-1.1.1d-11.38.1.x86_64.rpm openssl-1_1-doc-1.1.1d-11.38.1.noarch.rpm libopenssl-1_1-devel-1.1.1d-11.38.1.s390x.rpm libopenssl1_1-1.1.1d-11.38.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-11.38.1.s390x.rpm openssl-1_1-1.1.1d-11.38.1.s390x.rpm libopenssl-1_1-devel-1.1.1d-11.38.1.ppc64le.rpm libopenssl1_1-1.1.1d-11.38.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-11.38.1.ppc64le.rpm openssl-1_1-1.1.1d-11.38.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-11.38.1.aarch64.rpm libopenssl1_1-1.1.1d-11.38.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-11.38.1.aarch64.rpm openssl-1_1-1.1.1d-11.38.1.aarch64.rpm openSUSE-SLE-15.3-2022-43 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-3997: Fixed an uncontrolled recursion in systemd's systemd-tmpfiles which could cause a minor denial of service. (bsc#1194178) libsystemd0-246.16-7.33.1.x86_64.rpm True libsystemd0-32bit-246.16-7.33.1.x86_64.rpm True libudev-devel-246.16-7.33.1.x86_64.rpm True libudev-devel-32bit-246.16-7.33.1.x86_64.rpm True libudev1-246.16-7.33.1.x86_64.rpm True libudev1-32bit-246.16-7.33.1.x86_64.rpm True nss-myhostname-246.16-7.33.1.x86_64.rpm True nss-myhostname-32bit-246.16-7.33.1.x86_64.rpm True nss-mymachines-246.16-7.33.1.x86_64.rpm True nss-mymachines-32bit-246.16-7.33.1.x86_64.rpm True nss-resolve-246.16-7.33.1.x86_64.rpm True nss-systemd-246.16-7.33.1.x86_64.rpm True systemd-246.16-7.33.1.src.rpm True systemd-246.16-7.33.1.x86_64.rpm True systemd-32bit-246.16-7.33.1.x86_64.rpm True systemd-container-246.16-7.33.1.x86_64.rpm True systemd-coredump-246.16-7.33.1.x86_64.rpm True systemd-devel-246.16-7.33.1.x86_64.rpm True systemd-doc-246.16-7.33.1.x86_64.rpm True systemd-journal-remote-246.16-7.33.1.x86_64.rpm True systemd-lang-246.16-7.33.1.noarch.rpm True systemd-logger-246.16-7.33.1.x86_64.rpm True systemd-network-246.16-7.33.1.x86_64.rpm True systemd-sysvinit-246.16-7.33.1.x86_64.rpm True udev-246.16-7.33.1.x86_64.rpm True libsystemd0-246.16-7.33.1.s390x.rpm True libudev-devel-246.16-7.33.1.s390x.rpm True libudev1-246.16-7.33.1.s390x.rpm True nss-myhostname-246.16-7.33.1.s390x.rpm True nss-mymachines-246.16-7.33.1.s390x.rpm True nss-resolve-246.16-7.33.1.s390x.rpm True nss-systemd-246.16-7.33.1.s390x.rpm True systemd-246.16-7.33.1.s390x.rpm True systemd-container-246.16-7.33.1.s390x.rpm True systemd-coredump-246.16-7.33.1.s390x.rpm True systemd-devel-246.16-7.33.1.s390x.rpm True systemd-doc-246.16-7.33.1.s390x.rpm True systemd-journal-remote-246.16-7.33.1.s390x.rpm True systemd-logger-246.16-7.33.1.s390x.rpm True systemd-network-246.16-7.33.1.s390x.rpm True systemd-sysvinit-246.16-7.33.1.s390x.rpm True udev-246.16-7.33.1.s390x.rpm True libsystemd0-246.16-7.33.1.ppc64le.rpm True libudev-devel-246.16-7.33.1.ppc64le.rpm True libudev1-246.16-7.33.1.ppc64le.rpm True nss-myhostname-246.16-7.33.1.ppc64le.rpm True nss-mymachines-246.16-7.33.1.ppc64le.rpm True nss-resolve-246.16-7.33.1.ppc64le.rpm True nss-systemd-246.16-7.33.1.ppc64le.rpm True systemd-246.16-7.33.1.ppc64le.rpm True systemd-container-246.16-7.33.1.ppc64le.rpm True systemd-coredump-246.16-7.33.1.ppc64le.rpm True systemd-devel-246.16-7.33.1.ppc64le.rpm True systemd-doc-246.16-7.33.1.ppc64le.rpm True systemd-journal-remote-246.16-7.33.1.ppc64le.rpm True systemd-logger-246.16-7.33.1.ppc64le.rpm True systemd-network-246.16-7.33.1.ppc64le.rpm True systemd-sysvinit-246.16-7.33.1.ppc64le.rpm True udev-246.16-7.33.1.ppc64le.rpm True libsystemd0-246.16-7.33.1.aarch64.rpm True libudev-devel-246.16-7.33.1.aarch64.rpm True libudev1-246.16-7.33.1.aarch64.rpm True nss-myhostname-246.16-7.33.1.aarch64.rpm True nss-mymachines-246.16-7.33.1.aarch64.rpm True nss-resolve-246.16-7.33.1.aarch64.rpm True nss-systemd-246.16-7.33.1.aarch64.rpm True systemd-246.16-7.33.1.aarch64.rpm True systemd-container-246.16-7.33.1.aarch64.rpm True systemd-coredump-246.16-7.33.1.aarch64.rpm True systemd-devel-246.16-7.33.1.aarch64.rpm True systemd-doc-246.16-7.33.1.aarch64.rpm True systemd-journal-remote-246.16-7.33.1.aarch64.rpm True systemd-logger-246.16-7.33.1.aarch64.rpm True systemd-network-246.16-7.33.1.aarch64.rpm True systemd-sysvinit-246.16-7.33.1.aarch64.rpm True udev-246.16-7.33.1.aarch64.rpm True openSUSE-SLE-15.3-2022-69 low SUSE Updates openSUSE-SLE 15.3 This update for libmspack fixes the following issues: - CVE-2018-18586: Fixed directory traversal in chmextract by adding anti "../" and leading slash protection (bsc#1113040). libmspack-0.6-3.14.1.src.rpm libmspack-devel-0.6-3.14.1.x86_64.rpm libmspack0-0.6-3.14.1.x86_64.rpm libmspack0-32bit-0.6-3.14.1.x86_64.rpm mspack-tools-0.6-3.14.1.x86_64.rpm libmspack-devel-0.6-3.14.1.s390x.rpm libmspack0-0.6-3.14.1.s390x.rpm mspack-tools-0.6-3.14.1.s390x.rpm libmspack-devel-0.6-3.14.1.ppc64le.rpm libmspack0-0.6-3.14.1.ppc64le.rpm mspack-tools-0.6-3.14.1.ppc64le.rpm libmspack-devel-0.6-3.14.1.aarch64.rpm libmspack0-0.6-3.14.1.aarch64.rpm mspack-tools-0.6-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-62 important SUSE Updates openSUSE-SLE 15.3 This update for openexr fixes the following issues: - CVE-2021-45942: Fixed heap-based buffer overflow in Imf_3_1:LineCompositeTask:execute. (bsc#1194333) libIlmImf-2_2-23-2.2.1-3.41.1.x86_64.rpm libIlmImf-2_2-23-32bit-2.2.1-3.41.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-3.41.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-3.41.1.x86_64.rpm openexr-2.2.1-3.41.1.src.rpm openexr-2.2.1-3.41.1.x86_64.rpm openexr-devel-2.2.1-3.41.1.x86_64.rpm openexr-doc-2.2.1-3.41.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-3.41.1.s390x.rpm libIlmImfUtil-2_2-23-2.2.1-3.41.1.s390x.rpm openexr-2.2.1-3.41.1.s390x.rpm openexr-devel-2.2.1-3.41.1.s390x.rpm openexr-doc-2.2.1-3.41.1.s390x.rpm libIlmImf-2_2-23-2.2.1-3.41.1.ppc64le.rpm libIlmImfUtil-2_2-23-2.2.1-3.41.1.ppc64le.rpm openexr-2.2.1-3.41.1.ppc64le.rpm openexr-devel-2.2.1-3.41.1.ppc64le.rpm openexr-doc-2.2.1-3.41.1.ppc64le.rpm libIlmImf-2_2-23-2.2.1-3.41.1.aarch64.rpm libIlmImfUtil-2_2-23-2.2.1-3.41.1.aarch64.rpm openexr-2.2.1-3.41.1.aarch64.rpm openexr-devel-2.2.1-3.41.1.aarch64.rpm openexr-doc-2.2.1-3.41.1.aarch64.rpm openSUSE-SLE-15.3-2022-182 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 (bsc#1194019). - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripting when processing maliciously crafted web content. libjavascriptcoregtk-4_0-18-2.34.3-23.3.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.34.3-23.3.x86_64.rpm libwebkit2gtk-4_0-37-2.34.3-23.3.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.34.3-23.3.x86_64.rpm libwebkit2gtk3-lang-2.34.3-23.3.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3.x86_64.rpm typelib-1_0-WebKit2-4_0-2.34.3-23.3.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3.x86_64.rpm webkit-jsc-4-2.34.3-23.3.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.34.3-23.3.x86_64.rpm webkit2gtk3-2.34.3-23.3.src.rpm webkit2gtk3-devel-2.34.3-23.3.x86_64.rpm webkit2gtk3-minibrowser-2.34.3-23.3.x86_64.rpm libjavascriptcoregtk-4_0-18-2.34.3-23.3.s390x.rpm libwebkit2gtk-4_0-37-2.34.3-23.3.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3.s390x.rpm typelib-1_0-WebKit2-4_0-2.34.3-23.3.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3.s390x.rpm webkit-jsc-4-2.34.3-23.3.s390x.rpm webkit2gtk-4_0-injected-bundles-2.34.3-23.3.s390x.rpm webkit2gtk3-devel-2.34.3-23.3.s390x.rpm webkit2gtk3-minibrowser-2.34.3-23.3.s390x.rpm libjavascriptcoregtk-4_0-18-2.34.3-23.3.ppc64le.rpm libwebkit2gtk-4_0-37-2.34.3-23.3.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.34.3-23.3.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3.ppc64le.rpm webkit-jsc-4-2.34.3-23.3.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.34.3-23.3.ppc64le.rpm webkit2gtk3-devel-2.34.3-23.3.ppc64le.rpm webkit2gtk3-minibrowser-2.34.3-23.3.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.34.3-23.3.aarch64.rpm libwebkit2gtk-4_0-37-2.34.3-23.3.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3.aarch64.rpm typelib-1_0-WebKit2-4_0-2.34.3-23.3.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3.aarch64.rpm webkit-jsc-4-2.34.3-23.3.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.34.3-23.3.aarch64.rpm webkit2gtk3-devel-2.34.3-23.3.aarch64.rpm webkit2gtk3-minibrowser-2.34.3-23.3.aarch64.rpm openSUSE-SLE-15.3-2022-188 moderate SUSE Updates openSUSE-SLE 15.3 This update for hunspell fixes the following issues: - Fix myspell english dictionary not being installed (bsc#1193627) hunspell-1.6.2-3.8.1.src.rpm hunspell-1.6.2-3.8.1.x86_64.rpm hunspell-devel-1.6.2-3.8.1.x86_64.rpm hunspell-devel-32bit-1.6.2-3.8.1.x86_64.rpm hunspell-tools-1.6.2-3.8.1.x86_64.rpm libhunspell-1_6-0-1.6.2-3.8.1.x86_64.rpm libhunspell-1_6-0-32bit-1.6.2-3.8.1.x86_64.rpm hunspell-1.6.2-3.8.1.s390x.rpm hunspell-devel-1.6.2-3.8.1.s390x.rpm hunspell-tools-1.6.2-3.8.1.s390x.rpm libhunspell-1_6-0-1.6.2-3.8.1.s390x.rpm hunspell-1.6.2-3.8.1.ppc64le.rpm hunspell-devel-1.6.2-3.8.1.ppc64le.rpm hunspell-tools-1.6.2-3.8.1.ppc64le.rpm libhunspell-1_6-0-1.6.2-3.8.1.ppc64le.rpm hunspell-1.6.2-3.8.1.aarch64.rpm hunspell-devel-1.6.2-3.8.1.aarch64.rpm hunspell-tools-1.6.2-3.8.1.aarch64.rpm libhunspell-1_6-0-1.6.2-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-98 moderate SUSE Updates openSUSE-SLE 15.3 This update for xdg-desktop-portal-gtk fixes the following issues: - Fix regression that makes some dialogs disappear after one second (bsc#1194102) xdg-desktop-portal-gtk-1.8.0-3.9.1.src.rpm xdg-desktop-portal-gtk-1.8.0-3.9.1.x86_64.rpm xdg-desktop-portal-gtk-lang-1.8.0-3.9.1.noarch.rpm xdg-desktop-portal-gtk-1.8.0-3.9.1.s390x.rpm xdg-desktop-portal-gtk-1.8.0-3.9.1.ppc64le.rpm xdg-desktop-portal-gtk-1.8.0-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-1098 moderate SUSE Updates openSUSE-SLE 15.3 This update for davfs2 fixes the following issues: - Fix potential crash on umount (bsc#1194537) - Check for valid server etag property (bsc#1193733) - Fix cached file attributes (bsc#1188967) davfs2-1.5.4-150000.3.8.1.src.rpm davfs2-1.5.4-150000.3.8.1.x86_64.rpm davfs2-1.5.4-150000.3.8.1.s390x.rpm davfs2-1.5.4-150000.3.8.1.ppc64le.rpm davfs2-1.5.4-150000.3.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-117 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: Rust is shipped in version 1.57.0. Please see: https://blog.rust-lang.org/2021/12/02/Rust-1.57.0.html for more information. cargo-1.57.0-21.13.1.x86_64.rpm cargo1.57-1.57.0-7.3.1.x86_64.rpm rust-1.57.0-21.13.1.src.rpm rust-1.57.0-21.13.1.x86_64.rpm rust1.57-1.57.0-7.3.1.src.rpm rust1.57-1.57.0-7.3.1.x86_64.rpm cargo-1.57.0-21.13.1.s390x.rpm cargo1.57-1.57.0-7.3.1.s390x.rpm rust-1.57.0-21.13.1.s390x.rpm rust1.57-1.57.0-7.3.1.s390x.rpm cargo-1.57.0-21.13.1.ppc64le.rpm cargo1.57-1.57.0-7.3.1.ppc64le.rpm rust-1.57.0-21.13.1.ppc64le.rpm rust1.57-1.57.0-7.3.1.ppc64le.rpm cargo-1.57.0-21.13.1.aarch64.rpm cargo1.57-1.57.0-7.3.1.aarch64.rpm rust-1.57.0-21.13.1.aarch64.rpm rust1.57-1.57.0-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-64 moderate SUSE Updates openSUSE-SLE 15.3 This update for python39-pip fixes the following issues: - CVE-2021-3572: Fixed incorrect handling of unicode separators in git references (bsc#1186819). python39-pip-20.2.4-7.8.1.noarch.rpm python39-pip-20.2.4-7.8.1.src.rpm openSUSE-SLE-15.3-2022-140 important SUSE Updates openSUSE-SLE 15.3 This update for grafana fixes the following issues: - CVE-2021-39226: Fixed snapshot authentication bypass (bsc#1191454) - CVE-2021-43813: Fixed markdown path traversal (bsc#1193688) grafana-7.5.12-3.18.1.src.rpm grafana-7.5.12-3.18.1.x86_64.rpm grafana-7.5.12-3.18.1.s390x.rpm grafana-7.5.12-3.18.1.ppc64le.rpm grafana-7.5.12-3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-207 moderate SUSE Updates openSUSE-SLE 15.3 This update for glibc fixes the following issues: - Add support for livepatches on x86_64 for SUSE Linux Enterprise 15 SP4 (jsc#SLE-20049). glibc-2.31-9.9.1.src.rpm glibc-2.31-9.9.1.x86_64.rpm glibc-32bit-2.31-9.9.1.x86_64.rpm glibc-devel-2.31-9.9.1.x86_64.rpm glibc-devel-32bit-2.31-9.9.1.x86_64.rpm glibc-devel-static-2.31-9.9.1.x86_64.rpm glibc-devel-static-32bit-2.31-9.9.1.x86_64.rpm glibc-extra-2.31-9.9.1.x86_64.rpm glibc-html-2.31-9.9.1.noarch.rpm glibc-i18ndata-2.31-9.9.1.noarch.rpm glibc-info-2.31-9.9.1.noarch.rpm glibc-lang-2.31-9.9.1.noarch.rpm glibc-locale-2.31-9.9.1.x86_64.rpm glibc-locale-base-2.31-9.9.1.x86_64.rpm glibc-locale-base-32bit-2.31-9.9.1.x86_64.rpm glibc-profile-2.31-9.9.1.x86_64.rpm glibc-profile-32bit-2.31-9.9.1.x86_64.rpm glibc-utils-2.31-9.9.1.x86_64.rpm glibc-utils-32bit-2.31-9.9.1.x86_64.rpm glibc-utils-src-2.31-9.9.1.src.rpm nscd-2.31-9.9.1.x86_64.rpm glibc-2.31-9.9.1.s390x.rpm glibc-devel-2.31-9.9.1.s390x.rpm glibc-devel-static-2.31-9.9.1.s390x.rpm glibc-extra-2.31-9.9.1.s390x.rpm glibc-locale-2.31-9.9.1.s390x.rpm glibc-locale-base-2.31-9.9.1.s390x.rpm glibc-profile-2.31-9.9.1.s390x.rpm glibc-utils-2.31-9.9.1.s390x.rpm nscd-2.31-9.9.1.s390x.rpm glibc-2.31-9.9.1.ppc64le.rpm glibc-devel-2.31-9.9.1.ppc64le.rpm glibc-devel-static-2.31-9.9.1.ppc64le.rpm glibc-extra-2.31-9.9.1.ppc64le.rpm glibc-locale-2.31-9.9.1.ppc64le.rpm glibc-locale-base-2.31-9.9.1.ppc64le.rpm glibc-profile-2.31-9.9.1.ppc64le.rpm glibc-utils-2.31-9.9.1.ppc64le.rpm nscd-2.31-9.9.1.ppc64le.rpm glibc-2.31-9.9.1.aarch64.rpm glibc-devel-2.31-9.9.1.aarch64.rpm glibc-devel-static-2.31-9.9.1.aarch64.rpm glibc-extra-2.31-9.9.1.aarch64.rpm glibc-locale-2.31-9.9.1.aarch64.rpm glibc-locale-base-2.31-9.9.1.aarch64.rpm glibc-profile-2.31-9.9.1.aarch64.rpm glibc-utils-2.31-9.9.1.aarch64.rpm nscd-2.31-9.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-87 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Update to go1.16.13 (bsc#1182345) - it includes fixes to the compiler, linker, runtime, and the net/http package. * x/net/http2: `http.Server.WriteTimeout` does not fire if the http2 stream's window is out of space. * runtime/race: building for iOS, but linking in object file built for macOS * runtime: race detector `SIGABRT` or `SIGSEGV` on macOS Monterey * runtime: mallocs cause "base outside usable address space" panic when running on iOS 14 * cmd/link: does not set section type of `.init_array` correctly * cmd/link: support more load commands on `Mach-O` * cmd/compile: internal compiler error: `Op...LECall and OpDereference have mismatched mem` go1.16-1.16.13-1.40.1.src.rpm go1.16-1.16.13-1.40.1.x86_64.rpm go1.16-doc-1.16.13-1.40.1.x86_64.rpm go1.16-race-1.16.13-1.40.1.x86_64.rpm go1.16-1.16.13-1.40.1.s390x.rpm go1.16-doc-1.16.13-1.40.1.s390x.rpm go1.16-1.16.13-1.40.1.ppc64le.rpm go1.16-doc-1.16.13-1.40.1.ppc64le.rpm go1.16-1.16.13-1.40.1.aarch64.rpm go1.16-doc-1.16.13-1.40.1.aarch64.rpm go1.16-race-1.16.13-1.40.1.aarch64.rpm openSUSE-SLE-15.3-2022-88 moderate SUSE Updates openSUSE-SLE 15.3 This update for ghostscript fixes the following issues: - CVE-2021-45944: Fixed use-after-free in sampled_data_sample (bsc#1194303) - CVE-2021-45949: Fixed heap-based buffer overflow in sampled_data_finish (bsc#1194304) ghostscript-9.52-161.1.src.rpm ghostscript-9.52-161.1.x86_64.rpm ghostscript-devel-9.52-161.1.x86_64.rpm ghostscript-x11-9.52-161.1.x86_64.rpm ghostscript-9.52-161.1.s390x.rpm ghostscript-devel-9.52-161.1.s390x.rpm ghostscript-x11-9.52-161.1.s390x.rpm ghostscript-9.52-161.1.ppc64le.rpm ghostscript-devel-9.52-161.1.ppc64le.rpm ghostscript-x11-9.52-161.1.ppc64le.rpm ghostscript-9.52-161.1.aarch64.rpm ghostscript-devel-9.52-161.1.aarch64.rpm ghostscript-x11-9.52-161.1.aarch64.rpm openSUSE-SLE-15.3-2022-100 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issues: - Update hwdata from version 0.353 to 0.355 which includes updated pci, usb and vendor ids (bsc#1194338) hwdata-0.355-3.39.1.noarch.rpm hwdata-0.355-3.39.1.src.rpm openSUSE-SLE-15.3-2022-95 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: - Add support for simplefb (bsc#1193532). grub2-2.04-22.9.1.src.rpm grub2-2.04-22.9.1.x86_64.rpm grub2-arm64-efi-2.04-22.9.1.noarch.rpm grub2-arm64-efi-debug-2.04-22.9.1.noarch.rpm grub2-branding-upstream-2.04-22.9.1.x86_64.rpm grub2-i386-pc-2.04-22.9.1.noarch.rpm grub2-i386-pc-debug-2.04-22.9.1.noarch.rpm grub2-powerpc-ieee1275-2.04-22.9.1.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-22.9.1.noarch.rpm grub2-snapper-plugin-2.04-22.9.1.noarch.rpm grub2-systemd-sleep-plugin-2.04-22.9.1.noarch.rpm grub2-x86_64-efi-2.04-22.9.1.noarch.rpm grub2-x86_64-efi-debug-2.04-22.9.1.noarch.rpm grub2-x86_64-xen-2.04-22.9.1.noarch.rpm grub2-2.04-22.9.1.s390x.rpm grub2-branding-upstream-2.04-22.9.1.s390x.rpm grub2-s390x-emu-2.04-22.9.1.s390x.rpm grub2-s390x-emu-debug-2.04-22.9.1.s390x.rpm grub2-2.04-22.9.1.ppc64le.rpm grub2-branding-upstream-2.04-22.9.1.ppc64le.rpm grub2-2.04-22.9.1.aarch64.rpm grub2-branding-upstream-2.04-22.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-78 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: Update to go1.17.6 released 2022-01-06. (bsc#1190649) - It includes fixes to the compiler, linker, runtime, and the crypto/x509, net/http, and reflect packages. * go#50165 crypto/x509: error parsing large ASN.1 identifiers * go#50073 runtime: race detector `SIGABRT` or `SIGSEGV` on macOS Monterey * go#49961 reflect: segmentation violation while using html/template * go#49921 x/net/http2: `http.Server.WriteTimeout` does not fire if the http2 stream's window is out of space. * go#49413 cmd/compile: internal compiler error: `Op...LECall and OpDereference have mismatched mem` * go#48116 runtime: mallocs cause `base outside usable address space` panic when running on iOS 14 go1.17-1.17.6-1.17.1.i586.rpm go1.17-1.17.6-1.17.1.src.rpm go1.17-doc-1.17.6-1.17.1.i586.rpm go1.17-1.17.6-1.17.1.x86_64.rpm go1.17-doc-1.17.6-1.17.1.x86_64.rpm go1.17-race-1.17.6-1.17.1.x86_64.rpm go1.17-1.17.6-1.17.1.s390x.rpm go1.17-doc-1.17.6-1.17.1.s390x.rpm go1.17-1.17.6-1.17.1.ppc64le.rpm go1.17-doc-1.17.6-1.17.1.ppc64le.rpm go1.17-1.17.6-1.17.1.aarch64.rpm go1.17-doc-1.17.6-1.17.1.aarch64.rpm go1.17-race-1.17.6-1.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-324 moderate SUSE Updates openSUSE-SLE 15.3 This update for supportutils-plugin-cloud-init fixes the following issues: - This plugin adds functionality to the supportconfig tool, making it include logs and status of systemd services relating to cloud-init in the supportconfig tarballs. (jsc#SLE-19069, jsc#SLE-20508) supportutils-plugin-cloud-init-1.0-3.3.1.noarch.rpm supportutils-plugin-cloud-init-1.0-3.3.1.src.rpm openSUSE-SLE-15.3-2022-97 important SUSE Updates openSUSE-SLE 15.3 This update for log4j12 fixes the following issues: - Fix 'chainsaw' executable (bsc#1193184) log4j12-1.2.17-4.6.1.noarch.rpm log4j12-1.2.17-4.6.1.src.rpm log4j12-javadoc-1.2.17-4.6.1.noarch.rpm log4j12-manual-1.2.17-4.6.1.noarch.rpm openSUSE-SLE-15.3-2022-209 moderate SUSE Updates openSUSE-SLE 15.3 This update for opencl-headers fixes the following issues: Update opencl-headers from 2.2+git.20170617 to version 2.2+git.20211214 (bsc#1193617) - Add definitions for cl_arm_protected_memory_allocation - Update headers for cl_intel_unified_shared_memory - Add provisional command-buffer extension - Rename cl_intel_thread_local_exec to cl_intel_exec_by_local_thread - Fix API suffix version macros for semaphore extensions command definitions - If change the include path destination when run cmake configure with `DCMAKE_INSTALL_INCLUDEDIR`, the .cmake generated still point to hardcoded path `include`. this fix it - Add external memory, external semaphore, and semaphore provisional extensions - Fix condition for warning 4201 pop - Update extension headers for cl_intel_device_attribute_query - Update extension headers for cl_intel_sharing_format_query - Add support for cl_khr_integer_dot_product v2 - Update headers for cl_khr_integer_dot_product - Add cl_khr_pci_bus_info and cl_khr_suggested_local_work_size - Add missing 'stdint.h' include to 'CL/cl.h' - Disable failing CI configs - Fixes for usage of macro CL_API_ENTRY - cl_intel_command_queue_families extension - Update default OpenCL version in README - Replace uses of CL_EXT_{PRE,SUF}FIX* with CL_API_{PRE,SUF}FIX* - Do not include cl_gl_ext.h from opencl.h - Move cl_khr_gl_event to cl_gl.h - Add testing for cl_d3d10.h, cl_d3d11.h, and cl_dx9_media_sharing.h - Add definitions for cl_arm_import_memory_android_hardware_buffer v1.1.0 - Add support for user-supplied prefix/suffix in function declarations - Move cl_icd_layer.h from OpenCL-ICD-Loader to OpenCL-Headers. - Add definitions for cl_arm_controlled_kernel_termination - Add definitions for cl_arm_scheduling_controls v0.3.0 - Remove unused CL_EXTENSION_WEAK_LINK definition - Move Intel extensions into common files - Add definitions for cl_arm_scheduling_controls v0.2.0 - Update apt package list in CI before running cmake - Re-enable format string warning in CI - Use PRId64 and PRIu64 when printing 64-bit values - Fix test format string warnings - Fix origin argument names for rect functions - Enable GitHub Actions for pull requests - Added definitions for cl_img_generate_mipmap. - Added missing define for cl_img_use_gralloc_ptr. - Use the alignment attribute under Integrity OS. - Comprehensive CMake Package Config support - Added definitions for cl_img_mem_properties. - Switch the default version for the OpenCL headers to OpenCL 3.0 - Re-enable anonymous unions by default - Avoid anon structs when MSVC uses /Za - Update APIs and enums for cl_intel_unified_shared_memory for rev Q - Header changes for cl_intel_mem_force_host_memory - Add definitions for cl_ext_cxx_for_opencl - Add definitions for cl_arm_scheduling_controls - Add cl_intel_create_buffer_with_properties and cl_intel_mem_channel_property extensions - Add cl_api prefix for clSetContextDestructorCallback - Update ICD dispatch table with clSetContextDestructorCallback - Deprecate clSetProgramReleaseCallback - Add CL_DEVICE_LATEST_CONFORMANCE_VERSION_PASSED - Add clSetContextDestructorCallback - Introduce cl_properties type - Switch device enqueue boolean query to capabilities query - Fix build of dependent software with clang - Add APIs and enums for cl_intel_unified_shared_memory - Add cl_khr_device_uuid definitions - Add cl_half.h header - Add tokens for cl_amd_device_attribute_query - Add Windows CI using Travis - Update headers for OpenCL 3.0 - Add cl_khr_extended_versioning macro - Synchronize experimental enum etc with cl.xml - Include the DirectX sharing headers from CL/cl_icd.h. - Add missing error code CL_CONTEXT_TERMINATED_KHR - Change license to Apache 2.0 - Add enum value for `cl_khronos_vendor_id` - Experimental enum cl_khronos_vendor_id - Experimental enums for language queries - Add experimental enum CL_COMMAND_SVM_MIGRATE_MEM - Move two subgroup queries from cl_kernel_info to cl_kernel_sub_group_info - Add experimental enums - Add CL_IMPORT_DMA_BUF_DATA_CONSISTENCY_WITH_HOST_ARM definition - Add tests and Travis CI config - Add definitions for cl_arm_import_memory_android_hardware_buffer - Add version guards to ICD declarations - Add cl_khr_extended_versioning definitions - Add API function pointer and ICD dispatch table definitions - Add definitions for cl_arm_job_slot_selection - Fix _cl_image_desc for OpenCL 1.2 compatibility - Simplify the definition of deprecation prefixes/suffixes - Added suffixed enums for cl_khr_image2d_from_buffer - Drop __attribute__((aligned(X))) from cl_X defs - Small typo fix for pfn_notify - Use __vector instead of vector to fix altivec builds - Fix clCreateFromGLBuffer error code result type - Fixed w4201 triggering with MSVC in /W4 /Za builds - Add suffixed enums for cl_khr_mipmap_image - Remove all Apple specific content from headers - Add enums for cl_arm_get_core_id - Rename CL_IMPORT_TYPE_SECURE_ARM - Add CL_DEVICE_DOUBLE_FP_CONFIG - Remove CL_DEVICE_HALF_FP_CONFIG - Unified Headers and added clSetCommandQueueProperty to unified headers - Add cl_khr_il_program to OpenCL 1.2 and 2.0 headers - Add cl_khr_create_command_queue - Use correctly rounded decimal mathematical constants - Shorten CL_DBL_MAX for Visual Studio to fix token overflow - Anon structs supported in C11 opencl-headers-2.2+git.20211214-3.3.1.noarch.rpm opencl-headers-2.2+git.20211214-3.3.1.src.rpm openSUSE-SLE-15.3-2022-375 moderate SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: Update to version 3.6.1: - CVE-2021-4185: RTMPT dissector infinite loop (bsc#1194166) - CVE-2021-4184: BitTorrent DHT dissector infinite loop (bsc#1194167) - CVE-2021-4183: pcapng file parser crash (bsc#1194168) - CVE-2021-4182: RFC 7468 file parser infinite loop (bsc#1194169) - CVE-2021-4181: Sysdig Event dissector crash (bsc#1194170) - CVE-2021-4190: Kafka dissector infinite loop (bsc#1194171) - Support for Shared Memory Communications (SMC) (jsc#SLE-18727) libvirt-7.1.0-150300.6.23.1.src.rpm libvirt-7.1.0-150300.6.23.1.x86_64.rpm libvirt-admin-7.1.0-150300.6.23.1.x86_64.rpm libvirt-bash-completion-7.1.0-150300.6.23.1.noarch.rpm libvirt-client-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-xen-7.1.0-150300.6.23.1.x86_64.rpm libvirt-devel-32bit-7.1.0-150300.6.23.1.x86_64.rpm libvirt-devel-7.1.0-150300.6.23.1.x86_64.rpm libvirt-doc-7.1.0-150300.6.23.1.noarch.rpm libvirt-libs-7.1.0-150300.6.23.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-150300.6.23.1.x86_64.rpm libvirt-nss-7.1.0-150300.6.23.1.x86_64.rpm libwireshark15-3.6.1-3.68.1.x86_64.rpm libwiretap12-3.6.1-3.68.1.x86_64.rpm libwsutil13-3.6.1-3.68.1.x86_64.rpm wireshark-3.6.1-3.68.1.src.rpm wireshark-3.6.1-3.68.1.x86_64.rpm wireshark-devel-3.6.1-3.68.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.23.1.x86_64.rpm wireshark-ui-qt-3.6.1-3.68.1.x86_64.rpm libvirt-7.1.0-150300.6.23.1.s390x.rpm libvirt-admin-7.1.0-150300.6.23.1.s390x.rpm libvirt-client-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-config-network-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-hooks-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-lxc-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-qemu-7.1.0-150300.6.23.1.s390x.rpm libvirt-devel-7.1.0-150300.6.23.1.s390x.rpm libvirt-libs-7.1.0-150300.6.23.1.s390x.rpm libvirt-lock-sanlock-7.1.0-150300.6.23.1.s390x.rpm libvirt-nss-7.1.0-150300.6.23.1.s390x.rpm libwireshark15-3.6.1-3.68.1.s390x.rpm libwiretap12-3.6.1-3.68.1.s390x.rpm libwsutil13-3.6.1-3.68.1.s390x.rpm wireshark-3.6.1-3.68.1.s390x.rpm wireshark-devel-3.6.1-3.68.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-150300.6.23.1.s390x.rpm wireshark-ui-qt-3.6.1-3.68.1.s390x.rpm libvirt-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-admin-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-client-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-devel-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-libs-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-nss-7.1.0-150300.6.23.1.ppc64le.rpm libwireshark15-3.6.1-3.68.1.ppc64le.rpm libwiretap12-3.6.1-3.68.1.ppc64le.rpm libwsutil13-3.6.1-3.68.1.ppc64le.rpm wireshark-3.6.1-3.68.1.ppc64le.rpm wireshark-devel-3.6.1-3.68.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-150300.6.23.1.ppc64le.rpm wireshark-ui-qt-3.6.1-3.68.1.ppc64le.rpm libvirt-7.1.0-150300.6.23.1.aarch64.rpm libvirt-admin-7.1.0-150300.6.23.1.aarch64.rpm libvirt-client-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-150300.6.23.1.aarch64.rpm libvirt-devel-7.1.0-150300.6.23.1.aarch64.rpm libvirt-libs-7.1.0-150300.6.23.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-150300.6.23.1.aarch64.rpm libvirt-nss-7.1.0-150300.6.23.1.aarch64.rpm libwireshark15-3.6.1-3.68.1.aarch64.rpm libwiretap12-3.6.1-3.68.1.aarch64.rpm libwsutil13-3.6.1-3.68.1.aarch64.rpm wireshark-3.6.1-3.68.1.aarch64.rpm wireshark-devel-3.6.1-3.68.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.23.1.aarch64.rpm wireshark-ui-qt-3.6.1-3.68.1.aarch64.rpm openSUSE-SLE-15.3-2022-104 important SUSE Updates openSUSE-SLE 15.3 This update for SDL2 fixes the following issues: - CVE-2020-14409: Fixed Integer Overflow resulting in heap corruption in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP (bsc#1181202). - CVE-2020-14410: Fixed heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP (bsc#1181201). SDL2-2.0.8-11.3.1.src.rpm libSDL2-2_0-0-2.0.8-11.3.1.x86_64.rpm libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64.rpm libSDL2-devel-2.0.8-11.3.1.x86_64.rpm libSDL2-devel-32bit-2.0.8-11.3.1.x86_64.rpm libSDL2-2_0-0-2.0.8-11.3.1.s390x.rpm libSDL2-devel-2.0.8-11.3.1.s390x.rpm libSDL2-2_0-0-2.0.8-11.3.1.ppc64le.rpm libSDL2-devel-2.0.8-11.3.1.ppc64le.rpm libSDL2-2_0-0-2.0.8-11.3.1.aarch64.rpm libSDL2-devel-2.0.8-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-99 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-samba-client fixes the following issues: - With latest versions of samba (>=4.15.0) calling 'net ads lookup' with '-U%' fails; (bsc#1193533) yast2-samba-client-4.3.4-3.6.1.noarch.rpm yast2-samba-client-4.3.4-3.6.1.src.rpm openSUSE-SLE-15.3-2022-144 moderate SUSE Updates openSUSE-SLE 15.3 This update for cryptsetup fixes the following issues: - CVE-2021-4122: Fixed possible attacks against data confidentiality through LUKS2 online reencryption extension crash recovery (bsc#1194469). cryptsetup-2.3.7-150300.3.5.1.src.rpm cryptsetup-2.3.7-150300.3.5.1.x86_64.rpm cryptsetup-lang-2.3.7-150300.3.5.1.noarch.rpm libcryptsetup-devel-2.3.7-150300.3.5.1.x86_64.rpm libcryptsetup12-2.3.7-150300.3.5.1.x86_64.rpm libcryptsetup12-32bit-2.3.7-150300.3.5.1.x86_64.rpm libcryptsetup12-hmac-2.3.7-150300.3.5.1.x86_64.rpm libcryptsetup12-hmac-32bit-2.3.7-150300.3.5.1.x86_64.rpm cryptsetup-2.3.7-150300.3.5.1.s390x.rpm libcryptsetup-devel-2.3.7-150300.3.5.1.s390x.rpm libcryptsetup12-2.3.7-150300.3.5.1.s390x.rpm libcryptsetup12-hmac-2.3.7-150300.3.5.1.s390x.rpm cryptsetup-2.3.7-150300.3.5.1.ppc64le.rpm libcryptsetup-devel-2.3.7-150300.3.5.1.ppc64le.rpm libcryptsetup12-2.3.7-150300.3.5.1.ppc64le.rpm libcryptsetup12-hmac-2.3.7-150300.3.5.1.ppc64le.rpm cryptsetup-2.3.7-150300.3.5.1.aarch64.rpm libcryptsetup-devel-2.3.7-150300.3.5.1.aarch64.rpm libcryptsetup12-2.3.7-150300.3.5.1.aarch64.rpm libcryptsetup12-hmac-2.3.7-150300.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-190 important SUSE Updates openSUSE-SLE 15.3 This update for polkit fixes the following issues: - CVE-2021-4034: Fixed a local privilege escalation in pkexec (bsc#1194568). libpolkit0-0.116-3.6.1.x86_64.rpm libpolkit0-32bit-0.116-3.6.1.x86_64.rpm polkit-0.116-3.6.1.src.rpm polkit-0.116-3.6.1.x86_64.rpm polkit-devel-0.116-3.6.1.x86_64.rpm polkit-doc-0.116-3.6.1.noarch.rpm typelib-1_0-Polkit-1_0-0.116-3.6.1.x86_64.rpm libpolkit0-0.116-3.6.1.s390x.rpm polkit-0.116-3.6.1.s390x.rpm polkit-devel-0.116-3.6.1.s390x.rpm typelib-1_0-Polkit-1_0-0.116-3.6.1.s390x.rpm libpolkit0-0.116-3.6.1.ppc64le.rpm polkit-0.116-3.6.1.ppc64le.rpm polkit-devel-0.116-3.6.1.ppc64le.rpm typelib-1_0-Polkit-1_0-0.116-3.6.1.ppc64le.rpm libpolkit0-0.116-3.6.1.aarch64.rpm polkit-0.116-3.6.1.aarch64.rpm polkit-devel-0.116-3.6.1.aarch64.rpm typelib-1_0-Polkit-1_0-0.116-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-196 moderate SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Fixed an issue when the required data is not collected during run of 'dbginfo.sh' (bsc#1193462) - Replace problematic commands with additional ones in 'dbginfo.sh' (bsc#1193462) - Added fixes to 'dbginfo.sh' for stabilzation of data collection (bsc#1193461) libekmfweb1-2.15.1-8.11.1.s390x.rpm libekmfweb1-devel-2.15.1-8.11.1.s390x.rpm osasnmpd-2.15.1-8.11.1.s390x.rpm s390-tools-2.15.1-8.11.1.s390x.rpm s390-tools-2.15.1-8.11.1.src.rpm s390-tools-hmcdrvfs-2.15.1-8.11.1.s390x.rpm s390-tools-zdsfs-2.15.1-8.11.1.s390x.rpm openSUSE-SLE-15.3-2022-228 moderate SUSE Updates openSUSE-SLE 15.3 This update for boost fixes the following issues: - Fix compilation errors (bsc#1194522) boost-1.66.0-12.3.1.src.rpm boost-base-1.66.0-12.3.1.src.rpm boost-license1_66_0-1.66.0-12.3.1.noarch.rpm boost_1_66-doc-html-1.66.0-12.3.1.noarch.rpm boost_1_66-doc-pdf-1.66.0-12.3.1.noarch.rpm boost_1_66-jam-1.66.0-12.3.1.x86_64.rpm boost_1_66-quickbook-1.66.0-12.3.1.x86_64.rpm libboost_atomic1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_atomic1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_atomic1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_chrono1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_chrono1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_container1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_container1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_container1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_context1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_context1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_context1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_coroutine1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_coroutine1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_coroutine1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_date_time1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_date_time1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_date_time1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_fiber1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_fiber1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_fiber1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_filesystem1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_filesystem1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_filesystem1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_graph1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_graph1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_graph1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_graph_parallel1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_graph_parallel1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_graph_parallel1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_headers1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_iostreams1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_iostreams1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_iostreams1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_locale1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_locale1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_locale1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_log1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_log1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_math1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_math1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_math1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_mpi1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_mpi1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_mpi1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_mpi_python-py2_7-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_mpi_python-py2_7-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_mpi_python-py3-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_mpi_python-py3-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_numpy-py2_7-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_numpy-py2_7-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_numpy-py3-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_numpy-py3-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_program_options1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_program_options1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_program_options1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_python-py2_7-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_python-py2_7-1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_python-py2_7-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_python-py3-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_python-py3-1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_python-py3-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_random1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_random1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_random1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_regex1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_regex1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_regex1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_serialization1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_serialization1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_serialization1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_signals1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_signals1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_signals1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_stacktrace1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_stacktrace1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_stacktrace1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_system1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_system1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_system1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_test1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_test1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_test1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_thread1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_thread1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_thread1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_timer1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_timer1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_type_erasure1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_type_erasure1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_type_erasure1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_wave1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_wave1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_wave1_66_0-devel-1.66.0-12.3.1.x86_64.rpm python2-boost_parallel_mpi1_66_0-1.66.0-12.3.1.x86_64.rpm python3-boost_parallel_mpi1_66_0-1.66.0-12.3.1.x86_64.rpm boost_1_66-jam-1.66.0-12.3.1.s390x.rpm boost_1_66-quickbook-1.66.0-12.3.1.s390x.rpm libboost_atomic1_66_0-1.66.0-12.3.1.s390x.rpm libboost_atomic1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_chrono1_66_0-1.66.0-12.3.1.s390x.rpm libboost_chrono1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_container1_66_0-1.66.0-12.3.1.s390x.rpm libboost_container1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_date_time1_66_0-1.66.0-12.3.1.s390x.rpm libboost_date_time1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_filesystem1_66_0-1.66.0-12.3.1.s390x.rpm libboost_filesystem1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_graph1_66_0-1.66.0-12.3.1.s390x.rpm libboost_graph1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_graph_parallel1_66_0-1.66.0-12.3.1.s390x.rpm libboost_graph_parallel1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_headers1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_iostreams1_66_0-1.66.0-12.3.1.s390x.rpm libboost_iostreams1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_locale1_66_0-1.66.0-12.3.1.s390x.rpm libboost_locale1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_log1_66_0-1.66.0-12.3.1.s390x.rpm libboost_log1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_math1_66_0-1.66.0-12.3.1.s390x.rpm libboost_math1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_mpi1_66_0-1.66.0-12.3.1.s390x.rpm libboost_mpi1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_mpi_python-py2_7-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_mpi_python-py2_7-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_mpi_python-py3-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_mpi_python-py3-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_numpy-py2_7-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_numpy-py2_7-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_numpy-py3-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_numpy-py3-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_program_options1_66_0-1.66.0-12.3.1.s390x.rpm libboost_program_options1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_python-py2_7-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_python-py2_7-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_python-py3-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_python-py3-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_random1_66_0-1.66.0-12.3.1.s390x.rpm libboost_random1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_regex1_66_0-1.66.0-12.3.1.s390x.rpm libboost_regex1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_serialization1_66_0-1.66.0-12.3.1.s390x.rpm libboost_serialization1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_signals1_66_0-1.66.0-12.3.1.s390x.rpm libboost_signals1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_stacktrace1_66_0-1.66.0-12.3.1.s390x.rpm libboost_stacktrace1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_system1_66_0-1.66.0-12.3.1.s390x.rpm libboost_system1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_test1_66_0-1.66.0-12.3.1.s390x.rpm libboost_test1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_thread1_66_0-1.66.0-12.3.1.s390x.rpm libboost_thread1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_timer1_66_0-1.66.0-12.3.1.s390x.rpm libboost_timer1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_type_erasure1_66_0-1.66.0-12.3.1.s390x.rpm libboost_type_erasure1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_wave1_66_0-1.66.0-12.3.1.s390x.rpm libboost_wave1_66_0-devel-1.66.0-12.3.1.s390x.rpm python2-boost_parallel_mpi1_66_0-1.66.0-12.3.1.s390x.rpm python3-boost_parallel_mpi1_66_0-1.66.0-12.3.1.s390x.rpm boost_1_66-jam-1.66.0-12.3.1.ppc64le.rpm boost_1_66-quickbook-1.66.0-12.3.1.ppc64le.rpm libboost_atomic1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_atomic1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_chrono1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_chrono1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_container1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_container1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_context1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_context1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_coroutine1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_coroutine1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_date_time1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_date_time1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_fiber1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_fiber1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_filesystem1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_filesystem1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_graph1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_graph1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_graph_parallel1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_graph_parallel1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_headers1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_iostreams1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_iostreams1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_locale1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_locale1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_log1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_log1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_math1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_math1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_mpi1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_mpi1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_mpi_python-py2_7-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_mpi_python-py2_7-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_mpi_python-py3-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_mpi_python-py3-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_numpy-py2_7-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_numpy-py2_7-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_numpy-py3-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_numpy-py3-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_program_options1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_program_options1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_python-py2_7-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_python-py2_7-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_python-py3-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_python-py3-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_random1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_random1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_regex1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_regex1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_serialization1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_serialization1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_signals1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_signals1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_stacktrace1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_stacktrace1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_system1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_system1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_test1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_test1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_thread1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_thread1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_timer1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_timer1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_type_erasure1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_type_erasure1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_wave1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_wave1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm python2-boost_parallel_mpi1_66_0-1.66.0-12.3.1.ppc64le.rpm python3-boost_parallel_mpi1_66_0-1.66.0-12.3.1.ppc64le.rpm boost_1_66-jam-1.66.0-12.3.1.aarch64.rpm boost_1_66-quickbook-1.66.0-12.3.1.aarch64.rpm libboost_atomic1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_atomic1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_chrono1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_chrono1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_container1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_container1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_context1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_context1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_coroutine1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_coroutine1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_date_time1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_date_time1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_fiber1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_fiber1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_filesystem1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_filesystem1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_graph1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_graph1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_graph_parallel1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_graph_parallel1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_headers1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_iostreams1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_iostreams1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_locale1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_locale1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_log1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_log1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_math1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_math1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_mpi1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_mpi1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_mpi_python-py2_7-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_mpi_python-py2_7-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_mpi_python-py3-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_mpi_python-py3-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_numpy-py2_7-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_numpy-py2_7-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_numpy-py3-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_numpy-py3-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_program_options1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_program_options1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_python-py2_7-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_python-py2_7-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_python-py3-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_python-py3-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_random1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_random1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_regex1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_regex1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_serialization1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_serialization1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_signals1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_signals1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_stacktrace1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_stacktrace1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_system1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_system1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_test1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_test1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_thread1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_thread1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_timer1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_timer1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_type_erasure1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_type_erasure1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_wave1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_wave1_66_0-devel-1.66.0-12.3.1.aarch64.rpm python2-boost_parallel_mpi1_66_0-1.66.0-12.3.1.aarch64.rpm python3-boost_parallel_mpi1_66_0-1.66.0-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-125 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Update dependency and requirement of util-linux-systemd (bsc#1194162) - Improve SSL CA certificate bundle detection (bsc#1175892) dracut-049.1+suse.224.gd285ddd8-3.51.1.src.rpm dracut-049.1+suse.224.gd285ddd8-3.51.1.x86_64.rpm dracut-extra-049.1+suse.224.gd285ddd8-3.51.1.x86_64.rpm dracut-fips-049.1+suse.224.gd285ddd8-3.51.1.x86_64.rpm dracut-ima-049.1+suse.224.gd285ddd8-3.51.1.x86_64.rpm dracut-tools-049.1+suse.224.gd285ddd8-3.51.1.x86_64.rpm dracut-049.1+suse.224.gd285ddd8-3.51.1.s390x.rpm dracut-extra-049.1+suse.224.gd285ddd8-3.51.1.s390x.rpm dracut-fips-049.1+suse.224.gd285ddd8-3.51.1.s390x.rpm dracut-ima-049.1+suse.224.gd285ddd8-3.51.1.s390x.rpm dracut-tools-049.1+suse.224.gd285ddd8-3.51.1.s390x.rpm dracut-049.1+suse.224.gd285ddd8-3.51.1.ppc64le.rpm dracut-extra-049.1+suse.224.gd285ddd8-3.51.1.ppc64le.rpm dracut-fips-049.1+suse.224.gd285ddd8-3.51.1.ppc64le.rpm dracut-ima-049.1+suse.224.gd285ddd8-3.51.1.ppc64le.rpm dracut-tools-049.1+suse.224.gd285ddd8-3.51.1.ppc64le.rpm dracut-049.1+suse.224.gd285ddd8-3.51.1.aarch64.rpm dracut-extra-049.1+suse.224.gd285ddd8-3.51.1.aarch64.rpm dracut-fips-049.1+suse.224.gd285ddd8-3.51.1.aarch64.rpm dracut-ima-049.1+suse.224.gd285ddd8-3.51.1.aarch64.rpm dracut-tools-049.1+suse.224.gd285ddd8-3.51.1.aarch64.rpm openSUSE-SLE-15.3-2022-92 important SUSE Updates openSUSE-SLE 15.3 This update for rsyslog fixes the following issues: - Fix config parameters in specfile (bsc#1194593) rsyslog-8.2106.0-4.16.1.src.rpm rsyslog-8.2106.0-4.16.1.x86_64.rpm rsyslog-diag-tools-8.2106.0-4.16.1.x86_64.rpm rsyslog-doc-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-dbi-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-elasticsearch-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-gcrypt-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-gssapi-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-gtls-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-mmnormalize-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-mysql-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-omamqp1-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-omhttpfs-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-omtcl-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-ossl-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-pgsql-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-relp-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-snmp-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-udpspoof-8.2106.0-4.16.1.x86_64.rpm rsyslog-8.2106.0-4.16.1.s390x.rpm rsyslog-diag-tools-8.2106.0-4.16.1.s390x.rpm rsyslog-doc-8.2106.0-4.16.1.s390x.rpm rsyslog-module-dbi-8.2106.0-4.16.1.s390x.rpm rsyslog-module-elasticsearch-8.2106.0-4.16.1.s390x.rpm rsyslog-module-gcrypt-8.2106.0-4.16.1.s390x.rpm rsyslog-module-gssapi-8.2106.0-4.16.1.s390x.rpm rsyslog-module-gtls-8.2106.0-4.16.1.s390x.rpm rsyslog-module-mmnormalize-8.2106.0-4.16.1.s390x.rpm rsyslog-module-mysql-8.2106.0-4.16.1.s390x.rpm rsyslog-module-omamqp1-8.2106.0-4.16.1.s390x.rpm rsyslog-module-omhttpfs-8.2106.0-4.16.1.s390x.rpm rsyslog-module-omtcl-8.2106.0-4.16.1.s390x.rpm rsyslog-module-ossl-8.2106.0-4.16.1.s390x.rpm rsyslog-module-pgsql-8.2106.0-4.16.1.s390x.rpm rsyslog-module-relp-8.2106.0-4.16.1.s390x.rpm rsyslog-module-snmp-8.2106.0-4.16.1.s390x.rpm rsyslog-module-udpspoof-8.2106.0-4.16.1.s390x.rpm rsyslog-8.2106.0-4.16.1.ppc64le.rpm rsyslog-diag-tools-8.2106.0-4.16.1.ppc64le.rpm rsyslog-doc-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-dbi-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-elasticsearch-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-gcrypt-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-gssapi-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-gtls-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-mmnormalize-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-mysql-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-omamqp1-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-omhttpfs-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-omtcl-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-ossl-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-pgsql-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-relp-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-snmp-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-udpspoof-8.2106.0-4.16.1.ppc64le.rpm rsyslog-8.2106.0-4.16.1.aarch64.rpm rsyslog-diag-tools-8.2106.0-4.16.1.aarch64.rpm rsyslog-doc-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-dbi-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-elasticsearch-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-gcrypt-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-gssapi-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-gtls-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-mmnormalize-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-mysql-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-omamqp1-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-omhttpfs-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-omtcl-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-ossl-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-pgsql-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-relp-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-snmp-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-udpspoof-8.2106.0-4.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-136 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: - CVE-2021-4140: Fixed iframe sandbox bypass with XSLT (bsc#1194547). - CVE-2022-22737: Fixed race condition when playing audio files (bsc#1194547). - CVE-2022-22738: Fixed heap-buffer-overflow in blendGaussianBlur (bsc#1194547). - CVE-2022-22739: Fixed missing throttling on external protocol launch dialog (bsc#1194547). - CVE-2022-22740: Fixed use-after-free of ChannelEventQueue::mOwner (bsc#1194547). - CVE-2022-22741: Fixed browser window spoof using fullscreen mode (bsc#1194547). - CVE-2022-22742: Fixed out-of-bounds memory access when inserting text in edit mode (bsc#1194547). - CVE-2022-22743: Fixed browser window spoof using fullscreen mode (bsc#1194547). - CVE-2022-22744: Fixed possible command injection via the 'Copy as curl' feature in DevTools (bsc#1194547). - CVE-2022-22745: Fixed leaking cross-origin URLs through securitypolicyviolation event (bsc#1194547). - CVE-2022-22746: Fixed calling into reportValidity could have lead to fullscreen window spoof (bsc#1194547). - CVE-2022-22747: Fixed crash when handling empty pkcs7 sequence(bsc#1194547). - CVE-2022-22748: Fixed spoofed origin on external protocol launch dialog (bsc#1194547). - CVE-2022-22751: Fixed memory safety bugs (bsc#1194547). MozillaFirefox-91.5.0-152.12.1.src.rpm MozillaFirefox-91.5.0-152.12.1.x86_64.rpm MozillaFirefox-branding-upstream-91.5.0-152.12.1.x86_64.rpm MozillaFirefox-devel-91.5.0-152.12.1.x86_64.rpm MozillaFirefox-translations-common-91.5.0-152.12.1.x86_64.rpm MozillaFirefox-translations-other-91.5.0-152.12.1.x86_64.rpm MozillaFirefox-91.5.0-152.12.1.s390x.rpm MozillaFirefox-branding-upstream-91.5.0-152.12.1.s390x.rpm MozillaFirefox-devel-91.5.0-152.12.1.s390x.rpm MozillaFirefox-translations-common-91.5.0-152.12.1.s390x.rpm MozillaFirefox-translations-other-91.5.0-152.12.1.s390x.rpm MozillaFirefox-91.5.0-152.12.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.5.0-152.12.1.ppc64le.rpm MozillaFirefox-devel-91.5.0-152.12.1.ppc64le.rpm MozillaFirefox-translations-common-91.5.0-152.12.1.ppc64le.rpm MozillaFirefox-translations-other-91.5.0-152.12.1.ppc64le.rpm MozillaFirefox-91.5.0-152.12.1.aarch64.rpm MozillaFirefox-branding-upstream-91.5.0-152.12.1.aarch64.rpm MozillaFirefox-devel-91.5.0-152.12.1.aarch64.rpm MozillaFirefox-translations-common-91.5.0-152.12.1.aarch64.rpm MozillaFirefox-translations-other-91.5.0-152.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-184 important SUSE Updates openSUSE-SLE 15.3 This update for json-c fixes the following issues: - CVE-2020-12762: Fixed integer overflow and out-of-bounds write. (bsc#1171479) json-c-0.13-3.3.1.src.rpm libjson-c-devel-0.13-3.3.1.x86_64.rpm libjson-c-doc-0.13-3.3.1.noarch.rpm libjson-c3-0.13-3.3.1.x86_64.rpm libjson-c3-32bit-0.13-3.3.1.x86_64.rpm libjson-c-devel-0.13-3.3.1.s390x.rpm libjson-c3-0.13-3.3.1.s390x.rpm libjson-c-devel-0.13-3.3.1.ppc64le.rpm libjson-c3-0.13-3.3.1.ppc64le.rpm libjson-c-devel-0.13-3.3.1.aarch64.rpm libjson-c3-0.13-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-113 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - CVE-2021-44531: Fixed improper handling of URI Subject Alternative Names (bsc#1194511). - CVE-2021-44532: Fixed certificate Verification Bypass via String Injection (bsc#1194512). - CVE-2021-44533: Fixed incorrect handling of certificate subject and issuer fields (bsc#1194513). - CVE-2022-21824: Fixed prototype pollution via console.table properties (bsc#1194514). nodejs12-12.22.9-4.25.1.src.rpm nodejs12-12.22.9-4.25.1.x86_64.rpm nodejs12-devel-12.22.9-4.25.1.x86_64.rpm nodejs12-docs-12.22.9-4.25.1.noarch.rpm npm12-12.22.9-4.25.1.x86_64.rpm nodejs12-12.22.9-4.25.1.s390x.rpm nodejs12-devel-12.22.9-4.25.1.s390x.rpm npm12-12.22.9-4.25.1.s390x.rpm nodejs12-12.22.9-4.25.1.ppc64le.rpm nodejs12-devel-12.22.9-4.25.1.ppc64le.rpm npm12-12.22.9-4.25.1.ppc64le.rpm nodejs12-12.22.9-4.25.1.aarch64.rpm nodejs12-devel-12.22.9-4.25.1.aarch64.rpm npm12-12.22.9-4.25.1.aarch64.rpm openSUSE-SLE-15.3-2022-112 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: - CVE-2021-44531: Fixed improper handling of URI Subject Alternative Names (bsc#1194511). - CVE-2021-44532: Fixed certificate Verification Bypass via String Injection (bsc#1194512). - CVE-2021-44533: Fixed incorrect handling of certificate subject and issuer fields (bsc#1194513). - CVE-2022-21824: Fixed prototype pollution via console.table properties (bsc#1194514). nodejs14-14.18.3-15.24.1.src.rpm nodejs14-14.18.3-15.24.1.x86_64.rpm nodejs14-devel-14.18.3-15.24.1.x86_64.rpm nodejs14-docs-14.18.3-15.24.1.noarch.rpm npm14-14.18.3-15.24.1.x86_64.rpm nodejs14-14.18.3-15.24.1.s390x.rpm nodejs14-devel-14.18.3-15.24.1.s390x.rpm npm14-14.18.3-15.24.1.s390x.rpm nodejs14-14.18.3-15.24.1.ppc64le.rpm nodejs14-devel-14.18.3-15.24.1.ppc64le.rpm npm14-14.18.3-15.24.1.ppc64le.rpm nodejs14-14.18.3-15.24.1.aarch64.rpm nodejs14-devel-14.18.3-15.24.1.aarch64.rpm npm14-14.18.3-15.24.1.aarch64.rpm openSUSE-SLE-15.3-2022-147 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-format_spec_file fixes the following issues: obs-service-format_spec_file: Update obs-service-format_spec_file from version 20191114 to version 20211115: - Sync license identifiers from SPDX (spdx.org). (jsc#SLE-18915) - Be more wary on usage of macros in Tags - Do not Cache Source.* but only Source[0-9]* - Stop pretending we can guess what the spec file is for - Avoid deep recursion in merge_comments - Allow to override date - Split out final comments in description - Make a special exception for short %p* snippets - Also split Conflict headers - Keep the old require sorting - Improve the performance of reorder_tags - Fix merge_comments - Do not split %if and section start - Support multiline copyrights (for Firefox) - Simplify how to calculate the `base_package` - Split tag values of certain tags - Be careful with macros that appear between tags - Replace SPDX mapper with an advanced version - Fix merging empty sections - Allow before lines to commented tags - Keep comments close to the original line - Review some deltas in the test suites that are acceptable for now - Parse more into the description - basically everything for now - Fix Release tag - Add an empty line before each section - Reorder tags that are below each other - Fix whitespace - Add test cases for spec-file cleaner (with current output) - Use perltidy like Cavil - Remove patch_license - old helper script for mass migration - Only parse Provides in Header section - Trim all trailing whitespace - including \r - Fix copyright year to 2012 in the test cases - Fetch licenses from JSON and remove + variants - Fetch exceptions from JSON - prepare_spec handle the case where License/Group are in a if/else/endif rpmlint: - Rebuild rpmlint with the new obs-service-format_spec_file. rpmlint-mini: - BuildRequires `python-rpm-macros` since the `py3_ver` macro is now considered obsolete in `python3-base`. obs-service-format_spec_file-20211115-3.9.4.noarch.rpm obs-service-format_spec_file-20211115-3.9.4.src.rpm rpmlint-1.10-7.32.3.noarch.rpm rpmlint-1.10-7.32.3.src.rpm openSUSE-SLE-15.3-2022-135 important SUSE Updates openSUSE-SLE 15.3 This update for busybox fixes the following issues: - CVE-2011-5325: Fixed tar directory traversal (bsc#951562). - CVE-2015-9261: Fixed segfalts and application crashes in huft_build (bsc#1102912). - CVE-2016-2147: Fixed out of bounds write (heap) due to integer underflow in udhcpc (bsc#970663). - CVE-2016-2148: Fixed heap-based buffer overflow in OPTION_6RD parsing (bsc#970662). - CVE-2016-6301: Fixed NTP server denial of service flaw (bsc#991940). - CVE-2017-15873: Fixed integer overflow in get_next_block function in archival/libarchive/decompress_bunzip2.c (bsc#1064976). - CVE-2017-15874: Fixed integer underflow in archival/libarchive/decompress_unlzma.c (bsc#1064978). - CVE-2017-16544: Fixed Insufficient sanitization of filenames when autocompleting (bsc#1069412). - CVE-2018-1000500 : Fixed missing SSL certificate validation in wget (bsc#1099263). - CVE-2018-1000517: Fixed heap-based buffer overflow in the retrieve_file_data() (bsc#1099260). - CVE-2018-20679: Fixed out of bounds read in udhcp (bsc#1121426). - CVE-2019-5747: Fixed out of bounds read in udhcp components (bsc#1121428). - CVE-2021-28831: Fixed invalid free or segmentation fault via malformed gzip data (bsc#1184522). - CVE-2021-42373: Fixed NULL pointer dereference in man leading to DoS when a section name is supplied but no page argument is given (bsc#1192869). - CVE-2021-42374: Fixed out-of-bounds heap read in unlzma leading to information leak and DoS when crafted LZMA-compressed input is decompressed (bsc#1192869). - CVE-2021-42375: Fixed incorrect handling of a special element in ash leading to DoS when processing a crafted shell command, due to the shell mistaking specific characters for reserved characters (bsc#1192869). - CVE-2021-42376: Fixed NULL pointer dereference in hush leading to DoS when processing a crafted shell command (bsc#1192869). - CVE-2021-42377: Fixed attacker-controlled pointer free in hush leading to DoS and possible code execution when processing a crafted shell command (bsc#1192869). - CVE-2021-42378: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the getvar_i function (bsc#1192869). - CVE-2021-42379: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the next_input_file function (bsc#1192869). - CVE-2021-42380: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the clrvar function (bsc#1192869). - CVE-2021-42381: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the hash_init function (bsc#1192869). - CVE-2021-42382: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the getvar_s function (bsc#1192869). - CVE-2021-42383: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the evaluate function (bsc#1192869). - CVE-2021-42384: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the handle_special function (bsc#1192869). - CVE-2021-42385: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the evaluate function (bsc#1192869). - CVE-2021-42386: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the nvalloc function (bsc#1192869). busybox-1.34.1-4.9.1.src.rpm busybox-1.34.1-4.9.1.x86_64.rpm busybox-static-1.34.1-4.9.1.x86_64.rpm busybox-1.34.1-4.9.1.s390x.rpm busybox-static-1.34.1-4.9.1.s390x.rpm busybox-1.34.1-4.9.1.ppc64le.rpm busybox-static-1.34.1-4.9.1.ppc64le.rpm busybox-1.34.1-4.9.1.aarch64.rpm busybox-static-1.34.1-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-124 moderate SUSE Updates openSUSE-SLE 15.3 This update for shared-mime-info fixes the following issues: - Fix nautilus not launching applications because all applications are not detected as executable program but as shared library (bsc#1191630) shared-mime-info-1.12-3.3.1.src.rpm shared-mime-info-1.12-3.3.1.x86_64.rpm shared-mime-info-lang-1.12-3.3.1.noarch.rpm shared-mime-info-1.12-3.3.1.s390x.rpm shared-mime-info-1.12-3.3.1.ppc64le.rpm shared-mime-info-1.12-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-123 important SUSE Updates openSUSE-SLE 15.3 This update for fetchmail fixes the following issues: - Always create fetchmail group, even if the user is already present, as a leftover from Leap 15.2 upgrade. This may happen also if user is messing with groups/users directly or upgrading from even an older fetchmail versions (bsc#1194203) fetchmail-6.4.22-20.23.1.src.rpm fetchmail-6.4.22-20.23.1.x86_64.rpm fetchmailconf-6.4.22-20.23.1.x86_64.rpm fetchmail-6.4.22-20.23.1.s390x.rpm fetchmailconf-6.4.22-20.23.1.s390x.rpm fetchmail-6.4.22-20.23.1.ppc64le.rpm fetchmailconf-6.4.22-20.23.1.ppc64le.rpm fetchmail-6.4.22-20.23.1.aarch64.rpm fetchmailconf-6.4.22-20.23.1.aarch64.rpm openSUSE-SLE-15.3-2022-105 important SUSE Updates openSUSE-SLE 15.3 This update for libqb fixes the following issues: - Fix occasional Pacemaker commandline tool failures and interrupted system calls (bsc#1193737, bsc#1193912) doxygen2man-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb-2.0.2+20201203.def947e-3.3.1.src.rpm libqb-devel-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb-devel-32bit-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb-tests-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb-tools-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb100-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb100-32bit-2.0.2+20201203.def947e-3.3.1.x86_64.rpm doxygen2man-2.0.2+20201203.def947e-3.3.1.s390x.rpm libqb-devel-2.0.2+20201203.def947e-3.3.1.s390x.rpm libqb-tests-2.0.2+20201203.def947e-3.3.1.s390x.rpm libqb-tools-2.0.2+20201203.def947e-3.3.1.s390x.rpm libqb100-2.0.2+20201203.def947e-3.3.1.s390x.rpm doxygen2man-2.0.2+20201203.def947e-3.3.1.ppc64le.rpm libqb-devel-2.0.2+20201203.def947e-3.3.1.ppc64le.rpm libqb-tests-2.0.2+20201203.def947e-3.3.1.ppc64le.rpm libqb-tools-2.0.2+20201203.def947e-3.3.1.ppc64le.rpm libqb100-2.0.2+20201203.def947e-3.3.1.ppc64le.rpm doxygen2man-2.0.2+20201203.def947e-3.3.1.aarch64.rpm libqb-devel-2.0.2+20201203.def947e-3.3.1.aarch64.rpm libqb-tests-2.0.2+20201203.def947e-3.3.1.aarch64.rpm libqb-tools-2.0.2+20201203.def947e-3.3.1.aarch64.rpm libqb100-2.0.2+20201203.def947e-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-227 moderate SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - update to 2.34.1 (bsc#1193722): * "git grep" looking in a blob that has non-UTF8 payload was completely broken when linked with certain versions of PCREv2 library in the latest release. * "git pull" with any strategy when the other side is behind us should succeed as it is a no-op, but doesn't. * An earlier change in 2.34.0 caused JGit application (that abused GIT_EDITOR mechanism when invoking "git config") to get stuck with a SIGTTOU signal; it has been reverted. * An earlier change that broke .gitignore matching has been reverted. * SubmittingPatches document gained a syntactically incorrect mark-up, which has been corrected. - git 2.33.0: * "git send-email" learned the "--sendmail-cmd" command line option and the "sendemail.sendmailCmd" configuration variable, which is a more sensible approach than the current way of repurposing the "smtp-server" that is meant to name the server to instead name the command to talk to the server. * The userdiff pattern for C# learned the token "record". * "git rev-list" learns to omit the "commit <object-name>" header lines from the output with the `--no-commit-header` option. * "git worktree add --lock" learned to record why the worktree is locked with a custom message. * internal improvements including performance optimizations * a number of bug fixes - git 2.32.0: * ".gitattributes", ".gitignore", and ".mailmap" files that are symbolic links are ignored * "git apply --3way" used to first attempt a straight application, and only fell back to the 3-way merge algorithm when the straight application failed. Starting with this version, the command will first try the 3-way merge algorithm and only when it fails (either resulting with conflict or the base versions of blobs are missing), falls back to the usual patch application. * "git stash show" can now show the untracked part of the stash * Improved "git repack" strategy * http code can now unlock a certificate with a cached password respectively. * "git clone --reject-shallow" option fails the clone as soon as we notice that we are cloning from a shallow repository. * "gitweb" learned "e-mail privacy" feature * Multiple improvements to output and configuration options * Bug fixes and developer visible fixes git-2.34.1-10.9.1.src.rpm git-2.34.1-10.9.1.x86_64.rpm git-arch-2.34.1-10.9.1.x86_64.rpm git-core-2.34.1-10.9.1.x86_64.rpm git-credential-gnome-keyring-2.34.1-10.9.1.x86_64.rpm git-credential-libsecret-2.34.1-10.9.1.x86_64.rpm git-cvs-2.34.1-10.9.1.x86_64.rpm git-daemon-2.34.1-10.9.1.x86_64.rpm git-doc-2.34.1-10.9.1.noarch.rpm git-email-2.34.1-10.9.1.x86_64.rpm git-gui-2.34.1-10.9.1.x86_64.rpm git-p4-2.34.1-10.9.1.x86_64.rpm git-svn-2.34.1-10.9.1.x86_64.rpm git-web-2.34.1-10.9.1.x86_64.rpm gitk-2.34.1-10.9.1.x86_64.rpm perl-Git-2.34.1-10.9.1.x86_64.rpm git-2.34.1-10.9.1.s390x.rpm git-arch-2.34.1-10.9.1.s390x.rpm git-core-2.34.1-10.9.1.s390x.rpm git-credential-gnome-keyring-2.34.1-10.9.1.s390x.rpm git-credential-libsecret-2.34.1-10.9.1.s390x.rpm git-cvs-2.34.1-10.9.1.s390x.rpm git-daemon-2.34.1-10.9.1.s390x.rpm git-email-2.34.1-10.9.1.s390x.rpm git-gui-2.34.1-10.9.1.s390x.rpm git-p4-2.34.1-10.9.1.s390x.rpm git-svn-2.34.1-10.9.1.s390x.rpm git-web-2.34.1-10.9.1.s390x.rpm gitk-2.34.1-10.9.1.s390x.rpm perl-Git-2.34.1-10.9.1.s390x.rpm git-2.34.1-10.9.1.ppc64le.rpm git-arch-2.34.1-10.9.1.ppc64le.rpm git-core-2.34.1-10.9.1.ppc64le.rpm git-credential-gnome-keyring-2.34.1-10.9.1.ppc64le.rpm git-credential-libsecret-2.34.1-10.9.1.ppc64le.rpm git-cvs-2.34.1-10.9.1.ppc64le.rpm git-daemon-2.34.1-10.9.1.ppc64le.rpm git-email-2.34.1-10.9.1.ppc64le.rpm git-gui-2.34.1-10.9.1.ppc64le.rpm git-p4-2.34.1-10.9.1.ppc64le.rpm git-svn-2.34.1-10.9.1.ppc64le.rpm git-web-2.34.1-10.9.1.ppc64le.rpm gitk-2.34.1-10.9.1.ppc64le.rpm perl-Git-2.34.1-10.9.1.ppc64le.rpm git-2.34.1-10.9.1.aarch64.rpm git-arch-2.34.1-10.9.1.aarch64.rpm git-core-2.34.1-10.9.1.aarch64.rpm git-credential-gnome-keyring-2.34.1-10.9.1.aarch64.rpm git-credential-libsecret-2.34.1-10.9.1.aarch64.rpm git-cvs-2.34.1-10.9.1.aarch64.rpm git-daemon-2.34.1-10.9.1.aarch64.rpm git-email-2.34.1-10.9.1.aarch64.rpm git-gui-2.34.1-10.9.1.aarch64.rpm git-p4-2.34.1-10.9.1.aarch64.rpm git-svn-2.34.1-10.9.1.aarch64.rpm git-web-2.34.1-10.9.1.aarch64.rpm gitk-2.34.1-10.9.1.aarch64.rpm perl-Git-2.34.1-10.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-222 moderate SUSE Updates openSUSE-SLE 15.3 This update for xrdp fixes the following issues: - Fix crash in xrdp-fate318398-change-expired-password.patch (bsc#1187258) libpainter0-0.9.13.1-4.12.1.x86_64.rpm librfxencode0-0.9.13.1-4.12.1.x86_64.rpm xrdp-0.9.13.1-4.12.1.src.rpm xrdp-0.9.13.1-4.12.1.x86_64.rpm xrdp-devel-0.9.13.1-4.12.1.x86_64.rpm libpainter0-0.9.13.1-4.12.1.s390x.rpm librfxencode0-0.9.13.1-4.12.1.s390x.rpm xrdp-0.9.13.1-4.12.1.s390x.rpm xrdp-devel-0.9.13.1-4.12.1.s390x.rpm libpainter0-0.9.13.1-4.12.1.ppc64le.rpm librfxencode0-0.9.13.1-4.12.1.ppc64le.rpm xrdp-0.9.13.1-4.12.1.ppc64le.rpm xrdp-devel-0.9.13.1-4.12.1.ppc64le.rpm libpainter0-0.9.13.1-4.12.1.aarch64.rpm librfxencode0-0.9.13.1-4.12.1.aarch64.rpm xrdp-0.9.13.1-4.12.1.aarch64.rpm xrdp-devel-0.9.13.1-4.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-220 important SUSE Updates openSUSE-SLE 15.3 This update for saptune fixes the following issues: - Fix LVM slave devices not to be excluded when they are valid block devices (bsc#1194299) - Fix 'not compliant' state for energy_perf_bias on PowerPC systems and suppress misleading error message regarding missing 'mokutil' (bsc#1193435) - Remove the dependency to 'mokutil' by relying on sysfs to detect a secure boot environment (bsc#1193435) - Fix problem with command `saptune revert all`, if the saptune service was stopped between the two commands `apply` and `revert all` - Fix `saptune service enablestart|disablestop` to always perform both actions and no longer stop working, if the service is already started|stopped (bsc#1193241) - Fix support support for AWS x1e instances (bsc#1192029) - Support /etc/fstab entries with 4 instead of 6 fields and change error handling from 'panic' to error log messages (bsc#1193580) - Enhance documentation in man page 'saptune.8' with the entry 'configured Note' and some more descriptions of the entries from `saptune service status` (bsc#1192697) - Fix block device settings (e.g. NRREQ) for multipath devices (bsc#1193576) - Fix `saptune verify` command to report a non existing sysctl or sys parameter as 'not available on the system'. An additional warning is displayed to raise attention to typos in the parameter name. - Fix `saptune status` command to accurately report the unit state (bsc#1194334) - Added a hint to the man page and some additional log messages as the PowerPC systems (hardware architecture 'ppc64le') don't support files in '/sys/class/dmi' saptune-3.0.2-8.22.2.src.rpm saptune-3.0.2-8.22.2.x86_64.rpm saptune-3.0.2-8.22.2.ppc64le.rpm openSUSE-SLE-15.3-2022-141 moderate SUSE Updates openSUSE-SLE 15.3 This update for permissions fixes the following issues: - Update to version 20181225: setuid bit for cockpit session binary (bsc#1169614). permissions-20181225-23.12.1.src.rpm permissions-20181225-23.12.1.x86_64.rpm permissions-zypp-plugin-20181225-23.12.1.noarch.rpm permissions-20181225-23.12.1.s390x.rpm permissions-20181225-23.12.1.ppc64le.rpm permissions-20181225-23.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-134 important SUSE Updates openSUSE-SLE 15.3 This update for python-numpy fixes the following issues: - CVE-2021-33430: Fixed buffer overflow that could lead to DoS in PyArray_NewFromDescr_int function of ctors.c (bsc#1193913). - CVE-2021-41496: Fixed buffer overflow that could lead to DoS in array_from_pyobj function of fortranobject.c (bsc#1193907). python-numpy-1.17.3-10.1.src.rpm python-numpy_1_17_3-gnu-hpc-1.17.3-10.1.src.rpm python3-numpy-1.17.3-10.1.x86_64.rpm python3-numpy-devel-1.17.3-10.1.x86_64.rpm python3-numpy-gnu-hpc-1.17.3-10.1.x86_64.rpm python3-numpy-gnu-hpc-devel-1.17.3-10.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-10.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-10.1.x86_64.rpm python3-numpy-1.17.3-10.1.s390x.rpm python3-numpy-devel-1.17.3-10.1.s390x.rpm python3-numpy-gnu-hpc-1.17.3-10.1.s390x.rpm python3-numpy-gnu-hpc-devel-1.17.3-10.1.s390x.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-10.1.s390x.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-10.1.s390x.rpm python3-numpy-1.17.3-10.1.ppc64le.rpm python3-numpy-devel-1.17.3-10.1.ppc64le.rpm python3-numpy-gnu-hpc-1.17.3-10.1.ppc64le.rpm python3-numpy-gnu-hpc-devel-1.17.3-10.1.ppc64le.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-10.1.ppc64le.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-10.1.ppc64le.rpm python3-numpy-1.17.3-10.1.aarch64.rpm python3-numpy-devel-1.17.3-10.1.aarch64.rpm python3-numpy-gnu-hpc-1.17.3-10.1.aarch64.rpm python3-numpy-gnu-hpc-devel-1.17.3-10.1.aarch64.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-10.1.aarch64.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-10.1.aarch64.rpm openSUSE-SLE-15.3-2022-1064 important SUSE Updates openSUSE-SLE 15.3 This update for python2-numpy fixes the following issues: - CVE-2021-33430: Fixed buffer overflow that could lead to DoS in PyArray_NewFromDescr_int function of ctors.c (bsc#1193913). - CVE-2021-41496: Fixed buffer overflow that could lead to DoS in array_from_pyobj function of fortranobject.c (bsc#1193907). - CVE-2021-41495: Fixed Null Pointer Dereference in numpy.sort due to missing return value validation (bsc#1193911). python-numpy_1_16_5-gnu-hpc-1.16.5-150200.3.5.1.src.rpm python2-numpy-1.16.5-150200.3.5.1.src.rpm python2-numpy-1.16.5-150200.3.5.1.x86_64.rpm python2-numpy-devel-1.16.5-150200.3.5.1.x86_64.rpm python2-numpy-gnu-hpc-1.16.5-150200.3.5.1.x86_64.rpm python2-numpy-gnu-hpc-devel-1.16.5-150200.3.5.1.x86_64.rpm python2-numpy_1_16_5-gnu-hpc-1.16.5-150200.3.5.1.x86_64.rpm python2-numpy_1_16_5-gnu-hpc-devel-1.16.5-150200.3.5.1.x86_64.rpm python2-numpy-1.16.5-150200.3.5.1.s390x.rpm python2-numpy-devel-1.16.5-150200.3.5.1.s390x.rpm python2-numpy-1.16.5-150200.3.5.1.ppc64le.rpm python2-numpy-devel-1.16.5-150200.3.5.1.ppc64le.rpm python2-numpy-gnu-hpc-1.16.5-150200.3.5.1.ppc64le.rpm python2-numpy-gnu-hpc-devel-1.16.5-150200.3.5.1.ppc64le.rpm python2-numpy_1_16_5-gnu-hpc-1.16.5-150200.3.5.1.ppc64le.rpm python2-numpy_1_16_5-gnu-hpc-devel-1.16.5-150200.3.5.1.ppc64le.rpm python2-numpy-1.16.5-150200.3.5.1.aarch64.rpm python2-numpy-devel-1.16.5-150200.3.5.1.aarch64.rpm python2-numpy-gnu-hpc-1.16.5-150200.3.5.1.aarch64.rpm python2-numpy-gnu-hpc-devel-1.16.5-150200.3.5.1.aarch64.rpm python2-numpy_1_16_5-gnu-hpc-1.16.5-150200.3.5.1.aarch64.rpm python2-numpy_1_16_5-gnu-hpc-devel-1.16.5-150200.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-177 low SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2021-20196: Fixed null pointer dereference that may lead to guest crash (bsc#1181361). qemu-5.2.0-150300.109.2.src.rpm qemu-5.2.0-150300.109.2.x86_64.rpm qemu-arm-5.2.0-150300.109.2.x86_64.rpm qemu-audio-alsa-5.2.0-150300.109.2.x86_64.rpm qemu-audio-pa-5.2.0-150300.109.2.x86_64.rpm qemu-audio-spice-5.2.0-150300.109.2.x86_64.rpm qemu-block-curl-5.2.0-150300.109.2.x86_64.rpm qemu-block-dmg-5.2.0-150300.109.2.x86_64.rpm qemu-block-gluster-5.2.0-150300.109.2.x86_64.rpm qemu-block-iscsi-5.2.0-150300.109.2.x86_64.rpm qemu-block-nfs-5.2.0-150300.109.2.x86_64.rpm qemu-block-rbd-5.2.0-150300.109.2.x86_64.rpm qemu-block-ssh-5.2.0-150300.109.2.x86_64.rpm qemu-chardev-baum-5.2.0-150300.109.2.x86_64.rpm qemu-chardev-spice-5.2.0-150300.109.2.x86_64.rpm qemu-extra-5.2.0-150300.109.2.x86_64.rpm qemu-guest-agent-5.2.0-150300.109.2.x86_64.rpm qemu-hw-display-qxl-5.2.0-150300.109.2.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.109.2.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.109.2.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-150300.109.2.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.109.2.x86_64.rpm qemu-hw-usb-redirect-5.2.0-150300.109.2.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-150300.109.2.x86_64.rpm qemu-ipxe-1.0.0+-150300.109.2.noarch.rpm qemu-ivshmem-tools-5.2.0-150300.109.2.x86_64.rpm qemu-ksm-5.2.0-150300.109.2.x86_64.rpm qemu-kvm-5.2.0-150300.109.2.x86_64.rpm qemu-lang-5.2.0-150300.109.2.x86_64.rpm qemu-linux-user-5.2.0-150300.109.2.src.rpm qemu-linux-user-5.2.0-150300.109.2.x86_64.rpm qemu-microvm-5.2.0-150300.109.2.noarch.rpm qemu-ppc-5.2.0-150300.109.2.x86_64.rpm qemu-s390x-5.2.0-150300.109.2.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-150300.109.2.noarch.rpm qemu-sgabios-8-150300.109.2.noarch.rpm qemu-skiboot-5.2.0-150300.109.2.noarch.rpm qemu-testsuite-5.2.0-150300.109.4.src.rpm qemu-testsuite-5.2.0-150300.109.4.x86_64.rpm qemu-tools-5.2.0-150300.109.2.x86_64.rpm qemu-ui-curses-5.2.0-150300.109.2.x86_64.rpm qemu-ui-gtk-5.2.0-150300.109.2.x86_64.rpm qemu-ui-opengl-5.2.0-150300.109.2.x86_64.rpm qemu-ui-spice-app-5.2.0-150300.109.2.x86_64.rpm qemu-ui-spice-core-5.2.0-150300.109.2.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-150300.109.2.noarch.rpm qemu-vhost-user-gpu-5.2.0-150300.109.2.x86_64.rpm qemu-x86-5.2.0-150300.109.2.x86_64.rpm qemu-5.2.0-150300.109.2.s390x.rpm qemu-arm-5.2.0-150300.109.2.s390x.rpm qemu-audio-alsa-5.2.0-150300.109.2.s390x.rpm qemu-audio-pa-5.2.0-150300.109.2.s390x.rpm qemu-audio-spice-5.2.0-150300.109.2.s390x.rpm qemu-block-curl-5.2.0-150300.109.2.s390x.rpm qemu-block-dmg-5.2.0-150300.109.2.s390x.rpm qemu-block-gluster-5.2.0-150300.109.2.s390x.rpm qemu-block-iscsi-5.2.0-150300.109.2.s390x.rpm qemu-block-nfs-5.2.0-150300.109.2.s390x.rpm qemu-block-rbd-5.2.0-150300.109.2.s390x.rpm qemu-block-ssh-5.2.0-150300.109.2.s390x.rpm qemu-chardev-baum-5.2.0-150300.109.2.s390x.rpm qemu-chardev-spice-5.2.0-150300.109.2.s390x.rpm qemu-extra-5.2.0-150300.109.2.s390x.rpm qemu-guest-agent-5.2.0-150300.109.2.s390x.rpm qemu-hw-display-qxl-5.2.0-150300.109.2.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.109.2.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.109.2.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-150300.109.2.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.109.2.s390x.rpm qemu-hw-usb-redirect-5.2.0-150300.109.2.s390x.rpm qemu-hw-usb-smartcard-5.2.0-150300.109.2.s390x.rpm qemu-ivshmem-tools-5.2.0-150300.109.2.s390x.rpm qemu-ksm-5.2.0-150300.109.2.s390x.rpm qemu-kvm-5.2.0-150300.109.2.s390x.rpm qemu-lang-5.2.0-150300.109.2.s390x.rpm qemu-linux-user-5.2.0-150300.109.2.s390x.rpm qemu-ppc-5.2.0-150300.109.2.s390x.rpm qemu-s390x-5.2.0-150300.109.2.s390x.rpm qemu-testsuite-5.2.0-150300.109.4.s390x.rpm qemu-tools-5.2.0-150300.109.2.s390x.rpm qemu-ui-curses-5.2.0-150300.109.2.s390x.rpm qemu-ui-gtk-5.2.0-150300.109.2.s390x.rpm qemu-ui-opengl-5.2.0-150300.109.2.s390x.rpm qemu-ui-spice-app-5.2.0-150300.109.2.s390x.rpm qemu-ui-spice-core-5.2.0-150300.109.2.s390x.rpm qemu-vhost-user-gpu-5.2.0-150300.109.2.s390x.rpm qemu-x86-5.2.0-150300.109.2.s390x.rpm qemu-5.2.0-150300.109.2.ppc64le.rpm qemu-arm-5.2.0-150300.109.2.ppc64le.rpm qemu-audio-alsa-5.2.0-150300.109.2.ppc64le.rpm qemu-audio-pa-5.2.0-150300.109.2.ppc64le.rpm qemu-audio-spice-5.2.0-150300.109.2.ppc64le.rpm qemu-block-curl-5.2.0-150300.109.2.ppc64le.rpm qemu-block-dmg-5.2.0-150300.109.2.ppc64le.rpm qemu-block-gluster-5.2.0-150300.109.2.ppc64le.rpm qemu-block-iscsi-5.2.0-150300.109.2.ppc64le.rpm qemu-block-nfs-5.2.0-150300.109.2.ppc64le.rpm qemu-block-rbd-5.2.0-150300.109.2.ppc64le.rpm qemu-block-ssh-5.2.0-150300.109.2.ppc64le.rpm qemu-chardev-baum-5.2.0-150300.109.2.ppc64le.rpm qemu-chardev-spice-5.2.0-150300.109.2.ppc64le.rpm qemu-extra-5.2.0-150300.109.2.ppc64le.rpm qemu-guest-agent-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-display-qxl-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-150300.109.2.ppc64le.rpm qemu-ivshmem-tools-5.2.0-150300.109.2.ppc64le.rpm qemu-ksm-5.2.0-150300.109.2.ppc64le.rpm qemu-lang-5.2.0-150300.109.2.ppc64le.rpm qemu-linux-user-5.2.0-150300.109.2.ppc64le.rpm qemu-ppc-5.2.0-150300.109.2.ppc64le.rpm qemu-s390x-5.2.0-150300.109.2.ppc64le.rpm qemu-testsuite-5.2.0-150300.109.4.ppc64le.rpm qemu-tools-5.2.0-150300.109.2.ppc64le.rpm qemu-ui-curses-5.2.0-150300.109.2.ppc64le.rpm qemu-ui-gtk-5.2.0-150300.109.2.ppc64le.rpm qemu-ui-opengl-5.2.0-150300.109.2.ppc64le.rpm qemu-ui-spice-app-5.2.0-150300.109.2.ppc64le.rpm qemu-ui-spice-core-5.2.0-150300.109.2.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-150300.109.2.ppc64le.rpm qemu-x86-5.2.0-150300.109.2.ppc64le.rpm qemu-5.2.0-150300.109.2.aarch64.rpm qemu-arm-5.2.0-150300.109.2.aarch64.rpm qemu-audio-alsa-5.2.0-150300.109.2.aarch64.rpm qemu-audio-pa-5.2.0-150300.109.2.aarch64.rpm qemu-audio-spice-5.2.0-150300.109.2.aarch64.rpm qemu-block-curl-5.2.0-150300.109.2.aarch64.rpm qemu-block-dmg-5.2.0-150300.109.2.aarch64.rpm qemu-block-gluster-5.2.0-150300.109.2.aarch64.rpm qemu-block-iscsi-5.2.0-150300.109.2.aarch64.rpm qemu-block-nfs-5.2.0-150300.109.2.aarch64.rpm qemu-block-rbd-5.2.0-150300.109.2.aarch64.rpm qemu-block-ssh-5.2.0-150300.109.2.aarch64.rpm qemu-chardev-baum-5.2.0-150300.109.2.aarch64.rpm qemu-chardev-spice-5.2.0-150300.109.2.aarch64.rpm qemu-extra-5.2.0-150300.109.2.aarch64.rpm qemu-guest-agent-5.2.0-150300.109.2.aarch64.rpm qemu-hw-display-qxl-5.2.0-150300.109.2.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.109.2.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.109.2.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-150300.109.2.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.109.2.aarch64.rpm qemu-hw-usb-redirect-5.2.0-150300.109.2.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-150300.109.2.aarch64.rpm qemu-ivshmem-tools-5.2.0-150300.109.2.aarch64.rpm qemu-ksm-5.2.0-150300.109.2.aarch64.rpm qemu-lang-5.2.0-150300.109.2.aarch64.rpm qemu-linux-user-5.2.0-150300.109.2.aarch64.rpm qemu-ppc-5.2.0-150300.109.2.aarch64.rpm qemu-s390x-5.2.0-150300.109.2.aarch64.rpm qemu-testsuite-5.2.0-150300.109.4.aarch64.rpm qemu-tools-5.2.0-150300.109.2.aarch64.rpm qemu-ui-curses-5.2.0-150300.109.2.aarch64.rpm qemu-ui-gtk-5.2.0-150300.109.2.aarch64.rpm qemu-ui-opengl-5.2.0-150300.109.2.aarch64.rpm qemu-ui-spice-app-5.2.0-150300.109.2.aarch64.rpm qemu-ui-spice-core-5.2.0-150300.109.2.aarch64.rpm qemu-vhost-user-gpu-5.2.0-150300.109.2.aarch64.rpm qemu-x86-5.2.0-150300.109.2.aarch64.rpm openSUSE-SLE-15.3-2022-210 low SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2020-13253: Fixed an OOB access that could crash the guest resulting in DoS (bsc#1172033) - CVE-2021-20196: Fixed null pointer dereference that may lead to guest crash (bsc#1181361). qemu-4.2.1-11.34.2.src.rpm qemu-s390-4.2.1-11.34.2.x86_64.rpm qemu-s390-4.2.1-11.34.2.s390x.rpm qemu-s390-4.2.1-11.34.2.ppc64le.rpm qemu-s390-4.2.1-11.34.2.aarch64.rpm openSUSE-SLE-15.3-2022-111 important SUSE Updates openSUSE-SLE 15.3 This update for virglrenderer fixes the following issues: - CVE-2022-0175: Fixed missing initialization of res->ptr (bsc#1194601). libvirglrenderer0-0.6.0-4.6.1.x86_64.rpm virglrenderer-0.6.0-4.6.1.src.rpm virglrenderer-devel-0.6.0-4.6.1.x86_64.rpm virglrenderer-test-server-0.6.0-4.6.1.x86_64.rpm libvirglrenderer0-0.6.0-4.6.1.s390x.rpm virglrenderer-devel-0.6.0-4.6.1.s390x.rpm virglrenderer-test-server-0.6.0-4.6.1.s390x.rpm libvirglrenderer0-0.6.0-4.6.1.ppc64le.rpm virglrenderer-devel-0.6.0-4.6.1.ppc64le.rpm virglrenderer-test-server-0.6.0-4.6.1.ppc64le.rpm libvirglrenderer0-0.6.0-4.6.1.aarch64.rpm virglrenderer-devel-0.6.0-4.6.1.aarch64.rpm virglrenderer-test-server-0.6.0-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-193 moderate SUSE Updates openSUSE-SLE 15.3 This update for librtas fixes the following issues: - librtasevent: Fix memory page address print issue. (bsc#1193846) - Add '-ffat-lto-objects' to avoid ppc64le build error librtas-2.0.2-7.3.1.src.rpm librtas-devel-2.0.2-7.3.1.ppc64le.rpm librtas-devel-static-2.0.2-7.3.1.ppc64le.rpm librtas-doc-2.0.2-7.3.1.ppc64le.rpm librtas-doc-2.0.2-7.3.1.src.rpm librtas2-2.0.2-7.3.1.ppc64le.rpm openSUSE-SLE-15.3-2022-153 moderate SUSE Updates openSUSE-SLE 15.3 This update for enchant fixes the following issues: - Add missing closing parentheses for packageand Supplements. (bsc#1089434) enchant-2-backend-aspell-2.2.5-4.6.1.x86_64.rpm enchant-2-backend-hunspell-2.2.5-4.6.1.x86_64.rpm enchant-2-backend-voikko-2.2.5-4.6.1.x86_64.rpm enchant-2-backend-voikko-32bit-2.2.5-4.6.1.x86_64.rpm enchant-2.2.5-4.6.1.src.rpm enchant-data-2.2.5-4.6.1.x86_64.rpm enchant-devel-2.2.5-4.6.1.x86_64.rpm enchant-tools-2.2.5-4.6.1.x86_64.rpm libenchant-2-2-2.2.5-4.6.1.x86_64.rpm libenchant-2-2-32bit-2.2.5-4.6.1.x86_64.rpm enchant-2-backend-aspell-2.2.5-4.6.1.s390x.rpm enchant-2-backend-hunspell-2.2.5-4.6.1.s390x.rpm enchant-2-backend-voikko-2.2.5-4.6.1.s390x.rpm enchant-data-2.2.5-4.6.1.s390x.rpm enchant-devel-2.2.5-4.6.1.s390x.rpm enchant-tools-2.2.5-4.6.1.s390x.rpm libenchant-2-2-2.2.5-4.6.1.s390x.rpm enchant-2-backend-aspell-2.2.5-4.6.1.ppc64le.rpm enchant-2-backend-hunspell-2.2.5-4.6.1.ppc64le.rpm enchant-2-backend-voikko-2.2.5-4.6.1.ppc64le.rpm enchant-data-2.2.5-4.6.1.ppc64le.rpm enchant-devel-2.2.5-4.6.1.ppc64le.rpm enchant-tools-2.2.5-4.6.1.ppc64le.rpm libenchant-2-2-2.2.5-4.6.1.ppc64le.rpm enchant-2-backend-aspell-2.2.5-4.6.1.aarch64.rpm enchant-2-backend-hunspell-2.2.5-4.6.1.aarch64.rpm enchant-2-backend-voikko-2.2.5-4.6.1.aarch64.rpm enchant-data-2.2.5-4.6.1.aarch64.rpm enchant-devel-2.2.5-4.6.1.aarch64.rpm enchant-tools-2.2.5-4.6.1.aarch64.rpm libenchant-2-2-2.2.5-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-383 moderate SUSE Updates openSUSE-SLE 15.3 This update for cyrus-sasl fixes the following issues: - Fixed an issue when in postfix 'sasl' authentication with password fails. (bsc#1194265) - Add config parameter '--with-dblib=gdbm' - Avoid converting of '/etc/sasldb2 by every update. Convert '/etc/sasldb2' only if it is a Berkeley DB. cyrus-sasl-2.1.27-150300.4.3.1.src.rpm cyrus-sasl-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-2.1.27-150300.4.3.1.src.rpm cyrus-sasl-bdb-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-crammd5-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-crammd5-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-devel-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-devel-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-digestmd5-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-gs2-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-gssapi-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-gssapi-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-ldap-auxprop-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-ntlm-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-otp-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-otp-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-plain-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-plain-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.3.1.src.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.3.1.src.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-scram-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-sqlauxprop-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.3.1.x86_64.rpm libsasl2-3-2.1.27-150300.4.3.1.x86_64.rpm libsasl2-3-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-crammd5-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-devel-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-gs2-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-gssapi-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-ntlm-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-otp-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-plain-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-scram-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.3.1.s390x.rpm libsasl2-3-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-crammd5-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-devel-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-gs2-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-gssapi-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-ntlm-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-otp-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-plain-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-scram-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.3.1.ppc64le.rpm libsasl2-3-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-crammd5-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-devel-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-gs2-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-gssapi-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-ntlm-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-otp-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-plain-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-scram-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.3.1.aarch64.rpm libsasl2-3-2.1.27-150300.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-312 moderate SUSE Updates openSUSE-SLE 15.3 This update for rrdtool fixes the following issues: - Remove umask usage as it creates issues and it's not thread safe. (bsc#1189375) librrd8-1.7.0-6.3.1.x86_64.rpm lua-rrdtool-1.7.0-6.3.1.x86_64.rpm perl-rrdtool-1.7.0-6.3.1.x86_64.rpm python3-rrdtool-1.7.0-6.3.1.x86_64.rpm rrdtool-1.7.0-6.3.1.src.rpm rrdtool-1.7.0-6.3.1.x86_64.rpm rrdtool-cached-1.7.0-6.3.1.x86_64.rpm rrdtool-devel-1.7.0-6.3.1.x86_64.rpm rrdtool-doc-1.7.0-6.3.1.x86_64.rpm ruby-rrdtool-1.7.0-6.3.1.x86_64.rpm tcl-rrdtool-1.7.0-6.3.1.x86_64.rpm librrd8-1.7.0-6.3.1.s390x.rpm lua-rrdtool-1.7.0-6.3.1.s390x.rpm perl-rrdtool-1.7.0-6.3.1.s390x.rpm python3-rrdtool-1.7.0-6.3.1.s390x.rpm rrdtool-1.7.0-6.3.1.s390x.rpm rrdtool-cached-1.7.0-6.3.1.s390x.rpm rrdtool-devel-1.7.0-6.3.1.s390x.rpm rrdtool-doc-1.7.0-6.3.1.s390x.rpm ruby-rrdtool-1.7.0-6.3.1.s390x.rpm tcl-rrdtool-1.7.0-6.3.1.s390x.rpm librrd8-1.7.0-6.3.1.ppc64le.rpm lua-rrdtool-1.7.0-6.3.1.ppc64le.rpm perl-rrdtool-1.7.0-6.3.1.ppc64le.rpm python3-rrdtool-1.7.0-6.3.1.ppc64le.rpm rrdtool-1.7.0-6.3.1.ppc64le.rpm rrdtool-cached-1.7.0-6.3.1.ppc64le.rpm rrdtool-devel-1.7.0-6.3.1.ppc64le.rpm rrdtool-doc-1.7.0-6.3.1.ppc64le.rpm ruby-rrdtool-1.7.0-6.3.1.ppc64le.rpm tcl-rrdtool-1.7.0-6.3.1.ppc64le.rpm librrd8-1.7.0-6.3.1.aarch64.rpm lua-rrdtool-1.7.0-6.3.1.aarch64.rpm perl-rrdtool-1.7.0-6.3.1.aarch64.rpm python3-rrdtool-1.7.0-6.3.1.aarch64.rpm rrdtool-1.7.0-6.3.1.aarch64.rpm rrdtool-cached-1.7.0-6.3.1.aarch64.rpm rrdtool-devel-1.7.0-6.3.1.aarch64.rpm rrdtool-doc-1.7.0-6.3.1.aarch64.rpm ruby-rrdtool-1.7.0-6.3.1.aarch64.rpm tcl-rrdtool-1.7.0-6.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-537 low SUSE Updates openSUSE-SLE 15.3 This update for yast2-dhcp-server fixes the following issues: - Fix DNS zone creation by fixing a maintained DNS zone check. yast2-dhcp-server-4.3.2-150300.3.3.1.noarch.rpm yast2-dhcp-server-4.3.2-150300.3.3.1.src.rpm openSUSE-SLE-15.3-2022-106 important SUSE Updates openSUSE-SLE 15.3 This update for jawn fixes the following issues: - CVE-2022-21653: Fixed DoS caused by a hash collision in SimpleFacade and MutableFacade (bsc#1194358). jawn-0.14.1-3.3.1.src.rpm jawn-ast-0.14.1-3.3.1.noarch.rpm jawn-json4s-0.14.1-3.3.1.noarch.rpm jawn-parser-0.14.1-3.3.1.noarch.rpm jawn-util-0.14.1-3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-158 important SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Follow up changes to (jsc#PCT-130, bsc#1182026) + Fix executable name for AHB service/timer + Update manpage for BYOS instance registration cloud-regionsrv-client-9.3.1-6.57.1.noarch.rpm cloud-regionsrv-client-9.3.1-6.57.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-6.57.1.noarch.rpm cloud-regionsrv-client-plugin-azure-1.0.1-6.57.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-6.57.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-6.57.1.noarch.rpm openSUSE-SLE-15.3-2022-150 important SUSE Updates openSUSE-SLE 15.3 This update for aide fixes the following issues: - CVE-2021-45417: Fix a bufferoverflow in base64 functions (bsc#1194735) aide-0.16-24.1.src.rpm aide-0.16-24.1.x86_64.rpm aide-test-0.16-24.1.x86_64.rpm aide-0.16-24.1.s390x.rpm aide-test-0.16-24.1.s390x.rpm aide-0.16-24.1.ppc64le.rpm aide-test-0.16-24.1.ppc64le.rpm aide-0.16-24.1.aarch64.rpm aide-test-0.16-24.1.aarch64.rpm openSUSE-SLE-15.3-2022-283 critical SUSE Updates openSUSE-SLE 15.3 - CVE-2021-44141: Information leak via symlinks of existance of files or directories outside of the exported share; (bso#14911); (bsc#1193690); - CVE-2021-44142: Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution; (bso#14914); (bsc#1194859); - CVE-2022-0336: Samba AD users with permission to write to an account can impersonate arbitrary services; (bso#14950); (bsc#1195048); samba was updated to 4.15.4 (jsc#SLE-23329); * Duplicate SMB file_ids leading to Windows client cache poisoning; (bso#14928); * Failed to parse NTLMv2_RESPONSE length 95 - Buffer Size Error - NT_STATUS_BUFFER_TOO_SMALL; (bso#14932); * kill_tcp_connections does not work; (bso#14934); * Can't connect to Windows shares not requiring authentication using KDE/Gnome; (bso#14935); * smbclient -L doesn't set "client max protocol" to NT1 before calling the "Reconnecting with SMB1 for workgroup listing" path; (bso#14939); * Cross device copy of the crossrename module always fails; (bso#14940); * symlinkat function from VFS cap module always fails with an error; (bso#14941); * Fix possible fsp pointer deference; (bso#14942); * Missing pop_sec_ctx() in error path inside close_directory(); (bso#14944); * "smbd --build-options" no longer works without an smb.conf file; (bso#14945); Samba was updated to version 4.15.3 + CVE-2021-43566: Symlink race error can allow directory creation outside of the exported share; (bsc#1139519); + CVE-2021-20316: Symlink race error can allow metadata read and modify outside of the exported share; (bsc#1191227); - Reorganize libs packages. Split samba-libs into samba-client-libs, samba-libs, samba-winbind-libs and samba-ad-dc-libs, merging samba public libraries depending on internal samba libraries into these packages as there were dependency problems everytime one of these public libraries changed its version (bsc#1192684). The devel packages are merged into samba-devel. - Rename package samba-core-devel to samba-devel - Update the symlink create by samba-dsdb-modules to private samba ldb modules following libldb2 changes from /usr/lib64/ldb/samba to /usr/lib64/ldb2/modules/ldb/samba krb5 was updated to 1.16.3 to 1.19.2 * Fix a denial of service attack against the KDC encrypted challenge code; (CVE-2021-36222); * Fix a memory leak when gss_inquire_cred() is called without a credential handle. Changes from 1.19.1: * Fix a linking issue with Samba. * Better support multiple pkinit_identities values by checking whether certificates can be loaded for each value. Changes from 1.19 Administrator experience * When a client keytab is present, the GSSAPI krb5 mech will refresh credentials even if the current credentials were acquired manually. * It is now harder to accidentally delete the K/M entry from a KDB. Developer experience * gss_acquire_cred_from() now supports the "password" and "verify" options, allowing credentials to be acquired via password and verified using a keytab key. * When an application accepts a GSS security context, the new GSS_C_CHANNEL_BOUND_FLAG will be set if the initiator and acceptor both provided matching channel bindings. * Added the GSS_KRB5_NT_X509_CERT name type, allowing S4U2Self requests to identify the desired client principal by certificate. * PKINIT certauth modules can now cause the hw-authent flag to be set in issued tickets. * The krb5_init_creds_step() API will now issue the same password expiration warnings as krb5_get_init_creds_password(). Protocol evolution * Added client and KDC support for Microsoft's Resource-Based Constrained Delegation, which allows cross-realm S4U2Proxy requests. A third-party database module is required for KDC support. * kadmin/admin is now the preferred server principal name for kadmin connections, and the host-based form is no longer created by default. The client will still try the host-based form as a fallback. * Added client and server support for Microsoft's KERB_AP_OPTIONS_CBT extension, which causes channel bindings to be required for the initiator if the acceptor provided them. The client will send this option if the client_aware_gss_bindings profile option is set. User experience * kinit will now issue a warning if the des3-cbc-sha1 encryption type is used in the reply. This encryption type will be deprecated and removed in future releases. * Added kvno flags --out-cache, --no-store, and --cached-only (inspired by Heimdal's kgetcred). Changes from 1.18.3 * Fix a denial of service vulnerability when decoding Kerberos protocol messages. * Fix a locking issue with the LMDB KDB module which could cause KDC and kadmind processes to lose access to the database. * Fix an assertion failure when libgssapi_krb5 is repeatedly loaded and unloaded while libkrb5support remains loaded. Changes from 1.18.2 * Fix a SPNEGO regression where an acceptor using the default credential would improperly filter mechanisms, causing a negotiation failure. * Fix a bug where the KDC would fail to issue tickets if the local krbtgt principal's first key has a single-DES enctype. * Add stub functions to allow old versions of OpenSSL libcrypto to link against libkrb5. * Fix a NegoEx bug where the client name and delegated credential might not be reported. Changes from 1.18.1 * Fix a crash when qualifying short hostnames when the system has no primary DNS domain. * Fix a regression when an application imports "service@" as a GSS host-based name for its acceptor credential handle. * Fix KDC enforcement of auth indicators when they are modified by the KDB module. * Fix removal of require_auth string attributes when the LDAP KDB module is used. * Fix a compile error when building with musl libc on Linux. * Fix a compile error when building with gcc 4.x. * Change the KDC constrained delegation precedence order for consistency with Windows KDCs. Changes from 1.18 Administrator experience: * Remove support for single-DES encryption types. * Change the replay cache format to be more efficient and robust. Replay cache filenames using the new format end with ".rcache2" by default. * setuid programs will automatically ignore environment variables that normally affect krb5 API functions, even if the caller does not use krb5_init_secure_context(). * Add an "enforce_ok_as_delegate" krb5.conf relation to disable credential forwarding during GSSAPI authentication unless the KDC sets the ok-as-delegate bit in the service ticket. * Use the permitted_enctypes krb5.conf setting as the default value for default_tkt_enctypes and default_tgs_enctypes. Developer experience: * Implement krb5_cc_remove_cred() for all credential cache types. * Add the krb5_pac_get_client_info() API to get the client account name from a PAC. Protocol evolution: * Add KDC support for S4U2Self requests where the user is identified by X.509 certificate. (Requires support for certificate lookup from a third-party KDB module.) * Remove support for an old ("draft 9") variant of PKINIT. * Add support for Microsoft NegoEx. (Requires one or more third-party GSS modules implementing NegoEx mechanisms.) User experience: * Add support for "dns_canonicalize_hostname=fallback", causing host-based principal names to be tried first without DNS canonicalization, and again with DNS canonicalization if the un-canonicalized server is not found. * Expand single-component hostnames in host-based principal names when DNS canonicalization is not used, adding the system's first DNS search path as a suffix. Add a "qualify_shortname" krb5.conf relation to override this suffix or disable expansion. * Honor the transited-policy-checked ticket flag on application servers, eliminating the requirement to configure capaths on servers in some scenarios. Code quality: * The libkrb5 serialization code (used to export and import krb5 GSS security contexts) has been simplified and made type-safe. * The libkrb5 code for creating KRB-PRIV, KRB-SAFE, and KRB-CRED messages has been revised to conform to current coding practices. * The test suite has been modified to work with macOS System Integrity Protection enabled. * The test suite incorporates soft-pkcs11 so that PKINIT PKCS11 support can always be tested. Changes from 1.17.1 * Fix a bug preventing "addprinc -randkey -kvno" from working in kadmin. * Fix a bug preventing time skew correction from working when a KCM credential cache is used. Changes from 1.17: Administrator experience: * A new Kerberos database module using the Lightning Memory-Mapped Database library (LMDB) has been added. The LMDB KDB module should be more performant and more robust than the DB2 module, and may become the default module for new databases in a future release. * "kdb5_util dump" will no longer dump policy entries when specific principal names are requested. Developer experience: * The new krb5_get_etype_info() API can be used to retrieve enctype, salt, and string-to-key parameters from the KDC for a client principal. * The new GSS_KRB5_NT_ENTERPRISE_NAME name type allows enterprise principal names to be used with GSS-API functions. * KDC and kadmind modules which call com_err() will now write to the log file in a format more consistent with other log messages. * Programs which use large numbers of memory credential caches should perform better. Protocol evolution: * The SPAKE pre-authentication mechanism is now supported. This mechanism protects against password dictionary attacks without requiring any additional infrastructure such as certificates. SPAKE is enabled by default on clients, but must be manually enabled on the KDC for this release. * PKINIT freshness tokens are now supported. Freshness tokens can protect against scenarios where an attacker uses temporary access to a smart card to generate authentication requests for the future. * Password change operations now prefer TCP over UDP, to avoid spurious error messages about replays when a response packet is dropped. * The KDC now supports cross-realm S4U2Self requests when used with a third-party KDB module such as Samba's. The client code for cross-realm S4U2Self requests is also now more robust. User experience: * The new ktutil addent -f flag can be used to fetch salt information from the KDC for password-based keys. * The new kdestroy -p option can be used to destroy a credential cache within a collection by client principal name. * The Kerberos man page has been restored, and documents the environment variables that affect programs using the Kerberos library. Code quality: * Python test scripts now use Python 3. * Python test scripts now display markers in verbose output, making it easier to find where a failure occurred within the scripts. * The Windows build system has been simplified and updated to work with more recent versions of Visual Studio. A large volume of unused Windows-specific code has been removed. Visual Studio 2013 or later is now required. - Build with full Cyrus SASL support. Negotiating SASL credentials with an EXTERNAL bind mechanism requires interaction. Kerberos provides its own interaction function that skips all interaction, thus preventing the mechanism from working. ldb was updated to version 2.4.1 (jsc#SLE-23329); - Release 2.4.1 + Corrected python behaviour for 'in' for LDAP attributes contained as part of ldb.Message; (bso#14845); + Fix memory handling in ldb.msg_diff; (bso#14836); - Release 2.4.0 + pyldb: Fix Message.items() for a message containing elements + pyldb: Add test for Message.items() + tests: Use ldbsearch '--scope instead of '-s' + Change page size of guidindexpackv1.ldb + Use a 1MiB lmdb so the test also passes on aarch64 CentOS stream + attrib_handler casefold: simplify space dropping + fix ldb_comparison_fold off-by-one overrun + CVE-2020-27840: pytests: move Dn.validate test to ldb + CVE-2020-27840 ldb_dn: avoid head corruption in ldb_dn_explode + CVE-2021-20277 ldb/attrib_handlers casefold: stay in bounds + CVE-2021-20277 ldb tests: ldb_match tests with extra spaces + improve comments for ldb_module_connect_backend() + test/ldb_tdb: correct introductory comments + ldb.h: remove undefined async_ctx function signatures + correct comments in attrib_handers val_to_int64 + dn tests use cmocka print functions + ldb_match: remove redundant check + add tests for ldb_wildcard_compare + ldb_match: trailing chunk must match end of string + pyldb: catch potential overflow error in py_timestring + ldb: remove some 'if PY3's in tests talloc was updated to 2.3.3: + various bugfixes + python: Ensure reference counts are properly incremented + Change pytalloc source to LGPL + Upgrade waf to 2.0.18 to fix a cross-compilation issue; (bso#13846). tdb was updated to version 1.4.4: + various bugfixes tevent was updated to version 0.11.0: + Add custom tag to events + Add event trace api sssd was updated to: - Fix tests test_copy_ccache & test_copy_keytab for later versions of krb5 - Update the private ldb modules installation following libldb2 changes from /usr/lib64/ldb/samba to /usr/lib64/ldb2/modules/ldb/samba apparmor was updated to: - Cater for changes to ldb packaging to allow parallel installation with libldb (bsc#1192684). - add profile for samba-bgqd (bsc#1191532). apache2-mod_apparmor-2.13.6-150300.3.11.2.x86_64.rpm apparmor-2.13.6-150300.3.11.2.src.rpm apparmor-abstractions-2.13.6-150300.3.11.2.noarch.rpm apparmor-docs-2.13.6-150300.3.11.2.noarch.rpm apparmor-parser-2.13.6-150300.3.11.2.x86_64.rpm apparmor-parser-lang-2.13.6-150300.3.11.2.noarch.rpm apparmor-profiles-2.13.6-150300.3.11.2.noarch.rpm apparmor-utils-2.13.6-150300.3.11.2.noarch.rpm apparmor-utils-lang-2.13.6-150300.3.11.2.noarch.rpm ctdb-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm ctdb-pcp-pmda-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm krb5-1.19.2-150300.8.3.2.src.rpm krb5-1.19.2-150300.8.3.2.x86_64.rpm krb5-32bit-1.19.2-150300.8.3.2.x86_64.rpm krb5-client-1.19.2-150300.8.3.2.x86_64.rpm krb5-devel-1.19.2-150300.8.3.2.x86_64.rpm krb5-devel-32bit-1.19.2-150300.8.3.2.x86_64.rpm krb5-mini-1.19.2-150300.8.3.2.src.rpm krb5-mini-1.19.2-150300.8.3.2.x86_64.rpm krb5-mini-devel-1.19.2-150300.8.3.2.x86_64.rpm krb5-plugin-kdb-ldap-1.19.2-150300.8.3.2.x86_64.rpm krb5-plugin-preauth-otp-1.19.2-150300.8.3.2.x86_64.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.8.3.2.x86_64.rpm krb5-plugin-preauth-spake-1.19.2-150300.8.3.2.x86_64.rpm krb5-server-1.19.2-150300.8.3.2.x86_64.rpm ldb-2.4.1-150300.3.10.1.src.rpm ldb-tools-2.4.1-150300.3.10.1.x86_64.rpm libapparmor-2.13.6-150300.3.11.1.src.rpm libapparmor-devel-2.13.6-150300.3.11.1.x86_64.rpm libapparmor1-2.13.6-150300.3.11.1.x86_64.rpm libapparmor1-32bit-2.13.6-150300.3.11.1.x86_64.rpm libipa_hbac-devel-1.16.1-150300.23.17.3.x86_64.rpm libipa_hbac0-1.16.1-150300.23.17.3.x86_64.rpm libldb-devel-2.4.1-150300.3.10.1.x86_64.rpm libldb2-2.4.1-150300.3.10.1.x86_64.rpm libldb2-32bit-2.4.1-150300.3.10.1.x86_64.rpm libnfsidmap-sss-1.16.1-150300.23.17.3.x86_64.rpm libsamba-policy-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm libsamba-policy-python3-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm libsamba-policy0-python3-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm libsamba-policy0-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm libsss_certmap-devel-1.16.1-150300.23.17.3.x86_64.rpm libsss_certmap0-1.16.1-150300.23.17.3.x86_64.rpm libsss_idmap-devel-1.16.1-150300.23.17.3.x86_64.rpm libsss_idmap0-1.16.1-150300.23.17.3.x86_64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.17.3.x86_64.rpm libsss_nss_idmap0-1.16.1-150300.23.17.3.x86_64.rpm libsss_simpleifp-devel-1.16.1-150300.23.17.3.x86_64.rpm libsss_simpleifp0-1.16.1-150300.23.17.3.x86_64.rpm libtalloc-devel-2.3.3-150300.3.3.2.x86_64.rpm libtalloc2-2.3.3-150300.3.3.2.x86_64.rpm libtalloc2-32bit-2.3.3-150300.3.3.2.x86_64.rpm libtdb-devel-1.4.4-150300.3.3.2.x86_64.rpm libtdb1-1.4.4-150300.3.3.2.x86_64.rpm libtdb1-32bit-1.4.4-150300.3.3.2.x86_64.rpm libtevent-devel-0.11.0-150300.3.3.2.x86_64.rpm libtevent0-0.11.0-150300.3.3.2.x86_64.rpm libtevent0-32bit-0.11.0-150300.3.3.2.x86_64.rpm pam_apparmor-2.13.6-150300.3.11.2.x86_64.rpm pam_apparmor-32bit-2.13.6-150300.3.11.2.x86_64.rpm perl-apparmor-2.13.6-150300.3.11.2.x86_64.rpm python3-apparmor-2.13.6-150300.3.11.2.x86_64.rpm python3-ipa_hbac-1.16.1-150300.23.17.3.x86_64.rpm python3-ldb-2.4.1-150300.3.10.1.x86_64.rpm python3-ldb-32bit-2.4.1-150300.3.10.1.x86_64.rpm python3-ldb-devel-2.4.1-150300.3.10.1.x86_64.rpm python3-sss-murmur-1.16.1-150300.23.17.3.x86_64.rpm python3-sss_nss_idmap-1.16.1-150300.23.17.3.x86_64.rpm python3-sssd-config-1.16.1-150300.23.17.3.x86_64.rpm python3-talloc-2.3.3-150300.3.3.2.x86_64.rpm python3-talloc-32bit-2.3.3-150300.3.3.2.x86_64.rpm python3-talloc-devel-2.3.3-150300.3.3.2.x86_64.rpm python3-tdb-1.4.4-150300.3.3.2.x86_64.rpm python3-tdb-32bit-1.4.4-150300.3.3.2.x86_64.rpm python3-tevent-0.11.0-150300.3.3.2.x86_64.rpm python3-tevent-32bit-0.11.0-150300.3.3.2.x86_64.rpm ruby-apparmor-2.13.6-150300.3.11.2.x86_64.rpm samba-4.15.4+git.324.8332acf1a63-150300.3.25.3.src.rpm samba-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-ad-dc-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-ad-dc-libs-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-ad-dc-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-ceph-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-client-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-client-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-client-libs-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-client-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-devel-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-doc-4.15.4+git.324.8332acf1a63-150300.3.25.3.noarch.rpm samba-dsdb-modules-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-gpupdate-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-ldb-ldap-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-libs-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-libs-python3-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-libs-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-test-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-tool-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-winbind-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-winbind-libs-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-winbind-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm sssd-1.16.1-150300.23.17.3.src.rpm sssd-1.16.1-150300.23.17.3.x86_64.rpm sssd-ad-1.16.1-150300.23.17.3.x86_64.rpm sssd-common-1.16.1-150300.23.17.3.x86_64.rpm sssd-dbus-1.16.1-150300.23.17.3.x86_64.rpm sssd-ipa-1.16.1-150300.23.17.3.x86_64.rpm sssd-krb5-1.16.1-150300.23.17.3.x86_64.rpm sssd-krb5-common-1.16.1-150300.23.17.3.x86_64.rpm sssd-ldap-1.16.1-150300.23.17.3.x86_64.rpm sssd-proxy-1.16.1-150300.23.17.3.x86_64.rpm sssd-tools-1.16.1-150300.23.17.3.x86_64.rpm sssd-wbclient-1.16.1-150300.23.17.3.x86_64.rpm sssd-wbclient-devel-1.16.1-150300.23.17.3.x86_64.rpm sssd-winbind-idmap-1.16.1-150300.23.17.3.x86_64.rpm talloc-2.3.3-150300.3.3.2.src.rpm talloc-man-2.3.3-150300.3.3.1.src.rpm talloc-man-2.3.3-150300.3.3.1.x86_64.rpm tdb-1.4.4-150300.3.3.2.src.rpm tdb-tools-1.4.4-150300.3.3.2.x86_64.rpm tevent-0.11.0-150300.3.3.2.src.rpm tevent-man-0.11.0-150300.3.3.1.src.rpm tevent-man-0.11.0-150300.3.3.1.x86_64.rpm apache2-mod_apparmor-2.13.6-150300.3.11.2.s390x.rpm apparmor-parser-2.13.6-150300.3.11.2.s390x.rpm ctdb-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm ctdb-pcp-pmda-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm krb5-1.19.2-150300.8.3.2.s390x.rpm krb5-client-1.19.2-150300.8.3.2.s390x.rpm krb5-devel-1.19.2-150300.8.3.2.s390x.rpm krb5-mini-1.19.2-150300.8.3.2.s390x.rpm krb5-mini-devel-1.19.2-150300.8.3.2.s390x.rpm krb5-plugin-kdb-ldap-1.19.2-150300.8.3.2.s390x.rpm krb5-plugin-preauth-otp-1.19.2-150300.8.3.2.s390x.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.8.3.2.s390x.rpm krb5-plugin-preauth-spake-1.19.2-150300.8.3.2.s390x.rpm krb5-server-1.19.2-150300.8.3.2.s390x.rpm ldb-tools-2.4.1-150300.3.10.1.s390x.rpm libapparmor-devel-2.13.6-150300.3.11.1.s390x.rpm libapparmor1-2.13.6-150300.3.11.1.s390x.rpm libipa_hbac-devel-1.16.1-150300.23.17.3.s390x.rpm libipa_hbac0-1.16.1-150300.23.17.3.s390x.rpm libldb-devel-2.4.1-150300.3.10.1.s390x.rpm libldb2-2.4.1-150300.3.10.1.s390x.rpm libnfsidmap-sss-1.16.1-150300.23.17.3.s390x.rpm libsamba-policy-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm libsamba-policy-python3-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm libsamba-policy0-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm libsss_certmap-devel-1.16.1-150300.23.17.3.s390x.rpm libsss_certmap0-1.16.1-150300.23.17.3.s390x.rpm libsss_idmap-devel-1.16.1-150300.23.17.3.s390x.rpm libsss_idmap0-1.16.1-150300.23.17.3.s390x.rpm libsss_nss_idmap-devel-1.16.1-150300.23.17.3.s390x.rpm libsss_nss_idmap0-1.16.1-150300.23.17.3.s390x.rpm libsss_simpleifp-devel-1.16.1-150300.23.17.3.s390x.rpm libsss_simpleifp0-1.16.1-150300.23.17.3.s390x.rpm libtalloc-devel-2.3.3-150300.3.3.2.s390x.rpm libtalloc2-2.3.3-150300.3.3.2.s390x.rpm libtdb-devel-1.4.4-150300.3.3.2.s390x.rpm libtdb1-1.4.4-150300.3.3.2.s390x.rpm libtevent-devel-0.11.0-150300.3.3.2.s390x.rpm libtevent0-0.11.0-150300.3.3.2.s390x.rpm pam_apparmor-2.13.6-150300.3.11.2.s390x.rpm perl-apparmor-2.13.6-150300.3.11.2.s390x.rpm python3-apparmor-2.13.6-150300.3.11.2.s390x.rpm python3-ipa_hbac-1.16.1-150300.23.17.3.s390x.rpm python3-ldb-2.4.1-150300.3.10.1.s390x.rpm python3-ldb-devel-2.4.1-150300.3.10.1.s390x.rpm python3-sss-murmur-1.16.1-150300.23.17.3.s390x.rpm python3-sss_nss_idmap-1.16.1-150300.23.17.3.s390x.rpm python3-sssd-config-1.16.1-150300.23.17.3.s390x.rpm python3-talloc-2.3.3-150300.3.3.2.s390x.rpm python3-talloc-devel-2.3.3-150300.3.3.2.s390x.rpm python3-tdb-1.4.4-150300.3.3.2.s390x.rpm python3-tevent-0.11.0-150300.3.3.2.s390x.rpm ruby-apparmor-2.13.6-150300.3.11.2.s390x.rpm samba-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-ad-dc-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-ad-dc-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-client-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-client-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-dsdb-modules-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-gpupdate-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-ldb-ldap-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-libs-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-test-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-tool-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-winbind-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-winbind-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm sssd-1.16.1-150300.23.17.3.s390x.rpm sssd-ad-1.16.1-150300.23.17.3.s390x.rpm sssd-common-1.16.1-150300.23.17.3.s390x.rpm sssd-dbus-1.16.1-150300.23.17.3.s390x.rpm sssd-ipa-1.16.1-150300.23.17.3.s390x.rpm sssd-krb5-1.16.1-150300.23.17.3.s390x.rpm sssd-krb5-common-1.16.1-150300.23.17.3.s390x.rpm sssd-ldap-1.16.1-150300.23.17.3.s390x.rpm sssd-proxy-1.16.1-150300.23.17.3.s390x.rpm sssd-tools-1.16.1-150300.23.17.3.s390x.rpm sssd-wbclient-1.16.1-150300.23.17.3.s390x.rpm sssd-wbclient-devel-1.16.1-150300.23.17.3.s390x.rpm sssd-winbind-idmap-1.16.1-150300.23.17.3.s390x.rpm talloc-man-2.3.3-150300.3.3.1.s390x.rpm tdb-tools-1.4.4-150300.3.3.2.s390x.rpm tevent-man-0.11.0-150300.3.3.1.s390x.rpm apache2-mod_apparmor-2.13.6-150300.3.11.2.ppc64le.rpm apparmor-parser-2.13.6-150300.3.11.2.ppc64le.rpm ctdb-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm ctdb-pcp-pmda-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm krb5-1.19.2-150300.8.3.2.ppc64le.rpm krb5-client-1.19.2-150300.8.3.2.ppc64le.rpm krb5-devel-1.19.2-150300.8.3.2.ppc64le.rpm krb5-mini-1.19.2-150300.8.3.2.ppc64le.rpm krb5-mini-devel-1.19.2-150300.8.3.2.ppc64le.rpm krb5-plugin-kdb-ldap-1.19.2-150300.8.3.2.ppc64le.rpm krb5-plugin-preauth-otp-1.19.2-150300.8.3.2.ppc64le.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.8.3.2.ppc64le.rpm krb5-plugin-preauth-spake-1.19.2-150300.8.3.2.ppc64le.rpm krb5-server-1.19.2-150300.8.3.2.ppc64le.rpm ldb-tools-2.4.1-150300.3.10.1.ppc64le.rpm libapparmor-devel-2.13.6-150300.3.11.1.ppc64le.rpm libapparmor1-2.13.6-150300.3.11.1.ppc64le.rpm libipa_hbac-devel-1.16.1-150300.23.17.3.ppc64le.rpm libipa_hbac0-1.16.1-150300.23.17.3.ppc64le.rpm libldb-devel-2.4.1-150300.3.10.1.ppc64le.rpm libldb2-2.4.1-150300.3.10.1.ppc64le.rpm libnfsidmap-sss-1.16.1-150300.23.17.3.ppc64le.rpm libsamba-policy-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm libsamba-policy-python3-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm libsamba-policy0-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm libsss_certmap-devel-1.16.1-150300.23.17.3.ppc64le.rpm libsss_certmap0-1.16.1-150300.23.17.3.ppc64le.rpm libsss_idmap-devel-1.16.1-150300.23.17.3.ppc64le.rpm libsss_idmap0-1.16.1-150300.23.17.3.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-150300.23.17.3.ppc64le.rpm libsss_nss_idmap0-1.16.1-150300.23.17.3.ppc64le.rpm libsss_simpleifp-devel-1.16.1-150300.23.17.3.ppc64le.rpm libsss_simpleifp0-1.16.1-150300.23.17.3.ppc64le.rpm libtalloc-devel-2.3.3-150300.3.3.2.ppc64le.rpm libtalloc2-2.3.3-150300.3.3.2.ppc64le.rpm libtdb-devel-1.4.4-150300.3.3.2.ppc64le.rpm libtdb1-1.4.4-150300.3.3.2.ppc64le.rpm libtevent-devel-0.11.0-150300.3.3.2.ppc64le.rpm libtevent0-0.11.0-150300.3.3.2.ppc64le.rpm pam_apparmor-2.13.6-150300.3.11.2.ppc64le.rpm perl-apparmor-2.13.6-150300.3.11.2.ppc64le.rpm python3-apparmor-2.13.6-150300.3.11.2.ppc64le.rpm python3-ipa_hbac-1.16.1-150300.23.17.3.ppc64le.rpm python3-ldb-2.4.1-150300.3.10.1.ppc64le.rpm python3-ldb-devel-2.4.1-150300.3.10.1.ppc64le.rpm python3-sss-murmur-1.16.1-150300.23.17.3.ppc64le.rpm python3-sss_nss_idmap-1.16.1-150300.23.17.3.ppc64le.rpm python3-sssd-config-1.16.1-150300.23.17.3.ppc64le.rpm python3-talloc-2.3.3-150300.3.3.2.ppc64le.rpm python3-talloc-devel-2.3.3-150300.3.3.2.ppc64le.rpm python3-tdb-1.4.4-150300.3.3.2.ppc64le.rpm python3-tevent-0.11.0-150300.3.3.2.ppc64le.rpm ruby-apparmor-2.13.6-150300.3.11.2.ppc64le.rpm samba-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-ad-dc-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-ad-dc-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-client-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-client-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-dsdb-modules-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-gpupdate-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-ldb-ldap-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-libs-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-test-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-tool-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-winbind-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-winbind-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm sssd-1.16.1-150300.23.17.3.ppc64le.rpm sssd-ad-1.16.1-150300.23.17.3.ppc64le.rpm sssd-common-1.16.1-150300.23.17.3.ppc64le.rpm sssd-dbus-1.16.1-150300.23.17.3.ppc64le.rpm sssd-ipa-1.16.1-150300.23.17.3.ppc64le.rpm sssd-krb5-1.16.1-150300.23.17.3.ppc64le.rpm sssd-krb5-common-1.16.1-150300.23.17.3.ppc64le.rpm sssd-ldap-1.16.1-150300.23.17.3.ppc64le.rpm sssd-proxy-1.16.1-150300.23.17.3.ppc64le.rpm sssd-tools-1.16.1-150300.23.17.3.ppc64le.rpm sssd-wbclient-1.16.1-150300.23.17.3.ppc64le.rpm sssd-wbclient-devel-1.16.1-150300.23.17.3.ppc64le.rpm sssd-winbind-idmap-1.16.1-150300.23.17.3.ppc64le.rpm talloc-man-2.3.3-150300.3.3.1.ppc64le.rpm tdb-tools-1.4.4-150300.3.3.2.ppc64le.rpm tevent-man-0.11.0-150300.3.3.1.ppc64le.rpm apache2-mod_apparmor-2.13.6-150300.3.11.2.aarch64.rpm apparmor-parser-2.13.6-150300.3.11.2.aarch64.rpm ctdb-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm ctdb-pcp-pmda-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm krb5-1.19.2-150300.8.3.2.aarch64.rpm krb5-client-1.19.2-150300.8.3.2.aarch64.rpm krb5-devel-1.19.2-150300.8.3.2.aarch64.rpm krb5-mini-1.19.2-150300.8.3.2.aarch64.rpm krb5-mini-devel-1.19.2-150300.8.3.2.aarch64.rpm krb5-plugin-kdb-ldap-1.19.2-150300.8.3.2.aarch64.rpm krb5-plugin-preauth-otp-1.19.2-150300.8.3.2.aarch64.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.8.3.2.aarch64.rpm krb5-plugin-preauth-spake-1.19.2-150300.8.3.2.aarch64.rpm krb5-server-1.19.2-150300.8.3.2.aarch64.rpm ldb-tools-2.4.1-150300.3.10.1.aarch64.rpm libapparmor-devel-2.13.6-150300.3.11.1.aarch64.rpm libapparmor1-2.13.6-150300.3.11.1.aarch64.rpm libipa_hbac-devel-1.16.1-150300.23.17.3.aarch64.rpm libipa_hbac0-1.16.1-150300.23.17.3.aarch64.rpm libldb-devel-2.4.1-150300.3.10.1.aarch64.rpm libldb2-2.4.1-150300.3.10.1.aarch64.rpm libnfsidmap-sss-1.16.1-150300.23.17.3.aarch64.rpm libsamba-policy-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm libsamba-policy-python3-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm libsamba-policy0-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm libsamba-policy0-python3-64bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64_ilp32.rpm libsss_certmap-devel-1.16.1-150300.23.17.3.aarch64.rpm libsss_certmap0-1.16.1-150300.23.17.3.aarch64.rpm libsss_idmap-devel-1.16.1-150300.23.17.3.aarch64.rpm libsss_idmap0-1.16.1-150300.23.17.3.aarch64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.17.3.aarch64.rpm libsss_nss_idmap0-1.16.1-150300.23.17.3.aarch64.rpm libsss_simpleifp-devel-1.16.1-150300.23.17.3.aarch64.rpm libsss_simpleifp0-1.16.1-150300.23.17.3.aarch64.rpm libtalloc-devel-2.3.3-150300.3.3.2.aarch64.rpm libtalloc2-2.3.3-150300.3.3.2.aarch64.rpm libtdb-devel-1.4.4-150300.3.3.2.aarch64.rpm libtdb1-1.4.4-150300.3.3.2.aarch64.rpm libtevent-devel-0.11.0-150300.3.3.2.aarch64.rpm libtevent0-0.11.0-150300.3.3.2.aarch64.rpm pam_apparmor-2.13.6-150300.3.11.2.aarch64.rpm perl-apparmor-2.13.6-150300.3.11.2.aarch64.rpm python3-apparmor-2.13.6-150300.3.11.2.aarch64.rpm python3-ipa_hbac-1.16.1-150300.23.17.3.aarch64.rpm python3-ldb-2.4.1-150300.3.10.1.aarch64.rpm python3-ldb-devel-2.4.1-150300.3.10.1.aarch64.rpm python3-sss-murmur-1.16.1-150300.23.17.3.aarch64.rpm python3-sss_nss_idmap-1.16.1-150300.23.17.3.aarch64.rpm python3-sssd-config-1.16.1-150300.23.17.3.aarch64.rpm python3-talloc-2.3.3-150300.3.3.2.aarch64.rpm python3-talloc-devel-2.3.3-150300.3.3.2.aarch64.rpm python3-tdb-1.4.4-150300.3.3.2.aarch64.rpm python3-tevent-0.11.0-150300.3.3.2.aarch64.rpm ruby-apparmor-2.13.6-150300.3.11.2.aarch64.rpm samba-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-ad-dc-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-ad-dc-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-ceph-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-client-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-client-64bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64_ilp32.rpm samba-client-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-dsdb-modules-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-gpupdate-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-ldb-ldap-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-libs-64bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64_ilp32.rpm samba-libs-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-libs-python3-64bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64_ilp32.rpm samba-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-test-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-tool-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-winbind-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-winbind-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm sssd-1.16.1-150300.23.17.3.aarch64.rpm sssd-ad-1.16.1-150300.23.17.3.aarch64.rpm sssd-common-1.16.1-150300.23.17.3.aarch64.rpm sssd-dbus-1.16.1-150300.23.17.3.aarch64.rpm sssd-ipa-1.16.1-150300.23.17.3.aarch64.rpm sssd-krb5-1.16.1-150300.23.17.3.aarch64.rpm sssd-krb5-common-1.16.1-150300.23.17.3.aarch64.rpm sssd-ldap-1.16.1-150300.23.17.3.aarch64.rpm sssd-proxy-1.16.1-150300.23.17.3.aarch64.rpm sssd-tools-1.16.1-150300.23.17.3.aarch64.rpm sssd-wbclient-1.16.1-150300.23.17.3.aarch64.rpm sssd-wbclient-devel-1.16.1-150300.23.17.3.aarch64.rpm sssd-winbind-idmap-1.16.1-150300.23.17.3.aarch64.rpm talloc-man-2.3.3-150300.3.3.1.aarch64.rpm tdb-tools-1.4.4-150300.3.3.2.aarch64.rpm tevent-man-0.11.0-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-151 moderate SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - CVE-2021-25219: Fixed flaw that allowed abusing lame cache to severely degrade resolver performance (bsc#1192146). bind-9.16.6-150300.22.13.1.src.rpm bind-9.16.6-150300.22.13.1.x86_64.rpm bind-chrootenv-9.16.6-150300.22.13.1.x86_64.rpm bind-devel-9.16.6-150300.22.13.1.x86_64.rpm bind-doc-9.16.6-150300.22.13.1.noarch.rpm bind-utils-9.16.6-150300.22.13.1.x86_64.rpm libbind9-1600-9.16.6-150300.22.13.1.x86_64.rpm libdns1605-9.16.6-150300.22.13.1.x86_64.rpm libirs-devel-9.16.6-150300.22.13.1.x86_64.rpm libirs1601-9.16.6-150300.22.13.1.x86_64.rpm libisc1606-9.16.6-150300.22.13.1.x86_64.rpm libisccc1600-9.16.6-150300.22.13.1.x86_64.rpm libisccfg1600-9.16.6-150300.22.13.1.x86_64.rpm libns1604-9.16.6-150300.22.13.1.x86_64.rpm python3-bind-9.16.6-150300.22.13.1.noarch.rpm bind-9.16.6-150300.22.13.1.s390x.rpm bind-chrootenv-9.16.6-150300.22.13.1.s390x.rpm bind-devel-9.16.6-150300.22.13.1.s390x.rpm bind-utils-9.16.6-150300.22.13.1.s390x.rpm libbind9-1600-9.16.6-150300.22.13.1.s390x.rpm libdns1605-9.16.6-150300.22.13.1.s390x.rpm libirs-devel-9.16.6-150300.22.13.1.s390x.rpm libirs1601-9.16.6-150300.22.13.1.s390x.rpm libisc1606-9.16.6-150300.22.13.1.s390x.rpm libisccc1600-9.16.6-150300.22.13.1.s390x.rpm libisccfg1600-9.16.6-150300.22.13.1.s390x.rpm libns1604-9.16.6-150300.22.13.1.s390x.rpm bind-9.16.6-150300.22.13.1.ppc64le.rpm bind-chrootenv-9.16.6-150300.22.13.1.ppc64le.rpm bind-devel-9.16.6-150300.22.13.1.ppc64le.rpm bind-utils-9.16.6-150300.22.13.1.ppc64le.rpm libbind9-1600-9.16.6-150300.22.13.1.ppc64le.rpm libdns1605-9.16.6-150300.22.13.1.ppc64le.rpm libirs-devel-9.16.6-150300.22.13.1.ppc64le.rpm libirs1601-9.16.6-150300.22.13.1.ppc64le.rpm libisc1606-9.16.6-150300.22.13.1.ppc64le.rpm libisccc1600-9.16.6-150300.22.13.1.ppc64le.rpm libisccfg1600-9.16.6-150300.22.13.1.ppc64le.rpm libns1604-9.16.6-150300.22.13.1.ppc64le.rpm bind-9.16.6-150300.22.13.1.aarch64.rpm bind-chrootenv-9.16.6-150300.22.13.1.aarch64.rpm bind-devel-9.16.6-150300.22.13.1.aarch64.rpm bind-utils-9.16.6-150300.22.13.1.aarch64.rpm libbind9-1600-9.16.6-150300.22.13.1.aarch64.rpm libdns1605-9.16.6-150300.22.13.1.aarch64.rpm libirs-devel-9.16.6-150300.22.13.1.aarch64.rpm libirs1601-9.16.6-150300.22.13.1.aarch64.rpm libisc1606-9.16.6-150300.22.13.1.aarch64.rpm libisccc1600-9.16.6-150300.22.13.1.aarch64.rpm libisccfg1600-9.16.6-150300.22.13.1.aarch64.rpm libns1604-9.16.6-150300.22.13.1.aarch64.rpm openSUSE-SLE-15.3-2022-493 important SUSE Updates openSUSE-SLE 15.3 This update for clamav fixes the following issues: - CVE-2022-20698: Fixed invalid pointer read allowing denial of service crash. (bsc#1194731) clamav-0.103.5-3.35.1.src.rpm clamav-0.103.5-3.35.1.x86_64.rpm clamav-devel-0.103.5-3.35.1.x86_64.rpm libclamav9-0.103.5-3.35.1.x86_64.rpm libfreshclam2-0.103.5-3.35.1.x86_64.rpm clamav-0.103.5-3.35.1.s390x.rpm clamav-devel-0.103.5-3.35.1.s390x.rpm libclamav9-0.103.5-3.35.1.s390x.rpm libfreshclam2-0.103.5-3.35.1.s390x.rpm clamav-0.103.5-3.35.1.ppc64le.rpm clamav-devel-0.103.5-3.35.1.ppc64le.rpm libclamav9-0.103.5-3.35.1.ppc64le.rpm libfreshclam2-0.103.5-3.35.1.ppc64le.rpm clamav-0.103.5-3.35.1.aarch64.rpm clamav-devel-0.103.5-3.35.1.aarch64.rpm libclamav9-0.103.5-3.35.1.aarch64.rpm libfreshclam2-0.103.5-3.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-155 low SUSE Updates openSUSE-SLE 15.3 This update for ibus-table-zhuyin fixes the following issues: - Disable installation by default to allow the end user to choose whether to install or not (jsc#SLE-3872) ibus-table-zhuyin-1.2.0.20090831-3.3.1.noarch.rpm ibus-table-zhuyin-1.2.0.20090831-3.3.1.src.rpm openSUSE-SLE-15.3-2022-199 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - CVE-2021-4140: Fixed Iframe sandbox bypass with XSLT (bsc#1194547). - CVE-2022-22737: Fixed race condition when playing audio files (bsc#1194547). - CVE-2022-22738: Fixed heap-buffer-overflow in blendGaussianBlur (bsc#1194547). - CVE-2022-22739: Fixed missing throttling on external protocol launch dialog (bsc#1194547). - CVE-2022-22740: Fixed use-after-free of ChannelEventQueue::mOwner (bsc#1194547). - CVE-2022-22741: Fixed browser window spoof using fullscreen mode (bsc#1194547). - CVE-2022-22742: Fixed out-of-bounds memory access when inserting text in edit mode (bsc#1194547). - CVE-2022-22743: Fixed browser window spoof using fullscreen mode (bsc#1194547). - CVE-2022-22744: Fixed possible command injection via the 'Copy as curl' feature in DevTools (bsc#1194547). - CVE-2022-22745: Fixed leaking cross-origin URLs through securitypolicyviolation event (bsc#1194547). - CVE-2022-22746: Fixed calling into reportValidity could have lead to fullscreen window spoof (bsc#1194547). - CVE-2022-22747: Fixed crash when handling empty pkcs7 sequence(bsc#1194547). - CVE-2022-22748: Fixed spoofed origin on external protocol launch dialog (bsc#1194547). - CVE-2022-22751: Fixed memory safety bugs (bsc#1194547). MozillaThunderbird-91.5.0-8.51.1.src.rpm MozillaThunderbird-91.5.0-8.51.1.x86_64.rpm MozillaThunderbird-translations-common-91.5.0-8.51.1.x86_64.rpm MozillaThunderbird-translations-other-91.5.0-8.51.1.x86_64.rpm MozillaThunderbird-91.5.0-8.51.1.s390x.rpm MozillaThunderbird-translations-common-91.5.0-8.51.1.s390x.rpm MozillaThunderbird-translations-other-91.5.0-8.51.1.s390x.rpm MozillaThunderbird-91.5.0-8.51.1.ppc64le.rpm MozillaThunderbird-translations-common-91.5.0-8.51.1.ppc64le.rpm MozillaThunderbird-translations-other-91.5.0-8.51.1.ppc64le.rpm MozillaThunderbird-91.5.0-8.51.1.aarch64.rpm MozillaThunderbird-translations-common-91.5.0-8.51.1.aarch64.rpm MozillaThunderbird-translations-other-91.5.0-8.51.1.aarch64.rpm openSUSE-SLE-15.3-2022-149 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust1.56 fixes the following issues: - CVE-2022-21658: Fixed race condition in std::fs::remove_dir_all (bsc#1194767). cargo1.56-1.56.1-150300.7.6.1.x86_64.rpm rust1.56-1.56.1-150300.7.6.1.src.rpm rust1.56-1.56.1-150300.7.6.1.x86_64.rpm cargo1.56-1.56.1-150300.7.6.1.s390x.rpm rust1.56-1.56.1-150300.7.6.1.s390x.rpm cargo1.56-1.56.1-150300.7.6.1.ppc64le.rpm rust1.56-1.56.1-150300.7.6.1.ppc64le.rpm cargo1.56-1.56.1-150300.7.6.1.aarch64.rpm rust1.56-1.56.1-150300.7.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-146 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs16 fixes the following issues: NodeJS 16 is shipped in version 16.13.2. For complete list of changes since 15.x, please see https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V16.md#16.0.0 nodejs16-16.13.2-150300.7.3.1.src.rpm nodejs16-16.13.2-150300.7.3.1.x86_64.rpm nodejs16-devel-16.13.2-150300.7.3.1.x86_64.rpm nodejs16-docs-16.13.2-150300.7.3.1.noarch.rpm npm16-16.13.2-150300.7.3.1.x86_64.rpm nodejs16-16.13.2-150300.7.3.1.s390x.rpm nodejs16-devel-16.13.2-150300.7.3.1.s390x.rpm npm16-16.13.2-150300.7.3.1.s390x.rpm nodejs16-16.13.2-150300.7.3.1.ppc64le.rpm nodejs16-devel-16.13.2-150300.7.3.1.ppc64le.rpm npm16-16.13.2-150300.7.3.1.ppc64le.rpm nodejs16-16.13.2-150300.7.3.1.aarch64.rpm nodejs16-devel-16.13.2-150300.7.3.1.aarch64.rpm npm16-16.13.2-150300.7.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-178 important SUSE Updates openSUSE-SLE 15.3 This update for expat fixes the following issues: - CVE-2021-45960: Fixed left shift in the storeAtts function in xmlparse.c that can lead to realloc misbehavior (bsc#1194251). - CVE-2021-46143: Fixed integer overflow in m_groupSize in doProlog (bsc#1194362). - CVE-2022-22822: Fixed integer overflow in addBinding in xmlparse.c (bsc#1194474). - CVE-2022-22823: Fixed integer overflow in build_model in xmlparse.c (bsc#1194476). - CVE-2022-22824: Fixed integer overflow in defineAttribute in xmlparse.c (bsc#1194477). - CVE-2022-22825: Fixed integer overflow in lookup in xmlparse.c (bsc#1194478). - CVE-2022-22826: Fixed integer overflow in nextScaffoldPart in xmlparse.c (bsc#1194479). - CVE-2022-22827: Fixed integer overflow in storeAtts in xmlparse.c (bsc#1194480). expat-2.2.5-3.9.1.src.rpm expat-2.2.5-3.9.1.x86_64.rpm libexpat-devel-2.2.5-3.9.1.x86_64.rpm libexpat-devel-32bit-2.2.5-3.9.1.x86_64.rpm libexpat1-2.2.5-3.9.1.x86_64.rpm libexpat1-32bit-2.2.5-3.9.1.x86_64.rpm expat-2.2.5-3.9.1.s390x.rpm libexpat-devel-2.2.5-3.9.1.s390x.rpm libexpat1-2.2.5-3.9.1.s390x.rpm expat-2.2.5-3.9.1.ppc64le.rpm libexpat-devel-2.2.5-3.9.1.ppc64le.rpm libexpat1-2.2.5-3.9.1.ppc64le.rpm expat-2.2.5-3.9.1.aarch64.rpm libexpat-devel-2.2.5-3.9.1.aarch64.rpm libexpat1-2.2.5-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-157 important SUSE Updates openSUSE-SLE 15.3 This update for zxing-cpp fixes the following issues: - CVE-2021-28021: Fixed buffer overflow vulnerability in function stbi__extend_receive in stb_image.h via a crafted JPEG file. (bsc#1191743). - CVE-2021-42715: Fixed buffer overflow in stb_image PNM loader (bsc#1191942). - CVE-2021-42716: Fixed denial of service in stb_image HDR loader when reading crafted HDR files (bsc#1191944). libZXing1-1.2.0-9.7.1.x86_64.rpm zxing-cpp-1.2.0-9.7.1.src.rpm zxing-cpp-devel-1.2.0-9.7.1.x86_64.rpm libZXing1-1.2.0-9.7.1.s390x.rpm zxing-cpp-devel-1.2.0-9.7.1.s390x.rpm libZXing1-1.2.0-9.7.1.ppc64le.rpm zxing-cpp-devel-1.2.0-9.7.1.ppc64le.rpm libZXing1-1.2.0-9.7.1.aarch64.rpm zxing-cpp-devel-1.2.0-9.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-171 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust1.55 fixes the following issues: - CVE-2022-21658: Fixed race condition in std::fs::remove_dir_all (bsc#1194767). cargo1.55-1.55.0-150300.7.6.1.x86_64.rpm rust1.55-1.55.0-150300.7.6.1.src.rpm rust1.55-1.55.0-150300.7.6.1.x86_64.rpm cargo1.55-1.55.0-150300.7.6.1.s390x.rpm rust1.55-1.55.0-150300.7.6.1.s390x.rpm cargo1.55-1.55.0-150300.7.6.1.ppc64le.rpm rust1.55-1.55.0-150300.7.6.1.ppc64le.rpm cargo1.55-1.55.0-150300.7.6.1.aarch64.rpm rust1.55-1.55.0-150300.7.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-176 important SUSE Updates openSUSE-SLE 15.3 This update for unbound fixes the following issues: - CVE-2019-25031: Fixed configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack (bsc#1185382). - CVE-2019-25032: Fixed integer overflow in the regional allocator via regional_alloc (bsc#1185383). - CVE-2019-25033: Fixed integer overflow in the regional allocator via the ALIGN_UP macro (bsc#1185384). - CVE-2019-25034: Fixed integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write (bsc#1185385). - CVE-2019-25035: Fixed out-of-bounds write in sldns_bget_token_par (bsc#1185386). - CVE-2019-25036: Fixed assertion failure and denial of service in synth_cname (bsc#1185387). - CVE-2019-25037: Fixed assertion failure and denial of service in dname_pkt_copy via an invalid packet (bsc#1185388). - CVE-2019-25038: Fixed integer overflow in a size calculation in dnscrypt/dnscrypt.c (bsc#1185389). - CVE-2019-25039: Fixed integer overflow in a size calculation in respip/respip.c (bsc#1185390). - CVE-2019-25040: Fixed infinite loop via a compressed name in dname_pkt_copy (bsc#1185391). - CVE-2019-25041: Fixed assertion failure via a compressed name in dname_pkt_copy (bsc#1185392). - CVE-2019-25042: Fixed out-of-bounds write via a compressed name in rdata_copy (bsc#1185393). - CVE-2020-28935: Fixed symbolic link traversal when writing PID file (bsc#1179191). libunbound2-1.6.8-10.6.1.x86_64.rpm unbound-1.6.8-10.6.1.src.rpm unbound-1.6.8-10.6.1.x86_64.rpm unbound-anchor-1.6.8-10.6.1.x86_64.rpm unbound-devel-1.6.8-10.6.1.x86_64.rpm unbound-munin-1.6.8-10.6.1.noarch.rpm unbound-python-1.6.8-10.6.1.x86_64.rpm libunbound2-1.6.8-10.6.1.s390x.rpm unbound-1.6.8-10.6.1.s390x.rpm unbound-anchor-1.6.8-10.6.1.s390x.rpm unbound-devel-1.6.8-10.6.1.s390x.rpm unbound-python-1.6.8-10.6.1.s390x.rpm libunbound2-1.6.8-10.6.1.ppc64le.rpm unbound-1.6.8-10.6.1.ppc64le.rpm unbound-anchor-1.6.8-10.6.1.ppc64le.rpm unbound-devel-1.6.8-10.6.1.ppc64le.rpm unbound-python-1.6.8-10.6.1.ppc64le.rpm libunbound2-1.6.8-10.6.1.aarch64.rpm unbound-1.6.8-10.6.1.aarch64.rpm unbound-anchor-1.6.8-10.6.1.aarch64.rpm unbound-devel-1.6.8-10.6.1.aarch64.rpm unbound-python-1.6.8-10.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-319 moderate SUSE Updates openSUSE-SLE 15.3 This update for cargo-packaging, rustup, sccache fixes the following issues: rustup, cargo-packaging and sccache were added to the Development Tools Module. - rustup version 1.24.3~git0.ce5817a9. - cargo-packaging version 1.0.0~git6.d878e38. - sccache version 0.2.15~git1.22a176c. cargo-packaging-1.0.0~git6.d878e38-150300.7.3.1.noarch.rpm cargo-packaging-1.0.0~git6.d878e38-150300.7.3.1.src.rpm rustup-1.24.3~git1.0a74fef5-150300.7.6.1.src.rpm rustup-1.24.3~git1.0a74fef5-150300.7.6.1.x86_64.rpm sccache-0.2.15~git0.6b6d2f7-150300.7.6.1.src.rpm sccache-0.2.15~git0.6b6d2f7-150300.7.6.1.x86_64.rpm rustup-1.24.3~git1.0a74fef5-150300.7.6.1.aarch64.rpm sccache-0.2.15~git0.6b6d2f7-150300.7.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-170 important SUSE Updates openSUSE-SLE 15.3 This update for python3-azuremetadata fixes the following issues: - Version 5.1.5 (bsc#1194663) + Handle lsblk output format change. The json data now contains "mountpoints" instead of "mountpoint" + Use versions endpoint to list the available versions + Add bypass proxy + Update way to check classic vms - Fix provides directive (bsc#1175609, bsc#1175610) + The provides directive must set a version or update does not work as expected python3-azuremetadata-5.1.5-1.23.1.noarch.rpm python3-azuremetadata-5.1.5-1.23.1.src.rpm openSUSE-SLE-15.3-2022-685 important SUSE Updates openSUSE-SLE 15.3 This update for clingo, python-Sphinx_4_2_0, python-sphinxcontrib-applehelp, python-sphinxcontrib-devhelp, python-sphinxcontrib-htmlhelp, python-sphinxcontrib-jsmath, python-sphinxcontrib-qthelp, python-sphinxcontrib-serializinghtml, spack fixes the following issues: - added python-cffi as Requires (bsc#1193712) - create a sub lib package - fix some build errors, remove unwanted files - update to version 5.5.0 - clingo is used by default for spack version earlier than 0.17 (jsc#SLE-22137) - first release for SUSE (from fedora spec) spack-0.17.1-150300.5.8.2.noarch.rpm spack-0.17.1-150300.5.8.2.src.rpm spack-0.17.1-150300.5.8.3.src.rpm spack-info-0.17.1-150300.5.8.3.noarch.rpm spack-man-0.17.1-150300.5.8.3.noarch.rpm spack-recipes-0.17.1-150300.5.8.2.noarch.rpm openSUSE-SLE-15.3-2022-175 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust1.57 fixes the following issues: - CVE-2022-21658: Fixed race condition in std::fs::remove_dir_all (bsc#1194767). cargo1.57-1.57.0-150300.7.7.1.x86_64.rpm rust1.57-1.57.0-150300.7.7.1.src.rpm rust1.57-1.57.0-150300.7.7.1.x86_64.rpm cargo1.57-1.57.0-150300.7.7.1.s390x.rpm rust1.57-1.57.0-150300.7.7.1.s390x.rpm cargo1.57-1.57.0-150300.7.7.1.ppc64le.rpm rust1.57-1.57.0-150300.7.7.1.ppc64le.rpm cargo1.57-1.57.0-150300.7.7.1.aarch64.rpm rust1.57-1.57.0-150300.7.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-226 important SUSE Updates openSUSE-SLE 15.3 This update for log4j12 fixes the following issues: - CVE-2022-23307: Fix deserialization issue by removing the chainsaw sub-package. (bsc#1194844) - CVE-2022-23305: Fix SQL injection by removing src/main/java/org/apache/log4j/jdbc/JDBCAppender.java. (bsc#1194843) - CVE-2022-23302: Fix remote code execution by removing src/main/java/org/apache/log4j/net/JMSSink.java. (bsc#1194842) log4j12-1.2.17-4.9.1.noarch.rpm log4j12-1.2.17-4.9.1.src.rpm log4j12-javadoc-1.2.17-4.9.1.noarch.rpm log4j12-manual-1.2.17-4.9.1.noarch.rpm openSUSE-SLE-15.3-2022-334 moderate SUSE Updates openSUSE-SLE 15.3 This update for containerd, docker fixes the following issues: - CVE-2021-41089: Fixed "cp" can chmod host files (bsc#1191015). - CVE-2021-41091: Fixed flaw that could lead to data directory traversal in moby (bsc#1191434). - CVE-2021-41092: Fixed exposed user credentials with a misconfigured configuration file (bsc#1191334). - CVE-2021-41103: Fixed file access to local users in containerd (bsc#1191121). - CVE-2021-41190: Fixed OCI manifest and index parsing confusion (bsc#1193273). Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? containerd-1.4.12-60.1.src.rpm containerd-1.4.12-60.1.x86_64.rpm containerd-ctr-1.4.12-60.1.x86_64.rpm docker-20.10.12_ce-159.1.src.rpm docker-20.10.12_ce-159.1.x86_64.rpm docker-bash-completion-20.10.12_ce-159.1.noarch.rpm docker-fish-completion-20.10.12_ce-159.1.noarch.rpm docker-kubic-20.10.12_ce-159.1.src.rpm docker-kubic-20.10.12_ce-159.1.x86_64.rpm docker-kubic-bash-completion-20.10.12_ce-159.1.noarch.rpm docker-kubic-fish-completion-20.10.12_ce-159.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.12_ce-159.1.x86_64.rpm docker-kubic-zsh-completion-20.10.12_ce-159.1.noarch.rpm docker-zsh-completion-20.10.12_ce-159.1.noarch.rpm containerd-1.4.12-60.1.s390x.rpm containerd-ctr-1.4.12-60.1.s390x.rpm docker-20.10.12_ce-159.1.s390x.rpm docker-kubic-20.10.12_ce-159.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.12_ce-159.1.s390x.rpm containerd-1.4.12-60.1.ppc64le.rpm containerd-ctr-1.4.12-60.1.ppc64le.rpm docker-20.10.12_ce-159.1.ppc64le.rpm docker-kubic-20.10.12_ce-159.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.12_ce-159.1.ppc64le.rpm containerd-1.4.12-60.1.aarch64.rpm containerd-ctr-1.4.12-60.1.aarch64.rpm docker-20.10.12_ce-159.1.aarch64.rpm docker-kubic-20.10.12_ce-159.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.12_ce-159.1.aarch64.rpm openSUSE-SLE-15.3-2022-198 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0185: Incorrect param length parsing in legacy_parse_param which could have led to a local privilege escalation (bsc#1194517). - CVE-2022-0322: Fixed a denial of service in SCTP sctp_addto_chunk (bsc#1194985). - CVE-2021-4197: Fixed a cgroup issue where lower privileged processes could write to fds of lower privileged ones that could lead to privilege escalation (bsc#1194302). - CVE-2021-46283: nf_tables_newset in net/netfilter/nf_tables_api.c in the Linux kernel allowed local users to cause a denial of service (NULL pointer dereference and general protection fault) because of the missing initialization for nft_set_elem_expr_alloc. A local user can set a netfilter table expression in their own namespace (bnc#1194518). - CVE-2021-4135: Fixed an information leak in the nsim_bpf_map_alloc function (bsc#1193927). - CVE-2021-4202: Fixed a race condition during NFC device remove which could lead to a use-after-free memory corruption (bsc#1194529) - CVE-2021-4083: A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allowed a local user to crash the system or escalate their privileges on the system. This flaw affects Linux kernel versions prior to 5.16-rc4 (bnc#1193727). - CVE-2021-4149: Fixed a locking condition in btrfs which could lead to system deadlocks (bsc#1194001). - CVE-2021-45485: In the IPv6 implementation in net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses (bnc#1194094). - CVE-2021-45486: In the IPv4 implementation in net/ipv4/route.c has an information leak because the hash table is very small (bnc#1194087). The following non-security bugs were fixed: - ACPI: APD: Check for NULL pointer after calling devm_ioremap() (git-fixes). - ACPI: Add stubs for wakeup handler functions (git-fixes). - ACPI: scan: Create platform device for BCM4752 and LNV4752 ACPI nodes (git-fixes). - ALSA: PCM: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: ctl: Fix copy of updated id with element read/write (git-fixes). - ALSA: drivers: opl3: Fix incorrect use of vp->state (git-fixes). - ALSA: hda/hdmi: Disable silent stream on GLK (git-fixes). - ALSA: hda/realtek - Add headset Mic support for Lenovo ALC897 platform (git-fixes). - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Master after reboot from Windows (git-fixes). - ALSA: hda/realtek: Add a quirk for HP OMEN 15 mute LED (git-fixes). - ALSA: hda/realtek: Add quirk for ASRock NUC Box 1100 (git-fixes). - ALSA: hda/realtek: Amp init fixup for HP ZBook 15 G6 (git-fixes). - ALSA: hda/realtek: Fix quirk for Clevo NJ51CU (git-fixes). - ALSA: hda/realtek: Fix quirk for TongFang PHxTxX1 (git-fixes). - ALSA: hda/realtek: Fixes HP Spectre x360 15-eb1xxx speakers (git-fixes). - ALSA: hda/realtek: Headset fixup for Clevo NH77HJQ (git-fixes). - ALSA: hda: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: hda: Make proper use of timecounter (git-fixes). - ALSA: jack: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: jack: Check the return value of kstrdup() (git-fixes). - ALSA: oss: fix compile error when OSS_DEBUG is enabled (git-fixes). - ALSA: pcm: oss: Fix negative period/buffer sizes (git-fixes). - ALSA: pcm: oss: Handle missing errors in snd_pcm_oss_change_params*() (git-fixes). - ALSA: pcm: oss: Limit the period size to 16MB (git-fixes). - ALSA: usb-audio: Drop superfluous '0' in Presonus Studio 1810c's ID (git-fixes). - ALSA: usb-audio: Line6 HX-Stomp XL USB_ID for 48k-fixed quirk (git-fixes). - ASoC: codecs: wcd934x: handle channel mappping list correctly (git-fixes). - ASoC: codecs: wcd934x: return correct value from mixer put (git-fixes). - ASoC: codecs: wcd934x: return error code correctly from hw_params (git-fixes). - ASoC: codecs: wsa881x: fix return values from kcontrol put (git-fixes). - ASoC: cs42l42: Correct configuring of switch inversion from ts-inv (git-fixes). - ASoC: cs42l42: Disable regulators if probe fails (git-fixes). - ASoC: cs42l42: Use device_property API instead of of_property (git-fixes). - ASoC: fsl_asrc: refine the check of available clock divider (git-fixes). - ASoC: fsl_mqs: fix MODULE_ALIAS (git-fixes). - ASoC: mediatek: Check for error clk pointer (git-fixes). - ASoC: meson: aiu: Move AIU_I2S_MISC hold setting to aiu-fifo-i2s (git-fixes). - ASoC: meson: aiu: fifo: Add missing dma_coerce_mask_and_coherent() (git-fixes). - ASoC: qdsp6: q6routing: Fix return value from msm_routing_put_audio_mixer (git-fixes). - ASoC: rt5663: Handle device_property_read_u32_array error codes (git-fixes). - ASoC: samsung: idma: Check of ioremap return value (git-fixes). - ASoC: soc-core: fix null-ptr-deref in snd_soc_del_component_unlocked() (git-fixes). - ASoC: sunxi: fix a sound binding broken reference (git-fixes). - ASoC: tegra: Fix kcontrol put callback in ADMAIF (git-fixes). - ASoC: tegra: Fix kcontrol put callback in AHUB (git-fixes). - ASoC: tegra: Fix kcontrol put callback in DMIC (git-fixes). - ASoC: tegra: Fix kcontrol put callback in DSPK (git-fixes). - ASoC: tegra: Fix kcontrol put callback in I2S (git-fixes). - ASoC: tegra: Fix wrong value type in ADMAIF (git-fixes). - ASoC: tegra: Fix wrong value type in DMIC (git-fixes). - ASoC: tegra: Fix wrong value type in DSPK (git-fixes). - ASoC: tegra: Fix wrong value type in I2S (git-fixes). - ASoC: uniphier: drop selecting non-existing SND_SOC_UNIPHIER_AIO_DMA (git-fixes). - Add cherry-picked IDs for qemu fw_cfg patches - Bluetooth: L2CAP: Fix using wrong mode (git-fixes). - Bluetooth: bfusb: fix division by zero in send path (git-fixes). - Bluetooth: btmtksdio: fix resume failure (git-fixes). - Bluetooth: btusb: fix memory leak in btusb_mtk_submit_wmt_recv_urb() (git-fixes). - Bluetooth: cmtp: fix possible panic when cmtp_init_sockets() fails (git-fixes). - Bluetooth: hci_bcm: Check for error irq (git-fixes). - Bluetooth: hci_qca: Stop IBS timer during BT OFF (git-fixes). - Bluetooth: stop proccessing malicious adv data (git-fixes). - Documentation: ACPI: Fix data node reference documentation (git-fixes). - Documentation: dmaengine: Correctly describe dmatest with channel unset (git-fixes). - Documentation: refer to config RANDOMIZE_BASE for kernel address-space randomization (git-fixes). - HID: add USB_HID dependancy to hid-chicony (git-fixes). - HID: add USB_HID dependancy to hid-prodikeys (git-fixes). - HID: asus: Add depends on USB_HID to HID_ASUS Kconfig option (git-fixes). - HID: bigbenff: prevent null pointer dereference (git-fixes). - HID: google: add eel USB id (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_frame_init_v1_buttonpad (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_get_str_desc (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_huion_init (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_init (git-fixes). - HID: quirks: Add quirk for the Microsoft Surface 3 type-cover (git-fixes). - Input: appletouch - initialize work before device registration (git-fixes). - Input: atmel_mxt_ts - fix double free in mxt_read_info_block (git-fixes). - Input: elantech - fix stack out of bound access in elantech_change_report_id() (git-fixes). - Input: i8042 - add deferred probe support (bsc#1190256). - Input: i8042 - enable deferred probe quirk for ASUS UM325UA (bsc#1190256). - Input: max8925_onkey - do not mark comment as kernel-doc (git-fixes). - Input: spaceball - fix parsing of movement data packets (git-fixes). - Input: ti_am335x_tsc - fix STEPCONFIG setup for Z2 (git-fixes). - Input: ti_am335x_tsc - set ADCREFM for X configuration (git-fixes). - Move upstreamed patches into sorted section - NFC: st21nfca: Fix memory leak in device probe and remove (git-fixes). - NFSD: Fix zero-length NFSv3 WRITEs (git-fixes). - NFSv42: Do not fail clone() unless the OP_CLONE operation failed (git-fixes). - NFSv42: Fix pagecache invalidation after COPY/CLONE (git-fixes). - PCI/ACPI: Fix acpi_pci_osc_control_set() kernel-doc comment (git-fixes). - PCI/MSI: Clear PCI_MSIX_FLAGS_MASKALL on error (git-fixes). - PCI/MSI: Fix pci_irq_vector()/pci_irq_get_affinity() (git-fixes). - PCI/MSI: Mask MSI-X vectors only on success (git-fixes). - PCI: cadence: Add cdns_plat_pcie_probe() missing return (git-fixes). - PCI: dwc: Do not remap invalid res (git-fixes). - PCI: mvebu: Check for errors from pci_bridge_emul_init() call (git-fixes). - PCI: mvebu: Do not modify PCI IO type bits in conf_write (git-fixes). - PCI: mvebu: Fix support for DEVCAP2, DEVCTL2 and LNKCTL2 registers on emulated bridge (git-fixes). - PCI: mvebu: Fix support for PCI_EXP_DEVCTL on emulated bridge (git-fixes). - PCI: mvebu: Fix support for PCI_EXP_RTSTA on emulated bridge (git-fixes). - PCI: pci-bridge-emul: Properly mark reserved PCIe bits in PCI config space (git-fixes). - PCI: pci-bridge-emul: Set PCI_STATUS_CAP_LIST for PCIe device (git-fixes). - PCI: pciehp: Fix infinite loop in IRQ handler upon power fault (git-fixes). - PCI: xgene: Fix IB window setup (git-fixes). - PM: runtime: Defer suspending suppliers (git-fixes). - PM: sleep: Do not assume that "mem" is always present (git-fixes). - RDMA/hns: Replace kfree() with kvfree() (jsc#SLE-14777). - Revert "PM: sleep: Do not assume that "mem" is always present" (git-fixes). - Revert "USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST quirk set" (git-fixes). - Revert "net/mlx5: Add retry mechanism to the command entry index allocation" (jsc#SLE-15172). - USB: Fix "slab-out-of-bounds Write" bug in usb_hcd_poll_rh_status (git-fixes). - USB: NO_LPM quirk Lenovo Powered USB-C Travel Hub (git-fixes). - USB: NO_LPM quirk Lenovo USB-C to Ethernet Adapher(RTL8153-04) (git-fixes). - USB: cdc-acm: fix break reporting (git-fixes). - USB: cdc-acm: fix racy tty buffer accesses (git-fixes). - USB: chipidea: fix interrupt deadlock (git-fixes). - USB: core: Fix bug in resuming hub's handling of wakeup requests (git-fixes). - USB: gadget: bRequestType is a bitfield, not a enum (git-fixes). - USB: gadget: detect too-big endpoint 0 requests (git-fixes). - USB: gadget: zero allocate endpoint 0 buffers (git-fixes). - USB: serial: cp210x: fix CP2105 GPIO registration (git-fixes). - USB: serial: option: add Telit FN990 compositions (git-fixes). - Update patches.suse/tpm-fix-potential-NULL-pointer-access-in-tpm_del_cha.patch (git-fixes bsc#1193660 ltc#195634). - Updated mpi3mr entry in supported.conf (bsc#1194578 jsc#SLE-18120) Moving this driver into the "supported" package. - amd/display: downgrade validation failure log level (git-fixes). - ata: ahci: Add Green Sardine vendor ID as board_ahci_mobile (git-fixes). - atlantic: Fix buff_ring OOB in aq_ring_rx_clean (git-fixes). - ax25: NPD bug when detaching AX25 device (git-fixes). - backlight: qcom-wled: Fix off-by-one maximum with default num_strings (git-fixes). - backlight: qcom-wled: Override default length with qcom,enabled-strings (git-fixes). - backlight: qcom-wled: Pass number of elements to read to read_u32_array (git-fixes). - backlight: qcom-wled: Validate enabled string indices in DT (git-fixes). - batman-adv: mcast: do not send link-local multicast to mcast routers (git-fixes). - blk-cgroup: synchronize blkg creation against policy deactivation (bsc#1194584). - block/scsi-ioctl: Fix kernel-infoleak in scsi_put_cdrom_generic_arg() (git-fixes). - block: fix ioprio_get(IOPRIO_WHO_PGRP) vs setuid(2) (bsc#1194586). - can: gs_usb: fix use of uninitialized variable, detach device on reception of invalid USB data (git-fixes). - can: gs_usb: gs_can_start_xmit(): zero-initialize hf->{flags,reserved} (git-fixes). - can: kvaser_usb: get CAN clock frequency from device (git-fixes). - can: sja1000: fix use after free in ems_pcmcia_add_card() (git-fixes). - can: softing: softing_startstop(): fix set but not used variable warning (git-fixes). - can: softing_cs: softingcs_probe(): fix memleak on registration failure (git-fixes). - can: usb_8dev: remove unused member echo_skb from struct usb_8dev_priv (git-fixes). - can: xilinx_can: xcan_probe(): check for error irq (git-fixes). - char/mwave: Adjust io port register size (git-fixes). - clk: Do not parent clks until the parent is fully registered (git-fixes). - clk: Gemini: fix struct name in kernel-doc (git-fixes). - clk: bcm-2835: Pick the closest clock rate (git-fixes). - clk: bcm-2835: Remove rounding up the dividers (git-fixes). - clk: imx8mn: Fix imx8mn_clko1_sels (git-fixes). - clk: imx: pllv1: fix kernel-doc notation for struct clk_pllv1 (git-fixes). - clk: qcom: gcc-msm8996: Drop (again) gcc_aggre1_pnoc_ahb_clk (git-fixes). - clk: qcom: regmap-mux: fix parent clock lookup (git-fixes). - clk: stm32: Fix ltdc's clock turn off by clk_disable_unused() after system enter shell (git-fixes). - crypto: caam - replace this_cpu_ptr with raw_cpu_ptr (git-fixes). - crypto: mxs-dcp - Use sg_mapping_iter to copy data (git-fixes). - crypto: omap-sham - clear dma flags only after omap_sham_update_dma_stop() (git-fixes). - crypto: qat - do not ignore errors from enable_vf2pf_comms() (git-fixes). - crypto: qat - fix reuse of completion variable (git-fixes). - crypto: qat - handle both source of interrupt in VF ISR (git-fixes). - crypto: qce - fix uaf on qce_ahash_register_one (git-fixes). - crypto: stm32/crc32 - Fix kernel BUG triggered in probe() (git-fixes). - crypto: stm32/cryp - fix double pm exit (git-fixes). - crypto: stm32/cryp - fix lrw chaining mode (git-fixes). - crypto: stm32/cryp - fix xts and race condition in crypto_engine requests (git-fixes). - debugfs: lockdown: Allow reading debugfs files that are not world readable (bsc#1193328 ltc#195566). - device property: Fix documentation for FWNODE_GRAPH_DEVICE_DISABLED (git-fixes). - dm crypt: document encrypted keyring key option (git-fixes). - dm writecache: add "cleaner" and "max_age" to Documentation (git-fixes). - dm writecache: advance the number of arguments when reporting max_age (git-fixes). - dm writecache: fix performance degradation in ssd mode (git-fixes). - dm writecache: flush origin device when writing and cache is full (git-fixes). - dma_fence_array: Fix PENDING_ERROR leak in dma_fence_array_signaled() (git-fixes). - dmaengine: at_xdmac: Do not start transactions at tx_submit level (git-fixes). - dmaengine: at_xdmac: Fix at_xdmac_lld struct definition (git-fixes). - dmaengine: at_xdmac: Fix concurrency over xfers_list (git-fixes). - dmaengine: at_xdmac: Fix lld view setting (git-fixes). - dmaengine: at_xdmac: Print debug message after realeasing the lock (git-fixes). - dmaengine: bestcomm: fix system boot lockups (git-fixes). - dmaengine: idxd: add module parameter to force disable of SVA (bsc#1192931). - dmaengine: idxd: enable SVA feature for IOMMU (bsc#1192931). - dmaengine: pxa/mmp: stop referencing config->slave_id (git-fixes). - dmaengine: st_fdma: fix MODULE_ALIAS (git-fixes). - drm/amd/amdgpu: Increase HWIP_MAX_INSTANCE to 10 (git-fixes). - drm/amd/display: Fix for the no Audio bug with Tiled Displays (git-fixes). - drm/amd/display: Update bounding box states (v2) (git-fixes). - drm/amd/display: Update number of DCN3 clock states (git-fixes). - drm/amd/display: add connector type check for CRC source set (git-fixes). - drm/amd/display: dcn20_resource_construct reduce scope of FPU enabled (git-fixes). - drm/amd/display: fix incorrect CM/TF programming sequence in dwb (git-fixes). - drm/amd/display: fix missing writeback disablement if plane is removed (git-fixes). - drm/amdgpu: Fix a NULL pointer dereference in amdgpu_connector_lcd_native_mode() (git-fixes). - drm/amdgpu: Fix a printing message (git-fixes). - drm/amdgpu: Fix amdgpu_ras_eeprom_init() (git-fixes). - drm/amdgpu: correct register access for RLC_JUMP_TABLE_RESTORE (git-fixes). - drm/amdgpu: revert "Add autodump debugfs node for gpu reset v8" (git-fixes). - drm/amdkfd: Account for SH/SE count when setting up cu masks (git-fixes). - drm/amdkfd: Check for null pointer after calling kmemdup (git-fixes). - drm/ast: potential dereference of null pointer (git-fixes). - drm/atomic: Check new_crtc_state->active to determine if CRTC needs disable in self refresh mode (git-fixes). - drm/bridge: analogix_dp: Make PSR-exit block less (git-fixes). - drm/bridge: display-connector: fix an uninitialized pointer in probe() (git-fixes). - drm/bridge: nwl-dsi: Avoid potential multiplication overflow on 32-bit (git-fixes). - drm/bridge: ti-sn65dsi86: Set max register for regmap (git-fixes). - drm/display: fix possible null-pointer dereference in dcn10_set_clock() (git-fixes). - drm/exynos: Always initialize mapping in exynos_drm_register_dma() (git-fixes). - drm/i915/fb: Fix rounding error in subsampled plane size calculation (git-fixes). - drm/i915: Avoid bitwise vs logical OR warning in snb_wm_latency_quirk() (git-fixes). - drm/mediatek: Check plane visibility in atomic_update (git-fixes). - drm/msm/dpu: fix safe status debugfs file (git-fixes). - drm/msm/dsi: Fix DSI and DSI PHY regulator config from SDM660 (git-fixes). - drm/msm/dsi: set default num_data_lanes (git-fixes). - drm/msm/mdp5: fix cursor-related warnings (git-fixes). - drm/msm: mdp4: drop vblank get/put from prepare/complete_commit (git-fixes). - drm/msm: prevent NULL dereference in msm_gpu_crashstate_capture() (git-fixes). - drm/panel: innolux-p079zca: Delete panel on attach() failure (git-fixes). - drm/panel: kingdisplay-kd097d04: Delete panel on attach() failure (git-fixes). - drm/radeon/radeon_kms: Fix a NULL pointer dereference in radeon_driver_open_kms() (git-fixes). - drm/rockchip: dsi: Disable PLL clock on bind error (git-fixes). - drm/rockchip: dsi: Fix unbalanced clock on probe error (git-fixes). - drm/rockchip: dsi: Hold pm-runtime across bind/unbind (git-fixes). - drm/rockchip: dsi: Reconfigure hardware on resume() (git-fixes). - drm/sun4i: dw-hdmi: Fix missing put_device() call in sun8i_hdmi_phy_get (git-fixes). - drm/sun4i: fix unmet dependency on RESET_CONTROLLER for PHY_SUN6I_MIPI_DPHY (git-fixes). - drm/syncobj: Deal with signalled fences in drm_syncobj_find_fence (git-fixes). - drm/tegra: vic: Fix DMA API misuse (git-fixes). - drm/vboxvideo: fix a NULL vs IS_ERR() check (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered up during bind (git-fixes). - drm/vc4: hdmi: Set HD_CTL_WHOLSMP and HD_CTL_CHALIGN_SET (git-fixes). - drm/vc4: hdmi: Set a default HSM rate (git-fixes). - drm: fix null-ptr-deref in drm_dev_init_release() (git-fixes). - drm: xlnx: zynqmp: release reset to DP controller before accessing DP registers (git-fixes). - drm: xlnx: zynqmp_dpsub: Call pm_runtime_get_sync before setting pixel clock (git-fixes). - eeprom: idt_89hpesx: Put fwnode in matching case during ->probe() (git-fixes). - eeprom: idt_89hpesx: Restore printing the unsupported fwnode name (git-fixes). - ext4: Avoid trim error on fs with small groups (bsc#1191271). - ext4: fix lazy initialization next schedule time computation in more granular unit (bsc#1194580). - fget: clarify and improve __fget_files() implementation (bsc#1193727). - firmware: Update Kconfig help text for Google firmware (git-fixes). - firmware: arm_scmi: pm: Propagate return value to caller (git-fixes). - firmware: arm_scpi: Fix string overflow in SCPI genpd driver (git-fixes). - firmware: qcom_scm: Fix error retval in __qcom_scm_is_call_available() (git-fixes). - firmware: qemu_fw_cfg: fix NULL-pointer deref on duplicate entries (git-fixes). - firmware: qemu_fw_cfg: fix kobject leak in probe error path (git-fixes). - firmware: qemu_fw_cfg: fix sysfs information leak (git-fixes). - firmware: raspberrypi: Fix a leak in 'rpi_firmware_get()' (git-fixes). - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (git-fixes). - firmware: tegra: Fix error application of sizeof() to pointer (git-fixes). - firmware: tegra: Reduce stack usage (git-fixes). - firmware_loader: fix pre-allocated buf built-in firmware use (git-fixes). - floppy: Fix hang in watchdog when disk is ejected (git-fixes). - flow_offload: return EOPNOTSUPP for the unsupported mpls action type (bsc#1154353). - fuse: Pass correct lend value to filemap_write_and_wait_range() (bsc#1194953). - gpiolib: acpi: Make set-debounce-timeout failures non fatal (git-fixes). - gpu: host1x: Add back arm_iommu_detach_device() (git-fixes). - hwmon: (lm90) Add basic support for TI TMP461 (git-fixes). - hwmon: (lm90) Add max6654 support to lm90 driver (git-fixes). - hwmon: (lm90) Do not report 'busy' status bit as alarm (git-fixes). - hwmon: (lm90) Drop critical attribute support for MAX6654 (git-fixes). - hwmon: (lm90) Fix usage of CONFIG2 register in detect function (git-fixes). - hwmon: (lm90) Introduce flag indicating extended temperature support (git-fixes). - i2c: rk3x: Handle a spurious start completion interrupt flag (git-fixes). - i2c: validate user data in compat ioctl (git-fixes). - i3c: fix incorrect address slot lookup on 64-bit (git-fixes). - i3c: master: dw: check return of dw_i3c_master_get_free_pos() (git-fixes). - i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc (git-fixes). - i40e: Fix for displaying message regarding NVM version (git-fixes). - i40e: Fix incorrect netdev's real number of RX/TX queues (git-fixes). - i40e: Fix to not show opcode msg on unsuccessful VF MAC change (git-fixes). - i40e: fix use-after-free in i40e_sync_filters_subtask() (git-fixes). - iavf: Fix limit of total number of queues to active queues of VF (git-fixes). - iavf: restore MSI state on reset (git-fixes). - ieee802154: atusb: fix uninit value in atusb_set_extended_addr (git-fixes). - ieee802154: fix error return code in ieee802154_llsec_getparams() (git-fixes). - ieee802154: fix error return code in ieee802154_add_iface() (git-fixes). - ieee802154: hwsim: Fix memory leak in hwsim_add_one (git-fixes). - ieee802154: hwsim: Fix possible memory leak in hwsim_subscribe_all_others (git-fixes). - ieee802154: hwsim: avoid possible crash in hwsim_del_edge_nl() (git-fixes). - ieee802154: hwsim: fix GPF in hwsim_set_edge_lqi (git-fixes). - igb: Fix removal of unicast MAC filters of VFs (git-fixes). - igbvf: fix double free in `igbvf_probe` (git-fixes). - igc: Fix typo in i225 LTR functions (jsc#SLE-13533). - iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove (git-fixes). - iio: ad7768-1: Call iio_trigger_notify_done() on error (git-fixes). - iio: adc: axp20x_adc: fix charging current reporting on AXP22x (git-fixes). - iio: at91-sama5d2: Fix incorrect sign extension (git-fixes). - iio: dln2-adc: Fix lockdep complaint (git-fixes). - iio: dln2: Check return value of devm_iio_trigger_register() (git-fixes). - iio: itg3200: Call iio_trigger_notify_done() on error (git-fixes). - iio: kxsd9: Do not return error code in trigger handler (git-fixes). - iio: ltr501: Do not return error code in trigger handler (git-fixes). - iio: mma8452: Fix trigger reference couting (git-fixes). - iio: stk3310: Do not return error code in interrupt handler (git-fixes). - iio: trigger: Fix reference counting (git-fixes). - iio: trigger: stm32-timer: fix MODULE_ALIAS (git-fixes). - ionic: Initialize the 'lif->dbid_inuse' bitmap (bsc#1167773). - isofs: Fix out of bound access for corrupted isofs image (bsc#1194591). - iwlwifi: fw: correctly limit to monitor dump (git-fixes). - iwlwifi: mvm: Fix scan channel flags settings (git-fixes). - iwlwifi: mvm: Use div_s64 instead of do_div in iwl_mvm_ftm_rtt_smoothing() (git-fixes). - iwlwifi: mvm: avoid static queue number aliasing (git-fixes). - iwlwifi: mvm: disable RX-diversity in powersave (git-fixes). - iwlwifi: mvm: fix 32-bit build in FTM (git-fixes). - iwlwifi: mvm: fix access to BSS elements (git-fixes). - iwlwifi: mvm: test roc running status bits before removing the sta (git-fixes). - iwlwifi: pcie: free RBs during configure (git-fixes). - ixgbe: set X550 MDIO speed before talking to PHY (git-fixes). - kmod: make request_module() return an error when autoloading is disabled (git-fixes). - kobject: Restore old behaviour of kobject_del(NULL) (git-fixes). - kobject_uevent: remove warning in init_uevent_argv() (git-fixes). - kprobes: Limit max data_size of the kretprobe instances (bsc#1193669). - libata: add horkage for ASMedia 1092 (git-fixes). - libata: if T_LENGTH is zero, dma direction should be DMA_NONE (git-fixes). - livepatch: Avoid CPU hogging with cond_resched (bsc#1071995). - lockdown: Allow unprivileged users to see lockdown status (git-fixes). - mISDN: change function names to avoid conflicts (git-fixes). - mac80211: Fix monitor MTU limit so that A-MSDUs get through (git-fixes). - mac80211: agg-tx: do not schedule_and_wake_txq() under sta->lock (git-fixes). - mac80211: do not access the IV when it was stripped (git-fixes). - mac80211: fix lookup when adding AddBA extension element (git-fixes). - mac80211: fix regression in SSN handling of addba tx (git-fixes). - mac80211: initialize variable have_higher_than_11mbit (git-fixes). - mac80211: mark TX-during-stop for TX in in_reconfig (git-fixes). - mac80211: send ADDBA requests using the tid/queue of the aggregation session (git-fixes). - mac80211: track only QoS data frames for admission control (git-fixes). - mac80211: validate extended element ID is present (git-fixes). - mailbox: hi3660: convert struct comments to kernel-doc notation (git-fixes). - media: Revert "media: uvcvideo: Set unique vdev name based in type" (bsc#1193255). - media: aspeed: Update signal status immediately to ensure sane hw state (git-fixes). - media: aspeed: fix mode-detect always time out at 2nd run (git-fixes). - media: cpia2: fix control-message timeouts (git-fixes). - media: dib0700: fix undefined behavior in tuner shutdown (git-fixes). - media: dib8000: Fix a memleak in dib8000_init() (git-fixes). - media: dmxdev: fix UAF when dvb_register_device() fails (git-fixes). - media: dw2102: Fix use after free (git-fixes). - media: em28xx: fix control-message timeouts (git-fixes). - media: em28xx: fix memory leak in em28xx_init_dev (git-fixes). - media: flexcop-usb: fix control-message timeouts (git-fixes). - media: hantro: Fix probe func error path (git-fixes). - media: i2c: imx274: fix trivial typo expsoure/exposure (git-fixes). - media: i2c: imx274: fix trivial typo obainted/obtained (git-fixes). - media: imx-pxp: Initialize the spinlock prior to using it (git-fixes). - media: mceusb: fix control-message timeouts (git-fixes). - media: msi001: fix possible null-ptr-deref in msi001_probe() (git-fixes). - media: mtk-vcodec: call v4l2_m2m_ctx_release first when file is released (git-fixes). - media: pvrusb2: fix control-message timeouts (git-fixes). - media: rcar-csi2: Correct the selection of hsfreqrange (git-fixes). - media: rcar-csi2: Optimize the selection PHTW register (git-fixes). - media: redrat3: fix control-message timeouts (git-fixes). - media: s2255: fix control-message timeouts (git-fixes). - media: saa7146: mxb: Fix a NULL pointer dereference in mxb_attach() (git-fixes). - media: si2157: Fix "warm" tuner state detection (git-fixes). - media: si470x-i2c: fix possible memory leak in si470x_i2c_probe() (git-fixes). - media: stk1160: fix control-message timeouts (git-fixes). - media: streamzap: remove unnecessary ir_raw_event_reset and handle (git-fixes). - media: uvcvideo: fix division by zero at stream start (git-fixes). - media: venus: core: Fix a resource leak in the error handling path of 'venus_probe()' (git-fixes). - memblock: ensure there is no overflow in memblock_overlaps_region() (git-fixes). - memory: emif: Remove bogus debugfs error handling (git-fixes). - mfd: intel-lpss: Fix too early PM enablement in the ACPI ->probe() (git-fixes). - misc: fastrpc: Add missing lock before accessing find_vma() (git-fixes). - misc: fastrpc: fix improper packet size calculation (git-fixes). - misc: lattice-ecp3-config: Fix task hung when firmware load failed (git-fixes). - mmc: meson-mx-sdio: add IRQ check (git-fixes). - mmc: sdhci-esdhc-imx: clear the buffer_read_ready to reset standard tuning circuit (git-fixes). - mmc: sdhci-esdhc-imx: disable CMDQ support (git-fixes). - mmc: sdhci-pci: Add PCI ID for Intel ADL (git-fixes). - mmc: sdhci-tegra: Fix switch to HS400ES mode (git-fixes). - move to "mainline soon" section: - patches.suse/0001-mmc-moxart_remove-Fix-UAF.patch - moxart: fix potential use-after-free on remove path (bsc#1194516). - mt76: mt7915: fix NULL pointer dereference in mt7915_get_phy_mode (git-fixes). - mt76: mt7915: fix an off-by-one bound check (git-fixes). - mtd: rawnand: fsmc: Fix timing computation (git-fixes). - mtd: rawnand: fsmc: Take instruction delay into account (git-fixes). - mtd: rawnand: mpc5121: Remove unused variable in ads5121_select_chip() (git-fixes). - mtd: spi-nor: hisi-sfc: Remove excessive clk_disable_unprepare() (git-fixes). - mwifiex: Fix possible ABBA deadlock (git-fixes). - mwifiex: Try waking the firmware until we get an interrupt (git-fixes). - net/mlx5: DR, Fix NULL vs IS_ERR checking in dr_domain_init_resources (jsc#SLE-8464). - net/mlx5: Set command entry semaphore up once got index free (jsc#SLE-15172). - net/mlx5e: Fix wrong features assignment in case of error (git-fixes). - net/mlx5e: Wrap the tx reporter dump callback to extract the sq (jsc#SLE-15172). - net/sched: fq_pie: prevent dismantle issue (jsc#SLE-15172). - net/sched: sch_ets: do not remove idle classes from the round-robin list (bsc#1176774). - net: create netdev->dev_addr assignment helpers (git-fixes). - net: ena: Fix error handling when calculating max IO queues number (bsc#1154492). - net: ena: Fix undefined state when tx request id is out of bounds (bsc#1154492). - net: ena: Fix wrong rx request id by resetting device (git-fixes). - net: hns3: fix use-after-free bug in hclgevf_send_mbx_msg (jsc#SLE-14777). - net: usb: lan78xx: add Allied Telesis AT29M2-AF (git-fixes). - net: usb: pegasus: Do not drop long Ethernet frames (git-fixes). - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (bsc#1176447). - nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done (git-fixes). - nfc: fix segfault in nfc_genl_dump_devices_done (git-fixes). - nfsd: Fix nsfd startup race (again) (git-fixes). - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (bsc#1176447). - nvme-tcp: block BH in sk state_change sk callback (git-fixes). - nvme-tcp: can't set sk_user_data without write_lock (git-fixes). - nvme-tcp: check sgl supported by target (git-fixes). - nvme-tcp: do not update queue count when failing to set io queues (git-fixes). - nvme-tcp: fix a NULL deref when receiving a 0-length r2t PDU (git-fixes). - nvme-tcp: fix crash triggered with a dataless request submission (git-fixes). - nvme-tcp: fix error codes in nvme_tcp_setup_ctrl() (git-fixes). - nvme-tcp: fix io_work priority inversion (git-fixes). - nvme-tcp: fix possible data corruption with bio merges (git-fixes). - nvme-tcp: fix possible req->offset corruption (git-fixes). - nvme-tcp: fix wrong setting of request iov_iter (git-fixes). - nvme-tcp: get rid of unused helper function (git-fixes). - nvme-tcp: pair send_mutex init with destroy (git-fixes). - nvme-tcp: pass multipage bvec to request iov_iter (git-fixes). - nvme-tcp: remove incorrect Kconfig dep in BLK_DEV_NVME (git-fixes). - pcmcia: fix setting of kthread task states (git-fixes). - pcmcia: rsrc_nonstatic: Fix a NULL pointer dereference in __nonstatic_find_io_region() (git-fixes). - pcmcia: rsrc_nonstatic: Fix a NULL pointer dereference in nonstatic_find_mem_region() (git-fixes). - pcnet32: Use pci_resource_len to validate PCI resource (git-fixes). - pinctrl: mediatek: fix global-out-of-bounds issue (git-fixes). - pinctrl: qcom: spmi-gpio: correct parent irqspec translation (git-fixes). - pinctrl: stm32: consider the GPIO offset to expose all the GPIO lines (git-fixes). - pinctrl: stm32: use valid pin identifier in stm32_pinctrl_resume() (git-fixes). - pipe: increase minimum default pipe size to 2 pages (bsc#1194587). - platform/x86: apple-gmux: use resource_size() with res (git-fixes). - platform/x86: thinkpad_acpi: Fix WWAN device disabled issue after S3 deep (git-fixes). - power: reset: ltc2952: Fix use of floating point literals (git-fixes). - power: supply: core: Break capacity loop (git-fixes). - power: supply: max17042_battery: Clear status bits in interrupt handler (git-fixes). - powerpc/64s: fix program check interrupt emergency stack path (bsc#1156395). - powerpc/fadump: Fix inaccurate CPU state info in vmcore generated with panic (bsc#1193901 ltc#194976). - powerpc/perf: Fix PMU callbacks to clear pending PMI before resetting an overflown PMC (bsc#1156395). - powerpc/perf: Fix data source encodings for L2.1 and L3.1 accesses (bsc#1065729). - powerpc/prom_init: Fix improper check of prom_getprop() (bsc#1065729). - powerpc/pseries/cpuhp: cache node corrections (bsc#1065729). - powerpc/pseries/cpuhp: delete add/remove_by_count code (bsc#1065729). - powerpc/pseries/mobility: ignore ibm, platform-facilities updates (bsc#1065729). - powerpc/traps: do not enable irqs in _exception (bsc#1065729). - powerpc/xive: Add missing null check after calling kmalloc (bsc#1177437 ltc#188522 jsc#SLE-13294 git-fixes). - powerpc: add interrupt_cond_local_irq_enable helper (bsc#1065729). - powerpc: handle kdump appropriately with crash_kexec_post_notifiers option (bsc#1193901 ltc#194976). - pwm: mxs: Do not modify HW state in .probe() after the PWM chip was registered (git-fixes). - pwm: tiecap: Drop .free() callback (git-fixes). - qlcnic: potential dereference null pointer of rx_queue->page_ring (git-fixes). - quota: check block number when reading the block in quota file (bsc#1194589). - quota: correct error number in free_dqentry() (bsc#1194590). - random: fix data race on crng init time (git-fixes). - random: fix data race on crng_node_pool (git-fixes). - regmap: Call regmap_debugfs_exit() prior to _init() (git-fixes). - rndis_host: support Hytera digital radios (git-fixes). - rpmsg: core: Clean up resources on announce_create failure (git-fixes). - rtl8xxxu: Fix the handling of TX A-MPDU aggregation (git-fixes). - rtlwifi: rtl8192cu: Fix WARNING when calling local_irq_restore() with interrupts enabled (git-fixes). - rtw88: use read_poll_timeout instead of fixed sleep (git-fixes). - rtw88: wow: build wow function only if CONFIG_PM is on (git-fixes). - rtw88: wow: fix size access error of probe request (git-fixes). - sata: nv: fix debug format string mismatch (git-fixes). - scsi: lpfc: Add additional debugfs support for CMF (bsc#1194266). - scsi: lpfc: Adjust CMF total bytes and rxmonitor (bsc#1194266). - scsi: lpfc: Cap CMF read bytes to MBPI (bsc#1194266). - scsi: lpfc: Change return code on I/Os received during link bounce (bsc#1194266). - scsi: lpfc: Fix NPIV port deletion crash (bsc#1194266). - scsi: lpfc: Fix leaked lpfc_dmabuf mbox allocations with NPIV (bsc#1194266). - scsi: lpfc: Fix lpfc_force_rscn ndlp kref imbalance (bsc#1194266). - scsi: lpfc: Trigger SLI4 firmware dump before doing driver cleanup (bsc#1194266). - scsi: lpfc: Update lpfc version to 14.0.0.4 (bsc#1194266). - scsi: qla2xxx: Fix mailbox direction flags in qla2xxx_get_adapter_id() (git-fixes). - scsi: qla2xxx: Format log strings only if needed (git-fixes). - scsi: qla2xxx: edif: Fix EDIF bsg (git-fixes). - scsi: qla2xxx: edif: Fix app start delay (git-fixes). - scsi: qla2xxx: edif: Fix app start fail (git-fixes). - scsi: qla2xxx: edif: Fix off by one bug in qla_edif_app_getfcinfo() (git-fixes). - scsi: qla2xxx: edif: Flush stale events and msgs on session down (git-fixes). - scsi: qla2xxx: edif: Increase ELS payload (git-fixes). - select: Fix indefinitely sleeping task in poll_schedule_timeout() (bsc#1194027). - selftests: KVM: Explicitly use movq to read xmm registers (git-fixes). - selinux: fix potential memleak in selinux_add_opt() (git-fixes). - seq_buf: Fix overflow in seq_buf_putmem_hex() (git-fixes). - seq_buf: Make trace_seq_putmem_hex() support data longer than 8 (git-fixes). - serial: pl011: Add ACPI SBSA UART match id (git-fixes). - serial: tty: uartlite: fix console setup (git-fixes). - sfc: Check null pointer of rx_queue->page_ring (git-fixes). - sfc: The RX page_ring is optional (git-fixes). - sfc: falcon: Check null pointer of rx_queue->page_ring (git-fixes). - sfc_ef100: potential dereference of null pointer (jsc#SLE-16683). - shmem: shmem_writepage() split unlikely i915 THP (git-fixes). - slimbus: qcom: fix potential NULL dereference in qcom_slim_prg_slew() (git-fixes). - soc/tegra: fuse: Fix bitwise vs. logical OR warning (git-fixes). - soc: fsl: dpaa2-console: free buffer before returning from dpaa2_console_read (git-fixes). - soc: fsl: dpio: rename the enqueue descriptor variable (git-fixes). - soc: fsl: dpio: replace smp_processor_id with raw_smp_processor_id (git-fixes). - soc: fsl: dpio: use an explicit NULL instead of 0 (git-fixes). - soc: fsl: dpio: use the combined functions to protect critical zone (git-fixes). - spi: change clk_disable_unprepare to clk_unprepare (git-fixes). - spi: spi-meson-spifc: Add missing pm_runtime_disable() in meson_spifc_probe (git-fixes). - spi: spi-rspi: Drop redeclaring ret variable in qspi_transfer_in() (git-fixes). - staging: emxx_udc: Fix passing of NULL to dma_alloc_coherent() (git-fixes). - staging: fbtft: Do not spam logs when probe is deferred (git-fixes). - staging: fbtft: Rectify GPIO handling (git-fixes). - staging: fieldbus: anybuss: jump to correct label in an error path (git-fixes). - staging: ks7010: select CRYPTO_HASH/CRYPTO_MICHAEL_MIC (git-fixes). - staging: rtl8192e: return error code from rtllib_softmac_init() (git-fixes). - staging: rtl8192e: rtllib_module: fix error handle case in alloc_rtllib() (git-fixes). - staging: wlan-ng: Avoid bitwise vs logical OR warning in hfa384x_usb_throttlefn() (git-fixes). - string.h: fix incompatibility between FORTIFY_SOURCE and KASAN (git-fixes). - thermal/drivers/imx8mm: Enable ADC when enabling monitor (git-fixes). - thermal/drivers/int340x: Do not set a wrong tcc offset on resume (git-fixes). - thermal: core: Reset previous low and high trip during thermal zone init (git-fixes). - tpm: add request_locality before write TPM_INT_ENABLE (git-fixes). - tpm: fix potential NULL pointer access in tpm_del_char_device (git-fixes). - tracing/kprobes: 'nmissed' not showed correctly for kretprobe (git-fixes). - tracing/uprobes: Check the return value of kstrdup() for tu->filename (git-fixes). - tracing: Add test for user space strings when filtering on string pointers (git-fixes). - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (git-fixes). - tty: max310x: fix flexible_array.cocci warnings (git-fixes). - tty: serial: atmel: Call dma_async_issue_pending() (git-fixes). - tty: serial: atmel: Check return code of dmaengine_submit() (git-fixes). - tty: serial: earlycon dependency (git-fixes). - tty: serial: qcom_geni_serial: Drop __init from qcom_geni_console_setup (git-fixes). - tty: serial: uartlite: allow 64 bit address (git-fixes). - tty: synclink_gt: rename a conflicting function name (git-fixes). - udf: Fix crash after seekdir (bsc#1194592). - uio: uio_dmem_genirq: Catch the Exception (git-fixes). - usb: core: config: fix validation of wMaxPacketValue entries (git-fixes). - usb: core: config: using bit mask instead of individual bits (git-fixes). - usb: dwc2: check return value after calling platform_get_resource() (git-fixes). - usb: dwc3: gadget: Continue to process pending requests (git-fixes). - usb: dwc3: gadget: Ignore EP queue requests during bus reset (git-fixes). - usb: dwc3: gadget: Reclaim extra TRBs after request completion (git-fixes). - usb: dwc3: pci: Enable dis_uX_susphy_quirk for Intel Merrifield (git-fixes). - usb: dwc3: ulpi: Fix USB2.0 HS/FS/LS PHY suspend regression (git-fixes). - usb: dwc3: ulpi: Replace CPU-based busyloop with Protocol-based one (git-fixes). - usb: dwc3: ulpi: fix checkpatch warning (git-fixes). - usb: ftdi-elan: fix memory leak on device disconnect (git-fixes). - usb: gadget: composite: Allow bMaxPower=0 if self-powered (git-fixes). - usb: gadget: f_fs: Clear ffs_eventfd in ffs_data_clear (git-fixes). - usb: gadget: u_ether: fix race in setting MAC address in setup phase (git-fixes). - usb: mtu3: add memory barrier before set GPD's HWO (git-fixes). - usb: mtu3: fix interval value for intr and isoc (git-fixes). - usb: mtu3: fix list_head check warning (git-fixes). - usb: mtu3: set interval of FS intr and isoc endpoint (git-fixes). - usb: typec: tcpm: handle SRC_STARTUP state if cc changes (git-fixes). - usb: xhci: Extend support for runtime power management for AMD's Yellow carp (git-fixes). - usermodehelper: reset umask to default before executing user process (git-fixes). - vfs: check fd has read access in kernel_read_file_from_fd() (bsc#1194888). - video: backlight: Drop maximum brightness override for brightness zero (git-fixes). - watchdog: Fix OMAP watchdog early handling (git-fixes). - watchdog: f71808e_wdt: fix inaccurate report in WDIOC_GETTIMEOUT (git-fixes). - wcn36xx: Fix missing frame timestamp for beacon/probe-resp (git-fixes). - wcn36xx: Indicate beacon not connection loss on MISSED_BEACON_IND (git-fixes). - wcn36xx: Release DMA channel descriptor allocations (git-fixes). - wcn36xx: handle connection loss indication (git-fixes). - wireguard: allowedips: add missing __rcu annotation to satisfy sparse (git-fixes). - wireguard: device: reset peer src endpoint when netns exits (git-fixes). - wireguard: ratelimiter: use kvcalloc() instead of kvzalloc() (git-fixes). - wireguard: receive: drop handshakes if queue lock is contended (git-fixes). - wireguard: receive: use ring buffer for incoming handshakes (git-fixes). - wireguard: selftests: actually test for routing loops (git-fixes). - wireguard: selftests: increase default dmesg log size (git-fixes). - wireless: iwlwifi: Fix a double free in iwl_txq_dyn_alloc_dma (git-fixes). - x86/platform/uv: Add more to secondary CPU kdump info (bsc#1194493). - xhci: Fresco FL1100 controller should not have BROKEN_MSI quirk set (git-fixes). - xhci: Remove CONFIG_USB_DEFAULT_PERSIST to prevent xHCI from runtime suspending (git-fixes). - xhci: avoid race between disable slot command and host runtime suspend (git-fixes). - xhci: fix unsafe memory usage in xhci tracing (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.43.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.43.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-5.3.18-150300.59.43.1.nosrc.rpm True kernel-default-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.43.1.150300.18.27.1.src.rpm True kernel-default-base-5.3.18-150300.59.43.1.150300.18.27.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.43.1.150300.18.27.1.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.43.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.43.1.noarch.rpm True kernel-docs-5.3.18-150300.59.43.1.noarch.rpm True kernel-docs-5.3.18-150300.59.43.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.43.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.43.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.43.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.43.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.43.1.src.rpm True kernel-obs-build-5.3.18-150300.59.43.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.43.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.43.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.43.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.43.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.43.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.43.1.x86_64.rpm True kernel-source-5.3.18-150300.59.43.1.noarch.rpm True kernel-source-5.3.18-150300.59.43.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.43.1.noarch.rpm True kernel-syms-5.3.18-150300.59.43.1.src.rpm True kernel-syms-5.3.18-150300.59.43.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.43.1.150300.18.27.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.43.1.150300.18.27.1.s390x.rpm True kernel-default-devel-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.43.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.43.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.43.1.s390x.rpm True kernel-syms-5.3.18-150300.59.43.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.43.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.43.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.43.1.150300.18.27.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.43.1.150300.18.27.1.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.43.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.43.1.src.rpm True dtb-al-5.3.18-150300.59.43.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.43.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.43.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.43.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.43.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.43.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.43.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.43.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.43.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.43.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.43.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.43.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.43.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.43.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.43.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.43.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.43.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.43.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.43.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.43.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.43.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.43.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.43.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.43.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.43.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.43.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.43.1.150300.18.27.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.43.1.150300.18.27.1.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.43.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.43.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.43.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.43.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.43.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.43.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.43.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True openSUSE-SLE-15.3-2022-169 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0185: Incorrect param length parsing in legacy_parse_param which could have led to a local privilege escalation (bsc#1194517). - CVE-2022-0322: Fixed a denial of service in SCTP sctp_addto_chunk (bsc#1194985). - CVE-2021-4197: Fixed a cgroup issue where lower privileged processes could write to fds of lower privileged ones that could lead to privilege escalation (bsc#1194302). - CVE-2021-46283: nf_tables_newset in net/netfilter/nf_tables_api.c in the Linux kernel allowed local users to cause a denial of service (NULL pointer dereference and general protection fault) because of the missing initialization for nft_set_elem_expr_alloc. A local user can set a netfilter table expression in their own namespace (bnc#1194518). - CVE-2021-4135: Fixed an information leak in the nsim_bpf_map_alloc function (bsc#1193927). - CVE-2021-4202: Fixed a race condition during NFC device remove which could lead to a use-after-free memory corruption (bsc#1194529) - CVE-2021-4083: A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allowed a local user to crash the system or escalate their privileges on the system. (bnc#1193727). - CVE-2021-4149: Fixed a locking condition in btrfs which could lead to system deadlocks (bsc#1194001). - CVE-2021-45485: In the IPv6 implementation net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses (bnc#1194094). - CVE-2021-45486: In the IPv4 implementation net/ipv4/route.c has an information leak because the hash table is very small (bnc#1194087). The following non-security bugs were fixed: - ACPI: APD: Check for NULL pointer after calling devm_ioremap() (git-fixes). - ACPI: Add stubs for wakeup handler functions (git-fixes). - ACPI: scan: Create platform device for BCM4752 and LNV4752 ACPI nodes (git-fixes). - ALSA: PCM: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: ctl: Fix copy of updated id with element read/write (git-fixes). - ALSA: drivers: opl3: Fix incorrect use of vp->state (git-fixes). - ALSA: hda/hdmi: Disable silent stream on GLK (git-fixes). - ALSA: hda/realtek - Add headset Mic support for Lenovo ALC897 platform (git-fixes). - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Master after reboot from Windows (git-fixes). - ALSA: hda/realtek: Add a quirk for HP OMEN 15 mute LED (git-fixes). - ALSA: hda/realtek: Add quirk for ASRock NUC Box 1100 (git-fixes). - ALSA: hda/realtek: Amp init fixup for HP ZBook 15 G6 (git-fixes). - ALSA: hda/realtek: Fix quirk for Clevo NJ51CU (git-fixes). - ALSA: hda/realtek: Fix quirk for TongFang PHxTxX1 (git-fixes). - ALSA: hda/realtek: Fixes HP Spectre x360 15-eb1xxx speakers (git-fixes). - ALSA: hda/realtek: Headset fixup for Clevo NH77HJQ (git-fixes). - ALSA: hda: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: hda: Make proper use of timecounter (git-fixes). - ALSA: jack: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: jack: Check the return value of kstrdup() (git-fixes). - ALSA: oss: fix compile error when OSS_DEBUG is enabled (git-fixes). - ALSA: pcm: oss: Fix negative period/buffer sizes (git-fixes). - ALSA: pcm: oss: Handle missing errors in snd_pcm_oss_change_params*() (git-fixes). - ALSA: pcm: oss: Limit the period size to 16MB (git-fixes). - ALSA: usb-audio: Drop superfluous '0' in Presonus Studio 1810c's ID (git-fixes). - ALSA: usb-audio: Line6 HX-Stomp XL USB_ID for 48k-fixed quirk (git-fixes). - ASoC: codecs: wcd934x: handle channel mappping list correctly (git-fixes). - ASoC: codecs: wcd934x: return correct value from mixer put (git-fixes). - ASoC: codecs: wcd934x: return error code correctly from hw_params (git-fixes). - ASoC: codecs: wsa881x: fix return values from kcontrol put (git-fixes). - ASoC: cs42l42: Correct configuring of switch inversion from ts-inv (git-fixes). - ASoC: cs42l42: Disable regulators if probe fails (git-fixes). - ASoC: cs42l42: Use device_property API instead of of_property (git-fixes). - ASoC: fsl_asrc: refine the check of available clock divider (git-fixes). - ASoC: fsl_mqs: fix MODULE_ALIAS (git-fixes). - ASoC: mediatek: Check for error clk pointer (git-fixes). - ASoC: meson: aiu: Move AIU_I2S_MISC hold setting to aiu-fifo-i2s (git-fixes). - ASoC: meson: aiu: fifo: Add missing dma_coerce_mask_and_coherent() (git-fixes). - ASoC: qdsp6: q6routing: Fix return value from msm_routing_put_audio_mixer (git-fixes). - ASoC: rt5663: Handle device_property_read_u32_array error codes (git-fixes). - ASoC: samsung: idma: Check of ioremap return value (git-fixes). - ASoC: soc-core: fix null-ptr-deref in snd_soc_del_component_unlocked() (git-fixes). - ASoC: sunxi: fix a sound binding broken reference (git-fixes). - ASoC: tegra: Fix kcontrol put callback in ADMAIF (git-fixes). - ASoC: tegra: Fix kcontrol put callback in AHUB (git-fixes). - ASoC: tegra: Fix kcontrol put callback in DMIC (git-fixes). - ASoC: tegra: Fix kcontrol put callback in DSPK (git-fixes). - ASoC: tegra: Fix kcontrol put callback in I2S (git-fixes). - ASoC: tegra: Fix wrong value type in ADMAIF (git-fixes). - ASoC: tegra: Fix wrong value type in DMIC (git-fixes). - ASoC: tegra: Fix wrong value type in DSPK (git-fixes). - ASoC: tegra: Fix wrong value type in I2S (git-fixes). - ASoC: uniphier: drop selecting non-existing SND_SOC_UNIPHIER_AIO_DMA (git-fixes). - Add cherry-picked IDs for qemu fw_cfg patches - Bluetooth: L2CAP: Fix using wrong mode (git-fixes). - Bluetooth: bfusb: fix division by zero in send path (git-fixes). - Bluetooth: btmtksdio: fix resume failure (git-fixes). - Bluetooth: btusb: fix memory leak in btusb_mtk_submit_wmt_recv_urb() (git-fixes). - Bluetooth: cmtp: fix possible panic when cmtp_init_sockets() fails (git-fixes). - Bluetooth: hci_bcm: Check for error irq (git-fixes). - Bluetooth: hci_qca: Stop IBS timer during BT OFF (git-fixes). - Bluetooth: stop proccessing malicious adv data (git-fixes). - Documentation: ACPI: Fix data node reference documentation (git-fixes). - Documentation: dmaengine: Correctly describe dmatest with channel unset (git-fixes). - Documentation: refer to config RANDOMIZE_BASE for kernel address-space randomization (git-fixes). - HID: add USB_HID dependancy to hid-chicony (git-fixes). - HID: add USB_HID dependancy to hid-prodikeys (git-fixes). - HID: asus: Add depends on USB_HID to HID_ASUS Kconfig option (git-fixes). - HID: bigbenff: prevent null pointer dereference (git-fixes). - HID: google: add eel USB id (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_frame_init_v1_buttonpad (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_get_str_desc (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_huion_init (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_init (git-fixes). - HID: quirks: Add quirk for the Microsoft Surface 3 type-cover (git-fixes). - Input: appletouch - initialize work before device registration (git-fixes). - Input: atmel_mxt_ts - fix double free in mxt_read_info_block (git-fixes). - Input: elantech - fix stack out of bound access in elantech_change_report_id() (git-fixes). - Input: i8042 - add deferred probe support (bsc#1190256). - Input: i8042 - enable deferred probe quirk for ASUS UM325UA (bsc#1190256). - Input: max8925_onkey - do not mark comment as kernel-doc (git-fixes). - Input: spaceball - fix parsing of movement data packets (git-fixes). - Input: ti_am335x_tsc - fix STEPCONFIG setup for Z2 (git-fixes). - Input: ti_am335x_tsc - set ADCREFM for X configuration (git-fixes). - Move upstreamed patches into sorted section - NFC: st21nfca: Fix memory leak in device probe and remove (git-fixes). - NFSD: Fix zero-length NFSv3 WRITEs (git-fixes). - NFSv42: Do not fail clone() unless the OP_CLONE operation failed (git-fixes). - NFSv42: Fix pagecache invalidation after COPY/CLONE (git-fixes). - PCI/ACPI: Fix acpi_pci_osc_control_set() kernel-doc comment (git-fixes). - PCI/MSI: Clear PCI_MSIX_FLAGS_MASKALL on error (git-fixes). - PCI/MSI: Fix pci_irq_vector()/pci_irq_get_affinity() (git-fixes). - PCI/MSI: Mask MSI-X vectors only on success (git-fixes). - PCI: cadence: Add cdns_plat_pcie_probe() missing return (git-fixes). - PCI: dwc: Do not remap invalid res (git-fixes). - PCI: mvebu: Check for errors from pci_bridge_emul_init() call (git-fixes). - PCI: mvebu: Do not modify PCI IO type bits in conf_write (git-fixes). - PCI: mvebu: Fix support for DEVCAP2, DEVCTL2 and LNKCTL2 registers on emulated bridge (git-fixes). - PCI: mvebu: Fix support for PCI_EXP_DEVCTL on emulated bridge (git-fixes). - PCI: mvebu: Fix support for PCI_EXP_RTSTA on emulated bridge (git-fixes). - PCI: pci-bridge-emul: Properly mark reserved PCIe bits in PCI config space (git-fixes). - PCI: pci-bridge-emul: Set PCI_STATUS_CAP_LIST for PCIe device (git-fixes). - PCI: pciehp: Fix infinite loop in IRQ handler upon power fault (git-fixes). - PCI: xgene: Fix IB window setup (git-fixes). - PM: runtime: Defer suspending suppliers (git-fixes). - PM: sleep: Do not assume that "mem" is always present (git-fixes). - RDMA/hns: Replace kfree() with kvfree() (jsc#SLE-14777). - Rename colliding patches before the next SLE15-SP2 -> SLE15-SP3 merge - Rename colliding patches before the next cve/linux-5.3 -> SLE15-SP3 merge - Revert "PM: sleep: Do not assume that "mem" is always present" (git-fixes). - Revert "USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST quirk set" (git-fixes). - Revert "net/mlx5: Add retry mechanism to the command entry index allocation" (jsc#SLE-15172). - USB: Fix "slab-out-of-bounds Write" bug in usb_hcd_poll_rh_status (git-fixes). - USB: NO_LPM quirk Lenovo Powered USB-C Travel Hub (git-fixes). - USB: NO_LPM quirk Lenovo USB-C to Ethernet Adapher(RTL8153-04) (git-fixes). - USB: cdc-acm: fix break reporting (git-fixes). - USB: cdc-acm: fix racy tty buffer accesses (git-fixes). - USB: chipidea: fix interrupt deadlock (git-fixes). - USB: core: Fix bug in resuming hub's handling of wakeup requests (git-fixes). - USB: gadget: bRequestType is a bitfield, not a enum (git-fixes). - USB: gadget: detect too-big endpoint 0 requests (git-fixes). - USB: gadget: zero allocate endpoint 0 buffers (git-fixes). - USB: serial: cp210x: fix CP2105 GPIO registration (git-fixes). - USB: serial: option: add Telit FN990 compositions (git-fixes). - Update patches.suse/tpm-fix-potential-NULL-pointer-access-in-tpm_del_cha.patch (git-fixes bsc#1193660 ltc#195634). - Updated mpi3mr entry in supported.conf (bsc#1194578 jsc#SLE-18120) Moving this driver into the "supported" package. - amd/display: downgrade validation failure log level (git-fixes). - ata: ahci: Add Green Sardine vendor ID as board_ahci_mobile (git-fixes). - atlantic: Fix buff_ring OOB in aq_ring_rx_clean (git-fixes). - ax25: NPD bug when detaching AX25 device (git-fixes). - backlight: qcom-wled: Fix off-by-one maximum with default num_strings (git-fixes). - backlight: qcom-wled: Override default length with qcom,enabled-strings (git-fixes). - backlight: qcom-wled: Pass number of elements to read to read_u32_array (git-fixes). - backlight: qcom-wled: Validate enabled string indices in DT (git-fixes). - batman-adv: mcast: do not send link-local multicast to mcast routers (git-fixes). - blk-cgroup: synchronize blkg creation against policy deactivation (bsc#1194584). - block/scsi-ioctl: Fix kernel-infoleak in scsi_put_cdrom_generic_arg() (git-fixes). - block: fix ioprio_get(IOPRIO_WHO_PGRP) vs setuid(2) (bsc#1194586). - can: gs_usb: fix use of uninitialized variable, detach device on reception of invalid USB data (git-fixes). - can: gs_usb: gs_can_start_xmit(): zero-initialize hf->{flags,reserved} (git-fixes). - can: kvaser_usb: get CAN clock frequency from device (git-fixes). - can: sja1000: fix use after free in ems_pcmcia_add_card() (git-fixes). - can: softing: softing_startstop(): fix set but not used variable warning (git-fixes). - can: softing_cs: softingcs_probe(): fix memleak on registration failure (git-fixes). - can: usb_8dev: remove unused member echo_skb from struct usb_8dev_priv (git-fixes). - can: xilinx_can: xcan_probe(): check for error irq (git-fixes). - char/mwave: Adjust io port register size (git-fixes). - clk: Do not parent clks until the parent is fully registered (git-fixes). - clk: Gemini: fix struct name in kernel-doc (git-fixes). - clk: bcm-2835: Pick the closest clock rate (git-fixes). - clk: bcm-2835: Remove rounding up the dividers (git-fixes). - clk: imx8mn: Fix imx8mn_clko1_sels (git-fixes). - clk: imx: pllv1: fix kernel-doc notation for struct clk_pllv1 (git-fixes). - clk: qcom: gcc-msm8996: Drop (again) gcc_aggre1_pnoc_ahb_clk (git-fixes). - clk: qcom: regmap-mux: fix parent clock lookup (git-fixes). - clk: stm32: Fix ltdc's clock turn off by clk_disable_unused() after system enter shell (git-fixes). - crypto: caam - replace this_cpu_ptr with raw_cpu_ptr (git-fixes). - crypto: mxs-dcp - Use sg_mapping_iter to copy data (git-fixes). - crypto: omap-sham - clear dma flags only after omap_sham_update_dma_stop() (git-fixes). - crypto: qat - do not ignore errors from enable_vf2pf_comms() (git-fixes). - crypto: qat - fix reuse of completion variable (git-fixes). - crypto: qat - handle both source of interrupt in VF ISR (git-fixes). - crypto: qce - fix uaf on qce_ahash_register_one (git-fixes). - crypto: stm32/crc32 - Fix kernel BUG triggered in probe() (git-fixes). - crypto: stm32/cryp - fix double pm exit (git-fixes). - crypto: stm32/cryp - fix lrw chaining mode (git-fixes). - crypto: stm32/cryp - fix xts and race condition in crypto_engine requests (git-fixes). - debugfs: lockdown: Allow reading debugfs files that are not world readable (bsc#1193328 ltc#195566). - device property: Fix documentation for FWNODE_GRAPH_DEVICE_DISABLED (git-fixes). - dm crypt: document encrypted keyring key option (git-fixes). - dm writecache: add "cleaner" and "max_age" to Documentation (git-fixes). - dm writecache: advance the number of arguments when reporting max_age (git-fixes). - dm writecache: fix performance degradation in ssd mode (git-fixes). - dm writecache: flush origin device when writing and cache is full (git-fixes). - dma_fence_array: Fix PENDING_ERROR leak in dma_fence_array_signaled() (git-fixes). - dmaengine: at_xdmac: Do not start transactions at tx_submit level (git-fixes). - dmaengine: at_xdmac: Fix at_xdmac_lld struct definition (git-fixes). - dmaengine: at_xdmac: Fix concurrency over xfers_list (git-fixes). - dmaengine: at_xdmac: Fix lld view setting (git-fixes). - dmaengine: at_xdmac: Print debug message after realeasing the lock (git-fixes). - dmaengine: bestcomm: fix system boot lockups (git-fixes). - dmaengine: idxd: add module parameter to force disable of SVA (bsc#1192931). - dmaengine: idxd: enable SVA feature for IOMMU (bsc#1192931). - dmaengine: pxa/mmp: stop referencing config->slave_id (git-fixes). - dmaengine: st_fdma: fix MODULE_ALIAS (git-fixes). - drm/amd/amdgpu: Increase HWIP_MAX_INSTANCE to 10 (git-fixes). - drm/amd/display: Fix for the no Audio bug with Tiled Displays (git-fixes). - drm/amd/display: Update bounding box states (v2) (git-fixes). - drm/amd/display: Update number of DCN3 clock states (git-fixes). - drm/amd/display: add connector type check for CRC source set (git-fixes). - drm/amd/display: dcn20_resource_construct reduce scope of FPU enabled (git-fixes). - drm/amd/display: fix incorrect CM/TF programming sequence in dwb (git-fixes). - drm/amd/display: fix missing writeback disablement if plane is removed (git-fixes). - drm/amdgpu: Fix a NULL pointer dereference in amdgpu_connector_lcd_native_mode() (git-fixes). - drm/amdgpu: Fix a printing message (git-fixes). - drm/amdgpu: Fix amdgpu_ras_eeprom_init() (git-fixes). - drm/amdgpu: correct register access for RLC_JUMP_TABLE_RESTORE (git-fixes). - drm/amdgpu: revert "Add autodump debugfs node for gpu reset v8" (git-fixes). - drm/amdkfd: Account for SH/SE count when setting up cu masks (git-fixes). - drm/amdkfd: Check for null pointer after calling kmemdup (git-fixes). - drm/ast: potential dereference of null pointer (git-fixes). - drm/atomic: Check new_crtc_state->active to determine if CRTC needs disable in self refresh mode (git-fixes). - drm/bridge: analogix_dp: Make PSR-exit block less (git-fixes). - drm/bridge: display-connector: fix an uninitialized pointer in probe() (git-fixes). - drm/bridge: nwl-dsi: Avoid potential multiplication overflow on 32-bit (git-fixes). - drm/bridge: ti-sn65dsi86: Set max register for regmap (git-fixes). - drm/display: fix possible null-pointer dereference in dcn10_set_clock() (git-fixes). - drm/exynos: Always initialize mapping in exynos_drm_register_dma() (git-fixes). - drm/i915/fb: Fix rounding error in subsampled plane size calculation (git-fixes). - drm/i915: Avoid bitwise vs logical OR warning in snb_wm_latency_quirk() (git-fixes). - drm/mediatek: Check plane visibility in atomic_update (git-fixes). - drm/msm/dpu: fix safe status debugfs file (git-fixes). - drm/msm/dsi: Fix DSI and DSI PHY regulator config from SDM660 (git-fixes). - drm/msm/dsi: set default num_data_lanes (git-fixes). - drm/msm/mdp5: fix cursor-related warnings (git-fixes). - drm/msm: mdp4: drop vblank get/put from prepare/complete_commit (git-fixes). - drm/msm: prevent NULL dereference in msm_gpu_crashstate_capture() (git-fixes). - drm/panel: innolux-p079zca: Delete panel on attach() failure (git-fixes). - drm/panel: kingdisplay-kd097d04: Delete panel on attach() failure (git-fixes). - drm/radeon/radeon_kms: Fix a NULL pointer dereference in radeon_driver_open_kms() (git-fixes). - drm/rockchip: dsi: Disable PLL clock on bind error (git-fixes). - drm/rockchip: dsi: Fix unbalanced clock on probe error (git-fixes). - drm/rockchip: dsi: Hold pm-runtime across bind/unbind (git-fixes). - drm/rockchip: dsi: Reconfigure hardware on resume() (git-fixes). - drm/sun4i: dw-hdmi: Fix missing put_device() call in sun8i_hdmi_phy_get (git-fixes). - drm/sun4i: fix unmet dependency on RESET_CONTROLLER for PHY_SUN6I_MIPI_DPHY (git-fixes). - drm/syncobj: Deal with signalled fences in drm_syncobj_find_fence (git-fixes). - drm/tegra: vic: Fix DMA API misuse (git-fixes). - drm/vboxvideo: fix a NULL vs IS_ERR() check (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered up during bind (git-fixes). - drm/vc4: hdmi: Set HD_CTL_WHOLSMP and HD_CTL_CHALIGN_SET (git-fixes). - drm/vc4: hdmi: Set a default HSM rate (git-fixes). - drm: fix null-ptr-deref in drm_dev_init_release() (git-fixes). - drm: xlnx: zynqmp: release reset to DP controller before accessing DP registers (git-fixes). - drm: xlnx: zynqmp_dpsub: Call pm_runtime_get_sync before setting pixel clock (git-fixes). - eeprom: idt_89hpesx: Put fwnode in matching case during ->probe() (git-fixes). - eeprom: idt_89hpesx: Restore printing the unsupported fwnode name (git-fixes). - ext4: Avoid trim error on fs with small groups (bsc#1191271). - ext4: fix lazy initialization next schedule time computation in more granular unit (bsc#1194580). - fget: clarify and improve __fget_files() implementation (bsc#1193727). - firmware: Update Kconfig help text for Google firmware (git-fixes). - firmware: arm_scmi: pm: Propagate return value to caller (git-fixes). - firmware: arm_scpi: Fix string overflow in SCPI genpd driver (git-fixes). - firmware: qcom_scm: Fix error retval in __qcom_scm_is_call_available() (git-fixes). - firmware: qemu_fw_cfg: fix NULL-pointer deref on duplicate entries (git-fixes). - firmware: qemu_fw_cfg: fix kobject leak in probe error path (git-fixes). - firmware: qemu_fw_cfg: fix sysfs information leak (git-fixes). - firmware: raspberrypi: Fix a leak in 'rpi_firmware_get()' (git-fixes). - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (git-fixes). - firmware: tegra: Fix error application of sizeof() to pointer (git-fixes). - firmware: tegra: Reduce stack usage (git-fixes). - firmware_loader: fix pre-allocated buf built-in firmware use (git-fixes). - floppy: Fix hang in watchdog when disk is ejected (git-fixes). - flow_offload: return EOPNOTSUPP for the unsupported mpls action type (bsc#1154353). - fuse: Pass correct lend value to filemap_write_and_wait_range() (bsc#1194953). - gpiolib: acpi: Make set-debounce-timeout failures non fatal (git-fixes). - gpu: host1x: Add back arm_iommu_detach_device() (git-fixes). - hwmon: (lm90) Add basic support for TI TMP461 (git-fixes). - hwmon: (lm90) Add max6654 support to lm90 driver (git-fixes). - hwmon: (lm90) Do not report 'busy' status bit as alarm (git-fixes). - hwmon: (lm90) Drop critical attribute support for MAX6654 (git-fixes). - hwmon: (lm90) Fix usage of CONFIG2 register in detect function (git-fixes). - hwmon: (lm90) Introduce flag indicating extended temperature support (git-fixes). - i2c: rk3x: Handle a spurious start completion interrupt flag (git-fixes). - i2c: validate user data in compat ioctl (git-fixes). - i3c: fix incorrect address slot lookup on 64-bit (git-fixes). - i3c: master: dw: check return of dw_i3c_master_get_free_pos() (git-fixes). - i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc (git-fixes). - i40e: Fix for displaying message regarding NVM version (git-fixes). - i40e: Fix incorrect netdev's real number of RX/TX queues (git-fixes). - i40e: Fix to not show opcode msg on unsuccessful VF MAC change (git-fixes). - i40e: fix use-after-free in i40e_sync_filters_subtask() (git-fixes). - iavf: Fix limit of total number of queues to active queues of VF (git-fixes). - iavf: restore MSI state on reset (git-fixes). - ieee802154: atusb: fix uninit value in atusb_set_extended_addr (git-fixes). - ieee802154: fix error return code in ieee802154_llsec_getparams() (git-fixes). - ieee802154: fix error return code in ieee802154_add_iface() (git-fixes). - ieee802154: hwsim: Fix memory leak in hwsim_add_one (git-fixes). - ieee802154: hwsim: Fix possible memory leak in hwsim_subscribe_all_others (git-fixes). - ieee802154: hwsim: avoid possible crash in hwsim_del_edge_nl() (git-fixes). - ieee802154: hwsim: fix GPF in hwsim_set_edge_lqi (git-fixes). - igb: Fix removal of unicast MAC filters of VFs (git-fixes). - igbvf: fix double free in `igbvf_probe` (git-fixes). - igc: Fix typo in i225 LTR functions (jsc#SLE-13533). - iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove (git-fixes). - iio: ad7768-1: Call iio_trigger_notify_done() on error (git-fixes). - iio: adc: axp20x_adc: fix charging current reporting on AXP22x (git-fixes). - iio: at91-sama5d2: Fix incorrect sign extension (git-fixes). - iio: dln2-adc: Fix lockdep complaint (git-fixes). - iio: dln2: Check return value of devm_iio_trigger_register() (git-fixes). - iio: itg3200: Call iio_trigger_notify_done() on error (git-fixes). - iio: kxsd9: Do not return error code in trigger handler (git-fixes). - iio: ltr501: Do not return error code in trigger handler (git-fixes). - iio: mma8452: Fix trigger reference couting (git-fixes). - iio: stk3310: Do not return error code in interrupt handler (git-fixes). - iio: trigger: Fix reference counting (git-fixes). - iio: trigger: stm32-timer: fix MODULE_ALIAS (git-fixes). - ionic: Initialize the 'lif->dbid_inuse' bitmap (bsc#1167773). - isofs: Fix out of bound access for corrupted isofs image (bsc#1194591). - iwlwifi: fw: correctly limit to monitor dump (git-fixes). - iwlwifi: mvm: Fix scan channel flags settings (git-fixes). - iwlwifi: mvm: Use div_s64 instead of do_div in iwl_mvm_ftm_rtt_smoothing() (git-fixes). - iwlwifi: mvm: avoid static queue number aliasing (git-fixes). - iwlwifi: mvm: disable RX-diversity in powersave (git-fixes). - iwlwifi: mvm: fix 32-bit build in FTM (git-fixes). - iwlwifi: mvm: fix access to BSS elements (git-fixes). - iwlwifi: mvm: test roc running status bits before removing the sta (git-fixes). - iwlwifi: pcie: free RBs during configure (git-fixes). - ixgbe: set X550 MDIO speed before talking to PHY (git-fixes). - kmod: make request_module() return an error when autoloading is disabled (git-fixes). - kobject: Restore old behaviour of kobject_del(NULL) (git-fixes). - kobject_uevent: remove warning in init_uevent_argv() (git-fixes). - kprobes: Limit max data_size of the kretprobe instances (bsc#1193669). - libata: add horkage for ASMedia 1092 (git-fixes). - libata: if T_LENGTH is zero, dma direction should be DMA_NONE (git-fixes). - livepatch: Avoid CPU hogging with cond_resched (bsc#1071995). - lockdown: Allow unprivileged users to see lockdown status (git-fixes). - mISDN: change function names to avoid conflicts (git-fixes). - mac80211: Fix monitor MTU limit so that A-MSDUs get through (git-fixes). - mac80211: agg-tx: do not schedule_and_wake_txq() under sta->lock (git-fixes). - mac80211: do not access the IV when it was stripped (git-fixes). - mac80211: fix lookup when adding AddBA extension element (git-fixes). - mac80211: fix regression in SSN handling of addba tx (git-fixes). - mac80211: initialize variable have_higher_than_11mbit (git-fixes). - mac80211: mark TX-during-stop for TX in in_reconfig (git-fixes). - mac80211: send ADDBA requests using the tid/queue of the aggregation session (git-fixes). - mac80211: track only QoS data frames for admission control (git-fixes). - mac80211: validate extended element ID is present (git-fixes). - mailbox: hi3660: convert struct comments to kernel-doc notation (git-fixes). - media: Revert "media: uvcvideo: Set unique vdev name based in type" (bsc#1193255). - media: aspeed: Update signal status immediately to ensure sane hw state (git-fixes). - media: aspeed: fix mode-detect always time out at 2nd run (git-fixes). - media: cpia2: fix control-message timeouts (git-fixes). - media: dib0700: fix undefined behavior in tuner shutdown (git-fixes). - media: dib8000: Fix a memleak in dib8000_init() (git-fixes). - media: dmxdev: fix UAF when dvb_register_device() fails (git-fixes). - media: dw2102: Fix use after free (git-fixes). - media: em28xx: fix control-message timeouts (git-fixes). - media: em28xx: fix memory leak in em28xx_init_dev (git-fixes). - media: flexcop-usb: fix control-message timeouts (git-fixes). - media: hantro: Fix probe func error path (git-fixes). - media: i2c: imx274: fix trivial typo expsoure/exposure (git-fixes). - media: i2c: imx274: fix trivial typo obainted/obtained (git-fixes). - media: imx-pxp: Initialize the spinlock prior to using it (git-fixes). - media: mceusb: fix control-message timeouts (git-fixes). - media: msi001: fix possible null-ptr-deref in msi001_probe() (git-fixes). - media: mtk-vcodec: call v4l2_m2m_ctx_release first when file is released (git-fixes). - media: pvrusb2: fix control-message timeouts (git-fixes). - media: rcar-csi2: Correct the selection of hsfreqrange (git-fixes). - media: rcar-csi2: Optimize the selection PHTW register (git-fixes). - media: redrat3: fix control-message timeouts (git-fixes). - media: s2255: fix control-message timeouts (git-fixes). - media: saa7146: mxb: Fix a NULL pointer dereference in mxb_attach() (git-fixes). - media: si2157: Fix "warm" tuner state detection (git-fixes). - media: si470x-i2c: fix possible memory leak in si470x_i2c_probe() (git-fixes). - media: stk1160: fix control-message timeouts (git-fixes). - media: streamzap: remove unnecessary ir_raw_event_reset and handle (git-fixes). - media: uvcvideo: fix division by zero at stream start (git-fixes). - media: venus: core: Fix a resource leak in the error handling path of 'venus_probe()' (git-fixes). - memblock: ensure there is no overflow in memblock_overlaps_region() (git-fixes). - memory: emif: Remove bogus debugfs error handling (git-fixes). - mfd: intel-lpss: Fix too early PM enablement in the ACPI ->probe() (git-fixes). - misc: fastrpc: Add missing lock before accessing find_vma() (git-fixes). - misc: fastrpc: fix improper packet size calculation (git-fixes). - misc: lattice-ecp3-config: Fix task hung when firmware load failed (git-fixes). - mmc: meson-mx-sdio: add IRQ check (git-fixes). - mmc: sdhci-esdhc-imx: clear the buffer_read_ready to reset standard tuning circuit (git-fixes). - mmc: sdhci-esdhc-imx: disable CMDQ support (git-fixes). - mmc: sdhci-pci: Add PCI ID for Intel ADL (git-fixes). - mmc: sdhci-tegra: Fix switch to HS400ES mode (git-fixes). - moxart: fix potential use-after-free on remove path (bsc#1194516). - mt76: mt7915: fix NULL pointer dereference in mt7915_get_phy_mode (git-fixes). - mt76: mt7915: fix an off-by-one bound check (git-fixes). - mtd: rawnand: fsmc: Fix timing computation (git-fixes). - mtd: rawnand: fsmc: Take instruction delay into account (git-fixes). - mtd: rawnand: mpc5121: Remove unused variable in ads5121_select_chip() (git-fixes). - mtd: spi-nor: hisi-sfc: Remove excessive clk_disable_unprepare() (git-fixes). - mwifiex: Fix possible ABBA deadlock (git-fixes). - mwifiex: Try waking the firmware until we get an interrupt (git-fixes). - net/mlx5: DR, Fix NULL vs IS_ERR checking in dr_domain_init_resources (jsc#SLE-8464). - net/mlx5: Set command entry semaphore up once got index free (jsc#SLE-15172). - net/mlx5e: Fix wrong features assignment in case of error (git-fixes). - net/mlx5e: Wrap the tx reporter dump callback to extract the sq (jsc#SLE-15172). - net/sched: fq_pie: prevent dismantle issue (jsc#SLE-15172). - net/sched: sch_ets: do not remove idle classes from the round-robin list (bsc#1176774). - net: create netdev->dev_addr assignment helpers (git-fixes). - net: ena: Fix error handling when calculating max IO queues number (bsc#1154492). - net: ena: Fix undefined state when tx request id is out of bounds (bsc#1154492). - net: ena: Fix wrong rx request id by resetting device (git-fixes). - net: hns3: fix use-after-free bug in hclgevf_send_mbx_msg (jsc#SLE-14777). - net: usb: lan78xx: add Allied Telesis AT29M2-AF (git-fixes). - net: usb: pegasus: Do not drop long Ethernet frames (git-fixes). - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (bsc#1176447). - nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done (git-fixes). - nfc: fix segfault in nfc_genl_dump_devices_done (git-fixes). - nfsd: Fix nsfd startup race (again) (git-fixes). - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (bsc#1176447). - nvme-tcp: block BH in sk state_change sk callback (git-fixes). - nvme-tcp: can't set sk_user_data without write_lock (git-fixes). - nvme-tcp: check sgl supported by target (git-fixes). - nvme-tcp: do not update queue count when failing to set io queues (git-fixes). - nvme-tcp: fix a NULL deref when receiving a 0-length r2t PDU (git-fixes). - nvme-tcp: fix crash triggered with a dataless request submission (git-fixes). - nvme-tcp: fix error codes in nvme_tcp_setup_ctrl() (git-fixes). - nvme-tcp: fix io_work priority inversion (git-fixes). - nvme-tcp: fix possible data corruption with bio merges (git-fixes). - nvme-tcp: fix possible req->offset corruption (git-fixes). - nvme-tcp: fix wrong setting of request iov_iter (git-fixes). - nvme-tcp: get rid of unused helper function (git-fixes). - nvme-tcp: pair send_mutex init with destroy (git-fixes). - nvme-tcp: pass multipage bvec to request iov_iter (git-fixes). - nvme-tcp: remove incorrect Kconfig dep in BLK_DEV_NVME (git-fixes). - pcmcia: fix setting of kthread task states (git-fixes). - pcmcia: rsrc_nonstatic: Fix a NULL pointer dereference in __nonstatic_find_io_region() (git-fixes). - pcmcia: rsrc_nonstatic: Fix a NULL pointer dereference in nonstatic_find_mem_region() (git-fixes). - pcnet32: Use pci_resource_len to validate PCI resource (git-fixes). - pinctrl: mediatek: fix global-out-of-bounds issue (git-fixes). - pinctrl: qcom: spmi-gpio: correct parent irqspec translation (git-fixes). - pinctrl: stm32: consider the GPIO offset to expose all the GPIO lines (git-fixes). - pinctrl: stm32: use valid pin identifier in stm32_pinctrl_resume() (git-fixes). - pipe: increase minimum default pipe size to 2 pages (bsc#1194587). - platform/x86: apple-gmux: use resource_size() with res (git-fixes). - platform/x86: thinkpad_acpi: Fix WWAN device disabled issue after S3 deep (git-fixes). - power: reset: ltc2952: Fix use of floating point literals (git-fixes). - power: supply: core: Break capacity loop (git-fixes). - power: supply: max17042_battery: Clear status bits in interrupt handler (git-fixes). - powerpc/64s: fix program check interrupt emergency stack path (bsc#1156395). - powerpc/fadump: Fix inaccurate CPU state info in vmcore generated with panic (bsc#1193901 ltc#194976). - powerpc/perf: Fix PMU callbacks to clear pending PMI before resetting an overflown PMC (bsc#1156395). - powerpc/perf: Fix data source encodings for L2.1 and L3.1 accesses (bsc#1065729). - powerpc/prom_init: Fix improper check of prom_getprop() (bsc#1065729). - powerpc/pseries/cpuhp: cache node corrections (bsc#1065729). - powerpc/pseries/cpuhp: delete add/remove_by_count code (bsc#1065729). - powerpc/pseries/mobility: ignore ibm, platform-facilities updates (bsc#1065729). - powerpc/traps: do not enable irqs in _exception (bsc#1065729). - powerpc/xive: Add missing null check after calling kmalloc (bsc#1177437 ltc#188522 jsc#SLE-13294 git-fixes). - powerpc: add interrupt_cond_local_irq_enable helper (bsc#1065729). - powerpc: handle kdump appropriately with crash_kexec_post_notifiers option (bsc#1193901 ltc#194976). - pwm: mxs: Do not modify HW state in .probe() after the PWM chip was registered (git-fixes). - pwm: tiecap: Drop .free() callback (git-fixes). - qlcnic: potential dereference null pointer of rx_queue->page_ring (git-fixes). - quota: check block number when reading the block in quota file (bsc#1194589). - quota: correct error number in free_dqentry() (bsc#1194590). - random: fix data race on crng init time (git-fixes). - random: fix data race on crng_node_pool (git-fixes). - regmap: Call regmap_debugfs_exit() prior to _init() (git-fixes). - rndis_host: support Hytera digital radios (git-fixes). - rpmsg: core: Clean up resources on announce_create failure (git-fixes). - rtl8xxxu: Fix the handling of TX A-MPDU aggregation (git-fixes). - rtlwifi: rtl8192cu: Fix WARNING when calling local_irq_restore() with interrupts enabled (git-fixes). - rtw88: use read_poll_timeout instead of fixed sleep (git-fixes). - rtw88: wow: build wow function only if CONFIG_PM is on (git-fixes). - rtw88: wow: fix size access error of probe request (git-fixes). - sata: nv: fix debug format string mismatch (git-fixes). - select: Fix indefinitely sleeping task in poll_schedule_timeout() (bsc#1194027). - selftests: KVM: Explicitly use movq to read xmm registers (git-fixes). - selinux: fix potential memleak in selinux_add_opt() (git-fixes). - seq_buf: Fix overflow in seq_buf_putmem_hex() (git-fixes). - seq_buf: Make trace_seq_putmem_hex() support data longer than 8 (git-fixes). - serial: pl011: Add ACPI SBSA UART match id (git-fixes). - serial: tty: uartlite: fix console setup (git-fixes). - sfc: Check null pointer of rx_queue->page_ring (git-fixes). - sfc: The RX page_ring is optional (git-fixes). - sfc: falcon: Check null pointer of rx_queue->page_ring (git-fixes). - sfc_ef100: potential dereference of null pointer (jsc#SLE-16683). - shmem: shmem_writepage() split unlikely i915 THP (git-fixes). - slimbus: qcom: fix potential NULL dereference in qcom_slim_prg_slew() (git-fixes). - soc/tegra: fuse: Fix bitwise vs. logical OR warning (git-fixes). - soc: fsl: dpaa2-console: free buffer before returning from dpaa2_console_read (git-fixes). - soc: fsl: dpio: rename the enqueue descriptor variable (git-fixes). - soc: fsl: dpio: replace smp_processor_id with raw_smp_processor_id (git-fixes). - soc: fsl: dpio: use an explicit NULL instead of 0 (git-fixes). - soc: fsl: dpio: use the combined functions to protect critical zone (git-fixes). - spi: change clk_disable_unprepare to clk_unprepare (git-fixes). - spi: spi-meson-spifc: Add missing pm_runtime_disable() in meson_spifc_probe (git-fixes). - spi: spi-rspi: Drop redeclaring ret variable in qspi_transfer_in() (git-fixes). - staging: emxx_udc: Fix passing of NULL to dma_alloc_coherent() (git-fixes). - staging: fbtft: Do not spam logs when probe is deferred (git-fixes). - staging: fbtft: Rectify GPIO handling (git-fixes). - staging: fieldbus: anybuss: jump to correct label in an error path (git-fixes). - staging: ks7010: select CRYPTO_HASH/CRYPTO_MICHAEL_MIC (git-fixes). - staging: rtl8192e: return error code from rtllib_softmac_init() (git-fixes). - staging: rtl8192e: rtllib_module: fix error handle case in alloc_rtllib() (git-fixes). - staging: wlan-ng: Avoid bitwise vs logical OR warning in hfa384x_usb_throttlefn() (git-fixes). - string.h: fix incompatibility between FORTIFY_SOURCE and KASAN (git-fixes). - thermal/drivers/imx8mm: Enable ADC when enabling monitor (git-fixes). - thermal/drivers/int340x: Do not set a wrong tcc offset on resume (git-fixes). - thermal: core: Reset previous low and high trip during thermal zone init (git-fixes). - tpm: add request_locality before write TPM_INT_ENABLE (git-fixes). - tpm: fix potential NULL pointer access in tpm_del_char_device (git-fixes). - tracing/kprobes: 'nmissed' not showed correctly for kretprobe (git-fixes). - tracing/uprobes: Check the return value of kstrdup() for tu->filename (git-fixes). - tracing: Add test for user space strings when filtering on string pointers (git-fixes). - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (git-fixes). - tty: max310x: fix flexible_array.cocci warnings (git-fixes). - tty: serial: atmel: Call dma_async_issue_pending() (git-fixes). - tty: serial: atmel: Check return code of dmaengine_submit() (git-fixes). - tty: serial: earlycon dependency (git-fixes). - tty: serial: qcom_geni_serial: Drop __init from qcom_geni_console_setup (git-fixes). - tty: serial: uartlite: allow 64 bit address (git-fixes). - tty: synclink_gt: rename a conflicting function name (git-fixes). - udf: Fix crash after seekdir (bsc#1194592). - uio: uio_dmem_genirq: Catch the Exception (git-fixes). - usb: core: config: fix validation of wMaxPacketValue entries (git-fixes). - usb: core: config: using bit mask instead of individual bits (git-fixes). - usb: dwc2: check return value after calling platform_get_resource() (git-fixes). - usb: dwc3: gadget: Continue to process pending requests (git-fixes). - usb: dwc3: gadget: Ignore EP queue requests during bus reset (git-fixes). - usb: dwc3: gadget: Reclaim extra TRBs after request completion (git-fixes). - usb: dwc3: pci: Enable dis_uX_susphy_quirk for Intel Merrifield (git-fixes). - usb: dwc3: ulpi: Fix USB2.0 HS/FS/LS PHY suspend regression (git-fixes). - usb: dwc3: ulpi: Replace CPU-based busyloop with Protocol-based one (git-fixes). - usb: dwc3: ulpi: fix checkpatch warning (git-fixes). - usb: ftdi-elan: fix memory leak on device disconnect (git-fixes). - usb: gadget: composite: Allow bMaxPower=0 if self-powered (git-fixes). - usb: gadget: f_fs: Clear ffs_eventfd in ffs_data_clear (git-fixes). - usb: gadget: u_ether: fix race in setting MAC address in setup phase (git-fixes). - usb: mtu3: add memory barrier before set GPD's HWO (git-fixes). - usb: mtu3: fix interval value for intr and isoc (git-fixes). - usb: mtu3: fix list_head check warning (git-fixes). - usb: mtu3: set interval of FS intr and isoc endpoint (git-fixes). - usb: typec: tcpm: handle SRC_STARTUP state if cc changes (git-fixes). - usb: xhci: Extend support for runtime power management for AMD's Yellow carp (git-fixes). - usermodehelper: reset umask to default before executing user process (git-fixes). - vfs: check fd has read access in kernel_read_file_from_fd() (bsc#1194888). - video: backlight: Drop maximum brightness override for brightness zero (git-fixes). - watchdog: Fix OMAP watchdog early handling (git-fixes). - watchdog: f71808e_wdt: fix inaccurate report in WDIOC_GETTIMEOUT (git-fixes). - wcn36xx: Fix missing frame timestamp for beacon/probe-resp (git-fixes). - wcn36xx: Indicate beacon not connection loss on MISSED_BEACON_IND (git-fixes). - wcn36xx: Release DMA channel descriptor allocations (git-fixes). - wcn36xx: handle connection loss indication (git-fixes). - wireless: iwlwifi: Fix a double free in iwl_txq_dyn_alloc_dma (git-fixes). - x86/platform/uv: Add more to secondary CPU kdump info (bsc#1194493). - xhci: Fresco FL1100 controller should not have BROKEN_MSI quirk set (git-fixes). - xhci: Remove CONFIG_USB_DEFAULT_PERSIST to prevent xHCI from runtime suspending (git-fixes). - xhci: avoid race between disable slot command and host runtime suspend (git-fixes). - xhci: fix unsafe memory usage in xhci tracing (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.37.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.37.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.37.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.37.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.37.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.37.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.37.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.37.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.37.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.37.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.37.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True openSUSE-SLE-15.3-2022-164 moderate SUSE Updates openSUSE-SLE 15.3 This update for post-build-checks-malwarescan fixes the following issues: - Allow using 1.5GB RAM per thread to avoid OOM conditions (bsc#1194857) post-build-checks-malwarescan-0.1-3.22.1.noarch.rpm post-build-checks-malwarescan-0.1-3.22.1.src.rpm openSUSE-SLE-15.3-2022-487 moderate SUSE Updates openSUSE-SLE 15.3 This update for transactional-update fixes the following issues: - Version 3.6.2 - Bind mount root file system snapshot on itself, this makes the temporary directory in '/tmp' unnecessary; also fixes to return the correct snapshot's working directory via API call. (bsc#1188110) - Use separate mount namespace for transactional-update; this should fix several applications that fail to run if a mount point has the 'unbindable' mount flag set - Version 3.6.1 - Fix rsyncing '/etc' into the running system with '--drop-if-no-change'. (bsc#1192242) - Version 3.6.0 - Simplify mount hierarchy by just using a single slave bind mount as the root of the update environment; this may avoid the error messages of failed unmounts. (bsc#1191945) - Version 3.5.7 Various fixes affecting Salt support: - t-u: Don't squash stderr messages into stdout - t-u: Correctly handle case when the snapshot has been deleted due to using --drop-if-no-change: Don't show reboot messages and avoid an awk error message. (bsc#1191475) - tukit: Make inotify handler less sensitive / ignore more directories (bsc#1191475) - Version 3.5.6 - tukit: Add S/390 bootloader support (bsc#1189807) - t-u: support purge-kernels with t-u patch (bsc#1190788) - Version 3.5.5 - t-u: Use tukit for SUSEConnect call (bsc#1190574) Correctly registers repositories - Version 3.5.4 - tukit: Fix resolved support (bsc#1190383) - Version 3.5.3 - t-u: Purge kernels as part of package operations Required for live patching support (bsc#1189728) - Version 3.5.2 - tukit: Fix overlay syncing errors with SELinux (bsc#1188648) - Don't print message for `shell` with --quiet - Version 3.5.1 - t-u: Disable status file generation by default The new experimental `status` command requires the availability of /etc/YaST2/control.xml, which is not present on all systems. Hide the creation of the corresponding status file behind a new EXPERIMENTAL_STATUS option to try out this functionality. - Increase library version - Version 3.5.0 - Add alias setDiscardIfUnchanged for setDiscard. The old method name wasn't really clear and will be removed if we should have an API break in the future - Replace 'mkinitrd' with direct dracut call. (bsc#1186213) - tukit: Add configuration file support (/etc/tukit.conf) - Allow users to configure additional bind mounts (see /usr/etc/tukit.conf for an example and limitations). (bsc#1188322) - Add 'transactional-update status' call. This is a POC for obtaining a hash of a system to verify its integrity. - Internal bugfixes / optimizations - Version 3.4.0 - Apply 'SElinux' context on '/etc' in transaction. (bsc#1185625, bsc#1185766, bsc#1186842, bsc#1186775) - Implement inotify handling in C instead of Bash; this makes the --drop-if-no-change option work on SLE Micro. (bsc#1184529) - Use `tukit call` for up, dup and patch to allow resuming an update after zypper updated itself in the snapshot. (bsc#1185226) - Fix obsolete output type messages in 'initrd'. (bsc#1177149) - Make different base snapshot warning more visible. (bsc#1185224) - Version 3.3.0 - Add support for more package managers by bind mounting their directories - Support snapshots without dedicated overlay [bsc#1183539], (bsc#1183539) - Link RPM database correctly with older zypper versions (bsc#1183521) - Don't discard manual changes in fstab (bsc#1183856, bsc#1192302) dracut-transactional-update-3.6.2-150300.3.3.1.noarch.rpm libtukit-devel-3.6.2-150300.3.3.1.x86_64.rpm libtukit0-3.6.2-150300.3.3.1.x86_64.rpm transactional-update-3.6.2-150300.3.3.1.src.rpm transactional-update-3.6.2-150300.3.3.1.x86_64.rpm transactional-update-zypp-config-3.6.2-150300.3.3.1.noarch.rpm tukit-3.6.2-150300.3.3.1.x86_64.rpm libtukit-devel-3.6.2-150300.3.3.1.s390x.rpm libtukit0-3.6.2-150300.3.3.1.s390x.rpm transactional-update-3.6.2-150300.3.3.1.s390x.rpm tukit-3.6.2-150300.3.3.1.s390x.rpm libtukit-devel-3.6.2-150300.3.3.1.ppc64le.rpm libtukit0-3.6.2-150300.3.3.1.ppc64le.rpm transactional-update-3.6.2-150300.3.3.1.ppc64le.rpm tukit-3.6.2-150300.3.3.1.ppc64le.rpm libtukit-devel-3.6.2-150300.3.3.1.aarch64.rpm libtukit0-3.6.2-150300.3.3.1.aarch64.rpm transactional-update-3.6.2-150300.3.3.1.aarch64.rpm tukit-3.6.2-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-491 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: - CVE-2022-21658: Fixed race condition in std::fs::remove_dir_all (bsc#1194767). cargo-doc-1.53.0-22.1.noarch.rpm rust-1.53.0-22.1.src.rpm rust-analysis-1.53.0-22.1.x86_64.rpm rust-doc-1.53.0-22.1.x86_64.rpm rust-src-1.53.0-22.1.noarch.rpm rust-analysis-1.53.0-22.1.aarch64.rpm rust-doc-1.53.0-22.1.aarch64.rpm openSUSE-SLE-15.3-2022-492 important SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: - CVE-2021-45079: Fixed authentication bypass in EAP authentication. (bsc#1194471) strongswan-5.8.2-11.24.1.src.rpm strongswan-5.8.2-11.24.1.x86_64.rpm strongswan-doc-5.8.2-11.24.1.noarch.rpm strongswan-hmac-5.8.2-11.24.1.x86_64.rpm strongswan-ipsec-5.8.2-11.24.1.x86_64.rpm strongswan-libs0-5.8.2-11.24.1.x86_64.rpm strongswan-mysql-5.8.2-11.24.1.x86_64.rpm strongswan-nm-5.8.2-11.24.1.x86_64.rpm strongswan-sqlite-5.8.2-11.24.1.x86_64.rpm strongswan-5.8.2-11.24.1.s390x.rpm strongswan-hmac-5.8.2-11.24.1.s390x.rpm strongswan-ipsec-5.8.2-11.24.1.s390x.rpm strongswan-libs0-5.8.2-11.24.1.s390x.rpm strongswan-mysql-5.8.2-11.24.1.s390x.rpm strongswan-nm-5.8.2-11.24.1.s390x.rpm strongswan-sqlite-5.8.2-11.24.1.s390x.rpm strongswan-5.8.2-11.24.1.ppc64le.rpm strongswan-hmac-5.8.2-11.24.1.ppc64le.rpm strongswan-ipsec-5.8.2-11.24.1.ppc64le.rpm strongswan-libs0-5.8.2-11.24.1.ppc64le.rpm strongswan-mysql-5.8.2-11.24.1.ppc64le.rpm strongswan-nm-5.8.2-11.24.1.ppc64le.rpm strongswan-sqlite-5.8.2-11.24.1.ppc64le.rpm strongswan-5.8.2-11.24.1.aarch64.rpm strongswan-hmac-5.8.2-11.24.1.aarch64.rpm strongswan-ipsec-5.8.2-11.24.1.aarch64.rpm strongswan-libs0-5.8.2-11.24.1.aarch64.rpm strongswan-mysql-5.8.2-11.24.1.aarch64.rpm strongswan-nm-5.8.2-11.24.1.aarch64.rpm strongswan-sqlite-5.8.2-11.24.1.aarch64.rpm openSUSE-SLE-15.3-2022-386 moderate SUSE Updates openSUSE-SLE 15.3 This update for autoyast2 fixes the following issues: - Fix handling of add-on signature settings (bsc#1194881). - Properly merge the autoupgrade workflow when using the online medium (bsc#1192437, bsc#1194440). autoyast2-4.3.96-150300.3.35.1.noarch.rpm autoyast2-4.3.96-150300.3.35.1.src.rpm autoyast2-installation-4.3.96-150300.3.35.1.noarch.rpm openSUSE-SLE-15.3-2022-336 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-add-on fixes the following issues: - Restore the repo unexpanded URL to get it properly saved in the /etc/zypp/repos.d file (bsc#972046, bsc#1194851). yast2-add-on-4.3.10-150300.3.8.1.noarch.rpm yast2-add-on-4.3.10-150300.3.8.1.src.rpm openSUSE-SLE-15.3-2022-333 important SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2022-23033: Fixed guest_physmap_remove_page not removing the p2m mappings. (XSA-393) (bsc#1194576) - CVE-2022-23034: Fixed possible DoS by a PV guest Xen while unmapping a grant. (XSA-394) (bsc#1194581) - CVE-2022-23035: Fixed insufficient cleanup of passed-through device IRQs. (XSA-395) (bsc#1194588) xen-4.14.3_06-150300.3.18.2.src.rpm True xen-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-devel-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-doc-html-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-libs-32bit-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-libs-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-tools-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-tools-domU-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-tools-xendomains-wait-disk-4.14.3_06-150300.3.18.2.noarch.rpm True xen-4.14.3_06-150300.3.18.2.aarch64.rpm True xen-devel-4.14.3_06-150300.3.18.2.aarch64.rpm True xen-doc-html-4.14.3_06-150300.3.18.2.aarch64.rpm True xen-libs-4.14.3_06-150300.3.18.2.aarch64.rpm True xen-tools-4.14.3_06-150300.3.18.2.aarch64.rpm True xen-tools-domU-4.14.3_06-150300.3.18.2.aarch64.rpm True openSUSE-SLE-15.3-2022-214 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issues: - CVE-2022-23307: Fixed deserialization flaw in the chainsaw component of log4j leading to malicious code execution. (bsc#1194844) - CVE-2022-23305: Fixed SQL injection when application is configured to use JDBCAppender. (bsc#1194843) - CVE-2022-23302: Fixed remote code execution when application is configured to use JMSSink. (bsc#1194842) log4j-1.2.17-5.9.1.src.rpm log4j-manual-1.2.17-5.9.1.noarch.rpm openSUSE-SLE-15.3-2022-282 low SUSE Updates openSUSE-SLE 15.3 This is a relogin-suggested test update for SUSE:SLE-15-SP2:Update update-test-relogin-suggested-5.1-33.2.x86_64.rpm True update-test-relogin-suggested-5.1-33.2.s390x.rpm True update-test-relogin-suggested-5.1-33.2.ppc64le.rpm True update-test-relogin-suggested-5.1-33.2.aarch64.rpm True openSUSE-SLE-15.3-2022-274 low SUSE Updates openSUSE-SLE 15.3 This is a affects-package-manager test update for SUSE:SLE-15-SP2:Update update-test-affects-package-manager-5.1-33.2.x86_64.rpm True update-test-affects-package-manager-5.1-33.2.s390x.rpm True update-test-affects-package-manager-5.1-33.2.ppc64le.rpm True update-test-affects-package-manager-5.1-33.2.aarch64.rpm True openSUSE-SLE-15.3-2022-275 low SUSE Updates openSUSE-SLE 15.3 This is a retracted test update for SUSE:SLE-15-SP2:Update update-test-retracted-5.1-33.2.x86_64.rpm update-test-retracted-5.1-33.2.s390x.rpm update-test-retracted-5.1-33.2.ppc64le.rpm update-test-retracted-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-276 low SUSE Updates openSUSE-SLE 15.3 This is a optional test update for SUSE:SLE-15-SP2:Update update-test-optional-5.1-33.2.x86_64.rpm update-test-optional-5.1-33.2.s390x.rpm update-test-optional-5.1-33.2.ppc64le.rpm update-test-optional-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-277 important SUSE Updates openSUSE-SLE 15.3 This is a security test update for SUSE:SLE-15-SP2:Update update-test-security-5.1-33.2.x86_64.rpm update-test-security-5.1-33.2.s390x.rpm update-test-security-5.1-33.2.ppc64le.rpm update-test-security-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-278 low SUSE Updates openSUSE-SLE 15.3 This is a trivial test update for SUSE:SLE-15-SP2:Update update-test-trivial-5.1-33.2.src.rpm update-test-trivial-5.1-33.2.x86_64.rpm update-test-trivial-5.1-33.2.s390x.rpm update-test-trivial-5.1-33.2.ppc64le.rpm update-test-trivial-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-279 low SUSE Updates openSUSE-SLE 15.3 This is a feature test update for SUSE:SLE-15-SP2:Update update-test-feature-5.1-33.2.x86_64.rpm update-test-feature-5.1-33.2.s390x.rpm update-test-feature-5.1-33.2.ppc64le.rpm update-test-feature-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-280 low SUSE Updates openSUSE-SLE 15.3 This is a reboot-needed test update for SUSE:SLE-15-SP2:Update update-test-reboot-needed-5.1-33.2.x86_64.rpm True update-test-reboot-needed-5.1-33.2.s390x.rpm True update-test-reboot-needed-5.1-33.2.ppc64le.rpm True update-test-reboot-needed-5.1-33.2.aarch64.rpm True openSUSE-SLE-15.3-2022-281 low SUSE Updates openSUSE-SLE 15.3 This is a interactive test update for SUSE:SLE-15-SP2:Update Is this message visible? update-test-interactive-5.1-33.2.x86_64.rpm update-test-interactive-5.1-33.2.s390x.rpm update-test-interactive-5.1-33.2.ppc64le.rpm update-test-interactive-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-888 moderate SUSE Updates openSUSE-SLE 15.3 This update for avahi fixes the following issues: - Change python3-Twisted to a soft dependency. It is not available on SLED or PackageHub, and it is only needed by avahi-bookmarks (bsc#1196282) - Fix warning when Twisted is not available - Have python3-avahi require python3-dbus-python, not the python 2 dbus-1-python package (bsc#1195614) - Ensure that NetworkManager or wicked have already started before initializing (bsc#1194561) - Move sftp-ssh and ssh services to the doc directory. They allow a host's up/down status to be easily discovered and should not be enabled by default (bsc#1179060) avahi-0.7-3.18.1.src.rpm avahi-0.7-3.18.1.x86_64.rpm avahi-autoipd-0.7-3.18.1.x86_64.rpm avahi-compat-howl-devel-0.7-3.18.1.x86_64.rpm avahi-compat-mDNSResponder-devel-0.7-3.18.1.x86_64.rpm avahi-glib2-0.7-3.18.1.src.rpm avahi-lang-0.7-3.18.1.noarch.rpm avahi-utils-0.7-3.18.1.x86_64.rpm avahi-utils-gtk-0.7-3.18.1.x86_64.rpm libavahi-client3-0.7-3.18.1.x86_64.rpm libavahi-client3-32bit-0.7-3.18.1.x86_64.rpm libavahi-common3-0.7-3.18.1.x86_64.rpm libavahi-common3-32bit-0.7-3.18.1.x86_64.rpm libavahi-core7-0.7-3.18.1.x86_64.rpm libavahi-devel-0.7-3.18.1.x86_64.rpm libavahi-glib-devel-0.7-3.18.1.x86_64.rpm libavahi-glib1-0.7-3.18.1.x86_64.rpm libavahi-glib1-32bit-0.7-3.18.1.x86_64.rpm libavahi-gobject-devel-0.7-3.18.1.x86_64.rpm libavahi-gobject0-0.7-3.18.1.x86_64.rpm libavahi-ui-gtk3-0-0.7-3.18.1.x86_64.rpm libavahi-ui0-0.7-3.18.1.x86_64.rpm libdns_sd-0.7-3.18.1.x86_64.rpm libdns_sd-32bit-0.7-3.18.1.x86_64.rpm libhowl0-0.7-3.18.1.x86_64.rpm python3-avahi-0.7-3.18.1.x86_64.rpm python3-avahi-gtk-0.7-3.18.1.x86_64.rpm typelib-1_0-Avahi-0_6-0.7-3.18.1.x86_64.rpm avahi-0.7-3.18.1.s390x.rpm avahi-autoipd-0.7-3.18.1.s390x.rpm avahi-compat-howl-devel-0.7-3.18.1.s390x.rpm avahi-compat-mDNSResponder-devel-0.7-3.18.1.s390x.rpm avahi-utils-0.7-3.18.1.s390x.rpm avahi-utils-gtk-0.7-3.18.1.s390x.rpm libavahi-client3-0.7-3.18.1.s390x.rpm libavahi-common3-0.7-3.18.1.s390x.rpm libavahi-core7-0.7-3.18.1.s390x.rpm libavahi-devel-0.7-3.18.1.s390x.rpm libavahi-glib-devel-0.7-3.18.1.s390x.rpm libavahi-glib1-0.7-3.18.1.s390x.rpm libavahi-gobject-devel-0.7-3.18.1.s390x.rpm libavahi-gobject0-0.7-3.18.1.s390x.rpm libavahi-ui-gtk3-0-0.7-3.18.1.s390x.rpm libavahi-ui0-0.7-3.18.1.s390x.rpm libdns_sd-0.7-3.18.1.s390x.rpm libhowl0-0.7-3.18.1.s390x.rpm python3-avahi-0.7-3.18.1.s390x.rpm python3-avahi-gtk-0.7-3.18.1.s390x.rpm typelib-1_0-Avahi-0_6-0.7-3.18.1.s390x.rpm avahi-0.7-3.18.1.ppc64le.rpm avahi-autoipd-0.7-3.18.1.ppc64le.rpm avahi-compat-howl-devel-0.7-3.18.1.ppc64le.rpm avahi-compat-mDNSResponder-devel-0.7-3.18.1.ppc64le.rpm avahi-utils-0.7-3.18.1.ppc64le.rpm avahi-utils-gtk-0.7-3.18.1.ppc64le.rpm libavahi-client3-0.7-3.18.1.ppc64le.rpm libavahi-common3-0.7-3.18.1.ppc64le.rpm libavahi-core7-0.7-3.18.1.ppc64le.rpm libavahi-devel-0.7-3.18.1.ppc64le.rpm libavahi-glib-devel-0.7-3.18.1.ppc64le.rpm libavahi-glib1-0.7-3.18.1.ppc64le.rpm libavahi-gobject-devel-0.7-3.18.1.ppc64le.rpm libavahi-gobject0-0.7-3.18.1.ppc64le.rpm libavahi-ui-gtk3-0-0.7-3.18.1.ppc64le.rpm libavahi-ui0-0.7-3.18.1.ppc64le.rpm libdns_sd-0.7-3.18.1.ppc64le.rpm libhowl0-0.7-3.18.1.ppc64le.rpm python3-avahi-0.7-3.18.1.ppc64le.rpm python3-avahi-gtk-0.7-3.18.1.ppc64le.rpm typelib-1_0-Avahi-0_6-0.7-3.18.1.ppc64le.rpm avahi-0.7-3.18.1.aarch64.rpm avahi-autoipd-0.7-3.18.1.aarch64.rpm avahi-compat-howl-devel-0.7-3.18.1.aarch64.rpm avahi-compat-mDNSResponder-devel-0.7-3.18.1.aarch64.rpm avahi-utils-0.7-3.18.1.aarch64.rpm avahi-utils-gtk-0.7-3.18.1.aarch64.rpm libavahi-client3-0.7-3.18.1.aarch64.rpm libavahi-common3-0.7-3.18.1.aarch64.rpm libavahi-core7-0.7-3.18.1.aarch64.rpm libavahi-devel-0.7-3.18.1.aarch64.rpm libavahi-glib-devel-0.7-3.18.1.aarch64.rpm libavahi-glib1-0.7-3.18.1.aarch64.rpm libavahi-gobject-devel-0.7-3.18.1.aarch64.rpm libavahi-gobject0-0.7-3.18.1.aarch64.rpm libavahi-ui-gtk3-0-0.7-3.18.1.aarch64.rpm libavahi-ui0-0.7-3.18.1.aarch64.rpm libdns_sd-0.7-3.18.1.aarch64.rpm libhowl0-0.7-3.18.1.aarch64.rpm python3-avahi-0.7-3.18.1.aarch64.rpm python3-avahi-gtk-0.7-3.18.1.aarch64.rpm typelib-1_0-Avahi-0_6-0.7-3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-476 moderate SUSE Updates openSUSE-SLE 15.3 This update for nfs-utils fixes the following issues: - If an error or warning message is produced before closeall() is called, mountd doesn't work. (bsc#1194661) nfs-client-2.1.1-10.21.1.x86_64.rpm nfs-doc-2.1.1-10.21.1.x86_64.rpm nfs-kernel-server-2.1.1-10.21.1.x86_64.rpm nfs-utils-2.1.1-10.21.1.src.rpm nfs-client-2.1.1-10.21.1.s390x.rpm nfs-doc-2.1.1-10.21.1.s390x.rpm nfs-kernel-server-2.1.1-10.21.1.s390x.rpm nfs-client-2.1.1-10.21.1.ppc64le.rpm nfs-doc-2.1.1-10.21.1.ppc64le.rpm nfs-kernel-server-2.1.1-10.21.1.ppc64le.rpm nfs-client-2.1.1-10.21.1.aarch64.rpm nfs-doc-2.1.1-10.21.1.aarch64.rpm nfs-kernel-server-2.1.1-10.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-302 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint, rpmlint-mini, obs-service-format_spec_file fixes the following issues: obs-service-format_spec_file: - Synchronize the license identifiers from SPDX (spdx.org). (jsc#SLE-18915) rpmlint: - Accept any license ending with a '+' as indicated in the SPDX syntax. (bsc#1195085) - Remove licenses ending with '+' from the valid license array - Rebuild rpmlint with the new obs-service-format_spec_file. rpmlint-mini: - Rebuild rpmlint-mini with the new obs-service-format_spec_file and rpmlint. obs-service-format_spec_file-20211115-3.11.1.noarch.rpm obs-service-format_spec_file-20211115-3.11.1.src.rpm rpmlint-1.10-7.35.1.noarch.rpm rpmlint-1.10-7.35.1.src.rpm openSUSE-SLE-15.3-2022-892 low SUSE Updates openSUSE-SLE 15.3 This update for libyui fixes the following issue: - Add package libyui-qt-pkg15 to Basesystem (bsc#1195114). libyui-4.1.5-150300.3.8.7.src.rpm libyui-bindings-4.1.5-150300.3.8.7.src.rpm libyui-devel-4.1.5-150300.3.8.7.x86_64.rpm libyui-ncurses-4.1.5-150300.3.8.7.src.rpm libyui-ncurses-devel-4.1.5-150300.3.8.7.x86_64.rpm libyui-ncurses-pkg-4.1.5-150300.3.8.1.src.rpm libyui-ncurses-pkg-devel-4.1.5-150300.3.8.1.x86_64.rpm libyui-ncurses-pkg15-4.1.5-150300.3.8.1.x86_64.rpm libyui-ncurses-rest-api-4.1.5-150300.3.8.6.src.rpm libyui-ncurses-rest-api-devel-4.1.5-150300.3.8.6.x86_64.rpm libyui-ncurses-rest-api15-4.1.5-150300.3.8.6.x86_64.rpm libyui-ncurses-tools-4.1.5-150300.3.8.7.x86_64.rpm libyui-ncurses15-4.1.5-150300.3.8.7.x86_64.rpm libyui-qt-4.1.5-150300.3.8.6.src.rpm libyui-qt-devel-4.1.5-150300.3.8.6.x86_64.rpm libyui-qt-graph-4.1.5-150300.3.8.6.src.rpm libyui-qt-graph-devel-4.1.5-150300.3.8.6.x86_64.rpm libyui-qt-graph15-4.1.5-150300.3.8.6.x86_64.rpm libyui-qt-pkg-4.1.5-150300.3.8.1.src.rpm libyui-qt-pkg-devel-4.1.5-150300.3.8.1.x86_64.rpm libyui-qt-pkg15-4.1.5-150300.3.8.1.x86_64.rpm libyui-qt-rest-api-4.1.5-150300.3.8.6.src.rpm libyui-qt-rest-api-devel-4.1.5-150300.3.8.6.x86_64.rpm libyui-qt-rest-api15-4.1.5-150300.3.8.6.x86_64.rpm libyui-qt15-4.1.5-150300.3.8.6.x86_64.rpm libyui-rest-api-4.1.5-150300.3.8.6.src.rpm libyui-rest-api-devel-4.1.5-150300.3.8.6.x86_64.rpm libyui-rest-api15-4.1.5-150300.3.8.6.x86_64.rpm libyui15-4.1.5-150300.3.8.7.x86_64.rpm perl-yui-4.1.5-150300.3.8.7.x86_64.rpm python3-yui-4.1.5-150300.3.8.7.x86_64.rpm ruby-yui-4.1.5-150300.3.8.7.x86_64.rpm libyui-devel-4.1.5-150300.3.8.7.s390x.rpm libyui-ncurses-devel-4.1.5-150300.3.8.7.s390x.rpm libyui-ncurses-pkg-devel-4.1.5-150300.3.8.1.s390x.rpm libyui-ncurses-pkg15-4.1.5-150300.3.8.1.s390x.rpm libyui-ncurses-rest-api-devel-4.1.5-150300.3.8.6.s390x.rpm libyui-ncurses-rest-api15-4.1.5-150300.3.8.6.s390x.rpm libyui-ncurses-tools-4.1.5-150300.3.8.7.s390x.rpm libyui-ncurses15-4.1.5-150300.3.8.7.s390x.rpm libyui-qt-devel-4.1.5-150300.3.8.6.s390x.rpm libyui-qt-graph-devel-4.1.5-150300.3.8.6.s390x.rpm libyui-qt-graph15-4.1.5-150300.3.8.6.s390x.rpm libyui-qt-pkg-devel-4.1.5-150300.3.8.1.s390x.rpm libyui-qt-pkg15-4.1.5-150300.3.8.1.s390x.rpm libyui-qt-rest-api-devel-4.1.5-150300.3.8.6.s390x.rpm libyui-qt-rest-api15-4.1.5-150300.3.8.6.s390x.rpm libyui-qt15-4.1.5-150300.3.8.6.s390x.rpm libyui-rest-api-devel-4.1.5-150300.3.8.6.s390x.rpm libyui-rest-api15-4.1.5-150300.3.8.6.s390x.rpm libyui15-4.1.5-150300.3.8.7.s390x.rpm perl-yui-4.1.5-150300.3.8.7.s390x.rpm python3-yui-4.1.5-150300.3.8.7.s390x.rpm ruby-yui-4.1.5-150300.3.8.7.s390x.rpm libyui-devel-4.1.5-150300.3.8.7.ppc64le.rpm libyui-ncurses-devel-4.1.5-150300.3.8.7.ppc64le.rpm libyui-ncurses-pkg-devel-4.1.5-150300.3.8.1.ppc64le.rpm libyui-ncurses-pkg15-4.1.5-150300.3.8.1.ppc64le.rpm libyui-ncurses-rest-api-devel-4.1.5-150300.3.8.6.ppc64le.rpm libyui-ncurses-rest-api15-4.1.5-150300.3.8.6.ppc64le.rpm libyui-ncurses-tools-4.1.5-150300.3.8.7.ppc64le.rpm libyui-ncurses15-4.1.5-150300.3.8.7.ppc64le.rpm libyui-qt-devel-4.1.5-150300.3.8.6.ppc64le.rpm libyui-qt-graph-devel-4.1.5-150300.3.8.6.ppc64le.rpm libyui-qt-graph15-4.1.5-150300.3.8.6.ppc64le.rpm libyui-qt-pkg-devel-4.1.5-150300.3.8.1.ppc64le.rpm libyui-qt-pkg15-4.1.5-150300.3.8.1.ppc64le.rpm libyui-qt-rest-api-devel-4.1.5-150300.3.8.6.ppc64le.rpm libyui-qt-rest-api15-4.1.5-150300.3.8.6.ppc64le.rpm libyui-qt15-4.1.5-150300.3.8.6.ppc64le.rpm libyui-rest-api-devel-4.1.5-150300.3.8.6.ppc64le.rpm libyui-rest-api15-4.1.5-150300.3.8.6.ppc64le.rpm libyui15-4.1.5-150300.3.8.7.ppc64le.rpm perl-yui-4.1.5-150300.3.8.7.ppc64le.rpm python3-yui-4.1.5-150300.3.8.7.ppc64le.rpm ruby-yui-4.1.5-150300.3.8.7.ppc64le.rpm libyui-devel-4.1.5-150300.3.8.7.aarch64.rpm libyui-ncurses-devel-4.1.5-150300.3.8.7.aarch64.rpm libyui-ncurses-pkg-devel-4.1.5-150300.3.8.1.aarch64.rpm libyui-ncurses-pkg15-4.1.5-150300.3.8.1.aarch64.rpm libyui-ncurses-rest-api-devel-4.1.5-150300.3.8.6.aarch64.rpm libyui-ncurses-rest-api15-4.1.5-150300.3.8.6.aarch64.rpm libyui-ncurses-tools-4.1.5-150300.3.8.7.aarch64.rpm libyui-ncurses15-4.1.5-150300.3.8.7.aarch64.rpm libyui-qt-devel-4.1.5-150300.3.8.6.aarch64.rpm libyui-qt-graph-devel-4.1.5-150300.3.8.6.aarch64.rpm libyui-qt-graph15-4.1.5-150300.3.8.6.aarch64.rpm libyui-qt-pkg-devel-4.1.5-150300.3.8.1.aarch64.rpm libyui-qt-pkg15-4.1.5-150300.3.8.1.aarch64.rpm libyui-qt-rest-api-devel-4.1.5-150300.3.8.6.aarch64.rpm libyui-qt-rest-api15-4.1.5-150300.3.8.6.aarch64.rpm libyui-qt15-4.1.5-150300.3.8.6.aarch64.rpm libyui-rest-api-devel-4.1.5-150300.3.8.6.aarch64.rpm libyui-rest-api15-4.1.5-150300.3.8.6.aarch64.rpm libyui15-4.1.5-150300.3.8.7.aarch64.rpm perl-yui-4.1.5-150300.3.8.7.aarch64.rpm python3-yui-4.1.5-150300.3.8.7.aarch64.rpm ruby-yui-4.1.5-150300.3.8.7.aarch64.rpm openSUSE-SLE-15.3-2022-330 important SUSE Updates openSUSE-SLE 15.3 This update for glibc fixes the following issues: - CVE-2021-3999: Fixed incorrect errno in getcwd (bsc#1194640) - CVE-2022-23219: Fixed buffer overflow in sunrpc clnt_create for "unix" (bsc#1194768) - CVE-2022-23218: Fixed buffer overflow in sunrpc svcunix_create (bsc#1194770) Features added: - IBM Power 10 string operation improvements (bsc#1194785, jsc#SLE-18195) glibc-2.31-150300.9.12.1.src.rpm glibc-2.31-150300.9.12.1.x86_64.rpm glibc-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-devel-2.31-150300.9.12.1.x86_64.rpm glibc-devel-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-devel-static-2.31-150300.9.12.1.x86_64.rpm glibc-devel-static-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-extra-2.31-150300.9.12.1.x86_64.rpm glibc-html-2.31-150300.9.12.1.noarch.rpm glibc-i18ndata-2.31-150300.9.12.1.noarch.rpm glibc-info-2.31-150300.9.12.1.noarch.rpm glibc-lang-2.31-150300.9.12.1.noarch.rpm glibc-locale-2.31-150300.9.12.1.x86_64.rpm glibc-locale-base-2.31-150300.9.12.1.x86_64.rpm glibc-locale-base-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-profile-2.31-150300.9.12.1.x86_64.rpm glibc-profile-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-utils-2.31-150300.9.12.1.x86_64.rpm glibc-utils-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-utils-src-2.31-150300.9.12.1.src.rpm nscd-2.31-150300.9.12.1.x86_64.rpm glibc-2.31-150300.9.12.1.s390x.rpm glibc-devel-2.31-150300.9.12.1.s390x.rpm glibc-devel-static-2.31-150300.9.12.1.s390x.rpm glibc-extra-2.31-150300.9.12.1.s390x.rpm glibc-locale-2.31-150300.9.12.1.s390x.rpm glibc-locale-base-2.31-150300.9.12.1.s390x.rpm glibc-profile-2.31-150300.9.12.1.s390x.rpm glibc-utils-2.31-150300.9.12.1.s390x.rpm nscd-2.31-150300.9.12.1.s390x.rpm glibc-2.31-150300.9.12.1.ppc64le.rpm glibc-devel-2.31-150300.9.12.1.ppc64le.rpm glibc-devel-static-2.31-150300.9.12.1.ppc64le.rpm glibc-extra-2.31-150300.9.12.1.ppc64le.rpm glibc-locale-2.31-150300.9.12.1.ppc64le.rpm glibc-locale-base-2.31-150300.9.12.1.ppc64le.rpm glibc-profile-2.31-150300.9.12.1.ppc64le.rpm glibc-utils-2.31-150300.9.12.1.ppc64le.rpm nscd-2.31-150300.9.12.1.ppc64le.rpm glibc-2.31-150300.9.12.1.aarch64.rpm glibc-devel-2.31-150300.9.12.1.aarch64.rpm glibc-devel-static-2.31-150300.9.12.1.aarch64.rpm glibc-extra-2.31-150300.9.12.1.aarch64.rpm glibc-locale-2.31-150300.9.12.1.aarch64.rpm glibc-locale-base-2.31-150300.9.12.1.aarch64.rpm glibc-profile-2.31-150300.9.12.1.aarch64.rpm glibc-utils-2.31-150300.9.12.1.aarch64.rpm nscd-2.31-150300.9.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-339 moderate SUSE Updates openSUSE-SLE 15.3 This update for google-droid-fonts fixes the following issue: - Add sources DroidSansFallback.ttf DroidSansFallbackFull.ttf DroidSansMono.ttf: Merge the latest modification from Android project (bsc#1190886). google-droid-fonts-20121204-3.3.1.noarch.rpm google-droid-fonts-20121204-3.3.1.src.rpm openSUSE-SLE-15.3-2022-217 moderate SUSE Updates openSUSE-SLE 15.3 This update for rubygem-asciidoctor fixes the following issues: - Fix a changelog entry by removing a control character that caused issues with createrepo ruby2.5-rubygem-asciidoctor-testsuite-1.5.6.1-3.3.1.x86_64.rpm rubygem-asciidoctor-1.5.6.1-3.3.1.src.rpm ruby2.5-rubygem-asciidoctor-testsuite-1.5.6.1-3.3.1.s390x.rpm ruby2.5-rubygem-asciidoctor-testsuite-1.5.6.1-3.3.1.ppc64le.rpm ruby2.5-rubygem-asciidoctor-testsuite-1.5.6.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-316 moderate SUSE Updates openSUSE-SLE 15.3 This update for vino fixes the following issues: - Remove telepathy dbus service because telepathy is disabled (bsc#1177663) vino-3.22.0-11.3.1.src.rpm vino-3.22.0-11.3.1.x86_64.rpm vino-lang-3.22.0-11.3.1.noarch.rpm vino-3.22.0-11.3.1.s390x.rpm vino-3.22.0-11.3.1.ppc64le.rpm vino-3.22.0-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1099 moderate SUSE Updates openSUSE-SLE 15.3 This update for aaa_base fixes the following issues: - Set net.ipv4.ping_group_range to allow ICMP ping (bsc#1194883) - Include all fixes and changes for systemwide inputrc to remove the 8 bit escape sequence which interfere with UTF-8 multi byte characters as well as support the vi mode of readline library aaa_base-84.87+git20180409.04c9dae-3.57.1.src.rpm aaa_base-84.87+git20180409.04c9dae-3.57.1.x86_64.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.57.1.x86_64.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.57.1.x86_64.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.57.1.x86_64.rpm aaa_base-84.87+git20180409.04c9dae-3.57.1.s390x.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.57.1.s390x.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.57.1.s390x.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.57.1.s390x.rpm aaa_base-84.87+git20180409.04c9dae-3.57.1.ppc64le.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.57.1.ppc64le.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.57.1.ppc64le.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.57.1.ppc64le.rpm aaa_base-84.87+git20180409.04c9dae-3.57.1.aarch64.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.57.1.aarch64.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.57.1.aarch64.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.57.1.aarch64.rpm openSUSE-SLE-15.3-2022-604 low SUSE Updates openSUSE-SLE 15.3 This update for rsyslog fixes the following issues: - update config example in remote.conf to match upstream documentation (bsc#1194669) rsyslog-8.2106.0-4.22.1.src.rpm rsyslog-8.2106.0-4.22.1.x86_64.rpm rsyslog-diag-tools-8.2106.0-4.22.1.x86_64.rpm rsyslog-doc-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-dbi-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-elasticsearch-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-gcrypt-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-gssapi-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-gtls-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-mmnormalize-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-mysql-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-omamqp1-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-omhttpfs-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-omtcl-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-ossl-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-pgsql-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-relp-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-snmp-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-udpspoof-8.2106.0-4.22.1.x86_64.rpm rsyslog-8.2106.0-4.22.1.s390x.rpm rsyslog-diag-tools-8.2106.0-4.22.1.s390x.rpm rsyslog-doc-8.2106.0-4.22.1.s390x.rpm rsyslog-module-dbi-8.2106.0-4.22.1.s390x.rpm rsyslog-module-elasticsearch-8.2106.0-4.22.1.s390x.rpm rsyslog-module-gcrypt-8.2106.0-4.22.1.s390x.rpm rsyslog-module-gssapi-8.2106.0-4.22.1.s390x.rpm rsyslog-module-gtls-8.2106.0-4.22.1.s390x.rpm rsyslog-module-mmnormalize-8.2106.0-4.22.1.s390x.rpm rsyslog-module-mysql-8.2106.0-4.22.1.s390x.rpm rsyslog-module-omamqp1-8.2106.0-4.22.1.s390x.rpm rsyslog-module-omhttpfs-8.2106.0-4.22.1.s390x.rpm rsyslog-module-omtcl-8.2106.0-4.22.1.s390x.rpm rsyslog-module-ossl-8.2106.0-4.22.1.s390x.rpm rsyslog-module-pgsql-8.2106.0-4.22.1.s390x.rpm rsyslog-module-relp-8.2106.0-4.22.1.s390x.rpm rsyslog-module-snmp-8.2106.0-4.22.1.s390x.rpm rsyslog-module-udpspoof-8.2106.0-4.22.1.s390x.rpm rsyslog-8.2106.0-4.22.1.ppc64le.rpm rsyslog-diag-tools-8.2106.0-4.22.1.ppc64le.rpm rsyslog-doc-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-dbi-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-elasticsearch-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-gcrypt-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-gssapi-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-gtls-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-mmnormalize-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-mysql-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-omamqp1-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-omhttpfs-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-omtcl-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-ossl-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-pgsql-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-relp-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-snmp-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-udpspoof-8.2106.0-4.22.1.ppc64le.rpm rsyslog-8.2106.0-4.22.1.aarch64.rpm rsyslog-diag-tools-8.2106.0-4.22.1.aarch64.rpm rsyslog-doc-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-dbi-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-elasticsearch-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-gcrypt-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-gssapi-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-gtls-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-mmnormalize-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-mysql-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-omamqp1-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-omhttpfs-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-omtcl-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-ossl-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-pgsql-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-relp-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-snmp-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-udpspoof-8.2106.0-4.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-526 moderate SUSE Updates openSUSE-SLE 15.3 This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container fixes the following issues: - Update to version 0.49.0 Release notes https://github.com/kubevirt/kubevirt/releases/tag/v0.49.0 - Drop kubevirt-psp-caasp.yaml - Install curl and lsscsi (needed for testing) - Symlink UEFI firmware with AMD SEV support - Install tar package to enable kubectl cp ... - Make a "fixed appliance" for libguestfs - Explicitly install libguestfs{,-devel} and supermin kubevirt-0.49.0-150300.8.10.1.src.rpm kubevirt-container-disk-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-manifests-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-tests-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virt-api-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virt-controller-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virt-handler-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virt-launcher-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virt-operator-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virtctl-0.49.0-150300.8.10.1.x86_64.rpm obs-service-kubevirt_containers_meta-0.49.0-150300.8.10.1.x86_64.rpm openSUSE-SLE-15.3-2022-353 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-rpm-macros fixes the following issues: - Bump version to 10 - %sysusers_create_inline was wrongly marked as deprecated - %sysusers_create can be useful in certain cases and won't go away until we'll move to file triggers. So don't mark it as deprecated too systemd-rpm-macros-10-7.24.1.noarch.rpm systemd-rpm-macros-10-7.24.1.src.rpm openSUSE-SLE-15.3-2022-322 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Fix(network): consistent use of "$gw" for gateway (bsc#1192685) - Fix(install): handle builtin modules (bsc#1194716) dracut-049.1+suse.228.g07676562-3.54.1.src.rpm dracut-049.1+suse.228.g07676562-3.54.1.x86_64.rpm dracut-extra-049.1+suse.228.g07676562-3.54.1.x86_64.rpm dracut-fips-049.1+suse.228.g07676562-3.54.1.x86_64.rpm dracut-ima-049.1+suse.228.g07676562-3.54.1.x86_64.rpm dracut-tools-049.1+suse.228.g07676562-3.54.1.x86_64.rpm dracut-049.1+suse.228.g07676562-3.54.1.s390x.rpm dracut-extra-049.1+suse.228.g07676562-3.54.1.s390x.rpm dracut-fips-049.1+suse.228.g07676562-3.54.1.s390x.rpm dracut-ima-049.1+suse.228.g07676562-3.54.1.s390x.rpm dracut-tools-049.1+suse.228.g07676562-3.54.1.s390x.rpm dracut-049.1+suse.228.g07676562-3.54.1.ppc64le.rpm dracut-extra-049.1+suse.228.g07676562-3.54.1.ppc64le.rpm dracut-fips-049.1+suse.228.g07676562-3.54.1.ppc64le.rpm dracut-ima-049.1+suse.228.g07676562-3.54.1.ppc64le.rpm dracut-tools-049.1+suse.228.g07676562-3.54.1.ppc64le.rpm dracut-049.1+suse.228.g07676562-3.54.1.aarch64.rpm dracut-extra-049.1+suse.228.g07676562-3.54.1.aarch64.rpm dracut-fips-049.1+suse.228.g07676562-3.54.1.aarch64.rpm dracut-ima-049.1+suse.228.g07676562-3.54.1.aarch64.rpm dracut-tools-049.1+suse.228.g07676562-3.54.1.aarch64.rpm openSUSE-SLE-15.3-2022-335 moderate SUSE Updates openSUSE-SLE 15.3 This update for coreutils fixes the following issues: - Add "fuse.portal" as a dummy file system (used in flatpak implementations) (bsc#1189152). coreutils-8.32-150300.3.5.1.src.rpm coreutils-8.32-150300.3.5.1.x86_64.rpm coreutils-doc-8.32-150300.3.5.1.noarch.rpm coreutils-lang-8.32-150300.3.5.1.noarch.rpm coreutils-single-8.32-150300.3.5.1.src.rpm coreutils-single-8.32-150300.3.5.1.x86_64.rpm coreutils-testsuite-8.32-150300.3.5.1.src.rpm coreutils-testsuite-8.32-150300.3.5.1.x86_64.rpm coreutils-8.32-150300.3.5.1.s390x.rpm coreutils-single-8.32-150300.3.5.1.s390x.rpm coreutils-testsuite-8.32-150300.3.5.1.s390x.rpm coreutils-8.32-150300.3.5.1.ppc64le.rpm coreutils-single-8.32-150300.3.5.1.ppc64le.rpm coreutils-testsuite-8.32-150300.3.5.1.ppc64le.rpm coreutils-8.32-150300.3.5.1.aarch64.rpm coreutils-single-8.32-150300.3.5.1.aarch64.rpm coreutils-testsuite-8.32-150300.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-545 moderate SUSE Updates openSUSE-SLE 15.3 This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer, libnbd, nbdkit fixes the following issues: - Update to version 1.43.0 Release notes https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.43.0 - Update to version 1.42.0 Release notes https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.42.0 - Detect SLE15 SP4 build environment - Update to version 1.41.0 Release notes https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.41.0 - Update to version 1.40.0 Release notes https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.40.0 - Install util-linux package (provides blockdev) - Update to version 1.29.4: * Remove deprecated nbdkit-streaming-plugin * Added retry-request-filter, an alternative, more lightweight, filter with different trade-offs for nbdkit-retry-filter. * cc: Document how to create OCaml plugin scripts * cc: Add binding for .cleanup * docs: Document NBDKIT_VERSION_* macros containerized-data-importer-1.43.0-150300.8.6.3.src.rpm containerized-data-importer-api-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-cloner-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-controller-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-importer-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-manifests-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-operator-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-uploadproxy-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-uploadserver-1.43.0-150300.8.6.3.x86_64.rpm libnbd-1.9.3-150300.8.6.1.src.rpm libnbd-1.9.3-150300.8.6.1.x86_64.rpm libnbd-bash-completion-1.9.3-150300.8.6.1.noarch.rpm libnbd-devel-1.9.3-150300.8.6.1.x86_64.rpm libnbd0-1.9.3-150300.8.6.1.x86_64.rpm nbdfuse-1.9.3-150300.8.6.1.x86_64.rpm nbdkit-1.29.4-150300.8.6.1.src.rpm nbdkit-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-bash-completion-1.29.4-150300.8.6.1.noarch.rpm nbdkit-basic-filters-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-basic-plugins-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-curl-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-devel-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-example-plugins-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-gzip-filter-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-nbd-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-python-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-server-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-ssh-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-tar-filter-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-tmpdisk-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-vddk-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-xz-filter-1.29.4-150300.8.6.1.x86_64.rpm obs-service-cdi_containers_meta-1.43.0-150300.8.6.3.x86_64.rpm libnbd-1.9.3-150300.8.6.1.s390x.rpm libnbd-devel-1.9.3-150300.8.6.1.s390x.rpm libnbd0-1.9.3-150300.8.6.1.s390x.rpm nbdfuse-1.9.3-150300.8.6.1.s390x.rpm nbdkit-1.29.4-150300.8.6.1.s390x.rpm nbdkit-basic-filters-1.29.4-150300.8.6.1.s390x.rpm nbdkit-basic-plugins-1.29.4-150300.8.6.1.s390x.rpm nbdkit-curl-plugin-1.29.4-150300.8.6.1.s390x.rpm nbdkit-devel-1.29.4-150300.8.6.1.s390x.rpm nbdkit-example-plugins-1.29.4-150300.8.6.1.s390x.rpm nbdkit-gzip-filter-1.29.4-150300.8.6.1.s390x.rpm nbdkit-nbd-plugin-1.29.4-150300.8.6.1.s390x.rpm nbdkit-python-plugin-1.29.4-150300.8.6.1.s390x.rpm nbdkit-server-1.29.4-150300.8.6.1.s390x.rpm nbdkit-ssh-plugin-1.29.4-150300.8.6.1.s390x.rpm nbdkit-tar-filter-1.29.4-150300.8.6.1.s390x.rpm nbdkit-tmpdisk-plugin-1.29.4-150300.8.6.1.s390x.rpm nbdkit-xz-filter-1.29.4-150300.8.6.1.s390x.rpm libnbd-1.9.3-150300.8.6.1.ppc64le.rpm libnbd-devel-1.9.3-150300.8.6.1.ppc64le.rpm libnbd0-1.9.3-150300.8.6.1.ppc64le.rpm nbdfuse-1.9.3-150300.8.6.1.ppc64le.rpm nbdkit-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-basic-filters-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-basic-plugins-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-curl-plugin-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-devel-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-example-plugins-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-gzip-filter-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-nbd-plugin-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-python-plugin-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-server-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-ssh-plugin-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-tar-filter-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-tmpdisk-plugin-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-xz-filter-1.29.4-150300.8.6.1.ppc64le.rpm libnbd-1.9.3-150300.8.6.1.aarch64.rpm libnbd-devel-1.9.3-150300.8.6.1.aarch64.rpm libnbd0-1.9.3-150300.8.6.1.aarch64.rpm nbdfuse-1.9.3-150300.8.6.1.aarch64.rpm nbdkit-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-basic-filters-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-basic-plugins-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-curl-plugin-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-devel-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-example-plugins-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-gzip-filter-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-nbd-plugin-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-python-plugin-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-server-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-ssh-plugin-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-tar-filter-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-tmpdisk-plugin-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-xz-filter-1.29.4-150300.8.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-546 important SUSE Updates openSUSE-SLE 15.3 This update for monitoring-plugins fixes the following issues: the patch just reverts the problem, if you get more than 64K on stdout - recommend syslog for monitoring-plugins-log, as people probably want to analize logs generated by (r)syslog or journald check_snmp will segfaults at line 489 if number of lines returned by SNMPD is greater than number of defined thresholds - Remove unneeded build requirement on "syslog" - Remove unneeded BuildRequires on python-devel (bsc#1191011) - Call gettextize with --no-changelog to make package build reproducible (bsc#1047218) - Update to 2.3.1: Enhancements * check_curl: Add an option to verify the peer certificate and host using the system CA's Fixes * check_curl: fixed help, usage and errors for TLS 1.3 * check_curl: fixed a potential buffer overflow in url buffer * check_dns: split multiple IP addresses passed in one -a argument * check_curl: added string_statuscode function for printing HTTP/1.1 and HTTP/2 correctly * check_curl: fix crash if http header contains leading spaces * check_curl: display a specific human-readable error message where possible * check_pgsql: Using snprintf which honors the buffers size and guarantees null termination. * check_snmp: put the "c" (to mark a counter) after the perfdata value * check_http: Increase regexp limit * check_http: make -C obvious * check_curl: Increase regexp limit (to 1024 as in check_http) * check_curl: make -C obvious (from check_http) - Update to 2.3 (final): Enhancements * check_dns: allow 'expected address' (-a) to be specified in CIDR notation (IPv4 only). * check_dns: allow for IPv6 RDNS * check_dns: Accept CIDR * check_dns: allow unsorted addresses * check_dns: allow forcing complete match of all addresses * check_apt: add --only-critical switch * check_apt: add -l/--list option to print packages * check_file_age: add range checking * check_file_age: enable to test for maximum file size * check_apt: adding packages-warning option * check_load: Adding top consuming processes option * check_http: Adding Proxy-Authorization and extra headers * check_snmp: make calcualtion of timeout value in help output more clear * check_uptime: new plugin for checking uptime to see how long the system is running * check_curl: check_http replacement based on libcurl * check_http: Allow user to specify HTTP method after proxy CONNECT * check_http: Add new flag --show-body/-B to print body * check_cluster: Added data argument validation * check_icmp: Add IPv6 support * check_icmp: Automatically detect IP protocol * check_icmp: emit error if multiple protocol version * check_disk: add support to display inodes usage in perfdata * check_hpjd: Added -D option to disable warning on 'out of paper' * check_http: support the --show-body/-B flag when --expect is used * check_mysql: allow mariadbclient to be used * check_tcp: add --sni * check_dns: detect unreachable dns service in nslookup output Fixes * Fix regression where check_dhcp was rereading response in a tight loop * check_dns: fix error detection on sles nslookup * check_disk_smb: fix timeout issue * check_swap: repaired -n behaviour * check_icmp: Correctly set address_family on lookup * check_icmp: Do not overwrite -4,-6 on lookup * check_smtp: initializes n before it is used * check_dns: fix typo in parameter description * check_by_ssh: fix child process leak on timeouts * check_mysql: Allow sockets to be specified to -H * check_procs: improve command examples for 'at least' processes * check_disk: include -P switch in help * check_mailq: restore accidentially removed options - change version to 2.3~alpha.$date.$commit changes summarized * detect unreachable dns service in nslookup output * check_curl: host_name may be null * update test parameter according to check_http * check_curl: use CURLOPT_RESOLVE to fix connecting to the right ip * workaround for issue #1550 - better use "ping -4" instead of "ping" if supported * Use size_t instead of int when calling sysctl(3) * check_tcp: add --sni * Fix timeout_interval declarations * check_curl: NSS, parse more date formats from certificate (in -C cert check) * check_curl: more tolerant CN= parsing when checking certificates (hit on Centos 8) * setting no_body to TRUE when we have a HEAD request * some LIBCURL_VERSION checks around HTTP/2 feature * added --http-version option to check_curl to choose HTTP * improved curlhelp_parse_statusline to handle both HTTP/1.x and HTTP/2 * check_curl: updates embedded picohttpparser to newest git version * setting progname of check_curl plugin to check_curl (at least for now) * Allow mariadbclient to be used for check_mysql * fix maxfd being zero * include -P switch in help * check_swap: repaired "-n" behaviour * improve command examples for 'at least' processes * check_mysql: Allow sockets to be specified to -H * Adding packages-warning option to check_apt plugin * Adding print top consuming processes option to check_load * check_snmp: make calcualtion of timeout value in help output more clear * [check_disk] add support to display inodes usage in perfdata * check_by_ssh: fix child process leak on timeouts * check_icmp: Add IPv6 support * check_dns: fix typo in parameter description * Also support the --show-body/-B flag when --expect is used * check_dns: improve support for checking multiple addresses * check_hpjd: Added -D option to disable warning on 'out of paper' * check_icmp: Do not overwrite -4,-6 on lookup * check_icmp: emit error if multiple protocol version * check_icmp: move opts string into a variable * check_cluster.c: Added data argument validation. * check_icmp: Correctly set address_family on lookup * check_icmp: process protocol version args first * check_icmp: Add IPv6 support - drop explicit attr in filelist for check_host and check_rta_multi as they are symlinks to check_icmp - add new subpackage monitoring-plugins-uptime - include upstream fixes for check_swap - simply fix the plugin name in the comment - improve the output if the swap has zero size - use unknown exit code for help/version in plugins - updated context in - monitoring-plugins-mysql should also provide monitoring-plugins-mysql_query - Provide/Obsolete nagios-plugins in old version for better compatibility and to allow dist upgrade (bsc#1114483) freeradius-client-1.1.7-3.2.1.src.rpm freeradius-client-1.1.7-3.2.1.x86_64.rpm freeradius-client-devel-1.1.7-3.2.1.x86_64.rpm freeradius-client-libs-1.1.7-3.2.1.x86_64.rpm monitoring-plugins-2.3.1-3.9.2.src.rpm monitoring-plugins-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-all-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-breeze-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-by_ssh-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-cluster-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-common-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-cups-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dbi-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dbi-mysql-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dbi-pgsql-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dbi-sqlite3-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dhcp-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dig-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-disk-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-disk_smb-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dns-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dummy-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-extras-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-file_age-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-flexlm-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-fping-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-hpjd-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-http-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-icmp-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ide_smart-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ifoperstatus-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ifstatus-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ircd-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ldap-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-load-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-log-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-mailq-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-mrtg-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-mrtgtraf-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-mysql-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-nagios-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-nt-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ntp_peer-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ntp_time-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-nwstat-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-oracle-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-overcr-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-pgsql-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ping-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-procs-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-radius-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-real-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-rpc-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-sensors-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-smtp-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-snmp-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ssh-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-swap-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-tcp-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-time-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ups-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-users-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-wave-2.3.1-3.9.2.x86_64.rpm perl-Crypt-DES-2.07-3.2.1.src.rpm perl-Crypt-DES-2.07-3.2.1.x86_64.rpm perl-Crypt-Rijndael-1.13-3.2.1.src.rpm perl-Crypt-Rijndael-1.13-3.2.1.x86_64.rpm perl-Net-SNMP-6.0.1-3.2.1.noarch.rpm perl-Net-SNMP-6.0.1-3.2.1.src.rpm freeradius-client-1.1.7-3.2.1.s390x.rpm freeradius-client-devel-1.1.7-3.2.1.s390x.rpm freeradius-client-libs-1.1.7-3.2.1.s390x.rpm monitoring-plugins-2.3.1-3.9.2.s390x.rpm monitoring-plugins-all-2.3.1-3.9.2.s390x.rpm monitoring-plugins-breeze-2.3.1-3.9.2.s390x.rpm monitoring-plugins-by_ssh-2.3.1-3.9.2.s390x.rpm monitoring-plugins-cluster-2.3.1-3.9.2.s390x.rpm monitoring-plugins-common-2.3.1-3.9.2.s390x.rpm monitoring-plugins-cups-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dbi-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dbi-mysql-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dbi-pgsql-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dbi-sqlite3-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dhcp-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dig-2.3.1-3.9.2.s390x.rpm monitoring-plugins-disk-2.3.1-3.9.2.s390x.rpm monitoring-plugins-disk_smb-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dns-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dummy-2.3.1-3.9.2.s390x.rpm monitoring-plugins-extras-2.3.1-3.9.2.s390x.rpm monitoring-plugins-file_age-2.3.1-3.9.2.s390x.rpm monitoring-plugins-flexlm-2.3.1-3.9.2.s390x.rpm monitoring-plugins-fping-2.3.1-3.9.2.s390x.rpm monitoring-plugins-hpjd-2.3.1-3.9.2.s390x.rpm monitoring-plugins-http-2.3.1-3.9.2.s390x.rpm monitoring-plugins-icmp-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ide_smart-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ifoperstatus-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ifstatus-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ircd-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ldap-2.3.1-3.9.2.s390x.rpm monitoring-plugins-load-2.3.1-3.9.2.s390x.rpm monitoring-plugins-log-2.3.1-3.9.2.s390x.rpm monitoring-plugins-mailq-2.3.1-3.9.2.s390x.rpm monitoring-plugins-mrtg-2.3.1-3.9.2.s390x.rpm monitoring-plugins-mrtgtraf-2.3.1-3.9.2.s390x.rpm monitoring-plugins-mysql-2.3.1-3.9.2.s390x.rpm monitoring-plugins-nagios-2.3.1-3.9.2.s390x.rpm monitoring-plugins-nt-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ntp_peer-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ntp_time-2.3.1-3.9.2.s390x.rpm monitoring-plugins-nwstat-2.3.1-3.9.2.s390x.rpm monitoring-plugins-oracle-2.3.1-3.9.2.s390x.rpm monitoring-plugins-overcr-2.3.1-3.9.2.s390x.rpm monitoring-plugins-pgsql-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ping-2.3.1-3.9.2.s390x.rpm monitoring-plugins-procs-2.3.1-3.9.2.s390x.rpm monitoring-plugins-radius-2.3.1-3.9.2.s390x.rpm monitoring-plugins-real-2.3.1-3.9.2.s390x.rpm monitoring-plugins-rpc-2.3.1-3.9.2.s390x.rpm monitoring-plugins-smtp-2.3.1-3.9.2.s390x.rpm monitoring-plugins-snmp-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ssh-2.3.1-3.9.2.s390x.rpm monitoring-plugins-swap-2.3.1-3.9.2.s390x.rpm monitoring-plugins-tcp-2.3.1-3.9.2.s390x.rpm monitoring-plugins-time-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ups-2.3.1-3.9.2.s390x.rpm monitoring-plugins-users-2.3.1-3.9.2.s390x.rpm monitoring-plugins-wave-2.3.1-3.9.2.s390x.rpm perl-Crypt-DES-2.07-3.2.1.s390x.rpm perl-Crypt-Rijndael-1.13-3.2.1.s390x.rpm freeradius-client-1.1.7-3.2.1.ppc64le.rpm freeradius-client-devel-1.1.7-3.2.1.ppc64le.rpm freeradius-client-libs-1.1.7-3.2.1.ppc64le.rpm monitoring-plugins-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-all-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-breeze-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-by_ssh-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-cluster-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-common-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-cups-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dbi-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dbi-mysql-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dbi-pgsql-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dbi-sqlite3-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dhcp-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dig-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-disk-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-disk_smb-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dns-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dummy-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-extras-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-file_age-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-flexlm-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-fping-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-hpjd-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-http-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-icmp-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ide_smart-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ifoperstatus-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ifstatus-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ircd-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ldap-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-load-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-log-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-mailq-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-mrtg-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-mrtgtraf-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-mysql-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-nagios-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-nt-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ntp_peer-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ntp_time-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-nwstat-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-oracle-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-overcr-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-pgsql-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ping-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-procs-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-radius-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-real-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-rpc-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-sensors-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-smtp-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-snmp-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ssh-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-swap-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-tcp-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-time-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ups-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-users-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-wave-2.3.1-3.9.2.ppc64le.rpm perl-Crypt-DES-2.07-3.2.1.ppc64le.rpm perl-Crypt-Rijndael-1.13-3.2.1.ppc64le.rpm freeradius-client-1.1.7-3.2.1.aarch64.rpm freeradius-client-devel-1.1.7-3.2.1.aarch64.rpm freeradius-client-libs-1.1.7-3.2.1.aarch64.rpm monitoring-plugins-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-all-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-breeze-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-by_ssh-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-cluster-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-common-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-cups-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dbi-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dbi-mysql-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dbi-pgsql-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dbi-sqlite3-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dhcp-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dig-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-disk-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-disk_smb-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dns-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dummy-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-extras-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-file_age-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-flexlm-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-fping-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-hpjd-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-http-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-icmp-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ide_smart-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ifoperstatus-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ifstatus-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ircd-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ldap-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-load-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-log-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-mailq-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-mrtg-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-mrtgtraf-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-mysql-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-nagios-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-nt-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ntp_peer-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ntp_time-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-nwstat-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-oracle-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-overcr-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-pgsql-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ping-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-procs-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-radius-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-real-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-rpc-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-sensors-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-smtp-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-snmp-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ssh-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-swap-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-tcp-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-time-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ups-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-users-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-wave-2.3.1-3.9.2.aarch64.rpm perl-Crypt-DES-2.07-3.2.1.aarch64.rpm perl-Crypt-Rijndael-1.13-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-957 moderate SUSE Updates openSUSE-SLE 15.3 This update for trilinos fixes the following issues: - Update to version 13.2.0 For information on changes consult the release notes of its sub-packages. - Add dependency for library package to devel package. - Fix by calculating the relative path elements between the 'cmake' directory and the installation directory. This works only if 'Trilinos_INSTALL_LIB_DIR' is relative, while other parts of the code allow it to be absolute. (bsc#1194648) - Fix doc building. gnu-compilers-hpc-1.4-3.16.2.noarch.rpm gnu-compilers-hpc-1.4-3.16.2.src.rpm gnu-compilers-hpc-devel-1.4-3.16.2.noarch.rpm gnu-compilers-hpc-macros-devel-1.4-3.16.2.noarch.rpm gnu10-compilers-hpc-1.4-3.16.2.noarch.rpm gnu10-compilers-hpc-1.4-3.16.2.src.rpm gnu10-compilers-hpc-devel-1.4-3.16.2.noarch.rpm gnu10-compilers-hpc-macros-devel-1.4-3.16.2.noarch.rpm gnu11-compilers-hpc-1.4-3.16.2.noarch.rpm gnu11-compilers-hpc-1.4-3.16.2.src.rpm gnu11-compilers-hpc-devel-1.4-3.16.2.noarch.rpm gnu11-compilers-hpc-macros-devel-1.4-3.16.2.noarch.rpm gnu8-compilers-hpc-1.4-3.16.2.noarch.rpm gnu8-compilers-hpc-1.4-3.16.2.src.rpm gnu8-compilers-hpc-devel-1.4-3.16.2.noarch.rpm gnu8-compilers-hpc-macros-devel-1.4-3.16.2.noarch.rpm gnu9-compilers-hpc-1.4-3.16.2.noarch.rpm gnu9-compilers-hpc-1.4-3.16.2.src.rpm gnu9-compilers-hpc-devel-1.4-3.16.2.noarch.rpm gnu9-compilers-hpc-macros-devel-1.4-3.16.2.noarch.rpm libopenblas-gnu-hpc-0.3.13-150300.5.2.2.x86_64.rpm libopenblas-gnu-hpc-devel-0.3.13-150300.5.2.2.x86_64.rpm libopenblas-pthreads-gnu-hpc-0.3.13-150300.5.2.2.x86_64.rpm libopenblas-pthreads-gnu-hpc-devel-0.3.13-150300.5.2.2.x86_64.rpm libopenblas-pthreads_0_3_13-gnu-hpc-0.3.13-150300.5.2.2.x86_64.rpm libopenblas-pthreads_0_3_13-gnu-hpc-devel-0.3.13-150300.5.2.2.x86_64.rpm libopenblas_0_3_13-gnu-hpc-0.3.13-150300.5.2.2.x86_64.rpm libopenblas_0_3_13-gnu-hpc-devel-0.3.13-150300.5.2.2.x86_64.rpm libopenblas_openmp-devel-0.3.13-150300.5.2.2.x86_64.rpm libopenblas_openmp0-0.3.13-150300.5.2.2.x86_64.rpm libopenblas_pthreads-devel-0.3.13-150300.5.2.3.x86_64.rpm libopenblas_pthreads0-0.3.13-150300.5.2.3.x86_64.rpm libopenblas_serial-devel-0.3.13-150300.5.2.2.x86_64.rpm libopenblas_serial0-0.3.13-150300.5.2.2.x86_64.rpm libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.3.3.x86_64.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.3.3.x86_64.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.3.3.x86_64.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.3.3.x86_64.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.3.2.x86_64.rpm lua-lmod-8.4.28-150300.3.2.3.src.rpm lua-lmod-8.4.28-150300.3.2.3.x86_64.rpm lua-lmod-doc-8.4.28-150300.3.2.3.noarch.rpm lua51-luafilesystem-1.7.0-3.2.3.src.rpm lua51-luafilesystem-1.7.0-3.2.3.x86_64.rpm lua51-luaposix-34.1.1-3.2.3.src.rpm lua51-luaposix-34.1.1-3.2.3.x86_64.rpm lua51-luaterm-0.07-5.2.3.src.rpm lua51-luaterm-0.07-5.2.3.x86_64.rpm lua53-luafilesystem-1.7.0-3.2.3.src.rpm lua53-luafilesystem-1.7.0-3.2.3.x86_64.rpm lua53-luaposix-34.1.1-3.2.3.src.rpm lua53-luaposix-34.1.1-3.2.3.x86_64.rpm lua53-luaterm-0.07-5.2.3.src.rpm lua53-luaterm-0.07-5.2.3.x86_64.rpm luaposix-doc-34.1.1-3.2.3.noarch.rpm mpich-3.3.2-150300.9.2.2.src.rpm mpich-3.3.2-150300.9.2.2.x86_64.rpm mpich-devel-3.3.2-150300.9.2.2.x86_64.rpm mpich-gnu-hpc-3.3.2-150300.9.2.2.x86_64.rpm mpich-gnu-hpc-devel-3.3.2-150300.9.2.2.x86_64.rpm mpich-gnu-hpc-devel-static-3.3.2-150300.9.2.2.x86_64.rpm mpich-gnu-hpc-macros-devel-3.3.2-150300.9.2.2.noarch.rpm mpich-ofi-3.3.2-150300.9.2.2.src.rpm mpich-ofi-3.3.2-150300.9.2.2.x86_64.rpm mpich-ofi-devel-3.3.2-150300.9.2.2.x86_64.rpm mpich-ofi-gnu-hpc-3.3.2-150300.9.2.2.x86_64.rpm mpich-ofi-gnu-hpc-devel-3.3.2-150300.9.2.2.x86_64.rpm mpich-ofi-gnu-hpc-devel-static-3.3.2-150300.9.2.2.x86_64.rpm mpich-ofi-gnu-hpc-macros-devel-3.3.2-150300.9.2.2.noarch.rpm mpich-ofi_3_3_2-gnu-hpc-3.3.2-150300.9.2.2.src.rpm mpich-ofi_3_3_2-gnu-hpc-3.3.2-150300.9.2.2.x86_64.rpm mpich-ofi_3_3_2-gnu-hpc-devel-3.3.2-150300.9.2.2.x86_64.rpm mpich-ofi_3_3_2-gnu-hpc-devel-static-3.3.2-150300.9.2.2.x86_64.rpm mpich-ofi_3_3_2-gnu-hpc-macros-devel-3.3.2-150300.9.2.2.x86_64.rpm mpich_3_3_2-gnu-hpc-3.3.2-150300.9.2.2.src.rpm mpich_3_3_2-gnu-hpc-3.3.2-150300.9.2.2.x86_64.rpm mpich_3_3_2-gnu-hpc-devel-3.3.2-150300.9.2.2.x86_64.rpm mpich_3_3_2-gnu-hpc-devel-static-3.3.2-150300.9.2.2.x86_64.rpm mpich_3_3_2-gnu-hpc-macros-devel-3.3.2-150300.9.2.2.x86_64.rpm openblas-devel-0.3.13-150300.5.2.2.x86_64.rpm openblas-devel-headers-0.3.13-150300.5.2.2.noarch.rpm openblas-pthreads_0_3_13-gnu-hpc-0.3.13-150300.5.2.2.src.rpm openblas-pthreads_0_3_13-gnu-hpc-devel-static-0.3.13-150300.5.2.2.x86_64.rpm openblas_0_3_13-gnu-hpc-0.3.13-150300.5.2.2.src.rpm openblas_0_3_13-gnu-hpc-devel-static-0.3.13-150300.5.2.2.x86_64.rpm openblas_openmp-0.3.13-150300.5.2.2.src.rpm openblas_openmp-devel-static-0.3.13-150300.5.2.2.x86_64.rpm openblas_pthreads-0.3.13-150300.5.2.3.src.rpm openblas_pthreads-devel-static-0.3.13-150300.5.2.3.x86_64.rpm openblas_serial-0.3.13-150300.5.2.2.src.rpm openblas_serial-devel-static-0.3.13-150300.5.2.2.x86_64.rpm trilinos-gnu-mpich-hpc-devel-13.2.0-150300.3.3.3.noarch.rpm trilinos-gnu-mvapich2-hpc-devel-13.2.0-150300.3.3.3.noarch.rpm trilinos-gnu-openmpi2-hpc-devel-13.2.0-150300.3.3.3.noarch.rpm trilinos-gnu-openmpi3-hpc-devel-13.2.0-150300.3.3.3.noarch.rpm trilinos-gnu-openmpi4-hpc-devel-13.2.0-150300.3.3.2.noarch.rpm trilinos-hpc-doc-13.2.0-150300.3.3.3.noarch.rpm trilinos_13_2_0-gnu-mpich-hpc-13.2.0-150300.3.3.3.src.rpm trilinos_13_2_0-gnu-mvapich2-hpc-13.2.0-150300.3.3.3.src.rpm trilinos_13_2_0-gnu-openmpi2-hpc-13.2.0-150300.3.3.3.src.rpm trilinos_13_2_0-gnu-openmpi3-hpc-13.2.0-150300.3.3.3.src.rpm trilinos_13_2_0-gnu-openmpi4-hpc-13.2.0-150300.3.3.2.src.rpm trilinos_13_2_0-hpc-13.2.0-150300.3.3.3.src.rpm libopenblas-gnu-hpc-0.3.13-150300.5.2.2.s390x.rpm libopenblas-gnu-hpc-devel-0.3.13-150300.5.2.2.s390x.rpm libopenblas-pthreads-gnu-hpc-0.3.13-150300.5.2.2.s390x.rpm libopenblas-pthreads-gnu-hpc-devel-0.3.13-150300.5.2.2.s390x.rpm libopenblas-pthreads_0_3_13-gnu-hpc-0.3.13-150300.5.2.2.s390x.rpm libopenblas-pthreads_0_3_13-gnu-hpc-devel-0.3.13-150300.5.2.2.s390x.rpm libopenblas_0_3_13-gnu-hpc-0.3.13-150300.5.2.2.s390x.rpm libopenblas_0_3_13-gnu-hpc-devel-0.3.13-150300.5.2.2.s390x.rpm libopenblas_openmp-devel-0.3.13-150300.5.2.2.s390x.rpm libopenblas_openmp0-0.3.13-150300.5.2.2.s390x.rpm libopenblas_pthreads-devel-0.3.13-150300.5.2.3.s390x.rpm libopenblas_pthreads0-0.3.13-150300.5.2.3.s390x.rpm libopenblas_serial-devel-0.3.13-150300.5.2.2.s390x.rpm libopenblas_serial0-0.3.13-150300.5.2.2.s390x.rpm lua-lmod-8.4.28-150300.3.2.3.s390x.rpm lua51-luafilesystem-1.7.0-3.2.3.s390x.rpm lua51-luaposix-34.1.1-3.2.3.s390x.rpm lua51-luaterm-0.07-5.2.3.s390x.rpm lua53-luafilesystem-1.7.0-3.2.3.s390x.rpm lua53-luaposix-34.1.1-3.2.3.s390x.rpm lua53-luaterm-0.07-5.2.3.s390x.rpm mpich-3.3.2-150300.9.2.2.s390x.rpm mpich-devel-3.3.2-150300.9.2.2.s390x.rpm mpich-gnu-hpc-3.3.2-150300.9.2.2.s390x.rpm mpich-gnu-hpc-devel-3.3.2-150300.9.2.2.s390x.rpm mpich-gnu-hpc-devel-static-3.3.2-150300.9.2.2.s390x.rpm mpich-ofi-3.3.2-150300.9.2.2.s390x.rpm mpich-ofi-devel-3.3.2-150300.9.2.2.s390x.rpm mpich-ofi-gnu-hpc-3.3.2-150300.9.2.2.s390x.rpm mpich-ofi-gnu-hpc-devel-3.3.2-150300.9.2.2.s390x.rpm mpich-ofi-gnu-hpc-devel-static-3.3.2-150300.9.2.2.s390x.rpm mpich-ofi_3_3_2-gnu-hpc-3.3.2-150300.9.2.2.s390x.rpm mpich-ofi_3_3_2-gnu-hpc-devel-3.3.2-150300.9.2.2.s390x.rpm mpich-ofi_3_3_2-gnu-hpc-devel-static-3.3.2-150300.9.2.2.s390x.rpm mpich-ofi_3_3_2-gnu-hpc-macros-devel-3.3.2-150300.9.2.2.s390x.rpm mpich_3_3_2-gnu-hpc-3.3.2-150300.9.2.2.s390x.rpm mpich_3_3_2-gnu-hpc-devel-3.3.2-150300.9.2.2.s390x.rpm mpich_3_3_2-gnu-hpc-devel-static-3.3.2-150300.9.2.2.s390x.rpm mpich_3_3_2-gnu-hpc-macros-devel-3.3.2-150300.9.2.2.s390x.rpm openblas-devel-0.3.13-150300.5.2.2.s390x.rpm openblas-pthreads_0_3_13-gnu-hpc-devel-static-0.3.13-150300.5.2.2.s390x.rpm openblas_0_3_13-gnu-hpc-devel-static-0.3.13-150300.5.2.2.s390x.rpm openblas_openmp-devel-static-0.3.13-150300.5.2.2.s390x.rpm openblas_pthreads-devel-static-0.3.13-150300.5.2.3.s390x.rpm openblas_serial-devel-static-0.3.13-150300.5.2.2.s390x.rpm libopenblas-gnu-hpc-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas-gnu-hpc-devel-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas-pthreads-gnu-hpc-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas-pthreads-gnu-hpc-devel-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas-pthreads_0_3_13-gnu-hpc-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas-pthreads_0_3_13-gnu-hpc-devel-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas_0_3_13-gnu-hpc-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas_0_3_13-gnu-hpc-devel-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas_openmp-devel-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas_openmp0-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas_pthreads-devel-0.3.13-150300.5.2.3.ppc64le.rpm libopenblas_pthreads0-0.3.13-150300.5.2.3.ppc64le.rpm libopenblas_serial-devel-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas_serial0-0.3.13-150300.5.2.2.ppc64le.rpm libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.3.3.ppc64le.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.3.3.ppc64le.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.3.3.ppc64le.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.3.3.ppc64le.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.3.2.ppc64le.rpm lua-lmod-8.4.28-150300.3.2.3.ppc64le.rpm lua51-luafilesystem-1.7.0-3.2.3.ppc64le.rpm lua51-luaposix-34.1.1-3.2.3.ppc64le.rpm lua51-luaterm-0.07-5.2.3.ppc64le.rpm lua53-luafilesystem-1.7.0-3.2.3.ppc64le.rpm lua53-luaposix-34.1.1-3.2.3.ppc64le.rpm lua53-luaterm-0.07-5.2.3.ppc64le.rpm mpich-3.3.2-150300.9.2.2.ppc64le.rpm mpich-devel-3.3.2-150300.9.2.2.ppc64le.rpm mpich-gnu-hpc-3.3.2-150300.9.2.2.ppc64le.rpm mpich-gnu-hpc-devel-3.3.2-150300.9.2.2.ppc64le.rpm mpich-gnu-hpc-devel-static-3.3.2-150300.9.2.2.ppc64le.rpm mpich-ofi-3.3.2-150300.9.2.2.ppc64le.rpm mpich-ofi-devel-3.3.2-150300.9.2.2.ppc64le.rpm mpich-ofi-gnu-hpc-3.3.2-150300.9.2.2.ppc64le.rpm mpich-ofi-gnu-hpc-devel-3.3.2-150300.9.2.2.ppc64le.rpm mpich-ofi-gnu-hpc-devel-static-3.3.2-150300.9.2.2.ppc64le.rpm mpich-ofi_3_3_2-gnu-hpc-3.3.2-150300.9.2.2.ppc64le.rpm mpich-ofi_3_3_2-gnu-hpc-devel-3.3.2-150300.9.2.2.ppc64le.rpm mpich-ofi_3_3_2-gnu-hpc-devel-static-3.3.2-150300.9.2.2.ppc64le.rpm mpich-ofi_3_3_2-gnu-hpc-macros-devel-3.3.2-150300.9.2.2.ppc64le.rpm mpich_3_3_2-gnu-hpc-3.3.2-150300.9.2.2.ppc64le.rpm mpich_3_3_2-gnu-hpc-devel-3.3.2-150300.9.2.2.ppc64le.rpm mpich_3_3_2-gnu-hpc-devel-static-3.3.2-150300.9.2.2.ppc64le.rpm mpich_3_3_2-gnu-hpc-macros-devel-3.3.2-150300.9.2.2.ppc64le.rpm openblas-devel-0.3.13-150300.5.2.2.ppc64le.rpm openblas-pthreads_0_3_13-gnu-hpc-devel-static-0.3.13-150300.5.2.2.ppc64le.rpm openblas_0_3_13-gnu-hpc-devel-static-0.3.13-150300.5.2.2.ppc64le.rpm openblas_openmp-devel-static-0.3.13-150300.5.2.2.ppc64le.rpm openblas_pthreads-devel-static-0.3.13-150300.5.2.3.ppc64le.rpm openblas_serial-devel-static-0.3.13-150300.5.2.2.ppc64le.rpm libopenblas-gnu-hpc-0.3.13-150300.5.2.2.aarch64.rpm libopenblas-gnu-hpc-devel-0.3.13-150300.5.2.2.aarch64.rpm libopenblas-pthreads-gnu-hpc-0.3.13-150300.5.2.2.aarch64.rpm libopenblas-pthreads-gnu-hpc-devel-0.3.13-150300.5.2.2.aarch64.rpm libopenblas-pthreads_0_3_13-gnu-hpc-0.3.13-150300.5.2.2.aarch64.rpm libopenblas-pthreads_0_3_13-gnu-hpc-devel-0.3.13-150300.5.2.2.aarch64.rpm libopenblas_0_3_13-gnu-hpc-0.3.13-150300.5.2.2.aarch64.rpm libopenblas_0_3_13-gnu-hpc-devel-0.3.13-150300.5.2.2.aarch64.rpm libopenblas_openmp-devel-0.3.13-150300.5.2.2.aarch64.rpm libopenblas_openmp0-0.3.13-150300.5.2.2.aarch64.rpm libopenblas_pthreads-devel-0.3.13-150300.5.2.3.aarch64.rpm libopenblas_pthreads0-0.3.13-150300.5.2.3.aarch64.rpm libopenblas_serial-devel-0.3.13-150300.5.2.2.aarch64.rpm libopenblas_serial0-0.3.13-150300.5.2.2.aarch64.rpm libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.3.3.aarch64.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.3.3.aarch64.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.3.3.aarch64.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.3.3.aarch64.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.3.2.aarch64.rpm lua-lmod-8.4.28-150300.3.2.3.aarch64.rpm lua51-luafilesystem-1.7.0-3.2.3.aarch64.rpm lua51-luaposix-34.1.1-3.2.3.aarch64.rpm lua51-luaterm-0.07-5.2.3.aarch64.rpm lua53-luafilesystem-1.7.0-3.2.3.aarch64.rpm lua53-luaposix-34.1.1-3.2.3.aarch64.rpm lua53-luaterm-0.07-5.2.3.aarch64.rpm mpich-3.3.2-150300.9.2.2.aarch64.rpm mpich-devel-3.3.2-150300.9.2.2.aarch64.rpm mpich-gnu-hpc-3.3.2-150300.9.2.2.aarch64.rpm mpich-gnu-hpc-devel-3.3.2-150300.9.2.2.aarch64.rpm mpich-gnu-hpc-devel-static-3.3.2-150300.9.2.2.aarch64.rpm mpich-ofi-3.3.2-150300.9.2.2.aarch64.rpm mpich-ofi-devel-3.3.2-150300.9.2.2.aarch64.rpm mpich-ofi-gnu-hpc-3.3.2-150300.9.2.2.aarch64.rpm mpich-ofi-gnu-hpc-devel-3.3.2-150300.9.2.2.aarch64.rpm mpich-ofi-gnu-hpc-devel-static-3.3.2-150300.9.2.2.aarch64.rpm mpich-ofi_3_3_2-gnu-hpc-3.3.2-150300.9.2.2.aarch64.rpm mpich-ofi_3_3_2-gnu-hpc-devel-3.3.2-150300.9.2.2.aarch64.rpm mpich-ofi_3_3_2-gnu-hpc-devel-static-3.3.2-150300.9.2.2.aarch64.rpm mpich-ofi_3_3_2-gnu-hpc-macros-devel-3.3.2-150300.9.2.2.aarch64.rpm mpich_3_3_2-gnu-hpc-3.3.2-150300.9.2.2.aarch64.rpm mpich_3_3_2-gnu-hpc-devel-3.3.2-150300.9.2.2.aarch64.rpm mpich_3_3_2-gnu-hpc-devel-static-3.3.2-150300.9.2.2.aarch64.rpm mpich_3_3_2-gnu-hpc-macros-devel-3.3.2-150300.9.2.2.aarch64.rpm openblas-devel-0.3.13-150300.5.2.2.aarch64.rpm openblas-pthreads_0_3_13-gnu-hpc-devel-static-0.3.13-150300.5.2.2.aarch64.rpm openblas_0_3_13-gnu-hpc-devel-static-0.3.13-150300.5.2.2.aarch64.rpm openblas_openmp-devel-static-0.3.13-150300.5.2.2.aarch64.rpm openblas_pthreads-devel-static-0.3.13-150300.5.2.3.aarch64.rpm openblas_serial-devel-static-0.3.13-150300.5.2.2.aarch64.rpm openSUSE-SLE-15.3-2022-480 important SUSE Updates openSUSE-SLE 15.3 This update for tiff fixes the following issues: - CVE-2017-17095: Fixed DoS in tools/pal2rgb.c in pal2rgb (bsc#1071031). - CVE-2019-17546: Fixed integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image (bsc#1154365). - CVE-2020-19131: Fixed buffer overflow in tiffcrop that may cause DoS via the invertImage() function (bsc#1190312). - CVE-2020-35521: Fixed memory allocation failure in tif_read.c (bsc#1182808). - CVE-2020-35522: Fixed memory allocation failure in tif_pixarlog.c (bsc#1182809). - CVE-2020-35523: Fixed integer overflow in tif_getimage.c (bsc#1182811). - CVE-2020-35524: Fixed heap-based buffer overflow in TIFF2PDF tool (bsc#1182812). - CVE-2022-22844: Fixed out-of-bounds read in _TIFFmemcpy in tif_unix.c (bsc#1194539). libtiff-devel-32bit-4.0.9-45.5.1.x86_64.rpm libtiff-devel-4.0.9-45.5.1.x86_64.rpm libtiff5-32bit-4.0.9-45.5.1.x86_64.rpm libtiff5-4.0.9-45.5.1.x86_64.rpm tiff-4.0.9-45.5.1.src.rpm tiff-4.0.9-45.5.1.x86_64.rpm libtiff-devel-4.0.9-45.5.1.s390x.rpm libtiff5-4.0.9-45.5.1.s390x.rpm tiff-4.0.9-45.5.1.s390x.rpm libtiff-devel-4.0.9-45.5.1.ppc64le.rpm libtiff5-4.0.9-45.5.1.ppc64le.rpm tiff-4.0.9-45.5.1.ppc64le.rpm libtiff-devel-4.0.9-45.5.1.aarch64.rpm libtiff5-4.0.9-45.5.1.aarch64.rpm tiff-4.0.9-45.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-498 important SUSE Updates openSUSE-SLE 15.3 This update for expat fixes the following issues: - CVE-2022-23852: Fixed signed integer overflow in XML_GetBuffer (bsc#1195054). - CVE-2022-23990: Fixed integer overflow in the doProlog function (bsc#1195217). expat-2.2.5-3.12.1.src.rpm expat-2.2.5-3.12.1.x86_64.rpm libexpat-devel-2.2.5-3.12.1.x86_64.rpm libexpat-devel-32bit-2.2.5-3.12.1.x86_64.rpm libexpat1-2.2.5-3.12.1.x86_64.rpm libexpat1-32bit-2.2.5-3.12.1.x86_64.rpm expat-2.2.5-3.12.1.s390x.rpm libexpat-devel-2.2.5-3.12.1.s390x.rpm libexpat1-2.2.5-3.12.1.s390x.rpm expat-2.2.5-3.12.1.ppc64le.rpm libexpat-devel-2.2.5-3.12.1.ppc64le.rpm libexpat1-2.2.5-3.12.1.ppc64le.rpm expat-2.2.5-3.12.1.aarch64.rpm libexpat-devel-2.2.5-3.12.1.aarch64.rpm libexpat1-2.2.5-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-520 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpm fixes the following issues: - Revert unwanted /usr/bin/python to /usr/bin/python2 change we got with the update to 4.14.3 (bsc#1194968) python-rpm-4.14.3-150300.46.1.src.rpm python2-rpm-4.14.3-150300.46.1.x86_64.rpm python3-rpm-4.14.3-150300.46.1.x86_64.rpm rpm-32bit-4.14.3-150300.46.1.x86_64.rpm rpm-4.14.3-150300.46.1.src.rpm rpm-4.14.3-150300.46.1.x86_64.rpm rpm-build-4.14.3-150300.46.1.x86_64.rpm rpm-devel-4.14.3-150300.46.1.x86_64.rpm rpm-ndb-32bit-4.14.3-150300.46.1.x86_64.rpm rpm-ndb-4.14.3-150300.46.1.src.rpm rpm-ndb-4.14.3-150300.46.1.x86_64.rpm python2-rpm-4.14.3-150300.46.1.s390x.rpm python3-rpm-4.14.3-150300.46.1.s390x.rpm rpm-4.14.3-150300.46.1.s390x.rpm rpm-build-4.14.3-150300.46.1.s390x.rpm rpm-devel-4.14.3-150300.46.1.s390x.rpm rpm-ndb-4.14.3-150300.46.1.s390x.rpm python2-rpm-4.14.3-150300.46.1.ppc64le.rpm python3-rpm-4.14.3-150300.46.1.ppc64le.rpm rpm-4.14.3-150300.46.1.ppc64le.rpm rpm-build-4.14.3-150300.46.1.ppc64le.rpm rpm-devel-4.14.3-150300.46.1.ppc64le.rpm rpm-ndb-4.14.3-150300.46.1.ppc64le.rpm python2-rpm-4.14.3-150300.46.1.aarch64.rpm python3-rpm-4.14.3-150300.46.1.aarch64.rpm rpm-4.14.3-150300.46.1.aarch64.rpm rpm-build-4.14.3-150300.46.1.aarch64.rpm rpm-devel-4.14.3-150300.46.1.aarch64.rpm rpm-ndb-4.14.3-150300.46.1.aarch64.rpm openSUSE-SLE-15.3-2022-273 important SUSE Updates openSUSE-SLE 15.3 This update for google-guest-agent, google-guest-configs, google-guest-oslogin, google-osconfig-agent contains the following fixes: Changes in google-guest-agent: - Update to version 20211116.00 (bsc#1193257, bsc#1193258) * dont duplicate logs (#146) * Add WantedBy network dependencies to google-guest-agent service (#136) * dont try dhcpv6 when not needed (#145) * Integration tests: instance setup (#143) * Integration test: test create and remove google user (#128) * handle comm errors in script runner (#140) * enforce script ordering (#138) * enable ipv6 on secondary interfaces (#133) - from version 20211103.00 * Integration tests: instance setup (#143) - from version 20211027.00 * Integration test: test create and remove google user (#128) - Update to version 20211019.00 * handle comm errors in script runner (#140) - from version 20211015.00 * enforce script ordering (#138) - from version 20211014.00 * enable ipv6 on secondary interfaces (#133) - from version 20211013.00 * dont open ssh tempfile exclusively (#137) - from version 20211011.00 * correct linux startup script order (#135) * Emit sshable attribute (#123) - from version 20210908.1 * restore line (#127) - from version 20210908.00 * New integ test (#124) - from version 20210901.00 * support enable-oslogin-sk key (#120) * match script logging to guest agent (#125) - from version 20210804.00 * Debug logging (#122) - Refresh patches for new version * dont_overwrite_ifcfg.patch - Build with go1.15 for reproducible build results (bsc#1102408) - Update to version 20210707.00 * Use IP address for calling the metadata server. (#116) - from version 20210629.00 * use IP for MDS (#115) - Update to version 20210603.00 * systemd-notify in agentInit (#113) * dont check status (#112) - from version 20210524.00 * more granular service restarts (#111) - from version 20210414.00 * (no functional changes) Changes in google-guest-configs: - Add missing pkg-config dependency to BuildRequires for SLE-12 - Install modprobe configuration files into /etc again on SLE-15-SP2 and older since that's stil the default location on these distributions - Probe udev directory using the "udevdir" pkg-config variable on SLE-15-SP2 and older since the variable got renamed to "udev_dir" in later versions - Remove redundant pkgconfig(udev) from BuildRequires for SLE-12 - Update to version 20211116.00 (bsc#1193257, bsc#1193258) * GCE supports up to 24 NVMe local SSDs, but the regex in the PROGRAM field only looks for the last digit of the given string causing issues when there are >= 10 local SSDs. Changed REGEX to get the last number of the string instead to support the up to 24 local SSDs. (#30) * chmod+x google_nvme_id on EL (#31) - Fix duplicate installation of google_optimize_local_ssd and google_set_multiqueue - Install google_nvme_id into /usr/lib/udev (bsc#1192652, bsc#1192653) - Update to version 20210916.00 * Revert "dont set IP in etc/hosts; remove rsyslog (#26)" (#28) - from version 20210831.00 * restore rsyslog (#27) - from version 20210830.00 * Fix NVMe partition names (#25) - from version 20210824.00 * dont set IP in etc/hosts; remove rsyslog (#26) * update OWNERS - Use %_modprobedir for modprobe.d files (out of /etc) - Use %_sysctldir for sysctl.d files (out of /etc) - Update to version 20210702.00 * use grep for hostname check (#23) - from version 20210629.00 * address set_hostname vuln (#22) - from version 20210324.00 * dracut.conf wants spaces around values (#19) Changes in google-guest-oslogin: - Update to version 20211013.00 (bsc#1193257, bsc#1193258) * remove deprecated binary (#79) - from version 20211001.00 * no message if no groups (#78) - from version 20210907.00 * use sigaction for signals (#76) - from version 20210906.00 * include cstdlib for exit (#75) * catch SIGPIPE in authorized_keys (#73) - from version 20210805.00 * fix double free in ParseJsonToKey (#70) - from version 20210804.00 * fix packaging for authorized_keys_sk (#68) * add authorized_keys_sk (#66) - Add google_authorized_keys_sk to %files section - Remove google_oslogin_control from %files section Changes in google-osconfig-agent: - Update to version 20211117.00 (bsc#1193257, bsc#1193258) * Add retry logic for RegisterAgent (#404) - from version 20211111.01 * e2e_test: drop ubuntu 1604 image as its EOL (#403) - from version 20211111.00 * e2e_test: move to V1 api for OSPolicies (#397) - from version 20211102.00 * Fix context logging and fix label names (#400) - from version 20211028.00 * Add cloudops example for gcloud (#399) - Update to version 20211021.00 * Added patch report logging for Zypper. (#395) - from version 20211012.00 * Replace deprecated instance filters with the new filters (#394) - from version 20211006.00 * Added patch report log messages for Yum and Apt (#392) - from version 20210930.00 * Config: Add package info caching (#391) - from version 20210928.00 * Fixed the runWithPty function to set ctty to child's filedesc (#389) - from version 20210927.00 * e2e_tests: fix a test output mismatch (#390) - from version 20210924.00 * Fix some e2e test failures (#388) - from version 20210923.02 * Correctly check for folder existance in package upgrade (#387) - from version 20210923.01 * ReportInventory: Fix bug in deb/rpm inventory, reduce calls to append (#386) - from version 20210923.00 * Deprecate old config directory in favor of new cache directory (#385) - from version 20210922.02 * Fix rpm/deb package formating for inventory reporting (#384) - from version 20210922.01 * Add centos stream rocky linux and available package tests (#383) - from version 20210922.00 * Add more info logs, actually cleanup unmanaged repos (#382) - from version 20210901.00 * Add E2E tests for Windows Application (#379) * Return lower-case package name (#377) * Update Terraform scripts for multi-project deployments tutorial. (#378) - from version 20210811.00 * Support Windows Application Inventory (#371) - from version 20210723.00 * Send basic inventory with RegisterAgent (#373) - from version 20210722.1 * e2e_tests: move to manually generated osconfig library (#372) - from version 20210722.00 * Create OWNERS file for examples directory (#368) - from version 20210719.00 * Update Zypper patch info parsing (#370) - Build with go1.15 for reproducible build results (bsc#1102408) - Update to version 20210712.1 * Skip getting patch info when no patches are found. (#369) - from version 20210712.00 * Add Terraform scripts for multi-project deployments (#367) - from version 20210709.00 * Add examples/Terraform directory. (#366) - from version 20210707.00 * Fix bug in printing packages to update, return error for zypper patch (#365) - from version 20210629.00 * Add CloudOps examples for CentOS (#364) - Update to version 20210621.00 * chore: Fixing a comment. (#363) - from version 20210617.00 * Use exec.CommandContext so that canceling the context also kills any running processes (#362) - from version 20210608.1 * e2e_tests: point to official osconfig client library (#359) - from version 20210608.00 * e2e_tests: deflake tests (#358) - from version 20210607.00 * Fix build on some architectures (#357) - from version 20210603.00 * Create win-validation-powershell.yaml (#356) - from version 20210602.00 * Agent efficiency improvements/bugfixes/logging updates (#355) * e2e_tests: add tests for ExecResource output (#354) - from version 20210525.00 * Run fieldalignment on all structs (#353) - from version 20210521.00 * Config Task: add error message and ExecResource output recording (#350) * e2e_tests: remove Windows server 1909 and add server 20h2 (#352) * Added a method for logging structured data (#349) google-guest-agent-20211116.00-1.23.1.src.rpm google-guest-agent-20211116.00-1.23.1.x86_64.rpm google-guest-configs-20211116.00-1.16.1.noarch.rpm google-guest-configs-20211116.00-1.16.1.src.rpm google-guest-oslogin-20211013.00-1.24.1.src.rpm google-guest-oslogin-20211013.00-1.24.1.x86_64.rpm google-osconfig-agent-20211117.00-1.14.1.src.rpm google-osconfig-agent-20211117.00-1.14.1.x86_64.rpm google-guest-agent-20211116.00-1.23.1.s390x.rpm google-guest-oslogin-20211013.00-1.24.1.s390x.rpm google-osconfig-agent-20211117.00-1.14.1.s390x.rpm google-guest-agent-20211116.00-1.23.1.ppc64le.rpm google-guest-oslogin-20211013.00-1.24.1.ppc64le.rpm google-osconfig-agent-20211117.00-1.14.1.ppc64le.rpm google-guest-agent-20211116.00-1.23.1.aarch64.rpm google-guest-oslogin-20211013.00-1.24.1.aarch64.rpm google-osconfig-agent-20211117.00-1.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-816 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - CVE-2022-21248: Fixed incomplete deserialization class filtering in ObjectInputStream. (bnc#1194926) - CVE-2022-21277: Fixed incorrect reading of TIFF files in TIFFNullDecompressor. (bnc#1194930) - CVE-2022-21282: Fixed Insufficient URI checks in the XSLT TransformerImpl. (bnc#1194933) - CVE-2022-21283: Fixed unexpected exception thrown in regex Pattern. (bnc#1194937) - CVE-2022-21291: Fixed Incorrect marking of writeable fields. (bnc#1194925) - CVE-2022-21293: Fixed Incomplete checks of StringBuffer and StringBuilder during deserialization. (bnc#1194935) - CVE-2022-21294: Fixed Incorrect IdentityHashMap size checks during deserialization. (bnc#1194934) - CVE-2022-21296: Fixed Incorrect access checks in XMLEntityManager. (bnc#1194932) - CVE-2022-21299: Fixed Infinite loop related to incorrect handling of newlines in XMLEntityScanner. (bnc#1194931) - CVE-2022-21305: Fixed Array indexing issues in LIRGenerator. (bnc#1194939) - CVE-2022-21340: Fixed Excessive resource use when reading JAR manifest attributes. (bnc#1194940) - CVE-2022-21341: Fixed OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream. (bnc#1194941) - CVE-2022-21360: Fixed Excessive memory allocation in BMPImageReader. (bnc#1194929) - CVE-2022-21365: Fixed Integer overflow in BMPImageReader. (bnc#1194928) - CVE-2022-21366: Fixed Excessive memory allocation in TIFF*Decompressor. (bnc#1194927) java-11-openjdk-11.0.14.0-3.74.2.src.rpm java-11-openjdk-11.0.14.0-3.74.2.x86_64.rpm java-11-openjdk-accessibility-11.0.14.0-3.74.2.x86_64.rpm java-11-openjdk-demo-11.0.14.0-3.74.2.x86_64.rpm java-11-openjdk-devel-11.0.14.0-3.74.2.x86_64.rpm java-11-openjdk-headless-11.0.14.0-3.74.2.x86_64.rpm java-11-openjdk-javadoc-11.0.14.0-3.74.2.noarch.rpm java-11-openjdk-jmods-11.0.14.0-3.74.2.x86_64.rpm java-11-openjdk-src-11.0.14.0-3.74.2.x86_64.rpm java-11-openjdk-11.0.14.0-3.74.2.s390x.rpm java-11-openjdk-accessibility-11.0.14.0-3.74.2.s390x.rpm java-11-openjdk-demo-11.0.14.0-3.74.2.s390x.rpm java-11-openjdk-devel-11.0.14.0-3.74.2.s390x.rpm java-11-openjdk-headless-11.0.14.0-3.74.2.s390x.rpm java-11-openjdk-jmods-11.0.14.0-3.74.2.s390x.rpm java-11-openjdk-src-11.0.14.0-3.74.2.s390x.rpm java-11-openjdk-11.0.14.0-3.74.2.ppc64le.rpm java-11-openjdk-accessibility-11.0.14.0-3.74.2.ppc64le.rpm java-11-openjdk-demo-11.0.14.0-3.74.2.ppc64le.rpm java-11-openjdk-devel-11.0.14.0-3.74.2.ppc64le.rpm java-11-openjdk-headless-11.0.14.0-3.74.2.ppc64le.rpm java-11-openjdk-jmods-11.0.14.0-3.74.2.ppc64le.rpm java-11-openjdk-src-11.0.14.0-3.74.2.ppc64le.rpm java-11-openjdk-11.0.14.0-3.74.2.aarch64.rpm java-11-openjdk-accessibility-11.0.14.0-3.74.2.aarch64.rpm java-11-openjdk-demo-11.0.14.0-3.74.2.aarch64.rpm java-11-openjdk-devel-11.0.14.0-3.74.2.aarch64.rpm java-11-openjdk-headless-11.0.14.0-3.74.2.aarch64.rpm java-11-openjdk-jmods-11.0.14.0-3.74.2.aarch64.rpm java-11-openjdk-src-11.0.14.0-3.74.2.aarch64.rpm openSUSE-SLE-15.3-2022-533 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-kiwi fixes the following issues: This version upgrade includes several fixes: - Ensure backward compatibility on deprecated methods This commit ensures backward compatibility for deprecated config bash script utilities. (bsc#1195229) * Fixed regression in compression detection. (bsc#1192975) * index.rst: Change title (bsc#1189294#c2) * suggested in bsc#1189294#c2 for more clarity * change has been discussed with and approved by main author (Marcus S.) * Care for different snapper template locations. (bsc#1192940) * Do not force dracut into a compression setting * Fixed secure boot fallback setup Make sure MokManager gets copied. The name and location of the mok manager is distribution specific in the same way as the shim loader. Thus we need to apply a similar concept for looking it up. (bsc#1187515) * Allow creation of LUKS system with empty key To support cloud platforms better we should allow the creation of an initial(insecure) LUKS encrypted image with an empty passphrase/keyfile. (bsc#1187461, bsc#1187460) * Delete obsolete 'ddb.adapterType' patching When building a vmdk image with pvscsi as adapter type, kiwi implicitly changed the adapter_type from pvscsi to lsilogic because qemu only knows lsilogic. At the end kiwi patched the adapter type in the descriptor of the vmdk header back to pvscsi. That patching seems to be wrong according to information from users and VMware support. This commit deletes the descriptor patching and only leaves the pvscsi setting in the guest configuration(vmx). bsc#1180539) * Make dracut version check more robust The check_dracut_module_versions_compatible_to_kiwi() runtime check calls the package manager from the host and reads the package database from the image root. Doing this requires the package database in the image to be compatible with the package manager on the host. However this cannot be guarenteed and it is more robust to chroot into the image root and call the package manager from there. However, this change also comes with the cost that it's required to have a package manager available in the image root tree. Therefore along with the chroot based call, eventual exceptions from the call are now catched and leads to a debug message in the log file but will not lead the runtime check to fail. I consider the cases without a package database inside of the image to be less critical than the incompatibility issue between the host tooling and the package database in the image. (bsc#1185937) * Fixed setup of repository architecture Unfortunately the architecture reported by uname is not necessarily the same name as used in the repository metadata. Therefore it was not a good idea to set the architecture and manage the name via a mapping table. It also has turned out that repo arch names are distro specific which causes more complexity on an eventual mapping table. In the end this commit changes the way how the repository architecture is setup in a way that we only set the architecture if a name was explicitly specified such that the user keeps full control over it without any mapping magic included (bsc#1185287) * Do not apply default subcommand for derivate containers This commit does not apply the default subcommand for derivate containers. (bsc#1184823) * Added openssl to the core requires openssl is used in kiwi to construct a password hash if the plaintext password feature for user settings is used. (bsc#1184128) dracut-kiwi-lib-9.24.16-3.44.1.x86_64.rpm dracut-kiwi-live-9.24.16-3.44.1.x86_64.rpm dracut-kiwi-oem-dump-9.24.16-3.44.1.x86_64.rpm dracut-kiwi-oem-repart-9.24.16-3.44.1.x86_64.rpm dracut-kiwi-overlay-9.24.16-3.44.1.x86_64.rpm kiwi-man-pages-9.24.16-3.44.1.x86_64.rpm kiwi-pxeboot-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-bootloaders-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-containers-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-core-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-disk-images-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-filesystems-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-image-validation-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-iso-media-9.24.16-3.44.1.x86_64.rpm kiwi-tools-9.24.16-3.44.1.x86_64.rpm python-kiwi-9.24.16-3.44.1.src.rpm python3-kiwi-9.24.16-3.44.1.x86_64.rpm dracut-kiwi-lib-9.24.16-3.44.1.s390x.rpm dracut-kiwi-live-9.24.16-3.44.1.s390x.rpm dracut-kiwi-oem-dump-9.24.16-3.44.1.s390x.rpm dracut-kiwi-oem-repart-9.24.16-3.44.1.s390x.rpm dracut-kiwi-overlay-9.24.16-3.44.1.s390x.rpm kiwi-man-pages-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-bootloaders-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-containers-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-core-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-disk-images-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-filesystems-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-image-validation-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-iso-media-9.24.16-3.44.1.s390x.rpm kiwi-tools-9.24.16-3.44.1.s390x.rpm python3-kiwi-9.24.16-3.44.1.s390x.rpm dracut-kiwi-lib-9.24.16-3.44.1.ppc64le.rpm dracut-kiwi-live-9.24.16-3.44.1.ppc64le.rpm dracut-kiwi-oem-dump-9.24.16-3.44.1.ppc64le.rpm dracut-kiwi-oem-repart-9.24.16-3.44.1.ppc64le.rpm dracut-kiwi-overlay-9.24.16-3.44.1.ppc64le.rpm kiwi-man-pages-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-bootloaders-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-containers-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-core-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-disk-images-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-filesystems-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-image-validation-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-iso-media-9.24.16-3.44.1.ppc64le.rpm kiwi-tools-9.24.16-3.44.1.ppc64le.rpm python3-kiwi-9.24.16-3.44.1.ppc64le.rpm dracut-kiwi-lib-9.24.16-3.44.1.aarch64.rpm dracut-kiwi-live-9.24.16-3.44.1.aarch64.rpm dracut-kiwi-oem-dump-9.24.16-3.44.1.aarch64.rpm dracut-kiwi-oem-repart-9.24.16-3.44.1.aarch64.rpm dracut-kiwi-overlay-9.24.16-3.44.1.aarch64.rpm kiwi-man-pages-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-bootloaders-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-containers-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-core-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-disk-images-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-filesystems-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-image-validation-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-iso-media-9.24.16-3.44.1.aarch64.rpm kiwi-tools-9.24.16-3.44.1.aarch64.rpm python3-kiwi-9.24.16-3.44.1.aarch64.rpm openSUSE-SLE-15.3-2022-376 moderate SUSE Updates openSUSE-SLE 15.3 This update for libqb fixes the following issues: - IPC server: avoid temporary channel priority loss (bsc#1188212). libqb-1.0.3+20190326.a521604-3.6.1.src.rpm libqb20-1.0.3+20190326.a521604-3.6.1.x86_64.rpm libqb20-32bit-1.0.3+20190326.a521604-3.6.1.x86_64.rpm libqb20-1.0.3+20190326.a521604-3.6.1.s390x.rpm libqb20-1.0.3+20190326.a521604-3.6.1.ppc64le.rpm libqb20-1.0.3+20190326.a521604-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-513 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: - Fix wrong default entry when booting snapshot (bsc#1159205). - Improve support for SLE Micro 5.1 on s390x (bsc#1190395). grub2-2.04-150300.22.12.2.src.rpm grub2-2.04-150300.22.12.2.x86_64.rpm grub2-arm64-efi-2.04-150300.22.12.2.noarch.rpm grub2-arm64-efi-debug-2.04-150300.22.12.2.noarch.rpm grub2-branding-upstream-2.04-150300.22.12.2.x86_64.rpm grub2-i386-pc-2.04-150300.22.12.2.noarch.rpm grub2-i386-pc-debug-2.04-150300.22.12.2.noarch.rpm grub2-powerpc-ieee1275-2.04-150300.22.12.2.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-150300.22.12.2.noarch.rpm grub2-snapper-plugin-2.04-150300.22.12.2.noarch.rpm grub2-systemd-sleep-plugin-2.04-150300.22.12.2.noarch.rpm grub2-x86_64-efi-2.04-150300.22.12.2.noarch.rpm grub2-x86_64-efi-debug-2.04-150300.22.12.2.noarch.rpm grub2-x86_64-xen-2.04-150300.22.12.2.noarch.rpm grub2-2.04-150300.22.12.2.s390x.rpm grub2-branding-upstream-2.04-150300.22.12.2.s390x.rpm grub2-s390x-emu-2.04-150300.22.12.2.s390x.rpm grub2-s390x-emu-debug-2.04-150300.22.12.2.s390x.rpm grub2-2.04-150300.22.12.2.ppc64le.rpm grub2-branding-upstream-2.04-150300.22.12.2.ppc64le.rpm grub2-2.04-150300.22.12.2.aarch64.rpm grub2-branding-upstream-2.04-150300.22.12.2.aarch64.rpm openSUSE-SLE-15.3-2022-523 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - systemctl: exit with 1 if no unit files found (bsc#1193841). - add rules for virtual devices (bsc#1193759). - enforce "none" for loop devices (bsc#1193759). systemd-234-24.105.1.src.rpm True systemd-bash-completion-234-24.105.1.noarch.rpm True openSUSE-SLE-15.3-2022-343 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - disable DNSSEC until the following issue is solved: https://github.com/systemd/systemd/issues/10579 - disable fallback DNS servers and fail when no DNS server info could be obtained from the links. - DNSSEC support requires openssl therefore document this build dependency in systemd-network sub-package. - Improve warning messages (bsc#1193086). libsystemd0-246.16-150300.7.36.1.x86_64.rpm True libsystemd0-32bit-246.16-150300.7.36.1.x86_64.rpm True libudev-devel-246.16-150300.7.36.1.x86_64.rpm True libudev-devel-32bit-246.16-150300.7.36.1.x86_64.rpm True libudev1-246.16-150300.7.36.1.x86_64.rpm True libudev1-32bit-246.16-150300.7.36.1.x86_64.rpm True nss-myhostname-246.16-150300.7.36.1.x86_64.rpm True nss-myhostname-32bit-246.16-150300.7.36.1.x86_64.rpm True nss-mymachines-246.16-150300.7.36.1.x86_64.rpm True nss-mymachines-32bit-246.16-150300.7.36.1.x86_64.rpm True nss-resolve-246.16-150300.7.36.1.x86_64.rpm True nss-systemd-246.16-150300.7.36.1.x86_64.rpm True systemd-246.16-150300.7.36.1.src.rpm True systemd-246.16-150300.7.36.1.x86_64.rpm True systemd-32bit-246.16-150300.7.36.1.x86_64.rpm True systemd-container-246.16-150300.7.36.1.x86_64.rpm True systemd-coredump-246.16-150300.7.36.1.x86_64.rpm True systemd-devel-246.16-150300.7.36.1.x86_64.rpm True systemd-doc-246.16-150300.7.36.1.x86_64.rpm True systemd-journal-remote-246.16-150300.7.36.1.x86_64.rpm True systemd-lang-246.16-150300.7.36.1.noarch.rpm True systemd-logger-246.16-150300.7.36.1.x86_64.rpm True systemd-network-246.16-150300.7.36.1.x86_64.rpm True systemd-sysvinit-246.16-150300.7.36.1.x86_64.rpm True udev-246.16-150300.7.36.1.x86_64.rpm True libsystemd0-246.16-150300.7.36.1.s390x.rpm True libudev-devel-246.16-150300.7.36.1.s390x.rpm True libudev1-246.16-150300.7.36.1.s390x.rpm True nss-myhostname-246.16-150300.7.36.1.s390x.rpm True nss-mymachines-246.16-150300.7.36.1.s390x.rpm True nss-resolve-246.16-150300.7.36.1.s390x.rpm True nss-systemd-246.16-150300.7.36.1.s390x.rpm True systemd-246.16-150300.7.36.1.s390x.rpm True systemd-container-246.16-150300.7.36.1.s390x.rpm True systemd-coredump-246.16-150300.7.36.1.s390x.rpm True systemd-devel-246.16-150300.7.36.1.s390x.rpm True systemd-doc-246.16-150300.7.36.1.s390x.rpm True systemd-journal-remote-246.16-150300.7.36.1.s390x.rpm True systemd-logger-246.16-150300.7.36.1.s390x.rpm True systemd-network-246.16-150300.7.36.1.s390x.rpm True systemd-sysvinit-246.16-150300.7.36.1.s390x.rpm True udev-246.16-150300.7.36.1.s390x.rpm True libsystemd0-246.16-150300.7.36.1.ppc64le.rpm True libudev-devel-246.16-150300.7.36.1.ppc64le.rpm True libudev1-246.16-150300.7.36.1.ppc64le.rpm True nss-myhostname-246.16-150300.7.36.1.ppc64le.rpm True nss-mymachines-246.16-150300.7.36.1.ppc64le.rpm True nss-resolve-246.16-150300.7.36.1.ppc64le.rpm True nss-systemd-246.16-150300.7.36.1.ppc64le.rpm True systemd-246.16-150300.7.36.1.ppc64le.rpm True systemd-container-246.16-150300.7.36.1.ppc64le.rpm True systemd-coredump-246.16-150300.7.36.1.ppc64le.rpm True systemd-devel-246.16-150300.7.36.1.ppc64le.rpm True systemd-doc-246.16-150300.7.36.1.ppc64le.rpm True systemd-journal-remote-246.16-150300.7.36.1.ppc64le.rpm True systemd-logger-246.16-150300.7.36.1.ppc64le.rpm True systemd-network-246.16-150300.7.36.1.ppc64le.rpm True systemd-sysvinit-246.16-150300.7.36.1.ppc64le.rpm True udev-246.16-150300.7.36.1.ppc64le.rpm True libsystemd0-246.16-150300.7.36.1.aarch64.rpm True libudev-devel-246.16-150300.7.36.1.aarch64.rpm True libudev1-246.16-150300.7.36.1.aarch64.rpm True nss-myhostname-246.16-150300.7.36.1.aarch64.rpm True nss-mymachines-246.16-150300.7.36.1.aarch64.rpm True nss-resolve-246.16-150300.7.36.1.aarch64.rpm True nss-systemd-246.16-150300.7.36.1.aarch64.rpm True systemd-246.16-150300.7.36.1.aarch64.rpm True systemd-container-246.16-150300.7.36.1.aarch64.rpm True systemd-coredump-246.16-150300.7.36.1.aarch64.rpm True systemd-devel-246.16-150300.7.36.1.aarch64.rpm True systemd-doc-246.16-150300.7.36.1.aarch64.rpm True systemd-journal-remote-246.16-150300.7.36.1.aarch64.rpm True systemd-logger-246.16-150300.7.36.1.aarch64.rpm True systemd-network-246.16-150300.7.36.1.aarch64.rpm True systemd-sysvinit-246.16-150300.7.36.1.aarch64.rpm True udev-246.16-150300.7.36.1.aarch64.rpm True openSUSE-SLE-15.3-2022-340 moderate SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various a regression bugfix. The following non-security bugs were fixed: - drm/radeon: fix error handling in radeon_driver_open_kms that could lead to non-booting systems with Radeon cards (bsc#1195142). cluster-md-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.46.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.46.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-5.3.18-150300.59.46.1.nosrc.rpm True kernel-default-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.46.1.150300.18.29.1.src.rpm True kernel-default-base-5.3.18-150300.59.46.1.150300.18.29.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.46.1.150300.18.29.1.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.46.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.46.1.noarch.rpm True kernel-docs-5.3.18-150300.59.46.1.noarch.rpm True kernel-docs-5.3.18-150300.59.46.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.46.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.46.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.46.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.46.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.46.1.src.rpm True kernel-obs-build-5.3.18-150300.59.46.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.46.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.46.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.46.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.46.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.46.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.46.1.x86_64.rpm True kernel-source-5.3.18-150300.59.46.1.noarch.rpm True kernel-source-5.3.18-150300.59.46.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.46.1.noarch.rpm True kernel-syms-5.3.18-150300.59.46.1.src.rpm True kernel-syms-5.3.18-150300.59.46.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.46.1.150300.18.29.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.46.1.150300.18.29.1.s390x.rpm True kernel-default-devel-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.46.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.46.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.46.1.s390x.rpm True kernel-syms-5.3.18-150300.59.46.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.46.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.46.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.46.1.150300.18.29.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.46.1.150300.18.29.1.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.46.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.46.1.src.rpm True dtb-al-5.3.18-150300.59.46.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.46.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.46.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.46.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.46.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.46.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.46.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.46.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.46.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.46.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.46.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.46.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.46.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.46.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.46.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.46.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.46.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.46.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.46.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.46.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.46.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.46.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.46.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.46.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.46.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.46.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.46.1.150300.18.29.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.46.1.150300.18.29.1.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.46.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.46.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.46.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.46.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.46.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.46.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.46.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True openSUSE-SLE-15.3-2022-321 moderate SUSE Updates openSUSE-SLE 15.3 This update for go fixes the following issues: - Update the go wrapper package to switch to the current stable go1.17 (bsc#1190649) - Add golang Provides for RH/Fedora compatibility go-1.17-3.20.1.src.rpm go-1.17-3.20.1.x86_64.rpm go-doc-1.17-3.20.1.x86_64.rpm go-race-1.17-3.20.1.x86_64.rpm go-1.17-3.20.1.s390x.rpm go-doc-1.17-3.20.1.s390x.rpm go-1.17-3.20.1.ppc64le.rpm go-doc-1.17-3.20.1.ppc64le.rpm go-1.17-3.20.1.aarch64.rpm go-doc-1.17-3.20.1.aarch64.rpm go-race-1.17-3.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-366 critical SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP1 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input (bsc#1195254). - CVE-2022-0330: Fixed flush TLBs before releasing backing store (bsc#1194880). - CVE-2021-45486: Fixed an information leak because the hash table is very small in net/ipv4/route.c (bnc#1194087). - CVE-2021-45095: Fixed refcount leak in pep_sock_accept in net/phonet/pep.c (bnc#1193867). - CVE-2021-44733: Fixed a use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem, that could have occured because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object (bnc#1193767). - CVE-2021-43976: Fixed a flaw that could allow an attacker (who can connect a crafted USB device) to cause a denial of service. (bnc#1192847) - CVE-2021-43975: Fixed a flaw in hw_atl_utils_fw_rpc_wait that could allow an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value. (bsc#1192845) - CVE-2021-4202: Fixed NFC race condition by adding NCI_UNREG flag (bsc#1194529). - CVE-2021-4197: Use cgroup open-time credentials for process migraton perm checks (bsc#1194302). - CVE-2021-4159: Fixed kernel ptr leak vulnerability via BPF in coerce_reg_to_size (bsc#1194227). - CVE-2021-4149: Fixed btrfs unlock newly allocated extent buffer after error (bsc#1194001). - CVE-2021-4135: Fixed zero-initialize memory inside netdevsim for new map's value in function nsim_bpf_map_alloc (bsc#1193927). - CVE-2021-4083: Fixed a read-after-free memory flaw inside the garbage collection for Unix domain socket file handlers when users call close() and fget() simultaneouslyand can potentially trigger a race condition (bnc#1193727). - CVE-2021-4002: Fixed incorrect TLBs flush in hugetlbfs after huge_pmd_unshare (bsc#1192946). - CVE-2021-39657: Fixed out of bounds read due to a missing bounds check in ufshcd_eh_device_reset_handler of ufshcd.c. This could lead to local information disclosure with System execution privileges needed (bnc#1193864). - CVE-2021-39648: Fixed possible disclosure of kernel heap memory due to a race condition in gadget_dev_desc_UDC_show of configfs.c. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1193861). - CVE-2021-3564: Fixed double-free memory corruption in the Linux kernel HCI device initialization subsystem that could have been used by attaching malicious HCI TTY Bluetooth devices. A local user could use this flaw to crash the system (bnc#1186207). - CVE-2021-33098: Fixed a potential denial of service in Intel(R) Ethernet ixgbe driver due to improper input validation. (bsc#1192877) - CVE-2021-28715: Fixed issue with xen/netback to do not queue unlimited number of packages (XSA-392) (bsc#1193442). - CVE-2021-28714: Fixed issue with xen/netback to handle rx queue stall detection (XSA-392) (bsc#1193442). - CVE-2021-28713: Fixed issue with xen/console to harden hvc_xen against event channel storms (XSA-391) (bsc#1193440). - CVE-2021-28712: Fixed issue with xen/netfront to harden netfront against event channel storms (XSA-391) (bsc#1193440). - CVE-2021-28711: Fixed issue with xen/blkfront to harden blkfront against event channel storms (XSA-391) (bsc#1193440). - CVE-2021-0935: Fixed possible out of bounds write in ip6_xmit of ip6_output.c due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192032). - CVE-2021-0920: Fixed a local privilege escalation due to an use after free bug in unix_gc (bsc#1193731). - CVE-2020-27820: Fixed a vulnerability where a use-after-frees in nouveau's postclose() handler could happen if removing device (bsc#1179599). - CVE-2019-15126: Fixed a vulnerability in Broadcom and Cypress Wi-Fi chips, used in RPi family of devices aka "Kr00k". (bsc#1167162) - CVE-2018-25020: Fixed an overflow in the BPF subsystem due to a mishandling of a long jump over an instruction sequence where inner instructions require substantial expansions into multiple BPF instructions. This affects kernel/bpf/core.c and net/core/filter.c (bnc#1193575). The following non-security bugs were fixed: - Bluetooth: fix the erroneous flush_work() order (git-fixes). - Build: Add obsolete_rebuilds_subpackage (boo#1172073 bsc#1191731). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241 bsc#1195166). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - elfcore: fix building with clang (bsc#1169514). - hv_netvsc: Set needed_headroom according to VF (bsc#1193506). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241 bsc#1195166). - kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740). - kernel-binary.spec.in Stop templating the scriptlets for subpackages (bsc#1190358). - kernel-binary.spec.in: add zstd to BuildRequires if used - kernel-binary.spec.in: make sure zstd is supported by kmod if used - kernel-binary.spec: Check for no kernel signing certificates. Also remove unused variable. - kernel-binary.spec: Define $image as rpm macro (bsc#1189841). - kernel-binary.spec: Do not fail silently when KMP is empty (bsc#1190358). Copy the code from kernel-module-subpackage that deals with empty KMPs. - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167). - kernel-binary.spec: Fix kernel-default-base scriptlets after packaging merge. - kernel-binary.spec: Require dwarves for kernel-binary-devel when BTF is enabled (jsc#SLE-17288). - kernel-binary.spec: suse-kernel-rpm-scriptlets required for uninstall as well. - kernel-cert-subpackage: Fix certificate location in scriptlets (bsc#1189841). - kernel-source.spec: install-kernel-tools also required on 15.4 - kernel-spec-macros: Since rpm 4.17 %verbose is unusable (bsc#1191229). The semantic changed in an incompatible way so invoking the macro now causes a build failure. - kprobes: Limit max data_size of the kretprobe instances (bsc#1193669). - livepatch: Avoid CPU hogging with cond_resched (bsc#1071995). - memstick: rtsx_usb_ms: fix UAF (bsc#1194516). - moxart: fix potential use-after-free on remove path (bsc#1194516). - net, xdp: Introduce xdp_init_buff utility routine (bsc#1193506). - net, xdp: Introduce xdp_prepare_buff utility routine (bsc#1193506). - net: Using proper atomic helper (bsc#1186222). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: mana: Add RX fencing (bsc#1193506). - net: mana: Add XDP support (bsc#1193506). - net: mana: Allow setting the number of queues while the NIC is down (bsc#1193506). - net: mana: Fix spelling mistake "calledd" -> "called" (bsc#1193506). - net: mana: Fix the netdev_err()'s vPort argument in mana_init_port() (bsc#1193506). - net: mana: Improve the HWC error handling (bsc#1193506). - net: mana: Support hibernation and kexec (bsc#1193506). - net: mana: Use kcalloc() instead of kzalloc() (bsc#1193506). - objtool: Support Clang non-section symbols in ORC generation (bsc#1169514). - post.sh: detect /usr mountpoint too - recordmcount.pl: fix typo in s390 mcount regex (bsc#1192267). - recordmcount.pl: look for jgnop instruction as well as bcrl on s390 (bsc#1192267). - rpm/kernel-binary.spec.in: Use kmod-zstd provide. This makes it possible to use kmod with ZSTD support on non-Tumbleweed. - rpm/kernel-binary.spec.in: avoid conflicting suse-release suse-release had arbitrary values in staging, we can't use it for dependencies. The filesystem one has to be enough (boo#1184804). - rpm/kernel-binary.spec.in: do not strip vmlinux again (bsc#1193306). - rpm/kernel-binary.spec: Use only non-empty certificates. - rpm/kernel-obs-build.spec.in: make builds reproducible (bsc#1189305). - rpm/kernel-source.rpmlintrc: ignore new include/config files. - rpm/kernel-source.spec.in: do some more for vanilla_only. - rpm: Abolish image suffix (bsc#1189841). - rpm: Abolish scritplet templating (bsc#1189841). Outsource kernel-binary and KMP scriptlets to suse-module-tools. - rpm: Define $certs as rpm macro (bsc#1189841). - rpm: Fold kernel-devel and kernel-source scriptlets into spec files (bsc#1189841). - rpm: fix kmp install path - rpm: use _rpmmacrodir (boo#1191384) - tty: hvc: replace BUG_ON() with negative return value. - vfs: check fd has read access in kernel_read_file_from_fd() (bsc#1194888). - x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (bsc#1169514). - xen/blkfront: do not take local copy of a request from the ring page (git-fixes). - xen/blkfront: do not trust the backend response data blindly (git-fixes). - xen/blkfront: read response from backend only once (git-fixes). - xen/netfront: disentangle tx_skb_freelist (git-fixes). - xen/netfront: do not read data from request on the ring page (git-fixes). - xen/netfront: do not trust the backend response data blindly (git-fixes). - xen/netfront: read response from backend only once (git-fixes). - xen: sync include/xen/interface/io/ring.h with Xen's newest version (git-fixes). - xfrm: fix MTU regression (bsc#1185377, bsc#1194048). kernel-debug-4.12.14-197.105.1.nosrc.rpm True kernel-debug-base-4.12.14-197.105.1.x86_64.rpm True kernel-default-4.12.14-197.105.1.nosrc.rpm True kernel-kvmsmall-4.12.14-197.105.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-197.105.1.x86_64.rpm True kernel-vanilla-4.12.14-197.105.1.nosrc.rpm True kernel-vanilla-4.12.14-197.105.1.x86_64.rpm True kernel-vanilla-base-4.12.14-197.105.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-197.105.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.105.1.x86_64.rpm True kernel-default-man-4.12.14-197.105.1.s390x.rpm True kernel-vanilla-4.12.14-197.105.1.s390x.rpm True kernel-vanilla-base-4.12.14-197.105.1.s390x.rpm True kernel-vanilla-devel-4.12.14-197.105.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.105.1.s390x.rpm True kernel-zfcpdump-4.12.14-197.105.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-197.105.1.s390x.rpm True kernel-debug-base-4.12.14-197.105.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.105.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-197.105.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-197.105.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.105.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.105.1.aarch64.rpm True kernel-vanilla-base-4.12.14-197.105.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-197.105.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.105.1.aarch64.rpm True openSUSE-SLE-15.3-2022-363 critical SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input (bsc#1195254). - CVE-2022-0330: Fixed flush TLBs before releasing backing store (bsc#1194880). - CVE-2022-0286: Fixed null pointer dereference in bond_ipsec_add_sa() that may have lead to local denial of service (bnc#1195371). - CVE-2022-22942: Fixed stale file descriptors on failed usercopy (bsc#1195065). - CVE-2021-45095: Fixed refcount leak in pep_sock_accept in net/phonet/pep.c (bnc#1193867). - CVE-2021-44733: Fixed a use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem, that could have occured because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object (bnc#1193767). - CVE-2021-39657: Fixed out of bounds read due to a missing bounds check in ufshcd_eh_device_reset_handler of ufshcd.c. This could lead to local information disclosure with System execution privileges needed (bnc#1193864). - CVE-2021-39648: Fixed possible disclosure of kernel heap memory due to a race condition in gadget_dev_desc_UDC_show of configfs.c. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1193861). - CVE-2021-22600: Fixed double free bug in packet_set_ring() in net/packet/af_packet.c that could have been exploited by a local user through crafted syscalls to escalate privileges or deny service (bnc#1195184). - CVE-2020-28097: Fixed out-of-bounds read in vgacon subsystem that mishandled software scrollback (bnc#1187723). - CVE-2021-4159: Fixed kernel ptr leak vulnerability via BPF in coerce_reg_to_size (bsc#1194227). The following security references were added to already fixed issues: - CVE-2021-39685: Fixed USB gadget buffer overflow caused by too large endpoint 0 requests (bsc#1193802). The following non-security bugs were fixed: - ACPI: battery: Add the ThinkPad "Not Charging" quirk (git-fixes). - ACPICA: Executer: Fix the REFCLASS_REFOF case in acpi_ex_opcode_1A_0T_1R() (git-fixes). - ACPICA: Fix wrong interpretation of PCC address (git-fixes). - ACPICA: Hardware: Do not flush CPU cache when entering S4 and S5 (git-fixes). - ACPICA: Utilities: Avoid deleting the same object twice in a row (git-fixes). - ACPICA: actypes.h: Expand the ACPI_ACCESS_ definitions (git-fixes). - ALSA: seq: Set upper limit of processed events (git-fixes). - ASoC: mediatek: mt8173: fix device_node leak (git-fixes). - Bluetooth: Fix debugfs entry leak in hci_register_dev() (git-fixes). - Documentation: fix firewire.rst ABI file path error (git-fixes). - HID: apple: Do not reset quirks when the Fn key is not found (git-fixes). - HID: quirks: Allow inverting the absolute X/Y values (git-fixes). - HID: uhid: Fix worker destroying device without any protection (git-fixes). - HID: wacom: Reset expected and received contact counts at the same time (git-fixes). - PCI: Add function 1 DMA alias quirk for Marvell 88SE9125 SATA controller (git-fixes). - RDMA/core: Clean up cq pool mechanism (jsc#SLE-15176). - RDMA/rxe: Remove the unnecessary variable (jsc#SLE-15176). - ar5523: Fix null-ptr-deref with unexpected WDCMSG_TARGET_START reply (git-fixes). - arm64: Kconfig: add a choice for endianness (jsc#SLE-23432). - asix: fix wrong return value in asix_check_host_enable() (git-fixes). - ata: pata_platform: Fix a NULL pointer dereference in __pata_platform_probe() (git-fixes). - ath10k: Fix tx hanging (git-fixes). - ath9k: Fix out-of-bound memcpy in ath9k_hif_usb_rx_stream (git-fixes). - batman-adv: allow netlink usage in unprivileged containers (git-fixes). - btrfs: tree-checker: Add EXTENT_ITEM and METADATA_ITEM check (bsc#1195009). - btrfs: tree-checker: annotate all error branches as unlikely (bsc#1195009). - btrfs: tree-checker: check for BTRFS_BLOCK_FLAG_FULL_BACKREF being set improperly (bsc#1195009). - cgroup/cpuset: Fix a partition bug with hotplug (bsc#1194291). - clk: si5341: Fix clock HW provider cleanup (git-fixes). - crypto: qat - fix undetected PFVF timeout in ACK loop (git-fixes). - drm/amdgpu: fixup bad vram size on gmc v8 (git-fixes). - drm/bridge: megachips: Ensure both bridges are probed before registration (git-fixes). - drm/etnaviv: limit submit sizes (git-fixes). - drm/etnaviv: relax submit size limits (git-fixes). - drm/lima: fix warning when CONFIG_DEBUG_SG=y & CONFIG_DMA_API_DEBUG=y (git-fixes). - drm/msm/dpu: invalid parameter check in dpu_setup_dspp_pcc (git-fixes). - drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable (git-fixes). - drm/msm/hdmi: Fix missing put_device() call in msm_hdmi_get_phy (git-fixes). - drm/msm: Fix wrong size calculation (git-fixes). - drm/nouveau/kms/nv04: use vzalloc for nv04_display (git-fixes). - drm/nouveau/pmu/gm200-: avoid touching PMU outside of DEVINIT/PREOS/ACR (git-fixes). - drm/radeon: fix error handling in radeon_driver_open_kms (git-fixes). - drm: panel-orientation-quirks: Add quirk for the Lenovo Yoga Book X91F/L (git-fixes). - ext4: set csum seed in tmp inode while migrating to extents (bsc#1195267). - floppy: Add max size check for user space request (git-fixes). - gpio: aspeed: Convert aspeed_gpio.lock to raw_spinlock (git-fixes). - gpiolib: acpi: Do not set the IRQ type if the IRQ is already in use (git-fixes). - hv_netvsc: Set needed_headroom according to VF (bsc#1193506). - hwmom: (lm90) Fix citical alarm status for MAX6680/MAX6681 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6646/6647/6649 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6654 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6680 (git-fixes). - hwmon: (lm90) Reduce maximum conversion rate for G781 (git-fixes). - i2c: designware-pci: Fix to change data types of hcnt and lcnt parameters (git-fixes). - i2c: i801: Do not silently correct invalid transfer size (git-fixes). - i2c: mpc: Correct I2C reset procedure (git-fixes). - ibmvnic: Allow extra failures before disabling (bsc#1195073 ltc#195713). - ibmvnic: Update driver return codes (bsc#1195293 ltc#196198). - ibmvnic: do not spin in tasklet (bsc#1195073 ltc#195713). - ibmvnic: init ->running_cap_crqs early (bsc#1195073 ltc#195713). - ibmvnic: remove unused ->wait_capability (bsc#1195073 ltc#195713). - ibmvnic: remove unused defines (bsc#1195293 ltc#196198). - igc: Fix TX timestamp support for non-MSI-X platforms (bsc#1160634). - iwlwifi: fix leaks/bad data after failed firmware load (git-fixes). - iwlwifi: mvm: Fix calculation of frame length (git-fixes). - iwlwifi: mvm: Increase the scan timeout guard to 30 seconds (git-fixes). - iwlwifi: mvm: synchronize with FW after multicast commands (git-fixes). - iwlwifi: remove module loading failure message (git-fixes). - lib82596: Fix IRQ check in sni_82596_probe (git-fixes). - lightnvm: Remove lightnvm implemenation (bsc#1191881). - mac80211: allow non-standard VHT MCS-10/11 (git-fixes). - media: b2c2: Add missing check in flexcop_pci_isr: (git-fixes). - media: coda/imx-vdoa: Handle dma_set_coherent_mask error codes (git-fixes). - media: igorplugusb: receiver overflow should be reported (git-fixes). - media: m920x: do not use stack on USB reads (git-fixes). - media: saa7146: hexium_gemini: Fix a NULL pointer dereference in hexium_attach() (git-fixes). - media: saa7146: hexium_orion: Fix a NULL pointer dereference in hexium_attach() (git-fixes). - media: uvcvideo: Increase UVC_CTRL_CONTROL_TIMEOUT to 5 seconds (git-fixes). - mlxsw: Only advertise link modes supported by both driver and device (bsc#1154488). - mmc: core: Fixup storing of OCR for MMC_QUIRK_NONSTD_SDIO (git-fixes). - mtd: nand: bbt: Fix corner case in bad block table handling (git-fixes). - mtd: rawnand: gpmi: Add ERR007117 protection for nfc_apply_timings (git-fixes). - mtd: rawnand: gpmi: Remove explicit default gpmi clock setting for i.MX6 (git-fixes). - net, xdp: Introduce xdp_init_buff utility routine (bsc#1193506). - net, xdp: Introduce xdp_prepare_buff utility routine (bsc#1193506). - net/mlx5: DR, Proper handling of unsupported Connect-X6DX SW steering (jsc#SLE-8464). - net/mlx5: E-Switch, fix changing vf VLANID (jsc#SLE-15172). - net/mlx5e: Protect encap route dev from concurrent release (jsc#SLE-8464). - net: allow retransmitting a TCP packet if original is still in queue (bsc#1188605 bsc#1187428). - net: bonding: fix bond_xmit_broadcast return value error bug (bsc#1176447). - net: bridge: vlan: fix memory leak in __allowed_ingress (bsc#1176447). - net: bridge: vlan: fix single net device option dumping (bsc#1176447). - net: mana: Add RX fencing (bsc#1193506). - net: mana: Add XDP support (bsc#1193506). - net: sch_generic: aviod concurrent reset and enqueue op for lockless qdisc (bsc#1183405). - net: sched: add barrier to ensure correct ordering for lockless qdisc (bsc#1183405). - net: sched: avoid unnecessary seqcount operation for lockless qdisc (bsc#1183405). - net: sched: fix packet stuck problem for lockless qdisc (bsc#1183405). - net: sched: fix tx action reschedule issue with stopped queue (bsc#1183405). - net: sched: fix tx action rescheduling issue during deactivation (bsc#1183405). - net: sched: replaced invalid qdisc tree flush helper in qdisc_replace (bsc#1183405). - net: sfp: fix high power modules without diagnostic monitoring (bsc#1154353). - netdevsim: set .owner to THIS_MODULE (bsc#1154353). - nfc: llcp: fix NULL error pointer dereference on sendmsg() after failed bind() (git-fixes). - nvme: add 'iopolicy' module parameter (bsc#1177599 bsc#1193096). - phy: uniphier-usb3ss: fix unintended writing zeros to PHY register (git-fixes). - phylib: fix potential use-after-free (git-fixes). - pinctrl: bcm2835: Add support for wake-up interrupts (git-fixes). - pinctrl: bcm2835: Match BCM7211 compatible string (git-fixes). - powerpc/book3s64/radix: make tlb_single_page_flush_ceiling a debugfs entry (bsc#1195183 ltc#193865). - regulator: qcom_smd: Align probe function with rpmh-regulator (git-fixes). - rsi: Fix use-after-free in rsi_rx_done_handler() (git-fixes). - sched/fair: Fix detection of per-CPU kthreads waking a task (git fixes (sched/fair)). - sched/numa: Fix is_core_idle() (git fixes (sched/numa)). - scripts/dtc: dtx_diff: remove broken example from help text (git-fixes). - serial: 8250: of: Fix mapped region size when using reg-offset property (git-fixes). - serial: Fix incorrect rs485 polarity on uart open (git-fixes). - serial: amba-pl011: do not request memory region twice (git-fixes). - serial: core: Keep mctrl register state and cached copy in sync (git-fixes). - serial: pl010: Drop CR register reset on set_termios (git-fixes). - serial: stm32: fix software flow control transfer (git-fixes). - supported.conf: mark rtw88 modules as supported (jsc#SLE-22690) - tty: n_gsm: fix SW flow control encoding/handling (git-fixes). - ucsi_ccg: Check DEV_INT bit only when starting CCG4 (git-fixes). - usb: common: ulpi: Fix crash in ulpi_match() (git-fixes). - usb: gadget: f_fs: Use stream_open() for endpoint files (git-fixes). - usb: gadget: f_sourcesink: Fix isoc transfer for USB_SPEED_SUPER_PLUS (git-fixes). - usb: hub: Add delay for SuperSpeed hub resume to let links transit to U0 (git-fixes). - usb: roles: fix include/linux/usb/role.h compile issue (git-fixes). - usb: typec: tcpm: Do not disconnect while receiving VBUS off (git-fixes). - usb: uhci: add aspeed ast2600 uhci support (git-fixes). - vfio/iommu_type1: replace kfree with kvfree (git-fixes). - video: hyperv_fb: Fix validation of screen resolution (git-fixes). - vxlan: fix error return code in __vxlan_dev_create() (bsc#1154353). - workqueue: Fix unbind_workers() VS wq_worker_running() race (bsc#1195062). - x86/gpu: Reserve stolen memory for first integrated Intel GPU (git-fixes). - xfrm: fix MTU regression (bsc#1185377, bsc#1194048). cluster-md-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True kernel-azure-5.3.18-150300.38.40.4.nosrc.rpm True kernel-azure-5.3.18-150300.38.40.4.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.40.4.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.40.4.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.40.4.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.40.4.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.40.4.noarch.rpm True kernel-source-azure-5.3.18-150300.38.40.4.noarch.rpm True kernel-source-azure-5.3.18-150300.38.40.4.src.rpm True kernel-syms-azure-5.3.18-150300.38.40.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.40.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True openSUSE-SLE-15.3-2022-884 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-jsonschema, python-rfc3987, python-strict-rfc3339 fixes the following issues: - Add patch to fix build with new webcolors. - update to version 3.2.0 (jsc#SLE-18756): * Added a format_nongpl setuptools extra, which installs only format dependencies that are non-GPL (#619). - specfile: * require python-importlib-metadata - update to version 3.1.1: * Temporarily revert the switch to js-regex until #611 and #612 are resolved. - changes from version 3.1.0: - Regular expressions throughout schemas now respect the ECMA 262 dialect, as recommended by the specification (#609). - Activate more of the test suite - Remove tests and benchmarking from the runtime package - Update to v3.0.2 - Fixed a bug where 0 and False were considered equal by const and enum - from v3.0.1 - Fixed a bug where extending validators did not preserve their notion of which validator property contains $id information. - Update to 3.0.1: - Support for Draft 6 and Draft 7 - Draft 7 is now the default - New TypeChecker object for more complex type definitions (and overrides) - Falling back to isodate for the date-time format checker is no longer attempted, in accordance with the specification - Use %license instead of %doc (bsc#1082318) - Remove hashbang from runtime module - Replace PyPI URL with https://github.com/dgerber/rfc3987 - Activate doctests - Add missing runtime dependency on timezone - Replace dead link with GitHub URL - Activate test suite - Trim bias from descriptions. - Initial commit, needed by flex python-attrs-19.3.0-3.4.1.src.rpm python-backports-4.0.0-3.2.1.src.rpm python-configparser2-4.0.0-3.2.1.src.rpm python-pyrsistent-0.14.4-3.2.1.src.rpm python-six-1.14.0-12.1.src.rpm python-six-doc-1.14.0-12.1.noarch.rpm python-six-test-1.14.0-12.1.src.rpm python2-attrs-19.3.0-3.4.1.noarch.rpm python2-backports-4.0.0-3.2.1.noarch.rpm python2-configparser2-4.0.0-3.2.1.noarch.rpm python2-pyrsistent-0.14.4-3.2.1.x86_64.rpm python2-six-1.14.0-12.1.noarch.rpm python3-attrs-19.3.0-3.4.1.noarch.rpm python3-backports-4.0.0-3.2.1.noarch.rpm python3-configparser2-4.0.0-3.2.1.noarch.rpm python3-pyrsistent-0.14.4-3.2.1.x86_64.rpm python3-six-1.14.0-12.1.noarch.rpm python2-pyrsistent-0.14.4-3.2.1.s390x.rpm python3-pyrsistent-0.14.4-3.2.1.s390x.rpm python2-pyrsistent-0.14.4-3.2.1.ppc64le.rpm python3-pyrsistent-0.14.4-3.2.1.ppc64le.rpm python2-pyrsistent-0.14.4-3.2.1.aarch64.rpm python3-pyrsistent-0.14.4-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-548 moderate SUSE Updates openSUSE-SLE 15.3 This update for blog fixes the following issues: - Update to version 2.26 * On s390/x and PPC64 gcc misses unused arg0 - Update to version 2.24 * Avoid install errror due missed directory - Update to version 2.22 * Avoid KillMode=none for newer systemd version as well as rework the systemd unit files of blog (bsc#1186506) - Move to /usr for UsrMerge (bsc#1191057) - Update to version 2.21 * Merge pull request #4 from samueldr/fix/makefile Fixup Makefile for better build system support * Silent new gcc compiler blog-2.26-150300.4.3.1.src.rpm blog-2.26-150300.4.3.1.x86_64.rpm blog-devel-2.26-150300.4.3.1.x86_64.rpm blog-plymouth-2.26-150300.4.3.1.x86_64.rpm libblogger2-2.26-150300.4.3.1.x86_64.rpm blog-2.26-150300.4.3.1.s390x.rpm blog-devel-2.26-150300.4.3.1.s390x.rpm blog-plymouth-2.26-150300.4.3.1.s390x.rpm libblogger2-2.26-150300.4.3.1.s390x.rpm blog-2.26-150300.4.3.1.ppc64le.rpm blog-devel-2.26-150300.4.3.1.ppc64le.rpm blog-plymouth-2.26-150300.4.3.1.ppc64le.rpm libblogger2-2.26-150300.4.3.1.ppc64le.rpm blog-2.26-150300.4.3.1.aarch64.rpm blog-devel-2.26-150300.4.3.1.aarch64.rpm blog-plymouth-2.26-150300.4.3.1.aarch64.rpm libblogger2-2.26-150300.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-674 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-network fixes the following issues: - Don't crash at the end of installation when storing wifi configuration for NetworkManager. (bsc#1187512) augeas-1.10.1-3.5.1.src.rpm augeas-1.10.1-3.5.1.x86_64.rpm augeas-devel-1.10.1-3.5.1.x86_64.rpm augeas-devel-32bit-1.10.1-3.5.1.x86_64.rpm augeas-lense-tests-1.10.1-3.5.1.x86_64.rpm augeas-lenses-1.10.1-3.5.1.x86_64.rpm libaugeas0-1.10.1-3.5.1.x86_64.rpm libaugeas0-32bit-1.10.1-3.5.1.x86_64.rpm yast2-network-4.3.81-150300.3.25.1.noarch.rpm yast2-network-4.3.81-150300.3.25.1.src.rpm augeas-1.10.1-3.5.1.s390x.rpm augeas-devel-1.10.1-3.5.1.s390x.rpm augeas-lense-tests-1.10.1-3.5.1.s390x.rpm augeas-lenses-1.10.1-3.5.1.s390x.rpm libaugeas0-1.10.1-3.5.1.s390x.rpm augeas-1.10.1-3.5.1.ppc64le.rpm augeas-devel-1.10.1-3.5.1.ppc64le.rpm augeas-lense-tests-1.10.1-3.5.1.ppc64le.rpm augeas-lenses-1.10.1-3.5.1.ppc64le.rpm libaugeas0-1.10.1-3.5.1.ppc64le.rpm augeas-1.10.1-3.5.1.aarch64.rpm augeas-devel-1.10.1-3.5.1.aarch64.rpm augeas-lense-tests-1.10.1-3.5.1.aarch64.rpm augeas-lenses-1.10.1-3.5.1.aarch64.rpm libaugeas0-1.10.1-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-388 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-datrie fixes the following issues: - Make build reproducible. (bsc#1041090) python-datrie-0.7.1-4.3.1.src.rpm python2-datrie-0.7.1-4.3.1.x86_64.rpm python3-datrie-0.7.1-4.3.1.x86_64.rpm python2-datrie-0.7.1-4.3.1.s390x.rpm python3-datrie-0.7.1-4.3.1.s390x.rpm python2-datrie-0.7.1-4.3.1.ppc64le.rpm python3-datrie-0.7.1-4.3.1.ppc64le.rpm python2-datrie-0.7.1-4.3.1.aarch64.rpm python3-datrie-0.7.1-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-439 important SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: - 15.3.20220202 (tracked in bsc#933411) - Added kernel parameter changes (bsc#1195107) - Added note about IBM Power10 support (bsc#1192121) - Added note about deprecating XFS V4 (jsc#SLE-22663) - Updated note about unixODBC drivers in production (jsc#SLE-20555) - Added note about RTL8821CE support (jsc#SLE-22690) - Updated KillMode=none note (bsc#1193843) release-notes-sles-15.3.20220202-150300.3.20.1.noarch.rpm release-notes-sles-15.3.20220202-150300.3.20.1.src.rpm openSUSE-SLE-15.3-2022-352 moderate SUSE Updates openSUSE-SLE 15.3 This update for release-notes-ha fixes the following issues: - 15.3.20220202 (tracked in bsc#933411) - Added note about pingd deprecation (jsc#DOCTEAM-62) - Added note about python-cluster-preflight-check deprecation (jsc#SLE-22898) - Removed mention of SES (bsc#1188305) - Updated links (bsc#1187664) release-notes-ha-15.3.20220202-150300.3.3.1.noarch.rpm release-notes-ha-15.3.20220202-150300.3.3.1.src.rpm openSUSE-SLE-15.3-2022-378 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - attrd: check election status upon loss of a voter to prevent unexpected pending (bsc#1191676) libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.16.1.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.16.1.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.16.1.src.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.16.1.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.16.1.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-150300.4.16.1.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.16.1.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.16.1.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.16.1.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.16.1.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.16.1.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.16.1.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.16.1.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.16.1.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.16.1.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.16.1.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.16.1.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.16.1.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.16.1.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.16.1.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.16.1.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-584 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Fix inspector module export function (bsc#1097531) - Add all ssh kwargs to sanitize_kwargs method - Wipe NOTIFY_SOCKET from env in cmdmod (bsc#1193357) - Don't check for cached pillar errors on state.apply (bsc#1190781) - Simplify "transactional_update" module to not use SSH wrapper and allow more flexible execution - Add "--no-return-event" option to salt-call to prevent sending return event back to master. - Make "state.highstate" to acts on concurrent flag. python3-salt-3002.2-150300.53.7.2.x86_64.rpm True salt-3002.2-150300.53.7.2.src.rpm True salt-3002.2-150300.53.7.2.x86_64.rpm True salt-api-3002.2-150300.53.7.2.x86_64.rpm True salt-bash-completion-3002.2-150300.53.7.2.noarch.rpm True salt-cloud-3002.2-150300.53.7.2.x86_64.rpm True salt-doc-3002.2-150300.53.7.2.x86_64.rpm True salt-fish-completion-3002.2-150300.53.7.2.noarch.rpm True salt-master-3002.2-150300.53.7.2.x86_64.rpm True salt-minion-3002.2-150300.53.7.2.x86_64.rpm True salt-proxy-3002.2-150300.53.7.2.x86_64.rpm True salt-ssh-3002.2-150300.53.7.2.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.7.2.x86_64.rpm True salt-syndic-3002.2-150300.53.7.2.x86_64.rpm True salt-transactional-update-3002.2-150300.53.7.2.x86_64.rpm True salt-zsh-completion-3002.2-150300.53.7.2.noarch.rpm True python3-salt-3002.2-150300.53.7.2.s390x.rpm True salt-3002.2-150300.53.7.2.s390x.rpm True salt-api-3002.2-150300.53.7.2.s390x.rpm True salt-cloud-3002.2-150300.53.7.2.s390x.rpm True salt-doc-3002.2-150300.53.7.2.s390x.rpm True salt-master-3002.2-150300.53.7.2.s390x.rpm True salt-minion-3002.2-150300.53.7.2.s390x.rpm True salt-proxy-3002.2-150300.53.7.2.s390x.rpm True salt-ssh-3002.2-150300.53.7.2.s390x.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.7.2.s390x.rpm True salt-syndic-3002.2-150300.53.7.2.s390x.rpm True salt-transactional-update-3002.2-150300.53.7.2.s390x.rpm True python3-salt-3002.2-150300.53.7.2.ppc64le.rpm True salt-3002.2-150300.53.7.2.ppc64le.rpm True salt-api-3002.2-150300.53.7.2.ppc64le.rpm True salt-cloud-3002.2-150300.53.7.2.ppc64le.rpm True salt-doc-3002.2-150300.53.7.2.ppc64le.rpm True salt-master-3002.2-150300.53.7.2.ppc64le.rpm True salt-minion-3002.2-150300.53.7.2.ppc64le.rpm True salt-proxy-3002.2-150300.53.7.2.ppc64le.rpm True salt-ssh-3002.2-150300.53.7.2.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.7.2.ppc64le.rpm True salt-syndic-3002.2-150300.53.7.2.ppc64le.rpm True salt-transactional-update-3002.2-150300.53.7.2.ppc64le.rpm True python3-salt-3002.2-150300.53.7.2.aarch64.rpm True salt-3002.2-150300.53.7.2.aarch64.rpm True salt-api-3002.2-150300.53.7.2.aarch64.rpm True salt-cloud-3002.2-150300.53.7.2.aarch64.rpm True salt-doc-3002.2-150300.53.7.2.aarch64.rpm True salt-master-3002.2-150300.53.7.2.aarch64.rpm True salt-minion-3002.2-150300.53.7.2.aarch64.rpm True salt-proxy-3002.2-150300.53.7.2.aarch64.rpm True salt-ssh-3002.2-150300.53.7.2.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.7.2.aarch64.rpm True salt-syndic-3002.2-150300.53.7.2.aarch64.rpm True salt-transactional-update-3002.2-150300.53.7.2.aarch64.rpm True openSUSE-SLE-15.3-2022-527 moderate SUSE Updates openSUSE-SLE 15.3 This update for bcm43xx-firmware fixes the following issues: - Introduce firmware file for Raspberry Pi 400's bluetooth. (bsc#1195451) bcm43xx-firmware-20180314-150300.23.5.1.noarch.rpm bcm43xx-firmware-20180314-150300.23.5.1.src.rpm openSUSE-SLE-15.3-2022-522 moderate SUSE Updates openSUSE-SLE 15.3 This update for fetchmail fixes the following issues: - Restore autoprobe functionality (bsc#1193894) fetchmail-6.4.22-20.26.1.src.rpm fetchmail-6.4.22-20.26.1.x86_64.rpm fetchmailconf-6.4.22-20.26.1.x86_64.rpm fetchmail-6.4.22-20.26.1.s390x.rpm fetchmailconf-6.4.22-20.26.1.s390x.rpm fetchmail-6.4.22-20.26.1.ppc64le.rpm fetchmailconf-6.4.22-20.26.1.ppc64le.rpm fetchmail-6.4.22-20.26.1.aarch64.rpm fetchmailconf-6.4.22-20.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-817 moderate SUSE Updates openSUSE-SLE 15.3 This update for xstream fixes the following issues: - CVE-2021-43859: Fixed a denial of service when unmarshalling highly recursive collections or maps (bsc#1195458). xstream-1.4.19-3.18.2.noarch.rpm xstream-1.4.19-3.18.2.src.rpm xstream-benchmark-1.4.19-3.18.2.noarch.rpm xstream-javadoc-1.4.19-3.18.2.noarch.rpm xstream-parent-1.4.19-3.18.2.noarch.rpm openSUSE-SLE-15.3-2022-803 important SUSE Updates openSUSE-SLE 15.3 This update for python-lxml fixes the following issues: - CVE-2018-19787: Fixed XSS vulnerability via unescaped URL (bsc#1118088). - CVE-2021-28957: Fixed XSS vulnerability ia HTML5 attributes unescaped (bsc#1184177). - CVE-2021-43818: Fixed XSS vulnerability via script content in SVG images using data URIs (bnc#1193752). - CVE-2020-27783: Fixed mutation XSS with improper parser use (bnc#1179534). python-lxml-4.7.1-3.7.1.src.rpm python2-lxml-4.7.1-3.7.1.x86_64.rpm python2-lxml-devel-4.7.1-3.7.1.x86_64.rpm python3-lxml-4.7.1-3.7.1.x86_64.rpm python3-lxml-devel-4.7.1-3.7.1.x86_64.rpm python2-lxml-4.7.1-3.7.1.s390x.rpm python2-lxml-devel-4.7.1-3.7.1.s390x.rpm python3-lxml-4.7.1-3.7.1.s390x.rpm python3-lxml-devel-4.7.1-3.7.1.s390x.rpm python2-lxml-4.7.1-3.7.1.ppc64le.rpm python2-lxml-devel-4.7.1-3.7.1.ppc64le.rpm python3-lxml-4.7.1-3.7.1.ppc64le.rpm python3-lxml-devel-4.7.1-3.7.1.ppc64le.rpm python2-lxml-4.7.1-3.7.1.aarch64.rpm python2-lxml-devel-4.7.1-3.7.1.aarch64.rpm python3-lxml-4.7.1-3.7.1.aarch64.rpm python3-lxml-devel-4.7.1-3.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-344 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-kiwi_metainfo_helper fixes the following issues: - Generate OS_VERSION based on os-release VERSION (bsc#1195061). - Add test suite obs-service-kiwi_metainfo_helper-0.5-1.15.1.noarch.rpm obs-service-kiwi_metainfo_helper-0.5-1.15.1.src.rpm openSUSE-SLE-15.3-2022-479 important SUSE Updates openSUSE-SLE 15.3 This update for virglrenderer fixes the following issues: - CVE-2022-0135: Fixed out-of-bonds write in read_transfer_data() (bsc#1195389). libvirglrenderer0-0.6.0-4.9.1.x86_64.rpm virglrenderer-0.6.0-4.9.1.src.rpm virglrenderer-devel-0.6.0-4.9.1.x86_64.rpm virglrenderer-test-server-0.6.0-4.9.1.x86_64.rpm libvirglrenderer0-0.6.0-4.9.1.s390x.rpm virglrenderer-devel-0.6.0-4.9.1.s390x.rpm virglrenderer-test-server-0.6.0-4.9.1.s390x.rpm libvirglrenderer0-0.6.0-4.9.1.ppc64le.rpm virglrenderer-devel-0.6.0-4.9.1.ppc64le.rpm virglrenderer-test-server-0.6.0-4.9.1.ppc64le.rpm libvirglrenderer0-0.6.0-4.9.1.aarch64.rpm virglrenderer-devel-0.6.0-4.9.1.aarch64.rpm virglrenderer-test-server-0.6.0-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-519 moderate SUSE Updates openSUSE-SLE 15.3 This update for sysstat fixes the following issues: - Fix possible segfault (bsc#1194679). sysstat-12.0.2-3.33.1.src.rpm sysstat-12.0.2-3.33.1.x86_64.rpm sysstat-isag-12.0.2-3.33.1.x86_64.rpm sysstat-12.0.2-3.33.1.s390x.rpm sysstat-isag-12.0.2-3.33.1.s390x.rpm sysstat-12.0.2-3.33.1.ppc64le.rpm sysstat-isag-12.0.2-3.33.1.ppc64le.rpm sysstat-12.0.2-3.33.1.aarch64.rpm sysstat-isag-12.0.2-3.33.1.aarch64.rpm openSUSE-SLE-15.3-2022-595 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: ansible: - Require python macros for building mgr-cfg: - Version 4.2.6-1 * Do not build python 2 package for SLE15SP4 and higher - Version 4.2.5-1 * do not build python 2 package for SLE15 - Version 4.2.4-1 * Fix python selinux package name depending on build target (bsc#1193600) mgr-custom-info: - Version 4.2.3-1 * require python macros for building mgr-osad: - Version 4.2.7-1 * Do not build python 2 package for SLE15SP4 and higher * require python macros for building mgr-push: - Version 4.2.4-1 * Do not build python 2 package for SLE15SP4 and higher mgr-virtualization: - Version 4.2.3-1 * Do not build python 2 package for SLE15SP4 and higher * require python macros for building rhnlib: - Version 4.2.5-1 * do not build python 2 package for SLE15 spacecmd: - Version 4.2.15-1 * require python macros for building spacewalk-client-tools: - Version 4.2.16-1 * do not build python 2 package for SLE15 * require python macros for building spacewalk-koan: - Version 4.2.5-1 * Do not build python 2 package for SLE15SP4 and higher spacewalk-oscap: - Version 4.2.3-1 * Do not build python 2 package for SLE15SP4 and higher * require python macros for building spacewalk-remote-utils: - Version 4.2.2-1 * require python macros for building suseRegisterInfo: - Version 4.2.5-1 * require python macros for building * Do not build python 2 package for SLE15 and higher uyuni-common-libs: - Version 4.2.6-1 * Read modularity data from DISTTAG tag as fallback (bsc#1192487) * require python macros for building zypp-plugin-spacewalk: - 1.0.11 * require python macros for building ansible-2.9.21-1.10.1.noarch.rpm ansible-2.9.21-1.10.1.src.rpm ansible-doc-2.9.21-1.10.1.noarch.rpm ansible-test-2.9.21-1.10.1.noarch.rpm python2-rhnlib-4.2.5-3.31.1.noarch.rpm python3-rhnlib-4.2.5-3.31.1.noarch.rpm rhnlib-4.2.5-3.31.1.src.rpm spacecmd-4.2.15-3.74.1.noarch.rpm spacecmd-4.2.15-3.74.1.src.rpm openSUSE-SLE-15.3-2022-652 moderate SUSE Updates openSUSE-SLE 15.3 This update for raspberrypi-eeprom fixes the following issues: Update to version 2021.04.29 (bsc#1194950) - Use upstream version schema (year.month.day) instead of arbitrary 0.0 - Add support for NVMe to the bootloader with a new NVMe boot mode - Add support for [cm4] and [pi400] config conditionals filters - TFTP - reply to duplicate ACKS - Skip rendering of HDMI diagnostics display for the first 8 seconds unless an error occurs - Add support for the BCM2711 XHCI controller - BOOT_ORDER 0x5 - Add XHCI protocol layer fixes for non-VLI controllers - Avoid USB MSD timeout of there is only one device - Fix recovery.bin error handler so that the LED error pattern is still displayed even if HDMI or SDRAM fail - Fix GPIO expander reset issue on some Pi4B 1.1 to 1.3 boards - Fix regression for GPIO expander reset change which caused PMIC reset to get card out of 1V8 mode to be missed - Timeout USB MSD commands and move to the next boot mode if a device stops responding - Add support for booting from the BCM2711 XHCI controller which is the USB-C socket on Pi 4B / Pi 400 and the type A sockets on Compute Module 4 IO board - Validate SDRAM in recovery mode raspberrypi-eeprom-2021.04.29-150300.3.3.1.noarch.rpm raspberrypi-eeprom-2021.04.29-150300.3.3.1.src.rpm raspberrypi-eeprom-firmware-2021.04.29-150300.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-525 moderate SUSE Updates openSUSE-SLE 15.3 This update for polkit fixes the following issues: - CVE-2021-4115: Fixed a denial of service via file descriptor leak (bsc#1195542). libpolkit0-0.116-3.9.1.x86_64.rpm libpolkit0-32bit-0.116-3.9.1.x86_64.rpm polkit-0.116-3.9.1.src.rpm polkit-0.116-3.9.1.x86_64.rpm polkit-devel-0.116-3.9.1.x86_64.rpm polkit-doc-0.116-3.9.1.noarch.rpm typelib-1_0-Polkit-1_0-0.116-3.9.1.x86_64.rpm libpolkit0-0.116-3.9.1.s390x.rpm polkit-0.116-3.9.1.s390x.rpm polkit-devel-0.116-3.9.1.s390x.rpm typelib-1_0-Polkit-1_0-0.116-3.9.1.s390x.rpm libpolkit0-0.116-3.9.1.ppc64le.rpm polkit-0.116-3.9.1.ppc64le.rpm polkit-devel-0.116-3.9.1.ppc64le.rpm typelib-1_0-Polkit-1_0-0.116-3.9.1.ppc64le.rpm libpolkit0-0.116-3.9.1.aarch64.rpm polkit-0.116-3.9.1.aarch64.rpm polkit-devel-0.116-3.9.1.aarch64.rpm typelib-1_0-Polkit-1_0-0.116-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-675 moderate SUSE Updates openSUSE-SLE 15.3 This update for ldns fixes the following issues: - CVE-2020-19860: Fixed heap-based out of bounds read when verifying a zone file (bsc#1195057). - CVE-2020-19861: Fixed heap-based out of bounds read in ldns_nsec3_salt_data() (bsc#1195058). ldns-1.7.0-4.6.1.src.rpm ldns-1.7.0-4.6.1.x86_64.rpm ldns-devel-1.7.0-4.6.1.x86_64.rpm libldns2-1.7.0-4.6.1.x86_64.rpm perl-DNS-LDNS-1.7.0-4.6.1.x86_64.rpm python3-ldns-1.7.0-4.6.1.x86_64.rpm ldns-1.7.0-4.6.1.s390x.rpm ldns-devel-1.7.0-4.6.1.s390x.rpm libldns2-1.7.0-4.6.1.s390x.rpm perl-DNS-LDNS-1.7.0-4.6.1.s390x.rpm python3-ldns-1.7.0-4.6.1.s390x.rpm ldns-1.7.0-4.6.1.ppc64le.rpm ldns-devel-1.7.0-4.6.1.ppc64le.rpm libldns2-1.7.0-4.6.1.ppc64le.rpm perl-DNS-LDNS-1.7.0-4.6.1.ppc64le.rpm python3-ldns-1.7.0-4.6.1.ppc64le.rpm ldns-1.7.0-4.6.1.aarch64.rpm ldns-devel-1.7.0-4.6.1.aarch64.rpm libldns2-1.7.0-4.6.1.aarch64.rpm perl-DNS-LDNS-1.7.0-4.6.1.aarch64.rpm python3-ldns-1.7.0-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-370 critical SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input (bsc#1195254). - CVE-2022-0330: Fixed flush TLBs before releasing backing store (bsc#1194880). - CVE-2022-0286: Fixed null pointer dereference in bond_ipsec_add_sa() that may have lead to local denial of service (bnc#1195371). - CVE-2022-22942: Fixed stale file descriptors on failed usercopy (bsc#1195065). - CVE-2021-45095: Fixed refcount leak in pep_sock_accept in net/phonet/pep.c (bnc#1193867). - CVE-2021-44733: Fixed a use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem, that could have occured because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object (bnc#1193767). - CVE-2021-39685: Fixed USB gadget buffer overflow caused by too large endpoint 0 requests (bsc#1193802). - CVE-2021-39657: Fixed out of bounds read due to a missing bounds check in ufshcd_eh_device_reset_handler of ufshcd.c. This could lead to local information disclosure with System execution privileges needed (bnc#1193864). - CVE-2021-39648: Fixed possible disclosure of kernel heap memory due to a race condition in gadget_dev_desc_UDC_show of configfs.c. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1193861). - CVE-2021-22600: Fixed double free bug in packet_set_ring() in net/packet/af_packet.c that could have been exploited by a local user through crafted syscalls to escalate privileges or deny service (bnc#1195184). - CVE-2020-28097: Fixed out-of-bounds read in vgacon subsystem that mishandled software scrollback (bnc#1187723). The following non-security bugs were fixed: - ACPI: battery: Add the ThinkPad "Not Charging" quirk (git-fixes). - ACPICA: Executer: Fix the REFCLASS_REFOF case in acpi_ex_opcode_1A_0T_1R() (git-fixes). - ACPICA: Fix wrong interpretation of PCC address (git-fixes). - ACPICA: Hardware: Do not flush CPU cache when entering S4 and S5 (git-fixes). - ACPICA: Utilities: Avoid deleting the same object twice in a row (git-fixes). - ACPICA: actypes.h: Expand the ACPI_ACCESS_ definitions (git-fixes). - ALSA: seq: Set upper limit of processed events (git-fixes). - ALSA: usb-audio: Correct quirk for VF0770 (git-fixes). - ALSA: usb-audio: initialize variables that could ignore errors (git-fixes). - ASoC: cpcap: Check for NULL pointer after calling of_get_child_by_name (git-fixes). - ASoC: fsl: Add missing error handling in pcm030_fabric_probe (git-fixes). - ASoC: max9759: fix underflow in speaker_gain_control_put() (git-fixes). - ASoC: mediatek: mt8173: fix device_node leak (git-fixes). - ASoC: xilinx: xlnx_formatter_pcm: Make buffer bytes multiple of period bytes (git-fixes). - Bluetooth: Fix debugfs entry leak in hci_register_dev() (git-fixes). - Bluetooth: refactor malicious adv data check (git-fixes). - Documentation: fix firewire.rst ABI file path error (git-fixes). - HID: apple: Do not reset quirks when the Fn key is not found (git-fixes). - HID: quirks: Allow inverting the absolute X/Y values (git-fixes). - HID: uhid: Fix worker destroying device without any protection (git-fixes). - HID: wacom: Reset expected and received contact counts at the same time (git-fixes). - IB/cm: Avoid a loop when device has 255 ports (git-fixes) - IB/hfi1: Fix error return code in parse_platform_config() (git-fixes) - IB/hfi1: Use kzalloc() for mmu_rb_handler allocation (git-fixes) - IB/isert: Fix a use after free in isert_connect_request (git-fixes) - IB/mlx4: Separate tunnel and wire bufs parameters (git-fixes) - IB/mlx5: Add missing error code (git-fixes) - IB/mlx5: Add mutex destroy call to cap_mask_mutex mutex (git-fixes) - IB/mlx5: Fix error unwinding when set_has_smi_cap fails (git-fixes) - IB/mlx5: Return appropriate error code instead of ENOMEM (git-fixes) - IB/umad: Return EIO in case of when device disassociated (git-fixes) - IB/umad: Return EPOLLERR in case of when device disassociated (git-fixes) - Input: wm97xx: Simplify resource management (git-fixes). - NFS: Ensure the server had an up to date ctime before renaming (git-fixes). - NFSv4: Handle case where the lookup of a directory fails (git-fixes). - NFSv4: nfs_atomic_open() can race when looking up a non-regular file (git-fixes). - PCI: Add function 1 DMA alias quirk for Marvell 88SE9125 SATA controller (git-fixes). - PM: wakeup: simplify the output logic of pm_show_wakelocks() (git-fixes). - RDMA/addr: Be strict with gid size (git-fixes) - RDMA/bnxt_re: Fix a double free in bnxt_qplib_alloc_res (git-fixes) - RDMA/bnxt_re: Fix error return code in bnxt_qplib_cq_process_terminal() (git-fixes) - RDMA/bnxt_re: Set queue pair state when being queried (git-fixes) - RDMA/cm: Fix an attempt to use non-valid pointer when cleaning timewait (git-fixes) - RDMA/core: Clean up cq pool mechanism (jsc#SLE-15176). - RDMA/core: Do not access cm_id after its destruction (git-fixes) - RDMA/core: Do not indicate device ready when device enablement fails (git-fixes) - RDMA/core: Fix corrupted SL on passive side (git-fixes) - RDMA/core: Unify RoCE check and re-factor code (git-fixes) - RDMA/cxgb4: Fix adapter LE hash errors while destroying ipv6 listening server (git-fixes) - RDMA/cxgb4: Fix the reported max_recv_sge value (git-fixes) - RDMA/cxgb4: Validate the number of CQEs (git-fixes) - RDMA/cxgb4: add missing qpid increment (git-fixes) - RDMA/hns: Add a check for current state before modifying QP (git-fixes) - RDMA/hns: Remove the portn field in UD SQ WQE (git-fixes) - RDMA/hns: Remove unnecessary access right set during INIT2INIT (git-fixes) - RDMA/i40iw: Address an mmap handler exploit in i40iw (git-fixes) - RDMA/i40iw: Fix error unwinding when i40iw_hmc_sd_one fails (git-fixes) - RDMA/mlx5: Fix corruption of reg_pages in mlx5_ib_rereg_user_mr() (git-fixes) - RDMA/mlx5: Fix potential race between destroy and CQE poll (git-fixes) - RDMA/mlx5: Fix query DCT via DEVX (git-fixes) - RDMA/mlx5: Fix type warning of sizeof in __mlx5_ib_alloc_counters() (git-fixes) - RDMA/mlx5: Fix wrong free of blue flame register on error (git-fixes) - RDMA/mlx5: Issue FW command to destroy SRQ on reentry (git-fixes) - RDMA/mlx5: Recover from fatal event in dual port mode (git-fixes) - RDMA/mlx5: Use the correct obj_id upon DEVX TIR creation (git-fixes) - RDMA/ocrdma: Fix use after free in ocrdma_dealloc_ucontext_pd() (git-fixes) - RDMA/rxe: Clear all QP fields if creation failed (git-fixes) - RDMA/rxe: Compute PSN windows correctly (git-fixes) - RDMA/rxe: Correct skb on loopback path (git-fixes) - RDMA/rxe: Fix coding error in rxe_rcv_mcast_pkt (git-fixes) - RDMA/rxe: Fix coding error in rxe_recv.c (git-fixes) - RDMA/rxe: Fix missing kconfig dependency on CRYPTO (git-fixes) - RDMA/rxe: Remove the unnecessary variable (jsc#SLE-15176). - RDMA/rxe: Remove useless code in rxe_recv.c (git-fixes) - RDMA/siw: Fix a use after free in siw_alloc_mr (git-fixes) - RDMA/siw: Fix calculation of tx_valid_cpus size (git-fixes) - RDMA/siw: Fix handling of zero-sized Read and Receive Queues. (git-fixes) - RDMA/siw: Properly check send and receive CQ pointers (git-fixes) - RDMA/usnic: Fix memleak in find_free_vf_and_create_qp_grp (git-fixes) - RDMA/uverbs: Fix a NULL vs IS_ERR() bug (git-fixes) - RDMA/uverbs: Tidy input validation of ib_uverbs_rereg_mr() (git-fixes) - RMDA/sw: Do not allow drivers using dma_virt_ops on highmem configs (git-fixes) - USB: core: Fix hang in usb_kill_urb by adding memory barriers (git-fixes). - USB: serial: mos7840: fix probe error handling (git-fixes). - ar5523: Fix null-ptr-deref with unexpected WDCMSG_TARGET_START reply (git-fixes). - arm64: Kconfig: add a choice for endianness (jsc#SLE-23432). - asix: fix wrong return value in asix_check_host_enable() (git-fixes). - ata: pata_platform: Fix a NULL pointer dereference in __pata_platform_probe() (git-fixes). - ath10k: Fix tx hanging (git-fixes). - ath9k: Fix out-of-bound memcpy in ath9k_hif_usb_rx_stream (git-fixes). - batman-adv: allow netlink usage in unprivileged containers (git-fixes). - blk-cgroup: fix missing put device in error path from blkg_conf_pref() (bsc#1195481). - blk-mq: introduce blk_mq_set_request_complete (git-fixes). - bpf: Verifer, adjust_scalar_min_max_vals to always call update_reg_bounds() (bsc#1194227). - btrfs: tree-checker: Add EXTENT_ITEM and METADATA_ITEM check (bsc#1195009). - btrfs: tree-checker: annotate all error branches as unlikely (bsc#1195009). - btrfs: tree-checker: check for BTRFS_BLOCK_FLAG_FULL_BACKREF being set improperly (bsc#1195009). - cgroup/cpuset: Fix a partition bug with hotplug (bsc#1194291). - clk: si5341: Fix clock HW provider cleanup (git-fixes). - crypto: qat - fix undetected PFVF timeout in ACK loop (git-fixes). - dma-buf: heaps: Fix potential spectre v1 gadget (git-fixes). - drm/amdgpu: fixup bad vram size on gmc v8 (git-fixes). - drm/bridge: megachips: Ensure both bridges are probed before registration (git-fixes). - drm/etnaviv: limit submit sizes (git-fixes). - drm/etnaviv: relax submit size limits (git-fixes). - drm/i915/overlay: Prevent divide by zero bugs in scaling (git-fixes). - drm/lima: fix warning when CONFIG_DEBUG_SG=y & CONFIG_DMA_API_DEBUG=y (git-fixes). - drm/msm/dpu: invalid parameter check in dpu_setup_dspp_pcc (git-fixes). - drm/msm/dsi: Fix missing put_device() call in dsi_get_phy (git-fixes). - drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable (git-fixes). - drm/msm/hdmi: Fix missing put_device() call in msm_hdmi_get_phy (git-fixes). - drm/msm: Fix wrong size calculation (git-fixes). - drm/nouveau/kms/nv04: use vzalloc for nv04_display (git-fixes). - drm/nouveau/pmu/gm200-: avoid touching PMU outside of DEVINIT/PREOS/ACR (git-fixes). - drm/nouveau: fix off by one in BIOS boundary checking (git-fixes). - drm: panel-orientation-quirks: Add quirk for the Lenovo Yoga Book X91F/L (git-fixes). - ext4: fix an use-after-free issue about data=journal writeback mode (bsc#1195482). - ext4: make sure quota gets properly shutdown on error (bsc#1195480). - ext4: set csum seed in tmp inode while migrating to extents (bsc#1195267). - floppy: Add max size check for user space request (git-fixes). - fsnotify: fix fsnotify hooks in pseudo filesystems (bsc#1195479). - fsnotify: invalidate dcache before IN_DELETE event (bsc#1195478). - gpio: aspeed: Convert aspeed_gpio.lock to raw_spinlock (git-fixes). - gpiolib: acpi: Do not set the IRQ type if the IRQ is already in use (git-fixes). - hv_netvsc: Set needed_headroom according to VF (bsc#1193506). - hwmom: (lm90) Fix citical alarm status for MAX6680/MAX6681 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6646/6647/6649 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6654 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6680 (git-fixes). - hwmon: (lm90) Reduce maximum conversion rate for G781 (git-fixes). - i2c: designware-pci: Fix to change data types of hcnt and lcnt parameters (git-fixes). - i2c: i801: Do not silently correct invalid transfer size (git-fixes). - i2c: mpc: Correct I2C reset procedure (git-fixes). - i40iw: Add support to make destroy QP synchronous (git-fixes) - ibmvnic: Allow extra failures before disabling (bsc#1195073 ltc#195713). - ibmvnic: Update driver return codes (bsc#1195293 ltc#196198). - ibmvnic: do not spin in tasklet (bsc#1195073 ltc#195713). - ibmvnic: init ->running_cap_crqs early (bsc#1195073 ltc#195713). - ibmvnic: remove unused ->wait_capability (bsc#1195073 ltc#195713). - ibmvnic: remove unused defines (bsc#1195293 ltc#196198). - igc: Fix TX timestamp support for non-MSI-X platforms (bsc#1160634). - iwlwifi: fix leaks/bad data after failed firmware load (git-fixes). - iwlwifi: mvm: Fix calculation of frame length (git-fixes). - iwlwifi: mvm: Increase the scan timeout guard to 30 seconds (git-fixes). - iwlwifi: mvm: synchronize with FW after multicast commands (git-fixes). - iwlwifi: remove module loading failure message (git-fixes). - lib82596: Fix IRQ check in sni_82596_probe (git-fixes). - lightnvm: Remove lightnvm implemenation (bsc#1191881). - mac80211: allow non-standard VHT MCS-10/11 (git-fixes). - media: b2c2: Add missing check in flexcop_pci_isr: (git-fixes). - media: coda/imx-vdoa: Handle dma_set_coherent_mask error codes (git-fixes). - media: igorplugusb: receiver overflow should be reported (git-fixes). - media: m920x: do not use stack on USB reads (git-fixes). - media: saa7146: hexium_gemini: Fix a NULL pointer dereference in hexium_attach() (git-fixes). - media: saa7146: hexium_orion: Fix a NULL pointer dereference in hexium_attach() (git-fixes). - media: uvcvideo: Increase UVC_CTRL_CONTROL_TIMEOUT to 5 seconds (git-fixes). - mlxsw: Only advertise link modes supported by both driver and device (bsc#1154488). - mmc: core: Fixup storing of OCR for MMC_QUIRK_NONSTD_SDIO (git-fixes). - mtd: nand: bbt: Fix corner case in bad block table handling (git-fixes). - mtd: rawnand: gpmi: Add ERR007117 protection for nfc_apply_timings (git-fixes). - mtd: rawnand: gpmi: Remove explicit default gpmi clock setting for i.MX6 (git-fixes). - net, xdp: Introduce xdp_init_buff utility routine (bsc#1193506). - net, xdp: Introduce xdp_prepare_buff utility routine (bsc#1193506). - net/mlx5: DR, Proper handling of unsupported Connect-X6DX SW steering (jsc#SLE-8464). - net/mlx5: E-Switch, fix changing vf VLANID (jsc#SLE-15172). - net/mlx5e: Protect encap route dev from concurrent release (jsc#SLE-8464). - net: allow retransmitting a TCP packet if original is still in queue (bsc#1188605 bsc#1187428). - net: bonding: fix bond_xmit_broadcast return value error bug (bsc#1176447). - net: bridge: vlan: fix memory leak in __allowed_ingress (bsc#1176447). - net: bridge: vlan: fix single net device option dumping (bsc#1176447). - net: mana: Add RX fencing (bsc#1193506). - net: mana: Add XDP support (bsc#1193506). - net: sch_generic: aviod concurrent reset and enqueue op for lockless qdisc (bsc#1183405). - net: sched: add barrier to ensure correct ordering for lockless qdisc (bsc#1183405). - net: sched: avoid unnecessary seqcount operation for lockless qdisc (bsc#1183405). - net: sched: fix packet stuck problem for lockless qdisc (bsc#1183405). - net: sched: fix tx action reschedule issue with stopped queue (bsc#1183405). - net: sched: fix tx action rescheduling issue during deactivation (bsc#1183405). - net: sched: replaced invalid qdisc tree flush helper in qdisc_replace (bsc#1183405). - net: sfp: fix high power modules without diagnostic monitoring (bsc#1154353). - netdevsim: set .owner to THIS_MODULE (bsc#1154353). - nfc: llcp: fix NULL error pointer dereference on sendmsg() after failed bind() (git-fixes). - nvme-core: use list_add_tail_rcu instead of list_add_tail for nvme_init_ns_head (git-fixes). - nvme-fabrics: avoid double completions in nvmf_fail_nonready_command (git-fixes). - nvme-fabrics: ignore invalid fast_io_fail_tmo values (git-fixes). - nvme-fabrics: remove superfluous nvmf_host_put in nvmf_parse_options (git-fixes). - nvme-tcp: fix data digest pointer calculation (git-fixes). - nvme-tcp: fix incorrect h2cdata pdu offset accounting (git-fixes). - nvme-tcp: fix memory leak when freeing a queue (git-fixes). - nvme-tcp: fix possible use-after-completion (git-fixes). - nvme-tcp: validate R2T PDU in nvme_tcp_handle_r2t() (git-fixes). - nvme: add 'iopolicy' module parameter (bsc#1177599 bsc#1193096). - nvme: fix use after free when disconnecting a reconnecting ctrl (git-fixes). - nvme: introduce a nvme_host_path_error helper (git-fixes). - nvme: refactor ns->ctrl by request (git-fixes). - phy: uniphier-usb3ss: fix unintended writing zeros to PHY register (git-fixes). - phylib: fix potential use-after-free (git-fixes). - pinctrl: bcm2835: Add support for wake-up interrupts (git-fixes). - pinctrl: bcm2835: Match BCM7211 compatible string (git-fixes). - pinctrl: intel: Fix a glitch when updating IRQ flags on a preconfigured line (git-fixes). - pinctrl: intel: fix unexpected interrupt (git-fixes). - powerpc/book3s64/radix: make tlb_single_page_flush_ceiling a debugfs entry (bsc#1195183 ltc#193865). - powerpc/perf: Fix power_pmu_disable to call clear_pmi_irq_pending only if PMI is pending (bsc#1156395). - regulator: qcom_smd: Align probe function with rpmh-regulator (git-fixes). - rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev (git-fixes). - rpmsg: char: Fix race between the release of rpmsg_eptdev and cdev (git-fixes). - rsi: Fix use-after-free in rsi_rx_done_handler() (git-fixes). - sched/fair: Fix detection of per-CPU kthreads waking a task (git fixes (sched/fair)). - sched/numa: Fix is_core_idle() (git fixes (sched/numa)). - scripts/dtc: dtx_diff: remove broken example from help text (git-fixes). - scripts/dtc: only append to HOST_EXTRACFLAGS instead of overwriting (git-fixes). - serial: 8250: of: Fix mapped region size when using reg-offset property (git-fixes). - serial: Fix incorrect rs485 polarity on uart open (git-fixes). - serial: amba-pl011: do not request memory region twice (git-fixes). - serial: core: Keep mctrl register state and cached copy in sync (git-fixes). - serial: pl010: Drop CR register reset on set_termios (git-fixes). - serial: stm32: fix software flow control transfer (git-fixes). - spi: bcm-qspi: check for valid cs before applying chip select (git-fixes). - spi: mediatek: Avoid NULL pointer crash in interrupt (git-fixes). - spi: meson-spicc: add IRQ check in meson_spicc_probe (git-fixes). - supported.conf: mark rtw88 modules as supported (jsc#SLE-22690) - tty: Add support for Brainboxes UC cards (git-fixes). - tty: n_gsm: fix SW flow control encoding/handling (git-fixes). - ucsi_ccg: Check DEV_INT bit only when starting CCG4 (git-fixes). - udf: Fix NULL ptr deref when converting from inline format (bsc#1195476). - udf: Restore i_lenAlloc when inode expansion fails (bsc#1195477). - usb-storage: Add unusual-devs entry for VL817 USB-SATA bridge (git-fixes). - usb: common: ulpi: Fix crash in ulpi_match() (git-fixes). - usb: gadget: f_fs: Use stream_open() for endpoint files (git-fixes). - usb: gadget: f_sourcesink: Fix isoc transfer for USB_SPEED_SUPER_PLUS (git-fixes). - usb: hub: Add delay for SuperSpeed hub resume to let links transit to U0 (git-fixes). - usb: roles: fix include/linux/usb/role.h compile issue (git-fixes). - usb: typec: tcpm: Do not disconnect while receiving VBUS off (git-fixes). - usb: uhci: add aspeed ast2600 uhci support (git-fixes). - vfio/iommu_type1: replace kfree with kvfree (git-fixes). - video: hyperv_fb: Fix validation of screen resolution (git-fixes). - vxlan: fix error return code in __vxlan_dev_create() (bsc#1154353). - workqueue: Fix unbind_workers() VS wq_worker_running() race (bsc#1195062). - x86/gpu: Reserve stolen memory for first integrated Intel GPU (git-fixes). - xfrm: fix MTU regression (bsc#1185377, bsc#1194048). - xhci-pci: Allow host runtime PM as default for Intel Alpine Ridge LP (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.49.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.49.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-5.3.18-150300.59.49.1.nosrc.rpm True kernel-default-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.49.1.150300.18.31.1.src.rpm True kernel-default-base-5.3.18-150300.59.49.1.150300.18.31.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.49.1.150300.18.31.1.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.49.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.49.1.noarch.rpm True kernel-docs-5.3.18-150300.59.49.1.noarch.rpm True kernel-docs-5.3.18-150300.59.49.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.49.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.49.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.49.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.49.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.49.1.src.rpm True kernel-obs-build-5.3.18-150300.59.49.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.49.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.49.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.49.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.49.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.49.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.49.1.x86_64.rpm True kernel-source-5.3.18-150300.59.49.1.noarch.rpm True kernel-source-5.3.18-150300.59.49.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.49.1.noarch.rpm True kernel-syms-5.3.18-150300.59.49.1.src.rpm True kernel-syms-5.3.18-150300.59.49.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.49.1.150300.18.31.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.49.1.150300.18.31.1.s390x.rpm True kernel-default-devel-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.49.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.49.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.49.1.s390x.rpm True kernel-syms-5.3.18-150300.59.49.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.49.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.49.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.49.1.150300.18.31.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.49.1.150300.18.31.1.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.49.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.49.1.src.rpm True dtb-al-5.3.18-150300.59.49.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.49.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.49.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.49.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.49.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.49.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.49.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.49.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.49.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.49.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.49.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.49.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.49.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.49.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.49.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.49.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.49.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.49.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.49.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.49.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.49.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.49.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.49.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.49.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.49.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.49.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.49.1.150300.18.31.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.49.1.150300.18.31.1.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.49.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.49.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.49.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.49.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.49.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.49.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.49.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True openSUSE-SLE-15.3-2022-788 moderate SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: - Fix handling of redirected command in-/output (bsc#1195326) This fixes delays at the end of zypper operations, where zypper unintentionally waits for appdata plugin scripts to complete. libzypp-17.29.4-31.1.src.rpm True libzypp-17.29.4-31.1.x86_64.rpm True libzypp-devel-17.29.4-31.1.x86_64.rpm True libzypp-devel-doc-17.29.4-31.1.x86_64.rpm True zypper-1.14.51-27.1.src.rpm True zypper-1.14.51-27.1.x86_64.rpm True zypper-aptitude-1.14.51-27.1.noarch.rpm True zypper-log-1.14.51-27.1.noarch.rpm True zypper-needs-restarting-1.14.51-27.1.noarch.rpm True libzypp-17.29.4-31.1.s390x.rpm True libzypp-devel-17.29.4-31.1.s390x.rpm True libzypp-devel-doc-17.29.4-31.1.s390x.rpm True zypper-1.14.51-27.1.s390x.rpm True libzypp-17.29.4-31.1.ppc64le.rpm True libzypp-devel-17.29.4-31.1.ppc64le.rpm True libzypp-devel-doc-17.29.4-31.1.ppc64le.rpm True zypper-1.14.51-27.1.ppc64le.rpm True libzypp-17.29.4-31.1.aarch64.rpm True libzypp-devel-17.29.4-31.1.aarch64.rpm True libzypp-devel-doc-17.29.4-31.1.aarch64.rpm True zypper-1.14.51-27.1.aarch64.rpm True openSUSE-SLE-15.3-2022-539 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-3997: Fixed an uncontrolled recursion in systemd's systemd-tmpfiles (bsc#1194178). The following non-security bugs were fixed: - udev/net_id: don't generate slot based names if multiple devices might claim the same slot (bsc#1192637) - localectl: don't omit keymaps files that are symlinks (bsc#1191826) libsystemd0-246.16-150300.7.39.1.x86_64.rpm libsystemd0-32bit-246.16-150300.7.39.1.x86_64.rpm libudev-devel-246.16-150300.7.39.1.x86_64.rpm libudev-devel-32bit-246.16-150300.7.39.1.x86_64.rpm libudev1-246.16-150300.7.39.1.x86_64.rpm libudev1-32bit-246.16-150300.7.39.1.x86_64.rpm nss-myhostname-246.16-150300.7.39.1.x86_64.rpm nss-myhostname-32bit-246.16-150300.7.39.1.x86_64.rpm nss-mymachines-246.16-150300.7.39.1.x86_64.rpm nss-mymachines-32bit-246.16-150300.7.39.1.x86_64.rpm nss-resolve-246.16-150300.7.39.1.x86_64.rpm nss-systemd-246.16-150300.7.39.1.x86_64.rpm systemd-246.16-150300.7.39.1.src.rpm systemd-246.16-150300.7.39.1.x86_64.rpm systemd-32bit-246.16-150300.7.39.1.x86_64.rpm systemd-container-246.16-150300.7.39.1.x86_64.rpm systemd-coredump-246.16-150300.7.39.1.x86_64.rpm systemd-devel-246.16-150300.7.39.1.x86_64.rpm systemd-doc-246.16-150300.7.39.1.x86_64.rpm systemd-journal-remote-246.16-150300.7.39.1.x86_64.rpm systemd-lang-246.16-150300.7.39.1.noarch.rpm systemd-logger-246.16-150300.7.39.1.x86_64.rpm systemd-network-246.16-150300.7.39.1.x86_64.rpm systemd-sysvinit-246.16-150300.7.39.1.x86_64.rpm udev-246.16-150300.7.39.1.x86_64.rpm libsystemd0-246.16-150300.7.39.1.s390x.rpm libudev-devel-246.16-150300.7.39.1.s390x.rpm libudev1-246.16-150300.7.39.1.s390x.rpm nss-myhostname-246.16-150300.7.39.1.s390x.rpm nss-mymachines-246.16-150300.7.39.1.s390x.rpm nss-resolve-246.16-150300.7.39.1.s390x.rpm nss-systemd-246.16-150300.7.39.1.s390x.rpm systemd-246.16-150300.7.39.1.s390x.rpm systemd-container-246.16-150300.7.39.1.s390x.rpm systemd-coredump-246.16-150300.7.39.1.s390x.rpm systemd-devel-246.16-150300.7.39.1.s390x.rpm systemd-doc-246.16-150300.7.39.1.s390x.rpm systemd-journal-remote-246.16-150300.7.39.1.s390x.rpm systemd-logger-246.16-150300.7.39.1.s390x.rpm systemd-network-246.16-150300.7.39.1.s390x.rpm systemd-sysvinit-246.16-150300.7.39.1.s390x.rpm udev-246.16-150300.7.39.1.s390x.rpm libsystemd0-246.16-150300.7.39.1.ppc64le.rpm libudev-devel-246.16-150300.7.39.1.ppc64le.rpm libudev1-246.16-150300.7.39.1.ppc64le.rpm nss-myhostname-246.16-150300.7.39.1.ppc64le.rpm nss-mymachines-246.16-150300.7.39.1.ppc64le.rpm nss-resolve-246.16-150300.7.39.1.ppc64le.rpm nss-systemd-246.16-150300.7.39.1.ppc64le.rpm systemd-246.16-150300.7.39.1.ppc64le.rpm systemd-container-246.16-150300.7.39.1.ppc64le.rpm systemd-coredump-246.16-150300.7.39.1.ppc64le.rpm systemd-devel-246.16-150300.7.39.1.ppc64le.rpm systemd-doc-246.16-150300.7.39.1.ppc64le.rpm systemd-journal-remote-246.16-150300.7.39.1.ppc64le.rpm systemd-logger-246.16-150300.7.39.1.ppc64le.rpm systemd-network-246.16-150300.7.39.1.ppc64le.rpm systemd-sysvinit-246.16-150300.7.39.1.ppc64le.rpm udev-246.16-150300.7.39.1.ppc64le.rpm libsystemd0-246.16-150300.7.39.1.aarch64.rpm libudev-devel-246.16-150300.7.39.1.aarch64.rpm libudev1-246.16-150300.7.39.1.aarch64.rpm nss-myhostname-246.16-150300.7.39.1.aarch64.rpm nss-mymachines-246.16-150300.7.39.1.aarch64.rpm nss-resolve-246.16-150300.7.39.1.aarch64.rpm nss-systemd-246.16-150300.7.39.1.aarch64.rpm systemd-246.16-150300.7.39.1.aarch64.rpm systemd-container-246.16-150300.7.39.1.aarch64.rpm systemd-coredump-246.16-150300.7.39.1.aarch64.rpm systemd-devel-246.16-150300.7.39.1.aarch64.rpm systemd-doc-246.16-150300.7.39.1.aarch64.rpm systemd-journal-remote-246.16-150300.7.39.1.aarch64.rpm systemd-logger-246.16-150300.7.39.1.aarch64.rpm systemd-network-246.16-150300.7.39.1.aarch64.rpm systemd-sysvinit-246.16-150300.7.39.1.aarch64.rpm udev-246.16-150300.7.39.1.aarch64.rpm openSUSE-SLE-15.3-2022-540 moderate SUSE Updates openSUSE-SLE 15.3 This update for ImageMagick fixes the following issues: - CVE-2022-0284: Fixed heap buffer overread in GetPixelAlpha() in MagickCore/pixel-accessor.h (bsc#1195563). ImageMagick-7.0.7.34-10.21.1.src.rpm ImageMagick-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-config-7-upstream-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-devel-32bit-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-devel-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-doc-7.0.7.34-10.21.1.noarch.rpm ImageMagick-extra-7.0.7.34-10.21.1.x86_64.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-10.21.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.21.1.x86_64.rpm libMagick++-devel-32bit-7.0.7.34-10.21.1.x86_64.rpm libMagick++-devel-7.0.7.34-10.21.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-10.21.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.21.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-10.21.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.21.1.x86_64.rpm perl-PerlMagick-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-7.0.7.34-10.21.1.s390x.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.21.1.s390x.rpm ImageMagick-config-7-upstream-7.0.7.34-10.21.1.s390x.rpm ImageMagick-devel-7.0.7.34-10.21.1.s390x.rpm ImageMagick-extra-7.0.7.34-10.21.1.s390x.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.21.1.s390x.rpm libMagick++-devel-7.0.7.34-10.21.1.s390x.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.21.1.s390x.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.21.1.s390x.rpm perl-PerlMagick-7.0.7.34-10.21.1.s390x.rpm ImageMagick-7.0.7.34-10.21.1.ppc64le.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.21.1.ppc64le.rpm ImageMagick-config-7-upstream-7.0.7.34-10.21.1.ppc64le.rpm ImageMagick-devel-7.0.7.34-10.21.1.ppc64le.rpm ImageMagick-extra-7.0.7.34-10.21.1.ppc64le.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.21.1.ppc64le.rpm libMagick++-devel-7.0.7.34-10.21.1.ppc64le.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.21.1.ppc64le.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.21.1.ppc64le.rpm perl-PerlMagick-7.0.7.34-10.21.1.ppc64le.rpm ImageMagick-7.0.7.34-10.21.1.aarch64.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.21.1.aarch64.rpm ImageMagick-config-7-upstream-7.0.7.34-10.21.1.aarch64.rpm ImageMagick-devel-7.0.7.34-10.21.1.aarch64.rpm ImageMagick-extra-7.0.7.34-10.21.1.aarch64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.21.1.aarch64.rpm libMagick++-devel-7.0.7.34-10.21.1.aarch64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.21.1.aarch64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.21.1.aarch64.rpm perl-PerlMagick-7.0.7.34-10.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-373 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint fixes the following issues: - Whitelisting `kdenetwork-filesharing`. (bsc#1195548) - Whitelisting of `powerdevil5`. (bsc#1195662) - Whitelisting of `plasma5-disks`. (bsc#1195491) rpmlint-1.10-7.38.1.noarch.rpm rpmlint-1.10-7.38.1.src.rpm openSUSE-SLE-15.3-2022-384 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-python-docs-theme fixes the following issues: - Switch to setup.py based installation for compatibility with old SLE distros. - Update to 2022.1: - Add a configuration for license URL. - Exclude the floating navbar from CHM help. - Make sidebar scrollable and sticky (on modern browsers) - Fix monospace again, on buggy Google Chrome - Add the copyright_url variable in the theme - Improve readability - Remove #searchbox on mobile to fix a layout bug - Fix the appearance of version/language selects - Make the theme responsive - Use default pygments theme - Test Github action to validate the theme against docsbuild scripts. - Add the copy button to pycon3 highlighted code blocks. - Updated the readme, to remind user to install the package in a virtual environment. - Updated the package url, using the GitHub repository instead of docs.python.org - Added license information to the footer of the doc - Fixed typo in the footer - Added information on how to use the package - Fixed code formatting - Fixed code bgcolor and codetextcolor for Sphinx 3.1.0+ python-python-docs-theme-2022.1-150300.3.3.1.src.rpm python3-python-docs-theme-2022.1-150300.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-1203 moderate SUSE Updates openSUSE-SLE 15.3 This update for lvm2 fixes the following issues: - udev: create symlinks and watch even in suspended state (bsc#1195231) device-mapper-1.02.163-8.42.1.x86_64.rpm device-mapper-devel-1.02.163-8.42.1.x86_64.rpm device-mapper-devel-32bit-1.02.163-8.42.1.x86_64.rpm libdevmapper-event1_03-1.02.163-8.42.1.x86_64.rpm libdevmapper-event1_03-32bit-1.02.163-8.42.1.x86_64.rpm libdevmapper1_03-1.02.163-8.42.1.x86_64.rpm libdevmapper1_03-32bit-1.02.163-8.42.1.x86_64.rpm liblvm2cmd2_03-2.03.05-8.42.1.x86_64.rpm lvm2-2.03.05-8.42.1.src.rpm lvm2-2.03.05-8.42.1.x86_64.rpm lvm2-devel-2.03.05-8.42.1.x86_64.rpm lvm2-device-mapper-2.03.05-8.42.1.src.rpm lvm2-lockd-2.03.05-8.42.1.x86_64.rpm lvm2-lvmlockd-2.03.05-8.42.1.src.rpm lvm2-testsuite-2.03.05-8.42.1.x86_64.rpm device-mapper-1.02.163-8.42.1.s390x.rpm device-mapper-devel-1.02.163-8.42.1.s390x.rpm libdevmapper-event1_03-1.02.163-8.42.1.s390x.rpm libdevmapper1_03-1.02.163-8.42.1.s390x.rpm liblvm2cmd2_03-2.03.05-8.42.1.s390x.rpm lvm2-2.03.05-8.42.1.s390x.rpm lvm2-devel-2.03.05-8.42.1.s390x.rpm lvm2-lockd-2.03.05-8.42.1.s390x.rpm lvm2-testsuite-2.03.05-8.42.1.s390x.rpm device-mapper-1.02.163-8.42.1.ppc64le.rpm device-mapper-devel-1.02.163-8.42.1.ppc64le.rpm libdevmapper-event1_03-1.02.163-8.42.1.ppc64le.rpm libdevmapper1_03-1.02.163-8.42.1.ppc64le.rpm liblvm2cmd2_03-2.03.05-8.42.1.ppc64le.rpm lvm2-2.03.05-8.42.1.ppc64le.rpm lvm2-devel-2.03.05-8.42.1.ppc64le.rpm lvm2-lockd-2.03.05-8.42.1.ppc64le.rpm lvm2-testsuite-2.03.05-8.42.1.ppc64le.rpm device-mapper-1.02.163-8.42.1.aarch64.rpm device-mapper-devel-1.02.163-8.42.1.aarch64.rpm libdevmapper-event1_03-1.02.163-8.42.1.aarch64.rpm libdevmapper1_03-1.02.163-8.42.1.aarch64.rpm liblvm2cmd2_03-2.03.05-8.42.1.aarch64.rpm lvm2-2.03.05-8.42.1.aarch64.rpm lvm2-devel-2.03.05-8.42.1.aarch64.rpm lvm2-lockd-2.03.05-8.42.1.aarch64.rpm lvm2-testsuite-2.03.05-8.42.1.aarch64.rpm openSUSE-SLE-15.3-2022-716 important SUSE Updates openSUSE-SLE 15.3 This update for wpa_supplicant fixes the following issues: - CVE-2022-23303: Fixed side-channel attacks in SAE (bsc#1194732). - CVE-2022-23304: Fixed side-channel attacks in EAP-pwd (bsc#1194733). wpa_supplicant-2.9-4.33.1.src.rpm wpa_supplicant-2.9-4.33.1.x86_64.rpm wpa_supplicant-gui-2.9-4.33.1.x86_64.rpm wpa_supplicant-2.9-4.33.1.s390x.rpm wpa_supplicant-gui-2.9-4.33.1.s390x.rpm wpa_supplicant-2.9-4.33.1.ppc64le.rpm wpa_supplicant-gui-2.9-4.33.1.ppc64le.rpm wpa_supplicant-2.9-4.33.1.aarch64.rpm wpa_supplicant-gui-2.9-4.33.1.aarch64.rpm openSUSE-SLE-15.3-2022-696 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.6.0 ESR / MFSA 2022-05 (bsc#1195682) - CVE-2022-22753: Privilege Escalation to SYSTEM on Windows via Maintenance Service - CVE-2022-22754: Extensions could have bypassed permission confirmation during update - CVE-2022-22756: Drag and dropping an image could have resulted in the dropped object being an executable - CVE-2022-22759: Sandboxed iframes could have executed script if the parent appended elements - CVE-2022-22760: Cross-Origin responses could be distinguished between script and non-script content-types - CVE-2022-22761: frame-ancestors Content Security Policy directive was not enforced for framed extension pages - CVE-2022-22763: Script Execution during invalid object state - CVE-2022-22764: Memory safety bugs fixed in Firefox 97 and Firefox ESR 91.6 Firefox Extended Support Release 91.5.1 ESR (bsc#1195230) - Fixed an issue that allowed unexpected data to be submitted in some of our search telemetry MozillaFirefox-91.6.0-152.15.1.src.rpm MozillaFirefox-91.6.0-152.15.1.x86_64.rpm MozillaFirefox-branding-upstream-91.6.0-152.15.1.x86_64.rpm MozillaFirefox-devel-91.6.0-152.15.1.x86_64.rpm MozillaFirefox-translations-common-91.6.0-152.15.1.x86_64.rpm MozillaFirefox-translations-other-91.6.0-152.15.1.x86_64.rpm MozillaFirefox-91.6.0-152.15.1.s390x.rpm MozillaFirefox-branding-upstream-91.6.0-152.15.1.s390x.rpm MozillaFirefox-devel-91.6.0-152.15.1.s390x.rpm MozillaFirefox-translations-common-91.6.0-152.15.1.s390x.rpm MozillaFirefox-translations-other-91.6.0-152.15.1.s390x.rpm MozillaFirefox-91.6.0-152.15.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.6.0-152.15.1.ppc64le.rpm MozillaFirefox-devel-91.6.0-152.15.1.ppc64le.rpm MozillaFirefox-translations-common-91.6.0-152.15.1.ppc64le.rpm MozillaFirefox-translations-other-91.6.0-152.15.1.ppc64le.rpm MozillaFirefox-91.6.0-152.15.1.aarch64.rpm MozillaFirefox-branding-upstream-91.6.0-152.15.1.aarch64.rpm MozillaFirefox-devel-91.6.0-152.15.1.aarch64.rpm MozillaFirefox-translations-common-91.6.0-152.15.1.aarch64.rpm MozillaFirefox-translations-other-91.6.0-152.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-718 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for duperemove fixes the following issue: Update from version 0.11.beta4 to version 0.11.3 (jsc#SLE-11306) - Increase open file limit. - Create hash database file with 600 permission for improved security. - Read more data per pread, for v2 hashfile format this reduces the overall number of syscalls made which in turns results in better performance. - Fix truncated file handling, eliminating a an infinite loop case. btrfs-extent-same-0.11.3-3.3.1.x86_64.rpm duperemove-0.11.3-3.3.1.src.rpm duperemove-0.11.3-3.3.1.x86_64.rpm btrfs-extent-same-0.11.3-3.3.1.s390x.rpm duperemove-0.11.3-3.3.1.s390x.rpm btrfs-extent-same-0.11.3-3.3.1.ppc64le.rpm duperemove-0.11.3-3.3.1.ppc64le.rpm btrfs-extent-same-0.11.3-3.3.1.aarch64.rpm duperemove-0.11.3-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-692 moderate SUSE Updates openSUSE-SLE 15.3 This update for filesystem fixes the following issues: - Release ported filesystem to LTSS channels (bsc#1190447). filesystem-15.0-11.5.1.src.rpm filesystem-15.0-11.5.1.x86_64.rpm filesystem-15.0-11.5.1.s390x.rpm filesystem-15.0-11.5.1.ppc64le.rpm filesystem-15.0-11.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-503 important SUSE Updates openSUSE-SLE 15.3 This update for xerces-j2 fixes the following issues: - CVE-2022-23437: Fixed infinite loop within Apache XercesJ xml parser (bsc#1195108). xerces-j2-2.12.0-3.3.1.noarch.rpm xerces-j2-2.12.0-3.3.1.src.rpm xerces-j2-demo-2.12.0-3.3.1.noarch.rpm xerces-j2-javadoc-2.12.0-3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-500 important SUSE Updates openSUSE-SLE 15.3 This update for xerces-j2 fixes the following issues: - CVE-2022-23437: Fixed infinite loop within Apache XercesJ xml parser (bsc#1195108). xerces-j2-2.11.0-4.3.1.src.rpm xerces-j2-scripts-2.11.0-4.3.1.noarch.rpm xerces-j2-xml-apis-2.11.0-4.3.1.noarch.rpm xerces-j2-xml-resolver-2.11.0-4.3.1.noarch.rpm openSUSE-SLE-15.3-2022-774 moderate SUSE Updates openSUSE-SLE 15.3 This update for tcpdump fixes the following issues: - CVE-2018-16301: Fixed segfault when handling large files (bsc#1195825). tcpdump-4.9.2-3.18.1.src.rpm tcpdump-4.9.2-3.18.1.x86_64.rpm tcpdump-4.9.2-3.18.1.s390x.rpm tcpdump-4.9.2-3.18.1.ppc64le.rpm tcpdump-4.9.2-3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-773 moderate SUSE Updates openSUSE-SLE 15.3 This update for fwupd fixes the following issues: - Ignore non-PCI NVMe devices (e.g. NVMe-over-Fabrics) when probing (bsc#1193921) dfu-tool-1.5.8-150300.3.3.1.x86_64.rpm fwupd-1.5.8-150300.3.3.1.src.rpm fwupd-1.5.8-150300.3.3.1.x86_64.rpm fwupd-devel-1.5.8-150300.3.3.1.x86_64.rpm fwupd-lang-1.5.8-150300.3.3.1.noarch.rpm fwupdtpmevlog-1.5.8-150300.3.3.1.x86_64.rpm libfwupd2-1.5.8-150300.3.3.1.x86_64.rpm libfwupdplugin1-1.5.8-150300.3.3.1.x86_64.rpm typelib-1_0-Fwupd-2_0-1.5.8-150300.3.3.1.x86_64.rpm typelib-1_0-FwupdPlugin-1_0-1.5.8-150300.3.3.1.x86_64.rpm dfu-tool-1.5.8-150300.3.3.1.s390x.rpm fwupd-1.5.8-150300.3.3.1.s390x.rpm fwupd-devel-1.5.8-150300.3.3.1.s390x.rpm fwupdtpmevlog-1.5.8-150300.3.3.1.s390x.rpm libfwupd2-1.5.8-150300.3.3.1.s390x.rpm libfwupdplugin1-1.5.8-150300.3.3.1.s390x.rpm typelib-1_0-Fwupd-2_0-1.5.8-150300.3.3.1.s390x.rpm typelib-1_0-FwupdPlugin-1_0-1.5.8-150300.3.3.1.s390x.rpm dfu-tool-1.5.8-150300.3.3.1.ppc64le.rpm fwupd-1.5.8-150300.3.3.1.ppc64le.rpm fwupd-devel-1.5.8-150300.3.3.1.ppc64le.rpm fwupdtpmevlog-1.5.8-150300.3.3.1.ppc64le.rpm libfwupd2-1.5.8-150300.3.3.1.ppc64le.rpm libfwupdplugin1-1.5.8-150300.3.3.1.ppc64le.rpm typelib-1_0-Fwupd-2_0-1.5.8-150300.3.3.1.ppc64le.rpm typelib-1_0-FwupdPlugin-1_0-1.5.8-150300.3.3.1.ppc64le.rpm dfu-tool-1.5.8-150300.3.3.1.aarch64.rpm fwupd-1.5.8-150300.3.3.1.aarch64.rpm fwupd-devel-1.5.8-150300.3.3.1.aarch64.rpm fwupdtpmevlog-1.5.8-150300.3.3.1.aarch64.rpm libfwupd2-1.5.8-150300.3.3.1.aarch64.rpm libfwupdplugin1-1.5.8-150300.3.3.1.aarch64.rpm typelib-1_0-Fwupd-2_0-1.5.8-150300.3.3.1.aarch64.rpm typelib-1_0-FwupdPlugin-1_0-1.5.8-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-775 moderate SUSE Updates openSUSE-SLE 15.3 This update for pciutils fixes the following issues: - Report the theoretical speeds for PCIe 5.0 and 6.0 (bsc#1192862) libpci3-3.5.6-150300.13.3.1.x86_64.rpm libpci3-32bit-3.5.6-150300.13.3.1.x86_64.rpm pciutils-3.5.6-150300.13.3.1.src.rpm pciutils-3.5.6-150300.13.3.1.x86_64.rpm pciutils-devel-3.5.6-150300.13.3.1.x86_64.rpm pciutils-devel-32bit-3.5.6-150300.13.3.1.x86_64.rpm libpci3-3.5.6-150300.13.3.1.s390x.rpm pciutils-3.5.6-150300.13.3.1.s390x.rpm pciutils-devel-3.5.6-150300.13.3.1.s390x.rpm libpci3-3.5.6-150300.13.3.1.ppc64le.rpm pciutils-3.5.6-150300.13.3.1.ppc64le.rpm pciutils-devel-3.5.6-150300.13.3.1.ppc64le.rpm libpci3-3.5.6-150300.13.3.1.aarch64.rpm pciutils-3.5.6-150300.13.3.1.aarch64.rpm pciutils-devel-3.5.6-150300.13.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-499 important SUSE Updates openSUSE-SLE 15.3 This update for python-Twisted fixes the following issues: - CVE-2022-21712: Fixed secret exposure in cross-origin redirects by properly removing sensitive headers when redirecting to a different origin (bsc#1195667). python-Twisted-19.10.0-3.6.1.src.rpm python-Twisted-doc-19.10.0-3.6.1.x86_64.rpm python2-Twisted-19.10.0-3.6.1.x86_64.rpm python3-Twisted-19.10.0-3.6.1.x86_64.rpm python-Twisted-doc-19.10.0-3.6.1.s390x.rpm python2-Twisted-19.10.0-3.6.1.s390x.rpm python3-Twisted-19.10.0-3.6.1.s390x.rpm python-Twisted-doc-19.10.0-3.6.1.ppc64le.rpm python2-Twisted-19.10.0-3.6.1.ppc64le.rpm python3-Twisted-19.10.0-3.6.1.ppc64le.rpm python-Twisted-doc-19.10.0-3.6.1.aarch64.rpm python2-Twisted-19.10.0-3.6.1.aarch64.rpm python3-Twisted-19.10.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-770 moderate SUSE Updates openSUSE-SLE 15.3 This update for buildah fixes the following issues: buildah was updated to version 1.23.1: Update to version 1.22.3: * Update dependencies * Post-branch commit * Accept repositories on login/logout Update to version 1.22.0: * c/image, c/storage, c/common vendor before Podman 3.3 release * Proposed patch for 3399 (shadowutils) * Fix handling of --restore shadow-utils * runtime-flag (debug) test: handle old & new runc * Allow dst and destination for target in secret mounts * Multi-arch: Always push updated version-tagged img * imagebuildah.stageExecutor.prepare(): remove pseudonym check * refine dangling filter * Chown with environment variables not set should fail * Just restore protections of shadow-utils * Remove specific kernel version number requirement from install.md * Multi-arch image workflow: Make steps generic * chroot: fix environment value leakage to intermediate processes * Update nix pin with `make nixpkgs` * buildah source - create and manage source images * Update cirrus-cron notification GH workflow * Reuse code from containers/common/pkg/parse * Cirrus: Freshen VM images * Fix excludes exception begining with / or ./ * Fix syntax for --manifest example * vendor containers/common@main * Cirrus: Drop dependence on fedora-minimal * Adjust conformance-test error-message regex * Workaround appearance of differing debug messages * Cirrus: Install docker from package cache * Switch rusagelogfile to use options.Out * Turn stdio back to blocking when command finishes * Add support for default network creation * Cirrus: Updates for master->main rename * Change references from master to main * Add `--env` and `--workingdir` flags to run command * [CI:DOCS] buildah bud: spelling --ignore-file requires parameter * [CI:DOCS] push/pull: clarify supported transports * Remove unused function arguments * Create mountOptions for mount command flags * Extract version command implementation to function * Add --json flags to `mount` and `version` commands * copier.Put(): set xattrs after ownership * buildah add/copy: spelling * buildah copy and buildah add should support .containerignore * Remove unused util.StartsWithValidTransport * Fix documentation of the --format option of buildah push * Don't use alltransports.ParseImageName with known transports * man pages: clarify `rmi` removes dangling parents * [CI:DOCS] Fix links to c/image master branch * imagebuildah: use the specified logger for logging preprocessing warnings * Fix copy into workdir for a single file * Fix docs links due to branch rename * Update nix pin with `make nixpkgs` * fix(docs): typo * Move to v1.22.0-dev * Fix handling of auth.json file while in a user namespace * Add rusage-logfile flag to optionally send rusage to a file * imagebuildah: redo step logging * Add volumes to make running buildah within a container easier * Add and use a "copy" helper instead of podman load/save * Bump github.com/containers/common from 0.38.4 to 0.39.0 * containerImageRef/containerImageSource: don't buffer uncompressed layers * containerImageRef(): squashed images have no parent images * Sync. workflow across skopeo, buildah, and podman * Bump github.com/containers/storage from 1.31.1 to 1.31.2 * Bump github.com/opencontainers/runc from 1.0.0-rc94 to 1.0.0-rc95 * Bump to v1.21.1-dev [NO TESTS NEEDED] buildah-1.23.1-150300.8.3.1.src.rpm buildah-1.23.1-150300.8.3.1.x86_64.rpm buildah-1.23.1-150300.8.3.1.s390x.rpm buildah-1.23.1-150300.8.3.1.ppc64le.rpm buildah-1.23.1-150300.8.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-574 important SUSE Updates openSUSE-SLE 15.3 This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220207 release. - CVE-2021-0146: Fixed a potential security vulnerability in some Intel Processors may allow escalation of privilege (bsc#1192615) - CVE-2021-0127: Intel Processor Breakpoint Control Flow (bsc#1195779) - CVE-2021-0145: Fast store forward predictor - Cross Domain Training (bsc#1195780) - CVE-2021-33120: Out of bounds read for some Intel Atom processors (bsc#1195781) - Security updates for [INTEL-SA-00528](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00528.html) - Security updates for [INTEL-SA-00532](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00532.html) ucode-intel-20220207-10.1.src.rpm ucode-intel-20220207-10.1.x86_64.rpm openSUSE-SLE-15.3-2022-562 moderate SUSE Updates openSUSE-SLE 15.3 This update for jasper fixes the following issues: - CVE-2021-27845: Fixed divide-by-zery issue in cp_create() (bsc#1188437). jasper-2.0.14-3.22.1.src.rpm jasper-2.0.14-3.22.1.x86_64.rpm libjasper-devel-2.0.14-3.22.1.x86_64.rpm libjasper4-2.0.14-3.22.1.x86_64.rpm libjasper4-32bit-2.0.14-3.22.1.x86_64.rpm jasper-2.0.14-3.22.1.s390x.rpm libjasper-devel-2.0.14-3.22.1.s390x.rpm libjasper4-2.0.14-3.22.1.s390x.rpm jasper-2.0.14-3.22.1.ppc64le.rpm libjasper-devel-2.0.14-3.22.1.ppc64le.rpm libjasper4-2.0.14-3.22.1.ppc64le.rpm jasper-2.0.14-3.22.1.aarch64.rpm libjasper-devel-2.0.14-3.22.1.aarch64.rpm libjasper4-2.0.14-3.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-528 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Provide a way to manage autofs mounts from within the HA Filesystem Resource Agent script. (jsc#SLE-23739) ldirectord-4.8.0+git30.d0077df0-150300.8.20.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-150300.8.20.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.20.1.src.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.20.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.20.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.20.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.20.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.20.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.20.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-808 moderate SUSE Updates openSUSE-SLE 15.3 This update for procps fixes the following issues: - Stop registering signal handler for SIGURG, to avoid `ps` failure if someone sends such signal. Without the signal handler, SIGURG will just be ignored. (bsc#1195468) libprocps7-3.3.15-7.22.1.x86_64.rpm procps-3.3.15-7.22.1.src.rpm procps-3.3.15-7.22.1.x86_64.rpm procps-devel-3.3.15-7.22.1.x86_64.rpm libprocps7-3.3.15-7.22.1.s390x.rpm procps-3.3.15-7.22.1.s390x.rpm procps-devel-3.3.15-7.22.1.s390x.rpm libprocps7-3.3.15-7.22.1.ppc64le.rpm procps-3.3.15-7.22.1.ppc64le.rpm procps-devel-3.3.15-7.22.1.ppc64le.rpm libprocps7-3.3.15-7.22.1.aarch64.rpm procps-3.3.15-7.22.1.aarch64.rpm procps-devel-3.3.15-7.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-776 moderate SUSE Updates openSUSE-SLE 15.3 This update for mutter fixes the following issues: - Improve mutter behavior when receiving a ClientMessage event, not to just assume that it's a WM_PROTOCOLS event but to actually check the type before using it (bsc#1188759) libmutter-5-0-3.34.6-3.9.1.x86_64.rpm mutter-3.34.6-3.9.1.src.rpm mutter-3.34.6-3.9.1.x86_64.rpm mutter-data-3.34.6-3.9.1.x86_64.rpm mutter-devel-3.34.6-3.9.1.x86_64.rpm mutter-lang-3.34.6-3.9.1.noarch.rpm libmutter-5-0-3.34.6-3.9.1.s390x.rpm mutter-3.34.6-3.9.1.s390x.rpm mutter-data-3.34.6-3.9.1.s390x.rpm mutter-devel-3.34.6-3.9.1.s390x.rpm libmutter-5-0-3.34.6-3.9.1.ppc64le.rpm mutter-3.34.6-3.9.1.ppc64le.rpm mutter-data-3.34.6-3.9.1.ppc64le.rpm mutter-devel-3.34.6-3.9.1.ppc64le.rpm libmutter-5-0-3.34.6-3.9.1.aarch64.rpm mutter-3.34.6-3.9.1.aarch64.rpm mutter-data-3.34.6-3.9.1.aarch64.rpm mutter-devel-3.34.6-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-791 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: scap-security-guide (ComplianceAsCode) was updated to 0.1.60 (jsc#ECO-3319) - Various bugfixes - New draft stig profile v1r1 for OL8 - New product Amazon EKS platform and initial CIS profiles - New product CentOS Stream 9, as a derivative from RHEL9 product Note that SUSE only supports for SUSE Linux Enterprise 12 and 15: - STIG profiles - HIPAA profiles - PCI-DSS profiles The CIS profile is community supplied and currently not supported by SUSE. scap-security-guide-0.1.60-1.29.1.noarch.rpm scap-security-guide-0.1.60-1.29.1.src.rpm scap-security-guide-debian-0.1.60-1.29.1.noarch.rpm scap-security-guide-redhat-0.1.60-1.29.1.noarch.rpm scap-security-guide-ubuntu-0.1.60-1.29.1.noarch.rpm openSUSE-SLE-15.3-2022-699 moderate SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2017-8923: Fixed denial of service (application crash) when using .= with a long string (zend_string_extend func in Zend/zend_string.h) (bsc#1038980). apache2-mod_php7-7.4.6-3.32.1.x86_64.rpm php7-7.4.6-3.32.1.src.rpm php7-7.4.6-3.32.1.x86_64.rpm php7-bcmath-7.4.6-3.32.1.x86_64.rpm php7-bz2-7.4.6-3.32.1.x86_64.rpm php7-calendar-7.4.6-3.32.1.x86_64.rpm php7-ctype-7.4.6-3.32.1.x86_64.rpm php7-curl-7.4.6-3.32.1.x86_64.rpm php7-dba-7.4.6-3.32.1.x86_64.rpm php7-devel-7.4.6-3.32.1.x86_64.rpm php7-dom-7.4.6-3.32.1.x86_64.rpm php7-embed-7.4.6-3.32.1.x86_64.rpm php7-enchant-7.4.6-3.32.1.x86_64.rpm php7-exif-7.4.6-3.32.1.x86_64.rpm php7-fastcgi-7.4.6-3.32.1.x86_64.rpm php7-fileinfo-7.4.6-3.32.1.x86_64.rpm php7-firebird-7.4.6-3.32.1.x86_64.rpm php7-fpm-7.4.6-3.32.1.x86_64.rpm php7-ftp-7.4.6-3.32.1.x86_64.rpm php7-gd-7.4.6-3.32.1.x86_64.rpm php7-gettext-7.4.6-3.32.1.x86_64.rpm php7-gmp-7.4.6-3.32.1.x86_64.rpm php7-iconv-7.4.6-3.32.1.x86_64.rpm php7-intl-7.4.6-3.32.1.x86_64.rpm php7-json-7.4.6-3.32.1.x86_64.rpm php7-ldap-7.4.6-3.32.1.x86_64.rpm php7-mbstring-7.4.6-3.32.1.x86_64.rpm php7-mysql-7.4.6-3.32.1.x86_64.rpm php7-odbc-7.4.6-3.32.1.x86_64.rpm php7-opcache-7.4.6-3.32.1.x86_64.rpm php7-openssl-7.4.6-3.32.1.x86_64.rpm php7-pcntl-7.4.6-3.32.1.x86_64.rpm php7-pdo-7.4.6-3.32.1.x86_64.rpm php7-pgsql-7.4.6-3.32.1.x86_64.rpm php7-phar-7.4.6-3.32.1.x86_64.rpm php7-posix-7.4.6-3.32.1.x86_64.rpm php7-readline-7.4.6-3.32.1.x86_64.rpm php7-shmop-7.4.6-3.32.1.x86_64.rpm php7-snmp-7.4.6-3.32.1.x86_64.rpm php7-soap-7.4.6-3.32.1.x86_64.rpm php7-sockets-7.4.6-3.32.1.x86_64.rpm php7-sodium-7.4.6-3.32.1.x86_64.rpm php7-sqlite-7.4.6-3.32.1.x86_64.rpm php7-sysvmsg-7.4.6-3.32.1.x86_64.rpm php7-sysvsem-7.4.6-3.32.1.x86_64.rpm php7-sysvshm-7.4.6-3.32.1.x86_64.rpm php7-test-7.4.6-3.32.1.src.rpm php7-test-7.4.6-3.32.1.x86_64.rpm php7-tidy-7.4.6-3.32.1.x86_64.rpm php7-tokenizer-7.4.6-3.32.1.x86_64.rpm php7-xmlreader-7.4.6-3.32.1.x86_64.rpm php7-xmlrpc-7.4.6-3.32.1.x86_64.rpm php7-xmlwriter-7.4.6-3.32.1.x86_64.rpm php7-xsl-7.4.6-3.32.1.x86_64.rpm php7-zip-7.4.6-3.32.1.x86_64.rpm php7-zlib-7.4.6-3.32.1.x86_64.rpm apache2-mod_php7-7.4.6-3.32.1.s390x.rpm php7-7.4.6-3.32.1.s390x.rpm php7-bcmath-7.4.6-3.32.1.s390x.rpm php7-bz2-7.4.6-3.32.1.s390x.rpm php7-calendar-7.4.6-3.32.1.s390x.rpm php7-ctype-7.4.6-3.32.1.s390x.rpm php7-curl-7.4.6-3.32.1.s390x.rpm php7-dba-7.4.6-3.32.1.s390x.rpm php7-devel-7.4.6-3.32.1.s390x.rpm php7-dom-7.4.6-3.32.1.s390x.rpm php7-embed-7.4.6-3.32.1.s390x.rpm php7-enchant-7.4.6-3.32.1.s390x.rpm php7-exif-7.4.6-3.32.1.s390x.rpm php7-fastcgi-7.4.6-3.32.1.s390x.rpm php7-fileinfo-7.4.6-3.32.1.s390x.rpm php7-firebird-7.4.6-3.32.1.s390x.rpm php7-fpm-7.4.6-3.32.1.s390x.rpm php7-ftp-7.4.6-3.32.1.s390x.rpm php7-gd-7.4.6-3.32.1.s390x.rpm php7-gettext-7.4.6-3.32.1.s390x.rpm php7-gmp-7.4.6-3.32.1.s390x.rpm php7-iconv-7.4.6-3.32.1.s390x.rpm php7-intl-7.4.6-3.32.1.s390x.rpm php7-json-7.4.6-3.32.1.s390x.rpm php7-ldap-7.4.6-3.32.1.s390x.rpm php7-mbstring-7.4.6-3.32.1.s390x.rpm php7-mysql-7.4.6-3.32.1.s390x.rpm php7-odbc-7.4.6-3.32.1.s390x.rpm php7-opcache-7.4.6-3.32.1.s390x.rpm php7-openssl-7.4.6-3.32.1.s390x.rpm php7-pcntl-7.4.6-3.32.1.s390x.rpm php7-pdo-7.4.6-3.32.1.s390x.rpm php7-pgsql-7.4.6-3.32.1.s390x.rpm php7-phar-7.4.6-3.32.1.s390x.rpm php7-posix-7.4.6-3.32.1.s390x.rpm php7-readline-7.4.6-3.32.1.s390x.rpm php7-shmop-7.4.6-3.32.1.s390x.rpm php7-snmp-7.4.6-3.32.1.s390x.rpm php7-soap-7.4.6-3.32.1.s390x.rpm php7-sockets-7.4.6-3.32.1.s390x.rpm php7-sodium-7.4.6-3.32.1.s390x.rpm php7-sqlite-7.4.6-3.32.1.s390x.rpm php7-sysvmsg-7.4.6-3.32.1.s390x.rpm php7-sysvsem-7.4.6-3.32.1.s390x.rpm php7-sysvshm-7.4.6-3.32.1.s390x.rpm php7-test-7.4.6-3.32.1.s390x.rpm php7-tidy-7.4.6-3.32.1.s390x.rpm php7-tokenizer-7.4.6-3.32.1.s390x.rpm php7-xmlreader-7.4.6-3.32.1.s390x.rpm php7-xmlrpc-7.4.6-3.32.1.s390x.rpm php7-xmlwriter-7.4.6-3.32.1.s390x.rpm php7-xsl-7.4.6-3.32.1.s390x.rpm php7-zip-7.4.6-3.32.1.s390x.rpm php7-zlib-7.4.6-3.32.1.s390x.rpm apache2-mod_php7-7.4.6-3.32.1.ppc64le.rpm php7-7.4.6-3.32.1.ppc64le.rpm php7-bcmath-7.4.6-3.32.1.ppc64le.rpm php7-bz2-7.4.6-3.32.1.ppc64le.rpm php7-calendar-7.4.6-3.32.1.ppc64le.rpm php7-ctype-7.4.6-3.32.1.ppc64le.rpm php7-curl-7.4.6-3.32.1.ppc64le.rpm php7-dba-7.4.6-3.32.1.ppc64le.rpm php7-devel-7.4.6-3.32.1.ppc64le.rpm php7-dom-7.4.6-3.32.1.ppc64le.rpm php7-embed-7.4.6-3.32.1.ppc64le.rpm php7-enchant-7.4.6-3.32.1.ppc64le.rpm php7-exif-7.4.6-3.32.1.ppc64le.rpm php7-fastcgi-7.4.6-3.32.1.ppc64le.rpm php7-fileinfo-7.4.6-3.32.1.ppc64le.rpm php7-firebird-7.4.6-3.32.1.ppc64le.rpm php7-fpm-7.4.6-3.32.1.ppc64le.rpm php7-ftp-7.4.6-3.32.1.ppc64le.rpm php7-gd-7.4.6-3.32.1.ppc64le.rpm php7-gettext-7.4.6-3.32.1.ppc64le.rpm php7-gmp-7.4.6-3.32.1.ppc64le.rpm php7-iconv-7.4.6-3.32.1.ppc64le.rpm php7-intl-7.4.6-3.32.1.ppc64le.rpm php7-json-7.4.6-3.32.1.ppc64le.rpm php7-ldap-7.4.6-3.32.1.ppc64le.rpm php7-mbstring-7.4.6-3.32.1.ppc64le.rpm php7-mysql-7.4.6-3.32.1.ppc64le.rpm php7-odbc-7.4.6-3.32.1.ppc64le.rpm php7-opcache-7.4.6-3.32.1.ppc64le.rpm php7-openssl-7.4.6-3.32.1.ppc64le.rpm php7-pcntl-7.4.6-3.32.1.ppc64le.rpm php7-pdo-7.4.6-3.32.1.ppc64le.rpm php7-pgsql-7.4.6-3.32.1.ppc64le.rpm php7-phar-7.4.6-3.32.1.ppc64le.rpm php7-posix-7.4.6-3.32.1.ppc64le.rpm php7-readline-7.4.6-3.32.1.ppc64le.rpm php7-shmop-7.4.6-3.32.1.ppc64le.rpm php7-snmp-7.4.6-3.32.1.ppc64le.rpm php7-soap-7.4.6-3.32.1.ppc64le.rpm php7-sockets-7.4.6-3.32.1.ppc64le.rpm php7-sodium-7.4.6-3.32.1.ppc64le.rpm php7-sqlite-7.4.6-3.32.1.ppc64le.rpm php7-sysvmsg-7.4.6-3.32.1.ppc64le.rpm php7-sysvsem-7.4.6-3.32.1.ppc64le.rpm php7-sysvshm-7.4.6-3.32.1.ppc64le.rpm php7-test-7.4.6-3.32.1.ppc64le.rpm php7-tidy-7.4.6-3.32.1.ppc64le.rpm php7-tokenizer-7.4.6-3.32.1.ppc64le.rpm php7-xmlreader-7.4.6-3.32.1.ppc64le.rpm php7-xmlrpc-7.4.6-3.32.1.ppc64le.rpm php7-xmlwriter-7.4.6-3.32.1.ppc64le.rpm php7-xsl-7.4.6-3.32.1.ppc64le.rpm php7-zip-7.4.6-3.32.1.ppc64le.rpm php7-zlib-7.4.6-3.32.1.ppc64le.rpm apache2-mod_php7-7.4.6-3.32.1.aarch64.rpm php7-7.4.6-3.32.1.aarch64.rpm php7-bcmath-7.4.6-3.32.1.aarch64.rpm php7-bz2-7.4.6-3.32.1.aarch64.rpm php7-calendar-7.4.6-3.32.1.aarch64.rpm php7-ctype-7.4.6-3.32.1.aarch64.rpm php7-curl-7.4.6-3.32.1.aarch64.rpm php7-dba-7.4.6-3.32.1.aarch64.rpm php7-devel-7.4.6-3.32.1.aarch64.rpm php7-dom-7.4.6-3.32.1.aarch64.rpm php7-embed-7.4.6-3.32.1.aarch64.rpm php7-enchant-7.4.6-3.32.1.aarch64.rpm php7-exif-7.4.6-3.32.1.aarch64.rpm php7-fastcgi-7.4.6-3.32.1.aarch64.rpm php7-fileinfo-7.4.6-3.32.1.aarch64.rpm php7-firebird-7.4.6-3.32.1.aarch64.rpm php7-fpm-7.4.6-3.32.1.aarch64.rpm php7-ftp-7.4.6-3.32.1.aarch64.rpm php7-gd-7.4.6-3.32.1.aarch64.rpm php7-gettext-7.4.6-3.32.1.aarch64.rpm php7-gmp-7.4.6-3.32.1.aarch64.rpm php7-iconv-7.4.6-3.32.1.aarch64.rpm php7-intl-7.4.6-3.32.1.aarch64.rpm php7-json-7.4.6-3.32.1.aarch64.rpm php7-ldap-7.4.6-3.32.1.aarch64.rpm php7-mbstring-7.4.6-3.32.1.aarch64.rpm php7-mysql-7.4.6-3.32.1.aarch64.rpm php7-odbc-7.4.6-3.32.1.aarch64.rpm php7-opcache-7.4.6-3.32.1.aarch64.rpm php7-openssl-7.4.6-3.32.1.aarch64.rpm php7-pcntl-7.4.6-3.32.1.aarch64.rpm php7-pdo-7.4.6-3.32.1.aarch64.rpm php7-pgsql-7.4.6-3.32.1.aarch64.rpm php7-phar-7.4.6-3.32.1.aarch64.rpm php7-posix-7.4.6-3.32.1.aarch64.rpm php7-readline-7.4.6-3.32.1.aarch64.rpm php7-shmop-7.4.6-3.32.1.aarch64.rpm php7-snmp-7.4.6-3.32.1.aarch64.rpm php7-soap-7.4.6-3.32.1.aarch64.rpm php7-sockets-7.4.6-3.32.1.aarch64.rpm php7-sodium-7.4.6-3.32.1.aarch64.rpm php7-sqlite-7.4.6-3.32.1.aarch64.rpm php7-sysvmsg-7.4.6-3.32.1.aarch64.rpm php7-sysvsem-7.4.6-3.32.1.aarch64.rpm php7-sysvshm-7.4.6-3.32.1.aarch64.rpm php7-test-7.4.6-3.32.1.aarch64.rpm php7-tidy-7.4.6-3.32.1.aarch64.rpm php7-tokenizer-7.4.6-3.32.1.aarch64.rpm php7-xmlreader-7.4.6-3.32.1.aarch64.rpm php7-xmlrpc-7.4.6-3.32.1.aarch64.rpm php7-xmlwriter-7.4.6-3.32.1.aarch64.rpm php7-xsl-7.4.6-3.32.1.aarch64.rpm php7-zip-7.4.6-3.32.1.aarch64.rpm php7-zlib-7.4.6-3.32.1.aarch64.rpm openSUSE-SLE-15.3-2022-1091 moderate SUSE Updates openSUSE-SLE 15.3 This update for python fixes the following issues: - CVE-2022-0391: Fixed URL sanitization containing ASCII newline and tabs in urlparse (bsc#1195396). - CVE-2021-4189: Fixed ftplib not to trust the PASV response (bsc#1194146). - CVE-2021-3572: Fixed an improper handling of unicode characters in pip (bsc#1186819). libpython2_7-1_0-2.7.18-150000.38.2.x86_64.rpm libpython2_7-1_0-32bit-2.7.18-150000.38.2.x86_64.rpm python-2.7.18-150000.38.1.src.rpm python-2.7.18-150000.38.1.x86_64.rpm python-32bit-2.7.18-150000.38.1.x86_64.rpm python-base-2.7.18-150000.38.2.src.rpm python-base-2.7.18-150000.38.2.x86_64.rpm python-base-32bit-2.7.18-150000.38.2.x86_64.rpm python-curses-2.7.18-150000.38.1.x86_64.rpm python-demo-2.7.18-150000.38.1.x86_64.rpm python-devel-2.7.18-150000.38.2.x86_64.rpm python-doc-2.7.18-150000.38.1.noarch.rpm python-doc-2.7.18-150000.38.1.src.rpm python-doc-pdf-2.7.18-150000.38.1.noarch.rpm python-gdbm-2.7.18-150000.38.1.x86_64.rpm python-idle-2.7.18-150000.38.1.x86_64.rpm python-tk-2.7.18-150000.38.1.x86_64.rpm python-xml-2.7.18-150000.38.2.x86_64.rpm libpython2_7-1_0-2.7.18-150000.38.2.s390x.rpm python-2.7.18-150000.38.1.s390x.rpm python-base-2.7.18-150000.38.2.s390x.rpm python-curses-2.7.18-150000.38.1.s390x.rpm python-demo-2.7.18-150000.38.1.s390x.rpm python-devel-2.7.18-150000.38.2.s390x.rpm python-gdbm-2.7.18-150000.38.1.s390x.rpm python-idle-2.7.18-150000.38.1.s390x.rpm python-tk-2.7.18-150000.38.1.s390x.rpm python-xml-2.7.18-150000.38.2.s390x.rpm libpython2_7-1_0-2.7.18-150000.38.2.ppc64le.rpm python-2.7.18-150000.38.1.ppc64le.rpm python-base-2.7.18-150000.38.2.ppc64le.rpm python-curses-2.7.18-150000.38.1.ppc64le.rpm python-demo-2.7.18-150000.38.1.ppc64le.rpm python-devel-2.7.18-150000.38.2.ppc64le.rpm python-gdbm-2.7.18-150000.38.1.ppc64le.rpm python-idle-2.7.18-150000.38.1.ppc64le.rpm python-tk-2.7.18-150000.38.1.ppc64le.rpm python-xml-2.7.18-150000.38.2.ppc64le.rpm libpython2_7-1_0-2.7.18-150000.38.2.aarch64.rpm python-2.7.18-150000.38.1.aarch64.rpm python-base-2.7.18-150000.38.2.aarch64.rpm python-curses-2.7.18-150000.38.1.aarch64.rpm python-demo-2.7.18-150000.38.1.aarch64.rpm python-devel-2.7.18-150000.38.2.aarch64.rpm python-gdbm-2.7.18-150000.38.1.aarch64.rpm python-idle-2.7.18-150000.38.1.aarch64.rpm python-tk-2.7.18-150000.38.1.aarch64.rpm python-xml-2.7.18-150000.38.2.aarch64.rpm openSUSE-SLE-15.3-2022-898 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issues: - Added data for 5_3_18-150300_59_43, 5_3_18-24_99, 5_3_18-59_40. (bsc#1020320) lifecycle-data-sle-module-live-patching-15-4.69.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-4.69.1.src.rpm openSUSE-SLE-15.3-2022-681 critical SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Update -addon-azure to 1.0.2 (bsc#1196305) - Fix regression in the cloud-regionsrv-client' with OnDemand images - Update to version 10.0.0 (bsc#1195414, bsc#1195564) - Refactor removes check_registration() function in utils implementation - Only start the registration service for PAYG images - addon-azure sub-package to version 1.0.1 cloud-regionsrv-client-10.0.0-6.62.1.noarch.rpm cloud-regionsrv-client-10.0.0-6.62.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-6.62.1.noarch.rpm cloud-regionsrv-client-plugin-azure-2.0.0-6.62.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-6.62.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-6.62.1.noarch.rpm openSUSE-SLE-15.3-2022-687 moderate SUSE Updates openSUSE-SLE 15.3 This update for libvirt fixes the following issues: - libxl: Mark auto-allocated graphics ports to used on reconnect. - libxl: Release all auto-allocated graphics ports. (bsc#1191668) - libxl: Add lock process indicator to saved VM state. (bsc#1191668) - spec: Weaken apparmor-abstractions dependency to Recommends. (bsc#1192119, jsc#SLE-23394) libvirt-7.1.0-150300.6.26.1.src.rpm libvirt-7.1.0-150300.6.26.1.x86_64.rpm libvirt-admin-7.1.0-150300.6.26.1.x86_64.rpm libvirt-bash-completion-7.1.0-150300.6.26.1.noarch.rpm libvirt-client-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-xen-7.1.0-150300.6.26.1.x86_64.rpm libvirt-devel-32bit-7.1.0-150300.6.26.1.x86_64.rpm libvirt-devel-7.1.0-150300.6.26.1.x86_64.rpm libvirt-doc-7.1.0-150300.6.26.1.noarch.rpm libvirt-libs-7.1.0-150300.6.26.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-150300.6.26.1.x86_64.rpm libvirt-nss-7.1.0-150300.6.26.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.26.1.x86_64.rpm libvirt-7.1.0-150300.6.26.1.s390x.rpm libvirt-admin-7.1.0-150300.6.26.1.s390x.rpm libvirt-client-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-config-network-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-hooks-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-lxc-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-qemu-7.1.0-150300.6.26.1.s390x.rpm libvirt-devel-7.1.0-150300.6.26.1.s390x.rpm libvirt-libs-7.1.0-150300.6.26.1.s390x.rpm libvirt-lock-sanlock-7.1.0-150300.6.26.1.s390x.rpm libvirt-nss-7.1.0-150300.6.26.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-150300.6.26.1.s390x.rpm libvirt-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-admin-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-client-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-devel-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-libs-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-nss-7.1.0-150300.6.26.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-7.1.0-150300.6.26.1.aarch64.rpm libvirt-admin-7.1.0-150300.6.26.1.aarch64.rpm libvirt-client-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-150300.6.26.1.aarch64.rpm libvirt-devel-7.1.0-150300.6.26.1.aarch64.rpm libvirt-libs-7.1.0-150300.6.26.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-150300.6.26.1.aarch64.rpm libvirt-nss-7.1.0-150300.6.26.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-1138 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnome-shell fixes the following issues: - Show message "Multiple logins are not supported" when mixed locally/remotely login. (bsc#1190745) - Fix grab issue when destroying open popup menu. (bsc#1187571) - The previous code always restarted whole ECalClientView when it received any changes in it, which could sometimes lead to constant repeated restarts of the view. (bsc#1185944) - Fix the failed login when remotely login. (bsc#1196708) gnome-shell-3.34.5-150300.10.5.1.src.rpm gnome-shell-3.34.5-150300.10.5.1.x86_64.rpm gnome-shell-calendar-3.34.5-150300.10.5.1.x86_64.rpm gnome-shell-devel-3.34.5-150300.10.5.1.x86_64.rpm gnome-shell-lang-3.34.5-150300.10.5.1.noarch.rpm gnome-shell-3.34.5-150300.10.5.1.s390x.rpm gnome-shell-calendar-3.34.5-150300.10.5.1.s390x.rpm gnome-shell-devel-3.34.5-150300.10.5.1.s390x.rpm gnome-shell-3.34.5-150300.10.5.1.ppc64le.rpm gnome-shell-calendar-3.34.5-150300.10.5.1.ppc64le.rpm gnome-shell-devel-3.34.5-150300.10.5.1.ppc64le.rpm gnome-shell-3.34.5-150300.10.5.1.aarch64.rpm gnome-shell-calendar-3.34.5-150300.10.5.1.aarch64.rpm gnome-shell-devel-3.34.5-150300.10.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-789 moderate SUSE Updates openSUSE-SLE 15.3 This update for update-alternatives fixes the following issues: - Break bash - update-alternatives cycle rewrite of '%post' in 'lua'. (bsc#1195654) update-alternatives-1.19.0.4-4.3.1.src.rpm update-alternatives-1.19.0.4-4.3.1.x86_64.rpm update-alternatives-1.19.0.4-4.3.1.s390x.rpm update-alternatives-1.19.0.4-4.3.1.ppc64le.rpm update-alternatives-1.19.0.4-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1458 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql fixes the following issues: - Fix the pg_server_requires macro on older rpm versions (SLE-12) - Avoid a dependency on awk in postgresql-script. - Move the dependency of llvmjit-devel on clang and llvm to the implementation packages where we can depend on the correct versions. - Fix postgresql_has_llvm usage - First round of changes to make it easier to build extensions for - add postgresql-llvmjit-devel subpackage: This package will pull in clang and llvm if the distro has a recent enough version, otherwise it will just pull postgresql-server-devel. - add postgresql macros to the postgresql-server-devel package those cover all the variables from pg_config and some macros to remove repitition from the spec files - Bump version to 14. (bsc#1195680) postgresql-14-150300.10.9.12.noarch.rpm postgresql-14-150300.10.9.12.src.rpm postgresql-contrib-14-150300.10.9.12.noarch.rpm postgresql-devel-14-150300.10.9.12.noarch.rpm postgresql-docs-14-150300.10.9.12.noarch.rpm postgresql-llvmjit-14-150300.10.9.12.noarch.rpm postgresql-plperl-14-150300.10.9.12.noarch.rpm postgresql-plpython-14-150300.10.9.12.noarch.rpm postgresql-pltcl-14-150300.10.9.12.noarch.rpm postgresql-server-14-150300.10.9.12.noarch.rpm postgresql-server-devel-14-150300.10.9.12.noarch.rpm postgresql-test-14-150300.10.9.12.noarch.rpm openSUSE-SLE-15.3-2022-1457 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: - Upgrade to 12.10: (bsc#1195680) * https://www.postgresql.org/docs/12/release-12-10.html * Reindexing might be needed after applying this upgrade, so please read the release notes carefully. - Add constraints file with 12GB of memory for s390x as a workaround. (bsc#1190740) - Add a llvmjit-devel subpackage to pull in the right versions of clang and llvm for building extensions. - Fix some mistakes in the interdependencies between the implementation packages and their noarch counterpart. - Update the BuildIgnore section. postgresql12-12.10-8.29.1.src.rpm postgresql12-12.10-8.29.1.x86_64.rpm postgresql12-contrib-12.10-8.29.1.x86_64.rpm postgresql12-devel-12.10-8.29.1.x86_64.rpm postgresql12-docs-12.10-8.29.1.noarch.rpm postgresql12-llvmjit-12.10-8.29.1.x86_64.rpm postgresql12-plperl-12.10-8.29.1.x86_64.rpm postgresql12-plpython-12.10-8.29.1.x86_64.rpm postgresql12-pltcl-12.10-8.29.1.x86_64.rpm postgresql12-server-12.10-8.29.1.x86_64.rpm postgresql12-server-devel-12.10-8.29.1.x86_64.rpm postgresql12-test-12.10-8.29.1.x86_64.rpm postgresql12-12.10-8.29.1.s390x.rpm postgresql12-contrib-12.10-8.29.1.s390x.rpm postgresql12-devel-12.10-8.29.1.s390x.rpm postgresql12-llvmjit-12.10-8.29.1.s390x.rpm postgresql12-plperl-12.10-8.29.1.s390x.rpm postgresql12-plpython-12.10-8.29.1.s390x.rpm postgresql12-pltcl-12.10-8.29.1.s390x.rpm postgresql12-server-12.10-8.29.1.s390x.rpm postgresql12-server-devel-12.10-8.29.1.s390x.rpm postgresql12-test-12.10-8.29.1.s390x.rpm postgresql12-12.10-8.29.1.ppc64le.rpm postgresql12-contrib-12.10-8.29.1.ppc64le.rpm postgresql12-devel-12.10-8.29.1.ppc64le.rpm postgresql12-llvmjit-12.10-8.29.1.ppc64le.rpm postgresql12-plperl-12.10-8.29.1.ppc64le.rpm postgresql12-plpython-12.10-8.29.1.ppc64le.rpm postgresql12-pltcl-12.10-8.29.1.ppc64le.rpm postgresql12-server-12.10-8.29.1.ppc64le.rpm postgresql12-server-devel-12.10-8.29.1.ppc64le.rpm postgresql12-test-12.10-8.29.1.ppc64le.rpm postgresql12-12.10-8.29.1.aarch64.rpm postgresql12-contrib-12.10-8.29.1.aarch64.rpm postgresql12-devel-12.10-8.29.1.aarch64.rpm postgresql12-llvmjit-12.10-8.29.1.aarch64.rpm postgresql12-plperl-12.10-8.29.1.aarch64.rpm postgresql12-plpython-12.10-8.29.1.aarch64.rpm postgresql12-pltcl-12.10-8.29.1.aarch64.rpm postgresql12-server-12.10-8.29.1.aarch64.rpm postgresql12-server-devel-12.10-8.29.1.aarch64.rpm postgresql12-test-12.10-8.29.1.aarch64.rpm openSUSE-SLE-15.3-2022-893 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - Upgrade to 13.6: (bsc#1195680) * https://www.postgresql.org/docs/13/release-13-6.html * Reindexing might be needed after applying this upgrade, so please read the release notes carefully. - Add constraints file with 12GB of memory for s390x as a workaround. (bsc#1190740) - Add a llvmjit-devel subpackage to pull in the right versions of clang and llvm for building extensions. - Fix some mistakes in the interdependencies between the implementation packages and their noarch counterpart. - Update the BuildIgnore section. postgresql13-13.6-5.25.1.src.rpm postgresql13-13.6-5.25.1.x86_64.rpm postgresql13-contrib-13.6-5.25.1.x86_64.rpm postgresql13-devel-13.6-5.25.1.x86_64.rpm postgresql13-docs-13.6-5.25.1.noarch.rpm postgresql13-llvmjit-13.6-5.25.1.x86_64.rpm postgresql13-plperl-13.6-5.25.1.x86_64.rpm postgresql13-plpython-13.6-5.25.1.x86_64.rpm postgresql13-pltcl-13.6-5.25.1.x86_64.rpm postgresql13-server-13.6-5.25.1.x86_64.rpm postgresql13-server-devel-13.6-5.25.1.x86_64.rpm postgresql13-test-13.6-5.25.1.x86_64.rpm postgresql13-13.6-5.25.1.s390x.rpm postgresql13-contrib-13.6-5.25.1.s390x.rpm postgresql13-devel-13.6-5.25.1.s390x.rpm postgresql13-llvmjit-13.6-5.25.1.s390x.rpm postgresql13-plperl-13.6-5.25.1.s390x.rpm postgresql13-plpython-13.6-5.25.1.s390x.rpm postgresql13-pltcl-13.6-5.25.1.s390x.rpm postgresql13-server-13.6-5.25.1.s390x.rpm postgresql13-server-devel-13.6-5.25.1.s390x.rpm postgresql13-test-13.6-5.25.1.s390x.rpm postgresql13-13.6-5.25.1.ppc64le.rpm postgresql13-contrib-13.6-5.25.1.ppc64le.rpm postgresql13-devel-13.6-5.25.1.ppc64le.rpm postgresql13-llvmjit-13.6-5.25.1.ppc64le.rpm postgresql13-plperl-13.6-5.25.1.ppc64le.rpm postgresql13-plpython-13.6-5.25.1.ppc64le.rpm postgresql13-pltcl-13.6-5.25.1.ppc64le.rpm postgresql13-server-13.6-5.25.1.ppc64le.rpm postgresql13-server-devel-13.6-5.25.1.ppc64le.rpm postgresql13-test-13.6-5.25.1.ppc64le.rpm postgresql13-13.6-5.25.1.aarch64.rpm postgresql13-contrib-13.6-5.25.1.aarch64.rpm postgresql13-devel-13.6-5.25.1.aarch64.rpm postgresql13-llvmjit-13.6-5.25.1.aarch64.rpm postgresql13-plperl-13.6-5.25.1.aarch64.rpm postgresql13-plpython-13.6-5.25.1.aarch64.rpm postgresql13-pltcl-13.6-5.25.1.aarch64.rpm postgresql13-server-13.6-5.25.1.aarch64.rpm postgresql13-server-devel-13.6-5.25.1.aarch64.rpm postgresql13-test-13.6-5.25.1.aarch64.rpm openSUSE-SLE-15.3-2022-1463 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - Upgrade to 14.2: (bsc#1195680) * https://www.postgresql.org/docs/14/release-14-2.html * Reindexing might be needed after applying this upgrade, so please read the release notes carefully. - Add constraints file with 12GB of memory for s390x as a workaround. (bsc#1190740) - Add a llvmjit-devel subpackage to pull in the right versions of clang and llvm for building extensions. - Fix some mistakes in the interdependencies between the implementation packages and their noarch counterpart. - Update the BuildIgnore section. libecpg6-14.2-5.9.2.x86_64.rpm libecpg6-32bit-14.2-5.9.2.x86_64.rpm libpq5-14.2-5.9.2.x86_64.rpm libpq5-32bit-14.2-5.9.2.x86_64.rpm postgresql14-14.2-5.9.1.src.rpm postgresql14-14.2-5.9.2.src.rpm postgresql14-14.2-5.9.2.x86_64.rpm postgresql14-contrib-14.2-5.9.2.x86_64.rpm postgresql14-devel-14.2-5.9.2.x86_64.rpm postgresql14-devel-mini-14.2-5.9.1.x86_64.rpm postgresql14-docs-14.2-5.9.2.noarch.rpm postgresql14-llvmjit-14.2-5.9.2.x86_64.rpm postgresql14-plperl-14.2-5.9.2.x86_64.rpm postgresql14-plpython-14.2-5.9.2.x86_64.rpm postgresql14-pltcl-14.2-5.9.2.x86_64.rpm postgresql14-server-14.2-5.9.2.x86_64.rpm postgresql14-server-devel-14.2-5.9.2.x86_64.rpm postgresql14-test-14.2-5.9.2.x86_64.rpm libecpg6-14.2-5.9.2.s390x.rpm libpq5-14.2-5.9.2.s390x.rpm postgresql14-14.2-5.9.2.s390x.rpm postgresql14-contrib-14.2-5.9.2.s390x.rpm postgresql14-devel-14.2-5.9.2.s390x.rpm postgresql14-devel-mini-14.2-5.9.1.s390x.rpm postgresql14-llvmjit-14.2-5.9.2.s390x.rpm postgresql14-plperl-14.2-5.9.2.s390x.rpm postgresql14-plpython-14.2-5.9.2.s390x.rpm postgresql14-pltcl-14.2-5.9.2.s390x.rpm postgresql14-server-14.2-5.9.2.s390x.rpm postgresql14-server-devel-14.2-5.9.2.s390x.rpm postgresql14-test-14.2-5.9.2.s390x.rpm libecpg6-14.2-5.9.2.ppc64le.rpm libpq5-14.2-5.9.2.ppc64le.rpm postgresql14-14.2-5.9.2.ppc64le.rpm postgresql14-contrib-14.2-5.9.2.ppc64le.rpm postgresql14-devel-14.2-5.9.2.ppc64le.rpm postgresql14-devel-mini-14.2-5.9.1.ppc64le.rpm postgresql14-llvmjit-14.2-5.9.2.ppc64le.rpm postgresql14-plperl-14.2-5.9.2.ppc64le.rpm postgresql14-plpython-14.2-5.9.2.ppc64le.rpm postgresql14-pltcl-14.2-5.9.2.ppc64le.rpm postgresql14-server-14.2-5.9.2.ppc64le.rpm postgresql14-server-devel-14.2-5.9.2.ppc64le.rpm postgresql14-test-14.2-5.9.2.ppc64le.rpm libecpg6-14.2-5.9.2.aarch64.rpm libpq5-14.2-5.9.2.aarch64.rpm postgresql14-14.2-5.9.2.aarch64.rpm postgresql14-contrib-14.2-5.9.2.aarch64.rpm postgresql14-devel-14.2-5.9.2.aarch64.rpm postgresql14-devel-mini-14.2-5.9.1.aarch64.rpm postgresql14-llvmjit-14.2-5.9.2.aarch64.rpm postgresql14-plperl-14.2-5.9.2.aarch64.rpm postgresql14-plpython-14.2-5.9.2.aarch64.rpm postgresql14-pltcl-14.2-5.9.2.aarch64.rpm postgresql14-server-14.2-5.9.2.aarch64.rpm postgresql14-server-devel-14.2-5.9.2.aarch64.rpm postgresql14-test-14.2-5.9.2.aarch64.rpm openSUSE-SLE-15.3-2022-572 moderate SUSE Updates openSUSE-SLE 15.3 This update for psmisc fixes the following issues: - Determine the namespace of a process only once to speed up the parsing of 'fdinfo'. (bsc#1194172) psmisc-23.0-6.19.1.src.rpm psmisc-23.0-6.19.1.x86_64.rpm psmisc-lang-23.0-6.19.1.noarch.rpm psmisc-23.0-6.19.1.s390x.rpm psmisc-23.0-6.19.1.ppc64le.rpm psmisc-23.0-6.19.1.aarch64.rpm openSUSE-SLE-15.3-2022-899 moderate SUSE Updates openSUSE-SLE 15.3 This update for smartmontools fixes the following issues: - Restart smartd and generate smartd_opts only if there are real sysconfig changes; do not trigger generate_smartd_opts by YaST, systemd is enough. (bsc#1195785) - Update smartmontools to the latest version from the upstream branch. (jsc#SLE-21751) - Fix update needed logic. - update to 7.2 (jsc#SLE-21751): - smartctl: New option '--json=y[c]' selects YAML output. - smartctl '-i': Prints ATA TRIM and Zoned Device capabilities. - smartctl '-j': Fixed 'scsi_grown_defect_list' value. - smartctl '-a': Prints SCSI 'Accumulated power on time'. - smartctl '-n POWERMODE': SCSI support. - smartctl '-s standby,now' and '-s standby,off': SCSI support. - smartctl '-c': NVMe 1.4 additions. - smartd: Support for staggered self-tests. - smartd: No longer writes attribute log if no attributes were read due to standby mode or other error. - smartd: Now resolves symlinks before device names are checked for duplicates. - smartd: Fixed SMARTD_DEVICETYPE environment variable if DEVICESCAN is used without '-d TYPE'. - ATA: Device type '-d jmb39x-q,N' for JMB39x protocol variant used by some QNAP NAS devices. - ATA: Device type '-d jms56x,N' for JMS562 USB to SATA RAID bridges. - SCSI: Improved heuristics for log subpages of new and very old disks. - NVMe: Log transfer size limited to avoid device or kernel crashes. - NVMEe/USB: Device type '-d sntrealtek' for Realtek RTL9210 USB to NVMe bridges. - update-smart-drivedb: New option '--branch X.Y'. - HDD, SSD and USB additions to drive database. - Dropped support for pre-C99 snprintf(). - configure: Dropped option '--without-working-snprintf'. - configure: Fixed '-fstack-protector*' detection. - Linux: Various fixes of smartd.service file (bsc#1183699). - Darwin: NVMe log support. - FreeBSD: Device scan does no longer include T_ENCLOSURE devices. - NetBSD: Fixed timeout handling. - NetBSD big endian: Fixed ATA register handling. - OpenBSD: Fixed timeout handling. - Windows: Dropped backward compatibility fixes for very old compilers. - Update to version 7.1: - smartctl: Fixed bogus exception on unknown form factor value. - smartctl '--json=cg': Suppresses extra spaces also in 'g' format. - smartctl '-i': ATA ACS-4 and ACS-5 enhancements. - smartd: No longer truncates very long device names in warning emails. - smartd: No longer skips scheduled tests if system clock has been adjusted to the past. - smartd '-A': Attribute logs now use local time instead of UTC. - Autodetection of '-d sntjmicron' type for JMicron USB to NVMe bridges. - Fixed segfault on CCISS transfer sizes. - Fixed smartd.service 'Type' if libsystemd-dev is not available. - Fixed '/dev/megaraid_sas_ioctl_node' fd leak. smartmontools-7.2-150300.8.5.1.src.rpm smartmontools-7.2-150300.8.5.1.x86_64.rpm smartmontools-7.2-150300.8.5.1.s390x.rpm smartmontools-7.2-150300.8.5.1.ppc64le.rpm smartmontools-7.2-150300.8.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-686 moderate SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - errinjct: sanitize devspec output of a newline if one is present. (bsc#1194579) - Fix reported online memory in legacy format. (bsc#1191147) - lparstat: report LPAR name from 'lparcfg'. (bsc#1187716) - Install 'smt.state' as config file. (bsc#1195413) powerpc-utils-1.3.9-150300.9.17.1.ppc64le.rpm powerpc-utils-1.3.9-150300.9.17.1.src.rpm openSUSE-SLE-15.3-2022-599 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for golang-github-prometheus-prometheus provides the following changes: Upgrade `golang-github-prometheus-prometheus` from version 2.27.1 to version 2.32.1: (jsc#SLE-22863) - Use `obs-service-go_modules` - Added hardening to systemd service(s). Modified `prometheus.service` (bsc#1181400) - Bugfixes: * Scrape: Fix reporting metrics when sample limit is reached during the report. * Scrape: Ensure that scrape interval and scrape timeout are always set. * TSDB: Expose and fix bug in iterators' Seek() method. * TSDB: Add more size checks when writing individual sections in the index. * PromQL: Make deriv() return zero values for constant series. * TSDB: Fix panic when checkpoint directory is empty. #9687 * TSDB: Fix panic, out of order chunks, and race warning during WAL replay. * UI: Correctly render links for targets with IPv6 addresses that contain a Zone ID. * Promtool: Fix checking of `authorization.credentials_file` and `bearer_token_file` fields. * Uyuni SD: Fix null pointer exception during initialization. * TSDB: Fix queries after a failed snapshot replay. * SD: Fix a panic when the experimental discovery manager receives targets during a reload. * Backfill: Apply rule labels after query labels. * Scrape: Resolve conflicts between multiple exported label prefixes. * Scrape: Restart scrape loops when __scrape_interval__ is changed. * TSDB: Fix memory leak in samples deletion. * UI: Use consistent margin-bottom for all alert kinds. * TSDB: Fix panic on failed snapshot replay. * TSDB: Don't fail snapshot replay with exemplar storage disabled when the snapshot contains exemplars. * TSDB: Don't error on overlapping m-mapped chunks during WAL replay. * promtool rules backfill: Prevent creation of data before the start time. * promtool rules backfill: Do not query after the end time. * Azure SD: Fix panic when no computername is set. * Exemplars: Fix panic when resizing exemplar storage from 0 to a non-zero size. * TSDB: Correctly decrement `prometheus_tsdb_head_active_appenders` when the append has no samples. * promtool rules backfill: Return 1 if backfill was unsuccessful. * promtool rules backfill: Avoid creation of overlapping blocks. * config: Fix a panic when reloading configuration with a null relabel action. * Fix Kubernetes SD failing to discover Ingress in Kubernetes v1.22. * Fix data race in loading write-ahead-log (WAL). * TSDB: align atomically accessed int64 to prevent panic in 32-bit archs. * Log when total symbol size exceeds 2^32 bytes, causing compaction to fail, and skip compaction. * Fix incorrect target_limit reloading of zero value. * Fix head GC and pending readers race condition. * Fix timestamp handling in OpenMetrics parser. * Fix potential duplicate metrics in /federate endpoint when specifying multiple matchers. * Fix server configuration and validation for authentication via client cert. * Allow start and end again as label names in PromQL queries. They were disallowed since the introduction of @ timestamp feature. * HTTP SD: Allow charset specification in Content-Type header. * HTTP SD: Fix handling of disappeared target groups. * Fix incorrect log-level handling after moving to go-kit/log. * UI: In the experimental PromQL editor, fix autocompletion and parsing for special float values and improve series metadata fetching. * TSDB: When merging chunks, split resulting chunks if they would contain more than the maximum of 120 samples. * SD: Fix the computation of the `prometheus_sd_discovered_targets` metric when using multiple service discoveries. - Change: * remote-write: Change default max retry time from 100ms to 5 seconds. * UI: Remove standard PromQL editor in favour of the codemirror-based editor. * Promote `--storage.tsdb.allow-overlapping-blocks` flag to stable. * Promote `--storage.tsdb.retention.size` flag to stable. * UI: Make the new experimental PromQL editor the default. - Features: * Agent: New mode of operation optimized for remote-write only scenarios, without local storage. * Promtool: Add promtool check service-discovery command. * PromQL: Add trigonometric functions and atan2 binary operator. * Remote: Add support for exemplar in the remote write receiver endpoint. * SD: Add PuppetDB service discovery. * SD: Add Uyuni service discovery. * Web: Add support for security-related HTTP headers. * experimental TSDB: Snapshot in-memory chunks on shutdown for faster restarts. * experimental Scrape: Configure scrape interval and scrape timeout via relabeling using `__scrape_interval__` and `__scrape_timeout__` labels respectively. * Scrape: Add scrape_timeout_seconds and scrape_sample_limit metric. * Add Kuma service discovery. * Add present_over_time PromQL function. * Allow configuring exemplar storage via file and make it reloadable. * UI: Allow selecting time range with mouse drag. * promtool: Add feature flags flag `--enable-feature`. * promtool: Add `file_sd` file validation. * Linode SD: Add Linode service discovery. * HTTP SD: Add generic HTTP-based service discovery. * Kubernetes SD: Allow configuring API Server access via a kubeconfig file. * UI: Add exemplar display support to the graphing interface. * Consul SD: Add namespace support for Consul Enterprise. - Enhancements: * Promtool: Improve test output. * Promtool: Use kahan summation for better numerical stability. * Remote-write: Reuse memory for marshalling. * Scrape: Add scrape_body_size_bytes scrape metric behind the `--enable-feature=extra-scrape-metrics` flag. * TSDB: Add windows arm64 support. * TSDB: Optimize query by skipping unneeded sorting in TSDB. * Templates: Support int and uint as datatypes for template formatting. * UI: Prefer rate over rad, delta over deg, and count over cos in autocomplete. * Azure SD: Add proxy_url, follow_redirects, tls_config. * Backfill: Add `--max-block-duration` in promtool `create-blocks-from` rules. * Config: Print human-readable sizes with unit instead of raw numbers. * HTTP: Re-enable HTTP/2. * Kubernetes SD: Warn user if number of endpoints exceeds limit. * OAuth2: Add TLS configuration to token requests. * PromQL: Several optimizations. * PromQL: Make aggregations deterministic in instant queries. * Rules: Add the ability to limit number of alerts or series. * SD: Experimental discovery manager to avoid restarts upon reload. * UI: Debounce timerange setting changes. * Remote Write: Redact remote write URL when used for metric label. * UI: Redact remote write URL and proxy URL passwords in the /config page. * Scrape: Add --scrape.timestamp-tolerance flag to adjust scrape timestamp tolerance when enabled via `--scrape.adjust-timestamps`. * Remote Write: Improve throughput when sending exemplars. * TSDB: Optimise WAL loading by removing extra map and caching min-time * promtool: Speed up checking for duplicate rules. * Scrape: Reduce allocations when parsing the metrics. * docker_sd: Support host network mode * Reduce blocking of outgoing remote write requests from series garbage collection. * Improve write-ahead-log decoding performance. * Improve append performance in TSDB by reducing mutexes usage. * Allow configuring max_samples_per_send for remote write metadata. * Add `__meta_gce_interface_ipv4_<name>` meta label to GCE discovery. * Add `__meta_ec2_availability_zone_id` meta label to EC2 discovery. * Add `__meta_azure_machine_computer_name` meta label to Azure discovery. * Add `__meta_hetzner_hcloud_labelpresent_<labelname>` meta label to Hetzner discovery. * promtool: Add compaction efficiency to promtool tsdb analyze reports. * promtool: Allow configuring max block duration for backfilling via `--max-block-duration` flag. * UI: Add sorting and filtering to flags page. * UI: Improve alerts page rendering performance. * Promtool: Allow silencing output when importing / backfilling data. * Consul SD: Support reading tokens from file. * Rules: Add a new .ExternalURL alert field templating variable, containing the external URL of the Prometheus server. * Scrape: Add experimental body_size_limit scrape configuration setting to limit the allowed response body size for target scrapes. * Kubernetes SD: Add ingress class name label for ingress discovery. * UI: Show a startup screen with progress bar when the TSDB is not ready yet. * SD: Add a target creation failure counter `prometheus_target_sync_failed_total` and improve target creation failure handling. * TSDB: Improve validation of exemplar label set length. * TSDB: Add a prometheus_tsdb_clean_start metric that indicates whether a TSDB lockfile from a previous run still existed upon startup. golang-github-prometheus-prometheus-2.32.1-4.3.2.src.rpm golang-github-prometheus-prometheus-2.32.1-4.3.2.x86_64.rpm golang-github-prometheus-prometheus-2.32.1-4.3.2.s390x.rpm golang-github-prometheus-prometheus-2.32.1-4.3.2.ppc64le.rpm golang-github-prometheus-prometheus-2.32.1-4.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-724 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: - CVE-2022-23806: Fixed incorrect returned value in crypto/elliptic IsOnCurve (bsc#1195838). - CVE-2022-23772: Fixed overflow in Rat.SetString in math/big can lead to uncontrolled memory consumption (bsc#1195835). - CVE-2022-23773: Fixed incorrect access control in cmd/go (bsc#1195834). The following non-security bugs were fixed: - go#50977 crypto/elliptic: IsOnCurve returns true for invalid field elements - go#50700 math/big: Rat.SetString may consume large amount of RAM and crash - go#50686 cmd/go: do not treat branches with semantic-version names as releases - go#50866 cmd/compile: incorrect use of CMN on arm64 - go#50832 runtime/race: NoRaceMutexPureHappensBefore failures - go#50811 cmd/go: remove bitbucket VCS probing - go#50780 runtime: incorrect frame information in traceback traversal may hang the process. - go#50721 debug/pe: reading debug_info section of PE files that use the DWARF5 form DW_FORM_line_strp causes error - go#50682 cmd/compile: MOVWreg missing sign-extension following a Copy from a floating-point LoadReg - go#50645 testing: surprising interaction of subtests with TempDir - go#50585 net/http/httptest: add fipsonly compliant certificate in for NewTLSServer(), for dev.boringcrypto branch - go#50245 runtime: intermittent os/exec.Command.Start() Hang on Darwin in Presence of "plugin" Package go1.16-1.16.14-1.43.1.src.rpm go1.16-1.16.14-1.43.1.x86_64.rpm go1.16-doc-1.16.14-1.43.1.x86_64.rpm go1.16-race-1.16.14-1.43.1.x86_64.rpm go1.16-1.16.14-1.43.1.s390x.rpm go1.16-doc-1.16.14-1.43.1.s390x.rpm go1.16-1.16.14-1.43.1.ppc64le.rpm go1.16-doc-1.16.14-1.43.1.ppc64le.rpm go1.16-1.16.14-1.43.1.aarch64.rpm go1.16-doc-1.16.14-1.43.1.aarch64.rpm go1.16-race-1.16.14-1.43.1.aarch64.rpm openSUSE-SLE-15.3-2022-723 important SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: - CVE-2022-23806: Fixed incorrect returned value in crypto/elliptic IsOnCurve (bsc#1195838). - CVE-2022-23772: Fixed overflow in Rat.SetString in math/big can lead to uncontrolled memory consumption (bsc#1195835). - CVE-2022-23773: Fixed incorrect access control in cmd/go (bsc#1195834). The following non-security bugs were fixed: - go#50978 crypto/elliptic: IsOnCurve returns true for invalid field elements - go#50701 math/big: Rat.SetString may consume large amount of RAM and crash - go#50687 cmd/go: do not treat branches with semantic-version names as releases - go#50942 cmd/asm: "compile: loop" compiler bug? - go#50867 cmd/compile: incorrect use of CMN on arm64 - go#50812 cmd/go: remove bitbucket VCS probing - go#50781 runtime: incorrect frame information in traceback traversal may hang the process. - go#50722 debug/pe: reading debug_info section of PE files that use the DWARF5 form DW_FORM_line_strp causes error - go#50683 cmd/compile: MOVWreg missing sign-extension following a Copy from a floating-point LoadReg - go#50586 net/http/httptest: add fipsonly compliant certificate in for NewTLSServer(), for dev.boringcrypto branch - go#50297 cmd/link: does not set section type of .init_array correctly - go#50246 runtime: intermittent os/exec.Command.Start() Hang on Darwin in Presence of "plugin" Package go1.17-1.17.7-1.20.1.i586.rpm go1.17-1.17.7-1.20.1.src.rpm go1.17-doc-1.17.7-1.20.1.i586.rpm go1.17-1.17.7-1.20.1.x86_64.rpm go1.17-doc-1.17.7-1.20.1.x86_64.rpm go1.17-race-1.17.7-1.20.1.x86_64.rpm go1.17-1.17.7-1.20.1.s390x.rpm go1.17-doc-1.17.7-1.20.1.s390x.rpm go1.17-1.17.7-1.20.1.ppc64le.rpm go1.17-doc-1.17.7-1.20.1.ppc64le.rpm go1.17-1.17.7-1.20.1.aarch64.rpm go1.17-doc-1.17.7-1.20.1.aarch64.rpm go1.17-race-1.17.7-1.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-780 moderate SUSE Updates openSUSE-SLE 15.3 This update for nvme-cli fixes the following issues: - fabrics: fix 'nvme connect' segfault if transport type is omitted (bsc#1193540) nvme-cli-1.13-150300.3.13.1.src.rpm nvme-cli-1.13-150300.3.13.1.x86_64.rpm nvme-cli-regress-script-1.13-150300.3.13.1.x86_64.rpm nvme-cli-1.13-150300.3.13.1.s390x.rpm nvme-cli-regress-script-1.13-150300.3.13.1.s390x.rpm nvme-cli-1.13-150300.3.13.1.ppc64le.rpm nvme-cli-regress-script-1.13-150300.3.13.1.ppc64le.rpm nvme-cli-1.13-150300.3.13.1.aarch64.rpm nvme-cli-regress-script-1.13-150300.3.13.1.aarch64.rpm openSUSE-SLE-15.3-2022-704 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs8 fixes the following issues: - CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153). - CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963). - CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962). - CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696). - CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154). nodejs8-8.17.0-10.19.2.src.rpm nodejs8-8.17.0-10.19.2.x86_64.rpm nodejs8-devel-8.17.0-10.19.2.x86_64.rpm nodejs8-docs-8.17.0-10.19.2.noarch.rpm npm8-8.17.0-10.19.2.x86_64.rpm nodejs8-8.17.0-10.19.2.s390x.rpm nodejs8-devel-8.17.0-10.19.2.s390x.rpm npm8-8.17.0-10.19.2.s390x.rpm nodejs8-8.17.0-10.19.2.ppc64le.rpm nodejs8-devel-8.17.0-10.19.2.ppc64le.rpm npm8-8.17.0-10.19.2.ppc64le.rpm nodejs8-8.17.0-10.19.2.aarch64.rpm nodejs8-devel-8.17.0-10.19.2.aarch64.rpm npm8-8.17.0-10.19.2.aarch64.rpm openSUSE-SLE-15.3-2022-705 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: Update to version 2.34.6 (bsc#1196133): - CVE-2022-22620: Processing maliciously crafted web content may have lead to arbitrary code execution. Update to version 2.34.5 (bsc#1195735): - CVE-2022-22589: A validation issue was addressed with improved input sanitization. - CVE-2022-22590: A use after free issue was addressed with improved memory management. - CVE-2022-22592: A logic issue was addressed with improved state management. Update to version 2.34.4 (bsc#1195064): - CVE-2021-30934: A buffer overflow issue was addressed with improved memory handling. - CVE-2021-30936: A use after free issue was addressed with improved memory management. - CVE-2021-30951: A use after free issue was addressed with improved memory management. - CVE-2021-30952: An integer overflow was addressed with improved input validation. - CVE-2021-30953: An out-of-bounds read was addressed with improved bounds checking. - CVE-2021-30954: A type confusion issue was addressed with improved memory handling. - CVE-2021-30984: A race condition was addressed with improved state handling. - CVE-2022-22594: A cross-origin issue in the IndexDB API was addressed with improved input validation. The following CVEs were addressed in a previous update: - CVE-2021-45481: Incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create. - CVE-2021-45482: A use-after-free in WebCore::ContainerNode::firstChild. - CVE-2021-45483: A use-after-free in WebCore::Frame::page. libjavascriptcoregtk-4_0-18-2.34.6-29.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.34.6-29.1.x86_64.rpm libwebkit2gtk-4_0-37-2.34.6-29.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.34.6-29.1.x86_64.rpm libwebkit2gtk3-lang-2.34.6-29.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.34.6-29.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.34.6-29.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.6-29.1.x86_64.rpm webkit-jsc-4-2.34.6-29.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.34.6-29.1.x86_64.rpm webkit2gtk3-2.34.6-29.1.src.rpm webkit2gtk3-devel-2.34.6-29.1.x86_64.rpm webkit2gtk3-minibrowser-2.34.6-29.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.34.6-29.1.s390x.rpm libwebkit2gtk-4_0-37-2.34.6-29.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.34.6-29.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.34.6-29.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.6-29.1.s390x.rpm webkit-jsc-4-2.34.6-29.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.34.6-29.1.s390x.rpm webkit2gtk3-devel-2.34.6-29.1.s390x.rpm webkit2gtk3-minibrowser-2.34.6-29.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.34.6-29.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.34.6-29.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.34.6-29.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.34.6-29.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.6-29.1.ppc64le.rpm webkit-jsc-4-2.34.6-29.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.34.6-29.1.ppc64le.rpm webkit2gtk3-devel-2.34.6-29.1.ppc64le.rpm webkit2gtk3-minibrowser-2.34.6-29.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.34.6-29.1.aarch64.rpm libwebkit2gtk-4_0-37-2.34.6-29.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.34.6-29.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.34.6-29.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.6-29.1.aarch64.rpm webkit-jsc-4-2.34.6-29.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.34.6-29.1.aarch64.rpm webkit2gtk3-devel-2.34.6-29.1.aarch64.rpm webkit2gtk3-minibrowser-2.34.6-29.1.aarch64.rpm openSUSE-SLE-15.3-2022-657 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153). - CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963). - CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962). - CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696). - CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154). nodejs12-12.22.10-4.29.3.src.rpm nodejs12-12.22.10-4.29.3.x86_64.rpm nodejs12-devel-12.22.10-4.29.3.x86_64.rpm nodejs12-docs-12.22.10-4.29.3.noarch.rpm npm12-12.22.10-4.29.3.x86_64.rpm nodejs12-12.22.10-4.29.3.s390x.rpm nodejs12-devel-12.22.10-4.29.3.s390x.rpm npm12-12.22.10-4.29.3.s390x.rpm nodejs12-12.22.10-4.29.3.ppc64le.rpm nodejs12-devel-12.22.10-4.29.3.ppc64le.rpm npm12-12.22.10-4.29.3.ppc64le.rpm nodejs12-12.22.10-4.29.3.aarch64.rpm nodejs12-devel-12.22.10-4.29.3.aarch64.rpm npm12-12.22.10-4.29.3.aarch64.rpm openSUSE-SLE-15.3-2022-1299 moderate SUSE Updates openSUSE-SLE 15.3 This update for tigervnc fixes the following issues: - Fix rendering on big endian systems (bsc#1177758, bsc#1197119) libXvnc-devel-1.9.0-150100.19.17.1.x86_64.rpm libXvnc1-1.9.0-150100.19.17.1.x86_64.rpm tigervnc-1.9.0-150100.19.17.1.src.rpm tigervnc-1.9.0-150100.19.17.1.x86_64.rpm tigervnc-x11vnc-1.9.0-150100.19.17.1.noarch.rpm xorg-x11-Xvnc-1.9.0-150100.19.17.1.x86_64.rpm xorg-x11-Xvnc-java-1.9.0-150100.19.17.1.noarch.rpm xorg-x11-Xvnc-module-1.9.0-150100.19.17.1.x86_64.rpm xorg-x11-Xvnc-novnc-1.9.0-150100.19.17.1.noarch.rpm libXvnc-devel-1.9.0-150100.19.17.1.s390x.rpm libXvnc1-1.9.0-150100.19.17.1.s390x.rpm tigervnc-1.9.0-150100.19.17.1.s390x.rpm xorg-x11-Xvnc-1.9.0-150100.19.17.1.s390x.rpm libXvnc-devel-1.9.0-150100.19.17.1.ppc64le.rpm libXvnc1-1.9.0-150100.19.17.1.ppc64le.rpm tigervnc-1.9.0-150100.19.17.1.ppc64le.rpm xorg-x11-Xvnc-1.9.0-150100.19.17.1.ppc64le.rpm xorg-x11-Xvnc-module-1.9.0-150100.19.17.1.ppc64le.rpm libXvnc-devel-1.9.0-150100.19.17.1.aarch64.rpm libXvnc1-1.9.0-150100.19.17.1.aarch64.rpm tigervnc-1.9.0-150100.19.17.1.aarch64.rpm xorg-x11-Xvnc-1.9.0-150100.19.17.1.aarch64.rpm xorg-x11-Xvnc-module-1.9.0-150100.19.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-904 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.18 fixes the following issues: go1.18 (released 2022-03-15) is a major release of Go. (boo#1193742) go1.18.x minor releases will be provided through February 2023, please see: https://github.com/golang/go/wiki/Go-Release-Cycle Go 1.18 is a significant release, including changes to the language, implementation of the toolchain, runtime, and libraries. Go 1.18 arrives seven months after Go 1.17. As always, the release maintains the Go 1 promise of compatibility. We expect almost all Go programs to continue to compile and run as before. * See release notes https://golang.org/doc/go1.18. Excerpts relevant to OBS environment and for SUSE/openSUSE follow: * Go 1.18 includes an implementation of generic features as described by the Type Parameters Proposal. This includes major but fully backward-compatible changes to the language. * The Go 1.18 compiler now correctly reports declared but not used errors for variables that are set inside a function literal but are never used. Before Go 1.18, the compiler did not report an error in such cases. This fixes long-outstanding compiler issue go#8560. * The Go 1.18 compiler now reports an overflow when passing a rune constant expression such as '1' << 32 as an argument to the predeclared functions print and println, consistent with the behavior of user-defined functions. Before Go 1.18, the compiler did not report an error in such cases but silently accepted such constant arguments if they fit into an int64. Since go vet always pointed out this error, the number of affected programs is likely very small. * AMD64: Go 1.18 introduces the new GOAMD64 environment variable, which selects at compile time a minimum target version of the AMD64 architecture. Allowed values are v1, v2, v3, or v4. Each higher level requires, and takes advantage of, additional processor features. A detailed description can be found here. The GOAMD64 environment variable defaults to v1. * RISC-V: The 64-bit RISC-V architecture on Linux (the linux/riscv64 port) now supports the c-archive and c-shared build modes. * Linux: Go 1.18 requires Linux kernel version 2.6.32 or later. * Fuzzing: Go 1.18 includes an implementation of fuzzing as described by the fuzzing proposal. See the fuzzing landing page to get started. Please be aware that fuzzing can consume a lot of memory and may impact your machine’s performance while it runs. * go get: go get no longer builds or installs packages in module-aware mode. go get is now dedicated to adjusting dependencies in go.mod. Effectively, the -d flag is always enabled. To install the latest version of an executable outside the context of the current module, use go install example.com/cmd@latest. Any version query may be used instead of latest. This form of go install was added in Go 1.16, so projects supporting older versions may need to provide install instructions for both go install and go get. go get now reports an error when used outside a module, since there is no go.mod file to update. In GOPATH mode (with GO111MODULE=off), go get still builds and installs packages, as before. * Automatic go.mod and go.sum updates: The go mod graph, go mod vendor, go mod verify, and go mod why subcommands no longer automatically update the go.mod and go.sum files. (Those files can be updated explicitly using go get, go mod tidy, or go mod download.) * go version: The go command now embeds version control information in binaries. It includes the currently checked-out revision, commit time, and a flag indicating whether edited or untracked files are present. Version control information is embedded if the go command is invoked in a directory within a Git, Mercurial, Fossil, or Bazaar repository, and the main package and its containing main module are in the same repository. This information may be omitted using the flag -buildvcs=false. Additionally, the go command embeds information about the build, including build and tool tags (set with -tags), compiler, assembler, and linker flags (like -gcflags), whether cgo was enabled, and if it was, the values of the cgo environment variables (like CGO_CFLAGS). Both VCS and build information may be read together with module information using go version -m file or runtime/debug.ReadBuildInfo (for the currently running binary) or the new debug/buildinfo package. The underlying data format of the embedded build information can change with new go releases, so an older version of go may not handle the build information produced with a newer version of go. To read the version information from a binary built with go 1.18, use the go version command and the debug/buildinfo package from go 1.18+. * go mod download: If the main module's go.mod file specifies go 1.17 or higher, go mod download without arguments now downloads source code for only the modules explicitly required in the main module's go.mod file. (In a go 1.17 or higher module, that set already includes all dependencies needed to build the packages and tests in the main module.) To also download source code for transitive dependencies, use go mod download all. * go mod vendor: The go mod vendor subcommand now supports a -o flag to set the output directory. (Other go commands still read from the vendor directory at the module root when loading packages with -mod=vendor, so the main use for this flag is for third-party tools that need to collect package source code.) * go mod tidy: The go mod tidy command now retains additional checksums in the go.sum file for modules whose source code is needed to verify that each imported package is provided by only one module in the build list. Because this condition is rare and failure to apply it results in a build error, this change is not conditioned on the go version in the main module's go.mod file. * go work: The go command now supports a "Workspace" mode. If a go.work file is found in the working directory or a parent directory, or one is specified using the GOWORK environment variable, it will put the go command into workspace mode. In workspace mode, the go.work file will be used to determine the set of main modules used as the roots for module resolution, instead of using the normally-found go.mod file to specify the single main module. For more information see the go work documentation. * go build -asan: The go build command and related commands now support an -asan flag that enables interoperation with C (or C++) code compiled with the address sanitizer (C compiler option -fsanitize=address). * //go:build lines: Go 1.17 introduced //go:build lines as a more readable way to write build constraints, instead of // +build lines. As of Go 1.17, gofmt adds //go:build lines to match existing +build lines and keeps them in sync, while go vet diagnoses when they are out of sync. Since the release of Go 1.18 marks the end of support for Go 1.16, all supported versions of Go now understand //go:build lines. In Go 1.18, go fix now removes the now-obsolete // +build lines in modules declaring go 1.17 or later in their go.mod files. For more information, see https://go.dev/design/draft-gobuild. * go vet: The vet tool is updated to support generic code. In most cases, it reports an error in generic code whenever it would report an error in the equivalent non-generic code after substituting for type parameters with a type from their type set. * go vet: The cmd/vet checkers copylock, printf, sortslice, testinggoroutine, and tests have all had moderate precision improvements to handle additional code patterns. This may lead to newly reported errors in existing packages. * Runtime: The garbage collector now includes non-heap sources of garbage collector work (e.g., stack scanning) when determining how frequently to run. As a result, garbage collector overhead is more predictable when these sources are significant. For most applications these changes will be negligible; however, some Go applications may now use less memory and spend more time on garbage collection, or vice versa, than before. The intended workaround is to tweak GOGC where necessary. The runtime now returns memory to the operating system more efficiently and has been tuned to work more aggressively as a result. * Compiler: Go 1.17 implemented a new way of passing function arguments and results using registers instead of the stack on 64-bit x86 architecture on selected operating systems. Go 1.18 expands the supported platforms to include 64-bit ARM (GOARCH=arm64), big- and little-endian 64-bit PowerPC (GOARCH=ppc64, ppc64le), as well as 64-bit x86 architecture (GOARCH=amd64) on all operating systems. On 64-bit ARM and 64-bit PowerPC systems, benchmarking shows typical performance improvements of 10% or more. As mentioned in the Go 1.17 release notes, this change does not affect the functionality of any safe Go code and is designed to have no impact on most assembly code. See the Go 1.17 release notes for more details. * Compiler: The compiler now can inline functions that contain range loops or labeled for loops. * Compiler: The new -asan compiler option supports the new go command -asan option. * Compiler: Because the compiler's type checker was replaced in its entirety to support generics, some error messages now may use different wording than before. In some cases, pre-Go 1.18 error messages provided more detail or were phrased in a more helpful way. We intend to address these cases in Go 1.19. Because of changes in the compiler related to supporting generics, the Go 1.18 compile speed can be roughly 15% slower than the Go 1.17 compile speed. The execution time of the compiled code is not affected. We intend to improve the speed of the compiler in Go 1.19. * Linker: The linker emits far fewer relocations. As a result, most codebases will link faster, require less memory to link, and generate smaller binaries. Tools that process Go binaries should use Go 1.18's debug/gosym package to transparently handle both old and new binaries. * Linker: The new -asan linker option supports the new go command -asan option. * Bootstrap: When building a Go release from source and GOROOT_BOOTSTRAP is not set, previous versions of Go looked for a Go 1.4 or later bootstrap toolchain in the directory $HOME/go1.4 (%HOMEDRIVE%%HOMEPATH%\go1.4 on Windows). Go now looks first for $HOME/go1.17 or $HOME/sdk/go1.17 before falling back to $HOME/go1.4. We intend for Go 1.19 to require Go 1.17 or later for bootstrap, and this change should make the transition smoother. For more details, see go#44505. * The new debug/buildinfo package provides access to module versions, version control information, and build flags embedded in executable files built by the go command. The same information is also available via runtime/debug.ReadBuildInfo for the currently running binary and via go version -m on the command line. * The new net/netip package defines a new IP address type, Addr. Compared to the existing net.IP type, the netip.Addr type takes less memory, is immutable, and is comparable so it supports == and can be used as a map key. * TLS 1.0 and 1.1 disabled by default client-side: If Config.MinVersion is not set, it now defaults to TLS 1.2 for client connections. Any safely up-to-date server is expected to support TLS 1.2, and browsers have required it since 2020. TLS 1.0 and 1.1 are still supported by setting Config.MinVersion to VersionTLS10. The server-side default is unchanged at TLS 1.0. The default can be temporarily reverted to TLS 1.0 by setting the GODEBUG=tls10default=1 environment variable. This option will be removed in Go 1.19. * Rejecting SHA-1 certificates: crypto/x509 will now reject certificates signed with the SHA-1 hash function. This doesn't apply to self-signed root certificates. Practical attacks against SHA-1 have been demonstrated since 2017 and publicly trusted Certificate Authorities have not issued SHA-1 certificates since 2015. This can be temporarily reverted by setting the GODEBUG=x509sha1=1 environment variable. This option will be removed in Go 1.19. * crypto/elliptic The P224, P384, and P521 curve implementations are now all backed by code generated by the addchain and fiat-crypto projects, the latter of which is based on a formally-verified model of the arithmetic operations. They now use safer complete formulas and internal APIs. P-224 and P-384 are now approximately four times faster. All specific curve implementations are now constant-time. Operating on invalid curve points (those for which the IsOnCurve method returns false, and which are never returned by Unmarshal or a Curve method operating on a valid point) has always been undefined behavior, can lead to key recovery attacks, and is now unsupported by the new backend. If an invalid point is supplied to a P224, P384, or P521 method, that method will now return a random point. The behavior might change to an explicit panic in a future release. * crypto/tls: The new Conn.NetConn method allows access to the underlying net.Conn. * crypto/x509: Certificate.Verify now uses platform APIs to verify certificate validity on macOS and iOS when it is called with a nil VerifyOpts.Roots or when using the root pool returned from SystemCertPool. SystemCertPool is now available on Windows. * crypto/x509: CertPool.Subjects is deprecated. On Windows, macOS, and iOS the CertPool returned by SystemCertPool will return a pool which does not include system roots in the slice returned by Subjects, as a static list can't appropriately represent the platform policies and might not be available at all from the platform APIs. * crypto/x509: Support for signing certificates using signature algorithms that depend on the MD5 and SHA-1 hashes (MD5WithRSA, SHA1WithRSA, and ECDSAWithSHA1) may be removed in Go 1.19. * net/http: When looking up a domain name containing non-ASCII characters, the Unicode-to-ASCII conversion is now done in accordance with Nontransitional Processing as defined in the Unicode IDNA Compatibility Processing standard (UTS #46). The interpretation of four distinct runes are changed: ß, ς, zero-width joiner U+200D, and zero-width non-joiner U+200C. Nontransitional Processing is consistent with most applications and web browsers. * os/user: User.GroupIds now uses a Go native implementation when cgo is not available. * runtime/debug: The BuildInfo struct has two new fields, containing additional information about how the binary was built: GoVersion holds the version of Go used to build the binary. Settings is a slice of BuildSettings structs holding key/value pairs describing the build. * runtime/pprof: The CPU profiler now uses per-thread timers on Linux. This increases the maximum CPU usage that a profile can observe, and reduces some forms of bias. * syscall: The new function SyscallN has been introduced for Windows, allowing for calls with arbitrary number of arguments. As a result, Syscall, Syscall6, Syscall9, Syscall12, Syscall15, and Syscall18 are deprecated in favor of SyscallN. go1.18-1.18-1.8.1.src.rpm go1.18-1.18-1.8.1.x86_64.rpm go1.18-doc-1.18-1.8.1.x86_64.rpm go1.18-race-1.18-1.8.1.x86_64.rpm go1.18-1.18-1.8.1.s390x.rpm go1.18-doc-1.18-1.8.1.s390x.rpm go1.18-1.18-1.8.1.ppc64le.rpm go1.18-doc-1.18-1.8.1.ppc64le.rpm go1.18-1.18-1.8.1.aarch64.rpm go1.18-doc-1.18-1.8.1.aarch64.rpm go1.18-race-1.18-1.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-846 moderate SUSE Updates openSUSE-SLE 15.3 This update ships log4j 2.17.1 to the SUSE Linux Enterprise Basesystem module. (jsc#SLE-23508) - Removed alias log4j:log4j from log4j-1.2-api, since it is not a drop-in replacement Update to 2.17.1. Fixed bugs: - JdbcAppender now uses JndiManager to access JNDI resources. JNDI is only enabled when system property log4j2.enableJndiJdbc is set to true. - Remove unused method. - ExtendedLoggerWrapper.logMessage no longer double-logs when location is requested. - log4j-to-slf4j no longer re-interpolates formatted message contents. - Correct SpringLookup package name in Interpolator. - log4j-to-slf4j takes the provided MessageFactory into account. - Fix MapLookup to lookup MapMessage before DefaultMap. - Buffered I/O checked had inverted logic in RollingFileAppenderBuidler. - Fix NPE when input is null in StrSubstitutor.replace(String, Properties). - Lookups with no prefix only read values from the configuration properties as expected. - Reduce ignored package scope of KafkaAppender. jackson-annotations-2.10.2-3.2.1.noarch.rpm jackson-annotations-2.10.2-3.2.1.src.rpm jackson-annotations-javadoc-2.10.2-3.2.1.noarch.rpm jackson-core-2.10.2-3.2.1.noarch.rpm jackson-core-2.10.2-3.2.1.src.rpm jackson-core-javadoc-2.10.2-3.2.1.noarch.rpm jackson-databind-2.10.5.1-3.5.1.noarch.rpm jackson-databind-2.10.5.1-3.5.1.src.rpm jackson-databind-javadoc-2.10.5.1-3.5.1.noarch.rpm log4j-2.17.1-4.20.1.noarch.rpm log4j-2.17.1-4.20.1.src.rpm log4j-javadoc-2.17.1-4.20.1.noarch.rpm log4j-jcl-2.17.1-4.20.1.noarch.rpm log4j-slf4j-2.17.1-4.20.1.noarch.rpm openSUSE-SLE-15.3-2022-1115 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for alsa-oss provides the following changes: Update from version 1.0.28 to version 1.1.8 (bsc#1181571) - Drop the superfluous build requires `alsa-topology-devel`. It is no longer mandatory. - Avoid repetition of name in package summary and updated description. - Fix build issues with the recent `glibc` (bsc#1181571) - Update the Free Software Foundation, Inc. address - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. alsa-oss-1.1.8-150300.12.3.2.src.rpm alsa-oss-1.1.8-150300.12.3.2.x86_64.rpm alsa-oss-32bit-1.1.8-150300.12.3.2.x86_64.rpm alsa-oss-1.1.8-150300.12.3.2.s390x.rpm alsa-oss-1.1.8-150300.12.3.2.ppc64le.rpm alsa-oss-1.1.8-150300.12.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-902 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: argyllcms, csync argyllcms-1.9.2-4.2.1.src.rpm argyllcms-1.9.2-4.2.1.x86_64.rpm argyllcms-doc-1.9.2-4.2.1.x86_64.rpm csync-0.50.0-3.5.1.src.rpm csync-0.50.0-3.5.1.x86_64.rpm libcsync-devel-0.50.0-3.5.1.x86_64.rpm libcsync-devel-doc-0.50.0-3.5.1.x86_64.rpm libcsync-doc-0.50.0-3.5.1.x86_64.rpm libcsync-plugin-owncloud-0.50.0-3.5.1.x86_64.rpm libcsync-plugin-sftp-0.50.0-3.5.1.x86_64.rpm libcsync-plugin-smb-0.50.0-3.5.1.x86_64.rpm libcsync0-0.50.0-3.5.1.x86_64.rpm libcsync0-32bit-0.50.0-3.5.1.x86_64.rpm argyllcms-1.9.2-4.2.1.s390x.rpm argyllcms-doc-1.9.2-4.2.1.s390x.rpm csync-0.50.0-3.5.1.s390x.rpm libcsync-devel-0.50.0-3.5.1.s390x.rpm libcsync-devel-doc-0.50.0-3.5.1.s390x.rpm libcsync-doc-0.50.0-3.5.1.s390x.rpm libcsync-plugin-owncloud-0.50.0-3.5.1.s390x.rpm libcsync-plugin-sftp-0.50.0-3.5.1.s390x.rpm libcsync-plugin-smb-0.50.0-3.5.1.s390x.rpm libcsync0-0.50.0-3.5.1.s390x.rpm argyllcms-1.9.2-4.2.1.ppc64le.rpm argyllcms-doc-1.9.2-4.2.1.ppc64le.rpm csync-0.50.0-3.5.1.ppc64le.rpm libcsync-devel-0.50.0-3.5.1.ppc64le.rpm libcsync-devel-doc-0.50.0-3.5.1.ppc64le.rpm libcsync-doc-0.50.0-3.5.1.ppc64le.rpm libcsync-plugin-owncloud-0.50.0-3.5.1.ppc64le.rpm libcsync-plugin-sftp-0.50.0-3.5.1.ppc64le.rpm libcsync-plugin-smb-0.50.0-3.5.1.ppc64le.rpm libcsync0-0.50.0-3.5.1.ppc64le.rpm argyllcms-1.9.2-4.2.1.aarch64.rpm argyllcms-doc-1.9.2-4.2.1.aarch64.rpm csync-0.50.0-3.5.1.aarch64.rpm libcsync-devel-0.50.0-3.5.1.aarch64.rpm libcsync-devel-doc-0.50.0-3.5.1.aarch64.rpm libcsync-doc-0.50.0-3.5.1.aarch64.rpm libcsync-plugin-owncloud-0.50.0-3.5.1.aarch64.rpm libcsync-plugin-sftp-0.50.0-3.5.1.aarch64.rpm libcsync-plugin-smb-0.50.0-3.5.1.aarch64.rpm libcsync0-0.50.0-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-752 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: babl babl-0.1.72-3.2.1.src.rpm babl-devel-0.1.72-3.2.1.x86_64.rpm libbabl-0_1-0-0.1.72-3.2.1.x86_64.rpm libbabl-0_1-0-32bit-0.1.72-3.2.1.x86_64.rpm typelib-1_0-Babl-0_1-0.1.72-3.2.1.x86_64.rpm babl-devel-0.1.72-3.2.1.s390x.rpm libbabl-0_1-0-0.1.72-3.2.1.s390x.rpm typelib-1_0-Babl-0_1-0.1.72-3.2.1.s390x.rpm babl-devel-0.1.72-3.2.1.ppc64le.rpm libbabl-0_1-0-0.1.72-3.2.1.ppc64le.rpm typelib-1_0-Babl-0_1-0.1.72-3.2.1.ppc64le.rpm babl-devel-0.1.72-3.2.1.aarch64.rpm libbabl-0_1-0-0.1.72-3.2.1.aarch64.rpm typelib-1_0-Babl-0_1-0.1.72-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-722 important SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: Update to Wireshark 3.6.2: - CVE-2022-0586: RTMPT dissector infinite loop (bsc#1195866) - CVE-2022-0585: Large loops in multiple dissectors (bsc#1195867) - CVE-2022-0583: PVFS dissector crash (bsc#1195868) - CVE-2022-0582: CSN.1 dissector crash (bsc#1195869) - CVE-2022-0581: CMS dissector crash (bsc#1195870) libwireshark15-3.6.2-3.71.1.x86_64.rpm libwiretap12-3.6.2-3.71.1.x86_64.rpm libwsutil13-3.6.2-3.71.1.x86_64.rpm wireshark-3.6.2-3.71.1.src.rpm wireshark-3.6.2-3.71.1.x86_64.rpm wireshark-devel-3.6.2-3.71.1.x86_64.rpm wireshark-ui-qt-3.6.2-3.71.1.x86_64.rpm libwireshark15-3.6.2-3.71.1.s390x.rpm libwiretap12-3.6.2-3.71.1.s390x.rpm libwsutil13-3.6.2-3.71.1.s390x.rpm wireshark-3.6.2-3.71.1.s390x.rpm wireshark-devel-3.6.2-3.71.1.s390x.rpm wireshark-ui-qt-3.6.2-3.71.1.s390x.rpm libwireshark15-3.6.2-3.71.1.ppc64le.rpm libwiretap12-3.6.2-3.71.1.ppc64le.rpm libwsutil13-3.6.2-3.71.1.ppc64le.rpm wireshark-3.6.2-3.71.1.ppc64le.rpm wireshark-devel-3.6.2-3.71.1.ppc64le.rpm wireshark-ui-qt-3.6.2-3.71.1.ppc64le.rpm libwireshark15-3.6.2-3.71.1.aarch64.rpm libwiretap12-3.6.2-3.71.1.aarch64.rpm libwsutil13-3.6.2-3.71.1.aarch64.rpm wireshark-3.6.2-3.71.1.aarch64.rpm wireshark-devel-3.6.2-3.71.1.aarch64.rpm wireshark-ui-qt-3.6.2-3.71.1.aarch64.rpm openSUSE-SLE-15.3-2022-715 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: - CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153). - CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963). - CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962). - CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696). - CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154). nodejs14-14.19.0-15.27.1.src.rpm nodejs14-14.19.0-15.27.1.x86_64.rpm nodejs14-devel-14.19.0-15.27.1.x86_64.rpm nodejs14-docs-14.19.0-15.27.1.noarch.rpm npm14-14.19.0-15.27.1.x86_64.rpm nodejs14-14.19.0-15.27.1.s390x.rpm nodejs14-devel-14.19.0-15.27.1.s390x.rpm npm14-14.19.0-15.27.1.s390x.rpm nodejs14-14.19.0-15.27.1.ppc64le.rpm nodejs14-devel-14.19.0-15.27.1.ppc64le.rpm npm14-14.19.0-15.27.1.ppc64le.rpm nodejs14-14.19.0-15.27.1.aarch64.rpm nodejs14-devel-14.19.0-15.27.1.aarch64.rpm npm14-14.19.0-15.27.1.aarch64.rpm openSUSE-SLE-15.3-2022-559 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 91.6.1 / MFSA 2022-07 (bsc#1196072) * CVE-2022-0566 (bmo#1753094) Crafted email could trigger an out-of-bounds write - Mozilla Thunderbird 91.6 / MFSA 2022-06 (bsc#1195682) * CVE-2022-22753 (bmo#1732435) Privilege Escalation to SYSTEM on Windows via Maintenance Service * CVE-2022-22754 (bmo#1750565) Extensions could have bypassed permission confirmation during update * CVE-2022-22756 (bmo#1317873) Drag and dropping an image could have resulted in the dropped object being an executable * CVE-2022-22759 (bmo#1739957) Sandboxed iframes could have executed script if the parent appended elements * CVE-2022-22760 (bmo#1740985, bmo#1748503) Cross-Origin responses could be distinguished between script and non-script content-types * CVE-2022-22761 (bmo#1745566) frame-ancestors Content Security Policy directive was not enforced for framed extension pages * CVE-2022-22763 (bmo#1740534) Script Execution during invalid object state * CVE-2022-22764 (bmo#1742682, bmo#1744165, bmo#1746545, bmo#1748210, bmo#1748279) Memory safety bugs fixed in Thunderbird 91.6 MozillaThunderbird-91.6.1-8.54.1.src.rpm MozillaThunderbird-91.6.1-8.54.1.x86_64.rpm MozillaThunderbird-translations-common-91.6.1-8.54.1.x86_64.rpm MozillaThunderbird-translations-other-91.6.1-8.54.1.x86_64.rpm MozillaThunderbird-91.6.1-8.54.1.s390x.rpm MozillaThunderbird-translations-common-91.6.1-8.54.1.s390x.rpm MozillaThunderbird-translations-other-91.6.1-8.54.1.s390x.rpm MozillaThunderbird-91.6.1-8.54.1.ppc64le.rpm MozillaThunderbird-translations-common-91.6.1-8.54.1.ppc64le.rpm MozillaThunderbird-translations-other-91.6.1-8.54.1.ppc64le.rpm MozillaThunderbird-91.6.1-8.54.1.aarch64.rpm MozillaThunderbird-translations-common-91.6.1-8.54.1.aarch64.rpm MozillaThunderbird-translations-other-91.6.1-8.54.1.aarch64.rpm openSUSE-SLE-15.3-2022-1717 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs10 fixes the following issues: - CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153). - CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963). - CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962). - CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696). - CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154). - CVE-2022-21824: Fixed prototype pollution via console.table (bsc#1194514). - CVE-2021-44906: Fixed prototype pollution in npm dependency (bsc#1198247). - CVE-2021-44907: Fixed insuficient sanitation in npm dependency (bsc#1197283). - CVE-2022-0235: Fixed passing of cookie data and sensitive headers to different hostnames in node-fetch-npm (bsc#1194819). nodejs10-10.24.1-150000.1.44.1.src.rpm nodejs10-10.24.1-150000.1.44.1.x86_64.rpm nodejs10-devel-10.24.1-150000.1.44.1.x86_64.rpm nodejs10-docs-10.24.1-150000.1.44.1.noarch.rpm npm10-10.24.1-150000.1.44.1.x86_64.rpm nodejs10-10.24.1-150000.1.44.1.s390x.rpm nodejs10-devel-10.24.1-150000.1.44.1.s390x.rpm npm10-10.24.1-150000.1.44.1.s390x.rpm nodejs10-10.24.1-150000.1.44.1.ppc64le.rpm nodejs10-devel-10.24.1-150000.1.44.1.ppc64le.rpm npm10-10.24.1-150000.1.44.1.ppc64le.rpm nodejs10-10.24.1-150000.1.44.1.aarch64.rpm nodejs10-devel-10.24.1-150000.1.44.1.aarch64.rpm npm10-10.24.1-150000.1.44.1.aarch64.rpm openSUSE-SLE-15.3-2022-697 important SUSE Updates openSUSE-SLE 15.3 This update for yast2 fixes the following issues: - Do not strip surrounding white space in CDATA XML elements. (bsc#1195910) yast2-4.3.68-150300.3.17.1.src.rpm yast2-4.3.68-150300.3.17.1.x86_64.rpm yast2-logs-4.3.68-150300.3.17.1.x86_64.rpm yast2-4.3.68-150300.3.17.1.s390x.rpm yast2-logs-4.3.68-150300.3.17.1.s390x.rpm yast2-4.3.68-150300.3.17.1.ppc64le.rpm yast2-logs-4.3.68-150300.3.17.1.ppc64le.rpm yast2-4.3.68-150300.3.17.1.aarch64.rpm yast2-logs-4.3.68-150300.3.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-799 moderate SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - Remove caches only when performing a package downgrade. The sssd daemon takes care of upgrading the database format when necessary (bsc#1195552) - Fix 32-bit libraries package. Libraries were moved from sssd to sssd-common to fix bsc#1182058 and baselibs.conf was not updated accordingly; (bsc#1196166); libipa_hbac-devel-1.16.1-150300.23.23.1.x86_64.rpm libipa_hbac0-1.16.1-150300.23.23.1.x86_64.rpm libnfsidmap-sss-1.16.1-150300.23.23.1.x86_64.rpm libsss_certmap-devel-1.16.1-150300.23.23.1.x86_64.rpm libsss_certmap0-1.16.1-150300.23.23.1.x86_64.rpm libsss_idmap-devel-1.16.1-150300.23.23.1.x86_64.rpm libsss_idmap0-1.16.1-150300.23.23.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.23.1.x86_64.rpm libsss_nss_idmap0-1.16.1-150300.23.23.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-150300.23.23.1.x86_64.rpm libsss_simpleifp0-1.16.1-150300.23.23.1.x86_64.rpm python3-ipa_hbac-1.16.1-150300.23.23.1.x86_64.rpm python3-sss-murmur-1.16.1-150300.23.23.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-150300.23.23.1.x86_64.rpm python3-sssd-config-1.16.1-150300.23.23.1.x86_64.rpm sssd-1.16.1-150300.23.23.1.src.rpm sssd-1.16.1-150300.23.23.1.x86_64.rpm sssd-ad-1.16.1-150300.23.23.1.x86_64.rpm sssd-common-1.16.1-150300.23.23.1.x86_64.rpm sssd-common-32bit-1.16.1-150300.23.23.1.x86_64.rpm sssd-dbus-1.16.1-150300.23.23.1.x86_64.rpm sssd-ipa-1.16.1-150300.23.23.1.x86_64.rpm sssd-krb5-1.16.1-150300.23.23.1.x86_64.rpm sssd-krb5-common-1.16.1-150300.23.23.1.x86_64.rpm sssd-ldap-1.16.1-150300.23.23.1.x86_64.rpm sssd-proxy-1.16.1-150300.23.23.1.x86_64.rpm sssd-tools-1.16.1-150300.23.23.1.x86_64.rpm sssd-wbclient-1.16.1-150300.23.23.1.x86_64.rpm sssd-wbclient-devel-1.16.1-150300.23.23.1.x86_64.rpm sssd-winbind-idmap-1.16.1-150300.23.23.1.x86_64.rpm libipa_hbac-devel-1.16.1-150300.23.23.1.s390x.rpm libipa_hbac0-1.16.1-150300.23.23.1.s390x.rpm libnfsidmap-sss-1.16.1-150300.23.23.1.s390x.rpm libsss_certmap-devel-1.16.1-150300.23.23.1.s390x.rpm libsss_certmap0-1.16.1-150300.23.23.1.s390x.rpm libsss_idmap-devel-1.16.1-150300.23.23.1.s390x.rpm libsss_idmap0-1.16.1-150300.23.23.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-150300.23.23.1.s390x.rpm libsss_nss_idmap0-1.16.1-150300.23.23.1.s390x.rpm libsss_simpleifp-devel-1.16.1-150300.23.23.1.s390x.rpm libsss_simpleifp0-1.16.1-150300.23.23.1.s390x.rpm python3-ipa_hbac-1.16.1-150300.23.23.1.s390x.rpm python3-sss-murmur-1.16.1-150300.23.23.1.s390x.rpm python3-sss_nss_idmap-1.16.1-150300.23.23.1.s390x.rpm python3-sssd-config-1.16.1-150300.23.23.1.s390x.rpm sssd-1.16.1-150300.23.23.1.s390x.rpm sssd-ad-1.16.1-150300.23.23.1.s390x.rpm sssd-common-1.16.1-150300.23.23.1.s390x.rpm sssd-dbus-1.16.1-150300.23.23.1.s390x.rpm sssd-ipa-1.16.1-150300.23.23.1.s390x.rpm sssd-krb5-1.16.1-150300.23.23.1.s390x.rpm sssd-krb5-common-1.16.1-150300.23.23.1.s390x.rpm sssd-ldap-1.16.1-150300.23.23.1.s390x.rpm sssd-proxy-1.16.1-150300.23.23.1.s390x.rpm sssd-tools-1.16.1-150300.23.23.1.s390x.rpm sssd-wbclient-1.16.1-150300.23.23.1.s390x.rpm sssd-wbclient-devel-1.16.1-150300.23.23.1.s390x.rpm sssd-winbind-idmap-1.16.1-150300.23.23.1.s390x.rpm libipa_hbac-devel-1.16.1-150300.23.23.1.ppc64le.rpm libipa_hbac0-1.16.1-150300.23.23.1.ppc64le.rpm libnfsidmap-sss-1.16.1-150300.23.23.1.ppc64le.rpm libsss_certmap-devel-1.16.1-150300.23.23.1.ppc64le.rpm libsss_certmap0-1.16.1-150300.23.23.1.ppc64le.rpm libsss_idmap-devel-1.16.1-150300.23.23.1.ppc64le.rpm libsss_idmap0-1.16.1-150300.23.23.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-150300.23.23.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-150300.23.23.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-150300.23.23.1.ppc64le.rpm libsss_simpleifp0-1.16.1-150300.23.23.1.ppc64le.rpm python3-ipa_hbac-1.16.1-150300.23.23.1.ppc64le.rpm python3-sss-murmur-1.16.1-150300.23.23.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-150300.23.23.1.ppc64le.rpm python3-sssd-config-1.16.1-150300.23.23.1.ppc64le.rpm sssd-1.16.1-150300.23.23.1.ppc64le.rpm sssd-ad-1.16.1-150300.23.23.1.ppc64le.rpm sssd-common-1.16.1-150300.23.23.1.ppc64le.rpm sssd-dbus-1.16.1-150300.23.23.1.ppc64le.rpm sssd-ipa-1.16.1-150300.23.23.1.ppc64le.rpm sssd-krb5-1.16.1-150300.23.23.1.ppc64le.rpm sssd-krb5-common-1.16.1-150300.23.23.1.ppc64le.rpm sssd-ldap-1.16.1-150300.23.23.1.ppc64le.rpm sssd-proxy-1.16.1-150300.23.23.1.ppc64le.rpm sssd-tools-1.16.1-150300.23.23.1.ppc64le.rpm sssd-wbclient-1.16.1-150300.23.23.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-150300.23.23.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-150300.23.23.1.ppc64le.rpm libipa_hbac-devel-1.16.1-150300.23.23.1.aarch64.rpm libipa_hbac0-1.16.1-150300.23.23.1.aarch64.rpm libnfsidmap-sss-1.16.1-150300.23.23.1.aarch64.rpm libsss_certmap-devel-1.16.1-150300.23.23.1.aarch64.rpm libsss_certmap0-1.16.1-150300.23.23.1.aarch64.rpm libsss_idmap-devel-1.16.1-150300.23.23.1.aarch64.rpm libsss_idmap0-1.16.1-150300.23.23.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.23.1.aarch64.rpm libsss_nss_idmap0-1.16.1-150300.23.23.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-150300.23.23.1.aarch64.rpm libsss_simpleifp0-1.16.1-150300.23.23.1.aarch64.rpm python3-ipa_hbac-1.16.1-150300.23.23.1.aarch64.rpm python3-sss-murmur-1.16.1-150300.23.23.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-150300.23.23.1.aarch64.rpm python3-sssd-config-1.16.1-150300.23.23.1.aarch64.rpm sssd-1.16.1-150300.23.23.1.aarch64.rpm sssd-ad-1.16.1-150300.23.23.1.aarch64.rpm sssd-common-1.16.1-150300.23.23.1.aarch64.rpm sssd-dbus-1.16.1-150300.23.23.1.aarch64.rpm sssd-ipa-1.16.1-150300.23.23.1.aarch64.rpm sssd-krb5-1.16.1-150300.23.23.1.aarch64.rpm sssd-krb5-common-1.16.1-150300.23.23.1.aarch64.rpm sssd-ldap-1.16.1-150300.23.23.1.aarch64.rpm sssd-proxy-1.16.1-150300.23.23.1.aarch64.rpm sssd-tools-1.16.1-150300.23.23.1.aarch64.rpm sssd-wbclient-1.16.1-150300.23.23.1.aarch64.rpm sssd-wbclient-devel-1.16.1-150300.23.23.1.aarch64.rpm sssd-winbind-idmap-1.16.1-150300.23.23.1.aarch64.rpm openSUSE-SLE-15.3-2022-836 moderate SUSE Updates openSUSE-SLE 15.3 This update for gdb fixes the following issues: - Support for new IBM Z Hardware - GDB Part (jsc#SLE-22287) gdb-11.1-8.30.1.src.rpm gdb-11.1-8.30.1.x86_64.rpm gdb-testresults-11.1-8.30.1.nosrc.rpm gdb-testresults-11.1-8.30.1.x86_64.rpm gdbserver-11.1-8.30.1.x86_64.rpm gdb-11.1-8.30.1.s390x.rpm gdb-testresults-11.1-8.30.1.s390x.rpm gdbserver-11.1-8.30.1.s390x.rpm gdb-11.1-8.30.1.ppc64le.rpm gdb-testresults-11.1-8.30.1.ppc64le.rpm gdbserver-11.1-8.30.1.ppc64le.rpm gdb-11.1-8.30.1.aarch64.rpm gdb-testresults-11.1-8.30.1.aarch64.rpm gdbserver-11.1-8.30.1.aarch64.rpm openSUSE-SLE-15.3-2022-739 moderate SUSE Updates openSUSE-SLE 15.3 This update for mdadm fixes the following issues: - Monitor: print message before quit for no array to monitor (bsc#1183229) mdadm-4.1-150300.24.9.1.src.rpm mdadm-4.1-150300.24.9.1.x86_64.rpm mdadm-4.1-150300.24.9.1.s390x.rpm mdadm-4.1-150300.24.9.1.ppc64le.rpm mdadm-4.1-150300.24.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-743 important SUSE Updates openSUSE-SLE 15.3 This update for cyrus-sasl fixes the following issues: - CVE-2022-24407: Fixed SQL injection in sql_auxprop_store in plugins/sql.c (bsc#1196036). The following non-security bugs were fixed: - postfix: sasl authentication with password fails (bsc#1194265). cyrus-sasl-2.1.27-150300.4.6.1.src.rpm cyrus-sasl-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-32bit-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-bdb-2.1.27-150300.4.6.1.src.rpm cyrus-sasl-bdb-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-crammd5-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-crammd5-32bit-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-devel-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-devel-32bit-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-digestmd5-32bit-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-gs2-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-gssapi-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-gssapi-32bit-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-ldap-auxprop-32bit-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-ntlm-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-otp-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-otp-32bit-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-plain-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-plain-32bit-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.6.1.src.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.6.1.src.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-scram-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-sqlauxprop-32bit-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.6.1.x86_64.rpm libsasl2-3-2.1.27-150300.4.6.1.x86_64.rpm libsasl2-3-32bit-2.1.27-150300.4.6.1.x86_64.rpm cyrus-sasl-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-bdb-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-crammd5-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-devel-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-gs2-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-gssapi-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-ntlm-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-otp-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-plain-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-scram-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.6.1.s390x.rpm libsasl2-3-2.1.27-150300.4.6.1.s390x.rpm cyrus-sasl-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-bdb-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-crammd5-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-devel-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-gs2-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-gssapi-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-ntlm-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-otp-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-plain-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-scram-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.6.1.ppc64le.rpm libsasl2-3-2.1.27-150300.4.6.1.ppc64le.rpm cyrus-sasl-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-bdb-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-crammd5-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-devel-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-gs2-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-gssapi-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-ntlm-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-otp-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-plain-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-scram-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.6.1.aarch64.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.6.1.aarch64.rpm libsasl2-3-2.1.27-150300.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-717 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnutls fixes the following issues: - CVE-2021-4209: Fixed null pointer dereference in MD_UPDATE (bsc#1196167). gnutls-3.6.7-14.16.1.src.rpm gnutls-3.6.7-14.16.1.x86_64.rpm gnutls-guile-3.6.7-14.16.1.x86_64.rpm libgnutls-devel-3.6.7-14.16.1.x86_64.rpm libgnutls-devel-32bit-3.6.7-14.16.1.x86_64.rpm libgnutls30-3.6.7-14.16.1.x86_64.rpm libgnutls30-32bit-3.6.7-14.16.1.x86_64.rpm libgnutls30-hmac-3.6.7-14.16.1.x86_64.rpm libgnutls30-hmac-32bit-3.6.7-14.16.1.x86_64.rpm libgnutlsxx-devel-3.6.7-14.16.1.x86_64.rpm libgnutlsxx28-3.6.7-14.16.1.x86_64.rpm gnutls-3.6.7-14.16.1.s390x.rpm gnutls-guile-3.6.7-14.16.1.s390x.rpm libgnutls-devel-3.6.7-14.16.1.s390x.rpm libgnutls30-3.6.7-14.16.1.s390x.rpm libgnutls30-hmac-3.6.7-14.16.1.s390x.rpm libgnutlsxx-devel-3.6.7-14.16.1.s390x.rpm libgnutlsxx28-3.6.7-14.16.1.s390x.rpm gnutls-3.6.7-14.16.1.ppc64le.rpm gnutls-guile-3.6.7-14.16.1.ppc64le.rpm libgnutls-devel-3.6.7-14.16.1.ppc64le.rpm libgnutls30-3.6.7-14.16.1.ppc64le.rpm libgnutls30-hmac-3.6.7-14.16.1.ppc64le.rpm libgnutlsxx-devel-3.6.7-14.16.1.ppc64le.rpm libgnutlsxx28-3.6.7-14.16.1.ppc64le.rpm gnutls-3.6.7-14.16.1.aarch64.rpm gnutls-guile-3.6.7-14.16.1.aarch64.rpm libgnutls-devel-3.6.7-14.16.1.aarch64.rpm libgnutls30-3.6.7-14.16.1.aarch64.rpm libgnutls30-hmac-3.6.7-14.16.1.aarch64.rpm libgnutlsxx-devel-3.6.7-14.16.1.aarch64.rpm libgnutlsxx28-3.6.7-14.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-787 moderate SUSE Updates openSUSE-SLE 15.3 This update for openldap2 fixes the following issue: - restore CLDAP functionality in CLI tools (jsc#PM-3288) libldap-2_4-2-2.4.46-9.61.1.x86_64.rpm libldap-2_4-2-32bit-2.4.46-9.61.1.x86_64.rpm libldap-data-2.4.46-9.61.1.noarch.rpm openldap2-2.4.46-9.61.1.src.rpm openldap2-2.4.46-9.61.1.x86_64.rpm openldap2-back-meta-2.4.46-9.61.1.x86_64.rpm openldap2-back-perl-2.4.46-9.61.1.x86_64.rpm openldap2-back-sock-2.4.46-9.61.1.x86_64.rpm openldap2-back-sql-2.4.46-9.61.1.x86_64.rpm openldap2-client-2.4.46-9.61.1.x86_64.rpm openldap2-contrib-2.4.46-9.61.1.x86_64.rpm openldap2-devel-2.4.46-9.61.1.x86_64.rpm openldap2-devel-32bit-2.4.46-9.61.1.x86_64.rpm openldap2-devel-static-2.4.46-9.61.1.x86_64.rpm openldap2-doc-2.4.46-9.61.1.noarch.rpm openldap2-ppolicy-check-password-1.2-9.61.1.x86_64.rpm libldap-2_4-2-2.4.46-9.61.1.s390x.rpm openldap2-2.4.46-9.61.1.s390x.rpm openldap2-back-meta-2.4.46-9.61.1.s390x.rpm openldap2-back-perl-2.4.46-9.61.1.s390x.rpm openldap2-back-sock-2.4.46-9.61.1.s390x.rpm openldap2-back-sql-2.4.46-9.61.1.s390x.rpm openldap2-client-2.4.46-9.61.1.s390x.rpm openldap2-contrib-2.4.46-9.61.1.s390x.rpm openldap2-devel-2.4.46-9.61.1.s390x.rpm openldap2-devel-static-2.4.46-9.61.1.s390x.rpm openldap2-ppolicy-check-password-1.2-9.61.1.s390x.rpm libldap-2_4-2-2.4.46-9.61.1.ppc64le.rpm openldap2-2.4.46-9.61.1.ppc64le.rpm openldap2-back-meta-2.4.46-9.61.1.ppc64le.rpm openldap2-back-perl-2.4.46-9.61.1.ppc64le.rpm openldap2-back-sock-2.4.46-9.61.1.ppc64le.rpm openldap2-back-sql-2.4.46-9.61.1.ppc64le.rpm openldap2-client-2.4.46-9.61.1.ppc64le.rpm openldap2-contrib-2.4.46-9.61.1.ppc64le.rpm openldap2-devel-2.4.46-9.61.1.ppc64le.rpm openldap2-devel-static-2.4.46-9.61.1.ppc64le.rpm openldap2-ppolicy-check-password-1.2-9.61.1.ppc64le.rpm libldap-2_4-2-2.4.46-9.61.1.aarch64.rpm openldap2-2.4.46-9.61.1.aarch64.rpm openldap2-back-meta-2.4.46-9.61.1.aarch64.rpm openldap2-back-perl-2.4.46-9.61.1.aarch64.rpm openldap2-back-sock-2.4.46-9.61.1.aarch64.rpm openldap2-back-sql-2.4.46-9.61.1.aarch64.rpm openldap2-client-2.4.46-9.61.1.aarch64.rpm openldap2-contrib-2.4.46-9.61.1.aarch64.rpm openldap2-devel-2.4.46-9.61.1.aarch64.rpm openldap2-devel-static-2.4.46-9.61.1.aarch64.rpm openldap2-ppolicy-check-password-1.2-9.61.1.aarch64.rpm openSUSE-SLE-15.3-2022-876 moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issue: - Fix segmentation fault during terminal switches with multiple attached displays. (bsc#1188970) - Fix a regression that may cause gdm/lightdm fail to start. (bsc#1196577) xorg-x11-server-1.20.3-22.5.47.1.src.rpm xorg-x11-server-1.20.3-22.5.47.1.x86_64.rpm xorg-x11-server-extra-1.20.3-22.5.47.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-22.5.47.1.x86_64.rpm xorg-x11-server-source-1.20.3-22.5.47.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-22.5.47.1.x86_64.rpm xorg-x11-server-1.20.3-22.5.47.1.s390x.rpm xorg-x11-server-extra-1.20.3-22.5.47.1.s390x.rpm xorg-x11-server-sdk-1.20.3-22.5.47.1.s390x.rpm xorg-x11-server-source-1.20.3-22.5.47.1.s390x.rpm xorg-x11-server-wayland-1.20.3-22.5.47.1.s390x.rpm xorg-x11-server-1.20.3-22.5.47.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-22.5.47.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-22.5.47.1.ppc64le.rpm xorg-x11-server-source-1.20.3-22.5.47.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-22.5.47.1.ppc64le.rpm xorg-x11-server-1.20.3-22.5.47.1.aarch64.rpm xorg-x11-server-extra-1.20.3-22.5.47.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-22.5.47.1.aarch64.rpm xorg-x11-server-source-1.20.3-22.5.47.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-22.5.47.1.aarch64.rpm openSUSE-SLE-15.3-2022-711 moderate SUSE Updates openSUSE-SLE 15.3 This update for sudo fixes the following issues: - Add support in the LDAP filter for negated users (jsc#SLE-20068) - Restrict use of sudo -U other -l to people who have permission to run commands as that user (bsc#1181703, jsc#SLE-22569) sudo-1.9.5p2-150300.3.3.1.src.rpm sudo-1.9.5p2-150300.3.3.1.x86_64.rpm sudo-devel-1.9.5p2-150300.3.3.1.x86_64.rpm sudo-plugin-python-1.9.5p2-150300.3.3.1.x86_64.rpm sudo-test-1.9.5p2-150300.3.3.1.x86_64.rpm sudo-1.9.5p2-150300.3.3.1.s390x.rpm sudo-devel-1.9.5p2-150300.3.3.1.s390x.rpm sudo-plugin-python-1.9.5p2-150300.3.3.1.s390x.rpm sudo-test-1.9.5p2-150300.3.3.1.s390x.rpm sudo-1.9.5p2-150300.3.3.1.ppc64le.rpm sudo-devel-1.9.5p2-150300.3.3.1.ppc64le.rpm sudo-plugin-python-1.9.5p2-150300.3.3.1.ppc64le.rpm sudo-test-1.9.5p2-150300.3.3.1.ppc64le.rpm sudo-1.9.5p2-150300.3.3.1.aarch64.rpm sudo-devel-1.9.5p2-150300.3.3.1.aarch64.rpm sudo-plugin-python-1.9.5p2-150300.3.3.1.aarch64.rpm sudo-test-1.9.5p2-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-889 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: Upgrade to version 10.20 (bsc#1195680): - Reindexing might be needed after applying this upgrade, so please read the release notes carefully https://www.postgresql.org/docs/10/release-10-20.html - Add constraints file with 12GB of memory for s390x as a workaround (bsc#1190740) - Add a llvmjit-devel subpackage to pull in the right versions of clang and llvm for building extensions - Fix some mistakes in the interdependencies between the implementation packages and their noarch counterpart postgresql10-10.20-8.44.1.src.rpm postgresql10-10.20-8.44.1.x86_64.rpm postgresql10-contrib-10.20-8.44.1.x86_64.rpm postgresql10-docs-10.20-8.44.1.noarch.rpm postgresql10-plperl-10.20-8.44.1.x86_64.rpm postgresql10-plpython-10.20-8.44.1.x86_64.rpm postgresql10-pltcl-10.20-8.44.1.x86_64.rpm postgresql10-server-10.20-8.44.1.x86_64.rpm postgresql10-test-10.20-8.44.1.x86_64.rpm postgresql10-10.20-8.44.1.s390x.rpm postgresql10-contrib-10.20-8.44.1.s390x.rpm postgresql10-plperl-10.20-8.44.1.s390x.rpm postgresql10-plpython-10.20-8.44.1.s390x.rpm postgresql10-pltcl-10.20-8.44.1.s390x.rpm postgresql10-server-10.20-8.44.1.s390x.rpm postgresql10-test-10.20-8.44.1.s390x.rpm postgresql10-10.20-8.44.1.ppc64le.rpm postgresql10-contrib-10.20-8.44.1.ppc64le.rpm postgresql10-plperl-10.20-8.44.1.ppc64le.rpm postgresql10-plpython-10.20-8.44.1.ppc64le.rpm postgresql10-pltcl-10.20-8.44.1.ppc64le.rpm postgresql10-server-10.20-8.44.1.ppc64le.rpm postgresql10-test-10.20-8.44.1.ppc64le.rpm postgresql10-10.20-8.44.1.aarch64.rpm postgresql10-contrib-10.20-8.44.1.aarch64.rpm postgresql10-plperl-10.20-8.44.1.aarch64.rpm postgresql10-plpython-10.20-8.44.1.aarch64.rpm postgresql10-pltcl-10.20-8.44.1.aarch64.rpm postgresql10-server-10.20-8.44.1.aarch64.rpm postgresql10-test-10.20-8.44.1.aarch64.rpm openSUSE-SLE-15.3-2022-731 important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.5.15 (bsc#1196016): * 10.5.15: CVE-2021-46665 CVE-2021-46664 CVE-2021-46661 CVE-2021-46668 CVE-2021-46663 * 10.5.14: CVE-2022-24052 CVE-2022-24051 CVE-2022-24050 CVE-2022-24048 CVE-2021-46659, bsc#1195339 - The following issues have already been fixed in this package but weren't previously mentioned in the changes file: CVE-2021-46658, bsc#1195334 CVE-2021-46657, bsc#1195325 libmariadbd-devel-10.5.15-150300.3.15.1.x86_64.rpm libmariadbd19-10.5.15-150300.3.15.1.x86_64.rpm mariadb-10.5.15-150300.3.15.1.src.rpm mariadb-10.5.15-150300.3.15.1.x86_64.rpm mariadb-bench-10.5.15-150300.3.15.1.x86_64.rpm mariadb-client-10.5.15-150300.3.15.1.x86_64.rpm mariadb-errormessages-10.5.15-150300.3.15.1.noarch.rpm mariadb-rpm-macros-10.5.15-150300.3.15.1.x86_64.rpm mariadb-test-10.5.15-150300.3.15.1.x86_64.rpm mariadb-tools-10.5.15-150300.3.15.1.x86_64.rpm libmariadbd-devel-10.5.15-150300.3.15.1.s390x.rpm libmariadbd19-10.5.15-150300.3.15.1.s390x.rpm mariadb-10.5.15-150300.3.15.1.s390x.rpm mariadb-bench-10.5.15-150300.3.15.1.s390x.rpm mariadb-client-10.5.15-150300.3.15.1.s390x.rpm mariadb-rpm-macros-10.5.15-150300.3.15.1.s390x.rpm mariadb-test-10.5.15-150300.3.15.1.s390x.rpm mariadb-tools-10.5.15-150300.3.15.1.s390x.rpm libmariadbd-devel-10.5.15-150300.3.15.1.ppc64le.rpm libmariadbd19-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-bench-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-client-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-rpm-macros-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-test-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-tools-10.5.15-150300.3.15.1.ppc64le.rpm libmariadbd-devel-10.5.15-150300.3.15.1.aarch64.rpm libmariadbd19-10.5.15-150300.3.15.1.aarch64.rpm mariadb-10.5.15-150300.3.15.1.aarch64.rpm mariadb-bench-10.5.15-150300.3.15.1.aarch64.rpm mariadb-client-10.5.15-150300.3.15.1.aarch64.rpm mariadb-rpm-macros-10.5.15-150300.3.15.1.aarch64.rpm mariadb-test-10.5.15-150300.3.15.1.aarch64.rpm mariadb-tools-10.5.15-150300.3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-781 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: MozillaThunderbird, enigmail MozillaThunderbird-91.6.1-8.56.1.src.rpm MozillaThunderbird-91.6.1-8.56.1.x86_64.rpm MozillaThunderbird-translations-common-91.6.1-8.56.1.x86_64.rpm MozillaThunderbird-translations-other-91.6.1-8.56.1.x86_64.rpm enigmail-2.2.4-3.27.1.src.rpm enigmail-2.2.4-3.27.1.x86_64.rpm MozillaThunderbird-91.6.1-8.56.1.s390x.rpm MozillaThunderbird-translations-common-91.6.1-8.56.1.s390x.rpm MozillaThunderbird-translations-other-91.6.1-8.56.1.s390x.rpm enigmail-2.2.4-3.27.1.s390x.rpm MozillaThunderbird-91.6.1-8.56.1.ppc64le.rpm MozillaThunderbird-translations-common-91.6.1-8.56.1.ppc64le.rpm MozillaThunderbird-translations-other-91.6.1-8.56.1.ppc64le.rpm enigmail-2.2.4-3.27.1.ppc64le.rpm MozillaThunderbird-91.6.1-8.56.1.aarch64.rpm MozillaThunderbird-translations-common-91.6.1-8.56.1.aarch64.rpm MozillaThunderbird-translations-other-91.6.1-8.56.1.aarch64.rpm enigmail-2.2.4-3.27.1.aarch64.rpm openSUSE-SLE-15.3-2022-651 important SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Fix SBD not to overwrite SYSCONFIG_SBD and sbd-disk-metadata if input is 'n' during the configuration (bsc#1194870) - Fix help output of `crm cluster crash_test -h` (bsc#1194615) - Fix information message when the user need to change login shell (bsc#1194026) crmsh-4.3.1+20220208.73603501-5.74.1.noarch.rpm crmsh-4.3.1+20220208.73603501-5.74.1.src.rpm crmsh-scripts-4.3.1+20220208.73603501-5.74.1.noarch.rpm crmsh-test-4.3.1+20220208.73603501-5.74.1.noarch.rpm openSUSE-SLE-15.3-2022-580 important SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Fix for issue introduced in version 2.37+ of util-linux that modified the output characters of lsblk, which breaks the parser function (bsc#1196258) - Fix for path resolution failing when a device provides multiple mount points such as, for example, when using btrfs subvolumes, or when mounting the same file system at multiple mount points (bsc#1196257) libekmfweb1-2.15.1-150300.8.14.1.s390x.rpm libekmfweb1-devel-2.15.1-150300.8.14.1.s390x.rpm osasnmpd-2.15.1-150300.8.14.1.s390x.rpm s390-tools-2.15.1-150300.8.14.1.s390x.rpm s390-tools-2.15.1-150300.8.14.1.src.rpm s390-tools-hmcdrvfs-2.15.1-150300.8.14.1.s390x.rpm s390-tools-zdsfs-2.15.1-150300.8.14.1.s390x.rpm openSUSE-SLE-15.3-2022-1073 moderate SUSE Updates openSUSE-SLE 15.3 This update for yaml-cpp fixes the following issues: - CVE-2018-20573: Fixed remote DOS via a crafted YAML file in function Scanner:EnsureTokensInQueue (bsc#1121227). - CVE-2018-20574: Fixed remote DOS via a crafted YAML file in function SingleDocParser:HandleFlowMap (bsc#1121230). - CVE-2019-6285: Fixed remote DOS via a crafted YAML file in function SingleDocParser::HandleFlowSequence (bsc#1122004). - CVE-2019-6292: Fixed DOS by stack consumption in singledocparser.cpp (bsc#1122021). libyaml-cpp0_6-0.6.1-4.5.1.x86_64.rpm yaml-cpp-0.6.1-4.5.1.src.rpm yaml-cpp-devel-0.6.1-4.5.1.x86_64.rpm libyaml-cpp0_6-0.6.1-4.5.1.s390x.rpm yaml-cpp-devel-0.6.1-4.5.1.s390x.rpm libyaml-cpp0_6-0.6.1-4.5.1.ppc64le.rpm yaml-cpp-devel-0.6.1-4.5.1.ppc64le.rpm libyaml-cpp0_6-0.6.1-4.5.1.aarch64.rpm yaml-cpp-devel-0.6.1-4.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-1314 low SUSE Updates openSUSE-SLE 15.3 This update for libslirp fixes the following issues: NOTE: this update was retracted, as the bootp fix was incorrect and breaks DHCP usage in qemu. - CVE-2021-3592: Fixed invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364). - CVE-2021-3594: Fixed invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367). - CVE-2021-3595: Fixed invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366). libslirp-4.3.1-150300.3.3.1.src.rpm libslirp-devel-4.3.1-150300.3.3.1.x86_64.rpm libslirp0-4.3.1-150300.3.3.1.x86_64.rpm libslirp-devel-4.3.1-150300.3.3.1.s390x.rpm libslirp0-4.3.1-150300.3.3.1.s390x.rpm libslirp-devel-4.3.1-150300.3.3.1.ppc64le.rpm libslirp0-4.3.1-150300.3.3.1.ppc64le.rpm libslirp-devel-4.3.1-150300.3.3.1.aarch64.rpm libslirp0-4.3.1-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1297 low SUSE Updates openSUSE-SLE 15.3 This update for swtpm fixes the following issues: - Update to version 0.5.3 - CVE-2022-23645: Check header size indicator against expected size (bsc#1196240). swtpm-0.5.3-150300.3.3.1.src.rpm swtpm-0.5.3-150300.3.3.1.x86_64.rpm swtpm-devel-0.5.3-150300.3.3.1.x86_64.rpm swtpm-0.5.3-150300.3.3.1.s390x.rpm swtpm-devel-0.5.3-150300.3.3.1.s390x.rpm swtpm-0.5.3-150300.3.3.1.ppc64le.rpm swtpm-devel-0.5.3-150300.3.3.1.ppc64le.rpm swtpm-0.5.3-150300.3.3.1.aarch64.rpm swtpm-devel-0.5.3-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-885 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: freerdp, libgsm freerdp-2.1.2-15.12.1.src.rpm freerdp-2.1.2-15.12.1.x86_64.rpm freerdp-devel-2.1.2-15.12.1.x86_64.rpm freerdp-proxy-2.1.2-15.12.1.x86_64.rpm freerdp-server-2.1.2-15.12.1.x86_64.rpm freerdp-wayland-2.1.2-15.12.1.x86_64.rpm libfreerdp2-2.1.2-15.12.1.x86_64.rpm libgsm-1.0.14-3.2.1.src.rpm libgsm-devel-1.0.14-3.2.1.x86_64.rpm libgsm-devel-32bit-1.0.14-3.2.1.x86_64.rpm libgsm-utils-1.0.14-3.2.1.x86_64.rpm libgsm1-1.0.14-3.2.1.x86_64.rpm libgsm1-32bit-1.0.14-3.2.1.x86_64.rpm libuwac0-0-2.1.2-15.12.1.x86_64.rpm libwinpr2-2.1.2-15.12.1.x86_64.rpm uwac0-0-devel-2.1.2-15.12.1.x86_64.rpm winpr2-devel-2.1.2-15.12.1.x86_64.rpm freerdp-2.1.2-15.12.1.s390x.rpm freerdp-devel-2.1.2-15.12.1.s390x.rpm freerdp-proxy-2.1.2-15.12.1.s390x.rpm freerdp-server-2.1.2-15.12.1.s390x.rpm freerdp-wayland-2.1.2-15.12.1.s390x.rpm libfreerdp2-2.1.2-15.12.1.s390x.rpm libgsm-devel-1.0.14-3.2.1.s390x.rpm libgsm-utils-1.0.14-3.2.1.s390x.rpm libgsm1-1.0.14-3.2.1.s390x.rpm libuwac0-0-2.1.2-15.12.1.s390x.rpm libwinpr2-2.1.2-15.12.1.s390x.rpm uwac0-0-devel-2.1.2-15.12.1.s390x.rpm winpr2-devel-2.1.2-15.12.1.s390x.rpm freerdp-2.1.2-15.12.1.ppc64le.rpm freerdp-devel-2.1.2-15.12.1.ppc64le.rpm freerdp-proxy-2.1.2-15.12.1.ppc64le.rpm freerdp-server-2.1.2-15.12.1.ppc64le.rpm freerdp-wayland-2.1.2-15.12.1.ppc64le.rpm libfreerdp2-2.1.2-15.12.1.ppc64le.rpm libgsm-devel-1.0.14-3.2.1.ppc64le.rpm libgsm-utils-1.0.14-3.2.1.ppc64le.rpm libgsm1-1.0.14-3.2.1.ppc64le.rpm libuwac0-0-2.1.2-15.12.1.ppc64le.rpm libwinpr2-2.1.2-15.12.1.ppc64le.rpm uwac0-0-devel-2.1.2-15.12.1.ppc64le.rpm winpr2-devel-2.1.2-15.12.1.ppc64le.rpm freerdp-2.1.2-15.12.1.aarch64.rpm freerdp-devel-2.1.2-15.12.1.aarch64.rpm freerdp-proxy-2.1.2-15.12.1.aarch64.rpm freerdp-server-2.1.2-15.12.1.aarch64.rpm freerdp-wayland-2.1.2-15.12.1.aarch64.rpm libfreerdp2-2.1.2-15.12.1.aarch64.rpm libgsm-devel-1.0.14-3.2.1.aarch64.rpm libgsm-utils-1.0.14-3.2.1.aarch64.rpm libgsm1-1.0.14-3.2.1.aarch64.rpm libuwac0-0-2.1.2-15.12.1.aarch64.rpm libwinpr2-2.1.2-15.12.1.aarch64.rpm uwac0-0-devel-2.1.2-15.12.1.aarch64.rpm winpr2-devel-2.1.2-15.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-1134 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: gfbgraph, librest, gnome-online-accounts, gcr gcr-3.34.0-5.2.1.src.rpm gcr-data-3.34.0-5.2.1.x86_64.rpm gcr-lang-3.34.0-5.2.1.noarch.rpm gcr-prompter-3.34.0-5.2.1.x86_64.rpm gcr-ssh-askpass-3.34.0-5.2.1.x86_64.rpm gcr-viewer-3.34.0-5.2.1.x86_64.rpm gfbgraph-0.2.3-3.2.1.src.rpm gfbgraph-devel-0.2.3-3.2.1.x86_64.rpm gnome-online-accounts-3.34.1-3.2.1.src.rpm gnome-online-accounts-3.34.1-3.2.1.x86_64.rpm gnome-online-accounts-devel-3.34.1-3.2.1.x86_64.rpm gnome-online-accounts-lang-3.34.1-3.2.1.noarch.rpm libgck-1-0-3.34.0-5.2.1.x86_64.rpm libgck-1-0-32bit-3.34.0-5.2.1.x86_64.rpm libgck-devel-3.34.0-5.2.1.x86_64.rpm libgck-devel-32bit-3.34.0-5.2.1.x86_64.rpm libgcr-3-1-3.34.0-5.2.1.x86_64.rpm libgcr-3-1-32bit-3.34.0-5.2.1.x86_64.rpm libgcr-devel-3.34.0-5.2.1.x86_64.rpm libgcr-devel-32bit-3.34.0-5.2.1.x86_64.rpm libgfbgraph-0_2-0-0.2.3-3.2.1.x86_64.rpm libgoa-1_0-0-3.34.1-3.2.1.x86_64.rpm libgoa-1_0-0-32bit-3.34.1-3.2.1.x86_64.rpm libgoa-backend-1_0-1-3.34.1-3.2.1.x86_64.rpm libgoa-backend-1_0-1-32bit-3.34.1-3.2.1.x86_64.rpm librest-0.8.1-3.2.1.src.rpm librest-0_7-0-0.8.1-3.2.1.x86_64.rpm librest-0_7-0-32bit-0.8.1-3.2.1.x86_64.rpm librest-devel-0.8.1-3.2.1.x86_64.rpm typelib-1_0-GFBGraph-0_2-0.2.3-3.2.1.x86_64.rpm typelib-1_0-Gck-1-3.34.0-5.2.1.x86_64.rpm typelib-1_0-Gcr-3-3.34.0-5.2.1.x86_64.rpm typelib-1_0-GcrUi-3-3.34.0-5.2.1.x86_64.rpm typelib-1_0-Goa-1_0-3.34.1-3.2.1.x86_64.rpm typelib-1_0-Rest-0_7-0.8.1-3.2.1.x86_64.rpm gcr-data-3.34.0-5.2.1.s390x.rpm gcr-prompter-3.34.0-5.2.1.s390x.rpm gcr-ssh-askpass-3.34.0-5.2.1.s390x.rpm gcr-viewer-3.34.0-5.2.1.s390x.rpm gfbgraph-devel-0.2.3-3.2.1.s390x.rpm gnome-online-accounts-3.34.1-3.2.1.s390x.rpm gnome-online-accounts-devel-3.34.1-3.2.1.s390x.rpm libgck-1-0-3.34.0-5.2.1.s390x.rpm libgck-devel-3.34.0-5.2.1.s390x.rpm libgcr-3-1-3.34.0-5.2.1.s390x.rpm libgcr-devel-3.34.0-5.2.1.s390x.rpm libgfbgraph-0_2-0-0.2.3-3.2.1.s390x.rpm libgoa-1_0-0-3.34.1-3.2.1.s390x.rpm libgoa-backend-1_0-1-3.34.1-3.2.1.s390x.rpm librest-0_7-0-0.8.1-3.2.1.s390x.rpm librest-devel-0.8.1-3.2.1.s390x.rpm typelib-1_0-GFBGraph-0_2-0.2.3-3.2.1.s390x.rpm typelib-1_0-Gck-1-3.34.0-5.2.1.s390x.rpm typelib-1_0-Gcr-3-3.34.0-5.2.1.s390x.rpm typelib-1_0-GcrUi-3-3.34.0-5.2.1.s390x.rpm typelib-1_0-Goa-1_0-3.34.1-3.2.1.s390x.rpm typelib-1_0-Rest-0_7-0.8.1-3.2.1.s390x.rpm gcr-data-3.34.0-5.2.1.ppc64le.rpm gcr-prompter-3.34.0-5.2.1.ppc64le.rpm gcr-ssh-askpass-3.34.0-5.2.1.ppc64le.rpm gcr-viewer-3.34.0-5.2.1.ppc64le.rpm gfbgraph-devel-0.2.3-3.2.1.ppc64le.rpm gnome-online-accounts-3.34.1-3.2.1.ppc64le.rpm gnome-online-accounts-devel-3.34.1-3.2.1.ppc64le.rpm libgck-1-0-3.34.0-5.2.1.ppc64le.rpm libgck-devel-3.34.0-5.2.1.ppc64le.rpm libgcr-3-1-3.34.0-5.2.1.ppc64le.rpm libgcr-devel-3.34.0-5.2.1.ppc64le.rpm libgfbgraph-0_2-0-0.2.3-3.2.1.ppc64le.rpm libgoa-1_0-0-3.34.1-3.2.1.ppc64le.rpm libgoa-backend-1_0-1-3.34.1-3.2.1.ppc64le.rpm librest-0_7-0-0.8.1-3.2.1.ppc64le.rpm librest-devel-0.8.1-3.2.1.ppc64le.rpm typelib-1_0-GFBGraph-0_2-0.2.3-3.2.1.ppc64le.rpm typelib-1_0-Gck-1-3.34.0-5.2.1.ppc64le.rpm typelib-1_0-Gcr-3-3.34.0-5.2.1.ppc64le.rpm typelib-1_0-GcrUi-3-3.34.0-5.2.1.ppc64le.rpm typelib-1_0-Goa-1_0-3.34.1-3.2.1.ppc64le.rpm typelib-1_0-Rest-0_7-0.8.1-3.2.1.ppc64le.rpm gcr-data-3.34.0-5.2.1.aarch64.rpm gcr-prompter-3.34.0-5.2.1.aarch64.rpm gcr-ssh-askpass-3.34.0-5.2.1.aarch64.rpm gcr-viewer-3.34.0-5.2.1.aarch64.rpm gfbgraph-devel-0.2.3-3.2.1.aarch64.rpm gnome-online-accounts-3.34.1-3.2.1.aarch64.rpm gnome-online-accounts-devel-3.34.1-3.2.1.aarch64.rpm libgck-1-0-3.34.0-5.2.1.aarch64.rpm libgck-devel-3.34.0-5.2.1.aarch64.rpm libgcr-3-1-3.34.0-5.2.1.aarch64.rpm libgcr-devel-3.34.0-5.2.1.aarch64.rpm libgfbgraph-0_2-0-0.2.3-3.2.1.aarch64.rpm libgoa-1_0-0-3.34.1-3.2.1.aarch64.rpm libgoa-backend-1_0-1-3.34.1-3.2.1.aarch64.rpm librest-0_7-0-0.8.1-3.2.1.aarch64.rpm librest-devel-0.8.1-3.2.1.aarch64.rpm typelib-1_0-GFBGraph-0_2-0.2.3-3.2.1.aarch64.rpm typelib-1_0-Gck-1-3.34.0-5.2.1.aarch64.rpm typelib-1_0-Gcr-3-3.34.0-5.2.1.aarch64.rpm typelib-1_0-GcrUi-3-3.34.0-5.2.1.aarch64.rpm typelib-1_0-Goa-1_0-3.34.1-3.2.1.aarch64.rpm typelib-1_0-Rest-0_7-0.8.1-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-713 important SUSE Updates openSUSE-SLE 15.3 This update for expat fixes the following issues: - CVE-2022-25236: Fixed possible namespace-separator characters insertion into namespace URIs (bsc#1196025). - CVE-2022-25235: Fixed UTF-8 character validation in a certain context (bsc#1196026). - CVE-2022-25313: Fixed stack exhaustion in build_model() via uncontrolled recursion (bsc#1196168). - CVE-2022-25314: Fixed integer overflow in copyString (bsc#1196169). - CVE-2022-25315: Fixed integer overflow in storeRawNames (bsc#1196171). expat-2.2.5-3.15.1.src.rpm expat-2.2.5-3.15.1.x86_64.rpm libexpat-devel-2.2.5-3.15.1.x86_64.rpm libexpat-devel-32bit-2.2.5-3.15.1.x86_64.rpm libexpat1-2.2.5-3.15.1.x86_64.rpm libexpat1-32bit-2.2.5-3.15.1.x86_64.rpm expat-2.2.5-3.15.1.s390x.rpm libexpat-devel-2.2.5-3.15.1.s390x.rpm libexpat1-2.2.5-3.15.1.s390x.rpm expat-2.2.5-3.15.1.ppc64le.rpm libexpat-devel-2.2.5-3.15.1.ppc64le.rpm libexpat1-2.2.5-3.15.1.ppc64le.rpm expat-2.2.5-3.15.1.aarch64.rpm libexpat-devel-2.2.5-3.15.1.aarch64.rpm libexpat1-2.2.5-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-23018 moderate SUSE Updates openSUSE-SLE 15.3 This update for conmon, libcontainers-common, libseccomp, podman fixes the following issues: podman was updated to 3.4.4. Security issues fixed: - fix CVE-2021-41190 [bsc#1193273], opencontainers: OCI manifest and index parsing confusion - fix CVE-2021-4024 [bsc#1193166], podman machine spawns gvproxy with port binded to all IPs - fix CVE-2021-20199 [bsc#1181640], Remote traffic to rootless containers is seen as orginating from localhost - Add: Provides: podman:/usr/bin/podman-remote subpackage for a clearer upgrade path from podman < 3.1.2 Update to version 3.4.4: * Bugfixes - Fixed a bug where the podman exec command would, under some circumstances, print a warning message about failing to move conmon to the appropriate cgroup (#12535). - Fixed a bug where named volumes created as part of container creation (e.g. podman run --volume avolume:/a/mountpoint or similar) would be mounted with incorrect permissions (#12523). - Fixed a bug where the podman-remote create and podman-remote run commands did not properly handle the --entrypoint="" option (to clear the container's entrypoint) (#12521). - Update to version 3.4.3: * Security - This release addresses CVE-2021-4024, where the podman machine command opened the gvproxy API (used to forward ports to podman machine VMs) to the public internet on port 7777. - This release addresses CVE-2021-41190, where incomplete specification of behavior regarding image manifests could lead to inconsistent decoding on different clients. * Features - The --secret type=mount option to podman create and podman run supports a new option, target=, which specifies where in the container the secret will be mounted (#12287). * Bugfixes - Fixed a bug where rootless Podman would occasionally print warning messages about failing to move the pause process to a new cgroup (#12065). - Fixed a bug where the podman run and podman create commands would, when pulling images, still require TLS even with registries set to Insecure via config file (#11933). - Fixed a bug where the podman generate systemd command generated units that depended on multi-user.target, which has been removed from some distributions (#12438). - Fixed a bug where Podman could not run containers with images that had /etc/ as a symlink (#12189). - Fixed a bug where the podman logs -f command would, when using the journald logs backend, exit immediately if the container had previously been restarted (#12263). - Fixed a bug where, in containers on VMs created by podman machine, the host.containers.internal name pointed to the VM, not the host system (#11642). - Fixed a bug where containers and pods created by the podman play kube command in VMs managed by podman machine would not automatically forward ports from the host machine (#12248). - Fixed a bug where podman machine init would fail on OS X when GNU Coreutils was installed (#12329). - Fixed a bug where podman machine start would exit before SSH on the started VM was accepting connections (#11532). - Fixed a bug where the podman run command with signal proxying (--sig-proxy) enabled could print an error if it attempted to send a signal to a container that had just exited (#8086). - Fixed a bug where the podman stats command would not return correct information for containers running Systemd as PID1 (#12400). - Fixed a bug where the podman image save command would fail on OS X when writing the image to STDOUT (#12402). - Fixed a bug where the podman ps command did not properly handle PS arguments which contained whitespace (#12452). - Fixed a bug where the podman-remote wait command could fail to detect that the container exited and return an error under some circumstances (#12457). - Fixed a bug where the Windows MSI installer for podman-remote would break the PATH environment variable by adding an extra " (#11416). * API - The Libpod Play Kube endpoint now also accepts ConfigMap YAML as part of its payload, and will use provided any ConfigMap to configure provided pods and services. - Fixed a bug where the Compat Create endpoint for Containers would not always create the container's working directory if it did not exist (#11842). - Fixed a bug where the Compat Create endpoint for Containers returned an incorrect error message with 404 errors when the requested image was not found (#12315). - Fixed a bug where the Compat Create endpoint for Containers did not properly handle the HostConfig.Mounts field (#12419). - Fixed a bug where the Compat Archive endpoint for Containers did not properly report errors when the operation failed (#12420). - Fixed a bug where the Compat Build endpoint for Images ignored the layers query parameter (for caching intermediate layers from the build) (#12378). - Fixed a bug where the Compat Build endpoint for Images did not report errors in a manner compatible with Docker (#12392). - Fixed a bug where the Compat Build endpoint for Images would fail to build if the context directory was a symlink (#12409). - Fixed a bug where the Compat List endpoint for Images included manifest lists (and not just images) in returned results (#12453). - Update to version 3.4.2: * Fixed a bug where podman tag could not tag manifest lists (#12046). * Fixed a bug where built-in volumes specified by images would not be created correctly under some circumstances. * Fixed a bug where, when using Podman Machine on OS X, containers in pods did not have working port forwarding from the host (#12207). * Fixed a bug where the podman network reload command command on containers using the slirp4netns network mode and the rootlessport port forwarding driver would make an unnecessary attempt to restart rootlessport on containers that did not forward ports. * Fixed a bug where the podman generate kube command would generate YAML including some unnecessary (set to default) fields (e.g. empty SELinux and DNS configuration blocks, and the privileged flag when set to false) (#11995). * Fixed a bug where the podman pod rm command could, if interrupted at the right moment, leave a reference to an already-removed infra container behind (#12034). * Fixed a bug where the podman pod rm command would not remove pods with more than one container if all containers save for the infra container were stopped unless --force was specified (#11713). * Fixed a bug where the --memory flag to podman run and podman create did not accept a limit of 0 (which should specify unlimited memory) (#12002). * Fixed a bug where the remote Podman client's podman build command could attempt to build a Dockerfile in the working directory of the podman system service instance instead of the Dockerfile specified by the user (#12054). * Fixed a bug where the podman logs --tail command could function improperly (printing more output than requested) when the journald log driver was used. * Fixed a bug where containers run using the slirp4netns network mode with IPv6 enabled would not have IPv6 connectivity until several seconds after they started (#11062). * Fixed a bug where some Podman commands could cause an extra dbus-daemon process to be created (#9727). * Fixed a bug where rootless Podman would sometimes print warnings about a failure to move the pause process into a given CGroup (#12065). * Fixed a bug where the checkpointed field in podman inspect on a container was not set to false after a container was restored. * Fixed a bug where the podman system service command would print overly-verbose logs about request IDs (#12181). * Fixed a bug where Podman could, when creating a new container without a name explicitly specified by the user, sometimes use an auto-generated name already in use by another container if multiple containers were being created in parallel (#11735). Update to version 3.4.1: * Bugfixes - Fixed a bug where podman machine init could, under some circumstances, create invalid machine configurations which could not be started (#11824). - Fixed a bug where the podman machine list command would not properly populate some output fields. - Fixed a bug where podman machine rm could leave dangling sockets from the removed machine (#11393). - Fixed a bug where podman run --pids-limit=-1 was not supported (it now sets the PID limit in the container to unlimited) (#11782). - Fixed a bug where podman run and podman attach could throw errors about a closed network connection when STDIN was closed by the client (#11856). - Fixed a bug where the podman stop command could fail when run on a container that had another podman stop command run on it previously. - Fixed a bug where the --sync flag to podman ps was nonfunctional. - Fixed a bug where the Windows and OS X remote clients' podman stats command would fail (#11909). - Fixed a bug where the podman play kube command did not properly handle environment variables whose values contained an = (#11891). - Fixed a bug where the podman generate kube command could generate invalid annotations when run on containers with volumes that use SELinux relabelling (:z or :Z) (#11929). - Fixed a bug where the podman generate kube command would generate YAML including some unnecessary (set to default) fields (e.g. user and group, entrypoint, default protocol for forwarded ports) (#11914, #11915, and #11965). - Fixed a bug where the podman generate kube command could, under some circumstances, generate YAML including an invalid targetPort field for forwarded ports (#11930). - Fixed a bug where rootless Podman's podman info command could, under some circumstances, not read available CGroup controllers (#11931). - Fixed a bug where podman container checkpoint --export would fail to checkpoint any container created with --log-driver=none (#11974). * API - Fixed a bug where the Compat Create endpoint for Containers could panic when no options were passed to a bind mount of tmpfs (#11961). Update to version 3.4.0: * Features - Pods now support init containers! Init containers are containers which run before the rest of the pod starts. There are two types of init containers: "always", which always run before the pod is started, and "once", which only run the first time the pod starts and are subsequently removed. They can be added using the podman create command's --init-ctr option. - Support for init containers has also been added to podman play kube and podman generate kube - init containers contained in Kubernetes YAML will be created as Podman init containers, and YAML generated by Podman will include any init containers created. - The podman play kube command now supports building images. If the --build option is given and a directory with the name of the specified image exists in the current working directory and contains a valid Containerfile or Dockerfile, the image will be built and used for the container. - The podman play kube command now supports a new option, --teardown, which removes any pods and containers created by the given Kubernetes YAML. - The podman generate kube command now generates annotations for SELinux mount options on volume (:z and :Z) that are respected by the podman play kube command. - A new command has been added, podman pod logs, to return logs for all containers in a pod at the same time. - Two new commands have been added, podman volume export (to export a volume to a tar file) and podman volume import) (to populate a volume from a given tar file). - The podman auto-update command now supports simple rollbacks. If a container fails to start after an automatic update, it will be rolled back to the previous image and restarted again. - Pods now share their user namespace by default, and the podman pod create command now supports the --userns option. This allows rootless pods to be created with the --userns=keep-id option. - The podman pod ps command now supports a new filter with its --filter option, until, which returns pods created before a given timestamp. - The podman image scp command has been added. This command allows images to be transferred between different hosts. - The podman stats command supports a new option, --interval, to specify the amount of time before the information is refreshed. - The podman inspect command now includes ports exposed (but not published) by containers (e.g. ports from --expose when --publish-all is not specified). - The podman inspect command now has a new boolean value, Checkpointed, which indicates that a container was stopped as a result of a podman container checkpoint operation. - Volumes created by podman volume create now support setting quotas when run atop XFS. The size and inode options allow the maximum size and maximum number of inodes consumed by a volume to be limited. - The podman info command now outputs information on what log drivers, network drivers, and volume plugins are available for use (#11265). - The podman info command now outputs the current log driver in use, and the variant and codename of the distribution in use. - The parameters of the VM created by podman machine init (amount of disk space, memory, CPUs) can now be set in containers.conf. - The podman machine ls command now shows additional information (CPUs, memory, disk size) about VMs managed by podman machine. - The podman ps command now includes healthcheck status in container state for containers that have healthchecks (#11527). * Changes - The podman build command has a new alias, podman buildx, to improve compatibility with Docker. We have already added support for many docker buildx flags to podman build and aim to continue to do so. - Cases where Podman is run without a user session or a writable temporary files directory will now produce better error messages. - The default log driver has been changed from file to journald. The file driver did not properly support log rotation, so this should lead to a better experience. If journald is not available on the system, Podman will automatically revert to the file. - Podman no longer depends on ip for removing networks (#11403). - The deprecated --macvlan flag to podman network create now warns when it is used. It will be removed entirely in the Podman 4.0 release. - The podman machine start command now prints a message when the VM is successfully started. - The podman stats command can now be used on containers that are paused. - The podman unshare command will now return the exit code of the command that was run in the user namespace (assuming the command was successfully run). - Successful healthchecks will no longer add a healthy line to the system log to reduce log spam. - As a temporary workaround for a lack of shortname prompts in the Podman remote client, VMs created by podman machine now default to only using the docker.io registry. * Bugfixes - Fixed a bug where whitespace in the definition of sysctls (particularly default sysctls specified in containers.conf) would cause them to be parsed incorrectly. - Fixed a bug where the Windows remote client improperly validated volume paths (#10900). - Fixed a bug where the first line of logs from a container run with the journald log driver could be skipped. - Fixed a bug where images created by podman commit did not include ports exposed by the container. - Fixed a bug where the podman auto-update command would ignore the io.containers.autoupdate.authfile label when pulling images (#11171). - Fixed a bug where the --workdir option to podman create and podman run could not be set to a directory where a volume was mounted (#11352). - Fixed a bug where systemd socket-activation did not properly work with systemd-managed Podman containers (#10443). - Fixed a bug where environment variable secrets added to a container were not available to exec sessions launched in the container. - Fixed a bug where rootless containers could fail to start the rootlessport port-forwarding service when XDG_RUNTIME_DIR was set to a long path. - Fixed a bug where arguments to the --systemd option to podman create and podman run were case-sensitive (#11387). - Fixed a bug where the podman manifest rm command would also remove images referenced by the manifest, not just the manifest itself (#11344). - Fixed a bug where the Podman remote client on OS X would not function properly if the TMPDIR environment variable was not set (#11418). - Fixed a bug where the /etc/hosts file was not guaranteed to contain an entry for localhost (this is still not guaranteed if --net=host is used; such containers will exactly match the host's /etc/hosts) (#11411). - Fixed a bug where the podman machine start command could print warnings about unsupported CPU features (#11421). - Fixed a bug where the podman info command could segfault when accessing cgroup information. - Fixed a bug where the podman logs -f command could hang when a container exited (#11461). - Fixed a bug where the podman generate systemd command could not be used on containers that specified a restart policy (#11438). - Fixed a bug where the remote Podman client's podman build command would fail to build containers if the UID and GID on the client were higher than 65536 (#11474). - Fixed a bug where the remote Podman client's podman build command would fail to build containers if the context directory was a symlink (#11732). - Fixed a bug where the --network flag to podman play kube was not properly parsed when a non-bridge network configuration was specified. - Fixed a bug where the podman inspect command could error when the container being inspected was removed as it was being inspected (#11392). - Fixed a bug where the podman play kube command ignored the default pod infra image specified in containers.conf. - Fixed a bug where the --format option to podman inspect was nonfunctional under some circumstances (#8785). - Fixed a bug where the remote Podman client's podman run and podman exec commands could skip a byte of output every 8192 bytes (#11496). - Fixed a bug where the podman stats command would print nonsensical results if the container restarted while it was running (#11469). - Fixed a bug where the remote Podman client would error when STDOUT was redirected on a Windows client (#11444). - Fixed a bug where the podman run command could return 0 when the application in the container exited with 125 (#11540). - Fixed a bug where containers with --restart=always set using the rootlessport port-forwarding service could not be restarted automatically. - Fixed a bug where the --cgroups=split option to podman create and podman run was silently discarded if the container was part of a pod. - Fixed a bug where the podman container runlabel command could fail if the image name given included a tag. - Fixed a bug where Podman could add an extra 127.0.0.1 entry to /etc/hosts under some circumstances (#11596). - Fixed a bug where the remote Podman client's podman untag command did not properly handle tags including a digest (#11557). - Fixed a bug where the --format option to podman ps did not properly support the table argument for tabular output. - Fixed a bug where the --filter option to podman ps did not properly handle filtering by healthcheck status (#11687). - Fixed a bug where the podman run and podman start --attach commands could race when retrieving the exit code of a container that had already been removed resulting in an error (e.g. by an external podman rm -f) (#11633). - Fixed a bug where the podman generate kube command would add default environment variables to generated YAML. - Fixed a bug where the podman generate kube command would add the default CMD from the image to generated YAML (#11672). - Fixed a bug where the podman rm --storage command could fail to remove containers under some circumstances (#11207). - Fixed a bug where the podman machine ssh command could fail when run on Linux (#11731). - Fixed a bug where the podman stop command would error when used on a container that was already stopped (#11740). - Fixed a bug where renaming a container in a pod using the podman rename command, then removing the pod using podman pod rm, could cause Podman to believe the new name of the container was permanently in use, despite the container being removed (#11750). * API - The Libpod Pull endpoint for Images now has a new query parameter, quiet, which (when set to true) suppresses image pull progress reports (#10612). - The Compat Events endpoint now includes several deprecated fields from the Docker v1.21 API for improved compatibility with older clients. - The Compat List and Inspect endpoints for Images now prefix image IDs with sha256: for improved Docker compatibility (#11623). - The Compat Create endpoint for Containers now properly sets defaults for healthcheck-related fields (#11225). - The Compat Create endpoint for Containers now supports volume options provided by the Mounts field (#10831). - The Compat List endpoint for Secrets now supports a new query parameter, filter, which allows returned results to be filtered. - The Compat Auth endpoint now returns the correct response code (500 instead of 400) when logging into a registry fails. - The Version endpoint now includes information about the OCI runtime and Conmon in use (#11227). - Fixed a bug where the X-Registry-Config header was not properly handled, leading to errors when pulling images (#11235). - Fixed a bug where invalid query parameters could cause a null pointer dereference when creating error messages. - Logging of API requests and responses at trace level has been greatly improved, including the addition of an X-Reference-Id header to correlate requests and responses (#10053). Update to version 3.3.1: * Bugfixes - Fixed a bug where unit files created by podman generate systemd could not cleanup shut down containers when stopped by systemctl stop (#11304). - Fixed a bug where podman machine commands would not properly locate the gvproxy binary in some circumstances. - Fixed a bug where containers created as part of a pod using the --pod-id-file option would not join the pod's network namespace (#11303). - Fixed a bug where Podman, when using the systemd cgroups driver, could sometimes leak dbus sessions. - Fixed a bug where the until filter to podman logs and podman events was improperly handled, requiring input to be negated (#11158). - Fixed a bug where rootless containers using CNI networking run on systems using systemd-resolved for DNS would fail to start if resolved symlinked /etc/resolv.conf to an absolute path (#11358). * API - A large number of potential file descriptor leaks from improperly closing client connections have been fixed. Update to version 3.3.0: * Fix network aliases with network id * machine: compute sha256 as we read the image file * machine: check for file exists instead of listing directory * pkg/bindings/images.nTar(): slashify hdr.Name values * Volumes: Only remove from DB if plugin removal succeeds * For compatibility, ignore Content-Type * [v3.3] Bump c/image 5.15.2, buildah v1.22.3 * Implement SD-NOTIFY proxy in conmon * Fix rootless cni dns without systemd stub resolver * fix rootlessport flake * Skip stats test in CGv1 container environments * Fix AVC denials in tests of volume mounts * Restore buildah-bud test requiring new images * Revert ".cirrus.yml: use fresh images for all VMs" * Fix device tests using ls test files * Enhance priv. dev. check * Workaround host availability of /dev/kvm * Skip cgroup-parent test due to frequent flakes * Cirrus: Fix not uploading logformatter html Switch to crun (bsc#1188914) Update to version 3.2.3: * Bump to v3.2.3 * Update release notes for v3.2.3 * vendor containers/common@v0.38.16 * vendor containers/buildah@v1.21.3 * Fix race conditions in rootless cni setup * CNI-in-slirp4netns: fix bind-mount for /run/systemd/resolve/stub-resolv.conf * Make rootless-cni setup more robust * Support uid,gid,mode options for secrets * vendor containers/common@v0.38.15 * [CI:DOCS] podman search: clarify that results depend on implementation * vendor containers/common@v0.38.14 * vendor containers/common@v0.38.13 * [3.2] vendor containers/common@v0.38.12 * Bump README to v3.2.2 * Bump to v3.2.3-dev - Update to version 3.2.2: * Bump to v3.2.2 * fix systemcontext to use correct TMPDIR * Scrub podman commands to use report package * Fix volumes with uid and gid options * Vendor in c/common v0.38.11 * Initial release notes for v3.2.2 * Fix restoring of privileged containers * Fix handling of podman-remote build --device * Add support for podman remote build -f - . * Fix panic condition in cgroups.getAvailableControllers * Fix permissions on initially created named volumes * Fix building static podman-remote * add correct slirp ip to /etc/hosts * disable tty-size exec checks in system tests * Fix resize race with podman exec -it * Fix documentation of the --format option of podman push * Fix systemd-resolved detection. * Health Check is not handled in the compat LibpodToContainerJSON * Do not use inotify for OCICNI * getContainerNetworkInfo: lock netNsCtr before sync * [NO TESTS NEEDED] Create /etc/mtab with the correct ownership * Create the /etc/mtab file if does not exists * [v3.2] cp: do not allow dir->file copying * create: support images with invalid platform * vendor containers/common@v0.38.10 * logs: k8s-file: restore poll sleep * logs: k8s-file: fix spurious error logs * utils: move message from warning to debug * Bump to v3.2.2-dev - Update to version 3.2.1: * Bump to v3.2.1 * Updated release notes for v3.2.1 * Fix network connect race with docker-compose * Revert "Ensure minimum API version is set correctly in tests" * Fall back to string for dockerfile parameter * remote events: fix --stream=false * [CI:DOCS] fix incorrect network remove api doc * remote: always send resize before the container starts * remote events: support labels * remote pull: cancel pull when connection is closed * Fix network prune api docs * Improve systemd-resolved detection * logs: k8s-file: fix race * Fix image prune --filter cmd behavior * Several shell completion fixes * podman-remote build should handle -f option properly * System tests: deal with crun 0.20.1 * Fix build tags for pkg/machine... * Fix pre-checkpointing * container: ignore named hierarchies * [v3.2] vendor containers/common@v0.38.9 * rootless: fix fast join userns path * [v3.2] vendor containers/common@v0.38.7 * [v3.2] vendor containers/common@v0.38.6 * Correct qemu options for Intel macs * Ensure minimum API version is set correctly in tests * Bump to v3.2.1-dev - Update to version 3.2.0: * Bump to v3.2.0 * Fix network create macvlan with subnet option * Final release notes updates for v3.2.0 * add ipv6 nameservers only when the container has ipv6 enabled * Use request context instead of background * [v.3.2] events: support disjunctive filters * System tests: add :Z to volume mounts * generate systemd: make mounts portable * vendor containers/storage@v1.31.3 * vendor containers/common@v0.38.5 * Bump to v3.2.0-dev * Bump to v3.2.0-RC3 * Update release notes for v3.2.0-RC3 * Fix race on podman start --all * Fix race condition in running ls container in a pod * docs: --cert-dir: point to containers-certs.d(5) * Handle hard links in different directories * Improve OCI Runtime error * Handle hard links in remote builds * Podman info add support for status of cgroup controllers * Drop container does not exist on removal to debugf * Downgrade API service routing table logging * add libimage events * docs: generate systemd: XDG_RUNTIME_DIR * Fix problem copying files when container is in host pid namespace * Bump to v3.2.0-dev * Bump to v3.2.0-RC2 * update c/common * Update Cirrus DEST_BRANCH to v3.2 * Updated vendors of c/image, c/storage, Buildah * Initial release notes for v3.2.0-RC2 * Add script for identifying commits in release branches * Add host.containers.internal entry into container's etc/hosts * image prune: remove unused images only with `--all` * podman network reload add rootless support * Use more recent `stale` release... * network tutorial: update with rootless cni changes * [CI:DOCS] Update first line in intro page * Use updated VM images + updated automation tooling * auto-update service: prune images * make vendor * fix system upgrade tests * Print "extracting" only on compressed file * podman image tree: restore previous behavior * fix network restart always test * fix incorrect log driver in podman container image * Add support for cli network prune --filter flag * Move filter parsing to common utils * Bump github.com/containers/storage from 1.30.2 to 1.30.3 * Update nix pin with `make nixpkgs` * [CI:DOCS] hack/bats - new helper for running system tests * fix restart always with slirp4netns * Bump github.com/opencontainers/runc from 1.0.0-rc93 to 1.0.0-rc94 * Bump github.com/coreos/go-systemd/v22 from 22.3.1 to 22.3.2 * Add host.serviceIsRemote to podman info results * Add client disconnect to build handler loop * Remove obsolete skips * Fix podman-remote build --rm=false ... * fix: improved "containers/{name}/wait" endpoint * Bump github.com/containers/storage from 1.30.1 to 1.30.2 * Add envars to the generated systemd unit * fix: use UTC Time Stamps in response JSON * fix container startup for empty pidfile * Kube like pods should share ipc,net,uts by default * fix: compat API "images/get" for multiple images * Revert escaped double dash man page flag syntax * Report Download complete in Compatibility mode * Add documentation on short-names * Bump github.com/docker/docker * Adds support to preserve auto update labels in generate and play kube * [CI:DOCS] Stop conversion of `--` into en dash * Revert Patch to relabel if selinux not enabled * fix per review request * Add support for environment variable secrets * fix pre review request * Fix infinite loop in isPathOnVolume * Add containers.conf information for changing defaults * CI: run rootless tests under ubuntu * Fix wrong macvlan PNG in networking doc. * Add restart-policy to container filters & --filter to podman start * Fixes docker-compose cannot set static ip when use ipam * channel: simplify implementation * build: improve regex for iidfile * Bump github.com/onsi/gomega from 1.11.0 to 1.12.0 * cgroup: fix rootless --cgroup-parent with pods * fix: docker APIv2 `images/get` * codespell cleanup * Minor podmanimage docs updates. * Fix handling of runlabel IMAGE and NAME * Bump to v3.2.0-dev * Bump to v3.2.0-rc1 * rootless: improve automatic range split * podman: set volatile storage flag for --rm containers * Bump github.com/onsi/ginkgo from 1.16.1 to 1.16.2 * Bump github.com/containers/image/v5 from 5.11.1 to 5.12.0 * migrate Podman to containers/common/libimage * Add filepath glob support to --security-opt unmask * Force log_driver to k8s-file for containers in containers * add --mac-address to podman play kube * compat api: Networks must be empty instead of null * System tests: honor $OCI_RUNTIME (for CI) * is this a bug? * system test image: add arm64v8 image * Fix troubleshooting documentation on handling sublemental groups. * Add --all to podman start * Fix variable reference typo. in multi-arch image action * cgroup: always honor --cgroup-parent with cgroupfs * Bump github.com/uber/jaeger-client-go * Don't require tests for github-actions & metadata * Detect if in podman machine virtual vm * Fix multi-arch image workflow typo * [CI:DOCS] Add titles to remote docs (windows) * Remove unused VolumeList* structs * Cirrus: Update F34beta -> F34 * Update container image docs + fix unstable execution * Bump github.com/containers/storage from 1.30.0 to 1.30.1 * TODO complete * Docker returns 'die' status rather then 'died' status * Check if another VM is running on machine start * [CI:DOCS] Improve titles of command HTML pages * system tests: networking: fix another race condition * Use seccomp_profile as default profile if defined in containers.conf * Bump github.com/json-iterator/go from 1.1.10 to 1.1.11 * Vendored * Autoupdate local label functional * System tests: fix two race conditions * Add more documentation on conmon * Allow docker volume create API to pass without name * Cirrus: Update Ubuntu images to 21.04 * Skip blkio-weight test when no kernel BFQ support * rootless: Tell the user what was led to the error, not just what it is * Add troubleshooting advice about the --userns option. * Fix images prune filter until * Fix logic for pushing stable multi-arch images * Fixes generate kube incorrect when bind-mounting "/" and "/root" * libpod/image: unit tests: don't use system's registries.conf.d * runtime: create userns when CAP_SYS_ADMIN is not present * rootless: attempt to copy current mappings first * [CI:DOCS] Restore missing content to manpages * [CI:DOCS] Fix Markdown layout bugs * Fix podman ps --filter ancestor to match exact ImageName/ImageID * Add machine-enabled to containers.conf for machine * Several multi-arch image build/push fixes * Add podman run --timeout option * Parse slirp4netns net options with compat api * Fix rootlesskit port forwarder with custom slirp cidr * Fix removal race condition in ListContainers * Add github-action workflow to build/push multi-arch * rootless: if root is not sub?id raise a debug message * Bump github.com/containers/common from 0.36.0 to 0.37.0 * Add go template shell completion for --format * Add --group-add keep-groups: suplimentary groups into container * Fixes from make codespell * Typo fix to usage text of --compress option * corrupt-image test: fix an oops * Add --noheading flag to all list commands * Bump github.com/containers/storage from 1.29.0 to 1.30.0 * Bump github.com/containers/image/v5 from 5.11.0 to 5.11.1 * [CI:DOCS] Fix Markdown table layout bugs * podman-remote should show podman.sock info * rmi: don't break when the image is missing a manifest * [CI:DOCS] Rewrite --uidmap doc in podman-create.1.md and podman-run.1.md * Add support for CDI device configuration * [CI:DOCS] Add missing dash to verbose option * Bump github.com/uber/jaeger-client-go * Remove an advanced layer diff function * Ensure mount destination is clean, no trailing slash * add it for inspect pidfile * [CI:DOCS] Fix introduction page typo * support pidfile on container restore * fix start it * skip pidfile test on remote * improve document * set pidfile default value int containerconfig * add pidfile in inspection * add pidfile it for container start * skip pidfile it on remote * Modify according to comments * WIP: drop test requirement * runtime: bump required conmon version * runtime: return findConmon to libpod * oci: drop ExecContainerCleanup * oci: use `--full-path` option for conmon * use AttachSocketPath when removing conmon files * hide conmon-pidfile flag on remote mode * Fix possible panic in libpod/image/prune.go * add --ip to podman play kube * add flag autocomplete * add ut * add flag "--pidfile" for podman create/run * Add network bindings tests: remove and list * Fix build with GO111MODULE=off * system tests: build --pull-never: deal with flakes * compose test: diagnose flakes v3 * podman play kube apply correct log driver * Fixes podman-remote save to directories does not work * Bump github.com/rootless-containers/rootlesskit from 0.14.1 to 0.14.2 * Update documentation of podman-run to reflect volume "U" option * Fix flake on failed podman-remote build : try 2 * compose test: ongoing efforts to diagnose flakes * Test that we don't error out on advertised --log-level values * At trace log level, print error text using %+v instead of %v * pkg/errorhandling.JoinErrors: don't throw away context for lone errors * Recognize --log-level=trace * Fix flake on failed podman-remote build * System tests: fix racy podman-inspect * Fixes invalid expression in save command * Bump github.com/containers/common from 0.35.4 to 0.36.0 * Update nix pin with `make nixpkgs` * compose test: try to get useful data from flakes * Remove in-memory state implementation * Fix message about runtime to show only the actual runtime * System tests: setup: better cleanup of stray images * Bump github.com/containers/ocicrypt from 1.1.0 to 1.1.1 * Reflect current state of prune implementation in docs * Do not delete container twice * [CI:DOCS] Correct status code for /pods/create * vendor in containers/storage v1.29.0 * cgroup: do not set cgroup parent when rootless and cgroupfs * Overhaul Makefile binary and release worflows * Reorganize Makefile with sections and guide * Simplify Makefile help target * Don't shell to obtain current directory * Remove unnecessary/not-needed release.txt target * Fix incorrect version number output * Exclude .gitignore from test req. * Fix handling of $NAME and $IMAGE in runlabel * Update podman image Dockerfile to support Podman in container * Bump github.com/containers/image/v5 from 5.10.5 to 5.11.0 * Fix slashes in socket URLs * Add network prune filters support to bindings * Add support for play/generate kube volumes * Update manifest API endpoints * Fix panic when not giving a machine name for ssh * cgroups: force 64 bits to ParseUint * Bump k8s.io/api from 0.20.5 to 0.21.0 * [CI:DOCS] Fix formatting of podman-build man page * buildah-bud tests: simplify * Add missing return * Bump github.com/onsi/ginkgo from 1.16.0 to 1.16.1 * speed up CI handling of images * Volumes prune endpoint should use only prune filters * Cirrus: Use Fedora 34beta images * Bump go.sum + Makefile for golang 1.16 * Exempt Makefile changes from test requirements * Adjust libpod API Container Wait documentation to the code * [CI:DOCS] Update swagger definition of inspect manifest * use updated ubuntu images * podman unshare: add --rootless-cni to join the ns * Update swagger-check * swagger: remove name wildcards * Update buildah-bud diffs * Handle podman-remote --arch, --platform, --os * buildah-bud tests: handle go pseudoversions, plus... * Fix flaking rootless compose test * rootless cni add /usr/sbin to PATH if not present * System tests: special case for RHEL: require runc * Add --requires flag to podman run/create * [CI:DOCS] swagger-check: compare operations * [CI:DOCS] Polish swagger OpertionIDs * [NO TESTS NEEDED] Update nix pin with `make nixpkgs` * Ensure that `--userns=keep-id` sets user in config * [CI:DOCS] Set all operation id to be compatibile * Move operationIds to swagger:operation line * swagger: add operationIds that match with docker * Cirrus: Make use of shared get_ci_vm container * Don't relabel volumes if running in a privileged container * Allow users to override default storage opts with --storage-opt * Add support for podman --context default * Verify existence of auth file if specified * fix machine naming conventions * Initial network bindings tests * Update release notes to indicate CVE fix * Move socket activation check into init() and set global condition. * Bump github.com/onsi/ginkgo from 1.15.2 to 1.16.0 * Http api tests for network prune with until filter * podman-run.1.md, podman-create.1.md : Adjust Markdown layout for --userns * Fix typos --uidmapping and --gidmapping * Add transport and destination info to manifest doc * Bump github.com/rootless-containers/rootlesskit from 0.14.0 to 0.14.1 * Add default template functions * Fix missing podman-remote build options * Bump github.com/coreos/go-systemd/v22 from 22.3.0 to 22.3.1 * Add ssh connection to root user * Add rootless docker-compose test to the CI * Use the slrip4netns dns in the rootless cni ns * Cleanup the rootless cni namespace * Add new docker-compose test for two networks * Make the docker-compose test work rootless * Remove unused rootless-cni-infra container files * Only use rootless RLK when the container has ports * Fix dnsname test * Enable rootless network connect/disconnect * Move slirp4netns functions into an extra file * Fix pod infra container cni network setup * Add rootless support for cni and --uidmap * rootless cni without infra container * Recreate until container prune tests for bindings * Remove --execute from podman machine ssh * Fixed podman-remote --network flag * Makefile: introduce install.docker-full * Makefile: ensure install.docker creates BINDIR * Fix unmount doc reference in image.rst * Should send the OCI runtime path not just the name to buildah * podman machine shell completion * Fix handling of remove --log-rusage param * Fix bindings prune containers flaky test * [CI:DOCS] Add local html build info to docs/README.md * Add podman machine list * Trim white space from /top endpoint results * Remove semantic version suffices from API calls * podman machine init --ignition-path * Document --volume from podman-remote run/create client * Update main branch to reflect the release of v3.1.0 * Silence podman network reload errors with iptables-nft * Containers prune endpoint should use only prune filters * resolve proper aarch64 image names * APIv2 basic test: relax APIVersion check * Add machine support for qemu-system-aarch64 * podman machine init user input * manpage xref: helpful diagnostic for unescaped dash-dash * Bump to v3.2.0-dev * swagger: update system version response body * buildah-bud tests: reenable pull-never test * [NO TESTS NEEDED] Shrink the size of podman-remote * Add powershell completions * [NO TESTS NEEDED] Drop Warning to Info, if cgroups not mounted * Fix long option format on docs.podman.io * system tests: friendier messages for 2-arg is() * service: use LISTEN_FDS * man pages: correct seccomp-policy label * rootless: use is_fd_inherited * podman generate systemd --new do not duplicate params * play kube: add support for env vars defined from secrets * play kube: support optional/mandatory env var from config map * play kube: prepare supporting other env source than config maps * Add machine support for more Linux distros * [NO TESTS NEEDED] Use same function podman-remote rmi as podman * Podman machine enhancements * Add problematic volume name to kube play error messages * Fix podman build --pull-never * [NO TESTS NEEDED] Fix for kernel without CONFIG_USER_NS * [NO TESTS NEEDED] Turn on podman-remote build --isolation * Fix list pods filter handling in libpod api * Remove resize race condition * [NO TESTS NEEDED] Vendor in containers/buildah v1.20.0 * Use TMPDIR when commiting images * Add RequiresMountsFor= to systemd generate * Bump github.com/vbauerster/mpb/v6 from 6.0.2 to 6.0.3 * Fix swapped dimensions from terminal.GetSize * Rename podman machine create to init and clean up * Correct json field name * system tests: new interactive tests * Improvements for machine * libpod/image: unit tests: use a `registries.conf` for aliases * libpod/image: unit tests: defer cleanup * libpod/image: unit tests: use `require.NoError` * Add --execute flag to podman machine ssh * introduce podman machine * Podman machine CLI and interface stub * Support multi doc yaml for generate/play kube * Fix filters in image http compat/libpod api endpoints * Bump github.com/containers/common from 0.35.3 to 0.35.4 * Bump github.com/containers/storage from 1.28.0 to 1.28.1 * Check if stdin is a term in --interactive --tty mode * [NO TESTS NEEDED] Remove /tmp/containers-users-* files on reboot * [NO TESTS NEEDED] Fix rootless volume plugins * Ensure manually-created volumes have correct ownership * Bump github.com/rootless-containers/rootlesskit * Unification of until filter across list/prune endpoints * Unification of label filter across list/prune endpoints * fixup * fix: build endpoint for compat API * [CI:DOCS] Add note to mappings for user/group userns in build * Bump k8s.io/api from 0.20.1 to 0.20.5 * Validate passed in timezone from tz option * WIP: run buildah bud tests using podman * Fix containers list/prune http api filter behaviour * Generate Kubernetes PersistentVolumeClaims from named volumes - Update to version 3.1.2: * Bump to v3.1.2 * Update release notes for v3.1.2 * Ensure mount destination is clean, no trailing slash * Fixes podman-remote save to directories does not work * [CI:DOCS] Add missing dash to verbose option * [CI:DOCS] Fix Markdown table layout bugs * [CI:DOCS] Rewrite --uidmap doc in podman-create.1.md and podman-run.1.md * rmi: don't break when the image is missing a manifest * Bump containers/image to v5.11.1 * Bump github.com/coreos/go-systemd from 22.2.0 to 22.3.1 * Fix lint * Bump to v3.1.2-dev - Split podman-remote into a subpackage - Add missing scriptlets for systemd units - Escape macros in comments - Drop some obsolete workarounds, including %{go_nostrip} - Update to version 3.1.1: * Bump to v3.1.1 * Update release notes for v3.1.1 * podman play kube apply correct log driver * Fix build with GO111MODULE=off * [CI:DOCS] Set all operation id to be compatibile * Move operationIds to swagger:operation line * swagger: add operationIds that match with docker * Fix missing podman-remote build options * [NO TESTS NEEDED] Shrink the size of podman-remote * Move socket activation check into init() and set global condition. * rootless: use is_fd_inherited * Recreate until container prune tests for bindings * System tests: special case for RHEL: require runc * Document --volume from podman-remote run/create client * Containers prune endpoint should use only prune filters * Trim white space from /top endpoint results * Fix unmount doc reference in image.rst * Fix handling of remove --log-rusage param * Makefile: introduce install.docker-full * Makefile: ensure install.docker creates BINDIR * Should send the OCI runtime path not just the name to buildah * Fixed podman-remote --network flag * podman-run.1.md, podman-create.1.md : Adjust Markdown layout for --userns * Fix typos --uidmapping and --gidmapping * Add default template functions * Don't relabel volumes if running in a privileged container * Allow users to override default storage opts with --storage-opt * Add transport and destination info to manifest doc * Verify existence of auth file if specified * Ensure that `--userns=keep-id` sets user in config * [CI:DOCS] Update swagger definition of inspect manifest * Volumes prune endpoint should use only prune filters * Adjust libpod API Container Wait documentation to the code * Add missing return * [CI:DOCS] Fix formatting of podman-build man page * cgroups: force 64 bits to ParseUint * Fix slashes in socket URLs * [CI:DOCS] Correct status code for /pods/create * cgroup: do not set cgroup parent when rootless and cgroupfs * Reflect current state of prune implementation in docs * Do not delete container twice * Test that we don't error out on advertised --log-level values * At trace log level, print error text using %+v instead of %v * pkg/errorhandling.JoinErrors: don't throw away context for lone errors * Recognize --log-level=trace * Fix message about runtime to show only the actual runtime * Fix handling of $NAME and $IMAGE in runlabel * Fix flake on failed podman-remote build : try 2 * Fix flake on failed podman-remote build * Update documentation of podman-run to reflect volume "U" option * Fixes invalid expression in save command * Fix possible panic in libpod/image/prune.go * Update all containers/ project vendors * Fix tests * Bump to v3.1.1-dev - Update to version 3.1.0: * Bump to v3.1.0 * Fix test failure * Update release notes for v3.1.0 final release * [NO TESTS NEEDED] Turn on podman-remote build --isolation * Fix long option format on docs.podman.io * Fix containers list/prune http api filter behaviour * [CI:DOCS] Add note to mappings for user/group userns in build * Validate passed in timezone from tz option * Generate Kubernetes PersistentVolumeClaims from named volumes * libpod/image: unit tests: use a `registries.conf` for aliases - Require systemd 241 or newer due to podman dependency go-systemd v22, otherwise build will fail with unknown C name errors - Create docker subpackage to allow replacing docker with corresponding aliases to podman. - Update to v3.0.1 * Changes - Several frequently-occurring WARN level log messages have been downgraded to INFO or DEBUG to not clutter terminal output. Bugfixes - Fixed a bug where the Created field of podman ps --format=json was formatted as a string instead of an Unix timestamp (integer) (#9315). - Fixed a bug where failing lookups of individual layers during the podman images command would cause the whole command to fail without printing output. - Fixed a bug where --cgroups=split did not function properly on cgroups v1 systems. - Fixed a bug where mounting a volume over an directory in the container that existed, but was empty, could fail (#9393). - Fixed a bug where mounting a volume over a directory in the container that existed could copy the entirety of the container's rootfs, instead of just the directory mounted over, into the volume (#9415). - Fixed a bug where Podman would treat the --entrypoint=[""] option to podman run and podman create as a literal empty string in the entrypoint, when instead it should have been ignored (#9377). - Fixed a bug where Podman would set the HOME environment variable to "" when the container ran as a user without an assigned home directory (#9378). - Fixed a bug where specifying a pod infra image that had no tags (by using its ID) would cause podman pod create to panic (#9374). - Fixed a bug where the --runtime option was not properly handled by the podman build command (#9365). - Fixed a bug where Podman would incorrectly print an error message related to the remote API when the remote API was not in use and starting Podman failed. - Fixed a bug where Podman would change ownership of a container's working directory, even if it already existed (#9387). - Fixed a bug where the podman generate systemd --new command would incorrectly escape %t when generating the path for the PID file (#9373). - Fixed a bug where Podman could, when run inside a Podman container with the host's containers/storage directory mounted into the container, erroneously detect a reboot and reset container state if the temporary directory was not also mounted in (#9191). - Fixed a bug where some options of the podman build command (including but not limited to --jobs) were nonfunctional (#9247). * API - Fixed a breaking change to the Libpod Wait API for Containers where the Conditions parameter changed type in Podman v3.0 (#9351). - Fixed a bug where the Compat Create endpoint for Containers did not properly handle forwarded ports that did not specify a host port. - Fixed a bug where the Libpod Wait endpoint for Containers could write duplicate headers after an error occurred. - Fixed a bug where the Compat Create endpoint for Images would not pull images that already had a matching tag present locally, even if a more recent version was available at the registry (#9232). - The Compat Create endpoint for Images has had its compatibility with Docker improved, allowing its use with the docker-java library. * Misc - Updated Buildah to v1.19.4 - Updated the containers/storage library to v1.24.6 - Changes from v3.0.0 * Features - Podman now features initial support for Docker Compose. - Added the podman rename command, which allows containers to be renamed after they are created (#1925). - The Podman remote client now supports the podman copy command. - A new command, podman network reload, has been added. This command will re-configure the network of all running containers, and can be used to recreate firewall rules lost when the system firewall was reloaded (e.g. via firewall-cmd --reload). - Podman networks now have IDs. They can be seen in podman network ls and can be used when removing and inspecting networks. Existing networks receive IDs automatically. - Podman networks now also support labels. They can be added via the --label option to network create, and podman network ls can filter labels based on them. - The podman network create command now supports setting bridge MTU and VLAN through the --opt option (#8454). - The podman container checkpoint and podman container restore commands can now checkpoint and restore containers that include volumes. - The podman container checkpoint command now supports the --with-previous and --pre-checkpoint options, and the podman container restore command now support the --import-previous option. These add support for two-step checkpointing with lowered dump times. - The podman push command can now push manifest lists. Podman will first attempt to push as an image, then fall back to pushing as a manifest list if that fails. - The podman generate kube command can now be run on multiple containers at once, and will generate a single pod containing all of them. - The podman generate kube and podman play kube commands now support Kubernetes DNS configuration, and will preserve custom DNS configuration when exporting or importing YAML (#9132). - The podman generate kube command now properly supports generating YAML for containers and pods creating using host networking (--net=host) (#9077). - The podman kill command now supports a --cidfile option to kill containers given a file containing the container's ID (#8443). - The podman pod create command now supports the --net=none option (#9165). - The podman volume create command can now specify volume UID and GID as options with the UID and GID fields passed to the the --opt option. - Initial support has been added for Docker Volume Plugins. Podman can now define available plugins in containers.conf and use them to create volumes with podman volume create --driver. - The podman run and podman create commands now support a new option, --platform, to specify the platform of the image to be used when creating the container. - The --security-opt option to podman run and podman create now supports the systempaths=unconfined option to unrestrict access to all paths in the container, as well as mask and unmask options to allow more granular restriction of container paths. - The podman stats --format command now supports a new format specified, MemUsageBytes, which prints the raw bytes of memory consumed by a container without human-readable formatting #8945. - The podman ps command can now filter containers based on what pod they are joined to via the pod filter (#8512). - The podman pod ps command can now filter pods based on what networks they are joined to via the network filter. The podman pod ps command can now print information on what networks a pod is joined to via the .Networks specifier to the --format option. - The podman system prune command now supports filtering what containers, pods, images, and volumes will be pruned. - The podman volume prune commands now supports filtering what volumes will be pruned. - The podman system prune command now includes information on space reclaimed (#8658). - The podman info command will now properly print information about packages in use on Gentoo and Arch systems. - The containers.conf file now contains an option for disabling creation of a new kernel keyring on container creation (#8384). - The podman image sign command can now sign multi-arch images by producing a signature for each image in a given manifest list. - The podman image sign command, when run as rootless, now supports per-user registry configuration files in $HOME/.config/containers/registries.d. - Configuration options for slirp4netns can now be set system-wide via the NetworkCmdOptions configuration option in containers.conf. - The MTU of slirp4netns can now be configured via the mtu= network command option (e.g. podman run --net slirp4netns:mtu=9000). * Security - A fix for CVE-2021-20199 is included. Podman between v1.8.0 and v2.2.1 used 127.0.0.1 as the source address for all traffic forwarded into rootless containers by a forwarded port; this has been changed to address the issue. * Changes - Shortname aliasing support has now been turned on by default. All Podman commands that must pull an image will, if a TTY is available, prompt the user about what image to pull. - The podman load command no longer accepts a NAME[:TAG] argument. The presence of this argument broke CLI compatibility with Docker by making docker load commands unusable with Podman (#7387). - The Go bindings for the HTTP API have been rewritten with a focus on limiting dependency footprint and improving extensibility. Read more here. - The legacy Varlink API has been completely removed from Podman. - The default log level for Podman has been changed from Error to Warn. - The podman network create command can now create macvlan networks using the --driver macvlan option for Docker compatibility. The existing --macvlan flag has been deprecated and will be removed in Podman 4.0 some time next year. - The podman inspect command has had the LogPath and LogTag fields moved into the LogConfig structure (from the root of the Inspect structure). The maximum size of the log file is also included. - The podman generate systemd command no longer generates unit files using the deprecated KillMode=none option (#8615). - The podman stop command now releases the container lock while waiting for it to stop - as such, commands like podman ps will no longer block until podman stop completes (#8501). - Networks created with podman network create --internal no longer use the dnsname plugin. This configuration never functioned as expected. - Error messages for the remote Podman client have been improved when it cannot connect to a Podman service. - Error messages for podman run when an invalid SELinux is specified have been improved. - Rootless Podman features improved support for containers with a single user mapped into the rootless user namespace. - Pod infra containers now respect default sysctls specified in containers.conf allowing for advanced configuration of the namespaces they will share. - SSH public key handling for remote Podman has been improved. * Bugfixes - Fixed a bug where the podman history --no-trunc command would truncate the Created By field (#9120). - Fixed a bug where root containers that did not explicitly specify a CNI network to join did not generate an entry for the network in use in the Networks field of the output of podman inspect (#6618). - Fixed a bug where, under some circumstances, container working directories specified by the image (via the WORKDIR instruction) but not present in the image, would not be created (#9040). - Fixed a bug where the podman generate systemd command would generate invalid unit files if the container was creating using a command line that included doubled braces ({{ and }}), e.g. --log-opt-tag={{.Name}} (#9034). - Fixed a bug where the podman generate systemd --new command could generate unit files including invalid Podman commands if the container was created using merged short options (e.g. podman run -dt) (#8847). - Fixed a bug where the podman generate systemd --new command could generate unit files that did not handle Podman commands including some special characters (e.g. $) (#9176 - Fixed a bug where rootless containers joining CNI networks could not set a static IP address (#7842). - Fixed a bug where rootless containers joining CNI networks could not set network aliases (#8567). - Fixed a bug where the remote client could, under some circumstances, not include the Containerfile when sending build context to the server (#8374). - Fixed a bug where rootless Podman did not mount /sys as a new sysfs in some circumstances where it was acceptable. - Fixed a bug where rootless containers that both joined a user namespace and a CNI networks would cause a segfault. These options are incompatible and now return an error. - Fixed a bug where the podman play kube command did not properly handle CMD and ARGS from images (#8803). - Fixed a bug where the podman play kube command did not properly handle environment variables from images (#8608). - Fixed a bug where the podman play kube command did not properly print errors that occurred when starting containers. - Fixed a bug where the podman play kube command errored when hostNetwork was used (#8790). - Fixed a bug where the podman play kube command would always pull images when the :latest tag was specified, even if the image was available locally (#7838). - Fixed a bug where the podman play kube command did not properly handle SELinux configuration, rending YAML with custom SELinux configuration unusable (#8710). - Fixed a bug where the podman generate kube command incorrectly populated the args and command fields of generated YAML (#9211). - Fixed a bug where containers in a pod would create a duplicate entry in the pod's shared /etc/hosts file every time the container restarted (#8921). - Fixed a bug where the podman search --list-tags command did not support the --format option (#8740). - Fixed a bug where the http_proxy option in containers.conf was not being respected, and instead was set unconditionally to true (#8843). - Fixed a bug where rootless Podman could, on systems with a recent Conmon and users with a long username, fail to attach to containers (#8798). - Fixed a bug where the podman images command would break and fail to display any images if an empty manifest list was present in storage (#8931). - Fixed a bug where locale environment variables were not properly passed on to Conmon. - Fixed a bug where Podman would not build on the MIPS architecture (#8782). - Fixed a bug where rootless Podman could fail to properly configure user namespaces for rootless containers when the user specified a --uidmap option that included a mapping beginning with UID 0. - Fixed a bug where the podman logs command using the k8s-file backend did not properly handle partial log lines with a length of 1 (#8879). - Fixed a bug where the podman logs command with the --follow option did not properly handle log rotation (#8733). - Fixed a bug where user-specified HOSTNAME environment variables were overwritten by Podman (#8886). - Fixed a bug where Podman would applied default sysctls from containers.conf in too many situations (e.g. applying network sysctls when the container shared its network with a pod). - Fixed a bug where Podman did not properly handle cases where a secondary image store was in use and an image was present in both the secondary and primary stores (#8176). - Fixed a bug where systemd-managed rootless Podman containers where the user in the container was not root could fail as the container's PID file was not accessible to systemd on the host (#8506). - Fixed a bug where the --privileged option to podman run and podman create would, under some circumstances, not disable Seccomp (#8849). - Fixed a bug where the podman exec command did not properly add capabilities when the container or exec session were run with --privileged. - Fixed a bug where rootless Podman would use the --enable-sandbox option to slirp4netns unconditionally, even when pivot_root was disabled, rendering slirp4netns unusable when pivot_root was disabled (#8846). - Fixed a bug where podman build --logfile did not actually write the build's log to the logfile. - Fixed a bug where the podman system service command did not close STDIN, and could display user-interactive prompts (#8700). - Fixed a bug where the podman system reset command could, under some circumstances, remove all the contents of the XDG_RUNTIME_DIR directory (#8680). - Fixed a bug where the podman network create command created CNI configurations that did not include a default gateway (#8748). - Fixed a bug where the podman.service systemd unit provided by default used the wrong service type, and would cause systemd to not correctly register the service as started (#8751). - Fixed a bug where, if the TMPDIR environment variable was set for the container engine in containers.conf, it was being ignored. - Fixed a bug where the podman events command did not properly handle future times given to the --until option (#8694). - Fixed a bug where the podman logs command wrote container STDERR logs to STDOUT instead of STDERR (#8683). - Fixed a bug where containers created from an image with multiple tags would report that they were created from the wrong tag (#8547). - Fixed a bug where container capabilities were not set properly when the --cap-add=all and --user options to podman create and podman run were combined. - Fixed a bug where the --layers option to podman build was nonfunctional (#8643). - Fixed a bug where the podman system prune command did not act recursively, and thus would leave images, containers, pods, and volumes present that would be removed by a subsequent call to podman system prune (#7990). - Fixed a bug where the --publish option to podman run and podman create did not properly handle ports specified as a range of ports with no host port specified (#8650). - Fixed a bug where --format did not support JSON output for individual fields (#8444). - Fixed a bug where the podman stats command would fail when run on root containers using the slirp4netns network mode (#7883). - Fixed a bug where the Podman remote client would ask for a password even if the server's SSH daemon did not support password authentication (#8498). - Fixed a bug where the podman stats command would fail if the system did not support one or more of the cgroup controllers Podman supports (#8588). - Fixed a bug where the --mount option to podman create and podman run did not ignore the consistency mount option. - Fixed a bug where failures during the resizing of a container's TTY would print the wrong error. - Fixed a bug where the podman network disconnect command could cause the podman inspect command to fail for a container until it was restarted (#9234). - Fixed a bug where containers created from a read-only rootfs (using the --rootfs option to podman create and podman run) would fail (#9230). - Fixed a bug where specifying Go templates to the --format option to multiple Podman commands did not support the join function (#8773). - Fixed a bug where the podman rmi command could, when run in parallel on multiple images, return layer not known errors (#6510). - Fixed a bug where the podman inspect command on containers displayed unlimited ulimits incorrectly (#9303). - Fixed a bug where Podman would fail to start when a volume was mounted over a directory in a container that contained symlinks that terminated outside the directory and its subdirectories (#6003). API - Libpod API version has been bumped to v3.0.0. - All Libpod Pod APIs have been modified to properly report errors with individual containers. Cases where the operation as a whole succeeded but individual containers failed now report an HTTP 409 error (#8865). - The Compat API for Containers now supports the Rename and Copy APIs. - Fixed a bug where the Compat Prune APIs (for volumes, containers, and images) did not return the amount of space reclaimed in their responses. - Fixed a bug where the Compat and Libpod Exec APIs for Containers would drop errors that occurred prior to the exec session successfully starting (e.g. a "no such file" error if an invalid executable was passed) (#8281) - Fixed a bug where the Volumes field in the Compat Create API for Containers was being ignored (#8649). - Fixed a bug where the NetworkMode field in the Compat Create API for Containers was not handling some values, e.g. container:, correctly. - Fixed a bug where the Compat Create API for Containers did not set container name properly. - Fixed a bug where containers created using the Compat Create API unconditionally used Kubernetes file logging (the default specified in containers.conf is now used). - Fixed a bug where the Compat Inspect API for Containers could include container states not recognized by Docker. - Fixed a bug where Podman did not properly clean up after calls to the Events API when the journald backend was in use, resulting in a leak of file descriptors (#8864). - Fixed a bug where the Libpod Pull endpoint for Images could fail with an index out of range error under certain circumstances (#8870). - Fixed a bug where the Libpod Exists endpoint for Images could panic. - Fixed a bug where the Compat List API for Containers did not support all filters (#8860). - Fixed a bug where the Compat List API for Containers did not properly populate the Status field. - Fixed a bug where the Compat and Libpod Resize APIs for Containers ignored the height and width parameters (#7102). - Fixed a bug where the Compat Search API for Images returned an incorrectly-formatted JSON response (#8758). - Fixed a bug where the Compat Load API for Images did not properly clean up temporary files. - Fixed a bug where the Compat Create API for Networks could panic when an empty IPAM configuration was specified. - Fixed a bug where the Compat Inspect and List APIs for Networks did not include Scope. - Fixed a bug where the Compat Wait endpoint for Containers did not support the same wait conditions that Docker did. * Misc - Updated Buildah to v1.19.2 - Updated the containers/storage library to v1.24.5 - Updated the containers/image library to v5.10.2 - Updated the containers/common library to v0.33.4 - Update to v2.2.1 * Changes - Due to a conflict with a previously-removed field, we were forced to modify the way image volumes (mounting images into containers using --mount type=image) were handled in the database. As a result, containers created in Podman 2.2.0 with image volume will not have them in v2.2.1, and these containers will need to be re-created. * Bugfixes - Fixed a bug where rootless Podman would, on systems without the XDG_RUNTIME_DIR environment variable defined, use an incorrect path for the PID file of the Podman pause process, causing Podman to fail to start (#8539). - Fixed a bug where containers created using Podman v1.7 and earlier were unusable in Podman due to JSON decode errors (#8613). - Fixed a bug where Podman could retrieve invalid cgroup paths, instead of erroring, for containers that were not running. - Fixed a bug where the podman system reset command would print a warning about a duplicate shutdown handler being registered. - Fixed a bug where rootless Podman would attempt to mount sysfs in circumstances where it was not allowed; some OCI runtimes (notably crun) would fall back to alternatives and not fail, but others (notably runc) would fail to run containers. - Fixed a bug where the podman run and podman create commands would fail to create containers from untagged images (#8558). - Fixed a bug where remote Podman would prompt for a password even when the server did not support password authentication (#8498). - Fixed a bug where the podman exec command did not move the Conmon process for the exec session into the correct cgroup. - Fixed a bug where shell completion for the ancestor option to podman ps --filter did not work correctly. - Fixed a bug where detached containers would not properly clean themselves up (or remove themselves if --rm was set) if the Podman command that created them was invoked with --log-level=debug. * API - Fixed a bug where the Compat Create endpoint for Containers did not properly handle the Binds and Mounts parameters in HostConfig. - Fixed a bug where the Compat Create endpoint for Containers ignored the Name query parameter. - Fixed a bug where the Compat Create endpoint for Containers did not properly handle the "default" value for NetworkMode (this value is used extensively by docker-compose) (#8544). - Fixed a bug where the Compat Build endpoint for Images would sometimes incorrectly use the target query parameter as the image's tag. * Misc - Podman v2.2.0 vendored a non-released, custom version of the github.com/spf13/cobra package; this has been reverted to the latest upstream release to aid in packaging. - Updated the containers/image library to v5.9.0 - Update to v2.2.0 * Features - Experimental support for shortname aliasing has been added. This is not enabled by default, but can be turned on by setting the environment variable CONTAINERS_SHORT_NAME_ALIASING to on. Documentation is available here and here. - Initial support has been added for the podman network connect and podman network disconnect commands, which allow existing containers to modify what networks they are connected to. At present, these commands can only be used on running containers that did not specify --network=none when they were created. - The podman run command now supports the --network-alias option to set network aliases (additional names the container can be accessed at from other containers via DNS if the dnsname CNI plugin is in use). Aliases can also be added and removed using the new podman network connect and podman network disconnect commands. Please note that this requires a new release (v1.1.0) of the dnsname plugin, and will only work on newly-created CNI networks. - The podman generate kube command now features support for exporting container's memory and CPU limits (#7855). - The podman play kube command now features support for setting CPU and Memory limits for containers (#7742). - The podman play kube command now supports persistent volumes claims using Podman named volumes. - The podman play kube command now supports Kubernetes configmaps via the --configmap option (#7567). - The podman play kube command now supports a --log-driver option to set the log driver for created containers. - The podman play kube command now supports a --start option, enabled by default, to start the pod after creating it. This allows for podman play kube to be more easily used in systemd unitfiles. - The podman network create command now supports the --ipv6 option to enable dual-stack IPv6 networking for created networks (#7302). - The podman inspect command can now inspect pods, networks, and volumes, in addition to containers and images (#6757). - The --mount option for podman run and podman create now supports a new type, image, to mount the contents of an image into the container at a given location. - The Bash and ZSH completions have been completely reworked and have received significant enhancements! Additionally, support for Fish completions and completions for the podman-remote executable have been added. - The --log-opt option for podman create and podman run now supports the max-size option to set the maximum size for a container's logs (#7434). - The --network option to the podman pod create command now allows pods to be configured to use slirp4netns networking, even when run as root (#6097). - The podman pod stop, podman pod pause, podman pod unpause, and podman pod kill commands now work on multiple containers in parallel and should be significantly faster. - The podman search command now supports a --list-tags option to list all available tags for a single image in a single repository. - The podman search command can now output JSON using the --format=json option. - The podman diff and podman mount commands now work with all containers in the storage library, including those not created by Podman. This allows them to be used with Buildah and CRI-O containers. - The podman container exists command now features a --external option to check if a container exists not just in Podman, but also in the storage library. This will allow Podman to identify Buildah and CRI-O containers. - The --tls-verify and --authfile options have been enabled for use with remote Podman. - The /etc/hosts file now includes the container's name and hostname (both pointing to localhost) when the container is run with --net=none (#8095). - The podman events command now supports filtering events based on the labels of the container they occurred on using the --filter label=key=value option. - The podman volume ls command now supports filtering volumes based on their labels using the --filter label=key=value option. - The --volume and --mount options to podman run and podman create now support two new mount propagation options, unbindable and runbindable. - The name and id filters for podman pod ps now match based on a regular expression, instead of requiring an exact match. - The podman pod ps command now supports a new filter status, that matches pods in a certain state. * Changes - The podman network rm --force command will now also remove pods that are using the network (#7791). - The podman volume rm, podman network rm, and podman pod rm commands now return exit code 1 if the object specified for removal does not exist, and exit code 2 if the object is in use and the --force option was not given. - If /dev/fuse is passed into Podman containers as a device, Podman will open it before starting the container to ensure that the kernel module is loaded on the host and the device is usable in the container. - Global Podman options that were not supported with remote operation have been removed from podman-remote (e.g. --cgroup-manager, --storage-driver). - Many errors have been changed to remove repetition and be more clear as to what has gone wrong. - The --storage option to podman rm is now enabled by default, with slightly changed semantics. If the given container does not exist in Podman but does exist in the storage library, it will be removed even without the --storage option. If the container exists in Podman it will be removed normally. The --storage option for podman rm is now deprecated and will be removed in a future release. - The --storage option to podman ps has been renamed to --external. An alias has been added so the old form of the option will continue to work. - Podman now delays the SIGTERM and SIGINT signals during container creation to ensure that Podman is not stopped midway through creating a container resulting in potential resource leakage (#7941). - The podman save command now strips signatures from images it is exporting, as the formats we export to do not support signatures (#7659). - A new Degraded state has been added to pods. Pods that have some, but not all, of their containers running are now considered to be Degraded instead of Running. - Podman will now print a warning when conflicting network options related to port forwarding (e.g. --publish and --net=host) are specified when creating a container. - The --restart on-failure and --rm options for containers no longer conflict. When both are specified, the container will be restarted if it exits with a non-zero error code, and removed if it exits cleanly (#7906). - Remote Podman will no longer use settings from the client's containers.conf; defaults will instead be provided by the server's containers.conf (#7657). - The podman network rm command now has a new alias, podman network remove (#8402). * Bugfixes - Fixed a bug where podman load on the remote client did not error when attempting to load a directory, which is not yet supported for remote use. - Fixed a bug where rootless Podman could hang when the newuidmap binary was not installed (#7776). - Fixed a bug where the --pull option to podman run, podman create, and podman build did not match Docker's behavior. - Fixed a bug where sysctl settings from the containers.conf configuration file were applied, even if the container did not join the namespace associated with a sysctl. - Fixed a bug where Podman would not return the text of errors encounted when trying to run a healthcheck for a container. - Fixed a bug where Podman was accidentally setting the containers environment variable in addition to the expected container environment variable. - Fixed a bug where rootless Podman using CNI networking did not properly clean up DNS entries for removed containers (#7789). - Fixed a bug where the podman untag --all command was not supported with remote Podman. - Fixed a bug where the podman system service command could time out even if active attach connections were present (#7826). - Fixed a bug where the podman system service command would sometimes never time out despite no active connections being present. - Fixed a bug where Podman's handling of capabilities, specifically inheritable, did not match Docker's. - Fixed a bug where podman run would fail if the image specified was a manifest list and had already been pulled (#7798). - Fixed a bug where Podman did not take search registries into account when looking up images locally (#6381). - Fixed a bug where the podman manifest inspect command would fail for images that had already been pulled (#7726). - Fixed a bug where rootless Podman would not add supplemental GIDs to containers when when a user, but not a group, was set via the --user option to podman create and podman run and sufficient GIDs were available to add the groups (#7782). - Fixed a bug where remote Podman commands did not properly handle cases where the user gave a name that could also be a short ID for a pod or container (#7837). - Fixed a bug where podman image prune could leave images ready to be pruned after podman image prune was run (#7872). - Fixed a bug where the podman logs command with the journald log driver would not read all available logs (#7476). - Fixed a bug where the --rm and --restart options to podman create and podman run did not conflict when a restart policy that is not on-failure was chosen (#7878). - Fixed a bug where the --format "table {{ .Field }}" option to numerous Podman commands ceased to function on Podman v2.0 and up. - Fixed a bug where pods did not properly share an SELinux label between their containers, resulting in containers being unable to see the processes of other containers when the pod shared a PID namespace (#7886). - Fixed a bug where the --namespace option to podman ps did not work with the remote client (#7903). - Fixed a bug where rootless Podman incorrectly calculated the number of UIDs available in the container if multiple different ranges of UIDs were specified. - Fixed a bug where the /etc/hosts file would not be correctly populated for containers in a user namespace (#7490). - Fixed a bug where the podman network create and podman network remove commands could race when run in parallel, with unpredictable results (#7807). - Fixed a bug where the -p option to podman run, podman create, and podman pod create would, when given only a single number (e.g. -p 80), assign the same port for both host and container, instead of generating a random host port (#7947). - Fixed a bug where Podman containers did not properly store the cgroup manager they were created with, causing them to stop functioning after the cgroup manager was changed in containers.conf or with the --cgroup-manager option (#7830). - Fixed a bug where the podman inspect command did not include information on the CNI networks a container was connected to if it was not running. - Fixed a bug where the podman attach command would not print a newline after detaching from the container (#7751). - Fixed a bug where the HOME environment variable was not set properly in containers when the --userns=keep-id option was set (#8004). - Fixed a bug where the podman container restore command could panic when the container in question was in a pod (#8026). - Fixed a bug where the output of the podman image trust show --raw command was not properly formatted. - Fixed a bug where the podman runlabel command could panic if a label to run was not given (#8038). - Fixed a bug where the podman run and podman start --attach commands would exit with an error when the user detached manually using the detach keys on remote Podman (#7979). - Fixed a bug where rootless CNI networking did not use the dnsname CNI plugin if it was not available on the host, despite it always being available in the container used for rootless networking (#8040). - Fixed a bug where Podman did not properly handle cases where an OCI runtime is specified by its full path, and could revert to using another OCI runtime with the same binary path that existed in the system $PATH on subsequent invocations. - Fixed a bug where the --net=host option to podman create and podman run would cause the /etc/hosts file to be incorrectly populated (#8054). - Fixed a bug where the podman inspect command did not include container network information when the container shared its network namespace (IE, joined a pod or another container's network namespace via --net=container:...) (#8073). - Fixed a bug where the podman ps command did not include information on all ports a container was publishing. - Fixed a bug where the podman build command incorrectly forwarded STDIN into build containers from RUN instructions. - Fixed a bug where the podman wait command's --interval option did not work when units were not specified for the duration (#8088). - Fixed a bug where the --detach-keys and --detach options could be passed to podman create despite having no effect (and not making sense in that context). - Fixed a bug where Podman could not start containers if running on a system without a /etc/resolv.conf file (which occurs on some WSL2 images) (#8089). - Fixed a bug where the --extract option to podman cp was nonfunctional. - Fixed a bug where the --cidfile option to podman run would, when the container was not run with --detach, only create the file after the container exited (#8091). - Fixed a bug where the podman images and podman images -a commands could panic and not list any images when certain improperly-formatted images were present in storage (#8148). - Fixed a bug where the podman events command could, when the journald events backend was in use, become nonfunctional when a badly-formatted event or a log message that container certain string was present in the journal (#8125). - Fixed a bug where remote Podman would, when using SSH transport, not authenticate to the server using hostkeys when connecting on a port other than 22 (#8139). - Fixed a bug where the podman attach command would not exit when containers stopped (#8154). - Fixed a bug where Podman did not properly clean paths before verifying them, resulting in Podman refusing to start if the root or temporary directories were specified with extra trailing / characters (#8160). - Fixed a bug where remote Podman did not support hashed hostnames in the known_hosts file on the host for establishing connections (#8159). - Fixed a bug where the podman image exists command would return non-zero (false) when multiple potential matches for the given name existed. - Fixed a bug where the podman manifest inspect command on images that are not manifest lists would error instead of inspecting the image (#8023). - Fixed a bug where the podman system service command would fail if the directory the Unix socket was to be created inside did not exist (#8184). - Fixed a bug where pods that shared the IPC namespace (which is done by default) did not share a /dev/shm filesystem between all containers in the pod (#8181). - Fixed a bug where filters passed to podman volume list were not inclusive (#6765). - Fixed a bug where the podman volume create command would fail when the volume's data directory already existed (as might occur when a volume was not completely removed) (#8253). - Fixed a bug where the podman run and podman create commands would deadlock when trying to create a container that mounted the same named volume at multiple locations (e.g. podman run -v testvol:/test1 -v testvol:/test2) (#8221). - Fixed a bug where the parsing of the --net option to podman build was incorrect (#8322). - Fixed a bug where the podman build command would print the ID of the built image twice when using remote Podman (#8332). - Fixed a bug where the podman stats command did not show memory limits for containers (#8265). - Fixed a bug where the podman pod inspect command printed the static MAC address of the pod in a non-human-readable format (#8386). - Fixed a bug where the --tls-verify option of the podman play kube command had its logic inverted (false would enforce the use of TLS, true would disable it). - Fixed a bug where the podman network rm command would error when trying to remove macvlan networks and rootless CNI networks (#8491). - Fixed a bug where Podman was not setting sane defaults for missing XDG_ environment variables. - Fixed a bug where remote Podman would check if volume paths to be mounted in the container existed on the host, not the server (#8473). - Fixed a bug where the podman manifest create and podman manifest add commands on local images would drop any images in the manifest not pulled by the host. - Fixed a bug where networks made by podman network create did not include the tuning plugin, and as such did not support setting custom MAC addresses (#8385). - Fixed a bug where container healthchecks did not use $PATH when searching for the Podman executable to run the healthcheck. - Fixed a bug where the --ip-range option to podman network create did not properly handle non-classful subnets when calculating the last usable IP for DHCP assignment (#8448). - Fixed a bug where the podman container ps alias for podman ps was missing (#8445). * API - The Compat Create endpoint for Container has received a major refactor to share more code with the Libpod Create endpoint, and should be significantly more stable. - A Compat endpoint for exporting multiple images at once, GET /images/get, has been added (#7950). - The Compat Network Connect and Network Disconnect endpoints have been added. - Endpoints that deal with image registries now support a X-Registry-Config header to specify registry authentication configuration. - The Compat Create endpoint for images now properly supports specifying images by digest. - The Libpod Build endpoint for images now supports an httpproxy query parameter which, if set to true, will forward the server's HTTP proxy settings into the build container for RUN instructions. - The Libpod Untag endpoint for images will now remove all tags for the given image if no repository and tag are specified for removal. - Fixed a bug where the Ping endpoint misspelled a header name (Libpod-Buildha-Version instead of Libpod-Buildah-Version). - Fixed a bug where the Ping endpoint sent an extra newline at the end of its response where Docker did not. - Fixed a bug where the Compat Logs endpoint for containers did not send a newline character after each log line. - Fixed a bug where the Compat Logs endpoint for containers would mangle line endings to change newline characters to add a preceding carriage return (#7942). - Fixed a bug where the Compat Inspect endpoint for Containers did not properly list the container's stop signal (#7917). - Fixed a bug where the Compat Inspect endpoint for Containers formatted the container's create time incorrectly (#7860). - Fixed a bug where the Compat Inspect endpoint for Containers did not include the container's Path, Args, and Restart Count. - Fixed a bug where the Compat Inspect endpoint for Containers prefixed added and dropped capabilities with CAP_ (Docker does not do so). - Fixed a bug where the Compat Info endpoint for the Engine did not include configured registries. - Fixed a bug where the server could panic if a client closed a connection midway through an image pull (#7896). - Fixed a bug where the Compat Create endpoint for volumes returned an error when a volume with the same name already existed, instead of succeeding with a 201 code (#7740). - Fixed a bug where a client disconnecting from the Libpod or Compat events endpoints could result in the server using 100% CPU (#7946). - Fixed a bug where the "no such image" error message sent by the Compat Inspect endpoint for Images returned a 404 status code with an error that was improperly formatted for Docker compatibility. - Fixed a bug where the Compat Create endpoint for networks did not properly set a default for the driver parameter if it was not provided by the client. - Fixed a bug where the Compat Inspect endpoint for images did not populate the RootFS field of the response. - Fixed a bug where the Compat Inspect endpoint for images would omit the ParentId field if the image had no parent, and the Created field if the image did not have a creation time. - Fixed a bug where the Compat Remove endpoint for Networks did not support the Force query parameter. - add dependency to timezone package or podman fails to build a - Correct invalid use of %{_libexecdir} to ensure files should be in /usr/lib SELinux support [jsc#SMO-15] libseccomp was updated to release 2.5.3: * Update the syscall table for Linux v5.15 * Fix issues with multiplexed syscalls on mipsel introduced in v2.5.2 * Document that seccomp_rule_add() may return -EACCES Update to release 2.5.2 * Update the syscall table for Linux v5.14-rc7 * Add a function, get_notify_fd(), to the Python bindings to get the nofication file descriptor. * Consolidate multiplexed syscall handling for all architectures into one location. * Add multiplexed syscall support to PPC and MIPS * The meaning of SECCOMP_IOCTL_NOTIF_ID_VALID changed within the kernel. libseccomp's fd notification logic was modified to support the kernel's previous and new usage of SECCOMP_IOCTL_NOTIF_ID_VALID. update to 2.5.1: * Fix a bug where seccomp_load() could only be called once * Change the notification fd handling to only request a notification fd if * the filter has a _NOTIFY action * Add documentation about SCMP_ACT_NOTIFY to the seccomp_add_rule(3) manpage * Clarify the maintainers' GPG keys Update to release 2.5.0 * Add support for the seccomp user notifications, see the seccomp_notify_alloc(3), seccomp_notify_receive(3), seccomp_notify_respond(3) manpages for more information * Add support for new filter optimization approaches, including a balanced tree optimization, see the SCMP_FLTATR_CTL_OPTIMIZE filter attribute for more information * Add support for the 64-bit RISC-V architecture * Performance improvements when adding new rules to a filter thanks to the use of internal shadow transactions and improved syscall lookup tables * Properly document the libseccomp API return values and include them in the stable API promise * Improvements to the s390 and s390x multiplexed syscall handling * Multiple fixes and improvements to the libseccomp manpages * Moved from manually maintained syscall tables to an automatically generated syscall table in CSV format * Update the syscall tables to Linux v5.8.0-rc5 * Python bindings and build now default to Python 3.x * Improvements to the tests have boosted code coverage to over 93% Update to release 2.4.3 * Add list of authorized release signatures to README.md * Fix multiplexing issue with s390/s390x shm* syscalls * Remove the static flag from libseccomp tools compilation * Add define for __SNR_ppoll * Fix potential memory leak identified by clang in the scmp_bpf_sim tool Update to release 2.4.2 * Add support for io-uring related system calls conmon was updated to version 2.0.30: * Remove unreachable code path * exit: report if the exit command was killed * exit: fix race zombie reaper * conn_sock: allow watchdog messages through the notify socket proxy * seccomp: add support for seccomp notify Update to version 2.0.29: * Reset OOM score back to 0 for container runtime * call functions registered with atexit on SIGTERM * conn_sock: fix potential segfault Update to version 2.0.27: * Add CRI-O integration test GitHub action * exec: don't fail on EBADFD * close_fds: fix close of external fds * Add arm64 static build binary Update to version 2.0.26: * conn_sock: do not fail on EAGAIN * fix segfault from a double freed pointer * Fix a bug where conmon could never spawn a container, because a disagreement between the caller and itself on where the attach socket was. * improve --full-attach to ignore the socket-dir directly. that means callers don't need to specify a socket dir at all (and can remove it) * add full-attach option to allow callers to not truncate a very long path for the attach socket * close only opened FDs * set locale to inherit environment Update to version 2.0.22: * added man page * attach: always chdir * conn_sock: Explicitly free a heap-allocated string * refactor I/O and add SD_NOTIFY proxy support Update to version 2.0.21: * protect against kill(-1) * Makefile: enable debuginfo generation * Remove go.sum file and add go.mod * Fail if conmon config could not be written * nix: remove double definition for e2fsprogs * Speedup static build by utilizing CI cache on `/nix` folder * Fix nix build for failing e2fsprogs tests * test: fix CI * Use Podman for building libcontainers-common was updated to include: - common 0.44.0 - image 5.16.0 - podman 3.3.1 - storage 1.36.0 (changes too long to list) CVEs fixed: CVE-2020-14370,CVE-2020-15157,CVE-2021-20199,CVE-2021-20291,CVE-2021-3602 conmon-2.0.30-150300.8.3.1.src.rpm conmon-2.0.30-150300.8.3.1.x86_64.rpm libcontainers-common-20210626-150300.8.3.1.noarch.rpm libcontainers-common-20210626-150300.8.3.1.src.rpm libseccomp-2.5.3-150300.10.5.1.src.rpm libseccomp-devel-2.5.3-150300.10.5.1.x86_64.rpm libseccomp-tools-2.5.3-150300.10.5.1.x86_64.rpm libseccomp2-2.5.3-150300.10.5.1.x86_64.rpm libseccomp2-32bit-2.5.3-150300.10.5.1.x86_64.rpm podman-3.4.4-150300.9.3.2.src.rpm podman-3.4.4-150300.9.3.2.x86_64.rpm podman-cni-config-3.4.4-150300.9.3.2.noarch.rpm conmon-2.0.30-150300.8.3.1.s390x.rpm libseccomp-devel-2.5.3-150300.10.5.1.s390x.rpm libseccomp-tools-2.5.3-150300.10.5.1.s390x.rpm libseccomp2-2.5.3-150300.10.5.1.s390x.rpm podman-3.4.4-150300.9.3.2.s390x.rpm conmon-2.0.30-150300.8.3.1.ppc64le.rpm libseccomp-devel-2.5.3-150300.10.5.1.ppc64le.rpm libseccomp-tools-2.5.3-150300.10.5.1.ppc64le.rpm libseccomp2-2.5.3-150300.10.5.1.ppc64le.rpm podman-3.4.4-150300.9.3.2.ppc64le.rpm conmon-2.0.30-150300.8.3.1.aarch64.rpm libseccomp-devel-2.5.3-150300.10.5.1.aarch64.rpm libseccomp-tools-2.5.3-150300.10.5.1.aarch64.rpm libseccomp2-2.5.3-150300.10.5.1.aarch64.rpm podman-3.4.4-150300.9.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-792 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-build-key fixes the following issues: - The old SUSE PTF key was extended, but also move it to suse_ptf_key_old.asc (as it is a DSA1024 key). - Added a new SUSE PTF key with RSA2048 bit as suse_ptf_key.asc (bsc#1196494) - Extended the expiry of SUSE Linux Enterprise 11 key (bsc#1194845) - Added SUSE Container signing key in PEM format for use e.g. by cosign. - The SUSE security key was replaced with 2022 edition (E-Mail usage only). (bsc#1196495) suse-build-key-12.0-8.19.1.noarch.rpm suse-build-key-12.0-8.19.1.src.rpm openSUSE-SLE-15.3-2022-818 important SUSE Updates openSUSE-SLE 15.3 This update for tomcat fixes the following issues: Security issues fixed: - CVE-2022-23181: Make calculation of session storage location more robust (bsc#1195255) - Remove log4j (bsc#1196137) tomcat-9.0.36-19.1.noarch.rpm tomcat-9.0.36-19.1.src.rpm tomcat-admin-webapps-9.0.36-19.1.noarch.rpm tomcat-docs-webapp-9.0.36-19.1.noarch.rpm tomcat-el-3_0-api-9.0.36-19.1.noarch.rpm tomcat-embed-9.0.36-19.1.noarch.rpm tomcat-javadoc-9.0.36-19.1.noarch.rpm tomcat-jsp-2_3-api-9.0.36-19.1.noarch.rpm tomcat-jsvc-9.0.36-19.1.noarch.rpm tomcat-lib-9.0.36-19.1.noarch.rpm tomcat-servlet-4_0-api-9.0.36-19.1.noarch.rpm tomcat-webapps-9.0.36-19.1.noarch.rpm openSUSE-SLE-15.3-2022-736 important SUSE Updates openSUSE-SLE 15.3 This update for vim fixes the following issues: - CVE-2022-0318: Fixed heap-based buffer overflow (bsc#1195004). - CVE-2021-3796: Fixed use-after-free in nv_replace() in normal.c (bsc#1190570). - CVE-2021-3872: Fixed heap-based buffer overflow in win_redr_status() drawscreen.c (bsc#1191893). - CVE-2021-3927: Fixed heap-based buffer overflow (bsc#1192481). - CVE-2021-3928: Fixed stack-based buffer overflow (bsc#1192478). - CVE-2021-4019: Fixed heap-based buffer overflow (bsc#1193294). - CVE-2021-3984: Fixed illegal memory access when C-indenting could have led to heap buffer overflow (bsc#1193298). - CVE-2021-3778: Fixed heap-based buffer overflow in regexp_nfa.c (bsc#1190533). - CVE-2021-4193: Fixed out-of-bounds read (bsc#1194216). - CVE-2021-46059: Fixed pointer dereference vulnerability via the vim_regexec_multi function at regexp.c (bsc#1194556). - CVE-2022-0319: Fixded out-of-bounds read (bsc#1195066). - CVE-2022-0351: Fixed uncontrolled recursion in eval7() (bsc#1195126). - CVE-2022-0361: Fixed buffer overflow (bsc#1195126). - CVE-2022-0413: Fixed use-after-free in src/ex_cmds.c (bsc#1195356). gvim-8.0.1568-5.17.1.x86_64.rpm vim-8.0.1568-5.17.1.src.rpm vim-8.0.1568-5.17.1.x86_64.rpm vim-data-8.0.1568-5.17.1.noarch.rpm vim-data-common-8.0.1568-5.17.1.noarch.rpm vim-small-8.0.1568-5.17.1.x86_64.rpm gvim-8.0.1568-5.17.1.s390x.rpm vim-8.0.1568-5.17.1.s390x.rpm vim-small-8.0.1568-5.17.1.s390x.rpm gvim-8.0.1568-5.17.1.ppc64le.rpm vim-8.0.1568-5.17.1.ppc64le.rpm vim-small-8.0.1568-5.17.1.ppc64le.rpm gvim-8.0.1568-5.17.1.aarch64.rpm vim-8.0.1568-5.17.1.aarch64.rpm vim-small-8.0.1568-5.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-712 important SUSE Updates openSUSE-SLE 15.3 This update for flatpak fixes the following issues: Update to flatpak 1.10.7: - CVE-2022-21682: Introduce new option --nofilesystem=host:reset to support flatpak-builder 1.2.2 (bsc#1194611). - CVE-2021-43860: A malicious repository could hav sent invalid application metadata in a way that hides some of the app permissions displayed during installation (bsc#1194610). flatpak-1.10.7-4.12.1.src.rpm flatpak-1.10.7-4.12.1.x86_64.rpm flatpak-devel-1.10.7-4.12.1.x86_64.rpm flatpak-zsh-completion-1.10.7-4.12.1.x86_64.rpm libflatpak0-1.10.7-4.12.1.x86_64.rpm system-user-flatpak-1.10.7-4.12.1.x86_64.rpm typelib-1_0-Flatpak-1_0-1.10.7-4.12.1.x86_64.rpm flatpak-1.10.7-4.12.1.s390x.rpm flatpak-devel-1.10.7-4.12.1.s390x.rpm flatpak-zsh-completion-1.10.7-4.12.1.s390x.rpm libflatpak0-1.10.7-4.12.1.s390x.rpm system-user-flatpak-1.10.7-4.12.1.s390x.rpm typelib-1_0-Flatpak-1_0-1.10.7-4.12.1.s390x.rpm flatpak-1.10.7-4.12.1.ppc64le.rpm flatpak-devel-1.10.7-4.12.1.ppc64le.rpm flatpak-zsh-completion-1.10.7-4.12.1.ppc64le.rpm libflatpak0-1.10.7-4.12.1.ppc64le.rpm system-user-flatpak-1.10.7-4.12.1.ppc64le.rpm typelib-1_0-Flatpak-1_0-1.10.7-4.12.1.ppc64le.rpm flatpak-1.10.7-4.12.1.aarch64.rpm flatpak-devel-1.10.7-4.12.1.aarch64.rpm flatpak-zsh-completion-1.10.7-4.12.1.aarch64.rpm libflatpak0-1.10.7-4.12.1.aarch64.rpm system-user-flatpak-1.10.7-4.12.1.aarch64.rpm typelib-1_0-Flatpak-1_0-1.10.7-4.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-1144 important SUSE Updates openSUSE-SLE 15.3 This feature update for yast2, yast2-country, yast2-installation, autoyast2, yast2-audit-laf, yast2-fcoe-client, yast2-schema fixes the following issues: autoyst2: - Properly handle the "dopackages" option in the openFile method of the AyastSetup module (bsc#1196566) - Avoid login while running AutoYaST init-scripts (bsc#1196594, bsc#1195059) - Add yast namespace to merge.xslt to fix CDATA handling (bsc#1195910) - Modified init-scripts service dependencies fixing a root login systemd timeout when installing with ssh (bsc#1195059) yast2: - Fixed refreshing old repositories during system upgrade (bsc#1196120, bsc#1190228) yast2-audit-laf: - Set the name of the auto client in the desktop file (bsc#1196590) yast2-country: - Fixed passing multiple arguments to "localectl set-locale" (bsc#1177863) yast2-fcoe-client: - Added AutoYaST schema (bsc#1194895) yast2-installation: - Do not stop xvnc.socket but run the YaST2-Second-Stage and YaST2-Firsboot services before it in order to prevent early vnc connections (bsc#1197265) - Run the YaST2-Second-Stage and YaST2-Firsboot services after purge-kernels to prevent a zypper lock error message (bsc#1196431) - Prevent getty auto-generation because it makes xvnc fail when it is started in YaST second stage (bsc#1196614) - Avoid terminal login prompt when running Second Stage service (bsc#1196594, bsc#1195059) - Modified Second Stage service dependencies fixing a root login systemd timeout when installing with ssh (bsc#1195059) - Do not create a Btrfs snapshot at the end of the installation or upgrade when the root filesystem is mounted as read-only (jsc#SLE-22582, jsc#SLE-22560) yast2-packager: - Ensure that the file handling repositories metadata is properly closed to avoid conflicts and installation errors (bsc#1196061) yast2-schema: -Added fcoe-client schema (bsc#1194895) autoyast2-4.3.100-150300.3.42.1.noarch.rpm autoyast2-4.3.100-150300.3.42.1.src.rpm autoyast2-installation-4.3.100-150300.3.42.1.noarch.rpm yast2-4.3.69-150300.3.20.1.src.rpm yast2-4.3.69-150300.3.20.1.x86_64.rpm yast2-audit-laf-4.3.2-150300.3.3.1.noarch.rpm yast2-audit-laf-4.3.2-150300.3.3.1.src.rpm yast2-country-4.3.19-150300.3.14.1.src.rpm yast2-country-4.3.19-150300.3.14.1.x86_64.rpm yast2-country-data-4.3.19-150300.3.14.1.x86_64.rpm yast2-fcoe-client-4.3.1-150300.3.3.1.noarch.rpm yast2-fcoe-client-4.3.1-150300.3.3.1.src.rpm yast2-installation-4.3.50-150300.3.27.1.noarch.rpm yast2-installation-4.3.50-150300.3.27.1.src.rpm yast2-logs-4.3.69-150300.3.20.1.x86_64.rpm yast2-packager-4.3.26-150300.3.11.1.src.rpm yast2-packager-4.3.26-150300.3.11.1.x86_64.rpm yast2-schema-4.3.28-150300.3.12.1.src.rpm yast2-schema-4.3.28-150300.3.12.1.x86_64.rpm yast2-4.3.69-150300.3.20.1.s390x.rpm yast2-country-4.3.19-150300.3.14.1.s390x.rpm yast2-country-data-4.3.19-150300.3.14.1.s390x.rpm yast2-logs-4.3.69-150300.3.20.1.s390x.rpm yast2-packager-4.3.26-150300.3.11.1.s390x.rpm yast2-schema-4.3.28-150300.3.12.1.s390x.rpm yast2-4.3.69-150300.3.20.1.ppc64le.rpm yast2-country-4.3.19-150300.3.14.1.ppc64le.rpm yast2-country-data-4.3.19-150300.3.14.1.ppc64le.rpm yast2-logs-4.3.69-150300.3.20.1.ppc64le.rpm yast2-packager-4.3.26-150300.3.11.1.ppc64le.rpm yast2-schema-4.3.28-150300.3.12.1.ppc64le.rpm yast2-4.3.69-150300.3.20.1.aarch64.rpm yast2-country-4.3.19-150300.3.14.1.aarch64.rpm yast2-country-data-4.3.19-150300.3.14.1.aarch64.rpm yast2-logs-4.3.69-150300.3.20.1.aarch64.rpm yast2-packager-4.3.26-150300.3.11.1.aarch64.rpm yast2-schema-4.3.28-150300.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-658 moderate SUSE Updates openSUSE-SLE 15.3 This update for mysql-connector-java fixes the following issues: - CVE-2021-2471: Fixed unauthorized access to critical data or complete access to all MySQL Connectors (bsc#1195557). mysql-connector-java-5.1.47-3.6.1.noarch.rpm mysql-connector-java-5.1.47-3.6.1.src.rpm openSUSE-SLE-15.3-2022-911 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for libbluray fixes the following issues: Update to version 1.3.0 (jsc#SLE-23838): - Remove unused dependencies from pkgconfig(libbluray) - Enable build against java-devel >= 10. - Add functions to list and read BD-ROM files. - Add initial support for .fmts files. - Add initial support for OpenJDK 11. - Add initial support for UHD disc BD-J menus. - Add support for AWT mouse events (BD-J). - Add support for compiling .jar file with Java 9+ compiler. - Add support for separate key pressed / typed / released user input events. - Enable playback without menus when index.bdmv is missing. - Fix JVM bootstrap issues with some Java 9 versions. - Fix build with Java 1.6. - Fix build with OpenJDK 12 / 13. - Fix creating organization and disc specific BD-J BUDA directories. - Fix memory leak - Fix loading classes with Windows Java 8. - Fix loading libmmbd in Windows 64-bit. - Fix long delay in "Evangelion, You are (not) alone" menu. - Fix mark triggering when multiple marks are passed during single read(). - Fix playback of discs without normal titles (only TopMenu / FirstPlay title). - Fix playback of some broken BD-J discs. - Fix polygon-based BD-J graphics primitives. - Fix reading resources indirectly from mounted .jar file. - Fix resetting user-selected streams when playing without menus. - Fix seek bar pop-up at chapter boundary with some discs. - Fix sign extended bytes when reading single bytes in BDJ. - Fix stack overflow when using Java9+ with debugger connection. - Improve BD-J compability. - Improve JVM and .jar file probing. - Improve Java 8+ compability. - Improve UHD metadata support. - Improve error resilience and stability. - Improve main title selection. - Improve missing/broken playlist handling. - Improve portability. - Move AWT classes to separate .jar file. - Rename list_titles to bd_list_titles and add it to installed programs. - Update libudfread submodule repository URL. - Use external libudfread when available. libbluray-1.3.0-150300.10.3.1.src.rpm libbluray-bdj-1.3.0-150300.10.3.1.noarch.rpm libbluray-devel-1.3.0-150300.10.3.1.x86_64.rpm libbluray-tools-1.3.0-150300.10.3.1.x86_64.rpm libbluray2-1.3.0-150300.10.3.1.x86_64.rpm libbluray2-32bit-1.3.0-150300.10.3.1.x86_64.rpm libbluray-devel-1.3.0-150300.10.3.1.s390x.rpm libbluray-tools-1.3.0-150300.10.3.1.s390x.rpm libbluray2-1.3.0-150300.10.3.1.s390x.rpm libbluray-devel-1.3.0-150300.10.3.1.ppc64le.rpm libbluray-tools-1.3.0-150300.10.3.1.ppc64le.rpm libbluray2-1.3.0-150300.10.3.1.ppc64le.rpm libbluray-devel-1.3.0-150300.10.3.1.aarch64.rpm libbluray-tools-1.3.0-150300.10.3.1.aarch64.rpm libbluray2-1.3.0-150300.10.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2347 moderate SUSE Updates openSUSE-SLE 15.3 This update for libnbd fixes the following issues: - CVE-2022-0485: Fixed nbdcopy failure if NBD read or write fails (bsc#1195636). libnbd-1.9.3-150300.8.9.1.src.rpm libnbd-1.9.3-150300.8.9.1.x86_64.rpm libnbd-bash-completion-1.9.3-150300.8.9.1.noarch.rpm libnbd-devel-1.9.3-150300.8.9.1.x86_64.rpm libnbd0-1.9.3-150300.8.9.1.x86_64.rpm nbdfuse-1.9.3-150300.8.9.1.x86_64.rpm libnbd-1.9.3-150300.8.9.1.s390x.rpm libnbd-devel-1.9.3-150300.8.9.1.s390x.rpm libnbd0-1.9.3-150300.8.9.1.s390x.rpm nbdfuse-1.9.3-150300.8.9.1.s390x.rpm libnbd-1.9.3-150300.8.9.1.ppc64le.rpm libnbd-devel-1.9.3-150300.8.9.1.ppc64le.rpm libnbd0-1.9.3-150300.8.9.1.ppc64le.rpm nbdfuse-1.9.3-150300.8.9.1.ppc64le.rpm libnbd-1.9.3-150300.8.9.1.aarch64.rpm libnbd-devel-1.9.3-150300.8.9.1.aarch64.rpm libnbd0-1.9.3-150300.8.9.1.aarch64.rpm nbdfuse-1.9.3-150300.8.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-841 important SUSE Updates openSUSE-SLE 15.3 This update for libqt5-qtbase fixes the following issues: - CVE-2022-23853, CVE-2022-25255: Avoid unintentionally using binaries from CWD (bsc#1195386, bsc#1196501). libQt5Bootstrap-devel-static-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Bootstrap-devel-static-5.12.7-4.17.1.x86_64.rpm libQt5Concurrent-devel-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Concurrent-devel-5.12.7-4.17.1.x86_64.rpm libQt5Concurrent5-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Concurrent5-5.12.7-4.17.1.x86_64.rpm libQt5Core-devel-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Core-devel-5.12.7-4.17.1.x86_64.rpm libQt5Core-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5Core5-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Core5-5.12.7-4.17.1.x86_64.rpm libQt5DBus-devel-32bit-5.12.7-4.17.1.x86_64.rpm libQt5DBus-devel-5.12.7-4.17.1.x86_64.rpm libQt5DBus-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5DBus5-32bit-5.12.7-4.17.1.x86_64.rpm libQt5DBus5-5.12.7-4.17.1.x86_64.rpm libQt5Gui-devel-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Gui-devel-5.12.7-4.17.1.x86_64.rpm libQt5Gui-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5Gui5-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Gui5-5.12.7-4.17.1.x86_64.rpm libQt5KmsSupport-devel-static-5.12.7-4.17.1.x86_64.rpm libQt5KmsSupport-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5Network-devel-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Network-devel-5.12.7-4.17.1.x86_64.rpm libQt5Network-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5Network5-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Network5-5.12.7-4.17.1.x86_64.rpm libQt5OpenGL-devel-32bit-5.12.7-4.17.1.x86_64.rpm libQt5OpenGL-devel-5.12.7-4.17.1.x86_64.rpm libQt5OpenGL-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5OpenGL5-32bit-5.12.7-4.17.1.x86_64.rpm libQt5OpenGL5-5.12.7-4.17.1.x86_64.rpm libQt5OpenGLExtensions-devel-static-32bit-5.12.7-4.17.1.x86_64.rpm libQt5OpenGLExtensions-devel-static-5.12.7-4.17.1.x86_64.rpm libQt5PlatformHeaders-devel-5.12.7-4.17.1.x86_64.rpm libQt5PlatformSupport-devel-static-32bit-5.12.7-4.17.1.x86_64.rpm libQt5PlatformSupport-devel-static-5.12.7-4.17.1.x86_64.rpm libQt5PlatformSupport-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5PrintSupport-devel-32bit-5.12.7-4.17.1.x86_64.rpm libQt5PrintSupport-devel-5.12.7-4.17.1.x86_64.rpm libQt5PrintSupport-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5PrintSupport5-32bit-5.12.7-4.17.1.x86_64.rpm libQt5PrintSupport5-5.12.7-4.17.1.x86_64.rpm libQt5Sql-devel-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Sql-devel-5.12.7-4.17.1.x86_64.rpm libQt5Sql-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5Sql5-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Sql5-5.12.7-4.17.1.x86_64.rpm libQt5Sql5-mysql-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Sql5-mysql-5.12.7-4.17.1.x86_64.rpm libQt5Sql5-postgresql-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Sql5-postgresql-5.12.7-4.17.1.x86_64.rpm libQt5Sql5-sqlite-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Sql5-sqlite-5.12.7-4.17.1.x86_64.rpm libQt5Sql5-unixODBC-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Sql5-unixODBC-5.12.7-4.17.1.x86_64.rpm libQt5Test-devel-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Test-devel-5.12.7-4.17.1.x86_64.rpm libQt5Test-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5Test5-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Test5-5.12.7-4.17.1.x86_64.rpm libQt5Widgets-devel-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Widgets-devel-5.12.7-4.17.1.x86_64.rpm libQt5Widgets-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5Widgets5-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Widgets5-5.12.7-4.17.1.x86_64.rpm libQt5Xml-devel-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Xml-devel-5.12.7-4.17.1.x86_64.rpm libQt5Xml5-32bit-5.12.7-4.17.1.x86_64.rpm libQt5Xml5-5.12.7-4.17.1.x86_64.rpm libqt5-qtbase-5.12.7-4.17.1.src.rpm libqt5-qtbase-common-devel-5.12.7-4.17.1.x86_64.rpm libqt5-qtbase-devel-5.12.7-4.17.1.x86_64.rpm libqt5-qtbase-examples-32bit-5.12.7-4.17.1.x86_64.rpm libqt5-qtbase-examples-5.12.7-4.17.1.x86_64.rpm libqt5-qtbase-platformtheme-gtk3-5.12.7-4.17.1.x86_64.rpm libqt5-qtbase-platformtheme-xdgdesktopportal-5.12.7-4.17.1.x86_64.rpm libqt5-qtbase-private-headers-devel-5.12.7-4.17.1.noarch.rpm libQt5Bootstrap-devel-static-5.12.7-4.17.1.s390x.rpm libQt5Concurrent-devel-5.12.7-4.17.1.s390x.rpm libQt5Concurrent5-5.12.7-4.17.1.s390x.rpm libQt5Core-devel-5.12.7-4.17.1.s390x.rpm libQt5Core5-5.12.7-4.17.1.s390x.rpm libQt5DBus-devel-5.12.7-4.17.1.s390x.rpm libQt5DBus5-5.12.7-4.17.1.s390x.rpm libQt5Gui-devel-5.12.7-4.17.1.s390x.rpm libQt5Gui5-5.12.7-4.17.1.s390x.rpm libQt5KmsSupport-devel-static-5.12.7-4.17.1.s390x.rpm libQt5Network-devel-5.12.7-4.17.1.s390x.rpm libQt5Network5-5.12.7-4.17.1.s390x.rpm libQt5OpenGL-devel-5.12.7-4.17.1.s390x.rpm libQt5OpenGL5-5.12.7-4.17.1.s390x.rpm libQt5OpenGLExtensions-devel-static-5.12.7-4.17.1.s390x.rpm libQt5PlatformHeaders-devel-5.12.7-4.17.1.s390x.rpm libQt5PlatformSupport-devel-static-5.12.7-4.17.1.s390x.rpm libQt5PrintSupport-devel-5.12.7-4.17.1.s390x.rpm libQt5PrintSupport5-5.12.7-4.17.1.s390x.rpm libQt5Sql-devel-5.12.7-4.17.1.s390x.rpm libQt5Sql5-5.12.7-4.17.1.s390x.rpm libQt5Sql5-mysql-5.12.7-4.17.1.s390x.rpm libQt5Sql5-postgresql-5.12.7-4.17.1.s390x.rpm libQt5Sql5-sqlite-5.12.7-4.17.1.s390x.rpm libQt5Sql5-unixODBC-5.12.7-4.17.1.s390x.rpm libQt5Test-devel-5.12.7-4.17.1.s390x.rpm libQt5Test5-5.12.7-4.17.1.s390x.rpm libQt5Widgets-devel-5.12.7-4.17.1.s390x.rpm libQt5Widgets5-5.12.7-4.17.1.s390x.rpm libQt5Xml-devel-5.12.7-4.17.1.s390x.rpm libQt5Xml5-5.12.7-4.17.1.s390x.rpm libqt5-qtbase-common-devel-5.12.7-4.17.1.s390x.rpm libqt5-qtbase-devel-5.12.7-4.17.1.s390x.rpm libqt5-qtbase-examples-5.12.7-4.17.1.s390x.rpm libqt5-qtbase-platformtheme-gtk3-5.12.7-4.17.1.s390x.rpm libqt5-qtbase-platformtheme-xdgdesktopportal-5.12.7-4.17.1.s390x.rpm libQt5Bootstrap-devel-static-5.12.7-4.17.1.ppc64le.rpm libQt5Concurrent-devel-5.12.7-4.17.1.ppc64le.rpm libQt5Concurrent5-5.12.7-4.17.1.ppc64le.rpm libQt5Core-devel-5.12.7-4.17.1.ppc64le.rpm libQt5Core5-5.12.7-4.17.1.ppc64le.rpm libQt5DBus-devel-5.12.7-4.17.1.ppc64le.rpm libQt5DBus5-5.12.7-4.17.1.ppc64le.rpm libQt5Gui-devel-5.12.7-4.17.1.ppc64le.rpm libQt5Gui5-5.12.7-4.17.1.ppc64le.rpm libQt5KmsSupport-devel-static-5.12.7-4.17.1.ppc64le.rpm libQt5Network-devel-5.12.7-4.17.1.ppc64le.rpm libQt5Network5-5.12.7-4.17.1.ppc64le.rpm libQt5OpenGL-devel-5.12.7-4.17.1.ppc64le.rpm libQt5OpenGL5-5.12.7-4.17.1.ppc64le.rpm libQt5OpenGLExtensions-devel-static-5.12.7-4.17.1.ppc64le.rpm libQt5PlatformHeaders-devel-5.12.7-4.17.1.ppc64le.rpm libQt5PlatformSupport-devel-static-5.12.7-4.17.1.ppc64le.rpm libQt5PrintSupport-devel-5.12.7-4.17.1.ppc64le.rpm libQt5PrintSupport5-5.12.7-4.17.1.ppc64le.rpm libQt5Sql-devel-5.12.7-4.17.1.ppc64le.rpm libQt5Sql5-5.12.7-4.17.1.ppc64le.rpm libQt5Sql5-mysql-5.12.7-4.17.1.ppc64le.rpm libQt5Sql5-postgresql-5.12.7-4.17.1.ppc64le.rpm libQt5Sql5-sqlite-5.12.7-4.17.1.ppc64le.rpm libQt5Sql5-unixODBC-5.12.7-4.17.1.ppc64le.rpm libQt5Test-devel-5.12.7-4.17.1.ppc64le.rpm libQt5Test5-5.12.7-4.17.1.ppc64le.rpm libQt5Widgets-devel-5.12.7-4.17.1.ppc64le.rpm libQt5Widgets5-5.12.7-4.17.1.ppc64le.rpm libQt5Xml-devel-5.12.7-4.17.1.ppc64le.rpm libQt5Xml5-5.12.7-4.17.1.ppc64le.rpm libqt5-qtbase-common-devel-5.12.7-4.17.1.ppc64le.rpm libqt5-qtbase-devel-5.12.7-4.17.1.ppc64le.rpm libqt5-qtbase-examples-5.12.7-4.17.1.ppc64le.rpm libqt5-qtbase-platformtheme-gtk3-5.12.7-4.17.1.ppc64le.rpm libqt5-qtbase-platformtheme-xdgdesktopportal-5.12.7-4.17.1.ppc64le.rpm libQt5Bootstrap-devel-static-5.12.7-4.17.1.aarch64.rpm libQt5Concurrent-devel-5.12.7-4.17.1.aarch64.rpm libQt5Concurrent5-5.12.7-4.17.1.aarch64.rpm libQt5Core-devel-5.12.7-4.17.1.aarch64.rpm libQt5Core5-5.12.7-4.17.1.aarch64.rpm libQt5DBus-devel-5.12.7-4.17.1.aarch64.rpm libQt5DBus5-5.12.7-4.17.1.aarch64.rpm libQt5Gui-devel-5.12.7-4.17.1.aarch64.rpm libQt5Gui5-5.12.7-4.17.1.aarch64.rpm libQt5KmsSupport-devel-static-5.12.7-4.17.1.aarch64.rpm libQt5Network-devel-5.12.7-4.17.1.aarch64.rpm libQt5Network5-5.12.7-4.17.1.aarch64.rpm libQt5OpenGL-devel-5.12.7-4.17.1.aarch64.rpm libQt5OpenGL5-5.12.7-4.17.1.aarch64.rpm libQt5OpenGLExtensions-devel-static-5.12.7-4.17.1.aarch64.rpm libQt5PlatformHeaders-devel-5.12.7-4.17.1.aarch64.rpm libQt5PlatformSupport-devel-static-5.12.7-4.17.1.aarch64.rpm libQt5PrintSupport-devel-5.12.7-4.17.1.aarch64.rpm libQt5PrintSupport5-5.12.7-4.17.1.aarch64.rpm libQt5Sql-devel-5.12.7-4.17.1.aarch64.rpm libQt5Sql5-5.12.7-4.17.1.aarch64.rpm libQt5Sql5-mysql-5.12.7-4.17.1.aarch64.rpm libQt5Sql5-postgresql-5.12.7-4.17.1.aarch64.rpm libQt5Sql5-sqlite-5.12.7-4.17.1.aarch64.rpm libQt5Sql5-unixODBC-5.12.7-4.17.1.aarch64.rpm libQt5Test-devel-5.12.7-4.17.1.aarch64.rpm libQt5Test5-5.12.7-4.17.1.aarch64.rpm libQt5Widgets-devel-5.12.7-4.17.1.aarch64.rpm libQt5Widgets5-5.12.7-4.17.1.aarch64.rpm libQt5Xml-devel-5.12.7-4.17.1.aarch64.rpm libQt5Xml5-5.12.7-4.17.1.aarch64.rpm libqt5-qtbase-common-devel-5.12.7-4.17.1.aarch64.rpm libqt5-qtbase-devel-5.12.7-4.17.1.aarch64.rpm libqt5-qtbase-examples-5.12.7-4.17.1.aarch64.rpm libqt5-qtbase-platformtheme-gtk3-5.12.7-4.17.1.aarch64.rpm libqt5-qtbase-platformtheme-xdgdesktopportal-5.12.7-4.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-772 moderate SUSE Updates openSUSE-SLE 15.3 This update for icewm-theme-branding fixes the following issues: - Fix font configuration after google-droid-fonts update (bsc#1195328 bsc#1196336) icewm-theme-branding-1.2.5-150300.5.3.1.noarch.rpm icewm-theme-branding-1.2.5-150300.5.3.1.src.rpm openSUSE-SLE-15.3-2022-864 important SUSE Updates openSUSE-SLE 15.3 This update for SAPHanaSR fixes the following issues: - Add systemd support for the resource agent to interact with the new SAP unit files for sapstartsrv. As the new version of the SAP Startup Framework will use systemd unit files to control the sapstartsrv process instead of the previous used SysV init script, the handling of sapstartsrv inside the resource agents is adapted to support both ways. (bsc#1189530, bsc#1189531) - The resource start and stop timeout is now configurable by increasing the timeout for the action 'start' and/or 'stop'. 95% of this action timeouts will be used to calculate the new resource start and stop timeout for the 'WaitforStarted' and 'WaitforStopped' functions. If the new, calculated timeout value is less than '3600', it will be set to '3600', so that we do not decrease this timeout by accident. (bsc#1182545) - Change promotion scoring during maintenance procedure to prevent that both sides have an equal promotion scoring after refresh which might result in a critical promotion of the secondary. (bsc#1174557) - Update of man page SAPHanaSR.py.7 - correct the supported HANA version (bsc#1182201) - If the $hdbState command fails to retrieve the current state of the System Replication, the resource agent now uses the system_replication/actual_mode attribute (if available) from the global.ini file as a fallback. This should prevent some confusing and misleading log messages during a takeover and solves the problem of a not working takeover back (after a successful first takeover) (bsc#1181765) - Add dedicated logging of HANA_CALL problems. It is now possible to identify if the called `hana` command or the needed `su` command throws the error, and for further hints it logs the stderr output. Additionally it is possible to get regular log messages for the used commands, their return code and their stderr output by enabling the 'debug' mode of the resource agents (bsc#1182774) SAPHanaSR-0.155.0-4.17.1.noarch.rpm SAPHanaSR-0.155.0-4.17.1.src.rpm SAPHanaSR-doc-0.155.0-4.17.1.noarch.rpm openSUSE-SLE-15.3-2022-735 important SUSE Updates openSUSE-SLE 15.3 This update for zsh fixes the following issues: - CVE-2021-45444: Fixed a vulnerability where arbitrary shell commands could be executed related to prompt expansion (bsc#1196435). - CVE-2019-20044: Fixed a vulnerability where shell privileges would not be properly dropped when unsetting the PRIVILEGED option (bsc#1163882). zsh-5.6-7.5.1.src.rpm zsh-5.6-7.5.1.x86_64.rpm zsh-htmldoc-5.6-7.5.1.x86_64.rpm zsh-5.6-7.5.1.s390x.rpm zsh-htmldoc-5.6-7.5.1.s390x.rpm zsh-5.6-7.5.1.ppc64le.rpm zsh-htmldoc-5.6-7.5.1.ppc64le.rpm zsh-5.6-7.5.1.aarch64.rpm zsh-htmldoc-5.6-7.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-1485 moderate SUSE Updates openSUSE-SLE 15.3 This update for python39 fixes the following issues: - CVE-2021-3572: Fixed an improper handling of unicode characters in pip (bsc#1186819). - Update to 3.9.10 (jsc#SLE-23849) - Remove shebangs from from python-base libraries in _libdir. (bsc#1193179) - Update to 3.9.9: * Core and Builtins + bpo-30570: Fixed a crash in issubclass() from infinite recursion when searching pathological __bases__ tuples. + bpo-45494: Fix parser crash when reporting errors involving invalid continuation characters. Patch by Pablo Galindo. + bpo-45385: Fix reference leak from descr_check. Patch by Dong-hee Na. + bpo-45167: Fix deepcopying of types.GenericAlias objects. + bpo-44219: Release the GIL while performing isatty system calls on arbitrary file descriptors. In particular, this affects os.isatty(), os.device_encoding() and io.TextIOWrapper. By extension, io.open() in text mode is also affected. This change solves a deadlock in os.isatty(). Patch by Vincent Michel in bpo-44219. + bpo-44959: Added fallback to extension modules with '.sl' suffix on HP-UX + bpo-44050: Extensions that indicate they use global state (by setting m_size to -1) can again be used in multiple interpreters. This reverts to behavior of Python 3.8. + bpo-45121: Fix issue where Protocol.__init__ raises RecursionError when it's called directly or via super(). Patch provided by Yurii Karabas. + bpo-45083: When the interpreter renders an exception, its name now has a complete qualname. Previously only the class name was concatenated to the module name, which sometimes resulted in an incorrect full name being displayed. + bpo-45738: Fix computation of error location for invalid continuation characters in the parser. Patch by Pablo Galindo. + Library + bpo-45678: Fix bug in Python 3.9 that meant functools.singledispatchmethod failed to properly wrap the attributes of the target method. Patch by Alex Waygood. + bpo-45679: Fix caching of multi-value typing.Literal. Literal[True, 2] is no longer equal to Literal[1, 2]. + bpo-45438: Fix typing.Signature string representation for generic builtin types. + bpo-45581: sqlite3.connect() now correctly raises MemoryError if the underlying SQLite API signals memory error. Patch by Erlend E. Aasland. + bpo-39679: Fix bug in functools.singledispatchmethod that caused it to fail when attempting to register a classmethod() or staticmethod() using type annotations. Patch contributed by Alex Waygood. + bpo-45515: Add references to zoneinfo in the datetime documentation, mostly replacing outdated references to dateutil.tz. Change by Paul Ganssle. + bpo-45467: Fix incremental decoder and stream reader in the "raw-unicode-escape" codec. Previously they failed if the escape sequence was split. + bpo-45461: Fix incremental decoder and stream reader in the "unicode-escape" codec. Previously they failed if the escape sequence was split. + bpo-45239: Fixed email.utils.parsedate_tz() crashing with UnboundLocalError on certain invalid input instead of returning None. Patch by Ben Hoyt. + bpo-44904: Fix bug in the doctest module that caused it to fail if a docstring included an example with a classmethod property. Patch by Alex Waygood. + bpo-45406: Make inspect.getmodule() catch FileNotFoundError raised by :'func:inspect.getabsfile, and return None to indicate that the module could not be determined. + bpo-45262: Prevent use-after-free in asyncio. Make sure the cached running loop holder gets cleared on dealloc to prevent use-after-free in get_running_loop + bpo-45386: Make xmlrpc.client more robust to C runtimes where the underlying C strftime function results in a ValueError when testing for year formatting options. + bpo-45371: Fix clang rpath issue in distutils. The UnixCCompiler now uses correct clang option to add a runtime library directory (rpath) to a shared library. + bpo-20028: Improve error message of csv.Dialect when initializing. Patch by Vajrasky Kok and Dong-hee Na. + bpo-45343: Update bundled pip to 21.2.4 and setuptools to 58.1.0 + bpo-41710: On Unix, if the sem_clockwait() function is available in the C library (glibc 2.30 and newer), the threading.Lock.acquire() method now uses the monotonic clock (time.CLOCK_MONOTONIC) for the timeout, rather than using the system clock (time.CLOCK_REALTIME), to not be affected by system clock changes. Patch by Victor Stinner. + bpo-45328: Fixed http.client.HTTPConnection to work properly in OSs that don't support the TCP_NODELAY socket option. + bpo-1596321: Fix the threading._shutdown() function when the threading module was imported first from a thread different than the main thread: no longer log an error at Python exit. + bpo-45274: Fix a race condition in the Thread.join() method of the threading module. If the function is interrupted by a signal and the signal handler raises an exception, make sure that the thread remains in a consistent state to prevent a deadlock. Patch by Victor Stinner. + bpo-45238: Fix unittest.IsolatedAsyncioTestCase.debug(): it runs now asynchronous methods and callbacks. + bpo-36674: unittest.TestCase.debug() raises now a unittest.SkipTest if the class or the test method are decorated with the skipping decorator. + bpo-45235: Fix an issue where argparse would not preserve values in a provided namespace when using a subparser with defaults. + bpo-45234: Fixed a regression in copyfile(), copy(), copy2() raising FileNotFoundError when source is a directory, which should raise IsADirectoryError + bpo-45228: Fix stack buffer overflow in parsing J1939 network address. + bpo-45192: Fix the tempfile._infer_return_type function so that the dir argument of the tempfile functions accepts an object implementing the os.PathLike protocol. + bpo-45160: When tracing a tkinter variable used by a ttk OptionMenu, callbacks are no longer made twice. + bpo-35474: Calling mimetypes.guess_all_extensions() with strict=False no longer affects the result of the following call with strict=True. Also, mutating the returned list no longer affects the global state. + bpo-45166: typing.get_type_hints() now works with Final wrapped in ForwardRef. + bpo-45097: Remove deprecation warnings about the loop argument in asyncio incorrectly emitted in cases when the user does not pass the loop argument. + bpo-45081: Fix issue when dataclasses that inherit from typing.Protocol subclasses have wrong __init__. Patch provided by Yurii Karabas. + bpo-24444: Fixed an error raised in argparse help display when help for an option is set to 1+ blank spaces or when choices arg is an empty container. + bpo-45021: Fix a potential deadlock at shutdown of forked children when using concurrent.futures module + bpo-45030: Fix integer overflow in pickling and copying the range iterator. + bpo-39039: tarfile.open raises ReadError when a zlib error occurs during file extraction. + bpo-44594: Fix an edge case of ExitStack and AsyncExitStack exception chaining. They will now match with block behavior when __context__ is explicitly set to None when the exception is in flight. * Documentation + bpo-45726: Improve documentation for functools.singledispatch() and functools.singledispatchmethod. + bpo-45680: Amend the docs on GenericAlias objects to clarify that non-container classes can also implement __class_getitem__. Patch contributed by Alex Waygood. + bpo-45655: Add a new "relevant PEPs" section to the top of the documentation for the typing module. Patch by Alex Waygood. + bpo-45604: Add level argument to multiprocessing.log_to_stderr function docs. + bpo-45464: Mention in the documentation of Built-in Exceptions that inheriting from multiple exception types in a single subclass is not recommended due to possible memory layout incompatibility. + bpo-45449: Add note about PEP 585 in collections.abc. + bpo-45516: Add protocol description to the importlib.abc.Traversable documentation. + bpo-20692: Add Programming FAQ entry explaining that int literal attribute access requires either a space after or parentheses around the literal. + bpo-45216: Remove extra documentation listing methods in difflib. It was rendering twice in pydoc and was outdated in some places. + bpo-45772: socket.socket documentation is corrected to a class from a function. + bpo-45392: Update the docstring of the type built-in to remove a redundant line and to mention keyword arguments for the constructor. * Tests + bpo-45578: Add tests for dis.distb() + bpo-45577: Add subtests for all pickle protocols in test_zoneinfo. + bpo-43592: test.libregrtest now raises the soft resource limit for the maximum number of file descriptors when the default is too low for our test suite as was often the case on macOS. + bpo-40173: Fix test.support.import_helper.import_fresh_module(). + bpo-45280: Add a test case for empty typing.NamedTuple. + bpo-45269: Cover case when invalid markers type is supplied to c_make_encoder. + bpo-45209: Fix UserWarning: resource_tracker warning in _test_multiprocessing._TestSharedMemory.test_shared_memory_cleaned_after_process_termination + bpo-45195: Fix test_readline.test_nonascii(): sometimes, the newline character is not written at the end, so don't expect it in the output. Patch by Victor Stinner. + bpo-45156: Fixes infinite loop on unittest.mock.seal() of mocks created by create_autospec(). + bpo-45042: Fixes that test classes decorated with @hashlib_helper.requires_hashdigest were skipped all the time. + bpo-45235: Reverted an argparse bugfix that caused regression in the handling of default arguments for subparsers. This prevented leaf level arguments from taking precedence over root level arguments. + bpo-45765: In importlib.metadata, fix distribution discovery for an empty path. + bpo-45644: In-place JSON file formatting using python3 -m json.tool infile infile now works correctly, previously it left the file empty. Patch by Chris Wesseling. * Build + bpo-43158: setup.py now uses values from configure script to build the _uuid extension module. Configure now detects util-linux's libuuid, too. + bpo-45571: Modules/Setup now use PY_CFLAGS_NODIST instead of PY_CFLAGS to compile shared modules. + bpo-45532: Update sys.version to use main as fallback information. Patch by Jeong YunWon. + bpo-45405: Prevent internal configure error when running configure with recent versions of non-Apple clang. Patch by David Bohman. + bpo-45220: Avoid building with the Windows 11 SDK previews automatically. This may be overridden by setting the DefaultWindowsSDKVersion environment variable before building. * C API + bpo-44687: BufferedReader.peek() no longer raises ValueError when the entire file has already been buffered. + bpo-44751: Remove crypt.h include from the public Python.h header. - rpm-build-python dependency is available on the current Factory, not with SLE. - BuildRequire rpm-build-python: The provider to inject python(abi) has been moved there. rpm-build pulls rpm-build-python automatically in when building anything against python3-base, but this implies that the initial build of python3-base does not trigger the automatic installation. - Update to 3.9.7: - Security - Replaced usage of tempfile.mktemp() with TemporaryDirectory to avoid a potential race condition. - Add auditing events to the marshal module, and stop raising code.__init__ events for every unmarshalled code object. Directly instantiated code objects will continue to raise an event, and audit event handlers should inspect or collect the raw marshal data. This reduces a significant performance overhead when loading from .pyc files. - Made the internal putcmd function in smtplib sanitize input for presence of \r and \n characters to avoid (unlikely) command injection. - Core and Builtins - Fixed pickling of range iterators that iterated for over 2**32 times. - Fix a race in WeakKeyDictionary, WeakValueDictionary and WeakSet when two threads attempt to commit the last pending removal. This fixes asyncio.create_task and fixes a data loss in asyncio.run where shutdown_asyncgens is not run - Fixed a corner case bug where the result of float.fromhex('0x.8p-1074') was rounded the wrong way. - Refine the syntax error for trailing commas in import statements. Patch by Pablo Galindo. - Restore behaviour of complex exponentiation with integer-valued exponent of type float or complex. - Correct the ast locations of f-strings with format specs and repeated expressions. Patch by Pablo Galindo - Use new trashcan macros (Py_TRASHCAN_BEGIN/END) in frameobject.c instead of the old ones (Py_TRASHCAN_SAFE_BEGIN/END). - Fix segmentation fault with deep recursion when cleaning method objects. Patch by Augusto Goulart and Pablo Galindo. - Fix bug where PyErr_SetObject hangs when the current exception has a cycle in its context chain. - Fix reference leaks in the error paths of update_bases() and __build_class__. Patch by Pablo Galindo. - Fix undefined behaviour in complex object exponentiation. - Remove uses of PyObject_GC_Del() in error path when initializing types.GenericAlias. - Remove the pass-through for hash() of weakref.proxy objects to prevent unintended consequences when the original referred object dies while the proxy is part of a hashable object. Patch by Pablo Galindo. - Fix ltrace functionality when exceptions are raised. Patch by Pablo Galindo - Fix a crash at Python exit when a deallocator function removes the last strong reference to a heap type. Patch by Victor Stinner. - Fix crash when using passing a non-exception to a generator's throw() method. Patch by Noah Oxer - Library - run() now always return a TestResult instance. Previously it returned None if the test class or method was decorated with a skipping decorator. - Fix bugs in cleaning up classes and modules in unittest: - Functions registered with addModuleCleanup() were not called unless the user defines tearDownModule() in their test module. - Functions registered with addClassCleanup() were not called if tearDownClass is set to None. - Buffering in TestResult did not work with functions registered with addClassCleanup() and addModuleCleanup(). - Errors in functions registered with addClassCleanup() and addModuleCleanup() were not handled correctly in buffered and debug modes. - Errors in setUpModule() and functions registered with addModuleCleanup() were reported in wrong order. - And several lesser bugs. - Made email date parsing more robust against malformed input, namely a whitespace-only Date: header. Patch by Wouter Bolsterlee. - Fix a crash in the signal handler of the faulthandler module: no longer modify the reference count of frame objects. Patch by Victor Stinner. - Method stopTestRun() is now always called in pair with method startTestRun() for TestResult objects implicitly created in run(). Previously it was not called for test methods and classes decorated with a skipping decorator. - argparse.BooleanOptionalAction's default value is no longer printed twice when used with argparse.ArgumentDefaultsHelpFormatter. - Upgrade bundled pip to 21.2.3 and setuptools to 57.4.0 - Fix the os.set_inheritable() function on FreeBSD 14 for file descriptor opened with the O_PATH flag: ignore the EBADF error on ioctl(), fallback on the fcntl() implementation. Patch by Victor Stinner. - The @functools.total_ordering() decorator now works with metaclasses. - sqlite3 user-defined functions and aggregators returning strings with embedded NUL characters are no longer truncated. Patch by Erlend E. Aasland. - Always show loop= arg deprecations in asyncio.gather() and asyncio.sleep() - Non-protocol subclasses of typing.Protocol ignore now the __init__ method inherited from protocol base classes. - The tokenize.tokenize() doesn't incorrectly generate a NEWLINE token if the source doesn't end with a new line character but the last line is a comment, as the function is already generating a NL token. Patch by Pablo Galindo - Fix http.client.HTTPSConnection fails to download >2GiB data. - rcompleter does not call getattr() on property objects to avoid the side-effect of evaluating the corresponding method. - weakref.proxy objects referencing non-iterators now raise TypeError rather than dereferencing the null tp_iternext slot and crashing. - The implementation of collections.abc.Set._hash() now matches that of frozenset.__hash__(). - Fixed issue in compileall.compile_file() when sys.stdout is redirected. Patch by Stefan Hölzl. - Give priority to using the current class constructor in inspect.signature(). Patch by Weipeng Hong. - Fix memory leak in _tkinter._flatten() if it is called with a sequence or set, but not list or tuple. - Update shutil.copyfile() to raise FileNotFoundError instead of confusing IsADirectoryError when a path ending with a os.path.sep does not exist; shutil.copy() and shutil.copy2() are also affected. - handle StopIteration subclass raised from @contextlib.contextmanager generator - Make the implementation consistency of indexOf() between C and Python versions. Patch by Dong-hee Na. - Fixes TypedDict to work with typing.get_type_hints() and postponed evaluation of annotations across modules. - Fix bug with pdb's handling of import error due to a package which does not have a __main__ module - Fixed an exception thrown while parsing a malformed multipart email by email.message.EmailMessage. - pathlib.PureWindowsPath.is_reserved() now identifies a greater range of reserved filenames, including those with trailing spaces or colons. - Handle exceptions from parsing the arg of pdb's run/restart command. - The sqlite3 context manager now performs a rollback (thus releasing the database lock) if commit failed. Patch by Luca Citi and Erlend E. Aasland. - Improved string handling for sqlite3 user-defined functions and aggregates: - It is now possible to pass strings with embedded null characters to UDFs - Conversion failures now correctly raise MemoryError - Patch by Erlend E. Aasland. - Handle RecursionError in TracebackException's constructor, so that long exceptions chains are truncated instead of causing traceback formatting to fail. - Fix email.message.EmailMessage.set_content() when called with binary data and 7bit content transfer encoding. - The compresslevel and preset keyword arguments of tarfile.open() are now both documented and tested. - Fixed a Y2k38 bug in the compileall module where it would fail to compile files with a modification time after the year 2038. - Fix test___all__ on platforms lacking a shared memory implementation. - Pass multiprocessing BaseProxy argument manager_owned through AutoProxy. - email.utils.getaddresses() now accepts email.header.Header objects along with string values. Patch by Zackery Spytz. - lib2to3 now recognizes async generators everywhere. - Fix TypeError when required subparsers without dest do not receive arguments. Patch by Anthony Sottile. - Documentation - Removed the othergui.rst file, any references to it, and the list of GUI frameworks in the FAQ. In their place I've added links to the Python Wiki page on GUI frameworks. - Update the definition of __future__ in the glossary by replacing the confusing word "pseudo-module" with a more accurate description. - Add typical examples to os.path.splitext docs - Clarify that shutil.make_archive() is not thread-safe due to reliance on changing the current working directory. - Update of three expired hyperlinks in Doc/distributing/index.rst: "Project structure", "Building and packaging the project", and "Uploading the project to the Python Packaging Index". - Updated the docstring and docs of filecmp.cmp() to be more accurate and less confusing especially in respect to shallow arg. - Match the docstring and python implementation of countOf() to the behavior of its c implementation. - List all kwargs for textwrap.wrap(), textwrap.fill(), and textwrap.shorten(). Now, there are nav links to attributes of TextWrap, which makes navigation much easier while minimizing duplication in the documentation. - Clarify that atexit uses equality comparisons internally. - Documentation of csv.Dialect is more descriptive. - Fix documentation for the return type of sysconfig.get_path(). - Add a "Security Considerations" index which links to standard library modules that have explicitly documented security considerations. - Remove the unqualified claim that tkinter is threadsafe. It has not been true for several years and likely never was. An explanation of what is true may be added later, after more discussion, and possibly after patching _tkinter.c, - Tests - Add calls of gc.collect() in tests to support PyPy. - Made tests relying on the _asyncio C extension module optional to allow running on alternative Python implementations. Patch by Serhiy Storchaka. - Fix auto history tests of test_readline: sometimes, the newline character is not written at the end, so don't expect it in the output. - Add ability to wholesale silence DeprecationWarnings while running the regression test suite. - Notify users running test_decimal regression tests on macOS of potential harmless "malloc can't allocate region" messages spewed by test_decimal. - Fixed floating point precision issue in turtle tests. - Regression tests, when run with -w, are now re-running only the affected test methods instead of re-running the entire test file. - Add test for nested queues when using multiprocessing shared objects AutoProxy[Queue] inside ListProxy and DictProxy - Add building with --with-system-libmpdec option (bsc#1189356). - test_faulthandler is still problematic under qemu linux-user emulation, disable it there - Reenable profileopt with qemu emulation, test_faulthandler is no longer run during profiling - bpo-44022 (bsc#1189241, CVE-2021-3737): http.client now avoids infinitely reading potential HTTP headers after a 100 Continue status response from the server. - bpo-43075 (CVE-2021-3733, bsc#1189287): Fix Regular Expression Denial of Service (ReDoS) vulnerability in urllib.request.AbstractBasicAuthHandler. The ReDoS-vulnerable regex has quadratic worst-case complexity and it allows cause a denial of service when identifying crafted invalid RFCs. This ReDoS issue is on the client side and needs remote attackers to control the HTTP server. libpython3_9-1_0-3.9.10-150300.4.8.1.x86_64.rpm libpython3_9-1_0-32bit-3.9.10-150300.4.8.1.x86_64.rpm python39-3.9.10-150300.4.8.2.src.rpm python39-3.9.10-150300.4.8.2.x86_64.rpm python39-32bit-3.9.10-150300.4.8.2.x86_64.rpm python39-base-3.9.10-150300.4.8.1.x86_64.rpm python39-base-32bit-3.9.10-150300.4.8.1.x86_64.rpm python39-core-3.9.10-150300.4.8.1.src.rpm python39-curses-3.9.10-150300.4.8.2.x86_64.rpm python39-dbm-3.9.10-150300.4.8.2.x86_64.rpm python39-devel-3.9.10-150300.4.8.1.x86_64.rpm python39-doc-3.9.10-150300.4.8.1.x86_64.rpm python39-doc-devhelp-3.9.10-150300.4.8.1.x86_64.rpm python39-documentation-3.9.10-150300.4.8.1.src.rpm python39-idle-3.9.10-150300.4.8.2.x86_64.rpm python39-testsuite-3.9.10-150300.4.8.1.x86_64.rpm python39-tk-3.9.10-150300.4.8.2.x86_64.rpm python39-tools-3.9.10-150300.4.8.1.x86_64.rpm libpython3_9-1_0-3.9.10-150300.4.8.1.s390x.rpm python39-3.9.10-150300.4.8.2.s390x.rpm python39-base-3.9.10-150300.4.8.1.s390x.rpm python39-curses-3.9.10-150300.4.8.2.s390x.rpm python39-dbm-3.9.10-150300.4.8.2.s390x.rpm python39-devel-3.9.10-150300.4.8.1.s390x.rpm python39-doc-3.9.10-150300.4.8.1.s390x.rpm python39-doc-devhelp-3.9.10-150300.4.8.1.s390x.rpm python39-idle-3.9.10-150300.4.8.2.s390x.rpm python39-testsuite-3.9.10-150300.4.8.1.s390x.rpm python39-tk-3.9.10-150300.4.8.2.s390x.rpm python39-tools-3.9.10-150300.4.8.1.s390x.rpm libpython3_9-1_0-3.9.10-150300.4.8.1.ppc64le.rpm python39-3.9.10-150300.4.8.2.ppc64le.rpm python39-base-3.9.10-150300.4.8.1.ppc64le.rpm python39-curses-3.9.10-150300.4.8.2.ppc64le.rpm python39-dbm-3.9.10-150300.4.8.2.ppc64le.rpm python39-devel-3.9.10-150300.4.8.1.ppc64le.rpm python39-doc-3.9.10-150300.4.8.1.ppc64le.rpm python39-doc-devhelp-3.9.10-150300.4.8.1.ppc64le.rpm python39-idle-3.9.10-150300.4.8.2.ppc64le.rpm python39-testsuite-3.9.10-150300.4.8.1.ppc64le.rpm python39-tk-3.9.10-150300.4.8.2.ppc64le.rpm python39-tools-3.9.10-150300.4.8.1.ppc64le.rpm libpython3_9-1_0-3.9.10-150300.4.8.1.aarch64.rpm python39-3.9.10-150300.4.8.2.aarch64.rpm python39-base-3.9.10-150300.4.8.1.aarch64.rpm python39-curses-3.9.10-150300.4.8.2.aarch64.rpm python39-dbm-3.9.10-150300.4.8.2.aarch64.rpm python39-devel-3.9.10-150300.4.8.1.aarch64.rpm python39-doc-3.9.10-150300.4.8.1.aarch64.rpm python39-doc-devhelp-3.9.10-150300.4.8.1.aarch64.rpm python39-idle-3.9.10-150300.4.8.2.aarch64.rpm python39-testsuite-3.9.10-150300.4.8.1.aarch64.rpm python39-tk-3.9.10-150300.4.8.2.aarch64.rpm python39-tools-3.9.10-150300.4.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-1273 important SUSE Updates openSUSE-SLE 15.3 This update for SDL fixes the following issues: - CVE-2020-14409: Fixed an integer overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c. (bsc#1181202) - CVE-2020-14410: Fixed a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c. (bsc#1181201) - CVE-2021-33657: Fixed a Heap overflow problem in video/SDL_pixels.c. (bsc#1198001) SDL-1.2.15-150000.3.19.1.src.rpm libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64.rpm libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64.rpm libSDL-devel-1.2.15-150000.3.19.1.x86_64.rpm libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64.rpm libSDL-1_2-0-1.2.15-150000.3.19.1.s390x.rpm libSDL-devel-1.2.15-150000.3.19.1.s390x.rpm libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le.rpm libSDL-devel-1.2.15-150000.3.19.1.ppc64le.rpm libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64.rpm libSDL-devel-1.2.15-150000.3.19.1.aarch64.rpm openSUSE-SLE-15.3-2022-915 moderate SUSE Updates openSUSE-SLE 15.3 This update for lapack fixes the following issues: - CVE-2021-4048: Fixed an out of bounds read when user input was not validated properly (bsc#1193562). blas-devel-3.5.0-4.6.1.x86_64.rpm blas-devel-32bit-3.5.0-4.6.1.x86_64.rpm blas-devel-static-3.5.0-4.6.1.x86_64.rpm blas-man-3.5.0-4.6.1.noarch.rpm lapack-3.5.0-4.6.1.src.rpm lapack-devel-3.5.0-4.6.1.x86_64.rpm lapack-devel-32bit-3.5.0-4.6.1.x86_64.rpm lapack-devel-static-3.5.0-4.6.1.x86_64.rpm lapack-man-3.5.0-4.6.1.noarch.rpm lapack-man-3.5.0-4.6.1.src.rpm lapacke-devel-3.5.0-4.6.1.x86_64.rpm lapacke-devel-32bit-3.5.0-4.6.1.x86_64.rpm lapacke-devel-static-3.5.0-4.6.1.x86_64.rpm libblas3-3.5.0-4.6.1.x86_64.rpm libblas3-32bit-3.5.0-4.6.1.x86_64.rpm liblapack3-3.5.0-4.6.1.x86_64.rpm liblapack3-32bit-3.5.0-4.6.1.x86_64.rpm liblapacke3-3.5.0-4.6.1.x86_64.rpm liblapacke3-32bit-3.5.0-4.6.1.x86_64.rpm blas-devel-3.5.0-4.6.1.s390x.rpm blas-devel-static-3.5.0-4.6.1.s390x.rpm lapack-devel-3.5.0-4.6.1.s390x.rpm lapack-devel-static-3.5.0-4.6.1.s390x.rpm lapacke-devel-3.5.0-4.6.1.s390x.rpm lapacke-devel-static-3.5.0-4.6.1.s390x.rpm libblas3-3.5.0-4.6.1.s390x.rpm liblapack3-3.5.0-4.6.1.s390x.rpm liblapacke3-3.5.0-4.6.1.s390x.rpm blas-devel-3.5.0-4.6.1.ppc64le.rpm blas-devel-static-3.5.0-4.6.1.ppc64le.rpm lapack-devel-3.5.0-4.6.1.ppc64le.rpm lapack-devel-static-3.5.0-4.6.1.ppc64le.rpm lapacke-devel-3.5.0-4.6.1.ppc64le.rpm lapacke-devel-static-3.5.0-4.6.1.ppc64le.rpm libblas3-3.5.0-4.6.1.ppc64le.rpm liblapack3-3.5.0-4.6.1.ppc64le.rpm liblapacke3-3.5.0-4.6.1.ppc64le.rpm blas-devel-3.5.0-4.6.1.aarch64.rpm blas-devel-static-3.5.0-4.6.1.aarch64.rpm lapack-devel-3.5.0-4.6.1.aarch64.rpm lapack-devel-static-3.5.0-4.6.1.aarch64.rpm lapacke-devel-3.5.0-4.6.1.aarch64.rpm lapacke-devel-static-3.5.0-4.6.1.aarch64.rpm libblas3-3.5.0-4.6.1.aarch64.rpm liblapack3-3.5.0-4.6.1.aarch64.rpm liblapacke3-3.5.0-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-682 important SUSE Updates openSUSE-SLE 15.3 This update for supportutils-plugin-suse-public-cloud fixes the following issues: - Update to version 1.0.6 (bsc#1195095, bsc#1195096) - Include cloud-init logs whenever they are present - Update the packages we track in AWS, Azure, and Google - Include the ecs logs for AWS ECS instances supportutils-plugin-suse-public-cloud-1.0.6-3.9.1.noarch.rpm supportutils-plugin-suse-public-cloud-1.0.6-3.9.1.src.rpm openSUSE-SLE-15.3-2022-845 moderate SUSE Updates openSUSE-SLE 15.3 This update for chrony fixes the following issues: Chrony was updated to 4.1, bringing features and bugfixes. Update to 4.1 * Add support for NTS servers specified by IP address (matching Subject Alternative Name in server certificate) * Add source-specific configuration of trusted certificates * Allow multiple files and directories with trusted certificates * Allow multiple pairs of server keys and certificates * Add copy option to server/pool directive * Increase PPS lock limit to 40% of pulse interval * Perform source selection immediately after loading dump files * Reload dump files for addresses negotiated by NTS-KE server * Update seccomp filter and add less restrictive level * Restart ongoing name resolution on online command * Fix dump files to not include uncorrected offset * Fix initstepslew to accept time from own NTP clients * Reset NTP address and port when no longer negotiated by NTS-KE server - Ensure the correct pool packages are installed for openSUSE and SLE (bsc#1180689). - Fix pool package dependencies, so that SLE prefers chrony-pool-suse over chrony-pool-empty. (bsc#1194229) - Enable syscallfilter unconditionally [bsc#1181826]. Update to 4.0 - Enhancements - Add support for Network Time Security (NTS) authentication - Add support for AES-CMAC keys (AES128, AES256) with Nettle - Add authselectmode directive to control selection of unauthenticated sources - Add binddevice, bindacqdevice, bindcmddevice directives - Add confdir directive to better support fragmented configuration - Add sourcedir directive and "reload sources" command to support dynamic NTP sources specified in files - Add clockprecision directive - Add dscp directive to set Differentiated Services Code Point (DSCP) - Add -L option to limit log messages by severity - Add -p option to print whole configuration with included files - Add -U option to allow start under non-root user - Allow maxsamples to be set to 1 for faster update with -q/-Q option - Avoid replacing NTP sources with sources that have unreachable address - Improve pools to repeat name resolution to get "maxsources" sources - Improve source selection with trusted sources - Improve NTP loop test to prevent synchronisation to itself - Repeat iburst when NTP source is switched from offline state to online - Update clock synchronisation status and leap status more frequently - Update seccomp filter - Add "add pool" command - Add "reset sources" command to drop all measurements - Add authdata command to print details about NTP authentication - Add selectdata command to print details about source selection - Add -N option and sourcename command to print original names of sources - Add -a option to some commands to print also unresolved sources - Add -k, -p, -r options to clients command to select, limit, reset data - Bug fixes - Don’t set interface for NTP responses to allow asymmetric routing - Handle RTCs that don’t support interrupts - Respond to command requests with correct address on multihomed hosts - Removed features - Drop support for RIPEMD keys (RMD128, RMD160, RMD256, RMD320) - Drop support for long (non-standard) MACs in NTPv4 packets (chrony 2.x clients using non-MD5/SHA1 keys need to use option "version 3") - Drop support for line editing with GNU Readline - By default we don't write log files but log to journald, so only recommend logrotate. - Adjust and rename the sysconfig file, so that it matches the expectations of chronyd.service (bsc#1173277). Update to 3.5.1: * Create new file when writing pidfile (CVE-2020-14367, bsc#1174911) - Fixes for %_libexecdir changing to /usr/libexec (bsc#1174075) - Use iburst in the default pool statements to speed up initial synchronisation (bsc#1172113). Update to 3.5: + Add support for more accurate reading of PHC on Linux 5.0 + Add support for hardware timestamping on interfaces with read-only timestamping configuration + Add support for memory locking and real-time priority on FreeBSD, NetBSD, Solaris + Update seccomp filter to work on more architectures + Validate refclock driver options + Fix bindaddress directive on FreeBSD + Fix transposition of hardware RX timestamp on Linux 4.13 and later + Fix building on non-glibc systems - Fix location of helper script in chrony-dnssrv@.service (bsc#1128846). - Read runtime servers from /var/run/netconfig/chrony.servers to fix bsc#1099272. - Move chrony-helper to /usr/lib/chrony/helper, because there should be no executables in /usr/share. Update to version 3.4 * Enhancements + Add filter option to server/pool/peer directive + Add minsamples and maxsamples options to hwtimestamp directive + Add support for faster frequency adjustments in Linux 4.19 + Change default pidfile to /var/run/chrony/chronyd.pid to allow chronyd without root privileges to remove it on exit + Disable sub-second polling intervals for distant NTP sources + Extend range of supported sub-second polling intervals + Get/set IPv4 destination/source address of NTP packets on FreeBSD + Make burst options and command useful with short polling intervals + Modify auto_offline option to activate when sending request failed + Respond from interface that received NTP request if possible + Add onoffline command to switch between online and offline state according to current system network configuration + Improve example NetworkManager dispatcher script * Bug fixes + Avoid waiting in Linux getrandom system call + Fix PPS support on FreeBSD and NetBSD Update to version 3.3 * Enhancements: + Add burst option to server/pool directive + Add stratum and tai options to refclock directive + Add support for Nettle crypto library + Add workaround for missing kernel receive timestamps on Linux + Wait for late hardware transmit timestamps + Improve source selection with unreachable sources + Improve protection against replay attacks on symmetric mode + Allow PHC refclock to use socket in /var/run/chrony + Add shutdown command to stop chronyd + Simplify format of response to manual list command + Improve handling of unknown responses in chronyc * Bug fixes: + Respond to NTPv1 client requests with zero mode + Fix -x option to not require CAP_SYS_TIME under non-root user + Fix acquisitionport directive to work with privilege separation + Fix handling of socket errors on Linux to avoid high CPU usage + Fix chronyc to not get stuck in infinite loop after clock step augeas-1.10.1-3.9.1.src.rpm augeas-1.10.1-3.9.1.x86_64.rpm augeas-devel-1.10.1-3.9.1.x86_64.rpm augeas-devel-32bit-1.10.1-3.9.1.x86_64.rpm augeas-lense-tests-1.10.1-3.9.1.x86_64.rpm augeas-lenses-1.10.1-3.9.1.x86_64.rpm chrony-4.1-150300.16.3.1.src.rpm chrony-4.1-150300.16.3.1.x86_64.rpm chrony-pool-empty-4.1-150300.16.3.1.noarch.rpm chrony-pool-openSUSE-4.1-150300.16.3.1.noarch.rpm chrony-pool-suse-4.1-150300.16.3.1.noarch.rpm libaugeas0-1.10.1-3.9.1.x86_64.rpm libaugeas0-32bit-1.10.1-3.9.1.x86_64.rpm augeas-1.10.1-3.9.1.s390x.rpm augeas-devel-1.10.1-3.9.1.s390x.rpm augeas-lense-tests-1.10.1-3.9.1.s390x.rpm augeas-lenses-1.10.1-3.9.1.s390x.rpm chrony-4.1-150300.16.3.1.s390x.rpm libaugeas0-1.10.1-3.9.1.s390x.rpm augeas-1.10.1-3.9.1.ppc64le.rpm augeas-devel-1.10.1-3.9.1.ppc64le.rpm augeas-lense-tests-1.10.1-3.9.1.ppc64le.rpm augeas-lenses-1.10.1-3.9.1.ppc64le.rpm chrony-4.1-150300.16.3.1.ppc64le.rpm libaugeas0-1.10.1-3.9.1.ppc64le.rpm augeas-1.10.1-3.9.1.aarch64.rpm augeas-devel-1.10.1-3.9.1.aarch64.rpm augeas-lense-tests-1.10.1-3.9.1.aarch64.rpm augeas-lenses-1.10.1-3.9.1.aarch64.rpm chrony-4.1-150300.16.3.1.aarch64.rpm libaugeas0-1.10.1-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-802 important SUSE Updates openSUSE-SLE 15.3 This update for python-libxml2-python fixes the following issues: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes (bsc#1196490). python-libxml2-python-2.9.7-3.40.1.src.rpm python2-libxml2-python-2.9.7-3.40.1.x86_64.rpm python3-libxml2-python-2.9.7-3.40.1.x86_64.rpm python2-libxml2-python-2.9.7-3.40.1.s390x.rpm python3-libxml2-python-2.9.7-3.40.1.s390x.rpm python2-libxml2-python-2.9.7-3.40.1.ppc64le.rpm python3-libxml2-python-2.9.7-3.40.1.ppc64le.rpm python2-libxml2-python-2.9.7-3.40.1.aarch64.rpm python3-libxml2-python-2.9.7-3.40.1.aarch64.rpm openSUSE-SLE-15.3-2022-768 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. Transient execution side-channel attacks attacking the Branch History Buffer (BHB), named "Branch Target Injection" and "Intra-Mode Branch History Injection" are now mitigated. The following security bugs were fixed: - CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580). - CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580). - CVE-2022-0847: Fixed a vulnerability were a local attackers could overwrite data in arbitrary (read-only) files (bsc#1196584). - CVE-2022-0617: Fixed a null pointer dereference in UDF file system functionality. A local user could crash the system by triggering udf_file_write_iter() via a malicious UDF image. (bsc#1196079) - CVE-2022-0644: Fixed a denial of service by a local user. A assertion failure could be triggered in kernel_read_file_from_fd() (bsc#1196155). - CVE-2021-44879: In gc_data_segment() in fs/f2fs/gc.c, special files were not considered, which lead to a move_data_page NULL pointer dereference (bsc#1195987). - CVE-2022-24959: Fixed a memory leak in yam_siocdevprivate() in drivers/net/hamradio/yam.c (bsc#1195897). - CVE-2022-0487: A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove() in drivers/memstick/host/rtsx_usb_ms.c (bsc#1194516). - CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543). - CVE-2022-24448: Fixed an issue in fs/nfs/dir.c. If an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should have occured, but the server instead returned uninitialized data in the file descriptor (bsc#1195612). The following non-security bugs were fixed: - crypto: af_alg - get_page upon reassignment to TX SGL (bsc#1195840). - lib/iov_iter: initialize "flags" in new pipe_buffer (bsc#1196584). kernel-debug-4.12.14-197.108.1.nosrc.rpm True kernel-debug-base-4.12.14-197.108.1.x86_64.rpm True kernel-default-4.12.14-197.108.1.nosrc.rpm True kernel-kvmsmall-4.12.14-197.108.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-197.108.1.x86_64.rpm True kernel-vanilla-4.12.14-197.108.1.nosrc.rpm True kernel-vanilla-4.12.14-197.108.1.x86_64.rpm True kernel-vanilla-base-4.12.14-197.108.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-197.108.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64.rpm True kernel-default-man-4.12.14-197.108.1.s390x.rpm True kernel-vanilla-4.12.14-197.108.1.s390x.rpm True kernel-vanilla-base-4.12.14-197.108.1.s390x.rpm True kernel-vanilla-devel-4.12.14-197.108.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x.rpm True kernel-zfcpdump-4.12.14-197.108.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-197.108.1.s390x.rpm True kernel-debug-base-4.12.14-197.108.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.108.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-197.108.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-197.108.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.108.1.aarch64.rpm True kernel-vanilla-base-4.12.14-197.108.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-197.108.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64.rpm True openSUSE-SLE-15.3-2022-720 moderate SUSE Updates openSUSE-SLE 15.3 This update for containerd fixes the following issues: - CVE-2022-23648: A specially-crafted image configuration could gain access to read-only copies of arbitrary files and directories on the host (bsc#1196441). containerd-1.4.12-63.1.src.rpm containerd-1.4.12-63.1.x86_64.rpm containerd-ctr-1.4.12-63.1.x86_64.rpm containerd-1.4.12-63.1.s390x.rpm containerd-ctr-1.4.12-63.1.s390x.rpm containerd-1.4.12-63.1.ppc64le.rpm containerd-ctr-1.4.12-63.1.ppc64le.rpm containerd-1.4.12-63.1.aarch64.rpm containerd-ctr-1.4.12-63.1.aarch64.rpm openSUSE-SLE-15.3-2022-755 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. Transient execution side-channel attacks attacking the Branch History Buffer (BHB), named "Branch Target Injection" and "Intra-Mode Branch History Injection" are now mitigated. The following security bugs were fixed: - CVE-2022-0847: Fixed a vulnerability were a local attackers could overwrite data in arbitrary (read-only) files (bsc#1196584). - CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580). - CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580). - CVE-2022-25375: The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory (bsc#1196235). - CVE-2022-0516: Fixed missing check in ioctl related to KVM in s390 allows kernel memory read/write (bsc#1195516). - CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543). The following non-security bugs were fixed: - ACPI/IORT: Check node revision for PMCG resources (git-fixes). - ALSA: hda/realtek: Add missing fixup-model entry for Gigabyte X570 ALC1220 quirks (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GU603 (git-fixes). - ALSA: hda/realtek: Fix silent output on Gigabyte X570 Aorus Xtreme after reboot from Windows (git-fixes). - ALSA: hda/realtek: Fix silent output on Gigabyte X570S Aorus Master (newer chipset) (git-fixes). - ALSA: hda: Fix missing codec probe on Shenker Dock 15 (git-fixes). - ALSA: hda: Fix regression on forced probe mask option (git-fixes). - ALSA: usb-audio: Correct quirk for VF0770 (git-fixes). - ALSA: usb-audio: initialize variables that could ignore errors (git-fixes). - ASoC: Revert "ASoC: mediatek: Check for error clk pointer" (git-fixes). - ASoC: cpcap: Check for NULL pointer after calling of_get_child_by_name (git-fixes). - ASoC: fsl: Add missing error handling in pcm030_fabric_probe (git-fixes). - ASoC: max9759: fix underflow in speaker_gain_control_put() (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw() (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw_range() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_volsw() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_volsw_sx() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() (git-fixes). - ASoC: xilinx: xlnx_formatter_pcm: Make buffer bytes multiple of period bytes (git-fixes). - Align s390 NVME target options with other architectures (bsc#1188404, jsc#SLE-22494). - Bluetooth: refactor malicious adv data check (git-fixes). - EDAC/xgene: Fix deferred probing (bsc#1178134). - HID:Add support for UGTABLET WP5540 (git-fixes). - IB/cm: Avoid a loop when device has 255 ports (git-fixes) - IB/cma: Do not send IGMP leaves for sendonly Multicast groups (git-fixes). - IB/hfi1: Fix AIP early init panic (jsc#SLE-13208). - IB/hfi1: Fix error return code in parse_platform_config() (git-fixes) - IB/hfi1: Use kzalloc() for mmu_rb_handler allocation (git-fixes) - IB/isert: Fix a use after free in isert_connect_request (git-fixes) - IB/mlx4: Separate tunnel and wire bufs parameters (git-fixes) - IB/mlx5: Add missing error code (git-fixes) - IB/mlx5: Add mutex destroy call to cap_mask_mutex mutex (git-fixes) - IB/mlx5: Fix error unwinding when set_has_smi_cap fails (git-fixes) - IB/mlx5: Return appropriate error code instead of ENOMEM (git-fixes) - IB/umad: Return EIO in case of when device disassociated (git-fixes) - IB/umad: Return EPOLLERR in case of when device disassociated (git-fixes) - Input: wm97xx: Simplify resource management (git-fixes). - KVM: remember position in kvm->vcpus array (bsc#1190972 LTC#194674). - NFS: Ensure the server had an up to date ctime before renaming (git-fixes). - NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1195957). - NFSv4: Handle case where the lookup of a directory fails (git-fixes). - NFSv4: nfs_atomic_open() can race when looking up a non-regular file (git-fixes). - PM: hibernate: Remove register_nosave_region_late() (git-fixes). - PM: s2idle: ACPI: Fix wakeup interrupts handling (git-fixes). - PM: wakeup: simplify the output logic of pm_show_wakelocks() (git-fixes). - RDMA/addr: Be strict with gid size (git-fixes) - RDMA/bnxt_re: Fix a double free in bnxt_qplib_alloc_res (git-fixes) - RDMA/bnxt_re: Fix error return code in bnxt_qplib_cq_process_terminal() (git-fixes) - RDMA/bnxt_re: Set queue pair state when being queried (git-fixes) - RDMA/cm: Fix an attempt to use non-valid pointer when cleaning timewait (git-fixes) - RDMA/cma: Use correct address when leaving multicast group (bsc#1181147). - RDMA/core: Always release restrack object (git-fixes) - RDMA/core: Do not access cm_id after its destruction (git-fixes) - RDMA/core: Do not indicate device ready when device enablement fails (git-fixes) - RDMA/core: Fix corrupted SL on passive side (git-fixes) - RDMA/core: Unify RoCE check and re-factor code (git-fixes) - RDMA/cxgb4: Fix adapter LE hash errors while destroying ipv6 listening server (git-fixes) - RDMA/cxgb4: Fix the reported max_recv_sge value (git-fixes) - RDMA/cxgb4: Validate the number of CQEs (git-fixes) - RDMA/cxgb4: add missing qpid increment (git-fixes) - RDMA/cxgb4: check for ipv6 address properly while destroying listener (git-fixes) - RDMA/hns: Add a check for current state before modifying QP (git-fixes) - RDMA/hns: Remove the portn field in UD SQ WQE (git-fixes) - RDMA/hns: Remove unnecessary access right set during INIT2INIT (git-fixes) - RDMA/i40iw: Address an mmap handler exploit in i40iw (git-fixes) - RDMA/i40iw: Fix error unwinding when i40iw_hmc_sd_one fails (git-fixes) - RDMA/mlx5: Fix corruption of reg_pages in mlx5_ib_rereg_user_mr() (git-fixes) - RDMA/mlx5: Fix potential race between destroy and CQE poll (git-fixes) - RDMA/mlx5: Fix query DCT via DEVX (git-fixes) - RDMA/mlx5: Fix type warning of sizeof in __mlx5_ib_alloc_counters() (git-fixes) - RDMA/mlx5: Fix wrong free of blue flame register on error (git-fixes) - RDMA/mlx5: Issue FW command to destroy SRQ on reentry (git-fixes) - RDMA/mlx5: Recover from fatal event in dual port mode (git-fixes) - RDMA/mlx5: Use the correct obj_id upon DEVX TIR creation (git-fixes) - RDMA/ocrdma: Fix use after free in ocrdma_dealloc_ucontext_pd() (git-fixes) - RDMA/rxe: Clear all QP fields if creation failed (git-fixes) - RDMA/rxe: Compute PSN windows correctly (git-fixes) - RDMA/rxe: Correct skb on loopback path (git-fixes) - RDMA/rxe: Fix coding error in rxe_rcv_mcast_pkt (git-fixes) - RDMA/rxe: Fix coding error in rxe_recv.c (git-fixes) - RDMA/rxe: Fix missing kconfig dependency on CRYPTO (git-fixes) - RDMA/rxe: Remove useless code in rxe_recv.c (git-fixes) - RDMA/siw: Fix a use after free in siw_alloc_mr (git-fixes) - RDMA/siw: Fix calculation of tx_valid_cpus size (git-fixes) - RDMA/siw: Fix handling of zero-sized Read and Receive Queues. (git-fixes) - RDMA/siw: Properly check send and receive CQ pointers (git-fixes) - RDMA/siw: Release xarray entry (git-fixes) - RDMA/ucma: Protect mc during concurrent multicast leaves (bsc#1181147). - RDMA/usnic: Fix memleak in find_free_vf_and_create_qp_grp (git-fixes) - RDMA/uverbs: Fix a NULL vs IS_ERR() bug (git-fixes) - RDMA/uverbs: Tidy input validation of ib_uverbs_rereg_mr() (git-fixes) - RMDA/sw: Do not allow drivers using dma_virt_ops on highmem configs (git-fixes) - USB: core: Fix hang in usb_kill_urb by adding memory barriers (git-fixes). - USB: serial: ch341: add support for GW Instek USB2.0-Serial devices (git-fixes). - USB: serial: cp210x: add CPI Bulk Coin Recycler id (git-fixes). - USB: serial: cp210x: add NCR Retail IO box id (git-fixes). - USB: serial: ftdi_sio: add support for Brainboxes US-159/235/320 (git-fixes). - USB: serial: mos7840: fix probe error handling (git-fixes). - USB: serial: mos7840: remove duplicated 0xac24 device ID (git-fixes). - USB: serial: option: add ZTE MF286D modem (git-fixes). - ata: libata-core: Disable TRIM on M88V29 (git-fixes). - ax25: improve the incomplete fix to avoid UAF and NPD bugs (git-fixes). - blk-cgroup: fix missing put device in error path from blkg_conf_pref() (bsc#1195481). - blk-mq: always allow reserved allocation in hctx_may_queue (bsc#1193787). - blk-mq: avoid to iterate over stale request (bsc#1193787). - blk-mq: clear stale request in tags->rq before freeing one request pool (bsc#1193787). - blk-mq: clearing flush request reference in tags->rqs (bsc#1193787). - blk-mq: do not grab rq's refcount in blk_mq_check_expired() (bsc#1193787 git-fixes). - blk-mq: fix is_flush_rq (bsc#1193787 git-fixes). - blk-mq: fix kernel panic during iterating over flush request (bsc#1193787 git-fixes). - blk-mq: grab rq->refcount before calling ->fn in blk_mq_tagset_busy_iter (bsc#1193787). - blk-mq: introduce blk_mq_set_request_complete (git-fixes). - blk-mq: mark flush request as IDLE in flush_end_io() (bsc#1193787). - blk-tag: Hide spin_lock (bsc#1193787). - block: avoid double io accounting for flush request (bsc#1193787). - block: do not send a rezise udev event for hidden block device (bsc#1193096). - block: mark flush request as IDLE when it is really finished (bsc#1193787). - bonding: pair enable_port with slave_arr_updates (git-fixes). - bpf: Adjust BTF log size limit (git-fixes). - bpf: Disallow BPF_LOG_KERNEL log level for bpf(BPF_BTF_LOAD) (git-fixes). - btrfs: check for missing device in btrfs_trim_fs (bsc#1195701). - btrfs: check worker before need_preemptive_reclaim (bsc#1196195). - btrfs: do not do preemptive flushing if the majority is global rsv (bsc#1196195). - btrfs: do not include the global rsv size in the preemptive used amount (bsc#1196195). - btrfs: handle preemptive delalloc flushing slightly differently (bsc#1196195). - btrfs: make sure SB_I_VERSION does not get unset by remount (bsc#1192210). - btrfs: only clamp the first time we have to start flushing (bsc#1196195). - btrfs: only ignore delalloc if delalloc is much smaller than ordered (bsc#1196195). - btrfs: reduce the preemptive flushing threshold to 90% (bsc#1196195). - btrfs: take into account global rsv in need_preemptive_reclaim (bsc#1196195). - btrfs: use the global rsv size in the preemptive thresh calculation (bsc#1196195). - ceph: properly put ceph_string reference after async create attempt (bsc#1195798). - ceph: set pool_ns in new inode layout for async creates (bsc#1195799). - dma-buf: heaps: Fix potential spectre v1 gadget (git-fixes). - drm/amdgpu: fix logic inversion in check (git-fixes). - drm/i915/gvt: Make DRM_I915_GVT depend on X86 (git-fixes). - drm/i915/gvt: clean up kernel-doc in gtt.c (git-fixes). - drm/i915/opregion: check port number bounds for SWSCI display power state (git-fixes). - drm/i915/overlay: Prevent divide by zero bugs in scaling (git-fixes). - drm/i915: Correctly populate use_sagv_wm for all pipes (git-fixes). - drm/i915: Fix bw atomic check when switching between SAGV vs. no SAGV (git-fixes). - drm/msm/dsi: Fix missing put_device() call in dsi_get_phy (git-fixes). - drm/nouveau: fix off by one in BIOS boundary checking (git-fixes). - drm/panel: simple: Assign data from panel_dpi_probe() correctly (git-fixes). - drm/radeon: Fix backlight control on iMac 12,1 (git-fixes). - drm/rockchip: dw_hdmi: Do not leave clock enabled in error case (git-fixes). - drm/rockchip: vop: Correct RK3399 VOP register fields (git-fixes). - drm/vc4: hdmi: Allow DBLCLK modes even if horz timing is odd (git-fixes). - drm: panel-orientation-quirks: Add quirk for the 1Netbook OneXPlayer (git-fixes). - ext4: check for inconsistent extents between index and leaf block (bsc#1194163 bsc#1196339). - ext4: check for out-of-order index extents in ext4_valid_extent_entries() (bsc#1194163 bsc#1196339). - ext4: fix an use-after-free issue about data=journal writeback mode (bsc#1195482). - ext4: make sure quota gets properly shutdown on error (bsc#1195480). - ext4: prevent partial update of the extent blocks (bsc#1194163 bsc#1196339). - fsnotify: fix fsnotify hooks in pseudo filesystems (bsc#1195479). - fsnotify: invalidate dcache before IN_DELETE event (bsc#1195478). - gve: Add RX context (bsc#1191655). - gve: Add a jumbo-frame device option (bsc#1191655). - gve: Add consumed counts to ethtool stats (bsc#1191655). - gve: Add optional metadata descriptor type GVE_TXD_MTD (bsc#1191655). - gve: Correct order of processing device options (bsc#1191655). - gve: Fix GFP flags when allocing pages (git-fixes). - gve: Fix off by one in gve_tx_timeout() (bsc#1191655). - gve: Implement packet continuation for RX (bsc#1191655). - gve: Implement suspend/resume/shutdown (bsc#1191655). - gve: Move the irq db indexes out of the ntfy block struct (bsc#1191655). - gve: Recording rx queue before sending to napi (bsc#1191655). - gve: Recover from queue stall due to missed IRQ (bsc#1191655). - gve: Update gve_free_queue_page_list signature (bsc#1191655). - gve: Use kvcalloc() instead of kvzalloc() (bsc#1191655). - gve: fix for null pointer dereference (bsc#1191655). - gve: fix the wrong AdminQ buffer queue index check (bsc#1176940). - gve: fix unmatched u64_stats_update_end() (bsc#1191655). - gve: remove memory barrier around seqno (bsc#1191655). - i2c: brcmstb: fix support for DSL and CM variants (git-fixes). - i40e: Fix for failed to init adminq while VF reset (git-fixes). - i40e: Fix issue when maximum queues is exceeded (git-fixes). - i40e: Fix queues reservation for XDP (git-fixes). - i40e: Increase delay to 1 s after global EMP reset (git-fixes). - i40e: fix unsigned stat widths (git-fixes). - i40iw: Add support to make destroy QP synchronous (git-fixes) - ibmvnic: Allow queueing resets during probe (bsc#1196516 ltc#196391). - ibmvnic: clear fop when retrying probe (bsc#1196516 ltc#196391). - ibmvnic: complete init_done on transport events (bsc#1196516 ltc#196391). - ibmvnic: define flush_reset_queue helper (bsc#1196516 ltc#196391). - ibmvnic: do not release napi in __ibmvnic_open() (bsc#1195668 ltc#195811). - ibmvnic: free reset-work-item when flushing (bsc#1196516 ltc#196391). - ibmvnic: init init_done_rc earlier (bsc#1196516 ltc#196391). - ibmvnic: initialize rc before completing wait (bsc#1196516 ltc#196391). - ibmvnic: register netdev after init of adapter (bsc#1196516 ltc#196391). - ibmvnic: schedule failover only if vioctl fails (bsc#1196400 ltc#195815). - ice: fix IPIP and SIT TSO offload (git-fixes). - ice: fix an error code in ice_cfg_phy_fec() (jsc#SLE-12878). - ima: Allow template selection with ima_template[_fmt]= after ima_hash= (git-fixes). - ima: Do not print policy rule with inactive LSM labels (git-fixes). - ima: Remove ima_policy file before directory (git-fixes). - integrity: Make function integrity_add_key() static (git-fixes). - integrity: check the return value of audit_log_start() (git-fixes). - integrity: double check iint_cache was initialized (git-fixes). - iommu/amd: Fix loop timeout issue in iommu_ga_log_enable() (git-fixes). - iommu/amd: Remove useless irq affinity notifier (git-fixes). - iommu/amd: Restore GA log/tail pointer on host resume (git-fixes). - iommu/amd: X2apic mode: mask/unmask interrupts on suspend/resume (git-fixes). - iommu/amd: X2apic mode: re-enable after resume (git-fixes). - iommu/amd: X2apic mode: setup the INTX registers on mask/unmask (git-fixes). - iommu/io-pgtable-arm-v7s: Add error handle for page table allocation failure (git-fixes). - iommu/io-pgtable-arm: Fix table descriptor paddr formatting (git-fixes). - iommu/iova: Fix race between FQ timeout and teardown (git-fixes). - iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping() (git-fixes). - iwlwifi: fix use-after-free (git-fixes). - iwlwifi: pcie: fix locking when "HW not ready" (git-fixes). - iwlwifi: pcie: gen2: fix locking when "HW not ready" (git-fixes). - ixgbevf: Require large buffers for build_skb on 82599VF (git-fixes). - kABI fixup after adding vcpu_idx to struct kvm_cpu (bsc#1190972 LTC#194674). - kABI: Fix kABI for AMD IOMMU driver (git-fixes). - kabi: Hide changes to s390/AP structures (jsc#SLE-20807). - lib/iov_iter: initialize "flags" in new pipe_buffer (bsc#1196584). - libsubcmd: Fix use-after-free for realloc(..., 0) (git-fixes). - md/raid5: fix oops during stripe resizing (bsc#1181588). - misc: fastrpc: avoid double fput() on failed usercopy (git-fixes). - mmc: sdhci-of-esdhc: Check for error num after setting mask (git-fixes). - mtd: rawnand: brcmnand: Fixed incorrect sub-page ECC status (git-fixes). - mtd: rawnand: gpmi: do not leak PM reference in error path (git-fixes). - mtd: rawnand: qcom: Fix clock sequencing in qcom_nandc_probe() (git-fixes). - net/ibmvnic: Cleanup workaround doing an EOI after partition migration (bsc#1089644 ltc#166495 ltc#165544 git-fixes). - net/mlx5e: Fix handling of wrong devices during bond netevent (jsc#SLE-15172). - net: macb: Align the dma and coherent dma masks (git-fixes). - net: mdio: aspeed: Add missing MODULE_DEVICE_TABLE (bsc#1176447). - net: phy: marvell: Fix MDI-x polarity setting in 88e1118-compatible PHYs (git-fixes). - net: phy: marvell: Fix RGMII Tx/Rx delays setting in 88e1121-compatible PHYs (git-fixes). - net: phy: marvell: configure RGMII delays for 88E1118 (git-fixes). - net: usb: qmi_wwan: Add support for Dell DW5829e (git-fixes). - nfp: flower: fix ida_idx not being released (bsc#1154353). - nfsd: allow delegation state ids to be revoked and then freed (bsc#1192483). - nfsd: allow lock state ids to be revoked and then freed (bsc#1192483). - nfsd: allow open state ids to be revoked and then freed (bsc#1192483). - nfsd: do not admin-revoke NSv4.0 state ids (bsc#1192483). - nfsd: prepare for supporting admin-revocation of state (bsc#1192483). - nvme-core: use list_add_tail_rcu instead of list_add_tail for nvme_init_ns_head (git-fixes). - nvme-fabrics: avoid double completions in nvmf_fail_nonready_command (git-fixes). - nvme-fabrics: fix state check in nvmf_ctlr_matches_baseopts() (bsc#1195012). - nvme-fabrics: ignore invalid fast_io_fail_tmo values (git-fixes). - nvme-fabrics: remove superfluous nvmf_host_put in nvmf_parse_options (git-fixes). - nvme-multipath: fix ANA state updates when a namespace is not present (git-fixes). - nvme-tcp: fix data digest pointer calculation (git-fixes). - nvme-tcp: fix incorrect h2cdata pdu offset accounting (git-fixes). - nvme-tcp: fix memory leak when freeing a queue (git-fixes). - nvme-tcp: fix possible use-after-completion (git-fixes). - nvme-tcp: validate R2T PDU in nvme_tcp_handle_r2t() (git-fixes). - nvme: also mark passthrough-only namespaces ready in nvme_update_ns_info (git-fixes). - nvme: do not return an error from nvme_configure_metadata (git-fixes). - nvme: fix use after free when disconnecting a reconnecting ctrl (git-fixes). - nvme: introduce a nvme_host_path_error helper (git-fixes). - nvme: let namespace probing continue for unsupported features (git-fixes). - nvme: refactor ns->ctrl by request (git-fixes). - pinctrl: intel: Fix a glitch when updating IRQ flags on a preconfigured line (git-fixes). - pinctrl: intel: fix unexpected interrupt (git-fixes). - powerpc/64: Move paca allocation later in boot (bsc#1190812). - powerpc/64s: Fix debugfs_simple_attr.cocci warnings (bsc#1157038 bsc#1157923 ltc#182612 git-fixes). - powerpc/perf: Fix power_pmu_disable to call clear_pmi_irq_pending only if PMI is pending (bsc#1156395). - powerpc/pseries/ddw: Revert "Extend upper limit for huge DMA window for persistent memory" (bsc#1195995 ltc#196394). - powerpc/pseries: read the lpar name from the firmware (bsc#1187716 ltc#193451). - powerpc: Set crashkernel offset to mid of RMA region (bsc#1190812). - powerpc: add link stack flush mitigation status in debugfs (bsc#1157038 bsc#1157923 ltc#182612 git-fixes). - rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev (git-fixes). - rpmsg: char: Fix race between the release of rpmsg_eptdev and cdev (git-fixes). - s390/AP: support new dynamic AP bus size limit (jsc#SLE-20807). - s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant (git-fixes). - s390/bpf: Fix optimizing out zero-extensions (git-fixes). - s390/cio: make ccw_device_dma_* more robust (bsc#1193243 LTC#195549). - s390/cio: verify the driver availability for path_event call (bsc#1195928 LTC#196418). - s390/cpumf: Support for CPU Measurement Facility CSVN 7 (bsc#1195081 LTC#196088). - s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (bsc#1195081 LTC#196088). - s390/pci: add s390_iommu_aperture kernel parameter (bsc#1193233 LTC#195540). - s390/pci: move pseudo-MMIO to prevent MIO overlap (bsc#1194967 LTC#196028). - s390/protvirt: fix error return code in uv_info_init() (jsc#SLE-22135). - s390/sclp: fix Secure-IPL facility detection (bsc#1191741 LTC#194816). - s390/uv: add prot virt guest/host indication files (jsc#SLE-22135). - s390/uv: fix prot virt host indication compilation (jsc#SLE-22135). - scripts/dtc: only append to HOST_EXTRACFLAGS instead of overwriting (git-fixes). - scsi: core: Add a new error code DID_TRANSPORT_MARGINAL in scsi.h (bsc#1195506). - scsi: core: Add limitless cmd retry support (bsc#1195506). - scsi: core: No retries on abort success (bsc#1195506). - scsi: kABI fix for 'eh_should_retry_cmd' (bsc#1195506). - scsi: lpfc: Add support for eh_should_retry_cmd() (bsc#1195506). - scsi: lpfc: Fix pt2pt NVMe PRLI reject LOGO loop (bsc#1189126). - scsi: qla2xxx: Add devids and conditionals for 28xx (bsc#1195823). - scsi: qla2xxx: Add marginal path handling support (bsc#1195506). - scsi: qla2xxx: Add ql2xnvme_queues module param to configure number of NVMe queues (bsc#1195823). - scsi: qla2xxx: Add qla2x00_async_done() for async routines (bsc#1195823). - scsi: qla2xxx: Add retry for exec firmware (bsc#1195823). - scsi: qla2xxx: Check for firmware dump already collected (bsc#1195823). - scsi: qla2xxx: Fix T10 PI tag escape and IP guard options for 28XX adapters (bsc#1195823). - scsi: qla2xxx: Fix device reconnect in loop topology (bsc#1195823). - scsi: qla2xxx: Fix premature hw access after PCI error (bsc#1195823). - scsi: qla2xxx: Fix scheduling while atomic (bsc#1195823). - scsi: qla2xxx: Fix stuck session in gpdb (bsc#1195823). - scsi: qla2xxx: Fix unmap of already freed sgl (bsc#1195823). - scsi: qla2xxx: Fix warning for missing error code (bsc#1195823). - scsi: qla2xxx: Fix warning message due to adisc being flushed (bsc#1195823). - scsi: qla2xxx: Fix wrong FDMI data for 64G adapter (bsc#1195823). - scsi: qla2xxx: Implement ref count for SRB (bsc#1195823). - scsi: qla2xxx: Refactor asynchronous command initialization (bsc#1195823). - scsi: qla2xxx: Remove a declaration (bsc#1195823). - scsi: qla2xxx: Remove unused qla_sess_op_cmd_list from scsi_qla_host_t (bsc#1195823). - scsi: qla2xxx: Return -ENOMEM if kzalloc() fails (bsc#1195823). - scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair() (bsc#1195823). - scsi: qla2xxx: Update version to 10.02.07.200-k (bsc#1195823). - scsi: qla2xxx: Update version to 10.02.07.300-k (bsc#1195823). - scsi: qla2xxx: edif: Fix clang warning (bsc#1195823). - scsi: qla2xxx: edif: Fix inconsistent check of db_flags (bsc#1195823). - scsi: qla2xxx: edif: Reduce connection thrash (bsc#1195823). - scsi: qla2xxx: edif: Replace list_for_each_safe with list_for_each_entry_safe (bsc#1195823). - scsi: qla2xxx: edif: Tweak trace message (bsc#1195823). - scsi: scsi_transport_fc: Add a new rport state FC_PORTSTATE_MARGINAL (bsc#1195506). - scsi: scsi_transport_fc: Add store capability to rport port_state in sysfs (bsc#1195506). - scsi: target: iscsi: Fix cmd abort fabric stop race (bsc#1195286). - scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (bsc#1195378 LTC#196244). - scsi_transport_fc: kabi fix blank out FC_PORTSTATE_MARGINAL (bsc#1195506). - spi: bcm-qspi: check for valid cs before applying chip select (git-fixes). - spi: mediatek: Avoid NULL pointer crash in interrupt (git-fixes). - spi: meson-spicc: add IRQ check in meson_spicc_probe (git-fixes). - staging/fbtft: Fix backlight (git-fixes). - staging: fbtft: Fix error path in fbtft_driver_module_init() (git-fixes). - tracing: Do not inc err_log entry count if entry allocation fails (git-fixes). - tracing: Dump stacktrace trigger to the corresponding instance (git-fixes). - tracing: Fix smatch warning for null glob in event_hist_trigger_parse() (git-fixes). - tracing: Have traceon and traceoff trigger honor the instance (git-fixes). - tracing: Propagate is_signed to expression (git-fixes). - tty: Add support for Brainboxes UC cards (git-fixes). - udf: Fix NULL ptr deref when converting from inline format (bsc#1195476). - udf: Restore i_lenAlloc when inode expansion fails (bsc#1195477). - usb-storage: Add unusual-devs entry for VL817 USB-SATA bridge (git-fixes). - usb: dwc2: Fix NULL qh in dwc2_queue_transaction (git-fixes). - usb: dwc2: gadget: do not try to disable ep0 in dwc2_hsotg_suspend (git-fixes). - usb: dwc3: do not set gadget->is_otg flag (git-fixes). - usb: dwc3: gadget: Prevent core from processing stale TRBs (git-fixes). - usb: f_fs: Fix use-after-free for epfile (git-fixes). - usb: gadget: f_uac2: Define specific wTerminalType (git-fixes). - usb: gadget: rndis: check size of RNDIS_MSG_SET command (git-fixes). - usb: gadget: s3c: remove unused 'udc' variable (git-fixes). - usb: gadget: udc: renesas_usb3: Fix host to USB_ROLE_NONE transition (git-fixes). - usb: host: ehci-tegra: Fix error handling in tegra_ehci_probe() (git-fixes). - usb: ulpi: Call of_node_put correctly (git-fixes). - usb: ulpi: Move of_node_put to ulpi_dev_release (git-fixes). - xhci-pci: Allow host runtime PM as default for Intel Alpine Ridge LP (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.47.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.47.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.47.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.47.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.47.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.47.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.47.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.47.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.47.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.47.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64.rpm True openSUSE-SLE-15.3-2022-1208 moderate SUSE Updates openSUSE-SLE 15.3 This update for vncmanager fixes the following issues: - Consider different pixel format depths on Tight Encoding. TightPixel was considering only pixels defined with 3 bytes. (bsc#1189247) - Fix tight decoder with 888 pixel encodings. (bsc#1169732, bsc#1171344) - Fix PixelFormat::ntoh() and PixelFormat::hton(). (bsc#1169732, bsc#1171344) - Fix tight compression decoder on big-endian systems. (bsc#1171344) vncmanager-1.0.2-150000.4.9.3.src.rpm vncmanager-1.0.2-150000.4.9.3.x86_64.rpm vncmanager-1.0.2-150000.4.9.3.s390x.rpm vncmanager-1.0.2-150000.4.9.3.ppc64le.rpm vncmanager-1.0.2-150000.4.9.3.aarch64.rpm openSUSE-SLE-15.3-2022-815 moderate SUSE Updates openSUSE-SLE 15.3 This update for flac fixes the following issues: - CVE-2021-0561: Fixed out of bound write in append_to_verify_fifo_interleaved_ (bsc#1196660). flac-1.3.2-3.9.1.src.rpm flac-1.3.2-3.9.1.x86_64.rpm flac-devel-1.3.2-3.9.1.x86_64.rpm flac-devel-32bit-1.3.2-3.9.1.x86_64.rpm flac-doc-1.3.2-3.9.1.noarch.rpm libFLAC++6-1.3.2-3.9.1.x86_64.rpm libFLAC++6-32bit-1.3.2-3.9.1.x86_64.rpm libFLAC8-1.3.2-3.9.1.x86_64.rpm libFLAC8-32bit-1.3.2-3.9.1.x86_64.rpm flac-1.3.2-3.9.1.s390x.rpm flac-devel-1.3.2-3.9.1.s390x.rpm libFLAC++6-1.3.2-3.9.1.s390x.rpm libFLAC8-1.3.2-3.9.1.s390x.rpm flac-1.3.2-3.9.1.ppc64le.rpm flac-devel-1.3.2-3.9.1.ppc64le.rpm libFLAC++6-1.3.2-3.9.1.ppc64le.rpm libFLAC8-1.3.2-3.9.1.ppc64le.rpm flac-1.3.2-3.9.1.aarch64.rpm flac-devel-1.3.2-3.9.1.aarch64.rpm libFLAC++6-1.3.2-3.9.1.aarch64.rpm libFLAC8-1.3.2-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-740 moderate SUSE Updates openSUSE-SLE 15.3 This update for supportutils-plugin-cloud-init contains the following fixes: - Script name stripped for dashes and dots, which made the execution fail. (bsc#1195961) supportutils-plugin-cloud-init-1.1-3.6.1.noarch.rpm supportutils-plugin-cloud-init-1.1-3.6.1.src.rpm openSUSE-SLE-15.3-2022-760 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. Transient execution side-channel attacks attacking the Branch History Buffer (BHB), named "Branch Target Injection" and "Intra-Mode Branch History Injection" are now mitigated. The following security bugs were fixed: - CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580). - CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580). - CVE-2022-0847: Fixed a vulnerability were a local attackers could overwrite data in arbitrary (read-only) files (bsc#1196584). - CVE-2022-25375: The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory (bnc#1196235 ). - CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543). - CVE-2022-0516: Fixed missing check in ioctl related to KVM in s390 allows kernel memory read/write (bsc#1195516). The following non-security bugs were fixed: - ACPI/IORT: Check node revision for PMCG resources (git-fixes). - ALSA: hda/realtek: Add missing fixup-model entry for Gigabyte X570 ALC1220 quirks (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GU603 (git-fixes). - ALSA: hda/realtek: Fix silent output on Gigabyte X570 Aorus Xtreme after reboot from Windows (git-fixes). - ALSA: hda/realtek: Fix silent output on Gigabyte X570S Aorus Master (newer chipset) (git-fixes). - ALSA: hda: Fix missing codec probe on Shenker Dock 15 (git-fixes). - ALSA: hda: Fix regression on forced probe mask option (git-fixes). - ASoC: Revert "ASoC: mediatek: Check for error clk pointer" (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw() (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw_range() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_volsw() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_volsw_sx() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() (git-fixes). - Align s390 NVME target options with other architectures (bsc#1188404, jsc#SLE-22494). - Drop PCI xgene patch that caused a regression for mxl4 (bsc#1195352) - EDAC/xgene: Fix deferred probing (bsc#1178134). - HID:Add support for UGTABLET WP5540 (git-fixes). - IB/cma: Do not send IGMP leaves for sendonly Multicast groups (git-fixes). - IB/hfi1: Fix AIP early init panic (jsc#SLE-13208). - KVM: remember position in kvm->vcpus array (bsc#1190972 LTC#194674). - NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1195957). - PM: hibernate: Remove register_nosave_region_late() (git-fixes). - PM: s2idle: ACPI: Fix wakeup interrupts handling (git-fixes). - RDMA/cma: Use correct address when leaving multicast group (bsc#1181147). - RDMA/core: Always release restrack object (git-fixes) - RDMA/cxgb4: check for ipv6 address properly while destroying listener (git-fixes) - RDMA/siw: Release xarray entry (git-fixes) - RDMA/ucma: Protect mc during concurrent multicast leaves (bsc#1181147). - USB: serial: ch341: add support for GW Instek USB2.0-Serial devices (git-fixes). - USB: serial: cp210x: add CPI Bulk Coin Recycler id (git-fixes). - USB: serial: cp210x: add NCR Retail IO box id (git-fixes). - USB: serial: ftdi_sio: add support for Brainboxes US-159/235/320 (git-fixes). - USB: serial: mos7840: remove duplicated 0xac24 device ID (git-fixes). - USB: serial: option: add ZTE MF286D modem (git-fixes). - ata: libata-core: Disable TRIM on M88V29 (git-fixes). - ax25: improve the incomplete fix to avoid UAF and NPD bugs (git-fixes). - blk-mq: always allow reserved allocation in hctx_may_queue (bsc#1193787). - blk-mq: avoid to iterate over stale request (bsc#1193787). - blk-mq: clear stale request in tags->rq before freeing one request pool (bsc#1193787). - blk-mq: clearing flush request reference in tags->rqs (bsc#1193787). - blk-mq: do not grab rq's refcount in blk_mq_check_expired() (bsc#1193787 git-fixes). - blk-mq: fix is_flush_rq (bsc#1193787 git-fixes). - blk-mq: fix kernel panic during iterating over flush request (bsc#1193787 git-fixes). - blk-mq: grab rq->refcount before calling ->fn in blk_mq_tagset_busy_iter (bsc#1193787). - blk-mq: mark flush request as IDLE in flush_end_io() (bsc#1193787). - blk-tag: Hide spin_lock (bsc#1193787). - block: avoid double io accounting for flush request (bsc#1193787). - block: do not send a rezise udev event for hidden block device (bsc#1193096). - block: mark flush request as IDLE when it is really finished (bsc#1193787). - bonding: pair enable_port with slave_arr_updates (git-fixes). - bpf: Adjust BTF log size limit (git-fixes). - bpf: Disallow BPF_LOG_KERNEL log level for bpf(BPF_BTF_LOAD) (git-fixes). - btrfs: check for missing device in btrfs_trim_fs (bsc#1195701). - btrfs: check worker before need_preemptive_reclaim (bsc#1196195). - btrfs: do not do preemptive flushing if the majority is global rsv (bsc#1196195). - btrfs: do not include the global rsv size in the preemptive used amount (bsc#1196195). - btrfs: handle preemptive delalloc flushing slightly differently (bsc#1196195). - btrfs: make sure SB_I_VERSION does not get unset by remount (bsc#1192210). - btrfs: only clamp the first time we have to start flushing (bsc#1196195). - btrfs: only ignore delalloc if delalloc is much smaller than ordered (bsc#1196195). - btrfs: reduce the preemptive flushing threshold to 90% (bsc#1196195). - btrfs: take into account global rsv in need_preemptive_reclaim (bsc#1196195). - btrfs: use the global rsv size in the preemptive thresh calculation (bsc#1196195). - ceph: properly put ceph_string reference after async create attempt (bsc#1195798). - ceph: set pool_ns in new inode layout for async creates (bsc#1195799). - drm/amdgpu: fix logic inversion in check (git-fixes). - drm/i915/gvt: Make DRM_I915_GVT depend on X86 (git-fixes). - drm/i915/gvt: clean up kernel-doc in gtt.c (git-fixes). - drm/i915/opregion: check port number bounds for SWSCI display power state (git-fixes). - drm/i915: Correctly populate use_sagv_wm for all pipes (git-fixes). - drm/i915: Fix bw atomic check when switching between SAGV vs. no SAGV (git-fixes). - drm/panel: simple: Assign data from panel_dpi_probe() correctly (git-fixes). - drm/radeon: Fix backlight control on iMac 12,1 (git-fixes). - drm/rockchip: dw_hdmi: Do not leave clock enabled in error case (git-fixes). - drm/rockchip: vop: Correct RK3399 VOP register fields (git-fixes). - drm/vc4: hdmi: Allow DBLCLK modes even if horz timing is odd (git-fixes). - drm: panel-orientation-quirks: Add quirk for the 1Netbook OneXPlayer (git-fixes). - ext4: check for inconsistent extents between index and leaf block (bsc#1194163 bsc#1196339). - ext4: check for out-of-order index extents in ext4_valid_extent_entries() (bsc#1194163 bsc#1196339). - ext4: prevent partial update of the extent blocks (bsc#1194163 bsc#1196339). - gve: Add RX context (bsc#1191655). - gve: Add a jumbo-frame device option (bsc#1191655). - gve: Add consumed counts to ethtool stats (bsc#1191655). - gve: Add optional metadata descriptor type GVE_TXD_MTD (bsc#1191655). - gve: Correct order of processing device options (bsc#1191655). - gve: Fix GFP flags when allocing pages (git-fixes). - gve: Fix off by one in gve_tx_timeout() (bsc#1191655). - gve: Implement packet continuation for RX (bsc#1191655). - gve: Implement suspend/resume/shutdown (bsc#1191655). - gve: Move the irq db indexes out of the ntfy block struct (bsc#1191655). - gve: Recording rx queue before sending to napi (bsc#1191655). - gve: Recover from queue stall due to missed IRQ (bsc#1191655). - gve: Update gve_free_queue_page_list signature (bsc#1191655). - gve: Use kvcalloc() instead of kvzalloc() (bsc#1191655). - gve: fix for null pointer dereference (bsc#1191655). - gve: fix the wrong AdminQ buffer queue index check (bsc#1176940). - gve: fix unmatched u64_stats_update_end() (bsc#1191655). - gve: remove memory barrier around seqno (bsc#1191655). - i2c: brcmstb: fix support for DSL and CM variants (git-fixes). - i40e: Fix for failed to init adminq while VF reset (git-fixes). - i40e: Fix issue when maximum queues is exceeded (git-fixes). - i40e: Fix queues reservation for XDP (git-fixes). - i40e: Increase delay to 1 s after global EMP reset (git-fixes). - i40e: fix unsigned stat widths (git-fixes). - ibmvnic: Allow queueing resets during probe (bsc#1196516 ltc#196391). - ibmvnic: clear fop when retrying probe (bsc#1196516 ltc#196391). - ibmvnic: complete init_done on transport events (bsc#1196516 ltc#196391). - ibmvnic: define flush_reset_queue helper (bsc#1196516 ltc#196391). - ibmvnic: do not release napi in __ibmvnic_open() (bsc#1195668 ltc#195811). - ibmvnic: free reset-work-item when flushing (bsc#1196516 ltc#196391). - ibmvnic: init init_done_rc earlier (bsc#1196516 ltc#196391). - ibmvnic: initialize rc before completing wait (bsc#1196516 ltc#196391). - ibmvnic: register netdev after init of adapter (bsc#1196516 ltc#196391). - ibmvnic: schedule failover only if vioctl fails (bsc#1196400 ltc#195815). - ice: fix IPIP and SIT TSO offload (git-fixes). - ice: fix an error code in ice_cfg_phy_fec() (jsc#SLE-12878). - ima: Allow template selection with ima_template[_fmt]= after ima_hash= (git-fixes). - ima: Do not print policy rule with inactive LSM labels (git-fixes). - ima: Remove ima_policy file before directory (git-fixes). - integrity: Make function integrity_add_key() static (git-fixes). - integrity: check the return value of audit_log_start() (git-fixes). - integrity: double check iint_cache was initialized (git-fixes). - iommu/amd: Fix loop timeout issue in iommu_ga_log_enable() (git-fixes). - iommu/amd: Remove useless irq affinity notifier (git-fixes). - iommu/amd: Restore GA log/tail pointer on host resume (git-fixes). - iommu/amd: X2apic mode: mask/unmask interrupts on suspend/resume (git-fixes). - iommu/amd: X2apic mode: re-enable after resume (git-fixes). - iommu/amd: X2apic mode: setup the INTX registers on mask/unmask (git-fixes). - iommu/io-pgtable-arm-v7s: Add error handle for page table allocation failure (git-fixes). - iommu/io-pgtable-arm: Fix table descriptor paddr formatting (git-fixes). - iommu/iova: Fix race between FQ timeout and teardown (git-fixes). - iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping() (git-fixes). - iwlwifi: fix use-after-free (git-fixes). - iwlwifi: pcie: fix locking when "HW not ready" (git-fixes). - iwlwifi: pcie: gen2: fix locking when "HW not ready" (git-fixes). - ixgbevf: Require large buffers for build_skb on 82599VF (git-fixes). - kABI fixup after adding vcpu_idx to struct kvm_cpu (bsc#1190972 LTC#194674). - kABI: Fix kABI for AMD IOMMU driver (git-fixes). - kabi: Hide changes to s390/AP structures (jsc#SLE-20807). - lib/iov_iter: initialize "flags" in new pipe_buffer (bsc#1196584). - libsubcmd: Fix use-after-free for realloc(..., 0) (git-fixes). - md/raid5: fix oops during stripe resizing (bsc#1181588). - misc: fastrpc: avoid double fput() on failed usercopy (git-fixes). - mmc: sdhci-of-esdhc: Check for error num after setting mask (git-fixes). - mtd: rawnand: brcmnand: Fixed incorrect sub-page ECC status (git-fixes). - mtd: rawnand: gpmi: do not leak PM reference in error path (git-fixes). - mtd: rawnand: qcom: Fix clock sequencing in qcom_nandc_probe() (git-fixes). - net/ibmvnic: Cleanup workaround doing an EOI after partition migration (bsc#1089644 ltc#166495 ltc#165544 git-fixes). - net/mlx5e: Fix handling of wrong devices during bond netevent (jsc#SLE-15172). - net: macb: Align the dma and coherent dma masks (git-fixes). - net: mdio: aspeed: Add missing MODULE_DEVICE_TABLE (bsc#1176447). - net: phy: marvell: Fix MDI-x polarity setting in 88e1118-compatible PHYs (git-fixes). - net: phy: marvell: Fix RGMII Tx/Rx delays setting in 88e1121-compatible PHYs (git-fixes). - net: phy: marvell: configure RGMII delays for 88E1118 (git-fixes). - net: usb: qmi_wwan: Add support for Dell DW5829e (git-fixes). - nfp: flower: fix ida_idx not being released (bsc#1154353). - nfsd: allow delegation state ids to be revoked and then freed (bsc#1192483). - nfsd: allow lock state ids to be revoked and then freed (bsc#1192483). - nfsd: allow open state ids to be revoked and then freed (bsc#1192483). - nfsd: do not admin-revoke NSv4.0 state ids (bsc#1192483). - nfsd: prepare for supporting admin-revocation of state (bsc#1192483). - nvme-fabrics: fix state check in nvmf_ctlr_matches_baseopts() (bsc#1195012). - nvme: also mark passthrough-only namespaces ready in nvme_update_ns_info (git-fixes). - nvme: do not return an error from nvme_configure_metadata (git-fixes). - nvme: let namespace probing continue for unsupported features (git-fixes). - powerpc/64: Move paca allocation later in boot (bsc#1190812). - powerpc/64s: Fix debugfs_simple_attr.cocci warnings (bsc#1157038 bsc#1157923 ltc#182612 git-fixes). - powerpc/pseries/ddw: Revert "Extend upper limit for huge DMA window for persistent memory" (bsc#1195995 ltc#196394). - powerpc/pseries: read the lpar name from the firmware (bsc#1187716 ltc#193451). - powerpc: Set crashkernel offset to mid of RMA region (bsc#1190812). - powerpc: add link stack flush mitigation status in debugfs (bsc#1157038 bsc#1157923 ltc#182612 git-fixes). - s390/AP: support new dynamic AP bus size limit (jsc#SLE-20807). - s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant (git-fixes). - s390/bpf: Fix optimizing out zero-extensions (git-fixes). - s390/cio: make ccw_device_dma_* more robust (bsc#1193243 LTC#195549). - s390/cio: verify the driver availability for path_event call (bsc#1195928 LTC#196418). - s390/cpumf: Support for CPU Measurement Facility CSVN 7 (bsc#1195081 LTC#196088). - s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (bsc#1195081 LTC#196088). - s390/pci: add s390_iommu_aperture kernel parameter (bsc#1193233 LTC#195540). - s390/pci: move pseudo-MMIO to prevent MIO overlap (bsc#1194967 LTC#196028). - s390/protvirt: fix error return code in uv_info_init() (jsc#SLE-22135). - s390/sclp: fix Secure-IPL facility detection (bsc#1191741 LTC#194816). - s390/uv: add prot virt guest/host indication files (jsc#SLE-22135). - s390/uv: fix prot virt host indication compilation (jsc#SLE-22135). - scsi: core: Add a new error code DID_TRANSPORT_MARGINAL in scsi.h (bsc#1195506). - scsi: core: Add limitless cmd retry support (bsc#1195506). - scsi: core: No retries on abort success (bsc#1195506). - scsi: kABI fix for 'eh_should_retry_cmd' (bsc#1195506). - scsi: lpfc: Add support for eh_should_retry_cmd() (bsc#1195506). - scsi: lpfc: Fix pt2pt NVMe PRLI reject LOGO loop (bsc#1189126). - scsi: qla2xxx: Add devids and conditionals for 28xx (bsc#1195823). - scsi: qla2xxx: Add marginal path handling support (bsc#1195506). - scsi: qla2xxx: Add ql2xnvme_queues module param to configure number of NVMe queues (bsc#1195823). - scsi: qla2xxx: Add qla2x00_async_done() for async routines (bsc#1195823). - scsi: qla2xxx: Add retry for exec firmware (bsc#1195823). - scsi: qla2xxx: Check for firmware dump already collected (bsc#1195823). - scsi: qla2xxx: Fix T10 PI tag escape and IP guard options for 28XX adapters (bsc#1195823). - scsi: qla2xxx: Fix device reconnect in loop topology (bsc#1195823). - scsi: qla2xxx: Fix premature hw access after PCI error (bsc#1195823). - scsi: qla2xxx: Fix scheduling while atomic (bsc#1195823). - scsi: qla2xxx: Fix stuck session in gpdb (bsc#1195823). - scsi: qla2xxx: Fix unmap of already freed sgl (bsc#1195823). - scsi: qla2xxx: Fix warning for missing error code (bsc#1195823). - scsi: qla2xxx: Fix warning message due to adisc being flushed (bsc#1195823). - scsi: qla2xxx: Fix wrong FDMI data for 64G adapter (bsc#1195823). - scsi: qla2xxx: Implement ref count for SRB (bsc#1195823). - scsi: qla2xxx: Refactor asynchronous command initialization (bsc#1195823). - scsi: qla2xxx: Remove a declaration (bsc#1195823). - scsi: qla2xxx: Remove unused qla_sess_op_cmd_list from scsi_qla_host_t (bsc#1195823). - scsi: qla2xxx: Return -ENOMEM if kzalloc() fails (bsc#1195823). - scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair() (bsc#1195823). - scsi: qla2xxx: Update version to 10.02.07.200-k (bsc#1195823). - scsi: qla2xxx: Update version to 10.02.07.300-k (bsc#1195823). - scsi: qla2xxx: edif: Fix clang warning (bsc#1195823). - scsi: qla2xxx: edif: Fix inconsistent check of db_flags (bsc#1195823). - scsi: qla2xxx: edif: Reduce connection thrash (bsc#1195823). - scsi: qla2xxx: edif: Replace list_for_each_safe with list_for_each_entry_safe (bsc#1195823). - scsi: qla2xxx: edif: Tweak trace message (bsc#1195823). - scsi: scsi_transport_fc: Add a new rport state FC_PORTSTATE_MARGINAL (bsc#1195506). - scsi: scsi_transport_fc: Add store capability to rport port_state in sysfs (bsc#1195506). - scsi: target: iscsi: Fix cmd abort fabric stop race (bsc#1195286). - scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (bsc#1195378 LTC#196244). - scsi_transport_fc: kabi fix blank out FC_PORTSTATE_MARGINAL (bsc#1195506). - staging/fbtft: Fix backlight (git-fixes). - staging: fbtft: Fix error path in fbtft_driver_module_init() (git-fixes). - tracing: Do not inc err_log entry count if entry allocation fails (git-fixes). - tracing: Dump stacktrace trigger to the corresponding instance (git-fixes). - tracing: Fix smatch warning for null glob in event_hist_trigger_parse() (git-fixes). - tracing: Have traceon and traceoff trigger honor the instance (git-fixes). - tracing: Propagate is_signed to expression (git-fixes). - usb: dwc2: Fix NULL qh in dwc2_queue_transaction (git-fixes). - usb: dwc2: gadget: do not try to disable ep0 in dwc2_hsotg_suspend (git-fixes). - usb: dwc3: do not set gadget->is_otg flag (git-fixes). - usb: dwc3: gadget: Prevent core from processing stale TRBs (git-fixes). - usb: f_fs: Fix use-after-free for epfile (git-fixes). - usb: gadget: f_uac2: Define specific wTerminalType (git-fixes). - usb: gadget: rndis: check size of RNDIS_MSG_SET command (git-fixes). - usb: gadget: s3c: remove unused 'udc' variable (git-fixes). - usb: gadget: udc: renesas_usb3: Fix host to USB_ROLE_NONE transition (git-fixes). - usb: host: ehci-tegra: Fix error handling in tegra_ehci_probe() (git-fixes). - usb: ulpi: Call of_node_put correctly (git-fixes). - usb: ulpi: Move of_node_put to ulpi_dev_release (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.54.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.54.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.54.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.54.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64.rpm True kernel-default-5.3.18-150300.59.54.1.nosrc.rpm True kernel-default-5.3.18-150300.59.54.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.src.rpm True kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.54.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.54.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.54.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.54.1.noarch.rpm True kernel-docs-5.3.18-150300.59.54.1.noarch.rpm True kernel-docs-5.3.18-150300.59.54.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.54.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.54.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.54.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.54.1.src.rpm True kernel-obs-build-5.3.18-150300.59.54.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.54.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.54.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.54.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.54.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64.rpm True kernel-source-5.3.18-150300.59.54.1.noarch.rpm True kernel-source-5.3.18-150300.59.54.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.54.1.noarch.rpm True kernel-syms-5.3.18-150300.59.54.1.src.rpm True kernel-syms-5.3.18-150300.59.54.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.54.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.54.1.s390x.rpm True kernel-default-5.3.18-150300.59.54.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x.rpm True kernel-default-devel-5.3.18-150300.59.54.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.54.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.54.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.54.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.54.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.54.1.s390x.rpm True kernel-syms-5.3.18-150300.59.54.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.54.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.54.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.54.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.54.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.54.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.54.1.src.rpm True dtb-al-5.3.18-150300.59.54.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.54.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.54.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.54.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.54.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.54.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.54.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.54.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.54.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.54.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.54.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.54.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.54.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.54.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.54.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.54.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.54.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.54.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.54.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.54.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.54.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.54.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.54.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.54.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.54.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64.rpm True kernel-default-5.3.18-150300.59.54.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.54.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.54.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.54.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.54.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.54.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.54.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.54.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64.rpm True openSUSE-SLE-15.3-2022-1047 moderate SUSE Updates openSUSE-SLE 15.3 This update for pam fixes the following issues: - Define _pam_vendordir as the variable is needed by systemd and others. (bsc#1196093) - Between allocating the variable "ai" and free'ing them, there are two "return NO" were we don't free this variable. This patch inserts freaddrinfo() calls before the "return NO;"s. (bsc#1197024) pam-1.3.0-150000.6.55.3.src.rpm pam-1.3.0-150000.6.55.3.x86_64.rpm pam-32bit-1.3.0-150000.6.55.3.x86_64.rpm pam-devel-1.3.0-150000.6.55.3.x86_64.rpm pam-devel-32bit-1.3.0-150000.6.55.3.x86_64.rpm pam-doc-1.3.0-150000.6.55.3.noarch.rpm pam-extra-1.3.0-150000.6.55.3.x86_64.rpm pam-extra-32bit-1.3.0-150000.6.55.3.x86_64.rpm pam-1.3.0-150000.6.55.3.s390x.rpm pam-devel-1.3.0-150000.6.55.3.s390x.rpm pam-extra-1.3.0-150000.6.55.3.s390x.rpm pam-1.3.0-150000.6.55.3.ppc64le.rpm pam-devel-1.3.0-150000.6.55.3.ppc64le.rpm pam-extra-1.3.0-150000.6.55.3.ppc64le.rpm pam-1.3.0-150000.6.55.3.aarch64.rpm pam-devel-1.3.0-150000.6.55.3.aarch64.rpm pam-extra-1.3.0-150000.6.55.3.aarch64.rpm openSUSE-SLE-15.3-2022-886 moderate SUSE Updates openSUSE-SLE 15.3 This update for libreoffice fixes the following issues: Update to version 7.2.5.1 (jsc#SLE-18214): - CVE-2021-25636: Fixed an incorrect vadidation of digitally signed documents (bsc#1196456). libreoffice-7.2.5.1-150300.14.22.18.3.src.rpm libreoffice-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-base-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-base-drivers-postgresql-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-branding-upstream-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-calc-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-calc-extensions-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-draw-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-filters-optional-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-gdb-pretty-printers-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-glade-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-gnome-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-gtk3-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-icon-themes-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-impress-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-l10n-af-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-am-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ar-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-as-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ast-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-be-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-bg-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-bn-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-bn_IN-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-bo-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-br-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-brx-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-bs-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ca-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ca_valencia-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ckb-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-cs-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-cy-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-da-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-de-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-dgo-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-dsb-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-dz-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-el-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-en-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-en_GB-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-en_ZA-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-eo-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-es-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-et-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-eu-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-fa-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-fi-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-fr-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-fur-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-fy-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ga-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-gd-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-gl-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-gu-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-gug-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-he-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-hi-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-hr-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-hsb-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-hu-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-id-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-is-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-it-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ja-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ka-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-kab-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-kk-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-km-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-kmr_Latn-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-kn-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ko-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-kok-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ks-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-lb-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-lo-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-lt-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-lv-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-mai-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-mk-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ml-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-mn-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-mni-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-mr-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-my-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-nb-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ne-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-nl-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-nn-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-nr-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-nso-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-oc-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-om-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-or-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-pa-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-pl-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-pt_BR-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-pt_PT-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ro-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ru-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-rw-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-sa_IN-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-sat-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-sd-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-si-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-sid-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-sk-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-sl-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-sq-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-sr-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ss-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-st-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-sv-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-sw_TZ-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-szl-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ta-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-te-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-tg-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-th-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-tn-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-tr-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ts-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-tt-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ug-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-uk-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-uz-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-ve-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-vec-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-vi-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-xh-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-zh_CN-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-zh_TW-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-l10n-zu-7.2.5.1-150300.14.22.18.3.noarch.rpm libreoffice-librelogo-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-mailmerge-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-math-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-officebean-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-pyuno-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-qt5-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-sdk-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-sdk-doc-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-writer-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-writer-extensions-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreofficekit-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreofficekit-devel-7.2.5.1-150300.14.22.18.3.x86_64.rpm libreoffice-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-base-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-base-drivers-postgresql-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-calc-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-calc-extensions-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-draw-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-filters-optional-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-gnome-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-gtk3-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-impress-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-librelogo-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-mailmerge-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-math-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-officebean-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-pyuno-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-qt5-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-sdk-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-sdk-doc-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-writer-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-writer-extensions-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreofficekit-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreofficekit-devel-7.2.5.1-150300.14.22.18.3.ppc64le.rpm libreoffice-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-base-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-base-drivers-postgresql-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-calc-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-calc-extensions-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-draw-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-filters-optional-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-gnome-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-gtk3-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-impress-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-librelogo-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-mailmerge-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-math-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-officebean-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-pyuno-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-qt5-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-sdk-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-sdk-doc-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-writer-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreoffice-writer-extensions-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreofficekit-7.2.5.1-150300.14.22.18.3.aarch64.rpm libreofficekit-devel-7.2.5.1-150300.14.22.18.3.aarch64.rpm openSUSE-SLE-15.3-2022-769 important SUSE Updates openSUSE-SLE 15.3 This update for libcaca fixes the following issues: - CVE-2021-30498, CVE-2021-30499: If an image has a size of 0x0, when exporting, no data is written and space is allocated for the header only, not taking into account that sprintf appends a NUL byte (bsc#1184751, bsc#1184752). caca-utils-0.99.beta19.git20171003-11.3.1.x86_64.rpm libcaca-0.99.beta19.git20171003-11.3.1.src.rpm libcaca-devel-0.99.beta19.git20171003-11.3.1.x86_64.rpm libcaca-ruby-0.99.beta19.git20171003-11.3.1.x86_64.rpm libcaca0-0.99.beta19.git20171003-11.3.1.x86_64.rpm libcaca0-32bit-0.99.beta19.git20171003-11.3.1.x86_64.rpm libcaca0-plugins-0.99.beta19.git20171003-11.3.1.x86_64.rpm libcaca0-plugins-32bit-0.99.beta19.git20171003-11.3.1.x86_64.rpm python3-caca-0.99.beta19.git20171003-11.3.1.noarch.rpm caca-utils-0.99.beta19.git20171003-11.3.1.s390x.rpm libcaca-devel-0.99.beta19.git20171003-11.3.1.s390x.rpm libcaca-ruby-0.99.beta19.git20171003-11.3.1.s390x.rpm libcaca0-0.99.beta19.git20171003-11.3.1.s390x.rpm libcaca0-plugins-0.99.beta19.git20171003-11.3.1.s390x.rpm caca-utils-0.99.beta19.git20171003-11.3.1.ppc64le.rpm libcaca-devel-0.99.beta19.git20171003-11.3.1.ppc64le.rpm libcaca-ruby-0.99.beta19.git20171003-11.3.1.ppc64le.rpm libcaca0-0.99.beta19.git20171003-11.3.1.ppc64le.rpm libcaca0-plugins-0.99.beta19.git20171003-11.3.1.ppc64le.rpm caca-utils-0.99.beta19.git20171003-11.3.1.aarch64.rpm libcaca-devel-0.99.beta19.git20171003-11.3.1.aarch64.rpm libcaca-ruby-0.99.beta19.git20171003-11.3.1.aarch64.rpm libcaca0-0.99.beta19.git20171003-11.3.1.aarch64.rpm libcaca0-plugins-0.99.beta19.git20171003-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-861 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following issues: openssl-1_1: - CVE-2022-0778: Infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877). - Fix PAC pointer authentication in ARM (bsc#1195856) - Pull libopenssl-1_1 when updating openssl-1_1 with the same version (bsc#1195792) - FIPS: Fix function and reason error codes (bsc#1182959) - Enable zlib compression support (bsc#1195149) glibc: - Resolve installation issue of `glibc-devel` in SUSE Linux Enterprise Micro 5.1 linux-glibc-devel: - Resolve installation issue of `linux-kernel-headers` in SUSE Linux Enterprise Micro 5.1 libxcrypt: - Resolve installation issue of `libxcrypt-devel` in SUSE Linux Enterprise Micro 5.1 zlib: - Resolve installation issue of `zlib-devel` in SUSE Linux Enterprise Micro 5.1 glibc-2.31-150300.20.7.src.rpm glibc-2.31-150300.20.7.x86_64.rpm glibc-32bit-2.31-150300.20.7.x86_64.rpm glibc-devel-2.31-150300.20.7.x86_64.rpm glibc-devel-32bit-2.31-150300.20.7.x86_64.rpm glibc-devel-static-2.31-150300.20.7.x86_64.rpm glibc-devel-static-32bit-2.31-150300.20.7.x86_64.rpm glibc-extra-2.31-150300.20.7.x86_64.rpm glibc-html-2.31-150300.20.7.noarch.rpm glibc-i18ndata-2.31-150300.20.7.noarch.rpm glibc-info-2.31-150300.20.7.noarch.rpm glibc-lang-2.31-150300.20.7.noarch.rpm glibc-locale-2.31-150300.20.7.x86_64.rpm glibc-locale-base-2.31-150300.20.7.x86_64.rpm glibc-locale-base-32bit-2.31-150300.20.7.x86_64.rpm glibc-profile-2.31-150300.20.7.x86_64.rpm glibc-profile-32bit-2.31-150300.20.7.x86_64.rpm glibc-utils-2.31-150300.20.1.x86_64.rpm glibc-utils-32bit-2.31-150300.20.1.x86_64.rpm glibc-utils-src-2.31-150300.20.1.src.rpm libcrypt1-32bit-4.4.15-150300.4.2.41.x86_64.rpm libcrypt1-4.4.15-150300.4.2.41.x86_64.rpm libminizip1-1.2.11-3.26.10.x86_64.rpm libminizip1-32bit-1.2.11-3.26.10.x86_64.rpm libopenssl-1_1-devel-1.1.1d-11.43.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-11.43.1.x86_64.rpm libopenssl1_1-1.1.1d-11.43.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-11.43.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-11.43.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-11.43.1.x86_64.rpm libxcrypt-4.4.15-150300.4.2.41.src.rpm libxcrypt-devel-32bit-4.4.15-150300.4.2.41.x86_64.rpm libxcrypt-devel-4.4.15-150300.4.2.41.x86_64.rpm libxcrypt-devel-static-4.4.15-150300.4.2.41.x86_64.rpm libz1-1.2.11-3.26.10.x86_64.rpm libz1-32bit-1.2.11-3.26.10.x86_64.rpm linux-glibc-devel-5.3-3.2.10.src.rpm linux-glibc-devel-5.3-3.2.10.x86_64.rpm minizip-devel-1.2.11-3.26.10.x86_64.rpm nscd-2.31-150300.20.7.x86_64.rpm openssl-1_1-1.1.1d-11.43.1.src.rpm openssl-1_1-1.1.1d-11.43.1.x86_64.rpm openssl-1_1-doc-1.1.1d-11.43.1.noarch.rpm zlib-1.2.11-3.26.10.src.rpm zlib-devel-1.2.11-3.26.10.x86_64.rpm zlib-devel-32bit-1.2.11-3.26.10.x86_64.rpm zlib-devel-static-1.2.11-3.26.10.x86_64.rpm zlib-devel-static-32bit-1.2.11-3.26.10.x86_64.rpm glibc-2.31-150300.20.7.s390x.rpm glibc-devel-2.31-150300.20.7.s390x.rpm glibc-devel-static-2.31-150300.20.7.s390x.rpm glibc-extra-2.31-150300.20.7.s390x.rpm glibc-locale-2.31-150300.20.7.s390x.rpm glibc-locale-base-2.31-150300.20.7.s390x.rpm glibc-profile-2.31-150300.20.7.s390x.rpm glibc-utils-2.31-150300.20.1.s390x.rpm libcrypt1-4.4.15-150300.4.2.41.s390x.rpm libminizip1-1.2.11-3.26.10.s390x.rpm libopenssl-1_1-devel-1.1.1d-11.43.1.s390x.rpm libopenssl1_1-1.1.1d-11.43.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-11.43.1.s390x.rpm libxcrypt-devel-4.4.15-150300.4.2.41.s390x.rpm libxcrypt-devel-static-4.4.15-150300.4.2.41.s390x.rpm libz1-1.2.11-3.26.10.s390x.rpm linux-glibc-devel-5.3-3.2.10.s390x.rpm minizip-devel-1.2.11-3.26.10.s390x.rpm nscd-2.31-150300.20.7.s390x.rpm openssl-1_1-1.1.1d-11.43.1.s390x.rpm zlib-devel-1.2.11-3.26.10.s390x.rpm zlib-devel-static-1.2.11-3.26.10.s390x.rpm glibc-2.31-150300.20.7.ppc64le.rpm glibc-devel-2.31-150300.20.7.ppc64le.rpm glibc-devel-static-2.31-150300.20.7.ppc64le.rpm glibc-extra-2.31-150300.20.7.ppc64le.rpm glibc-locale-2.31-150300.20.7.ppc64le.rpm glibc-locale-base-2.31-150300.20.7.ppc64le.rpm glibc-profile-2.31-150300.20.7.ppc64le.rpm glibc-utils-2.31-150300.20.1.ppc64le.rpm libcrypt1-4.4.15-150300.4.2.41.ppc64le.rpm libminizip1-1.2.11-3.26.10.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-11.43.1.ppc64le.rpm libopenssl1_1-1.1.1d-11.43.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-11.43.1.ppc64le.rpm libxcrypt-devel-4.4.15-150300.4.2.41.ppc64le.rpm libxcrypt-devel-static-4.4.15-150300.4.2.41.ppc64le.rpm libz1-1.2.11-3.26.10.ppc64le.rpm linux-glibc-devel-5.3-3.2.10.ppc64le.rpm minizip-devel-1.2.11-3.26.10.ppc64le.rpm nscd-2.31-150300.20.7.ppc64le.rpm openssl-1_1-1.1.1d-11.43.1.ppc64le.rpm zlib-devel-1.2.11-3.26.10.ppc64le.rpm zlib-devel-static-1.2.11-3.26.10.ppc64le.rpm glibc-2.31-150300.20.7.aarch64.rpm glibc-devel-2.31-150300.20.7.aarch64.rpm glibc-devel-static-2.31-150300.20.7.aarch64.rpm glibc-extra-2.31-150300.20.7.aarch64.rpm glibc-locale-2.31-150300.20.7.aarch64.rpm glibc-locale-base-2.31-150300.20.7.aarch64.rpm glibc-profile-2.31-150300.20.7.aarch64.rpm glibc-utils-2.31-150300.20.1.aarch64.rpm libcrypt1-4.4.15-150300.4.2.41.aarch64.rpm libminizip1-1.2.11-3.26.10.aarch64.rpm libopenssl-1_1-devel-1.1.1d-11.43.1.aarch64.rpm libopenssl1_1-1.1.1d-11.43.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-11.43.1.aarch64.rpm libxcrypt-devel-4.4.15-150300.4.2.41.aarch64.rpm libxcrypt-devel-static-4.4.15-150300.4.2.41.aarch64.rpm libz1-1.2.11-3.26.10.aarch64.rpm linux-glibc-devel-5.3-3.2.10.aarch64.rpm minizip-devel-1.2.11-3.26.10.aarch64.rpm nscd-2.31-150300.20.7.aarch64.rpm openssl-1_1-1.1.1d-11.43.1.aarch64.rpm zlib-devel-1.2.11-3.26.10.aarch64.rpm zlib-devel-static-1.2.11-3.26.10.aarch64.rpm openSUSE-SLE-15.3-2022-952 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint fixes the following issues: - Add tukitd dbus whitelist (bsc#1196149) - Add kpmcore whitelisting (bsc#1178848). - Add whitelisting for NetworkManager nm-priv helper for SLE-15-SP4 (bsc#1194799). rpmlint-1.10-7.45.1.noarch.rpm rpmlint-1.10-7.45.1.src.rpm openSUSE-SLE-15.3-2022-796 moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-prometheus fixes the following issues: - Fix Firewalld configuration file location (bsc#1196300) - Require Go 1.16+ - Do not build on s390 architecture. golang-github-prometheus-prometheus-2.32.1-4.6.1.src.rpm golang-github-prometheus-prometheus-2.32.1-4.6.1.x86_64.rpm golang-github-prometheus-prometheus-2.32.1-4.6.1.s390x.rpm golang-github-prometheus-prometheus-2.32.1-4.6.1.ppc64le.rpm golang-github-prometheus-prometheus-2.32.1-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-844 important SUSE Updates openSUSE-SLE 15.3 This update for expat fixes the following issues: - Fixed a regression caused by the patch for CVE-2022-25236 (bsc#1196784). expat-2.2.5-3.19.1.src.rpm expat-2.2.5-3.19.1.x86_64.rpm libexpat-devel-2.2.5-3.19.1.x86_64.rpm libexpat-devel-32bit-2.2.5-3.19.1.x86_64.rpm libexpat1-2.2.5-3.19.1.x86_64.rpm libexpat1-32bit-2.2.5-3.19.1.x86_64.rpm expat-2.2.5-3.19.1.s390x.rpm libexpat-devel-2.2.5-3.19.1.s390x.rpm libexpat1-2.2.5-3.19.1.s390x.rpm expat-2.2.5-3.19.1.ppc64le.rpm libexpat-devel-2.2.5-3.19.1.ppc64le.rpm libexpat1-2.2.5-3.19.1.ppc64le.rpm expat-2.2.5-3.19.1.aarch64.rpm libexpat-devel-2.2.5-3.19.1.aarch64.rpm libexpat1-2.2.5-3.19.1.aarch64.rpm openSUSE-SLE-15.3-2022-843 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust, rust1.58, rust1.59 fixes the following issues: This update provides both rust1.58 and rust1.59. Changes in rust1.58: - Add recommends for GCC for installs to be able to link. - Add suggests for lld/clang which are faster than gcc for linking to allow users choice on what they use. - CVE-2022-21658: Resolve race condition in std::fs::remove_dir_all (bsc#1194767) Version 1.58.0 (2022-01-13) ========================== Language -------- - [Format strings can now capture arguments simply by writing `{ident}` in the string.][90473] This works in all macros accepting format strings. Support for this in `panic!` (`panic!("{ident}")`) requires the 2021 edition; panic invocations in previous editions that appear to be trying to use this will result in a warning lint about not having the intended effect. - [`*const T` pointers can now be dereferenced in const contexts.][89551] - [The rules for when a generic struct implements `Unsize` have been relaxed.][90417] Compiler -------- - [Add LLVM CFI support to the Rust compiler][89652] - [Stabilize -Z strip as -C strip][90058]. Note that while release builds already don't add debug symbols for the code you compile, the compiled standard library that ships with Rust includes debug symbols, so you may want to use the `strip` option to remove these symbols to produce smaller release binaries. Note that this release only includes support in rustc, not directly in cargo. - [Add support for LLVM coverage mapping format versions 5 and 6][91207] - [Emit LLVM optimization remarks when enabled with `-Cremark`][90833] - [Update the minimum external LLVM to 12][90175] - [Add `x86_64-unknown-none` at Tier 3*][89062] - [Build musl dist artifacts with debuginfo enabled][90733]. When building release binaries using musl, you may want to use the newly stabilized strip option to remove these debug symbols, reducing the size of your binaries. - [Don't abort compilation after giving a lint error][87337] - [Error messages point at the source of trait bound obligations in more places][89580] \* Refer to Rust's [platform support page][platform-support-doc] for more information on Rust's tiered platform support. Libraries --------- - [All remaining functions in the standard library have `#[must_use]` annotations where appropriate][89692], producing a warning when ignoring their return value. This helps catch mistakes such as expecting a function to mutate a value in place rather than return a new value. - [Paths are automatically canonicalized on Windows for operations that support it][89174] - [Re-enable debug checks for `copy` and `copy_nonoverlapping`][90041] - [Implement `RefUnwindSafe` for `Rc<T>`][87467] - [Make RSplit<T, P>: Clone not require T: Clone][90117] - [Implement `Termination` for `Result<Infallible, E>`][88601]. This allows writing `fn main() -> Result<Infallible, ErrorType>`, for a program whose successful exits never involve returning from `main` (for instance, a program that calls `exit`, or that uses `exec` to run another program). Stabilized APIs --------------- - [`Metadata::is_symlink`] - [`Path::is_symlink`] - [`{integer}::saturating_div`] - [`Option::unwrap_unchecked`] - [`Result::unwrap_unchecked`] - [`Result::unwrap_err_unchecked`] - [`NonZero{unsigned}::is_power_of_two`] - [`File::options`] These APIs are now usable in const contexts: - [`Duration::new`] - [`Duration::checked_add`] - [`Duration::saturating_add`] - [`Duration::checked_sub`] - [`Duration::saturating_sub`] - [`Duration::checked_mul`] - [`Duration::saturating_mul`] - [`Duration::checked_div`] - [`MaybeUninit::as_ptr`] - [`MaybeUninit::as_mut_ptr`] - [`MaybeUninit::assume_init`] - [`MaybeUninit::assume_init_ref`] Cargo ----- - [Add --message-format for install command][cargo/10107] - [Warn when alias shadows external subcommand][cargo/10082] Rustdoc ------- - [Show all Deref implementations recursively in rustdoc][90183] - [Use computed visibility in rustdoc][88447] Compatibility Notes ------------------- - [Try all stable method candidates first before trying unstable ones][90329]. This change ensures that adding new nightly-only methods to the Rust standard library will not break code invoking methods of the same name from traits outside the standard library. - Windows: [`std::process::Command` will no longer search the current directory for executables.][87704] - [All proc-macro backward-compatibility lints are now deny-by-default.][88041] - [proc_macro: Append .0 to unsuffixed float if it would otherwise become int token][90297] - [Refactor weak symbols in std::sys::unix][90846]. This optimizes accesses to glibc functions, by avoiding the use of dlopen. This does not increase the [minimum expected version of glibc](https://doc.rust-lang.org/nightly/rustc/platform-support.html). However, software distributions that use symbol versions to detect library dependencies, and which take weak symbols into account in that analysis, may detect rust binaries as requiring newer versions of glibc. - [rustdoc now rejects some unexpected semicolons in doctests][91026] Version 1.59.0 (2022-02-24) ========================== Language -------- - [Stabilize default arguments for const generics][90207] - [Stabilize destructuring assignment][90521] - [Relax private in public lint on generic bounds and where clauses of trait impls][90586] - [Stabilize asm! and global_asm! for x86, x86_64, ARM, Aarch64, and RISC-V][91728] Compiler -------- - [Stabilize new symbol mangling format, leaving it opt-in (-Csymbol-mangling-version=v0)][90128] - [Emit LLVM optimization remarks when enabled with `-Cremark`][90833] - [Fix sparc64 ABI for aggregates with floating point members][91003] - [Warn when a `#[test]`-like built-in attribute macro is present multiple times.][91172] - [Add support for riscv64gc-unknown-freebsd][91284] - [Stabilize `-Z emit-future-incompat` as `--json future-incompat`][91535] Libraries --------- - [Remove unnecessary bounds for some Hash{Map,Set} methods][91593] Stabilized APIs --------------- - [`std::thread::available_parallelism`][available_parallelism] - [`Result::copied`][result-copied] - [`Result::cloned`][result-cloned] - [`arch::asm!`][asm] - [`arch::global_asm!`][global_asm] - [`ops::ControlFlow::is_break`][is_break] - [`ops::ControlFlow::is_continue`][is_continue] - [`TryFrom<char> for u8`][try_from_char_u8] - [`char::TryFromCharError`][try_from_char_err] implementing `Clone`, `Debug`, `Display`, `PartialEq`, `Copy`, `Eq`, `Error` - [`iter::zip`][zip] - [`NonZeroU8::is_power_of_two`][is_power_of_two8] - [`NonZeroU16::is_power_of_two`][is_power_of_two16] - [`NonZeroU32::is_power_of_two`][is_power_of_two32] - [`NonZeroU64::is_power_of_two`][is_power_of_two64] - [`NonZeroU128::is_power_of_two`][is_power_of_two128] - [`DoubleEndedIterator for ToLowercase`][lowercase] - [`DoubleEndedIterator for ToUppercase`][uppercase] - [`TryFrom<&mut [T]> for [T; N]`][tryfrom_ref_arr] - [`UnwindSafe for Once`][unwindsafe_once] - [`RefUnwindSafe for Once`][refunwindsafe_once] - [armv8 neon intrinsics for aarch64][stdarch/1266] Const-stable: - [`mem::MaybeUninit::as_ptr`][muninit_ptr] - [`mem::MaybeUninit::assume_init`][muninit_init] - [`mem::MaybeUninit::assume_init_ref`][muninit_init_ref] - [`ffi::CStr::from_bytes_with_nul_unchecked`][cstr_from_bytes] Cargo ----- - [Stabilize the `strip` profile option][cargo/10088] - [Stabilize future-incompat-report][cargo/10165] - [Support abbreviating `--release` as `-r`][cargo/10133] - [Support `term.quiet` configuration][cargo/10152] - [Remove `--host` from cargo {publish,search,login}][cargo/10145] Compatibility Notes ------------------- - [Refactor weak symbols in std::sys::unix][90846] This may add new, versioned, symbols when building with a newer glibc, as the standard library uses weak linkage rather than dynamically attempting to load certain symbols at runtime. - [Deprecate crate_type and crate_name nested inside `#![cfg_attr]`][83744] This adds a future compatibility lint to supporting the use of cfg_attr wrapping either crate_type or crate_name specification within Rust files; it is recommended that users migrate to setting the equivalent command line flags. - [Remove effect of `#[no_link]` attribute on name resolution][92034] This may expose new names, leading to conflicts with preexisting names in a given namespace and a compilation failure. - [Cargo will document libraries before binaries.][cargo/10172] - [Respect doc=false in dependencies, not just the root crate][cargo/10201] - [Weaken guarantee around advancing underlying iterators in zip][83791] - [Make split_inclusive() on an empty slice yield an empty output][89825] - [Update std::env::temp_dir to use GetTempPath2 on Windows when available.][89999] Changes in rust wrapper package: - Update to version 1.59.0 - for details see the rust1.59 package - Update package description to help users choose what tooling to install. - Provide rust+cargo by cargo: all cargo<n> package provide this symbol too. Having the meta package provide it allows OBS to have a generic prefernece on the meta package for all packages 'just' requiring rust+cargo. - Update to version 1.58.0 cargo-1.59.0-150300.21.20.1.x86_64.rpm cargo1.58-1.58.0-150300.7.3.1.x86_64.rpm cargo1.59-1.59.0-150300.7.4.2.x86_64.rpm rust-1.59.0-150300.21.20.1.src.rpm rust-1.59.0-150300.21.20.1.x86_64.rpm rust1.58-1.58.0-150300.7.3.1.src.rpm rust1.58-1.58.0-150300.7.3.1.x86_64.rpm rust1.59-1.59.0-150300.7.4.2.src.rpm rust1.59-1.59.0-150300.7.4.2.x86_64.rpm cargo-1.59.0-150300.21.20.1.s390x.rpm cargo1.58-1.58.0-150300.7.3.1.s390x.rpm cargo1.59-1.59.0-150300.7.4.2.s390x.rpm rust-1.59.0-150300.21.20.1.s390x.rpm rust1.58-1.58.0-150300.7.3.1.s390x.rpm rust1.59-1.59.0-150300.7.4.2.s390x.rpm cargo-1.59.0-150300.21.20.1.ppc64le.rpm cargo1.58-1.58.0-150300.7.3.1.ppc64le.rpm cargo1.59-1.59.0-150300.7.4.2.ppc64le.rpm rust-1.59.0-150300.21.20.1.ppc64le.rpm rust1.58-1.58.0-150300.7.3.1.ppc64le.rpm rust1.59-1.59.0-150300.7.4.2.ppc64le.rpm cargo-1.59.0-150300.21.20.1.aarch64.rpm cargo1.58-1.58.0-150300.7.3.1.aarch64.rpm cargo1.59-1.59.0-150300.7.4.2.aarch64.rpm rust-1.59.0-150300.21.20.1.aarch64.rpm rust1.58-1.58.0-150300.7.3.1.aarch64.rpm rust1.59-1.59.0-150300.7.4.2.aarch64.rpm openSUSE-SLE-15.3-2022-771 moderate SUSE Updates openSUSE-SLE 15.3 This update for libseccomp fixes the following issues: - Check if we have NR_openat2, avoid using its definition when not (bsc#1196825), this fixes build of systemd. libseccomp-2.5.3-150300.10.8.1.src.rpm libseccomp-devel-2.5.3-150300.10.8.1.x86_64.rpm libseccomp-tools-2.5.3-150300.10.8.1.x86_64.rpm libseccomp2-2.5.3-150300.10.8.1.x86_64.rpm libseccomp2-32bit-2.5.3-150300.10.8.1.x86_64.rpm libseccomp-devel-2.5.3-150300.10.8.1.s390x.rpm libseccomp-tools-2.5.3-150300.10.8.1.s390x.rpm libseccomp2-2.5.3-150300.10.8.1.s390x.rpm libseccomp-devel-2.5.3-150300.10.8.1.ppc64le.rpm libseccomp-tools-2.5.3-150300.10.8.1.ppc64le.rpm libseccomp2-2.5.3-150300.10.8.1.ppc64le.rpm libseccomp-devel-2.5.3-150300.10.8.1.aarch64.rpm libseccomp-tools-2.5.3-150300.10.8.1.aarch64.rpm libseccomp2-2.5.3-150300.10.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-950 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for lifecycle-data-sle-module-development-tools fixes the following issues: - Added expiration data for GCC 10 yearly update for the Toolchain/Development modules (jsc#ECO-2373, jsc#SLE-16821, jsc#SLE-16822) lifecycle-data-sle-module-development-tools-1-3.13.1.noarch.rpm lifecycle-data-sle-module-development-tools-1-3.13.1.src.rpm openSUSE-SLE-15.3-2022-869 moderate SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Fix ziomon throughput calculation. Use time interval, during which read and write requests were started and finished, for calculation of throughput of zfcp adapter instead of d2c time of read and write requests (bsc#1196439) libekmfweb1-2.15.1-150300.8.17.1.s390x.rpm libekmfweb1-devel-2.15.1-150300.8.17.1.s390x.rpm osasnmpd-2.15.1-150300.8.17.1.s390x.rpm s390-tools-2.15.1-150300.8.17.1.s390x.rpm s390-tools-2.15.1-150300.8.17.1.src.rpm s390-tools-hmcdrvfs-2.15.1-150300.8.17.1.s390x.rpm s390-tools-zdsfs-2.15.1-150300.8.17.1.s390x.rpm openSUSE-SLE-15.3-2022-806 important SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - Fix lsslot showing "Unknown slot type" for recent PCIe slot types (bsc#1196411) powerpc-utils-1.3.9-150300.9.20.1.ppc64le.rpm powerpc-utils-1.3.9-150300.9.20.1.src.rpm openSUSE-SLE-15.3-2022-783 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.6.1 ESR (bsc#1196809): - CVE-2022-26485: Use-after-free in XSLT parameter processing - CVE-2022-26486: Use-after-free in WebGPU IPC Framework MozillaFirefox-91.6.1-152.19.1.src.rpm MozillaFirefox-91.6.1-152.19.1.x86_64.rpm MozillaFirefox-branding-upstream-91.6.1-152.19.1.x86_64.rpm MozillaFirefox-devel-91.6.1-152.19.1.x86_64.rpm MozillaFirefox-translations-common-91.6.1-152.19.1.x86_64.rpm MozillaFirefox-translations-other-91.6.1-152.19.1.x86_64.rpm MozillaFirefox-91.6.1-152.19.1.s390x.rpm MozillaFirefox-branding-upstream-91.6.1-152.19.1.s390x.rpm MozillaFirefox-devel-91.6.1-152.19.1.s390x.rpm MozillaFirefox-translations-common-91.6.1-152.19.1.s390x.rpm MozillaFirefox-translations-other-91.6.1-152.19.1.s390x.rpm MozillaFirefox-91.6.1-152.19.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.6.1-152.19.1.ppc64le.rpm MozillaFirefox-devel-91.6.1-152.19.1.ppc64le.rpm MozillaFirefox-translations-common-91.6.1-152.19.1.ppc64le.rpm MozillaFirefox-translations-other-91.6.1-152.19.1.ppc64le.rpm MozillaFirefox-91.6.1-152.19.1.aarch64.rpm MozillaFirefox-branding-upstream-91.6.1-152.19.1.aarch64.rpm MozillaFirefox-devel-91.6.1-152.19.1.aarch64.rpm MozillaFirefox-translations-common-91.6.1-152.19.1.aarch64.rpm MozillaFirefox-translations-other-91.6.1-152.19.1.aarch64.rpm openSUSE-SLE-15.3-2022-1021 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - allow setting external core size to infinity (bsc#1195899 jsc#SLE-23868 jsc#SLE-23870) systemd-234-24.108.1.src.rpm systemd-bash-completion-234-24.108.1.noarch.rpm openSUSE-SLE-15.3-2022-936 moderate SUSE Updates openSUSE-SLE 15.3 This update for filesystem and systemd-rpm-macros fixes the following issues: filesystem: - Add path /lib/modprobe.d (bsc#1196275, jsc#SLE-20639) systemd-rpm-macros: - Make %_modprobedir point to /lib/modprobe.d (bsc#1196275, bsc#1196406) filesystem-15.0-11.8.1.src.rpm filesystem-15.0-11.8.1.x86_64.rpm systemd-rpm-macros-11-7.27.1.noarch.rpm systemd-rpm-macros-11-7.27.1.src.rpm filesystem-15.0-11.8.1.s390x.rpm filesystem-15.0-11.8.1.ppc64le.rpm filesystem-15.0-11.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-870 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openj9 fixes the following issues: Update to OpenJDK 8u322 build 04 with OpenJ9 0.30.0: - Fixing the following vulnerabilities: CVE-2022-21248 (bsc#1194926), CVE-2022-21277 (bsc#1194930), CVE-2022-21282 (bsc#1194933), CVE-2022-21291 (bsc#1194925), CVE-2022-21293 (bsc#1194935), CVE-2022-21294 (bsc#1194934), CVE-2022-21296 (bsc#1194932), CVE-2022-21299 (bsc#1194931), CVE-2022-21305 (bsc#1194939), CVE-2022-21340 (bsc#1194940), CVE-2022-21341 (bsc#1194941), CVE-2022-21360 (bsc#1194929), CVE-2022-21365 (bsc#1194928), CVE-2022-21366 (bsc#1194927). java-1_8_0-openj9-1.8.0.322-3.21.2.src.rpm java-1_8_0-openj9-1.8.0.322-3.21.2.x86_64.rpm java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.x86_64.rpm java-1_8_0-openj9-demo-1.8.0.322-3.21.2.x86_64.rpm java-1_8_0-openj9-devel-1.8.0.322-3.21.2.x86_64.rpm java-1_8_0-openj9-headless-1.8.0.322-3.21.2.x86_64.rpm java-1_8_0-openj9-javadoc-1.8.0.322-3.21.2.noarch.rpm java-1_8_0-openj9-src-1.8.0.322-3.21.2.x86_64.rpm java-1_8_0-openj9-1.8.0.322-3.21.2.s390x.rpm java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.s390x.rpm java-1_8_0-openj9-demo-1.8.0.322-3.21.2.s390x.rpm java-1_8_0-openj9-devel-1.8.0.322-3.21.2.s390x.rpm java-1_8_0-openj9-headless-1.8.0.322-3.21.2.s390x.rpm java-1_8_0-openj9-src-1.8.0.322-3.21.2.s390x.rpm java-1_8_0-openj9-1.8.0.322-3.21.2.ppc64le.rpm java-1_8_0-openj9-accessibility-1.8.0.322-3.21.2.ppc64le.rpm java-1_8_0-openj9-demo-1.8.0.322-3.21.2.ppc64le.rpm java-1_8_0-openj9-devel-1.8.0.322-3.21.2.ppc64le.rpm java-1_8_0-openj9-headless-1.8.0.322-3.21.2.ppc64le.rpm java-1_8_0-openj9-src-1.8.0.322-3.21.2.ppc64le.rpm openSUSE-SLE-15.3-2022-873 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: Update to version jdk8u322 (icedtea-3.22.0) Including the following security fixes: - CVE-2022-21248, bsc#1194926: Enhance cross VM serialization - CVE-2022-21283, bsc#1194937: Better String matching - CVE-2022-21293, bsc#1194935: Improve String constructions - CVE-2022-21294, bsc#1194934: Enhance construction of Identity maps - CVE-2022-21282, bsc#1194933: Better resolution of URIs - CVE-2022-21296, bsc#1194932: Improve SAX Parser configuration management - CVE-2022-21299, bsc#1194931: Improved scanning of XML entities - CVE-2022-21305, bsc#1194939: Better array indexing - CVE-2022-21340, bsc#1194940: Verify Jar Verification - CVE-2022-21341, bsc#1194941: Improve serial forms for transport - CVE-2022-21349: Improve Solaris font rendering - CVE-2022-21360, bsc#1194929: Enhance BMP image support - CVE-2022-21365, bsc#1194928: Enhanced BMP processing java-1_8_0-openjdk-1.8.0.322-3.64.2.src.rpm java-1_8_0-openjdk-1.8.0.322-3.64.2.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.322-3.64.2.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.322-3.64.2.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.322-3.64.2.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.322-3.64.2.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.322-3.64.2.noarch.rpm java-1_8_0-openjdk-src-1.8.0.322-3.64.2.x86_64.rpm java-1_8_0-openjdk-1.8.0.322-3.64.2.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.322-3.64.2.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.322-3.64.2.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.322-3.64.2.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.322-3.64.2.s390x.rpm java-1_8_0-openjdk-src-1.8.0.322-3.64.2.s390x.rpm java-1_8_0-openjdk-1.8.0.322-3.64.2.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.322-3.64.2.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.322-3.64.2.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.322-3.64.2.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.322-3.64.2.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.322-3.64.2.ppc64le.rpm java-1_8_0-openjdk-1.8.0.322-3.64.2.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.322-3.64.2.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.322-3.64.2.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.322-3.64.2.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.322-3.64.2.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.322-3.64.2.aarch64.rpm openSUSE-SLE-15.3-2022-947 moderate SUSE Updates openSUSE-SLE 15.3 This update for dapl fixes the following issues: - Allow to override build date in order to allow for reproducible builds. (bsc#1047218) dapl-2.1.10-3.6.1.src.rpm dapl-2.1.10-3.6.1.x86_64.rpm dapl-debug-2.1.10-3.6.1.src.rpm dapl-debug-2.1.10-3.6.1.x86_64.rpm dapl-debug-devel-2.1.10-3.6.1.x86_64.rpm dapl-debug-libs-2.1.10-3.6.1.x86_64.rpm dapl-debug-utils-2.1.10-3.6.1.x86_64.rpm dapl-devel-2.1.10-3.6.1.x86_64.rpm dapl-devel-32bit-2.1.10-3.6.1.x86_64.rpm dapl-utils-2.1.10-3.6.1.x86_64.rpm libdat2-2-2.1.10-3.6.1.x86_64.rpm libdat2-2-32bit-2.1.10-3.6.1.x86_64.rpm dapl-2.1.10-3.6.1.s390x.rpm dapl-debug-2.1.10-3.6.1.s390x.rpm dapl-debug-devel-2.1.10-3.6.1.s390x.rpm dapl-debug-libs-2.1.10-3.6.1.s390x.rpm dapl-debug-utils-2.1.10-3.6.1.s390x.rpm dapl-devel-2.1.10-3.6.1.s390x.rpm dapl-utils-2.1.10-3.6.1.s390x.rpm libdat2-2-2.1.10-3.6.1.s390x.rpm dapl-2.1.10-3.6.1.ppc64le.rpm dapl-debug-2.1.10-3.6.1.ppc64le.rpm dapl-debug-devel-2.1.10-3.6.1.ppc64le.rpm dapl-debug-libs-2.1.10-3.6.1.ppc64le.rpm dapl-debug-utils-2.1.10-3.6.1.ppc64le.rpm dapl-devel-2.1.10-3.6.1.ppc64le.rpm dapl-utils-2.1.10-3.6.1.ppc64le.rpm libdat2-2-2.1.10-3.6.1.ppc64le.rpm dapl-2.1.10-3.6.1.aarch64.rpm dapl-debug-2.1.10-3.6.1.aarch64.rpm dapl-debug-devel-2.1.10-3.6.1.aarch64.rpm dapl-debug-libs-2.1.10-3.6.1.aarch64.rpm dapl-debug-utils-2.1.10-3.6.1.aarch64.rpm dapl-devel-2.1.10-3.6.1.aarch64.rpm dapl-utils-2.1.10-3.6.1.aarch64.rpm libdat2-2-2.1.10-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-847 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21708: Fixed a memory corruption issue when processing integers from an untrusted source (bsc#1196252). apache2-mod_php7-7.4.6-3.35.1.x86_64.rpm php7-7.4.6-3.35.1.src.rpm php7-7.4.6-3.35.1.x86_64.rpm php7-bcmath-7.4.6-3.35.1.x86_64.rpm php7-bz2-7.4.6-3.35.1.x86_64.rpm php7-calendar-7.4.6-3.35.1.x86_64.rpm php7-ctype-7.4.6-3.35.1.x86_64.rpm php7-curl-7.4.6-3.35.1.x86_64.rpm php7-dba-7.4.6-3.35.1.x86_64.rpm php7-devel-7.4.6-3.35.1.x86_64.rpm php7-dom-7.4.6-3.35.1.x86_64.rpm php7-embed-7.4.6-3.35.1.x86_64.rpm php7-enchant-7.4.6-3.35.1.x86_64.rpm php7-exif-7.4.6-3.35.1.x86_64.rpm php7-fastcgi-7.4.6-3.35.1.x86_64.rpm php7-fileinfo-7.4.6-3.35.1.x86_64.rpm php7-firebird-7.4.6-3.35.1.x86_64.rpm php7-fpm-7.4.6-3.35.1.x86_64.rpm php7-ftp-7.4.6-3.35.1.x86_64.rpm php7-gd-7.4.6-3.35.1.x86_64.rpm php7-gettext-7.4.6-3.35.1.x86_64.rpm php7-gmp-7.4.6-3.35.1.x86_64.rpm php7-iconv-7.4.6-3.35.1.x86_64.rpm php7-intl-7.4.6-3.35.1.x86_64.rpm php7-json-7.4.6-3.35.1.x86_64.rpm php7-ldap-7.4.6-3.35.1.x86_64.rpm php7-mbstring-7.4.6-3.35.1.x86_64.rpm php7-mysql-7.4.6-3.35.1.x86_64.rpm php7-odbc-7.4.6-3.35.1.x86_64.rpm php7-opcache-7.4.6-3.35.1.x86_64.rpm php7-openssl-7.4.6-3.35.1.x86_64.rpm php7-pcntl-7.4.6-3.35.1.x86_64.rpm php7-pdo-7.4.6-3.35.1.x86_64.rpm php7-pgsql-7.4.6-3.35.1.x86_64.rpm php7-phar-7.4.6-3.35.1.x86_64.rpm php7-posix-7.4.6-3.35.1.x86_64.rpm php7-readline-7.4.6-3.35.1.x86_64.rpm php7-shmop-7.4.6-3.35.1.x86_64.rpm php7-snmp-7.4.6-3.35.1.x86_64.rpm php7-soap-7.4.6-3.35.1.x86_64.rpm php7-sockets-7.4.6-3.35.1.x86_64.rpm php7-sodium-7.4.6-3.35.1.x86_64.rpm php7-sqlite-7.4.6-3.35.1.x86_64.rpm php7-sysvmsg-7.4.6-3.35.1.x86_64.rpm php7-sysvsem-7.4.6-3.35.1.x86_64.rpm php7-sysvshm-7.4.6-3.35.1.x86_64.rpm php7-test-7.4.6-3.35.1.src.rpm php7-test-7.4.6-3.35.1.x86_64.rpm php7-tidy-7.4.6-3.35.1.x86_64.rpm php7-tokenizer-7.4.6-3.35.1.x86_64.rpm php7-xmlreader-7.4.6-3.35.1.x86_64.rpm php7-xmlrpc-7.4.6-3.35.1.x86_64.rpm php7-xmlwriter-7.4.6-3.35.1.x86_64.rpm php7-xsl-7.4.6-3.35.1.x86_64.rpm php7-zip-7.4.6-3.35.1.x86_64.rpm php7-zlib-7.4.6-3.35.1.x86_64.rpm apache2-mod_php7-7.4.6-3.35.1.s390x.rpm php7-7.4.6-3.35.1.s390x.rpm php7-bcmath-7.4.6-3.35.1.s390x.rpm php7-bz2-7.4.6-3.35.1.s390x.rpm php7-calendar-7.4.6-3.35.1.s390x.rpm php7-ctype-7.4.6-3.35.1.s390x.rpm php7-curl-7.4.6-3.35.1.s390x.rpm php7-dba-7.4.6-3.35.1.s390x.rpm php7-devel-7.4.6-3.35.1.s390x.rpm php7-dom-7.4.6-3.35.1.s390x.rpm php7-embed-7.4.6-3.35.1.s390x.rpm php7-enchant-7.4.6-3.35.1.s390x.rpm php7-exif-7.4.6-3.35.1.s390x.rpm php7-fastcgi-7.4.6-3.35.1.s390x.rpm php7-fileinfo-7.4.6-3.35.1.s390x.rpm php7-firebird-7.4.6-3.35.1.s390x.rpm php7-fpm-7.4.6-3.35.1.s390x.rpm php7-ftp-7.4.6-3.35.1.s390x.rpm php7-gd-7.4.6-3.35.1.s390x.rpm php7-gettext-7.4.6-3.35.1.s390x.rpm php7-gmp-7.4.6-3.35.1.s390x.rpm php7-iconv-7.4.6-3.35.1.s390x.rpm php7-intl-7.4.6-3.35.1.s390x.rpm php7-json-7.4.6-3.35.1.s390x.rpm php7-ldap-7.4.6-3.35.1.s390x.rpm php7-mbstring-7.4.6-3.35.1.s390x.rpm php7-mysql-7.4.6-3.35.1.s390x.rpm php7-odbc-7.4.6-3.35.1.s390x.rpm php7-opcache-7.4.6-3.35.1.s390x.rpm php7-openssl-7.4.6-3.35.1.s390x.rpm php7-pcntl-7.4.6-3.35.1.s390x.rpm php7-pdo-7.4.6-3.35.1.s390x.rpm php7-pgsql-7.4.6-3.35.1.s390x.rpm php7-phar-7.4.6-3.35.1.s390x.rpm php7-posix-7.4.6-3.35.1.s390x.rpm php7-readline-7.4.6-3.35.1.s390x.rpm php7-shmop-7.4.6-3.35.1.s390x.rpm php7-snmp-7.4.6-3.35.1.s390x.rpm php7-soap-7.4.6-3.35.1.s390x.rpm php7-sockets-7.4.6-3.35.1.s390x.rpm php7-sodium-7.4.6-3.35.1.s390x.rpm php7-sqlite-7.4.6-3.35.1.s390x.rpm php7-sysvmsg-7.4.6-3.35.1.s390x.rpm php7-sysvsem-7.4.6-3.35.1.s390x.rpm php7-sysvshm-7.4.6-3.35.1.s390x.rpm php7-test-7.4.6-3.35.1.s390x.rpm php7-tidy-7.4.6-3.35.1.s390x.rpm php7-tokenizer-7.4.6-3.35.1.s390x.rpm php7-xmlreader-7.4.6-3.35.1.s390x.rpm php7-xmlrpc-7.4.6-3.35.1.s390x.rpm php7-xmlwriter-7.4.6-3.35.1.s390x.rpm php7-xsl-7.4.6-3.35.1.s390x.rpm php7-zip-7.4.6-3.35.1.s390x.rpm php7-zlib-7.4.6-3.35.1.s390x.rpm apache2-mod_php7-7.4.6-3.35.1.ppc64le.rpm php7-7.4.6-3.35.1.ppc64le.rpm php7-bcmath-7.4.6-3.35.1.ppc64le.rpm php7-bz2-7.4.6-3.35.1.ppc64le.rpm php7-calendar-7.4.6-3.35.1.ppc64le.rpm php7-ctype-7.4.6-3.35.1.ppc64le.rpm php7-curl-7.4.6-3.35.1.ppc64le.rpm php7-dba-7.4.6-3.35.1.ppc64le.rpm php7-devel-7.4.6-3.35.1.ppc64le.rpm php7-dom-7.4.6-3.35.1.ppc64le.rpm php7-embed-7.4.6-3.35.1.ppc64le.rpm php7-enchant-7.4.6-3.35.1.ppc64le.rpm php7-exif-7.4.6-3.35.1.ppc64le.rpm php7-fastcgi-7.4.6-3.35.1.ppc64le.rpm php7-fileinfo-7.4.6-3.35.1.ppc64le.rpm php7-firebird-7.4.6-3.35.1.ppc64le.rpm php7-fpm-7.4.6-3.35.1.ppc64le.rpm php7-ftp-7.4.6-3.35.1.ppc64le.rpm php7-gd-7.4.6-3.35.1.ppc64le.rpm php7-gettext-7.4.6-3.35.1.ppc64le.rpm php7-gmp-7.4.6-3.35.1.ppc64le.rpm php7-iconv-7.4.6-3.35.1.ppc64le.rpm php7-intl-7.4.6-3.35.1.ppc64le.rpm php7-json-7.4.6-3.35.1.ppc64le.rpm php7-ldap-7.4.6-3.35.1.ppc64le.rpm php7-mbstring-7.4.6-3.35.1.ppc64le.rpm php7-mysql-7.4.6-3.35.1.ppc64le.rpm php7-odbc-7.4.6-3.35.1.ppc64le.rpm php7-opcache-7.4.6-3.35.1.ppc64le.rpm php7-openssl-7.4.6-3.35.1.ppc64le.rpm php7-pcntl-7.4.6-3.35.1.ppc64le.rpm php7-pdo-7.4.6-3.35.1.ppc64le.rpm php7-pgsql-7.4.6-3.35.1.ppc64le.rpm php7-phar-7.4.6-3.35.1.ppc64le.rpm php7-posix-7.4.6-3.35.1.ppc64le.rpm php7-readline-7.4.6-3.35.1.ppc64le.rpm php7-shmop-7.4.6-3.35.1.ppc64le.rpm php7-snmp-7.4.6-3.35.1.ppc64le.rpm php7-soap-7.4.6-3.35.1.ppc64le.rpm php7-sockets-7.4.6-3.35.1.ppc64le.rpm php7-sodium-7.4.6-3.35.1.ppc64le.rpm php7-sqlite-7.4.6-3.35.1.ppc64le.rpm php7-sysvmsg-7.4.6-3.35.1.ppc64le.rpm php7-sysvsem-7.4.6-3.35.1.ppc64le.rpm php7-sysvshm-7.4.6-3.35.1.ppc64le.rpm php7-test-7.4.6-3.35.1.ppc64le.rpm php7-tidy-7.4.6-3.35.1.ppc64le.rpm php7-tokenizer-7.4.6-3.35.1.ppc64le.rpm php7-xmlreader-7.4.6-3.35.1.ppc64le.rpm php7-xmlrpc-7.4.6-3.35.1.ppc64le.rpm php7-xmlwriter-7.4.6-3.35.1.ppc64le.rpm php7-xsl-7.4.6-3.35.1.ppc64le.rpm php7-zip-7.4.6-3.35.1.ppc64le.rpm php7-zlib-7.4.6-3.35.1.ppc64le.rpm apache2-mod_php7-7.4.6-3.35.1.aarch64.rpm php7-7.4.6-3.35.1.aarch64.rpm php7-bcmath-7.4.6-3.35.1.aarch64.rpm php7-bz2-7.4.6-3.35.1.aarch64.rpm php7-calendar-7.4.6-3.35.1.aarch64.rpm php7-ctype-7.4.6-3.35.1.aarch64.rpm php7-curl-7.4.6-3.35.1.aarch64.rpm php7-dba-7.4.6-3.35.1.aarch64.rpm php7-devel-7.4.6-3.35.1.aarch64.rpm php7-dom-7.4.6-3.35.1.aarch64.rpm php7-embed-7.4.6-3.35.1.aarch64.rpm php7-enchant-7.4.6-3.35.1.aarch64.rpm php7-exif-7.4.6-3.35.1.aarch64.rpm php7-fastcgi-7.4.6-3.35.1.aarch64.rpm php7-fileinfo-7.4.6-3.35.1.aarch64.rpm php7-firebird-7.4.6-3.35.1.aarch64.rpm php7-fpm-7.4.6-3.35.1.aarch64.rpm php7-ftp-7.4.6-3.35.1.aarch64.rpm php7-gd-7.4.6-3.35.1.aarch64.rpm php7-gettext-7.4.6-3.35.1.aarch64.rpm php7-gmp-7.4.6-3.35.1.aarch64.rpm php7-iconv-7.4.6-3.35.1.aarch64.rpm php7-intl-7.4.6-3.35.1.aarch64.rpm php7-json-7.4.6-3.35.1.aarch64.rpm php7-ldap-7.4.6-3.35.1.aarch64.rpm php7-mbstring-7.4.6-3.35.1.aarch64.rpm php7-mysql-7.4.6-3.35.1.aarch64.rpm php7-odbc-7.4.6-3.35.1.aarch64.rpm php7-opcache-7.4.6-3.35.1.aarch64.rpm php7-openssl-7.4.6-3.35.1.aarch64.rpm php7-pcntl-7.4.6-3.35.1.aarch64.rpm php7-pdo-7.4.6-3.35.1.aarch64.rpm php7-pgsql-7.4.6-3.35.1.aarch64.rpm php7-phar-7.4.6-3.35.1.aarch64.rpm php7-posix-7.4.6-3.35.1.aarch64.rpm php7-readline-7.4.6-3.35.1.aarch64.rpm php7-shmop-7.4.6-3.35.1.aarch64.rpm php7-snmp-7.4.6-3.35.1.aarch64.rpm php7-soap-7.4.6-3.35.1.aarch64.rpm php7-sockets-7.4.6-3.35.1.aarch64.rpm php7-sodium-7.4.6-3.35.1.aarch64.rpm php7-sqlite-7.4.6-3.35.1.aarch64.rpm php7-sysvmsg-7.4.6-3.35.1.aarch64.rpm php7-sysvsem-7.4.6-3.35.1.aarch64.rpm php7-sysvshm-7.4.6-3.35.1.aarch64.rpm php7-test-7.4.6-3.35.1.aarch64.rpm php7-tidy-7.4.6-3.35.1.aarch64.rpm php7-tokenizer-7.4.6-3.35.1.aarch64.rpm php7-xmlreader-7.4.6-3.35.1.aarch64.rpm php7-xmlrpc-7.4.6-3.35.1.aarch64.rpm php7-xmlwriter-7.4.6-3.35.1.aarch64.rpm php7-xsl-7.4.6-3.35.1.aarch64.rpm php7-zip-7.4.6-3.35.1.aarch64.rpm php7-zlib-7.4.6-3.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-1409 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc11 fixes the following issues: - Add a list of Obsoletes to libstdc++6-pp-gcc11 so updates from packages provided by older GCC work. Add a requires from that package to the corresponding libstc++6 package to keep those at the same version. [bsc#1196107] - Fixed memory corruption when creating dependences with the D language frontend. - Add gcc11-PIE, similar to gcc-PIE but affecting gcc11 [bsc#1195628] - Put libstdc++6-pp Requires on the shared library and drop to Recommends. cpp11-11.2.1+git610-150000.1.6.6.x86_64.rpm cross-aarch64-gcc11-11.2.1+git610-150000.1.6.3.src.rpm cross-aarch64-gcc11-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.src.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-aarch64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-arm-gcc11-11.2.1+git610-150000.1.6.4.src.rpm cross-arm-gcc11-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.src.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-150000.1.6.2.src.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-150000.1.6.2.x86_64.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.src.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-hppa-gcc11-11.2.1+git610-150000.1.6.4.src.rpm cross-hppa-gcc11-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-i386-gcc11-11.2.1+git610-150000.1.6.4.src.rpm cross-i386-gcc11-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-m68k-gcc11-11.2.1+git610-150000.1.6.4.src.rpm cross-m68k-gcc11-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-mips-gcc11-11.2.1+git610-150000.1.6.4.src.rpm cross-mips-gcc11-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-nvptx-gcc11-11.2.1+git610-150000.1.6.2.src.rpm cross-nvptx-gcc11-11.2.1+git610-150000.1.6.2.x86_64.rpm cross-nvptx-newlib11-devel-11.2.1+git610-150000.1.6.2.x86_64.rpm cross-ppc64-gcc11-11.2.1+git610-150000.1.6.4.src.rpm cross-ppc64-gcc11-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.x86_64.rpm cross-ppc64le-gcc11-11.2.1+git610-150000.1.6.3.src.rpm cross-ppc64le-gcc11-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-ppc64le-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.src.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-riscv64-gcc11-11.2.1+git610-150000.1.6.3.src.rpm cross-riscv64-gcc11-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.src.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-150000.1.6.2.src.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-150000.1.6.2.x86_64.rpm cross-s390x-gcc11-11.2.1+git610-150000.1.6.3.src.rpm cross-s390x-gcc11-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-s390x-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-sparc-gcc11-11.2.1+git610-150000.1.6.3.src.rpm cross-sparc-gcc11-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-sparc64-gcc11-11.2.1+git610-150000.1.6.3.src.rpm cross-sparc64-gcc11-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.x86_64.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.x86_64.rpm gcc11-11.2.1+git610-150000.1.6.6.src.rpm gcc11-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-PIE-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-ada-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-ada-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-c++-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-c++-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-d-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-d-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-fortran-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-fortran-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-go-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-go-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-info-11.2.1+git610-150000.1.6.6.noarch.rpm gcc11-locale-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-obj-c++-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-obj-c++-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-objc-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-objc-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm gcc11-testresults-11.2.1+git610-150000.1.6.9.src.rpm gcc11-testresults-11.2.1+git610-150000.1.6.9.x86_64.rpm libada11-11.2.1+git610-150000.1.6.6.x86_64.rpm libada11-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libasan6-11.2.1+git610-150000.1.6.6.x86_64.rpm libasan6-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libatomic1-11.2.1+git610-150000.1.6.6.x86_64.rpm libatomic1-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libgcc_s1-11.2.1+git610-150000.1.6.6.x86_64.rpm libgcc_s1-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libgdruntime2-11.2.1+git610-150000.1.6.6.x86_64.rpm libgdruntime2-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libgfortran5-11.2.1+git610-150000.1.6.6.x86_64.rpm libgfortran5-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libgo19-11.2.1+git610-150000.1.6.6.x86_64.rpm libgo19-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libgomp1-11.2.1+git610-150000.1.6.6.x86_64.rpm libgomp1-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libgphobos2-11.2.1+git610-150000.1.6.6.x86_64.rpm libgphobos2-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libitm1-11.2.1+git610-150000.1.6.6.x86_64.rpm libitm1-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm liblsan0-11.2.1+git610-150000.1.6.6.x86_64.rpm libobjc4-11.2.1+git610-150000.1.6.6.x86_64.rpm libobjc4-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libquadmath0-11.2.1+git610-150000.1.6.6.x86_64.rpm libquadmath0-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libstdc++6-11.2.1+git610-150000.1.6.6.x86_64.rpm libstdc++6-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libstdc++6-devel-gcc11-11.2.1+git610-150000.1.6.6.x86_64.rpm libstdc++6-devel-gcc11-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libstdc++6-locale-11.2.1+git610-150000.1.6.6.x86_64.rpm libstdc++6-pp-gcc11-11.2.1+git610-150000.1.6.6.x86_64.rpm libstdc++6-pp-gcc11-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm libtsan0-11.2.1+git610-150000.1.6.6.x86_64.rpm libubsan1-11.2.1+git610-150000.1.6.6.x86_64.rpm libubsan1-32bit-11.2.1+git610-150000.1.6.6.x86_64.rpm cpp11-11.2.1+git610-150000.1.6.6.s390x.rpm cross-aarch64-gcc11-11.2.1+git610-150000.1.6.3.s390x.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.s390x.rpm cross-aarch64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.s390x.rpm cross-arm-gcc11-11.2.1+git610-150000.1.6.4.s390x.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.s390x.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.s390x.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-150000.1.6.2.s390x.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.s390x.rpm cross-hppa-gcc11-11.2.1+git610-150000.1.6.4.s390x.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.s390x.rpm cross-i386-gcc11-11.2.1+git610-150000.1.6.4.s390x.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.s390x.rpm cross-m68k-gcc11-11.2.1+git610-150000.1.6.4.s390x.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.s390x.rpm cross-mips-gcc11-11.2.1+git610-150000.1.6.4.s390x.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.s390x.rpm cross-ppc64-gcc11-11.2.1+git610-150000.1.6.4.s390x.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.s390x.rpm cross-ppc64le-gcc11-11.2.1+git610-150000.1.6.3.s390x.rpm cross-ppc64le-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.s390x.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.s390x.rpm cross-riscv64-gcc11-11.2.1+git610-150000.1.6.3.s390x.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.s390x.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.s390x.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-150000.1.6.2.s390x.rpm cross-sparc-gcc11-11.2.1+git610-150000.1.6.3.s390x.rpm cross-sparc64-gcc11-11.2.1+git610-150000.1.6.3.s390x.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.s390x.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.s390x.rpm cross-x86_64-gcc11-11.2.1+git610-150000.1.6.3.s390x.rpm cross-x86_64-gcc11-11.2.1+git610-150000.1.6.3.src.rpm cross-x86_64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.s390x.rpm gcc11-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-PIE-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-ada-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-ada-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-c++-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-c++-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-d-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-d-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-fortran-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-fortran-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-go-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-go-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-locale-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-obj-c++-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-obj-c++-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-objc-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-objc-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm gcc11-testresults-11.2.1+git610-150000.1.6.9.s390x.rpm libada11-11.2.1+git610-150000.1.6.6.s390x.rpm libada11-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libasan6-11.2.1+git610-150000.1.6.6.s390x.rpm libasan6-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libatomic1-11.2.1+git610-150000.1.6.6.s390x.rpm libatomic1-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libgcc_s1-11.2.1+git610-150000.1.6.6.s390x.rpm libgcc_s1-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libgdruntime2-11.2.1+git610-150000.1.6.6.s390x.rpm libgdruntime2-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libgfortran5-11.2.1+git610-150000.1.6.6.s390x.rpm libgfortran5-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libgo19-11.2.1+git610-150000.1.6.6.s390x.rpm libgo19-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libgomp1-11.2.1+git610-150000.1.6.6.s390x.rpm libgomp1-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libgphobos2-11.2.1+git610-150000.1.6.6.s390x.rpm libgphobos2-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libitm1-11.2.1+git610-150000.1.6.6.s390x.rpm libitm1-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libobjc4-11.2.1+git610-150000.1.6.6.s390x.rpm libobjc4-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libstdc++6-11.2.1+git610-150000.1.6.6.s390x.rpm libstdc++6-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libstdc++6-devel-gcc11-11.2.1+git610-150000.1.6.6.s390x.rpm libstdc++6-devel-gcc11-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libstdc++6-locale-11.2.1+git610-150000.1.6.6.s390x.rpm libstdc++6-pp-gcc11-11.2.1+git610-150000.1.6.6.s390x.rpm libstdc++6-pp-gcc11-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm libubsan1-11.2.1+git610-150000.1.6.6.s390x.rpm libubsan1-32bit-11.2.1+git610-150000.1.6.6.s390x.rpm cpp11-11.2.1+git610-150000.1.6.6.ppc64le.rpm cross-aarch64-gcc11-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-aarch64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-arm-gcc11-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-150000.1.6.2.ppc64le.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-hppa-gcc11-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-i386-gcc11-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-m68k-gcc11-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-mips-gcc11-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-ppc64-gcc11-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.ppc64le.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-riscv64-gcc11-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-150000.1.6.2.ppc64le.rpm cross-s390x-gcc11-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-s390x-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-sparc-gcc11-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-sparc64-gcc11-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-x86_64-gcc11-11.2.1+git610-150000.1.6.3.ppc64le.rpm cross-x86_64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.ppc64le.rpm gcc11-11.2.1+git610-150000.1.6.6.ppc64le.rpm gcc11-PIE-11.2.1+git610-150000.1.6.6.ppc64le.rpm gcc11-ada-11.2.1+git610-150000.1.6.6.ppc64le.rpm gcc11-c++-11.2.1+git610-150000.1.6.6.ppc64le.rpm gcc11-fortran-11.2.1+git610-150000.1.6.6.ppc64le.rpm gcc11-go-11.2.1+git610-150000.1.6.6.ppc64le.rpm gcc11-locale-11.2.1+git610-150000.1.6.6.ppc64le.rpm gcc11-obj-c++-11.2.1+git610-150000.1.6.6.ppc64le.rpm gcc11-objc-11.2.1+git610-150000.1.6.6.ppc64le.rpm gcc11-testresults-11.2.1+git610-150000.1.6.9.ppc64le.rpm libada11-11.2.1+git610-150000.1.6.6.ppc64le.rpm libasan6-11.2.1+git610-150000.1.6.6.ppc64le.rpm libatomic1-11.2.1+git610-150000.1.6.6.ppc64le.rpm libgcc_s1-11.2.1+git610-150000.1.6.6.ppc64le.rpm libgfortran5-11.2.1+git610-150000.1.6.6.ppc64le.rpm libgo19-11.2.1+git610-150000.1.6.6.ppc64le.rpm libgomp1-11.2.1+git610-150000.1.6.6.ppc64le.rpm libitm1-11.2.1+git610-150000.1.6.6.ppc64le.rpm liblsan0-11.2.1+git610-150000.1.6.6.ppc64le.rpm libobjc4-11.2.1+git610-150000.1.6.6.ppc64le.rpm libquadmath0-11.2.1+git610-150000.1.6.6.ppc64le.rpm libstdc++6-11.2.1+git610-150000.1.6.6.ppc64le.rpm libstdc++6-devel-gcc11-11.2.1+git610-150000.1.6.6.ppc64le.rpm libstdc++6-locale-11.2.1+git610-150000.1.6.6.ppc64le.rpm libstdc++6-pp-gcc11-11.2.1+git610-150000.1.6.6.ppc64le.rpm libtsan0-11.2.1+git610-150000.1.6.6.ppc64le.rpm libubsan1-11.2.1+git610-150000.1.6.6.ppc64le.rpm cpp11-11.2.1+git610-150000.1.6.6.aarch64.rpm cross-arm-gcc11-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-150000.1.6.2.aarch64.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-hppa-gcc11-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-i386-gcc11-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-m68k-gcc11-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-mips-gcc11-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-ppc64-gcc11-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.4.aarch64.rpm cross-ppc64le-gcc11-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-ppc64le-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-riscv64-gcc11-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-150000.1.6.2.aarch64.rpm cross-s390x-gcc11-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-s390x-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-sparc-gcc11-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-sparc64-gcc11-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-x86_64-gcc11-11.2.1+git610-150000.1.6.3.aarch64.rpm cross-x86_64-gcc11-icecream-backend-11.2.1+git610-150000.1.6.3.aarch64.rpm gcc11-11.2.1+git610-150000.1.6.6.aarch64.rpm gcc11-PIE-11.2.1+git610-150000.1.6.6.aarch64.rpm gcc11-ada-11.2.1+git610-150000.1.6.6.aarch64.rpm gcc11-c++-11.2.1+git610-150000.1.6.6.aarch64.rpm gcc11-d-11.2.1+git610-150000.1.6.6.aarch64.rpm gcc11-fortran-11.2.1+git610-150000.1.6.6.aarch64.rpm gcc11-go-11.2.1+git610-150000.1.6.6.aarch64.rpm gcc11-locale-11.2.1+git610-150000.1.6.6.aarch64.rpm gcc11-obj-c++-11.2.1+git610-150000.1.6.6.aarch64.rpm gcc11-objc-11.2.1+git610-150000.1.6.6.aarch64.rpm gcc11-testresults-11.2.1+git610-150000.1.6.9.aarch64.rpm libada11-11.2.1+git610-150000.1.6.6.aarch64.rpm libasan6-11.2.1+git610-150000.1.6.6.aarch64.rpm libatomic1-11.2.1+git610-150000.1.6.6.aarch64.rpm libgcc_s1-11.2.1+git610-150000.1.6.6.aarch64.rpm libgdruntime2-11.2.1+git610-150000.1.6.6.aarch64.rpm libgfortran5-11.2.1+git610-150000.1.6.6.aarch64.rpm libgo19-11.2.1+git610-150000.1.6.6.aarch64.rpm libgomp1-11.2.1+git610-150000.1.6.6.aarch64.rpm libgphobos2-11.2.1+git610-150000.1.6.6.aarch64.rpm libhwasan0-11.2.1+git610-150000.1.6.6.aarch64.rpm libitm1-11.2.1+git610-150000.1.6.6.aarch64.rpm liblsan0-11.2.1+git610-150000.1.6.6.aarch64.rpm libobjc4-11.2.1+git610-150000.1.6.6.aarch64.rpm libstdc++6-11.2.1+git610-150000.1.6.6.aarch64.rpm libstdc++6-devel-gcc11-11.2.1+git610-150000.1.6.6.aarch64.rpm libstdc++6-locale-11.2.1+git610-150000.1.6.6.aarch64.rpm libstdc++6-pp-gcc11-11.2.1+git610-150000.1.6.6.aarch64.rpm libtsan0-11.2.1+git610-150000.1.6.6.aarch64.rpm libubsan1-11.2.1+git610-150000.1.6.6.aarch64.rpm openSUSE-SLE-15.3-2022-848 moderate SUSE Updates openSUSE-SLE 15.3 This update for kiwi-templates-JeOS fixes the following issues: - Fix /etc/machine-id setup by appending 'rw' to the default boot options (bsc#1194484) kiwi-templates-JeOS-15.3-150300.4.7.1.noarch.rpm kiwi-templates-JeOS-15.3-150300.4.7.1.src.rpm openSUSE-SLE-15.3-2022-948 moderate SUSE Updates openSUSE-SLE 15.3 This update for sudo fixes the following issues: - Fix user set timeout not being honored (bsc#1193446) sudo-1.9.5p2-150300.3.6.1.src.rpm sudo-1.9.5p2-150300.3.6.1.x86_64.rpm sudo-devel-1.9.5p2-150300.3.6.1.x86_64.rpm sudo-plugin-python-1.9.5p2-150300.3.6.1.x86_64.rpm sudo-test-1.9.5p2-150300.3.6.1.x86_64.rpm sudo-1.9.5p2-150300.3.6.1.s390x.rpm sudo-devel-1.9.5p2-150300.3.6.1.s390x.rpm sudo-plugin-python-1.9.5p2-150300.3.6.1.s390x.rpm sudo-test-1.9.5p2-150300.3.6.1.s390x.rpm sudo-1.9.5p2-150300.3.6.1.ppc64le.rpm sudo-devel-1.9.5p2-150300.3.6.1.ppc64le.rpm sudo-plugin-python-1.9.5p2-150300.3.6.1.ppc64le.rpm sudo-test-1.9.5p2-150300.3.6.1.ppc64le.rpm sudo-1.9.5p2-150300.3.6.1.aarch64.rpm sudo-devel-1.9.5p2-150300.3.6.1.aarch64.rpm sudo-plugin-python-1.9.5p2-150300.3.6.1.aarch64.rpm sudo-test-1.9.5p2-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-942 moderate SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - CVE-2021-3572: Fixed an improper handling of unicode characters in pip (bsc#1186819). libpython3_6m1_0-3.6.15-150300.10.21.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.15-150300.10.21.1.x86_64.rpm python3-3.6.15-150300.10.21.1.src.rpm python3-3.6.15-150300.10.21.1.x86_64.rpm python3-base-3.6.15-150300.10.21.1.x86_64.rpm python3-core-3.6.15-150300.10.21.1.src.rpm python3-curses-3.6.15-150300.10.21.1.x86_64.rpm python3-dbm-3.6.15-150300.10.21.1.x86_64.rpm python3-devel-3.6.15-150300.10.21.1.x86_64.rpm python3-doc-3.6.15-150300.10.21.1.x86_64.rpm python3-doc-devhelp-3.6.15-150300.10.21.1.x86_64.rpm python3-documentation-3.6.15-150300.10.21.1.src.rpm python3-idle-3.6.15-150300.10.21.1.x86_64.rpm python3-testsuite-3.6.15-150300.10.21.1.x86_64.rpm python3-tk-3.6.15-150300.10.21.1.x86_64.rpm python3-tools-3.6.15-150300.10.21.1.x86_64.rpm libpython3_6m1_0-3.6.15-150300.10.21.1.s390x.rpm python3-3.6.15-150300.10.21.1.s390x.rpm python3-base-3.6.15-150300.10.21.1.s390x.rpm python3-curses-3.6.15-150300.10.21.1.s390x.rpm python3-dbm-3.6.15-150300.10.21.1.s390x.rpm python3-devel-3.6.15-150300.10.21.1.s390x.rpm python3-doc-3.6.15-150300.10.21.1.s390x.rpm python3-doc-devhelp-3.6.15-150300.10.21.1.s390x.rpm python3-idle-3.6.15-150300.10.21.1.s390x.rpm python3-testsuite-3.6.15-150300.10.21.1.s390x.rpm python3-tk-3.6.15-150300.10.21.1.s390x.rpm python3-tools-3.6.15-150300.10.21.1.s390x.rpm libpython3_6m1_0-3.6.15-150300.10.21.1.ppc64le.rpm python3-3.6.15-150300.10.21.1.ppc64le.rpm python3-base-3.6.15-150300.10.21.1.ppc64le.rpm python3-curses-3.6.15-150300.10.21.1.ppc64le.rpm python3-dbm-3.6.15-150300.10.21.1.ppc64le.rpm python3-devel-3.6.15-150300.10.21.1.ppc64le.rpm python3-doc-3.6.15-150300.10.21.1.ppc64le.rpm python3-doc-devhelp-3.6.15-150300.10.21.1.ppc64le.rpm python3-idle-3.6.15-150300.10.21.1.ppc64le.rpm python3-testsuite-3.6.15-150300.10.21.1.ppc64le.rpm python3-tk-3.6.15-150300.10.21.1.ppc64le.rpm python3-tools-3.6.15-150300.10.21.1.ppc64le.rpm libpython3_6m1_0-3.6.15-150300.10.21.1.aarch64.rpm python3-3.6.15-150300.10.21.1.aarch64.rpm python3-base-3.6.15-150300.10.21.1.aarch64.rpm python3-curses-3.6.15-150300.10.21.1.aarch64.rpm python3-dbm-3.6.15-150300.10.21.1.aarch64.rpm python3-devel-3.6.15-150300.10.21.1.aarch64.rpm python3-doc-3.6.15-150300.10.21.1.aarch64.rpm python3-doc-devhelp-3.6.15-150300.10.21.1.aarch64.rpm python3-idle-3.6.15-150300.10.21.1.aarch64.rpm python3-testsuite-3.6.15-150300.10.21.1.aarch64.rpm python3-tk-3.6.15-150300.10.21.1.aarch64.rpm python3-tools-3.6.15-150300.10.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-1074 moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-init contains the following fixes: - Enable broader systemctl location. (bsc#1193531) - Remove unneeded BuildRequires on python3-nose. cloud-init-21.2-8.54.2.src.rpm cloud-init-21.2-8.54.2.x86_64.rpm cloud-init-config-suse-21.2-8.54.2.x86_64.rpm cloud-init-doc-21.2-8.54.2.x86_64.rpm cloud-init-21.2-8.54.2.s390x.rpm cloud-init-config-suse-21.2-8.54.2.s390x.rpm cloud-init-doc-21.2-8.54.2.s390x.rpm cloud-init-21.2-8.54.2.ppc64le.rpm cloud-init-config-suse-21.2-8.54.2.ppc64le.rpm cloud-init-doc-21.2-8.54.2.ppc64le.rpm cloud-init-21.2-8.54.2.aarch64.rpm cloud-init-config-suse-21.2-8.54.2.aarch64.rpm cloud-init-doc-21.2-8.54.2.aarch64.rpm openSUSE-SLE-15.3-2022-804 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 91.6.2 (bsc#1196809): - CVE-2022-26485: Use-after-free in XSLT parameter processing - CVE-2022-26486: Use-after-free in WebGPU IPC Framework MozillaThunderbird-91.6.2-8.59.1.src.rpm MozillaThunderbird-91.6.2-8.59.1.x86_64.rpm MozillaThunderbird-translations-common-91.6.2-8.59.1.x86_64.rpm MozillaThunderbird-translations-other-91.6.2-8.59.1.x86_64.rpm MozillaThunderbird-91.6.2-8.59.1.s390x.rpm MozillaThunderbird-translations-common-91.6.2-8.59.1.s390x.rpm MozillaThunderbird-translations-other-91.6.2-8.59.1.s390x.rpm MozillaThunderbird-91.6.2-8.59.1.ppc64le.rpm MozillaThunderbird-translations-common-91.6.2-8.59.1.ppc64le.rpm MozillaThunderbird-translations-other-91.6.2-8.59.1.ppc64le.rpm MozillaThunderbird-91.6.2-8.59.1.aarch64.rpm MozillaThunderbird-translations-common-91.6.2-8.59.1.aarch64.rpm MozillaThunderbird-translations-other-91.6.2-8.59.1.aarch64.rpm openSUSE-SLE-15.3-2022-821 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.7.0 ESR (bsc#1196900): - CVE-2022-26383: Browser window spoof using fullscreen mode - CVE-2022-26384: iframe allow-scripts sandbox bypass - CVE-2022-26387: Time-of-check time-of-use bug when verifying add-on signatures - CVE-2022-26381: Use-after-free in text reflows - CVE-2022-26386: Temporary files downloaded to /tmp and accessible by other local users MozillaFirefox-91.7.0-152.22.1.src.rpm MozillaFirefox-91.7.0-152.22.1.x86_64.rpm MozillaFirefox-branding-upstream-91.7.0-152.22.1.x86_64.rpm MozillaFirefox-devel-91.7.0-152.22.1.x86_64.rpm MozillaFirefox-translations-common-91.7.0-152.22.1.x86_64.rpm MozillaFirefox-translations-other-91.7.0-152.22.1.x86_64.rpm MozillaFirefox-91.7.0-152.22.1.s390x.rpm MozillaFirefox-branding-upstream-91.7.0-152.22.1.s390x.rpm MozillaFirefox-devel-91.7.0-152.22.1.s390x.rpm MozillaFirefox-translations-common-91.7.0-152.22.1.s390x.rpm MozillaFirefox-translations-other-91.7.0-152.22.1.s390x.rpm MozillaFirefox-91.7.0-152.22.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.7.0-152.22.1.ppc64le.rpm MozillaFirefox-devel-91.7.0-152.22.1.ppc64le.rpm MozillaFirefox-translations-common-91.7.0-152.22.1.ppc64le.rpm MozillaFirefox-translations-other-91.7.0-152.22.1.ppc64le.rpm MozillaFirefox-91.7.0-152.22.1.aarch64.rpm MozillaFirefox-branding-upstream-91.7.0-152.22.1.aarch64.rpm MozillaFirefox-devel-91.7.0-152.22.1.aarch64.rpm MozillaFirefox-translations-common-91.7.0-152.22.1.aarch64.rpm MozillaFirefox-translations-other-91.7.0-152.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-943 moderate SUSE Updates openSUSE-SLE 15.3 This update for slirp4netns fixes the following issues: - CVE-2020-29130: Fixed an invalid memory access while processing ARP packets (bsc#1179467). slirp4netns-0.4.7-3.15.1.src.rpm slirp4netns-0.4.7-3.15.1.x86_64.rpm slirp4netns-0.4.7-3.15.1.s390x.rpm slirp4netns-0.4.7-3.15.1.ppc64le.rpm slirp4netns-0.4.7-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-1627 moderate SUSE Updates openSUSE-SLE 15.3 This update for cluster-glue fixes the following issues: - Fix for comment in external ec2 (bsc#1197681) - Support IMDSv2 in EC2 stonith agent. (jsc#SLE-23490, jsc#SLE-23491, jsc#SLE-23492, jsc#SLE-23494) cluster-glue-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.src.rpm cluster-glue-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.x86_64.rpm libglue-devel-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.x86_64.rpm libglue-devel-32bit-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.x86_64.rpm libglue2-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.x86_64.rpm libglue2-32bit-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.x86_64.rpm cluster-glue-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.s390x.rpm libglue-devel-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.s390x.rpm libglue2-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.s390x.rpm cluster-glue-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.ppc64le.rpm libglue-devel-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.ppc64le.rpm libglue2-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.ppc64le.rpm cluster-glue-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.aarch64.rpm libglue-devel-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.aarch64.rpm libglue2-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-849 important SUSE Updates openSUSE-SLE 15.3 This update for python-kiwi fixes the following issues: - Don't exit the script on deprecated function use (bsc#1196644) * The "exit 0" stops processing of the calling script with a success exit code, which leads to incomplete and broken images. dracut-kiwi-lib-9.24.16-3.47.1.x86_64.rpm dracut-kiwi-live-9.24.16-3.47.1.x86_64.rpm dracut-kiwi-oem-dump-9.24.16-3.47.1.x86_64.rpm dracut-kiwi-oem-repart-9.24.16-3.47.1.x86_64.rpm dracut-kiwi-overlay-9.24.16-3.47.1.x86_64.rpm kiwi-man-pages-9.24.16-3.47.1.x86_64.rpm kiwi-pxeboot-9.24.16-3.47.1.x86_64.rpm kiwi-systemdeps-9.24.16-3.47.1.x86_64.rpm kiwi-systemdeps-bootloaders-9.24.16-3.47.1.x86_64.rpm kiwi-systemdeps-containers-9.24.16-3.47.1.x86_64.rpm kiwi-systemdeps-core-9.24.16-3.47.1.x86_64.rpm kiwi-systemdeps-disk-images-9.24.16-3.47.1.x86_64.rpm kiwi-systemdeps-filesystems-9.24.16-3.47.1.x86_64.rpm kiwi-systemdeps-image-validation-9.24.16-3.47.1.x86_64.rpm kiwi-systemdeps-iso-media-9.24.16-3.47.1.x86_64.rpm kiwi-tools-9.24.16-3.47.1.x86_64.rpm python-kiwi-9.24.16-3.47.1.src.rpm python3-kiwi-9.24.16-3.47.1.x86_64.rpm dracut-kiwi-lib-9.24.16-3.47.1.s390x.rpm dracut-kiwi-live-9.24.16-3.47.1.s390x.rpm dracut-kiwi-oem-dump-9.24.16-3.47.1.s390x.rpm dracut-kiwi-oem-repart-9.24.16-3.47.1.s390x.rpm dracut-kiwi-overlay-9.24.16-3.47.1.s390x.rpm kiwi-man-pages-9.24.16-3.47.1.s390x.rpm kiwi-systemdeps-9.24.16-3.47.1.s390x.rpm kiwi-systemdeps-bootloaders-9.24.16-3.47.1.s390x.rpm kiwi-systemdeps-containers-9.24.16-3.47.1.s390x.rpm kiwi-systemdeps-core-9.24.16-3.47.1.s390x.rpm kiwi-systemdeps-disk-images-9.24.16-3.47.1.s390x.rpm kiwi-systemdeps-filesystems-9.24.16-3.47.1.s390x.rpm kiwi-systemdeps-image-validation-9.24.16-3.47.1.s390x.rpm kiwi-systemdeps-iso-media-9.24.16-3.47.1.s390x.rpm kiwi-tools-9.24.16-3.47.1.s390x.rpm python3-kiwi-9.24.16-3.47.1.s390x.rpm dracut-kiwi-lib-9.24.16-3.47.1.ppc64le.rpm dracut-kiwi-live-9.24.16-3.47.1.ppc64le.rpm dracut-kiwi-oem-dump-9.24.16-3.47.1.ppc64le.rpm dracut-kiwi-oem-repart-9.24.16-3.47.1.ppc64le.rpm dracut-kiwi-overlay-9.24.16-3.47.1.ppc64le.rpm kiwi-man-pages-9.24.16-3.47.1.ppc64le.rpm kiwi-systemdeps-9.24.16-3.47.1.ppc64le.rpm kiwi-systemdeps-bootloaders-9.24.16-3.47.1.ppc64le.rpm kiwi-systemdeps-containers-9.24.16-3.47.1.ppc64le.rpm kiwi-systemdeps-core-9.24.16-3.47.1.ppc64le.rpm kiwi-systemdeps-disk-images-9.24.16-3.47.1.ppc64le.rpm kiwi-systemdeps-filesystems-9.24.16-3.47.1.ppc64le.rpm kiwi-systemdeps-image-validation-9.24.16-3.47.1.ppc64le.rpm kiwi-systemdeps-iso-media-9.24.16-3.47.1.ppc64le.rpm kiwi-tools-9.24.16-3.47.1.ppc64le.rpm python3-kiwi-9.24.16-3.47.1.ppc64le.rpm dracut-kiwi-lib-9.24.16-3.47.1.aarch64.rpm dracut-kiwi-live-9.24.16-3.47.1.aarch64.rpm dracut-kiwi-oem-dump-9.24.16-3.47.1.aarch64.rpm dracut-kiwi-oem-repart-9.24.16-3.47.1.aarch64.rpm dracut-kiwi-overlay-9.24.16-3.47.1.aarch64.rpm kiwi-man-pages-9.24.16-3.47.1.aarch64.rpm kiwi-systemdeps-9.24.16-3.47.1.aarch64.rpm kiwi-systemdeps-bootloaders-9.24.16-3.47.1.aarch64.rpm kiwi-systemdeps-containers-9.24.16-3.47.1.aarch64.rpm kiwi-systemdeps-core-9.24.16-3.47.1.aarch64.rpm kiwi-systemdeps-disk-images-9.24.16-3.47.1.aarch64.rpm kiwi-systemdeps-filesystems-9.24.16-3.47.1.aarch64.rpm kiwi-systemdeps-image-validation-9.24.16-3.47.1.aarch64.rpm kiwi-systemdeps-iso-media-9.24.16-3.47.1.aarch64.rpm kiwi-tools-9.24.16-3.47.1.aarch64.rpm python3-kiwi-9.24.16-3.47.1.aarch64.rpm openSUSE-SLE-15.3-2022-1179 moderate SUSE Updates openSUSE-SLE 15.3 This update for net-snmp fixes the following issues: - Decouple snmp-mibs from net-snmp version to allow major version upgrade (bsc#1196955). libsnmp30-32bit-5.7.3-10.12.1.x86_64.rpm libsnmp30-5.7.3-10.12.1.x86_64.rpm net-snmp-5.7.3-10.12.1.src.rpm net-snmp-5.7.3-10.12.1.x86_64.rpm net-snmp-devel-32bit-5.7.3-10.12.1.x86_64.rpm net-snmp-devel-5.7.3-10.12.1.x86_64.rpm perl-SNMP-5.7.3-10.12.1.x86_64.rpm python2-net-snmp-5.7.3-10.12.1.x86_64.rpm python3-net-snmp-5.7.3-10.12.1.x86_64.rpm snmp-mibs-5.7.3-10.12.1.x86_64.rpm libsnmp30-5.7.3-10.12.1.s390x.rpm net-snmp-5.7.3-10.12.1.s390x.rpm net-snmp-devel-5.7.3-10.12.1.s390x.rpm perl-SNMP-5.7.3-10.12.1.s390x.rpm python2-net-snmp-5.7.3-10.12.1.s390x.rpm python3-net-snmp-5.7.3-10.12.1.s390x.rpm snmp-mibs-5.7.3-10.12.1.s390x.rpm libsnmp30-5.7.3-10.12.1.ppc64le.rpm net-snmp-5.7.3-10.12.1.ppc64le.rpm net-snmp-devel-5.7.3-10.12.1.ppc64le.rpm perl-SNMP-5.7.3-10.12.1.ppc64le.rpm python2-net-snmp-5.7.3-10.12.1.ppc64le.rpm python3-net-snmp-5.7.3-10.12.1.ppc64le.rpm snmp-mibs-5.7.3-10.12.1.ppc64le.rpm libsnmp30-5.7.3-10.12.1.aarch64.rpm net-snmp-5.7.3-10.12.1.aarch64.rpm net-snmp-devel-5.7.3-10.12.1.aarch64.rpm perl-SNMP-5.7.3-10.12.1.aarch64.rpm python2-net-snmp-5.7.3-10.12.1.aarch64.rpm python3-net-snmp-5.7.3-10.12.1.aarch64.rpm snmp-mibs-5.7.3-10.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-833 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-iscsi fixes the following issue: - Update to latest upstream, including test cleanup, minor bug fixes (cosmetic), and fixing iscsi-init (bsc#1195656). iscsiuio-0.7.8.6-150300.32.15.1.x86_64.rpm libopeniscsiusr0_2_0-2.1.6-150300.32.15.1.x86_64.rpm open-iscsi-2.1.6-150300.32.15.1.src.rpm open-iscsi-2.1.6-150300.32.15.1.x86_64.rpm open-iscsi-devel-2.1.6-150300.32.15.1.x86_64.rpm iscsiuio-0.7.8.6-150300.32.15.1.s390x.rpm libopeniscsiusr0_2_0-2.1.6-150300.32.15.1.s390x.rpm open-iscsi-2.1.6-150300.32.15.1.s390x.rpm open-iscsi-devel-2.1.6-150300.32.15.1.s390x.rpm iscsiuio-0.7.8.6-150300.32.15.1.ppc64le.rpm libopeniscsiusr0_2_0-2.1.6-150300.32.15.1.ppc64le.rpm open-iscsi-2.1.6-150300.32.15.1.ppc64le.rpm open-iscsi-devel-2.1.6-150300.32.15.1.ppc64le.rpm iscsiuio-0.7.8.6-150300.32.15.1.aarch64.rpm libopeniscsiusr0_2_0-2.1.6-150300.32.15.1.aarch64.rpm open-iscsi-2.1.6-150300.32.15.1.aarch64.rpm open-iscsi-devel-2.1.6-150300.32.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-856 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_0_0 fixes the following issues: - CVE-2022-0778: Infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877). libopenssl-1_0_0-devel-1.0.2p-3.49.1.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-3.49.1.x86_64.rpm libopenssl10-1.0.2p-3.49.1.x86_64.rpm libopenssl1_0_0-1.0.2p-3.49.1.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-3.49.1.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-3.49.1.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-3.49.1.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-3.49.1.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-3.49.1.x86_64.rpm openssl-1_0_0-1.0.2p-3.49.1.src.rpm openssl-1_0_0-1.0.2p-3.49.1.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-3.49.1.x86_64.rpm openssl-1_0_0-doc-1.0.2p-3.49.1.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-3.49.1.s390x.rpm libopenssl10-1.0.2p-3.49.1.s390x.rpm libopenssl1_0_0-1.0.2p-3.49.1.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-3.49.1.s390x.rpm libopenssl1_0_0-steam-1.0.2p-3.49.1.s390x.rpm openssl-1_0_0-1.0.2p-3.49.1.s390x.rpm openssl-1_0_0-cavs-1.0.2p-3.49.1.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-3.49.1.ppc64le.rpm libopenssl10-1.0.2p-3.49.1.ppc64le.rpm libopenssl1_0_0-1.0.2p-3.49.1.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-3.49.1.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-3.49.1.ppc64le.rpm openssl-1_0_0-1.0.2p-3.49.1.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-3.49.1.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-3.49.1.aarch64.rpm libopenssl10-1.0.2p-3.49.1.aarch64.rpm libopenssl1_0_0-1.0.2p-3.49.1.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-3.49.1.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-3.49.1.aarch64.rpm openssl-1_0_0-1.0.2p-3.49.1.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-3.49.1.aarch64.rpm openSUSE-SLE-15.3-2022-1132 moderate SUSE Updates openSUSE-SLE 15.3 This update for kdump fixes the following issues: - Fix return code when no watchdog sysfs entry is found (bsc#1197069) - Add watchdog modules to kdump initrd to ensure kernel crash dumps are properly collected before a machine is rebooted by a watchdog (bsc#1189923) kdump-0.9.0-150300.18.8.1.src.rpm kdump-0.9.0-150300.18.8.1.x86_64.rpm kdump-0.9.0-150300.18.8.1.s390x.rpm kdump-0.9.0-150300.18.8.1.ppc64le.rpm kdump-0.9.0-150300.18.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-872 important SUSE Updates openSUSE-SLE 15.3 This update for stunnel fixes the following issues: Update to 5.62 including new features and bugfixes: * Security bugfixes - The "redirect" option was fixed to properly handle unauthenticated requests (bsc#1182529). - Fixed a double free with OpenSSL older than 1.1.0. - Added hardening to systemd service (bsc#1181400). * New features - Added new "protocol = capwin" and "protocol = capwinctrl" configuration file options. - Added support for the new SSL_set_options() values. - Added a bash completion script. - New 'sessionResume' service-level option to allow or disallow session resumption - Download fresh ca-certs.pem for each new release. - New 'protocolHeader' service-level option to insert custom 'connect' protocol negotiation headers. This feature can be used to impersonate other software (e.g. web browsers). - 'protocolHost' can also be used to control the client SMTP protocol negotiation HELO/EHLO value. - Initial FIPS 3.0 support. - Client-side "protocol = ldap" support * Bugfixes - Fixed a transfer() loop bug. - Fixed reloading configuration with "systemctl reload stunnel.service". - Fixed incorrect messages logged for OpenSSL errors. - Fixed 'redirect' with 'protocol'. This combination is not supported by 'smtp', 'pop3' and 'imap' protocols. - X.509v3 extensions required by modern versions of OpenSSL are added to generated self-signed test certificates. - Fixed a tiny memory leak in configuration file reload error handling. - Fixed engine initialization. - FIPS TLS feature is reported when a provider or container is available, and not when FIPS control API is available. - Fix configuration reload when compression is used - Fix test suite fixed not to require external connectivity stunnel-5.62-3.14.1.src.rpm stunnel-5.62-3.14.1.x86_64.rpm stunnel-doc-5.62-3.14.1.noarch.rpm stunnel-5.62-3.14.1.s390x.rpm stunnel-5.62-3.14.1.ppc64le.rpm stunnel-5.62-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-862 important SUSE Updates openSUSE-SLE 15.3 This update for SAPHanaSR-ScaleOut fixes the following issues: - Add systemd support for the resource agent to interact with the new SAP unit files for sapstartsrv. As the new version of the SAP Startup Framework uses systemd unit files to control the sapstartsrv process instead of the previous used SysV init script, the handling of sapstartsrv inside the resource agents is adapted to support both ways. (bsc#1189532, bsc#1189533) - Add dedicated logging of HANA_CALL problems. It is now possible to identify if the called `hana` command or the needed `su` command throws the error, and for further hints it logs the stderr output. Additionally it is possible to get regular log messages for the used commands, their return code and their stderr output by enabling the 'debug' mode of the resource agents. (bsc#1182774) - Add switch 'cib_access' to the SAPHanaSrMultiTarget hook to give control over the hook runtime. Default is 'all-on' which means there are 3 cib calls performed inside the hook script. Changing the value of 'cib_access' inside the global.ini file to'site-on' to perform the absolute minimum cib calls (only one). (bsc#1189540) SAPHanaSR-ScaleOut-0.181.0-30.1.noarch.rpm SAPHanaSR-ScaleOut-0.181.0-30.1.src.rpm SAPHanaSR-ScaleOut-doc-0.181.0-30.1.noarch.rpm openSUSE-SLE-15.3-2022-863 important SUSE Updates openSUSE-SLE 15.3 This update for sapstartsrv-resource-agents fixes the following issues: - Add systemd support for the resource agent to interact with the new SAP unit files for sapstartsrv. As the new version of the SAP Startup Framework uses systemd unit files to control the sapstartsrv process instead of the previous used SysV init script, handling of sapstartsrv inside the resource agents is adapted to support both ways (bsc#1189529) - Prevent false posivite with pgrep in function '_get_status' (bsc#1193568) sapstartsrv-resource-agents-0.9.0+git.1645795466.55a8cca-1.12.1.noarch.rpm sapstartsrv-resource-agents-0.9.0+git.1645795466.55a8cca-1.12.1.src.rpm openSUSE-SLE-15.3-2022-1040 moderate SUSE Updates openSUSE-SLE 15.3 This update for protobuf fixes the following issues: - CVE-2021-22570: Fix incorrect parsing of nullchar in the proto symbol (bsc#1195258). libprotobuf-lite20-3.9.2-4.12.1.x86_64.rpm libprotobuf-lite20-32bit-3.9.2-4.12.1.x86_64.rpm libprotobuf20-3.9.2-4.12.1.x86_64.rpm libprotobuf20-32bit-3.9.2-4.12.1.x86_64.rpm libprotoc20-3.9.2-4.12.1.x86_64.rpm libprotoc20-32bit-3.9.2-4.12.1.x86_64.rpm protobuf-3.9.2-4.12.1.src.rpm protobuf-devel-3.9.2-4.12.1.x86_64.rpm protobuf-java-3.9.2-4.12.1.x86_64.rpm protobuf-source-3.9.2-4.12.1.noarch.rpm python2-protobuf-3.9.2-4.12.1.x86_64.rpm python3-protobuf-3.9.2-4.12.1.x86_64.rpm libprotobuf-lite20-3.9.2-4.12.1.s390x.rpm libprotobuf20-3.9.2-4.12.1.s390x.rpm libprotoc20-3.9.2-4.12.1.s390x.rpm protobuf-devel-3.9.2-4.12.1.s390x.rpm protobuf-java-3.9.2-4.12.1.s390x.rpm python2-protobuf-3.9.2-4.12.1.s390x.rpm python3-protobuf-3.9.2-4.12.1.s390x.rpm libprotobuf-lite20-3.9.2-4.12.1.ppc64le.rpm libprotobuf20-3.9.2-4.12.1.ppc64le.rpm libprotoc20-3.9.2-4.12.1.ppc64le.rpm protobuf-devel-3.9.2-4.12.1.ppc64le.rpm protobuf-java-3.9.2-4.12.1.ppc64le.rpm python2-protobuf-3.9.2-4.12.1.ppc64le.rpm python3-protobuf-3.9.2-4.12.1.ppc64le.rpm libprotobuf-lite20-3.9.2-4.12.1.aarch64.rpm libprotobuf20-3.9.2-4.12.1.aarch64.rpm libprotoc20-3.9.2-4.12.1.aarch64.rpm protobuf-devel-3.9.2-4.12.1.aarch64.rpm protobuf-java-3.9.2-4.12.1.aarch64.rpm python2-protobuf-3.9.2-4.12.1.aarch64.rpm python3-protobuf-3.9.2-4.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-823 moderate SUSE Updates openSUSE-SLE 15.3 This update for protobuf fixes the following issues: - CVE-2021-22570: Fix incorrect parsing of nullchar in the proto symbol (bsc#1195258). libprotobuf-lite15-3.5.0-5.5.1.x86_64.rpm libprotobuf-lite15-32bit-3.5.0-5.5.1.x86_64.rpm libprotobuf15-3.5.0-5.5.1.x86_64.rpm libprotobuf15-32bit-3.5.0-5.5.1.x86_64.rpm libprotoc15-3.5.0-5.5.1.x86_64.rpm libprotoc15-32bit-3.5.0-5.5.1.x86_64.rpm protobuf-3.5.0-5.5.1.src.rpm libprotobuf-lite15-3.5.0-5.5.1.s390x.rpm libprotobuf15-3.5.0-5.5.1.s390x.rpm libprotoc15-3.5.0-5.5.1.s390x.rpm libprotobuf-lite15-3.5.0-5.5.1.ppc64le.rpm libprotobuf15-3.5.0-5.5.1.ppc64le.rpm libprotoc15-3.5.0-5.5.1.ppc64le.rpm libprotobuf-lite15-3.5.0-5.5.1.aarch64.rpm libprotobuf15-3.5.0-5.5.1.aarch64.rpm libprotoc15-3.5.0-5.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-1066 important SUSE Updates openSUSE-SLE 15.3 This update for mlocate fixes the following issues: - Require `apparmor-abstractions`, because `apparmor.service` will fail if `mlocate` is installed. (bsc#1195144) mlocate-0.26-150100.7.3.2.src.rpm mlocate-0.26-150100.7.3.2.x86_64.rpm mlocate-lang-0.26-150100.7.3.2.noarch.rpm mlocate-0.26-150100.7.3.2.s390x.rpm mlocate-0.26-150100.7.3.2.ppc64le.rpm mlocate-0.26-150100.7.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-906 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Updated to version 91.7 (bsc#1196900): - CVE-2022-26381: Fixed an invalid memory access due to text reflow when SVG objects were present. - CVE-2022-26383: Fixed an issue where, when resizing a popup after requesting fullscreen access, the popup would not display the fullscreen notification. - CVE-2022-26384: Fixed an iframe XSS sandbox bypass when allow-popups was used on the iframe. - CVE-2022-26386: Fixed an issue where downloadable temporary files were accessible to other local users. - CVE-2022-26387: Fixed a potential add-on signature verification bypass due to a race condition. MozillaThunderbird-91.7.0-150200.8.62.7.src.rpm MozillaThunderbird-91.7.0-150200.8.62.7.x86_64.rpm MozillaThunderbird-translations-common-91.7.0-150200.8.62.7.x86_64.rpm MozillaThunderbird-translations-other-91.7.0-150200.8.62.7.x86_64.rpm MozillaThunderbird-91.7.0-150200.8.62.7.s390x.rpm MozillaThunderbird-translations-common-91.7.0-150200.8.62.7.s390x.rpm MozillaThunderbird-translations-other-91.7.0-150200.8.62.7.s390x.rpm MozillaThunderbird-91.7.0-150200.8.62.7.ppc64le.rpm MozillaThunderbird-translations-common-91.7.0-150200.8.62.7.ppc64le.rpm MozillaThunderbird-translations-other-91.7.0-150200.8.62.7.ppc64le.rpm MozillaThunderbird-91.7.0-150200.8.62.7.aarch64.rpm MozillaThunderbird-translations-common-91.7.0-150200.8.62.7.aarch64.rpm MozillaThunderbird-translations-other-91.7.0-150200.8.62.7.aarch64.rpm openSUSE-SLE-15.3-2022-874 moderate SUSE Updates openSUSE-SLE 15.3 This update for openldap2 fixes the following issue: - Revert jsc#PM-3288 - CLDAP ( -DLDAP_CONNECTIONLESS ) due to regression (bsc#1197004) libldap-2_4-2-2.4.46-9.64.1.x86_64.rpm libldap-2_4-2-32bit-2.4.46-9.64.1.x86_64.rpm libldap-data-2.4.46-9.64.1.noarch.rpm openldap2-2.4.46-9.64.1.src.rpm openldap2-2.4.46-9.64.1.x86_64.rpm openldap2-back-meta-2.4.46-9.64.1.x86_64.rpm openldap2-back-perl-2.4.46-9.64.1.x86_64.rpm openldap2-back-sock-2.4.46-9.64.1.x86_64.rpm openldap2-back-sql-2.4.46-9.64.1.x86_64.rpm openldap2-client-2.4.46-9.64.1.x86_64.rpm openldap2-contrib-2.4.46-9.64.1.x86_64.rpm openldap2-devel-2.4.46-9.64.1.x86_64.rpm openldap2-devel-32bit-2.4.46-9.64.1.x86_64.rpm openldap2-devel-static-2.4.46-9.64.1.x86_64.rpm openldap2-doc-2.4.46-9.64.1.noarch.rpm openldap2-ppolicy-check-password-1.2-9.64.1.x86_64.rpm libldap-2_4-2-2.4.46-9.64.1.s390x.rpm openldap2-2.4.46-9.64.1.s390x.rpm openldap2-back-meta-2.4.46-9.64.1.s390x.rpm openldap2-back-perl-2.4.46-9.64.1.s390x.rpm openldap2-back-sock-2.4.46-9.64.1.s390x.rpm openldap2-back-sql-2.4.46-9.64.1.s390x.rpm openldap2-client-2.4.46-9.64.1.s390x.rpm openldap2-contrib-2.4.46-9.64.1.s390x.rpm openldap2-devel-2.4.46-9.64.1.s390x.rpm openldap2-devel-static-2.4.46-9.64.1.s390x.rpm openldap2-ppolicy-check-password-1.2-9.64.1.s390x.rpm libldap-2_4-2-2.4.46-9.64.1.ppc64le.rpm openldap2-2.4.46-9.64.1.ppc64le.rpm openldap2-back-meta-2.4.46-9.64.1.ppc64le.rpm openldap2-back-perl-2.4.46-9.64.1.ppc64le.rpm openldap2-back-sock-2.4.46-9.64.1.ppc64le.rpm openldap2-back-sql-2.4.46-9.64.1.ppc64le.rpm openldap2-client-2.4.46-9.64.1.ppc64le.rpm openldap2-contrib-2.4.46-9.64.1.ppc64le.rpm openldap2-devel-2.4.46-9.64.1.ppc64le.rpm openldap2-devel-static-2.4.46-9.64.1.ppc64le.rpm openldap2-ppolicy-check-password-1.2-9.64.1.ppc64le.rpm libldap-2_4-2-2.4.46-9.64.1.aarch64.rpm openldap2-2.4.46-9.64.1.aarch64.rpm openldap2-back-meta-2.4.46-9.64.1.aarch64.rpm openldap2-back-perl-2.4.46-9.64.1.aarch64.rpm openldap2-back-sock-2.4.46-9.64.1.aarch64.rpm openldap2-back-sql-2.4.46-9.64.1.aarch64.rpm openldap2-client-2.4.46-9.64.1.aarch64.rpm openldap2-contrib-2.4.46-9.64.1.aarch64.rpm openldap2-devel-2.4.46-9.64.1.aarch64.rpm openldap2-devel-static-2.4.46-9.64.1.aarch64.rpm openldap2-ppolicy-check-password-1.2-9.64.1.aarch64.rpm openSUSE-SLE-15.3-2022-930 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2022-0358: Fixed a potential privilege escalation via virtiofsd (bsc#1195161). - CVE-2021-3930: Fixed a potential denial of service in the emulated SCSI device (bsc#1192525). Non-security fixes: - Fixed a kernel data corruption via a long kernel boot cmdline (bsc#1196737). - Included vmxcap in the qemu-tools package (bsc#1193364). - Fixed package dependencies (bsc#1196087). - Fixed an issue were PowerPC firmwares would not be built for non-PowerPC builds (bsc#1193545). - Fixed multiple issues in I/O (bsc#1178049 bsc#1194938). qemu-5.2.0-150300.112.4.src.rpm qemu-5.2.0-150300.112.4.x86_64.rpm qemu-arm-5.2.0-150300.112.4.x86_64.rpm qemu-audio-alsa-5.2.0-150300.112.4.x86_64.rpm qemu-audio-pa-5.2.0-150300.112.4.x86_64.rpm qemu-audio-spice-5.2.0-150300.112.4.x86_64.rpm qemu-block-curl-5.2.0-150300.112.4.x86_64.rpm qemu-block-dmg-5.2.0-150300.112.4.x86_64.rpm qemu-block-gluster-5.2.0-150300.112.4.x86_64.rpm qemu-block-iscsi-5.2.0-150300.112.4.x86_64.rpm qemu-block-nfs-5.2.0-150300.112.4.x86_64.rpm qemu-block-rbd-5.2.0-150300.112.4.x86_64.rpm qemu-block-ssh-5.2.0-150300.112.4.x86_64.rpm qemu-chardev-baum-5.2.0-150300.112.4.x86_64.rpm qemu-chardev-spice-5.2.0-150300.112.4.x86_64.rpm qemu-extra-5.2.0-150300.112.4.x86_64.rpm qemu-guest-agent-5.2.0-150300.112.4.x86_64.rpm qemu-hw-display-qxl-5.2.0-150300.112.4.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.112.4.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.112.4.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-150300.112.4.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.112.4.x86_64.rpm qemu-hw-usb-redirect-5.2.0-150300.112.4.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-150300.112.4.x86_64.rpm qemu-ipxe-1.0.0+-150300.112.4.noarch.rpm qemu-ivshmem-tools-5.2.0-150300.112.4.x86_64.rpm qemu-ksm-5.2.0-150300.112.4.x86_64.rpm qemu-kvm-5.2.0-150300.112.4.x86_64.rpm qemu-lang-5.2.0-150300.112.4.x86_64.rpm qemu-linux-user-5.2.0-150300.112.3.src.rpm qemu-linux-user-5.2.0-150300.112.3.x86_64.rpm qemu-microvm-5.2.0-150300.112.4.noarch.rpm qemu-ppc-5.2.0-150300.112.4.x86_64.rpm qemu-s390x-5.2.0-150300.112.4.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-150300.112.4.noarch.rpm qemu-sgabios-8-150300.112.4.noarch.rpm qemu-skiboot-5.2.0-150300.112.4.noarch.rpm qemu-testsuite-5.2.0-150300.112.7.src.rpm qemu-testsuite-5.2.0-150300.112.7.x86_64.rpm qemu-tools-5.2.0-150300.112.4.x86_64.rpm qemu-ui-curses-5.2.0-150300.112.4.x86_64.rpm qemu-ui-gtk-5.2.0-150300.112.4.x86_64.rpm qemu-ui-opengl-5.2.0-150300.112.4.x86_64.rpm qemu-ui-spice-app-5.2.0-150300.112.4.x86_64.rpm qemu-ui-spice-core-5.2.0-150300.112.4.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-150300.112.4.noarch.rpm qemu-vhost-user-gpu-5.2.0-150300.112.4.x86_64.rpm qemu-x86-5.2.0-150300.112.4.x86_64.rpm qemu-5.2.0-150300.112.4.s390x.rpm qemu-arm-5.2.0-150300.112.4.s390x.rpm qemu-audio-alsa-5.2.0-150300.112.4.s390x.rpm qemu-audio-pa-5.2.0-150300.112.4.s390x.rpm qemu-audio-spice-5.2.0-150300.112.4.s390x.rpm qemu-block-curl-5.2.0-150300.112.4.s390x.rpm qemu-block-dmg-5.2.0-150300.112.4.s390x.rpm qemu-block-gluster-5.2.0-150300.112.4.s390x.rpm qemu-block-iscsi-5.2.0-150300.112.4.s390x.rpm qemu-block-nfs-5.2.0-150300.112.4.s390x.rpm qemu-block-rbd-5.2.0-150300.112.4.s390x.rpm qemu-block-ssh-5.2.0-150300.112.4.s390x.rpm qemu-chardev-baum-5.2.0-150300.112.4.s390x.rpm qemu-chardev-spice-5.2.0-150300.112.4.s390x.rpm qemu-extra-5.2.0-150300.112.4.s390x.rpm qemu-guest-agent-5.2.0-150300.112.4.s390x.rpm qemu-hw-display-qxl-5.2.0-150300.112.4.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.112.4.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.112.4.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-150300.112.4.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.112.4.s390x.rpm qemu-hw-usb-redirect-5.2.0-150300.112.4.s390x.rpm qemu-hw-usb-smartcard-5.2.0-150300.112.4.s390x.rpm qemu-ivshmem-tools-5.2.0-150300.112.4.s390x.rpm qemu-ksm-5.2.0-150300.112.4.s390x.rpm qemu-kvm-5.2.0-150300.112.4.s390x.rpm qemu-lang-5.2.0-150300.112.4.s390x.rpm qemu-linux-user-5.2.0-150300.112.3.s390x.rpm qemu-ppc-5.2.0-150300.112.4.s390x.rpm qemu-s390x-5.2.0-150300.112.4.s390x.rpm qemu-testsuite-5.2.0-150300.112.7.s390x.rpm qemu-tools-5.2.0-150300.112.4.s390x.rpm qemu-ui-curses-5.2.0-150300.112.4.s390x.rpm qemu-ui-gtk-5.2.0-150300.112.4.s390x.rpm qemu-ui-opengl-5.2.0-150300.112.4.s390x.rpm qemu-ui-spice-app-5.2.0-150300.112.4.s390x.rpm qemu-ui-spice-core-5.2.0-150300.112.4.s390x.rpm qemu-vhost-user-gpu-5.2.0-150300.112.4.s390x.rpm qemu-x86-5.2.0-150300.112.4.s390x.rpm qemu-5.2.0-150300.112.4.ppc64le.rpm qemu-SLOF-5.2.0-150300.112.4.noarch.rpm qemu-arm-5.2.0-150300.112.4.ppc64le.rpm qemu-audio-alsa-5.2.0-150300.112.4.ppc64le.rpm qemu-audio-pa-5.2.0-150300.112.4.ppc64le.rpm qemu-audio-spice-5.2.0-150300.112.4.ppc64le.rpm qemu-block-curl-5.2.0-150300.112.4.ppc64le.rpm qemu-block-dmg-5.2.0-150300.112.4.ppc64le.rpm qemu-block-gluster-5.2.0-150300.112.4.ppc64le.rpm qemu-block-iscsi-5.2.0-150300.112.4.ppc64le.rpm qemu-block-nfs-5.2.0-150300.112.4.ppc64le.rpm qemu-block-rbd-5.2.0-150300.112.4.ppc64le.rpm qemu-block-ssh-5.2.0-150300.112.4.ppc64le.rpm qemu-chardev-baum-5.2.0-150300.112.4.ppc64le.rpm qemu-chardev-spice-5.2.0-150300.112.4.ppc64le.rpm qemu-extra-5.2.0-150300.112.4.ppc64le.rpm qemu-guest-agent-5.2.0-150300.112.4.ppc64le.rpm qemu-hw-display-qxl-5.2.0-150300.112.4.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.112.4.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.112.4.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-150300.112.4.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.112.4.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-150300.112.4.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-150300.112.4.ppc64le.rpm qemu-ivshmem-tools-5.2.0-150300.112.4.ppc64le.rpm qemu-ksm-5.2.0-150300.112.4.ppc64le.rpm qemu-lang-5.2.0-150300.112.4.ppc64le.rpm qemu-linux-user-5.2.0-150300.112.3.ppc64le.rpm qemu-ppc-5.2.0-150300.112.4.ppc64le.rpm qemu-s390x-5.2.0-150300.112.4.ppc64le.rpm qemu-testsuite-5.2.0-150300.112.7.ppc64le.rpm qemu-tools-5.2.0-150300.112.4.ppc64le.rpm qemu-ui-curses-5.2.0-150300.112.4.ppc64le.rpm qemu-ui-gtk-5.2.0-150300.112.4.ppc64le.rpm qemu-ui-opengl-5.2.0-150300.112.4.ppc64le.rpm qemu-ui-spice-app-5.2.0-150300.112.4.ppc64le.rpm qemu-ui-spice-core-5.2.0-150300.112.4.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-150300.112.4.ppc64le.rpm qemu-x86-5.2.0-150300.112.4.ppc64le.rpm qemu-5.2.0-150300.112.4.aarch64.rpm qemu-arm-5.2.0-150300.112.4.aarch64.rpm qemu-audio-alsa-5.2.0-150300.112.4.aarch64.rpm qemu-audio-pa-5.2.0-150300.112.4.aarch64.rpm qemu-audio-spice-5.2.0-150300.112.4.aarch64.rpm qemu-block-curl-5.2.0-150300.112.4.aarch64.rpm qemu-block-dmg-5.2.0-150300.112.4.aarch64.rpm qemu-block-gluster-5.2.0-150300.112.4.aarch64.rpm qemu-block-iscsi-5.2.0-150300.112.4.aarch64.rpm qemu-block-nfs-5.2.0-150300.112.4.aarch64.rpm qemu-block-rbd-5.2.0-150300.112.4.aarch64.rpm qemu-block-ssh-5.2.0-150300.112.4.aarch64.rpm qemu-chardev-baum-5.2.0-150300.112.4.aarch64.rpm qemu-chardev-spice-5.2.0-150300.112.4.aarch64.rpm qemu-extra-5.2.0-150300.112.4.aarch64.rpm qemu-guest-agent-5.2.0-150300.112.4.aarch64.rpm qemu-hw-display-qxl-5.2.0-150300.112.4.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.112.4.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.112.4.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-150300.112.4.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.112.4.aarch64.rpm qemu-hw-usb-redirect-5.2.0-150300.112.4.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-150300.112.4.aarch64.rpm qemu-ivshmem-tools-5.2.0-150300.112.4.aarch64.rpm qemu-ksm-5.2.0-150300.112.4.aarch64.rpm qemu-lang-5.2.0-150300.112.4.aarch64.rpm qemu-linux-user-5.2.0-150300.112.3.aarch64.rpm qemu-ppc-5.2.0-150300.112.4.aarch64.rpm qemu-s390x-5.2.0-150300.112.4.aarch64.rpm qemu-testsuite-5.2.0-150300.112.7.aarch64.rpm qemu-tools-5.2.0-150300.112.4.aarch64.rpm qemu-ui-curses-5.2.0-150300.112.4.aarch64.rpm qemu-ui-gtk-5.2.0-150300.112.4.aarch64.rpm qemu-ui-opengl-5.2.0-150300.112.4.aarch64.rpm qemu-ui-spice-app-5.2.0-150300.112.4.aarch64.rpm qemu-ui-spice-core-5.2.0-150300.112.4.aarch64.rpm qemu-vhost-user-gpu-5.2.0-150300.112.4.aarch64.rpm qemu-x86-5.2.0-150300.112.4.aarch64.rpm openSUSE-SLE-15.3-2022-901 important SUSE Updates openSUSE-SLE 15.3 This update for frr fixes the following issues: - CVE-2022-26125, CVE-2022-26126: Fixed buffer overflows in unpack_tlv_router_cap() (bsc#1196505, bsc#1196506). - CVE-2022-26127: Fixed heap buffer overflow in babel_packet_examin() (bsc#1196503). - CVE-2022-26128: Fixed buffer overflows in babel_packet_examin() (bsc#1196507). - CVE-2022-26129: Fixed buffer overflows in parse_hello_subtlv(), parse_ihu_subtlv() and parse_update_subtlv() (bsc#1196504). frr-7.4-150300.4.3.1.src.rpm frr-7.4-150300.4.3.1.x86_64.rpm frr-devel-7.4-150300.4.3.1.x86_64.rpm libfrr0-7.4-150300.4.3.1.x86_64.rpm libfrr_pb0-7.4-150300.4.3.1.x86_64.rpm libfrrcares0-7.4-150300.4.3.1.x86_64.rpm libfrrfpm_pb0-7.4-150300.4.3.1.x86_64.rpm libfrrgrpc_pb0-7.4-150300.4.3.1.x86_64.rpm libfrrospfapiclient0-7.4-150300.4.3.1.x86_64.rpm libfrrsnmp0-7.4-150300.4.3.1.x86_64.rpm libfrrzmq0-7.4-150300.4.3.1.x86_64.rpm libmlag_pb0-7.4-150300.4.3.1.x86_64.rpm frr-7.4-150300.4.3.1.s390x.rpm frr-devel-7.4-150300.4.3.1.s390x.rpm libfrr0-7.4-150300.4.3.1.s390x.rpm libfrr_pb0-7.4-150300.4.3.1.s390x.rpm libfrrcares0-7.4-150300.4.3.1.s390x.rpm libfrrfpm_pb0-7.4-150300.4.3.1.s390x.rpm libfrrgrpc_pb0-7.4-150300.4.3.1.s390x.rpm libfrrospfapiclient0-7.4-150300.4.3.1.s390x.rpm libfrrsnmp0-7.4-150300.4.3.1.s390x.rpm libfrrzmq0-7.4-150300.4.3.1.s390x.rpm libmlag_pb0-7.4-150300.4.3.1.s390x.rpm frr-7.4-150300.4.3.1.ppc64le.rpm frr-devel-7.4-150300.4.3.1.ppc64le.rpm libfrr0-7.4-150300.4.3.1.ppc64le.rpm libfrr_pb0-7.4-150300.4.3.1.ppc64le.rpm libfrrcares0-7.4-150300.4.3.1.ppc64le.rpm libfrrfpm_pb0-7.4-150300.4.3.1.ppc64le.rpm libfrrgrpc_pb0-7.4-150300.4.3.1.ppc64le.rpm libfrrospfapiclient0-7.4-150300.4.3.1.ppc64le.rpm libfrrsnmp0-7.4-150300.4.3.1.ppc64le.rpm libfrrzmq0-7.4-150300.4.3.1.ppc64le.rpm libmlag_pb0-7.4-150300.4.3.1.ppc64le.rpm frr-7.4-150300.4.3.1.aarch64.rpm frr-devel-7.4-150300.4.3.1.aarch64.rpm libfrr0-7.4-150300.4.3.1.aarch64.rpm libfrr_pb0-7.4-150300.4.3.1.aarch64.rpm libfrrcares0-7.4-150300.4.3.1.aarch64.rpm libfrrfpm_pb0-7.4-150300.4.3.1.aarch64.rpm libfrrgrpc_pb0-7.4-150300.4.3.1.aarch64.rpm libfrrospfapiclient0-7.4-150300.4.3.1.aarch64.rpm libfrrsnmp0-7.4-150300.4.3.1.aarch64.rpm libfrrzmq0-7.4-150300.4.3.1.aarch64.rpm libmlag_pb0-7.4-150300.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1033 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - Build failure on Solaris. - Unable to connect to https://google.com using java.net.HttpClient. java-11-openjdk-11.0.14.1-3.77.5.src.rpm java-11-openjdk-11.0.14.1-3.77.5.x86_64.rpm java-11-openjdk-accessibility-11.0.14.1-3.77.5.x86_64.rpm java-11-openjdk-demo-11.0.14.1-3.77.5.x86_64.rpm java-11-openjdk-devel-11.0.14.1-3.77.5.x86_64.rpm java-11-openjdk-headless-11.0.14.1-3.77.5.x86_64.rpm java-11-openjdk-javadoc-11.0.14.1-3.77.5.noarch.rpm java-11-openjdk-jmods-11.0.14.1-3.77.5.x86_64.rpm java-11-openjdk-src-11.0.14.1-3.77.5.x86_64.rpm java-11-openjdk-11.0.14.1-3.77.5.s390x.rpm java-11-openjdk-accessibility-11.0.14.1-3.77.5.s390x.rpm java-11-openjdk-demo-11.0.14.1-3.77.5.s390x.rpm java-11-openjdk-devel-11.0.14.1-3.77.5.s390x.rpm java-11-openjdk-headless-11.0.14.1-3.77.5.s390x.rpm java-11-openjdk-jmods-11.0.14.1-3.77.5.s390x.rpm java-11-openjdk-src-11.0.14.1-3.77.5.s390x.rpm java-11-openjdk-11.0.14.1-3.77.5.ppc64le.rpm java-11-openjdk-accessibility-11.0.14.1-3.77.5.ppc64le.rpm java-11-openjdk-demo-11.0.14.1-3.77.5.ppc64le.rpm java-11-openjdk-devel-11.0.14.1-3.77.5.ppc64le.rpm java-11-openjdk-headless-11.0.14.1-3.77.5.ppc64le.rpm java-11-openjdk-jmods-11.0.14.1-3.77.5.ppc64le.rpm java-11-openjdk-src-11.0.14.1-3.77.5.ppc64le.rpm java-11-openjdk-11.0.14.1-3.77.5.aarch64.rpm java-11-openjdk-accessibility-11.0.14.1-3.77.5.aarch64.rpm java-11-openjdk-demo-11.0.14.1-3.77.5.aarch64.rpm java-11-openjdk-devel-11.0.14.1-3.77.5.aarch64.rpm java-11-openjdk-headless-11.0.14.1-3.77.5.aarch64.rpm java-11-openjdk-jmods-11.0.14.1-3.77.5.aarch64.rpm java-11-openjdk-src-11.0.14.1-3.77.5.aarch64.rpm openSUSE-SLE-15.3-2022-953 moderate SUSE Updates openSUSE-SLE 15.3 This update for perl-DBD-SQLite fixes the following issues: - updated to 1.66 - Use external sqlite3 library rather than internal code. (bsc#1195771) perl-DBD-SQLite-1.66-150300.3.3.1.src.rpm perl-DBD-SQLite-1.66-150300.3.3.1.x86_64.rpm perl-DBD-SQLite-1.66-150300.3.3.1.s390x.rpm perl-DBD-SQLite-1.66-150300.3.3.1.ppc64le.rpm perl-DBD-SQLite-1.66-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1119 moderate SUSE Updates openSUSE-SLE 15.3 This update for supportutils fixes the following issues: - Add command `blkid` - Add email.txt based on OPTION_EMAIL (bsc#1189028) - Add rpcinfo -p output #116 - Add s390x specific files and output - Add shared memory as a log directory for emergency use (bsc#1190943) - Fix cron package for RPM validation (bsc#1190315) - Fix for invalid argument during updates (bsc#1193204) - Fix iscsi initiator name (bsc#1195797) - Improve `lsblk` readability with `--ascsi` option - Include 'multipath -t' output in mpio.txt - Include /etc/sssd/conf.d configuration files - Include udev rules in /lib/udev/rules.d/ - Made /proc directory and network names spaces configurable (bsc#1193868) - Prepare future installation of binaries to /usr/sbin instead of /sbin. This does not affect SUSE Linux Enterprise 15 Serivce Pack 3 and 4 (bsc#1191096) - Move localmessage/warm logs out of messages.txt to new localwarn.txt - Optimize configuration files - Remove chronyc DNS lookups with -n switch (bsc#1193732) - Remove duplicate commands in network.txt - Remove duplicate firewalld status output - getappcore identifies compressed core files (bsc#1191794) supportutils-3.1.20-150300.7.35.10.1.noarch.rpm supportutils-3.1.20-150300.7.35.10.1.src.rpm openSUSE-SLE-15.3-2022-940 important SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: Update Xen to version 4.14.4 (bsc#1027519) Transient execution side-channel attacks attacking the Branch History Buffer (BHB), named "Branch Target Injection" and "Intra-Mode Branch History Injection" are now mitigated. Security issues fixed: - CVE-2022-0001, CVE-2022-0002, CVE-2021-26401: BHB speculation issues (bsc#1196915). Non-security issues fixed: - Fixed issue around xl and virsh operation - virsh list not giving any output (bsc#1191668). xen-4.14.4_02-150300.3.21.1.src.rpm True xen-4.14.4_02-150300.3.21.1.x86_64.rpm True xen-devel-4.14.4_02-150300.3.21.1.x86_64.rpm True xen-doc-html-4.14.4_02-150300.3.21.1.x86_64.rpm True xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64.rpm True xen-libs-4.14.4_02-150300.3.21.1.x86_64.rpm True xen-tools-4.14.4_02-150300.3.21.1.x86_64.rpm True xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64.rpm True xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch.rpm True xen-4.14.4_02-150300.3.21.1.aarch64.rpm True xen-devel-4.14.4_02-150300.3.21.1.aarch64.rpm True xen-doc-html-4.14.4_02-150300.3.21.1.aarch64.rpm True xen-libs-4.14.4_02-150300.3.21.1.aarch64.rpm True xen-tools-4.14.4_02-150300.3.21.1.aarch64.rpm True xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64.rpm True openSUSE-SLE-15.3-2022-1116 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libexttextcat libexttextcat-2_0-0-3.4.5-3.2.1.x86_64.rpm libexttextcat-3.4.5-3.2.1.src.rpm libexttextcat-3.4.5-3.2.1.x86_64.rpm libexttextcat-devel-3.4.5-3.2.1.x86_64.rpm libexttextcat-tools-3.4.5-3.2.1.x86_64.rpm libexttextcat-2_0-0-3.4.5-3.2.1.s390x.rpm libexttextcat-3.4.5-3.2.1.s390x.rpm libexttextcat-devel-3.4.5-3.2.1.s390x.rpm libexttextcat-tools-3.4.5-3.2.1.s390x.rpm libexttextcat-2_0-0-3.4.5-3.2.1.ppc64le.rpm libexttextcat-3.4.5-3.2.1.ppc64le.rpm libexttextcat-devel-3.4.5-3.2.1.ppc64le.rpm libexttextcat-tools-3.4.5-3.2.1.ppc64le.rpm libexttextcat-2_0-0-3.4.5-3.2.1.aarch64.rpm libexttextcat-3.4.5-3.2.1.aarch64.rpm libexttextcat-devel-3.4.5-3.2.1.aarch64.rpm libexttextcat-tools-3.4.5-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-954 moderate SUSE Updates openSUSE-SLE 15.3 This update for wavpack fixes the following issues: - CVE-2021-44269: Fixed out of bounds read in processing .wav files (bsc#1197020). libwavpack1-32bit-5.4.0-4.12.1.x86_64.rpm libwavpack1-5.4.0-4.12.1.x86_64.rpm wavpack-5.4.0-4.12.1.src.rpm wavpack-5.4.0-4.12.1.x86_64.rpm wavpack-devel-5.4.0-4.12.1.x86_64.rpm libwavpack1-5.4.0-4.12.1.s390x.rpm wavpack-5.4.0-4.12.1.s390x.rpm wavpack-devel-5.4.0-4.12.1.s390x.rpm libwavpack1-5.4.0-4.12.1.ppc64le.rpm wavpack-5.4.0-4.12.1.ppc64le.rpm wavpack-devel-5.4.0-4.12.1.ppc64le.rpm libwavpack1-5.4.0-4.12.1.aarch64.rpm wavpack-5.4.0-4.12.1.aarch64.rpm wavpack-devel-5.4.0-4.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-914 low SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Increased the build version number to avoid downgrade issues. qemu-4.2.1-150200.66.3.src.rpm qemu-s390-4.2.1-150200.66.3.x86_64.rpm qemu-s390-4.2.1-150200.66.3.s390x.rpm qemu-s390-4.2.1-150200.66.3.ppc64le.rpm qemu-s390-4.2.1-150200.66.3.aarch64.rpm openSUSE-SLE-15.3-2022-1095 moderate SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - Fix a crash caused by a read-after-free condition. (bsc#1196564) - Add 'ldap_ignore_unreadable_references' parameter to skip unreadable objects referenced by 'member' attribute. (bsc#1190775) libipa_hbac-devel-1.16.1-150300.23.26.1.x86_64.rpm libipa_hbac0-1.16.1-150300.23.26.1.x86_64.rpm libnfsidmap-sss-1.16.1-150300.23.26.1.x86_64.rpm libsss_certmap-devel-1.16.1-150300.23.26.1.x86_64.rpm libsss_certmap0-1.16.1-150300.23.26.1.x86_64.rpm libsss_idmap-devel-1.16.1-150300.23.26.1.x86_64.rpm libsss_idmap0-1.16.1-150300.23.26.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.26.1.x86_64.rpm libsss_nss_idmap0-1.16.1-150300.23.26.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-150300.23.26.1.x86_64.rpm libsss_simpleifp0-1.16.1-150300.23.26.1.x86_64.rpm python3-ipa_hbac-1.16.1-150300.23.26.1.x86_64.rpm python3-sss-murmur-1.16.1-150300.23.26.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-150300.23.26.1.x86_64.rpm python3-sssd-config-1.16.1-150300.23.26.1.x86_64.rpm sssd-1.16.1-150300.23.26.1.src.rpm sssd-1.16.1-150300.23.26.1.x86_64.rpm sssd-ad-1.16.1-150300.23.26.1.x86_64.rpm sssd-common-1.16.1-150300.23.26.1.x86_64.rpm sssd-common-32bit-1.16.1-150300.23.26.1.x86_64.rpm sssd-dbus-1.16.1-150300.23.26.1.x86_64.rpm sssd-ipa-1.16.1-150300.23.26.1.x86_64.rpm sssd-krb5-1.16.1-150300.23.26.1.x86_64.rpm sssd-krb5-common-1.16.1-150300.23.26.1.x86_64.rpm sssd-ldap-1.16.1-150300.23.26.1.x86_64.rpm sssd-proxy-1.16.1-150300.23.26.1.x86_64.rpm sssd-tools-1.16.1-150300.23.26.1.x86_64.rpm sssd-wbclient-1.16.1-150300.23.26.1.x86_64.rpm sssd-wbclient-devel-1.16.1-150300.23.26.1.x86_64.rpm sssd-winbind-idmap-1.16.1-150300.23.26.1.x86_64.rpm libipa_hbac-devel-1.16.1-150300.23.26.1.s390x.rpm libipa_hbac0-1.16.1-150300.23.26.1.s390x.rpm libnfsidmap-sss-1.16.1-150300.23.26.1.s390x.rpm libsss_certmap-devel-1.16.1-150300.23.26.1.s390x.rpm libsss_certmap0-1.16.1-150300.23.26.1.s390x.rpm libsss_idmap-devel-1.16.1-150300.23.26.1.s390x.rpm libsss_idmap0-1.16.1-150300.23.26.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-150300.23.26.1.s390x.rpm libsss_nss_idmap0-1.16.1-150300.23.26.1.s390x.rpm libsss_simpleifp-devel-1.16.1-150300.23.26.1.s390x.rpm libsss_simpleifp0-1.16.1-150300.23.26.1.s390x.rpm python3-ipa_hbac-1.16.1-150300.23.26.1.s390x.rpm python3-sss-murmur-1.16.1-150300.23.26.1.s390x.rpm python3-sss_nss_idmap-1.16.1-150300.23.26.1.s390x.rpm python3-sssd-config-1.16.1-150300.23.26.1.s390x.rpm sssd-1.16.1-150300.23.26.1.s390x.rpm sssd-ad-1.16.1-150300.23.26.1.s390x.rpm sssd-common-1.16.1-150300.23.26.1.s390x.rpm sssd-dbus-1.16.1-150300.23.26.1.s390x.rpm sssd-ipa-1.16.1-150300.23.26.1.s390x.rpm sssd-krb5-1.16.1-150300.23.26.1.s390x.rpm sssd-krb5-common-1.16.1-150300.23.26.1.s390x.rpm sssd-ldap-1.16.1-150300.23.26.1.s390x.rpm sssd-proxy-1.16.1-150300.23.26.1.s390x.rpm sssd-tools-1.16.1-150300.23.26.1.s390x.rpm sssd-wbclient-1.16.1-150300.23.26.1.s390x.rpm sssd-wbclient-devel-1.16.1-150300.23.26.1.s390x.rpm sssd-winbind-idmap-1.16.1-150300.23.26.1.s390x.rpm libipa_hbac-devel-1.16.1-150300.23.26.1.ppc64le.rpm libipa_hbac0-1.16.1-150300.23.26.1.ppc64le.rpm libnfsidmap-sss-1.16.1-150300.23.26.1.ppc64le.rpm libsss_certmap-devel-1.16.1-150300.23.26.1.ppc64le.rpm libsss_certmap0-1.16.1-150300.23.26.1.ppc64le.rpm libsss_idmap-devel-1.16.1-150300.23.26.1.ppc64le.rpm libsss_idmap0-1.16.1-150300.23.26.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-150300.23.26.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-150300.23.26.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-150300.23.26.1.ppc64le.rpm libsss_simpleifp0-1.16.1-150300.23.26.1.ppc64le.rpm python3-ipa_hbac-1.16.1-150300.23.26.1.ppc64le.rpm python3-sss-murmur-1.16.1-150300.23.26.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-150300.23.26.1.ppc64le.rpm python3-sssd-config-1.16.1-150300.23.26.1.ppc64le.rpm sssd-1.16.1-150300.23.26.1.ppc64le.rpm sssd-ad-1.16.1-150300.23.26.1.ppc64le.rpm sssd-common-1.16.1-150300.23.26.1.ppc64le.rpm sssd-dbus-1.16.1-150300.23.26.1.ppc64le.rpm sssd-ipa-1.16.1-150300.23.26.1.ppc64le.rpm sssd-krb5-1.16.1-150300.23.26.1.ppc64le.rpm sssd-krb5-common-1.16.1-150300.23.26.1.ppc64le.rpm sssd-ldap-1.16.1-150300.23.26.1.ppc64le.rpm sssd-proxy-1.16.1-150300.23.26.1.ppc64le.rpm sssd-tools-1.16.1-150300.23.26.1.ppc64le.rpm sssd-wbclient-1.16.1-150300.23.26.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-150300.23.26.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-150300.23.26.1.ppc64le.rpm libipa_hbac-devel-1.16.1-150300.23.26.1.aarch64.rpm libipa_hbac0-1.16.1-150300.23.26.1.aarch64.rpm libnfsidmap-sss-1.16.1-150300.23.26.1.aarch64.rpm libsss_certmap-devel-1.16.1-150300.23.26.1.aarch64.rpm libsss_certmap0-1.16.1-150300.23.26.1.aarch64.rpm libsss_idmap-devel-1.16.1-150300.23.26.1.aarch64.rpm libsss_idmap0-1.16.1-150300.23.26.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.26.1.aarch64.rpm libsss_nss_idmap0-1.16.1-150300.23.26.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-150300.23.26.1.aarch64.rpm libsss_simpleifp0-1.16.1-150300.23.26.1.aarch64.rpm python3-ipa_hbac-1.16.1-150300.23.26.1.aarch64.rpm python3-sss-murmur-1.16.1-150300.23.26.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-150300.23.26.1.aarch64.rpm python3-sssd-config-1.16.1-150300.23.26.1.aarch64.rpm sssd-1.16.1-150300.23.26.1.aarch64.rpm sssd-ad-1.16.1-150300.23.26.1.aarch64.rpm sssd-common-1.16.1-150300.23.26.1.aarch64.rpm sssd-dbus-1.16.1-150300.23.26.1.aarch64.rpm sssd-ipa-1.16.1-150300.23.26.1.aarch64.rpm sssd-krb5-1.16.1-150300.23.26.1.aarch64.rpm sssd-krb5-common-1.16.1-150300.23.26.1.aarch64.rpm sssd-ldap-1.16.1-150300.23.26.1.aarch64.rpm sssd-proxy-1.16.1-150300.23.26.1.aarch64.rpm sssd-tools-1.16.1-150300.23.26.1.aarch64.rpm sssd-wbclient-1.16.1-150300.23.26.1.aarch64.rpm sssd-wbclient-devel-1.16.1-150300.23.26.1.aarch64.rpm sssd-winbind-idmap-1.16.1-150300.23.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-1039 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-25636: Fixed an issue which allowed a local users to gain privileges because of a heap out-of-bounds write in nf_dup_netdev.c, related to nf_tables_offload (bsc#1196299). - CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An attacker with adjacent NFC access could trigger crash the system or corrupt system memory (bsc#1196830). - CVE-2022-0487: A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove() in drivers/memstick/host/rtsx_usb_ms.c (bsc#1194516). - CVE-2022-24448: Fixed an issue if an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should have occured, but the server instead returned uninitialized data in the file descriptor (bsc#1195612). - CVE-2022-0617: Fixed a null pointer dereference in UDF file system functionality. A local user could crash the system by triggering udf_file_write_iter() via a malicious UDF image. (bsc#1196079) - CVE-2022-0644: Fixed a denial of service by a local user. A assertion failure could be triggered in kernel_read_file_from_fd(). (bsc#1196155) - CVE-2022-25258: The USB Gadget subsystem lacked certain validation of interface OS descriptor requests, which could have lead to memory corruption (bsc#1196096). - CVE-2022-24958: drivers/usb/gadget/legacy/inode.c mishandled dev->buf release (bsc#1195905). - CVE-2022-24959: Fixed a memory leak in yam_siocdevprivate() in drivers/net/hamradio/yam.c (bsc#1195897). - CVE-2021-44879: In gc_data_segment() in fs/f2fs/gc.c, special files were not considered, which lead to a move_data_page NULL pointer dereference (bsc#1195987). - CVE-2021-0920: Fixed a local privilege escalation due to a use-after-free vulnerability in unix_scm_to_skb of af_unix (bsc#1193731). - CVE-2021-39657: Fixed an information leak in the Universal Flash Storage subsystem (bsc#1193864). - CVE-2022-26966: Fixed an issue in drivers/net/usb/sr9700.c, which allowed attackers to obtain sensitive information from heap memory via crafted frame lengths from a device (bsc#1196836). - CVE-2021-39698: Fixed a possible memory corruption due to a use after free in aio_poll_complete_work. This could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1196956) - CVE-2021-45402: The check_alu_op function in kernel/bpf/verifier.c did not properly update bounds while handling the mov32 instruction, which allowed local users to obtain potentially sensitive address information (bsc#1196130). - CVE-2022-23036,CVE-2022-23037,CVE-2022-23038,CVE-2022-23039,CVE-2022-23040,CVE-2022-23041,CVE-2022-23042: Fixed multiple issues which could have lead to read/write access to memory pages or denial of service. These issues are related to the Xen PV device frontend drivers. (bsc#1196488) The following non-security bugs were fixed: - ALSA: intel_hdmi: Fix reference to PCM buffer address (git-fixes). - ARM: 9182/1: mmu: fix returns from early_param() and __setup() functions (git-fixes). - ARM: Fix kgdb breakpoint for Thumb2 (git-fixes). - ASoC: cs4265: Fix the duplicated control name (git-fixes). - ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min (git-fixes). - ASoC: rt5668: do not block workqueue if card is unbound (git-fixes). - ASoC: rt5682: do not block workqueue if card is unbound (git-fixes). - Bluetooth: btusb: Add missing Chicony device for Realtek RTL8723BE (bsc#1196779). - EDAC/altera: Fix deferred probing (bsc#1178134). - EDAC: Fix calculation of returned address and next offset in edac_align_ptr() (bsc#1178134). - HID: add mapping for KEY_ALL_APPLICATIONS (git-fixes). - HID: add mapping for KEY_DICTATE (git-fixes). - Hand over the maintainership to SLE15-SP3 maintainers - IB/hfi1: Correct guard on eager buffer deallocation (git-fixes). - IB/hfi1: Fix early init panic (git-fixes). - IB/hfi1: Fix leak of rcvhdrtail_dummy_kvaddr (git-fixes). - IB/hfi1: Insure use of smp_processor_id() is preempt disabled (git-fixes). - IB/rdmavt: Validate remote_addr during loopback atomic tests (git-fixes). - Input: clear BTN_RIGHT/MIDDLE on buttonpads (git-fixes). - Input: elan_i2c - fix regulator enable count imbalance after suspend/resume (git-fixes). - Input: elan_i2c - move regulator_[en|dis]able() out of elan_[en|dis]able_power() (git-fixes). - NFC: port100: fix use-after-free in port100_send_complete (git-fixes). - RDMA/bnxt_re: Scan the whole bitmap when checking if "disabling RCFW with pending cmd-bit" (git-fixes). - RDMA/cma: Do not change route.addr.src_addr outside state checks (bsc#1181147). - RDMA/cma: Let cma_resolve_ib_dev() continue search even after empty entry (git-fixes). - RDMA/cma: Remove open coding of overflow checking for private_data_len (git-fixes). - RDMA/core: Do not infoleak GRH fields (git-fixes). - RDMA/core: Let ib_find_gid() continue search even after empty entry (git-fixes). - RDMA/cxgb4: Set queue pair state when being queried (git-fixes). - RDMA/hns: Validate the pkey index (git-fixes). - RDMA/ib_srp: Fix a deadlock (git-fixes). - RDMA/mlx4: Do not continue event handler after memory allocation failure (git-fixes). - RDMA/rtrs-clt: Fix possible double free in error case (jsc#SLE-15176). - RDMA/rxe: Fix a typo in opcode name (git-fixes). - RDMA/siw: Fix broken RDMA Read Fence/Resume logic (git-fixes). - RDMA/uverbs: Check for null return of kmalloc_array (git-fixes). - RDMA/uverbs: Remove the unnecessary assignment (git-fixes). - Revert "USB: serial: ch341: add new Product ID for CH341A" (git-fixes). - SUNRPC: avoid race between mod_timer() and del_timer_sync() (bnc#1195403). - USB: gadget: validate endpoint index for xilinx udc (git-fixes). - USB: gadget: validate interface OS descriptor requests (git-fixes). - USB: hub: Clean up use of port initialization schemes and retries (git-fixes). - USB: serial: option: add Telit LE910R1 compositions (git-fixes). - USB: serial: option: add support for DW5829e (git-fixes). - USB: zaurus: support another broken Zaurus (git-fixes). - arm64: dts: rockchip: Switch RK3399-Gru DP to SPDIF output (git-fixes). - asix: fix uninit-value in asix_mdio_read() (git-fixes). - ata: pata_hpt37x: disable primary channel on HPT371 (git-fixes). - ax25: Fix NULL pointer dereference in ax25_kill_by_device (git-fixes). - batman-adv: Do not expect inter-netns unique iflink indices (git-fixes). - batman-adv: Request iflink once in batadv-on-batadv check (git-fixes). - batman-adv: Request iflink once in batadv_get_real_netdevice (git-fixes). - blk-mq: do not free tags if the tag_set is used by other device in queue initialztion (bsc#1193787). - bnxt_en: Fix active FEC reporting to ethtool (jsc#SLE-16649). - bnxt_en: Fix incorrect multicast rx mask setting when not requested (git-fixes). - bnxt_en: Fix occasional ethtool -t loopback test failures (git-fixes). - bnxt_en: Fix offline ethtool selftest with RDMA enabled (git-fixes). - bonding: force carrier update when releasing slave (git-fixes). - build initrd without systemd This reduces the size of the initrd by over 25%, which improves startup time of the virtual machine by 0.5-0.6s on very fast machines, more on slower ones. - can: gs_usb: change active_channels's type from atomic_t to u8 (git-fixes). - cgroup-v1: Correct privileges check in release_agent writes (bsc#1196723). - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (bsc#1196868). - clk: jz4725b: fix mmc0 clock gating (git-fixes). - constraints: Also adjust disk requirement for x86 and s390. - constraints: Increase disk space for aarch64 - cpufreq: schedutil: Use kobject release() method to free (git-fixes) - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (bsc#1196866). - cputime, cpuacct: Include guest time in user time in (git-fixes) - dma-direct: Fix potential NULL pointer dereference (bsc#1196472 ltc#192278). - dma-mapping: Allow mixing bypass and mapped DMA operation (bsc#1196472 ltc#192278). - dmaengine: shdma: Fix runtime PM imbalance on error (git-fixes). - drm/amdgpu: disable MMHUB PG for Picasso (git-fixes). - drm/edid: Always set RGB444 (git-fixes). - drm/i915/dg1: Wait for pcode/uncore handshake at startup (bsc#1195211). - drm/i915/gen11+: Only load DRAM information from pcode (bsc#1195211). - drm/i915: Nuke not needed members of dram_info (bsc#1195211). - drm/i915: Remove memory frequency calculation (bsc#1195211). - drm/i915: Rename is_16gb_dimm to wm_lv_0_adjust_needed (bsc#1195211). - drm/sun4i: mixer: Fix P010 and P210 format numbers (git-fixes). - efivars: Respect "block" flag in efivar_entry_set_safe() (git-fixes). - exfat: fix i_blocks for files truncated over 4 GiB (git-fixes). - exfat: fix incorrect loading of i_blocks for large files (git-fixes). - firmware: arm_scmi: Remove space in MODULE_ALIAS name (git-fixes). - fix rpm build warning tumbleweed rpm is adding these warnings to the log: It's not recommended to have unversioned Obsoletes: Obsoletes: microcode_ctl - gianfar: ethtool: Fix refcount leak in gfar_get_ts_info (git-fixes). - gpio: rockchip: Reset int_bothedge when changing trigger (git-fixes). - gpio: tegra186: Fix chip_data type confusion (git-fixes). - gpio: ts4900: Do not set DAT and OE together (git-fixes). - gpiolib: acpi: Convert ACPI value of debounce to microseconds (git-fixes). - gtp: remove useless rcu_read_lock() (git-fixes). - hamradio: fix macro redefine warning (git-fixes). - i2c: bcm2835: Avoid clock stretching timeouts (git-fixes). - iavf: Fix missing check for running netdev (git-fixes). - ice: initialize local variable 'tlv' (jsc#SLE-12878). - igc: igc_read_phy_reg_gpy: drop premature return (git-fixes). - igc: igc_write_phy_reg_gpy: drop premature return (git-fixes). - iio: Fix error handling for PM (git-fixes). - iio: adc: ad7124: fix mask used for setting AIN_BUFP & AIN_BUFM bits (git-fixes). - iio: adc: men_z188_adc: Fix a resource leak in an error handling path (git-fixes). - ixgbe: xsk: change !netif_carrier_ok() handling in ixgbe_xmit_zc() (git-fixes). - kernel-binary.spec.in: Move 20-kernel-default-extra.conf to the correctr directory (bsc#1195051). - kernel-binary.spec: Also exclude the kernel signing key from devel package. There is a check in OBS that fails when it is included. Also the key is not reproducible. Fixes: bb988d4625a3 ("kernel-binary: Do not include sourcedir in certificate path.") - kernel-binary.spec: Do not use the default certificate path (bsc#1194943). Using the the default path is broken since Linux 5.17 - kernel-binary: Do not include sourcedir in certificate path. The certs macro runs before build directory is set up so it creates the aggregate of supplied certificates in the source directory. Using this file directly as the certificate in kernel config works but embeds the source directory path in the kernel config. To avoid this symlink the certificate to the build directory and use relative path to refer to it. Also fabricate a certificate in the same location in build directory when none is provided. - kernel-obs-build: include 9p (boo#1195353) To be able to share files between host and the qemu vm of the build script, the 9p and 9p_virtio kernel modules need to be included in the initrd of kernel-obs-build. - mac80211: fix forwarded mesh frames AC & queue selection (git-fixes). - mac80211_hwsim: initialize ieee80211_tx_info at hw_scan_work (git-fixes). - mac80211_hwsim: report NOACK frames in tx_status (git-fixes). - mask out added spinlock in rndis_params (git-fixes). - mmc: meson: Fix usage of meson_mmc_post_req() (git-fixes). - net/mlx5: Fix possible deadlock on rule deletion (git-fixes). - net/mlx5: Fix wrong limitation of metadata match on ecpf (git-fixes). - net/mlx5: Update the list of the PCI supported devices (git-fixes). - net/mlx5: Update the list of the PCI supported devices (git-fixes). - net/mlx5e: Fix modify header actions memory leak (git-fixes). - net/mlx5e: Fix page DMA map/unmap attributes (bsc#1196468). - net/mlx5e: Fix wrong return value on ioctl EEPROM query failure (git-fixes). - net/mlx5e: TC, Reject rules with drop and modify hdr action (git-fixes). - net/mlx5e: TC, Reject rules with forward and drop actions (git-fixes). - net/mlx5e: kTLS, Use CHECKSUM_UNNECESSARY for device-offloaded packets (jsc#SLE-15172). - net/sched: act_ct: Fix flow table lookup after ct clear or switching zones (jsc#SLE-15172). - net: dsa: mv88e6xxx: MV88E6097 does not support jumbo configuration (git-fixes). - net: ethernet: ti: cpsw: disable PTPv1 hw timestamping advertisement (git-fixes). - net: fix up skbs delta_truesize in UDP GRO frag_list (bsc#1176447). - net: hns3: Clear the CMDQ registers before unmapping BAR region (git-fixes). - net: phy: DP83822: clear MISR2 register to disable interrupts (git-fixes). - net: sfc: Replace in_interrupt() usage (git-fixes). - net: tipc: validate domain record count on input (bsc#1195254). - net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990 (git-fixes). - netfilter: nf_tables: fix memory leak during stateful obj update (bsc#1176447). - netsec: ignore 'phy-mode' device property on ACPI systems (git-fixes). - nfp: flower: Fix a potential leak in nfp_tunnel_add_shared_mac() (git-fixes). - nl80211: Handle nla_memdup failures in handle_nan_filter (git-fixes). - ntb: intel: fix port config status offset for SPR (git-fixes). - nvme-multipath: use vmalloc for ANA log buffer (bsc#1193787). - nvme-rdma: fix possible use-after-free in transport error_recovery work (git-fixes). - nvme-tcp: fix possible use-after-free in transport error_recovery work (git-fixes). - nvme: fix a possible use-after-free in controller reset during load (git-fixes). - powerpc/dma: Fallback to dma_ops when persistent memory present (bsc#1196472 ltc#192278). Update config files. - powerpc/fadump: register for fadump as early as possible (bsc#1179439 ltc#190038). - powerpc/mm: Remove dcache flush from memory remove (bsc#1196433 ltc#196449). - powerpc/powernv/memtrace: Fix dcache flushing (bsc#1196433 ltc#196449). - powerpc/pseries/iommu: Fix window size for direct mapping with pmem (bsc#1196472 ltc#192278). - rpm/*.spec.in: Use https:// urls - rpm/arch-symbols,guards,*driver: Replace Novell with SUSE. - rpm/check-for-config-changes: Ignore PAHOLE_VERSION. - rpm/kernel-docs.spec.in: use %%license for license declarations Limited to SLE15+ to avoid compatibility nightmares. - rpm/kernel-source.spec.in: call fdupes per subpackage It is a waste of time to do a global fdupes when we have subpackages. - rpm: SC2006: Use $(...) notation instead of legacy backticked `...`. - sched/core: Mitigate race (git-fixes) - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (git-fixes). - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (git-fixes). - scsi: lpfc: Terminate string in lpfc_debugfs_nvmeio_trc_write() (git-fixes). - scsi: nsp_cs: Check of ioremap return value (git-fixes). - scsi: qedf: Fix potential dereference of NULL pointer (git-fixes). - scsi: smartpqi: Add PCI IDs (bsc#1196627). - scsi: ufs: Fix race conditions related to driver data (git-fixes). - selftests: mlxsw: tc_police_scale: Make test more robust (bsc#1176774). - soc: fsl: Correct MAINTAINERS database (QUICC ENGINE LIBRARY) (git-fixes). - soc: fsl: Correct MAINTAINERS database (SOC) (git-fixes). - soc: fsl: qe: Check of ioremap return value (git-fixes). - spi: spi-zynq-qspi: Fix a NULL pointer dereference in zynq_qspi_exec_mem_op() (git-fixes). - sr9700: sanity check for packet length (bsc#1196836). - staging: gdm724x: fix use after free in gdm_lte_rx() (git-fixes). - tracing: Fix return value of __setup handlers (git-fixes). - tty: n_gsm: fix encoding of control signal octet bit DV (git-fixes). - tty: n_gsm: fix proper link termination after failed open (git-fixes). - usb: dwc2: Fix Stalling a Non-Isochronous OUT EP (git-fixes). - usb: dwc2: gadget: Fix GOUTNAK flow for Slave mode (git-fixes). - usb: dwc2: gadget: Fix kill_all_requests race (git-fixes). - usb: dwc2: use well defined macros for power_down (git-fixes). - usb: dwc3: gadget: Let the interrupt handler disable bottom halves (git-fixes). - usb: dwc3: meson-g12a: Disable the regulator in the error handling path of the probe (git-fixes). - usb: dwc3: pci: Fix Bay Trail phy GPIO mappings (git-fixes). - usb: gadget: rndis: add spinlock for rndis response list (git-fixes). - usb: host: xen-hcd: add missing unlock in error path (git-fixes). - usb: hub: Fix locking issues with address0_mutex (git-fixes). - usb: hub: Fix usb enumeration issue due to address0 race (git-fixes). - vrf: Fix fast path output packet handling with async Netfilter rules (git-fixes). - xen/usb: do not use gnttab_end_foreign_access() in xenhcd_gnttab_done() (bsc#1196488, XSA-396). - xhci: Prevent futile URB re-submissions due to incorrect return value (git-fixes). - xhci: re-initialize the HC during resume if HCE was set (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.60.4.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.60.4.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.60.4.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.60.4.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.60.4.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.60.4.x86_64.rpm True kernel-debug-5.3.18-150300.59.60.4.nosrc.rpm True kernel-debug-5.3.18-150300.59.60.4.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.60.4.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.60.4.x86_64.rpm True kernel-default-5.3.18-150300.59.60.4.nosrc.rpm True kernel-default-5.3.18-150300.59.60.4.x86_64.rpm True kernel-default-base-5.3.18-150300.59.60.4.150300.18.37.5.src.rpm True kernel-default-base-5.3.18-150300.59.60.4.150300.18.37.5.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.60.4.150300.18.37.5.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.60.4.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.60.4.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.60.4.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.60.4.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.60.4.x86_64.rpm True kernel-devel-5.3.18-150300.59.60.4.noarch.rpm True kernel-docs-5.3.18-150300.59.60.4.noarch.rpm True kernel-docs-5.3.18-150300.59.60.4.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.60.4.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.60.4.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.60.4.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.60.4.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.60.4.x86_64.rpm True kernel-macros-5.3.18-150300.59.60.4.noarch.rpm True kernel-obs-build-5.3.18-150300.59.60.4.src.rpm True kernel-obs-build-5.3.18-150300.59.60.4.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.60.4.src.rpm True kernel-obs-qa-5.3.18-150300.59.60.4.x86_64.rpm True kernel-preempt-5.3.18-150300.59.60.4.nosrc.rpm True kernel-preempt-5.3.18-150300.59.60.4.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.60.4.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.60.4.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.60.4.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.60.4.x86_64.rpm True kernel-source-5.3.18-150300.59.60.4.noarch.rpm True kernel-source-5.3.18-150300.59.60.4.src.rpm True kernel-source-vanilla-5.3.18-150300.59.60.4.noarch.rpm True kernel-syms-5.3.18-150300.59.60.4.src.rpm True kernel-syms-5.3.18-150300.59.60.4.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.60.4.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.60.4.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.60.4.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.60.4.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.60.4.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.60.4.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.60.4.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.60.4.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.60.4.s390x.rpm True kernel-default-5.3.18-150300.59.60.4.s390x.rpm True kernel-default-base-5.3.18-150300.59.60.4.150300.18.37.5.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.60.4.150300.18.37.5.s390x.rpm True kernel-default-devel-5.3.18-150300.59.60.4.s390x.rpm True kernel-default-extra-5.3.18-150300.59.60.4.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.60.4.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.60.4.s390x.rpm True kernel-default-optional-5.3.18-150300.59.60.4.s390x.rpm True kernel-obs-build-5.3.18-150300.59.60.4.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.60.4.s390x.rpm True kernel-syms-5.3.18-150300.59.60.4.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.60.4.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.60.4.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.60.4.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.60.4.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.60.4.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.60.4.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.60.4.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-debug-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-default-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.60.4.150300.18.37.5.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.60.4.150300.18.37.5.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.60.4.ppc64le.rpm True kernel-syms-5.3.18-150300.59.60.4.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.60.4.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.60.4.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.60.4.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.60.4.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.60.4.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.60.4.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.60.4.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.60.4.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.60.4.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.60.4.src.rpm True dtb-al-5.3.18-150300.59.60.4.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.60.4.aarch64.rpm True dtb-altera-5.3.18-150300.59.60.4.aarch64.rpm True dtb-amd-5.3.18-150300.59.60.4.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.60.4.aarch64.rpm True dtb-apm-5.3.18-150300.59.60.4.aarch64.rpm True dtb-arm-5.3.18-150300.59.60.4.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.60.4.aarch64.rpm True dtb-cavium-5.3.18-150300.59.60.4.aarch64.rpm True dtb-exynos-5.3.18-150300.59.60.4.aarch64.rpm True dtb-freescale-5.3.18-150300.59.60.4.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.60.4.aarch64.rpm True dtb-lg-5.3.18-150300.59.60.4.aarch64.rpm True dtb-marvell-5.3.18-150300.59.60.4.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.60.4.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.60.4.aarch64.rpm True dtb-qcom-5.3.18-150300.59.60.4.aarch64.rpm True dtb-renesas-5.3.18-150300.59.60.4.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.60.4.aarch64.rpm True dtb-socionext-5.3.18-150300.59.60.4.aarch64.rpm True dtb-sprd-5.3.18-150300.59.60.4.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.60.4.aarch64.rpm True dtb-zte-5.3.18-150300.59.60.4.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.60.4.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.60.4.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.60.4.aarch64.rpm True kernel-64kb-5.3.18-150300.59.60.4.aarch64.rpm True kernel-64kb-5.3.18-150300.59.60.4.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.60.4.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.60.4.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.60.4.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.60.4.aarch64.rpm True kernel-default-5.3.18-150300.59.60.4.aarch64.rpm True kernel-default-base-5.3.18-150300.59.60.4.150300.18.37.5.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.60.4.150300.18.37.5.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.60.4.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.60.4.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.60.4.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.60.4.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.60.4.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.60.4.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.60.4.aarch64.rpm True kernel-preempt-5.3.18-150300.59.60.4.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.60.4.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.60.4.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.60.4.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.60.4.aarch64.rpm True kernel-syms-5.3.18-150300.59.60.4.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.60.4.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.60.4.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.60.4.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.60.4.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.60.4.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.60.4.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.60.4.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.60.4.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.60.4.aarch64.rpm True openSUSE-SLE-15.3-2022-944 moderate SUSE Updates openSUSE-SLE 15.3 This update for libarchive fixes the following issues: - CVE-2021-36976: Fixed an invalid memory access that could cause data corruption (bsc#1188572). Non-security updates: - Updated references for CVE-2017-5601, which was already fixed in a previous version (bsc#1022528 bsc#1189528). bsdtar-3.4.2-150200.4.3.1.x86_64.rpm libarchive-3.4.2-150200.4.3.1.src.rpm libarchive-devel-3.4.2-150200.4.3.1.x86_64.rpm libarchive13-3.4.2-150200.4.3.1.x86_64.rpm libarchive13-32bit-3.4.2-150200.4.3.1.x86_64.rpm bsdtar-3.4.2-150200.4.3.1.s390x.rpm libarchive-devel-3.4.2-150200.4.3.1.s390x.rpm libarchive13-3.4.2-150200.4.3.1.s390x.rpm bsdtar-3.4.2-150200.4.3.1.ppc64le.rpm libarchive-devel-3.4.2-150200.4.3.1.ppc64le.rpm libarchive13-3.4.2-150200.4.3.1.ppc64le.rpm bsdtar-3.4.2-150200.4.3.1.aarch64.rpm libarchive-devel-3.4.2-150200.4.3.1.aarch64.rpm libarchive13-3.4.2-150200.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1037 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-25636: Fixed an issue which allowed a local users to gain privileges because of a heap out-of-bounds write in nf_dup_netdev.c, related to nf_tables_offload (bsc#1196299). - CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An attacker with adjacent NFC access could trigger crash the system or corrupt system memory (bsc#1196830). - CVE-2022-0487: A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove() in drivers/memstick/host/rtsx_usb_ms.c (bsc#1194516). - CVE-2022-24448: Fixed an issue if an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should have occured, but the server instead returned uninitialized data in the file descriptor (bsc#1195612). - CVE-2022-0617: Fixed a null pointer dereference in UDF file system functionality. A local user could crash the system by triggering udf_file_write_iter() via a malicious UDF image. (bsc#1196079) - CVE-2022-0644: Fixed a denial of service by a local user. A assertion failure could be triggered in kernel_read_file_from_fd(). (bsc#1196155) - CVE-2022-25258: The USB Gadget subsystem lacked certain validation of interface OS descriptor requests, which could have lead to memory corruption (bsc#1196096). - CVE-2022-24958: drivers/usb/gadget/legacy/inode.c mishandled dev->buf release (bsc#1195905). - CVE-2022-24959: Fixed a memory leak in yam_siocdevprivate() in drivers/net/hamradio/yam.c (bsc#1195897). - CVE-2021-44879: In gc_data_segment() in fs/f2fs/gc.c, special files were not considered, which lead to a move_data_page NULL pointer dereference (bsc#1195987). - CVE-2021-0920: Fixed a local privilege escalation due to a use-after-free vulnerability in unix_scm_to_skb of af_unix (bsc#1193731). - CVE-2021-39657: Fixed an information leak in the Universal Flash Storage subsystem (bsc#1193864). The following non-security bugs were fixed: - ALSA: intel_hdmi: Fix reference to PCM buffer address (git-fixes). - ARM: 9182/1: mmu: fix returns from early_param() and __setup() functions (git-fixes). - ARM: Fix kgdb breakpoint for Thumb2 (git-fixes). - ASoC: cs4265: Fix the duplicated control name (git-fixes). - ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min (git-fixes). - ASoC: rt5668: do not block workqueue if card is unbound (git-fixes). - ASoC: rt5682: do not block workqueue if card is unbound (git-fixes). - Bluetooth: btusb: Add missing Chicony device for Realtek RTL8723BE (bsc#1196779). - EDAC/altera: Fix deferred probing (bsc#1178134). - HID: add mapping for KEY_ALL_APPLICATIONS (git-fixes). - HID: add mapping for KEY_DICTATE (git-fixes). - Hand over the maintainership to SLE15-SP3 maintainers - IB/hfi1: Correct guard on eager buffer deallocation (git-fixes). - IB/hfi1: Fix early init panic (git-fixes). - IB/hfi1: Fix leak of rcvhdrtail_dummy_kvaddr (git-fixes). - IB/hfi1: Insure use of smp_processor_id() is preempt disabled (git-fixes). - IB/rdmavt: Validate remote_addr during loopback atomic tests (git-fixes). - Input: clear BTN_RIGHT/MIDDLE on buttonpads (git-fixes). - Input: elan_i2c - fix regulator enable count imbalance after suspend/resume (git-fixes). - Input: elan_i2c - move regulator_[en|dis]able() out of elan_[en|dis]able_power() (git-fixes). - RDMA/bnxt_re: Scan the whole bitmap when checking if "disabling RCFW with pending cmd-bit" (git-fixes). - RDMA/cma: Do not change route.addr.src_addr outside state checks (bsc#1181147). - RDMA/cma: Let cma_resolve_ib_dev() continue search even after empty entry (git-fixes). - RDMA/cma: Remove open coding of overflow checking for private_data_len (git-fixes). - RDMA/core: Do not infoleak GRH fields (git-fixes). - RDMA/core: Let ib_find_gid() continue search even after empty entry (git-fixes). - RDMA/cxgb4: Set queue pair state when being queried (git-fixes). - RDMA/hns: Validate the pkey index (git-fixes). - RDMA/ib_srp: Fix a deadlock (git-fixes). - RDMA/mlx4: Do not continue event handler after memory allocation failure (git-fixes). - RDMA/rtrs-clt: Fix possible double free in error case (jsc#SLE-15176). - RDMA/rxe: Fix a typo in opcode name (git-fixes). - RDMA/siw: Fix broken RDMA Read Fence/Resume logic (git-fixes). - RDMA/uverbs: Check for null return of kmalloc_array (git-fixes). - RDMA/uverbs: Remove the unnecessary assignment (git-fixes). - Revert "USB: serial: ch341: add new Product ID for CH341A" (git-fixes). - SUNRPC: avoid race between mod_timer() and del_timer_sync() (bnc#1195403). - USB: gadget: validate endpoint index for xilinx udc (git-fixes). - USB: gadget: validate interface OS descriptor requests (git-fixes). - USB: hub: Clean up use of port initialization schemes and retries (git-fixes). - USB: serial: option: add Telit LE910R1 compositions (git-fixes). - USB: serial: option: add support for DW5829e (git-fixes). - USB: zaurus: support another broken Zaurus (git-fixes). - arm64: dts: rockchip: Switch RK3399-Gru DP to SPDIF output (git-fixes). - asix: fix uninit-value in asix_mdio_read() (git-fixes). - ata: pata_hpt37x: disable primary channel on HPT371 (git-fixes). - batman-adv: Do not expect inter-netns unique iflink indices (git-fixes). - batman-adv: Request iflink once in batadv-on-batadv check (git-fixes). - batman-adv: Request iflink once in batadv_get_real_netdevice (git-fixes). - blk-mq: do not free tags if the tag_set is used by other device in queue initialztion (bsc#1193787). - bnxt_en: Fix active FEC reporting to ethtool (jsc#SLE-16649). - bnxt_en: Fix incorrect multicast rx mask setting when not requested (git-fixes). - bnxt_en: Fix occasional ethtool -t loopback test failures (git-fixes). - bnxt_en: Fix offline ethtool selftest with RDMA enabled (git-fixes). - bonding: force carrier update when releasing slave (git-fixes). - can: gs_usb: change active_channels's type from atomic_t to u8 (git-fixes). - cgroup-v1: Correct privileges check in release_agent writes (bsc#1196723). - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (bsc#1196868). - clk: jz4725b: fix mmc0 clock gating (git-fixes). - cpufreq: schedutil: Use kobject release() method to free (git-fixes) - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (bsc#1196866). - cputime, cpuacct: Include guest time in user time in (git-fixes) - dma-direct: Fix potential NULL pointer dereference (bsc#1196472 ltc#192278). - dma-mapping: Allow mixing bypass and mapped DMA operation (bsc#1196472 ltc#192278). - dmaengine: shdma: Fix runtime PM imbalance on error (git-fixes). - drm/amdgpu: disable MMHUB PG for Picasso (git-fixes). - drm/edid: Always set RGB444 (git-fixes). - drm/i915/dg1: Wait for pcode/uncore handshake at startup (bsc#1195211). - drm/i915/gen11+: Only load DRAM information from pcode (bsc#1195211). - drm/i915: Nuke not needed members of dram_info (bsc#1195211). - drm/i915: Remove memory frequency calculation (bsc#1195211). - drm/i915: Rename is_16gb_dimm to wm_lv_0_adjust_needed (bsc#1195211). - efivars: Respect "block" flag in efivar_entry_set_safe() (git-fixes). - exfat: fix i_blocks for files truncated over 4 GiB (git-fixes). - exfat: fix incorrect loading of i_blocks for large files (git-fixes). - firmware: arm_scmi: Remove space in MODULE_ALIAS name (git-fixes). - gpio: rockchip: Reset int_bothedge when changing trigger (git-fixes). - gpio: tegra186: Fix chip_data type confusion (git-fixes). - gtp: remove useless rcu_read_lock() (git-fixes). - hamradio: fix macro redefine warning (git-fixes). - i2c: bcm2835: Avoid clock stretching timeouts (git-fixes). - iavf: Fix missing check for running netdev (git-fixes). - ice: initialize local variable 'tlv' (jsc#SLE-12878). - igc: igc_read_phy_reg_gpy: drop premature return (git-fixes). - igc: igc_write_phy_reg_gpy: drop premature return (git-fixes). - iio: Fix error handling for PM (git-fixes). - iio: adc: ad7124: fix mask used for setting AIN_BUFP & AIN_BUFM bits (git-fixes). - iio: adc: men_z188_adc: Fix a resource leak in an error handling path (git-fixes). - ixgbe: xsk: change !netif_carrier_ok() handling in ixgbe_xmit_zc() (git-fixes). - mac80211: fix forwarded mesh frames AC & queue selection (git-fixes). - mac80211_hwsim: initialize ieee80211_tx_info at hw_scan_work (git-fixes). - mac80211_hwsim: report NOACK frames in tx_status (git-fixes). - mask out added spinlock in rndis_params (git-fixes). - net/mlx5: Fix possible deadlock on rule deletion (git-fixes). - net/mlx5: Fix wrong limitation of metadata match on ecpf (git-fixes). - net/mlx5: Update the list of the PCI supported devices (git-fixes). - net/mlx5: Update the list of the PCI supported devices (git-fixes). - net/mlx5e: Fix modify header actions memory leak (git-fixes). - net/mlx5e: Fix page DMA map/unmap attributes (bsc#1196468). - net/mlx5e: Fix wrong return value on ioctl EEPROM query failure (git-fixes). - net/mlx5e: TC, Reject rules with drop and modify hdr action (git-fixes). - net/mlx5e: TC, Reject rules with forward and drop actions (git-fixes). - net/mlx5e: kTLS, Use CHECKSUM_UNNECESSARY for device-offloaded packets (jsc#SLE-15172). - net/sched: act_ct: Fix flow table lookup after ct clear or switching zones (jsc#SLE-15172). - net: dsa: mv88e6xxx: MV88E6097 does not support jumbo configuration (git-fixes). - net: ethernet: ti: cpsw: disable PTPv1 hw timestamping advertisement (git-fixes). - net: fix up skbs delta_truesize in UDP GRO frag_list (bsc#1176447). - net: hns3: Clear the CMDQ registers before unmapping BAR region (git-fixes). - net: sfc: Replace in_interrupt() usage (git-fixes). - net: tipc: validate domain record count on input (bsc#1195254). - net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990 (git-fixes). - netfilter: nf_tables: fix memory leak during stateful obj update (bsc#1176447). - netsec: ignore 'phy-mode' device property on ACPI systems (git-fixes). - nfp: flower: Fix a potential leak in nfp_tunnel_add_shared_mac() (git-fixes). - nl80211: Handle nla_memdup failures in handle_nan_filter (git-fixes). - ntb: intel: fix port config status offset for SPR (git-fixes). - nvme-multipath: use vmalloc for ANA log buffer (bsc#1193787). - nvme-rdma: fix possible use-after-free in transport error_recovery work (git-fixes). - nvme-tcp: fix possible use-after-free in transport error_recovery work (git-fixes). - nvme: fix a possible use-after-free in controller reset during load (git-fixes). - powerpc/dma: Fallback to dma_ops when persistent memory present (bsc#1196472 ltc#192278). Update config files. - powerpc/fadump: register for fadump as early as possible (bsc#1179439 ltc#190038). - powerpc/mm: Remove dcache flush from memory remove (bsc#1196433 ltc#196449). - powerpc/powernv/memtrace: Fix dcache flushing (bsc#1196433 ltc#196449). - powerpc/pseries/iommu: Fix window size for direct mapping with pmem (bsc#1196472 ltc#192278). - sched/core: Mitigate race (git-fixes) - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (git-fixes). - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (git-fixes). - scsi: lpfc: Terminate string in lpfc_debugfs_nvmeio_trc_write() (git-fixes). - scsi: nsp_cs: Check of ioremap return value (git-fixes). - scsi: qedf: Fix potential dereference of NULL pointer (git-fixes). - scsi: smartpqi: Add PCI IDs (bsc#1196627). - scsi: ufs: Fix race conditions related to driver data (git-fixes). - selftests: mlxsw: tc_police_scale: Make test more robust (bsc#1176774). - soc: fsl: Correct MAINTAINERS database (QUICC ENGINE LIBRARY) (git-fixes). - soc: fsl: Correct MAINTAINERS database (SOC) (git-fixes). - soc: fsl: qe: Check of ioremap return value (git-fixes). - spi: spi-zynq-qspi: Fix a NULL pointer dereference in zynq_qspi_exec_mem_op() (git-fixes). - sr9700: sanity check for packet length (bsc#1196836). - tracing: Fix return value of __setup handlers (git-fixes). - tty: n_gsm: fix encoding of control signal octet bit DV (git-fixes). - tty: n_gsm: fix proper link termination after failed open (git-fixes). - usb: dwc2: use well defined macros for power_down (git-fixes). - usb: dwc3: gadget: Let the interrupt handler disable bottom halves (git-fixes). - usb: dwc3: pci: Fix Bay Trail phy GPIO mappings (git-fixes). - usb: gadget: rndis: add spinlock for rndis response list (git-fixes). - usb: hub: Fix usb enumeration issue due to address0 race (git-fixes). - vrf: Fix fast path output packet handling with async Netfilter rules (git-fixes). - xhci: Prevent futile URB re-submissions due to incorrect return value (git-fixes). - xhci: re-initialize the HC during resume if HCE was set (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.50.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.50.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.50.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.50.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.50.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.50.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.50.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.50.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.50.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.50.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.50.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.50.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.50.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.50.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.50.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.50.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.50.1.x86_64.rpm True openSUSE-SLE-15.3-2022-905 important SUSE Updates openSUSE-SLE 15.3 This update for util-linux fixes the following issues: - Prevent root owning of `/var/lib/libuuid/clock.txt`. (bsc#1194642) - Make uuidd lock state file usable and time based UUIDs safer. (bsc#1194642) - Fix `su -s` bash completion. (bsc#1172427) libblkid-devel-2.36.2-150300.4.17.1.x86_64.rpm libblkid-devel-32bit-2.36.2-150300.4.17.1.x86_64.rpm libblkid-devel-static-2.36.2-150300.4.17.1.x86_64.rpm libblkid1-2.36.2-150300.4.17.1.x86_64.rpm libblkid1-32bit-2.36.2-150300.4.17.1.x86_64.rpm libfdisk-devel-2.36.2-150300.4.17.1.x86_64.rpm libfdisk-devel-32bit-2.36.2-150300.4.17.1.x86_64.rpm libfdisk-devel-static-2.36.2-150300.4.17.1.x86_64.rpm libfdisk1-2.36.2-150300.4.17.1.x86_64.rpm libfdisk1-32bit-2.36.2-150300.4.17.1.x86_64.rpm libmount-devel-2.36.2-150300.4.17.1.x86_64.rpm libmount-devel-32bit-2.36.2-150300.4.17.1.x86_64.rpm libmount-devel-static-2.36.2-150300.4.17.1.x86_64.rpm libmount1-2.36.2-150300.4.17.1.x86_64.rpm libmount1-32bit-2.36.2-150300.4.17.1.x86_64.rpm libsmartcols-devel-2.36.2-150300.4.17.1.x86_64.rpm libsmartcols-devel-32bit-2.36.2-150300.4.17.1.x86_64.rpm libsmartcols-devel-static-2.36.2-150300.4.17.1.x86_64.rpm libsmartcols1-2.36.2-150300.4.17.1.x86_64.rpm libsmartcols1-32bit-2.36.2-150300.4.17.1.x86_64.rpm libuuid-devel-2.36.2-150300.4.17.1.x86_64.rpm libuuid-devel-32bit-2.36.2-150300.4.17.1.x86_64.rpm libuuid-devel-static-2.36.2-150300.4.17.1.x86_64.rpm libuuid1-2.36.2-150300.4.17.1.x86_64.rpm libuuid1-32bit-2.36.2-150300.4.17.1.x86_64.rpm python3-libmount-2.36.2-150300.4.17.1.src.rpm python3-libmount-2.36.2-150300.4.17.1.x86_64.rpm util-linux-2.36.2-150300.4.17.1.src.rpm util-linux-2.36.2-150300.4.17.1.x86_64.rpm util-linux-lang-2.36.2-150300.4.17.1.noarch.rpm util-linux-systemd-2.36.2-150300.4.17.1.src.rpm util-linux-systemd-2.36.2-150300.4.17.1.x86_64.rpm uuidd-2.36.2-150300.4.17.1.x86_64.rpm libblkid-devel-2.36.2-150300.4.17.1.s390x.rpm libblkid-devel-static-2.36.2-150300.4.17.1.s390x.rpm libblkid1-2.36.2-150300.4.17.1.s390x.rpm libfdisk-devel-2.36.2-150300.4.17.1.s390x.rpm libfdisk-devel-static-2.36.2-150300.4.17.1.s390x.rpm libfdisk1-2.36.2-150300.4.17.1.s390x.rpm libmount-devel-2.36.2-150300.4.17.1.s390x.rpm libmount-devel-static-2.36.2-150300.4.17.1.s390x.rpm libmount1-2.36.2-150300.4.17.1.s390x.rpm libsmartcols-devel-2.36.2-150300.4.17.1.s390x.rpm libsmartcols-devel-static-2.36.2-150300.4.17.1.s390x.rpm libsmartcols1-2.36.2-150300.4.17.1.s390x.rpm libuuid-devel-2.36.2-150300.4.17.1.s390x.rpm libuuid-devel-static-2.36.2-150300.4.17.1.s390x.rpm libuuid1-2.36.2-150300.4.17.1.s390x.rpm python3-libmount-2.36.2-150300.4.17.1.s390x.rpm util-linux-2.36.2-150300.4.17.1.s390x.rpm util-linux-systemd-2.36.2-150300.4.17.1.s390x.rpm uuidd-2.36.2-150300.4.17.1.s390x.rpm libblkid-devel-2.36.2-150300.4.17.1.ppc64le.rpm libblkid-devel-static-2.36.2-150300.4.17.1.ppc64le.rpm libblkid1-2.36.2-150300.4.17.1.ppc64le.rpm libfdisk-devel-2.36.2-150300.4.17.1.ppc64le.rpm libfdisk-devel-static-2.36.2-150300.4.17.1.ppc64le.rpm libfdisk1-2.36.2-150300.4.17.1.ppc64le.rpm libmount-devel-2.36.2-150300.4.17.1.ppc64le.rpm libmount-devel-static-2.36.2-150300.4.17.1.ppc64le.rpm libmount1-2.36.2-150300.4.17.1.ppc64le.rpm libsmartcols-devel-2.36.2-150300.4.17.1.ppc64le.rpm libsmartcols-devel-static-2.36.2-150300.4.17.1.ppc64le.rpm libsmartcols1-2.36.2-150300.4.17.1.ppc64le.rpm libuuid-devel-2.36.2-150300.4.17.1.ppc64le.rpm libuuid-devel-static-2.36.2-150300.4.17.1.ppc64le.rpm libuuid1-2.36.2-150300.4.17.1.ppc64le.rpm python3-libmount-2.36.2-150300.4.17.1.ppc64le.rpm util-linux-2.36.2-150300.4.17.1.ppc64le.rpm util-linux-systemd-2.36.2-150300.4.17.1.ppc64le.rpm uuidd-2.36.2-150300.4.17.1.ppc64le.rpm libblkid-devel-2.36.2-150300.4.17.1.aarch64.rpm libblkid-devel-static-2.36.2-150300.4.17.1.aarch64.rpm libblkid1-2.36.2-150300.4.17.1.aarch64.rpm libfdisk-devel-2.36.2-150300.4.17.1.aarch64.rpm libfdisk-devel-static-2.36.2-150300.4.17.1.aarch64.rpm libfdisk1-2.36.2-150300.4.17.1.aarch64.rpm libmount-devel-2.36.2-150300.4.17.1.aarch64.rpm libmount-devel-static-2.36.2-150300.4.17.1.aarch64.rpm libmount1-2.36.2-150300.4.17.1.aarch64.rpm libsmartcols-devel-2.36.2-150300.4.17.1.aarch64.rpm libsmartcols-devel-static-2.36.2-150300.4.17.1.aarch64.rpm libsmartcols1-2.36.2-150300.4.17.1.aarch64.rpm libuuid-devel-2.36.2-150300.4.17.1.aarch64.rpm libuuid-devel-static-2.36.2-150300.4.17.1.aarch64.rpm libuuid1-2.36.2-150300.4.17.1.aarch64.rpm python3-libmount-2.36.2-150300.4.17.1.aarch64.rpm util-linux-2.36.2-150300.4.17.1.aarch64.rpm util-linux-systemd-2.36.2-150300.4.17.1.aarch64.rpm uuidd-2.36.2-150300.4.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-1147 moderate SUSE Updates openSUSE-SLE 15.3 This update of containerd fixes the following issue: - container-ctr is shipped to the PackageHub repos. containerd-1.4.12-150000.65.1.src.rpm containerd-1.4.12-150000.65.1.x86_64.rpm containerd-ctr-1.4.12-150000.65.1.x86_64.rpm containerd-1.4.12-150000.65.1.s390x.rpm containerd-ctr-1.4.12-150000.65.1.s390x.rpm containerd-1.4.12-150000.65.1.ppc64le.rpm containerd-ctr-1.4.12-150000.65.1.ppc64le.rpm containerd-1.4.12-150000.65.1.aarch64.rpm containerd-ctr-1.4.12-150000.65.1.aarch64.rpm openSUSE-SLE-15.3-2022-1031 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: - CVE-2022-23943: heap out-of-bounds write in mod_sed (bsc#1197098). - CVE-2022-22720: HTTP request smuggling due to incorrect error handling (bsc#1197095). - CVE-2022-22719: use of uninitialized value of in r:parsebody in mod_lua (bsc#1197091). - CVE-2022-22721: possible buffer overflow with very large or unlimited LimitXMLRequestBody (bsc#1197096). apache2-2.4.51-150200.3.42.1.src.rpm apache2-2.4.51-150200.3.42.1.x86_64.rpm apache2-devel-2.4.51-150200.3.42.1.x86_64.rpm apache2-doc-2.4.51-150200.3.42.1.noarch.rpm apache2-event-2.4.51-150200.3.42.1.x86_64.rpm apache2-example-pages-2.4.51-150200.3.42.1.x86_64.rpm apache2-prefork-2.4.51-150200.3.42.1.x86_64.rpm apache2-utils-2.4.51-150200.3.42.1.x86_64.rpm apache2-worker-2.4.51-150200.3.42.1.x86_64.rpm apache2-2.4.51-150200.3.42.1.s390x.rpm apache2-devel-2.4.51-150200.3.42.1.s390x.rpm apache2-event-2.4.51-150200.3.42.1.s390x.rpm apache2-example-pages-2.4.51-150200.3.42.1.s390x.rpm apache2-prefork-2.4.51-150200.3.42.1.s390x.rpm apache2-utils-2.4.51-150200.3.42.1.s390x.rpm apache2-worker-2.4.51-150200.3.42.1.s390x.rpm apache2-2.4.51-150200.3.42.1.ppc64le.rpm apache2-devel-2.4.51-150200.3.42.1.ppc64le.rpm apache2-event-2.4.51-150200.3.42.1.ppc64le.rpm apache2-example-pages-2.4.51-150200.3.42.1.ppc64le.rpm apache2-prefork-2.4.51-150200.3.42.1.ppc64le.rpm apache2-utils-2.4.51-150200.3.42.1.ppc64le.rpm apache2-worker-2.4.51-150200.3.42.1.ppc64le.rpm apache2-2.4.51-150200.3.42.1.aarch64.rpm apache2-devel-2.4.51-150200.3.42.1.aarch64.rpm apache2-event-2.4.51-150200.3.42.1.aarch64.rpm apache2-example-pages-2.4.51-150200.3.42.1.aarch64.rpm apache2-prefork-2.4.51-150200.3.42.1.aarch64.rpm apache2-utils-2.4.51-150200.3.42.1.aarch64.rpm apache2-worker-2.4.51-150200.3.42.1.aarch64.rpm openSUSE-SLE-15.3-2022-1046 moderate SUSE Updates openSUSE-SLE 15.3 This update for firewalld fixes the following issues: - Fixed ability to setting the default zone to external during installation (bsc#1191837) firewall-applet-0.9.3-150300.3.3.1.noarch.rpm firewall-config-0.9.3-150300.3.3.1.noarch.rpm firewall-macros-0.9.3-150300.3.3.1.noarch.rpm firewalld-0.9.3-150300.3.3.1.noarch.rpm firewalld-0.9.3-150300.3.3.1.src.rpm firewalld-lang-0.9.3-150300.3.3.1.noarch.rpm python3-firewall-0.9.3-150300.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-945 important SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - CVE-2021-25220: Fixed a DNS cache poisoning vulnerability due to loose caching rules (bsc#1197135). bind-9.16.6-150300.22.16.1.src.rpm bind-9.16.6-150300.22.16.1.x86_64.rpm bind-chrootenv-9.16.6-150300.22.16.1.x86_64.rpm bind-devel-9.16.6-150300.22.16.1.x86_64.rpm bind-doc-9.16.6-150300.22.16.1.noarch.rpm bind-utils-9.16.6-150300.22.16.1.x86_64.rpm libbind9-1600-9.16.6-150300.22.16.1.x86_64.rpm libdns1605-9.16.6-150300.22.16.1.x86_64.rpm libirs-devel-9.16.6-150300.22.16.1.x86_64.rpm libirs1601-9.16.6-150300.22.16.1.x86_64.rpm libisc1606-9.16.6-150300.22.16.1.x86_64.rpm libisccc1600-9.16.6-150300.22.16.1.x86_64.rpm libisccfg1600-9.16.6-150300.22.16.1.x86_64.rpm libns1604-9.16.6-150300.22.16.1.x86_64.rpm python3-bind-9.16.6-150300.22.16.1.noarch.rpm bind-9.16.6-150300.22.16.1.s390x.rpm bind-chrootenv-9.16.6-150300.22.16.1.s390x.rpm bind-devel-9.16.6-150300.22.16.1.s390x.rpm bind-utils-9.16.6-150300.22.16.1.s390x.rpm libbind9-1600-9.16.6-150300.22.16.1.s390x.rpm libdns1605-9.16.6-150300.22.16.1.s390x.rpm libirs-devel-9.16.6-150300.22.16.1.s390x.rpm libirs1601-9.16.6-150300.22.16.1.s390x.rpm libisc1606-9.16.6-150300.22.16.1.s390x.rpm libisccc1600-9.16.6-150300.22.16.1.s390x.rpm libisccfg1600-9.16.6-150300.22.16.1.s390x.rpm libns1604-9.16.6-150300.22.16.1.s390x.rpm bind-9.16.6-150300.22.16.1.ppc64le.rpm bind-chrootenv-9.16.6-150300.22.16.1.ppc64le.rpm bind-devel-9.16.6-150300.22.16.1.ppc64le.rpm bind-utils-9.16.6-150300.22.16.1.ppc64le.rpm libbind9-1600-9.16.6-150300.22.16.1.ppc64le.rpm libdns1605-9.16.6-150300.22.16.1.ppc64le.rpm libirs-devel-9.16.6-150300.22.16.1.ppc64le.rpm libirs1601-9.16.6-150300.22.16.1.ppc64le.rpm libisc1606-9.16.6-150300.22.16.1.ppc64le.rpm libisccc1600-9.16.6-150300.22.16.1.ppc64le.rpm libisccfg1600-9.16.6-150300.22.16.1.ppc64le.rpm libns1604-9.16.6-150300.22.16.1.ppc64le.rpm bind-9.16.6-150300.22.16.1.aarch64.rpm bind-chrootenv-9.16.6-150300.22.16.1.aarch64.rpm bind-devel-9.16.6-150300.22.16.1.aarch64.rpm bind-utils-9.16.6-150300.22.16.1.aarch64.rpm libbind9-1600-9.16.6-150300.22.16.1.aarch64.rpm libdns1605-9.16.6-150300.22.16.1.aarch64.rpm libirs-devel-9.16.6-150300.22.16.1.aarch64.rpm libirs1601-9.16.6-150300.22.16.1.aarch64.rpm libisc1606-9.16.6-150300.22.16.1.aarch64.rpm libisccc1600-9.16.6-150300.22.16.1.aarch64.rpm libisccfg1600-9.16.6-150300.22.16.1.aarch64.rpm libns1604-9.16.6-150300.22.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-1438 low SUSE Updates openSUSE-SLE 15.3 This update for systemd-presets-common-SUSE fixes the following issue: - enable vgauthd service for VMWare by default (bsc#1195251) systemd-presets-common-SUSE-15-150100.8.12.1.noarch.rpm systemd-presets-common-SUSE-15-150100.8.12.1.src.rpm openSUSE-SLE-15.3-2022-946 important SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - CVE-2021-25220: Fixed a DNS cache poisoning vulnerability due to loose caching rules (bsc#1197135). bind-9.16.6-150000.12.60.1.src.rpm bind-devel-32bit-9.16.6-150000.12.60.1.x86_64.rpm libbind9-1600-32bit-9.16.6-150000.12.60.1.x86_64.rpm libdns1605-32bit-9.16.6-150000.12.60.1.x86_64.rpm libirs1601-32bit-9.16.6-150000.12.60.1.x86_64.rpm libisc1606-32bit-9.16.6-150000.12.60.1.x86_64.rpm libisccc1600-32bit-9.16.6-150000.12.60.1.x86_64.rpm libisccfg1600-32bit-9.16.6-150000.12.60.1.x86_64.rpm libns1604-32bit-9.16.6-150000.12.60.1.x86_64.rpm openSUSE-SLE-15.3-2022-1027 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-ibm fixes the following issues: Update Java 8.0 to Service Refresh 7 Fix Pack 5 (bsc#1197126). Including fixes for the following vulnerabilities: CVE-2022-21366, CVE-2022-21365, CVE-2022-21360, CVE-2022-21349, CVE-2022-21341, CVE-2022-21340, CVE-2022-21305, CVE-2022-21277, CVE-2022-21299, CVE-2022-21296, CVE-2022-21282, CVE-2022-21294, CVE-2022-21293, CVE-2022-21291, CVE-2022-21283, CVE-2022-21248, CVE-2022-21271. Non-securtiy fix: - Fixed a broken symlink for javaws (bsc#1195146). java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.nosrc.rpm java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.x86_64.rpm java-1_8_0-ibm-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64.rpm java-1_8_0-ibm-alsa-1.8.0_sr7.5-150000.3.56.1.x86_64.rpm java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.x86_64.rpm java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.x86_64.rpm java-1_8_0-ibm-devel-32bit-1.8.0_sr7.5-150000.3.56.1.x86_64.rpm java-1_8_0-ibm-plugin-1.8.0_sr7.5-150000.3.56.1.x86_64.rpm java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.x86_64.rpm java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.s390x.rpm java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.s390x.rpm java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.s390x.rpm java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.s390x.rpm java-1_8_0-ibm-1.8.0_sr7.5-150000.3.56.1.ppc64le.rpm java-1_8_0-ibm-demo-1.8.0_sr7.5-150000.3.56.1.ppc64le.rpm java-1_8_0-ibm-devel-1.8.0_sr7.5-150000.3.56.1.ppc64le.rpm java-1_8_0-ibm-src-1.8.0_sr7.5-150000.3.56.1.ppc64le.rpm openSUSE-SLE-15.3-2022-1821 low SUSE Updates openSUSE-SLE 15.3 This update for read-only-root-fs fixes the following issues: - Add required mount for /etc for systemd udevd. - Workaround for /var being RO during systemd journal flush. (bsc#1156421) - Better check for already existing etc overlay. (bsc#1161264) - Adjust btrfs maintenance sysconfig to not use the read-only root filesystem. (bsc#1176052) read-only-root-fs-1.0+git20190206.586e9f1-150100.3.3.1.noarch.rpm read-only-root-fs-1.0+git20190206.586e9f1-150100.3.3.1.src.rpm read-only-root-fs-volatile-1.0+git20190206.586e9f1-150100.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-1450 moderate SUSE Updates openSUSE-SLE 15.3 This update for openmpi3 fixes the following issues: - Fix bad rdma component selection which can cause stall when running on multiple IB nodes. (bsc#1196838) - Move rpm macros to %_rpmmacrodir. (bsc#1191390) - Add build support for gcc8/9/10 to HPC build. (bsc#1174439) libopenmpi3-gnu-hpc-3.1.6-150200.3.3.1.x86_64.rpm libopenmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-3.1.6-150200.3.3.1.src.rpm openmpi3-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-config-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-devel-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-docs-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-gnu-hpc-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-gnu-hpc-devel-3.1.6-150200.3.3.1.noarch.rpm openmpi3-gnu-hpc-devel-static-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-gnu-hpc-docs-3.1.6-150200.3.3.1.noarch.rpm openmpi3-gnu-hpc-macros-devel-3.1.6-150200.3.3.1.noarch.rpm openmpi3-libs-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-libs-32bit-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-macros-devel-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-testsuite-3.1.6-150200.3.3.1.noarch.rpm openmpi3-testsuite-3.1.6-150200.3.3.1.src.rpm openmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.src.rpm openmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.x86_64.rpm openmpi_3_1_6-gnu-hpc-devel-3.1.6-150200.3.3.1.x86_64.rpm openmpi_3_1_6-gnu-hpc-devel-static-3.1.6-150200.3.3.1.x86_64.rpm openmpi_3_1_6-gnu-hpc-docs-3.1.6-150200.3.3.1.x86_64.rpm openmpi_3_1_6-gnu-hpc-macros-devel-3.1.6-150200.3.3.1.x86_64.rpm openmpi_3_1_6-gnu-hpc-testsuite-3.1.6-150200.3.3.1.noarch.rpm openmpi_3_1_6-gnu-hpc-testsuite-3.1.6-150200.3.3.1.src.rpm libopenmpi3-gnu-hpc-3.1.6-150200.3.3.1.s390x.rpm libopenmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.s390x.rpm openmpi3-3.1.6-150200.3.3.1.s390x.rpm openmpi3-config-3.1.6-150200.3.3.1.s390x.rpm openmpi3-devel-3.1.6-150200.3.3.1.s390x.rpm openmpi3-docs-3.1.6-150200.3.3.1.s390x.rpm openmpi3-gnu-hpc-3.1.6-150200.3.3.1.s390x.rpm openmpi3-gnu-hpc-devel-static-3.1.6-150200.3.3.1.s390x.rpm openmpi3-libs-3.1.6-150200.3.3.1.s390x.rpm openmpi3-macros-devel-3.1.6-150200.3.3.1.s390x.rpm openmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.s390x.rpm openmpi_3_1_6-gnu-hpc-devel-3.1.6-150200.3.3.1.s390x.rpm openmpi_3_1_6-gnu-hpc-devel-static-3.1.6-150200.3.3.1.s390x.rpm openmpi_3_1_6-gnu-hpc-docs-3.1.6-150200.3.3.1.s390x.rpm openmpi_3_1_6-gnu-hpc-macros-devel-3.1.6-150200.3.3.1.s390x.rpm libopenmpi3-gnu-hpc-3.1.6-150200.3.3.1.ppc64le.rpm libopenmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-config-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-devel-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-docs-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-gnu-hpc-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-gnu-hpc-devel-static-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-libs-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-macros-devel-3.1.6-150200.3.3.1.ppc64le.rpm openmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.ppc64le.rpm openmpi_3_1_6-gnu-hpc-devel-3.1.6-150200.3.3.1.ppc64le.rpm openmpi_3_1_6-gnu-hpc-devel-static-3.1.6-150200.3.3.1.ppc64le.rpm openmpi_3_1_6-gnu-hpc-docs-3.1.6-150200.3.3.1.ppc64le.rpm openmpi_3_1_6-gnu-hpc-macros-devel-3.1.6-150200.3.3.1.ppc64le.rpm libopenmpi3-gnu-hpc-3.1.6-150200.3.3.1.aarch64.rpm libopenmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-config-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-devel-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-docs-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-gnu-hpc-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-gnu-hpc-devel-static-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-libs-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-macros-devel-3.1.6-150200.3.3.1.aarch64.rpm openmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.aarch64.rpm openmpi_3_1_6-gnu-hpc-devel-3.1.6-150200.3.3.1.aarch64.rpm openmpi_3_1_6-gnu-hpc-devel-static-3.1.6-150200.3.3.1.aarch64.rpm openmpi_3_1_6-gnu-hpc-docs-3.1.6-150200.3.3.1.aarch64.rpm openmpi_3_1_6-gnu-hpc-macros-devel-3.1.6-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1097 moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - sync pci ids with Mesa 20.2.4 (bsc#1197046) - sync GL driver PCI IDs with Mesa. (bsc#1197045) - avoid consequently failing page flip. (bsc#1197269) xorg-x11-server-1.20.3-150200.22.5.52.1.src.rpm xorg-x11-server-1.20.3-150200.22.5.52.1.x86_64.rpm xorg-x11-server-extra-1.20.3-150200.22.5.52.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.52.1.x86_64.rpm xorg-x11-server-source-1.20.3-150200.22.5.52.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.52.1.x86_64.rpm xorg-x11-server-1.20.3-150200.22.5.52.1.s390x.rpm xorg-x11-server-extra-1.20.3-150200.22.5.52.1.s390x.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.52.1.s390x.rpm xorg-x11-server-source-1.20.3-150200.22.5.52.1.s390x.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.52.1.s390x.rpm xorg-x11-server-1.20.3-150200.22.5.52.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-150200.22.5.52.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.52.1.ppc64le.rpm xorg-x11-server-source-1.20.3-150200.22.5.52.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.52.1.ppc64le.rpm xorg-x11-server-1.20.3-150200.22.5.52.1.aarch64.rpm xorg-x11-server-extra-1.20.3-150200.22.5.52.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.52.1.aarch64.rpm xorg-x11-server-source-1.20.3-150200.22.5.52.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.52.1.aarch64.rpm openSUSE-SLE-15.3-2022-1118 moderate SUSE Updates openSUSE-SLE 15.3 This update for timezone fixes the following issues: - timezone update 2022a (bsc#1177460): * Palestine will spring forward on 2022-03-27, not on 03-26 * `zdump -v` now outputs better failure indications * Bug fixes for code that reads corrupted TZif data timezone-2022a-150000.75.7.1.src.rpm timezone-2022a-150000.75.7.1.x86_64.rpm timezone-java-2022a-150000.75.7.1.noarch.rpm timezone-java-2022a-150000.75.7.1.src.rpm timezone-2022a-150000.75.7.1.s390x.rpm timezone-2022a-150000.75.7.1.ppc64le.rpm timezone-2022a-150000.75.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-919 low SUSE Updates openSUSE-SLE 15.3 This is a relogin-suggested test update for SUSE:SLE-15-SP4:Update update-test-relogin-suggested-5.1-150200.35.1.x86_64.rpm True update-test-relogin-suggested-5.1-150200.35.1.s390x.rpm True update-test-relogin-suggested-5.1-150200.35.1.ppc64le.rpm True update-test-relogin-suggested-5.1-150200.35.1.aarch64.rpm True openSUSE-SLE-15.3-2022-920 low SUSE Updates openSUSE-SLE 15.3 This is a affects-package-manager test update for SUSE:SLE-15-SP4:Update update-test-affects-package-manager-5.1-150200.35.1.x86_64.rpm True update-test-affects-package-manager-5.1-150200.35.1.s390x.rpm True update-test-affects-package-manager-5.1-150200.35.1.ppc64le.rpm True update-test-affects-package-manager-5.1-150200.35.1.aarch64.rpm True openSUSE-SLE-15.3-2022-921 low SUSE Updates openSUSE-SLE 15.3 This is a retracted test update for SUSE:SLE-15-SP4:Update update-test-retracted-5.1-150200.35.1.x86_64.rpm update-test-retracted-5.1-150200.35.1.s390x.rpm update-test-retracted-5.1-150200.35.1.ppc64le.rpm update-test-retracted-5.1-150200.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-922 low SUSE Updates openSUSE-SLE 15.3 This is a optional test update for SUSE:SLE-15-SP4:Update update-test-optional-5.1-150200.35.1.x86_64.rpm update-test-optional-5.1-150200.35.1.s390x.rpm update-test-optional-5.1-150200.35.1.ppc64le.rpm update-test-optional-5.1-150200.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-923 important SUSE Updates openSUSE-SLE 15.3 This is a security test update for SUSE:SLE-15-SP4:Update update-test-security-5.1-150200.35.1.x86_64.rpm update-test-security-5.1-150200.35.1.s390x.rpm update-test-security-5.1-150200.35.1.ppc64le.rpm update-test-security-5.1-150200.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-924 low SUSE Updates openSUSE-SLE 15.3 This is a trivial test update for SUSE:SLE-15-SP4:Update update-test-trivial-5.1-150200.35.1.src.rpm update-test-trivial-5.1-150200.35.1.x86_64.rpm update-test-trivial-5.1-150200.35.1.s390x.rpm update-test-trivial-5.1-150200.35.1.ppc64le.rpm update-test-trivial-5.1-150200.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-925 low SUSE Updates openSUSE-SLE 15.3 This is a feature test update for SUSE:SLE-15-SP4:Update update-test-feature-5.1-150200.35.1.x86_64.rpm update-test-feature-5.1-150200.35.1.s390x.rpm update-test-feature-5.1-150200.35.1.ppc64le.rpm update-test-feature-5.1-150200.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-926 low SUSE Updates openSUSE-SLE 15.3 This is a reboot-needed test update for SUSE:SLE-15-SP4:Update update-test-reboot-needed-5.1-150200.35.1.x86_64.rpm True update-test-reboot-needed-5.1-150200.35.1.s390x.rpm True update-test-reboot-needed-5.1-150200.35.1.ppc64le.rpm True update-test-reboot-needed-5.1-150200.35.1.aarch64.rpm True openSUSE-SLE-15.3-2022-927 low SUSE Updates openSUSE-SLE 15.3 This is a interactive test update for SUSE:SLE-15-SP4:Update Is this message visible? update-test-interactive-5.1-150200.35.1.x86_64.rpm update-test-interactive-5.1-150200.35.1.s390x.rpm update-test-interactive-5.1-150200.35.1.ppc64le.rpm update-test-interactive-5.1-150200.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-1201 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: - Fix grub-install error when efi system partition is created as mdadm software raid1 device. (bsc#1179981, bsc#1195204) - Fix error in grub-install when linux root device is on lvm thin volume. (bsc#1192622, bsc#1191974) grub2-2.04-150300.22.15.2.src.rpm grub2-2.04-150300.22.15.2.x86_64.rpm grub2-arm64-efi-2.04-150300.22.15.2.noarch.rpm grub2-arm64-efi-debug-2.04-150300.22.15.2.noarch.rpm grub2-branding-upstream-2.04-150300.22.15.2.x86_64.rpm grub2-i386-pc-2.04-150300.22.15.2.noarch.rpm grub2-i386-pc-debug-2.04-150300.22.15.2.noarch.rpm grub2-powerpc-ieee1275-2.04-150300.22.15.2.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-150300.22.15.2.noarch.rpm grub2-snapper-plugin-2.04-150300.22.15.2.noarch.rpm grub2-systemd-sleep-plugin-2.04-150300.22.15.2.noarch.rpm grub2-x86_64-efi-2.04-150300.22.15.2.noarch.rpm grub2-x86_64-efi-debug-2.04-150300.22.15.2.noarch.rpm grub2-x86_64-xen-2.04-150300.22.15.2.noarch.rpm grub2-2.04-150300.22.15.2.s390x.rpm grub2-branding-upstream-2.04-150300.22.15.2.s390x.rpm grub2-s390x-emu-2.04-150300.22.15.2.s390x.rpm grub2-s390x-emu-debug-2.04-150300.22.15.2.s390x.rpm grub2-2.04-150300.22.15.2.ppc64le.rpm grub2-branding-upstream-2.04-150300.22.15.2.ppc64le.rpm grub2-2.04-150300.22.15.2.aarch64.rpm grub2-branding-upstream-2.04-150300.22.15.2.aarch64.rpm openSUSE-SLE-15.3-2022-1298 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: gutenprint gutenprint-5.2.14-150000.3.2.2.src.rpm gutenprint-5.2.14-150000.3.2.2.x86_64.rpm gutenprint-devel-5.2.14-150000.3.2.2.x86_64.rpm gutenprint-gimpplugin-5.2.14-150000.3.2.2.x86_64.rpm gutenprint-5.2.14-150000.3.2.2.s390x.rpm gutenprint-devel-5.2.14-150000.3.2.2.s390x.rpm gutenprint-gimpplugin-5.2.14-150000.3.2.2.s390x.rpm gutenprint-5.2.14-150000.3.2.2.ppc64le.rpm gutenprint-devel-5.2.14-150000.3.2.2.ppc64le.rpm gutenprint-gimpplugin-5.2.14-150000.3.2.2.ppc64le.rpm gutenprint-5.2.14-150000.3.2.2.aarch64.rpm gutenprint-devel-5.2.14-150000.3.2.2.aarch64.rpm gutenprint-gimpplugin-5.2.14-150000.3.2.2.aarch64.rpm openSUSE-SLE-15.3-2022-1281 moderate SUSE Updates openSUSE-SLE 15.3 This update for libtirpc fixes the following issues: - Add option to enforce connection via protocol version 2 first (bsc#1196647) libtirpc-1.2.6-150300.3.3.1.src.rpm libtirpc-devel-1.2.6-150300.3.3.1.x86_64.rpm libtirpc-netconfig-1.2.6-150300.3.3.1.x86_64.rpm libtirpc3-1.2.6-150300.3.3.1.x86_64.rpm libtirpc3-32bit-1.2.6-150300.3.3.1.x86_64.rpm libtirpc-devel-1.2.6-150300.3.3.1.s390x.rpm libtirpc-netconfig-1.2.6-150300.3.3.1.s390x.rpm libtirpc3-1.2.6-150300.3.3.1.s390x.rpm libtirpc-devel-1.2.6-150300.3.3.1.ppc64le.rpm libtirpc-netconfig-1.2.6-150300.3.3.1.ppc64le.rpm libtirpc3-1.2.6-150300.3.3.1.ppc64le.rpm libtirpc-devel-1.2.6-150300.3.3.1.aarch64.rpm libtirpc-netconfig-1.2.6-150300.3.3.1.aarch64.rpm libtirpc3-1.2.6-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1827 moderate SUSE Updates openSUSE-SLE 15.3 This update for xf86-video-vesa fixes the following issues: - Disallow vesa driver on the system with simpledrmfb (bsc#1193539): xf86-video-vesa-2.4.0-150100.5.3.1.src.rpm xf86-video-vesa-2.4.0-150100.5.3.1.x86_64.rpm xf86-video-vesa-2.4.0-150100.5.3.1.ppc64le.rpm xf86-video-vesa-2.4.0-150100.5.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1496 moderate SUSE Updates openSUSE-SLE 15.3 This update for kvm_stat fixes the following issues: - Add an appropriate delay in the unit file to ensure kvm module is properly loaded (bsc#1185945) - Add a dummy -rebuild package: give OBS/Tumbleweed a hint to tell when this package needs a rebuild (bsc#1178493) kvm_stat-5.3.18-150300.19.3.1.noarch.rpm kvm_stat-5.3.18-150300.19.3.1.src.rpm openSUSE-SLE-15.3-2022-1400 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for glm fixes the following issues: Update from version 0.9.7.5 to version 0.9.9.8 (jsc#SLE-23864): - Added CMake GLM interface - Added EXT_scalar_integer extension with power of two and multiple scalar functions - Added EXT_vector_integer extension with power of two and multiple vector functions - Added GLM_FORCE_QUAT_DATA_WXYZ to store quat data as w,x,y,z instead of x,y,z,w - Added Neon support - Added SYCL support - Added fma implementation based on std::fma - Added missing genType check for bitCount and bitfieldReverse - Added missing quat constexpr - Ensure glmConfig.cmake gets installed - Fixed 'if constexpr' warning - Fixed .natvis due to renamed structs - Fixed ARM 64bit detection - Fixed Nvidia CUDA 9 build - Fixed Clang or GCC build due to wrong GLM_HAS_IF_CONSTEXPR definition - Fixed EXT_matrix_clip_space perspectiveFov - Fixed EXT_scalar_ulp and EXT_vector_ulp API coding style - Fixed GLM_EXT_matrix_clip_space warnings - Fixed GLM_HAS_CXX11_STL broken on Clang with Linux - Fixed Wimplicit-int-float-conversion warnings with clang 10+ - Fixed build errors when defining GLM_ENABLE_EXPERIMENTAL - Fixed equal ULP variation when using negative sign - Fixed for g++6 where -std=c++1z sets __cplusplus to 201500 instead of 201402 - Fixed for glm::length using arch64 - Fixed for intersection ray/plane and added related tests - Fixed hash hashes 'qua' instead of 'tquat' - Fixed ldexp and frexp declaration - Fixed missing const to quaternion conversion operators - Fixed missing declarations for 'frexp' and 'ldexp' - Fixed quaternion componant order: w, {x, y, z} - Fixed quaternion slerp overload which interpolates with extra spins - Fixed singularity check for quatLookAt - Improved Neon support with more functions optimized glm-0.9.9.8-150000.3.6.1.src.rpm glm-devel-0.9.9.8-150000.3.6.1.x86_64.rpm glm-doc-0.9.9.8-150000.3.6.1.noarch.rpm glm-devel-0.9.9.8-150000.3.6.1.s390x.rpm glm-devel-0.9.9.8-150000.3.6.1.ppc64le.rpm glm-devel-0.9.9.8-150000.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1107 moderate SUSE Updates openSUSE-SLE 15.3 This update for util-linux fixes the following issue: - Improve throughput and reduce clock sequence increments for high load situation with time based version 1 uuids. (bsc#1194642) libblkid-devel-2.36.2-150300.4.20.1.x86_64.rpm libblkid-devel-32bit-2.36.2-150300.4.20.1.x86_64.rpm libblkid-devel-static-2.36.2-150300.4.20.1.x86_64.rpm libblkid1-2.36.2-150300.4.20.1.x86_64.rpm libblkid1-32bit-2.36.2-150300.4.20.1.x86_64.rpm libfdisk-devel-2.36.2-150300.4.20.1.x86_64.rpm libfdisk-devel-32bit-2.36.2-150300.4.20.1.x86_64.rpm libfdisk-devel-static-2.36.2-150300.4.20.1.x86_64.rpm libfdisk1-2.36.2-150300.4.20.1.x86_64.rpm libfdisk1-32bit-2.36.2-150300.4.20.1.x86_64.rpm libmount-devel-2.36.2-150300.4.20.1.x86_64.rpm libmount-devel-32bit-2.36.2-150300.4.20.1.x86_64.rpm libmount-devel-static-2.36.2-150300.4.20.1.x86_64.rpm libmount1-2.36.2-150300.4.20.1.x86_64.rpm libmount1-32bit-2.36.2-150300.4.20.1.x86_64.rpm libsmartcols-devel-2.36.2-150300.4.20.1.x86_64.rpm libsmartcols-devel-32bit-2.36.2-150300.4.20.1.x86_64.rpm libsmartcols-devel-static-2.36.2-150300.4.20.1.x86_64.rpm libsmartcols1-2.36.2-150300.4.20.1.x86_64.rpm libsmartcols1-32bit-2.36.2-150300.4.20.1.x86_64.rpm libuuid-devel-2.36.2-150300.4.20.1.x86_64.rpm libuuid-devel-32bit-2.36.2-150300.4.20.1.x86_64.rpm libuuid-devel-static-2.36.2-150300.4.20.1.x86_64.rpm libuuid1-2.36.2-150300.4.20.1.x86_64.rpm libuuid1-32bit-2.36.2-150300.4.20.1.x86_64.rpm python3-libmount-2.36.2-150300.4.20.1.src.rpm python3-libmount-2.36.2-150300.4.20.1.x86_64.rpm util-linux-2.36.2-150300.4.20.1.src.rpm util-linux-2.36.2-150300.4.20.1.x86_64.rpm util-linux-lang-2.36.2-150300.4.20.1.noarch.rpm util-linux-systemd-2.36.2-150300.4.20.1.src.rpm util-linux-systemd-2.36.2-150300.4.20.1.x86_64.rpm uuidd-2.36.2-150300.4.20.1.x86_64.rpm libblkid-devel-2.36.2-150300.4.20.1.s390x.rpm libblkid-devel-static-2.36.2-150300.4.20.1.s390x.rpm libblkid1-2.36.2-150300.4.20.1.s390x.rpm libfdisk-devel-2.36.2-150300.4.20.1.s390x.rpm libfdisk-devel-static-2.36.2-150300.4.20.1.s390x.rpm libfdisk1-2.36.2-150300.4.20.1.s390x.rpm libmount-devel-2.36.2-150300.4.20.1.s390x.rpm libmount-devel-static-2.36.2-150300.4.20.1.s390x.rpm libmount1-2.36.2-150300.4.20.1.s390x.rpm libsmartcols-devel-2.36.2-150300.4.20.1.s390x.rpm libsmartcols-devel-static-2.36.2-150300.4.20.1.s390x.rpm libsmartcols1-2.36.2-150300.4.20.1.s390x.rpm libuuid-devel-2.36.2-150300.4.20.1.s390x.rpm libuuid-devel-static-2.36.2-150300.4.20.1.s390x.rpm libuuid1-2.36.2-150300.4.20.1.s390x.rpm python3-libmount-2.36.2-150300.4.20.1.s390x.rpm util-linux-2.36.2-150300.4.20.1.s390x.rpm util-linux-systemd-2.36.2-150300.4.20.1.s390x.rpm uuidd-2.36.2-150300.4.20.1.s390x.rpm libblkid-devel-2.36.2-150300.4.20.1.ppc64le.rpm libblkid-devel-static-2.36.2-150300.4.20.1.ppc64le.rpm libblkid1-2.36.2-150300.4.20.1.ppc64le.rpm libfdisk-devel-2.36.2-150300.4.20.1.ppc64le.rpm libfdisk-devel-static-2.36.2-150300.4.20.1.ppc64le.rpm libfdisk1-2.36.2-150300.4.20.1.ppc64le.rpm libmount-devel-2.36.2-150300.4.20.1.ppc64le.rpm libmount-devel-static-2.36.2-150300.4.20.1.ppc64le.rpm libmount1-2.36.2-150300.4.20.1.ppc64le.rpm libsmartcols-devel-2.36.2-150300.4.20.1.ppc64le.rpm libsmartcols-devel-static-2.36.2-150300.4.20.1.ppc64le.rpm libsmartcols1-2.36.2-150300.4.20.1.ppc64le.rpm libuuid-devel-2.36.2-150300.4.20.1.ppc64le.rpm libuuid-devel-static-2.36.2-150300.4.20.1.ppc64le.rpm libuuid1-2.36.2-150300.4.20.1.ppc64le.rpm python3-libmount-2.36.2-150300.4.20.1.ppc64le.rpm util-linux-2.36.2-150300.4.20.1.ppc64le.rpm util-linux-systemd-2.36.2-150300.4.20.1.ppc64le.rpm uuidd-2.36.2-150300.4.20.1.ppc64le.rpm libblkid-devel-2.36.2-150300.4.20.1.aarch64.rpm libblkid-devel-static-2.36.2-150300.4.20.1.aarch64.rpm libblkid1-2.36.2-150300.4.20.1.aarch64.rpm libfdisk-devel-2.36.2-150300.4.20.1.aarch64.rpm libfdisk-devel-static-2.36.2-150300.4.20.1.aarch64.rpm libfdisk1-2.36.2-150300.4.20.1.aarch64.rpm libmount-devel-2.36.2-150300.4.20.1.aarch64.rpm libmount-devel-static-2.36.2-150300.4.20.1.aarch64.rpm libmount1-2.36.2-150300.4.20.1.aarch64.rpm libsmartcols-devel-2.36.2-150300.4.20.1.aarch64.rpm libsmartcols-devel-static-2.36.2-150300.4.20.1.aarch64.rpm libsmartcols1-2.36.2-150300.4.20.1.aarch64.rpm libuuid-devel-2.36.2-150300.4.20.1.aarch64.rpm libuuid-devel-static-2.36.2-150300.4.20.1.aarch64.rpm libuuid1-2.36.2-150300.4.20.1.aarch64.rpm python3-libmount-2.36.2-150300.4.20.1.aarch64.rpm util-linux-2.36.2-150300.4.20.1.aarch64.rpm util-linux-systemd-2.36.2-150300.4.20.1.aarch64.rpm uuidd-2.36.2-150300.4.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-1100 important SUSE Updates openSUSE-SLE 15.3 This update for 389-ds fixes the following issues: - CVE-2022-0918: Fixed a potential denial of service via crafted packet (bsc#1197275). - CVE-2022-0996: Fixed a mishandling of password expiry (bsc#1197345). - Resolved LDAP-Support not working with DHCP by adding required schema (bsc#1194068) - Resolved multiple index migration bug (bsc#1194084) 389-ds-1.4.4.19~git28.b12c72226-150300.3.12.1.src.rpm 389-ds-1.4.4.19~git28.b12c72226-150300.3.12.1.x86_64.rpm 389-ds-devel-1.4.4.19~git28.b12c72226-150300.3.12.1.x86_64.rpm 389-ds-snmp-1.4.4.19~git28.b12c72226-150300.3.12.1.x86_64.rpm lib389-1.4.4.19~git28.b12c72226-150300.3.12.1.x86_64.rpm libsvrcore0-1.4.4.19~git28.b12c72226-150300.3.12.1.x86_64.rpm 389-ds-1.4.4.19~git28.b12c72226-150300.3.12.1.s390x.rpm 389-ds-devel-1.4.4.19~git28.b12c72226-150300.3.12.1.s390x.rpm 389-ds-snmp-1.4.4.19~git28.b12c72226-150300.3.12.1.s390x.rpm lib389-1.4.4.19~git28.b12c72226-150300.3.12.1.s390x.rpm libsvrcore0-1.4.4.19~git28.b12c72226-150300.3.12.1.s390x.rpm 389-ds-1.4.4.19~git28.b12c72226-150300.3.12.1.ppc64le.rpm 389-ds-devel-1.4.4.19~git28.b12c72226-150300.3.12.1.ppc64le.rpm 389-ds-snmp-1.4.4.19~git28.b12c72226-150300.3.12.1.ppc64le.rpm lib389-1.4.4.19~git28.b12c72226-150300.3.12.1.ppc64le.rpm libsvrcore0-1.4.4.19~git28.b12c72226-150300.3.12.1.ppc64le.rpm 389-ds-1.4.4.19~git28.b12c72226-150300.3.12.1.aarch64.rpm 389-ds-devel-1.4.4.19~git28.b12c72226-150300.3.12.1.aarch64.rpm 389-ds-snmp-1.4.4.19~git28.b12c72226-150300.3.12.1.aarch64.rpm lib389-1.4.4.19~git28.b12c72226-150300.3.12.1.aarch64.rpm libsvrcore0-1.4.4.19~git28.b12c72226-150300.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-1028 moderate SUSE Updates openSUSE-SLE 15.3 This update for chrony fixes the following issues: - Disable "ntsdumpdir" in default config, because augeas-lenses cannot parse it during installation of SUSE Linux Enterprise Micro 5.1 and openSUSE Leap 15.3 (bsc#1194220). chrony-4.1-150300.16.9.1.src.rpm chrony-4.1-150300.16.9.1.x86_64.rpm chrony-pool-empty-4.1-150300.16.9.1.noarch.rpm chrony-pool-openSUSE-4.1-150300.16.9.1.noarch.rpm chrony-pool-suse-4.1-150300.16.9.1.noarch.rpm chrony-4.1-150300.16.9.1.s390x.rpm chrony-4.1-150300.16.9.1.ppc64le.rpm chrony-4.1-150300.16.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-1155 moderate SUSE Updates openSUSE-SLE 15.3 This update for fence-agents fixes the following issues: - Give users the options to timeout while waiting for pending resets and allows them to run a follow command if the reset fails (bsc#1196350) fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.8.1.src.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.8.1.x86_64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.8.1.x86_64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.8.1.x86_64.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.8.1.s390x.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.8.1.s390x.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.8.1.s390x.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.8.1.ppc64le.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.8.1.ppc64le.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.8.1.ppc64le.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.8.1.aarch64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.8.1.aarch64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-1150 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-build-key fixes the following issues: No longer install 1024bit keys by default. (bsc#1197293) - The SLE11 key has been moved to documentation directory, and is obsoleted / removed by the package. - The old PTF (pre March 2022) key moved to documentation directory. suse-build-key-12.0-150000.8.22.1.noarch.rpm suse-build-key-12.0-150000.8.22.1.src.rpm openSUSE-SLE-15.3-2022-1029 important SUSE Updates openSUSE-SLE 15.3 This update for openvpn fixes the following issues: - CVE-2022-0547: Fixed possible authentication bypass in external authentication plug-in (bsc#1197341). openvpn-2.4.3-150000.5.10.1.src.rpm openvpn-2.4.3-150000.5.10.1.x86_64.rpm openvpn-auth-pam-plugin-2.4.3-150000.5.10.1.x86_64.rpm openvpn-devel-2.4.3-150000.5.10.1.x86_64.rpm openvpn-down-root-plugin-2.4.3-150000.5.10.1.x86_64.rpm openvpn-2.4.3-150000.5.10.1.s390x.rpm openvpn-auth-pam-plugin-2.4.3-150000.5.10.1.s390x.rpm openvpn-devel-2.4.3-150000.5.10.1.s390x.rpm openvpn-down-root-plugin-2.4.3-150000.5.10.1.s390x.rpm openvpn-2.4.3-150000.5.10.1.ppc64le.rpm openvpn-auth-pam-plugin-2.4.3-150000.5.10.1.ppc64le.rpm openvpn-devel-2.4.3-150000.5.10.1.ppc64le.rpm openvpn-down-root-plugin-2.4.3-150000.5.10.1.ppc64le.rpm openvpn-2.4.3-150000.5.10.1.aarch64.rpm openvpn-auth-pam-plugin-2.4.3-150000.5.10.1.aarch64.rpm openvpn-devel-2.4.3-150000.5.10.1.aarch64.rpm openvpn-down-root-plugin-2.4.3-150000.5.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-1059 important SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - CVE-2022-22935: Sign authentication replies to prevent MiTM (bsc#1197417) - CVE-2022-22934: Sign pillar data to prevent MiTM attacks. (bsc#1197417) - CVE-2022-22936: Prevent job and fileserver replays (bsc#1197417) - CVE-2022-22941: Fixed targeting bug, especially visible when using syndic and user auth. (bsc#1197417) python3-salt-3002.2-150300.53.10.1.x86_64.rpm True salt-3002.2-150300.53.10.1.src.rpm True salt-3002.2-150300.53.10.1.x86_64.rpm True salt-api-3002.2-150300.53.10.1.x86_64.rpm True salt-bash-completion-3002.2-150300.53.10.1.noarch.rpm True salt-cloud-3002.2-150300.53.10.1.x86_64.rpm True salt-doc-3002.2-150300.53.10.1.x86_64.rpm True salt-fish-completion-3002.2-150300.53.10.1.noarch.rpm True salt-master-3002.2-150300.53.10.1.x86_64.rpm True salt-minion-3002.2-150300.53.10.1.x86_64.rpm True salt-proxy-3002.2-150300.53.10.1.x86_64.rpm True salt-ssh-3002.2-150300.53.10.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.10.1.x86_64.rpm True salt-syndic-3002.2-150300.53.10.1.x86_64.rpm True salt-transactional-update-3002.2-150300.53.10.1.x86_64.rpm True salt-zsh-completion-3002.2-150300.53.10.1.noarch.rpm True python3-salt-3002.2-150300.53.10.1.s390x.rpm True salt-3002.2-150300.53.10.1.s390x.rpm True salt-api-3002.2-150300.53.10.1.s390x.rpm True salt-cloud-3002.2-150300.53.10.1.s390x.rpm True salt-doc-3002.2-150300.53.10.1.s390x.rpm True salt-master-3002.2-150300.53.10.1.s390x.rpm True salt-minion-3002.2-150300.53.10.1.s390x.rpm True salt-proxy-3002.2-150300.53.10.1.s390x.rpm True salt-ssh-3002.2-150300.53.10.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.10.1.s390x.rpm True salt-syndic-3002.2-150300.53.10.1.s390x.rpm True salt-transactional-update-3002.2-150300.53.10.1.s390x.rpm True python3-salt-3002.2-150300.53.10.1.ppc64le.rpm True salt-3002.2-150300.53.10.1.ppc64le.rpm True salt-api-3002.2-150300.53.10.1.ppc64le.rpm True salt-cloud-3002.2-150300.53.10.1.ppc64le.rpm True salt-doc-3002.2-150300.53.10.1.ppc64le.rpm True salt-master-3002.2-150300.53.10.1.ppc64le.rpm True salt-minion-3002.2-150300.53.10.1.ppc64le.rpm True salt-proxy-3002.2-150300.53.10.1.ppc64le.rpm True salt-ssh-3002.2-150300.53.10.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.10.1.ppc64le.rpm True salt-syndic-3002.2-150300.53.10.1.ppc64le.rpm True salt-transactional-update-3002.2-150300.53.10.1.ppc64le.rpm True python3-salt-3002.2-150300.53.10.1.aarch64.rpm True salt-3002.2-150300.53.10.1.aarch64.rpm True salt-api-3002.2-150300.53.10.1.aarch64.rpm True salt-cloud-3002.2-150300.53.10.1.aarch64.rpm True salt-doc-3002.2-150300.53.10.1.aarch64.rpm True salt-master-3002.2-150300.53.10.1.aarch64.rpm True salt-minion-3002.2-150300.53.10.1.aarch64.rpm True salt-proxy-3002.2-150300.53.10.1.aarch64.rpm True salt-ssh-3002.2-150300.53.10.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.10.1.aarch64.rpm True salt-syndic-3002.2-150300.53.10.1.aarch64.rpm True salt-transactional-update-3002.2-150300.53.10.1.aarch64.rpm True openSUSE-SLE-15.3-2022-1405 moderate SUSE Updates openSUSE-SLE 15.3 This update for autofs fixes the following issues: - Fix problem with quote handling (bsc#1181715) - Fix locking problem that causes deadlock when sss is used (bsc#1196485) - Suppress portmap calls when port explicitly given (bsc#1195697) autofs-5.1.3-150000.7.11.1.src.rpm autofs-5.1.3-150000.7.11.1.x86_64.rpm autofs-5.1.3-150000.7.11.1.s390x.rpm autofs-5.1.3-150000.7.11.1.ppc64le.rpm autofs-5.1.3-150000.7.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-1061 important SUSE Updates openSUSE-SLE 15.3 This update for zlib fixes the following issues: - CVE-2018-25032: Fixed memory corruption on deflate (bsc#1197459). libminizip1-1.2.11-150000.3.30.1.x86_64.rpm libminizip1-32bit-1.2.11-150000.3.30.1.x86_64.rpm libz1-1.2.11-150000.3.30.1.x86_64.rpm libz1-32bit-1.2.11-150000.3.30.1.x86_64.rpm minizip-devel-1.2.11-150000.3.30.1.x86_64.rpm zlib-1.2.11-150000.3.30.1.src.rpm zlib-devel-1.2.11-150000.3.30.1.x86_64.rpm zlib-devel-32bit-1.2.11-150000.3.30.1.x86_64.rpm zlib-devel-static-1.2.11-150000.3.30.1.x86_64.rpm zlib-devel-static-32bit-1.2.11-150000.3.30.1.x86_64.rpm libminizip1-1.2.11-150000.3.30.1.s390x.rpm libz1-1.2.11-150000.3.30.1.s390x.rpm minizip-devel-1.2.11-150000.3.30.1.s390x.rpm zlib-devel-1.2.11-150000.3.30.1.s390x.rpm zlib-devel-static-1.2.11-150000.3.30.1.s390x.rpm libminizip1-1.2.11-150000.3.30.1.ppc64le.rpm libz1-1.2.11-150000.3.30.1.ppc64le.rpm minizip-devel-1.2.11-150000.3.30.1.ppc64le.rpm zlib-devel-1.2.11-150000.3.30.1.ppc64le.rpm zlib-devel-static-1.2.11-150000.3.30.1.ppc64le.rpm libminizip1-1.2.11-150000.3.30.1.aarch64.rpm libz1-1.2.11-150000.3.30.1.aarch64.rpm minizip-devel-1.2.11-150000.3.30.1.aarch64.rpm zlib-devel-1.2.11-150000.3.30.1.aarch64.rpm zlib-devel-static-1.2.11-150000.3.30.1.aarch64.rpm openSUSE-SLE-15.3-2022-1157 important SUSE Updates openSUSE-SLE 15.3 This update for libsolv, libzypp, zypper fixes the following issues: Security relevant fix: - Harden package signature checks (bsc#1184501). libsolv update to 0.7.22: - reworked choice rule generation to cover more usecases - support SOLVABLE_PREREQ_IGNOREINST in the ordering code (bsc#1196514) - support parsing of Debian's Multi-Arch indicator - fix segfault on conflict resolution when using bindings - fix split provides not working if the update includes a forbidden vendor change - support strict repository priorities new solver flag: SOLVER_FLAG_STRICT_REPO_PRIORITY - support zstd compressed control files in debian packages - add an ifdef allowing to rename Solvable dependency members ("requires" is a keyword in C++20) - support setting/reading userdata in solv files new functions: repowriter_set_userdata, solv_read_userdata - support queying of the custom vendor check function new function: pool_get_custom_vendorcheck - support solv files with an idarray block - allow accessing the toolversion at runtime libzypp update to 17.30.0: - ZConfig: Update solver settings if target changes (bsc#1196368) - Fix possible hang in singletrans mode (bsc#1197134) - Do 2 retries if mount is still busy. - Fix package signature check (bsc#1184501) Pay attention that header and payload are secured by a valid signature and report more detailed which signature is missing. - Retry umount if device is busy (bsc#1196061, closes #381) A previously released ISO image may need a bit more time to release it's loop device. So we wait a bit and retry. - Fix serializing/deserializing type mismatch in zypp-rpm protocol (bsc#1196925) - Fix handling of ISO media in releaseAll (bsc#1196061) - Hint on common ptf resolver conflicts (bsc#1194848) - Hint on ptf<>patch resolver conflicts (bsc#1194848) zypper update to 1.14.52: - info: print the packages upstream URL if available (fixes #426) - info: Fix SEGV with not installed PTFs (bsc#1196317) - Don't prevent less restrictive umasks (bsc#1195999) libsolv-0.7.22-150200.12.1.src.rpm True libsolv-demo-0.7.22-150200.12.1.x86_64.rpm True libsolv-devel-0.7.22-150200.12.1.x86_64.rpm True libsolv-tools-0.7.22-150200.12.1.x86_64.rpm True libzypp-17.30.0-150200.36.1.src.rpm True libzypp-17.30.0-150200.36.1.x86_64.rpm True libzypp-devel-17.30.0-150200.36.1.x86_64.rpm True libzypp-devel-doc-17.30.0-150200.36.1.x86_64.rpm True perl-solv-0.7.22-150200.12.1.x86_64.rpm True python-solv-0.7.22-150200.12.1.x86_64.rpm True python3-solv-0.7.22-150200.12.1.x86_64.rpm True ruby-solv-0.7.22-150200.12.1.x86_64.rpm True zypper-1.14.52-150200.30.2.src.rpm True zypper-1.14.52-150200.30.2.x86_64.rpm True zypper-aptitude-1.14.52-150200.30.2.noarch.rpm True zypper-log-1.14.52-150200.30.2.noarch.rpm True zypper-needs-restarting-1.14.52-150200.30.2.noarch.rpm True libsolv-demo-0.7.22-150200.12.1.s390x.rpm True libsolv-devel-0.7.22-150200.12.1.s390x.rpm True libsolv-tools-0.7.22-150200.12.1.s390x.rpm True libzypp-17.30.0-150200.36.1.s390x.rpm True libzypp-devel-17.30.0-150200.36.1.s390x.rpm True libzypp-devel-doc-17.30.0-150200.36.1.s390x.rpm True perl-solv-0.7.22-150200.12.1.s390x.rpm True python-solv-0.7.22-150200.12.1.s390x.rpm True python3-solv-0.7.22-150200.12.1.s390x.rpm True ruby-solv-0.7.22-150200.12.1.s390x.rpm True zypper-1.14.52-150200.30.2.s390x.rpm True libsolv-demo-0.7.22-150200.12.1.ppc64le.rpm True libsolv-devel-0.7.22-150200.12.1.ppc64le.rpm True libsolv-tools-0.7.22-150200.12.1.ppc64le.rpm True libzypp-17.30.0-150200.36.1.ppc64le.rpm True libzypp-devel-17.30.0-150200.36.1.ppc64le.rpm True libzypp-devel-doc-17.30.0-150200.36.1.ppc64le.rpm True perl-solv-0.7.22-150200.12.1.ppc64le.rpm True python-solv-0.7.22-150200.12.1.ppc64le.rpm True python3-solv-0.7.22-150200.12.1.ppc64le.rpm True ruby-solv-0.7.22-150200.12.1.ppc64le.rpm True zypper-1.14.52-150200.30.2.ppc64le.rpm True libsolv-demo-0.7.22-150200.12.1.aarch64.rpm True libsolv-devel-0.7.22-150200.12.1.aarch64.rpm True libsolv-tools-0.7.22-150200.12.1.aarch64.rpm True libzypp-17.30.0-150200.36.1.aarch64.rpm True libzypp-devel-17.30.0-150200.36.1.aarch64.rpm True libzypp-devel-doc-17.30.0-150200.36.1.aarch64.rpm True perl-solv-0.7.22-150200.12.1.aarch64.rpm True python-solv-0.7.22-150200.12.1.aarch64.rpm True python3-solv-0.7.22-150200.12.1.aarch64.rpm True ruby-solv-0.7.22-150200.12.1.aarch64.rpm True zypper-1.14.52-150200.30.2.aarch64.rpm True openSUSE-SLE-15.3-2022-1542 moderate SUSE Updates openSUSE-SLE 15.3 This update for sblim-sfcb fixes the following issues: - Add config option to optionally disable TLSv1.2 (bsc#1190107) - Enable TLS v1.3 by removing explicit curve selection. This should not be required for OpenSSL 1.1.0+ (bsc#1190107) sblim-sfcb-1.4.9-150000.5.9.4.src.rpm sblim-sfcb-1.4.9-150000.5.9.4.x86_64.rpm sblim-sfcb-1.4.9-150000.5.9.4.s390x.rpm sblim-sfcb-1.4.9-150000.5.9.4.ppc64le.rpm sblim-sfcb-1.4.9-150000.5.9.4.aarch64.rpm openSUSE-SLE-15.3-2022-2926 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for LibreOffice provides the following fixes: abseil-cpp: - Provide abseil-cpp version 20211102.0 as LibreOffice 7.3 dependency. (jsc#SLE-23447) - Mention already fixed issues. (fate#326485, bsc#1041090) libcuckoo: - Provide libcuckoo version 0.3 as LibreOffice dependency. (jsc#SLE-23447) libixion: - Update libixion from version 0.16.1 to version 0.17.0. (jsc#SLE-23447) - Build with mdds-2_0 instead of mdds-1.5. (jsc#SLE-23447) - Build with gcc11 and gcc11-c++. (jsc#SLE-23447) - Remove unneeded vulkan dependency - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. (ijsc#MSC-303) libreoffice: - Update LibreOffice from version 7.2.5.1 to version 7.3.3.1. (jsc#SLE-23447, jsc#SLE-24021) * Update bundled dependencies: * gpgme from version 1.13.1 to version 1.16.0 * libgpg-error from version 1.37 to version 1.43 * libassuan from version 2.5.3 to version 2.5.5 * pdfium from version 4500 to version 4699 * skia from version m90-45c57e116ee0ce214bdf78405a4762722e4507d9 to version m97-a7230803d64ae9d44f4e1282444801119a3ae967 * boost from version 1_75 to version 1_77 * icu4c from version 69_1 to version 70_1 * On SUSE Linux Enterprise 15 SP3 and newer require curl-devel 7.68.0 or newer * New build dependencies: * abseil-cpp-devel * libassuan0 * libcuckoo-devel * libopenjp2 * requrire liborcus-0.17 instead of liborcus-0.16 * requrire mdds-2.0 instead of mdds-1.5 * Do not use serf-1 anymore but use curl instead. * Other fixes: * Extraneous/missing lines in table in Impress versus PowerPoint (bsc#1192616) * Text with tabs appears quite different in Impress than in PowerPoint (bsc#1196212) * Bullets appear larger and green instead of black. (bsc#1195881) * Enable gtk3_kde5 and make it possible to use gtk3 in kde with the kde filepicker (bsc#1197017) * Mention already fixed issues. (bsc#1183308, bsc#1196017, bsc#1196499) liborcus: - Update liborcus from version 0.16.1 to version 0.17.2. (jsc#SLE-23447) - Require mdds-2_0 instead of mdds-1.5. (jsc#SLE-23447) - Require libixion-0.17 instead of libixion-0.16. (jsc#SLE-23447) - Build with libtool and use autotools. (jsc#SLE-23447) - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. (ijsc#MSC-303) mdds-2_0: - Provide mdds-2_0 version 2.0.2 as LibreOffice dependency. (jsc#SLE-23447) myspell-dictionaries: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. (ijsc#MSC-303) - There are no visible changes for the final user. ucpp: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. (ijsc#MSC-303) - There are no visible changes for the final user. xmlsec1: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. (ijsc#MSC-303) - There are no visible changes for the final user. abseil-cpp-20211102.0-150300.7.3.1.src.rpm abseil-cpp-20211102.0-150300.7.3.1.x86_64.rpm abseil-cpp-devel-20211102.0-150300.7.3.1.x86_64.rpm libcuckoo-0.3-150300.7.3.1.src.rpm libcuckoo-devel-0.3-150300.7.3.1.x86_64.rpm libixion-0.17.0-150300.11.3.1.src.rpm libixion-0_17-0-0.17.0-150300.11.3.1.x86_64.rpm libixion-devel-0.17.0-150300.11.3.1.x86_64.rpm libixion-tools-0.17.0-150300.11.3.1.x86_64.rpm liborcus-0.17.2-150300.10.3.1.src.rpm liborcus-0_17-0-0.17.2-150300.10.3.1.x86_64.rpm liborcus-devel-0.17.2-150300.10.3.1.x86_64.rpm liborcus-tools-0.17.2-150300.10.3.1.x86_64.rpm libreoffice-7.3.3.1-150300.14.22.21.20.src.rpm libreoffice-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-base-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-base-drivers-postgresql-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-branding-upstream-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-calc-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-calc-extensions-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-draw-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-filters-optional-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-gdb-pretty-printers-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-glade-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-gnome-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-gtk3-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-icon-themes-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-impress-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-l10n-af-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-am-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ar-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-as-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ast-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-be-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-bg-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-bn-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-bn_IN-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-bo-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-br-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-brx-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-bs-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ca-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ca_valencia-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ckb-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-cs-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-cy-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-da-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-de-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-dgo-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-dsb-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-dz-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-el-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-en-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-en_GB-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-en_ZA-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-eo-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-es-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-et-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-eu-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-fa-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-fi-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-fr-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-fur-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-fy-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ga-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-gd-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-gl-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-gu-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-gug-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-he-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-hi-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-hr-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-hsb-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-hu-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-id-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-is-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-it-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ja-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ka-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-kab-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-kk-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-km-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-kmr_Latn-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-kn-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ko-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-kok-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ks-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-lb-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-lo-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-lt-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-lv-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-mai-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-mk-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ml-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-mn-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-mni-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-mr-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-my-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-nb-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ne-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-nl-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-nn-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-nr-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-nso-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-oc-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-om-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-or-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-pa-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-pl-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-pt_BR-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-pt_PT-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ro-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ru-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-rw-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-sa_IN-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-sat-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-sd-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-si-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-sid-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-sk-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-sl-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-sq-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-sr-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ss-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-st-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-sv-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-sw_TZ-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-szl-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ta-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-te-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-tg-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-th-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-tn-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-tr-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ts-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-tt-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ug-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-uk-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-uz-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-ve-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-vec-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-vi-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-xh-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-zh_CN-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-zh_TW-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-l10n-zu-7.3.3.1-150300.14.22.21.20.noarch.rpm libreoffice-librelogo-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-mailmerge-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-math-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-officebean-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-pyuno-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-qt5-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-sdk-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-sdk-doc-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-writer-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreoffice-writer-extensions-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreofficekit-7.3.3.1-150300.14.22.21.20.x86_64.rpm libreofficekit-devel-7.3.3.1-150300.14.22.21.20.x86_64.rpm libucpp13-1.3.4-150000.3.6.1.x86_64.rpm libxmlsec1-1-1.2.28-150100.7.11.1.x86_64.rpm libxmlsec1-gcrypt1-1.2.28-150100.7.11.1.x86_64.rpm libxmlsec1-gnutls1-1.2.28-150100.7.11.1.x86_64.rpm libxmlsec1-nss1-1.2.28-150100.7.11.1.x86_64.rpm libxmlsec1-openssl1-1.2.28-150100.7.11.1.x86_64.rpm mdds-2_0-2.0.2-150300.7.3.1.src.rpm mdds-2_0-devel-2.0.2-150300.7.3.1.noarch.rpm myspell-af_NA-20191219-150000.3.23.1.noarch.rpm myspell-af_ZA-20191219-150000.3.23.1.noarch.rpm myspell-an-20191219-150000.3.23.1.noarch.rpm myspell-an_ES-20191219-150000.3.23.1.noarch.rpm myspell-ar-20191219-150000.3.23.1.noarch.rpm myspell-ar_AE-20191219-150000.3.23.1.noarch.rpm myspell-ar_BH-20191219-150000.3.23.1.noarch.rpm myspell-ar_DZ-20191219-150000.3.23.1.noarch.rpm myspell-ar_EG-20191219-150000.3.23.1.noarch.rpm myspell-ar_IQ-20191219-150000.3.23.1.noarch.rpm myspell-ar_JO-20191219-150000.3.23.1.noarch.rpm myspell-ar_KW-20191219-150000.3.23.1.noarch.rpm myspell-ar_LB-20191219-150000.3.23.1.noarch.rpm myspell-ar_LY-20191219-150000.3.23.1.noarch.rpm myspell-ar_MA-20191219-150000.3.23.1.noarch.rpm myspell-ar_OM-20191219-150000.3.23.1.noarch.rpm myspell-ar_QA-20191219-150000.3.23.1.noarch.rpm myspell-ar_SA-20191219-150000.3.23.1.noarch.rpm myspell-ar_SD-20191219-150000.3.23.1.noarch.rpm myspell-ar_SY-20191219-150000.3.23.1.noarch.rpm myspell-ar_TN-20191219-150000.3.23.1.noarch.rpm myspell-ar_YE-20191219-150000.3.23.1.noarch.rpm myspell-be_BY-20191219-150000.3.23.1.noarch.rpm myspell-bg_BG-20191219-150000.3.23.1.noarch.rpm myspell-bn_BD-20191219-150000.3.23.1.noarch.rpm myspell-bn_IN-20191219-150000.3.23.1.noarch.rpm myspell-bo-20191219-150000.3.23.1.noarch.rpm myspell-bo_CN-20191219-150000.3.23.1.noarch.rpm myspell-bo_IN-20191219-150000.3.23.1.noarch.rpm myspell-br_FR-20191219-150000.3.23.1.noarch.rpm myspell-bs-20191219-150000.3.23.1.noarch.rpm myspell-bs_BA-20191219-150000.3.23.1.noarch.rpm myspell-ca-20191219-150000.3.23.1.noarch.rpm myspell-ca_AD-20191219-150000.3.23.1.noarch.rpm myspell-ca_ES-20191219-150000.3.23.1.noarch.rpm myspell-ca_ES_valencia-20191219-150000.3.23.1.noarch.rpm myspell-ca_FR-20191219-150000.3.23.1.noarch.rpm myspell-ca_IT-20191219-150000.3.23.1.noarch.rpm myspell-cs_CZ-20191219-150000.3.23.1.noarch.rpm myspell-da_DK-20191219-150000.3.23.1.noarch.rpm myspell-de-20191219-150000.3.23.1.noarch.rpm myspell-de_AT-20191219-150000.3.23.1.noarch.rpm myspell-de_CH-20191219-150000.3.23.1.noarch.rpm myspell-de_DE-20191219-150000.3.23.1.noarch.rpm myspell-dictionaries-20191219-150000.3.23.1.src.rpm myspell-dictionaries-20191219-150000.3.23.1.x86_64.rpm myspell-el_GR-20191219-150000.3.23.1.noarch.rpm myspell-en-20191219-150000.3.23.1.noarch.rpm myspell-en_AU-20191219-150000.3.23.1.noarch.rpm myspell-en_BS-20191219-150000.3.23.1.noarch.rpm myspell-en_BZ-20191219-150000.3.23.1.noarch.rpm myspell-en_CA-20191219-150000.3.23.1.noarch.rpm myspell-en_GB-20191219-150000.3.23.1.noarch.rpm myspell-en_GH-20191219-150000.3.23.1.noarch.rpm myspell-en_IE-20191219-150000.3.23.1.noarch.rpm myspell-en_IN-20191219-150000.3.23.1.noarch.rpm myspell-en_JM-20191219-150000.3.23.1.noarch.rpm myspell-en_MW-20191219-150000.3.23.1.noarch.rpm myspell-en_NA-20191219-150000.3.23.1.noarch.rpm myspell-en_NZ-20191219-150000.3.23.1.noarch.rpm myspell-en_PH-20191219-150000.3.23.1.noarch.rpm myspell-en_TT-20191219-150000.3.23.1.noarch.rpm myspell-en_US-20191219-150000.3.23.1.noarch.rpm myspell-en_ZA-20191219-150000.3.23.1.noarch.rpm myspell-en_ZW-20191219-150000.3.23.1.noarch.rpm myspell-es-20191219-150000.3.23.1.noarch.rpm myspell-es_AR-20191219-150000.3.23.1.noarch.rpm myspell-es_BO-20191219-150000.3.23.1.noarch.rpm myspell-es_CL-20191219-150000.3.23.1.noarch.rpm myspell-es_CO-20191219-150000.3.23.1.noarch.rpm myspell-es_CR-20191219-150000.3.23.1.noarch.rpm myspell-es_CU-20191219-150000.3.23.1.noarch.rpm myspell-es_DO-20191219-150000.3.23.1.noarch.rpm myspell-es_EC-20191219-150000.3.23.1.noarch.rpm myspell-es_ES-20191219-150000.3.23.1.noarch.rpm myspell-es_GT-20191219-150000.3.23.1.noarch.rpm myspell-es_HN-20191219-150000.3.23.1.noarch.rpm myspell-es_MX-20191219-150000.3.23.1.noarch.rpm myspell-es_NI-20191219-150000.3.23.1.noarch.rpm myspell-es_PA-20191219-150000.3.23.1.noarch.rpm myspell-es_PE-20191219-150000.3.23.1.noarch.rpm myspell-es_PR-20191219-150000.3.23.1.noarch.rpm myspell-es_PY-20191219-150000.3.23.1.noarch.rpm myspell-es_SV-20191219-150000.3.23.1.noarch.rpm myspell-es_UY-20191219-150000.3.23.1.noarch.rpm myspell-es_VE-20191219-150000.3.23.1.noarch.rpm myspell-et_EE-20191219-150000.3.23.1.noarch.rpm myspell-fr_BE-20191219-150000.3.23.1.noarch.rpm myspell-fr_CA-20191219-150000.3.23.1.noarch.rpm myspell-fr_CH-20191219-150000.3.23.1.noarch.rpm myspell-fr_FR-20191219-150000.3.23.1.noarch.rpm myspell-fr_LU-20191219-150000.3.23.1.noarch.rpm myspell-fr_MC-20191219-150000.3.23.1.noarch.rpm myspell-gd_GB-20191219-150000.3.23.1.noarch.rpm myspell-gl-20191219-150000.3.23.1.noarch.rpm myspell-gl_ES-20191219-150000.3.23.1.noarch.rpm myspell-gu_IN-20191219-150000.3.23.1.noarch.rpm myspell-gug-20191219-150000.3.23.1.noarch.rpm myspell-gug_PY-20191219-150000.3.23.1.noarch.rpm myspell-he_IL-20191219-150000.3.23.1.noarch.rpm myspell-hi_IN-20191219-150000.3.23.1.noarch.rpm myspell-hr_HR-20191219-150000.3.23.1.noarch.rpm myspell-hu_HU-20191219-150000.3.23.1.noarch.rpm myspell-id-20191219-150000.3.23.1.noarch.rpm myspell-id_ID-20191219-150000.3.23.1.noarch.rpm myspell-is-20191219-150000.3.23.1.noarch.rpm myspell-is_IS-20191219-150000.3.23.1.noarch.rpm myspell-it_IT-20191219-150000.3.23.1.noarch.rpm myspell-kmr_Latn-20191219-150000.3.23.1.noarch.rpm myspell-kmr_Latn_SY-20191219-150000.3.23.1.noarch.rpm myspell-kmr_Latn_TR-20191219-150000.3.23.1.noarch.rpm myspell-lightproof-en-20191219-150000.3.23.1.x86_64.rpm myspell-lightproof-hu_HU-20191219-150000.3.23.1.x86_64.rpm myspell-lightproof-pt_BR-20191219-150000.3.23.1.x86_64.rpm myspell-lightproof-ru_RU-20191219-150000.3.23.1.x86_64.rpm myspell-lo_LA-20191219-150000.3.23.1.noarch.rpm myspell-lt_LT-20191219-150000.3.23.1.noarch.rpm myspell-lv_LV-20191219-150000.3.23.1.noarch.rpm myspell-nb_NO-20191219-150000.3.23.1.noarch.rpm myspell-ne_NP-20191219-150000.3.23.1.noarch.rpm myspell-nl_BE-20191219-150000.3.23.1.noarch.rpm myspell-nl_NL-20191219-150000.3.23.1.noarch.rpm myspell-nn_NO-20191219-150000.3.23.1.noarch.rpm myspell-no-20191219-150000.3.23.1.noarch.rpm myspell-oc_FR-20191219-150000.3.23.1.noarch.rpm myspell-pl_PL-20191219-150000.3.23.1.noarch.rpm myspell-pt_AO-20191219-150000.3.23.1.noarch.rpm myspell-pt_BR-20191219-150000.3.23.1.noarch.rpm myspell-pt_PT-20191219-150000.3.23.1.noarch.rpm myspell-ro-20191219-150000.3.23.1.noarch.rpm myspell-ro_RO-20191219-150000.3.23.1.noarch.rpm myspell-ru_RU-20191219-150000.3.23.1.noarch.rpm myspell-si_LK-20191219-150000.3.23.1.noarch.rpm myspell-sk_SK-20191219-150000.3.23.1.noarch.rpm myspell-sl_SI-20191219-150000.3.23.1.noarch.rpm myspell-sq_AL-20191219-150000.3.23.1.noarch.rpm myspell-sr-20191219-150000.3.23.1.noarch.rpm myspell-sr_CS-20191219-150000.3.23.1.noarch.rpm myspell-sr_Latn_CS-20191219-150000.3.23.1.noarch.rpm myspell-sr_Latn_RS-20191219-150000.3.23.1.noarch.rpm myspell-sr_RS-20191219-150000.3.23.1.noarch.rpm myspell-sv_FI-20191219-150000.3.23.1.noarch.rpm myspell-sv_SE-20191219-150000.3.23.1.noarch.rpm myspell-sw_TZ-20191219-150000.3.23.1.noarch.rpm myspell-te-20191219-150000.3.23.1.noarch.rpm myspell-te_IN-20191219-150000.3.23.1.noarch.rpm myspell-th_TH-20191219-150000.3.23.1.noarch.rpm myspell-tr-20191219-150000.3.23.1.noarch.rpm myspell-tr_TR-20191219-150000.3.23.1.noarch.rpm myspell-uk_UA-20191219-150000.3.23.1.noarch.rpm myspell-vi-20191219-150000.3.23.1.noarch.rpm myspell-vi_VN-20191219-150000.3.23.1.noarch.rpm myspell-zu_ZA-20191219-150000.3.23.1.noarch.rpm python3-libixion-0.17.0-150300.11.3.1.x86_64.rpm python3-liborcus-0.17.2-150300.10.3.1.x86_64.rpm ucpp-1.3.4-150000.3.6.1.src.rpm ucpp-1.3.4-150000.3.6.1.x86_64.rpm ucpp-devel-1.3.4-150000.3.6.1.x86_64.rpm xmlsec1-1.2.28-150100.7.11.1.src.rpm xmlsec1-1.2.28-150100.7.11.1.x86_64.rpm xmlsec1-devel-1.2.28-150100.7.11.1.x86_64.rpm xmlsec1-gcrypt-devel-1.2.28-150100.7.11.1.x86_64.rpm xmlsec1-gnutls-devel-1.2.28-150100.7.11.1.x86_64.rpm xmlsec1-nss-devel-1.2.28-150100.7.11.1.x86_64.rpm xmlsec1-openssl-devel-1.2.28-150100.7.11.1.x86_64.rpm abseil-cpp-20211102.0-150300.7.3.1.s390x.rpm abseil-cpp-devel-20211102.0-150300.7.3.1.s390x.rpm libcuckoo-devel-0.3-150300.7.3.1.s390x.rpm libixion-0_17-0-0.17.0-150300.11.3.1.s390x.rpm libixion-devel-0.17.0-150300.11.3.1.s390x.rpm libixion-tools-0.17.0-150300.11.3.1.s390x.rpm liborcus-0_17-0-0.17.2-150300.10.3.1.s390x.rpm liborcus-devel-0.17.2-150300.10.3.1.s390x.rpm liborcus-tools-0.17.2-150300.10.3.1.s390x.rpm libucpp13-1.3.4-150000.3.6.1.s390x.rpm libxmlsec1-1-1.2.28-150100.7.11.1.s390x.rpm libxmlsec1-gcrypt1-1.2.28-150100.7.11.1.s390x.rpm libxmlsec1-gnutls1-1.2.28-150100.7.11.1.s390x.rpm libxmlsec1-nss1-1.2.28-150100.7.11.1.s390x.rpm libxmlsec1-openssl1-1.2.28-150100.7.11.1.s390x.rpm myspell-dictionaries-20191219-150000.3.23.1.s390x.rpm myspell-lightproof-en-20191219-150000.3.23.1.s390x.rpm myspell-lightproof-hu_HU-20191219-150000.3.23.1.s390x.rpm myspell-lightproof-pt_BR-20191219-150000.3.23.1.s390x.rpm myspell-lightproof-ru_RU-20191219-150000.3.23.1.s390x.rpm python3-libixion-0.17.0-150300.11.3.1.s390x.rpm python3-liborcus-0.17.2-150300.10.3.1.s390x.rpm ucpp-1.3.4-150000.3.6.1.s390x.rpm ucpp-devel-1.3.4-150000.3.6.1.s390x.rpm xmlsec1-1.2.28-150100.7.11.1.s390x.rpm xmlsec1-devel-1.2.28-150100.7.11.1.s390x.rpm xmlsec1-gcrypt-devel-1.2.28-150100.7.11.1.s390x.rpm xmlsec1-gnutls-devel-1.2.28-150100.7.11.1.s390x.rpm xmlsec1-nss-devel-1.2.28-150100.7.11.1.s390x.rpm xmlsec1-openssl-devel-1.2.28-150100.7.11.1.s390x.rpm abseil-cpp-20211102.0-150300.7.3.1.ppc64le.rpm abseil-cpp-devel-20211102.0-150300.7.3.1.ppc64le.rpm libcuckoo-devel-0.3-150300.7.3.1.ppc64le.rpm libixion-0_17-0-0.17.0-150300.11.3.1.ppc64le.rpm libixion-devel-0.17.0-150300.11.3.1.ppc64le.rpm libixion-tools-0.17.0-150300.11.3.1.ppc64le.rpm liborcus-0_17-0-0.17.2-150300.10.3.1.ppc64le.rpm liborcus-devel-0.17.2-150300.10.3.1.ppc64le.rpm liborcus-tools-0.17.2-150300.10.3.1.ppc64le.rpm libreoffice-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-base-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-base-drivers-postgresql-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-calc-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-calc-extensions-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-draw-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-filters-optional-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-gnome-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-gtk3-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-impress-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-librelogo-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-mailmerge-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-math-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-officebean-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-pyuno-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-qt5-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-sdk-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-sdk-doc-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-writer-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreoffice-writer-extensions-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreofficekit-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libreofficekit-devel-7.3.3.1-150300.14.22.21.20.ppc64le.rpm libucpp13-1.3.4-150000.3.6.1.ppc64le.rpm libxmlsec1-1-1.2.28-150100.7.11.1.ppc64le.rpm libxmlsec1-gcrypt1-1.2.28-150100.7.11.1.ppc64le.rpm libxmlsec1-gnutls1-1.2.28-150100.7.11.1.ppc64le.rpm libxmlsec1-nss1-1.2.28-150100.7.11.1.ppc64le.rpm libxmlsec1-openssl1-1.2.28-150100.7.11.1.ppc64le.rpm myspell-dictionaries-20191219-150000.3.23.1.ppc64le.rpm myspell-lightproof-en-20191219-150000.3.23.1.ppc64le.rpm myspell-lightproof-hu_HU-20191219-150000.3.23.1.ppc64le.rpm myspell-lightproof-pt_BR-20191219-150000.3.23.1.ppc64le.rpm myspell-lightproof-ru_RU-20191219-150000.3.23.1.ppc64le.rpm python3-libixion-0.17.0-150300.11.3.1.ppc64le.rpm python3-liborcus-0.17.2-150300.10.3.1.ppc64le.rpm ucpp-1.3.4-150000.3.6.1.ppc64le.rpm ucpp-devel-1.3.4-150000.3.6.1.ppc64le.rpm xmlsec1-1.2.28-150100.7.11.1.ppc64le.rpm xmlsec1-devel-1.2.28-150100.7.11.1.ppc64le.rpm xmlsec1-gcrypt-devel-1.2.28-150100.7.11.1.ppc64le.rpm xmlsec1-gnutls-devel-1.2.28-150100.7.11.1.ppc64le.rpm xmlsec1-nss-devel-1.2.28-150100.7.11.1.ppc64le.rpm xmlsec1-openssl-devel-1.2.28-150100.7.11.1.ppc64le.rpm abseil-cpp-20211102.0-150300.7.3.1.aarch64.rpm abseil-cpp-devel-20211102.0-150300.7.3.1.aarch64.rpm libcuckoo-devel-0.3-150300.7.3.1.aarch64.rpm libixion-0_17-0-0.17.0-150300.11.3.1.aarch64.rpm libixion-devel-0.17.0-150300.11.3.1.aarch64.rpm libixion-tools-0.17.0-150300.11.3.1.aarch64.rpm liborcus-0_17-0-0.17.2-150300.10.3.1.aarch64.rpm liborcus-devel-0.17.2-150300.10.3.1.aarch64.rpm liborcus-tools-0.17.2-150300.10.3.1.aarch64.rpm libreoffice-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-base-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-base-drivers-postgresql-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-calc-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-calc-extensions-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-draw-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-filters-optional-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-gnome-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-gtk3-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-impress-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-librelogo-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-mailmerge-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-math-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-officebean-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-pyuno-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-qt5-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-sdk-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-sdk-doc-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-writer-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreoffice-writer-extensions-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreofficekit-7.3.3.1-150300.14.22.21.20.aarch64.rpm libreofficekit-devel-7.3.3.1-150300.14.22.21.20.aarch64.rpm libucpp13-1.3.4-150000.3.6.1.aarch64.rpm libxmlsec1-1-1.2.28-150100.7.11.1.aarch64.rpm libxmlsec1-gcrypt1-1.2.28-150100.7.11.1.aarch64.rpm libxmlsec1-gnutls1-1.2.28-150100.7.11.1.aarch64.rpm libxmlsec1-nss1-1.2.28-150100.7.11.1.aarch64.rpm libxmlsec1-openssl1-1.2.28-150100.7.11.1.aarch64.rpm myspell-dictionaries-20191219-150000.3.23.1.aarch64.rpm myspell-lightproof-en-20191219-150000.3.23.1.aarch64.rpm myspell-lightproof-hu_HU-20191219-150000.3.23.1.aarch64.rpm myspell-lightproof-pt_BR-20191219-150000.3.23.1.aarch64.rpm myspell-lightproof-ru_RU-20191219-150000.3.23.1.aarch64.rpm python3-libixion-0.17.0-150300.11.3.1.aarch64.rpm python3-liborcus-0.17.2-150300.10.3.1.aarch64.rpm ucpp-1.3.4-150000.3.6.1.aarch64.rpm ucpp-devel-1.3.4-150000.3.6.1.aarch64.rpm xmlsec1-1.2.28-150100.7.11.1.aarch64.rpm xmlsec1-devel-1.2.28-150100.7.11.1.aarch64.rpm xmlsec1-gcrypt-devel-1.2.28-150100.7.11.1.aarch64.rpm xmlsec1-gnutls-devel-1.2.28-150100.7.11.1.aarch64.rpm xmlsec1-nss-devel-1.2.28-150100.7.11.1.aarch64.rpm xmlsec1-openssl-devel-1.2.28-150100.7.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-1092 critical SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Update to version 10.0.2 + Fix name of logfile in error message + Fix variable scoping to properly detect registration error + Cleanup any artifacts on registration failure + Fix latent bug with /etc/hosts population + Do not throw error when attemting to unregister a system that is not registered + Skip extension registration if the extension is recommended by the baseproduct as it gets automatically installed - Update to version 10.0.1 (bsc#1197113) + Provide status feedback on registration, success or failure + Log warning message if data provider is configured but no data can be retrieved - Update -addon-azure to 1.0.3 follow up fix for (bsc#1195414, bsc#1195564) + The repo enablement timer cannot depend on 'guestregister.service' cloud-regionsrv-client-10.0.2-150000.6.65.1.noarch.rpm cloud-regionsrv-client-10.0.2-150000.6.65.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-150000.6.65.1.noarch.rpm cloud-regionsrv-client-plugin-azure-2.0.0-150000.6.65.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-150000.6.65.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-150000.6.65.1.noarch.rpm openSUSE-SLE-15.3-2022-1170 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Fix the default target when it's been incorrectly set to one of the runlevel targets (bsc#1196567) - When migrating from sysvinit to systemd (it probably won't happen anymore), let's use the default systemd target, which is the graphical.target one. - Don't open /var journals in volatile mode when runtime_journal==NULL - udev: 60-persistent-storage-tape.rules: handle duplicate device ID (bsc#1195529) - man: tweak description of auto/noauto (bsc#1191502) - shared/install: ignore failures for auxiliary files - install: make UnitFileChangeType enum anonymous - shared/install: reduce scope of iterator variables - systemd-coredump: allow setting external core size to infinity (bsc#1195899 jsc#SLE-23867) - Update s390 udev rules conversion script to include the case when the legacy rule was also 41-* (bsc#1195247) - Drop or soften some of the deprecation warnings (bsc#1193086) libsystemd0-246.16-150300.7.42.1.x86_64.rpm True libsystemd0-32bit-246.16-150300.7.42.1.x86_64.rpm True libudev-devel-246.16-150300.7.42.1.x86_64.rpm True libudev-devel-32bit-246.16-150300.7.42.1.x86_64.rpm True libudev1-246.16-150300.7.42.1.x86_64.rpm True libudev1-32bit-246.16-150300.7.42.1.x86_64.rpm True nss-myhostname-246.16-150300.7.42.1.x86_64.rpm True nss-myhostname-32bit-246.16-150300.7.42.1.x86_64.rpm True nss-mymachines-246.16-150300.7.42.1.x86_64.rpm True nss-mymachines-32bit-246.16-150300.7.42.1.x86_64.rpm True nss-resolve-246.16-150300.7.42.1.x86_64.rpm True nss-systemd-246.16-150300.7.42.1.x86_64.rpm True systemd-246.16-150300.7.42.1.src.rpm True systemd-246.16-150300.7.42.1.x86_64.rpm True systemd-32bit-246.16-150300.7.42.1.x86_64.rpm True systemd-container-246.16-150300.7.42.1.x86_64.rpm True systemd-coredump-246.16-150300.7.42.1.x86_64.rpm True systemd-devel-246.16-150300.7.42.1.x86_64.rpm True systemd-doc-246.16-150300.7.42.1.x86_64.rpm True systemd-journal-remote-246.16-150300.7.42.1.x86_64.rpm True systemd-lang-246.16-150300.7.42.1.noarch.rpm True systemd-logger-246.16-150300.7.42.1.x86_64.rpm True systemd-network-246.16-150300.7.42.1.x86_64.rpm True systemd-sysvinit-246.16-150300.7.42.1.x86_64.rpm True udev-246.16-150300.7.42.1.x86_64.rpm True libsystemd0-246.16-150300.7.42.1.s390x.rpm True libudev-devel-246.16-150300.7.42.1.s390x.rpm True libudev1-246.16-150300.7.42.1.s390x.rpm True nss-myhostname-246.16-150300.7.42.1.s390x.rpm True nss-mymachines-246.16-150300.7.42.1.s390x.rpm True nss-resolve-246.16-150300.7.42.1.s390x.rpm True nss-systemd-246.16-150300.7.42.1.s390x.rpm True systemd-246.16-150300.7.42.1.s390x.rpm True systemd-container-246.16-150300.7.42.1.s390x.rpm True systemd-coredump-246.16-150300.7.42.1.s390x.rpm True systemd-devel-246.16-150300.7.42.1.s390x.rpm True systemd-doc-246.16-150300.7.42.1.s390x.rpm True systemd-journal-remote-246.16-150300.7.42.1.s390x.rpm True systemd-logger-246.16-150300.7.42.1.s390x.rpm True systemd-network-246.16-150300.7.42.1.s390x.rpm True systemd-sysvinit-246.16-150300.7.42.1.s390x.rpm True udev-246.16-150300.7.42.1.s390x.rpm True libsystemd0-246.16-150300.7.42.1.ppc64le.rpm True libudev-devel-246.16-150300.7.42.1.ppc64le.rpm True libudev1-246.16-150300.7.42.1.ppc64le.rpm True nss-myhostname-246.16-150300.7.42.1.ppc64le.rpm True nss-mymachines-246.16-150300.7.42.1.ppc64le.rpm True nss-resolve-246.16-150300.7.42.1.ppc64le.rpm True nss-systemd-246.16-150300.7.42.1.ppc64le.rpm True systemd-246.16-150300.7.42.1.ppc64le.rpm True systemd-container-246.16-150300.7.42.1.ppc64le.rpm True systemd-coredump-246.16-150300.7.42.1.ppc64le.rpm True systemd-devel-246.16-150300.7.42.1.ppc64le.rpm True systemd-doc-246.16-150300.7.42.1.ppc64le.rpm True systemd-journal-remote-246.16-150300.7.42.1.ppc64le.rpm True systemd-logger-246.16-150300.7.42.1.ppc64le.rpm True systemd-network-246.16-150300.7.42.1.ppc64le.rpm True systemd-sysvinit-246.16-150300.7.42.1.ppc64le.rpm True udev-246.16-150300.7.42.1.ppc64le.rpm True libsystemd0-246.16-150300.7.42.1.aarch64.rpm True libudev-devel-246.16-150300.7.42.1.aarch64.rpm True libudev1-246.16-150300.7.42.1.aarch64.rpm True nss-myhostname-246.16-150300.7.42.1.aarch64.rpm True nss-mymachines-246.16-150300.7.42.1.aarch64.rpm True nss-resolve-246.16-150300.7.42.1.aarch64.rpm True nss-systemd-246.16-150300.7.42.1.aarch64.rpm True systemd-246.16-150300.7.42.1.aarch64.rpm True systemd-container-246.16-150300.7.42.1.aarch64.rpm True systemd-coredump-246.16-150300.7.42.1.aarch64.rpm True systemd-devel-246.16-150300.7.42.1.aarch64.rpm True systemd-doc-246.16-150300.7.42.1.aarch64.rpm True systemd-journal-remote-246.16-150300.7.42.1.aarch64.rpm True systemd-logger-246.16-150300.7.42.1.aarch64.rpm True systemd-network-246.16-150300.7.42.1.aarch64.rpm True systemd-sysvinit-246.16-150300.7.42.1.aarch64.rpm True udev-246.16-150300.7.42.1.aarch64.rpm True openSUSE-SLE-15.3-2022-1204 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issues: - Updated pci, usb and vendor ids (bsc#1196332) hwdata-0.357-150000.3.42.1.noarch.rpm hwdata-0.357-150000.3.42.1.src.rpm openSUSE-SLE-15.3-2022-1555 moderate SUSE Updates openSUSE-SLE 15.3 This update for amavisd-new fixes the following issues: - Removed deprecated option "syslog" used in amavis.service (bsc#1185145) amavisd-new-2.11.1-150000.6.6.1.src.rpm amavisd-new-2.11.1-150000.6.6.1.x86_64.rpm amavisd-new-docs-2.11.1-150000.6.6.1.x86_64.rpm amavisd-new-2.11.1-150000.6.6.1.s390x.rpm amavisd-new-docs-2.11.1-150000.6.6.1.s390x.rpm amavisd-new-2.11.1-150000.6.6.1.ppc64le.rpm amavisd-new-docs-2.11.1-150000.6.6.1.ppc64le.rpm amavisd-new-2.11.1-150000.6.6.1.aarch64.rpm amavisd-new-docs-2.11.1-150000.6.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1643 moderate SUSE Updates openSUSE-SLE 15.3 This update for linuxrc fixes the following issues: - Do not leave repository mounted when starting yast (bsc#1196061) - Improve url logging function - Handle umount errors better - Check RAID devices for install repository (bsc#1196061) linuxrc-7.0.30.6-150300.3.9.1.src.rpm linuxrc-7.0.30.6-150300.3.9.1.x86_64.rpm linuxrc-7.0.30.6-150300.3.9.1.s390x.rpm linuxrc-7.0.30.6-150300.3.9.1.ppc64le.rpm linuxrc-7.0.30.6-150300.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-2794 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for ongres-scram, ongres-stringprep, postgresql-jdbc provides: ongres-scram: - Upgrade from version 1.0.0-beta.2 to version 2.1. (jsc#SLE-23994) * Add standard `SASLPrep` (bsc#1196693, jsc#SLE-23994) * Failover to bouncy castle implementation of `PBKDF2WithHmacSHA256` to support Oracle JDK 7 * Updated `saslprep` to version 1.1 to remove a build dependency coming from the `stringprep` module ongres-stringprep: - Introduce `ongres-stringprep` 1.1 as dependency of `ongres-scram`. (bsc#1196693, jsc#SLE-23994) postgresql-jdbc: - CVE-2022-26520: Fixed arbitrary File Write Vulnerability (bsc#1197356) - Upgrade postgresql-jdbc from version 42.2.16 to version 42.2.25 (jsc#SLE-23994) * Use `SASLprep` normalization for SCRAM authentication and fixes issues with spaces in passwords. (bsc#1196693) ongres-scram-2.1-150300.3.3.4.noarch.rpm ongres-scram-2.1-150300.3.3.4.src.rpm ongres-scram-client-2.1-150300.3.3.4.noarch.rpm ongres-scram-javadoc-2.1-150300.3.3.4.noarch.rpm ongres-scram-parent-2.1-150300.3.3.4.noarch.rpm ongres-stringprep-1.1-150300.7.3.4.noarch.rpm ongres-stringprep-1.1-150300.7.3.4.src.rpm ongres-stringprep-codegenerator-1.1-150300.7.3.4.noarch.rpm ongres-stringprep-javadoc-1.1-150300.7.3.4.noarch.rpm ongres-stringprep-parent-1.1-150300.7.3.4.noarch.rpm ongres-stringprep-saslprep-1.1-150300.7.3.4.noarch.rpm postgresql-jdbc-42.2.25-150300.3.5.2.noarch.rpm postgresql-jdbc-42.2.25-150300.3.5.2.src.rpm postgresql-jdbc-javadoc-42.2.25-150300.3.5.2.noarch.rpm openSUSE-SLE-15.3-2022-1422 moderate SUSE Updates openSUSE-SLE 15.3 This update for glib2-branding fixes the following issues: - Change the default `LibreOffice Startcenter` entry to `libreoffice-startcenter.desktop` and provide the missing favorite link. (bsc#1195836) gio-branding-SLE-15-150300.19.3.1.noarch.rpm glib2-branding-SLE-15-150300.19.3.1.src.rpm openSUSE-SLE-15.3-2022-1070 low SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: Update the release notes to version 15.3.20220324. (bsc#933411) - Move KubeVirt out of technology previews for Intel 64/AMD64 (x86-64) - Fix GICv4.1 acronym in aarch64. (jsc#SLE-14763) release-notes-sles-15.3.20220324-150300.3.23.1.noarch.rpm release-notes-sles-15.3.20220324-150300.3.23.1.src.rpm openSUSE-SLE-15.3-2022-1420 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issues: Lifecycle data update. (bsc#1020320) - Added data for 4_12_14-150_83, 4_12_14-150_86, 4_12_14-197_105, 4_12_14-197_108, 5_3_18-150300_59_46, 5_3_18-150300_59_49, 5_3_18-150300_59_54, 5_3_18-24_102, 5_3_18-24_107. lifecycle-data-sle-module-live-patching-15-150000.4.72.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-150000.4.72.1.src.rpm openSUSE-SLE-15.3-2022-1554 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: gtkmm2, atkmm1_6, pangomm1_4, cairomm1_0 atkmm1_6-2.28.0-150200.3.2.1.src.rpm atkmm1_6-devel-2.28.0-150200.3.2.1.x86_64.rpm atkmm1_6-devel-32bit-2.28.0-150200.3.2.1.x86_64.rpm atkmm1_6-doc-2.28.0-150200.3.2.1.noarch.rpm cairomm1_0-1.12.2-150000.3.2.1.src.rpm cairomm1_0-devel-1.12.2-150000.3.2.1.x86_64.rpm cairomm1_0-devel-32bit-1.12.2-150000.3.2.1.x86_64.rpm cairomm1_0-doc-1.12.2-150000.3.2.1.x86_64.rpm gtkmm2-2.24.5-150000.3.2.1.src.rpm gtkmm2-devel-2.24.5-150000.3.2.1.x86_64.rpm libatkmm-1_6-1-2.28.0-150200.3.2.1.x86_64.rpm libatkmm-1_6-1-32bit-2.28.0-150200.3.2.1.x86_64.rpm libcairomm-1_0-1-1.12.2-150000.3.2.1.x86_64.rpm libcairomm-1_0-1-32bit-1.12.2-150000.3.2.1.x86_64.rpm libgtkmm-2_4-1-2.24.5-150000.3.2.1.x86_64.rpm libgtkmm-2_4-1-32bit-2.24.5-150000.3.2.1.x86_64.rpm libpangomm-1_4-1-2.42.0-150200.3.2.1.x86_64.rpm libpangomm-1_4-1-32bit-2.42.0-150200.3.2.1.x86_64.rpm pangomm1_4-2.42.0-150200.3.2.1.src.rpm pangomm1_4-devel-2.42.0-150200.3.2.1.x86_64.rpm pangomm1_4-doc-2.42.0-150200.3.2.1.x86_64.rpm atkmm1_6-devel-2.28.0-150200.3.2.1.s390x.rpm cairomm1_0-devel-1.12.2-150000.3.2.1.s390x.rpm cairomm1_0-doc-1.12.2-150000.3.2.1.s390x.rpm gtkmm2-devel-2.24.5-150000.3.2.1.s390x.rpm libatkmm-1_6-1-2.28.0-150200.3.2.1.s390x.rpm libcairomm-1_0-1-1.12.2-150000.3.2.1.s390x.rpm libgtkmm-2_4-1-2.24.5-150000.3.2.1.s390x.rpm libpangomm-1_4-1-2.42.0-150200.3.2.1.s390x.rpm pangomm1_4-devel-2.42.0-150200.3.2.1.s390x.rpm pangomm1_4-doc-2.42.0-150200.3.2.1.s390x.rpm atkmm1_6-devel-2.28.0-150200.3.2.1.ppc64le.rpm cairomm1_0-devel-1.12.2-150000.3.2.1.ppc64le.rpm cairomm1_0-doc-1.12.2-150000.3.2.1.ppc64le.rpm gtkmm2-devel-2.24.5-150000.3.2.1.ppc64le.rpm libatkmm-1_6-1-2.28.0-150200.3.2.1.ppc64le.rpm libcairomm-1_0-1-1.12.2-150000.3.2.1.ppc64le.rpm libgtkmm-2_4-1-2.24.5-150000.3.2.1.ppc64le.rpm libpangomm-1_4-1-2.42.0-150200.3.2.1.ppc64le.rpm pangomm1_4-devel-2.42.0-150200.3.2.1.ppc64le.rpm pangomm1_4-doc-2.42.0-150200.3.2.1.ppc64le.rpm atkmm1_6-devel-2.28.0-150200.3.2.1.aarch64.rpm cairomm1_0-devel-1.12.2-150000.3.2.1.aarch64.rpm cairomm1_0-doc-1.12.2-150000.3.2.1.aarch64.rpm gtkmm2-devel-2.24.5-150000.3.2.1.aarch64.rpm libatkmm-1_6-1-2.28.0-150200.3.2.1.aarch64.rpm libcairomm-1_0-1-1.12.2-150000.3.2.1.aarch64.rpm libgtkmm-2_4-1-2.24.5-150000.3.2.1.aarch64.rpm libpangomm-1_4-1-2.42.0-150200.3.2.1.aarch64.rpm pangomm1_4-devel-2.42.0-150200.3.2.1.aarch64.rpm pangomm1_4-doc-2.42.0-150200.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1445 important SUSE Updates openSUSE-SLE 15.3 This update for patterns-public-cloud-15 fixes the following issues: - Fix pattern migration issue from SLE 12 to SLE 15. (bsc#1196122) patterns-public-cloud-15-15.1-150100.8.3.1.src.rpm patterns-public-cloud-15-Amazon-Web-Services-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Amazon-Web-Services-Instance-Init-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Amazon-Web-Services-Instance-Tools-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Amazon-Web-Services-Tools-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Google-Cloud-Platform-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Google-Cloud-Platform-Instance-Init-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Google-Cloud-Platform-Instance-Tools-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Google-Cloud-Platform-Tools-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Microsoft-Azure-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Microsoft-Azure-Instance-Init-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Microsoft-Azure-Instance-Tools-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Microsoft-Azure-Tools-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-OpenStack-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-OpenStack-Instance-Init-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-OpenStack-Instance-Tools-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-OpenStack-Tools-15.1-150100.8.3.1.x86_64.rpm patterns-public-cloud-15-Amazon-Web-Services-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Amazon-Web-Services-Instance-Init-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Amazon-Web-Services-Instance-Tools-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Amazon-Web-Services-Tools-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Google-Cloud-Platform-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Google-Cloud-Platform-Instance-Init-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Google-Cloud-Platform-Instance-Tools-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Google-Cloud-Platform-Tools-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Microsoft-Azure-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Microsoft-Azure-Instance-Init-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Microsoft-Azure-Instance-Tools-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Microsoft-Azure-Tools-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-OpenStack-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-OpenStack-Instance-Init-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-OpenStack-Instance-Tools-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-OpenStack-Tools-15.1-150100.8.3.1.s390x.rpm patterns-public-cloud-15-Amazon-Web-Services-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Amazon-Web-Services-Instance-Init-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Amazon-Web-Services-Instance-Tools-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Amazon-Web-Services-Tools-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Google-Cloud-Platform-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Google-Cloud-Platform-Instance-Init-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Google-Cloud-Platform-Instance-Tools-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Google-Cloud-Platform-Tools-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Microsoft-Azure-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Microsoft-Azure-Instance-Init-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Microsoft-Azure-Instance-Tools-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Microsoft-Azure-Tools-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-OpenStack-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-OpenStack-Instance-Init-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-OpenStack-Instance-Tools-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-OpenStack-Tools-15.1-150100.8.3.1.ppc64le.rpm patterns-public-cloud-15-Amazon-Web-Services-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-Amazon-Web-Services-Instance-Init-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-Amazon-Web-Services-Instance-Tools-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-Amazon-Web-Services-Tools-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-Google-Cloud-Platform-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-Google-Cloud-Platform-Instance-Init-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-Google-Cloud-Platform-Instance-Tools-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-Google-Cloud-Platform-Tools-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-Microsoft-Azure-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-Microsoft-Azure-Instance-Init-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-Microsoft-Azure-Instance-Tools-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-Microsoft-Azure-Tools-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-OpenStack-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-OpenStack-Instance-Init-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-OpenStack-Instance-Tools-15.1-150100.8.3.1.aarch64.rpm patterns-public-cloud-15-OpenStack-Tools-15.1-150100.8.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1494 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: hp-drive-guard, upower hp-drive-guard-0.3.12-150000.4.2.1.src.rpm hp-drive-guard-0.3.12-150000.4.2.1.x86_64.rpm libupower-glib-devel-0.99.11-150200.4.2.1.x86_64.rpm libupower-glib3-0.99.11-150200.4.2.1.x86_64.rpm typelib-1_0-UpowerGlib-1_0-0.99.11-150200.4.2.1.x86_64.rpm upower-0.99.11-150200.4.2.1.src.rpm upower-0.99.11-150200.4.2.1.x86_64.rpm upower-lang-0.99.11-150200.4.2.1.noarch.rpm hp-drive-guard-0.3.12-150000.4.2.1.s390x.rpm libupower-glib-devel-0.99.11-150200.4.2.1.s390x.rpm libupower-glib3-0.99.11-150200.4.2.1.s390x.rpm typelib-1_0-UpowerGlib-1_0-0.99.11-150200.4.2.1.s390x.rpm upower-0.99.11-150200.4.2.1.s390x.rpm hp-drive-guard-0.3.12-150000.4.2.1.ppc64le.rpm libupower-glib-devel-0.99.11-150200.4.2.1.ppc64le.rpm libupower-glib3-0.99.11-150200.4.2.1.ppc64le.rpm typelib-1_0-UpowerGlib-1_0-0.99.11-150200.4.2.1.ppc64le.rpm upower-0.99.11-150200.4.2.1.ppc64le.rpm hp-drive-guard-0.3.12-150000.4.2.1.aarch64.rpm libupower-glib-devel-0.99.11-150200.4.2.1.aarch64.rpm libupower-glib3-0.99.11-150200.4.2.1.aarch64.rpm typelib-1_0-UpowerGlib-1_0-0.99.11-150200.4.2.1.aarch64.rpm upower-0.99.11-150200.4.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1493 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: a52dec a52dec-0.7.5+svn613-150000.3.2.1.src.rpm a52dec-0.7.5+svn613-150000.3.2.1.x86_64.rpm liba52-0-0.7.5+svn613-150000.3.2.1.x86_64.rpm liba52-0-32bit-0.7.5+svn613-150000.3.2.1.x86_64.rpm liba52-devel-0.7.5+svn613-150000.3.2.1.x86_64.rpm a52dec-0.7.5+svn613-150000.3.2.1.s390x.rpm liba52-0-0.7.5+svn613-150000.3.2.1.s390x.rpm liba52-devel-0.7.5+svn613-150000.3.2.1.s390x.rpm a52dec-0.7.5+svn613-150000.3.2.1.ppc64le.rpm liba52-0-0.7.5+svn613-150000.3.2.1.ppc64le.rpm liba52-devel-0.7.5+svn613-150000.3.2.1.ppc64le.rpm a52dec-0.7.5+svn613-150000.3.2.1.aarch64.rpm liba52-0-0.7.5+svn613-150000.3.2.1.aarch64.rpm liba52-devel-0.7.5+svn613-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1145 moderate SUSE Updates openSUSE-SLE 15.3 This update for tcmu-runner fixes the following issues: - fix g_object_unref: assertion 'G_IS_OBJECT (object)' failed. (bsc#1196787) libtcmu2-1.5.2-150200.2.7.1.x86_64.rpm tcmu-runner-1.5.2-150200.2.7.1.src.rpm tcmu-runner-1.5.2-150200.2.7.1.x86_64.rpm tcmu-runner-handler-rbd-1.5.2-150200.2.7.1.x86_64.rpm libtcmu2-1.5.2-150200.2.7.1.s390x.rpm tcmu-runner-1.5.2-150200.2.7.1.s390x.rpm libtcmu2-1.5.2-150200.2.7.1.ppc64le.rpm tcmu-runner-1.5.2-150200.2.7.1.ppc64le.rpm libtcmu2-1.5.2-150200.2.7.1.aarch64.rpm tcmu-runner-1.5.2-150200.2.7.1.aarch64.rpm tcmu-runner-handler-rbd-1.5.2-150200.2.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-1175 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - utils: Update 'detect_cloud' pattern for 'aws'. (bsc#1197351) - Fix: utils: Only raise exception when return code of systemctl command over ssh larger than 4. (bsc#1196726) crmsh-4.3.1+20220321.bd33abac-150200.5.77.1.noarch.rpm crmsh-4.3.1+20220321.bd33abac-150200.5.77.1.src.rpm crmsh-scripts-4.3.1+20220321.bd33abac-150200.5.77.1.noarch.rpm crmsh-test-4.3.1+20220321.bd33abac-150200.5.77.1.noarch.rpm openSUSE-SLE-15.3-2022-1482 moderate SUSE Updates openSUSE-SLE 15.3 This update for mdadm fixes the following issues: - Fix a boot failure with multipath if the reading the VPD page attribute fails and skip RAID assembly if it is set. (bsc#1196054) mdadm-4.1-150300.24.12.1.src.rpm mdadm-4.1-150300.24.12.1.x86_64.rpm mdadm-4.1-150300.24.12.1.s390x.rpm mdadm-4.1-150300.24.12.1.ppc64le.rpm mdadm-4.1-150300.24.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-1418 moderate SUSE Updates openSUSE-SLE 15.3 This update for ant fixes the following issues: - CVE-2021-36373: Fixed an excessive memory allocation when reading a specially crafted TAR archive (bsc#1188468). - CVE-2021-36374: Fixed an excessive memory allocation when reading a specially crafted ZIP archive (bsc#1188469). ant-1.10.7-150200.4.6.1.noarch.rpm ant-1.10.7-150200.4.6.1.src.rpm ant-antlr-1.10.7-150200.4.6.1.noarch.rpm ant-antlr-1.10.7-150200.4.6.1.src.rpm ant-apache-bcel-1.10.7-150200.4.6.1.noarch.rpm ant-apache-bsf-1.10.7-150200.4.6.1.noarch.rpm ant-apache-log4j-1.10.7-150200.4.6.1.noarch.rpm ant-apache-oro-1.10.7-150200.4.6.1.noarch.rpm ant-apache-regexp-1.10.7-150200.4.6.1.noarch.rpm ant-apache-resolver-1.10.7-150200.4.6.1.noarch.rpm ant-apache-xalan2-1.10.7-150200.4.6.1.noarch.rpm ant-commons-logging-1.10.7-150200.4.6.1.noarch.rpm ant-commons-net-1.10.7-150200.4.6.1.noarch.rpm ant-imageio-1.10.7-150200.4.6.1.noarch.rpm ant-javamail-1.10.7-150200.4.6.1.noarch.rpm ant-jdepend-1.10.7-150200.4.6.1.noarch.rpm ant-jmf-1.10.7-150200.4.6.1.noarch.rpm ant-jsch-1.10.7-150200.4.6.1.noarch.rpm ant-junit-1.10.7-150200.4.6.1.noarch.rpm ant-junit-1.10.7-150200.4.6.1.src.rpm ant-junit5-1.10.7-150200.4.6.1.noarch.rpm ant-junit5-1.10.7-150200.4.6.1.src.rpm ant-manual-1.10.7-150200.4.6.1.noarch.rpm ant-scripts-1.10.7-150200.4.6.1.noarch.rpm ant-swing-1.10.7-150200.4.6.1.noarch.rpm ant-testutil-1.10.7-150200.4.6.1.noarch.rpm ant-xz-1.10.7-150200.4.6.1.noarch.rpm openSUSE-SLE-15.3-2022-1146 moderate SUSE Updates openSUSE-SLE 15.3 This update for reload4j fixes the following issues: This update provides reload4j 1.2.19, a upstream supported drop-in replace of log4j 1.2.x, which is declared EOL upstream. Additional changes: - Some projects using log4j12 expect the org.apache.log4j.MDC class to have internal boolean variable java1. We add it there just to avoid runtime incompatibilities as a log4j12 drop-in replacement. - Add Provides and Obsoletes to the javadoc package in order to transition smoothly out of log4j12-javadoc and log4j12-manual reload4j-1.2.19-150200.5.3.1.noarch.rpm reload4j-1.2.19-150200.5.3.1.src.rpm reload4j-javadoc-1.2.19-150200.5.3.1.noarch.rpm openSUSE-SLE-15.3-2022-1148 important SUSE Updates openSUSE-SLE 15.3 This update for libexif fixes the following issues: - CVE-2020-0181: Fixed an integer overflow that could lead to denial of service (bsc#1172802). - CVE-2020-0198: Fixed and unsigned integer overflow that could lead to denial of service (bsc#1172768). - CVE-2020-0452: Fixed a buffer overflow check that could be optimized away by the compiler (bsc#1178479). libexif-0.6.22-150000.5.9.1.src.rpm libexif-devel-0.6.22-150000.5.9.1.x86_64.rpm libexif-devel-32bit-0.6.22-150000.5.9.1.x86_64.rpm libexif12-0.6.22-150000.5.9.1.x86_64.rpm libexif12-32bit-0.6.22-150000.5.9.1.x86_64.rpm libexif-devel-0.6.22-150000.5.9.1.s390x.rpm libexif12-0.6.22-150000.5.9.1.s390x.rpm libexif-devel-0.6.22-150000.5.9.1.ppc64le.rpm libexif12-0.6.22-150000.5.9.1.ppc64le.rpm libexif-devel-0.6.22-150000.5.9.1.aarch64.rpm libexif12-0.6.22-150000.5.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-1517 moderate SUSE Updates openSUSE-SLE 15.3 This update for lksctp-tools fixes the following issues: Update to version 1.0.17 (bsc#1197590) * sctp_test: fix hostname resolution * man: remove sysctl listing from sctp.7 * Fix recieved->received typos * Fix usage help for sctp_test * test_1_to_1_accept_close: also expect EACCES when accept on an established socket * lksctp-tools: make bind_test can do while disable IPV6 * libsctp: add pkg-config support lksctp-tools-1.0.17-150000.3.3.1.src.rpm lksctp-tools-1.0.17-150000.3.3.1.x86_64.rpm lksctp-tools-devel-1.0.17-150000.3.3.1.x86_64.rpm lksctp-tools-1.0.17-150000.3.3.1.s390x.rpm lksctp-tools-devel-1.0.17-150000.3.3.1.s390x.rpm lksctp-tools-1.0.17-150000.3.3.1.ppc64le.rpm lksctp-tools-devel-1.0.17-150000.3.3.1.ppc64le.rpm lksctp-tools-1.0.17-150000.3.3.1.aarch64.rpm lksctp-tools-devel-1.0.17-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1436 moderate SUSE Updates openSUSE-SLE 15.3 This update for libaom fixes the following issues: - CVE-2021-30473: AOMedia in aom_image.c frees memory that is not located on the heap (bsc#1185778). aom-tools-1.0.0-150200.3.12.1.x86_64.rpm libaom-1.0.0-150200.3.12.1.src.rpm libaom-devel-1.0.0-150200.3.12.1.x86_64.rpm libaom-devel-doc-1.0.0-150200.3.12.1.noarch.rpm libaom0-1.0.0-150200.3.12.1.x86_64.rpm libaom0-32bit-1.0.0-150200.3.12.1.x86_64.rpm aom-tools-1.0.0-150200.3.12.1.s390x.rpm libaom-devel-1.0.0-150200.3.12.1.s390x.rpm libaom0-1.0.0-150200.3.12.1.s390x.rpm aom-tools-1.0.0-150200.3.12.1.ppc64le.rpm libaom-devel-1.0.0-150200.3.12.1.ppc64le.rpm libaom0-1.0.0-150200.3.12.1.ppc64le.rpm aom-tools-1.0.0-150200.3.12.1.aarch64.rpm libaom-devel-1.0.0-150200.3.12.1.aarch64.rpm libaom0-1.0.0-150200.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-1317 low SUSE Updates openSUSE-SLE 15.3 This update for dvd+rw-tools fixes the following issues: - There are no visible changes for the final user: * Make the source building on 15 SP4. (bsc#1197713) * Refresh of exisiting patches. dvd+rw-tools-7.1-150000.3.3.1.src.rpm dvd+rw-tools-7.1-150000.3.3.1.x86_64.rpm dvd+rw-tools-7.1-150000.3.3.1.s390x.rpm dvd+rw-tools-7.1-150000.3.3.1.ppc64le.rpm dvd+rw-tools-7.1-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1492 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libdvdread libdvdread-6.0.0-150000.3.2.1.src.rpm libdvdread-devel-6.0.0-150000.3.2.1.x86_64.rpm libdvdread4-32bit-6.0.0-150000.3.2.1.x86_64.rpm libdvdread4-6.0.0-150000.3.2.1.x86_64.rpm libdvdread-devel-6.0.0-150000.3.2.1.s390x.rpm libdvdread4-6.0.0-150000.3.2.1.s390x.rpm libdvdread-devel-6.0.0-150000.3.2.1.ppc64le.rpm libdvdread4-6.0.0-150000.3.2.1.ppc64le.rpm libdvdread-devel-6.0.0-150000.3.2.1.aarch64.rpm libdvdread4-6.0.0-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1126 moderate SUSE Updates openSUSE-SLE 15.3 This update for nfs-utils fixes the following issues: - Ensure `sloppy` is added correctly for newer kernels. (bsc#1197297) * This is required for kernels since 5.6 (like in SUSE Linux Enterprise 15 SP4), and it's safe for all kernels. - Fix the source build with new `glibc` like in SUSE Linux Enterprise 15 SP4. (bsc#1197788) nfs-client-2.1.1-150100.10.24.1.x86_64.rpm nfs-doc-2.1.1-150100.10.24.1.x86_64.rpm nfs-kernel-server-2.1.1-150100.10.24.1.x86_64.rpm nfs-utils-2.1.1-150100.10.24.1.src.rpm nfs-client-2.1.1-150100.10.24.1.s390x.rpm nfs-doc-2.1.1-150100.10.24.1.s390x.rpm nfs-kernel-server-2.1.1-150100.10.24.1.s390x.rpm nfs-client-2.1.1-150100.10.24.1.ppc64le.rpm nfs-doc-2.1.1-150100.10.24.1.ppc64le.rpm nfs-kernel-server-2.1.1-150100.10.24.1.ppc64le.rpm nfs-client-2.1.1-150100.10.24.1.aarch64.rpm nfs-doc-2.1.1-150100.10.24.1.aarch64.rpm nfs-kernel-server-2.1.1-150100.10.24.1.aarch64.rpm openSUSE-SLE-15.3-2022-1712 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libchamplain cogl clutter clutter-gtk clutter-1.26.2-150000.4.2.1.src.rpm clutter-devel-1.26.2-150000.4.2.1.x86_64.rpm clutter-gtk-1.8.4-150000.4.2.1.src.rpm clutter-gtk-devel-1.8.4-150000.4.2.1.x86_64.rpm clutter-gtk-lang-1.8.4-150000.4.2.1.noarch.rpm clutter-lang-1.26.2-150000.4.2.1.noarch.rpm cogl-1.22.2-150200.10.2.1.src.rpm cogl-devel-1.22.2-150200.10.2.1.x86_64.rpm cogl-lang-1.22.2-150200.10.2.1.noarch.rpm gstreamer-plugins-cogl-1.22.2-150200.10.2.1.x86_64.rpm libchamplain-0.12.20-150200.3.2.1.src.rpm libchamplain-0_12-0-0.12.20-150200.3.2.1.x86_64.rpm libchamplain-devel-0.12.20-150200.3.2.1.x86_64.rpm libclutter-1_0-0-1.26.2-150000.4.2.1.x86_64.rpm libclutter-1_0-0-32bit-1.26.2-150000.4.2.1.x86_64.rpm libclutter-gtk-1_0-0-1.8.4-150000.4.2.1.x86_64.rpm libclutter-gtk-1_0-0-32bit-1.8.4-150000.4.2.1.x86_64.rpm libcogl-gles2-20-1.22.2-150200.10.2.1.x86_64.rpm libcogl-pango20-1.22.2-150200.10.2.1.x86_64.rpm libcogl-pango20-32bit-1.22.2-150200.10.2.1.x86_64.rpm libcogl20-1.22.2-150200.10.2.1.x86_64.rpm libcogl20-32bit-1.22.2-150200.10.2.1.x86_64.rpm typelib-1_0-Champlain-0_12-0.12.20-150200.3.2.1.x86_64.rpm typelib-1_0-Clutter-1_0-1.26.2-150000.4.2.1.x86_64.rpm typelib-1_0-Cogl-1_0-1.22.2-150200.10.2.1.x86_64.rpm typelib-1_0-Cogl-2_0-1.22.2-150200.10.2.1.x86_64.rpm typelib-1_0-CoglGst-2_0-1.22.2-150200.10.2.1.x86_64.rpm typelib-1_0-CoglPango-1_0-1.22.2-150200.10.2.1.x86_64.rpm typelib-1_0-CoglPango-2_0-1.22.2-150200.10.2.1.x86_64.rpm typelib-1_0-GtkClutter-1_0-1.8.4-150000.4.2.1.x86_64.rpm clutter-devel-1.26.2-150000.4.2.1.s390x.rpm clutter-gtk-devel-1.8.4-150000.4.2.1.s390x.rpm cogl-devel-1.22.2-150200.10.2.1.s390x.rpm gstreamer-plugins-cogl-1.22.2-150200.10.2.1.s390x.rpm libchamplain-0_12-0-0.12.20-150200.3.2.1.s390x.rpm libchamplain-devel-0.12.20-150200.3.2.1.s390x.rpm libclutter-1_0-0-1.26.2-150000.4.2.1.s390x.rpm libclutter-gtk-1_0-0-1.8.4-150000.4.2.1.s390x.rpm libcogl-gles2-20-1.22.2-150200.10.2.1.s390x.rpm libcogl-pango20-1.22.2-150200.10.2.1.s390x.rpm libcogl20-1.22.2-150200.10.2.1.s390x.rpm typelib-1_0-Champlain-0_12-0.12.20-150200.3.2.1.s390x.rpm typelib-1_0-Clutter-1_0-1.26.2-150000.4.2.1.s390x.rpm typelib-1_0-Cogl-1_0-1.22.2-150200.10.2.1.s390x.rpm typelib-1_0-Cogl-2_0-1.22.2-150200.10.2.1.s390x.rpm typelib-1_0-CoglGst-2_0-1.22.2-150200.10.2.1.s390x.rpm typelib-1_0-CoglPango-1_0-1.22.2-150200.10.2.1.s390x.rpm typelib-1_0-CoglPango-2_0-1.22.2-150200.10.2.1.s390x.rpm typelib-1_0-GtkClutter-1_0-1.8.4-150000.4.2.1.s390x.rpm clutter-devel-1.26.2-150000.4.2.1.ppc64le.rpm clutter-gtk-devel-1.8.4-150000.4.2.1.ppc64le.rpm cogl-devel-1.22.2-150200.10.2.1.ppc64le.rpm gstreamer-plugins-cogl-1.22.2-150200.10.2.1.ppc64le.rpm libchamplain-0_12-0-0.12.20-150200.3.2.1.ppc64le.rpm libchamplain-devel-0.12.20-150200.3.2.1.ppc64le.rpm libclutter-1_0-0-1.26.2-150000.4.2.1.ppc64le.rpm libclutter-gtk-1_0-0-1.8.4-150000.4.2.1.ppc64le.rpm libcogl-gles2-20-1.22.2-150200.10.2.1.ppc64le.rpm libcogl-pango20-1.22.2-150200.10.2.1.ppc64le.rpm libcogl20-1.22.2-150200.10.2.1.ppc64le.rpm typelib-1_0-Champlain-0_12-0.12.20-150200.3.2.1.ppc64le.rpm typelib-1_0-Clutter-1_0-1.26.2-150000.4.2.1.ppc64le.rpm typelib-1_0-Cogl-1_0-1.22.2-150200.10.2.1.ppc64le.rpm typelib-1_0-Cogl-2_0-1.22.2-150200.10.2.1.ppc64le.rpm typelib-1_0-CoglGst-2_0-1.22.2-150200.10.2.1.ppc64le.rpm typelib-1_0-CoglPango-1_0-1.22.2-150200.10.2.1.ppc64le.rpm typelib-1_0-CoglPango-2_0-1.22.2-150200.10.2.1.ppc64le.rpm typelib-1_0-GtkClutter-1_0-1.8.4-150000.4.2.1.ppc64le.rpm clutter-devel-1.26.2-150000.4.2.1.aarch64.rpm clutter-gtk-devel-1.8.4-150000.4.2.1.aarch64.rpm cogl-devel-1.22.2-150200.10.2.1.aarch64.rpm gstreamer-plugins-cogl-1.22.2-150200.10.2.1.aarch64.rpm libchamplain-0_12-0-0.12.20-150200.3.2.1.aarch64.rpm libchamplain-devel-0.12.20-150200.3.2.1.aarch64.rpm libclutter-1_0-0-1.26.2-150000.4.2.1.aarch64.rpm libclutter-gtk-1_0-0-1.8.4-150000.4.2.1.aarch64.rpm libcogl-gles2-20-1.22.2-150200.10.2.1.aarch64.rpm libcogl-pango20-1.22.2-150200.10.2.1.aarch64.rpm libcogl20-1.22.2-150200.10.2.1.aarch64.rpm typelib-1_0-Champlain-0_12-0.12.20-150200.3.2.1.aarch64.rpm typelib-1_0-Clutter-1_0-1.26.2-150000.4.2.1.aarch64.rpm typelib-1_0-Cogl-1_0-1.22.2-150200.10.2.1.aarch64.rpm typelib-1_0-Cogl-2_0-1.22.2-150200.10.2.1.aarch64.rpm typelib-1_0-CoglGst-2_0-1.22.2-150200.10.2.1.aarch64.rpm typelib-1_0-CoglPango-1_0-1.22.2-150200.10.2.1.aarch64.rpm typelib-1_0-CoglPango-2_0-1.22.2-150200.10.2.1.aarch64.rpm typelib-1_0-GtkClutter-1_0-1.8.4-150000.4.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1124 low SUSE Updates openSUSE-SLE 15.3 This update for compat-libpthread-nonshared fixes the following issues: - Also build s390x version (bsc#1197272) compat-libpthread-nonshared-0-150300.3.6.1.src.rpm compat-libpthread-nonshared-0-150300.3.6.1.x86_64.rpm compat-libpthread-nonshared-32bit-0-150300.3.6.1.x86_64.rpm openSUSE-SLE-15.3-2022-1252 important SUSE Updates openSUSE-SLE 15.3 This update for openjpeg2 fixes the following issues: - CVE-2018-5727: Fixed integer overflow vulnerability in theopj_t1_encode_cblks function (bsc#1076314). - CVE-2018-5785: Fixed integer overflow caused by an out-of-bounds leftshift in the opj_j2k_setup_encoder function (bsc#1076967). - CVE-2018-6616: Fixed excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c (bsc#1079845). - CVE-2018-14423: Fixed division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl,and pi_next_rpcl in lib/openjp3d/pi.c (bsc#1102016). - CVE-2018-16375: Fixed missing checks for header_info.height and header_info.width in the function pnmtoimage in bin/jpwl/convert.c (bsc#1106882). - CVE-2018-16376: Fixed heap-based buffer overflow function t2_encode_packet in lib/openmj2/t2.c (bsc#1106881). - CVE-2018-20845: Fixed division-by-zero in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in openmj2/pi.ci (bsc#1140130). - CVE-2020-6851: Fixed heap-based buffer overflow in opj_t1_clbl_decode_processor (bsc#1160782). - CVE-2020-8112: Fixed heap-based buffer overflow in opj_t1_clbl_decode_processor in openjp2/t1.c (bsc#1162090). - CVE-2020-15389: Fixed use-after-free if t a mix of valid and invalid files in a directory operated on by the decompressor (bsc#1173578). - CVE-2020-27823: Fixed heap buffer over-write in opj_tcd_dc_level_shift_encode() (bsc#1180457). - CVE-2021-29338: Fixed integer overflow that allows remote attackers to crash the application (bsc#1184774). - CVE-2022-1122: Fixed segmentation fault in opj2_decompress due to uninitialized pointer (bsc#1197738). libopenjp2-7-2.3.0-150000.3.5.1.x86_64.rpm libopenjp2-7-32bit-2.3.0-150000.3.5.1.x86_64.rpm openjpeg2-2.3.0-150000.3.5.1.src.rpm openjpeg2-2.3.0-150000.3.5.1.x86_64.rpm openjpeg2-devel-2.3.0-150000.3.5.1.x86_64.rpm libopenjp2-7-2.3.0-150000.3.5.1.s390x.rpm openjpeg2-2.3.0-150000.3.5.1.s390x.rpm openjpeg2-devel-2.3.0-150000.3.5.1.s390x.rpm libopenjp2-7-2.3.0-150000.3.5.1.ppc64le.rpm openjpeg2-2.3.0-150000.3.5.1.ppc64le.rpm openjpeg2-devel-2.3.0-150000.3.5.1.ppc64le.rpm libopenjp2-7-2.3.0-150000.3.5.1.aarch64.rpm openjpeg2-2.3.0-150000.3.5.1.aarch64.rpm openjpeg2-devel-2.3.0-150000.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-1863 low SUSE Updates openSUSE-SLE 15.3 This optional update for ckermit fixes the following issues: There are no visible changes for the final user. - Solve a source build issue (FTBFS) after the removal of `libio` with `glibc-2.28`. (bsc#1197708) ckermit-9.0.302-150000.3.3.1.src.rpm ckermit-9.0.302-150000.3.3.1.x86_64.rpm ckermit-doc-9.0.302-150000.3.3.1.noarch.rpm ckermit-9.0.302-150000.3.3.1.s390x.rpm ckermit-9.0.302-150000.3.3.1.ppc64le.rpm ckermit-9.0.302-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1437 moderate SUSE Updates openSUSE-SLE 15.3 This update for buildah fixes the following issues: - CVE-2022-27651: Fixed incorrect default inheritable capabilities for linux container (bsc#1197870). Update to version 1.25.1. The following non-security bugs were fixed: - add workaround for https://bugzilla.opensuse.org/show_bug.cgi?id=1183043 buildah-1.25.1-150300.8.6.1.src.rpm buildah-1.25.1-150300.8.6.1.x86_64.rpm buildah-1.25.1-150300.8.6.1.s390x.rpm buildah-1.25.1-150300.8.6.1.ppc64le.rpm buildah-1.25.1-150300.8.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1399 moderate SUSE Updates openSUSE-SLE 15.3 This update for podman fixes the following issues: - Fixed breakage on some setups of rootless containers after the last major update (bsc#1196751). podman-3.4.4-150300.9.6.1.src.rpm podman-3.4.4-150300.9.6.1.x86_64.rpm podman-cni-config-3.4.4-150300.9.6.1.noarch.rpm podman-3.4.4-150300.9.6.1.s390x.rpm podman-3.4.4-150300.9.6.1.ppc64le.rpm podman-3.4.4-150300.9.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1190 important SUSE Updates openSUSE-SLE 15.3 This update for cloud-init contains the following fixes: - Update to version 21.4 (bsc#1192343, jsc#PM-3181) + Also include VMWare functionality for (jsc#PM-3175) + Remove patches included upstream. + Forward port fixes. + Fix for VMware Test, system dependend, not properly mocked previously. + Azure: fallback nic needs to be reevaluated during reprovisioning (#1094) [Anh Vo] + azure: pps imds (#1093) [Anh Vo] + testing: Remove calls to 'install_new_cloud_init' (#1092) + Add LXD datasource (#1040) + Fix unhandled apt_configure case. (#1065) [Brett Holman] + Allow libexec for hotplug (#1088) + Add necessary mocks to test_ovf unit tests (#1087) + Remove (deprecated) apt-key (#1068) [Brett Holman] (LP: #1836336) + distros: Remove a completed "TODO" comment (#1086) + cc_ssh.py: Add configuration for controlling ssh-keygen output (#1083) [dermotbradley] + Add "install hotplug" module (SC-476) (#1069) (LP: #1946003) + hosts.alpine.tmpl: rearrange the order of short and long hostnames (#1084) [dermotbradley] + Add max version to docutils + cloudinit/dmi.py: Change warning to debug to prevent console display (#1082) [dermotbradley] + remove unnecessary EOF string in disable-sshd-keygen-if-cloud-init-active.conf (#1075) [Emanuele Giuseppe Esposito] + Add module 'write-files-deferred' executed in stage 'final' (#916) [Lucendio] + Bump pycloudlib to fix CI (#1080) + Remove pin in dependencies for jsonschema (#1078) + Add "Google" as possible system-product-name (#1077) [vteratipally] + Update Debian security suite for bullseye (#1076) [Johann Queuniet] + Leave the details of service management to the distro (#1074) [Andy Fiddaman] + Fix typos in setup.py (#1059) [Christian Clauss] + Update Azure _unpickle (SC-500) (#1067) (LP: #1946644) + cc_ssh.py: fix private key group owner and permissions (#1070) [Emanuele Giuseppe Esposito] + VMware: read network-config from ISO (#1066) [Thomas Weißschuh] + testing: mock sleep in gce unit tests (#1072) + CloudStack: fix data-server DNS resolution (#1004) [Olivier Lemasle] (LP: #1942232) + Fix unit test broken by pyyaml upgrade (#1071) + testing: add get_cloud function (SC-461) (#1038) + Inhibit sshd-keygen@.service if cloud-init is active (#1028) [Ryan Harper] + VMWARE: search the deployPkg plugin in multiarch dir (#1061) [xiaofengw-vmware] (LP: #1944946) + Fix set-name/interface DNS bug (#1058) [Andrew Kutz] (LP: #1946493) + Use specified tmp location for growpart (#1046) [jshen28] + .gitignore: ignore tags file for ctags users (#1057) [Brett Holman] + Allow comments in runcmd and report failed commands correctly (#1049) [Brett Holman] (LP: #1853146) + tox integration: pass the *_proxy, GOOGLE_*, GCP_* env vars (#1050) [Paride Legovini] + Allow disabling of network activation (SC-307) (#1048) (LP: #1938299) + renderer: convert relative imports to absolute (#1052) [Paride Legovini] + Support ETHx_IP6_GATEWAY, SET_HOSTNAME on OpenNebula (#1045) [Vlastimil Holer] + integration-requirements: bump the pycloudlib commit (#1047) [Paride Legovini] + Allow Vultr to set MTU and use as-is configs (#1037) [eb3095] + pin jsonschema in requirements.txt (#1043) + testing: remove cloud_tests (#1020) + Add andgein as contributor (#1042) [Andrew Gein] + Make wording for module frequency consistent (#1039) [Nicolas Bock] + Use ascii code for growpart (#1036) [jshen28] + Add jshen28 as contributor (#1035) [jshen28] + Skip test_cache_purged_on_version_change on Azure (#1033) + Remove invalid ssh_import_id from examples (#1031) + Cleanup Vultr support (#987) [eb3095] + docs: update cc_disk_setup for fs to raw disk (#1017) + HACKING.rst: change contact info to James Falcon (#1030) + tox: bump the pinned flake8 and pylint version (#1029) [Paride Legovini] (LP: #1944414) + Add retries to DataSourceGCE.py when connecting to GCE (#1005) [vteratipally] + Set Azure to apply networking config every BOOT (#1023) + Add connectivity_url to Oracle's EphemeralDHCPv4 (#988) (LP: #1939603) + docs: fix typo and include sudo for report bugs commands (#1022) [Renan Rodrigo] (LP: #1940236) + VMware: Fix typo introduced in #947 and add test (#1019) [PengpengSun] + Update IPv6 entries in /etc/hosts (#1021) [Richard Hansen] (LP: #1943798) + Integration test upgrades for the 21.3-1 SRU (#1001) + Add Jille to tools/.github-cla-signers (#1016) [Jille Timmermans] + Improve ug_util.py (#1013) [Shreenidhi Shedi] + Support openEuler OS (#1012) [zhuzaifangxuele] + ssh_utils.py: ignore when sshd_config options are not key/value pairs (#1007) [Emanuele Giuseppe Esposito] + Set Azure to only update metadata on BOOT_NEW_INSTANCE (#1006) + cc_update_etc_hosts: Use the distribution-defined path for the hosts file (#983) [Andy Fiddaman] + Add CloudLinux OS support (#1003) [Alexandr Kravchenko] + puppet config: add the start_agent option (#1002) [Andrew Bogott] + Fix `make style-check` errors (#1000) [Shreenidhi Shedi] + Make cloud-id copyright year (#991) [Andrii Podanenko] + Add support to accept-ra in networkd renderer (#999) [Shreenidhi Shedi] + Update ds-identify to pass shellcheck (#979) [Andrew Kutz] + Azure: Retry dhcp on timeouts when polling reprovisiondata (#998) [aswinrajamannar] + testing: Fix ssh keys integration test (#992) - From 21.3 + Azure: During primary nic detection, check interface status continuously before rebinding again (#990) [aswinrajamannar] + Fix home permissions modified by ssh module (SC-338) (#984) (LP: #1940233) + Add integration test for sensitive jinja substitution (#986) + Ignore hotplug socket when collecting logs (#985) (LP: #1940235) + testing: Add missing mocks to test_vmware.py (#982) + add Zadara Edge Cloud Platform to the supported clouds list (#963) [sarahwzadara] + testing: skip upgrade tests on LXD VMs (#980) + Only invoke hotplug socket when functionality is enabled (#952) + Revert unnecesary lcase in ds-identify (#978) [Andrew Kutz] + cc_resolv_conf: fix typos (#969) [Shreenidhi Shedi] + Replace broken httpretty tests with mock (SC-324) (#973) + Azure: Check if interface is up after sleep when trying to bring it up (#972) [aswinrajamannar] + Update dscheck_VMware's rpctool check (#970) [Shreenidhi Shedi] + Azure: Logging the detected interfaces (#968) [Moustafa Moustafa] + Change netifaces dependency to 0.10.4 (#965) [Andrew Kutz] + Azure: Limit polling network metadata on connection errors (#961) [aswinrajamannar] + Update inconsistent indentation (#962) [Andrew Kutz] + cc_puppet: support AIO installations and more (#960) [Gabriel Nagy] + Add Puppet contributors to CLA signers (#964) [Noah Fontes] + Datasource for VMware (#953) [Andrew Kutz] + photon: refactor hostname handling and add networkd activator (#958) [sshedi] + Stop copying ssh system keys and check folder permissions (#956) [Emanuele Giuseppe Esposito] + testing: port remaining cloud tests to integration testing framework (SC-191) (#955) + generate contents for ovf-env.xml when provisioning via IMDS (#959) [Anh Vo] + Add support for EuroLinux 7 && EuroLinux 8 (#957) [Aleksander Baranowski] + Implementing device_aliases as described in docs (#945) [Mal Graty] (LP: #1867532) + testing: fix test_ssh_import_id.py (#954) + Add ability to manage fallback network config on PhotonOS (#941) [sshedi] + Add VZLinux support (#951) [eb3095] + VMware: add network-config support in ovf-env.xml (#947) [PengpengSun] + Update pylint to v2.9.3 and fix the new issues it spots (#946) [Paride Legovini] + Azure: mount default provisioning iso before try device listing (#870) [Anh Vo] + Document known hotplug limitations (#950) + Initial hotplug support (#936) + Fix MIME policy failure on python version upgrade (#934) + run-container: fixup the centos repos baseurls when using http_proxy (#944) [Paride Legovini] + tools: add support for building rpms on rocky linux (#940) + ssh-util: allow cloudinit to merge all ssh keys into a custom user file, defined in AuthorizedKeysFile (#937) [Emanuele Giuseppe Esposito] (LP: #1911680) + VMware: new "allow_raw_data" switch (#939) [xiaofengw-vmware] + bump pycloudlib version (#935) + add renanrodrigo as a contributor (#938) [Renan Rodrigo] + testing: simplify test_upgrade.py (#932) + freebsd/net_v1 format: read MTU from root (#930) [Gonéri Le Bouder] + Add new network activators to bring up interfaces (#919) + Detect a Python version change and clear the cache (#857) [Robert Schweikert] + cloud_tests: fix the Impish release name (#931) [Paride Legovini] + Removed distro specific network code from Photon (#929) [sshedi] + Add support for VMware PhotonOS (#909) [sshedi] + cloud_tests: add impish release definition (#927) [Paride Legovini] + docs: fix stale links rename master branch to main (#926) + Fix DNS in NetworkState (SC-133) (#923) + tests: Add 'adhoc' mark for integration tests (#925) + Fix the spelling of "DigitalOcean" (#924) [Mark Mercado] + Small Doc Update for ReportEventStack and Test (#920) [Mike Russell] + Replace deprecated collections.Iterable with abc replacement (#922) (LP: #1932048) + testing: OCI availability domain is now required (SC-59) (#910) + add DragonFlyBSD support (#904) [Gonéri Le Bouder] + Use instance-data-sensitive.json in jinja templates (SC-117) (#917) (LP: #1931392) + doc: Update NoCloud docs stating required files (#918) (LP: #1931577) + build-on-netbsd: don't pin a specific py3 version (#913) [Gonéri Le Bouder] + Create the log file with 640 permissions (#858) [Robert Schweikert] + Allow braces to appear in dhclient output (#911) [eb3095] + Docs: Replace all freenode references with libera (#912) + openbsd/net: flush the route table on net restart (#908) [Gonéri Le Bouder] + Add Rocky Linux support to cloud-init (#906) [Louis Abel] + Add "esposem" as contributor (#907) [Emanuele Giuseppe Esposito] + Add integration test for #868 (#901) + Added support for importing keys via primary/security mirror clauses (#882) [Paul Goins] (LP: #1925395) + [examples] config-user-groups expire in the future (#902) [Geert Stappers] + BSD: static network, set the mtu (#894) [Gonéri Le Bouder] + Add integration test for lp-1920939 (#891) + Fix unit tests breaking from new httpretty version (#903) + Allow user control over update events (#834) + Update test characters in substitution unit test (#893) + cc_disk_setup.py: remove UDEVADM_CMD definition as not used (#886) [dermotbradley] + Add AlmaLinux OS support (#872) [Andrew Lukoshko] + Still need to consider the "network" configuration option cloud-init-21.4-150100.8.58.1.src.rpm cloud-init-21.4-150100.8.58.1.x86_64.rpm cloud-init-config-suse-21.4-150100.8.58.1.x86_64.rpm cloud-init-doc-21.4-150100.8.58.1.x86_64.rpm cloud-init-21.4-150100.8.58.1.s390x.rpm cloud-init-config-suse-21.4-150100.8.58.1.s390x.rpm cloud-init-doc-21.4-150100.8.58.1.s390x.rpm cloud-init-21.4-150100.8.58.1.ppc64le.rpm cloud-init-config-suse-21.4-150100.8.58.1.ppc64le.rpm cloud-init-doc-21.4-150100.8.58.1.ppc64le.rpm cloud-init-21.4-150100.8.58.1.aarch64.rpm cloud-init-config-suse-21.4-150100.8.58.1.aarch64.rpm cloud-init-doc-21.4-150100.8.58.1.aarch64.rpm openSUSE-SLE-15.3-2022-1149 important SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nss fixes the following issues: Mozilla NSS 3.68.3 (bsc#1197903): - CVE-2022-1097: Fixed memory safety violations that could occur when PKCS#11 tokens are removed while in use. libfreebl3-3.68.3-150000.3.67.1.x86_64.rpm libfreebl3-32bit-3.68.3-150000.3.67.1.x86_64.rpm libfreebl3-hmac-3.68.3-150000.3.67.1.x86_64.rpm libfreebl3-hmac-32bit-3.68.3-150000.3.67.1.x86_64.rpm libsoftokn3-3.68.3-150000.3.67.1.x86_64.rpm libsoftokn3-32bit-3.68.3-150000.3.67.1.x86_64.rpm libsoftokn3-hmac-3.68.3-150000.3.67.1.x86_64.rpm libsoftokn3-hmac-32bit-3.68.3-150000.3.67.1.x86_64.rpm mozilla-nss-3.68.3-150000.3.67.1.src.rpm mozilla-nss-3.68.3-150000.3.67.1.x86_64.rpm mozilla-nss-32bit-3.68.3-150000.3.67.1.x86_64.rpm mozilla-nss-certs-3.68.3-150000.3.67.1.x86_64.rpm mozilla-nss-certs-32bit-3.68.3-150000.3.67.1.x86_64.rpm mozilla-nss-devel-3.68.3-150000.3.67.1.x86_64.rpm mozilla-nss-sysinit-3.68.3-150000.3.67.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.68.3-150000.3.67.1.x86_64.rpm mozilla-nss-tools-3.68.3-150000.3.67.1.x86_64.rpm libfreebl3-3.68.3-150000.3.67.1.s390x.rpm libfreebl3-hmac-3.68.3-150000.3.67.1.s390x.rpm libsoftokn3-3.68.3-150000.3.67.1.s390x.rpm libsoftokn3-hmac-3.68.3-150000.3.67.1.s390x.rpm mozilla-nss-3.68.3-150000.3.67.1.s390x.rpm mozilla-nss-certs-3.68.3-150000.3.67.1.s390x.rpm mozilla-nss-devel-3.68.3-150000.3.67.1.s390x.rpm mozilla-nss-sysinit-3.68.3-150000.3.67.1.s390x.rpm mozilla-nss-tools-3.68.3-150000.3.67.1.s390x.rpm libfreebl3-3.68.3-150000.3.67.1.ppc64le.rpm libfreebl3-hmac-3.68.3-150000.3.67.1.ppc64le.rpm libsoftokn3-3.68.3-150000.3.67.1.ppc64le.rpm libsoftokn3-hmac-3.68.3-150000.3.67.1.ppc64le.rpm mozilla-nss-3.68.3-150000.3.67.1.ppc64le.rpm mozilla-nss-certs-3.68.3-150000.3.67.1.ppc64le.rpm mozilla-nss-devel-3.68.3-150000.3.67.1.ppc64le.rpm mozilla-nss-sysinit-3.68.3-150000.3.67.1.ppc64le.rpm mozilla-nss-tools-3.68.3-150000.3.67.1.ppc64le.rpm libfreebl3-3.68.3-150000.3.67.1.aarch64.rpm libfreebl3-hmac-3.68.3-150000.3.67.1.aarch64.rpm libsoftokn3-3.68.3-150000.3.67.1.aarch64.rpm libsoftokn3-hmac-3.68.3-150000.3.67.1.aarch64.rpm mozilla-nss-3.68.3-150000.3.67.1.aarch64.rpm mozilla-nss-certs-3.68.3-150000.3.67.1.aarch64.rpm mozilla-nss-devel-3.68.3-150000.3.67.1.aarch64.rpm mozilla-nss-sysinit-3.68.3-150000.3.67.1.aarch64.rpm mozilla-nss-tools-3.68.3-150000.3.67.1.aarch64.rpm openSUSE-SLE-15.3-2022-1127 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.8.0 ESR (bsc#1197903): MFSA 2022-14 (bsc#1197903) * CVE-2022-1097: Fixed memory safety violations that could occur when PKCS#11 tokens are removed while in use * CVE-2022-28281: Fixed an out of bounds write due to unexpected WebAuthN Extensions * CVE-2022-1196: Fixed a use-after-free after VR Process destruction * CVE-2022-28282: Fixed a use-after-free in DocumentL10n::TranslateDocument * CVE-2022-28285: Fixed incorrect AliasSet used in JIT Codegen * CVE-2022-28286: Fixed that iframe contents could be rendered outside the border * CVE-2022-24713: Fixed a denial of service via complex regular expressions * CVE-2022-28289: Memory safety bugs fixed in Firefox 99 and Firefox ESR 91.8 The following non-security bugs were fixed: - Adjust rust dependency for SP3 and later. TW uses always the newest version of rust, but we don't, so we can't use the rust+cargo notation, which would need both < and >= requirements. (bsc#1197698) MozillaFirefox-91.8.0-150200.152.26.1.src.rpm MozillaFirefox-91.8.0-150200.152.26.1.x86_64.rpm MozillaFirefox-branding-upstream-91.8.0-150200.152.26.1.x86_64.rpm MozillaFirefox-devel-91.8.0-150200.152.26.1.x86_64.rpm MozillaFirefox-translations-common-91.8.0-150200.152.26.1.x86_64.rpm MozillaFirefox-translations-other-91.8.0-150200.152.26.1.x86_64.rpm MozillaFirefox-91.8.0-150200.152.26.1.s390x.rpm MozillaFirefox-branding-upstream-91.8.0-150200.152.26.1.s390x.rpm MozillaFirefox-devel-91.8.0-150200.152.26.1.s390x.rpm MozillaFirefox-translations-common-91.8.0-150200.152.26.1.s390x.rpm MozillaFirefox-translations-other-91.8.0-150200.152.26.1.s390x.rpm MozillaFirefox-91.8.0-150200.152.26.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.8.0-150200.152.26.1.ppc64le.rpm MozillaFirefox-devel-91.8.0-150200.152.26.1.ppc64le.rpm MozillaFirefox-translations-common-91.8.0-150200.152.26.1.ppc64le.rpm MozillaFirefox-translations-other-91.8.0-150200.152.26.1.ppc64le.rpm MozillaFirefox-91.8.0-150200.152.26.1.aarch64.rpm MozillaFirefox-branding-upstream-91.8.0-150200.152.26.1.aarch64.rpm MozillaFirefox-devel-91.8.0-150200.152.26.1.aarch64.rpm MozillaFirefox-translations-common-91.8.0-150200.152.26.1.aarch64.rpm MozillaFirefox-translations-other-91.8.0-150200.152.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-1706 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libgadu libgadu-1.12.2-150000.3.2.1.src.rpm libgadu-devel-1.12.2-150000.3.2.1.x86_64.rpm libgadu3-1.12.2-150000.3.2.1.x86_64.rpm libgadu-devel-1.12.2-150000.3.2.1.s390x.rpm libgadu3-1.12.2-150000.3.2.1.s390x.rpm libgadu-devel-1.12.2-150000.3.2.1.ppc64le.rpm libgadu3-1.12.2-150000.3.2.1.ppc64le.rpm libgadu-devel-1.12.2-150000.3.2.1.aarch64.rpm libgadu3-1.12.2-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1739 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libGLw motif libGLw-8.0.0-150000.3.6.1.src.rpm libGLw-devel-8.0.0-150000.3.6.1.x86_64.rpm libGLw1-32bit-8.0.0-150000.3.6.1.x86_64.rpm libGLw1-8.0.0-150000.3.6.1.x86_64.rpm libGLwM1-32bit-8.0.0-150000.3.6.1.x86_64.rpm libGLwM1-8.0.0-150000.3.6.1.x86_64.rpm libMrm4-2.3.4-150000.3.5.1.x86_64.rpm libMrm4-32bit-2.3.4-150000.3.5.1.x86_64.rpm libUil4-2.3.4-150000.3.5.1.x86_64.rpm libUil4-32bit-2.3.4-150000.3.5.1.x86_64.rpm libXm4-2.3.4-150000.3.5.1.x86_64.rpm libXm4-32bit-2.3.4-150000.3.5.1.x86_64.rpm motif-2.3.4-150000.3.5.1.src.rpm motif-2.3.4-150000.3.5.1.x86_64.rpm motif-devel-2.3.4-150000.3.5.1.x86_64.rpm motif-devel-32bit-2.3.4-150000.3.5.1.x86_64.rpm libGLw-devel-8.0.0-150000.3.6.1.s390x.rpm libGLw1-8.0.0-150000.3.6.1.s390x.rpm libGLwM1-8.0.0-150000.3.6.1.s390x.rpm libMrm4-2.3.4-150000.3.5.1.s390x.rpm libUil4-2.3.4-150000.3.5.1.s390x.rpm libXm4-2.3.4-150000.3.5.1.s390x.rpm motif-2.3.4-150000.3.5.1.s390x.rpm motif-devel-2.3.4-150000.3.5.1.s390x.rpm libGLw-devel-8.0.0-150000.3.6.1.ppc64le.rpm libGLw1-8.0.0-150000.3.6.1.ppc64le.rpm libGLwM1-8.0.0-150000.3.6.1.ppc64le.rpm libMrm4-2.3.4-150000.3.5.1.ppc64le.rpm libUil4-2.3.4-150000.3.5.1.ppc64le.rpm libXm4-2.3.4-150000.3.5.1.ppc64le.rpm motif-2.3.4-150000.3.5.1.ppc64le.rpm motif-devel-2.3.4-150000.3.5.1.ppc64le.rpm libGLw-devel-8.0.0-150000.3.6.1.aarch64.rpm libGLw1-8.0.0-150000.3.6.1.aarch64.rpm libGLwM1-8.0.0-150000.3.6.1.aarch64.rpm libMrm4-2.3.4-150000.3.5.1.aarch64.rpm libUil4-2.3.4-150000.3.5.1.aarch64.rpm libXm4-2.3.4-150000.3.5.1.aarch64.rpm motif-2.3.4-150000.3.5.1.aarch64.rpm motif-devel-2.3.4-150000.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-1553 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: gom gom-0.4-150200.3.2.1.src.rpm gom-devel-0.4-150200.3.2.1.x86_64.rpm libgom-1_0-0-0.4-150200.3.2.1.x86_64.rpm python3-gom-0.4-150200.3.2.1.x86_64.rpm typelib-1_0-Gom-1_0-0.4-150200.3.2.1.x86_64.rpm gom-devel-0.4-150200.3.2.1.s390x.rpm libgom-1_0-0-0.4-150200.3.2.1.s390x.rpm python3-gom-0.4-150200.3.2.1.s390x.rpm typelib-1_0-Gom-1_0-0.4-150200.3.2.1.s390x.rpm gom-devel-0.4-150200.3.2.1.ppc64le.rpm libgom-1_0-0-0.4-150200.3.2.1.ppc64le.rpm python3-gom-0.4-150200.3.2.1.ppc64le.rpm typelib-1_0-Gom-1_0-0.4-150200.3.2.1.ppc64le.rpm gom-devel-0.4-150200.3.2.1.aarch64.rpm libgom-1_0-0-0.4-150200.3.2.1.aarch64.rpm python3-gom-0.4-150200.3.2.1.aarch64.rpm typelib-1_0-Gom-1_0-0.4-150200.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1705 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libgrss libgrss-0.7.0-150000.5.2.1.src.rpm libgrss-devel-0.7.0-150000.5.2.1.x86_64.rpm libgrss0-0.7.0-150000.5.2.1.x86_64.rpm typelib-1_0-Grss-0_7-0.7.0-150000.5.2.1.x86_64.rpm libgrss-devel-0.7.0-150000.5.2.1.s390x.rpm libgrss0-0.7.0-150000.5.2.1.s390x.rpm typelib-1_0-Grss-0_7-0.7.0-150000.5.2.1.s390x.rpm libgrss-devel-0.7.0-150000.5.2.1.ppc64le.rpm libgrss0-0.7.0-150000.5.2.1.ppc64le.rpm typelib-1_0-Grss-0_7-0.7.0-150000.5.2.1.ppc64le.rpm libgrss-devel-0.7.0-150000.5.2.1.aarch64.rpm libgrss0-0.7.0-150000.5.2.1.aarch64.rpm typelib-1_0-Grss-0_7-0.7.0-150000.5.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1391 important SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Fix regression preventing bootstrapping new clients caused by redundant dependency on psutil (bsc#1197533) - Prevent data pollution between actions processed at the same time (bsc#1197637) - Fix salt-ssh opts poisoning. (bsc#1197637) - Clear network interfaces cache on grains request. (bsc#1196050) - Fix Salt-API failure due to an exception from the scheduled SSH-Push Tasks. (bsc#1182851, bsc#1196432) - Restrict "state.orchestrate_single" to pass a pillar value if it exists. (bsc#1194632) python3-salt-3002.2-150300.53.16.1.x86_64.rpm True salt-3002.2-150300.53.16.1.src.rpm True salt-3002.2-150300.53.16.1.x86_64.rpm True salt-api-3002.2-150300.53.16.1.x86_64.rpm True salt-bash-completion-3002.2-150300.53.16.1.noarch.rpm True salt-cloud-3002.2-150300.53.16.1.x86_64.rpm True salt-doc-3002.2-150300.53.16.1.x86_64.rpm True salt-fish-completion-3002.2-150300.53.16.1.noarch.rpm True salt-master-3002.2-150300.53.16.1.x86_64.rpm True salt-minion-3002.2-150300.53.16.1.x86_64.rpm True salt-proxy-3002.2-150300.53.16.1.x86_64.rpm True salt-ssh-3002.2-150300.53.16.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.16.1.x86_64.rpm True salt-syndic-3002.2-150300.53.16.1.x86_64.rpm True salt-transactional-update-3002.2-150300.53.16.1.x86_64.rpm True salt-zsh-completion-3002.2-150300.53.16.1.noarch.rpm True python3-salt-3002.2-150300.53.16.1.s390x.rpm True salt-3002.2-150300.53.16.1.s390x.rpm True salt-api-3002.2-150300.53.16.1.s390x.rpm True salt-cloud-3002.2-150300.53.16.1.s390x.rpm True salt-doc-3002.2-150300.53.16.1.s390x.rpm True salt-master-3002.2-150300.53.16.1.s390x.rpm True salt-minion-3002.2-150300.53.16.1.s390x.rpm True salt-proxy-3002.2-150300.53.16.1.s390x.rpm True salt-ssh-3002.2-150300.53.16.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.16.1.s390x.rpm True salt-syndic-3002.2-150300.53.16.1.s390x.rpm True salt-transactional-update-3002.2-150300.53.16.1.s390x.rpm True python3-salt-3002.2-150300.53.16.1.ppc64le.rpm True salt-3002.2-150300.53.16.1.ppc64le.rpm True salt-api-3002.2-150300.53.16.1.ppc64le.rpm True salt-cloud-3002.2-150300.53.16.1.ppc64le.rpm True salt-doc-3002.2-150300.53.16.1.ppc64le.rpm True salt-master-3002.2-150300.53.16.1.ppc64le.rpm True salt-minion-3002.2-150300.53.16.1.ppc64le.rpm True salt-proxy-3002.2-150300.53.16.1.ppc64le.rpm True salt-ssh-3002.2-150300.53.16.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.16.1.ppc64le.rpm True salt-syndic-3002.2-150300.53.16.1.ppc64le.rpm True salt-transactional-update-3002.2-150300.53.16.1.ppc64le.rpm True python3-salt-3002.2-150300.53.16.1.aarch64.rpm True salt-3002.2-150300.53.16.1.aarch64.rpm True salt-api-3002.2-150300.53.16.1.aarch64.rpm True salt-cloud-3002.2-150300.53.16.1.aarch64.rpm True salt-doc-3002.2-150300.53.16.1.aarch64.rpm True salt-master-3002.2-150300.53.16.1.aarch64.rpm True salt-minion-3002.2-150300.53.16.1.aarch64.rpm True salt-proxy-3002.2-150300.53.16.1.aarch64.rpm True salt-ssh-3002.2-150300.53.16.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.16.1.aarch64.rpm True salt-syndic-3002.2-150300.53.16.1.aarch64.rpm True salt-transactional-update-3002.2-150300.53.16.1.aarch64.rpm True openSUSE-SLE-15.3-2022-1302 moderate SUSE Updates openSUSE-SLE 15.3 This update for e2fsprogs fixes the following issues: - Add support for 'libreadline7' for Leap. (bsc#1196939) e2fsprogs-1.43.8-150000.4.29.1.src.rpm e2fsprogs-1.43.8-150000.4.29.1.x86_64.rpm e2fsprogs-devel-1.43.8-150000.4.29.1.x86_64.rpm libcom_err-devel-1.43.8-150000.4.29.1.x86_64.rpm libcom_err-devel-32bit-1.43.8-150000.4.29.1.x86_64.rpm libcom_err-devel-static-1.43.8-150000.4.29.1.x86_64.rpm libcom_err2-1.43.8-150000.4.29.1.x86_64.rpm libcom_err2-32bit-1.43.8-150000.4.29.1.x86_64.rpm libext2fs-devel-1.43.8-150000.4.29.1.x86_64.rpm libext2fs-devel-32bit-1.43.8-150000.4.29.1.x86_64.rpm libext2fs-devel-static-1.43.8-150000.4.29.1.x86_64.rpm libext2fs2-1.43.8-150000.4.29.1.x86_64.rpm libext2fs2-32bit-1.43.8-150000.4.29.1.x86_64.rpm e2fsprogs-1.43.8-150000.4.29.1.s390x.rpm e2fsprogs-devel-1.43.8-150000.4.29.1.s390x.rpm libcom_err-devel-1.43.8-150000.4.29.1.s390x.rpm libcom_err-devel-static-1.43.8-150000.4.29.1.s390x.rpm libcom_err2-1.43.8-150000.4.29.1.s390x.rpm libext2fs-devel-1.43.8-150000.4.29.1.s390x.rpm libext2fs-devel-static-1.43.8-150000.4.29.1.s390x.rpm libext2fs2-1.43.8-150000.4.29.1.s390x.rpm e2fsprogs-1.43.8-150000.4.29.1.ppc64le.rpm e2fsprogs-devel-1.43.8-150000.4.29.1.ppc64le.rpm libcom_err-devel-1.43.8-150000.4.29.1.ppc64le.rpm libcom_err-devel-static-1.43.8-150000.4.29.1.ppc64le.rpm libcom_err2-1.43.8-150000.4.29.1.ppc64le.rpm libext2fs-devel-1.43.8-150000.4.29.1.ppc64le.rpm libext2fs-devel-static-1.43.8-150000.4.29.1.ppc64le.rpm libext2fs2-1.43.8-150000.4.29.1.ppc64le.rpm e2fsprogs-1.43.8-150000.4.29.1.aarch64.rpm e2fsprogs-devel-1.43.8-150000.4.29.1.aarch64.rpm libcom_err-devel-1.43.8-150000.4.29.1.aarch64.rpm libcom_err-devel-static-1.43.8-150000.4.29.1.aarch64.rpm libcom_err2-1.43.8-150000.4.29.1.aarch64.rpm libext2fs-devel-1.43.8-150000.4.29.1.aarch64.rpm libext2fs-devel-static-1.43.8-150000.4.29.1.aarch64.rpm libext2fs2-1.43.8-150000.4.29.1.aarch64.rpm openSUSE-SLE-15.3-2022-1167 important SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: Update to version 1.17.8 (bsc#1190649): - CVE-2022-24921: Fixed a potential denial of service via large regular expressions (bsc#1196732). Non-security fixes: - Fixed an issue with v2 modules (go#51332). - Fixed an issue when building source in riscv64 (go#51199). - Increased compatibility for the DNS protocol in the net module (go#51162). - Fixed an issue with histograms in the runtime/metrics module (go#50734). - Fixed an issue when parsing x509 certificates (go#51000). go1.17-1.17.8-150000.1.25.1.i586.rpm go1.17-1.17.8-150000.1.25.1.src.rpm go1.17-doc-1.17.8-150000.1.25.1.i586.rpm go1.17-1.17.8-150000.1.25.1.x86_64.rpm go1.17-doc-1.17.8-150000.1.25.1.x86_64.rpm go1.17-race-1.17.8-150000.1.25.1.x86_64.rpm go1.17-1.17.8-150000.1.25.1.s390x.rpm go1.17-doc-1.17.8-150000.1.25.1.s390x.rpm go1.17-1.17.8-150000.1.25.1.ppc64le.rpm go1.17-doc-1.17.8-150000.1.25.1.ppc64le.rpm go1.17-1.17.8-150000.1.25.1.aarch64.rpm go1.17-doc-1.17.8-150000.1.25.1.aarch64.rpm go1.17-race-1.17.8-150000.1.25.1.aarch64.rpm openSUSE-SLE-15.3-2022-1164 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Update to version 1.16.15 (bsc#1182345): - CVE-2022-24921: Fixed a potential denial of service via large regular expressions (bsc#1196732). Non-security fixes: - Fixed an issue with v2 modules (go#51331). - Fixed an issue when building source in riscv64 (go#51198). - Increased compatibility for the DNS protocol in the net module (go#51161). - Fixed an issue with histograms in the runtime/metrics module (go#50733). go1.16-1.16.15-150000.1.46.1.src.rpm go1.16-1.16.15-150000.1.46.1.x86_64.rpm go1.16-doc-1.16.15-150000.1.46.1.x86_64.rpm go1.16-race-1.16.15-150000.1.46.1.x86_64.rpm go1.16-1.16.15-150000.1.46.1.s390x.rpm go1.16-doc-1.16.15-150000.1.46.1.s390x.rpm go1.16-1.16.15-150000.1.46.1.ppc64le.rpm go1.16-doc-1.16.15-150000.1.46.1.ppc64le.rpm go1.16-1.16.15-150000.1.46.1.aarch64.rpm go1.16-doc-1.16.15-150000.1.46.1.aarch64.rpm go1.16-race-1.16.15-150000.1.46.1.aarch64.rpm openSUSE-SLE-15.3-2022-1460 moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-agent, google-guest-configs, google-guest-oslogin, google-osconfig-agent fixes the following issues: - Update to version 20220204.00. (bsc#1195437, bsc#1195438) * remove han from owners (#154) * Remove extra slash from metadata URL. (#151) - from version 20220104.00 * List IPv6 routes (#150) - from version 20211228.00 * add add or remove route integration test, utils (#147) - from version 20211214.00 * add malformed ssh key unit test (#142) - Update to version 20220211.00. (bsc#1195437, bsc#1195438) * Set NVMe-PD IO timeout to 4294967295. (#32) - Update to version 20220205.00. (bsc#1195437, bsc#1195438) * Fix build for EL9. (#82) - from version 20211213.00 * Reauth error (#81) - Rename Source0 field to Source - Update URL in Source field to point to upstream tarball - Update to version 20220209.00 (bsc#1195437, bsc#1195438) * Update licences, remove deprecated centos-8 tests (#414) - Update to version 20220204.00 * Add DisableLocalLogging option (#413) - from version 20220107.00 * OS assignment example: Copy file from bucket google-guest-agent-20220204.00-150000.1.26.1.src.rpm google-guest-agent-20220204.00-150000.1.26.1.x86_64.rpm google-guest-configs-20220211.00-150000.1.19.1.noarch.rpm google-guest-configs-20220211.00-150000.1.19.1.src.rpm google-guest-oslogin-20220205.00-150000.1.27.1.src.rpm google-guest-oslogin-20220205.00-150000.1.27.1.x86_64.rpm google-osconfig-agent-20220209.00-150000.1.17.1.src.rpm google-osconfig-agent-20220209.00-150000.1.17.1.x86_64.rpm google-guest-agent-20220204.00-150000.1.26.1.s390x.rpm google-guest-oslogin-20220205.00-150000.1.27.1.s390x.rpm google-osconfig-agent-20220209.00-150000.1.17.1.s390x.rpm google-guest-agent-20220204.00-150000.1.26.1.ppc64le.rpm google-guest-oslogin-20220205.00-150000.1.27.1.ppc64le.rpm google-osconfig-agent-20220209.00-150000.1.17.1.ppc64le.rpm google-guest-agent-20220204.00-150000.1.26.1.aarch64.rpm google-guest-oslogin-20220205.00-150000.1.27.1.aarch64.rpm google-osconfig-agent-20220209.00-150000.1.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-1734 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: lpsolve liblpsolve55-0-5.5.2.0-150000.3.2.1.x86_64.rpm lpsolve-5.5.2.0-150000.3.2.1.src.rpm lpsolve-5.5.2.0-150000.3.2.1.x86_64.rpm lpsolve-devel-5.5.2.0-150000.3.2.1.x86_64.rpm liblpsolve55-0-5.5.2.0-150000.3.2.1.s390x.rpm lpsolve-5.5.2.0-150000.3.2.1.s390x.rpm lpsolve-devel-5.5.2.0-150000.3.2.1.s390x.rpm liblpsolve55-0-5.5.2.0-150000.3.2.1.ppc64le.rpm lpsolve-5.5.2.0-150000.3.2.1.ppc64le.rpm lpsolve-devel-5.5.2.0-150000.3.2.1.ppc64le.rpm liblpsolve55-0-5.5.2.0-150000.3.2.1.aarch64.rpm lpsolve-5.5.2.0-150000.3.2.1.aarch64.rpm lpsolve-devel-5.5.2.0-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1887 moderate SUSE Updates openSUSE-SLE 15.3 This update for grep fixes the following issues: - Make profiling deterministic. (bsc#1040589, SLE-24115) grep-3.1-150000.4.6.1.src.rpm grep-3.1-150000.4.6.1.x86_64.rpm grep-lang-3.1-150000.4.6.1.noarch.rpm grep-3.1-150000.4.6.1.s390x.rpm grep-3.1-150000.4.6.1.ppc64le.rpm grep-3.1-150000.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1663 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: meanwhile libmeanwhile1-1.0.2-150000.3.2.1.x86_64.rpm meanwhile-1.0.2-150000.3.2.1.src.rpm meanwhile-devel-1.0.2-150000.3.2.1.x86_64.rpm meanwhile-doc-1.0.2-150000.3.2.1.x86_64.rpm libmeanwhile1-1.0.2-150000.3.2.1.s390x.rpm meanwhile-devel-1.0.2-150000.3.2.1.s390x.rpm meanwhile-doc-1.0.2-150000.3.2.1.s390x.rpm libmeanwhile1-1.0.2-150000.3.2.1.ppc64le.rpm meanwhile-devel-1.0.2-150000.3.2.1.ppc64le.rpm meanwhile-doc-1.0.2-150000.3.2.1.ppc64le.rpm libmeanwhile1-1.0.2-150000.3.2.1.aarch64.rpm meanwhile-devel-1.0.2-150000.3.2.1.aarch64.rpm meanwhile-doc-1.0.2-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1256 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-28356: Fixed a refcount leak bug in net/llc/af_llc.c (bnc#1197391). - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution (bsc#1197227). - CVE-2022-28388: Fixed a double free in drivers/net/can/usb/usb_8dev.c vulnerability in the Linux kernel (bnc#1198032). - CVE-2022-28389: Fixed a double free in drivers/net/can/usb/mcba_usb.c vulnerability in the Linux kernel (bnc#1198033). - CVE-2022-28390: Fixed a double free in drivers/net/can/usb/ems_usb.c vulnerability in the Linux kernel (bnc#1198031). - CVE-2022-0812: Fixed an incorrect header size calculations in xprtrdma (bsc#1196639). - CVE-2022-1048: Fixed a race Condition in snd_pcm_hw_free leading to use-after-free due to the AB/BA lock with buffer_mutex and mmap_lock (bsc#1197331). - CVE-2022-0850: Fixed a kernel information leak vulnerability in iov_iter.c (bsc#1196761). - CVE-2022-26966: Fixed an issue in drivers/net/usb/sr9700.c, which allowed attackers to obtain sensitive information from the memory via crafted frame lengths from a USB device (bsc#1196836). - CVE-2021-45868: Fixed a wrong validation check in fs/quota/quota_tree.c which could lead to an use-after-free if there is a corrupted quota file (bnc#1197366). - CVE-2021-39713: Fixed a race condition in the network scheduling subsystem which could lead to a use-after-free (bsc#1196973). - CVE-2022-23036,CVE-2022-23037,CVE-2022-23038,CVE-2022-23039,CVE-2022-23040,CVE-2022-23041,CVE-2022-23042: Fixed multiple issues which could have lead to read/write access to memory pages or denial of service. These issues are related to the Xen PV device frontend drivers (bsc#1196488). - CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An attacker with adjacent NFC access could trigger crash the system or corrupt system memory (bsc#1196830). The following non-security bugs were fixed: - ax88179_178a: Fixed memory issues that could be triggered by malicious USB devices (bsc#1196018). - genirq: Use rcu in kstat_irqs_usr() (bsc#1193738). - gve/net: Fixed multiple bugfixes (jsc#SLE-23652). - net/mlx5e: Fix page DMA map/unmap attributes (bsc#1196468). - net: tipc: validate domain record count on input (bsc#1195254). - powerpc: Fixed issues related to slow I/O on PowerPC (bsc#1196433). kernel-debug-4.12.14-150100.197.111.1.nosrc.rpm True kernel-debug-base-4.12.14-150100.197.111.1.x86_64.rpm True kernel-default-4.12.14-150100.197.111.1.nosrc.rpm True kernel-kvmsmall-4.12.14-150100.197.111.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-150100.197.111.1.x86_64.rpm True kernel-vanilla-4.12.14-150100.197.111.1.nosrc.rpm True kernel-vanilla-4.12.14-150100.197.111.1.x86_64.rpm True kernel-vanilla-base-4.12.14-150100.197.111.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-150100.197.111.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.111.1.x86_64.rpm True kernel-default-man-4.12.14-150100.197.111.1.s390x.rpm True kernel-vanilla-4.12.14-150100.197.111.1.s390x.rpm True kernel-vanilla-base-4.12.14-150100.197.111.1.s390x.rpm True kernel-vanilla-devel-4.12.14-150100.197.111.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.111.1.s390x.rpm True kernel-zfcpdump-4.12.14-150100.197.111.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-150100.197.111.1.s390x.rpm True kernel-debug-base-4.12.14-150100.197.111.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.111.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-150100.197.111.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-150100.197.111.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.111.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.111.1.aarch64.rpm True kernel-vanilla-base-4.12.14-150100.197.111.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-150100.197.111.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.111.1.aarch64.rpm True openSUSE-SLE-15.3-2022-1742 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libmpeg2 libmpeg2-0-0.5.1-150000.3.2.1.x86_64.rpm libmpeg2-0-32bit-0.5.1-150000.3.2.1.x86_64.rpm libmpeg2-0.5.1-150000.3.2.1.src.rpm libmpeg2-devel-0.5.1-150000.3.2.1.x86_64.rpm libmpeg2convert0-0.5.1-150000.3.2.1.x86_64.rpm mpeg2dec-0.5.1-150000.3.2.1.x86_64.rpm libmpeg2-0-0.5.1-150000.3.2.1.s390x.rpm libmpeg2-devel-0.5.1-150000.3.2.1.s390x.rpm libmpeg2convert0-0.5.1-150000.3.2.1.s390x.rpm mpeg2dec-0.5.1-150000.3.2.1.s390x.rpm libmpeg2-0-0.5.1-150000.3.2.1.ppc64le.rpm libmpeg2-devel-0.5.1-150000.3.2.1.ppc64le.rpm libmpeg2convert0-0.5.1-150000.3.2.1.ppc64le.rpm mpeg2dec-0.5.1-150000.3.2.1.ppc64le.rpm libmpeg2-0-0.5.1-150000.3.2.1.aarch64.rpm libmpeg2-devel-0.5.1-150000.3.2.1.aarch64.rpm libmpeg2convert0-0.5.1-150000.3.2.1.aarch64.rpm mpeg2dec-0.5.1-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1253 moderate SUSE Updates openSUSE-SLE 15.3 This update for helm delivers helm 3.8.0 to the Containers module. helm-3.8.0-150000.1.3.1.src.rpm helm-3.8.0-150000.1.3.1.x86_64.rpm helm-bash-completion-3.8.0-150000.1.3.1.noarch.rpm helm-zsh-completion-3.8.0-150000.1.3.1.noarch.rpm helm-3.8.0-150000.1.3.1.s390x.rpm helm-3.8.0-150000.1.3.1.ppc64le.rpm helm-3.8.0-150000.1.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1183 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-0854: Fixed a memory leak flaw was found in the Linux kernels DMA subsystem. This flaw allowed a local user to read random memory from the kernel space. (bnc#1196823) - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197227) - CVE-2022-28390: Fixed a double free in drivers/net/can/usb/ems_usb.c vulnerability in the Linux kernel. (bnc#1198031) - CVE-2022-28388: Fixed a double free in drivers/net/can/usb/usb_8dev.c vulnerability in the Linux kernel. (bnc#1198032) - CVE-2022-28389: Fixed a double free in drivers/net/can/usb/mcba_usb.c vulnerability in the Linux kernel. (bnc#1198033) - CVE-2022-1055: Fixed a use-after-free in tc_new_tfilter that could allow a local attacker to gain privilege escalation. (bnc#1197702) - CVE-2022-1048: Fixed a race Condition in snd_pcm_hw_free leading to use-after-free due to the AB/BA lock with buffer_mutex and mmap_lock. (bsc#1197331) - CVE-2021-45868: Fixed a wrong validation check in fs/quota/quota_tree.c which could lead to an use-after-free if there is a corrupted quota file. (bnc#1197366) - CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation. (bnc#1197462) - CVE-2022-0850: Fixed a kernel information leak vulnerability in iov_iter.c. (bsc#1196761) - CVE-2022-1199: Fixed null-ptr-deref and use-after-free vulnerabilities that allow an attacker to crash the linux kernel by simulating Amateur Radio. (bsc#1198028) - CVE-2022-1205: Fixed null pointer dereference and use-after-free vulnerabilities that allow an attacker to crash the linux kernel by simulating Amateur Radio. (bsc#1198027) - CVE-2022-1198: Fixed an use-after-free vulnerability that allow an attacker to crash the linux kernel by simulating Amateur Radio (bsc#1198030). - CVE-2022-1195: Fixed an use-after-free vulnerability which could allow a local attacker with a user privilege to execute a denial of service. (bsc#1198029) - CVE-2022-1011: Fixed an use-after-free vulnerability which could allow a local attacker to retireve (partial) /etc/shadow hashes or any other data from filesystem when he can mount a FUSE filesystems. (bnc#1197343) The following non-security bugs were fixed: - ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board (git-fixes). - ACPI: APEI: fix return value of __setup handlers (git-fixes). - ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3 (git-fixes). - ACPI: CPPC: Avoid out of bounds access when parsing _CPC data (git-fixes). - ACPI: docs: enumeration: Discourage to use custom _DSM methods (git-fixes). - ACPI: docs: enumeration: Remove redundant .owner assignment (git-fixes). - ACPI: docs: enumeration: Update UART serial bus resource documentation (git-fixes). - ACPI: properties: Consistently return -ENOENT if there are no more references (git-fixes). - ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU (git-fixes). - ALSA: cmipci: Restore aux vol on suspend/resume (git-fixes). - ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GA402 (git-fixes). - ALSA: oss: Fix PCM OSS buffer allocation overflow (git-fixes). - ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec (git-fixes). - ALSA: pcm: Add stream lock during PCM reset ioctl operations (git-fixes). - ALSA: spi: Add check for clk_enable() (git-fixes). - ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB (git-fixes). - ASoC: atmel_ssc_dai: Handle errors for clk_enable (git-fixes). - ASoC: atmel: Add missing of_node_put() in at91sam9g20ek_audio_probe (git-fixes). - ASoC: codecs: wcd934x: Add missing of_node_put() in wcd934x_codec_parse_data (git-fixes). - ASoC: codecs: wcd934x: fix return value of wcd934x_rx_hph_mode_put (git-fixes). - ASoC: dmaengine: do not use a NULL prepare_slave_config() callback (git-fixes). - ASoC: dwc-i2s: Handle errors for clk_enable (git-fixes). - ASoC: fsi: Add check for clk_enable (git-fixes). - ASoC: fsl_spdif: Disable TX clock when stop (git-fixes). - ASoC: imx-es8328: Fix error return code in imx_es8328_probe() (git-fixes). - ASoC: msm8916-wcd-analog: Fix error handling in pm8916_wcd_analog_spmi_probe (git-fixes). - ASoC: msm8916-wcd-digital: Fix missing clk_disable_unprepare() in msm8916_wcd_digital_probe (git-fixes). - ASoC: mxs-saif: Handle errors for clk_enable (git-fixes). - ASoC: mxs: Fix error handling in mxs_sgtl5000_probe (git-fixes). - ASoC: rt5663: check the return value of devm_kzalloc() in rt5663_parse_dp() (git-fixes). - ASoC: SOF: Add missing of_node_put() in imx8m_probe (git-fixes). - ASoC: SOF: topology: remove redundant code (git-fixes). - ASoC: sti: Fix deadlock via snd_pcm_stop_xrun() call (git-fixes). - ASoC: ti: davinci-i2s: Add check for clk_enable() (git-fixes). - ASoC: topology: Allow TLV control to be either read or write (git-fixes). - ASoC: topology: Optimize soc_tplg_dapm_graph_elems_load behavior (git-fixes). - ASoC: wm8350: Handle error for wm8350_register_irq (git-fixes). - ASoC: xilinx: xlnx_formatter_pcm: Handle sysclk setting (git-fixes). - ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (bsc#1196018). - block: update io_ticks when io hang (bsc#1197817). - block/wbt: fix negative inflight counter when remove scsi device (bsc#1197819). - bpf: Fix comment for helper bpf_current_task_under_cgroup() (git-fixes). - bpf: Remove config check to enable bpf support for branch records (git-fixes bsc#1177028). - btrfs: avoid unnecessary lock and leaf splits when updating inode in the log (bsc#1194649). - btrfs: avoid unnecessary log mutex contention when syncing log (bsc#1194649). - btrfs: avoid unnecessary logging of xattrs during fast fsyncs (bsc#1194649). - btrfs: check error value from btrfs_update_inode in tree log (bsc#1194649). - btrfs: check if a log root exists before locking the log_mutex on unlink (bsc#1194649). - btrfs: check if a log tree exists at inode_logged() (bsc#1194649). - btrfs: do not commit delayed inode when logging a file in full sync mode (bsc#1194649). - btrfs: do not log new dentries when logging that a new name exists (bsc#1194649). - btrfs: eliminate some false positives when checking if inode was logged (bsc#1194649). - btrfs: fix race leading to unnecessary transaction commit when logging inode (bsc#1194649). - btrfs: fix race that causes unnecessary logging of ancestor inodes (bsc#1194649). - btrfs: fix race that makes inode logging fallback to transaction commit (bsc#1194649). - btrfs: fix race that results in logging old extents during a fast fsync (bsc#1194649). - btrfs: fixup error handling in fixup_inode_link_counts (bsc#1194649). - btrfs: remove no longer needed full sync flag check at inode_logged() (bsc#1194649). - btrfs: Remove unnecessary check from join_running_log_trans (bsc#1194649). - btrfs: remove unnecessary directory inode item update when deleting dir entry (bsc#1194649). - btrfs: remove unnecessary list head initialization when syncing log (bsc#1194649). - btrfs: skip unnecessary searches for xattrs when logging an inode (bsc#1194649). - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path (git-fixes). - can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error path (git-fixes). - can: mcba_usb: properly check endpoint type (git-fixes). - can: rcar_canfd: rcar_canfd_channel_probe(): register the CAN device when fully ready (git-fixes). - cifs: use the correct max-length for dentry_path_raw() (bsc1196196). - clk: actions: Terminate clk_div_table with sentinel element (git-fixes). - clk: bcm2835: Remove unused variable (git-fixes). - clk: clps711x: Terminate clk_div_table with sentinel element (git-fixes). - clk: imx7d: Remove audio_mclk_root_clk (git-fixes). - clk: Initialize orphan req_rate (git-fixes). - clk: loongson1: Terminate clk_div_table with sentinel element (git-fixes). - clk: nxp: Remove unused variable (git-fixes). - clk: qcom: clk-rcg2: Update logic to calculate D value for RCG (git-fixes). - clk: qcom: clk-rcg2: Update the frac table for pixel clock (git-fixes). - clk: qcom: gcc-msm8994: Fix gpll4 width (git-fixes). - clk: qcom: ipq8074: Use floor ops for SDCC1 clock (git-fixes). - clk: tegra: tegra124-emc: Fix missing put_device() call in emc_ensure_emc_driver (git-fixes). - clk: uniphier: Fix fixed-rate initialization (git-fixes). - clocksource: acpi_pm: fix return value of __setup handler (git-fixes). - clocksource/drivers/timer-of: Check return value of of_iomap in timer_of_base_init() (git-fixes). - cpufreq: schedutil: Destroy mutex before kobject_put() frees (git-fixes) - crypto: authenc - Fix sleep in atomic context in decrypt_tail (git-fixes). - crypto: cavium/nitrox - do not cast parameter in bit operations (git-fixes). - crypto: ccp - ccp_dmaengine_unregister release dma channels (git-fixes). - crypto: ccree - do not attempt 0 len DMA mappings (git-fixes). - crypto: mxs-dcp - Fix scatterlist processing (git-fixes). - crypto: qat - do not cast parameter in bit operations (git-fixes). - crypto: rsa-pkcs1pad - correctly get hash from source scatterlist (git-fixes). - crypto: rsa-pkcs1pad - fix buffer overread in pkcs1pad_verify_complete() (git-fixes). - crypto: rsa-pkcs1pad - restore signature length check (git-fixes). - crypto: vmx - add missing dependencies (git-fixes). - dma/pool: create dma atomic pool only if dma zone has managed pages (bsc#1197501). - driver core: dd: fix return value of __setup handler (git-fixes). - drm: add a locked version of drm_is_current_master (bsc#1197914). - drm: bridge: adv7511: Fix ADV7535 HPD enablement (git-fixes). - drm: drm_file struct kABI compatibility workaround (bsc#1197914). - drm: protect drm_master pointers in drm_lease.c (bsc#1197914). - drm: serialize drm_file.master with a new spinlock (bsc#1197914). - drm: use the lookup lock in drm_is_current_master (bsc#1197914). - drm/amd/display: Add affected crtcs to atomic state for dsc mst unplug (git-fixes). - drm/amd/pm: return -ENOTSUPP if there is no get_dpm_ultimate_freq function (git-fixes). - drm/bridge: dw-hdmi: use safe format when first in bridge chain (git-fixes). - drm/bridge: nwl-dsi: Fix PM disable depth imbalance in nwl_dsi_probe (git-fixes). - drm/doc: overview before functions for drm_writeback.c (git-fixes). - drm/i915: Fix dbuf slice config lookup (git-fixes). - drm/i915/gem: add missing boundary check in vm_access (git-fixes). - drm/imx: parallel-display: Remove bus flags check in imx_pd_bridge_atomic_check() (git-fixes). - drm/meson: Fix error handling when afbcd.ops->init fails (git-fixes). - drm/meson: osd_afbcd: Add an exit callback to struct meson_afbcd_ops (git-fixes). - drm/msm/dpu: add DSPP blocks teardown (git-fixes). - drm/nouveau/acr: Fix undefined behavior in nvkm_acr_hsfw_load_bl() (git-fixes). - drm/panel: simple: Fix Innolux G070Y2-L01 BPP settings (git-fixes). - drm/vc4: crtc: Fix runtime_pm reference counting (git-fixes). - drm/vc4: crtc: Make sure the HDMI controller is powered when disabling (git-fixes). - drm/vrr: Set VRR capable prop only if it is attached to connector (git-fixes). - ecryptfs: fix kernel panic with null dev_name (bsc#1197812). - ecryptfs: Fix typo in message (bsc#1197811). - ext2: correct max file size computing (bsc#1197820). - firmware: google: Properly state IOMEM dependency (git-fixes). - firmware: qcom: scm: Remove reassignment to desc following initializer (git-fixes). - fscrypt: do not ignore minor_hash when hash is 0 (bsc#1197815). - HID: multitouch: fix Dell Precision 7550 and 7750 button type (bsc#1197243). - hwmon: (pmbus) Add mutex to regulator ops (git-fixes). - hwmon: (pmbus) Add Vin unit off handling (git-fixes). - hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING (git-fixes). - hwrng: atmel - disable trng on failure path (git-fixes). - i915_vma: Rename vma_lookup to i915_vma_lookup (git-fixes). - ibmvnic: fix race between xmit and reset (bsc#1197302 ltc#197259). - iio: accel: mma8452: use the correct logic to get mma8452_data (git-fixes). - iio: adc: Add check for devm_request_threaded_irq (git-fixes). - iio: afe: rescale: use s64 for temporary scale calculations (git-fixes). - iio: inkern: apply consumer scale on IIO_VAL_INT cases (git-fixes). - iio: inkern: apply consumer scale when no channel scale is available (git-fixes). - iio: inkern: make a best effort on offset calculation (git-fixes). - Input: aiptek - properly check endpoint type (git-fixes). - iwlwifi: do not advertise TWT support (git-fixes). - KVM: SVM: Do not flush cache if hardware enforces cache coherency across encryption domains (bsc#1178134). - llc: fix netdevice reference leaks in llc_ui_bind() (git-fixes). - mac80211: fix potential double free on mesh join (git-fixes). - mac80211: refuse aggregations sessions before authorized (git-fixes). - media: aspeed: Correct value for h-total-pixels (git-fixes). - media: bttv: fix WARNING regression on tunerless devices (git-fixes). - media: coda: Fix missing put_device() call in coda_get_vdoa_data (git-fixes). - media: davinci: vpif: fix unbalanced runtime PM get (git-fixes). - media: em28xx: initialize refcount before kref_get (git-fixes). - media: hantro: Fix overfill bottom register field name (git-fixes). - media: Revert "media: em28xx: add missing em28xx_close_extension" (git-fixes). - media: stk1160: If start stream fails, return buffers with VB2_BUF_STATE_QUEUED (git-fixes). - media: usb: go7007: s2250-board: fix leak in probe() (git-fixes). - media: video/hdmi: handle short reads of hdmi info frame (git-fixes). - membarrier: Execute SYNC_CORE on the calling thread (git-fixes) - membarrier: Explicitly sync remote cores when SYNC_CORE is (git-fixes) - memory: emif: Add check for setup_interrupts (git-fixes). - memory: emif: check the pointer temp in get_device_details() (git-fixes). - misc: alcor_pci: Fix an error handling path (git-fixes). - misc: sgi-gru: Do not cast parameter in bit operations (git-fixes). - mm_zone: add function to check if managed dma zone exists (bsc#1197501). - mm: add vma_lookup(), update find_vma_intersection() comments (git-fixes). - mm/page_alloc.c: do not warn allocation failure on zone DMA if no managed pages (bsc#1197501). - mmc: davinci_mmc: Handle error for clk_enable (git-fixes). - net: dsa: mv88e6xxx: override existent unicast portvec in port_fdb_add (git-fixes). - net: enetc: initialize the RFS and RSS memories (git-fixes). - net: hns3: add a check for tqp_index in hclge_get_ring_chain_from_mbx() (git-fixes). - net: phy: broadcom: Fix brcm_fet_config_init() (git-fixes). - net: phy: marvell: Fix invalid comparison in the resume and suspend functions (git-fixes). - net: stmmac: set TxQ mode back to DCB after disabling CBS (git-fixes). - net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (bsc#1196018). - net: watchdog: hold device global xmit lock during tx disable (git-fixes). - net/smc: Fix loop in smc_listen (git-fixes). - net/smc: fix using of uninitialized completions (git-fixes). - net/smc: fix wrong list_del in smc_lgr_cleanup_early (git-fixes). - net/smc: Make sure the link_id is unique (git-fixes). - net/smc: Reset conn->lgr when link group registration fails (git-fixes). - netfilter: conntrack: do not refresh sctp entries in closed state (bsc#1197389). - netxen_nic: fix MSI/MSI-x interrupts (git-fixes). - NFS: Avoid duplicate uncached readdir calls on eof (git-fixes). - NFS: Do not report writeback errors in nfs_getattr() (git-fixes). - NFS: Do not skip directory entries when doing uncached readdir (git-fixes). - NFS: Ensure the server had an up to date ctime before hardlinking (git-fixes). - NFS: Fix initialisation of nfs_client cl_flags field (git-fixes). - NFS: LOOKUP_DIRECTORY is also ok with symlinks (git-fixes). - NFS: Return valid errors from nfs2/3_decode_dirent() (git-fixes). - NFS: Use of mapping_set_error() results in spurious errors (git-fixes). - NFS: nfsd4_setclientid_confirm mistakenly expires confirmed client (git-fixes). - NFS: do not retry BIND_CONN_TO_SESSION on session error (git-fixes). - NFS: Fix another issue with a list iterator pointing to the head (git-fixes). - nl80211: Update bss channel on channel switch for P2P_CLIENT (git-fixes). - pinctrl: mediatek: Fix missing of_node_put() in mtk_pctrl_init (git-fixes). - pinctrl: mediatek: paris: Fix "argument" argument type for mtk_pinconf_get() (git-fixes). - pinctrl: mediatek: paris: Fix pingroup pin config state readback (git-fixes). - pinctrl: nomadik: Add missing of_node_put() in nmk_pinctrl_probe (git-fixes). - pinctrl: nuvoton: npcm7xx: Rename DS() macro to DSTR() (git-fixes). - pinctrl: nuvoton: npcm7xx: Use %zu printk format for ARRAY_SIZE() (git-fixes). - pinctrl: pinconf-generic: Print arguments for bias-pull-* (git-fixes). - pinctrl: samsung: drop pin banks references on error paths (git-fixes). - pinctrl/rockchip: Add missing of_node_put() in rockchip_pinctrl_probe (git-fixes). - PM: hibernate: fix __setup handler error handling (git-fixes). - PM: suspend: fix return value of __setup handler (git-fixes). - powerpc/lib/sstep: Fix 'sthcx' instruction (bsc#1156395). - powerpc/mm: Fix verification of MMU_FTR_TYPE_44x (bsc#1156395). - powerpc/mm/numa: skip NUMA_NO_NODE onlining in parse_numa_properties() (bsc#1179639 ltc#189002 git-fixes). - powerpc/perf: Do not use perf_hw_context for trace IMC PMU (bsc#1156395). - powerpc/pseries: Fix use after free in remove_phb_dynamic() (bsc#1065729). - powerpc/sysdev: fix incorrect use to determine if list is empty (bsc#1065729). - powerpc/tm: Fix more userspace r13 corruption (bsc#1065729). - powerpc/xive: fix return value of __setup handler (bsc#1065729). - printk: Add panic_in_progress helper (bsc#1197894). - printk: disable optimistic spin during panic (bsc#1197894). - pwm: lpc18xx-sct: Initialize driver data and hardware before pwmchip_add() (git-fixes). - regulator: qcom_smd: fix for_each_child.cocci warnings (git-fixes). - remoteproc: qcom_wcnss: Add missing of_node_put() in wcnss_alloc_memory_region (git-fixes). - remoteproc: qcom: Fix missing of_node_put in adsp_alloc_memory_region (git-fixes). - s390/bpf: Perform r1 range checking before accessing jit->seen_reg (git-fixes). - s390/gmap: do not unconditionally call pte_unmap_unlock() in __gmap_zap() (git-fixes). - s390/gmap: validate VMA in __gmap_zap() (git-fixes). - s390/hypfs: include z/VM guests with access control group set (bsc#1195640 LTC#196352). - s390/kexec_file: fix error handling when applying relocations (git-fixes). - s390/kexec: fix memory leak of ipl report buffer (git-fixes). - s390/kexec: fix return code handling (git-fixes). - s390/mm: fix VMA and page table handling code in storage key handling functions (git-fixes). - s390/mm: validate VMA in PGSTE manipulation functions (git-fixes). - s390/module: fix loading modules with a lot of relocations (git-fixes). - s390/pci_mmio: fully validate the VMA before calling follow_pte() (git-fixes). - scsi: lpfc: Copyright updates for 14.2.0.0 patches (bsc#1197675). - scsi: lpfc: Drop lpfc_no_handler() (bsc#1197675). - scsi: lpfc: Fix broken SLI4 abort path (bsc#1197675). - scsi: lpfc: Fix locking for lpfc_sli_iocbq_lookup() (bsc#1197675). - scsi: lpfc: Fix queue failures when recovering from PCI parity error (bsc#1197675 bsc#1196478). - scsi: lpfc: Fix typos in comments (bsc#1197675). - scsi: lpfc: Fix unload hang after back to back PCI EEH faults (bsc#1197675 bsc#1196478). - scsi: lpfc: Improve PCI EEH Error and Recovery Handling (bsc#1197675 bsc#1196478). - scsi: lpfc: Kill lpfc_bus_reset_handler() (bsc#1197675). - scsi: lpfc: Reduce log messages seen after firmware download (bsc#1197675). - scsi: lpfc: Remove failing soft_wwn support (bsc#1197675). - scsi: lpfc: Remove NVMe support if kernel has NVME_FC disabled (bsc#1197675). - scsi: lpfc: Remove redundant flush_workqueue() call (bsc#1197675). - scsi: lpfc: SLI path split: Introduce lpfc_prep_wqe (bsc#1197675). - scsi: lpfc: SLI path split: Refactor Abort paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor base ELS paths and the FLOGI path (bsc#1197675). - scsi: lpfc: SLI path split: Refactor BSG paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor CT paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor fast and slow paths to native SLI4 (bsc#1197675). - scsi: lpfc: SLI path split: Refactor FDISC paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor lpfc_iocbq (bsc#1197675). - scsi: lpfc: SLI path split: Refactor LS_ACC paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor LS_RJT paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor misc ELS paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor PLOGI/PRLI/ADISC/LOGO paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor SCSI paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor the RSCN/SCR/RDF/EDC/FARPR paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor VMID paths (bsc#1197675). - scsi: lpfc: Update lpfc version to 14.2.0.0 (bsc#1197675). - scsi: lpfc: Update lpfc version to 14.2.0.1 (bsc#1197675). - scsi: lpfc: Use fc_block_rport() (bsc#1197675). - scsi: lpfc: Use kcalloc() (bsc#1197675). - scsi: lpfc: Use rport as argument for lpfc_chk_tgt_mapped() (bsc#1197675). - scsi: lpfc: Use rport as argument for lpfc_send_taskmgmt() (bsc#1197675). - scsi: qla2xxx: Fix crash during module load unload test (bsc#1197661). - scsi: qla2xxx: Fix disk failure to rediscover (bsc#1197661). - scsi: qla2xxx: Fix hang due to session stuck (bsc#1197661). - scsi: qla2xxx: Fix incorrect reporting of task management failure (bsc#1197661). - scsi: qla2xxx: Fix laggy FC remote port session recovery (bsc#1197661). - scsi: qla2xxx: Fix loss of NVMe namespaces after driver reload test (bsc#1197661). - scsi: qla2xxx: Fix missed DMA unmap for NVMe ls requests (bsc#1197661). - scsi: qla2xxx: Fix N2N inconsistent PLOGI (bsc#1197661). - scsi: qla2xxx: Fix stuck session of PRLI reject (bsc#1197661). - scsi: qla2xxx: Fix typos in comments (bsc#1197661). - scsi: qla2xxx: Increase max limit of ql2xnvme_queues (bsc#1197661). - scsi: qla2xxx: Reduce false trigger to login (bsc#1197661). - scsi: qla2xxx: Stop using the SCSI pointer (bsc#1197661). - scsi: qla2xxx: Update version to 10.02.07.400-k (bsc#1197661). - scsi: qla2xxx: Use correct feature type field during RFF_ID processing (bsc#1197661). - scsi: qla2xxx: Use named initializers for port_state_str (bsc#1197661). - scsi: qla2xxx: Use named initializers for q_dev_state (bsc#1197661). - serial: 8250_lpss: Balance reference count for PCI DMA device (git-fixes). - serial: 8250_mid: Balance reference count for PCI DMA device (git-fixes). - serial: 8250: Fix race condition in RTS-after-send handling (git-fixes). - serial: core: Fix the definition name in the comment of UPF_* flags (git-fixes). - soc: qcom: aoss: remove spurious IRQF_ONESHOT flags (git-fixes). - soc: qcom: rpmpd: Check for null return of devm_kcalloc (git-fixes). - soc: ti: wkup_m3_ipc: Fix IRQ check in wkup_m3_ipc_probe (git-fixes). - soundwire: intel: fix wrong register name in intel_shim_wake (git-fixes). - spi: pxa2xx-pci: Balance reference count for PCI DMA device (git-fixes). - spi: tegra114: Add missing IRQ check in tegra_spi_probe (git-fixes). - staging:iio:adc:ad7280a: Fix handing of device address bit reversing (git-fixes). - tcp: add some entropy in __inet_hash_connect() (bsc#1180153). - tcp: change source port randomizarion at connect() time (bsc#1180153). - thermal: int340x: Check for NULL after calling kmemdup() (git-fixes). - thermal: int340x: Increase bitmap size (git-fixes). - udp_tunnel: Fix end of loop test in udp_tunnel_nic_unregister() (git-fixes). - Update config files (bsc#1195926 bsc#1175667). VIRTIO_PCI=m -> VIRTIO_PCI=y - usb: bdc: Adb shows offline after resuming from S2 (git-fixes). - usb: bdc: Fix a resource leak in the error handling path of 'bdc_probe()' (git-fixes). - usb: bdc: Fix unused assignment in bdc_probe() (git-fixes). - usb: bdc: remove duplicated error message (git-fixes). - usb: bdc: Use devm_clk_get_optional() (git-fixes). - usb: bdc: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: gadget: Use list_replace_init() before traversing lists (git-fixes). - usb: dwc3: qcom: add IRQ check (git-fixes). - usb: gadget: bdc: use readl_poll_timeout() to simplify code (git-fixes). - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver (git-fixes). - usb: gadget: rndis: prevent integer overflow in rndis_set_response() (git-fixes). - usb: usbtmc: Fix bug in pipe direction for control transfers (git-fixes). - VFS: filename_create(): fix incorrect intent (bsc#1197534). - video: fbdev: atmel_lcdfb: fix an error code in atmel_lcdfb_probe() (git-fixes). - video: fbdev: controlfb: Fix COMPILE_TEST build (git-fixes). - video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name() (git-fixes). - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to avoid black screen (git-fixes). - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to avoid black screen (git-fixes). - video: fbdev: omapfb: Add missing of_node_put() in dvic_probe_of (git-fixes). - video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe() (git-fixes). - VMCI: Fix the description of vmci_check_host_caps() (git-fixes). - vsprintf: Fix %pK with kptr_restrict == 0 (bsc#1197889). - wireguard: queueing: use CFI-safe ptr_ring cleanup function (git-fixes). - wireguard: selftests: rename DEBUG_PI_LIST to DEBUG_PLIST (git-fixes). - wireguard: socket: free skb in send6 when ipv6 is disabled (git-fixes). - wireguard: socket: ignore v6 endpoints when ipv6 is disabled (git-fixes). - x86/cpu: Add hardware-enforced cache coherency as a CPUID feature (bsc#1178134). - x86/mm/pat: Do not flush cache if hardware enforces cache coherency across encryption domnains (bsc#1178134). - x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF + SMT (bsc#1178134). - x86/speculation: Warn about Spectre v2 LFENCE mitigation (bsc#1178134). - xhci: fix garbage USBSTS being logged in some cases (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.63.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.63.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.63.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.63.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.63.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.63.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.63.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.63.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.63.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.63.1.x86_64.rpm True kernel-default-5.3.18-150300.59.63.1.nosrc.rpm True kernel-default-5.3.18-150300.59.63.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.63.1.150300.18.39.1.src.rpm True kernel-default-base-5.3.18-150300.59.63.1.150300.18.39.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.63.1.150300.18.39.1.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.63.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.63.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.63.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.63.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.63.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.63.1.noarch.rpm True kernel-docs-5.3.18-150300.59.63.1.noarch.rpm True kernel-docs-5.3.18-150300.59.63.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.63.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.63.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.63.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.63.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.63.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.63.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.63.1.src.rpm True kernel-obs-build-5.3.18-150300.59.63.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.63.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.63.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.63.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.63.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.63.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.63.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.63.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.63.1.x86_64.rpm True kernel-source-5.3.18-150300.59.63.1.noarch.rpm True kernel-source-5.3.18-150300.59.63.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.63.1.noarch.rpm True kernel-syms-5.3.18-150300.59.63.1.src.rpm True kernel-syms-5.3.18-150300.59.63.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.63.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.63.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.63.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.63.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.63.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.63.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.63.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.63.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.63.1.s390x.rpm True kernel-default-5.3.18-150300.59.63.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.63.1.150300.18.39.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.63.1.150300.18.39.1.s390x.rpm True kernel-default-devel-5.3.18-150300.59.63.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.63.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.63.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.63.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.63.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.63.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.63.1.s390x.rpm True kernel-syms-5.3.18-150300.59.63.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.63.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.63.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.63.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.63.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.63.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.63.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.63.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.63.1.150300.18.39.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.63.1.150300.18.39.1.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.63.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.63.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.63.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.63.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.63.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.63.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.63.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.63.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.63.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.63.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.63.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.63.1.src.rpm True dtb-al-5.3.18-150300.59.63.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.63.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.63.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.63.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.63.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.63.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.63.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.63.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.63.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.63.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.63.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.63.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.63.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.63.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.63.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.63.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.63.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.63.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.63.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.63.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.63.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.63.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.63.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.63.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.63.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.63.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.63.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.63.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.63.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.63.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.63.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.63.1.aarch64.rpm True kernel-default-5.3.18-150300.59.63.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.63.1.150300.18.39.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.63.1.150300.18.39.1.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.63.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.63.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.63.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.63.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.63.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.63.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.63.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.63.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.63.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.63.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.63.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.63.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.63.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.63.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.63.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.63.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.63.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.63.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.63.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.63.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.63.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.63.1.aarch64.rpm True openSUSE-SLE-15.3-2022-1524 moderate SUSE Updates openSUSE-SLE 15.3 This update for apache2-mod_auth_mellon fixes the following issues: - CVE-2021-3639: Fixed open Redirect vulnerability in logout URLs (bsc#1188926) apache2-mod_auth_mellon-0.17.0-150200.5.7.1.src.rpm apache2-mod_auth_mellon-0.17.0-150200.5.7.1.x86_64.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-150200.5.7.1.x86_64.rpm apache2-mod_auth_mellon-doc-0.17.0-150200.5.7.1.x86_64.rpm apache2-mod_auth_mellon-0.17.0-150200.5.7.1.s390x.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-150200.5.7.1.s390x.rpm apache2-mod_auth_mellon-doc-0.17.0-150200.5.7.1.s390x.rpm apache2-mod_auth_mellon-0.17.0-150200.5.7.1.ppc64le.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-150200.5.7.1.ppc64le.rpm apache2-mod_auth_mellon-doc-0.17.0-150200.5.7.1.ppc64le.rpm apache2-mod_auth_mellon-0.17.0-150200.5.7.1.aarch64.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-150200.5.7.1.aarch64.rpm apache2-mod_auth_mellon-doc-0.17.0-150200.5.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-1396 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: grafana: - Update from version 7.5.12 to version 8.3.5 (jsc#SLE-23439, jsc#SLE-23422) + Security: * Fixes XSS vulnerability in handling data sources (bsc#1195726, CVE-2022-21702) * Fixes cross-origin request forgery vulnerability (bsc#1195727, CVE-2022-21703) * Fixes Insecure Direct Object Reference vulnerability in Teams API (bsc#1195728, CVE-2022-21713) - Update to Go 1.17. - Add build-time dependency on `wire`. - Update license to GNU Affero General Public License v3.0. - Update to version 8.3.4 * GetUserInfo: return an error if no user was found (bsc#1194873, CVE-2022-21673) + Features and enhancements: * Alerting: Allow configuration of non-ready alertmanagers. * Alerting: Allow customization of Google chat message. * AppPlugins: Support app plugins with only default nav. * InfluxDB: query editor: skip fields in metadata queries. * Postgres/MySQL/MSSQL: Cancel in-flight SQL query if user cancels query in grafana. * Prometheus: Forward oauth tokens after prometheus datasource migration. + Bug fixes: * Azure Monitor: Bug fix for variable interpolations in metrics dropdowns. * Azure Monitor: Improved error messages for variable queries. * CloudMonitoring: Fixes broken variable queries that use group bys. * Configuration: You can now see your expired API keys if you have no active ones. * Elasticsearch: Fix handling multiple datalinks for a single field. * Export: Fix error being thrown when exporting dashboards using query variables that reference the default datasource. * ImportDashboard: Fixes issue with importing dashboard and name ending up in uid. * Login: Page no longer overflows on mobile. * Plugins: Set backend metadata property for core plugins. * Prometheus: Fill missing steps with null values. * Prometheus: Fix interpolation of $__rate_interval variable. * Prometheus: Interpolate variables with curly brackets syntax. * Prometheus: Respect the http-method data source setting. * Table: Fixes issue with field config applied to wrong fields when hiding columns. * Toolkit: Fix bug with rootUrls not being properly parsed when signing a private plugin. * Variables: Fix so data source variables are added to adhoc configuration. + Plugin development fixes & changes: * Toolkit: Revert build config so tslib is bundled with plugins to prevent plugins from crashing. - Update to version 8.3.3: * BarChart: Use new data error view component to show actions in panel edit. * CloudMonitor: Iterate over pageToken for resources. * Macaron: Prevent WriteHeader invalid HTTP status code panic. * AnnoListPanel: Fix interpolation of variables in tags. * CloudWatch: Allow queries to have no dimensions specified. * CloudWatch: Fix broken queries for users migrating from 8.2.4/8.2.5 to 8.3.0. * CloudWatch: Make sure MatchExact flag gets the right value. * Dashboards: Fix so that empty folders can be deleted from the manage dashboards/folders page. * InfluxDB: Improve handling of metadata query errors in InfluxQL. * Loki: Fix adding of ad hoc filters for queries with parser and line_format expressions. * Prometheus: Fix running of exemplar queries for non-histogram metrics. * Prometheus: Interpolate template variables in interval. * StateTimeline: Fix toolitp not showing when for frames with multiple fields. * TraceView: Fix virtualized scrolling when trace view is opened in right pane in Explore. * Variables: Fix repeating panels for on time range changed variables. * Variables: Fix so queryparam option works for scoped - Update to version 8.3.2 + Security: Fixes CVE-2021-43813 and CVE-2021-43815. - Update to version 8.3.1 + Security: Fixes CVE-2021-43798. - Update to version 8.3.0 * Alerting: Prevent folders from being deleted when they contain alerts. * Alerting: Show full preview value in tooltip. * BarGauge: Limit title width when name is really long. * CloudMonitoring: Avoid to escape regexps in filters. * CloudWatch: Add support for AWS Metric Insights. * TooltipPlugin: Remove other panels' shared tooltip in edit panel. * Visualizations: Limit y label width to 40% of visualization width. * Alerting: Clear alerting rule evaluation errors after intermittent failures. * Alerting: Fix refresh on legacy Alert List panel. * Dashboard: Fix queries for panels with non-integer widths. * Explore: Fix url update inconsistency. * Prometheus: Fix range variables interpolation for time ranges smaller than 1 second. * ValueMappings: Fixes issue with regex value mapping that only sets color. - Update to version 8.3.0-beta2 + Breaking changes: * Grafana 8 Alerting enabled by default for installations that do not use legacy alerting. * Keep Last State for "If execution error or timeout" when upgrading to Grafana 8 alerting. * Alerting: Create DatasourceError alert if evaluation returns error. * Alerting: Make Unified Alerting enabled by default for those who do not use legacy alerting. * Alerting: Support mute timings configuration through the api for the embedded alert manager. * CloudWatch: Add missing AWS/Events metrics. * Docs: Add easier to find deprecation notices to certain data sources and to the changelog. * Plugins Catalog: Enable install controls based on the pluginAdminEnabled flag. * Table: Add space between values for the DefaultCell and JSONViewCell. * Tracing: Make query editors available in dashboard for Tempo and Zipkin. * AccessControl: Renamed orgs roles, removed fixed:orgs:reader introduced in beta1. * Azure Monitor: Add trap focus for modals in grafana/ui and other small a11y fixes for Azure Monitor. * CodeEditor: Prevent suggestions from being clipped. * Dashboard: Fix cache timeout persistence. * Datasource: Fix stable sort order of query responses. * Explore: Fix error in query history when removing last item. * Logs: Fix requesting of older logs when flipped order. * Prometheus: Fix running of health check query based on access mode. * TextPanel: Fix suggestions for existing panels. * Tracing: Fix incorrect indentations due to reoccurring spanIDs. * Tracing: Show start time of trace with milliseconds precision. * Variables: Make renamed or missing variable section expandable. * Select: Select menus now properly scroll during keyboard navigation. - Update to version 8.3.0-beta1 * Alerting: Add UI for contact point testing with custom annotations and labels. * Alerting: Make alert state indicator in panel header work with Grafana 8 alerts. * Alerting: Option for Discord notifier to use webhook name. * Annotations: Deprecate AnnotationsSrv. * Auth: Omit all base64 paddings in JWT tokens for the JWT auth. * Azure Monitor: Clean up fields when editing Metrics. * AzureMonitor: Add new starter dashboards. * AzureMonitor: Add starter dashboard for app monitoring with Application Insights. * Barchart/Time series: Allow x axis label. * CLI: Improve error handling for installing plugins. * CloudMonitoring: Migrate to use backend plugin SDK contracts. * CloudWatch Logs: Add retry strategy for hitting max concurrent queries. * CloudWatch: Add AWS RoboMaker metrics and dimension. * CloudWatch: Add AWS Transfer metrics and dimension. * Dashboard: replace datasource name with a reference object. * Dashboards: Show logs on time series when hovering. * Elasticsearch: Add support for Elasticsearch 8.0 (Beta). * Elasticsearch: Add time zone setting to Date Histogram aggregation. * Elasticsearch: Enable full range log volume histogram. * Elasticsearch: Full range logs volume. * Explore: Allow changing the graph type. * Explore: Show ANSI colors when highlighting matched words in the logs panel. * Graph(old) panel: Listen to events from Time series panel. * Import: Load gcom dashboards from URL. * LibraryPanels: Improves export and import of library panels between orgs. * OAuth: Support PKCE. * Panel edit: Overrides now highlight correctly when searching. * PanelEdit: Display drag indicators on draggable sections. * Plugins: Refactor Plugin Management. * Prometheus: Add custom query parameters when creating PromLink url. * Prometheus: Remove limits on metrics, labels, and values in Metrics Browser. * StateTimeline: Share cursor with rest of the panels. * Tempo: Add error details when json upload fails. * Tempo: Add filtering for service graph query. * Tempo: Add links to nodes in Service Graph pointing to Prometheus metrics. * Time series/Bar chart panel: Add ability to sort series via legend. * TimeSeries: Allow multiple axes for the same unit. * TraceView: Allow span links defined on dataFrame. * Transformations: Support a rows mode in labels to fields. * ValueMappings: Don't apply field config defaults to time fields. * Variables: Only update panels that are impacted by variable change. * API: Fix dashboard quota limit for imports. * Alerting: Fix rule editor issues with Azure Monitor data source. * Azure monitor: Make sure alert rule editor is not enabled when template variables are being used. * CloudMonitoring: Fix annotation queries. * CodeEditor: Trigger the latest getSuggestions() passed to CodeEditor. * Dashboard: Remove the current panel from the list of options in the Dashboard datasource. * Encryption: Fix decrypting secrets in alerting migration. * InfluxDB: Fix corner case where index is too large in ALIAS * NavBar: Order App plugins alphabetically. * NodeGraph: Fix zooming sensitivity on touchpads. * Plugins: Add OAuth pass-through logic to api/ds/query endpoint. * Snapshots: Fix panel inspector for snapshot data. * Tempo: Fix basic auth password reset on adding tag. * ValueMapping: Fixes issue with regex mappings. * grafana/ui: Enable slider marks display. - Update to version 8.2.7 - Update to version 8.2.6 * Security: Upgrade Docker base image to Alpine 3.14.3. * Security: Upgrade Go to 1.17.2. * TimeSeries: Fix fillBelowTo wrongly affecting fills of unrelated series. - Update to version 8.2.5 * Fix No Data behaviour in Legacy Alerting. * Alerting: Fix a bug where the metric in the evaluation string was not correctly populated. * Alerting: Fix no data behaviour in Legacy Alerting for alert rules using the AND operator. * CloudMonitoring: Ignore min and max aggregation in MQL queries. * Dashboards: 'Copy' is no longer added to new dashboard titles. * DataProxy: Fix overriding response body when response is a WebSocket upgrade. * Elasticsearch: Use field configured in query editor as field for date_histogram aggregations. * Explore: Fix running queries without a datasource property set. * InfluxDB: Fix numeric aliases in queries. * Plugins: Ensure consistent plugin settings list response. * Tempo: Fix validation of float durations. * Tracing: Correct tags for each span are shown. - Update to version 8.2.4 + Security: Fixes CVE-2021-41244. - Update to version 8.2.3 + Security: Fixes CVE-2021-41174. - Update to version 8.2.2 * Annotations: We have improved tag search performance. * Application: You can now configure an error-template title. * AzureMonitor: We removed a restriction from the resource filter query. * Packaging: We removed the ProcSubset option in systemd. This option prevented Grafana from starting in LXC environments. * Prometheus: We removed the autocomplete limit for metrics. * Table: We improved the styling of the type icons to make them more distinct from column / field name. * ValueMappings: You can now use value mapping in stat, gauge, bar gauge, and pie chart visualizations. * Alerting: Fix panic when Slack's API sends unexpected response. * Alerting: The Create Alert button now appears on the dashboard panel when you are working with a default datasource. * Explore: We fixed the problem where the Explore log panel disappears when an Elasticsearch logs query returns no results. * Graph: You can now see annotation descriptions on hover. * Logs: The system now uses the JSON parser only if the line is parsed to an object. * Prometheus: We fixed the issue where the system did not reuse TCP connections when querying from Grafana alerting. * Prometheus: We fixed the problem that resulted in an error when a user created a query with a $__interval min step. * RowsToFields: We fixed the issue where the system was not properly interpreting number values. * Scale: We fixed how the system handles NaN percent when data min = data max. * Table panel: You can now create a filter that includes special characters. - Update to version 8.2.1 * Dashboard: Fix rendering of repeating panels. * Datasources: Fix deletion of data source if plugin is not found. * Packaging: Remove systemcallfilters sections from systemd unit files. * Prometheus: Add Headers to HTTP client options. - Update to version 8.2.0 * AWS: Updated AWS authentication documentation. * Alerting: Added support Alertmanager data source for upstream Prometheus AM implementation. * Alerting: Allows more characters in label names so notifications are sent. * Alerting: Get alert rules for a dashboard or a panel using /api/v1/rules endpoints. * Annotations: Improved rendering performance of event markers. * CloudWatch Logs: Skip caching for log queries. * Explore: Added an opt-in configuration for Node Graph in Jaeger, Zipkin, and Tempo. * Packaging: Add stricter systemd unit options. * Prometheus: Metrics browser can now handle label values with * CodeEditor: Ensure that we trigger the latest onSave callback provided to the component. * DashboardList/AlertList: Fix for missing All folder value. * Plugins: Create a mock icon component to prevent console errors. - Update to version 8.2.0-beta2 * AccessControl: Document new permissions restricting data source access. * TimePicker: Add fiscal years and search to time picker. * Alerting: Added support for Unified Alerting with Grafana HA. * Alerting: Added support for tune rule evaluation using configuration options. * Alerting: Cleanups alertmanager namespace from key-value store when disabling Grafana 8 alerts. * Alerting: Remove ngalert feature toggle and introduce two new settings for enabling Grafana 8 alerts and disabling them for specific organisations. * CloudWatch: Introduced new math expression where it is necessary to specify the period field. * InfluxDB: Added support for $__interval and $__interval_ms in Flux queries for alerting. * InfluxDB: Flux queries can use more precise start and end timestamps with nanosecond-precision. * Plugins Catalog: Make the catalog the default way to interact with plugins. * Prometheus: Removed autocomplete limit for metrics. * Alerting: Fixed an issue where the edit page crashes if you tried to preview an alert without a condition set. * Alerting: Fixed rules migration to keep existing Grafana 8 alert rules. * Alerting: Fixed the silence file content generated during * Analytics: Fixed an issue related to interaction event propagation in Azure Application Insights. * BarGauge: Fixed an issue where the cell color was lit even though there was no data. * BarGauge: Improved handling of streaming data. * CloudMonitoring: Fixed INT64 label unmarshal error. * ConfirmModal: Fixes confirm button focus on modal open. * Dashboard: Add option to generate short URL for variables with values containing spaces. * Explore: No longer hides errors containing refId property. * Fixed an issue that produced State timeline panel tooltip error when data was not in sync. * InfluxDB: InfluxQL query editor is set to always use resultFormat. * Loki: Fixed creating context query for logs with parsed labels. * PageToolbar: Fixed alignment of titles. * Plugins Catalog: Update to the list of available panels after an install, update or uninstall. * TimeSeries: Fixed an issue where the shared cursor was not showing when hovering over in old Graph panel. * Variables: Fixed issues related to change of focus or refresh pages when pressing enter in a text box variable input. * Variables: Panel no longer crash when using the adhoc variable in data links. - Update to version 8.2.0-beta1 * AccessControl: Introduce new permissions to restrict access for reloading provisioning configuration. * Alerting: Add UI to edit Cortex/Loki namespace, group names, and group evaluation interval. * Alerting: Add a Test button to test contact point. * Alerting: Allow creating/editing recording rules for Loki and Cortex. * Alerting: Metrics should have the label org instead of user. * Alerting: Sort notification channels by name to make them easier to locate. * Alerting: Support org level isolation of notification * AzureMonitor: Add data links to deep link to Azure Portal Azure Resource Graph. * AzureMonitor: Add support for annotations from Azure Monitor Metrics and Azure Resource Graph services. * AzureMonitor: Show error message when subscriptions request fails in ConfigEditor. * Chore: Update to Golang 1.16.7. * CloudWatch Logs: Add link to X-Ray data source for trace IDs in logs. * CloudWatch Logs: Disable query path using websockets (Live) feature. * CloudWatch/Logs: Don't group dataframes for non time series * Cloudwatch: Migrate queries that use multiple stats to one query per stat. * Dashboard: Keep live timeseries moving left (v2). * Datasources: Introduce response_limit for datasource responses. * Explore: Add filter by trace or span ID to trace to logs * Explore: Download traces as JSON in Explore Inspector. * Explore: Reuse Dashboard's QueryRows component. * Explore: Support custom display label for derived fields buttons for Loki datasource. * Grafana UI: Update monaco-related dependencies. * Graphite: Deprecate browser access mode. * InfluxDB: Improve handling of intervals in alerting. * InfluxDB: InfluxQL query editor: Handle unusual characters in tag values better. * Jaeger: Add ability to upload JSON file for trace data. * LibraryElements: Enable specifying UID for new and existing library elements. * LibraryPanels: Remove library panel icon from the panel header so you can no longer tell that a panel is a library panel from the dashboard view. * Logs panel: Scroll to the bottom on page refresh when sorting in ascending order. * Loki: Add fuzzy search to label browser. * Navigation: Implement active state for items in the Sidemenu. * Packaging: Update PID file location from /var/run to /run. * Plugins: Add Hide OAuth Forward config option. * Postgres/MySQL/MSSQL: Add setting to limit the maximum number of rows processed. * Prometheus: Add browser access mode deprecation warning. * Prometheus: Add interpolation for built-in-time variables to backend. * Tempo: Add ability to upload trace data in JSON format. * TimeSeries/XYChart: Allow grid lines visibility control in XYChart and TimeSeries panels. * Transformations: Convert field types to time string number or boolean. * Value mappings: Add regular-expression based value mapping. * Zipkin: Add ability to upload trace JSON. * Admin: Prevent user from deleting user's current/active organization. * LibraryPanels: Fix library panel getting saved in the dashboard's folder. * OAuth: Make generic teams URL and JMES path configurable. * QueryEditor: Fix broken copy-paste for mouse middle-click * Thresholds: Fix undefined color in "Add threshold". * Timeseries: Add wide-to-long, and fix multi-frame output. * TooltipPlugin: Fix behavior of Shared Crosshair when Tooltip is set to All. * Grafana UI: Fix TS error property css is missing in type. - Update to version 8.1.8 - Update to version 8.1.7 * Alerting: Fix alerts with evaluation interval more than 30 seconds resolving before notification. * Elasticsearch/Prometheus: Fix usage of proper SigV4 service namespace. - Update to version 8.1.6 + Security: Fixes CVE-2021-39226. - Update to version 8.1.5 * BarChart: Fixes panel error that happens on second refresh. - Update to version 8.1.4 + Features and enhancements * Explore: Ensure logs volume bar colors match legend colors. * LDAP: Search all DNs for users. * Alerting: Fix notification channel migration. * Annotations: Fix blank panels for queries with unknown data sources. * BarChart: Fix stale values and x axis labels. * Graph: Make old graph panel thresholds work even if ngalert is enabled. * InfluxDB: Fix regex to identify / as separator. * LibraryPanels: Fix update issues related to library panels in rows. * Variables: Fix variables not updating inside a Panel when the preceding Row uses "Repeat For". - Update to version 8.1.3 + Bug fixes * Alerting: Fix alert flapping in the internal alertmanager. * Alerting: Fix request handler failed to convert dataframe "results" to plugins.DataTimeSeriesSlice: input frame is not recognized as a time series. * Dashboard: Fix UIDs are not preserved when importing/creating dashboards thru importing .json file. * Dashboard: Forces panel re-render when exiting panel edit. * Dashboard: Prevent folder from changing when navigating to general settings. * Docker: Force use of libcrypto1.1 and libssl1.1 versions to fix CVE-2021-3711. * Elasticsearch: Fix metric names for alert queries. * Elasticsearch: Limit Histogram field parameter to numeric values. * Elasticsearch: Prevent pipeline aggregations to show up in terms order by options. * LibraryPanels: Prevent duplicate repeated panels from being created. * Loki: Fix ad-hoc filter in dashboard when used with parser. * Plugins: Track signed files + add warn log for plugin assets which are not signed. * Postgres/MySQL/MSSQL: Fix region annotations not displayed correctly. * Prometheus: Fix validate selector in metrics browser. * Security: Fix stylesheet injection vulnerability. * Security: Fix short URL vulnerability. - Update to version 8.1.2 * AzureMonitor: Add support for PostgreSQL and MySQL Flexible Servers. * Datasource: Change HTTP status code for failed datasource health check to 400. * Explore: Add span duration to left panel in trace viewer. * Plugins: Use file extension allowlist when serving plugin assets instead of checking for UNIX executable. * Profiling: Add support for binding pprof server to custom network interfaces. * Search: Make search icon keyboard navigable. * Template variables: Keyboard navigation improvements. * Tooltip: Display ms within minute time range. * Alerting: Fix saving LINE contact point. * Annotations: Fix alerting annotation coloring. * Annotations: Alert annotations are now visible in the correct Panel. * Auth: Hide SigV4 config UI and disable middleware when its config flag is disabled. * Dashboard: Prevent incorrect panel layout by comparing window width against theme breakpoints. * Explore: Fix showing of full log context. * PanelEdit: Fix 'Actual' size by passing the correct panel size to Dashboard. * Plugins: Fix TLS datasource settings. * Variables: Fix issue with empty drop downs on navigation. * Variables: Fix URL util converting false into true. * Toolkit: Fix matchMedia not found error. - Update to version 8.1.1 * CloudWatch Logs: Fix crash when no region is selected. - Update to version 8.1.0 * Alerting: Deduplicate receivers during migration. * ColorPicker: Display colors as RGBA. * Select: Make portalling the menu opt-in, but opt-in everywhere. * TimeRangePicker: Improve accessibility. * Annotations: Correct annotations that are displayed upon page refresh. * Annotations: Fix Enabled button that disappeared from Grafana v8.0.6. * Annotations: Fix data source template variable that was not available for annotations. * AzureMonitor: Fix annotations query editor that does not load. * Geomap: Fix scale calculations. * GraphNG: Fix y-axis autosizing. * Live: Display stream rate and fix duplicate channels in list * Loki: Update labels in log browser when time range changes in dashboard. * NGAlert: Send resolve signal to alertmanager on alerting -> Normal. * PasswordField: Prevent a password from being displayed when you click the Enter button. * Renderer: Remove debug.log file when Grafana is stopped. * Security: Update dependencies to fix CVE-2021-36222. - Update to version 8.1.0-beta3 * Alerting: Support label matcher syntax in alert rule list filter. * IconButton: Put tooltip text as aria-label. * Live: Experimental HA with Redis. * UI: FileDropzone component. * CloudWatch: Add AWS LookoutMetrics. * Docker: Fix builds by delaying go mod verify until all required files are copied over. * Exemplars: Fix disable exemplars only on the query that failed. * SQL: Fix SQL dataframe resampling (fill mode + time intervals). - Update to version 8.1.0-beta2 * Alerting: Expand the value string in alert annotations and * Auth: Add Azure HTTP authentication middleware. * Auth: Auth: Pass user role when using the authentication proxy. * Gazetteer: Update countries.json file to allow for linking to 3-letter country codes. * Config: Fix Docker builds by correcting formatting in sample.ini. * Explore: Fix encoding of internal URLs. - Update to version 8.1.0-beta1 * Alerting: Add Alertmanager notifications tab. * Alerting: Add button to deactivate current Alertmanager * Alerting: Add toggle in Loki/Prometheus data source configuration to opt out of alerting UI. * Alerting: Allow any "evaluate for" value >=0 in the alert rule form. * Alerting: Load default configuration from status endpoint, if Cortex Alertmanager returns empty user configuration. * Alerting: view to display alert rule and its underlying data. * Annotation panel: Release the annotation panel. * Annotations: Add typeahead support for tags in built-in annotations. * AzureMonitor: Add curated dashboards for Azure services. * AzureMonitor: Add support for deep links to Microsoft Azure portal for Metrics. * AzureMonitor: Remove support for different credentials for Azure Monitor Logs. * AzureMonitor: Support querying any Resource for Logs queries. * Elasticsearch: Add frozen indices search support. * Elasticsearch: Name fields after template variables values instead of their name. * Elasticsearch: add rate aggregation. * Email: Allow configuration of content types for email notifications. * Explore: Add more meta information when line limit is hit. * Explore: UI improvements to trace view. * FieldOverrides: Added support to change display name in an override field and have it be matched by a later rule. * HTTP Client: Introduce dataproxy_max_idle_connections config variable. * InfluxDB: InfluxQL: adds tags to timeseries data. * InfluxDB: InfluxQL: make measurement search case insensitive. Legacy Alerting: Replace simplejson with a struct in webhook notification channel. * Legend: Updates display name for Last (not null) to just Last*. * Logs panel: Add option to show common labels. * Loki: Add $__range variable. * Loki: Add support for "label_values(log stream selector, label)" in templating. * Loki: Add support for ad-hoc filtering in dashboard. * MySQL Datasource: Add timezone parameter. * NodeGraph: Show gradient fields in legend. * PanelOptions: Don't mutate panel options/field config object when updating. * PieChart: Make pie gradient more subtle to match other charts. * Prometheus: Update PromQL typeahead and highlighting. * Prometheus: interpolate variable for step field. * Provisioning: Improve validation by validating across all dashboard providers. * SQL Datasources: Allow multiple string/labels columns with time series. * Select: Portal select menu to document.body. * Team Sync: Add group mapping to support team sync in the Generic OAuth provider. * Tooltip: Make active series more noticeable. * Tracing: Add support to configure trace to logs start and end time. * Transformations: Skip merge when there is only a single data frame. * ValueMapping: Added support for mapping text to color, boolean values, NaN and Null. Improved UI for value mapping. * Visualizations: Dynamically set any config (min, max, unit, color, thresholds) from query results. * live: Add support to handle origin without a value for the port when matching with root_url. * Alerting: Handle marshaling Inf values. * AzureMonitor: Fix macro resolution for template variables. * AzureMonitor: Fix queries with Microsoft.NetApp/../../volumes resources. * AzureMonitor: Request and concat subsequent resource pages. * Bug: Fix parse duration for day. * Datasources: Improve error handling for error messages. * Explore: Correct the functionality of shift-enter shortcut across all uses. * Explore: Show all dataFrames in data tab in Inspector. * GraphNG: Fix Tooltip mode 'All' for XYChart. * Loki: Fix highlight of logs when using filter expressions with backticks. * Modal: Force modal content to overflow with scroll. * Plugins: Ignore symlinked folders when verifying plugin signature. * Toolkit: Improve error messages when tasks fail. - Update to version 8.0.7 - Update to version 8.0.6 * Alerting: Add annotation upon alert state change. * Alerting: Allow space in label and annotation names. * InfluxDB: Improve legend labels for InfluxDB query results. * Alerting: Fix improper alert by changing the handling of empty labels. * CloudWatch/Logs: Reestablish Cloud Watch alert behavior. * Dashboard: Avoid migration breaking on fieldConfig without defaults field in folded panel. * DashboardList: Fix issue not re-fetching dashboard list after variable change. * Database: Fix incorrect format of isolation level configuration parameter for MySQL. * InfluxDB: Correct tag filtering on InfluxDB data. * Links: Fix links that caused a full page reload. * Live: Fix HTTP error when InfluxDB metrics have an incomplete or asymmetrical field set. * Postgres/MySQL/MSSQL: Change time field to "Time" for time series queries. * Postgres: Fix the handling of a null return value in query * Tempo: Show hex strings instead of uints for IDs. * TimeSeries: Improve tooltip positioning when tooltip overflows. * Transformations: Add 'prepare time series' transformer. - Update to version 8.0.5 * Cloudwatch Logs: Send error down to client. * Folders: Return 409 Conflict status when folder already exists. * TimeSeries: Do not show series in tooltip if it's hidden in the viz. * AzureMonitor: Fix issue where resource group name is missing on the resource picker button. * Chore: Fix AWS auth assuming role with workspace IAM. * DashboardQueryRunner: Fixes unrestrained subscriptions being * DateFormats: Fix reading correct setting key for use_browser_locale. * Links: Fix links to other apps outside Grafana when under sub path. * Snapshots: Fix snapshot absolute time range issue. * Table: Fix data link color. * Time Series: Fix X-axis time format when tick increment is larger than a year. * Tooltip Plugin: Prevent tooltip render if field is undefined. - Update to version 8.0.4 * Live: Rely on app url for origin check. * PieChart: Sort legend descending, update placeholder. * TimeSeries panel: Do not reinitialize plot when thresholds mode change. * Elasticsearch: Allow case sensitive custom options in date_histogram interval. * Elasticsearch: Restore previous field naming strategy when using variables. * Explore: Fix import of queries between SQL data sources. * InfluxDB: InfluxQL query editor: fix retention policy handling. * Loki: Send correct time range in template variable queries. * TimeSeries: Preserve RegExp series overrides when migrating from old graph panel. - Update to version 8.0.3 * Alerting: Increase alertmanager_conf column if MySQL. * Time series/Bar chart panel: Handle infinite numbers as nulls when converting to plot array. * TimeSeries: Ensure series overrides that contain color are migrated, and migrate the previous fieldConfig when changing the panel type. * ValueMappings: Improve singlestat value mappings migration. * Annotations: Fix annotation line and marker colors. * AzureMonitor: Fix KQL template variable queries without default workspace. * CloudWatch/Logs: Fix missing response data for log queries. * LibraryPanels: Fix crash in library panels list when panel plugin is not found. * LogsPanel: Fix performance drop when moving logs panel in * Loki: Parse log levels when ANSI coloring is enabled. * MSSQL: Fix issue with hidden queries still being executed. * PanelEdit: Display the VisualizationPicker that was not displayed if a panel has an unknown panel plugin. * Plugins: Fix loading symbolically linked plugins. * Prometheus: Fix issue where legend name was replaced with name Value in stat and gauge panels. * State Timeline: Fix crash when hovering over panel. - Update to version 8.0.2 * Datasource: Add support for max_conns_per_host in dataproxy settings. * Configuration: Fix changing org preferences in FireFox. * PieChart: Fix legend dimension limits. * Postgres/MySQL/MSSQL: Fix panic in concurrent map writes. * Variables: Hide default data source if missing from regex. - Update to version 8.0.1 * Alerting/SSE: Fix "count_non_null" reducer validation. * Cloudwatch: Fix duplicated time series. * Cloudwatch: Fix missing defaultRegion. * Dashboard: Fix Dashboard init failed error on dashboards with old singlestat panels in collapsed rows. * Datasource: Fix storing timeout option as numeric. * Postgres/MySQL/MSSQL: Fix annotation parsing for empty * Postgres/MySQL/MSSQL: Numeric/non-string values are now returned from query variables. * Postgres: Fix an error that was thrown when the annotation query did not return any results. * StatPanel: Fix an issue with the appearance of the graph when switching color mode. * Visualizations: Fix an issue in the Stat/BarGauge/Gauge/PieChart panels where all values mode were showing the same name if they had the same value. * Toolkit: Resolve external fonts when Grafana is served from a sub path. - Update to version 8.0.0 * The following endpoints were deprecated for Grafana v5.0 and support for them has now been removed: GET /dashboards/db/:slug GET /dashboard-solo/db/:slug GET /api/dashboard/db/:slug DELETE /api/dashboards/db/:slug * AzureMonitor: Require default subscription for workspaces() template variable query. * AzureMonitor: Use resource type display names in the UI. * Dashboard: Remove support for loading and deleting dashboard by slug. * InfluxDB: Deprecate direct browser access in data source. * VizLegend: Add a read-only property. * AzureMonitor: Fix Azure Resource Graph queries in Azure China. * Checkbox: Fix vertical layout issue with checkboxes due to fixed height. * Dashboard: Fix Table view when editing causes the panel data to not update. * Dashboard: Fix issues where unsaved-changes warning is not displayed. * Login: Fixes Unauthorized message showing when on login page or snapshot page. * NodeGraph: Fix sorting markers in grid view. * Short URL: Include orgId in generated short URLs. * Variables: Support raw values of boolean type. - Update to version 8.0.0-beta3 * The default HTTP method for Prometheus data source is now POST. * API: Support folder UID in dashboards API. * Alerting: Add support for configuring avatar URL for the Discord notifier. * Alerting: Clarify that Threema Gateway Alerts support only Basic IDs. * Azure: Expose Azure settings to external plugins. * AzureMonitor: Deprecate using separate credentials for Azure Monitor Logs. * AzureMonitor: Display variables in resource picker for Azure * AzureMonitor: Hide application insights for data sources not using it. * AzureMonitor: Support querying subscriptions and resource groups in Azure Monitor Logs. * AzureMonitor: remove requirement for default subscription. * CloudWatch: Add Lambda@Edge Amazon CloudFront metrics. * CloudWatch: Add missing AWS AppSync metrics. * ConfirmModal: Auto focus delete button. * Explore: Add caching for queries that are run from logs * Loki: Add formatting for annotations. * Loki: Bring back processed bytes as meta information. * NodeGraph: Display node graph collapsed by default with trace view. * Overrides: Include a manual override option to hide something from visualization. * PieChart: Support row data in pie charts. * Prometheus: Update default HTTP method to POST for existing data sources. * Time series panel: Position tooltip correctly when window is scrolled or resized. * Admin: Fix infinite loading edit on the profile page. * Color: Fix issues with random colors in string and date * Dashboard: Fix issue with title or folder change has no effect after exiting settings view. * DataLinks: Fix an issue __series.name is not working in data link. * Datasource: Fix dataproxy timeout should always be applied for outgoing data source HTTP requests. * Elasticsearch: Fix NewClient not passing httpClientProvider to client impl. * Explore: Fix Browser title not updated on Navigation to Explore. * GraphNG: Remove fieldName and hideInLegend properties from UPlotSeriesBuilder. * OAuth: Fix fallback to auto_assign_org_role setting for Azure AD OAuth when no role claims exists. * PanelChrome: Fix issue with empty panel after adding a non data panel and coming back from panel edit. * StatPanel: Fix data link tooltip not showing for single value. * Table: Fix sorting for number fields. * Table: Have text underline for datalink, and add support for image datalink. * Transformations: Prevent FilterByValue transform from crashing panel edit. - Update to version 8.0.0-beta2 * AppPlugins: Expose react-router to apps. * AzureMonitor: Add Azure Resource Graph. * AzureMonitor: Managed Identity configuration UI. * AzureMonitor: Token provider with support for Managed Identities. * AzureMonitor: Update Logs workspace() template variable query to return resource URIs. * BarChart: Value label sizing. * CloudMonitoring: Add support for preprocessing. * CloudWatch: Add AWS/EFS StorageBytes metric. * CloudWatch: Allow use of missing AWS namespaces using custom * Datasource: Shared HTTP client provider for core backend data sources and any data source using the data source proxy. * InfluxDB: InfluxQL: allow empty tag values in the query editor. * Instrumentation: Instrument incoming HTTP request with histograms by default. * Library Panels: Add name endpoint & unique name validation to AddLibraryPanelModal. * Logs panel: Support details view. * PieChart: Always show the calculation options dropdown in the * PieChart: Remove beta flag. * Plugins: Enforce signing for all plugins. * Plugins: Remove support for deprecated backend plugin protocol version. * Tempo/Jaeger: Add better display name to legend. * Timeline: Add time range zoom. * Timeline: Adds opacity & line width option. * Timeline: Value text alignment option. * ValueMappings: Add duplicate action, and disable dismiss on backdrop click. * Zipkin: Add node graph view to trace response. * Annotations panel: Remove subpath from dashboard links. * Content Security Policy: Allow all image sources by default. * Content Security Policy: Relax default template wrt. loading of scripts, due to nonces not working. * Datasource: Fix tracing propagation for alert execution by introducing HTTP client outgoing tracing middleware. * InfluxDB: InfluxQL always apply time interval end. * Library Panels: Fixes "error while loading library panels". * NewsPanel: Fixes rendering issue in Safari. * PanelChrome: Fix queries being issued again when scrolling in and out of view. * Plugins: Fix Azure token provider cache panic and auth param nil value. * Snapshots: Fix key and deleteKey being ignored when creating an external snapshot. * Table: Fix issue with cell border not showing with colored background cells. * Table: Makes tooltip scrollable for long JSON values. * TimeSeries: Fix for Connected null values threshold toggle during panel editing. * Variables: Fixes inconsistent selected states on dashboard * Variables: Refreshes all panels even if panel is full screen. * QueryField: Remove carriage return character from pasted text. - Update to version 8.0.0-beta1 + License update: * AGPL License: Update license from Apache 2.0 to the GNU Affero General Public License (AGPL). * Removes the never refresh option for Query variables. * Removes the experimental Tags feature for Variables. + Deprecations: * The InfoBox & FeatureInfoBox are now deprecated please use the Alert component instead with severity info. * API: Add org users with pagination. * API: Return 404 when deleting nonexistent API key. * API: Return query results as JSON rather than base64 encoded Arrow. * Alerting: Allow sending notification tags to Opsgenie as extra properties. * Alerts: Replaces all uses of InfoBox & FeatureInfoBox with Alert. * Auth: Add support for JWT Authentication. * AzureMonitor: Add support for Microsoft.SignalRService/SignalR metrics. * AzureMonitor: Azure settings in Grafana server config. * AzureMonitor: Migrate Metrics query editor to React. * BarChart panel: enable series toggling via legend. * BarChart panel: Adds support for Tooltip in BarChartPanel. * PieChart panel: Change look of highlighted pie slices. * CloudMonitoring: Migrate config editor from angular to react. * CloudWatch: Add Amplify Console metrics and dimensions. * CloudWatch: Add missing Redshift metrics to CloudWatch data * CloudWatch: Add metrics for managed RabbitMQ service. * DashboardList: Enable templating on search tag input. * Datasource config: correctly remove single custom http header. * Elasticsearch: Add generic support for template variables. * Elasticsearch: Allow omitting field when metric supports inline script. * Elasticsearch: Allow setting a custom limit for log queries. * Elasticsearch: Guess field type from first non-empty value. * Elasticsearch: Use application/x-ndjson content type for multisearch requests. * Elasticsearch: Use semver strings to identify ES version. * Explore: Add logs navigation to request more logs. * Explore: Map Graphite queries to Loki. * Explore: Scroll split panes in Explore independently. * Explore: Wrap each panel in separate error boundary. * FieldDisplay: Smarter naming of stat values when visualising row values (all values) in stat panels. * Graphite: Expand metric names for variables. * Graphite: Handle unknown Graphite functions without breaking the visual editor. * Graphite: Show graphite functions descriptions. * Graphite: Support request cancellation properly (Uses new backendSrv.fetch Observable request API). * InfluxDB: Flux: Improve handling of complex response-structures. * InfluxDB: Support region annotations. * Inspector: Download logs for manual processing. * Jaeger: Add node graph view for trace. * Jaeger: Search traces. * Loki: Use data source settings for alerting queries. * NodeGraph: Exploration mode. * OAuth: Add support for empty scopes. * PanelChrome: New logic-less emotion based component with no dependency on PanelModel or DashboardModel. * PanelEdit: Adds a table view toggle to quickly view data in table form. * PanelEdit: Highlight matched words when searching options. * PanelEdit: UX improvements. * Plugins: PanelRenderer and simplified QueryRunner to be used from plugins. * Plugins: AuthType in route configuration and params interpolation. * Plugins: Enable plugin runtime install/uninstall capabilities. * Plugins: Support set body content in plugin routes. * Plugins: Introduce marketplace app. * Plugins: Moving the DataSourcePicker to grafana/runtime so it can be reused in plugins. * Prometheus: Add custom query params for alert and exemplars * Prometheus: Use fuzzy string matching to autocomplete metric names and label. * Routing: Replace Angular routing with react-router. * Slack: Use chat.postMessage API by default. * Tempo: Search for Traces by querying Loki directly from Tempo. * Tempo: Show graph view of the trace. * Themes: Switch theme without reload using global shortcut. * TimeSeries panel: Add support for shared cursor. * TimeSeries panel: Do not crash the panel if there is no time series data in the response. * Variables: Do not save repeated panels, rows and scopedVars. * Variables: Removes experimental Tags feature. * Variables: Removes the never refresh option. * Visualizations: Unify tooltip options across visualizations. * Visualizations: Refactor and unify option creation between new visualizations. * Visualizations: Remove singlestat panel. * APIKeys: Fixes issue with adding first api key. * Alerting: Add checks for non supported units - disable defaulting to seconds. * Alerting: Fix issue where Slack notifications won't link to user IDs. * Alerting: Omit empty message in PagerDuty notifier. * AzureMonitor: Fix migration error from older versions of App Insights queries. * CloudWatch: Fix AWS/Connect dimensions. * CloudWatch: Fix broken AWS/MediaTailor dimension name. * Dashboards: Allow string manipulation as advanced variable format option. * DataLinks: Includes harmless extended characters like Cyrillic characters. * Drawer: Fixes title overflowing its container. * Explore: Fix issue when some query errors were not shown. * Generic OAuth: Prevent adding duplicated users. * Graphite: Handle invalid annotations. * Graphite: Fix autocomplete when tags are not available. * InfluxDB: Fix Cannot read property 'length' of undefined in when parsing response. * Instrumentation: Enable tracing when Jaeger host and port are * Instrumentation: Prefix metrics with grafana. * MSSQL: By default let driver choose port. * OAuth: Add optional strict parsing of role_attribute_path. * Panel: Fixes description markdown with inline code being rendered on newlines and full width. * PanelChrome: Ignore data updates & errors for non data panels. * Permissions: Fix inherited folder permissions can prevent new permissions being added to a dashboard. * Plugins: Remove pre-existing plugin installs when installing with grafana-cli. * Plugins: Support installing to folders with whitespace and fix pluginUrl trailing and leading whitespace failures. * Postgres/MySQL/MSSQL: Don't return connection failure details to the client. * Postgres: Fix ms precision of interval in time group macro when TimescaleDB is enabled. * Provisioning: Use dashboard checksum field as change indicator. * SQL: Fix so that all captured errors are returned from sql engine. * Shortcuts: Fixes panel shortcuts so they always work. * Table: Fixes so border is visible for cells with links. * Variables: Clear query when data source type changes. * Variables: Filters out builtin variables from unknown list. * Button: Introduce buttonStyle prop. * DataQueryRequest: Remove deprecated props showingGraph and showingTabel and exploreMode. * grafana/ui: Update React Hook Form to v7. * IconButton: Introduce variant for red and blue icon buttons. * Plugins: Expose the getTimeZone function to be able to get the current selected timeZone. * TagsInput: Add className to TagsInput. * VizLegend: Move onSeriesColorChanged to PanelContext (breaking change). - Update to version 7.5.13 * Alerting: Fix NoDataFound for alert rules using AND operator. mgr-cfg: - Version 4.2.8-1 * Fix the condition for preventing building python 2 subpackage for SLE15 (bsc#1197579) - Version 4.2.7-1 * Fix installation problem for SLE15SP4 due missing python-selinux mgr-osad: - Version 4.2.8-1 * Fix the condition for preventing building python 2 subpackage for SLE15 mgr-push: - Version 4.2.5-1 * Fix the condition for preventing building python 2 subpackage for SLE15 mgr-virtualization: - Version 4.2.4-1 * Fix the condition for preventing building python 2 subpackage for SLE15 prometheus-postgres_exporter: - Version 0.10.0 * Added hardening to systemd service(s) with changes to `prometheus-postgres_exporter.service` (bsc#1181400) * Package rename from golang-github-wrouesnel-postgres_exporter (jsc#SLE-23051) rhnlib: - Version 4.2.6-1 * Fix the condition for preventing building python 2 subpackage for SLE15 spacecmd: - Version 4.2.16-1 * implement system.bootstrap (bsc#1194909) * Fix interactive mode for "system_applyerrata" and "errata_apply" (bsc#1194363) spacewalk-client-tools: - Version 4.2.18-1 * Fix the condition for preventing building python 2 subpackage for SLE15 - Version 4.2.17-1 * Update translation strings spacewalk-koan: - Version 4.2.6-1 * Fix the condition for preventing building python 2 subpackage for SLE15 spacewalk-oscap: - Version 4.2.4-1 * Fix the condition for preventing building python 2 subpackage for SLE15 suseRegisterInfo: - Version 4.2.6-1 * Fix the condition for preventing building python 2 subpackage for SLE15 prometheus-postgres_exporter-0.10.0-150000.1.3.1.src.rpm prometheus-postgres_exporter-0.10.0-150000.1.3.1.x86_64.rpm python3-rhnlib-4.2.6-150000.3.34.1.noarch.rpm rhnlib-4.2.6-150000.3.34.1.src.rpm spacecmd-4.2.16-150000.3.77.1.noarch.rpm spacecmd-4.2.16-150000.3.77.1.src.rpm prometheus-postgres_exporter-0.10.0-150000.1.3.1.s390x.rpm prometheus-postgres_exporter-0.10.0-150000.1.3.1.ppc64le.rpm prometheus-postgres_exporter-0.10.0-150000.1.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1301 important SUSE Updates openSUSE-SLE 15.3 This update for openCryptoki fixes the following issues: - Add a fix to keep support Dilithium mechanism when using an upgraded EP11 library. (bsc#1197396) openCryptoki-3.15.1-150300.5.9.1.src.rpm openCryptoki-3.15.1-150300.5.9.1.x86_64.rpm openCryptoki-64bit-3.15.1-150300.5.9.1.x86_64.rpm openCryptoki-devel-3.15.1-150300.5.9.1.x86_64.rpm openCryptoki-3.15.1-150300.5.9.1.s390x.rpm openCryptoki-64bit-3.15.1-150300.5.9.1.s390x.rpm openCryptoki-devel-3.15.1-150300.5.9.1.s390x.rpm openCryptoki-3.15.1-150300.5.9.1.ppc64le.rpm openCryptoki-64bit-3.15.1-150300.5.9.1.ppc64le.rpm openCryptoki-devel-3.15.1-150300.5.9.1.ppc64le.rpm openCryptoki-3.15.1-150300.5.9.1.aarch64.rpm openCryptoki-64bit-3.15.1-150300.5.9.1.aarch64.rpm openCryptoki-devel-3.15.1-150300.5.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-1713 low SUSE Updates openSUSE-SLE 15.3 This update for libreiserfs fixes the following issues: - Resolve autoreconf issue. libreiserfs-0.3.0.5-150000.3.3.1.src.rpm libreiserfs-0_3-0-0.3.0.5-150000.3.3.1.x86_64.rpm libreiserfs-0_3-0-32bit-0.3.0.5-150000.3.3.1.x86_64.rpm libreiserfs-devel-0.3.0.5-150000.3.3.1.x86_64.rpm libreiserfs-devel-32bit-0.3.0.5-150000.3.3.1.x86_64.rpm libreiserfs-progs-0.3.0.5-150000.3.3.1.x86_64.rpm libreiserfs-0_3-0-0.3.0.5-150000.3.3.1.s390x.rpm libreiserfs-devel-0.3.0.5-150000.3.3.1.s390x.rpm libreiserfs-progs-0.3.0.5-150000.3.3.1.s390x.rpm libreiserfs-0_3-0-0.3.0.5-150000.3.3.1.ppc64le.rpm libreiserfs-devel-0.3.0.5-150000.3.3.1.ppc64le.rpm libreiserfs-progs-0.3.0.5-150000.3.3.1.ppc64le.rpm libreiserfs-0_3-0-0.3.0.5-150000.3.3.1.aarch64.rpm libreiserfs-devel-0.3.0.5-150000.3.3.1.aarch64.rpm libreiserfs-progs-0.3.0.5-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1163 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0854: Fixed a memory leak flaw was found in the Linux kernels DMA subsystem. This flaw allowed a local user to read random memory from the kernel space. (bnc#1196823) - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197227) - CVE-2022-1199: Fixed null-ptr-deref and use-after-free vulnerabilities that allow an attacker to crash the linux kernel by simulating Amateur Radio. (bsc#1198028) - CVE-2022-1205: Fixed null pointer dereference and use-after-free vulnerabilities that allow an attacker to crash the linux kernel by simulating Amateur Radio. (bsc#1198027) - CVE-2022-1198: Fixed an use-after-free vulnerability that allow an attacker to crash the linux kernel by simulating Amateur Radio (bsc#1198030). - CVE-2022-1195: Fixed an use-after-free vulnerability which could allow a local attacker with a user privilege to execute a denial of service. (bsc#1198029) - CVE-2022-28389: Fixed a double free in drivers/net/can/usb/mcba_usb.c vulnerability in the Linux kernel. (bnc#1198033) - CVE-2022-28388: Fixed a double free in drivers/net/can/usb/usb_8dev.c vulnerability in the Linux kernel. (bnc#1198032) - CVE-2022-28390: Fixed a double free in drivers/net/can/usb/ems_usb.c vulnerability in the Linux kernel. (bnc#1198031) - CVE-2022-1048: Fixed a race Condition in snd_pcm_hw_free leading to use-after-free due to the AB/BA lock with buffer_mutex and mmap_lock. (bsc#1197331) - CVE-2022-1055: Fixed a use-after-free in tc_new_tfilter that could allow a local attacker to gain privilege escalation. (bnc#1197702) - CVE-2022-0850: Fixed a kernel information leak vulnerability in iov_iter.c. (bsc#1196761) - CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation. (bnc#1197462) - CVE-2021-45868: Fixed a wrong validation check in fs/quota/quota_tree.c which could lead to an use-after-free if there is a corrupted quota file. (bnc#1197366) - CVE-2022-1011: Fixed an use-after-free vulnerability which could allow a local attacker to retireve (partial) /etc/shadow hashes or any other data from filesystem when he can mount a FUSE filesystems. (bnc#1197343) - CVE-2022-27223: Fixed an out-of-array access in /usb/gadget/udc/udc-xilinx.c. (bsc#1197245) - CVE-2021-39698: Fixed a possible memory corruption due to a use after free in aio_poll_complete_work. This could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1196956) - CVE-2021-45402: Fixed a pointer leak in check_alu_op() of kernel/bpf/verifier.c. (bsc#1196130). - CVE-2022-23036,CVE-2022-23037,CVE-2022-23038,CVE-2022-23039,CVE-2022-23040,CVE-2022-23041,CVE-2022-23042: Fixed multiple issues which could have lead to read/write access to memory pages or denial of service. These issues are related to the Xen PV device frontend drivers. (bsc#1196488) The following non-security bugs were fixed: - ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board (git-fixes). - ACPI: APEI: fix return value of __setup handlers (git-fixes). - ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3 (git-fixes). - ACPI: CPPC: Avoid out of bounds access when parsing _CPC data (git-fixes). - ACPI: docs: enumeration: Discourage to use custom _DSM methods (git-fixes). - ACPI: docs: enumeration: Remove redundant .owner assignment (git-fixes). - ACPI: properties: Consistently return -ENOENT if there are no more references (git-fixes). - ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU (git-fixes). - ALSA: cmipci: Restore aux vol on suspend/resume (git-fixes). - ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GA402 (git-fixes). - ALSA: oss: Fix PCM OSS buffer allocation overflow (git-fixes). - ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec (git-fixes). - ALSA: pcm: Add stream lock during PCM reset ioctl operations (git-fixes). - ALSA: spi: Add check for clk_enable() (git-fixes). - ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB (git-fixes). - ASoC: atmel_ssc_dai: Handle errors for clk_enable (git-fixes). - ASoC: atmel: Add missing of_node_put() in at91sam9g20ek_audio_probe (git-fixes). - ASoC: codecs: wcd934x: Add missing of_node_put() in wcd934x_codec_parse_data (git-fixes). - ASoC: codecs: wcd934x: fix return value of wcd934x_rx_hph_mode_put (git-fixes). - ASoC: dmaengine: do not use a NULL prepare_slave_config() callback (git-fixes). - ASoC: dwc-i2s: Handle errors for clk_enable (git-fixes). - ASoC: fsi: Add check for clk_enable (git-fixes). - ASoC: fsl_spdif: Disable TX clock when stop (git-fixes). - ASoC: imx-es8328: Fix error return code in imx_es8328_probe() (git-fixes). - ASoC: msm8916-wcd-analog: Fix error handling in pm8916_wcd_analog_spmi_probe (git-fixes). - ASoC: msm8916-wcd-digital: Fix missing clk_disable_unprepare() in msm8916_wcd_digital_probe (git-fixes). - ASoC: mxs-saif: Handle errors for clk_enable (git-fixes). - ASoC: mxs: Fix error handling in mxs_sgtl5000_probe (git-fixes). - ASoC: rt5663: check the return value of devm_kzalloc() in rt5663_parse_dp() (git-fixes). - ASoC: SOF: Add missing of_node_put() in imx8m_probe (git-fixes). - ASoC: SOF: topology: remove redundant code (git-fixes). - ASoC: sti: Fix deadlock via snd_pcm_stop_xrun() call (git-fixes). - ASoC: ti: davinci-i2s: Add check for clk_enable() (git-fixes). - ASoC: topology: Allow TLV control to be either read or write (git-fixes). - ASoC: topology: Optimize soc_tplg_dapm_graph_elems_load behavior (git-fixes). - ASoC: wm8350: Handle error for wm8350_register_irq (git-fixes). - ASoC: xilinx: xlnx_formatter_pcm: Handle sysclk setting (git-fixes). - ax25: Fix NULL pointer dereference in ax25_kill_by_device (git-fixes). - ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (bsc#1196018). - block: update io_ticks when io hang (bsc#1197817). - block/wbt: fix negative inflight counter when remove scsi device (bsc#1197819). - bpf: Fix comment for helper bpf_current_task_under_cgroup() (git-fixes). - bpf: Remove config check to enable bpf support for branch records (git-fixes bsc#1177028). - btrfs: avoid unnecessary lock and leaf splits when updating inode in the log (bsc#1194649). - btrfs: avoid unnecessary log mutex contention when syncing log (bsc#1194649). - btrfs: avoid unnecessary logging of xattrs during fast fsyncs (bsc#1194649). - btrfs: check error value from btrfs_update_inode in tree log (bsc#1194649). - btrfs: check if a log root exists before locking the log_mutex on unlink (bsc#1194649). - btrfs: check if a log tree exists at inode_logged() (bsc#1194649). - btrfs: do not commit delayed inode when logging a file in full sync mode (bsc#1194649). - btrfs: do not log new dentries when logging that a new name exists (bsc#1194649). - btrfs: eliminate some false positives when checking if inode was logged (bsc#1194649). - btrfs: fix race leading to unnecessary transaction commit when logging inode (bsc#1194649). - btrfs: fix race that causes unnecessary logging of ancestor inodes (bsc#1194649). - btrfs: fix race that makes inode logging fallback to transaction commit (bsc#1194649). - btrfs: fix race that results in logging old extents during a fast fsync (bsc#1194649). - btrfs: fixup error handling in fixup_inode_link_counts (bsc#1194649). - btrfs: remove no longer needed full sync flag check at inode_logged() (bsc#1194649). - btrfs: Remove unnecessary check from join_running_log_trans (bsc#1194649). - btrfs: remove unnecessary directory inode item update when deleting dir entry (bsc#1194649). - btrfs: remove unnecessary list head initialization when syncing log (bsc#1194649). - btrfs: skip unnecessary searches for xattrs when logging an inode (bsc#1194649). - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path (git-fixes). - can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error path (git-fixes). - can: mcba_usb: properly check endpoint type (git-fixes). - can: rcar_canfd: rcar_canfd_channel_probe(): register the CAN device when fully ready (git-fixes). - cifs: do not skip link targets when an I/O fails (bsc#1194625). - cifs: use the correct max-length for dentry_path_raw() (bsc1196196). - clk: actions: Terminate clk_div_table with sentinel element (git-fixes). - clk: bcm2835: Remove unused variable (git-fixes). - clk: clps711x: Terminate clk_div_table with sentinel element (git-fixes). - clk: imx7d: Remove audio_mclk_root_clk (git-fixes). - clk: Initialize orphan req_rate (git-fixes). - clk: loongson1: Terminate clk_div_table with sentinel element (git-fixes). - clk: nxp: Remove unused variable (git-fixes). - clk: qcom: gcc-msm8994: Fix gpll4 width (git-fixes). - clk: qcom: ipq8074: Use floor ops for SDCC1 clock (git-fixes). - clk: tegra: tegra124-emc: Fix missing put_device() call in emc_ensure_emc_driver (git-fixes). - clk: uniphier: Fix fixed-rate initialization (git-fixes). - clocksource: acpi_pm: fix return value of __setup handler (git-fixes). - clocksource/drivers/timer-of: Check return value of of_iomap in timer_of_base_init() (git-fixes). - cpufreq: schedutil: Destroy mutex before kobject_put() frees (git-fixes) - crypto: authenc - Fix sleep in atomic context in decrypt_tail (git-fixes). - crypto: cavium/nitrox - do not cast parameter in bit operations (git-fixes). - crypto: ccp - ccp_dmaengine_unregister release dma channels (git-fixes). - crypto: ccree - do not attempt 0 len DMA mappings (git-fixes). - crypto: mxs-dcp - Fix scatterlist processing (git-fixes). - crypto: qat - do not cast parameter in bit operations (git-fixes). - crypto: rsa-pkcs1pad - correctly get hash from source scatterlist (git-fixes). - crypto: rsa-pkcs1pad - fix buffer overread in pkcs1pad_verify_complete() (git-fixes). - crypto: rsa-pkcs1pad - restore signature length check (git-fixes). - crypto: vmx - add missing dependencies (git-fixes). - dma/pool: create dma atomic pool only if dma zone has managed pages (bsc#1197501). - driver core: dd: fix return value of __setup handler (git-fixes). - drm: bridge: adv7511: Fix ADV7535 HPD enablement (git-fixes). - drm/amd/display: Add affected crtcs to atomic state for dsc mst unplug (git-fixes). - drm/amd/pm: return -ENOTSUPP if there is no get_dpm_ultimate_freq function (git-fixes). - drm/bridge: dw-hdmi: use safe format when first in bridge chain (git-fixes). - drm/bridge: nwl-dsi: Fix PM disable depth imbalance in nwl_dsi_probe (git-fixes). - drm/doc: overview before functions for drm_writeback.c (git-fixes). - drm/i915: Fix dbuf slice config lookup (git-fixes). - drm/i915/gem: add missing boundary check in vm_access (git-fixes). - drm/imx: parallel-display: Remove bus flags check in imx_pd_bridge_atomic_check() (git-fixes). - drm/meson: Fix error handling when afbcd.ops->init fails (git-fixes). - drm/meson: osd_afbcd: Add an exit callback to struct meson_afbcd_ops (git-fixes). - drm/msm/dpu: add DSPP blocks teardown (git-fixes). - drm/nouveau/acr: Fix undefined behavior in nvkm_acr_hsfw_load_bl() (git-fixes). - drm/panel: simple: Fix Innolux G070Y2-L01 BPP settings (git-fixes). - drm/sun4i: mixer: Fix P010 and P210 format numbers (git-fixes). - drm/vc4: crtc: Fix runtime_pm reference counting (git-fixes). - drm/vc4: crtc: Make sure the HDMI controller is powered when disabling (git-fixes). - drm/vrr: Set VRR capable prop only if it is attached to connector (git-fixes). - Drop HID multitouch fix patch (bsc#1197243), - ecryptfs: fix kernel panic with null dev_name (bsc#1197812). - ecryptfs: Fix typo in message (bsc#1197811). - EDAC: Fix calculation of returned address and next offset in edac_align_ptr() (bsc#1178134). - ext2: correct max file size computing (bsc#1197820). - firmware: google: Properly state IOMEM dependency (git-fixes). - firmware: qcom: scm: Remove reassignment to desc following initializer (git-fixes). - fscrypt: do not ignore minor_hash when hash is 0 (bsc#1197815). - gianfar: ethtool: Fix refcount leak in gfar_get_ts_info (git-fixes). - gpio: ts4900: Do not set DAT and OE together (git-fixes). - gpiolib: acpi: Convert ACPI value of debounce to microseconds (git-fixes). - HID: multitouch: fix Dell Precision 7550 and 7750 button type (bsc#1197243). - hwmon: (pmbus) Add mutex to regulator ops (git-fixes). - hwmon: (pmbus) Add Vin unit off handling (git-fixes). - hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING (git-fixes). - hwrng: atmel - disable trng on failure path (git-fixes). - i915_vma: Rename vma_lookup to i915_vma_lookup (git-fixes). - ibmvnic: fix race between xmit and reset (bsc#1197302 ltc#197259). - iio: accel: mma8452: use the correct logic to get mma8452_data (git-fixes). - iio: adc: Add check for devm_request_threaded_irq (git-fixes). - iio: afe: rescale: use s64 for temporary scale calculations (git-fixes). - iio: inkern: apply consumer scale on IIO_VAL_INT cases (git-fixes). - iio: inkern: apply consumer scale when no channel scale is available (git-fixes). - iio: inkern: make a best effort on offset calculation (git-fixes). - Input: aiptek - properly check endpoint type (git-fixes). - iwlwifi: do not advertise TWT support (git-fixes). - kernel-binary.spec: Do not use the default certificate path (bsc#1194943). - KVM: SVM: Do not flush cache if hardware enforces cache coherency across encryption domains (bsc#1178134). - llc: fix netdevice reference leaks in llc_ui_bind() (git-fixes). - mac80211: fix potential double free on mesh join (git-fixes). - mac80211: refuse aggregations sessions before authorized (git-fixes). - media: aspeed: Correct value for h-total-pixels (git-fixes). - media: bttv: fix WARNING regression on tunerless devices (git-fixes). - media: coda: Fix missing put_device() call in coda_get_vdoa_data (git-fixes). - media: davinci: vpif: fix unbalanced runtime PM get (git-fixes). - media: em28xx: initialize refcount before kref_get (git-fixes). - media: hantro: Fix overfill bottom register field name (git-fixes). - media: Revert "media: em28xx: add missing em28xx_close_extension" (git-fixes). - media: stk1160: If start stream fails, return buffers with VB2_BUF_STATE_QUEUED (git-fixes). - media: usb: go7007: s2250-board: fix leak in probe() (git-fixes). - media: video/hdmi: handle short reads of hdmi info frame (git-fixes). - membarrier: Execute SYNC_CORE on the calling thread (git-fixes) - membarrier: Explicitly sync remote cores when SYNC_CORE is (git-fixes) - memory: emif: Add check for setup_interrupts (git-fixes). - memory: emif: check the pointer temp in get_device_details() (git-fixes). - misc: alcor_pci: Fix an error handling path (git-fixes). - misc: sgi-gru: Do not cast parameter in bit operations (git-fixes). - mm_zone: add function to check if managed dma zone exists (bsc#1197501). - mm/page_alloc.c: do not warn allocation failure on zone DMA if no managed pages (bsc#1197501). - mmc: davinci_mmc: Handle error for clk_enable (git-fixes). - mmc: meson: Fix usage of meson_mmc_post_req() (git-fixes). - net: dsa: mv88e6xxx: override existent unicast portvec in port_fdb_add (git-fixes). - net: enetc: initialize the RFS and RSS memories (git-fixes). - net: hns3: add a check for tqp_index in hclge_get_ring_chain_from_mbx() (git-fixes). - net: phy: broadcom: Fix brcm_fet_config_init() (git-fixes). - net: phy: DP83822: clear MISR2 register to disable interrupts (git-fixes). - net: phy: marvell: Fix invalid comparison in the resume and suspend functions (git-fixes). - net: stmmac: set TxQ mode back to DCB after disabling CBS (git-fixes). - net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (bsc#1196018). - net: watchdog: hold device global xmit lock during tx disable (git-fixes). - net/smc: Fix loop in smc_listen (git-fixes). - net/smc: fix using of uninitialized completions (git-fixes). - net/smc: fix wrong list_del in smc_lgr_cleanup_early (git-fixes). - net/smc: Make sure the link_id is unique (git-fixes). - net/smc: Reset conn->lgr when link group registration fails (git-fixes). - netfilter: conntrack: do not refresh sctp entries in closed state (bsc#1197389). - netxen_nic: fix MSI/MSI-x interrupts (git-fixes). - NFC: port100: fix use-after-free in port100_send_complete (git-fixes). - NFS: Avoid duplicate uncached readdir calls on eof (git-fixes). - NFS: Do not report writeback errors in nfs_getattr() (git-fixes). - NFS: Do not skip directory entries when doing uncached readdir (git-fixes). - NFS: Ensure the server had an up to date ctime before hardlinking (git-fixes). - NFS: Fix initialisation of nfs_client cl_flags field (git-fixes). - NFS: LOOKUP_DIRECTORY is also ok with symlinks (git-fixes). - NFS: Return valid errors from nfs2/3_decode_dirent() (git-fixes). - NFS: Use of mapping_set_error() results in spurious errors (git-fixes). - nfsd: nfsd4_setclientid_confirm mistakenly expires confirmed client (git-fixes). - NFSv4.1: do not retry BIND_CONN_TO_SESSION on session error (git-fixes). - NFSv4/pNFS: Fix another issue with a list iterator pointing to the head (git-fixes). - pinctrl: mediatek: Fix missing of_node_put() in mtk_pctrl_init (git-fixes). - pinctrl: mediatek: paris: Fix "argument" argument type for mtk_pinconf_get() (git-fixes). - pinctrl: mediatek: paris: Fix pingroup pin config state readback (git-fixes). - pinctrl: nomadik: Add missing of_node_put() in nmk_pinctrl_probe (git-fixes). - pinctrl: nuvoton: npcm7xx: Rename DS() macro to DSTR() (git-fixes). - pinctrl: nuvoton: npcm7xx: Use %zu printk format for ARRAY_SIZE() (git-fixes). - pinctrl: pinconf-generic: Print arguments for bias-pull-* (git-fixes). - pinctrl: samsung: drop pin banks references on error paths (git-fixes). - pinctrl/rockchip: Add missing of_node_put() in rockchip_pinctrl_probe (git-fixes). - PM: hibernate: fix __setup handler error handling (git-fixes). - PM: suspend: fix return value of __setup handler (git-fixes). - powerpc/lib/sstep: Fix 'sthcx' instruction (bsc#1156395). - powerpc/mm: Fix verification of MMU_FTR_TYPE_44x (bsc#1156395). - powerpc/mm/numa: skip NUMA_NO_NODE onlining in parse_numa_properties() (bsc#1179639 ltc#189002 git-fixes). - powerpc/perf: Do not use perf_hw_context for trace IMC PMU (bsc#1156395). - powerpc/perf: Expose Performance Monitor Counter SPR's as part of extended regs (bsc#1198077 ltc#197299). - powerpc/perf: Include PMCs as part of per-cpu cpuhw_events struct (bsc#1198077 ltc#197299). - powerpc/pseries: Fix use after free in remove_phb_dynamic() (bsc#1065729). - powerpc/sysdev: fix incorrect use to determine if list is empty (bsc#1065729). - powerpc/tm: Fix more userspace r13 corruption (bsc#1065729). - powerpc/xive: fix return value of __setup handler (bsc#1065729). - printk: Add panic_in_progress helper (bsc#1197894). - printk: disable optimistic spin during panic (bsc#1197894). - pwm: lpc18xx-sct: Initialize driver data and hardware before pwmchip_add() (git-fixes). - regulator: qcom_smd: fix for_each_child.cocci warnings (git-fixes). - remoteproc: qcom_wcnss: Add missing of_node_put() in wcnss_alloc_memory_region (git-fixes). - remoteproc: qcom: Fix missing of_node_put in adsp_alloc_memory_region (git-fixes). - Revert "build initrd without systemd" (bsc#1197300). - Revert "Input: clear BTN_RIGHT/MIDDLE on buttonpads" (bsc#1197243). - Revert "module, async: async_synchronize_full() on module init iff async is used" (bsc#1197888). - Revert "Revert "build initrd without systemd" (bsc#1197300)" - Revert "usb: dwc3: gadget: Use list_replace_init() before traversing lists" (git-fixes). - s390/bpf: Perform r1 range checking before accessing jit->seen_reg (git-fixes). - s390/gmap: do not unconditionally call pte_unmap_unlock() in __gmap_zap() (git-fixes). - s390/gmap: validate VMA in __gmap_zap() (git-fixes). - s390/hypfs: include z/VM guests with access control group set (bsc#1195640 LTC#196352). - s390/kexec_file: fix error handling when applying relocations (git-fixes). - s390/kexec: fix memory leak of ipl report buffer (git-fixes). - s390/kexec: fix return code handling (git-fixes). - s390/mm: fix VMA and page table handling code in storage key handling functions (git-fixes). - s390/mm: validate VMA in PGSTE manipulation functions (git-fixes). - s390/module: fix loading modules with a lot of relocations (git-fixes). - s390/pci_mmio: fully validate the VMA before calling follow_pte() (git-fixes). - s390/tape: fix timer initialization in tape_std_assign() (bsc#1197677 LTC#197378). - scsi: lpfc: Copyright updates for 14.2.0.0 patches (bsc#1197675). - scsi: lpfc: Drop lpfc_no_handler() (bsc#1197675). - scsi: lpfc: Fix broken SLI4 abort path (bsc#1197675). - scsi: lpfc: Fix locking for lpfc_sli_iocbq_lookup() (bsc#1197675). - scsi: lpfc: Fix queue failures when recovering from PCI parity error (bsc#1197675 bsc#1196478). - scsi: lpfc: Fix typos in comments (bsc#1197675). - scsi: lpfc: Fix unload hang after back to back PCI EEH faults (bsc#1197675 bsc#1196478). - scsi: lpfc: Improve PCI EEH Error and Recovery Handling (bsc#1197675 bsc#1196478). - scsi: lpfc: Kill lpfc_bus_reset_handler() (bsc#1197675). - scsi: lpfc: Reduce log messages seen after firmware download (bsc#1197675). - scsi: lpfc: Remove failing soft_wwn support (bsc#1197675). - scsi: lpfc: Remove NVMe support if kernel has NVME_FC disabled (bsc#1197675). - scsi: lpfc: Remove redundant flush_workqueue() call (bsc#1197675). - scsi: lpfc: SLI path split: Introduce lpfc_prep_wqe (bsc#1197675). - scsi: lpfc: SLI path split: Refactor Abort paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor base ELS paths and the FLOGI path (bsc#1197675). - scsi: lpfc: SLI path split: Refactor BSG paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor CT paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor fast and slow paths to native SLI4 (bsc#1197675). - scsi: lpfc: SLI path split: Refactor FDISC paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor lpfc_iocbq (bsc#1197675). - scsi: lpfc: SLI path split: Refactor LS_ACC paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor LS_RJT paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor misc ELS paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor PLOGI/PRLI/ADISC/LOGO paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor SCSI paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor the RSCN/SCR/RDF/EDC/FARPR paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor VMID paths (bsc#1197675). - scsi: lpfc: Update lpfc version to 14.2.0.0 (bsc#1197675). - scsi: lpfc: Update lpfc version to 14.2.0.1 (bsc#1197675). - scsi: lpfc: Use fc_block_rport() (bsc#1197675). - scsi: lpfc: Use kcalloc() (bsc#1197675). - scsi: lpfc: Use rport as argument for lpfc_chk_tgt_mapped() (bsc#1197675). - scsi: lpfc: Use rport as argument for lpfc_send_taskmgmt() (bsc#1197675). - scsi: qla2xxx: Fix crash during module load unload test (bsc#1197661). - scsi: qla2xxx: Fix disk failure to rediscover (bsc#1197661). - scsi: qla2xxx: Fix hang due to session stuck (bsc#1197661). - scsi: qla2xxx: Fix incorrect reporting of task management failure (bsc#1197661). - scsi: qla2xxx: Fix laggy FC remote port session recovery (bsc#1197661). - scsi: qla2xxx: Fix loss of NVMe namespaces after driver reload test (bsc#1197661). - scsi: qla2xxx: Fix missed DMA unmap for NVMe ls requests (bsc#1197661). - scsi: qla2xxx: Fix N2N inconsistent PLOGI (bsc#1197661). - scsi: qla2xxx: Fix stuck session of PRLI reject (bsc#1197661). - scsi: qla2xxx: Fix typos in comments (bsc#1197661). - scsi: qla2xxx: Increase max limit of ql2xnvme_queues (bsc#1197661). - scsi: qla2xxx: Reduce false trigger to login (bsc#1197661). - scsi: qla2xxx: Stop using the SCSI pointer (bsc#1197661). - scsi: qla2xxx: Update version to 10.02.07.400-k (bsc#1197661). - scsi: qla2xxx: Use correct feature type field during RFF_ID processing (bsc#1197661). - scsi: qla2xxx: Use named initializers for port_state_str (bsc#1197661). - scsi: qla2xxx: Use named initializers for q_dev_state (bsc#1197661). - serial: 8250_lpss: Balance reference count for PCI DMA device (git-fixes). - serial: 8250_mid: Balance reference count for PCI DMA device (git-fixes). - serial: 8250: Fix race condition in RTS-after-send handling (git-fixes). - serial: core: Fix the definition name in the comment of UPF_* flags (git-fixes). - soc: qcom: aoss: remove spurious IRQF_ONESHOT flags (git-fixes). - soc: qcom: rpmpd: Check for null return of devm_kcalloc (git-fixes). - soc: ti: wkup_m3_ipc: Fix IRQ check in wkup_m3_ipc_probe (git-fixes). - soundwire: intel: fix wrong register name in intel_shim_wake (git-fixes). - spi: pxa2xx-pci: Balance reference count for PCI DMA device (git-fixes). - spi: tegra114: Add missing IRQ check in tegra_spi_probe (git-fixes). - staging: gdm724x: fix use after free in gdm_lte_rx() (git-fixes). - staging:iio:adc:ad7280a: Fix handing of device address bit reversing (git-fixes). - tcp: add some entropy in __inet_hash_connect() (bsc#1180153). - tcp: change source port randomizarion at connect() time (bsc#1180153). - team: protect features update by RCU to avoid deadlock (git-fixes). - thermal: int340x: Check for NULL after calling kmemdup() (git-fixes). - thermal: int340x: Increase bitmap size (git-fixes). - udp_tunnel: Fix end of loop test in udp_tunnel_nic_unregister() (git-fixes). - Update config files (bsc#1195926 bsc#1175667). VIRTIO_PCI=m -> VIRTIO_PCI=y - usb: bdc: Adb shows offline after resuming from S2 (git-fixes). - usb: bdc: Fix a resource leak in the error handling path of 'bdc_probe()' (git-fixes). - usb: bdc: Fix unused assignment in bdc_probe() (git-fixes). - usb: bdc: remove duplicated error message (git-fixes). - usb: bdc: Use devm_clk_get_optional() (git-fixes). - usb: bdc: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc2: Fix Stalling a Non-Isochronous OUT EP (git-fixes). - usb: dwc2: gadget: Fix GOUTNAK flow for Slave mode (git-fixes). - usb: dwc2: gadget: Fix kill_all_requests race (git-fixes). - usb: dwc3: gadget: Use list_replace_init() before traversing lists (git-fixes). - usb: dwc3: meson-g12a: Disable the regulator in the error handling path of the probe (git-fixes). - usb: dwc3: qcom: add IRQ check (git-fixes). - usb: gadget: bdc: use readl_poll_timeout() to simplify code (git-fixes). - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver (git-fixes). - usb: gadget: rndis: prevent integer overflow in rndis_set_response() (git-fixes). - usb: host: xen-hcd: add missing unlock in error path (git-fixes). - usb: hub: Fix locking issues with address0_mutex (git-fixes). - usb: usbtmc: Fix bug in pipe direction for control transfers (git-fixes). - VFS: filename_create(): fix incorrect intent (bsc#1197534). - video: fbdev: atmel_lcdfb: fix an error code in atmel_lcdfb_probe() (git-fixes). - video: fbdev: controlfb: Fix COMPILE_TEST build (git-fixes). - video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name() (git-fixes). - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to avoid black screen (git-fixes). - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to avoid black screen (git-fixes). - video: fbdev: omapfb: Add missing of_node_put() in dvic_probe_of (git-fixes). - video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe() (git-fixes). - VMCI: Fix the description of vmci_check_host_caps() (git-fixes). - vsprintf: Fix %pK with kptr_restrict == 0 (bsc#1197889). - wireguard: queueing: use CFI-safe ptr_ring cleanup function (git-fixes). - wireguard: selftests: rename DEBUG_PI_LIST to DEBUG_PLIST (git-fixes). - wireguard: socket: free skb in send6 when ipv6 is disabled (git-fixes). - wireguard: socket: ignore v6 endpoints when ipv6 is disabled (git-fixes). - x86/cpu: Add hardware-enforced cache coherency as a CPUID feature (bsc#1178134). - x86/mm/pat: Do not flush cache if hardware enforces cache coherency across encryption domnains (bsc#1178134). - x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF + SMT (bsc#1178134). - x86/speculation: Warn about Spectre v2 LFENCE mitigation (bsc#1178134). - xen/usb: do not use gnttab_end_foreign_access() in xenhcd_gnttab_done() (bsc#1196488, XSA-396). - xhci: fix garbage USBSTS being logged in some cases (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.53.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.53.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.53.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.53.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.53.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.53.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.53.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.53.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.53.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.53.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.53.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.53.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.53.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.53.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.53.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.53.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.53.1.x86_64.rpm True openSUSE-SLE-15.3-2022-1735 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libmediaart libmediaart-1.9.4-150000.5.2.1.src.rpm libmediaart-2_0-0-1.9.4-150000.5.2.1.x86_64.rpm libmediaart-devel-1.9.4-150000.5.2.1.x86_64.rpm typelib-1_0-MediaArt-2_0-1.9.4-150000.5.2.1.x86_64.rpm libmediaart-2_0-0-1.9.4-150000.5.2.1.s390x.rpm libmediaart-devel-1.9.4-150000.5.2.1.s390x.rpm typelib-1_0-MediaArt-2_0-1.9.4-150000.5.2.1.s390x.rpm libmediaart-2_0-0-1.9.4-150000.5.2.1.ppc64le.rpm libmediaart-devel-1.9.4-150000.5.2.1.ppc64le.rpm typelib-1_0-MediaArt-2_0-1.9.4-150000.5.2.1.ppc64le.rpm libmediaart-2_0-0-1.9.4-150000.5.2.1.aarch64.rpm libmediaart-devel-1.9.4-150000.5.2.1.aarch64.rpm typelib-1_0-MediaArt-2_0-1.9.4-150000.5.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1162 important SUSE Updates openSUSE-SLE 15.3 This update for subversion fixes the following issues: - CVE-2022-24070: Fixed a memory corruption issue in mod_dav_svn as used by Apache HTTP server. This could be exploited by a remote attacker to cause a denial of service (bsc#1197940). - CVE-2021-28544: Fixed an information leak issue where Subversion servers may reveal the original path of files protected by path-based authorization (bsc#1197939). libsvn_auth_gnome_keyring-1-0-1.10.6-150300.10.8.1.x86_64.rpm libsvn_auth_kwallet-1-0-1.10.6-150300.10.8.1.x86_64.rpm subversion-1.10.6-150300.10.8.1.src.rpm subversion-1.10.6-150300.10.8.1.x86_64.rpm subversion-bash-completion-1.10.6-150300.10.8.1.noarch.rpm subversion-devel-1.10.6-150300.10.8.1.x86_64.rpm subversion-perl-1.10.6-150300.10.8.1.x86_64.rpm subversion-python-1.10.6-150300.10.8.1.x86_64.rpm subversion-python-ctypes-1.10.6-150300.10.8.1.x86_64.rpm subversion-ruby-1.10.6-150300.10.8.1.x86_64.rpm subversion-server-1.10.6-150300.10.8.1.x86_64.rpm subversion-tools-1.10.6-150300.10.8.1.x86_64.rpm libsvn_auth_gnome_keyring-1-0-1.10.6-150300.10.8.1.s390x.rpm libsvn_auth_kwallet-1-0-1.10.6-150300.10.8.1.s390x.rpm subversion-1.10.6-150300.10.8.1.s390x.rpm subversion-devel-1.10.6-150300.10.8.1.s390x.rpm subversion-perl-1.10.6-150300.10.8.1.s390x.rpm subversion-python-1.10.6-150300.10.8.1.s390x.rpm subversion-python-ctypes-1.10.6-150300.10.8.1.s390x.rpm subversion-ruby-1.10.6-150300.10.8.1.s390x.rpm subversion-server-1.10.6-150300.10.8.1.s390x.rpm subversion-tools-1.10.6-150300.10.8.1.s390x.rpm libsvn_auth_gnome_keyring-1-0-1.10.6-150300.10.8.1.ppc64le.rpm libsvn_auth_kwallet-1-0-1.10.6-150300.10.8.1.ppc64le.rpm subversion-1.10.6-150300.10.8.1.ppc64le.rpm subversion-devel-1.10.6-150300.10.8.1.ppc64le.rpm subversion-perl-1.10.6-150300.10.8.1.ppc64le.rpm subversion-python-1.10.6-150300.10.8.1.ppc64le.rpm subversion-python-ctypes-1.10.6-150300.10.8.1.ppc64le.rpm subversion-ruby-1.10.6-150300.10.8.1.ppc64le.rpm subversion-server-1.10.6-150300.10.8.1.ppc64le.rpm subversion-tools-1.10.6-150300.10.8.1.ppc64le.rpm libsvn_auth_gnome_keyring-1-0-1.10.6-150300.10.8.1.aarch64.rpm libsvn_auth_kwallet-1-0-1.10.6-150300.10.8.1.aarch64.rpm subversion-1.10.6-150300.10.8.1.aarch64.rpm subversion-devel-1.10.6-150300.10.8.1.aarch64.rpm subversion-perl-1.10.6-150300.10.8.1.aarch64.rpm subversion-python-1.10.6-150300.10.8.1.aarch64.rpm subversion-python-ctypes-1.10.6-150300.10.8.1.aarch64.rpm subversion-ruby-1.10.6-150300.10.8.1.aarch64.rpm subversion-server-1.10.6-150300.10.8.1.aarch64.rpm subversion-tools-1.10.6-150300.10.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-1506 moderate SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2022-26356: Fixed potential race conditions in dirty memory tracking that could cause a denial of service in the host (bsc#1197423). - CVE-2022-26357: Fixed a potential race condition in memory cleanup for hosts using VT-d IOMMU hardware, which could lead to a denial of service in the host (bsc#1197425). - CVE-2022-26358,CVE-2022-26359,CVE-2022-26360,CVE-2022-26361: Fixed various memory corruption issues for hosts using VT-d or AMD-Vi IOMMU hardware. These could be leveraged by an attacker to cause a denial of service in the host (bsc#1197426). xen-4.14.4_04-150300.3.24.1.src.rpm True xen-4.14.4_04-150300.3.24.1.x86_64.rpm True xen-devel-4.14.4_04-150300.3.24.1.x86_64.rpm True xen-doc-html-4.14.4_04-150300.3.24.1.x86_64.rpm True xen-libs-32bit-4.14.4_04-150300.3.24.1.x86_64.rpm True xen-libs-4.14.4_04-150300.3.24.1.x86_64.rpm True xen-tools-4.14.4_04-150300.3.24.1.x86_64.rpm True xen-tools-domU-4.14.4_04-150300.3.24.1.x86_64.rpm True xen-tools-xendomains-wait-disk-4.14.4_04-150300.3.24.1.noarch.rpm True xen-4.14.4_04-150300.3.24.1.aarch64.rpm True xen-devel-4.14.4_04-150300.3.24.1.aarch64.rpm True xen-doc-html-4.14.4_04-150300.3.24.1.aarch64.rpm True xen-libs-4.14.4_04-150300.3.24.1.aarch64.rpm True xen-tools-4.14.4_04-150300.3.24.1.aarch64.rpm True xen-tools-domU-4.14.4_04-150300.3.24.1.aarch64.rpm True openSUSE-SLE-15.3-2022-1143 moderate SUSE Updates openSUSE-SLE 15.3 This update for libxkbcommon fixes the following issues: - Update to release 1.3.0 (jsc#SLE-24272) * `xkbcli list` was changed to output YAML instead of a custom format. * Fix segmentation fault in case-insensitive `xkb_keysym_from_name` for certain values like the empty string. - Update to release 1.2.1 [boo#1184688] * Fix `xkb_x11_keymap_new_from_device()` failing when the keymap contains key types with missing level names, like the one used by the `numpad:mac` option in xkeyboard-config. (Regressed in 1.2.0.) - Update to release 1.2.0 * `xkb_x11_keymap_new_from_device()` is much faster. It now performs only 2 roundtrips to the X server, instead of dozens (in first-time calls). * Case-sensitive `xkb_keysym_from_name()` is much faster. * Keysym names of the form `0x12AB` and `U12AB` are parsed more strictly. * Compose files now have a size limit (65535 internal nodes). * Compose table loading (`xkb_compose_table_new_from_locale()` and similar) is much faster. - Update to release 1.1.0 * Update keysym definitions to latest xorgproto. In particular, this adds many special keysyms corresponding to Linux evdev keycodes. * New XKB_KEY_* definitions. - Update to release 1.0.3 * Fix (hopefully) a segfault in xkb_x11_keymap_new_from_device() in some unclear situation (bug introduced in 1.0.2). * Fix keymaps created with xkb_x11_keymap_new_from_device() do not have level names (bug introduced in 0.8.0). - Update to release 1.0.2 * Fix a bug where a keysym that cannot be resolved in a keymap gets compiled to a garbage keysym. Now it is set to XKB_KEY_NoSymbol instead. * Improve the speed of xkb_x11_keymap_new_from_device() on repeated calls in the same xkb_context(). - Update to release 1.0.1 * Make the table output of `xkbcli how-to-type` aligned. - Update to release 1.0.0 * Now it is possible to add custom layouts and options at the system (/etc) and user (~/.config) level, at least when libxkbcommon is in use. * libxkbregistry is a C library that lists available XKB models, layouts and variants for a given ruleset. This is a separate library (.so/.pc files) and aimed at tools that provide a listing of available keyboard layouts to the user. * Add an `xkbcli` command-line utility. - Update to release 0.10.0 * Fix quadratic complexity in the XKB file parser. * Add $XDG_CONFIG_HOME/xkb to the default search path. If $XDG_CONFIG_HOME is not set, $HOME/.config/xkb is used. If $HOME is not set, the path is not added. The XDG path is looked up before the existing default search path $HOME/.xkb. * Add support for include statements in XKB rules files. * Fix bug where the merge mode only applied to the first vmod in a "virtual_modifiers" statement. * Reject interpret modifier predicate with more than one value. * Correctly handle capitalization of the ssharp keysym. - Update to release 0.9.1 * Fix context creation failing when run in privileged processes as defined by `secure_getenv(3)`, e.g. GDM. - Update to release 0.9.0 * Move ~/.xkb to before XKB_CONFIG_ROOT. This enables the user to have full control of the keymap definitions, instead of only augmenting them. - Update to new upstream release 0.8.3 * New APIs: XKB_KEY_XF86MonBrightnessCycle, XKB_KEY_XF86RotationLockToggle. libxkbcommon-1.3.0-150300.10.3.1.src.rpm libxkbcommon-devel-1.3.0-150300.10.3.1.x86_64.rpm libxkbcommon-devel-32bit-1.3.0-150300.10.3.1.x86_64.rpm libxkbcommon-x11-0-1.3.0-150300.10.3.1.x86_64.rpm libxkbcommon-x11-0-32bit-1.3.0-150300.10.3.1.x86_64.rpm libxkbcommon-x11-devel-1.3.0-150300.10.3.1.x86_64.rpm libxkbcommon-x11-devel-32bit-1.3.0-150300.10.3.1.x86_64.rpm libxkbcommon0-1.3.0-150300.10.3.1.x86_64.rpm libxkbcommon0-32bit-1.3.0-150300.10.3.1.x86_64.rpm libxkbcommon-devel-1.3.0-150300.10.3.1.s390x.rpm libxkbcommon-x11-0-1.3.0-150300.10.3.1.s390x.rpm libxkbcommon-x11-devel-1.3.0-150300.10.3.1.s390x.rpm libxkbcommon0-1.3.0-150300.10.3.1.s390x.rpm libxkbcommon-devel-1.3.0-150300.10.3.1.ppc64le.rpm libxkbcommon-x11-0-1.3.0-150300.10.3.1.ppc64le.rpm libxkbcommon-x11-devel-1.3.0-150300.10.3.1.ppc64le.rpm libxkbcommon0-1.3.0-150300.10.3.1.ppc64le.rpm libxkbcommon-devel-1.3.0-150300.10.3.1.aarch64.rpm libxkbcommon-x11-0-1.3.0-150300.10.3.1.aarch64.rpm libxkbcommon-x11-devel-1.3.0-150300.10.3.1.aarch64.rpm libxkbcommon0-1.3.0-150300.10.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1579 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.9.0 ESR MFSA 2022-17 (bsc#1198970) * CVE-2022-29914: Fullscreen notification bypass using popups * CVE-2022-29909: Bypassing permission prompt in nested browsing contexts * CVE-2022-29916: Leaking browser history with CSS variables * CVE-2022-29911: iframe Sandbox bypass * CVE-2022-29912: Reader mode bypassed SameSite cookies * CVE-2022-29917: Memory safety bugs fixed in Firefox 100 and Firefox ESR 91.9 MozillaFirefox-91.9.0-150200.152.33.1.src.rpm MozillaFirefox-91.9.0-150200.152.33.1.x86_64.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.33.1.x86_64.rpm MozillaFirefox-devel-91.9.0-150200.152.33.1.x86_64.rpm MozillaFirefox-translations-common-91.9.0-150200.152.33.1.x86_64.rpm MozillaFirefox-translations-other-91.9.0-150200.152.33.1.x86_64.rpm MozillaFirefox-91.9.0-150200.152.33.1.s390x.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.33.1.s390x.rpm MozillaFirefox-devel-91.9.0-150200.152.33.1.s390x.rpm MozillaFirefox-translations-common-91.9.0-150200.152.33.1.s390x.rpm MozillaFirefox-translations-other-91.9.0-150200.152.33.1.s390x.rpm MozillaFirefox-91.9.0-150200.152.33.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.33.1.ppc64le.rpm MozillaFirefox-devel-91.9.0-150200.152.33.1.ppc64le.rpm MozillaFirefox-translations-common-91.9.0-150200.152.33.1.ppc64le.rpm MozillaFirefox-translations-other-91.9.0-150200.152.33.1.ppc64le.rpm MozillaFirefox-91.9.0-150200.152.33.1.aarch64.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.33.1.aarch64.rpm MozillaFirefox-devel-91.9.0-150200.152.33.1.aarch64.rpm MozillaFirefox-translations-common-91.9.0-150200.152.33.1.aarch64.rpm MozillaFirefox-translations-other-91.9.0-150200.152.33.1.aarch64.rpm openSUSE-SLE-15.3-2022-1549 moderate SUSE Updates openSUSE-SLE 15.3 This update for libvirt fixes the following issues: - CVE-2022-0897: Fixed a crash in nwfilter when counting number of network filters (bsc#1197636). The following non-security bugs were fixed: - qemu: Improve save operation by increasing pipe size c61d1e9b-virfile-set-pipe-size.patch, 47d6d185-virfile-fix-indent.patch, cd7acb33-virfile-report-error.patch bsc#1196625 - qemu: Directly query KVM for TSC scaling support 5df2c492-use-kvm-for-tsc-scaling.patch bsc#1193364 libvirt-7.1.0-150300.6.29.1.src.rpm libvirt-7.1.0-150300.6.29.1.x86_64.rpm libvirt-admin-7.1.0-150300.6.29.1.x86_64.rpm libvirt-bash-completion-7.1.0-150300.6.29.1.noarch.rpm libvirt-client-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-150300.6.29.1.x86_64.rpm libvirt-daemon-xen-7.1.0-150300.6.29.1.x86_64.rpm libvirt-devel-32bit-7.1.0-150300.6.29.1.x86_64.rpm libvirt-devel-7.1.0-150300.6.29.1.x86_64.rpm libvirt-doc-7.1.0-150300.6.29.1.noarch.rpm libvirt-libs-7.1.0-150300.6.29.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-150300.6.29.1.x86_64.rpm libvirt-nss-7.1.0-150300.6.29.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.29.1.x86_64.rpm libvirt-7.1.0-150300.6.29.1.s390x.rpm libvirt-admin-7.1.0-150300.6.29.1.s390x.rpm libvirt-client-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-config-network-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-hooks-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-lxc-7.1.0-150300.6.29.1.s390x.rpm libvirt-daemon-qemu-7.1.0-150300.6.29.1.s390x.rpm libvirt-devel-7.1.0-150300.6.29.1.s390x.rpm libvirt-libs-7.1.0-150300.6.29.1.s390x.rpm libvirt-lock-sanlock-7.1.0-150300.6.29.1.s390x.rpm libvirt-nss-7.1.0-150300.6.29.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-150300.6.29.1.s390x.rpm libvirt-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-admin-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-client-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-devel-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-libs-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-nss-7.1.0-150300.6.29.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-7.1.0-150300.6.29.1.aarch64.rpm libvirt-admin-7.1.0-150300.6.29.1.aarch64.rpm libvirt-client-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-150300.6.29.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-150300.6.29.1.aarch64.rpm libvirt-devel-7.1.0-150300.6.29.1.aarch64.rpm libvirt-libs-7.1.0-150300.6.29.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-150300.6.29.1.aarch64.rpm libvirt-nss-7.1.0-150300.6.29.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.29.1.aarch64.rpm openSUSE-SLE-15.3-2022-1464 moderate SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: - Enable auth_els plugin (jsc#SLE-20151) strongswan-5.8.2-150200.11.27.1.src.rpm strongswan-5.8.2-150200.11.27.1.x86_64.rpm strongswan-doc-5.8.2-150200.11.27.1.noarch.rpm strongswan-hmac-5.8.2-150200.11.27.1.x86_64.rpm strongswan-ipsec-5.8.2-150200.11.27.1.x86_64.rpm strongswan-libs0-5.8.2-150200.11.27.1.x86_64.rpm strongswan-mysql-5.8.2-150200.11.27.1.x86_64.rpm strongswan-nm-5.8.2-150200.11.27.1.x86_64.rpm strongswan-sqlite-5.8.2-150200.11.27.1.x86_64.rpm strongswan-5.8.2-150200.11.27.1.s390x.rpm strongswan-hmac-5.8.2-150200.11.27.1.s390x.rpm strongswan-ipsec-5.8.2-150200.11.27.1.s390x.rpm strongswan-libs0-5.8.2-150200.11.27.1.s390x.rpm strongswan-mysql-5.8.2-150200.11.27.1.s390x.rpm strongswan-nm-5.8.2-150200.11.27.1.s390x.rpm strongswan-sqlite-5.8.2-150200.11.27.1.s390x.rpm strongswan-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-hmac-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-ipsec-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-libs0-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-mysql-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-nm-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-sqlite-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-5.8.2-150200.11.27.1.aarch64.rpm strongswan-hmac-5.8.2-150200.11.27.1.aarch64.rpm strongswan-ipsec-5.8.2-150200.11.27.1.aarch64.rpm strongswan-libs0-5.8.2-150200.11.27.1.aarch64.rpm strongswan-mysql-5.8.2-150200.11.27.1.aarch64.rpm strongswan-nm-5.8.2-150200.11.27.1.aarch64.rpm strongswan-sqlite-5.8.2-150200.11.27.1.aarch64.rpm openSUSE-SLE-15.3-2022-1259 important SUSE Updates openSUSE-SLE 15.3 This update for icedtea-web fixes the following issues: - CVE-2019-10181: Fixed an issue where an attacker could inject unsigned code in a signed JAR file (bsc#1142835). - CVE-2019-10182: Fixed a path traversal issue where an attacker could upload arbritrary files by tricking a victim into running a specially crafted application(bsc#1142825). - CVE-2019-10185: Fixed an issue where an attacker could write files to arbitrary locations during JAR auto-extraction (bsc#1142832). icedtea-web-1.7.2-150100.7.3.1.src.rpm icedtea-web-1.7.2-150100.7.3.1.x86_64.rpm icedtea-web-javadoc-1.7.2-150100.7.3.1.noarch.rpm icedtea-web-1.7.2-150100.7.3.1.s390x.rpm icedtea-web-1.7.2-150100.7.3.1.ppc64le.rpm icedtea-web-1.7.2-150100.7.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1265 important SUSE Updates openSUSE-SLE 15.3 This update for jsoup, jsr-305 fixes the following issues: - CVE-2021-37714: Fixed infinite in untrusted HTML or XML data parsing (bsc#1189749). Changes in jsr-305: - Build with java source and target levels 8 - Upgrade to upstream version 3.0.2 Changes in jsoup: - Upgrade to upstream version 1.14.2 - Generate tarball using source service instead of a script jsoup-1.14.2-150200.3.3.1.noarch.rpm jsoup-1.14.2-150200.3.3.1.src.rpm jsoup-javadoc-1.14.2-150200.3.3.1.noarch.rpm jsr-305-3.0.2-150200.3.3.1.noarch.rpm jsr-305-3.0.2-150200.3.3.1.src.rpm jsr-305-javadoc-3.0.2-150200.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-1736 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: mysql-connector-cpp libmysqlcppconn-devel-1.1.9-150000.4.5.1.x86_64.rpm libmysqlcppconn7-1.1.9-150000.4.5.1.x86_64.rpm mysql-connector-cpp-1.1.9-150000.4.5.1.src.rpm libmysqlcppconn-devel-1.1.9-150000.4.5.1.s390x.rpm libmysqlcppconn7-1.1.9-150000.4.5.1.s390x.rpm libmysqlcppconn-devel-1.1.9-150000.4.5.1.ppc64le.rpm libmysqlcppconn7-1.1.9-150000.4.5.1.ppc64le.rpm libmysqlcppconn-devel-1.1.9-150000.4.5.1.aarch64.rpm libmysqlcppconn7-1.1.9-150000.4.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-1741 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libotr libotr-4.1.1-150000.4.2.1.src.rpm libotr-devel-4.1.1-150000.4.2.1.x86_64.rpm libotr-tools-4.1.1-150000.4.2.1.x86_64.rpm libotr5-4.1.1-150000.4.2.1.x86_64.rpm libotr-devel-4.1.1-150000.4.2.1.s390x.rpm libotr-tools-4.1.1-150000.4.2.1.s390x.rpm libotr5-4.1.1-150000.4.2.1.s390x.rpm libotr-devel-4.1.1-150000.4.2.1.ppc64le.rpm libotr-tools-4.1.1-150000.4.2.1.ppc64le.rpm libotr5-4.1.1-150000.4.2.1.ppc64le.rpm libotr-devel-4.1.1-150000.4.2.1.aarch64.rpm libotr-tools-4.1.1-150000.4.2.1.aarch64.rpm libotr5-4.1.1-150000.4.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1737 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libpst libpst-0.6.71-150000.3.2.1.src.rpm libpst-0.6.71-150000.3.2.1.x86_64.rpm libpst-devel-0.6.71-150000.3.2.1.x86_64.rpm libpst4-0.6.71-150000.3.2.1.x86_64.rpm libpst-0.6.71-150000.3.2.1.s390x.rpm libpst-devel-0.6.71-150000.3.2.1.s390x.rpm libpst4-0.6.71-150000.3.2.1.s390x.rpm libpst-0.6.71-150000.3.2.1.ppc64le.rpm libpst-devel-0.6.71-150000.3.2.1.ppc64le.rpm libpst4-0.6.71-150000.3.2.1.ppc64le.rpm libpst-0.6.71-150000.3.2.1.aarch64.rpm libpst-devel-0.6.71-150000.3.2.1.aarch64.rpm libpst4-0.6.71-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1522 moderate SUSE Updates openSUSE-SLE 15.3 This update for NetworkManager fixes the following issues: - Backport upstream fixes to implement RFC 8106. (bsc#1195173) - ndisc: don't artificially extend the lifetime of DNSSL/RDNSS options. (bsc#1195222) NetworkManager-1.22.10-150200.3.15.1.src.rpm NetworkManager-1.22.10-150200.3.15.1.x86_64.rpm NetworkManager-branding-upstream-1.22.10-150200.3.15.1.noarch.rpm NetworkManager-devel-1.22.10-150200.3.15.1.x86_64.rpm NetworkManager-devel-32bit-1.22.10-150200.3.15.1.x86_64.rpm NetworkManager-lang-1.22.10-150200.3.15.1.noarch.rpm libnm0-1.22.10-150200.3.15.1.x86_64.rpm typelib-1_0-NM-1_0-1.22.10-150200.3.15.1.x86_64.rpm NetworkManager-1.22.10-150200.3.15.1.s390x.rpm NetworkManager-devel-1.22.10-150200.3.15.1.s390x.rpm libnm0-1.22.10-150200.3.15.1.s390x.rpm typelib-1_0-NM-1_0-1.22.10-150200.3.15.1.s390x.rpm NetworkManager-1.22.10-150200.3.15.1.ppc64le.rpm NetworkManager-devel-1.22.10-150200.3.15.1.ppc64le.rpm libnm0-1.22.10-150200.3.15.1.ppc64le.rpm typelib-1_0-NM-1_0-1.22.10-150200.3.15.1.ppc64le.rpm NetworkManager-1.22.10-150200.3.15.1.aarch64.rpm NetworkManager-devel-1.22.10-150200.3.15.1.aarch64.rpm libnm0-1.22.10-150200.3.15.1.aarch64.rpm typelib-1_0-NM-1_0-1.22.10-150200.3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-1200 moderate SUSE Updates openSUSE-SLE 15.3 This update for ClusterTools2 fixes the following issues: - change version from 3.1.1 to 3.1.2 - As newer versions of pacemaker display the output from command 'crmadmin --quiet' on stdout instead on stderr, the command 'cs_clusterstate' was enhanced to adapt these change. (bsc#1188652) - Adapt 'cs_show_scores' to support newer versions of pacemaker and crmshi. (bsc#1188456) - man page updates ClusterTools2-3.1.2-150100.8.9.1.noarch.rpm ClusterTools2-3.1.2-150100.8.9.1.src.rpm openSUSE-SLE-15.3-2022-1158 important SUSE Updates openSUSE-SLE 15.3 This update for xz fixes the following issues: - CVE-2022-1271: Fixed an incorrect escaping of malicious filenames (ZDI-CAN-16587). (bsc#1198062) liblzma5-32bit-5.2.3-150000.4.7.1.x86_64.rpm liblzma5-5.2.3-150000.4.7.1.x86_64.rpm xz-5.2.3-150000.4.7.1.src.rpm xz-5.2.3-150000.4.7.1.x86_64.rpm xz-devel-32bit-5.2.3-150000.4.7.1.x86_64.rpm xz-devel-5.2.3-150000.4.7.1.x86_64.rpm xz-lang-5.2.3-150000.4.7.1.noarch.rpm xz-static-devel-5.2.3-150000.4.7.1.x86_64.rpm liblzma5-5.2.3-150000.4.7.1.s390x.rpm xz-5.2.3-150000.4.7.1.s390x.rpm xz-devel-5.2.3-150000.4.7.1.s390x.rpm xz-static-devel-5.2.3-150000.4.7.1.s390x.rpm liblzma5-5.2.3-150000.4.7.1.ppc64le.rpm xz-5.2.3-150000.4.7.1.ppc64le.rpm xz-devel-5.2.3-150000.4.7.1.ppc64le.rpm xz-static-devel-5.2.3-150000.4.7.1.ppc64le.rpm liblzma5-5.2.3-150000.4.7.1.aarch64.rpm xz-5.2.3-150000.4.7.1.aarch64.rpm xz-devel-5.2.3-150000.4.7.1.aarch64.rpm xz-static-devel-5.2.3-150000.4.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-1767 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: rasqal redland raptor libraptor-devel-2.0.15-150200.9.9.1.x86_64.rpm libraptor2-0-2.0.15-150200.9.9.1.x86_64.rpm libraptor2-0-32bit-2.0.15-150200.9.9.1.x86_64.rpm librasqal-devel-0.9.33-150000.3.2.1.x86_64.rpm librasqal-devel-doc-0.9.33-150000.3.2.1.x86_64.rpm librasqal3-0.9.33-150000.3.2.1.x86_64.rpm librasqal3-32bit-0.9.33-150000.3.2.1.x86_64.rpm librdf0-1.0.17-150200.10.3.1.x86_64.rpm librdf0-32bit-1.0.17-150200.10.3.1.x86_64.rpm libredland-devel-1.0.17-150200.10.3.1.x86_64.rpm raptor-2.0.15-150200.9.9.1.src.rpm raptor-2.0.15-150200.9.9.1.x86_64.rpm rasqal-0.9.33-150000.3.2.1.src.rpm rasqal-0.9.33-150000.3.2.1.x86_64.rpm redland-1.0.17-150200.10.3.1.src.rpm redland-1.0.17-150200.10.3.1.x86_64.rpm redland-storage-postgresql-1.0.17-150200.10.3.1.x86_64.rpm libraptor-devel-2.0.15-150200.9.9.1.s390x.rpm libraptor2-0-2.0.15-150200.9.9.1.s390x.rpm librasqal-devel-0.9.33-150000.3.2.1.s390x.rpm librasqal-devel-doc-0.9.33-150000.3.2.1.s390x.rpm librasqal3-0.9.33-150000.3.2.1.s390x.rpm librdf0-1.0.17-150200.10.3.1.s390x.rpm libredland-devel-1.0.17-150200.10.3.1.s390x.rpm raptor-2.0.15-150200.9.9.1.s390x.rpm rasqal-0.9.33-150000.3.2.1.s390x.rpm redland-1.0.17-150200.10.3.1.s390x.rpm redland-storage-postgresql-1.0.17-150200.10.3.1.s390x.rpm libraptor-devel-2.0.15-150200.9.9.1.ppc64le.rpm libraptor2-0-2.0.15-150200.9.9.1.ppc64le.rpm librasqal-devel-0.9.33-150000.3.2.1.ppc64le.rpm librasqal-devel-doc-0.9.33-150000.3.2.1.ppc64le.rpm librasqal3-0.9.33-150000.3.2.1.ppc64le.rpm librdf0-1.0.17-150200.10.3.1.ppc64le.rpm libredland-devel-1.0.17-150200.10.3.1.ppc64le.rpm raptor-2.0.15-150200.9.9.1.ppc64le.rpm rasqal-0.9.33-150000.3.2.1.ppc64le.rpm redland-1.0.17-150200.10.3.1.ppc64le.rpm redland-storage-postgresql-1.0.17-150200.10.3.1.ppc64le.rpm libraptor-devel-2.0.15-150200.9.9.1.aarch64.rpm libraptor2-0-2.0.15-150200.9.9.1.aarch64.rpm librasqal-devel-0.9.33-150000.3.2.1.aarch64.rpm librasqal-devel-doc-0.9.33-150000.3.2.1.aarch64.rpm librasqal3-0.9.33-150000.3.2.1.aarch64.rpm librdf0-1.0.17-150200.10.3.1.aarch64.rpm libredland-devel-1.0.17-150200.10.3.1.aarch64.rpm raptor-2.0.15-150200.9.9.1.aarch64.rpm rasqal-0.9.33-150000.3.2.1.aarch64.rpm redland-1.0.17-150200.10.3.1.aarch64.rpm redland-storage-postgresql-1.0.17-150200.10.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1218 important SUSE Updates openSUSE-SLE 15.3 This update for SDL2 fixes the following issues: - CVE-2021-33657: Fix a buffer overflow when parsing a crafted BMP image (bsc#1198001). SDL2-2.0.8-150200.11.6.1.src.rpm libSDL2-2_0-0-2.0.8-150200.11.6.1.x86_64.rpm libSDL2-2_0-0-32bit-2.0.8-150200.11.6.1.x86_64.rpm libSDL2-devel-2.0.8-150200.11.6.1.x86_64.rpm libSDL2-devel-32bit-2.0.8-150200.11.6.1.x86_64.rpm libSDL2-2_0-0-2.0.8-150200.11.6.1.s390x.rpm libSDL2-devel-2.0.8-150200.11.6.1.s390x.rpm libSDL2-2_0-0-2.0.8-150200.11.6.1.ppc64le.rpm libSDL2-devel-2.0.8-150200.11.6.1.ppc64le.rpm libSDL2-2_0-0-2.0.8-150200.11.6.1.aarch64.rpm libSDL2-devel-2.0.8-150200.11.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1497 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-bootloader fixes the following issue: - AutoYaST: do not clone device for hibernation and also check during autoinstallation if device for hibernation exists and if not then use proposed one. (bsc#1187690, bsc#1197192) yast2-bootloader-4.3.31-150300.3.8.2.src.rpm yast2-bootloader-4.3.31-150300.3.8.2.x86_64.rpm yast2-bootloader-4.3.31-150300.3.8.2.s390x.rpm yast2-bootloader-4.3.31-150300.3.8.2.ppc64le.rpm yast2-bootloader-4.3.31-150300.3.8.2.aarch64.rpm openSUSE-SLE-15.3-2022-1166 important SUSE Updates openSUSE-SLE 15.3 Recommended update for cloud-regionsrv-client contains the following fix: cloud-regionsrv-client: Shipping cloud-regionsrv-client-addon-azure to unrestricted channels. (#MSC-282) cloud-regionsrv-client-10.0.2-150000.6.67.1.noarch.rpm cloud-regionsrv-client-10.0.2-150000.6.67.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-150000.6.67.1.noarch.rpm cloud-regionsrv-client-plugin-azure-2.0.0-150000.6.67.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-150000.6.67.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-150000.6.67.1.noarch.rpm openSUSE-SLE-15.3-2022-1556 moderate SUSE Updates openSUSE-SLE 15.3 This update for xkeyboard-config fixes the following issues: - Add French standardized AZERTY layout (AFNOR: NF Z71-300) (bsc#1188867) xkeyboard-config-2.23.1-150000.3.12.1.noarch.rpm xkeyboard-config-2.23.1-150000.3.12.1.src.rpm xkeyboard-config-lang-2.23.1-150000.3.12.1.noarch.rpm openSUSE-SLE-15.3-2022-1176 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Updated to version 91.8 (bsc#1197903): - CVE-2022-1097: Fixed a memory corruption issue with NSSToken objects. - CVE-2022-28281: Fixed a memory corruption issue due to unexpected WebAuthN Extensions. - CVE-2022-1197: Fixed an issue where OpenPGP revocation information was ignored. - CVE-2022-1196: Fixed a memory corruption issue after VR process destruction. - CVE-2022-28282: Fixed a memory corruption issue in document translation. - CVE-2022-28285: Fixed a memory corruption issue in JIT code generation. - CVE-2022-28286: Fixed an iframe layout issue that could have been exploited to stage spoofing attacks. - CVE-2022-24713: Fixed a potential denial of service via complex regular expressions. - CVE-2022-28289: Fixed multiple memory corruption issues. Non-security fixes: - Changed Google accounts using password authentication to use OAuth2. - Fixed an issue where OpenPGP ECC keys created by Thunderbird could not be imported into GnuPG. - Fixed an issue where exporting multiple public PGP keys from Thunderbird was not possible. - Fixed an issue where replying to a newsgroup message erroneously displayed a "No-reply" popup warning. - Fixed an issue with opening older address books. - Fixed an issue where LDAP directories would be lost when switching to "Offline" mode. - Fixed an issue when importing webcals. MozillaThunderbird-91.8.0-150200.8.65.1.src.rpm MozillaThunderbird-91.8.0-150200.8.65.1.x86_64.rpm MozillaThunderbird-translations-common-91.8.0-150200.8.65.1.x86_64.rpm MozillaThunderbird-translations-other-91.8.0-150200.8.65.1.x86_64.rpm MozillaThunderbird-91.8.0-150200.8.65.1.s390x.rpm MozillaThunderbird-translations-common-91.8.0-150200.8.65.1.s390x.rpm MozillaThunderbird-translations-other-91.8.0-150200.8.65.1.s390x.rpm MozillaThunderbird-91.8.0-150200.8.65.1.ppc64le.rpm MozillaThunderbird-translations-common-91.8.0-150200.8.65.1.ppc64le.rpm MozillaThunderbird-translations-other-91.8.0-150200.8.65.1.ppc64le.rpm MozillaThunderbird-91.8.0-150200.8.65.1.aarch64.rpm MozillaThunderbird-translations-common-91.8.0-150200.8.65.1.aarch64.rpm MozillaThunderbird-translations-other-91.8.0-150200.8.65.1.aarch64.rpm openSUSE-SLE-15.3-2022-1491 moderate SUSE Updates openSUSE-SLE 15.3 This update for psmisc fixes the following issues: - Add a fallback if the system call name_to_handle_at() is not supported by the used file system. - Replace the synchronizing over pipes of the sub process for the stat(2) system call with mutex and conditions from pthreads(7) (bsc#1194172) - Use statx(2) or SYS_statx system call to replace the stat(2) system call and avoid the sub process (bsc#1194172) psmisc-23.0-150000.6.22.1.src.rpm psmisc-23.0-150000.6.22.1.x86_64.rpm psmisc-lang-23.0-150000.6.22.1.noarch.rpm psmisc-23.0-150000.6.22.1.s390x.rpm psmisc-23.0-150000.6.22.1.ppc64le.rpm psmisc-23.0-150000.6.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-1451 moderate SUSE Updates openSUSE-SLE 15.3 This update for perl fixes the following issues: - Fix Socket::VERSION evaluation and stabilize Socket:VERSION comparisons (bsc#1193489) perl-32bit-5.26.1-150300.17.3.1.x86_64.rpm perl-5.26.1-150300.17.3.1.src.rpm perl-5.26.1-150300.17.3.1.x86_64.rpm perl-base-32bit-5.26.1-150300.17.3.1.x86_64.rpm perl-base-5.26.1-150300.17.3.1.x86_64.rpm perl-core-DB_File-32bit-5.26.1-150300.17.3.1.x86_64.rpm perl-core-DB_File-5.26.1-150300.17.3.1.x86_64.rpm perl-doc-5.26.1-150300.17.3.1.noarch.rpm perl-5.26.1-150300.17.3.1.s390x.rpm perl-base-5.26.1-150300.17.3.1.s390x.rpm perl-core-DB_File-5.26.1-150300.17.3.1.s390x.rpm perl-5.26.1-150300.17.3.1.ppc64le.rpm perl-base-5.26.1-150300.17.3.1.ppc64le.rpm perl-core-DB_File-5.26.1-150300.17.3.1.ppc64le.rpm perl-5.26.1-150300.17.3.1.aarch64.rpm perl-base-5.26.1-150300.17.3.1.aarch64.rpm perl-core-DB_File-5.26.1-150300.17.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1279 important SUSE Updates openSUSE-SLE 15.3 This update for sgi-bitmap-fonts fixes the following issues: - Fix package building issue (bsc#1197854) sgi-bitmap-fonts-1.0-150000.3.3.1.noarch.rpm sgi-bitmap-fonts-1.0-150000.3.3.1.src.rpm openSUSE-SLE-15.3-2022-1280 important SUSE Updates openSUSE-SLE 15.3 This update for HANA-Firewall fixes the following issues: - Fix package building issues (bsc#1197697) HANA-Firewall-2.0.2-150000.3.3.1.src.rpm HANA-Firewall-2.0.2-150000.3.3.1.x86_64.rpm HANA-Firewall-2.0.2-150000.3.3.1.ppc64le.rpm openSUSE-SLE-15.3-2022-1401 important SUSE Updates openSUSE-SLE 15.3 This update for ppp fixes the following issues: - Fix package building issues (bsc#1197799) ppp-2.4.7-150000.5.6.1.src.rpm ppp-2.4.7-150000.5.6.1.x86_64.rpm ppp-devel-2.4.7-150000.5.6.1.x86_64.rpm ppp-modem-2.4.7-150000.5.6.1.noarch.rpm ppp-2.4.7-150000.5.6.1.s390x.rpm ppp-devel-2.4.7-150000.5.6.1.s390x.rpm ppp-2.4.7-150000.5.6.1.ppc64le.rpm ppp-devel-2.4.7-150000.5.6.1.ppc64le.rpm ppp-2.4.7-150000.5.6.1.aarch64.rpm ppp-devel-2.4.7-150000.5.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1419 moderate SUSE Updates openSUSE-SLE 15.3 This update for grafana fixes the following issues: Update from version 7.5.12 to version 8.3.5 (jsc#SLE-23422) - Security: * CVE-2022-21702: XSS vulnerability in handling data sources (bsc#1195726) * CVE-2022-21703: cross-origin request forgery vulnerability (bsc#1195727) * CVE-2022-21713: Insecure Direct Object Reference vulnerability in Teams API (bsc#1195728) * CVE-2022-21673: GetUserInfo: return an error if no user was found (bsc#1194873) * CVE-2021-43813, CVE-2021-43815, CVE-2021-41244, CVE-2021-41174, CVE-2021-43798, CVE-2021-39226. * Upgrade Docker base image to Alpine 3.14.3. * CVE-2021-3711: Docker: Force use of libcrypto1.1 and libssl1.1 versions * Update dependencies to fix CVE-2021-36222. * Upgrade Go to 1.17.2. * Fix stylesheet injection vulnerability. * Fix short URL vulnerability. - License update: * AGPL License: Update license from Apache 2.0 to the GNU Affero General Public License (AGPL). - Breaking changes: * Grafana 8 Alerting enabled by default for installations that do not use legacy alerting. * Keep Last State for "If execution error or timeout" when upgrading to Grafana 8 alerting. * Fix No Data behaviour in Legacy Alerting. * The following endpoints were deprecated for Grafana v5.0 and support for them has now been removed: * `GET /dashboards/db/:slug` * `GET /dashboard-solo/db/:slug` * `GET /api/dashboard/db/:slug` * `DELETE /api/dashboards/db/:slug` * The default HTTP method for Prometheus data source is now POST. * Removes the never refresh option for Query variables. * Removes the experimental Tags feature for Variables. - Deprecations: * The InfoBox & FeatureInfoBox are now deprecated please use the Alert component instead with severity info. - Bug fixes: * Azure Monitor: Bug fix for variable interpolations in metrics dropdowns. * Azure Monitor: Improved error messages for variable queries. * CloudMonitoring: Fixes broken variable queries that use group bys. * Configuration: You can now see your expired API keys if you have no active ones. * Elasticsearch: Fix handling multiple datalinks for a single field. * Export: Fix error when exporting dashboards using query variables that reference the default datasource. * ImportDashboard: Fixes issue with importing dashboard and name ending up in uid. * Login: Page no longer overflows on mobile. * Plugins: Set backend metadata property for core plugins. * Prometheus: Fill missing steps with null values. * Prometheus: Fix interpolation of `$__rate_interval` variable. * Prometheus: Interpolate variables with curly brackets syntax. * Prometheus: Respect the http-method data source setting. * Table: Fixes issue with field config applied to wrong fields when hiding columns. * Toolkit: Fix bug with rootUrls not being properly parsed when signing a private plugin. * Variables: Fix so data source variables are added to adhoc configuration. * AnnoListPanel: Fix interpolation of variables in tags. * CloudWatch: Allow queries to have no dimensions specified. * CloudWatch: Fix broken queries for users migrating from 8.2.4/8.2.5 to 8.3.0. * CloudWatch: Make sure MatchExact flag gets the right value. * Dashboards: Fix so that empty folders can be deleted from the manage dashboards/folders page. * InfluxDB: Improve handling of metadata query errors in InfluxQL. * Loki: Fix adding of ad hoc filters for queries with parser and line_format expressions. * Prometheus: Fix running of exemplar queries for non-histogram metrics. * Prometheus: Interpolate template variables in interval. * StateTimeline: Fix toolitp not showing when for frames with multiple fields. * TraceView: Fix virtualized scrolling when trace view is opened in right pane in Explore. * Variables: Fix repeating panels for on time range changed variables. * Variables: Fix so queryparam option works for scoped variables. * Alerting: Clear alerting rule evaluation errors after intermittent failures. * Alerting: Fix refresh on legacy Alert List panel. * Dashboard: Fix queries for panels with non-integer widths. * Explore: Fix url update inconsistency. * Prometheus: Fix range variables interpolation for time ranges smaller than 1 second. * ValueMappings: Fixes issue with regex value mapping that only sets color. * AccessControl: Renamed orgs roles, removed fixed:orgs:reader introduced in beta1. * Azure Monitor: Add trap focus for modals in grafana/ui and other small a11y fixes for Azure Monitor. * CodeEditor: Prevent suggestions from being clipped. * Dashboard: Fix cache timeout persistence. * Datasource: Fix stable sort order of query responses. * Explore: Fix error in query history when removing last item. * Logs: Fix requesting of older logs when flipped order. * Prometheus: Fix running of health check query based on access mode. * TextPanel: Fix suggestions for existing panels. * Tracing: Fix incorrect indentations due to reoccurring spanIDs. * Tracing: Show start time of trace with milliseconds precision. * Variables: Make renamed or missing variable section expandable. * API: Fix dashboard quota limit for imports. * Alerting: Fix rule editor issues with Azure Monitor data source. * Azure monitor: Make sure alert rule editor is not enabled when template variables are being used. * CloudMonitoring: Fix annotation queries. * CodeEditor: Trigger the latest getSuggestions() passed to CodeEditor. * Dashboard: Remove the current panel from the list of options in the Dashboard datasource. * Encryption: Fix decrypting secrets in alerting migration. * InfluxDB: Fix corner case where index is too large in ALIAS field. * NavBar: Order App plugins alphabetically. * NodeGraph: Fix zooming sensitivity on touchpads. * Plugins: Add OAuth pass-through logic to api/ds/query endpoint. * Snapshots: Fix panel inspector for snapshot data. * Tempo: Fix basic auth password reset on adding tag. * ValueMapping: Fixes issue with regex mappings. * TimeSeries: Fix fillBelowTo wrongly affecting fills of unrelated series. * Alerting: Fix a bug where the metric in the evaluation string was not correctly populated. * Alerting: Fix no data behaviour in Legacy Alerting for alert rules using the AND operator. * CloudMonitoring: Ignore min and max aggregation in MQL queries. * Dashboards: 'Copy' is no longer added to new dashboard titles. * DataProxy: Fix overriding response body when response is a WebSocket upgrade. * Elasticsearch: Use field configured in query editor as field for date_histogram aggregations. * Explore: Fix running queries without a datasource property set. * InfluxDB: Fix numeric aliases in queries. * Plugins: Ensure consistent plugin settings list response. * Tempo: Fix validation of float durations. * Tracing: Correct tags for each span are shown. * Alerting: Fix panic when Slack's API sends unexpected response. * Alerting: The Create Alert button now appears on the dashboard panel when you are working with a default datasource. * Explore: We fixed the problem where the Explore log panel disappears when an Elasticsearch logs query returns no results. * Graph: You can now see annotation descriptions on hover. * Logs: The system now uses the JSON parser only if the line is parsed to an object. * Prometheus: the system did not reuse TCP connections when querying from Grafana alerting. * Prometheus: error when a user created a query with a `$__interval` min step. * RowsToFields: the system was not properly interpreting number values. * Scale: We fixed how the system handles NaN percent when data min = data max. * Table panel: You can now create a filter that includes special characters. * Dashboard: Fix rendering of repeating panels. * Datasources: Fix deletion of data source if plugin is not found. * Packaging: Remove systemcallfilters sections from systemd unit files. * Prometheus: Add Headers to HTTP client options. * CodeEditor: Ensure that we trigger the latest onSave callback provided to the component. * DashboardList/AlertList: Fix for missing All folder value. * Alerting: Fixed an issue where the edit page crashes if you tried to preview an alert without a condition set. * Alerting: Fixed rules migration to keep existing Grafana 8 alert rules. * Alerting: Fixed the silence file content generated during migration. * Analytics: Fixed an issue related to interaction event propagation in Azure Application Insights. * BarGauge: Fixed an issue where the cell color was lit even though there was no data. * BarGauge: Improved handling of streaming data. * CloudMonitoring: Fixed INT64 label unmarshal error. * ConfirmModal: Fixes confirm button focus on modal open. * Dashboard: Add option to generate short URL for variables with values containing spaces. * Explore: No longer hides errors containing refId property. * Fixed an issue that produced State timeline panel tooltip error when data was not in sync. * InfluxDB: InfluxQL query editor is set to always use resultFormat. * Loki: Fixed creating context query for logs with parsed labels. * PageToolbar: Fixed alignment of titles. * Plugins Catalog: Update to the list of available panels after an install, update or uninstall. * TimeSeries: Fixed an issue where the shared cursor was not showing when hovering over in old Graph panel. * Variables: Fixed issues related to change of focus or refresh pages when pressing enter in a text box variable input. * Variables: Panel no longer crash when using the adhoc variable in data links. * Admin: Prevent user from deleting user's current/active organization. * LibraryPanels: Fix library panel getting saved in the dashboard's folder. * OAuth: Make generic teams URL and JMES path configurable. * QueryEditor: Fix broken copy-paste for mouse middle-click * Thresholds: Fix undefined color in "Add threshold". * Timeseries: Add wide-to-long, and fix multi-frame output. * TooltipPlugin: Fix behavior of Shared Crosshair when Tooltip is set to All. * Alerting: Fix alerts with evaluation interval more than 30 seconds resolving before notification. * Elasticsearch/Prometheus: Fix usage of proper SigV4 service namespace. * BarChart: Fixes panel error that happens on second refresh. * Alerting: Fix notification channel migration. * Annotations: Fix blank panels for queries with unknown data sources. * BarChart: Fix stale values and x axis labels. * Graph: Make old graph panel thresholds work even if ngalert is enabled. * InfluxDB: Fix regex to identify / as separator. * LibraryPanels: Fix update issues related to library panels in rows. * Variables: Fix variables not updating inside a Panel when the preceding Row uses "Repeat For". * Alerting: Fix alert flapping in the internal alertmanager. * Alerting: Fix request handler failed to convert dataframe "results" to plugins.DataTimeSeriesSlice: input frame is not recognized as a time series. * Dashboard: Fix UIDs are not preserved when importing/creating dashboards thru importing .json file. * Dashboard: Forces panel re-render when exiting panel edit. * Dashboard: Prevent folder from changing when navigating to general settings. * Elasticsearch: Fix metric names for alert queries. * Elasticsearch: Limit Histogram field parameter to numeric values. * Elasticsearch: Prevent pipeline aggregations to show up in terms order by options. * LibraryPanels: Prevent duplicate repeated panels from being created. * Loki: Fix ad-hoc filter in dashboard when used with parser. * Plugins: Track signed files + add warn log for plugin assets which are not signed. * Postgres/MySQL/MSSQL: Fix region annotations not displayed correctly. * Prometheus: Fix validate selector in metrics browser. * Alerting: Fix saving LINE contact point. * Annotations: Fix alerting annotation coloring. * Annotations: Alert annotations are now visible in the correct Panel. * Auth: Hide SigV4 config UI and disable middleware when its config flag is disabled. * Dashboard: Prevent incorrect panel layout by comparing window width against theme breakpoints. * Elasticsearch: Fix metric names for alert queries. * Explore: Fix showing of full log context. * PanelEdit: Fix 'Actual' size by passing the correct panel size to Dashboard. * Plugins: Fix TLS datasource settings. * Variables: Fix issue with empty drop downs on navigation. * Variables: Fix URL util converting false into true. * CloudWatch Logs: Fix crash when no region is selected. * Annotations: Correct annotations that are displayed upon page refresh. * Annotations: Fix Enabled button that disappeared from Grafana v8.0.6. * Annotations: Fix data source template variable that was not available for annotations. * AzureMonitor: Fix annotations query editor that does not load. * Geomap: Fix scale calculations. * GraphNG: Fix y-axis autosizing. * Live: Display stream rate and fix duplicate channels in list response. * Loki: Update labels in log browser when time range changes in dashboard. * NGAlert: Send resolve signal to alertmanager on alerting -> Normal. * PasswordField: Prevent a password from being displayed when you click the Enter button. * Renderer: Remove debug.log file when Grafana is stopped. * Docker: Fix builds by delaying go mod verify until all required files are copied over. * Exemplars: Fix disable exemplars only on the query that failed. * SQL: Fix SQL dataframe resampling (fill mode + time intervals). * Alerting: Handle marshaling Inf values. * AzureMonitor: Fix macro resolution for template variables. * AzureMonitor: Fix queries with Microsoft.NetApp/../../volumes resources. * AzureMonitor: Request and concat subsequent resource pages. * Bug: Fix parse duration for day. * Datasources: Improve error handling for error messages. * Explore: Correct the functionality of shift-enter shortcut across all uses. * Explore: Show all dataFrames in data tab in Inspector. * GraphNG: Fix Tooltip mode 'All' for XYChart. * Loki: Fix highlight of logs when using filter expressions with backticks. * Modal: Force modal content to overflow with scroll. * Plugins: Ignore symlinked folders when verifying plugin signature. * Alerting: Fix improper alert by changing the handling of empty labels. * CloudWatch/Logs: Reestablish Cloud Watch alert behavior. * Dashboard: Avoid migration breaking on fieldConfig without defaults field in folded panel. * DashboardList: Fix issue not re-fetching dashboard list after variable change. * Database: Fix incorrect format of isolation level configuration parameter for MySQL. * InfluxDB: Correct tag filtering on InfluxDB data. * Links: Fix links that caused a full page reload. * Live: Fix HTTP error when InfluxDB metrics have an incomplete or asymmetrical field set. * Postgres/MySQL/MSSQL: Change time field to "Time" for time series queries. * Postgres: Fix the handling of a null return value in query results. * Tempo: Show hex strings instead of uints for IDs. * TimeSeries: Improve tooltip positioning when tooltip overflows. * Transformations: Add 'prepare time series' transformer. * AzureMonitor: Fix issue where resource group name is missing on the resource picker button. * Chore: Fix AWS auth assuming role with workspace IAM. * DashboardQueryRunner: Fixes unrestrained subscriptions being created. * DateFormats: Fix reading correct setting key for use_browser_locale. * Links: Fix links to other apps outside Grafana when under sub path. * Snapshots: Fix snapshot absolute time range issue. * Table: Fix data link color. * Time Series: Fix X-axis time format when tick increment is larger than a year. * Tooltip Plugin: Prevent tooltip render if field is undefined. * Elasticsearch: Allow case sensitive custom options in date_histogram interval. * Elasticsearch: Restore previous field naming strategy when using variables. * Explore: Fix import of queries between SQL data sources. * InfluxDB: InfluxQL query editor: fix retention policy handling. * Loki: Send correct time range in template variable queries. * TimeSeries: Preserve RegExp series overrides when migrating from old graph panel. * Annotations: Fix annotation line and marker colors. * AzureMonitor: Fix KQL template variable queries without default workspace. * CloudWatch/Logs: Fix missing response data for log queries. * Elasticsearch: Restore previous field naming strategy when using variables. * LibraryPanels: Fix crash in library panels list when panel plugin is not found. * LogsPanel: Fix performance drop when moving logs panel in dashboard. * Loki: Parse log levels when ANSI coloring is enabled. * MSSQL: Fix issue with hidden queries still being executed. * PanelEdit: Display the VisualizationPicker that was not displayed if a panel has an unknown panel plugin. * Plugins: Fix loading symbolically linked plugins. * Prometheus: Fix issue where legend name was replaced with name Value in stat and gauge panels. * State Timeline: Fix crash when hovering over panel. * Configuration: Fix changing org preferences in FireFox. * PieChart: Fix legend dimension limits. * Postgres/MySQL/MSSQL: Fix panic in concurrent map writes. * Variables: Hide default data source if missing from regex. * Alerting/SSE: Fix "count_non_null" reducer validation. * Cloudwatch: Fix duplicated time series. * Cloudwatch: Fix missing defaultRegion. * Dashboard: Fix Dashboard init failed error on dashboards with old singlestat panels in collapsed rows. * Datasource: Fix storing timeout option as numeric. * Postgres/MySQL/MSSQL: Fix annotation parsing for empty responses. * Postgres/MySQL/MSSQL: Numeric/non-string values are now returned from query variables. * Postgres: Fix an error that was thrown when the annotation query did not return any results. * StatPanel: Fix an issue with the appearance of the graph when switching color mode. * Visualizations: Fix an issue in the Stat/BarGauge/Gauge/PieChart panels where all values mode were showing the same name if they had the same value. * AzureMonitor: Fix Azure Resource Graph queries in Azure China. * Checkbox: Fix vertical layout issue with checkboxes due to fixed height. * Dashboard: Fix Table view when editing causes the panel data to not update. * Dashboard: Fix issues where unsaved-changes warning is not displayed. * Login: Fixes Unauthorized message showing when on login page or snapshot page. * NodeGraph: Fix sorting markers in grid view. * Short URL: Include orgId in generated short URLs. * Variables: Support raw values of boolean type. * Admin: Fix infinite loading edit on the profile page. * Color: Fix issues with random colors in string and date fields. * Dashboard: Fix issue with title or folder change has no effect after exiting settings view. * DataLinks: Fix an issue __series.name is not working in data link. * Datasource: Fix dataproxy timeout should always be applied for outgoing data source HTTP requests. * Elasticsearch: Fix NewClient not passing httpClientProvider to client impl. * Explore: Fix Browser title not updated on Navigation to Explore. * GraphNG: Remove fieldName and hideInLegend properties from UPlotSeriesBuilder. * OAuth: Fix fallback to auto_assign_org_role setting for Azure AD OAuth when no role claims exists. * PanelChrome: Fix issue with empty panel after adding a non data panel and coming back from panel edit. * StatPanel: Fix data link tooltip not showing for single value. * Table: Fix sorting for number fields. * Table: Have text underline for datalink, and add support for image datalink. * Time series panel: Position tooltip correctly when window is scrolled or resized. * Transformations: Prevent FilterByValue transform from crashing panel edit. * Annotations panel: Remove subpath from dashboard links. * Content Security Policy: Allow all image sources by default. * Content Security Policy: Relax default template wrt. loading of scripts, due to nonces not working. * Datasource: Fix tracing propagation for alert execution by introducing HTTP client outgoing tracing middleware. * InfluxDB: InfluxQL always apply time interval end. * Library Panels: Fixes "error while loading library panels". * NewsPanel: Fixes rendering issue in Safari. * PanelChrome: Fix queries being issued again when scrolling in and out of view. * Plugins: Fix Azure token provider cache panic and auth param nil value. * Snapshots: Fix key and deleteKey being ignored when creating an external snapshot. * Table: Fix issue with cell border not showing with colored background cells. * Table: Makes tooltip scrollable for long JSON values. * TimeSeries: Fix for Connected null values threshold toggle during panel editing. * Variables: Fixes inconsistent selected states on dashboard load. * Variables: Refreshes all panels even if panel is full screen. * APIKeys: Fixes issue with adding first api key. * Alerting: Add checks for non supported units - disable defaulting to seconds. * Alerting: Fix issue where Slack notifications won't link to user IDs. * Alerting: Omit empty message in PagerDuty notifier. * AzureMonitor: Fix migration error from older versions of App Insights queries. * CloudWatch: Fix AWS/Connect dimensions. * CloudWatch: Fix broken AWS/MediaTailor dimension name. * Dashboards: Allow string manipulation as advanced variable format option. * DataLinks: Includes harmless extended characters like Cyrillic characters. * Drawer: Fixes title overflowing its container. * Explore: Fix issue when some query errors were not shown. * Generic OAuth: Prevent adding duplicated users. * Graphite: Handle invalid annotations. * Graphite: Fix autocomplete when tags are not available. * InfluxDB: Fix Cannot read property 'length' of undefined in when parsing response. * Instrumentation: Enable tracing when Jaeger host and port are set. * Instrumentation: Prefix metrics with grafana. * MSSQL: By default let driver choose port. * OAuth: Add optional strict parsing of role_attribute_path. * Panel: Fixes description markdown with inline code being rendered on newlines and full width. * PanelChrome: Ignore data updates & errors for non data panels. * Permissions: Fix inherited folder permissions can prevent new permissions being added to a dashboard. * Plugins: Remove pre-existing plugin installs when installing with grafana-cli. * Plugins: Support installing to folders with whitespace and fix pluginUrl trailing and leading whitespace failures. * Postgres/MySQL/MSSQL: Don't return connection failure details to the client. * Postgres: Fix ms precision of interval in time group macro when TimescaleDB is enabled. * Provisioning: Use dashboard checksum field as change indicator. * SQL: Fix so that all captured errors are returned from sql engine. * Shortcuts: Fixes panel shortcuts so they always work. * Table: Fixes so border is visible for cells with links. * Variables: Clear query when data source type changes. * Variables: Filters out builtin variables from unknown list. * Variables: Refreshes all panels even if panel is full screen. * Alerting: Fix NoDataFound for alert rules using AND operator. - Features and enhancements: * Alerting: Allow configuration of non-ready alertmanagers. * Alerting: Allow customization of Google chat message. * AppPlugins: Support app plugins with only default nav. * InfluxDB: query editor: skip fields in metadata queries. * Postgres/MySQL/MSSQL: Cancel in-flight SQL query if user cancels query in grafana. * Prometheus: Forward oauth tokens after prometheus datasource migration. * BarChart: Use new data error view component to show actions in panel edit. * CloudMonitor: Iterate over pageToken for resources. * Macaron: Prevent WriteHeader invalid HTTP status code panic * Alerting: Prevent folders from being deleted when they contain alerts. * Alerting: Show full preview value in tooltip. * BarGauge: Limit title width when name is really long. * CloudMonitoring: Avoid to escape regexps in filters. * CloudWatch: Add support for AWS Metric Insights. * TooltipPlugin: Remove other panels' shared tooltip in edit panel. * Visualizations: Limit y label width to 40% of visualization width. * Alerting: Create DatasourceError alert if evaluation returns error. * Alerting: Make Unified Alerting enabled by default for those who do not use legacy alerting. * Alerting: Support mute timings configuration through the api for the embedded alert manager. * CloudWatch: Add missing AWS/Events metrics. * Docs: Add easier to find deprecation notices to certain data sources and to the changelog. * Plugins Catalog: Enable install controls based on the pluginAdminEnabled flag. * Table: Add space between values for the DefaultCell and JSONViewCell. * Tracing: Make query editors available in dashboard for Tempo and Zipkin. * Alerting: Add UI for contact point testing with custom annotations and labels. * Alerting: Make alert state indicator in panel header work with Grafana 8 alerts. * Alerting: Option for Discord notifier to use webhook name. * Annotations: Deprecate AnnotationsSrv. * Auth: Omit all base64 paddings in JWT tokens for the JWT auth. * Azure Monitor: Clean up fields when editing Metrics. * AzureMonitor: Add new starter dashboards. * AzureMonitor: Add starter dashboard for app monitoring with Application Insights. * Barchart/Time series: Allow x axis label. * CLI: Improve error handling for installing plugins. * CloudMonitoring: Migrate to use backend plugin SDK contracts. * CloudWatch Logs: Add retry strategy for hitting max concurrent queries. * CloudWatch: Add AWS RoboMaker metrics and dimension. * CloudWatch: Add AWS Transfer metrics and dimension. * Dashboard: replace datasource name with a reference object. * Dashboards: Show logs on time series when hovering. * Elasticsearch: Add support for Elasticsearch 8.0 (Beta). * Elasticsearch: Add time zone setting to Date Histogram aggregation. * Elasticsearch: Enable full range log volume histogram. * Elasticsearch: Full range logs volume. * Explore: Allow changing the graph type. * Explore: Show ANSI colors when highlighting matched words in the logs panel. * Graph(old) panel: Listen to events from Time series panel. * Import: Load gcom dashboards from URL. * LibraryPanels: Improves export and import of library panels between orgs. * OAuth: Support PKCE. * Panel edit: Overrides now highlight correctly when searching. * PanelEdit: Display drag indicators on draggable sections. * Plugins: Refactor Plugin Management. * Prometheus: Add custom query parameters when creating PromLink url. * Prometheus: Remove limits on metrics, labels, and values in Metrics Browser. * StateTimeline: Share cursor with rest of the panels. * Tempo: Add error details when json upload fails. * Tempo: Add filtering for service graph query. * Tempo: Add links to nodes in Service Graph pointing to Prometheus metrics. * Time series/Bar chart panel: Add ability to sort series via legend. * TimeSeries: Allow multiple axes for the same unit. * TraceView: Allow span links defined on dataFrame. * Transformations: Support a rows mode in labels to fields. * ValueMappings: Don't apply field config defaults to time fields. * Variables: Only update panels that are impacted by variable change. * Annotations: We have improved tag search performance. * Application: You can now configure an error-template title. * AzureMonitor: We removed a restriction from the resource filter query. * Packaging: We removed the ProcSubset option in systemd. This option prevented Grafana from starting in LXC environments. * Prometheus: We removed the autocomplete limit for metrics. * Table: We improved the styling of the type icons to make them more distinct from column / field name. * ValueMappings: You can now use value mapping in stat, gauge, bar gauge, and pie chart visualizations. * AWS: Updated AWS authentication documentation. * Alerting: Added support Alertmanager data source for upstream Prometheus AM implementation. * Alerting: Allows more characters in label names so notifications are sent. * Alerting: Get alert rules for a dashboard or a panel using `/api/v1/rules` endpoints. * Annotations: Improved rendering performance of event markers. * CloudWatch Logs: Skip caching for log queries. * Explore: Added an opt-in configuration for Node Graph in Jaeger, Zipkin, and Tempo. * Packaging: Add stricter systemd unit options. * Prometheus: Metrics browser can now handle label values with special characters. * AccessControl: Document new permissions restricting data source access. * TimePicker: Add fiscal years and search to time picker. * Alerting: Added support for Unified Alerting with Grafana HA. * Alerting: Added support for tune rule evaluation using configuration options. * Alerting: Cleanups alertmanager namespace from key-value store when disabling Grafana 8 alerts. * Alerting: Remove ngalert feature toggle and introduce two new settings for enabling Grafana 8 alerts and disabling them for specific organisations. * CloudWatch: Introduced new math expression where it is necessary to specify the period field. * InfluxDB: Added support for `$__interval` and `$__interval_ms` inFlux queries for alerting. * InfluxDB: Flux queries can use more precise start and end timestamps with nanosecond-precision. * Plugins Catalog: Make the catalog the default way to interact with plugins. * Prometheus: Removed autocomplete limit for metrics. * AccessControl: Introduce new permissions to restrict access for reloading provisioning configuration. * Alerting: Add UI to edit Cortex/Loki namespace, group names, and group evaluation interval. * Alerting: Add a Test button to test contact point. * Alerting: Allow creating/editing recording rules for Loki and Cortex. * Alerting: Metrics should have the label org instead of user. * Alerting: Sort notification channels by name to make them easier to locate. * Alerting: Support org level isolation of notification configuration. * AzureMonitor: Add data links to deep link to Azure Portal Azure Resource Graph. * AzureMonitor: Add support for annotations from Azure Monitor Metrics and Azure Resource Graph services. * AzureMonitor: Show error message when subscriptions request fails in ConfigEditor. * CloudWatch Logs: Add link to X-Ray data source for trace IDs in logs. * CloudWatch Logs: Disable query path using websockets (Live) feature. * CloudWatch/Logs: Don't group dataframes for non time series queries. * Cloudwatch: Migrate queries that use multiple stats to one query per stat. * Dashboard: Keep live timeseries moving left (v2). * Datasources: Introduce response_limit for datasource responses. * Explore: Add filter by trace or span ID to trace to logs feature. * Explore: Download traces as JSON in Explore Inspector. * Explore: Reuse Dashboard's QueryRows component. * Explore: Support custom display label for derived fields buttons for Loki datasource. * Grafana UI: Update monaco-related dependencies. * Graphite: Deprecate browser access mode. * InfluxDB: Improve handling of intervals in alerting. * InfluxDB: InfluxQL query editor: Handle unusual characters in tag values better. * Jaeger: Add ability to upload JSON file for trace data. * LibraryElements: Enable specifying UID for new and existing library elements. * LibraryPanels: Remove library panel icon from the panel header so you can no longer tell that a panel is a library panel from the dashboard view. * Logs panel: Scroll to the bottom on page refresh when sorting in ascending order. * Loki: Add fuzzy search to label browser. * Navigation: Implement active state for items in the Sidemenu. * Packaging: Add stricter systemd unit options. * Packaging: Update PID file location from /var/run to /run. * Plugins: Add Hide OAuth Forward config option. * Postgres/MySQL/MSSQL: Add setting to limit the maximum number of rows processed. * Prometheus: Add browser access mode deprecation warning. * Prometheus: Add interpolation for built-in-time variables to backend. * Tempo: Add ability to upload trace data in JSON format. * TimeSeries/XYChart: Allow grid lines visibility control in XYChart and TimeSeries panels. * Transformations: Convert field types to time string number or boolean. * Value mappings: Add regular-expression based value mapping. * Zipkin: Add ability to upload trace JSON. * Explore: Ensure logs volume bar colors match legend colors. * LDAP: Search all DNs for users. * AzureMonitor: Add support for PostgreSQL and MySQL Flexible Servers. * Datasource: Change HTTP status code for failed datasource health check to 400. * Explore: Add span duration to left panel in trace viewer. * Plugins: Use file extension allowlist when serving plugin assets instead of checking for UNIX executable. * Profiling: Add support for binding pprof server to custom network interfaces. * Search: Make search icon keyboard navigable. * Template variables: Keyboard navigation improvements. * Tooltip: Display ms within minute time range. * Alerting: Deduplicate receivers during migration. * ColorPicker: Display colors as RGBA. * Select: Make portalling the menu opt-in, but opt-in everywhere. * TimeRangePicker: Improve accessibility. * Alerting: Support label matcher syntax in alert rule list filter. * IconButton: Put tooltip text as aria-label. * Live: Experimental HA with Redis. * UI: FileDropzone component. * CloudWatch: Add AWS LookoutMetrics. * Alerting: Expand the value string in alert annotations and labels. * Auth: Add Azure HTTP authentication middleware. * Auth: Auth: Pass user role when using the authentication proxy. * Gazetteer: Update countries.json file to allow for linking to 3-letter country codes. * Alerting: Add Alertmanager notifications tab. * Alerting: Add button to deactivate current Alertmanager configuration. * Alerting: Add toggle in Loki/Prometheus data source configuration to opt out of alerting UI. * Alerting: Allow any "evaluate for" value >=0 in the alert rule form. * Alerting: Load default configuration from status endpoint, if Cortex Alertmanager returns empty user configuration. * Alerting: view to display alert rule and its underlying data. * Annotation panel: Release the annotation panel. * Annotations: Add typeahead support for tags in built-in annotations. * AzureMonitor: Add curated dashboards for Azure services. * AzureMonitor: Add support for deep links to Microsoft Azure portal for Metrics. * AzureMonitor: Remove support for different credentials for Azure Monitor Logs. * AzureMonitor: Support querying any Resource for Logs queries. * Elasticsearch: Add frozen indices search support. * Elasticsearch: Name fields after template variables values instead of their name. * Elasticsearch: add rate aggregation. * Email: Allow configuration of content types for email notifications. * Explore: Add more meta information when line limit is hit. * Explore: UI improvements to trace view. * FieldOverrides: Added support to change display name in an override field and have it be matched by a later rule. * HTTP Client: Introduce dataproxy_max_idle_connections config variable. * InfluxDB: InfluxQL: adds tags to timeseries data. * InfluxDB: InfluxQL: make measurement search case insensitive. Legacy Alerting: Replace simplejson with a struct in webhook notification channel. * Legend: Updates display name for Last (not null) to just Last*. * Logs panel: Add option to show common labels. * Loki: Add $__range variable. * Loki: Add support for "label_values(log stream selector, label)" in templating. * Loki: Add support for ad-hoc filtering in dashboard. * MySQL Datasource: Add timezone parameter. * NodeGraph: Show gradient fields in legend. * PanelOptions: Don't mutate panel options/field config object when updating. * PieChart: Make pie gradient more subtle to match other charts. * Prometheus: Update PromQL typeahead and highlighting. * Prometheus: interpolate variable for step field. * Provisioning: Improve validation by validating across all dashboard providers. * SQL Datasources: Allow multiple string/labels columns with time series. * Select: Portal select menu to document.body. * Team Sync: Add group mapping to support team sync in the Generic OAuth provider. * Tooltip: Make active series more noticeable. * Tracing: Add support to configure trace to logs start and end time. * Transformations: Skip merge when there is only a single data frame. * ValueMapping: Added support for mapping text to color, boolean values, NaN and Null. Improved UI for value mapping. * Visualizations: Dynamically set any config (min, max, unit, color, thresholds) from query results. * live: Add support to handle origin without a value for the port when matching with root_url. * Alerting: Add annotation upon alert state change. * Alerting: Allow space in label and annotation names. * InfluxDB: Improve legend labels for InfluxDB query results. * Cloudwatch Logs: Send error down to client. * Folders: Return 409 Conflict status when folder already exists. * TimeSeries: Do not show series in tooltip if it's hidden in the viz. * Live: Rely on app url for origin check. * PieChart: Sort legend descending, update placeholder. * TimeSeries panel: Do not reinitialize plot when thresholds mode change. * Alerting: Increase alertmanager_conf column if MySQL. * Time series/Bar chart panel: Handle infinite numbers as nulls when converting to plot array. * TimeSeries: Ensure series overrides that contain color are migrated, and migrate the previous fieldConfig when changing the panel type. * ValueMappings: Improve singlestat value mappings migration. * Datasource: Add support for max_conns_per_host in dataproxy settings. * AzureMonitor: Require default subscription for workspaces() template variable query. * AzureMonitor: Use resource type display names in the UI. * Dashboard: Remove support for loading and deleting dashboard by slug. * InfluxDB: Deprecate direct browser access in data source. * VizLegend: Add a read-only property. * API: Support folder UID in dashboards API. * Alerting: Add support for configuring avatar URL for the Discord notifier. * Alerting: Clarify that Threema Gateway Alerts support only Basic IDs. * Azure: Expose Azure settings to external plugins. * AzureMonitor: Deprecate using separate credentials for Azure Monitor Logs. * AzureMonitor: Display variables in resource picker for Azure Monitor Logs. * AzureMonitor: Hide application insights for data sources not using it. * AzureMonitor: Support querying subscriptions and resource groups in Azure Monitor Logs. * AzureMonitor: remove requirement for default subscription. * CloudWatch: Add Lambda@Edge Amazon CloudFront metrics. * CloudWatch: Add missing AWS AppSync metrics. * ConfirmModal: Auto focus delete button. * Explore: Add caching for queries that are run from logs navigation. * Loki: Add formatting for annotations. * Loki: Bring back processed bytes as meta information. * NodeGraph: Display node graph collapsed by default with trace view. * Overrides: Include a manual override option to hide something from visualization. * PieChart: Support row data in pie charts. * Prometheus: Update default HTTP method to POST for existing data sources. * Time series panel: Position tooltip correctly when window is scrolled or resized. * AppPlugins: Expose react-router to apps. * AzureMonitor: Add Azure Resource Graph. * AzureMonitor: Managed Identity configuration UI. * AzureMonitor: Token provider with support for Managed Identities. * AzureMonitor: Update Logs workspace() template variable query to return resource URIs. * BarChart: Value label sizing. * CloudMonitoring: Add support for preprocessing. * CloudWatch: Add AWS/EFS StorageBytes metric. * CloudWatch: Allow use of missing AWS namespaces using custom metrics. * Datasource: Shared HTTP client provider for core backend data sources and any data source using the data source proxy. * InfluxDB: InfluxQL: allow empty tag values in the query editor. * Instrumentation: Instrument incoming HTTP request with histograms by default. * Library Panels: Add name endpoint & unique name validation to AddLibraryPanelModal. * Logs panel: Support details view. * PieChart: Always show the calculation options dropdown in the editor. * PieChart: Remove beta flag. * Plugins: Enforce signing for all plugins. * Plugins: Remove support for deprecated backend plugin protocol version. * Tempo/Jaeger: Add better display name to legend. * Timeline: Add time range zoom. * Timeline: Adds opacity & line width option. * Timeline: Value text alignment option. * ValueMappings: Add duplicate action, and disable dismiss on backdrop click. * Zipkin: Add node graph view to trace response. * API: Add org users with pagination. * API: Return 404 when deleting nonexistent API key. * API: Return query results as JSON rather than base64 encoded Arrow. * Alerting: Allow sending notification tags to Opsgenie as extra properties. * Alerts: Replaces all uses of InfoBox & FeatureInfoBox with Alert. * Auth: Add support for JWT Authentication. * AzureMonitor: Add support for Microsoft.SignalRService/SignalR metrics. * AzureMonitor: Azure settings in Grafana server config. * AzureMonitor: Migrate Metrics query editor to React. * BarChart panel: enable series toggling via legend. * BarChart panel: Adds support for Tooltip in BarChartPanel. * PieChart panel: Change look of highlighted pie slices. * CloudMonitoring: Migrate config editor from angular to react. * CloudWatch: Add Amplify Console metrics and dimensions. * CloudWatch: Add missing Redshift metrics to CloudWatch data source. * CloudWatch: Add metrics for managed RabbitMQ service. * DashboardList: Enable templating on search tag input. * Datasource config: correctly remove single custom http header. * Elasticsearch: Add generic support for template variables. * Elasticsearch: Allow omitting field when metric supports inline script. * Elasticsearch: Allow setting a custom limit for log queries. * Elasticsearch: Guess field type from first non-empty value. * Elasticsearch: Use application/x-ndjson content type for multisearch requests. * Elasticsearch: Use semver strings to identify ES version. * Explore: Add logs navigation to request more logs. * Explore: Map Graphite queries to Loki. * Explore: Scroll split panes in Explore independently. * Explore: Wrap each panel in separate error boundary. * FieldDisplay: Smarter naming of stat values when visualising row values (all values) in stat panels. * Graphite: Expand metric names for variables. * Graphite: Handle unknown Graphite functions without breaking the visual editor. * Graphite: Show graphite functions descriptions. * Graphite: Support request cancellation properly (Uses new backendSrv.fetch Observable request API). * InfluxDB: Flux: Improve handling of complex response-structures. * InfluxDB: Support region annotations. * Inspector: Download logs for manual processing. * Jaeger: Add node graph view for trace. * Jaeger: Search traces. * Loki: Use data source settings for alerting queries. * NodeGraph: Exploration mode. * OAuth: Add support for empty scopes. * PanelChrome: New logic-less emotion based component with no dependency on PanelModel or DashboardModel. * PanelEdit: Adds a table view toggle to quickly view data in table form. * PanelEdit: Highlight matched words when searching options. * PanelEdit: UX improvements. * Plugins: PanelRenderer and simplified QueryRunner to be used from plugins. * Plugins: AuthType in route configuration and params interpolation. * Plugins: Enable plugin runtime install/uninstall capabilities. * Plugins: Support set body content in plugin routes. * Plugins: Introduce marketplace app. * Plugins: Moving the DataSourcePicker to grafana/runtime so it can be reused in plugins. * Prometheus: Add custom query params for alert and exemplars queries. * Prometheus: Use fuzzy string matching to autocomplete metric names and label. * Routing: Replace Angular routing with react-router. * Slack: Use chat.postMessage API by default. * Tempo: Search for Traces by querying Loki directly from Tempo. * Tempo: Show graph view of the trace. * Themes: Switch theme without reload using global shortcut. * TimeSeries panel: Add support for shared cursor. * TimeSeries panel: Do not crash the panel if there is no time series data in the response. * Variables: Do not save repeated panels, rows and scopedVars. * Variables: Removes experimental Tags feature. * Variables: Removes the never refresh option. * Visualizations: Unify tooltip options across visualizations. * Visualizations: Refactor and unify option creation between new visualizations. * Visualizations: Remove singlestat panel. - Plugin development fixes & changes: * Toolkit: Revert build config so tslib is bundled with plugins to prevent plugins from crashing. * Select: Select menus now properly scroll during keyboard navigation. * grafana/ui: Enable slider marks display. * Plugins: Create a mock icon component to prevent console errors. * Grafana UI: Fix TS error property css is missing in type. * Toolkit: Fix matchMedia not found error. * Toolkit: Improve error messages when tasks fail. * Toolkit: Resolve external fonts when Grafana is served from a sub path. * QueryField: Remove carriage return character from pasted text. * Button: Introduce buttonStyle prop. * DataQueryRequest: Remove deprecated props showingGraph and showingTabel and exploreMode. * grafana/ui: Update React Hook Form to v7. * IconButton: Introduce variant for red and blue icon buttons. * Plugins: Expose the getTimeZone function to be able to get the current selected timeZone. * TagsInput: Add className to TagsInput. * VizLegend: Move onSeriesColorChanged to PanelContext (breaking change). - Other changes: * Update to Go 1.17. * Add build-time dependency on `wire`. grafana-8.3.5-150200.3.21.1.src.rpm grafana-8.3.5-150200.3.21.1.x86_64.rpm grafana-8.3.5-150200.3.21.1.s390x.rpm grafana-8.3.5-150200.3.21.1.ppc64le.rpm grafana-8.3.5-150200.3.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-1561 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-kiwi fixes the following issue: - Fix booting GRUB submenu entries with hybrid images (linux/linuxefi) Variables assigned with "set" are not visible in submenus. Export $linux and $initrd, so that they also work in submenu entries. (bsc#1192523) dracut-kiwi-lib-9.24.17-150100.3.50.1.x86_64.rpm dracut-kiwi-live-9.24.17-150100.3.50.1.x86_64.rpm dracut-kiwi-oem-dump-9.24.17-150100.3.50.1.x86_64.rpm dracut-kiwi-oem-repart-9.24.17-150100.3.50.1.x86_64.rpm dracut-kiwi-overlay-9.24.17-150100.3.50.1.x86_64.rpm kiwi-man-pages-9.24.17-150100.3.50.1.x86_64.rpm kiwi-pxeboot-9.24.17-150100.3.50.1.x86_64.rpm kiwi-systemdeps-9.24.17-150100.3.50.1.x86_64.rpm kiwi-systemdeps-bootloaders-9.24.17-150100.3.50.1.x86_64.rpm kiwi-systemdeps-containers-9.24.17-150100.3.50.1.x86_64.rpm kiwi-systemdeps-core-9.24.17-150100.3.50.1.x86_64.rpm kiwi-systemdeps-disk-images-9.24.17-150100.3.50.1.x86_64.rpm kiwi-systemdeps-filesystems-9.24.17-150100.3.50.1.x86_64.rpm kiwi-systemdeps-image-validation-9.24.17-150100.3.50.1.x86_64.rpm kiwi-systemdeps-iso-media-9.24.17-150100.3.50.1.x86_64.rpm kiwi-tools-9.24.17-150100.3.50.1.x86_64.rpm python-kiwi-9.24.17-150100.3.50.1.src.rpm python3-kiwi-9.24.17-150100.3.50.1.x86_64.rpm dracut-kiwi-lib-9.24.17-150100.3.50.1.s390x.rpm dracut-kiwi-live-9.24.17-150100.3.50.1.s390x.rpm dracut-kiwi-oem-dump-9.24.17-150100.3.50.1.s390x.rpm dracut-kiwi-oem-repart-9.24.17-150100.3.50.1.s390x.rpm dracut-kiwi-overlay-9.24.17-150100.3.50.1.s390x.rpm kiwi-man-pages-9.24.17-150100.3.50.1.s390x.rpm kiwi-systemdeps-9.24.17-150100.3.50.1.s390x.rpm kiwi-systemdeps-bootloaders-9.24.17-150100.3.50.1.s390x.rpm kiwi-systemdeps-containers-9.24.17-150100.3.50.1.s390x.rpm kiwi-systemdeps-core-9.24.17-150100.3.50.1.s390x.rpm kiwi-systemdeps-disk-images-9.24.17-150100.3.50.1.s390x.rpm kiwi-systemdeps-filesystems-9.24.17-150100.3.50.1.s390x.rpm kiwi-systemdeps-image-validation-9.24.17-150100.3.50.1.s390x.rpm kiwi-systemdeps-iso-media-9.24.17-150100.3.50.1.s390x.rpm kiwi-tools-9.24.17-150100.3.50.1.s390x.rpm python3-kiwi-9.24.17-150100.3.50.1.s390x.rpm dracut-kiwi-lib-9.24.17-150100.3.50.1.ppc64le.rpm dracut-kiwi-live-9.24.17-150100.3.50.1.ppc64le.rpm dracut-kiwi-oem-dump-9.24.17-150100.3.50.1.ppc64le.rpm dracut-kiwi-oem-repart-9.24.17-150100.3.50.1.ppc64le.rpm dracut-kiwi-overlay-9.24.17-150100.3.50.1.ppc64le.rpm kiwi-man-pages-9.24.17-150100.3.50.1.ppc64le.rpm kiwi-systemdeps-9.24.17-150100.3.50.1.ppc64le.rpm kiwi-systemdeps-bootloaders-9.24.17-150100.3.50.1.ppc64le.rpm kiwi-systemdeps-containers-9.24.17-150100.3.50.1.ppc64le.rpm kiwi-systemdeps-core-9.24.17-150100.3.50.1.ppc64le.rpm kiwi-systemdeps-disk-images-9.24.17-150100.3.50.1.ppc64le.rpm kiwi-systemdeps-filesystems-9.24.17-150100.3.50.1.ppc64le.rpm kiwi-systemdeps-image-validation-9.24.17-150100.3.50.1.ppc64le.rpm kiwi-systemdeps-iso-media-9.24.17-150100.3.50.1.ppc64le.rpm kiwi-tools-9.24.17-150100.3.50.1.ppc64le.rpm python3-kiwi-9.24.17-150100.3.50.1.ppc64le.rpm dracut-kiwi-lib-9.24.17-150100.3.50.1.aarch64.rpm dracut-kiwi-live-9.24.17-150100.3.50.1.aarch64.rpm dracut-kiwi-oem-dump-9.24.17-150100.3.50.1.aarch64.rpm dracut-kiwi-oem-repart-9.24.17-150100.3.50.1.aarch64.rpm dracut-kiwi-overlay-9.24.17-150100.3.50.1.aarch64.rpm kiwi-man-pages-9.24.17-150100.3.50.1.aarch64.rpm kiwi-systemdeps-9.24.17-150100.3.50.1.aarch64.rpm kiwi-systemdeps-bootloaders-9.24.17-150100.3.50.1.aarch64.rpm kiwi-systemdeps-containers-9.24.17-150100.3.50.1.aarch64.rpm kiwi-systemdeps-core-9.24.17-150100.3.50.1.aarch64.rpm kiwi-systemdeps-disk-images-9.24.17-150100.3.50.1.aarch64.rpm kiwi-systemdeps-filesystems-9.24.17-150100.3.50.1.aarch64.rpm kiwi-systemdeps-image-validation-9.24.17-150100.3.50.1.aarch64.rpm kiwi-systemdeps-iso-media-9.24.17-150100.3.50.1.aarch64.rpm kiwi-tools-9.24.17-150100.3.50.1.aarch64.rpm python3-kiwi-9.24.17-150100.3.50.1.aarch64.rpm openSUSE-SLE-15.3-2022-2047 moderate SUSE Updates openSUSE-SLE 15.3 This update for netty3 fixes the following issues: - CVE-2021-43797: Fixed a potential HTTP request smuggling issue due to insufficient validation against control characters (bsc#1193672). netty3-3.10.6-150200.3.3.2.noarch.rpm netty3-3.10.6-150200.3.3.2.src.rpm netty3-javadoc-3.10.6-150200.3.3.2.noarch.rpm openSUSE-SLE-15.3-2022-1271 important SUSE Updates openSUSE-SLE 15.3 This update for netty fixes the following issues: - Updated to version 4.1.75: - CVE-2021-37136: Fixed an unrestricted decompressed data size in Bzip2Decoder (bsc#1190610). - CVE-2021-37137: Fixed an unrestricted chunk length in SnappyFrameDecoder, which might lead to excessive memory usage (#bsc#1190613). - CVE-2021-43797: Fixed a potential HTTP request smuggling issue due to insufficient validation against control characters (bsc#1193672). - CVE-2021-21290: Fixed an information disclosure via the local system temporary directory (bsc#1182103). netty-4.1.75-150200.4.6.2.src.rpm netty-4.1.75-150200.4.6.2.x86_64.rpm netty-javadoc-4.1.75-150200.4.6.2.noarch.rpm netty-poms-4.1.75-150200.4.6.2.noarch.rpm netty-4.1.75-150200.4.6.2.s390x.rpm netty-4.1.75-150200.4.6.2.ppc64le.rpm netty-4.1.75-150200.4.6.2.aarch64.rpm openSUSE-SLE-15.3-2022-1851 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc8 fixes the following issues: - Fix build against SP4. (bsc#1197716) - Remove bogus fixed include bits/statx.h from glibc 2.30 (bsc#1197716) cpp8-8.2.1+r264010-150000.1.6.4.x86_64.rpm cross-nvptx-gcc8-8.2.1+r264010-150000.1.6.1.src.rpm cross-nvptx-gcc8-8.2.1+r264010-150000.1.6.1.x86_64.rpm cross-nvptx-newlib8-devel-8.2.1+r264010-150000.1.6.1.x86_64.rpm gcc8-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-8.2.1+r264010-150000.1.6.4.src.rpm gcc8-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-ada-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-ada-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-c++-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-c++-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-fortran-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-fortran-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-go-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-go-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-info-8.2.1+r264010-150000.1.6.4.noarch.rpm gcc8-locale-8.2.1+r264010-150000.1.6.4.x86_64.rpm libada8-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm libada8-8.2.1+r264010-150000.1.6.4.x86_64.rpm libgo13-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm libgo13-8.2.1+r264010-150000.1.6.4.x86_64.rpm libmpx2-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm libmpx2-8.2.1+r264010-150000.1.6.4.x86_64.rpm libmpxwrappers2-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm libmpxwrappers2-8.2.1+r264010-150000.1.6.4.x86_64.rpm libstdc++6-devel-gcc8-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm libstdc++6-devel-gcc8-8.2.1+r264010-150000.1.6.4.x86_64.rpm cpp8-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-ada-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-ada-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-c++-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-c++-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-fortran-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-fortran-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-go-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-go-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-locale-8.2.1+r264010-150000.1.6.4.s390x.rpm libada8-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm libada8-8.2.1+r264010-150000.1.6.4.s390x.rpm libgo13-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm libgo13-8.2.1+r264010-150000.1.6.4.s390x.rpm libstdc++6-devel-gcc8-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm libstdc++6-devel-gcc8-8.2.1+r264010-150000.1.6.4.s390x.rpm cpp8-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-ada-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-c++-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-fortran-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-go-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-locale-8.2.1+r264010-150000.1.6.4.ppc64le.rpm libada8-8.2.1+r264010-150000.1.6.4.ppc64le.rpm libgo13-8.2.1+r264010-150000.1.6.4.ppc64le.rpm libstdc++6-devel-gcc8-8.2.1+r264010-150000.1.6.4.ppc64le.rpm cpp8-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-ada-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-c++-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-fortran-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-go-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-locale-8.2.1+r264010-150000.1.6.4.aarch64.rpm libada8-8.2.1+r264010-150000.1.6.4.aarch64.rpm libgo13-8.2.1+r264010-150000.1.6.4.aarch64.rpm libstdc++6-devel-gcc8-8.2.1+r264010-150000.1.6.4.aarch64.rpm openSUSE-SLE-15.3-2022-1260 important SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - CVE-2022-24765: Fixed a potential command injection via git worktree (bsc#1198234). git-2.26.2-150000.36.1.src.rpm openSUSE-SLE-15.3-2022-1691 moderate SUSE Updates openSUSE-SLE 15.3 This update for augeas fixes the following issue: - Sysctl keys can contain some more non-alphanumeric characters. (bsc#1197443) augeas-1.10.1-150000.3.12.1.src.rpm augeas-1.10.1-150000.3.12.1.x86_64.rpm augeas-devel-1.10.1-150000.3.12.1.x86_64.rpm augeas-devel-32bit-1.10.1-150000.3.12.1.x86_64.rpm augeas-lense-tests-1.10.1-150000.3.12.1.x86_64.rpm augeas-lenses-1.10.1-150000.3.12.1.x86_64.rpm libaugeas0-1.10.1-150000.3.12.1.x86_64.rpm libaugeas0-32bit-1.10.1-150000.3.12.1.x86_64.rpm augeas-1.10.1-150000.3.12.1.s390x.rpm augeas-devel-1.10.1-150000.3.12.1.s390x.rpm augeas-lense-tests-1.10.1-150000.3.12.1.s390x.rpm augeas-lenses-1.10.1-150000.3.12.1.s390x.rpm libaugeas0-1.10.1-150000.3.12.1.s390x.rpm augeas-1.10.1-150000.3.12.1.ppc64le.rpm augeas-devel-1.10.1-150000.3.12.1.ppc64le.rpm augeas-lense-tests-1.10.1-150000.3.12.1.ppc64le.rpm augeas-lenses-1.10.1-150000.3.12.1.ppc64le.rpm libaugeas0-1.10.1-150000.3.12.1.ppc64le.rpm augeas-1.10.1-150000.3.12.1.aarch64.rpm augeas-devel-1.10.1-150000.3.12.1.aarch64.rpm augeas-lense-tests-1.10.1-150000.3.12.1.aarch64.rpm augeas-lenses-1.10.1-150000.3.12.1.aarch64.rpm libaugeas0-1.10.1-150000.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-1678 important SUSE Updates openSUSE-SLE 15.3 This update for jackson-databind, jackson-dataformats-binary, jackson-annotations, jackson-bom, jackson-core fixes the following issues: Security issues fixed: - CVE-2020-36518: Fixed a Java stack overflow exception and denial of service via a large depth of nested objects in jackson-databind. (bsc#1197132) - CVE-2020-25649: Fixed an insecure entity expansion in jackson-databind which was vulnerable to XML external entity (XXE). (bsc#1177616) - CVE-2020-28491: Fixed a bug which could cause `java.lang.OutOfMemoryError` exception in jackson-dataformats-binary. (bsc#1182481) Non security fixes: jackson-annotations - update from version 2.10.2 to version 2.13.0: + Build with source/target levels 8 + Add 'mvnw' wrapper + 'JsonSubType.Type' should accept array of names + Jackson version alignment with Gradle 6 + Add '@JsonIncludeProperties' + Add '@JsonTypeInfo(use=DEDUCTION)' + Ability to use '@JsonAnyGetter' on fields + Add '@JsonKey' annotation + Allow repeated calls to 'SimpleObjectIdResolver.bindItem()' for same mapping + Add 'namespace' property for '@JsonProperty' (for XML module) + Add target 'ElementType.ANNOTATION_TYPE' for '@JsonEnumDefaultValue' + 'JsonPattern.Value.pattern' retained as "", never (accidentally) exposed as 'null' + Rewrite to use `ant` for building in order to be able to use it in packages that have to be built before maven jackson-bom - update from version 2.10.2 to version 2.13.0: + Configure moditect plugin with '<jvmVersion>11</jvmVersion>' + jackson-bom manages the version of 'junit:junit' + Drop 'jackson-datatype-hibernate3' (support for Hibernate 3.x datatypes) + Removed "jakarta" classifier variants of JAXB/JSON-P/JAX-RS modules due to the addition of new Jakarta artifacts (Jakarta-JSONP, Jakarta-xmlbind-annotations, Jakarta-rs-providers) + Add version for 'jackson-datatype-jakarta-jsonp' module (introduced after 2.12.2) + Add (beta) version for 'jackson-dataformat-toml' + Jakarta 9 artifact versions are missing from jackson-bom + Add default settings for 'gradle-module-metadata-maven-plugin' (gradle metadata) + Add default settings for 'build-helper-maven-plugin' + Drop 'jackson-module-scala_2.10' entry (not released for Jackson 2.12 or later) + Add override for 'version.plugin.bundle' (for 5.1.1) to help build on JDK 15+ + Add missing version for jackson-datatype-eclipse-collections jackson-core - update from version 2.10.2 to version 2.13.0: + Build with source and target levels 8 + Misleading exception for input source when processing byte buffer with start offset + Escape contents of source document snippet for 'JsonLocation._appendSourceDesc()' + Add 'StreamWriteException' type to eventually replace 'JsonGenerationException' + Replace 'getCurrentLocation()'/'getTokenLocation()' with 'currentLocation()'/'currentTokenLocation()' in 'JsonParser' + Replace 'JsonGenerator.writeObject()' (and related) with 'writePOJO()' + Replace 'getCurrentValue()'/'setCurrentValue()' with 'currentValue()'/'assignCurrentValue()' in 'JsonParser'/'JsonGenerator + Introduce O(n^1.5) BigDecimal parser implementation + ByteQuadsCanonicalizer.addName(String, int, int) has incorrect handling for case of q2 == null + UTF32Reader ArrayIndexOutOfBoundsException + Improve exception/JsonLocation handling for binary content: don't show content, include byte offset + Fix an issue with the TokenFilter unable to ignore properties when deserializing. + Optimize array allocation by 'JsonStringEncoder' + Add 'mvnw' wrapper + (partial) Optimize array allocation by 'JsonStringEncoder' + Add back accidentally removed 'JsonStringEncoder' related methods in 'BufferRecyclers' (like 'getJsonStringEncoder()') + 'ArrayOutOfBoundException' at 'WriterBasedJsonGenerator.writeString(Reader, int)' + Allow "optional-padding" for 'Base64Variant' + More customizable TokenFilter inclusion (using 'Tokenfilter.Inclusion') + Publish Gradle Module Metadata + Add 'StreamReadCapability' for further format-based/format-agnostic handling improvements + Add 'JsonParser.isExpectedNumberIntToken()' convenience method + Add 'StreamWriteCapability' for further format-based/format-agnostic handling improvements + Add 'JsonParser.getNumberValueExact()' to allow precision-retaining buffering + Limit initial allocated block size by 'ByteArrayBuilder' to max block size + Add 'JacksonException' as parent class of 'JsonProcessingException' + Make 'JsonWriteContext.reset()' and 'JsonReadContext.reset()' methods public + Deprecate 'JsonParser.getCurrentTokenId()' (use '#currentTokenId()' instead) + Full "LICENSE" included in jar for easier access by compliancy tools + Fix NPE in 'writeNumber(String)' method of 'UTF8JsonGenerator', 'WriterBasedJsonGenerator' + Add a String Array write method in the Streaming API + Synchronize variants of 'JsonGenerator#writeNumberField' with 'JsonGenerator#writeNumber' + Add JsonGenerator#writeNumber(char[], int, int) method + Do not clear aggregated contents of 'TextBuffer' when 'releaseBuffers()' called + 'FilteringGeneratorDelegate' does not handle 'writeString(Reader, int)' + Optionally allow leading decimal in float tokens + Rewrite to use ant for building in order to be able to use it in packages that have to be built before maven + Parsing JSON with 'ALLOW_MISSING_VALUE' enabled results in endless stream of 'VALUE_NULL' tokens + Handle case when system property access is restricted + 'FilteringGeneratorDelegate' does not handle 'writeString(Reader, int)' + DataFormatMatcher#getMatchedFormatName throws NPE when no match exists + 'JsonParser.getCurrentLocation()' byte/char offset update incorrectly for big payloads jackson-databind - update from version 2.10.5.1 to version 2.13.0: + '@JsonValue' with integer for enum does not deserialize correctly + 'AnnotatedMethod.getValue()/setValue()' doesn't have useful exception message + Add 'DatabindException' as intermediate subtype of 'JsonMappingException' + Jackson does not support deserializing new Java 9 unmodifiable collections + Allocate TokenBuffer instance via context objects (to allow format-specific buffer types) + Add mechanism for setting default 'ContextAttributes' for 'ObjectMapper' + Add 'DeserializationContext.readTreeAsValue()' methods for more convenient conversions for deserializers to use + Clean up support of typed "unmodifiable", "singleton" Maps/Sets/Collections + Extend internal bitfield of 'MapperFeature' to be 'long' + Add 'removeMixIn()' method in 'MapperBuilder' + Backport 'MapperBuilder' lambda-taking methods: 'withConfigOverride()', 'withCoercionConfig()', 'withCoercionConfigDefaults()' + configOverrides(boolean.class) silently ignored, whereas .configOverride(Boolean.class) works for both primitives and boxed boolean values + Dont track unknown props in buffer if 'ignoreAllUnknown' is true + Should allow deserialization of java.time types via opaque 'JsonToken.VALUE_EMBEDDED_OBJECT' + Optimize "AnnotatedConstructor.call()" case by passing explicit null + Add AnnotationIntrospector.XmlExtensions interface for decoupling javax dependencies + Custom SimpleModule not included in list returned by ObjectMapper.getRegisteredModuleIds() after registration + Use more limiting default visibility settings for JDK types (java.*, javax.*) + Deep merge for 'JsonNode' using 'ObjectReader.readTree()' + IllegalArgumentException: Conflicting setter definitions for property with more than 2 setters + Serializing java.lang.Thread fails on JDK 11 and above + String-based 'Map' key deserializer is not deterministic when there is no single arg constructor + Add ArrayNode#set(int index, primitive_type value) + JsonStreamContext "currentValue" wrongly references to '@JsonTypeInfo' annotated object + DOM 'Node' serialization omits the default namespace declaration + Support 'suppressed' property when deserializing 'Throwable' + 'AnnotatedMember.equals()' does not work reliably + Add 'MapperFeature.APPLY_DEFAULT_VALUES', initially for Scala module + For an absent property Jackson injects 'NullNode' instead of 'null' to a JsonNode-typed constructor argument of a '@ConstructorProperties'-annotated constructor + 'XMLGregorianCalendar' doesn't work with default typing + Content 'null' handling not working for root values + StdDeserializer rejects blank (all-whitespace) strings for ints + 'USE_BASE_TYPE_AS_DEFAULT_IMPL' not working with 'DefaultTypeResolverBuilder' + Add PropertyNamingStrategies.UpperSnakeCaseStrategy (and UPPER_SNAKE_CASE constant) + StackOverflowError when serializing JsonProcessingException + Support for BCP 47 'java.util.Locale' serialization/deserialization + String property deserializes null as "null" for JsonTypeInfo.As.EXISTING_PROPERTY + Can not deserialize json to enum value with Object-/Array-valued input, '@JsonCreator' + Fix to avoid problem with 'BigDecimalNode', scale of 'Integer.MIN_VALUE' + Extend handling of 'FAIL_ON_NULL_FOR_PRIMITIVES' to cover coercion from (Empty) String via 'AsNull' + Add 'mvnw' wrapper + (regression) Factory method generic type resolution does not use Class-bound type parameter + Deserialization of "empty" subtype with DEDUCTION failed + Merge findInjectableValues() results in AnnotationIntrospectorPair + READ_UNKNOWN_ENUM_VALUES_USING_DEFAULT_VALUE doesn't work with empty strings + 'TypeFactory' cannot convert 'Collection' sub-type without type parameters to canonical form and back + Fix for [modules-java8#207]: prevent fail on secondary Java 8 date/time types + EXTERNAL_PROPERTY does not work well with '@JsonCreator' and 'FAIL_ON_UNKNOWN_PROPERTIES' + String property deserializes null as "null" for 'JsonTypeInfo.As.EXTERNAL_PROPERTY' + Property ignorals cause 'BeanDeserializer 'to forget how to read from arrays (not copying '_arrayDelegateDeserializer') + UntypedObjectDeserializer' mixes multiple unwrapped collections (related to #2733) + Two cases of incorrect error reporting about DeserializationFeature + Bug in polymorphic deserialization with '@JsonCreator', '@JsonAnySetter', 'JsonTypeInfo.As.EXTERNAL_PROPERTY' + Polymorphic subtype deduction ignores 'defaultImpl' attribute + MismatchedInputException: Cannot deserialize instance of 'com.fasterxml.jackson.databind.node.ObjectNode' out of VALUE_NULL token + Missing override for 'hasAsKey()' in 'AnnotationIntrospectorPair' + Creator lookup fails with 'InvalidDefinitionException' for conflict between single-double/single-Double arg constructor + 'MapDeserializer' forcing 'JsonMappingException' wrapping even if WRAP_EXCEPTIONS set to false + Auto-detection of constructor-based creator method skipped if there is an annotated factory-based creator method (regression from 2.11) + 'ObjectMapper.treeToValue()' no longer invokes 'JsonDeserializer.getNullValue()' + DeserializationProblemHandler is not invoked when trying to deserialize String + Fix failing 'double' JsonCreators in jackson 2.12.0 + Conflicting in POJOPropertiesCollector when having namingStrategy + Breaking API change in 'BasicClassIntrospector' (2.12.0) + 'JsonNode.requiredAt()' does NOT fail on some path expressions + Exception thrown when 'Collections.synchronizedList()' is serialized with type info, deserialized + Add option to resolve type from multiple existing properties, '@JsonTypeInfo(use=DEDUCTION)' + '@JsonIgnoreProperties' does not prevent Exception Conflicting getter/setter definitions for property + Deserialization Not Working Right with Generic Types and Builders + Add '@JsonIncludeProperties(propertyNames)' (reverse of '@JsonIgnoreProperties') + '@JsonAnyGetter' should be allowed on a field + Allow handling of single-arg constructor as property based by default + Allow case insensitive deserialization of String value into 'boolean'/'Boolean' (esp for Excel) + Allow use of '@JsonFormat(with=JsonFormat.Feature .ACCEPT_CASE_INSENSITIVE_PROPERTIES)' on Class + Abstract class included as part of known type ids for error message when using JsonSubTypes + Distinguish null from empty string for UUID deserialization + 'ReferenceType' does not expose valid containedType + Add 'CoercionConfig[s]' mechanism for configuring allowed coercions + 'JsonProperty.Access.READ_ONLY' does not work with "getter-as-setter" 'Collection's + Support 'BigInteger' and 'BigDecimal' creators in 'StdValueInstantiator' + 'JsonProperty.Access.READ_ONLY' fails with collections when a property name is specified + 'BigDecimal' precision not retained for polymorphic deserialization + Support use of 'Void' valued properties ('MapperFeature.ALLOW_VOID_VALUED_PROPERTIES') + Explicitly fail (de)serialization of 'java.time.*' types in absence of registered custom (de)serializers + Improve description included in by 'DeserializationContext.handleUnexpectedToken()' + Support for JDK 14 record types ('java.lang.Record') + 'PropertyNamingStrategy' class initialization depends on its subclass, this can lead to class loading deadlock + 'FAIL_ON_IGNORED_PROPERTIES' does not throw on 'READONLY' properties with an explicit name + Add Gradle Module Metadata for version alignment with Gradle 6 + Allow 'JsonNode' auto-convert into 'ArrayNode' if duplicates found (for XML) + Allow values of "untyped" auto-convert into 'List' if duplicates found (for XML) + Add 'ValueInstantiator.createContextual(...) + Support multiple names in 'JsonSubType.Type' + Disabling 'FAIL_ON_INVALID_SUBTYPE' breaks polymorphic deserialization of Enums + Explicitly fail (de)serialization of 'org.joda.time.*' types in absence of registered custom (de)serializers + Trailing zeros are stripped when deserializing BigDecimal values inside a @JsonUnwrapped property + Extract getter/setter/field name mangling from 'BeanUtil' into pluggable 'AccessorNamingStrategy' + Throw 'InvalidFormatException' instead of 'MismatchedInputException' for ACCEPT_FLOAT_AS_INT coercion failures + Add '@JsonKey' annotation (similar to '@JsonValue') for customizable serialization of Map keys + 'MapperFeature.ACCEPT_CASE_INSENSITIVE_ENUMS' should work for enum as keys + Add support for disabling special handling of "Creator properties" wrt alphabetic property ordering + Add 'JsonNode.canConvertToExactIntegral()' to indicate whether floating-point/BigDecimal values could be converted to integers losslessly + Improve static factory method generic type resolution logic + Allow preventing "Enum from integer" coercion using new 'CoercionConfig' system + '@JsonValue' not considered when evaluating inclusion + Make some java platform modules optional + Add support for serializing 'java.sql.Blob' + 'AnnotatedCreatorCollector' should avoid processing synthetic static (factory) methods + Add errorprone static analysis profile to detect bugs at build time + Problem with implicit creator name detection for constructor detection + Add 'BeanDeserializerBase.isCaseInsensitive()' + Refactoring of 'CollectionDeserializer' to solve CSV array handling issues + Full "LICENSE" included in jar for easier access by compliancy tools + Fix type resolution for static methods (regression in 2.11.3) + '@JsonCreator' on constructor not compatible with '@JsonIdentityInfo', 'PropertyGenerator' + Add debug improvements about 'ClassUtil.getClassMethods()' + Cannot detect creator arguments of mixins for JDK types + Add 'JsonFormat.Shape' awareness for UUID serialization ('UUIDSerializer') + Json serialization fails or a specific case that contains generics and static methods with generic parameters (2.11.1 -> 2.11.2 regression) + 'ObjectMapper.activateDefaultTypingAsProperty()' is not using parameter 'PolymorphicTypeValidator' + Problem deserialization "raw generic" fields (like 'Map') in 2.11.2 + Fix issues with 'MapLikeType.isTrueMapType()', 'CollectionLikeType.isTrueCollectionType()' + Parser/Generator features not set when using 'ObjectMapper.createParser()', 'createGenerator()' + Polymorphic subtypes not registering on copied ObjectMapper (2.11.1) + Failure to read AnnotatedField value in Jackson 2.11 + 'TypeFactory.constructType()' does not take 'TypeBindings' correctly + Builder Deserialization with JsonCreator Value vs Array + JsonCreator on static method in Enum and Enum used as key in map fails randomly + 'StdSubtypeResolver' is not thread safe (possibly due to copy not being made with 'ObjectMapper.copy()') + "Conflicting setter definitions for property" exception for 'Map' subtype during deserialization + Fail to deserialize local Records + Rearranging of props when property-based generator is in use leads to incorrect output + Jackson doesn't respect 'CAN_OVERRIDE_ACCESS_MODIFIERS=false' for deserializer properties + 'DeserializationFeature.UNWRAP_SINGLE_VALUE_ARRAYS' don't support 'Map' type field + JsonParser from MismatchedInputException cannot getText() for floating-point value + i-I case conversion problem in Turkish locale with case-insensitive deserialization + '@JsonInject' fails on trying to find deserializer even if inject-only + Polymorphic deserialization should handle case-insensitive Type Id property name if 'MapperFeature.ACCEPT_CASE_INSENSITIVE_PROPERTIES' is enabled + TreeTraversingParser and UTF8StreamJsonParser create contexts differently + Support use of '@JsonAlias' for enum values + 'declaringClass' of "enum-as-POJO" not removed for 'ObjectMapper' with a naming strategy + Fix 'JavaType.isEnumType()' to support sub-classes + BeanDeserializerBuilder Protected Factory Method for Extension + Support '@JsonSerialize(keyUsing)' and '@JsonDeserialize(keyUsing)' on Key class + Add 'SerializationFeature.WRITE_SELF_REFERENCES_AS_NULL' + 'ObjectMapper.registerSubtypes(NamedType...)' doesn't allow registering same POJO for two different type ids + 'DeserializationContext.handleMissingInstantiator()' throws 'MismatchedInputException' for non-static inner classes + Incorrect 'JsonStreamContext' for 'TokenBuffer' and 'TreeTraversingParser' + Add 'AnnotationIntrospector.findRenameByField()' to support Kotlin's "is-getter" naming convention + Use '@JsonProperty(index)' for sorting properties on serialization + Java 8 'Optional' not working with '@JsonUnwrapped' on unwrappable type + Add 'MapperFeature.BLOCK_UNSAFE_POLYMORPHIC_BASE_TYPES' to allow blocking use of unsafe base type for polymorphic deserialization + 'ObjectMapper.setSerializationInclusion()' is ignored for 'JsonAnyGetter' + 'ValueInstantiationException' when deserializing using a builder and 'UNWRAP_SINGLE_VALUE_ARRAYS' + JsonIgnoreProperties(ignoreUnknown = true) does not work on field and method level + Failure to resolve generic type parameters on serialization + JsonParser cannot getText() for input stream on MismatchedInputException + ObjectReader readValue lacks Class<T> argument + Change default textual serialization of 'java.util.Date'/'Calendar' to include colon in timezone offset + Add 'ObjectMapper.createParser()' and 'createGenerator()' methods + Allow serialization of 'Properties' with non-String values + Add new factory method for creating custom 'EnumValues' to pass to 'EnumDeserializer + 'IllegalArgumentException' thrown for mismatched subclass deserialization + Add convenience methods for creating 'List', 'Map' valued 'ObjectReader's (ObjectMapper.readerForListOf()) + 'SerializerProvider.findContentValueSerializer()' methods jackson-dataformats-binary - update from version 2.10.1 to version 2.13.0: + (cbor) Should validate UTF-8 multi-byte validity for short decode path too + (ion) Deprecate 'CloseSafeUTF8Writer', remove use + (smile) Make 'SmileFactory' support 'JsonFactory.Feature.CANONICALIZE_FIELD_NAMES' + (cbor) Make 'CBORFactory' support 'JsonFactory.Feature.CANONICALIZE_FIELD_NAMES' + (cbor) Handle case of BigDecimal with Integer.MIN_VALUE for scale gracefully + (cbor) Uncaught exception in CBORParser._nextChunkedByte2 (by ossfuzzer) + (cbor) Another uncaught exception in CBORParser._nextChunkedByte2 (by ossfuzzer) + (smile) Add 'SmileGenerator.Feature.LENIENT_UTF_ENCODING' for lenient handling of broken Unicode surrogate pairs on writing + (avro) Add 'logicalType' support for some 'java.time' types; add 'AvroJavaTimeModule' for native ser/deser + Support base64 strings in 'getBinaryValue()' for CBOR and Smile + (cbor) 'ArrayIndexOutOfBounds' for truncated UTF-8 name + (avro) Generate logicalType switch + (smile) 'ArrayIndexOutOfBounds' for truncated UTF-8 name + (ion) 'jackson-dataformat-ion' does not handle null.struct deserialization correctly + 'Ion-java' dep 1.4.0 -> 1.8.0 + Minor change to Ion module registration names (fully-qualified) + (cbor) Uncaught exception in CBORParser._nextChunkedByte2 (by ossfuzzer) + (cbor) Uncaught exception in CBORParser._findDecodedFromSymbols() (by ossfuzzer) + (smile) Uncaught validation problem wrt Smile "BigDecimal" type + (smile) ArrayIndexOutOfBoundsException for malformed Smile header + (cbor) Failed to handle case of alleged String with length of Integer.MAX_VALUE + (smile) Allocate byte[] lazily for longer Smile binary data payloads + (cbor) CBORParser need to validate zero-length byte[] for BigInteger + (smile) Handle invalid chunked-binary-format length gracefully + (smile) Allocate byte[] lazily for longer Smile binary data payloads (7-bit encoded) + (smile) ArrayIndexOutOfBoundsException in SmileParser._decodeShortUnicodeValue() + (smile) Handle sequence of Smile header markers without recursion + (cbor) CBOR loses 'Map' entries with specific 'long' Map key values (32-bit boundary) + (ion) Ion Polymorphic deserialization in 2.12 breaks wrt use of Native Type Ids when upgrading from 2.8 + (cbor) 'ArrayIndexOutOfBoundsException' in 'CBORParser' for invalid UTF-8 String + (cbor) Handle invalid CBOR content like '[0x84]' (incomplete array) + (ion) Respect 'WRITE_ENUMS_USING_TO_STRING' in 'EnumAsIonSymbolSerializer' + (ion) Add support for generating IonSexps + (ion) Add support for deserializing IonTimestamps and IonBlobs + (ion) Add 'IonObjectMapper.builderForBinaryWriters()' / '.builderforTextualWriters()' convenience methods + (ion) Enabling pretty-printing fails Ion serialization + (ion) Allow disabling native type ids in IonMapper + (smile) Small bug in byte-alignment for long field names in Smile, symbol table reuse + (ion) Add 'IonFactory.getIonSystem()' accessor + (ion) Optimize 'IonParser.getNumberType()' using 'IonReader.getIntegerSize()' + (cbor) Add 'CBORGenerator.Feature.LENIENT_UTF_ENCODING' for lenient handling of Unicode surrogate pairs on writing + (cbor) Add support for decoding unassigned "simple values" (type 7) + Add Gradle Module Metadata (https://blog.gradle.org/alignment-with-gradle-module-metadata) + (avro) Cache record names to avoid hitting class loader + (avro) Avro null deserialization + (ion) Add 'IonFactory.getIonSystem()' accessor + (avro) Add 'AvroGenerator.canWriteBinaryNatively()' to support binary writes, fix 'java.util.UUID' representation + (ion) Allow 'IonObjectMapper' with class name annotation introspector to deserialize generic subtypes + Remove dependencies upon Jackson 1.X and Avro's JacksonUtils + 'jackson-databind' should not be full dependency for (cbor, protobuf, smile) modules + 'CBORGenerator.Feature.WRITE_MINIMAL_INTS' does not write most compact form for all integers + 'AvroGenerator' overrides 'getOutputContext()' properly + (ion) Add 'IonFactory.getIonSystem()' accessor + (avro) Fix schema evolution involving maps of non-scalar + (protobuf) Parsing a protobuf message doesn't properly skip unknown fields + (ion) IonObjectMapper close()s the provided IonWriter unnecessarily + ion-java dependency 1.4.0 -> 1.5.1 jackson-annotations-2.13.0-150200.3.6.1.noarch.rpm jackson-annotations-2.13.0-150200.3.6.1.src.rpm jackson-annotations-javadoc-2.13.0-150200.3.6.1.noarch.rpm jackson-bom-2.13.0-150200.3.3.1.noarch.rpm jackson-bom-2.13.0-150200.3.3.1.src.rpm jackson-core-2.13.0-150200.3.6.1.noarch.rpm jackson-core-2.13.0-150200.3.6.1.src.rpm jackson-core-javadoc-2.13.0-150200.3.6.1.noarch.rpm jackson-databind-2.13.0-150200.3.9.1.noarch.rpm jackson-databind-2.13.0-150200.3.9.1.src.rpm jackson-databind-javadoc-2.13.0-150200.3.9.1.noarch.rpm jackson-dataformat-cbor-2.13.0-150200.3.3.3.noarch.rpm jackson-dataformat-smile-2.13.0-150200.3.3.3.noarch.rpm jackson-dataformats-binary-2.13.0-150200.3.3.3.noarch.rpm jackson-dataformats-binary-2.13.0-150200.3.3.3.src.rpm jackson-dataformats-binary-javadoc-2.13.0-150200.3.3.3.noarch.rpm openSUSE-SLE-15.3-2022-1439 moderate SUSE Updates openSUSE-SLE 15.3 This update for binutils fixes the following issues: - The official name IBM z16 for IBM zSeries arch14 is recognized. (bsc#1198237) binutils-2.37-150100.7.29.1.src.rpm binutils-2.37-150100.7.29.1.x86_64.rpm binutils-devel-2.37-150100.7.29.1.x86_64.rpm binutils-devel-32bit-2.37-150100.7.29.1.x86_64.rpm binutils-gold-2.37-150100.7.29.1.x86_64.rpm cross-aarch64-binutils-2.37-150100.7.29.1.src.rpm cross-aarch64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-arm-binutils-2.37-150100.7.29.1.src.rpm cross-arm-binutils-2.37-150100.7.29.1.x86_64.rpm cross-avr-binutils-2.37-150100.7.29.1.src.rpm cross-avr-binutils-2.37-150100.7.29.1.x86_64.rpm cross-epiphany-binutils-2.37-150100.7.29.1.src.rpm cross-epiphany-binutils-2.37-150100.7.29.1.x86_64.rpm cross-hppa-binutils-2.37-150100.7.29.1.src.rpm cross-hppa-binutils-2.37-150100.7.29.1.x86_64.rpm cross-hppa64-binutils-2.37-150100.7.29.1.src.rpm cross-hppa64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-i386-binutils-2.37-150100.7.29.1.src.rpm cross-i386-binutils-2.37-150100.7.29.1.x86_64.rpm cross-ia64-binutils-2.37-150100.7.29.1.src.rpm cross-ia64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-m68k-binutils-2.37-150100.7.29.1.src.rpm cross-m68k-binutils-2.37-150100.7.29.1.x86_64.rpm cross-mips-binutils-2.37-150100.7.29.1.src.rpm cross-mips-binutils-2.37-150100.7.29.1.x86_64.rpm cross-ppc-binutils-2.37-150100.7.29.1.src.rpm cross-ppc-binutils-2.37-150100.7.29.1.x86_64.rpm cross-ppc64-binutils-2.37-150100.7.29.1.src.rpm cross-ppc64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-ppc64le-binutils-2.37-150100.7.29.1.src.rpm cross-ppc64le-binutils-2.37-150100.7.29.1.x86_64.rpm cross-riscv64-binutils-2.37-150100.7.29.1.src.rpm cross-riscv64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-rx-binutils-2.37-150100.7.29.1.src.rpm cross-rx-binutils-2.37-150100.7.29.1.x86_64.rpm cross-s390-binutils-2.37-150100.7.29.1.src.rpm cross-s390-binutils-2.37-150100.7.29.1.x86_64.rpm cross-s390x-binutils-2.37-150100.7.29.1.src.rpm cross-s390x-binutils-2.37-150100.7.29.1.x86_64.rpm cross-sparc-binutils-2.37-150100.7.29.1.src.rpm cross-sparc-binutils-2.37-150100.7.29.1.x86_64.rpm cross-sparc64-binutils-2.37-150100.7.29.1.src.rpm cross-sparc64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-spu-binutils-2.37-150100.7.29.1.src.rpm cross-spu-binutils-2.37-150100.7.29.1.x86_64.rpm libctf-nobfd0-2.37-150100.7.29.1.x86_64.rpm libctf0-2.37-150100.7.29.1.x86_64.rpm binutils-2.37-150100.7.29.1.s390x.rpm binutils-devel-2.37-150100.7.29.1.s390x.rpm binutils-gold-2.37-150100.7.29.1.s390x.rpm cross-aarch64-binutils-2.37-150100.7.29.1.s390x.rpm cross-arm-binutils-2.37-150100.7.29.1.s390x.rpm cross-avr-binutils-2.37-150100.7.29.1.s390x.rpm cross-epiphany-binutils-2.37-150100.7.29.1.s390x.rpm cross-hppa-binutils-2.37-150100.7.29.1.s390x.rpm cross-hppa64-binutils-2.37-150100.7.29.1.s390x.rpm cross-i386-binutils-2.37-150100.7.29.1.s390x.rpm cross-ia64-binutils-2.37-150100.7.29.1.s390x.rpm cross-m68k-binutils-2.37-150100.7.29.1.s390x.rpm cross-mips-binutils-2.37-150100.7.29.1.s390x.rpm cross-ppc-binutils-2.37-150100.7.29.1.s390x.rpm cross-ppc64-binutils-2.37-150100.7.29.1.s390x.rpm cross-ppc64le-binutils-2.37-150100.7.29.1.s390x.rpm cross-riscv64-binutils-2.37-150100.7.29.1.s390x.rpm cross-rx-binutils-2.37-150100.7.29.1.s390x.rpm cross-s390-binutils-2.37-150100.7.29.1.s390x.rpm cross-sparc-binutils-2.37-150100.7.29.1.s390x.rpm cross-sparc64-binutils-2.37-150100.7.29.1.s390x.rpm cross-spu-binutils-2.37-150100.7.29.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.29.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.29.1.src.rpm libctf-nobfd0-2.37-150100.7.29.1.s390x.rpm libctf0-2.37-150100.7.29.1.s390x.rpm binutils-2.37-150100.7.29.1.ppc64le.rpm binutils-devel-2.37-150100.7.29.1.ppc64le.rpm binutils-gold-2.37-150100.7.29.1.ppc64le.rpm cross-aarch64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-arm-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-avr-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-epiphany-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-hppa-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-hppa64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-i386-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-ia64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-m68k-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-mips-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-ppc-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-ppc64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-riscv64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-rx-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-s390-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-s390x-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-sparc-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-sparc64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-spu-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-x86_64-binutils-2.37-150100.7.29.1.ppc64le.rpm libctf-nobfd0-2.37-150100.7.29.1.ppc64le.rpm libctf0-2.37-150100.7.29.1.ppc64le.rpm binutils-2.37-150100.7.29.1.aarch64.rpm binutils-devel-2.37-150100.7.29.1.aarch64.rpm binutils-gold-2.37-150100.7.29.1.aarch64.rpm cross-arm-binutils-2.37-150100.7.29.1.aarch64.rpm cross-avr-binutils-2.37-150100.7.29.1.aarch64.rpm cross-epiphany-binutils-2.37-150100.7.29.1.aarch64.rpm cross-hppa-binutils-2.37-150100.7.29.1.aarch64.rpm cross-hppa64-binutils-2.37-150100.7.29.1.aarch64.rpm cross-i386-binutils-2.37-150100.7.29.1.aarch64.rpm cross-ia64-binutils-2.37-150100.7.29.1.aarch64.rpm cross-m68k-binutils-2.37-150100.7.29.1.aarch64.rpm cross-mips-binutils-2.37-150100.7.29.1.aarch64.rpm cross-ppc-binutils-2.37-150100.7.29.1.aarch64.rpm cross-ppc64-binutils-2.37-150100.7.29.1.aarch64.rpm cross-ppc64le-binutils-2.37-150100.7.29.1.aarch64.rpm cross-riscv64-binutils-2.37-150100.7.29.1.aarch64.rpm cross-rx-binutils-2.37-150100.7.29.1.aarch64.rpm cross-s390-binutils-2.37-150100.7.29.1.aarch64.rpm cross-s390x-binutils-2.37-150100.7.29.1.aarch64.rpm cross-sparc-binutils-2.37-150100.7.29.1.aarch64.rpm cross-sparc64-binutils-2.37-150100.7.29.1.aarch64.rpm cross-spu-binutils-2.37-150100.7.29.1.aarch64.rpm cross-x86_64-binutils-2.37-150100.7.29.1.aarch64.rpm libctf-nobfd0-2.37-150100.7.29.1.aarch64.rpm libctf0-2.37-150100.7.29.1.aarch64.rpm openSUSE-SLE-15.3-2022-1655 moderate SUSE Updates openSUSE-SLE 15.3 This update for pam fixes the following issue: - Do not include obsolete header files (bsc#1197794) pam-1.3.0-150000.6.58.3.src.rpm pam-1.3.0-150000.6.58.3.x86_64.rpm pam-32bit-1.3.0-150000.6.58.3.x86_64.rpm pam-devel-1.3.0-150000.6.58.3.x86_64.rpm pam-devel-32bit-1.3.0-150000.6.58.3.x86_64.rpm pam-doc-1.3.0-150000.6.58.3.noarch.rpm pam-extra-1.3.0-150000.6.58.3.x86_64.rpm pam-extra-32bit-1.3.0-150000.6.58.3.x86_64.rpm pam-modules-12.1-150000.5.3.2.src.rpm pam-modules-12.1-150000.5.3.2.x86_64.rpm pam-modules-32bit-12.1-150000.5.3.2.x86_64.rpm pam-1.3.0-150000.6.58.3.s390x.rpm pam-devel-1.3.0-150000.6.58.3.s390x.rpm pam-extra-1.3.0-150000.6.58.3.s390x.rpm pam-modules-12.1-150000.5.3.2.s390x.rpm pam-1.3.0-150000.6.58.3.ppc64le.rpm pam-devel-1.3.0-150000.6.58.3.ppc64le.rpm pam-extra-1.3.0-150000.6.58.3.ppc64le.rpm pam-modules-12.1-150000.5.3.2.ppc64le.rpm pam-1.3.0-150000.6.58.3.aarch64.rpm pam-devel-1.3.0-150000.6.58.3.aarch64.rpm pam-extra-1.3.0-150000.6.58.3.aarch64.rpm pam-modules-12.1-150000.5.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-1304 important SUSE Updates openSUSE-SLE 15.3 This update for tomcat fixes the following issues: Security hardening, related to Spring Framework vulnerabilities: - Deprecate getResources() and always return null (bsc#1198136). tomcat-9.0.36-150200.22.1.noarch.rpm tomcat-9.0.36-150200.22.1.src.rpm tomcat-admin-webapps-9.0.36-150200.22.1.noarch.rpm tomcat-docs-webapp-9.0.36-150200.22.1.noarch.rpm tomcat-el-3_0-api-9.0.36-150200.22.1.noarch.rpm tomcat-embed-9.0.36-150200.22.1.noarch.rpm tomcat-javadoc-9.0.36-150200.22.1.noarch.rpm tomcat-jsp-2_3-api-9.0.36-150200.22.1.noarch.rpm tomcat-jsvc-9.0.36-150200.22.1.noarch.rpm tomcat-lib-9.0.36-150200.22.1.noarch.rpm tomcat-servlet-4_0-api-9.0.36-150200.22.1.noarch.rpm tomcat-webapps-9.0.36-150200.22.1.noarch.rpm openSUSE-SLE-15.3-2022-1548 moderate SUSE Updates openSUSE-SLE 15.3 This update for tar fixes the following issues: - CVE-2021-20193: Fixed a memory leak in read_header() in list.c (bsc#1181131). - CVE-2019-9923: Fixed a null-pointer dereference in pax_decode_header in sparse.c (bsc#1130496). - CVE-2018-20482: Fixed infinite read loop in sparse_dump_region in sparse.c (bsc#1120610). - Update to GNU tar 1.34: * Fix extraction over pipe * Fix memory leak in read_header (CVE-2021-20193) (bsc#1181131) * Fix extraction when . and .. are unreadable * Gracefully handle duplicate symlinks when extracting * Re-initialize supplementary groups when switching to user privileges - Update to GNU tar 1.33: * POSIX extended format headers do not include PID by default * --delay-directory-restore works for archives with reversed member ordering * Fix extraction of a symbolic link hardlinked to another symbolic link * Wildcards in exclude-vcs-ignore mode don't match slash * Fix the --no-overwrite-dir option * Fix handling of chained renames in incremental backups * Link counting works for file names supplied with -T * Accept only position-sensitive (file-selection) options in file list files - prepare usrmerge (bsc#1029961) - Update to GNU 1.32 * Fix the use of --checkpoint without explicit --checkpoint-action * Fix extraction with the -U option * Fix iconv usage on BSD-based systems * Fix possible NULL dereference (savannah bug #55369) [bsc#1130496] [CVE-2019-9923] * Improve the testsuite - Update to GNU 1.31 * Fix heap-buffer-overrun with --one-top-level, bug introduced with the addition of that option in 1.28 * Support for zstd compression * New option '--zstd' instructs tar to use zstd as compression program. When listing, extractng and comparing, zstd compressed archives are recognized automatically. When '-a' option is in effect, zstd compression is selected if the destination archive name ends in '.zst' or '.tzst'. * The -K option interacts properly with member names given in the command line. Names of members to extract can be specified along with the "-K NAME" option. In this case, tar will extract NAME and those of named members that appear in the archive after it, which is consistent with the semantics of the option. Previous versions of tar extracted NAME, those of named members that appeared before it, and everything after it. * Fix CVE-2018-20482 - When creating archives with the --sparse option, previous versions of tar would loop endlessly if a sparse file had been truncated while being archived. tar-1.34-150000.3.12.1.src.rpm tar-1.34-150000.3.12.1.x86_64.rpm tar-backup-scripts-1.34-150000.3.12.1.noarch.rpm tar-doc-1.34-150000.3.12.1.noarch.rpm tar-lang-1.34-150000.3.12.1.noarch.rpm tar-rmt-1.34-150000.3.12.1.x86_64.rpm tar-tests-1.34-150000.3.12.1.x86_64.rpm tar-1.34-150000.3.12.1.s390x.rpm tar-rmt-1.34-150000.3.12.1.s390x.rpm tar-tests-1.34-150000.3.12.1.s390x.rpm tar-1.34-150000.3.12.1.ppc64le.rpm tar-rmt-1.34-150000.3.12.1.ppc64le.rpm tar-tests-1.34-150000.3.12.1.ppc64le.rpm tar-1.34-150000.3.12.1.aarch64.rpm tar-rmt-1.34-150000.3.12.1.aarch64.rpm tar-tests-1.34-150000.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-1576 low SUSE Updates openSUSE-SLE 15.3 This update for ldb fixes the following issues: - Update to version 2.4.2 - CVE-2021-3670: Fixed an issue where the LDAP server MaxQueryDuration value would not be honoured (bsc#1198397). ldb-2.4.2-150300.3.15.1.src.rpm ldb-tools-2.4.2-150300.3.15.1.x86_64.rpm libldb-devel-2.4.2-150300.3.15.1.x86_64.rpm libldb2-2.4.2-150300.3.15.1.x86_64.rpm libldb2-32bit-2.4.2-150300.3.15.1.x86_64.rpm python3-ldb-2.4.2-150300.3.15.1.x86_64.rpm python3-ldb-32bit-2.4.2-150300.3.15.1.x86_64.rpm python3-ldb-devel-2.4.2-150300.3.15.1.x86_64.rpm ldb-tools-2.4.2-150300.3.15.1.s390x.rpm libldb-devel-2.4.2-150300.3.15.1.s390x.rpm libldb2-2.4.2-150300.3.15.1.s390x.rpm python3-ldb-2.4.2-150300.3.15.1.s390x.rpm python3-ldb-devel-2.4.2-150300.3.15.1.s390x.rpm ldb-tools-2.4.2-150300.3.15.1.ppc64le.rpm libldb-devel-2.4.2-150300.3.15.1.ppc64le.rpm libldb2-2.4.2-150300.3.15.1.ppc64le.rpm python3-ldb-2.4.2-150300.3.15.1.ppc64le.rpm python3-ldb-devel-2.4.2-150300.3.15.1.ppc64le.rpm ldb-tools-2.4.2-150300.3.15.1.aarch64.rpm libldb-devel-2.4.2-150300.3.15.1.aarch64.rpm libldb2-2.4.2-150300.3.15.1.aarch64.rpm python3-ldb-2.4.2-150300.3.15.1.aarch64.rpm python3-ldb-devel-2.4.2-150300.3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-1277 moderate SUSE Updates openSUSE-SLE 15.3 This update for dcraw fixes the following issues: - CVE-2017-13735: Fixed a denial of service issue due to a floating point exception (bsc#1056170). - CVE-2017-14608: Fixed an invalid memory access that could lead to information disclosure or denial of service (bsc#1063798). - CVE-2018-19655: Fixed a buffer overflow that could lead to an application crash (bsc#1117896). - CVE-2018-5801: Fixed an invalid memory access that could lead to denial of service (bsc#1084690). - CVE-2018-5805: Fixed a buffer overflow that could lead to an application crash (bsc#1097973). - CVE-2018-5806: Fixed an invalid memory access that could lead to denial of service (bsc#1097974). - CVE-2018-19565: Fixed an invalid memory access that could lead to information disclosure or denial of service (bsc#1117622). - CVE-2018-19566: Fixed an invalid memory access that could lead to information disclosure or denial of service (bsc#1117517). - CVE-2018-19567: Fixed a denial of service issue due to a floating point exception (bsc#1117512). - CVE-2018-19568: Fixed a denial of service issue due to a floating point exception (bsc#1117436). - CVE-2021-3624: Fixed a buffer overflow that could lead to code execution or denial of service (bsc#1189642). Non-security fixes: - Updated to version 9.28.0. dcraw-9.28.0-150000.3.3.1.src.rpm dcraw-9.28.0-150000.3.3.1.x86_64.rpm dcraw-lang-9.28.0-150000.3.3.1.noarch.rpm dcraw-9.28.0-150000.3.3.1.s390x.rpm dcraw-9.28.0-150000.3.3.1.ppc64le.rpm dcraw-9.28.0-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1274 important SUSE Updates openSUSE-SLE 15.3 This update for GraphicsMagick fixes the following issues: - CVE-2022-1270: Fixed a heap buffer overflow when parsing MIFF (bsc#1198351). GraphicsMagick-1.3.35-150300.3.3.1.src.rpm GraphicsMagick-1.3.35-150300.3.3.1.x86_64.rpm GraphicsMagick-devel-1.3.35-150300.3.3.1.x86_64.rpm libGraphicsMagick++-Q16-12-1.3.35-150300.3.3.1.x86_64.rpm libGraphicsMagick++-devel-1.3.35-150300.3.3.1.x86_64.rpm libGraphicsMagick-Q16-3-1.3.35-150300.3.3.1.x86_64.rpm libGraphicsMagick3-config-1.3.35-150300.3.3.1.x86_64.rpm libGraphicsMagickWand-Q16-2-1.3.35-150300.3.3.1.x86_64.rpm perl-GraphicsMagick-1.3.35-150300.3.3.1.x86_64.rpm GraphicsMagick-1.3.35-150300.3.3.1.s390x.rpm GraphicsMagick-devel-1.3.35-150300.3.3.1.s390x.rpm libGraphicsMagick++-Q16-12-1.3.35-150300.3.3.1.s390x.rpm libGraphicsMagick++-devel-1.3.35-150300.3.3.1.s390x.rpm libGraphicsMagick-Q16-3-1.3.35-150300.3.3.1.s390x.rpm libGraphicsMagick3-config-1.3.35-150300.3.3.1.s390x.rpm libGraphicsMagickWand-Q16-2-1.3.35-150300.3.3.1.s390x.rpm perl-GraphicsMagick-1.3.35-150300.3.3.1.s390x.rpm GraphicsMagick-1.3.35-150300.3.3.1.ppc64le.rpm GraphicsMagick-devel-1.3.35-150300.3.3.1.ppc64le.rpm libGraphicsMagick++-Q16-12-1.3.35-150300.3.3.1.ppc64le.rpm libGraphicsMagick++-devel-1.3.35-150300.3.3.1.ppc64le.rpm libGraphicsMagick-Q16-3-1.3.35-150300.3.3.1.ppc64le.rpm libGraphicsMagick3-config-1.3.35-150300.3.3.1.ppc64le.rpm libGraphicsMagickWand-Q16-2-1.3.35-150300.3.3.1.ppc64le.rpm perl-GraphicsMagick-1.3.35-150300.3.3.1.ppc64le.rpm GraphicsMagick-1.3.35-150300.3.3.1.aarch64.rpm GraphicsMagick-devel-1.3.35-150300.3.3.1.aarch64.rpm libGraphicsMagick++-Q16-12-1.3.35-150300.3.3.1.aarch64.rpm libGraphicsMagick++-devel-1.3.35-150300.3.3.1.aarch64.rpm libGraphicsMagick-Q16-3-1.3.35-150300.3.3.1.aarch64.rpm libGraphicsMagick3-config-1.3.35-150300.3.3.1.aarch64.rpm libGraphicsMagickWand-Q16-2-1.3.35-150300.3.3.1.aarch64.rpm perl-GraphicsMagick-1.3.35-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1481 moderate SUSE Updates openSUSE-SLE 15.3 This update for collectd fixes the following issues: - Adding new plugin rpm 'collect-plugin-dpdk' including the following modules (jsc#SLE-23472): - dpdkevent - dpdk_telemetry collectd-5.10.0-150200.3.3.1.src.rpm collectd-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-connectivity-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-dbi-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-ipmi-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-java-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-lua-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-mcelog-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-memcachec-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-mysql-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-notify-desktop-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-nut-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-openldap-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-ovs-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-pcie-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-pinba-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-postgresql-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-procevent-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-python3-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-smart-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-snmp-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-synproxy-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-sysevent-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-uptime-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-virt-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-write_stackdriver-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugin-write_syslog-5.10.0-150200.3.3.1.x86_64.rpm collectd-plugins-all-5.10.0-150200.3.3.1.x86_64.rpm collectd-spamassassin-5.10.0-150200.3.3.1.x86_64.rpm collectd-web-5.10.0-150200.3.3.1.x86_64.rpm collectd-web-js-5.10.0-150200.3.3.1.x86_64.rpm libcollectdclient-devel-5.10.0-150200.3.3.1.x86_64.rpm libcollectdclient1-5.10.0-150200.3.3.1.x86_64.rpm collectd-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-connectivity-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-dbi-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-ipmi-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-java-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-lua-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-mcelog-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-memcachec-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-mysql-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-notify-desktop-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-nut-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-openldap-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-ovs-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-pcie-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-pinba-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-postgresql-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-procevent-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-python3-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-smart-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-snmp-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-synproxy-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-sysevent-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-uptime-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-virt-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-write_stackdriver-5.10.0-150200.3.3.1.s390x.rpm collectd-plugin-write_syslog-5.10.0-150200.3.3.1.s390x.rpm collectd-plugins-all-5.10.0-150200.3.3.1.s390x.rpm collectd-spamassassin-5.10.0-150200.3.3.1.s390x.rpm collectd-web-5.10.0-150200.3.3.1.s390x.rpm collectd-web-js-5.10.0-150200.3.3.1.s390x.rpm libcollectdclient-devel-5.10.0-150200.3.3.1.s390x.rpm libcollectdclient1-5.10.0-150200.3.3.1.s390x.rpm collectd-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-connectivity-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-dbi-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-ipmi-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-java-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-lua-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-mcelog-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-memcachec-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-mysql-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-notify-desktop-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-nut-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-openldap-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-ovs-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-pcie-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-pinba-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-postgresql-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-procevent-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-python3-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-smart-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-snmp-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-synproxy-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-sysevent-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-uptime-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-virt-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-write_stackdriver-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugin-write_syslog-5.10.0-150200.3.3.1.ppc64le.rpm collectd-plugins-all-5.10.0-150200.3.3.1.ppc64le.rpm collectd-spamassassin-5.10.0-150200.3.3.1.ppc64le.rpm collectd-web-5.10.0-150200.3.3.1.ppc64le.rpm collectd-web-js-5.10.0-150200.3.3.1.ppc64le.rpm libcollectdclient-devel-5.10.0-150200.3.3.1.ppc64le.rpm libcollectdclient1-5.10.0-150200.3.3.1.ppc64le.rpm collectd-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-connectivity-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-dbi-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-ipmi-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-java-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-lua-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-mcelog-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-memcachec-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-mysql-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-notify-desktop-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-nut-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-openldap-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-ovs-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-pcie-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-pinba-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-postgresql-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-procevent-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-python3-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-smart-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-snmp-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-synproxy-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-sysevent-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-uptime-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-virt-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-write_stackdriver-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugin-write_syslog-5.10.0-150200.3.3.1.aarch64.rpm collectd-plugins-all-5.10.0-150200.3.3.1.aarch64.rpm collectd-spamassassin-5.10.0-150200.3.3.1.aarch64.rpm collectd-web-5.10.0-150200.3.3.1.aarch64.rpm collectd-web-js-5.10.0-150200.3.3.1.aarch64.rpm libcollectdclient-devel-5.10.0-150200.3.3.1.aarch64.rpm libcollectdclient1-5.10.0-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1656 moderate SUSE Updates openSUSE-SLE 15.3 This update for llvm7 fixes the following issues: - Backport fixes and changes from Factory. (bsc#1197775) - Drop RUNPATH from packaged binaries, instead set LD_LIBRARY_PATH for building and testing to simulate behavior of actual package. - Fix build with linux-glibc-devel 5.13. clang7-7.0.1-150100.3.22.2.x86_64.rpm clang7-checker-7.0.1-150100.3.22.2.x86_64.rpm clang7-devel-32bit-7.0.1-150100.3.22.2.x86_64.rpm clang7-devel-7.0.1-150100.3.22.2.x86_64.rpm libLLVM7-32bit-7.0.1-150100.3.22.2.x86_64.rpm libLLVM7-7.0.1-150100.3.22.2.x86_64.rpm libLTO7-32bit-7.0.1-150100.3.22.2.x86_64.rpm libLTO7-7.0.1-150100.3.22.2.x86_64.rpm libclang7-32bit-7.0.1-150100.3.22.2.x86_64.rpm libclang7-7.0.1-150100.3.22.2.x86_64.rpm liblldb7-7.0.1-150100.3.22.2.x86_64.rpm libomp7-devel-7.0.1-150100.3.22.2.x86_64.rpm lld7-7.0.1-150100.3.22.2.x86_64.rpm lldb7-7.0.1-150100.3.22.2.x86_64.rpm lldb7-devel-7.0.1-150100.3.22.2.x86_64.rpm llvm7-7.0.1-150100.3.22.2.src.rpm llvm7-7.0.1-150100.3.22.2.x86_64.rpm llvm7-LTO-devel-32bit-7.0.1-150100.3.22.2.x86_64.rpm llvm7-LTO-devel-7.0.1-150100.3.22.2.x86_64.rpm llvm7-devel-32bit-7.0.1-150100.3.22.2.x86_64.rpm llvm7-devel-7.0.1-150100.3.22.2.x86_64.rpm llvm7-emacs-plugins-7.0.1-150100.3.22.2.noarch.rpm llvm7-gold-7.0.1-150100.3.22.2.x86_64.rpm llvm7-opt-viewer-7.0.1-150100.3.22.2.noarch.rpm llvm7-polly-7.0.1-150100.3.22.2.x86_64.rpm llvm7-polly-devel-7.0.1-150100.3.22.2.x86_64.rpm llvm7-vim-plugins-7.0.1-150100.3.22.2.noarch.rpm python3-lldb7-7.0.1-150100.3.22.2.x86_64.rpm clang7-7.0.1-150100.3.22.2.s390x.rpm clang7-checker-7.0.1-150100.3.22.2.s390x.rpm clang7-devel-7.0.1-150100.3.22.2.s390x.rpm libLLVM7-7.0.1-150100.3.22.2.s390x.rpm libLTO7-7.0.1-150100.3.22.2.s390x.rpm libclang7-7.0.1-150100.3.22.2.s390x.rpm lld7-7.0.1-150100.3.22.2.s390x.rpm llvm7-7.0.1-150100.3.22.2.s390x.rpm llvm7-LTO-devel-7.0.1-150100.3.22.2.s390x.rpm llvm7-devel-7.0.1-150100.3.22.2.s390x.rpm llvm7-gold-7.0.1-150100.3.22.2.s390x.rpm llvm7-polly-7.0.1-150100.3.22.2.s390x.rpm llvm7-polly-devel-7.0.1-150100.3.22.2.s390x.rpm clang7-7.0.1-150100.3.22.2.ppc64le.rpm clang7-checker-7.0.1-150100.3.22.2.ppc64le.rpm clang7-devel-7.0.1-150100.3.22.2.ppc64le.rpm libLLVM7-7.0.1-150100.3.22.2.ppc64le.rpm libLTO7-7.0.1-150100.3.22.2.ppc64le.rpm libclang7-7.0.1-150100.3.22.2.ppc64le.rpm libomp7-devel-7.0.1-150100.3.22.2.ppc64le.rpm lld7-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-LTO-devel-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-devel-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-gold-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-polly-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-polly-devel-7.0.1-150100.3.22.2.ppc64le.rpm clang7-7.0.1-150100.3.22.2.aarch64.rpm clang7-checker-7.0.1-150100.3.22.2.aarch64.rpm clang7-devel-7.0.1-150100.3.22.2.aarch64.rpm libLLVM7-7.0.1-150100.3.22.2.aarch64.rpm libLTO7-7.0.1-150100.3.22.2.aarch64.rpm libclang7-7.0.1-150100.3.22.2.aarch64.rpm libomp7-devel-7.0.1-150100.3.22.2.aarch64.rpm lld7-7.0.1-150100.3.22.2.aarch64.rpm llvm7-7.0.1-150100.3.22.2.aarch64.rpm llvm7-LTO-devel-7.0.1-150100.3.22.2.aarch64.rpm llvm7-devel-7.0.1-150100.3.22.2.aarch64.rpm llvm7-gold-7.0.1-150100.3.22.2.aarch64.rpm llvm7-polly-7.0.1-150100.3.22.2.aarch64.rpm llvm7-polly-devel-7.0.1-150100.3.22.2.aarch64.rpm openSUSE-SLE-15.3-2022-1642 moderate SUSE Updates openSUSE-SLE 15.3 This update for u-boot fixes the following issue: - Fix USB stall that causes reboot with some devices on RPi (bsc#1197627) u-boot-2021.01-150300.7.7.1.src.rpm u-boot-tools-2021.01-150300.7.7.1.x86_64.rpm u-boot-tools-2021.01-150300.7.7.1.s390x.rpm u-boot-tools-2021.01-150300.7.7.1.ppc64le.rpm u-boot-avnetultra96rev1-2021.01-150300.7.7.1.aarch64.rpm u-boot-avnetultra96rev1-2021.01-150300.7.7.1.src.rpm u-boot-avnetultra96rev1-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-bananapim64-2021.01-150300.7.7.1.aarch64.rpm u-boot-bananapim64-2021.01-150300.7.7.1.src.rpm u-boot-bananapim64-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-dragonboard410c-2021.01-150300.7.7.1.aarch64.rpm u-boot-dragonboard410c-2021.01-150300.7.7.1.src.rpm u-boot-dragonboard410c-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-dragonboard820c-2021.01-150300.7.7.1.aarch64.rpm u-boot-dragonboard820c-2021.01-150300.7.7.1.src.rpm u-boot-dragonboard820c-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-evb-rk3399-2021.01-150300.7.7.1.aarch64.rpm u-boot-evb-rk3399-2021.01-150300.7.7.1.src.rpm u-boot-evb-rk3399-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-150300.7.7.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-150300.7.7.1.src.rpm u-boot-firefly-rk3399-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-geekbox-2021.01-150300.7.7.1.aarch64.rpm u-boot-geekbox-2021.01-150300.7.7.1.src.rpm u-boot-geekbox-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-hikey-2021.01-150300.7.7.1.aarch64.rpm u-boot-hikey-2021.01-150300.7.7.1.src.rpm u-boot-hikey-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-khadas-vim-2021.01-150300.7.7.1.aarch64.rpm u-boot-khadas-vim-2021.01-150300.7.7.1.src.rpm u-boot-khadas-vim-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-khadas-vim2-2021.01-150300.7.7.1.aarch64.rpm u-boot-khadas-vim2-2021.01-150300.7.7.1.src.rpm u-boot-khadas-vim2-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-libretech-ac-2021.01-150300.7.7.1.aarch64.rpm u-boot-libretech-ac-2021.01-150300.7.7.1.src.rpm u-boot-libretech-ac-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-libretech-cc-2021.01-150300.7.7.1.aarch64.rpm u-boot-libretech-cc-2021.01-150300.7.7.1.src.rpm u-boot-libretech-cc-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-150300.7.7.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-150300.7.7.1.src.rpm u-boot-ls1012afrdmqspi-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-150300.7.7.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-150300.7.7.1.src.rpm u-boot-mvebudb-88f3720-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-150300.7.7.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-150300.7.7.1.src.rpm u-boot-mvebudbarmada8k-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-150300.7.7.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-150300.7.7.1.src.rpm u-boot-mvebuespressobin-88f3720-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-150300.7.7.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-150300.7.7.1.src.rpm u-boot-mvebumcbin-88f8040-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-nanopia64-2021.01-150300.7.7.1.aarch64.rpm u-boot-nanopia64-2021.01-150300.7.7.1.src.rpm u-boot-nanopia64-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-odroid-c2-2021.01-150300.7.7.1.aarch64.rpm u-boot-odroid-c2-2021.01-150300.7.7.1.src.rpm u-boot-odroid-c2-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-odroid-c4-2021.01-150300.7.7.1.aarch64.rpm u-boot-odroid-c4-2021.01-150300.7.7.1.src.rpm u-boot-odroid-c4-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-odroid-n2-2021.01-150300.7.7.1.aarch64.rpm u-boot-odroid-n2-2021.01-150300.7.7.1.src.rpm u-boot-odroid-n2-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-orangepipc2-2021.01-150300.7.7.1.aarch64.rpm u-boot-orangepipc2-2021.01-150300.7.7.1.src.rpm u-boot-orangepipc2-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-p2371-2180-2021.01-150300.7.7.1.aarch64.rpm u-boot-p2371-2180-2021.01-150300.7.7.1.src.rpm u-boot-p2371-2180-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-150300.7.7.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-150300.7.7.1.src.rpm u-boot-p2771-0000-500-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-p3450-0000-2021.01-150300.7.7.1.aarch64.rpm u-boot-p3450-0000-2021.01-150300.7.7.1.src.rpm u-boot-p3450-0000-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-pine64plus-2021.01-150300.7.7.1.aarch64.rpm u-boot-pine64plus-2021.01-150300.7.7.1.src.rpm u-boot-pine64plus-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-pinebook-2021.01-150300.7.7.1.aarch64.rpm u-boot-pinebook-2021.01-150300.7.7.1.src.rpm u-boot-pinebook-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-150300.7.7.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-150300.7.7.1.src.rpm u-boot-pinebook-pro-rk3399-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-pineh64-2021.01-150300.7.7.1.aarch64.rpm u-boot-pineh64-2021.01-150300.7.7.1.src.rpm u-boot-pineh64-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-pinephone-2021.01-150300.7.7.1.aarch64.rpm u-boot-pinephone-2021.01-150300.7.7.1.src.rpm u-boot-pinephone-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-poplar-2021.01-150300.7.7.1.aarch64.rpm u-boot-poplar-2021.01-150300.7.7.1.src.rpm u-boot-poplar-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-150300.7.7.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-150300.7.7.1.src.rpm u-boot-rock-pi-4-rk3399-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-150300.7.7.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-150300.7.7.1.src.rpm u-boot-rock64-rk3328-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-150300.7.7.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-150300.7.7.1.src.rpm u-boot-rock960-rk3399-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-150300.7.7.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-150300.7.7.1.src.rpm u-boot-rockpro64-rk3399-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-rpi3-2021.01-150300.7.7.1.aarch64.rpm u-boot-rpi3-2021.01-150300.7.7.1.src.rpm u-boot-rpi3-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-rpi4-2021.01-150300.7.7.1.aarch64.rpm u-boot-rpi4-2021.01-150300.7.7.1.src.rpm u-boot-rpi4-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-rpiarm64-2021.01-150300.7.7.1.aarch64.rpm u-boot-rpiarm64-2021.01-150300.7.7.1.src.rpm u-boot-rpiarm64-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-tools-2021.01-150300.7.7.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-150300.7.7.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-150300.7.7.1.src.rpm u-boot-xilinxzynqmpvirt-doc-2021.01-150300.7.7.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-150300.7.7.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-150300.7.7.1.src.rpm u-boot-xilinxzynqmpzcu102rev10-doc-2021.01-150300.7.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-1307 important SUSE Updates openSUSE-SLE 15.3 This update for dnsmasq fixes the following issues: - CVE-2022-0934: Fixed an invalid memory access that could lead to remote denial of service via crafted packet (bsc#1197872). dnsmasq-2.86-150100.7.20.1.src.rpm dnsmasq-2.86-150100.7.20.1.x86_64.rpm dnsmasq-utils-2.86-150100.7.20.1.x86_64.rpm dnsmasq-2.86-150100.7.20.1.s390x.rpm dnsmasq-utils-2.86-150100.7.20.1.s390x.rpm dnsmasq-2.86-150100.7.20.1.ppc64le.rpm dnsmasq-utils-2.86-150100.7.20.1.ppc64le.rpm dnsmasq-2.86-150100.7.20.1.aarch64.rpm dnsmasq-utils-2.86-150100.7.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-1374 moderate SUSE Updates openSUSE-SLE 15.3 This update for openldap2 fixes the following issues: - allow specification of max/min TLS version with TLS1.3 (bsc#1191157) - libldap was able to be out of step with openldap in some cases which could cause incorrect installations and symbol resolution failures. openldap2 and libldap now are locked to their related release versions. (bsc#1197004) - restore CLDAP functionality in CLI tools (jsc#PM-3288) libldap-2_4-2-2.4.46-150200.14.5.1.x86_64.rpm libldap-2_4-2-32bit-2.4.46-150200.14.5.1.x86_64.rpm libldap-data-2.4.46-150200.14.5.1.noarch.rpm openldap2-2.4.46-150200.14.5.1.src.rpm openldap2-2.4.46-150200.14.5.1.x86_64.rpm openldap2-back-meta-2.4.46-150200.14.5.1.x86_64.rpm openldap2-back-perl-2.4.46-150200.14.5.1.x86_64.rpm openldap2-back-sock-2.4.46-150200.14.5.1.x86_64.rpm openldap2-back-sql-2.4.46-150200.14.5.1.x86_64.rpm openldap2-client-2.4.46-150200.14.5.1.x86_64.rpm openldap2-contrib-2.4.46-150200.14.5.1.x86_64.rpm openldap2-devel-2.4.46-150200.14.5.1.x86_64.rpm openldap2-devel-32bit-2.4.46-150200.14.5.1.x86_64.rpm openldap2-devel-static-2.4.46-150200.14.5.1.x86_64.rpm openldap2-doc-2.4.46-150200.14.5.1.noarch.rpm openldap2-ppolicy-check-password-1.2-150200.14.5.1.x86_64.rpm libldap-2_4-2-2.4.46-150200.14.5.1.s390x.rpm openldap2-2.4.46-150200.14.5.1.s390x.rpm openldap2-back-meta-2.4.46-150200.14.5.1.s390x.rpm openldap2-back-perl-2.4.46-150200.14.5.1.s390x.rpm openldap2-back-sock-2.4.46-150200.14.5.1.s390x.rpm openldap2-back-sql-2.4.46-150200.14.5.1.s390x.rpm openldap2-client-2.4.46-150200.14.5.1.s390x.rpm openldap2-contrib-2.4.46-150200.14.5.1.s390x.rpm openldap2-devel-2.4.46-150200.14.5.1.s390x.rpm openldap2-devel-static-2.4.46-150200.14.5.1.s390x.rpm openldap2-ppolicy-check-password-1.2-150200.14.5.1.s390x.rpm libldap-2_4-2-2.4.46-150200.14.5.1.ppc64le.rpm openldap2-2.4.46-150200.14.5.1.ppc64le.rpm openldap2-back-meta-2.4.46-150200.14.5.1.ppc64le.rpm openldap2-back-perl-2.4.46-150200.14.5.1.ppc64le.rpm openldap2-back-sock-2.4.46-150200.14.5.1.ppc64le.rpm openldap2-back-sql-2.4.46-150200.14.5.1.ppc64le.rpm openldap2-client-2.4.46-150200.14.5.1.ppc64le.rpm openldap2-contrib-2.4.46-150200.14.5.1.ppc64le.rpm openldap2-devel-2.4.46-150200.14.5.1.ppc64le.rpm openldap2-devel-static-2.4.46-150200.14.5.1.ppc64le.rpm openldap2-ppolicy-check-password-1.2-150200.14.5.1.ppc64le.rpm libldap-2_4-2-2.4.46-150200.14.5.1.aarch64.rpm openldap2-2.4.46-150200.14.5.1.aarch64.rpm openldap2-back-meta-2.4.46-150200.14.5.1.aarch64.rpm openldap2-back-perl-2.4.46-150200.14.5.1.aarch64.rpm openldap2-back-sock-2.4.46-150200.14.5.1.aarch64.rpm openldap2-back-sql-2.4.46-150200.14.5.1.aarch64.rpm openldap2-client-2.4.46-150200.14.5.1.aarch64.rpm openldap2-contrib-2.4.46-150200.14.5.1.aarch64.rpm openldap2-devel-2.4.46-150200.14.5.1.aarch64.rpm openldap2-devel-static-2.4.46-150200.14.5.1.aarch64.rpm openldap2-ppolicy-check-password-1.2-150200.14.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-1276 important SUSE Updates openSUSE-SLE 15.3 This update for nbd fixes the following issues: - CVE-2022-26495: Fixed an integer overflow with a resultant heap-based buffer overflow (bsc#1196827). - CVE-2022-26496: Fixed a stack-based buffer overflow when parsing the name field by sending a crafted NBD_OPT_INFO (bsc#1196828). Update to version 3.24 (bsc#1196827, bsc#1196828, CVE-2022-26495, CVE-2022-26496): * https://github.com/advisories/GHSA-q9rw-8758-hccj Update to version 3.23: * Don't overwrite the hostname with the TLS hostname Update to version 3.22: - nbd-server: handle auth for v6-mapped IPv4 addresses - nbd-client.c: parse the next option in all cases - configure.ac: silence a few autoconf 2.71 warnings - spec: Relax NBD_OPT_LIST_META_CONTEXTS - client: Don't confuse Unix socket with TLS hostname - server: Avoid deprecated g_memdup Update to version 3.21: - Fix --disable-manpages build - Fix a bug in whitespace handling regarding authorization files - Support client-side marking of devices as read-only - Support preinitialized NBD connection (i.e., skip the negotiation). - Fix the systemd unit file for nbd-client so it works with netlink (the more common situation nowadays) Update to 3.20.0 (no changelog) Update to version 3.19.0: * Better error messages in case of unexpected disconnects * Better compatibility with non-bash sh implementations (for configure.sh) * Fix for a segfault in NBD_OPT_INFO handling * The ability to specify whether to listen on both TCP and Unix domain sockets, rather than to always do so * Various minor editorial and spelling fixes in the documentation. Update to version 1.18.0: * Client: Add the "-g" option to avoid even trying the NBD_OPT_GO message * Server: fixes to inetd mode * Don't make gnutls and libnl automagic. * Server: bugfixes in handling of some export names during verification. * Server: clean supplementary groups when changing user. * Client: when using the netlink protocol, only set a timeout when there actually is a timeout, rather than defaulting to 0 seconds * Improve documentation on the nbdtab file * Minor improvements to some error messages * Improvements to test suite so it works better on non-GNU userland environments - Update to version 1.17.0: * proto: add xNBD command NBD_CMD_CACHE to the spec * server: do not crash when handling child name * server: Close socket pair when fork fails nbd-3.24-150000.3.3.1.src.rpm nbd-3.24-150000.3.3.1.x86_64.rpm nbd-3.24-150000.3.3.1.s390x.rpm nbd-3.24-150000.3.3.1.ppc64le.rpm nbd-3.24-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1411 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: - Updated to version 1.17.9 (bsc#1190649): - CVE-2022-24675: Fixed a stack overflow via crafted PEM file (bsc#1198423). - CVE-2022-28327: Fixed a potential panic when using big P-256 scalars in the crypto/elliptic module (bsc#1198424). go1.17-1.17.9-150000.1.28.1.i586.rpm go1.17-1.17.9-150000.1.28.1.src.rpm go1.17-doc-1.17.9-150000.1.28.1.i586.rpm go1.17-1.17.9-150000.1.28.1.x86_64.rpm go1.17-doc-1.17.9-150000.1.28.1.x86_64.rpm go1.17-race-1.17.9-150000.1.28.1.x86_64.rpm go1.17-1.17.9-150000.1.28.1.s390x.rpm go1.17-doc-1.17.9-150000.1.28.1.s390x.rpm go1.17-1.17.9-150000.1.28.1.ppc64le.rpm go1.17-doc-1.17.9-150000.1.28.1.ppc64le.rpm go1.17-1.17.9-150000.1.28.1.aarch64.rpm go1.17-doc-1.17.9-150000.1.28.1.aarch64.rpm go1.17-race-1.17.9-150000.1.28.1.aarch64.rpm openSUSE-SLE-15.3-2022-1864 low SUSE Updates openSUSE-SLE 15.3 This update for leveldb fixes the following issue: - fix tests (bsc#1197742) leveldb-1.18-150000.3.3.1.src.rpm leveldb-devel-1.18-150000.3.3.1.x86_64.rpm leveldb-devel-static-1.18-150000.3.3.1.x86_64.rpm libleveldb1-1.18-150000.3.3.1.x86_64.rpm leveldb-devel-1.18-150000.3.3.1.s390x.rpm leveldb-devel-static-1.18-150000.3.3.1.s390x.rpm libleveldb1-1.18-150000.3.3.1.s390x.rpm leveldb-devel-1.18-150000.3.3.1.ppc64le.rpm leveldb-devel-static-1.18-150000.3.3.1.ppc64le.rpm libleveldb1-1.18-150000.3.3.1.ppc64le.rpm leveldb-devel-1.18-150000.3.3.1.aarch64.rpm leveldb-devel-static-1.18-150000.3.3.1.aarch64.rpm libleveldb1-1.18-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1820 low SUSE Updates openSUSE-SLE 15.3 This update for rzsz fixes the following issue: - Fix build with the latest gettext (bsc#1197852) rzsz-0.12.21~rc-150000.3.3.2.src.rpm rzsz-0.12.21~rc-150000.3.3.2.x86_64.rpm rzsz-0.12.21~rc-150000.3.3.2.s390x.rpm rzsz-0.12.21~rc-150000.3.3.2.ppc64le.rpm rzsz-0.12.21~rc-150000.3.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-1865 low SUSE Updates openSUSE-SLE 15.3 This update for xiterm fixes the following issues: - Remove use of obsolete XSI STREAMS interface. (bsc#1197864) fbiterm-0.5.20040304-150000.5.6.1.x86_64.rpm gtkiterm-0.5.20040304-150000.5.6.1.x86_64.rpm libXiterm-devel-0.5.20040304-150000.5.6.1.x86_64.rpm libXiterm1-0.5.20040304-150000.5.6.1.x86_64.rpm libiterm-devel-0.5.20040304-150000.5.6.1.x86_64.rpm libiterm1-0.5.20040304-150000.5.6.1.x86_64.rpm xiterm-0.5.20040304-150000.5.6.1.src.rpm xiterm-0.5.20040304-150000.5.6.1.x86_64.rpm fbiterm-0.5.20040304-150000.5.6.1.s390x.rpm gtkiterm-0.5.20040304-150000.5.6.1.s390x.rpm libXiterm-devel-0.5.20040304-150000.5.6.1.s390x.rpm libXiterm1-0.5.20040304-150000.5.6.1.s390x.rpm libiterm-devel-0.5.20040304-150000.5.6.1.s390x.rpm libiterm1-0.5.20040304-150000.5.6.1.s390x.rpm xiterm-0.5.20040304-150000.5.6.1.s390x.rpm fbiterm-0.5.20040304-150000.5.6.1.ppc64le.rpm gtkiterm-0.5.20040304-150000.5.6.1.ppc64le.rpm libXiterm-devel-0.5.20040304-150000.5.6.1.ppc64le.rpm libXiterm1-0.5.20040304-150000.5.6.1.ppc64le.rpm libiterm-devel-0.5.20040304-150000.5.6.1.ppc64le.rpm libiterm1-0.5.20040304-150000.5.6.1.ppc64le.rpm xiterm-0.5.20040304-150000.5.6.1.ppc64le.rpm fbiterm-0.5.20040304-150000.5.6.1.aarch64.rpm gtkiterm-0.5.20040304-150000.5.6.1.aarch64.rpm libXiterm-devel-0.5.20040304-150000.5.6.1.aarch64.rpm libXiterm1-0.5.20040304-150000.5.6.1.aarch64.rpm libiterm-devel-0.5.20040304-150000.5.6.1.aarch64.rpm libiterm1-0.5.20040304-150000.5.6.1.aarch64.rpm xiterm-0.5.20040304-150000.5.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1660 low SUSE Updates openSUSE-SLE 15.3 This update for publicsuffix fixes the following issue: - Update to version 20220405 (bsc#1198068) publicsuffix-20220405-150000.3.9.1.noarch.rpm publicsuffix-20220405-150000.3.9.1.src.rpm openSUSE-SLE-15.3-2022-1284 moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-packaging fixes the following issues: - Move rpm macros from /etc/rpm to /usr/lib/rpm/macros.d (bsc#1191383). Update to version 15.0.16: * Update CHANGELOG file * Don't throw an error on prep if does not exist. * Enable -buildmode=pie on riscv64 - Update to version 15.0.15: * Only create directories that do not yet exist * filelelist can try to access source_dir independently - Update to version 15.0.14: * Ensure to touch $RPM_BUILD_ROOT only in the various install phases * Add support for riscv64 - Update to version 15.0.13: * Preserve modification time of source files golang-packaging-15.0.16-150000.3.9.1.noarch.rpm golang-packaging-15.0.16-150000.3.9.1.src.rpm openSUSE-SLE-15.3-2022-1867 low SUSE Updates openSUSE-SLE 15.3 This update for v4l-utils fixes the following issues: - fix build (bsc#1197861) dvb-utils-1.14.1-150000.3.3.1.x86_64.rpm libdvbv5-0-1.14.1-150000.3.3.1.x86_64.rpm libdvbv5-0-32bit-1.14.1-150000.3.3.1.x86_64.rpm libdvbv5-0-lang-1.14.1-150000.3.3.1.noarch.rpm libdvbv5-devel-1.14.1-150000.3.3.1.x86_64.rpm libv4l-1.14.1-150000.3.3.1.x86_64.rpm libv4l-32bit-1.14.1-150000.3.3.1.x86_64.rpm libv4l-devel-1.14.1-150000.3.3.1.x86_64.rpm libv4l-devel-32bit-1.14.1-150000.3.3.1.x86_64.rpm libv4l1-0-1.14.1-150000.3.3.1.x86_64.rpm libv4l1-0-32bit-1.14.1-150000.3.3.1.x86_64.rpm libv4l2-0-1.14.1-150000.3.3.1.x86_64.rpm libv4l2-0-32bit-1.14.1-150000.3.3.1.x86_64.rpm libv4l2rds0-1.14.1-150000.3.3.1.x86_64.rpm libv4l2rds0-32bit-1.14.1-150000.3.3.1.x86_64.rpm libv4lconvert0-1.14.1-150000.3.3.1.x86_64.rpm libv4lconvert0-32bit-1.14.1-150000.3.3.1.x86_64.rpm qv4l2-1.14.1-150000.3.3.1.x86_64.rpm v4l-utils-1.14.1-150000.3.3.1.src.rpm v4l-utils-1.14.1-150000.3.3.1.x86_64.rpm v4l-utils-devel-tools-1.14.1-150000.3.3.1.x86_64.rpm v4l-utils-lang-1.14.1-150000.3.3.1.noarch.rpm dvb-utils-1.14.1-150000.3.3.1.s390x.rpm libdvbv5-0-1.14.1-150000.3.3.1.s390x.rpm libdvbv5-devel-1.14.1-150000.3.3.1.s390x.rpm libv4l-1.14.1-150000.3.3.1.s390x.rpm libv4l-devel-1.14.1-150000.3.3.1.s390x.rpm libv4l1-0-1.14.1-150000.3.3.1.s390x.rpm libv4l2-0-1.14.1-150000.3.3.1.s390x.rpm libv4l2rds0-1.14.1-150000.3.3.1.s390x.rpm libv4lconvert0-1.14.1-150000.3.3.1.s390x.rpm qv4l2-1.14.1-150000.3.3.1.s390x.rpm v4l-utils-1.14.1-150000.3.3.1.s390x.rpm v4l-utils-devel-tools-1.14.1-150000.3.3.1.s390x.rpm dvb-utils-1.14.1-150000.3.3.1.ppc64le.rpm libdvbv5-0-1.14.1-150000.3.3.1.ppc64le.rpm libdvbv5-devel-1.14.1-150000.3.3.1.ppc64le.rpm libv4l-1.14.1-150000.3.3.1.ppc64le.rpm libv4l-devel-1.14.1-150000.3.3.1.ppc64le.rpm libv4l1-0-1.14.1-150000.3.3.1.ppc64le.rpm libv4l2-0-1.14.1-150000.3.3.1.ppc64le.rpm libv4l2rds0-1.14.1-150000.3.3.1.ppc64le.rpm libv4lconvert0-1.14.1-150000.3.3.1.ppc64le.rpm qv4l2-1.14.1-150000.3.3.1.ppc64le.rpm v4l-utils-1.14.1-150000.3.3.1.ppc64le.rpm v4l-utils-devel-tools-1.14.1-150000.3.3.1.ppc64le.rpm dvb-utils-1.14.1-150000.3.3.1.aarch64.rpm libdvbv5-0-1.14.1-150000.3.3.1.aarch64.rpm libdvbv5-devel-1.14.1-150000.3.3.1.aarch64.rpm libv4l-1.14.1-150000.3.3.1.aarch64.rpm libv4l-devel-1.14.1-150000.3.3.1.aarch64.rpm libv4l1-0-1.14.1-150000.3.3.1.aarch64.rpm libv4l2-0-1.14.1-150000.3.3.1.aarch64.rpm libv4l2rds0-1.14.1-150000.3.3.1.aarch64.rpm libv4lconvert0-1.14.1-150000.3.3.1.aarch64.rpm v4l-utils-1.14.1-150000.3.3.1.aarch64.rpm v4l-utils-devel-tools-1.14.1-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1659 moderate SUSE Updates openSUSE-SLE 15.3 This update for cups fixes the following issues: - CUPS printservice takes much longer than before with a big number of printers (bsc#1189517) - CUPS PreserveJobHistory doesn't work with seconds (bsc#1195115) cups-2.2.7-150000.3.29.1.src.rpm cups-2.2.7-150000.3.29.1.x86_64.rpm cups-client-2.2.7-150000.3.29.1.x86_64.rpm cups-config-2.2.7-150000.3.29.1.x86_64.rpm cups-ddk-2.2.7-150000.3.29.1.x86_64.rpm cups-devel-2.2.7-150000.3.29.1.x86_64.rpm cups-devel-32bit-2.2.7-150000.3.29.1.x86_64.rpm libcups2-2.2.7-150000.3.29.1.x86_64.rpm libcups2-32bit-2.2.7-150000.3.29.1.x86_64.rpm libcupscgi1-2.2.7-150000.3.29.1.x86_64.rpm libcupscgi1-32bit-2.2.7-150000.3.29.1.x86_64.rpm libcupsimage2-2.2.7-150000.3.29.1.x86_64.rpm libcupsimage2-32bit-2.2.7-150000.3.29.1.x86_64.rpm libcupsmime1-2.2.7-150000.3.29.1.x86_64.rpm libcupsmime1-32bit-2.2.7-150000.3.29.1.x86_64.rpm libcupsppdc1-2.2.7-150000.3.29.1.x86_64.rpm libcupsppdc1-32bit-2.2.7-150000.3.29.1.x86_64.rpm cups-2.2.7-150000.3.29.1.s390x.rpm cups-client-2.2.7-150000.3.29.1.s390x.rpm cups-config-2.2.7-150000.3.29.1.s390x.rpm cups-ddk-2.2.7-150000.3.29.1.s390x.rpm cups-devel-2.2.7-150000.3.29.1.s390x.rpm libcups2-2.2.7-150000.3.29.1.s390x.rpm libcupscgi1-2.2.7-150000.3.29.1.s390x.rpm libcupsimage2-2.2.7-150000.3.29.1.s390x.rpm libcupsmime1-2.2.7-150000.3.29.1.s390x.rpm libcupsppdc1-2.2.7-150000.3.29.1.s390x.rpm cups-2.2.7-150000.3.29.1.ppc64le.rpm cups-client-2.2.7-150000.3.29.1.ppc64le.rpm cups-config-2.2.7-150000.3.29.1.ppc64le.rpm cups-ddk-2.2.7-150000.3.29.1.ppc64le.rpm cups-devel-2.2.7-150000.3.29.1.ppc64le.rpm libcups2-2.2.7-150000.3.29.1.ppc64le.rpm libcupscgi1-2.2.7-150000.3.29.1.ppc64le.rpm libcupsimage2-2.2.7-150000.3.29.1.ppc64le.rpm libcupsmime1-2.2.7-150000.3.29.1.ppc64le.rpm libcupsppdc1-2.2.7-150000.3.29.1.ppc64le.rpm cups-2.2.7-150000.3.29.1.aarch64.rpm cups-client-2.2.7-150000.3.29.1.aarch64.rpm cups-config-2.2.7-150000.3.29.1.aarch64.rpm cups-ddk-2.2.7-150000.3.29.1.aarch64.rpm cups-devel-2.2.7-150000.3.29.1.aarch64.rpm libcups2-2.2.7-150000.3.29.1.aarch64.rpm libcupscgi1-2.2.7-150000.3.29.1.aarch64.rpm libcupsimage2-2.2.7-150000.3.29.1.aarch64.rpm libcupsmime1-2.2.7-150000.3.29.1.aarch64.rpm libcupsppdc1-2.2.7-150000.3.29.1.aarch64.rpm openSUSE-SLE-15.3-2022-1472 low SUSE Updates openSUSE-SLE 15.3 This update for python-Whoosh fixes the following issues: - python-Whoosh won't compile on SP4 (bsc#1197830) - Remove superfluous devel dependency for noarch package python-Whoosh-2.7.4-150100.3.3.2.src.rpm python-Whoosh-doc-2.7.4-150100.3.3.2.noarch.rpm python2-Whoosh-2.7.4-150100.3.3.2.noarch.rpm python3-Whoosh-2.7.4-150100.3.3.2.noarch.rpm openSUSE-SLE-15.3-2022-1875 low SUSE Updates openSUSE-SLE 15.3 This update for grpc fixes the following issues: - grpc won't compile on SP4(bsc#1197726) - Add conditional to build without python2 if needed grpc-1.25.0-150200.3.5.1.src.rpm grpc-devel-1.25.0-150200.3.5.1.x86_64.rpm grpc-source-1.25.0-150200.3.5.1.noarch.rpm libgrpc++1-1.25.0-150200.3.5.1.x86_64.rpm libgrpc8-1.25.0-150200.3.5.1.x86_64.rpm python2-grpcio-1.25.0-150200.3.5.1.x86_64.rpm python3-grpcio-1.25.0-150200.3.5.1.x86_64.rpm grpc-devel-1.25.0-150200.3.5.1.s390x.rpm libgrpc++1-1.25.0-150200.3.5.1.s390x.rpm libgrpc8-1.25.0-150200.3.5.1.s390x.rpm python2-grpcio-1.25.0-150200.3.5.1.s390x.rpm python3-grpcio-1.25.0-150200.3.5.1.s390x.rpm grpc-devel-1.25.0-150200.3.5.1.ppc64le.rpm libgrpc++1-1.25.0-150200.3.5.1.ppc64le.rpm libgrpc8-1.25.0-150200.3.5.1.ppc64le.rpm python2-grpcio-1.25.0-150200.3.5.1.ppc64le.rpm python3-grpcio-1.25.0-150200.3.5.1.ppc64le.rpm grpc-devel-1.25.0-150200.3.5.1.aarch64.rpm libgrpc++1-1.25.0-150200.3.5.1.aarch64.rpm libgrpc8-1.25.0-150200.3.5.1.aarch64.rpm python2-grpcio-1.25.0-150200.3.5.1.aarch64.rpm python3-grpcio-1.25.0-150200.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-1544 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - fix(dracut-install): copy files preserving ownership attributes (bsc#1197967) - fix(dracut-systemd): do not require vconsole-setup.service (bsc#1195508) - fix(dracut-functions.sh): ip route parsing (bsc#1195011) dracut-049.1+suse.234.g902e489c-150200.3.57.1.src.rpm dracut-049.1+suse.234.g902e489c-150200.3.57.1.x86_64.rpm dracut-extra-049.1+suse.234.g902e489c-150200.3.57.1.x86_64.rpm dracut-fips-049.1+suse.234.g902e489c-150200.3.57.1.x86_64.rpm dracut-ima-049.1+suse.234.g902e489c-150200.3.57.1.x86_64.rpm dracut-tools-049.1+suse.234.g902e489c-150200.3.57.1.x86_64.rpm dracut-049.1+suse.234.g902e489c-150200.3.57.1.s390x.rpm dracut-extra-049.1+suse.234.g902e489c-150200.3.57.1.s390x.rpm dracut-fips-049.1+suse.234.g902e489c-150200.3.57.1.s390x.rpm dracut-ima-049.1+suse.234.g902e489c-150200.3.57.1.s390x.rpm dracut-tools-049.1+suse.234.g902e489c-150200.3.57.1.s390x.rpm dracut-049.1+suse.234.g902e489c-150200.3.57.1.ppc64le.rpm dracut-extra-049.1+suse.234.g902e489c-150200.3.57.1.ppc64le.rpm dracut-fips-049.1+suse.234.g902e489c-150200.3.57.1.ppc64le.rpm dracut-ima-049.1+suse.234.g902e489c-150200.3.57.1.ppc64le.rpm dracut-tools-049.1+suse.234.g902e489c-150200.3.57.1.ppc64le.rpm dracut-049.1+suse.234.g902e489c-150200.3.57.1.aarch64.rpm dracut-extra-049.1+suse.234.g902e489c-150200.3.57.1.aarch64.rpm dracut-fips-049.1+suse.234.g902e489c-150200.3.57.1.aarch64.rpm dracut-ima-049.1+suse.234.g902e489c-150200.3.57.1.aarch64.rpm dracut-tools-049.1+suse.234.g902e489c-150200.3.57.1.aarch64.rpm openSUSE-SLE-15.3-2022-1263 critical SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Update to version 10.0.3 (bsc#1198389) - Descend into the extension tree even if top level module is recommended - Cache license state for AHB support to detect type switch - Properly clean suse.com credentials when switching from SCC to update infrastructure - New log message to indicate base product registration success cloud-regionsrv-client-10.0.3-150000.6.70.1.noarch.rpm cloud-regionsrv-client-10.0.3-150000.6.70.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-150000.6.70.1.noarch.rpm cloud-regionsrv-client-plugin-azure-2.0.0-150000.6.70.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-150000.6.70.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-150000.6.70.1.noarch.rpm openSUSE-SLE-15.3-2022-1541 important SUSE Updates openSUSE-SLE 15.3 This update for pgadmin4 fixes the following issues: - CVE-2022-0959: Fixed an unrestricted file upload (bsc#1197143). pgadmin4-4.30-150300.3.3.1.src.rpm pgadmin4-4.30-150300.3.3.1.x86_64.rpm pgadmin4-doc-4.30-150300.3.3.1.noarch.rpm pgadmin4-web-4.30-150300.3.3.1.noarch.rpm pgadmin4-web-uwsgi-4.30-150300.3.3.1.noarch.rpm pgadmin4-4.30-150300.3.3.1.s390x.rpm pgadmin4-4.30-150300.3.3.1.ppc64le.rpm pgadmin4-4.30-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1516 important SUSE Updates openSUSE-SLE 15.3 This update for libwmf fixes the following issues: libwmf was updated to 0.2.12: * upstream changed to fork from Fedora: https://github.com/caolanm/libwmf * merged all the pending fixes * merge in fixes for libgd CVE-2019-6978 (bsc#1123522) * fixed memory allocation failure (CVE-2016-9011) * Fixes for %_libexecdir changing to /usr/libexec (bsc#1174075) libwmf-0.2.12-150000.4.4.1.src.rpm libwmf-0_2-7-0.2.12-150000.4.4.1.x86_64.rpm libwmf-0_2-7-32bit-0.2.12-150000.4.4.1.x86_64.rpm libwmf-devel-0.2.12-150000.4.4.1.x86_64.rpm libwmf-gnome-0.2.12-150000.4.4.1.x86_64.rpm libwmf-gnome-32bit-0.2.12-150000.4.4.1.x86_64.rpm libwmf-tools-0.2.12-150000.4.4.1.x86_64.rpm libwmf-0_2-7-0.2.12-150000.4.4.1.s390x.rpm libwmf-devel-0.2.12-150000.4.4.1.s390x.rpm libwmf-gnome-0.2.12-150000.4.4.1.s390x.rpm libwmf-tools-0.2.12-150000.4.4.1.s390x.rpm libwmf-0_2-7-0.2.12-150000.4.4.1.ppc64le.rpm libwmf-devel-0.2.12-150000.4.4.1.ppc64le.rpm libwmf-gnome-0.2.12-150000.4.4.1.ppc64le.rpm libwmf-tools-0.2.12-150000.4.4.1.ppc64le.rpm libwmf-0_2-7-0.2.12-150000.4.4.1.aarch64.rpm libwmf-devel-0.2.12-150000.4.4.1.aarch64.rpm libwmf-gnome-0.2.12-150000.4.4.1.aarch64.rpm libwmf-tools-0.2.12-150000.4.4.1.aarch64.rpm openSUSE-SLE-15.3-2022-1501 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-uamqp fixes the following issues: - python-uamqp won't compile on SP4 (bsc#1197848) - Only build Python3 flavors for distributions 15 and greater python-uamqp-1.5.3-150100.4.7.1.src.rpm python3-uamqp-1.5.3-150100.4.7.1.x86_64.rpm python3-uamqp-1.5.3-150100.4.7.1.s390x.rpm python3-uamqp-1.5.3-150100.4.7.1.ppc64le.rpm python3-uamqp-1.5.3-150100.4.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-1296 important SUSE Updates openSUSE-SLE 15.3 This update for openjpeg fixes the following issues: - CVE-2018-14423: Fixed division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl,and pi_next_rpcl in lib/openjp3d/pi.c (bsc#1102016). - CVE-2018-16376: Fixed heap-based buffer overflow function t2_encode_packet in lib/openmj2/t2.c (bsc#1106881). - CVE-2020-8112: Fixed a heap buffer overflow in opj_t1_clbl_decode_processor in openjp2/t1.c (bsc#1162090). - CVE-2020-15389: Fixed a use-after-free if a mix of valid and invalid files in a directory operated on by the decompressor (bsc#1173578). - CVE-2020-27823: Fixed a heap buffer over-write in opj_tcd_dc_level_shift_encode() (bsc#1180457), - CVE-2021-29338: Fixed an integer Overflow allows remote attackers to crash the application (bsc#1184774). libopenjpeg1-1.5.2-150000.4.5.1.x86_64.rpm libopenjpeg1-32bit-1.5.2-150000.4.5.1.x86_64.rpm openjpeg-1.5.2-150000.4.5.1.src.rpm openjpeg-1.5.2-150000.4.5.1.x86_64.rpm openjpeg-devel-1.5.2-150000.4.5.1.x86_64.rpm openjpeg-devel-32bit-1.5.2-150000.4.5.1.x86_64.rpm libopenjpeg1-1.5.2-150000.4.5.1.s390x.rpm openjpeg-1.5.2-150000.4.5.1.s390x.rpm openjpeg-devel-1.5.2-150000.4.5.1.s390x.rpm libopenjpeg1-1.5.2-150000.4.5.1.ppc64le.rpm openjpeg-1.5.2-150000.4.5.1.ppc64le.rpm openjpeg-devel-1.5.2-150000.4.5.1.ppc64le.rpm libopenjpeg1-1.5.2-150000.4.5.1.aarch64.rpm openjpeg-1.5.2-150000.4.5.1.aarch64.rpm openjpeg-devel-1.5.2-150000.4.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-1565 moderate SUSE Updates openSUSE-SLE 15.3 This update for giflib fixes the following issues: - CVE-2019-15133: Fixed a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero (bsc#1146299). - CVE-2018-11490: Fixed a heap-based buffer overflow in DGifDecompressLine function in dgif_lib.c (bsc#1094832). - CVE-2016-3977: Fixed a heap buffer overflow in gif2rgb (bsc#974847). Update to version 5.2.1 * In gifbuild.c, avoid a core dump on no color map. * Restore inadvertently removed library version numbers in Makefile. Changes in version 5.2.0 * The undocumented and deprecated GifQuantizeBuffer() entry point has been moved to the util library to reduce libgif size and attack surface. Applications needing this function are couraged to link the util library or make their own copy. * The following obsolete utility programs are no longer installed: gifecho, giffilter, gifinto, gifsponge. These were either installed in error or have been obsolesced by modern image-transformmation tools like ImageMagick convert. They may be removed entirely in a future release. * Address SourceForge issue #136: Stack-buffer-overflow in gifcolor.c:84 * Address SF bug #134: Giflib fails to slurp significant number of gifs * Apply SPDX convention for license tagging. Changes in version 5.1.9 * The documentation directory now includes an HTMlified version of the GIF89 standard, and a more detailed description of how LZW compression is applied to GIFs. * Address SF bug #129: The latest version of giflib cannot be build on windows. * Address SF bug #126: Cannot compile giflib using c89 Changes in version 5.1.8 * Address SF bug #119: MemorySanitizer: FPE on unknown address (CVE-2019-15133 bsc#1146299) * Address SF bug #125: 5.1.7: xmlto is still required for tarball * Address SF bug #124: 5.1.7: ar invocation is not crosscompile compatible * Address SF bug #122: 5.1.7 installs manpages to wrong directory * Address SF bug #121: make: getversion: Command not found * Address SF bug #120: 5.1.7 does not build a proper library - no Changes in version 5.1.7 * Correct a minor packaging error (superfluous symlinks) in the 5.1.6 tarballs. Changes in version 5.1.6 * Fix library installation in the Makefile. Changes in version 5.1.5 * Fix SF bug #114: Null dereferences in main() of gifclrmp * Fix SF bug #113: Heap Buffer Overflow-2 in function DGifDecompressLine() in cgif.c. This had been assigned (CVE-2018-11490 bsc#1094832). * Fix SF bug #111: segmentation fault in PrintCodeBlock * Fix SF bug #109: Segmentation fault of giftool reading a crafted file * Fix SF bug #107: Floating point exception in giftext utility * Fix SF bug #105: heap buffer overflow in DumpScreen2RGB in gif2rgb.c:317 * Fix SF bug #104: Ineffective bounds check in DGifSlurp * Fix SF bug #103: GIFLIB 5.1.4: DGifSlurp fails on empty comment * Fix SF bug #87: Heap buffer overflow in 5.1.2 (gif2rgb). (CVE-2016-3977 bsc#974847) * The horrible old autoconf build system has been removed with extreme prejudice. You now build this simply by running "make" from the top-level directory. The following non-security bugs were fixed: - build path independent objects and inherit CFLAGS from the build system (bsc#1184123) giflib-5.2.1-150000.4.8.1.src.rpm giflib-devel-32bit-5.2.1-150000.4.8.1.x86_64.rpm giflib-devel-5.2.1-150000.4.8.1.x86_64.rpm giflib-progs-5.2.1-150000.4.8.1.x86_64.rpm libgif7-32bit-5.2.1-150000.4.8.1.x86_64.rpm libgif7-5.2.1-150000.4.8.1.x86_64.rpm giflib-devel-5.2.1-150000.4.8.1.s390x.rpm giflib-progs-5.2.1-150000.4.8.1.s390x.rpm libgif7-5.2.1-150000.4.8.1.s390x.rpm giflib-devel-5.2.1-150000.4.8.1.ppc64le.rpm giflib-progs-5.2.1-150000.4.8.1.ppc64le.rpm libgif7-5.2.1-150000.4.8.1.ppc64le.rpm giflib-devel-5.2.1-150000.4.8.1.aarch64.rpm giflib-progs-5.2.1-150000.4.8.1.aarch64.rpm libgif7-5.2.1-150000.4.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-1403 moderate SUSE Updates openSUSE-SLE 15.3 This update for ocfs2-tools fixes the following issues: - Prevent attempt to lock cluster after replaying journals if -F is given (bsc#1196705) ocfs2-tools-1.8.5-150100.12.14.1.src.rpm ocfs2-tools-1.8.5-150100.12.14.1.x86_64.rpm ocfs2-tools-devel-1.8.5-150100.12.14.1.x86_64.rpm ocfs2-tools-devel-static-1.8.5-150100.12.14.1.x86_64.rpm ocfs2-tools-o2cb-1.8.5-150100.12.14.1.x86_64.rpm ocfs2-tools-1.8.5-150100.12.14.1.s390x.rpm ocfs2-tools-devel-1.8.5-150100.12.14.1.s390x.rpm ocfs2-tools-devel-static-1.8.5-150100.12.14.1.s390x.rpm ocfs2-tools-o2cb-1.8.5-150100.12.14.1.s390x.rpm ocfs2-tools-1.8.5-150100.12.14.1.ppc64le.rpm ocfs2-tools-devel-1.8.5-150100.12.14.1.ppc64le.rpm ocfs2-tools-devel-static-1.8.5-150100.12.14.1.ppc64le.rpm ocfs2-tools-o2cb-1.8.5-150100.12.14.1.ppc64le.rpm ocfs2-tools-1.8.5-150100.12.14.1.aarch64.rpm ocfs2-tools-devel-1.8.5-150100.12.14.1.aarch64.rpm ocfs2-tools-devel-static-1.8.5-150100.12.14.1.aarch64.rpm ocfs2-tools-o2cb-1.8.5-150100.12.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-1490 important SUSE Updates openSUSE-SLE 15.3 This update for liblangtag fixes the following issues: - Fix build of future service packs of SUSE Linux Enterprise 15 (bsc#1197767) liblangtag-0.6.2-150000.3.6.1.src.rpm liblangtag-devel-0.6.2-150000.3.6.1.x86_64.rpm liblangtag-doc-0.6.2-150000.3.6.1.noarch.rpm liblangtag1-0.6.2-150000.3.6.1.x86_64.rpm liblangtag-devel-0.6.2-150000.3.6.1.s390x.rpm liblangtag1-0.6.2-150000.3.6.1.s390x.rpm liblangtag-devel-0.6.2-150000.3.6.1.ppc64le.rpm liblangtag1-0.6.2-150000.3.6.1.ppc64le.rpm liblangtag-devel-0.6.2-150000.3.6.1.aarch64.rpm liblangtag1-0.6.2-150000.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1802 important SUSE Updates openSUSE-SLE 15.3 These updates for YaST fix the following issues: autoyast2: - Respect general/signature-handling settings during the 2nd stage (bsc#1197655) - Fix detection of disk serial and size in the "disks" ERB helper (bsc#1199000) - Fix rules validation when using a dialog (bsc#1199165) yast2-installation: - Revert changes introduced in v4.3.50 because they cause some ordering cycle issues (bsc#1198294) - AutoYaST: move custom file creation past user creation so that the element files/file/file_owner actually has an effect (bsc#1196595) yast2-samba-client: - Use translation macro for range settings expert details text (bsc#1197936) yast2-schema: - Fix rules validation when using a dialog (bsc#1199165) yast2-storage-ng: - Fix fstab entry filesystem matching allowing the use of quotes surrounding the device UUID or label (bsc#1197692) autoyast2-4.3.102-150300.3.47.1.noarch.rpm autoyast2-4.3.102-150300.3.47.1.src.rpm autoyast2-installation-4.3.102-150300.3.47.1.noarch.rpm yast2-installation-4.3.52-150300.3.30.1.noarch.rpm yast2-installation-4.3.52-150300.3.30.1.src.rpm yast2-samba-client-4.3.5-150300.3.9.1.noarch.rpm yast2-samba-client-4.3.5-150300.3.9.1.src.rpm yast2-schema-4.3.29-150300.3.15.1.src.rpm yast2-schema-4.3.29-150300.3.15.1.x86_64.rpm yast2-storage-ng-4.3.60-150300.3.21.1.src.rpm yast2-storage-ng-4.3.60-150300.3.21.1.x86_64.rpm yast2-schema-4.3.29-150300.3.15.1.s390x.rpm yast2-storage-ng-4.3.60-150300.3.21.1.s390x.rpm yast2-schema-4.3.29-150300.3.15.1.ppc64le.rpm yast2-storage-ng-4.3.60-150300.3.21.1.ppc64le.rpm yast2-schema-4.3.29-150300.3.15.1.aarch64.rpm yast2-storage-ng-4.3.60-150300.3.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-1518 important SUSE Updates openSUSE-SLE 15.3 This update for sanlock fixes the following issues: - Add libuuid as a build requirement to fix build issues on future SUSE Linux Enterprise Service Packs (bsc#1197853) fence-sanlock-3.6.0-150000.4.3.1.x86_64.rpm libsanlock1-3.6.0-150000.4.3.1.x86_64.rpm python2-sanlock-3.6.0-150000.4.3.1.x86_64.rpm python3-sanlock-3.6.0-150000.4.3.1.x86_64.rpm sanlk-reset-3.6.0-150000.4.3.1.x86_64.rpm sanlock-3.6.0-150000.4.3.1.src.rpm sanlock-3.6.0-150000.4.3.1.x86_64.rpm sanlock-devel-3.6.0-150000.4.3.1.x86_64.rpm fence-sanlock-3.6.0-150000.4.3.1.s390x.rpm libsanlock1-3.6.0-150000.4.3.1.s390x.rpm python2-sanlock-3.6.0-150000.4.3.1.s390x.rpm python3-sanlock-3.6.0-150000.4.3.1.s390x.rpm sanlk-reset-3.6.0-150000.4.3.1.s390x.rpm sanlock-3.6.0-150000.4.3.1.s390x.rpm sanlock-devel-3.6.0-150000.4.3.1.s390x.rpm fence-sanlock-3.6.0-150000.4.3.1.ppc64le.rpm libsanlock1-3.6.0-150000.4.3.1.ppc64le.rpm python2-sanlock-3.6.0-150000.4.3.1.ppc64le.rpm python3-sanlock-3.6.0-150000.4.3.1.ppc64le.rpm sanlk-reset-3.6.0-150000.4.3.1.ppc64le.rpm sanlock-3.6.0-150000.4.3.1.ppc64le.rpm sanlock-devel-3.6.0-150000.4.3.1.ppc64le.rpm fence-sanlock-3.6.0-150000.4.3.1.aarch64.rpm libsanlock1-3.6.0-150000.4.3.1.aarch64.rpm python2-sanlock-3.6.0-150000.4.3.1.aarch64.rpm python3-sanlock-3.6.0-150000.4.3.1.aarch64.rpm sanlk-reset-3.6.0-150000.4.3.1.aarch64.rpm sanlock-3.6.0-150000.4.3.1.aarch64.rpm sanlock-devel-3.6.0-150000.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1594 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: stoken libstoken1-0.81-150000.3.2.1.x86_64.rpm stoken-0.81-150000.3.2.1.src.rpm stoken-0.81-150000.3.2.1.x86_64.rpm stoken-devel-0.81-150000.3.2.1.x86_64.rpm stoken-gui-0.81-150000.3.2.1.x86_64.rpm libstoken1-0.81-150000.3.2.1.s390x.rpm stoken-0.81-150000.3.2.1.s390x.rpm stoken-devel-0.81-150000.3.2.1.s390x.rpm stoken-gui-0.81-150000.3.2.1.s390x.rpm libstoken1-0.81-150000.3.2.1.ppc64le.rpm stoken-0.81-150000.3.2.1.ppc64le.rpm stoken-devel-0.81-150000.3.2.1.ppc64le.rpm stoken-gui-0.81-150000.3.2.1.ppc64le.rpm libstoken1-0.81-150000.3.2.1.aarch64.rpm stoken-0.81-150000.3.2.1.aarch64.rpm stoken-devel-0.81-150000.3.2.1.aarch64.rpm stoken-gui-0.81-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1305 important SUSE Updates openSUSE-SLE 15.3 This update for libinput fixes the following issues: - CVE-2022-1215: Fixed a format string vulnerability (bsc#1198111). libinput-1.10.5-150000.3.3.1.src.rpm libinput-devel-1.10.5-150000.3.3.1.x86_64.rpm libinput-tools-1.10.5-150000.3.3.1.x86_64.rpm libinput-udev-1.10.5-150000.3.3.1.x86_64.rpm libinput10-1.10.5-150000.3.3.1.x86_64.rpm libinput10-32bit-1.10.5-150000.3.3.1.x86_64.rpm libinput-devel-1.10.5-150000.3.3.1.s390x.rpm libinput-tools-1.10.5-150000.3.3.1.s390x.rpm libinput-udev-1.10.5-150000.3.3.1.s390x.rpm libinput10-1.10.5-150000.3.3.1.s390x.rpm libinput-devel-1.10.5-150000.3.3.1.ppc64le.rpm libinput-tools-1.10.5-150000.3.3.1.ppc64le.rpm libinput-udev-1.10.5-150000.3.3.1.ppc64le.rpm libinput10-1.10.5-150000.3.3.1.ppc64le.rpm libinput-devel-1.10.5-150000.3.3.1.aarch64.rpm libinput-tools-1.10.5-150000.3.3.1.aarch64.rpm libinput-udev-1.10.5-150000.3.3.1.aarch64.rpm libinput10-1.10.5-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1455 low SUSE Updates openSUSE-SLE 15.3 This update for glib2 fixes the following issues: - CVE-2021-28153: Fixed an issue where symlink targets would be incorrectly created as empty files (bsc#1183533). gio-branding-upstream-2.62.6-150200.3.9.1.noarch.rpm glib2-2.62.6-150200.3.9.1.src.rpm glib2-devel-2.62.6-150200.3.9.1.x86_64.rpm glib2-devel-32bit-2.62.6-150200.3.9.1.x86_64.rpm glib2-devel-static-2.62.6-150200.3.9.1.x86_64.rpm glib2-lang-2.62.6-150200.3.9.1.noarch.rpm glib2-tests-2.62.6-150200.3.9.1.x86_64.rpm glib2-tools-2.62.6-150200.3.9.1.x86_64.rpm glib2-tools-32bit-2.62.6-150200.3.9.1.x86_64.rpm libgio-2_0-0-2.62.6-150200.3.9.1.x86_64.rpm libgio-2_0-0-32bit-2.62.6-150200.3.9.1.x86_64.rpm libgio-fam-2.62.6-150200.3.9.1.x86_64.rpm libgio-fam-32bit-2.62.6-150200.3.9.1.x86_64.rpm libglib-2_0-0-2.62.6-150200.3.9.1.x86_64.rpm libglib-2_0-0-32bit-2.62.6-150200.3.9.1.x86_64.rpm libgmodule-2_0-0-2.62.6-150200.3.9.1.x86_64.rpm libgmodule-2_0-0-32bit-2.62.6-150200.3.9.1.x86_64.rpm libgobject-2_0-0-2.62.6-150200.3.9.1.x86_64.rpm libgobject-2_0-0-32bit-2.62.6-150200.3.9.1.x86_64.rpm libgthread-2_0-0-2.62.6-150200.3.9.1.x86_64.rpm libgthread-2_0-0-32bit-2.62.6-150200.3.9.1.x86_64.rpm glib2-devel-2.62.6-150200.3.9.1.s390x.rpm glib2-devel-static-2.62.6-150200.3.9.1.s390x.rpm glib2-tests-2.62.6-150200.3.9.1.s390x.rpm glib2-tools-2.62.6-150200.3.9.1.s390x.rpm libgio-2_0-0-2.62.6-150200.3.9.1.s390x.rpm libgio-fam-2.62.6-150200.3.9.1.s390x.rpm libglib-2_0-0-2.62.6-150200.3.9.1.s390x.rpm libgmodule-2_0-0-2.62.6-150200.3.9.1.s390x.rpm libgobject-2_0-0-2.62.6-150200.3.9.1.s390x.rpm libgthread-2_0-0-2.62.6-150200.3.9.1.s390x.rpm glib2-devel-2.62.6-150200.3.9.1.ppc64le.rpm glib2-devel-static-2.62.6-150200.3.9.1.ppc64le.rpm glib2-tests-2.62.6-150200.3.9.1.ppc64le.rpm glib2-tools-2.62.6-150200.3.9.1.ppc64le.rpm libgio-2_0-0-2.62.6-150200.3.9.1.ppc64le.rpm libgio-fam-2.62.6-150200.3.9.1.ppc64le.rpm libglib-2_0-0-2.62.6-150200.3.9.1.ppc64le.rpm libgmodule-2_0-0-2.62.6-150200.3.9.1.ppc64le.rpm libgobject-2_0-0-2.62.6-150200.3.9.1.ppc64le.rpm libgthread-2_0-0-2.62.6-150200.3.9.1.ppc64le.rpm glib2-devel-2.62.6-150200.3.9.1.aarch64.rpm glib2-devel-static-2.62.6-150200.3.9.1.aarch64.rpm glib2-tests-2.62.6-150200.3.9.1.aarch64.rpm glib2-tools-2.62.6-150200.3.9.1.aarch64.rpm libgio-2_0-0-2.62.6-150200.3.9.1.aarch64.rpm libgio-fam-2.62.6-150200.3.9.1.aarch64.rpm libglib-2_0-0-2.62.6-150200.3.9.1.aarch64.rpm libgmodule-2_0-0-2.62.6-150200.3.9.1.aarch64.rpm libgobject-2_0-0-2.62.6-150200.3.9.1.aarch64.rpm libgthread-2_0-0-2.62.6-150200.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-1430 important SUSE Updates openSUSE-SLE 15.3 This update for cifs-utils fixes the following issues: - CVE-2022-27239: Fixed a buffer overflow in the command line ip option (bsc#1197216). cifs-utils-6.9-150100.5.15.1.src.rpm cifs-utils-6.9-150100.5.15.1.x86_64.rpm cifs-utils-devel-6.9-150100.5.15.1.x86_64.rpm pam_cifscreds-6.9-150100.5.15.1.x86_64.rpm cifs-utils-6.9-150100.5.15.1.s390x.rpm cifs-utils-devel-6.9-150100.5.15.1.s390x.rpm pam_cifscreds-6.9-150100.5.15.1.s390x.rpm cifs-utils-6.9-150100.5.15.1.ppc64le.rpm cifs-utils-devel-6.9-150100.5.15.1.ppc64le.rpm pam_cifscreds-6.9-150100.5.15.1.ppc64le.rpm cifs-utils-6.9-150100.5.15.1.aarch64.rpm cifs-utils-devel-6.9-150100.5.15.1.aarch64.rpm pam_cifscreds-6.9-150100.5.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-1410 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.18 fixes the following issues: - CVE-2022-24675: Fixed a stack overlow in Decode() in encoding/pem (bsc#1198423). - CVE-2022-28327: Fixed a crash due to refused oversized scalars in generic P-256 (bsc#1198424). - CVE-2022-27536: Fixed a crash in Certificate.Verify in crypto/x509 (bsc#1198427). Bump go1.18 (bsc#1193742) go1.18-1.18.1-150000.1.11.1.src.rpm go1.18-1.18.1-150000.1.11.1.x86_64.rpm go1.18-doc-1.18.1-150000.1.11.1.x86_64.rpm go1.18-race-1.18.1-150000.1.11.1.x86_64.rpm go1.18-1.18.1-150000.1.11.1.s390x.rpm go1.18-doc-1.18.1-150000.1.11.1.s390x.rpm go1.18-1.18.1-150000.1.11.1.ppc64le.rpm go1.18-doc-1.18.1-150000.1.11.1.ppc64le.rpm go1.18-1.18.1-150000.1.11.1.aarch64.rpm go1.18-doc-1.18.1-150000.1.11.1.aarch64.rpm go1.18-race-1.18.1-150000.1.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-1689 important SUSE Updates openSUSE-SLE 15.3 This update for containerd, docker fixes the following issues: - CVE-2022-24769: Fixed incorrect default inheritable capabilities (bsc#1197517). - CVE-2022-23648: Fixed directory traversal issue (bsc#1196441). - CVE-2022-27191: Fixed a crash in a golang.org/x/crypto/ssh server (bsc#1197284). - CVE-2021-43565: Fixed a panic in golang.org/x/crypto by empty plaintext packet (bsc#1193930). Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? containerd-1.5.11-150000.68.1.src.rpm containerd-1.5.11-150000.68.1.x86_64.rpm containerd-ctr-1.5.11-150000.68.1.x86_64.rpm docker-20.10.14_ce-150000.163.1.src.rpm docker-20.10.14_ce-150000.163.1.x86_64.rpm docker-bash-completion-20.10.14_ce-150000.163.1.noarch.rpm docker-fish-completion-20.10.14_ce-150000.163.1.noarch.rpm docker-kubic-20.10.14_ce-150000.163.1.src.rpm docker-kubic-20.10.14_ce-150000.163.1.x86_64.rpm docker-kubic-bash-completion-20.10.14_ce-150000.163.1.noarch.rpm docker-kubic-fish-completion-20.10.14_ce-150000.163.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.14_ce-150000.163.1.x86_64.rpm docker-kubic-zsh-completion-20.10.14_ce-150000.163.1.noarch.rpm docker-zsh-completion-20.10.14_ce-150000.163.1.noarch.rpm containerd-1.5.11-150000.68.1.s390x.rpm containerd-ctr-1.5.11-150000.68.1.s390x.rpm docker-20.10.14_ce-150000.163.1.s390x.rpm docker-kubic-20.10.14_ce-150000.163.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.14_ce-150000.163.1.s390x.rpm containerd-1.5.11-150000.68.1.ppc64le.rpm containerd-ctr-1.5.11-150000.68.1.ppc64le.rpm docker-20.10.14_ce-150000.163.1.ppc64le.rpm docker-kubic-20.10.14_ce-150000.163.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.14_ce-150000.163.1.ppc64le.rpm containerd-1.5.11-150000.68.1.aarch64.rpm containerd-ctr-1.5.11-150000.68.1.aarch64.rpm docker-20.10.14_ce-150000.163.1.aarch64.rpm docker-kubic-20.10.14_ce-150000.163.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.14_ce-150000.163.1.aarch64.rpm openSUSE-SLE-15.3-2022-1376 moderate SUSE Updates openSUSE-SLE 15.3 This update for mutt fixes the following issues: - CVE-2022-1328: Fixed an invalid memory access when reading untrusted uuencoded data. This could result in including private memory in replies (bsc#1198518). mutt-1.10.1-150000.3.23.1.src.rpm mutt-1.10.1-150000.3.23.1.x86_64.rpm mutt-doc-1.10.1-150000.3.23.1.noarch.rpm mutt-lang-1.10.1-150000.3.23.1.noarch.rpm mutt-1.10.1-150000.3.23.1.s390x.rpm mutt-1.10.1-150000.3.23.1.ppc64le.rpm mutt-1.10.1-150000.3.23.1.aarch64.rpm openSUSE-SLE-15.3-2022-1431 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: Update to version 2.36.0 (bsc#1198290): - CVE-2022-22624: Fixed use after free that may lead to arbitrary code execution. - CVE-2022-22628: Fixed use after free that may lead to arbitrary code execution. - CVE-2022-22629: Fixed a buffer overflow that may lead to arbitrary code execution. - CVE-2022-22637: Fixed an unexpected cross-origin behavior due to a logic error. Missing CVE reference for the update to 2.34.6 (bsc#1196133): - CVE-2022-22594: Fixed a cross-origin issue in the IndexDB API. libjavascriptcoregtk-4_0-18-2.36.0-150200.32.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.36.0-150200.32.1.x86_64.rpm libwebkit2gtk-4_0-37-2.36.0-150200.32.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.36.0-150200.32.1.x86_64.rpm libwebkit2gtk3-lang-2.36.0-150200.32.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.36.0-150200.32.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.36.0-150200.32.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.0-150200.32.1.x86_64.rpm webkit-jsc-4-2.36.0-150200.32.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.36.0-150200.32.1.x86_64.rpm webkit2gtk3-2.36.0-150200.32.1.src.rpm webkit2gtk3-devel-2.36.0-150200.32.1.x86_64.rpm webkit2gtk3-minibrowser-2.36.0-150200.32.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.36.0-150200.32.1.s390x.rpm libwebkit2gtk-4_0-37-2.36.0-150200.32.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.36.0-150200.32.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.36.0-150200.32.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.0-150200.32.1.s390x.rpm webkit-jsc-4-2.36.0-150200.32.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.36.0-150200.32.1.s390x.rpm webkit2gtk3-devel-2.36.0-150200.32.1.s390x.rpm webkit2gtk3-minibrowser-2.36.0-150200.32.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.36.0-150200.32.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.36.0-150200.32.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.36.0-150200.32.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.36.0-150200.32.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.0-150200.32.1.ppc64le.rpm webkit-jsc-4-2.36.0-150200.32.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.36.0-150200.32.1.ppc64le.rpm webkit2gtk3-devel-2.36.0-150200.32.1.ppc64le.rpm webkit2gtk3-minibrowser-2.36.0-150200.32.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.36.0-150200.32.1.aarch64.rpm libwebkit2gtk-4_0-37-2.36.0-150200.32.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.0-150200.32.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.36.0-150200.32.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.0-150200.32.1.aarch64.rpm webkit-jsc-4-2.36.0-150200.32.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.36.0-150200.32.1.aarch64.rpm webkit2gtk3-devel-2.36.0-150200.32.1.aarch64.rpm webkit2gtk3-minibrowser-2.36.0-150200.32.1.aarch64.rpm openSUSE-SLE-15.3-2022-1454 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pip fixes the following issues: - Add wheel subpackage with the generated wheel for this package (bsc#1176262, CVE-2019-20916). - Make wheel a separate build run to avoid the setuptools/wheel build cycle. - Switch this package to use update-alternatives for all files in %{_bindir} so it doesn't collide with the versions on "the latest" versions of Python interpreter (jsc#SLE-18038, bsc#1195831). python-pip-20.0.2-150100.6.18.1.src.rpm python2-pip-20.0.2-150100.6.18.1.noarch.rpm python3-pip-20.0.2-150100.6.18.1.noarch.rpm openSUSE-SLE-15.3-2022-1316 moderate SUSE Updates openSUSE-SLE 15.3 This update for podofo fixes the following issues: - CVE-2019-20093: Fixed an invalid memory access that could cause an application crash (bsc#1159921). libpodofo-devel-0.9.6-150300.3.3.1.x86_64.rpm libpodofo0_9_6-0.9.6-150300.3.3.1.x86_64.rpm podofo-0.9.6-150300.3.3.1.src.rpm podofo-0.9.6-150300.3.3.1.x86_64.rpm libpodofo-devel-0.9.6-150300.3.3.1.s390x.rpm libpodofo0_9_6-0.9.6-150300.3.3.1.s390x.rpm podofo-0.9.6-150300.3.3.1.s390x.rpm libpodofo-devel-0.9.6-150300.3.3.1.ppc64le.rpm libpodofo0_9_6-0.9.6-150300.3.3.1.ppc64le.rpm podofo-0.9.6-150300.3.3.1.ppc64le.rpm libpodofo-devel-0.9.6-150300.3.3.1.aarch64.rpm libpodofo0_9_6-0.9.6-150300.3.3.1.aarch64.rpm podofo-0.9.6-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1484 important SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - Updated to version 2.35.3: - CVE-2022-24765: Fixed a potential command injection via git worktree (bsc#1198234). git-2.35.3-150300.10.12.1.src.rpm git-2.35.3-150300.10.12.1.x86_64.rpm git-arch-2.35.3-150300.10.12.1.x86_64.rpm git-core-2.35.3-150300.10.12.1.x86_64.rpm git-credential-gnome-keyring-2.35.3-150300.10.12.1.x86_64.rpm git-credential-libsecret-2.35.3-150300.10.12.1.x86_64.rpm git-cvs-2.35.3-150300.10.12.1.x86_64.rpm git-daemon-2.35.3-150300.10.12.1.x86_64.rpm git-doc-2.35.3-150300.10.12.1.noarch.rpm git-email-2.35.3-150300.10.12.1.x86_64.rpm git-gui-2.35.3-150300.10.12.1.x86_64.rpm git-p4-2.35.3-150300.10.12.1.x86_64.rpm git-svn-2.35.3-150300.10.12.1.x86_64.rpm git-web-2.35.3-150300.10.12.1.x86_64.rpm gitk-2.35.3-150300.10.12.1.x86_64.rpm perl-Git-2.35.3-150300.10.12.1.x86_64.rpm git-2.35.3-150300.10.12.1.s390x.rpm git-arch-2.35.3-150300.10.12.1.s390x.rpm git-core-2.35.3-150300.10.12.1.s390x.rpm git-credential-gnome-keyring-2.35.3-150300.10.12.1.s390x.rpm git-credential-libsecret-2.35.3-150300.10.12.1.s390x.rpm git-cvs-2.35.3-150300.10.12.1.s390x.rpm git-daemon-2.35.3-150300.10.12.1.s390x.rpm git-email-2.35.3-150300.10.12.1.s390x.rpm git-gui-2.35.3-150300.10.12.1.s390x.rpm git-p4-2.35.3-150300.10.12.1.s390x.rpm git-svn-2.35.3-150300.10.12.1.s390x.rpm git-web-2.35.3-150300.10.12.1.s390x.rpm gitk-2.35.3-150300.10.12.1.s390x.rpm perl-Git-2.35.3-150300.10.12.1.s390x.rpm git-2.35.3-150300.10.12.1.ppc64le.rpm git-arch-2.35.3-150300.10.12.1.ppc64le.rpm git-core-2.35.3-150300.10.12.1.ppc64le.rpm git-credential-gnome-keyring-2.35.3-150300.10.12.1.ppc64le.rpm git-credential-libsecret-2.35.3-150300.10.12.1.ppc64le.rpm git-cvs-2.35.3-150300.10.12.1.ppc64le.rpm git-daemon-2.35.3-150300.10.12.1.ppc64le.rpm git-email-2.35.3-150300.10.12.1.ppc64le.rpm git-gui-2.35.3-150300.10.12.1.ppc64le.rpm git-p4-2.35.3-150300.10.12.1.ppc64le.rpm git-svn-2.35.3-150300.10.12.1.ppc64le.rpm git-web-2.35.3-150300.10.12.1.ppc64le.rpm gitk-2.35.3-150300.10.12.1.ppc64le.rpm perl-Git-2.35.3-150300.10.12.1.ppc64le.rpm git-2.35.3-150300.10.12.1.aarch64.rpm git-arch-2.35.3-150300.10.12.1.aarch64.rpm git-core-2.35.3-150300.10.12.1.aarch64.rpm git-credential-gnome-keyring-2.35.3-150300.10.12.1.aarch64.rpm git-credential-libsecret-2.35.3-150300.10.12.1.aarch64.rpm git-cvs-2.35.3-150300.10.12.1.aarch64.rpm git-daemon-2.35.3-150300.10.12.1.aarch64.rpm git-email-2.35.3-150300.10.12.1.aarch64.rpm git-gui-2.35.3-150300.10.12.1.aarch64.rpm git-p4-2.35.3-150300.10.12.1.aarch64.rpm git-svn-2.35.3-150300.10.12.1.aarch64.rpm git-web-2.35.3-150300.10.12.1.aarch64.rpm gitk-2.35.3-150300.10.12.1.aarch64.rpm perl-Git-2.35.3-150300.10.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-1512 important SUSE Updates openSUSE-SLE 15.3 This update for ruby2.5 fixes the following issues: - CVE-2022-28739: Fixed a buffer overrun in String-to-Float conversion (bsc#1198441). - CVE-2021-41817: Fixed a regular expression denial of service in Date Parsing Methods (bsc#1193035). - CVE-2021-32066: Fixed a StartTLS stripping vulnerability in Net:IMAP (bsc#1188160). - CVE-2021-31810: Fixed a trusting FTP PASV responses vulnerability in Net:FTP (bsc#1188161). - CVE-2021-31799: Fixed a command injection vulnerability in RDoc (bsc#1190375). libruby2_5-2_5-2.5.9-150000.4.23.1.x86_64.rpm ruby2.5-2.5.9-150000.4.23.1.src.rpm ruby2.5-2.5.9-150000.4.23.1.x86_64.rpm ruby2.5-devel-2.5.9-150000.4.23.1.x86_64.rpm ruby2.5-devel-extra-2.5.9-150000.4.23.1.x86_64.rpm ruby2.5-doc-2.5.9-150000.4.23.1.x86_64.rpm ruby2.5-doc-ri-2.5.9-150000.4.23.1.noarch.rpm ruby2.5-stdlib-2.5.9-150000.4.23.1.x86_64.rpm libruby2_5-2_5-2.5.9-150000.4.23.1.s390x.rpm ruby2.5-2.5.9-150000.4.23.1.s390x.rpm ruby2.5-devel-2.5.9-150000.4.23.1.s390x.rpm ruby2.5-devel-extra-2.5.9-150000.4.23.1.s390x.rpm ruby2.5-doc-2.5.9-150000.4.23.1.s390x.rpm ruby2.5-stdlib-2.5.9-150000.4.23.1.s390x.rpm libruby2_5-2_5-2.5.9-150000.4.23.1.ppc64le.rpm ruby2.5-2.5.9-150000.4.23.1.ppc64le.rpm ruby2.5-devel-2.5.9-150000.4.23.1.ppc64le.rpm ruby2.5-devel-extra-2.5.9-150000.4.23.1.ppc64le.rpm ruby2.5-doc-2.5.9-150000.4.23.1.ppc64le.rpm ruby2.5-stdlib-2.5.9-150000.4.23.1.ppc64le.rpm libruby2_5-2_5-2.5.9-150000.4.23.1.aarch64.rpm ruby2.5-2.5.9-150000.4.23.1.aarch64.rpm ruby2.5-devel-2.5.9-150000.4.23.1.aarch64.rpm ruby2.5-devel-extra-2.5.9-150000.4.23.1.aarch64.rpm ruby2.5-doc-2.5.9-150000.4.23.1.aarch64.rpm ruby2.5-stdlib-2.5.9-150000.4.23.1.aarch64.rpm openSUSE-SLE-15.3-2022-1513 important SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - CVE-2022-21426: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198672). - CVE-2022-21434: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198674). - CVE-2022-21496: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198673). - CVE-2022-21443: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198675). - CVE-2022-21476: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198671). java-11-openjdk-11.0.15.0-150000.3.80.1.src.rpm java-11-openjdk-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-accessibility-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-demo-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-devel-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-headless-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-javadoc-11.0.15.0-150000.3.80.1.noarch.rpm java-11-openjdk-jmods-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-src-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-accessibility-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-demo-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-devel-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-headless-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-jmods-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-src-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-demo-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-devel-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-headless-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-jmods-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-src-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-accessibility-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-demo-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-devel-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-headless-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-jmods-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-src-11.0.15.0-150000.3.80.1.aarch64.rpm openSUSE-SLE-15.3-2022-1315 moderate SUSE Updates openSUSE-SLE 15.3 This update for netty fixes the following issues: - CVE-2021-21409: Fixed request smuggling via content-length header (bsc#1184203). netty-4.1.75-150200.4.9.1.src.rpm netty-4.1.75-150200.4.9.1.x86_64.rpm netty-javadoc-4.1.75-150200.4.9.1.noarch.rpm netty-poms-4.1.75-150200.4.9.1.noarch.rpm netty-4.1.75-150200.4.9.1.s390x.rpm netty-4.1.75-150200.4.9.1.ppc64le.rpm netty-4.1.75-150200.4.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-1479 moderate SUSE Updates openSUSE-SLE 15.3 This update for jasper fixes the following issues: - CVE-2021-3467: Fixed NULL pointer deref in jp2_decode() (bsc#1184757). - CVE-2021-3443: Fixed NULL pointer deref in jp2_decode() (bsc#1184798). - CVE-2021-26927: Fixed NULL pointer deref in jp2_decode() (bsc#1182104). - CVE-2021-26926: Fixed an out of bounds read in jp2_decode() (bsc#1182105). jasper-2.0.14-150000.3.25.1.src.rpm jasper-2.0.14-150000.3.25.1.x86_64.rpm libjasper-devel-2.0.14-150000.3.25.1.x86_64.rpm libjasper4-2.0.14-150000.3.25.1.x86_64.rpm libjasper4-32bit-2.0.14-150000.3.25.1.x86_64.rpm jasper-2.0.14-150000.3.25.1.s390x.rpm libjasper-devel-2.0.14-150000.3.25.1.s390x.rpm libjasper4-2.0.14-150000.3.25.1.s390x.rpm jasper-2.0.14-150000.3.25.1.ppc64le.rpm libjasper-devel-2.0.14-150000.3.25.1.ppc64le.rpm libjasper4-2.0.14-150000.3.25.1.ppc64le.rpm jasper-2.0.14-150000.3.25.1.aarch64.rpm libjasper-devel-2.0.14-150000.3.25.1.aarch64.rpm libjasper4-2.0.14-150000.3.25.1.aarch64.rpm openSUSE-SLE-15.3-2022-1935 moderate SUSE Updates openSUSE-SLE 15.3 This update for mutter fixes the following issues: - Fixes xterm -iconic support, by reverting a workaround for wrongly behaved wine games.(bsc#1193190) libmutter-5-0-3.34.6-150200.3.12.1.x86_64.rpm mutter-3.34.6-150200.3.12.1.src.rpm mutter-3.34.6-150200.3.12.1.x86_64.rpm mutter-data-3.34.6-150200.3.12.1.x86_64.rpm mutter-devel-3.34.6-150200.3.12.1.x86_64.rpm mutter-lang-3.34.6-150200.3.12.1.noarch.rpm libmutter-5-0-3.34.6-150200.3.12.1.s390x.rpm mutter-3.34.6-150200.3.12.1.s390x.rpm mutter-data-3.34.6-150200.3.12.1.s390x.rpm mutter-devel-3.34.6-150200.3.12.1.s390x.rpm libmutter-5-0-3.34.6-150200.3.12.1.ppc64le.rpm mutter-3.34.6-150200.3.12.1.ppc64le.rpm mutter-data-3.34.6-150200.3.12.1.ppc64le.rpm mutter-devel-3.34.6-150200.3.12.1.ppc64le.rpm libmutter-5-0-3.34.6-150200.3.12.1.aarch64.rpm mutter-3.34.6-150200.3.12.1.aarch64.rpm mutter-data-3.34.6-150200.3.12.1.aarch64.rpm mutter-devel-3.34.6-150200.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-1498 moderate SUSE Updates openSUSE-SLE 15.3 This update for daps fixes the following issues: - Stable release DAPS 3.3.1 daps-3.3.1-150300.14.3.2.noarch.rpm daps-3.3.1-150300.14.3.2.src.rpm openSUSE-SLE-15.3-2022-1812 moderate SUSE Updates openSUSE-SLE 15.3 This update for rmt-server fixes the following issues: Version 2.8.0 - Forwarding information of registered systems to SCC more efficiently in batches - Syncing the systems' most recent last seen timestamps to SCC - Optional '--no-confirmation' switch to skip user confirmation when cleaning repository data - Fix "rmt-cli systems list --csv -a" for RMTs with millions of systems (bsc#1191552) - Enable nginx configs to serve on IPv6 - Enable users with old versions of RMT to sync systems with SCC by default - Fix build using ruby 3.x (bsc#1195318). Version 2.7.1 - Remove products with a negative ID during migration - Changes to RMT/connect API: RMT returns HTTP status code 422 whenever a system tries to register/activate a product with an expired subscription. - Mirror metadata retry. This fixes bsc#1188578 - Update the way allowed paths are checked SUMA requested a new feature where it is possible to validate all versions of the same product and arch (that are allowed to that system) - De-register BYOS systems using RMT as a proxy from SCC - De-activate a single product from a BYOS proxy system rmt-server-2.8.0-150300.3.15.1.src.rpm rmt-server-2.8.0-150300.3.15.1.x86_64.rpm rmt-server-config-2.8.0-150300.3.15.1.x86_64.rpm rmt-server-pubcloud-2.8.0-150300.3.15.1.x86_64.rpm rmt-server-2.8.0-150300.3.15.1.s390x.rpm rmt-server-config-2.8.0-150300.3.15.1.s390x.rpm rmt-server-pubcloud-2.8.0-150300.3.15.1.s390x.rpm rmt-server-2.8.0-150300.3.15.1.ppc64le.rpm rmt-server-config-2.8.0-150300.3.15.1.ppc64le.rpm rmt-server-pubcloud-2.8.0-150300.3.15.1.ppc64le.rpm rmt-server-2.8.0-150300.3.15.1.aarch64.rpm rmt-server-config-2.8.0-150300.3.15.1.aarch64.rpm rmt-server-pubcloud-2.8.0-150300.3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-1515 important SUSE Updates openSUSE-SLE 15.3 This update for rubygem-puma fixes the following issues: rubygem-puma was updated to version 4.3.11: * CVE-2021-29509: Adjusted an incomplete fix for allows Denial of Service (DoS) (bsc#1188527) * CVE-2021-41136: Fixed request smuggling if HTTP header value contains the LF character (bsc#1191681) * CVE-2022-23634: Fixed information leak between requests (bsc#1196222) ruby2.5-rubygem-puma-4.3.11-150000.3.6.2.x86_64.rpm ruby2.5-rubygem-puma-doc-4.3.11-150000.3.6.2.x86_64.rpm rubygem-puma-4.3.11-150000.3.6.2.src.rpm ruby2.5-rubygem-puma-4.3.11-150000.3.6.2.s390x.rpm ruby2.5-rubygem-puma-doc-4.3.11-150000.3.6.2.s390x.rpm ruby2.5-rubygem-puma-4.3.11-150000.3.6.2.ppc64le.rpm ruby2.5-rubygem-puma-doc-4.3.11-150000.3.6.2.ppc64le.rpm ruby2.5-rubygem-puma-4.3.11-150000.3.6.2.aarch64.rpm ruby2.5-rubygem-puma-doc-4.3.11-150000.3.6.2.aarch64.rpm openSUSE-SLE-15.3-2022-1373 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint fixes the following issues: - fix kpmcore, nm-priv and tukitd whitelistings that contained absolute paths instead of only the basenames (bsc#1198521) - Backport of deepin-api whitelists (bsc#1196681 bsc#1070943) rpmlint-1.10-150000.7.49.1.noarch.rpm rpmlint-1.10-150000.7.49.1.src.rpm openSUSE-SLE-15.3-2022-1446 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-paramiko fixes the following issues: - CVE-2022-24302: Fixed a race condition between creation and chmod when writing private keys. (bsc#1197279) python-paramiko-2.4.2-150100.6.12.1.src.rpm python-paramiko-doc-2.4.2-150100.6.12.1.noarch.rpm python2-paramiko-2.4.2-150100.6.12.1.noarch.rpm python3-paramiko-2.4.2-150100.6.12.1.noarch.rpm openSUSE-SLE-15.3-2022-1435 important SUSE Updates openSUSE-SLE 15.3 This update for firewalld, golang-github-prometheus-prometheus fixes the following issues: Security fixes for golang-github-prometheus-prometheus: - CVE-2022-21698: Denial of Service through unbounded cardinality, and potential memory exhaustion, when handling requests with non-standard HTTP methods (bsc#1196338). Other non security changes for golang-github-prometheus-prometheus: - Build `firewalld-prometheus-config` only for SUSE Linux Enterprise 15, 15-SP1 and 15-SP2, and require `firewalld`. - Only recommends `firewalld-prometheus-config` as prometheus does not require it to run. - Create `firewalld-prometheus-config` subpackage (bsc#1197042, jsc#SLE-24373, jsc#SLE-24374, jsc#SLE-24375) Other non security changes for firewalld: - Provide dummy `firewalld-prometheus-config` package (bsc#1197042) firewall-applet-0.9.3-150300.3.6.1.noarch.rpm firewall-config-0.9.3-150300.3.6.1.noarch.rpm firewall-macros-0.9.3-150300.3.6.1.noarch.rpm firewalld-0.9.3-150300.3.6.1.noarch.rpm firewalld-0.9.3-150300.3.6.1.src.rpm firewalld-lang-0.9.3-150300.3.6.1.noarch.rpm golang-github-prometheus-prometheus-2.32.1-150100.4.9.2.src.rpm golang-github-prometheus-prometheus-2.32.1-150100.4.9.2.x86_64.rpm python3-firewall-0.9.3-150300.3.6.1.noarch.rpm golang-github-prometheus-prometheus-2.32.1-150100.4.9.2.s390x.rpm golang-github-prometheus-prometheus-2.32.1-150100.4.9.2.ppc64le.rpm golang-github-prometheus-prometheus-2.32.1-150100.4.9.2.aarch64.rpm openSUSE-SLE-15.3-2022-1868 low SUSE Updates openSUSE-SLE 15.3 This update for openwsman fixes the following issue: - fix FTBFS with newer libcurl in SLE 15-SP4 (bsc#1197792) libwsman-devel-2.6.7-150000.3.12.2.x86_64.rpm libwsman3-2.6.7-150000.3.12.2.x86_64.rpm libwsman_clientpp-devel-2.6.7-150000.3.12.2.x86_64.rpm libwsman_clientpp1-2.6.7-150000.3.12.2.x86_64.rpm openwsman-2.6.7-150000.3.12.2.src.rpm openwsman-java-2.6.7-150000.3.12.2.x86_64.rpm openwsman-perl-2.6.7-150000.3.12.2.x86_64.rpm openwsman-ruby-2.6.7-150000.3.12.2.x86_64.rpm openwsman-ruby-docs-2.6.7-150000.3.12.2.x86_64.rpm openwsman-server-2.6.7-150000.3.12.2.x86_64.rpm openwsman-server-plugin-ruby-2.6.7-150000.3.12.2.x86_64.rpm python3-openwsman-2.6.7-150000.3.12.2.x86_64.rpm winrs-2.6.7-150000.3.12.2.x86_64.rpm libwsman-devel-2.6.7-150000.3.12.2.s390x.rpm libwsman3-2.6.7-150000.3.12.2.s390x.rpm libwsman_clientpp-devel-2.6.7-150000.3.12.2.s390x.rpm libwsman_clientpp1-2.6.7-150000.3.12.2.s390x.rpm openwsman-java-2.6.7-150000.3.12.2.s390x.rpm openwsman-perl-2.6.7-150000.3.12.2.s390x.rpm openwsman-ruby-2.6.7-150000.3.12.2.s390x.rpm openwsman-ruby-docs-2.6.7-150000.3.12.2.s390x.rpm openwsman-server-2.6.7-150000.3.12.2.s390x.rpm openwsman-server-plugin-ruby-2.6.7-150000.3.12.2.s390x.rpm python3-openwsman-2.6.7-150000.3.12.2.s390x.rpm winrs-2.6.7-150000.3.12.2.s390x.rpm libwsman-devel-2.6.7-150000.3.12.2.ppc64le.rpm libwsman3-2.6.7-150000.3.12.2.ppc64le.rpm libwsman_clientpp-devel-2.6.7-150000.3.12.2.ppc64le.rpm libwsman_clientpp1-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-java-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-perl-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-ruby-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-ruby-docs-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-server-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-server-plugin-ruby-2.6.7-150000.3.12.2.ppc64le.rpm python3-openwsman-2.6.7-150000.3.12.2.ppc64le.rpm winrs-2.6.7-150000.3.12.2.ppc64le.rpm libwsman-devel-2.6.7-150000.3.12.2.aarch64.rpm libwsman3-2.6.7-150000.3.12.2.aarch64.rpm libwsman_clientpp-devel-2.6.7-150000.3.12.2.aarch64.rpm libwsman_clientpp1-2.6.7-150000.3.12.2.aarch64.rpm openwsman-java-2.6.7-150000.3.12.2.aarch64.rpm openwsman-perl-2.6.7-150000.3.12.2.aarch64.rpm openwsman-ruby-2.6.7-150000.3.12.2.aarch64.rpm openwsman-ruby-docs-2.6.7-150000.3.12.2.aarch64.rpm openwsman-server-2.6.7-150000.3.12.2.aarch64.rpm openwsman-server-plugin-ruby-2.6.7-150000.3.12.2.aarch64.rpm python3-openwsman-2.6.7-150000.3.12.2.aarch64.rpm winrs-2.6.7-150000.3.12.2.aarch64.rpm openSUSE-SLE-15.3-2022-1684 low SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: - Added note about Btrfs RAID 1 not being fully supported (bsc#1198083) release-notes-sles-15.3.20220407-150300.3.26.3.noarch.rpm release-notes-sles-15.3.20220407-150300.3.26.3.src.rpm openSUSE-SLE-15.3-2022-1477 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-Twisted fixes the following issues: - CVE-2022-24801: Fixed to not be as lenient as earlier HTTP/1.1 RFCs to prevent HTTP request smuggling. (bsc#1198086) python-Twisted-19.10.0-150200.3.9.1.src.rpm python-Twisted-doc-19.10.0-150200.3.9.1.x86_64.rpm python2-Twisted-19.10.0-150200.3.9.1.x86_64.rpm python3-Twisted-19.10.0-150200.3.9.1.x86_64.rpm python-Twisted-doc-19.10.0-150200.3.9.1.s390x.rpm python2-Twisted-19.10.0-150200.3.9.1.s390x.rpm python3-Twisted-19.10.0-150200.3.9.1.s390x.rpm python-Twisted-doc-19.10.0-150200.3.9.1.ppc64le.rpm python2-Twisted-19.10.0-150200.3.9.1.ppc64le.rpm python3-Twisted-19.10.0-150200.3.9.1.ppc64le.rpm python-Twisted-doc-19.10.0-150200.3.9.1.aarch64.rpm python2-Twisted-19.10.0-150200.3.9.1.aarch64.rpm python3-Twisted-19.10.0-150200.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-1738 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libzapojit libzapojit-0.0.3-150000.3.2.1.src.rpm libzapojit-0_0-0-0.0.3-150000.3.2.1.x86_64.rpm libzapojit-devel-0.0.3-150000.3.2.1.x86_64.rpm typelib-1_0-Zpj-0_0-0.0.3-150000.3.2.1.x86_64.rpm libzapojit-0_0-0-0.0.3-150000.3.2.1.s390x.rpm libzapojit-devel-0.0.3-150000.3.2.1.s390x.rpm typelib-1_0-Zpj-0_0-0.0.3-150000.3.2.1.s390x.rpm libzapojit-0_0-0-0.0.3-150000.3.2.1.ppc64le.rpm libzapojit-devel-0.0.3-150000.3.2.1.ppc64le.rpm typelib-1_0-Zpj-0_0-0.0.3-150000.3.2.1.ppc64le.rpm libzapojit-0_0-0-0.0.3-150000.3.2.1.aarch64.rpm libzapojit-devel-0.0.3-150000.3.2.1.aarch64.rpm typelib-1_0-Zpj-0_0-0.0.3-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-1743 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: tbb libtbb2-2019_20190605-150200.3.2.1.x86_64.rpm libtbbmalloc2-2019_20190605-150200.3.2.1.x86_64.rpm python3-tbb-2019_20190605-150200.3.2.1.x86_64.rpm tbb-2019_20190605-150200.3.2.1.src.rpm tbb-devel-2019_20190605-150200.3.2.1.x86_64.rpm libtbb2-2019_20190605-150200.3.2.1.s390x.rpm libtbbmalloc2-2019_20190605-150200.3.2.1.s390x.rpm python3-tbb-2019_20190605-150200.3.2.1.s390x.rpm tbb-devel-2019_20190605-150200.3.2.1.s390x.rpm libtbb2-2019_20190605-150200.3.2.1.ppc64le.rpm libtbbmalloc2-2019_20190605-150200.3.2.1.ppc64le.rpm python3-tbb-2019_20190605-150200.3.2.1.ppc64le.rpm tbb-devel-2019_20190605-150200.3.2.1.ppc64le.rpm libtbb2-2019_20190605-150200.3.2.1.aarch64.rpm libtbbmalloc2-2019_20190605-150200.3.2.1.aarch64.rpm python3-tbb-2019_20190605-150200.3.2.1.aarch64.rpm tbb-devel-2019_20190605-150200.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-2016 low SUSE Updates openSUSE-SLE 15.3 This update for vulkan fixes the following issue: - Disable RPATH to make the inherited package run on SLE-15-SP4. (bsc#1197862) vulkan-1.0.65.0-150000.5.3.1.src.rpm vulkan-1.0.65.0-150000.5.3.1.x86_64.rpm vulkan-devel-32bit-1.0.65.0-150000.5.3.1.x86_64.rpm vulkan-1.0.65.0-150000.5.3.1.s390x.rpm vulkan-1.0.65.0-150000.5.3.1.ppc64le.rpm vulkan-1.0.65.0-150000.5.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1843 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-build-key fixes the following issues: - still ship the old ptf key in the documentation directory (bsc#1198504) suse-build-key-12.0-150000.8.25.1.noarch.rpm suse-build-key-12.0-150000.8.25.1.src.rpm openSUSE-SLE-15.3-2022-2017 low SUSE Updates openSUSE-SLE 15.3 This update for icewm fixes the following issues: - A later glib2 update will cause icewm fail to build. (bsc#1197729) icewm-1.4.2-150000.7.15.1.src.rpm icewm-1.4.2-150000.7.15.1.x86_64.rpm icewm-config-upstream-1.4.2-150000.7.15.1.noarch.rpm icewm-default-1.4.2-150000.7.15.1.x86_64.rpm icewm-lang-1.4.2-150000.7.15.1.noarch.rpm icewm-lite-1.4.2-150000.7.15.1.x86_64.rpm icewm-1.4.2-150000.7.15.1.s390x.rpm icewm-default-1.4.2-150000.7.15.1.s390x.rpm icewm-lite-1.4.2-150000.7.15.1.s390x.rpm icewm-1.4.2-150000.7.15.1.ppc64le.rpm icewm-default-1.4.2-150000.7.15.1.ppc64le.rpm icewm-lite-1.4.2-150000.7.15.1.ppc64le.rpm icewm-1.4.2-150000.7.15.1.aarch64.rpm icewm-default-1.4.2-150000.7.15.1.aarch64.rpm icewm-lite-1.4.2-150000.7.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-1423 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - Pacemaker high resolution timestamps. (bsc#1197668) libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.21.1.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.21.1.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.21.1.src.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.21.1.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.21.1.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-150300.4.21.1.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.21.1.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.21.1.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.21.1.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.21.1.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.21.1.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.21.1.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.21.1.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.21.1.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.21.1.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.21.1.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.21.1.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.21.1.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.21.1.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.21.1.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.21.1.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-1500 low SUSE Updates openSUSE-SLE 15.3 This update for jetty-artifact-remote-resources, jboss-logging fixes the following issues: - Do not require mvn(log4j:log4j) for build. (bsc#1197642) - Do not build against the log4j12 packages. - Update jboss-logging to 3.4.1 jboss-logging-3.4.1-150200.3.3.1.noarch.rpm jboss-logging-3.4.1-150200.3.3.1.src.rpm jboss-logging-javadoc-3.4.1-150200.3.3.1.noarch.rpm jetty-artifact-remote-resources-1.2-150200.3.3.1.noarch.rpm jetty-artifact-remote-resources-1.2-150200.3.3.1.src.rpm openSUSE-SLE-15.3-2022-1837 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-hpc, trilinos fixes the following issues: - Update to version 0.5.20211210 - Add an 'Obsoletes:/Provides:' for a bogus package name that was released to SLE/Leap by accident. - Tie %python_flavor to python3 on Leap/SLE 15-SP3 (bsc#1197781). - Lower disk and memory constraints to match actual requirements. - Add openmpi4 non-HPC flavor libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.6.1.x86_64.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.6.1.x86_64.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.6.1.x86_64.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.6.2.x86_64.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.6.1.x86_64.rpm trilinos-gnu-mpich-hpc-devel-13.2.0-150300.3.6.1.noarch.rpm trilinos-gnu-mvapich2-hpc-devel-13.2.0-150300.3.6.1.noarch.rpm trilinos-gnu-openmpi2-hpc-devel-13.2.0-150300.3.6.1.noarch.rpm trilinos-gnu-openmpi3-hpc-devel-13.2.0-150300.3.6.2.noarch.rpm trilinos-gnu-openmpi4-hpc-devel-13.2.0-150300.3.6.1.noarch.rpm trilinos-hpc-doc-13.2.0-150300.3.6.1.noarch.rpm trilinos_13_2_0-gnu-mpich-hpc-13.2.0-150300.3.6.1.src.rpm trilinos_13_2_0-gnu-mvapich2-hpc-13.2.0-150300.3.6.1.src.rpm trilinos_13_2_0-gnu-openmpi2-hpc-13.2.0-150300.3.6.1.src.rpm trilinos_13_2_0-gnu-openmpi3-hpc-13.2.0-150300.3.6.2.src.rpm trilinos_13_2_0-gnu-openmpi4-hpc-13.2.0-150300.3.6.1.src.rpm trilinos_13_2_0-hpc-13.2.0-150300.3.6.1.src.rpm libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.6.1.ppc64le.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.6.1.ppc64le.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.6.1.ppc64le.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.6.2.ppc64le.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.6.1.ppc64le.rpm libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.6.1.aarch64.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.6.1.aarch64.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.6.1.aarch64.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.6.2.aarch64.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1510 important SUSE Updates openSUSE-SLE 15.3 This update for amazon-ssm-agent fixes the following issues: - CVE-2022-29527: Fixed unsafe file creation mode of ssm-agent-users sudoer file (bsc#1196556). Update to version 3.1.1260.0 amazon-ssm-agent-3.1.1260.0-150000.5.9.2.src.rpm amazon-ssm-agent-3.1.1260.0-150000.5.9.2.x86_64.rpm amazon-ssm-agent-3.1.1260.0-150000.5.9.2.aarch64.rpm openSUSE-SLE-15.3-2022-2018 moderate SUSE Updates openSUSE-SLE 15.3 This update for build fixes the following issues: - Update SLE 15 SP4 and Leap 15.4 build config (bsc#1198740) - Use aio=io_uring if available (bsc#1197699) (build#814) - Add arm32 and loongarch definitions (build#808) - Add compatibility code to initvm - Use upstream way of binfmt argv0 preservation (bsc#1197298) (build#809) - Add template support for Build::SimpleJSON - minor documentation updates - docker: Add support for --root and --installroot global zypper options - debian cross build support via multi-arch (obsoleting cbinstall remnants) - Tumbleweed config synced - documentation updates - smaller bugfixes - regression fix from last release, avoid calling shutdown handler twice when building in vm Changes: * pbuild: add --debug option for building debuginfo packages * rename --debug to --debuginfo to be more exact. * docu: add buildflags:ccachtype and OBS-DoNotAppendProfileToContainername Fixes: * Avoid shutdown of host when using nspawn Features: * download_assets: add --outdir --clean --show-dir-srcmd5 parameters support multiple --arch arguments * asset support for golang modules * add support for LXC 4. * new shortcuts for rpm building: --rpm-noprep, --rpm-build-in-place, --rpm-build-in-place-noprep for building directly from upstream git repositories without any tar ball. * mount securityfs if not mounted by kernel-obs-build * collect steal time during VM builds in statistics. * declare armv8 and armv7 compatible * support OBS Debuginfo build flag for Red Hat variants * setup rpmmacros for all build types and earlier * Kiwi builds - Always append the profile name to kiwi container names * Dockerfile build - improve registry handling - initial Dockerfile.dapper support - support 'curl' commands in docker builds - strip known domains from container name - support container alias names * introducing --verbose option, currently only showing kernel messages. * support cpio creation for special files * handle QEMU >= 6.0 on POWER9 Changes: * Use git+https instead of git-https as url schema * add oops=panic kernel parameter * Updated distribution configurations (esp. Leap 15.4 and Tumbleweed) * new preinstallimages are using zstd by default * source subdirectories are used in git managed sources Minor improvements * change sccache default size limit * speed up improvements in - vm shutdown - rpm preinstall - avoid calling external commands in a loop - using zstd for preinstallimages - no more unpacking progress indicators to avoid slowdown - virtio handling * fixed vm-type=qemu * multiple smaller bugfixes and speed improvements - renamed tumbleweed config to tumbleweed - synced tumbleweed config changes - initial config for Leap 15.4 - docker build environment * Use /.dockerenv as marker for docker environment * support privileged docker/nspawn mode * move --cap-add=SYS_ADMIN --cap-add=MKNOD to privileged mode * initvm: do not attempt to mount /proc and binfmt_misc handler if present - pbuild * rename --hide-timestamps to --no-timestamps * reuse options from older builds * revised --single build mode * support ccache - Unify ccache and sccache handling Features: - deb zstd support (for Ubuntu 21.10) - support KVM builds with enabled network - modulemd support improvements - Support a "Distmacro" directive for recipe parser-only macros Fixes: - Load selinux policy when using a preinstall image - Use the pax format for preinstall images if bsdtar is available - Add %riscv to std_macros - Fix combine_configs dropping newlines pbuild: - Implement SCC calculation - Improve --shell-after-build and --single options - initial documentation of pbuild - Bugfixes - Fix unpacking of deb/arch archives without bsdtar - fixed regression in multiline macro evaluation from 20th August release Features: - cross architecture build support (for rpm and kiwi) - modulemd meta data support - pbuild to build multiple source packages (initial release, can not be considered stable yet) - supporting external asset stores for source files - support multiple post build checks placed in the directory: /usr/lib/build/post-build-checks/ - sccache support - New --shell-after-fail option - allow to disable squashfs in SimpleImage - supporting aarch64 kernel on armv?l distributions - kiwi: Add support for OBS-RemoteAsset and OBS-CopyToImage directives - container: FROM scratch build support Improvements: - supporting kvm builds as non-root user - Extend stage selection support for rpm builds - various distribution config updates - Support "BuildFlags: cumulaterpms" (was done only via suse_version before) Fixes: - container builds * support newer podman versions * supporting multiple containers for multi-stage builds - Supporting URL's in Flatpak manifests - epoch handling in debian builds - catch more cases where a failed build is marked as host error - fixing wrong status reporting when a job got killed - hugetlbfs handling fixes - try mounting selinuxfs in VM - Also create the /sys dir when preinstalling (to satisfy dracut) - various XML parser fixes - and many minor ones build-20220422-150200.9.1.noarch.rpm build-20220422-150200.9.1.src.rpm build-initvm-x86_64-20220422-150200.9.1.noarch.rpm build-mkbaselibs-20220422-150200.9.1.noarch.rpm build-mkdrpms-20220422-150200.9.1.noarch.rpm build-initvm-s390x-20220422-150200.9.1.noarch.rpm build-initvm-powerpc64le-20220422-150200.9.1.noarch.rpm build-initvm-aarch64-20220422-150200.9.1.noarch.rpm openSUSE-SLE-15.3-2022-1465 important SUSE Updates openSUSE-SLE 15.3 This update for libslirp fixes the following issues: - CVE-2021-3592: Fixed invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364). - CVE-2021-3594: Fixed invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367). - CVE-2021-3595: Fixed invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366). - Fix a dhcp regression [bsc#1198773] libslirp-4.3.1-150300.2.7.1.src.rpm libslirp-devel-4.3.1-150300.2.7.1.x86_64.rpm libslirp0-4.3.1-150300.2.7.1.x86_64.rpm libslirp-devel-4.3.1-150300.2.7.1.s390x.rpm libslirp0-4.3.1-150300.2.7.1.s390x.rpm libslirp-devel-4.3.1-150300.2.7.1.ppc64le.rpm libslirp0-4.3.1-150300.2.7.1.ppc64le.rpm libslirp-devel-4.3.1-150300.2.7.1.aarch64.rpm libslirp0-4.3.1-150300.2.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-1625 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-python3-saml fixes the following issues: - Update expiry dates for responses. (bsc#1197846) python-python3-saml-1.7.0-150200.3.3.2.src.rpm python2-python3-saml-1.7.0-150200.3.3.2.noarch.rpm python3-python3-saml-1.7.0-150200.3.3.2.noarch.rpm openSUSE-SLE-15.3-2022-1876 low SUSE Updates openSUSE-SLE 15.3 This update for csync fixes the following issues: - Detect libssh version. (bsc#1197711) csync-0.50.0-150000.3.8.1.src.rpm csync-0.50.0-150000.3.8.1.x86_64.rpm libcsync-devel-0.50.0-150000.3.8.1.x86_64.rpm libcsync-devel-doc-0.50.0-150000.3.8.1.x86_64.rpm libcsync-doc-0.50.0-150000.3.8.1.x86_64.rpm libcsync-plugin-owncloud-0.50.0-150000.3.8.1.x86_64.rpm libcsync-plugin-sftp-0.50.0-150000.3.8.1.x86_64.rpm libcsync-plugin-smb-0.50.0-150000.3.8.1.x86_64.rpm libcsync0-0.50.0-150000.3.8.1.x86_64.rpm libcsync0-32bit-0.50.0-150000.3.8.1.x86_64.rpm csync-0.50.0-150000.3.8.1.s390x.rpm libcsync-devel-0.50.0-150000.3.8.1.s390x.rpm libcsync-devel-doc-0.50.0-150000.3.8.1.s390x.rpm libcsync-doc-0.50.0-150000.3.8.1.s390x.rpm libcsync-plugin-owncloud-0.50.0-150000.3.8.1.s390x.rpm libcsync-plugin-sftp-0.50.0-150000.3.8.1.s390x.rpm libcsync-plugin-smb-0.50.0-150000.3.8.1.s390x.rpm libcsync0-0.50.0-150000.3.8.1.s390x.rpm csync-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-devel-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-devel-doc-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-doc-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-plugin-owncloud-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-plugin-sftp-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-plugin-smb-0.50.0-150000.3.8.1.ppc64le.rpm libcsync0-0.50.0-150000.3.8.1.ppc64le.rpm csync-0.50.0-150000.3.8.1.aarch64.rpm libcsync-devel-0.50.0-150000.3.8.1.aarch64.rpm libcsync-devel-doc-0.50.0-150000.3.8.1.aarch64.rpm libcsync-doc-0.50.0-150000.3.8.1.aarch64.rpm libcsync-plugin-owncloud-0.50.0-150000.3.8.1.aarch64.rpm libcsync-plugin-sftp-0.50.0-150000.3.8.1.aarch64.rpm libcsync-plugin-smb-0.50.0-150000.3.8.1.aarch64.rpm libcsync0-0.50.0-150000.3.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-1509 moderate SUSE Updates openSUSE-SLE 15.3 This update for pcp fixes the following issues: - CVE-2020-8025: Fixed outdated entries in permissions profiles for /var/lib/pcp/tmp/* (bsc#1171883). pcp-3.11.9-150000.5.14.1.src.rpm pcp-pmda-kvm-3.11.9-150000.5.14.1.x86_64.rpm pcp-pmda-postgresql-3.11.9-150000.5.14.1.x86_64.rpm python-pcp-3.11.9-150000.5.14.1.x86_64.rpm pcp-pmda-kvm-3.11.9-150000.5.14.1.s390x.rpm pcp-pmda-postgresql-3.11.9-150000.5.14.1.s390x.rpm python-pcp-3.11.9-150000.5.14.1.s390x.rpm pcp-pmda-kvm-3.11.9-150000.5.14.1.ppc64le.rpm pcp-pmda-postgresql-3.11.9-150000.5.14.1.ppc64le.rpm python-pcp-3.11.9-150000.5.14.1.ppc64le.rpm pcp-pmda-kvm-3.11.9-150000.5.14.1.aarch64.rpm pcp-pmda-postgresql-3.11.9-150000.5.14.1.aarch64.rpm python-pcp-3.11.9-150000.5.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-1462 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: - CVE-2022-0778: Fixed a infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877). - CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247). - CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283). - CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819). nodejs14-14.19.1-150200.15.31.1.src.rpm nodejs14-14.19.1-150200.15.31.1.x86_64.rpm nodejs14-devel-14.19.1-150200.15.31.1.x86_64.rpm nodejs14-docs-14.19.1-150200.15.31.1.noarch.rpm npm14-14.19.1-150200.15.31.1.x86_64.rpm nodejs14-14.19.1-150200.15.31.1.s390x.rpm nodejs14-devel-14.19.1-150200.15.31.1.s390x.rpm npm14-14.19.1-150200.15.31.1.s390x.rpm nodejs14-14.19.1-150200.15.31.1.ppc64le.rpm nodejs14-devel-14.19.1-150200.15.31.1.ppc64le.rpm npm14-14.19.1-150200.15.31.1.ppc64le.rpm nodejs14-14.19.1-150200.15.31.1.aarch64.rpm nodejs14-devel-14.19.1-150200.15.31.1.aarch64.rpm npm14-14.19.1-150200.15.31.1.aarch64.rpm openSUSE-SLE-15.3-2022-1461 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - CVE-2022-0778: Fixed a infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877). - CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247). - CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283). - CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819). nodejs12-12.22.12-150200.4.32.1.src.rpm nodejs12-12.22.12-150200.4.32.1.x86_64.rpm nodejs12-devel-12.22.12-150200.4.32.1.x86_64.rpm nodejs12-docs-12.22.12-150200.4.32.1.noarch.rpm npm12-12.22.12-150200.4.32.1.x86_64.rpm nodejs12-12.22.12-150200.4.32.1.s390x.rpm nodejs12-devel-12.22.12-150200.4.32.1.s390x.rpm npm12-12.22.12-150200.4.32.1.s390x.rpm nodejs12-12.22.12-150200.4.32.1.ppc64le.rpm nodejs12-devel-12.22.12-150200.4.32.1.ppc64le.rpm npm12-12.22.12-150200.4.32.1.ppc64le.rpm nodejs12-12.22.12-150200.4.32.1.aarch64.rpm nodejs12-devel-12.22.12-150200.4.32.1.aarch64.rpm npm12-12.22.12-150200.4.32.1.aarch64.rpm openSUSE-SLE-15.3-2022-1476 moderate SUSE Updates openSUSE-SLE 15.3 This update for libcaca fixes the following issues: - CVE-2022-0856: Fixed a divide by zero issue which could be exploited to cause an application crash (bsc#1197028). caca-utils-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca-0.99.beta19.git20171003-150200.11.6.1.src.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca0-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca0-32bit-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca0-plugins-32bit-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm python3-caca-0.99.beta19.git20171003-150200.11.6.1.noarch.rpm caca-utils-0.99.beta19.git20171003-150200.11.6.1.s390x.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.6.1.s390x.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.6.1.s390x.rpm libcaca0-0.99.beta19.git20171003-150200.11.6.1.s390x.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.6.1.s390x.rpm caca-utils-0.99.beta19.git20171003-150200.11.6.1.ppc64le.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.6.1.ppc64le.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.6.1.ppc64le.rpm libcaca0-0.99.beta19.git20171003-150200.11.6.1.ppc64le.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.6.1.ppc64le.rpm caca-utils-0.99.beta19.git20171003-150200.11.6.1.aarch64.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.6.1.aarch64.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.6.1.aarch64.rpm libcaca0-0.99.beta19.git20171003-150200.11.6.1.aarch64.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1658 important SUSE Updates openSUSE-SLE 15.3 This update for libpsl fixes the following issues: - Fix libpsl compilation issues (bsc#1197771) libpsl-0.20.1-150000.3.3.1.src.rpm libpsl-devel-0.20.1-150000.3.3.1.x86_64.rpm libpsl5-0.20.1-150000.3.3.1.x86_64.rpm libpsl5-32bit-0.20.1-150000.3.3.1.x86_64.rpm psl-0.20.1-150000.3.3.1.x86_64.rpm psl-make-dafsa-0.20.1-150000.3.3.1.noarch.rpm psl-make-dafsa-0.20.1-150000.3.3.1.src.rpm libpsl-devel-0.20.1-150000.3.3.1.s390x.rpm libpsl5-0.20.1-150000.3.3.1.s390x.rpm psl-0.20.1-150000.3.3.1.s390x.rpm libpsl-devel-0.20.1-150000.3.3.1.ppc64le.rpm libpsl5-0.20.1-150000.3.3.1.ppc64le.rpm psl-0.20.1-150000.3.3.1.ppc64le.rpm libpsl-devel-0.20.1-150000.3.3.1.aarch64.rpm libpsl5-0.20.1-150000.3.3.1.aarch64.rpm psl-0.20.1-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1558 important SUSE Updates openSUSE-SLE 15.3 This update for perf fixes the following issues: - Support for PowerPC exposing Performance Monitor Counter SPRs as part of extended regs (bsc#1198077) perf-5.3.18-150300.38.3.1.src.rpm perf-5.3.18-150300.38.3.1.x86_64.rpm perf-5.3.18-150300.38.3.1.s390x.rpm perf-5.3.18-150300.38.3.1.ppc64le.rpm perf-5.3.18-150300.38.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1468 moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-promu fixes the following issues: Update golang-github-prometheus-promu from version 0.1.0 to version 0.13.0 (jsc#SLE-24138) - Add deprecation note to pkg directory - Add Windows/ARM64 - Update common Prometheus files - Simplify CGO crossbuilds - Fix build with "linux" platform - Build requires Go 1.15 - Add support for aix/ppc64. - Fallback to git describe output if no VERSION. - Make extldflags extensible by configuration. - cmd/release: add `--timeout` option. - cmd/release: create release in GitHub if none exists. - Avoid bind-mounting to allow building with a remote docker engine - cmd/tarball: restore `--prefix` flag. - cmd/release: don't leak credentials in case of error. - Use `obs-service-go_modules` - Adding changes to support s390x - Add option to disable static linking - Add support for 32bit MIPS. - Added `check_licenses` command to Promu - Allow to customize nested options via env variables - Add warning if promu info is unable to determine repo info - Fix build on SmartOS by not setting GCC's `-static` flag - Fix git repository URL parsing golang-github-prometheus-promu-0.13.0-150000.3.3.1.src.rpm golang-github-prometheus-promu-0.13.0-150000.3.3.1.x86_64.rpm golang-github-prometheus-promu-0.13.0-150000.3.3.1.s390x.rpm golang-github-prometheus-promu-0.13.0-150000.3.3.1.ppc64le.rpm golang-github-prometheus-promu-0.13.0-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1519 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for python-contextvars, python-immutables fixes the following issues: python-immutables: - Provide python-immutables version 0.11 in SUSE Linux Enterprise 15 (jsc#SLE-24404) python-contextvars: - Provide python-contextvars version 2.4 in SUSE Linux Enterprise 15 (jsc#SLE-24404) python-contextvars-2.4-150000.1.3.1.src.rpm python-immutables-0.11-150000.1.3.1.src.rpm python3-contextvars-2.4-150000.1.3.1.noarch.rpm python3-immutables-0.11-150000.1.3.1.x86_64.rpm python3-immutables-0.11-150000.1.3.1.s390x.rpm python3-immutables-0.11-150000.1.3.1.ppc64le.rpm python3-immutables-0.11-150000.1.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1892 moderate SUSE Updates openSUSE-SLE 15.3 This update for dpdk fixes the following issues: Security: - CVE-2021-3839: Fixed a memory corruption issue during vhost-user communication (bsc#1198963). - CVE-2022-0669: Fixed a denial of service that could be triggered by a vhost-user master (bsc#1198964). Bugfixes: - kni: allow configuring thread granularity (bsc#1195172). - Fixed reading of PCI device name as UTF strings (bsc#1198873). dpdk-19.11.4-150300.11.1.src.rpm dpdk-19.11.4-150300.11.1.x86_64.rpm dpdk-devel-19.11.4-150300.11.1.x86_64.rpm dpdk-doc-19.11.4-150300.11.1.noarch.rpm dpdk-examples-19.11.4-150300.11.1.x86_64.rpm dpdk-kmp-default-19.11.4_k5.3.18_150300.59.63-150300.11.1.x86_64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_150300.59.63-150300.11.1.x86_64.rpm dpdk-tools-19.11.4-150300.11.1.x86_64.rpm libdpdk-20_0-19.11.4-150300.11.1.x86_64.rpm dpdk-19.11.4-150300.11.1.ppc64le.rpm dpdk-devel-19.11.4-150300.11.1.ppc64le.rpm dpdk-examples-19.11.4-150300.11.1.ppc64le.rpm dpdk-kmp-default-19.11.4_k5.3.18_150300.59.63-150300.11.1.ppc64le.rpm dpdk-tools-19.11.4-150300.11.1.ppc64le.rpm libdpdk-20_0-19.11.4-150300.11.1.ppc64le.rpm dpdk-19.11.4-150300.11.1.aarch64.rpm dpdk-devel-19.11.4-150300.11.1.aarch64.rpm dpdk-examples-19.11.4-150300.11.1.aarch64.rpm dpdk-kmp-default-19.11.4_k5.3.18_150300.59.63-150300.11.1.aarch64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_150300.59.63-150300.11.1.aarch64.rpm dpdk-thunderx-19.11.4-150300.11.1.aarch64.rpm dpdk-thunderx-19.11.4-150300.11.1.src.rpm dpdk-thunderx-devel-19.11.4-150300.11.1.aarch64.rpm dpdk-thunderx-doc-19.11.4-150300.11.1.noarch.rpm dpdk-thunderx-examples-19.11.4-150300.11.1.aarch64.rpm dpdk-thunderx-kmp-default-19.11.4_k5.3.18_150300.59.63-150300.11.1.aarch64.rpm dpdk-thunderx-kmp-preempt-19.11.4_k5.3.18_150300.59.63-150300.11.1.aarch64.rpm dpdk-thunderx-tools-19.11.4-150300.11.1.aarch64.rpm dpdk-tools-19.11.4-150300.11.1.aarch64.rpm libdpdk-20_0-19.11.4-150300.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-1709 important SUSE Updates openSUSE-SLE 15.3 This update for libcbor fixes the following issues: - Fix build errors occuring on SUSE Linux Enterprise 15 Service Pack 4 libcbor-0.5.0-150100.4.6.1.src.rpm libcbor-devel-0.5.0-150100.4.6.1.x86_64.rpm libcbor0-0.5.0-150100.4.6.1.x86_64.rpm libcbor-devel-0.5.0-150100.4.6.1.s390x.rpm libcbor0-0.5.0-150100.4.6.1.s390x.rpm libcbor-devel-0.5.0-150100.4.6.1.ppc64le.rpm libcbor0-0.5.0-150100.4.6.1.ppc64le.rpm libcbor-devel-0.5.0-150100.4.6.1.aarch64.rpm libcbor0-0.5.0-150100.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1828 important SUSE Updates openSUSE-SLE 15.3 This update for oath-toolkit fixes the following issues: - Fix build issues occurring on SUSE Linux Enterprise 15 Service Pack 4 (bsc#1197790) liboath-devel-2.6.2-150000.3.3.1.x86_64.rpm liboath0-2.6.2-150000.3.3.1.x86_64.rpm libpskc-devel-2.6.2-150000.3.3.1.x86_64.rpm libpskc0-2.6.2-150000.3.3.1.x86_64.rpm oath-toolkit-2.6.2-150000.3.3.1.src.rpm oath-toolkit-2.6.2-150000.3.3.1.x86_64.rpm oath-toolkit-xml-2.6.2-150000.3.3.1.noarch.rpm pam_oath-2.6.2-150000.3.3.1.x86_64.rpm liboath-devel-2.6.2-150000.3.3.1.s390x.rpm liboath0-2.6.2-150000.3.3.1.s390x.rpm libpskc-devel-2.6.2-150000.3.3.1.s390x.rpm libpskc0-2.6.2-150000.3.3.1.s390x.rpm oath-toolkit-2.6.2-150000.3.3.1.s390x.rpm pam_oath-2.6.2-150000.3.3.1.s390x.rpm liboath-devel-2.6.2-150000.3.3.1.ppc64le.rpm liboath0-2.6.2-150000.3.3.1.ppc64le.rpm libpskc-devel-2.6.2-150000.3.3.1.ppc64le.rpm libpskc0-2.6.2-150000.3.3.1.ppc64le.rpm oath-toolkit-2.6.2-150000.3.3.1.ppc64le.rpm pam_oath-2.6.2-150000.3.3.1.ppc64le.rpm liboath-devel-2.6.2-150000.3.3.1.aarch64.rpm liboath0-2.6.2-150000.3.3.1.aarch64.rpm libpskc-devel-2.6.2-150000.3.3.1.aarch64.rpm libpskc0-2.6.2-150000.3.3.1.aarch64.rpm oath-toolkit-2.6.2-150000.3.3.1.aarch64.rpm pam_oath-2.6.2-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1595 important SUSE Updates openSUSE-SLE 15.3 This update for libnss_nis fixes the following issues: - Fix build issues occurring on SUSE Linux Enterprise 15 Service Pack 4 (bsc#1197768) libnss_nis-3.0-150000.3.3.1.src.rpm libnss_nis2-3.0-150000.3.3.1.x86_64.rpm libnss_nis2-32bit-3.0-150000.3.3.1.x86_64.rpm libnss_nis2-3.0-150000.3.3.1.s390x.rpm libnss_nis2-3.0-150000.3.3.1.ppc64le.rpm libnss_nis2-3.0-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1710 important SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Relax the certificate verification (bsc#1198286) - Fix memory access violation on `zgetdump --info` for multi-volume dump (bsc#1199129) libekmfweb1-2.15.1-150300.8.22.2.s390x.rpm libekmfweb1-devel-2.15.1-150300.8.22.2.s390x.rpm osasnmpd-2.15.1-150300.8.22.2.s390x.rpm s390-tools-2.15.1-150300.8.22.2.s390x.rpm s390-tools-2.15.1-150300.8.22.2.src.rpm s390-tools-hmcdrvfs-2.15.1-150300.8.22.2.s390x.rpm s390-tools-zdsfs-2.15.1-150300.8.22.2.s390x.rpm openSUSE-SLE-15.3-2022-2093 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-vm-tools fixes the following issues: - Update to 12.0.0 (build 19345655) (bsc#1196803) - Update open-vm-tools 12.0.0. (jsc#SLE-24097) - Support for managing Salt Minion through guest variables. A new open-vm-tools-salt-minion rpm is added to handle this support. - New ComponentMgr plugin to manage (add, remove, monitor) components on the guest VM. - Patch to fix potential Fail to Build from Source. (bsc#1196804) - Build vmhgfs with either libfuse2 or libfuse3. libvmtools-devel-12.0.0-150300.16.1.x86_64.rpm libvmtools0-12.0.0-150300.16.1.x86_64.rpm open-vm-tools-12.0.0-150300.16.1.src.rpm open-vm-tools-12.0.0-150300.16.1.x86_64.rpm open-vm-tools-desktop-12.0.0-150300.16.1.x86_64.rpm open-vm-tools-sdmp-12.0.0-150300.16.1.x86_64.rpm libvmtools-devel-12.0.0-150300.16.1.aarch64.rpm libvmtools0-12.0.0-150300.16.1.aarch64.rpm open-vm-tools-12.0.0-150300.16.1.aarch64.rpm open-vm-tools-desktop-12.0.0-150300.16.1.aarch64.rpm open-vm-tools-sdmp-12.0.0-150300.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-1850 moderate SUSE Updates openSUSE-SLE 15.3 This update for perl-XML-LibXML fixes the following issues: - Allow compile against latest version available of libxml in SP4 so perl-XML-LibXSLT compiles cleanly. (bsc#1197798) This update has no customer visible change. perl-XML-LibXML-2.0132-150000.3.3.1.src.rpm perl-XML-LibXML-2.0132-150000.3.3.1.x86_64.rpm perl-XML-LibXML-2.0132-150000.3.3.1.s390x.rpm perl-XML-LibXML-2.0132-150000.3.3.1.ppc64le.rpm perl-XML-LibXML-2.0132-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1750 important SUSE Updates openSUSE-SLE 15.3 This update for libxml2 fixes the following issues: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes (bsc#1196490). - CVE-2022-29824: Fixed integer overflow that could have led to an out-of-bounds write in buf.c (xmlBuf*) and tree.c (xmlBuffer*) (bsc#1199132). libxml2-2-2.9.7-150000.3.46.1.x86_64.rpm libxml2-2-32bit-2.9.7-150000.3.46.1.x86_64.rpm libxml2-2.9.7-150000.3.46.1.src.rpm libxml2-devel-2.9.7-150000.3.46.1.x86_64.rpm libxml2-devel-32bit-2.9.7-150000.3.46.1.x86_64.rpm libxml2-doc-2.9.7-150000.3.46.1.noarch.rpm libxml2-tools-2.9.7-150000.3.46.1.x86_64.rpm python-libxml2-python-2.9.7-150000.3.46.1.src.rpm python2-libxml2-python-2.9.7-150000.3.46.1.x86_64.rpm python3-libxml2-python-2.9.7-150000.3.46.1.x86_64.rpm libxml2-2-2.9.7-150000.3.46.1.s390x.rpm libxml2-devel-2.9.7-150000.3.46.1.s390x.rpm libxml2-tools-2.9.7-150000.3.46.1.s390x.rpm python2-libxml2-python-2.9.7-150000.3.46.1.s390x.rpm python3-libxml2-python-2.9.7-150000.3.46.1.s390x.rpm libxml2-2-2.9.7-150000.3.46.1.ppc64le.rpm libxml2-devel-2.9.7-150000.3.46.1.ppc64le.rpm libxml2-tools-2.9.7-150000.3.46.1.ppc64le.rpm python2-libxml2-python-2.9.7-150000.3.46.1.ppc64le.rpm python3-libxml2-python-2.9.7-150000.3.46.1.ppc64le.rpm libxml2-2-2.9.7-150000.3.46.1.aarch64.rpm libxml2-devel-2.9.7-150000.3.46.1.aarch64.rpm libxml2-tools-2.9.7-150000.3.46.1.aarch64.rpm python2-libxml2-python-2.9.7-150000.3.46.1.aarch64.rpm python3-libxml2-python-2.9.7-150000.3.46.1.aarch64.rpm openSUSE-SLE-15.3-2022-1888 moderate SUSE Updates openSUSE-SLE 15.3 This update for helm-mirror fixes the following issues: - Updated to version 0.3.1: - CVE-2019-18658: Fixed a potential symbolic link issue in helm that could be used to leak sensitive files (bsc#1156646). helm-mirror-0.3.1-150000.1.13.1.src.rpm helm-mirror-0.3.1-150000.1.13.1.x86_64.rpm helm-mirror-0.3.1-150000.1.13.1.s390x.rpm helm-mirror-0.3.1-150000.1.13.1.ppc64le.rpm helm-mirror-0.3.1-150000.1.13.1.aarch64.rpm openSUSE-SLE-15.3-2022-1503 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint fixes the following issues: - whitelist kcron (bsc#1199006) - whitelisted power-profiles-daemon (bsc#1198693). rpmlint-1.10-150000.7.53.1.noarch.rpm rpmlint-1.10-150000.7.53.1.src.rpm openSUSE-SLE-15.3-2022-1913 moderate SUSE Updates openSUSE-SLE 15.3 This update for aws-iam-authenticator fixes the following issues: - Update in SLE-15 (bsc#1197703) - Update to version 0.5.3 * Bump Go to 1.15 in Travis (#361) * Update aws sdk go v1.37.1 (#360) * (arn): validate partition against all partitions returned by the aws sdk (#348) * Document AccessKeyId from UserInfo (#332) * Support IPv6 listen address (#352) * Added user agent to AWS SDK (#359) * Remove Chris Hein from OWNERS (#351) * Add instructions for the release process (#346) - from version 0.5.2 * Added partition flag (#341) * Update link to Kops docs site (#338) * Security Improvements on the example yaml (#335) * Fix RBAC on example file: service account requires get to ConfigMap (#334) * Add AccessKeyID as variable for username (#337) * Added server side AWS account ID log redaction (#327) - from version 0.5.1 * Update examples/README (#317) * Changelog gen (#318) * Fix CRD mapper blocking all others because caches never sync and revamp backend-mode flag (#303) * Update aws-sdk-go to version v1.30.0 (#306) * Bump k8s.io/ dependencies to 1.16.8 (#305) * chown aws-iam-authenticator to avoid permission denied (#302) * Indentation and unit test improvements (#298) * Adding Rate limiting ec2:DescribeInstances API along with Batching for high TPS (#292) * Restrict ClusterRole to readonly IAMIdentityMapping access (#287) * added selector to spec and changed from extenstions to apps/v1 (#291) * Add AWS AccessKeyID as an extra field in UserInfo (#286) * Allow server port customization (#278) - from version 0.5.0 * Remove DNS-1123 validation of usernames and groups (#260) * switch to use regional sts endpoint & imdsV2 (#283) * Add AWS Access Key ID to log (#282) * Require to pass in interface instead of the concrete type (#279) * Refactor to allow configurable backends (configmap, eks configmap, crd) (#269) * Update go version (#255) * Adding session name parameter to TokenGenerator (#272) * Rename prometheus metrics to match new project name (#249) * Remove inactive approvers, add wongma7 (#266) * Update aws-sdk-go to v1.23.11 (257) * Added go module download check (#259) * Updating goreleaser yaml to fix deprecated options (#252) * Remove deprecated language from README (#244) * Lowercase ARN inside doMapping and log about it (#239) * IAMIdentityMapping CRD Implementation (#116) * Adding micahhausler as approver (#237) * add support for passing externalID to assume role (#228) * Update README.md (#231) * Using sigs.k8s.io domain instead of github.com (#223) * Refactored EC2 API calls to be testable (#226) * Include aws request ID when logging errors (#178) - Remove global Go project variables - Set GO111MODULE=off to force use of vendored modules - Update Go build paths aws-iam-authenticator-0.5.3-150000.1.6.1.src.rpm aws-iam-authenticator-0.5.3-150000.1.6.1.x86_64.rpm aws-iam-authenticator-0.5.3-150000.1.6.1.s390x.rpm aws-iam-authenticator-0.5.3-150000.1.6.1.ppc64le.rpm aws-iam-authenticator-0.5.3-150000.1.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2014 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: scap-security-guide was updated to 0.1.61 (jsc#ECO-3319): - Stop building PCI-DSS-centric XCCDF benchmark for RHEL 7 - Introduce OL9 product - Implement handling of logical expressions in platform definitions Please note that SUSE supports only the DISA STIG, HIPAA and PCI-DSS profiles for SUSE Linux Enterprise Server 12 and 15. scap-security-guide-0.1.61-150000.1.32.1.noarch.rpm scap-security-guide-0.1.61-150000.1.32.1.src.rpm scap-security-guide-debian-0.1.61-150000.1.32.1.noarch.rpm scap-security-guide-redhat-0.1.61-150000.1.32.1.noarch.rpm scap-security-guide-ubuntu-0.1.61-150000.1.32.1.noarch.rpm openSUSE-SLE-15.3-2022-1688 important SUSE Updates openSUSE-SLE 15.3 This update for e2fsprogs fixes the following issues: - CVE-2022-1304: Fixed out-of-bounds read/write leading to segmentation fault and possibly arbitrary code execution. (bsc#1198446) e2fsprogs-1.43.8-150000.4.33.1.src.rpm e2fsprogs-1.43.8-150000.4.33.1.x86_64.rpm e2fsprogs-devel-1.43.8-150000.4.33.1.x86_64.rpm libcom_err-devel-1.43.8-150000.4.33.1.x86_64.rpm libcom_err-devel-32bit-1.43.8-150000.4.33.1.x86_64.rpm libcom_err-devel-static-1.43.8-150000.4.33.1.x86_64.rpm libcom_err2-1.43.8-150000.4.33.1.x86_64.rpm libcom_err2-32bit-1.43.8-150000.4.33.1.x86_64.rpm libext2fs-devel-1.43.8-150000.4.33.1.x86_64.rpm libext2fs-devel-32bit-1.43.8-150000.4.33.1.x86_64.rpm libext2fs-devel-static-1.43.8-150000.4.33.1.x86_64.rpm libext2fs2-1.43.8-150000.4.33.1.x86_64.rpm libext2fs2-32bit-1.43.8-150000.4.33.1.x86_64.rpm e2fsprogs-1.43.8-150000.4.33.1.s390x.rpm e2fsprogs-devel-1.43.8-150000.4.33.1.s390x.rpm libcom_err-devel-1.43.8-150000.4.33.1.s390x.rpm libcom_err-devel-static-1.43.8-150000.4.33.1.s390x.rpm libcom_err2-1.43.8-150000.4.33.1.s390x.rpm libext2fs-devel-1.43.8-150000.4.33.1.s390x.rpm libext2fs-devel-static-1.43.8-150000.4.33.1.s390x.rpm libext2fs2-1.43.8-150000.4.33.1.s390x.rpm e2fsprogs-1.43.8-150000.4.33.1.ppc64le.rpm e2fsprogs-devel-1.43.8-150000.4.33.1.ppc64le.rpm libcom_err-devel-1.43.8-150000.4.33.1.ppc64le.rpm libcom_err-devel-static-1.43.8-150000.4.33.1.ppc64le.rpm libcom_err2-1.43.8-150000.4.33.1.ppc64le.rpm libext2fs-devel-1.43.8-150000.4.33.1.ppc64le.rpm libext2fs-devel-static-1.43.8-150000.4.33.1.ppc64le.rpm libext2fs2-1.43.8-150000.4.33.1.ppc64le.rpm e2fsprogs-1.43.8-150000.4.33.1.aarch64.rpm e2fsprogs-devel-1.43.8-150000.4.33.1.aarch64.rpm libcom_err-devel-1.43.8-150000.4.33.1.aarch64.rpm libcom_err-devel-static-1.43.8-150000.4.33.1.aarch64.rpm libcom_err2-1.43.8-150000.4.33.1.aarch64.rpm libext2fs-devel-1.43.8-150000.4.33.1.aarch64.rpm libext2fs-devel-static-1.43.8-150000.4.33.1.aarch64.rpm libext2fs2-1.43.8-150000.4.33.1.aarch64.rpm openSUSE-SLE-15.3-2022-1704 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-importlib_resources fixes the following issues: - Add compatibility with openSUSE package name (bsc#1198331) python-importlib_resources-1.1.0-150100.3.12.1.src.rpm python2-importlib_resources-1.1.0-150100.3.12.1.noarch.rpm python3-importlib_resources-1.1.0-150100.3.12.1.noarch.rpm openSUSE-SLE-15.3-2022-1559 important SUSE Updates openSUSE-SLE 15.3 This update for ovmf fixes the following issues: - Set TPM2_ENABLE and TPM2_CONFIG_ENABLE because it's needed by ARM (bsc#1197458) ovmf-202008-150300.10.14.1.src.rpm ovmf-202008-150300.10.14.1.x86_64.rpm ovmf-tools-202008-150300.10.14.1.x86_64.rpm qemu-ovmf-ia32-202008-150300.10.14.1.noarch.rpm qemu-ovmf-x86_64-202008-150300.10.14.1.noarch.rpm qemu-ovmf-x86_64-debug-202008-150300.10.14.1.x86_64.rpm qemu-uefi-aarch32-202008-150300.10.14.1.noarch.rpm qemu-uefi-aarch64-202008-150300.10.14.1.noarch.rpm ovmf-202008-150300.10.14.1.aarch64.rpm ovmf-tools-202008-150300.10.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-1703 important SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issues: - Updated pci, usb and vendor ids (bsc#1196332) hwdata-0.358-150000.3.45.1.noarch.rpm hwdata-0.358-150000.3.45.1.src.rpm openSUSE-SLE-15.3-2022-1896 moderate SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: - Fix mod_php8 to provide php_module (bsc#1195130) apache2-2.4.51-150200.3.45.1.src.rpm apache2-2.4.51-150200.3.45.1.x86_64.rpm apache2-devel-2.4.51-150200.3.45.1.x86_64.rpm apache2-doc-2.4.51-150200.3.45.1.noarch.rpm apache2-event-2.4.51-150200.3.45.1.x86_64.rpm apache2-example-pages-2.4.51-150200.3.45.1.x86_64.rpm apache2-prefork-2.4.51-150200.3.45.1.x86_64.rpm apache2-utils-2.4.51-150200.3.45.1.x86_64.rpm apache2-worker-2.4.51-150200.3.45.1.x86_64.rpm apache2-2.4.51-150200.3.45.1.s390x.rpm apache2-devel-2.4.51-150200.3.45.1.s390x.rpm apache2-event-2.4.51-150200.3.45.1.s390x.rpm apache2-example-pages-2.4.51-150200.3.45.1.s390x.rpm apache2-prefork-2.4.51-150200.3.45.1.s390x.rpm apache2-utils-2.4.51-150200.3.45.1.s390x.rpm apache2-worker-2.4.51-150200.3.45.1.s390x.rpm apache2-2.4.51-150200.3.45.1.ppc64le.rpm apache2-devel-2.4.51-150200.3.45.1.ppc64le.rpm apache2-event-2.4.51-150200.3.45.1.ppc64le.rpm apache2-example-pages-2.4.51-150200.3.45.1.ppc64le.rpm apache2-prefork-2.4.51-150200.3.45.1.ppc64le.rpm apache2-utils-2.4.51-150200.3.45.1.ppc64le.rpm apache2-worker-2.4.51-150200.3.45.1.ppc64le.rpm apache2-2.4.51-150200.3.45.1.aarch64.rpm apache2-devel-2.4.51-150200.3.45.1.aarch64.rpm apache2-event-2.4.51-150200.3.45.1.aarch64.rpm apache2-example-pages-2.4.51-150200.3.45.1.aarch64.rpm apache2-prefork-2.4.51-150200.3.45.1.aarch64.rpm apache2-utils-2.4.51-150200.3.45.1.aarch64.rpm apache2-worker-2.4.51-150200.3.45.1.aarch64.rpm openSUSE-SLE-15.3-2022-1694 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs8 fixes the following issues: - CVE-2021-44906: Fixed prototype pollution in npm dependency (bsc#1198247). - CVE-2021-44907: Fixed insuficient sanitation in npm dependency (bsc#1197283). - CVE-2022-0235: Fixed passing of cookie data and sensitive headers to different hostnames in node-fetch-npm (bsc#1194819). nodejs8-8.17.0-150200.10.22.1.src.rpm nodejs8-8.17.0-150200.10.22.1.x86_64.rpm nodejs8-devel-8.17.0-150200.10.22.1.x86_64.rpm nodejs8-docs-8.17.0-150200.10.22.1.noarch.rpm npm8-8.17.0-150200.10.22.1.x86_64.rpm nodejs8-8.17.0-150200.10.22.1.s390x.rpm nodejs8-devel-8.17.0-150200.10.22.1.s390x.rpm npm8-8.17.0-150200.10.22.1.s390x.rpm nodejs8-8.17.0-150200.10.22.1.ppc64le.rpm nodejs8-devel-8.17.0-150200.10.22.1.ppc64le.rpm npm8-8.17.0-150200.10.22.1.ppc64le.rpm nodejs8-8.17.0-150200.10.22.1.aarch64.rpm nodejs8-devel-8.17.0-150200.10.22.1.aarch64.rpm npm8-8.17.0-150200.10.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-1583 important SUSE Updates openSUSE-SLE 15.3 This update for rsyslog fixes the following issues: - CVE-2022-24903: Fixed potential heap buffer overflow in modules for TCP syslog reception (bsc#1199061). rsyslog-8.2106.0-150200.4.26.1.src.rpm rsyslog-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-diag-tools-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-doc-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-dbi-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-gssapi-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-gtls-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-mysql-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-omtcl-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-ossl-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-pgsql-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-relp-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-snmp-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.26.1.x86_64.rpm rsyslog-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-diag-tools-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-doc-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-dbi-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-gssapi-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-gtls-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-mysql-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-omtcl-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-ossl-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-pgsql-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-relp-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-snmp-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.26.1.s390x.rpm rsyslog-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-diag-tools-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-doc-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-dbi-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-gssapi-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-gtls-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-mysql-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-omtcl-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-ossl-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-pgsql-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-relp-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-snmp-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.26.1.ppc64le.rpm rsyslog-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-diag-tools-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-doc-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-dbi-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-gssapi-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-gtls-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-mysql-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-omtcl-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-ossl-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-pgsql-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-relp-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-snmp-8.2106.0-150200.4.26.1.aarch64.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-1699 moderate SUSE Updates openSUSE-SLE 15.3 This update for post-build-checks-malwarescan fixes the following issues: - EXLUDELIST: Whitelist some qemu binaries to avoid a false positive clamav detection (bsc#1199055) post-build-checks-malwarescan-0.1-150000.3.25.1.noarch.rpm post-build-checks-malwarescan-0.1-150000.3.25.1.src.rpm openSUSE-SLE-15.3-2022-1842 moderate SUSE Updates openSUSE-SLE 15.3 This update for redis fixes the following issues: - CVE-2022-24735: Fixed Lua code injection (bsc#1198952). - CVE-2022-24736: Fixed Lua NULL pointer dereference (bsc#1198953). redis-6.0.14-150200.6.11.1.src.rpm redis-6.0.14-150200.6.11.1.x86_64.rpm redis-6.0.14-150200.6.11.1.s390x.rpm redis-6.0.14-150200.6.11.1.ppc64le.rpm redis-6.0.14-150200.6.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-2044 important SUSE Updates openSUSE-SLE 15.3 This update for google-gson fixes the following issues: - CVE-2022-25647: Fixed deserialization of untrusted data (bsc#1199064). google-gson-2.8.9-150200.3.6.3.noarch.rpm google-gson-2.8.9-150200.3.6.3.src.rpm google-gson-javadoc-2.8.9-150200.3.6.3.noarch.rpm openSUSE-SLE-15.3-2022-1692 low SUSE Updates openSUSE-SLE 15.3 This update for jeos-firstboot fixes the following issue: - Add jeos-firstboot-rpiwifi to SLE-15-SP3-aarch64 on Module-Development-Tools. (bsc#1198940) jeos-firstboot-1.0.1-150300.3.5.1.noarch.rpm jeos-firstboot-1.0.1-150300.3.5.1.src.rpm jeos-firstboot-rpiwifi-1.0.1-150300.3.5.1.noarch.rpm openSUSE-SLE-15.3-2022-1661 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust, rust1.60 fixes the following issues: rust1.60 is shipped with this update. Version 1.60.0 (2022-04-07) ========================== Language -------- - Stabilize cfg(panic = "...") for either "unwind" or "abort". - Stabilize cfg(target_has_atomic = "...") for each integer size and "ptr". Compiler -------- - Enable combining +crt-static and relocation-model=pic on x86_64-unknown-linux-gnu - Fixes wrong unreachable_pub lints on nested and glob public reexport - Stabilize -Z instrument-coverage as -C instrument-coverage - Stabilize -Z print-link-args as --print link-args - Add new Tier 3 target mips64-openwrt-linux-musl\* - Add new Tier 3 target armv7-unknown-linux-uclibceabi (softfloat)\* - Fix invalid removal of newlines from doc comments - Add kernel target for RustyHermit - Deny mixing bin crate type with lib crate types - Make rustc use RUST_BACKTRACE=full by default * Refer to Rust's platform support page for more information on Rust's tiered platform support. Libraries --------- - Guarantee call order for sort_by_cached_key - Improve Duration::try_from_secs_f32/f64 accuracy by directly processing exponent and mantissa - Make Instant::{duration_since, elapsed, sub} saturating - Remove non-monotonic clocks workarounds in Instant::now - Make BuildHasherDefault, iter::Empty and future::Pending covariant Stabilized APIs -------------- - Arc::new_cyclic - Rc::new_cyclic - slice::EscapeAscii - <[u8]>::escape_ascii - u8::escape_ascii - Vec::spare_capacity_mut - MaybeUninit::assume_init_drop - MaybeUninit::assume_init_read - i8::abs_diff - i16::abs_diff - i32::abs_diff - i64::abs_diff - i128::abs_diff - isize::abs_diff - u8::abs_diff - u16::abs_diff - u32::abs_diff - u64::abs_diff - u128::abs_diff - usize::abs_diff - Display for io::ErrorKind - From<u8> for ExitCode] - Not for ! (the "never" type) - _Op_Assign<$t> for Wrapping<$t> - arch::is_aarch64_feature_detected! Cargo ----- - Port cargo from toml-rs to toml_edit - Stabilize -Ztimings as --timings - Stabilize namespaced and weak dependency features. - Accept more cargo:rustc-link-arg-* types from build script output. - cargo-new should not add ignore rule on Cargo.lock inside subdirs Misc ---- - Ship docs on Tier 2 platforms by reusing the closest Tier 1 platform docs - Drop rustc-docs from complete profile - bootstrap: tidy up flag handling for llvm build Compatibility Notes ------------------- - Mitigations for platforms with non-monotonic clocks have been removed from Instant::now. On platforms that don't provide monotonic clocks, an instant is not guaranteed to be greater than an earlier instant anymore. - Instant::{duration_since, elapsed, sub} do not panic anymore on underflow, saturating to 0 instead. In the real world the panic happened mostly on platforms with buggy monotonic clock implementations rather than catching programming errors like reversing the start and end times. Such programming errors will now results in 0 rather than a panic. cargo-1.60.0-150300.21.23.1.x86_64.rpm cargo1.60-1.60.0-150300.7.6.1.x86_64.rpm rust-1.60.0-150300.21.23.1.src.rpm rust-1.60.0-150300.21.23.1.x86_64.rpm rust1.60-1.60.0-150300.7.6.1.src.rpm rust1.60-1.60.0-150300.7.6.1.x86_64.rpm cargo-1.60.0-150300.21.23.1.s390x.rpm cargo1.60-1.60.0-150300.7.6.1.s390x.rpm rust-1.60.0-150300.21.23.1.s390x.rpm rust1.60-1.60.0-150300.7.6.1.s390x.rpm cargo-1.60.0-150300.21.23.1.ppc64le.rpm cargo1.60-1.60.0-150300.7.6.1.ppc64le.rpm rust-1.60.0-150300.21.23.1.ppc64le.rpm rust1.60-1.60.0-150300.7.6.1.ppc64le.rpm cargo-1.60.0-150300.21.23.1.aarch64.rpm cargo1.60-1.60.0-150300.7.6.1.aarch64.rpm rust-1.60.0-150300.21.23.1.aarch64.rpm rust1.60-1.60.0-150300.7.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1676 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-27835: Fixed a use after free vulnerability in infiniband hfi1 driver in the way user calls Ioctl after open dev file and fork. A local user could use this flaw to crash the system (bnc#1179878). - CVE-2021-0707: Fixed a use after free vulnerability in dma_buf_release of dma-buf.c, which may lead to local escalation of privilege with no additional execution privileges needed (bnc#1198437). - CVE-2021-20292: Fixed object validation prior to performing operations on the object in nouveau_sgdma_create_ttm in Nouveau DRM subsystem (bnc#1183723). - CVE-2021-20321: Fixed a race condition accessing file object in the OverlayFS subsystem in the way users do rename in specific way with OverlayFS. A local user could have used this flaw to crash the system (bnc#1191647). - CVE-2021-38208: Fixed a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call (bnc#1187055). - CVE-2021-4154: Fixed a use-after-free vulnerability in cgroup1_parse_param in kernel/cgroup/cgroup-v1.c, allowing a local privilege escalation by an attacker with user privileges by exploiting the fsconfig syscall parameter, leading to a container breakout and a denial of service on the system (bnc#1193842). - CVE-2022-0812: Fixed information leak when a file is read from RDMA (bsc#1196639) - CVE-2022-1158: Fixed a vulnerability in the kvm module that may lead to a use-after-free write or denial of service (bsc#1197660). - CVE-2022-1280: Fixed a use-after-free vulnerability in drm_lease_held in drivers/gpu/drm/drm_lease.c (bnc#1197914). - CVE-2022-1353: Fixed access controll to kernel memory in the pfkey_register function in net/key/af_key.c (bnc#1198516). - CVE-2022-1419: Fixed a concurrency use-after-free in vgem_gem_dumb_create (bsc#1198742). - CVE-2022-1516: Fixed null-ptr-deref caused by x25_disconnect (bsc#1199012). - CVE-2022-28356: Fixed a refcount leak bug in net/llc/af_llc.c (bnc#1197391). - CVE-2022-28748: Fixed memory lead over the network by ax88179_178a devices (bsc#1196018). - CVE-2022-28893: Fixed a use after free vulnerability in inet_put_port where some sockets are not closed before xs_xprt_free() (bsc#1198330). - CVE-2022-29156: Fixed a double free vulnerability related to rtrs_clt_dev_release.ate (jsc#SLE-15176 bsc#1198515). The following non-security bugs were fixed: - ACPI/APEI: Limit printable size of BERT table data (git-fixes). - ACPI: processor idle: Check for architectural support for LPI (git-fixes). - ACPICA: Avoid walking the ACPI Namespace if it is not there (git-fixes). - ALSA: cs4236: fix an incorrect NULL check on list iterator (git-fixes). - ALSA: hda/hdmi: fix warning about PCM count when used with SOF (git-fixes). - ALSA: hda/realtek: Add alc256-samsung-headphone fixup (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD50PNT (git-fixes). - ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020 (git-fixes). - ALSA: pcm: Test for "silence" field in struct "pcm_format_data" (git-fixes). - ALSA: usb-audio: Cap upper limits of buffer/period bytes for implicit fb (git-fixes). - ALSA: usb-audio: Increase max buffer size (git-fixes). - ALSA: usb-audio: Limit max buffer and period sizes per time (git-fixes). - ASoC: atmel: Remove system clock tree configuration for at91sam9g20ek (git-fixes). - ASoC: codecs: wcd934x: do not switch off SIDO Buck when codec is in use (git-fixes). - ASoC: mediatek: mt6358: add missing EXPORT_SYMBOLs (git-fixes). - ASoC: msm8916-wcd-digital: Check failure for devm_snd_soc_register_component (git-fixes). - ASoC: soc-compress: Change the check for codec_dai (git-fixes). - ASoC: soc-compress: prevent the potentially use of null pointer (git-fixes). - ASoC: soc-core: skip zero num_dai component in searching dai name (git-fixes). - ASoC: soc-dapm: fix two incorrect uses of list iterator (git-fixes). - Bluetooth: Fix use after free in hci_send_acl (git-fixes). - Bluetooth: btmtksdio: Fix kernel oops in btmtksdio_interrupt (git-fixes). - Bluetooth: hci_serdev: call init_rwsem() before p->open() (git-fixes). - Documentation: add link to stable release candidate tree (git-fixes). - HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports (git-fixes). - IB/hfi1: Allow larger MTU without AIP (jsc#SLE-13208). - Input: omap4-keypad - fix pm_runtime_get_sync() error checking (git-fixes). - KEYS: fix length validation in keyctl_pkey_params_get_2() (git-fixes). - NFSv4: fix open failure with O_ACCMODE flag (git-fixes). - PCI: aardvark: Fix reading PCI_EXP_RTSTA_PME bit on emulated bridge (git-fixes). - PCI: aardvark: Fix support for MSI interrupts (git-fixes). - PCI: imx6: Allow to probe when dw_pcie_wait_for_link() fails (git-fixes). - PCI: pciehp: Add Qualcomm quirk for Command Completed erratum (git-fixes). - PCI: pciehp: Clear cmd_busy bit in polling mode (git-fixes). - PM: core: keep irq flags in device_pm_check_callbacks() (git-fixes). - RDMA/core: Set MR type in ib_reg_user_mr (jsc#SLE-8449). - RDMA/mlx5: Add a missing update of cache->last_add (jsc#SLE-15175). - RDMA/mlx5: Do not remove cache MRs when a delay is needed (jsc#SLE-15175). - RDMA/mlx5: Fix the flow of a miss in the allocation of a cache ODP MR (jsc#SLE-15175). - SUNRPC: Ensure we flush any closed sockets before xs_xprt_free() (git-fixes). - SUNRPC: Fix the svc_deferred_event trace class (git-fixes). - SUNRPC: Handle ENOMEM in call_transmit_status() (git-fixes). - SUNRPC: Handle low memory situations in call_status() (git-fixes). - SUNRPC: change locking for xs_swap_enable/disable (bsc#1196367). - USB: serial: pl2303: add IBM device IDs (git-fixes). - USB: serial: simple: add Nokia phone driver (git-fixes). - USB: storage: ums-realtek: fix error code in rts51x_read_mem() (git-fixes). - USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c (git-fixes). - USB: dwc3: omap: fix "unbalanced disables for smps10_out1" on omap5evm (git-fixes). - USB: gadget: uvc: Fix crash when encoding data for usb request (git-fixes). - adm8211: fix error return code in adm8211_probe() (git-fixes). - arm64/sve: Use correct size when reinitialising SVE state (git-fixes) - arm64: clear_page() shouldn't use DC ZVA when DCZID_EL0.DZP == 1 (git-fixes) - arm64: dts: allwinner: h5: NanoPI Neo 2: Fix ethernet node (git-fixes) - arm64: dts: allwinner: orangepi-zero-plus: fix PHY mode (git-fixes) - arm64: dts: exynos: correct GIC CPU interfaces address range on (git-fixes) - arm64: dts: ls1028a: fix memory node (git-fixes) - arm64: dts: ls1028a: fix node name for the sysclk (git-fixes) - arm64: dts: lx2160a: fix scl-gpios property name (git-fixes) - arm64: dts: marvell: armada-37xx: Extend PCIe MEM space (git-fixes) - arm64: dts: marvell: armada-37xx: Fix reg for standard variant of (git-fixes) - arm64: dts: marvell: armada-37xx: Remap IO space to bus address 0x0 (git-fixes) - arm64: dts: rockchip: Fix GPU register width for RK3328 (git-fixes) - arm64: dts: rockchip: remove mmc-hs400-enhanced-strobe from (git-fixes) - arm64: dts: zii-ultra: fix 12V_MAIN voltage (git-fixes) - arm64: head: avoid over-mapping in map_memory (git-fixes) - ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs (git-fixes). - ata: sata_dwc_460ex: Fix crash due to OOB write (git-fixes). - ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern (git-fixes). - ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111 (git-fixes). - ath5k: fix building with LEDS=m (git-fixes). - ath9k: Fix usage of driver-private space in tx_info (git-fixes). - ath9k: Properly clear TX status area before reporting to mac80211 (git-fixes). - ath9k_htc: fix uninit value bugs (git-fixes). - bareudp: use ipv6_mod_enabled to check if IPv6 enabled (jsc#SLE-15172). - bfq: Avoid merging queues with different parents (bsc#1197926). - bfq: Drop pointless unlock-lock pair (bsc#1197926). - bfq: Get rid of __bio_blkcg() usage (bsc#1197926). - bfq: Make sure bfqg for which we are queueing requests is online (bsc#1197926). - bfq: Remove pointless bfq_init_rq() calls (bsc#1197926). - bfq: Split shared queues on move between cgroups (bsc#1197926). - bfq: Track whether bfq_group is still online (bsc#1197926). - bfq: Update cgroup information before merging bio (bsc#1197926). - block: Drop leftover references to RQF_SORTED (bsc#1182073). - bnx2x: fix napi API usage sequence (bsc#1198217). - bpf: Resolve to prog->aux->dst_prog->type only for BPF_PROG_TYPE_EXT (git-fixes bsc#1177028). - brcmfmac: firmware: Allocate space for default boardrev in nvram (git-fixes). - brcmfmac: pcie: Fix crashes due to early IRQs (git-fixes). - brcmfmac: pcie: Release firmwares in the brcmf_pcie_setup error path (git-fixes). - brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio (git-fixes). - carl9170: fix missing bit-wise or operator for tx_params (git-fixes). - cfg80211: hold bss_lock while updating nontrans_list (git-fixes). - cifs: fix bad fids sent over wire (bsc#1197157). - clk: Enforce that disjoints limits are invalid (git-fixes). - clk: si5341: fix reported clk_rate when output divider is 2 (git-fixes). - direct-io: clean up error paths of do_blockdev_direct_IO (bsc#1197656). - direct-io: defer alignment check until after the EOF check (bsc#1197656). - direct-io: do not force writeback for reads beyond EOF (bsc#1197656). - dma-debug: fix return value of __setup handlers (git-fixes). - dma: at_xdmac: fix a missing check on list iterator (git-fixes). - dmaengine: Revert "dmaengine: shdma: Fix runtime PM imbalance on error" (git-fixes). - dmaengine: idxd: add RO check for wq max_batch_size write (git-fixes). - dmaengine: idxd: add RO check for wq max_transfer_size write (git-fixes). - dmaengine: imx-sdma: Fix error checking in sdma_event_remap (git-fixes). - dmaengine: mediatek:Fix PM usage reference leak of mtk_uart_apdma_alloc_chan_resources (git-fixes). - drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj (git-fixes). - drm/amd/display: Fix a NULL pointer dereference in amdgpu_dm_connector_add_common_modes() (git-fixes). - drm/amd/display: Fix allocate_mst_payload assert on resume (git-fixes). - drm/amd/display: do not ignore alpha property on pre-multiplied mode (git-fixes). - drm/amd: Add USBC connector ID (git-fixes). - drm/amdgpu: Fix recursive locking warning (git-fixes). - drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire() (git-fixes). - drm/amdkfd: Check for potential null return of kmalloc_array() (git-fixes). - drm/amdkfd: Fix Incorrect VMIDs passed to HWS (git-fixes). - drm/amdkfd: make CRAT table missing message informational only (git-fixes). - drm/bridge: Add missing pm_runtime_disable() in __dw_mipi_dsi_probe (git-fixes). - drm/bridge: Fix free wrong object in sii8620_init_rcp_input_dev (git-fixes). - drm/bridge: cdns-dsi: Make sure to to create proper aliases for dt (git-fixes). - drm/edid: Do not clear formats if using deep color (git-fixes). - drm/edid: check basic audio support on CEA extension block (git-fixes). - drm/i915/gem: Flush coherency domains on first set-domain-ioctl (git-fixes). - drm/i915: Call i915_globals_exit() if pci_register_device() fails (git-fixes). - drm/imx: Fix memory leak in imx_pd_connector_get_modes (git-fixes). - drm/mediatek: Add AAL output size configuration (git-fixes). - drm/mediatek: Fix aal size config (git-fixes). - drm/msm/dsi: Use connector directly in msm_dsi_manager_connector_init() (git-fixes). - drm/panel/raspberrypi-touchscreen: Avoid NULL deref if not initialised (git-fixes). - drm/panel/raspberrypi-touchscreen: Initialise the bridge in prepare (git-fixes). - drm/tegra: Fix reference leak in tegra_dsi_ganged_probe (git-fixes). - drm/vc4: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync() usage (git-fixes). - drm: Add orientation quirk for GPD Win Max (git-fixes). - drm: add a locked version of drm_is_current_master (bsc#1197914). - drm: add a locked version of drm_is_current_master (bsc#1197914). - drm: drm_file struct kABI compatibility workaround (bsc#1197914). - drm: drm_file struct kABI compatibility workaround (bsc#1197914). - drm: protect drm_master pointers in drm_lease.c (bsc#1197914). - drm: protect drm_master pointers in drm_lease.c (bsc#1197914). - drm: serialize drm_file.master with a new spinlock (bsc#1197914). - drm: serialize drm_file.master with a new spinlock (bsc#1197914). - drm: use the lookup lock in drm_is_current_master (bsc#1197914). - drm: use the lookup lock in drm_is_current_master (bsc#1197914). - e1000e: Fix possible overflow in LTR decoding (git-fixes). - fibmap: Reject negative block numbers (bsc#1198448). - fibmap: Use bmap instead of ->bmap method in ioctl_fibmap (bsc#1198448). - firmware: arm_scmi: Fix sorting of retrieved clock rates (git-fixes). - gpiolib: acpi: use correct format characters (git-fixes). - gpu: ipu-v3: Fix dev_dbg frequency output (git-fixes). - hwrng: cavium - HW_RANDOM_CAVIUM should depend on ARCH_THUNDER (git-fixes). - i2c: dev: Force case user pointers in compat_i2cdev_ioctl() (git-fixes). - ipmi: Fix UAF when uninstall ipmi_si and ipmi_msghandler module (git-fixes). - ipmi: Move remove_work to dedicated workqueue (git-fixes). - ipmi: bail out if init_srcu_struct fails (git-fixes). - iwlwifi: Fix -EIO error code that is never returned (git-fixes). - iwlwifi: mvm: Fix an error code in iwl_mvm_up() (git-fixes). - livepatch: Do not block removal of patches that are safe to unload (bsc#1071995). - lz4: fix LZ4_decompress_safe_partial read out of bound (git-fixes). - media: cx88-mpeg: clear interrupt status register before streaming video (git-fixes). - media: hdpvr: initialize dev->worker at hdpvr_register_videodev (git-fixes). - memory: atmel-ebi: Fix missing of_node_put in atmel_ebi_probe (git-fixes). - mfd: asic3: Add missing iounmap() on error asic3_mfd_probe (git-fixes). - mfd: mc13xxx: Add check for mc13xxx_irq_request (git-fixes). - mmc: host: Return an error when ->enable_sdio_irq() ops is missing (git-fixes). - mmc: mmci: stm32: correctly check all elements of sg list (git-fixes). - mmc: mmci_sdmmc: Replace sg_dma_xxx macros (git-fixes). - mmc: renesas_sdhi: do not overwrite TAP settings when HS400 tuning is complete (git-fixes). - mtd: onenand: Check for error irq (git-fixes). - mtd: rawnand: atmel: fix refcount issue in atmel_nand_controller_init (git-fixes). - mtd: rawnand: gpmi: fix controller timings setting (git-fixes). - mwl8k: Fix a double Free in mwl8k_probe_hw (git-fixes). - net: asix: add proper error handling of usb read errors (git-fixes). - net: mcs7830: handle usb read errors properly (git-fixes). - net: usb: aqc111: Fix out-of-bounds accesses in RX fixup (git-fixes). - nfc: nci: add flush_workqueue to prevent uaf (git-fixes). - power: reset: gemini-poweroff: Fix IRQ check in gemini_poweroff_probe (git-fixes). - power: supply: ab8500: Fix memory leak in ab8500_fg_sysfs_init (git-fixes). - power: supply: axp20x_battery: properly report current when discharging (git-fixes). - power: supply: axp288-charger: Set Vhold to 4.4V (git-fixes). - power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong false return (git-fixes). - power: supply: wm8350-power: Add missing free in free_charger_irq (git-fixes). - power: supply: wm8350-power: Handle error for wm8350_register_irq (git-fixes). - powerpc/perf: Fix power10 event alternatives (jsc#SLE-13513 git-fixes). - powerpc/perf: Fix power9 event alternatives (bsc#1137728, LTC#178106, git-fixes). - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE (bsc#1198413). - random: check for signal_pending() outside of need_resched() check (git-fixes). - ray_cs: Check ioremap return value (git-fixes). - regulator: wm8994: Add an off-on delay for WM8994 variant (git-fixes). - rtc: check if __rtc_read_time was successful (git-fixes). - rtc: wm8350: Handle error for wm8350_register_irq (git-fixes). - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands (git-fixes). - scsi: mpt3sas: Fix use after free in _scsih_expander_node_remove() (git-fixes). - scsi: mpt3sas: Page fault in reply q processing (git-fixes). - scsi: scsi_dh_alua: Avoid crash during alua_bus_detach() (bsc#1028340 bsc#1198825). - spi: Fix erroneous sgs value with min_t() (git-fixes). - spi: Fix invalid sgs value (git-fixes). - spi: atmel-quadspi: Fix the buswidth adjustment between spi-mem and controller (git-fixes). - spi: bcm-qspi: fix MSPI only access with bcm_qspi_exec_mem_op() (git-fixes). - spi: mxic: Fix the transmit path (git-fixes). - spi: tegra20: Use of_device_get_match_data() (git-fixes). - staging: mt7621-dts: fix LEDs and pinctrl on GB-PC1 devicetree (git-fixes). - vgacon: Propagate console boot parameters before calling `vc_resize' (bsc#1152489) - video: fbdev: atari: Atari 2 bpp (STe) palette bugfix (git-fixes). - video: fbdev: cirrusfb: check pixclock to avoid divide by zero (git-fixes). - video: fbdev: nvidiafb: Use strscpy() to prevent buffer overflow (git-fixes). - video: fbdev: sm712fb: Fix crash in smtcfb_read() (git-fixes). - video: fbdev: sm712fb: Fix crash in smtcfb_write() (git-fixes). - video: fbdev: udlfb: properly check endpoint type (bsc#1152489) - video: fbdev: w100fb: Reset global state (git-fixes). - virtio_console: break out of buf poll on remove (git-fixes). - virtio_console: eliminate anonymous module_init & module_exit (git-fixes). - w1: w1_therm: fixes w1_seq for ds28ea00 sensors (git-fixes). - x86/pm: Save the MSR validity status at context setup (bsc#1198400). - x86/sev: Unroll string mmio with CC_ATTR_GUEST_UNROLL_STRING_IO (git-fixes). - x86/speculation: Restore speculation related MSRs during S3 resume (bsc#1198400). - xen/blkfront: fix comment for need_copy (git-fixes). - xen/x86: obtain full video frame buffer address for Dom0 also under EFI (bsc#1193556). - xen/x86: obtain upper 32 bits of video frame buffer address for Dom0 (bsc#1193556). - xen: fix is_xen_pmu() (git-fixes). - xhci: fix runtime PM imbalance in USB2 resume (git-fixes). - xhci: fix uninitialized string returned by xhci_decode_ctrl_ctx() (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.56.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.56.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.56.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.56.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.56.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.56.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.56.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.56.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.56.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.56.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.56.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.56.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.56.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.56.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.56.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.56.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.56.1.x86_64.rpm True openSUSE-SLE-15.3-2022-1566 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: - Remove remaining use of gold linker when bootstrapping with gccgo. * History: go1.8.3 2017-06-18 added conditional if gccgo defined BuildRequires: binutils-gold for arches other than s390x * No information available why binutils-gold was used initially * Unrelated to upstream recent hardcoded gold dependency for ARM go1.17-1.17.9-150000.1.31.1.i586.rpm go1.17-1.17.9-150000.1.31.1.src.rpm go1.17-doc-1.17.9-150000.1.31.1.i586.rpm go1.17-1.17.9-150000.1.31.1.x86_64.rpm go1.17-doc-1.17.9-150000.1.31.1.x86_64.rpm go1.17-race-1.17.9-150000.1.31.1.x86_64.rpm go1.17-1.17.9-150000.1.31.1.s390x.rpm go1.17-doc-1.17.9-150000.1.31.1.s390x.rpm go1.17-1.17.9-150000.1.31.1.ppc64le.rpm go1.17-doc-1.17.9-150000.1.31.1.ppc64le.rpm go1.17-1.17.9-150000.1.31.1.aarch64.rpm go1.17-doc-1.17.9-150000.1.31.1.aarch64.rpm go1.17-race-1.17.9-150000.1.31.1.aarch64.rpm openSUSE-SLE-15.3-2022-1551 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.18 fixes the following issues: - Remove remaining use of gold linker when bootstrapping with gccgo. * History: go1.8.3 2017-06-18 added conditional if gccgo defined BuildRequires: binutils-gold for arches other than s390x * No information available why binutils-gold was used initially * Unrelated to upstream recent hardcoded gold dependency for ARM go1.18-1.18.1-150000.1.14.1.src.rpm go1.18-1.18.1-150000.1.14.1.x86_64.rpm go1.18-doc-1.18.1-150000.1.14.1.x86_64.rpm go1.18-race-1.18.1-150000.1.14.1.x86_64.rpm go1.18-1.18.1-150000.1.14.1.s390x.rpm go1.18-doc-1.18.1-150000.1.14.1.s390x.rpm go1.18-1.18.1-150000.1.14.1.ppc64le.rpm go1.18-doc-1.18.1-150000.1.14.1.ppc64le.rpm go1.18-1.18.1-150000.1.14.1.aarch64.rpm go1.18-doc-1.18.1-150000.1.14.1.aarch64.rpm go1.18-race-1.18.1-150000.1.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-1687 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-29156: Fixed a double free related to rtrs_clt_dev_release (bnc#1198515). - CVE-2022-28893: Ensuring that sockets are in the intended state inside the SUNRPC subsystem (bnc#1198330). - CVE-2022-28748: Fixed memory lead over the network by ax88179_178a devices (bsc#1196018). - CVE-2022-28356: Fixed a refcount leak bug found in net/llc/af_llc.c (bnc#1197391). - CVE-2022-1516: Fixed null-ptr-deref caused by x25_disconnect (bsc#1199012). - CVE-2022-1419: Fixed a concurrency use-after-free in vgem_gem_dumb_create (bsc#1198742). - CVE-2022-1353: Fixed access controll to kernel memory in the pfkey_register function in net/key/af_key.c (bnc#1198516). - CVE-2022-1280: Fixed a use-after-free vulnerability in drm_lease_held in drivers/gpu/drm/drm_lease.c (bnc#1197914). - CVE-2022-1158: Fixed KVM x86/mmu compare-and-exchange of gPTE via the user address (bsc#1197660). - CVE-2022-0812: Fixed random memory leakage inside NFS/RDMA (bsc#1196639). - CVE-2021-4154: Fixed a use-after-free flaw inside cgroup1_parse_param in kernel/cgroup/cgroup-v1.c. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading to a container breakout and a denial of service on the system (bnc#1193842). - CVE-2021-38208: Fixed a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call (bnc#1187055). - CVE-2021-20321: Fixed a race condition accessing file object in the OverlayFS subsystem in the way users do rename in specific way with OverlayFS. A local user could have used this flaw to crash the system (bnc#1191647). - CVE-2021-20292: Fixed object validation prior to performing operations on the object in nouveau_sgdma_create_ttm in Nouveau DRM subsystem (bnc#1183723). - CVE-2021-0707: Fixed possible memory corruption due to a use after free inside dma_buf_releas e of dma-buf.c (bnc#1198437). - CVE-2020-27835: Fixed use after free in infiniband hfi1 driver in the way user calls Ioctl after open dev file and fork. A local user could use this flaw to crash the system (bnc#1179878). The following non-security bugs were fixed: - ACPI: processor idle: Check for architectural support for LPI (git-fixes). - ACPI/APEI: Limit printable size of BERT table data (git-fixes). - ACPICA: Avoid walking the ACPI Namespace if it is not there (git-fixes). - adm8211: fix error return code in adm8211_probe() (git-fixes). - ALSA: cs4236: fix an incorrect NULL check on list iterator (git-fixes). - ALSA: hda/hdmi: fix warning about PCM count when used with SOF (git-fixes). - ALSA: hda/realtek: Add alc256-samsung-headphone fixup (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD50PNT (git-fixes). - ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020 (git-fixes). - ALSA: pcm: Test for "silence" field in struct "pcm_format_data" (git-fixes). - ALSA: usb-audio: Cap upper limits of buffer/period bytes for implicit fb (git-fixes). - ALSA: usb-audio: Increase max buffer size (git-fixes). - ALSA: usb-audio: Limit max buffer and period sizes per time (git-fixes). - arm64: clear_page() shouldn't use DC ZVA when DCZID_EL0.DZP == 1 (git-fixes) - arm64: dts: allwinner: h5: NanoPI Neo 2: Fix ethernet node (git-fixes) - arm64: dts: allwinner: orangepi-zero-plus: fix PHY mode (git-fixes) - arm64: dts: exynos: correct GIC CPU interfaces address range on (git-fixes) - arm64: dts: ls1028a: fix memory node (git-fixes) - arm64: dts: ls1028a: fix node name for the sysclk (git-fixes) - arm64: dts: lx2160a: fix scl-gpios property name (git-fixes) - arm64: dts: marvell: armada-37xx: Extend PCIe MEM space (git-fixes) - arm64: dts: marvell: armada-37xx: Fix reg for standard variant of (git-fixes) - arm64: dts: marvell: armada-37xx: Remap IO space to bus address 0x0 (git-fixes) - arm64: dts: rockchip: Fix GPU register width for RK3328 (git-fixes) - arm64: dts: rockchip: remove mmc-hs400-enhanced-strobe from (git-fixes) - arm64: dts: zii-ultra: fix 12V_MAIN voltage (git-fixes) - arm64: head: avoid over-mapping in map_memory (git-fixes) - arm64: Update config files; arm LIBNVDIMM y->m ppc64le ND_BLK ->m (bsc#1199024). - arm64/sve: Use correct size when reinitialising SVE state (git-fixes) - ASoC: atmel: Remove system clock tree configuration for at91sam9g20ek (git-fixes). - ASoC: codecs: wcd934x: do not switch off SIDO Buck when codec is in use (git-fixes). - ASoC: mediatek: mt6358: add missing EXPORT_SYMBOLs (git-fixes). - ASoC: msm8916-wcd-digital: Check failure for devm_snd_soc_register_component (git-fixes). - ASoC: soc-compress: Change the check for codec_dai (git-fixes). - ASoC: soc-compress: prevent the potentially use of null pointer (git-fixes). - ASoC: soc-core: skip zero num_dai component in searching dai name (git-fixes). - ASoC: soc-dapm: fix two incorrect uses of list iterator (git-fixes). - ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs (git-fixes). - ata: sata_dwc_460ex: Fix crash due to OOB write (git-fixes). - ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern (git-fixes). - ath5k: fix building with LEDS=m (git-fixes). - ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111 (git-fixes). - ath9k_htc: fix uninit value bugs (git-fixes). - ath9k: Fix usage of driver-private space in tx_info (git-fixes). - ath9k: Properly clear TX status area before reporting to mac80211 (git-fixes). - backlight: qcom-wled: Respect enabled-strings in set_brightness (bsc#1152489) - bareudp: use ipv6_mod_enabled to check if IPv6 enabled (jsc#SLE-15172). - bfq: Avoid merging queues with different parents (bsc#1197926). - bfq: Drop pointless unlock-lock pair (bsc#1197926). - bfq: Get rid of __bio_blkcg() usage (bsc#1197926). - bfq: Make sure bfqg for which we are queueing requests is online (bsc#1197926). - bfq: Remove pointless bfq_init_rq() calls (bsc#1197926). - bfq: Split shared queues on move between cgroups (bsc#1197926). - bfq: Track whether bfq_group is still online (bsc#1197926). - bfq: Update cgroup information before merging bio (bsc#1197926). - block: Drop leftover references to RQF_SORTED (bsc#1182073). - Bluetooth: btmtksdio: Fix kernel oops in btmtksdio_interrupt (git-fixes). - Bluetooth: Fix use after free in hci_send_acl (git-fixes). - Bluetooth: hci_serdev: call init_rwsem() before p->open() (git-fixes). - bnx2x: fix napi API usage sequence (bsc#1198217). - bpf: Resolve to prog->aux->dst_prog->type only for BPF_PROG_TYPE_EXT (git-fixes bsc#1177028). - brcmfmac: firmware: Allocate space for default boardrev in nvram (git-fixes). - brcmfmac: pcie: Fix crashes due to early IRQs (git-fixes). - brcmfmac: pcie: Release firmwares in the brcmf_pcie_setup error path (git-fixes). - brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio (git-fixes). - carl9170: fix missing bit-wise or operator for tx_params (git-fixes). - cfg80211: hold bss_lock while updating nontrans_list (git-fixes). - cifs: do not skip link targets when an I/O fails (bsc#1194625). - cifs: fix bad fids sent over wire (bsc#1197157). - clk: Enforce that disjoints limits are invalid (git-fixes). - clk: si5341: fix reported clk_rate when output divider is 2 (git-fixes). - direct-io: clean up error paths of do_blockdev_direct_IO (bsc#1197656). - direct-io: defer alignment check until after the EOF check (bsc#1197656). - direct-io: do not force writeback for reads beyond EOF (bsc#1197656). - dma-debug: fix return value of __setup handlers (git-fixes). - dma: at_xdmac: fix a missing check on list iterator (git-fixes). - dmaengine: idxd: add RO check for wq max_batch_size write (git-fixes). - dmaengine: idxd: add RO check for wq max_transfer_size write (git-fixes). - dmaengine: imx-sdma: Fix error checking in sdma_event_remap (git-fixes). - dmaengine: mediatek:Fix PM usage reference leak of mtk_uart_apdma_alloc_chan_resources (git-fixes). - dmaengine: Revert "dmaengine: shdma: Fix runtime PM imbalance on error" (git-fixes). - Documentation: add link to stable release candidate tree (git-fixes). - drm: add a locked version of drm_is_current_master (bsc#1197914). - drm: Add orientation quirk for GPD Win Max (git-fixes). - drm: drm_file struct kABI compatibility workaround (bsc#1197914). - drm: protect drm_master pointers in drm_lease.c (bsc#1197914). - drm: serialize drm_file.master with a new spinlock (bsc#1197914). - drm: use the lookup lock in drm_is_current_master (bsc#1197914). - drm/amd: Add USBC connector ID (git-fixes). - drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj (git-fixes). - drm/amd/display: do not ignore alpha property on pre-multiplied mode (git-fixes). - drm/amd/display: Fix a NULL pointer dereference in amdgpu_dm_connector_add_common_modes() (git-fixes). - drm/amd/display: Fix allocate_mst_payload assert on resume (git-fixes). - drm/amd/display: Fix memory leak in dcn21_clock_source_create (bsc#1152472) - drm/amdgpu: fix amdgpu_ras_block_late_init error handler (bsc#1152489) - drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire() (git-fixes). - drm/amdgpu: Fix recursive locking warning (git-fixes). - drm/amdkfd: Check for potential null return of kmalloc_array() (git-fixes). - drm/amdkfd: Fix Incorrect VMIDs passed to HWS (git-fixes). - drm/amdkfd: make CRAT table missing message informational only (git-fixes). - drm/bridge: Add missing pm_runtime_disable() in __dw_mipi_dsi_probe (git-fixes). - drm/bridge: cdns-dsi: Make sure to to create proper aliases for dt (git-fixes). - drm/bridge: Fix free wrong object in sii8620_init_rcp_input_dev (git-fixes). - drm/cma-helper: Set VM_DONTEXPAND for mmap (bsc#1152472) - drm/edid: check basic audio support on CEA extension block (git-fixes). - drm/edid: Do not clear formats if using deep color (git-fixes). - drm/fb-helper: Mark screen buffers in system memory with (bsc#1152472) - drm/i915: Call i915_globals_exit() if pci_register_device() fails (git-fixes). - drm/i915: Drop all references to DRM IRQ midlayer (bsc#1152489) - drm/i915: Keep gem ctx->vm alive until the final put (bsc#1152489) - drm/i915: s/JSP2/ICP2/ PCH (bsc#1152489) - drm/i915/gem: Flush coherency domains on first set-domain-ioctl (git-fixes). - drm/imx: Fix memory leak in imx_pd_connector_get_modes (git-fixes). - drm/mediatek: Add AAL output size configuration (git-fixes). - drm/mediatek: Fix aal size config (git-fixes). - drm/msm/dsi: Use connector directly in msm_dsi_manager_connector_init() (git-fixes). - drm/panel/raspberrypi-touchscreen: Avoid NULL deref if not initialised (git-fixes). - drm/panel/raspberrypi-touchscreen: Initialise the bridge in prepare (git-fixes). - drm/prime: Fix use after free in mmap with drm_gem_ttm_mmap (bsc#1152472) - drm/tegra: Fix reference leak in tegra_dsi_ganged_probe (git-fixes). - drm/vc4: crtc: Lookup the encoder from the register at boot (bsc#1198534) - drm/vc4: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync() usage (git-fixes). - drm/vmwgfx: Remove unused compile options (bsc#1152472) - e1000e: Fix possible overflow in LTR decoding (git-fixes). - fibmap: Reject negative block numbers (bsc#1198448). - fibmap: Use bmap instead of ->bmap method in ioctl_fibmap (bsc#1198448). - firmware: arm_scmi: Fix sorting of retrieved clock rates (git-fixes). - gpiolib: acpi: use correct format characters (git-fixes). - gpu: ipu-v3: Fix dev_dbg frequency output (git-fixes). - HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports (git-fixes). - hwrng: cavium - HW_RANDOM_CAVIUM should depend on ARCH_THUNDER (git-fixes). - i2c: dev: Force case user pointers in compat_i2cdev_ioctl() (git-fixes). - IB/hfi1: Allow larger MTU without AIP (jsc#SLE-13208). - Input: omap4-keypad - fix pm_runtime_get_sync() error checking (git-fixes). - ipmi: bail out if init_srcu_struct fails (git-fixes). - ipmi: Fix UAF when uninstall ipmi_si and ipmi_msghandler module (git-fixes). - ipmi: Move remove_work to dedicated workqueue (git-fixes). - iwlwifi: Fix -EIO error code that is never returned (git-fixes). - iwlwifi: mvm: Fix an error code in iwl_mvm_up() (git-fixes). - KEYS: fix length validation in keyctl_pkey_params_get_2() (git-fixes). - livepatch: Do not block removal of patches that are safe to unload (bsc#1071995). - lz4: fix LZ4_decompress_safe_partial read out of bound (git-fixes). - media: cx88-mpeg: clear interrupt status register before streaming video (git-fixes). - media: hdpvr: initialize dev->worker at hdpvr_register_videodev (git-fixes). - memory: atmel-ebi: Fix missing of_node_put in atmel_ebi_probe (git-fixes). - mfd: asic3: Add missing iounmap() on error asic3_mfd_probe (git-fixes). - mfd: mc13xxx: Add check for mc13xxx_irq_request (git-fixes). - mmc: host: Return an error when ->enable_sdio_irq() ops is missing (git-fixes). - mmc: mmci_sdmmc: Replace sg_dma_xxx macros (git-fixes). - mmc: mmci: stm32: correctly check all elements of sg list (git-fixes). - mmc: renesas_sdhi: do not overwrite TAP settings when HS400 tuning is complete (git-fixes). - mtd: onenand: Check for error irq (git-fixes). - mtd: rawnand: atmel: fix refcount issue in atmel_nand_controller_init (git-fixes). - mtd: rawnand: gpmi: fix controller timings setting (git-fixes). - mwl8k: Fix a double Free in mwl8k_probe_hw (git-fixes). - net: asix: add proper error handling of usb read errors (git-fixes). - net: mana: Add counter for packet dropped by XDP (bsc#1195651). - net: mana: Add counter for XDP_TX (bsc#1195651). - net: mana: Add handling of CQE_RX_TRUNCATED (bsc#1195651). - net: mana: Remove unnecessary check of cqe_type in mana_process_rx_cqe() (bsc#1195651). - net: mana: Reuse XDP dropped page (bsc#1195651). - net: mana: Use struct_size() helper in mana_gd_create_dma_region() (bsc#1195651). - net: mcs7830: handle usb read errors properly (git-fixes). - net: usb: aqc111: Fix out-of-bounds accesses in RX fixup (git-fixes). - nfc: nci: add flush_workqueue to prevent uaf (git-fixes). - NFSv4: fix open failure with O_ACCMODE flag (git-fixes). - PCI: aardvark: Fix reading PCI_EXP_RTSTA_PME bit on emulated bridge (git-fixes). - PCI: aardvark: Fix support for MSI interrupts (git-fixes). - PCI: imx6: Allow to probe when dw_pcie_wait_for_link() fails (git-fixes). - PCI: pciehp: Add Qualcomm quirk for Command Completed erratum (git-fixes). - PCI: pciehp: Clear cmd_busy bit in polling mode (git-fixes). - PM: core: keep irq flags in device_pm_check_callbacks() (git-fixes). - power: reset: gemini-poweroff: Fix IRQ check in gemini_poweroff_probe (git-fixes). - power: supply: ab8500: Fix memory leak in ab8500_fg_sysfs_init (git-fixes). - power: supply: axp20x_battery: properly report current when discharging (git-fixes). - power: supply: axp288-charger: Set Vhold to 4.4V (git-fixes). - power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong false return (git-fixes). - power: supply: wm8350-power: Add missing free in free_charger_irq (git-fixes). - power: supply: wm8350-power: Handle error for wm8350_register_irq (git-fixes). - powerpc/perf: Expose Performance Monitor Counter SPR's as part of extended regs (bsc#1198077 ltc#197299). - powerpc/perf: Fix power10 event alternatives (jsc#SLE-13513 git-fixes). - powerpc/perf: Fix power9 event alternatives (bsc#1137728, LTC#178106, git-fixes). - powerpc/perf: Include PMCs as part of per-cpu cpuhw_events struct (bsc#1198077 ltc#197299). - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE (bsc#1198413). - random: check for signal_pending() outside of need_resched() check (git-fixes). - ray_cs: Check ioremap return value (git-fixes). - RDMA/core: Set MR type in ib_reg_user_mr (jsc#SLE-8449). - RDMA/mlx5: Add a missing update of cache->last_add (jsc#SLE-15175). - RDMA/mlx5: Do not remove cache MRs when a delay is needed (jsc#SLE-15175). - RDMA/mlx5: Fix the flow of a miss in the allocation of a cache ODP MR (jsc#SLE-15175). - regulator: wm8994: Add an off-on delay for WM8994 variant (git-fixes). - rpm: Run external scriptlets on uninstall only when available (bsc#1196514 bsc#1196114 bsc#1196942). - rpm: Use bash for %() expansion (jsc#SLE-18234). - rpm/*.spec.in: remove backtick usage - rpm/constraints.in: skip SLOW_DISK workers for kernel-source - rpm/kernel-obs-build.spec.in: use default dracut modules (bsc#1195926, bsc#1198484) - rtc: check if __rtc_read_time was successful (git-fixes). - rtc: wm8350: Handle error for wm8350_register_irq (git-fixes). - s390/tape: fix timer initialization in tape_std_assign() (bsc#1197677 LTC#197378). - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands (git-fixes). - scsi: mpt3sas: Fix use after free in _scsih_expander_node_remove() (git-fixes). - scsi: mpt3sas: Page fault in reply q processing (git-fixes). - scsi: scsi_dh_alua: Avoid crash during alua_bus_detach() (bsc#1028340 bsc#1198825). - spi: atmel-quadspi: Fix the buswidth adjustment between spi-mem and controller (git-fixes). - spi: bcm-qspi: fix MSPI only access with bcm_qspi_exec_mem_op() (git-fixes). - spi: Fix erroneous sgs value with min_t() (git-fixes). - spi: Fix invalid sgs value (git-fixes). - spi: mxic: Fix the transmit path (git-fixes). - spi: tegra20: Use of_device_get_match_data() (git-fixes). - staging: mt7621-dts: fix LEDs and pinctrl on GB-PC1 devicetree (git-fixes). - SUNRPC: change locking for xs_swap_enable/disable (bsc#1196367). - SUNRPC: Ensure we flush any closed sockets before xs_xprt_free() (git-fixes). - SUNRPC: Fix the svc_deferred_event trace class (git-fixes). - SUNRPC: Handle ENOMEM in call_transmit_status() (git-fixes). - SUNRPC: Handle low memory situations in call_status() (git-fixes). - USB: dwc3: core: Fix tx/rx threshold settings (git-fixes). - USB: dwc3: core: Only handle soft-reset in DCTL (git-fixes). - USB: dwc3: gadget: Return proper request status (git-fixes). - USB: dwc3: omap: fix "unbalanced disables for smps10_out1" on omap5evm (git-fixes). - USB: gadget: uvc: Fix crash when encoding data for usb request (git-fixes). - USB: hcd-pci: Use PCI_STD_NUM_BARS when checking standard BARs (bsc#1152489) - USB: serial: pl2303: add IBM device IDs (git-fixes). - USB: serial: simple: add Nokia phone driver (git-fixes). - USB: storage: ums-realtek: fix error code in rts51x_read_mem() (git-fixes). - USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c (git-fixes). - vgacon: Propagate console boot parameters before calling `vc_resize' (bsc#1152489) - video: fbdev: atari: Atari 2 bpp (STe) palette bugfix (git-fixes). - video: fbdev: cirrusfb: check pixclock to avoid divide by zero (git-fixes). - video: fbdev: nvidiafb: Use strscpy() to prevent buffer overflow (git-fixes). - video: fbdev: sm712fb: Fix crash in smtcfb_read() (git-fixes). - video: fbdev: sm712fb: Fix crash in smtcfb_write() (git-fixes). - video: fbdev: udlfb: properly check endpoint type (bsc#1152489) - video: fbdev: w100fb: Reset global state (git-fixes). - virtio_console: break out of buf poll on remove (git-fixes). - virtio_console: eliminate anonymous module_init & module_exit (git-fixes). - w1: w1_therm: fixes w1_seq for ds28ea00 sensors (git-fixes). - x86/pm: Save the MSR validity status at context setup (bsc#1198400). - x86/sev: Unroll string mmio with CC_ATTR_GUEST_UNROLL_STRING_IO (git-fixes). - x86/speculation: Restore speculation related MSRs during S3 resume (bsc#1198400). - xen: fix is_xen_pmu() (git-fixes). - xen/blkfront: fix comment for need_copy (git-fixes). - xen/x86: obtain full video frame buffer address for Dom0 also under EFI (bsc#1193556). - xen/x86: obtain upper 32 bits of video frame buffer address for Dom0 (bsc#1193556). - xhci: fix runtime PM imbalance in USB2 resume (git-fixes). - xhci: fix uninitialized string returned by xhci_decode_ctrl_ctx() (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.68.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.68.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.68.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.68.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.68.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.68.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.68.1.x86_64.rpm True kernel-default-5.3.18-150300.59.68.1.nosrc.rpm True kernel-default-5.3.18-150300.59.68.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.68.1.150300.18.41.3.src.rpm True kernel-default-base-5.3.18-150300.59.68.1.150300.18.41.3.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.68.1.150300.18.41.3.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.68.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.68.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.68.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.68.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.68.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.68.1.noarch.rpm True kernel-docs-5.3.18-150300.59.68.1.noarch.rpm True kernel-docs-5.3.18-150300.59.68.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.68.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.68.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.68.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.68.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.68.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.68.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.68.1.src.rpm True kernel-obs-build-5.3.18-150300.59.68.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.68.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.68.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.68.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.68.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.68.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.68.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.68.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.68.1.x86_64.rpm True kernel-source-5.3.18-150300.59.68.1.noarch.rpm True kernel-source-5.3.18-150300.59.68.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.68.1.noarch.rpm True kernel-syms-5.3.18-150300.59.68.1.src.rpm True kernel-syms-5.3.18-150300.59.68.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.68.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.68.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.68.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.68.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.68.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.68.1.s390x.rpm True kernel-default-5.3.18-150300.59.68.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.68.1.150300.18.41.3.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.68.1.150300.18.41.3.s390x.rpm True kernel-default-devel-5.3.18-150300.59.68.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.68.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.68.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.68.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.68.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.68.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.68.1.s390x.rpm True kernel-syms-5.3.18-150300.59.68.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.68.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.68.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.68.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.68.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.68.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.68.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.68.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.68.1.150300.18.41.3.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.68.1.150300.18.41.3.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.68.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.68.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.68.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.68.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.68.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.68.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.68.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.68.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.68.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.68.1.src.rpm True dtb-al-5.3.18-150300.59.68.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.68.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.68.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.68.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.68.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.68.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.68.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.68.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.68.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.68.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.68.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.68.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.68.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.68.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.68.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.68.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.68.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.68.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.68.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.68.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.68.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.68.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.68.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.68.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.68.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.68.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.68.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.68.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.68.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.68.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.68.1.aarch64.rpm True kernel-default-5.3.18-150300.59.68.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.68.1.150300.18.41.3.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.68.1.150300.18.41.3.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.68.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.68.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.68.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.68.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.68.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.68.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.68.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.68.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.68.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.68.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.68.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.68.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.68.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.68.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.68.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.68.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.68.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.68.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.68.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2019 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc11 fixes the following issues: Update to the GCC 11.3.0 release. * includes SLS hardening backport on x86_64. [bsc#1195283] * includes change to adjust gnats idea of the target, fixing the build of gprbuild. [bsc#1196861] * fixed miscompile of embedded premake in 0ad on i586. [bsc#1197065] * use --with-cpu rather than specifying --with-arch/--with-tune * Fix D memory corruption in -M output. * Fix ICE in is_this_parameter with coroutines. [bsc#1193659] * fixes issue with debug dumping together with -o /dev/null * fixes libgccjit issue showing up in emacs build [bsc#1192951] * Package mwaitintrin.h cpp11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-aarch64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-nvptx-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-nvptx-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-nvptx-newlib11-devel-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-ppc64le-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-s390x-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-11.3.0+git1637-150000.1.9.1.src.rpm gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-PIE-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-ada-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-ada-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-c++-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-c++-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-d-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-d-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-fortran-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-fortran-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-go-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-go-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-info-11.3.0+git1637-150000.1.9.1.noarch.rpm gcc11-locale-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-obj-c++-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-objc-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-objc-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-testresults-11.3.0+git1637-150000.1.9.1.src.rpm gcc11-testresults-11.3.0+git1637-150000.1.9.1.x86_64.rpm libada11-11.3.0+git1637-150000.1.9.1.x86_64.rpm libada11-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libasan6-11.3.0+git1637-150000.1.9.1.x86_64.rpm libasan6-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libatomic1-11.3.0+git1637-150000.1.9.1.x86_64.rpm libatomic1-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgcc_s1-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgcc_s1-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgdruntime2-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgdruntime2-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgfortran5-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgfortran5-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgo19-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgo19-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgomp1-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgomp1-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgphobos2-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgphobos2-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libitm1-11.3.0+git1637-150000.1.9.1.x86_64.rpm libitm1-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm liblsan0-11.3.0+git1637-150000.1.9.1.x86_64.rpm libobjc4-11.3.0+git1637-150000.1.9.1.x86_64.rpm libobjc4-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libquadmath0-11.3.0+git1637-150000.1.9.1.x86_64.rpm libquadmath0-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-devel-gcc11-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-locale-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-pp-gcc11-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libtsan0-11.3.0+git1637-150000.1.9.1.x86_64.rpm libubsan1-11.3.0+git1637-150000.1.9.1.x86_64.rpm libubsan1-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm cpp11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-aarch64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-ppc64le-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-x86_64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-PIE-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-ada-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-ada-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-c++-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-c++-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-d-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-d-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-fortran-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-fortran-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-go-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-go-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-locale-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-obj-c++-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-objc-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-objc-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-testresults-11.3.0+git1637-150000.1.9.1.s390x.rpm libada11-11.3.0+git1637-150000.1.9.1.s390x.rpm libada11-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libasan6-11.3.0+git1637-150000.1.9.1.s390x.rpm libasan6-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libatomic1-11.3.0+git1637-150000.1.9.1.s390x.rpm libatomic1-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgcc_s1-11.3.0+git1637-150000.1.9.1.s390x.rpm libgcc_s1-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgdruntime2-11.3.0+git1637-150000.1.9.1.s390x.rpm libgdruntime2-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgfortran5-11.3.0+git1637-150000.1.9.1.s390x.rpm libgfortran5-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgo19-11.3.0+git1637-150000.1.9.1.s390x.rpm libgo19-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgomp1-11.3.0+git1637-150000.1.9.1.s390x.rpm libgomp1-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgphobos2-11.3.0+git1637-150000.1.9.1.s390x.rpm libgphobos2-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libitm1-11.3.0+git1637-150000.1.9.1.s390x.rpm libitm1-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libobjc4-11.3.0+git1637-150000.1.9.1.s390x.rpm libobjc4-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-devel-gcc11-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-locale-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-pp-gcc11-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libubsan1-11.3.0+git1637-150000.1.9.1.s390x.rpm libubsan1-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm cpp11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-aarch64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-s390x-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-x86_64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-PIE-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-ada-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-c++-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-fortran-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-go-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-locale-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-objc-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-testresults-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libada11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libasan6-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libatomic1-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libgcc_s1-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libgfortran5-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libgo19-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libgomp1-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libitm1-11.3.0+git1637-150000.1.9.1.ppc64le.rpm liblsan0-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libobjc4-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libquadmath0-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libstdc++6-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libstdc++6-locale-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libtsan0-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libubsan1-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cpp11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-ppc64le-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-s390x-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-x86_64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-PIE-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-ada-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-c++-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-d-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-fortran-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-go-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-locale-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-objc-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-testresults-11.3.0+git1637-150000.1.9.1.aarch64.rpm libada11-11.3.0+git1637-150000.1.9.1.aarch64.rpm libasan6-11.3.0+git1637-150000.1.9.1.aarch64.rpm libatomic1-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgcc_s1-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgdruntime2-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgfortran5-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgo19-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgomp1-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgphobos2-11.3.0+git1637-150000.1.9.1.aarch64.rpm libhwasan0-11.3.0+git1637-150000.1.9.1.aarch64.rpm libitm1-11.3.0+git1637-150000.1.9.1.aarch64.rpm liblsan0-11.3.0+git1637-150000.1.9.1.aarch64.rpm libobjc4-11.3.0+git1637-150000.1.9.1.aarch64.rpm libstdc++6-11.3.0+git1637-150000.1.9.1.aarch64.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm libstdc++6-locale-11.3.0+git1637-150000.1.9.1.aarch64.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm libtsan0-11.3.0+git1637-150000.1.9.1.aarch64.rpm libubsan1-11.3.0+git1637-150000.1.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-1866 moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - Remove build directory during '%clean'. (bsc#1196733) - ses7: mgr/cephadm: try to get FQDN for configuration files - cephadm: infer the default container image during pull - ses7: Notify user that there is a SES7.1 upgrade available - mgr/cephadm: Try to get FQDN for configuration files. (bsc#1196046) - cephadm: Fix iscsi client caps to allow 'mgr service status' calls. (bsc#1192838) - When an RBD is mapped, it is attempted to be deployed as an OSD. (bsc#1187748) - OSD marked down causes wrong backfill_toofull. (bsc#1188911) ceph-15.2.16.99+g96ce9b152f5-150200.3.37.1.src.rpm ceph-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm ceph-base-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm ceph-common-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm ceph-fuse-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm ceph-grafana-dashboards-15.2.16.99+g96ce9b152f5-150200.3.37.1.noarch.rpm ceph-immutable-object-cache-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm ceph-mds-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm ceph-mgr-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm ceph-mgr-cephadm-15.2.16.99+g96ce9b152f5-150200.3.37.1.noarch.rpm ceph-mgr-dashboard-15.2.16.99+g96ce9b152f5-150200.3.37.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.16.99+g96ce9b152f5-150200.3.37.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.16.99+g96ce9b152f5-150200.3.37.1.noarch.rpm ceph-mgr-k8sevents-15.2.16.99+g96ce9b152f5-150200.3.37.1.noarch.rpm ceph-mgr-modules-core-15.2.16.99+g96ce9b152f5-150200.3.37.1.noarch.rpm ceph-mgr-rook-15.2.16.99+g96ce9b152f5-150200.3.37.1.noarch.rpm ceph-mon-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm ceph-osd-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm ceph-prometheus-alerts-15.2.16.99+g96ce9b152f5-150200.3.37.1.noarch.rpm ceph-radosgw-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm ceph-test-15.2.16.99+g96ce9b152f5-150200.3.37.1.src.rpm ceph-test-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm cephadm-15.2.16.99+g96ce9b152f5-150200.3.37.1.noarch.rpm cephfs-shell-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm libcephfs-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm libcephfs2-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm librados-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm librados2-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm libradospp-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm librbd-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm librbd1-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm librgw-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm librgw2-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm python3-ceph-argparse-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm python3-ceph-common-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm python3-cephfs-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm python3-rados-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm python3-rbd-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm python3-rgw-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm rados-objclass-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm rbd-fuse-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm rbd-mirror-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm rbd-nbd-15.2.16.99+g96ce9b152f5-150200.3.37.1.x86_64.rpm ceph-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm ceph-base-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm ceph-common-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm ceph-fuse-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm ceph-immutable-object-cache-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm ceph-mds-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm ceph-mgr-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm ceph-mon-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm ceph-osd-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm ceph-radosgw-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm cephfs-shell-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm libcephfs-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm libcephfs2-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm librados-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm librados2-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm libradospp-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm librbd-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm librbd1-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm librgw-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm librgw2-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm python3-ceph-argparse-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm python3-ceph-common-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm python3-cephfs-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm python3-rados-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm python3-rbd-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm python3-rgw-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm rados-objclass-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm rbd-fuse-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm rbd-mirror-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm rbd-nbd-15.2.16.99+g96ce9b152f5-150200.3.37.1.s390x.rpm ceph-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm ceph-base-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm ceph-common-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm ceph-fuse-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm ceph-immutable-object-cache-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm ceph-mds-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm ceph-mgr-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm ceph-mon-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm ceph-osd-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm ceph-radosgw-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm cephfs-shell-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm libcephfs-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm libcephfs2-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm librados-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm librados2-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm libradospp-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm librbd-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm librbd1-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm librgw-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm librgw2-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm python3-ceph-argparse-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm python3-ceph-common-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm python3-cephfs-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm python3-rados-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm python3-rbd-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm python3-rgw-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm rados-objclass-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm rbd-fuse-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm rbd-mirror-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm rbd-nbd-15.2.16.99+g96ce9b152f5-150200.3.37.1.ppc64le.rpm ceph-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm ceph-base-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm ceph-common-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm ceph-fuse-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm ceph-immutable-object-cache-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm ceph-mds-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm ceph-mgr-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm ceph-mon-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm ceph-osd-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm ceph-radosgw-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm cephfs-shell-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm libcephfs-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm libcephfs2-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm librados-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm librados2-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm libradospp-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm librbd-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm librbd1-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm librgw-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm librgw2-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm python3-ceph-argparse-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm python3-ceph-common-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm python3-cephfs-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm python3-rados-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm python3-rbd-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm python3-rgw-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm rados-objclass-devel-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm rbd-fuse-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm rbd-mirror-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm rbd-nbd-15.2.16.99+g96ce9b152f5-150200.3.37.1.aarch64.rpm openSUSE-SLE-15.3-2022-1899 important SUSE Updates openSUSE-SLE 15.3 This update for libtirpc fixes the following issues: - Add a check for nullpointer in check_address to prevent client from crashing (bsc#1198176) libtirpc-1.2.6-150300.3.6.1.src.rpm libtirpc-devel-1.2.6-150300.3.6.1.x86_64.rpm libtirpc-netconfig-1.2.6-150300.3.6.1.x86_64.rpm libtirpc3-1.2.6-150300.3.6.1.x86_64.rpm libtirpc3-32bit-1.2.6-150300.3.6.1.x86_64.rpm libtirpc-devel-1.2.6-150300.3.6.1.s390x.rpm libtirpc-netconfig-1.2.6-150300.3.6.1.s390x.rpm libtirpc3-1.2.6-150300.3.6.1.s390x.rpm libtirpc-devel-1.2.6-150300.3.6.1.ppc64le.rpm libtirpc-netconfig-1.2.6-150300.3.6.1.ppc64le.rpm libtirpc3-1.2.6-150300.3.6.1.ppc64le.rpm libtirpc-devel-1.2.6-150300.3.6.1.aarch64.rpm libtirpc-netconfig-1.2.6-150300.3.6.1.aarch64.rpm libtirpc3-1.2.6-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1814 moderate SUSE Updates openSUSE-SLE 15.3 This update for sapconf fixes the following issues: Version update from 5.0.3 to 5.0.4: - Change block device handling to handle multipath devices correctly. Only the DM multipath devices (mpath) will be used for the settings, but not its paths (bsc#1188743) - Fixed wrong comparison used for setting force_latency (bsc#1185702) - SAP Note 1771258 v6 updates nofile values to 1048576 (bsc#1192841) sapconf-5.0.4-150000.7.21.1.noarch.rpm sapconf-5.0.4-150000.7.21.1.src.rpm openSUSE-SLE-15.3-2022-1617 important SUSE Updates openSUSE-SLE 15.3 This update for gzip fixes the following issues: - CVE-2022-1271: Fix escaping of malicious filenames. (bsc#1198062) gzip-1.10-150200.10.1.src.rpm gzip-1.10-150200.10.1.x86_64.rpm gzip-1.10-150200.10.1.s390x.rpm gzip-1.10-150200.10.1.ppc64le.rpm gzip-1.10-150200.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-2124 important SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Make sure SaltCacheLoader use correct fileclient (bsc#1199149) - Update to version 3004 (jsc#SLE-24223) (jsc#SLE-23672) * See release notes: https://docs.saltproject.io/en/master/topics/releases/3004.html - Expose missing "ansible" module functions in Salt 3004 (bsc#1195625) - Fixes for Python 3.10 - Fix issues found around pre_flight_script_args - Fix salt-call event.send with pillar or grains - Fix exception in batch_async caused by a bad function call - Fix print regression for yumnotify plugin - Fix issues with salt-ssh's extra-filerefs - Fix crash when calling manage.not_alive runners python3-salt-3004-150300.53.21.1.x86_64.rpm True salt-3004-150300.53.21.1.src.rpm True salt-3004-150300.53.21.1.x86_64.rpm True salt-api-3004-150300.53.21.1.x86_64.rpm True salt-bash-completion-3004-150300.53.21.1.noarch.rpm True salt-cloud-3004-150300.53.21.1.x86_64.rpm True salt-doc-3004-150300.53.21.1.x86_64.rpm True salt-fish-completion-3004-150300.53.21.1.noarch.rpm True salt-master-3004-150300.53.21.1.x86_64.rpm True salt-minion-3004-150300.53.21.1.x86_64.rpm True salt-proxy-3004-150300.53.21.1.x86_64.rpm True salt-ssh-3004-150300.53.21.1.x86_64.rpm True salt-standalone-formulas-configuration-3004-150300.53.21.1.x86_64.rpm True salt-syndic-3004-150300.53.21.1.x86_64.rpm True salt-transactional-update-3004-150300.53.21.1.x86_64.rpm True salt-zsh-completion-3004-150300.53.21.1.noarch.rpm True python3-salt-3004-150300.53.21.1.s390x.rpm True salt-3004-150300.53.21.1.s390x.rpm True salt-api-3004-150300.53.21.1.s390x.rpm True salt-cloud-3004-150300.53.21.1.s390x.rpm True salt-doc-3004-150300.53.21.1.s390x.rpm True salt-master-3004-150300.53.21.1.s390x.rpm True salt-minion-3004-150300.53.21.1.s390x.rpm True salt-proxy-3004-150300.53.21.1.s390x.rpm True salt-ssh-3004-150300.53.21.1.s390x.rpm True salt-standalone-formulas-configuration-3004-150300.53.21.1.s390x.rpm True salt-syndic-3004-150300.53.21.1.s390x.rpm True salt-transactional-update-3004-150300.53.21.1.s390x.rpm True python3-salt-3004-150300.53.21.1.ppc64le.rpm True salt-3004-150300.53.21.1.ppc64le.rpm True salt-api-3004-150300.53.21.1.ppc64le.rpm True salt-cloud-3004-150300.53.21.1.ppc64le.rpm True salt-doc-3004-150300.53.21.1.ppc64le.rpm True salt-master-3004-150300.53.21.1.ppc64le.rpm True salt-minion-3004-150300.53.21.1.ppc64le.rpm True salt-proxy-3004-150300.53.21.1.ppc64le.rpm True salt-ssh-3004-150300.53.21.1.ppc64le.rpm True salt-standalone-formulas-configuration-3004-150300.53.21.1.ppc64le.rpm True salt-syndic-3004-150300.53.21.1.ppc64le.rpm True salt-transactional-update-3004-150300.53.21.1.ppc64le.rpm True python3-salt-3004-150300.53.21.1.aarch64.rpm True salt-3004-150300.53.21.1.aarch64.rpm True salt-api-3004-150300.53.21.1.aarch64.rpm True salt-cloud-3004-150300.53.21.1.aarch64.rpm True salt-doc-3004-150300.53.21.1.aarch64.rpm True salt-master-3004-150300.53.21.1.aarch64.rpm True salt-minion-3004-150300.53.21.1.aarch64.rpm True salt-proxy-3004-150300.53.21.1.aarch64.rpm True salt-ssh-3004-150300.53.21.1.aarch64.rpm True salt-standalone-formulas-configuration-3004-150300.53.21.1.aarch64.rpm True salt-syndic-3004-150300.53.21.1.aarch64.rpm True salt-transactional-update-3004-150300.53.21.1.aarch64.rpm True openSUSE-SLE-15.3-2022-1657 moderate SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2022-27776: Fixed auth/cookie leak on redirect (bsc#1198766) - CVE-2022-27775: Fixed bad local IPv6 connection reuse (bsc#1198723) - CVE-2022-22576: Fixed OAUTH2 bearer bypass in connection re-use (bsc#1198614) curl-7.66.0-150200.4.30.1.src.rpm curl-7.66.0-150200.4.30.1.x86_64.rpm libcurl-devel-32bit-7.66.0-150200.4.30.1.x86_64.rpm libcurl-devel-7.66.0-150200.4.30.1.x86_64.rpm libcurl4-32bit-7.66.0-150200.4.30.1.x86_64.rpm libcurl4-7.66.0-150200.4.30.1.x86_64.rpm curl-7.66.0-150200.4.30.1.s390x.rpm libcurl-devel-7.66.0-150200.4.30.1.s390x.rpm libcurl4-7.66.0-150200.4.30.1.s390x.rpm curl-7.66.0-150200.4.30.1.ppc64le.rpm libcurl-devel-7.66.0-150200.4.30.1.ppc64le.rpm libcurl4-7.66.0-150200.4.30.1.ppc64le.rpm curl-7.66.0-150200.4.30.1.aarch64.rpm libcurl-devel-7.66.0-150200.4.30.1.aarch64.rpm libcurl4-7.66.0-150200.4.30.1.aarch64.rpm openSUSE-SLE-15.3-2022-1670 important SUSE Updates openSUSE-SLE 15.3 This update for openldap2 fixes the following issues: - CVE-2022-29155: Fixed SQL injection in back-sql (bsc#1199240). libldap-2_4-2-2.4.46-150200.14.8.1.x86_64.rpm libldap-2_4-2-32bit-2.4.46-150200.14.8.1.x86_64.rpm libldap-data-2.4.46-150200.14.8.1.noarch.rpm openldap2-2.4.46-150200.14.8.1.src.rpm openldap2-2.4.46-150200.14.8.1.x86_64.rpm openldap2-back-meta-2.4.46-150200.14.8.1.x86_64.rpm openldap2-back-perl-2.4.46-150200.14.8.1.x86_64.rpm openldap2-back-sock-2.4.46-150200.14.8.1.x86_64.rpm openldap2-back-sql-2.4.46-150200.14.8.1.x86_64.rpm openldap2-client-2.4.46-150200.14.8.1.x86_64.rpm openldap2-contrib-2.4.46-150200.14.8.1.x86_64.rpm openldap2-devel-2.4.46-150200.14.8.1.x86_64.rpm openldap2-devel-32bit-2.4.46-150200.14.8.1.x86_64.rpm openldap2-devel-static-2.4.46-150200.14.8.1.x86_64.rpm openldap2-doc-2.4.46-150200.14.8.1.noarch.rpm openldap2-ppolicy-check-password-1.2-150200.14.8.1.x86_64.rpm libldap-2_4-2-2.4.46-150200.14.8.1.s390x.rpm openldap2-2.4.46-150200.14.8.1.s390x.rpm openldap2-back-meta-2.4.46-150200.14.8.1.s390x.rpm openldap2-back-perl-2.4.46-150200.14.8.1.s390x.rpm openldap2-back-sock-2.4.46-150200.14.8.1.s390x.rpm openldap2-back-sql-2.4.46-150200.14.8.1.s390x.rpm openldap2-client-2.4.46-150200.14.8.1.s390x.rpm openldap2-contrib-2.4.46-150200.14.8.1.s390x.rpm openldap2-devel-2.4.46-150200.14.8.1.s390x.rpm openldap2-devel-static-2.4.46-150200.14.8.1.s390x.rpm openldap2-ppolicy-check-password-1.2-150200.14.8.1.s390x.rpm libldap-2_4-2-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-back-meta-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-back-perl-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-back-sock-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-back-sql-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-client-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-contrib-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-devel-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-devel-static-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-ppolicy-check-password-1.2-150200.14.8.1.ppc64le.rpm libldap-2_4-2-2.4.46-150200.14.8.1.aarch64.rpm openldap2-2.4.46-150200.14.8.1.aarch64.rpm openldap2-back-meta-2.4.46-150200.14.8.1.aarch64.rpm openldap2-back-perl-2.4.46-150200.14.8.1.aarch64.rpm openldap2-back-sock-2.4.46-150200.14.8.1.aarch64.rpm openldap2-back-sql-2.4.46-150200.14.8.1.aarch64.rpm openldap2-client-2.4.46-150200.14.8.1.aarch64.rpm openldap2-contrib-2.4.46-150200.14.8.1.aarch64.rpm openldap2-devel-2.4.46-150200.14.8.1.aarch64.rpm openldap2-devel-static-2.4.46-150200.14.8.1.aarch64.rpm openldap2-ppolicy-check-password-1.2-150200.14.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-1909 moderate SUSE Updates openSUSE-SLE 15.3 This update for glibc fixes the following issues: - Add the correct name for the IBM Z16 (bsc#1198751). glibc-2.31-150300.26.5.src.rpm glibc-2.31-150300.26.5.x86_64.rpm glibc-32bit-2.31-150300.26.5.x86_64.rpm glibc-devel-2.31-150300.26.5.x86_64.rpm glibc-devel-32bit-2.31-150300.26.5.x86_64.rpm glibc-devel-static-2.31-150300.26.5.x86_64.rpm glibc-devel-static-32bit-2.31-150300.26.5.x86_64.rpm glibc-extra-2.31-150300.26.5.x86_64.rpm glibc-html-2.31-150300.26.5.noarch.rpm glibc-i18ndata-2.31-150300.26.5.noarch.rpm glibc-info-2.31-150300.26.5.noarch.rpm glibc-lang-2.31-150300.26.5.noarch.rpm glibc-locale-2.31-150300.26.5.x86_64.rpm glibc-locale-base-2.31-150300.26.5.x86_64.rpm glibc-locale-base-32bit-2.31-150300.26.5.x86_64.rpm glibc-profile-2.31-150300.26.5.x86_64.rpm glibc-profile-32bit-2.31-150300.26.5.x86_64.rpm glibc-utils-2.31-150300.26.1.x86_64.rpm glibc-utils-32bit-2.31-150300.26.1.x86_64.rpm glibc-utils-src-2.31-150300.26.1.src.rpm nscd-2.31-150300.26.5.x86_64.rpm glibc-2.31-150300.26.5.s390x.rpm glibc-devel-2.31-150300.26.5.s390x.rpm glibc-devel-static-2.31-150300.26.5.s390x.rpm glibc-extra-2.31-150300.26.5.s390x.rpm glibc-locale-2.31-150300.26.5.s390x.rpm glibc-locale-base-2.31-150300.26.5.s390x.rpm glibc-profile-2.31-150300.26.5.s390x.rpm glibc-utils-2.31-150300.26.1.s390x.rpm nscd-2.31-150300.26.5.s390x.rpm glibc-2.31-150300.26.5.ppc64le.rpm glibc-devel-2.31-150300.26.5.ppc64le.rpm glibc-devel-static-2.31-150300.26.5.ppc64le.rpm glibc-extra-2.31-150300.26.5.ppc64le.rpm glibc-locale-2.31-150300.26.5.ppc64le.rpm glibc-locale-base-2.31-150300.26.5.ppc64le.rpm glibc-profile-2.31-150300.26.5.ppc64le.rpm glibc-utils-2.31-150300.26.1.ppc64le.rpm nscd-2.31-150300.26.5.ppc64le.rpm glibc-2.31-150300.26.5.aarch64.rpm glibc-devel-2.31-150300.26.5.aarch64.rpm glibc-devel-static-2.31-150300.26.5.aarch64.rpm glibc-extra-2.31-150300.26.5.aarch64.rpm glibc-locale-2.31-150300.26.5.aarch64.rpm glibc-locale-base-2.31-150300.26.5.aarch64.rpm glibc-profile-2.31-150300.26.5.aarch64.rpm glibc-utils-2.31-150300.26.1.aarch64.rpm nscd-2.31-150300.26.5.aarch64.rpm openSUSE-SLE-15.3-2022-1626 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - tmpfiles.d: only 'w+' can have multiple lines for the same path (bsc#1198090) - journald: make sure journal_file_open() doesn't leave a corrupted file around after failing (bsc#1198114) - tmpfiles: constify item_compatible() parameters - test tmpfiles: add a test for 'w+' - test: add test checking tmpfiles conf file precedence - journald: make use of CLAMP() in cache_space_refresh() - journal-file: port journal_file_open() to openat_report_new() - fs-util: make sure openat_report_new() initializes return param also on shortcut - fs-util: fix typos in comments - fs-util: add openat_report_new() wrapper around openat() libsystemd0-246.16-150300.7.45.1.x86_64.rpm libsystemd0-32bit-246.16-150300.7.45.1.x86_64.rpm libudev-devel-246.16-150300.7.45.1.x86_64.rpm libudev-devel-32bit-246.16-150300.7.45.1.x86_64.rpm libudev1-246.16-150300.7.45.1.x86_64.rpm libudev1-32bit-246.16-150300.7.45.1.x86_64.rpm nss-myhostname-246.16-150300.7.45.1.x86_64.rpm nss-myhostname-32bit-246.16-150300.7.45.1.x86_64.rpm nss-mymachines-246.16-150300.7.45.1.x86_64.rpm nss-mymachines-32bit-246.16-150300.7.45.1.x86_64.rpm nss-resolve-246.16-150300.7.45.1.x86_64.rpm nss-systemd-246.16-150300.7.45.1.x86_64.rpm systemd-246.16-150300.7.45.1.src.rpm systemd-246.16-150300.7.45.1.x86_64.rpm systemd-32bit-246.16-150300.7.45.1.x86_64.rpm systemd-container-246.16-150300.7.45.1.x86_64.rpm systemd-coredump-246.16-150300.7.45.1.x86_64.rpm systemd-devel-246.16-150300.7.45.1.x86_64.rpm systemd-doc-246.16-150300.7.45.1.x86_64.rpm systemd-journal-remote-246.16-150300.7.45.1.x86_64.rpm systemd-lang-246.16-150300.7.45.1.noarch.rpm systemd-logger-246.16-150300.7.45.1.x86_64.rpm systemd-network-246.16-150300.7.45.1.x86_64.rpm systemd-sysvinit-246.16-150300.7.45.1.x86_64.rpm udev-246.16-150300.7.45.1.x86_64.rpm libsystemd0-246.16-150300.7.45.1.s390x.rpm libudev-devel-246.16-150300.7.45.1.s390x.rpm libudev1-246.16-150300.7.45.1.s390x.rpm nss-myhostname-246.16-150300.7.45.1.s390x.rpm nss-mymachines-246.16-150300.7.45.1.s390x.rpm nss-resolve-246.16-150300.7.45.1.s390x.rpm nss-systemd-246.16-150300.7.45.1.s390x.rpm systemd-246.16-150300.7.45.1.s390x.rpm systemd-container-246.16-150300.7.45.1.s390x.rpm systemd-coredump-246.16-150300.7.45.1.s390x.rpm systemd-devel-246.16-150300.7.45.1.s390x.rpm systemd-doc-246.16-150300.7.45.1.s390x.rpm systemd-journal-remote-246.16-150300.7.45.1.s390x.rpm systemd-logger-246.16-150300.7.45.1.s390x.rpm systemd-network-246.16-150300.7.45.1.s390x.rpm systemd-sysvinit-246.16-150300.7.45.1.s390x.rpm udev-246.16-150300.7.45.1.s390x.rpm libsystemd0-246.16-150300.7.45.1.ppc64le.rpm libudev-devel-246.16-150300.7.45.1.ppc64le.rpm libudev1-246.16-150300.7.45.1.ppc64le.rpm nss-myhostname-246.16-150300.7.45.1.ppc64le.rpm nss-mymachines-246.16-150300.7.45.1.ppc64le.rpm nss-resolve-246.16-150300.7.45.1.ppc64le.rpm nss-systemd-246.16-150300.7.45.1.ppc64le.rpm systemd-246.16-150300.7.45.1.ppc64le.rpm systemd-container-246.16-150300.7.45.1.ppc64le.rpm systemd-coredump-246.16-150300.7.45.1.ppc64le.rpm systemd-devel-246.16-150300.7.45.1.ppc64le.rpm systemd-doc-246.16-150300.7.45.1.ppc64le.rpm systemd-journal-remote-246.16-150300.7.45.1.ppc64le.rpm systemd-logger-246.16-150300.7.45.1.ppc64le.rpm systemd-network-246.16-150300.7.45.1.ppc64le.rpm systemd-sysvinit-246.16-150300.7.45.1.ppc64le.rpm udev-246.16-150300.7.45.1.ppc64le.rpm libsystemd0-246.16-150300.7.45.1.aarch64.rpm libudev-devel-246.16-150300.7.45.1.aarch64.rpm libudev1-246.16-150300.7.45.1.aarch64.rpm nss-myhostname-246.16-150300.7.45.1.aarch64.rpm nss-mymachines-246.16-150300.7.45.1.aarch64.rpm nss-resolve-246.16-150300.7.45.1.aarch64.rpm nss-systemd-246.16-150300.7.45.1.aarch64.rpm systemd-246.16-150300.7.45.1.aarch64.rpm systemd-container-246.16-150300.7.45.1.aarch64.rpm systemd-coredump-246.16-150300.7.45.1.aarch64.rpm systemd-devel-246.16-150300.7.45.1.aarch64.rpm systemd-doc-246.16-150300.7.45.1.aarch64.rpm systemd-journal-remote-246.16-150300.7.45.1.aarch64.rpm systemd-logger-246.16-150300.7.45.1.aarch64.rpm systemd-network-246.16-150300.7.45.1.aarch64.rpm systemd-sysvinit-246.16-150300.7.45.1.aarch64.rpm udev-246.16-150300.7.45.1.aarch64.rpm openSUSE-SLE-15.3-2022-1681 moderate SUSE Updates openSUSE-SLE 15.3 This update of bpftrace fixes working with the current binutils update. bpftrace-0.11.4-150300.3.6.1.src.rpm bpftrace-0.11.4-150300.3.6.1.x86_64.rpm bpftrace-tools-0.11.4-150300.3.6.1.noarch.rpm bpftrace-0.11.4-150300.3.6.1.s390x.rpm bpftrace-0.11.4-150300.3.6.1.ppc64le.rpm bpftrace-0.11.4-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1882 important SUSE Updates openSUSE-SLE 15.3 This update for tiff fixes the following issues: - CVE-2022-0561: Fixed null source pointer passed as an argument to memcpy() within TIFFFetchStripThing() in tif_dirread.c (bsc#1195964). - CVE-2022-0562: Fixed null source pointer passed as an argument to memcpy() within TIFFReadDirectory() in tif_dirread.c (bsc#1195965). - CVE-2022-0865: Fixed assertion failure in TIFFReadAndRealloc (bsc#1197066). - CVE-2022-0909: Fixed divide by zero error in tiffcrop that could have led to a denial-of-service via a crafted tiff file (bsc#1197072). - CVE-2022-0924: Fixed out-of-bounds read error in tiffcp that could have led to a denial-of-service via a crafted tiff file (bsc#1197073). - CVE-2022-0908: Fixed null source pointer passed as an argument to memcpy in TIFFFetchNormalTag() (bsc#1197074). - CVE-2022-1056: Fixed out-of-bounds read error in tiffcrop that could have led to a denial-of-service via a crafted tiff file (bsc#1197631). - CVE-2022-0891: Fixed heap buffer overflow in extractImageSection (bsc#1197068). libtiff-devel-32bit-4.0.9-150000.45.8.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.8.1.x86_64.rpm libtiff5-32bit-4.0.9-150000.45.8.1.x86_64.rpm libtiff5-4.0.9-150000.45.8.1.x86_64.rpm tiff-4.0.9-150000.45.8.1.src.rpm tiff-4.0.9-150000.45.8.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.8.1.s390x.rpm libtiff5-4.0.9-150000.45.8.1.s390x.rpm tiff-4.0.9-150000.45.8.1.s390x.rpm libtiff-devel-4.0.9-150000.45.8.1.ppc64le.rpm libtiff5-4.0.9-150000.45.8.1.ppc64le.rpm tiff-4.0.9-150000.45.8.1.ppc64le.rpm libtiff-devel-4.0.9-150000.45.8.1.aarch64.rpm libtiff5-4.0.9-150000.45.8.1.aarch64.rpm tiff-4.0.9-150000.45.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-2049 moderate SUSE Updates openSUSE-SLE 15.3 This update for binutils fixes the following issues: - Revert back to old behaviour of not ignoring the in-section content of to be relocated fields on x86-64, even though that's a RELA architecture. Compatibility with buggy object files generated by old tools. [bsc#1198422] - Fix a problem in crash not accepting some of our .ko.debug files. (bsc#1191908) binutils-2.37-150100.7.34.1.src.rpm binutils-2.37-150100.7.34.1.x86_64.rpm binutils-devel-2.37-150100.7.34.1.x86_64.rpm binutils-devel-32bit-2.37-150100.7.34.1.x86_64.rpm binutils-gold-2.37-150100.7.34.1.x86_64.rpm bpftrace-0.11.4-150300.3.9.2.src.rpm bpftrace-0.11.4-150300.3.9.2.x86_64.rpm bpftrace-tools-0.11.4-150300.3.9.2.noarch.rpm cross-aarch64-binutils-2.37-150100.7.34.1.src.rpm cross-aarch64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-arm-binutils-2.37-150100.7.34.1.src.rpm cross-arm-binutils-2.37-150100.7.34.1.x86_64.rpm cross-avr-binutils-2.37-150100.7.34.1.src.rpm cross-avr-binutils-2.37-150100.7.34.1.x86_64.rpm cross-epiphany-binutils-2.37-150100.7.34.1.src.rpm cross-epiphany-binutils-2.37-150100.7.34.1.x86_64.rpm cross-hppa-binutils-2.37-150100.7.34.1.src.rpm cross-hppa-binutils-2.37-150100.7.34.1.x86_64.rpm cross-hppa64-binutils-2.37-150100.7.34.1.src.rpm cross-hppa64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-i386-binutils-2.37-150100.7.34.1.src.rpm cross-i386-binutils-2.37-150100.7.34.1.x86_64.rpm cross-ia64-binutils-2.37-150100.7.34.1.src.rpm cross-ia64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-m68k-binutils-2.37-150100.7.34.1.src.rpm cross-m68k-binutils-2.37-150100.7.34.1.x86_64.rpm cross-mips-binutils-2.37-150100.7.34.1.src.rpm cross-mips-binutils-2.37-150100.7.34.1.x86_64.rpm cross-ppc-binutils-2.37-150100.7.34.1.src.rpm cross-ppc-binutils-2.37-150100.7.34.1.x86_64.rpm cross-ppc64-binutils-2.37-150100.7.34.1.src.rpm cross-ppc64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-ppc64le-binutils-2.37-150100.7.34.1.src.rpm cross-ppc64le-binutils-2.37-150100.7.34.1.x86_64.rpm cross-riscv64-binutils-2.37-150100.7.34.1.src.rpm cross-riscv64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-rx-binutils-2.37-150100.7.34.1.src.rpm cross-rx-binutils-2.37-150100.7.34.1.x86_64.rpm cross-s390-binutils-2.37-150100.7.34.1.src.rpm cross-s390-binutils-2.37-150100.7.34.1.x86_64.rpm cross-s390x-binutils-2.37-150100.7.34.1.src.rpm cross-s390x-binutils-2.37-150100.7.34.1.x86_64.rpm cross-sparc-binutils-2.37-150100.7.34.1.src.rpm cross-sparc-binutils-2.37-150100.7.34.1.x86_64.rpm cross-sparc64-binutils-2.37-150100.7.34.1.src.rpm cross-sparc64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-spu-binutils-2.37-150100.7.34.1.src.rpm cross-spu-binutils-2.37-150100.7.34.1.x86_64.rpm libctf-nobfd0-2.37-150100.7.34.1.x86_64.rpm libctf0-2.37-150100.7.34.1.x86_64.rpm binutils-2.37-150100.7.34.1.s390x.rpm binutils-devel-2.37-150100.7.34.1.s390x.rpm binutils-gold-2.37-150100.7.34.1.s390x.rpm bpftrace-0.11.4-150300.3.9.2.s390x.rpm cross-aarch64-binutils-2.37-150100.7.34.1.s390x.rpm cross-arm-binutils-2.37-150100.7.34.1.s390x.rpm cross-avr-binutils-2.37-150100.7.34.1.s390x.rpm cross-epiphany-binutils-2.37-150100.7.34.1.s390x.rpm cross-hppa-binutils-2.37-150100.7.34.1.s390x.rpm cross-hppa64-binutils-2.37-150100.7.34.1.s390x.rpm cross-i386-binutils-2.37-150100.7.34.1.s390x.rpm cross-ia64-binutils-2.37-150100.7.34.1.s390x.rpm cross-m68k-binutils-2.37-150100.7.34.1.s390x.rpm cross-mips-binutils-2.37-150100.7.34.1.s390x.rpm cross-ppc-binutils-2.37-150100.7.34.1.s390x.rpm cross-ppc64-binutils-2.37-150100.7.34.1.s390x.rpm cross-ppc64le-binutils-2.37-150100.7.34.1.s390x.rpm cross-riscv64-binutils-2.37-150100.7.34.1.s390x.rpm cross-rx-binutils-2.37-150100.7.34.1.s390x.rpm cross-s390-binutils-2.37-150100.7.34.1.s390x.rpm cross-sparc-binutils-2.37-150100.7.34.1.s390x.rpm cross-sparc64-binutils-2.37-150100.7.34.1.s390x.rpm cross-spu-binutils-2.37-150100.7.34.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.34.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.34.1.src.rpm libctf-nobfd0-2.37-150100.7.34.1.s390x.rpm libctf0-2.37-150100.7.34.1.s390x.rpm binutils-2.37-150100.7.34.1.ppc64le.rpm binutils-devel-2.37-150100.7.34.1.ppc64le.rpm binutils-gold-2.37-150100.7.34.1.ppc64le.rpm bpftrace-0.11.4-150300.3.9.2.ppc64le.rpm cross-aarch64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-arm-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-avr-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-epiphany-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-hppa-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-hppa64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-i386-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-ia64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-m68k-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-mips-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-ppc-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-ppc64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-riscv64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-rx-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-s390-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-s390x-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-sparc-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-sparc64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-spu-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-x86_64-binutils-2.37-150100.7.34.1.ppc64le.rpm libctf-nobfd0-2.37-150100.7.34.1.ppc64le.rpm libctf0-2.37-150100.7.34.1.ppc64le.rpm binutils-2.37-150100.7.34.1.aarch64.rpm binutils-devel-2.37-150100.7.34.1.aarch64.rpm binutils-gold-2.37-150100.7.34.1.aarch64.rpm bpftrace-0.11.4-150300.3.9.2.aarch64.rpm cross-arm-binutils-2.37-150100.7.34.1.aarch64.rpm cross-avr-binutils-2.37-150100.7.34.1.aarch64.rpm cross-epiphany-binutils-2.37-150100.7.34.1.aarch64.rpm cross-hppa-binutils-2.37-150100.7.34.1.aarch64.rpm cross-hppa64-binutils-2.37-150100.7.34.1.aarch64.rpm cross-i386-binutils-2.37-150100.7.34.1.aarch64.rpm cross-ia64-binutils-2.37-150100.7.34.1.aarch64.rpm cross-m68k-binutils-2.37-150100.7.34.1.aarch64.rpm cross-mips-binutils-2.37-150100.7.34.1.aarch64.rpm cross-ppc-binutils-2.37-150100.7.34.1.aarch64.rpm cross-ppc64-binutils-2.37-150100.7.34.1.aarch64.rpm cross-ppc64le-binutils-2.37-150100.7.34.1.aarch64.rpm cross-riscv64-binutils-2.37-150100.7.34.1.aarch64.rpm cross-rx-binutils-2.37-150100.7.34.1.aarch64.rpm cross-s390-binutils-2.37-150100.7.34.1.aarch64.rpm cross-s390x-binutils-2.37-150100.7.34.1.aarch64.rpm cross-sparc-binutils-2.37-150100.7.34.1.aarch64.rpm cross-sparc64-binutils-2.37-150100.7.34.1.aarch64.rpm cross-spu-binutils-2.37-150100.7.34.1.aarch64.rpm cross-x86_64-binutils-2.37-150100.7.34.1.aarch64.rpm libctf-nobfd0-2.37-150100.7.34.1.aarch64.rpm libctf0-2.37-150100.7.34.1.aarch64.rpm openSUSE-SLE-15.3-2022-1644 important SUSE Updates openSUSE-SLE 15.3 This update for clamav fixes the following issues: - CVE-2022-20770: Fixed a possible infinite loop vulnerability in the CHM file parser (bsc#1199242). - CVE-2022-20796: Fixed a possible NULL-pointer dereference crash in the scan verdict cache check (bsc#1199246). - CVE-2022-20771: Fixed a possible infinite loop vulnerability in the TIFF file parser (bsc#1199244). - CVE-2022-20785: Fixed a possible memory leak in the HTML file parser / Javascript normalizer (bsc#1199245). - CVE-2022-20792: Fixed a possible multi-byte heap buffer overflow write vulnerability in the signature database load module (bsc#1199274). clamav-0.103.6-150000.3.38.1.src.rpm clamav-0.103.6-150000.3.38.1.x86_64.rpm clamav-devel-0.103.6-150000.3.38.1.x86_64.rpm libclamav9-0.103.6-150000.3.38.1.x86_64.rpm libfreshclam2-0.103.6-150000.3.38.1.x86_64.rpm clamav-0.103.6-150000.3.38.1.s390x.rpm clamav-devel-0.103.6-150000.3.38.1.s390x.rpm libclamav9-0.103.6-150000.3.38.1.s390x.rpm libfreshclam2-0.103.6-150000.3.38.1.s390x.rpm clamav-0.103.6-150000.3.38.1.ppc64le.rpm clamav-devel-0.103.6-150000.3.38.1.ppc64le.rpm libclamav9-0.103.6-150000.3.38.1.ppc64le.rpm libfreshclam2-0.103.6-150000.3.38.1.ppc64le.rpm clamav-0.103.6-150000.3.38.1.aarch64.rpm clamav-devel-0.103.6-150000.3.38.1.aarch64.rpm libclamav9-0.103.6-150000.3.38.1.aarch64.rpm libfreshclam2-0.103.6-150000.3.38.1.aarch64.rpm openSUSE-SLE-15.3-2022-3279 low SUSE Updates openSUSE-SLE 15.3 This update for netty-tcnative fixes the following issues: - Remove dependency on separate package netty-jni-util-sources - Unpack the sources to their right place without passing through maven mechanisms - This version fixes bsc#1198792 - Build with java source and target levels 1.8 - Update to the 2.0.36 Final netty-tcnative-2.0.36-150200.3.3.2.src.rpm netty-tcnative-2.0.36-150200.3.3.2.x86_64.rpm netty-tcnative-javadoc-2.0.36-150200.3.3.2.noarch.rpm netty-tcnative-2.0.36-150200.3.3.2.s390x.rpm netty-tcnative-2.0.36-150200.3.3.2.ppc64le.rpm netty-tcnative-2.0.36-150200.3.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-1761 moderate SUSE Updates openSUSE-SLE 15.3 This update for go fixes the following issues: Updated wrapper package to current stable go1.18 (bsc#1193742). go-1.18-150000.3.23.1.src.rpm go-1.18-150000.3.23.1.x86_64.rpm go-doc-1.18-150000.3.23.1.x86_64.rpm go-race-1.18-150000.3.23.1.x86_64.rpm go-1.18-150000.3.23.1.s390x.rpm go-doc-1.18-150000.3.23.1.s390x.rpm go-1.18-150000.3.23.1.ppc64le.rpm go-doc-1.18-150000.3.23.1.ppc64le.rpm go-1.18-150000.3.23.1.aarch64.rpm go-doc-1.18-150000.3.23.1.aarch64.rpm go-race-1.18-150000.3.23.1.aarch64.rpm openSUSE-SLE-15.3-2022-3195 moderate SUSE Updates openSUSE-SLE 15.3 This updates for yast2: rmt, network and schema fixes the following issues: yast2-rmt: - Adapted unit test to recent changes (bsc#1179893). - Sync ExcludeArch with rmt-server: whenever rmt-server is not available, the yast2-rmt module can't be usable neither. - No longer build as noarch: as the package is not installable on all architectures, it is by definition not 'architecture independent'. - Add rpmlintrc, filtering out "E: no-binary": the package is intentionally not marked noarch. yast2-network and yast2-schema: - Added missing route extrapara element to the networking section (bsc#1201129) yast2-rmt-1.3.4-150200.3.8.1.src.rpm yast2-rmt-1.3.4-150200.3.8.1.x86_64.rpm yast2-rmt-1.3.4-150200.3.8.1.s390x.rpm yast2-rmt-1.3.4-150200.3.8.1.ppc64le.rpm yast2-rmt-1.3.4-150200.3.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-1665 important SUSE Updates openSUSE-SLE 15.3 This update for pidgin fixes the following issues: - CVE-2022-26491: Fixed MITM vulnerability when DNSSEC wasn't used (bsc#1199025). finch-2.13.0-150200.12.6.1.x86_64.rpm finch-devel-2.13.0-150200.12.6.1.x86_64.rpm libpurple-2.13.0-150200.12.6.1.x86_64.rpm libpurple-branding-upstream-2.13.0-150200.12.6.1.noarch.rpm libpurple-devel-2.13.0-150200.12.6.1.x86_64.rpm libpurple-lang-2.13.0-150200.12.6.1.noarch.rpm libpurple-plugin-sametime-2.13.0-150200.12.6.1.x86_64.rpm libpurple-tcl-2.13.0-150200.12.6.1.x86_64.rpm pidgin-2.13.0-150200.12.6.1.src.rpm pidgin-2.13.0-150200.12.6.1.x86_64.rpm pidgin-devel-2.13.0-150200.12.6.1.x86_64.rpm finch-2.13.0-150200.12.6.1.s390x.rpm finch-devel-2.13.0-150200.12.6.1.s390x.rpm libpurple-2.13.0-150200.12.6.1.s390x.rpm libpurple-devel-2.13.0-150200.12.6.1.s390x.rpm libpurple-plugin-sametime-2.13.0-150200.12.6.1.s390x.rpm libpurple-tcl-2.13.0-150200.12.6.1.s390x.rpm pidgin-2.13.0-150200.12.6.1.s390x.rpm pidgin-devel-2.13.0-150200.12.6.1.s390x.rpm finch-2.13.0-150200.12.6.1.ppc64le.rpm finch-devel-2.13.0-150200.12.6.1.ppc64le.rpm libpurple-2.13.0-150200.12.6.1.ppc64le.rpm libpurple-devel-2.13.0-150200.12.6.1.ppc64le.rpm libpurple-plugin-sametime-2.13.0-150200.12.6.1.ppc64le.rpm libpurple-tcl-2.13.0-150200.12.6.1.ppc64le.rpm pidgin-2.13.0-150200.12.6.1.ppc64le.rpm pidgin-devel-2.13.0-150200.12.6.1.ppc64le.rpm finch-2.13.0-150200.12.6.1.aarch64.rpm finch-devel-2.13.0-150200.12.6.1.aarch64.rpm libpurple-2.13.0-150200.12.6.1.aarch64.rpm libpurple-devel-2.13.0-150200.12.6.1.aarch64.rpm libpurple-plugin-sametime-2.13.0-150200.12.6.1.aarch64.rpm libpurple-tcl-2.13.0-150200.12.6.1.aarch64.rpm pidgin-2.13.0-150200.12.6.1.aarch64.rpm pidgin-devel-2.13.0-150200.12.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1768 low SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - Fixed filter_var bypass vulnerability (bsc#1197644). apache2-mod_php7-7.4.6-150200.3.38.2.x86_64.rpm php7-7.4.6-150200.3.38.2.src.rpm php7-7.4.6-150200.3.38.2.x86_64.rpm php7-bcmath-7.4.6-150200.3.38.2.x86_64.rpm php7-bz2-7.4.6-150200.3.38.2.x86_64.rpm php7-calendar-7.4.6-150200.3.38.2.x86_64.rpm php7-ctype-7.4.6-150200.3.38.2.x86_64.rpm php7-curl-7.4.6-150200.3.38.2.x86_64.rpm php7-dba-7.4.6-150200.3.38.2.x86_64.rpm php7-devel-7.4.6-150200.3.38.2.x86_64.rpm php7-dom-7.4.6-150200.3.38.2.x86_64.rpm php7-embed-7.4.6-150200.3.38.2.x86_64.rpm php7-enchant-7.4.6-150200.3.38.2.x86_64.rpm php7-exif-7.4.6-150200.3.38.2.x86_64.rpm php7-fastcgi-7.4.6-150200.3.38.2.x86_64.rpm php7-fileinfo-7.4.6-150200.3.38.2.x86_64.rpm php7-firebird-7.4.6-150200.3.38.2.x86_64.rpm php7-fpm-7.4.6-150200.3.38.2.x86_64.rpm php7-ftp-7.4.6-150200.3.38.2.x86_64.rpm php7-gd-7.4.6-150200.3.38.2.x86_64.rpm php7-gettext-7.4.6-150200.3.38.2.x86_64.rpm php7-gmp-7.4.6-150200.3.38.2.x86_64.rpm php7-iconv-7.4.6-150200.3.38.2.x86_64.rpm php7-intl-7.4.6-150200.3.38.2.x86_64.rpm php7-json-7.4.6-150200.3.38.2.x86_64.rpm php7-ldap-7.4.6-150200.3.38.2.x86_64.rpm php7-mbstring-7.4.6-150200.3.38.2.x86_64.rpm php7-mysql-7.4.6-150200.3.38.2.x86_64.rpm php7-odbc-7.4.6-150200.3.38.2.x86_64.rpm php7-opcache-7.4.6-150200.3.38.2.x86_64.rpm php7-openssl-7.4.6-150200.3.38.2.x86_64.rpm php7-pcntl-7.4.6-150200.3.38.2.x86_64.rpm php7-pdo-7.4.6-150200.3.38.2.x86_64.rpm php7-pgsql-7.4.6-150200.3.38.2.x86_64.rpm php7-phar-7.4.6-150200.3.38.2.x86_64.rpm php7-posix-7.4.6-150200.3.38.2.x86_64.rpm php7-readline-7.4.6-150200.3.38.2.x86_64.rpm php7-shmop-7.4.6-150200.3.38.2.x86_64.rpm php7-snmp-7.4.6-150200.3.38.2.x86_64.rpm php7-soap-7.4.6-150200.3.38.2.x86_64.rpm php7-sockets-7.4.6-150200.3.38.2.x86_64.rpm php7-sodium-7.4.6-150200.3.38.2.x86_64.rpm php7-sqlite-7.4.6-150200.3.38.2.x86_64.rpm php7-sysvmsg-7.4.6-150200.3.38.2.x86_64.rpm php7-sysvsem-7.4.6-150200.3.38.2.x86_64.rpm php7-sysvshm-7.4.6-150200.3.38.2.x86_64.rpm php7-test-7.4.6-150200.3.38.2.src.rpm php7-test-7.4.6-150200.3.38.2.x86_64.rpm php7-tidy-7.4.6-150200.3.38.2.x86_64.rpm php7-tokenizer-7.4.6-150200.3.38.2.x86_64.rpm php7-xmlreader-7.4.6-150200.3.38.2.x86_64.rpm php7-xmlrpc-7.4.6-150200.3.38.2.x86_64.rpm php7-xmlwriter-7.4.6-150200.3.38.2.x86_64.rpm php7-xsl-7.4.6-150200.3.38.2.x86_64.rpm php7-zip-7.4.6-150200.3.38.2.x86_64.rpm php7-zlib-7.4.6-150200.3.38.2.x86_64.rpm apache2-mod_php7-7.4.6-150200.3.38.2.s390x.rpm php7-7.4.6-150200.3.38.2.s390x.rpm php7-bcmath-7.4.6-150200.3.38.2.s390x.rpm php7-bz2-7.4.6-150200.3.38.2.s390x.rpm php7-calendar-7.4.6-150200.3.38.2.s390x.rpm php7-ctype-7.4.6-150200.3.38.2.s390x.rpm php7-curl-7.4.6-150200.3.38.2.s390x.rpm php7-dba-7.4.6-150200.3.38.2.s390x.rpm php7-devel-7.4.6-150200.3.38.2.s390x.rpm php7-dom-7.4.6-150200.3.38.2.s390x.rpm php7-embed-7.4.6-150200.3.38.2.s390x.rpm php7-enchant-7.4.6-150200.3.38.2.s390x.rpm php7-exif-7.4.6-150200.3.38.2.s390x.rpm php7-fastcgi-7.4.6-150200.3.38.2.s390x.rpm php7-fileinfo-7.4.6-150200.3.38.2.s390x.rpm php7-firebird-7.4.6-150200.3.38.2.s390x.rpm php7-fpm-7.4.6-150200.3.38.2.s390x.rpm php7-ftp-7.4.6-150200.3.38.2.s390x.rpm php7-gd-7.4.6-150200.3.38.2.s390x.rpm php7-gettext-7.4.6-150200.3.38.2.s390x.rpm php7-gmp-7.4.6-150200.3.38.2.s390x.rpm php7-iconv-7.4.6-150200.3.38.2.s390x.rpm php7-intl-7.4.6-150200.3.38.2.s390x.rpm php7-json-7.4.6-150200.3.38.2.s390x.rpm php7-ldap-7.4.6-150200.3.38.2.s390x.rpm php7-mbstring-7.4.6-150200.3.38.2.s390x.rpm php7-mysql-7.4.6-150200.3.38.2.s390x.rpm php7-odbc-7.4.6-150200.3.38.2.s390x.rpm php7-opcache-7.4.6-150200.3.38.2.s390x.rpm php7-openssl-7.4.6-150200.3.38.2.s390x.rpm php7-pcntl-7.4.6-150200.3.38.2.s390x.rpm php7-pdo-7.4.6-150200.3.38.2.s390x.rpm php7-pgsql-7.4.6-150200.3.38.2.s390x.rpm php7-phar-7.4.6-150200.3.38.2.s390x.rpm php7-posix-7.4.6-150200.3.38.2.s390x.rpm php7-readline-7.4.6-150200.3.38.2.s390x.rpm php7-shmop-7.4.6-150200.3.38.2.s390x.rpm php7-snmp-7.4.6-150200.3.38.2.s390x.rpm php7-soap-7.4.6-150200.3.38.2.s390x.rpm php7-sockets-7.4.6-150200.3.38.2.s390x.rpm php7-sodium-7.4.6-150200.3.38.2.s390x.rpm php7-sqlite-7.4.6-150200.3.38.2.s390x.rpm php7-sysvmsg-7.4.6-150200.3.38.2.s390x.rpm php7-sysvsem-7.4.6-150200.3.38.2.s390x.rpm php7-sysvshm-7.4.6-150200.3.38.2.s390x.rpm php7-test-7.4.6-150200.3.38.2.s390x.rpm php7-tidy-7.4.6-150200.3.38.2.s390x.rpm php7-tokenizer-7.4.6-150200.3.38.2.s390x.rpm php7-xmlreader-7.4.6-150200.3.38.2.s390x.rpm php7-xmlrpc-7.4.6-150200.3.38.2.s390x.rpm php7-xmlwriter-7.4.6-150200.3.38.2.s390x.rpm php7-xsl-7.4.6-150200.3.38.2.s390x.rpm php7-zip-7.4.6-150200.3.38.2.s390x.rpm php7-zlib-7.4.6-150200.3.38.2.s390x.rpm apache2-mod_php7-7.4.6-150200.3.38.2.ppc64le.rpm php7-7.4.6-150200.3.38.2.ppc64le.rpm php7-bcmath-7.4.6-150200.3.38.2.ppc64le.rpm php7-bz2-7.4.6-150200.3.38.2.ppc64le.rpm php7-calendar-7.4.6-150200.3.38.2.ppc64le.rpm php7-ctype-7.4.6-150200.3.38.2.ppc64le.rpm php7-curl-7.4.6-150200.3.38.2.ppc64le.rpm php7-dba-7.4.6-150200.3.38.2.ppc64le.rpm php7-devel-7.4.6-150200.3.38.2.ppc64le.rpm php7-dom-7.4.6-150200.3.38.2.ppc64le.rpm php7-embed-7.4.6-150200.3.38.2.ppc64le.rpm php7-enchant-7.4.6-150200.3.38.2.ppc64le.rpm php7-exif-7.4.6-150200.3.38.2.ppc64le.rpm php7-fastcgi-7.4.6-150200.3.38.2.ppc64le.rpm php7-fileinfo-7.4.6-150200.3.38.2.ppc64le.rpm php7-firebird-7.4.6-150200.3.38.2.ppc64le.rpm php7-fpm-7.4.6-150200.3.38.2.ppc64le.rpm php7-ftp-7.4.6-150200.3.38.2.ppc64le.rpm php7-gd-7.4.6-150200.3.38.2.ppc64le.rpm php7-gettext-7.4.6-150200.3.38.2.ppc64le.rpm php7-gmp-7.4.6-150200.3.38.2.ppc64le.rpm php7-iconv-7.4.6-150200.3.38.2.ppc64le.rpm php7-intl-7.4.6-150200.3.38.2.ppc64le.rpm php7-json-7.4.6-150200.3.38.2.ppc64le.rpm php7-ldap-7.4.6-150200.3.38.2.ppc64le.rpm php7-mbstring-7.4.6-150200.3.38.2.ppc64le.rpm php7-mysql-7.4.6-150200.3.38.2.ppc64le.rpm php7-odbc-7.4.6-150200.3.38.2.ppc64le.rpm php7-opcache-7.4.6-150200.3.38.2.ppc64le.rpm php7-openssl-7.4.6-150200.3.38.2.ppc64le.rpm php7-pcntl-7.4.6-150200.3.38.2.ppc64le.rpm php7-pdo-7.4.6-150200.3.38.2.ppc64le.rpm php7-pgsql-7.4.6-150200.3.38.2.ppc64le.rpm php7-phar-7.4.6-150200.3.38.2.ppc64le.rpm php7-posix-7.4.6-150200.3.38.2.ppc64le.rpm php7-readline-7.4.6-150200.3.38.2.ppc64le.rpm php7-shmop-7.4.6-150200.3.38.2.ppc64le.rpm php7-snmp-7.4.6-150200.3.38.2.ppc64le.rpm php7-soap-7.4.6-150200.3.38.2.ppc64le.rpm php7-sockets-7.4.6-150200.3.38.2.ppc64le.rpm php7-sodium-7.4.6-150200.3.38.2.ppc64le.rpm php7-sqlite-7.4.6-150200.3.38.2.ppc64le.rpm php7-sysvmsg-7.4.6-150200.3.38.2.ppc64le.rpm php7-sysvsem-7.4.6-150200.3.38.2.ppc64le.rpm php7-sysvshm-7.4.6-150200.3.38.2.ppc64le.rpm php7-test-7.4.6-150200.3.38.2.ppc64le.rpm php7-tidy-7.4.6-150200.3.38.2.ppc64le.rpm php7-tokenizer-7.4.6-150200.3.38.2.ppc64le.rpm php7-xmlreader-7.4.6-150200.3.38.2.ppc64le.rpm php7-xmlrpc-7.4.6-150200.3.38.2.ppc64le.rpm php7-xmlwriter-7.4.6-150200.3.38.2.ppc64le.rpm php7-xsl-7.4.6-150200.3.38.2.ppc64le.rpm php7-zip-7.4.6-150200.3.38.2.ppc64le.rpm php7-zlib-7.4.6-150200.3.38.2.ppc64le.rpm apache2-mod_php7-7.4.6-150200.3.38.2.aarch64.rpm php7-7.4.6-150200.3.38.2.aarch64.rpm php7-bcmath-7.4.6-150200.3.38.2.aarch64.rpm php7-bz2-7.4.6-150200.3.38.2.aarch64.rpm php7-calendar-7.4.6-150200.3.38.2.aarch64.rpm php7-ctype-7.4.6-150200.3.38.2.aarch64.rpm php7-curl-7.4.6-150200.3.38.2.aarch64.rpm php7-dba-7.4.6-150200.3.38.2.aarch64.rpm php7-devel-7.4.6-150200.3.38.2.aarch64.rpm php7-dom-7.4.6-150200.3.38.2.aarch64.rpm php7-embed-7.4.6-150200.3.38.2.aarch64.rpm php7-enchant-7.4.6-150200.3.38.2.aarch64.rpm php7-exif-7.4.6-150200.3.38.2.aarch64.rpm php7-fastcgi-7.4.6-150200.3.38.2.aarch64.rpm php7-fileinfo-7.4.6-150200.3.38.2.aarch64.rpm php7-firebird-7.4.6-150200.3.38.2.aarch64.rpm php7-fpm-7.4.6-150200.3.38.2.aarch64.rpm php7-ftp-7.4.6-150200.3.38.2.aarch64.rpm php7-gd-7.4.6-150200.3.38.2.aarch64.rpm php7-gettext-7.4.6-150200.3.38.2.aarch64.rpm php7-gmp-7.4.6-150200.3.38.2.aarch64.rpm php7-iconv-7.4.6-150200.3.38.2.aarch64.rpm php7-intl-7.4.6-150200.3.38.2.aarch64.rpm php7-json-7.4.6-150200.3.38.2.aarch64.rpm php7-ldap-7.4.6-150200.3.38.2.aarch64.rpm php7-mbstring-7.4.6-150200.3.38.2.aarch64.rpm php7-mysql-7.4.6-150200.3.38.2.aarch64.rpm php7-odbc-7.4.6-150200.3.38.2.aarch64.rpm php7-opcache-7.4.6-150200.3.38.2.aarch64.rpm php7-openssl-7.4.6-150200.3.38.2.aarch64.rpm php7-pcntl-7.4.6-150200.3.38.2.aarch64.rpm php7-pdo-7.4.6-150200.3.38.2.aarch64.rpm php7-pgsql-7.4.6-150200.3.38.2.aarch64.rpm php7-phar-7.4.6-150200.3.38.2.aarch64.rpm php7-posix-7.4.6-150200.3.38.2.aarch64.rpm php7-readline-7.4.6-150200.3.38.2.aarch64.rpm php7-shmop-7.4.6-150200.3.38.2.aarch64.rpm php7-snmp-7.4.6-150200.3.38.2.aarch64.rpm php7-soap-7.4.6-150200.3.38.2.aarch64.rpm php7-sockets-7.4.6-150200.3.38.2.aarch64.rpm php7-sodium-7.4.6-150200.3.38.2.aarch64.rpm php7-sqlite-7.4.6-150200.3.38.2.aarch64.rpm php7-sysvmsg-7.4.6-150200.3.38.2.aarch64.rpm php7-sysvsem-7.4.6-150200.3.38.2.aarch64.rpm php7-sysvshm-7.4.6-150200.3.38.2.aarch64.rpm php7-test-7.4.6-150200.3.38.2.aarch64.rpm php7-tidy-7.4.6-150200.3.38.2.aarch64.rpm php7-tokenizer-7.4.6-150200.3.38.2.aarch64.rpm php7-xmlreader-7.4.6-150200.3.38.2.aarch64.rpm php7-xmlrpc-7.4.6-150200.3.38.2.aarch64.rpm php7-xmlwriter-7.4.6-150200.3.38.2.aarch64.rpm php7-xsl-7.4.6-150200.3.38.2.aarch64.rpm php7-zip-7.4.6-150200.3.38.2.aarch64.rpm php7-zlib-7.4.6-150200.3.38.2.aarch64.rpm openSUSE-SLE-15.3-2022-1679 moderate SUSE Updates openSUSE-SLE 15.3 This update for sssd provides the following fix: - update to meet last ldb2 version update. (bsc#1199362) libipa_hbac-devel-1.16.1-150300.23.28.1.x86_64.rpm libipa_hbac0-1.16.1-150300.23.28.1.x86_64.rpm libnfsidmap-sss-1.16.1-150300.23.28.1.x86_64.rpm libsss_certmap-devel-1.16.1-150300.23.28.1.x86_64.rpm libsss_certmap0-1.16.1-150300.23.28.1.x86_64.rpm libsss_idmap-devel-1.16.1-150300.23.28.1.x86_64.rpm libsss_idmap0-1.16.1-150300.23.28.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.28.1.x86_64.rpm libsss_nss_idmap0-1.16.1-150300.23.28.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-150300.23.28.1.x86_64.rpm libsss_simpleifp0-1.16.1-150300.23.28.1.x86_64.rpm python3-ipa_hbac-1.16.1-150300.23.28.1.x86_64.rpm python3-sss-murmur-1.16.1-150300.23.28.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-150300.23.28.1.x86_64.rpm python3-sssd-config-1.16.1-150300.23.28.1.x86_64.rpm sssd-1.16.1-150300.23.28.1.src.rpm sssd-1.16.1-150300.23.28.1.x86_64.rpm sssd-ad-1.16.1-150300.23.28.1.x86_64.rpm sssd-common-1.16.1-150300.23.28.1.x86_64.rpm sssd-common-32bit-1.16.1-150300.23.28.1.x86_64.rpm sssd-dbus-1.16.1-150300.23.28.1.x86_64.rpm sssd-ipa-1.16.1-150300.23.28.1.x86_64.rpm sssd-krb5-1.16.1-150300.23.28.1.x86_64.rpm sssd-krb5-common-1.16.1-150300.23.28.1.x86_64.rpm sssd-ldap-1.16.1-150300.23.28.1.x86_64.rpm sssd-proxy-1.16.1-150300.23.28.1.x86_64.rpm sssd-tools-1.16.1-150300.23.28.1.x86_64.rpm sssd-wbclient-1.16.1-150300.23.28.1.x86_64.rpm sssd-wbclient-devel-1.16.1-150300.23.28.1.x86_64.rpm sssd-winbind-idmap-1.16.1-150300.23.28.1.x86_64.rpm libipa_hbac-devel-1.16.1-150300.23.28.1.s390x.rpm libipa_hbac0-1.16.1-150300.23.28.1.s390x.rpm libnfsidmap-sss-1.16.1-150300.23.28.1.s390x.rpm libsss_certmap-devel-1.16.1-150300.23.28.1.s390x.rpm libsss_certmap0-1.16.1-150300.23.28.1.s390x.rpm libsss_idmap-devel-1.16.1-150300.23.28.1.s390x.rpm libsss_idmap0-1.16.1-150300.23.28.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-150300.23.28.1.s390x.rpm libsss_nss_idmap0-1.16.1-150300.23.28.1.s390x.rpm libsss_simpleifp-devel-1.16.1-150300.23.28.1.s390x.rpm libsss_simpleifp0-1.16.1-150300.23.28.1.s390x.rpm python3-ipa_hbac-1.16.1-150300.23.28.1.s390x.rpm python3-sss-murmur-1.16.1-150300.23.28.1.s390x.rpm python3-sss_nss_idmap-1.16.1-150300.23.28.1.s390x.rpm python3-sssd-config-1.16.1-150300.23.28.1.s390x.rpm sssd-1.16.1-150300.23.28.1.s390x.rpm sssd-ad-1.16.1-150300.23.28.1.s390x.rpm sssd-common-1.16.1-150300.23.28.1.s390x.rpm sssd-dbus-1.16.1-150300.23.28.1.s390x.rpm sssd-ipa-1.16.1-150300.23.28.1.s390x.rpm sssd-krb5-1.16.1-150300.23.28.1.s390x.rpm sssd-krb5-common-1.16.1-150300.23.28.1.s390x.rpm sssd-ldap-1.16.1-150300.23.28.1.s390x.rpm sssd-proxy-1.16.1-150300.23.28.1.s390x.rpm sssd-tools-1.16.1-150300.23.28.1.s390x.rpm sssd-wbclient-1.16.1-150300.23.28.1.s390x.rpm sssd-wbclient-devel-1.16.1-150300.23.28.1.s390x.rpm sssd-winbind-idmap-1.16.1-150300.23.28.1.s390x.rpm libipa_hbac-devel-1.16.1-150300.23.28.1.ppc64le.rpm libipa_hbac0-1.16.1-150300.23.28.1.ppc64le.rpm libnfsidmap-sss-1.16.1-150300.23.28.1.ppc64le.rpm libsss_certmap-devel-1.16.1-150300.23.28.1.ppc64le.rpm libsss_certmap0-1.16.1-150300.23.28.1.ppc64le.rpm libsss_idmap-devel-1.16.1-150300.23.28.1.ppc64le.rpm libsss_idmap0-1.16.1-150300.23.28.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-150300.23.28.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-150300.23.28.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-150300.23.28.1.ppc64le.rpm libsss_simpleifp0-1.16.1-150300.23.28.1.ppc64le.rpm python3-ipa_hbac-1.16.1-150300.23.28.1.ppc64le.rpm python3-sss-murmur-1.16.1-150300.23.28.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-150300.23.28.1.ppc64le.rpm python3-sssd-config-1.16.1-150300.23.28.1.ppc64le.rpm sssd-1.16.1-150300.23.28.1.ppc64le.rpm sssd-ad-1.16.1-150300.23.28.1.ppc64le.rpm sssd-common-1.16.1-150300.23.28.1.ppc64le.rpm sssd-dbus-1.16.1-150300.23.28.1.ppc64le.rpm sssd-ipa-1.16.1-150300.23.28.1.ppc64le.rpm sssd-krb5-1.16.1-150300.23.28.1.ppc64le.rpm sssd-krb5-common-1.16.1-150300.23.28.1.ppc64le.rpm sssd-ldap-1.16.1-150300.23.28.1.ppc64le.rpm sssd-proxy-1.16.1-150300.23.28.1.ppc64le.rpm sssd-tools-1.16.1-150300.23.28.1.ppc64le.rpm sssd-wbclient-1.16.1-150300.23.28.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-150300.23.28.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-150300.23.28.1.ppc64le.rpm libipa_hbac-devel-1.16.1-150300.23.28.1.aarch64.rpm libipa_hbac0-1.16.1-150300.23.28.1.aarch64.rpm libnfsidmap-sss-1.16.1-150300.23.28.1.aarch64.rpm libsss_certmap-devel-1.16.1-150300.23.28.1.aarch64.rpm libsss_certmap0-1.16.1-150300.23.28.1.aarch64.rpm libsss_idmap-devel-1.16.1-150300.23.28.1.aarch64.rpm libsss_idmap0-1.16.1-150300.23.28.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.28.1.aarch64.rpm libsss_nss_idmap0-1.16.1-150300.23.28.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-150300.23.28.1.aarch64.rpm libsss_simpleifp0-1.16.1-150300.23.28.1.aarch64.rpm python3-ipa_hbac-1.16.1-150300.23.28.1.aarch64.rpm python3-sss-murmur-1.16.1-150300.23.28.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-150300.23.28.1.aarch64.rpm python3-sssd-config-1.16.1-150300.23.28.1.aarch64.rpm sssd-1.16.1-150300.23.28.1.aarch64.rpm sssd-ad-1.16.1-150300.23.28.1.aarch64.rpm sssd-common-1.16.1-150300.23.28.1.aarch64.rpm sssd-dbus-1.16.1-150300.23.28.1.aarch64.rpm sssd-ipa-1.16.1-150300.23.28.1.aarch64.rpm sssd-krb5-1.16.1-150300.23.28.1.aarch64.rpm sssd-krb5-common-1.16.1-150300.23.28.1.aarch64.rpm sssd-ldap-1.16.1-150300.23.28.1.aarch64.rpm sssd-proxy-1.16.1-150300.23.28.1.aarch64.rpm sssd-tools-1.16.1-150300.23.28.1.aarch64.rpm sssd-wbclient-1.16.1-150300.23.28.1.aarch64.rpm sssd-wbclient-devel-1.16.1-150300.23.28.1.aarch64.rpm sssd-winbind-idmap-1.16.1-150300.23.28.1.aarch64.rpm openSUSE-SLE-15.3-2022-1838 moderate SUSE Updates openSUSE-SLE 15.3 This update for firewalld fixes the following issues: - Fix regression introduced in previous patch (an api change to a function also needed backporting) (bsc#1198814) firewall-applet-0.9.3-150300.3.9.1.noarch.rpm firewall-config-0.9.3-150300.3.9.1.noarch.rpm firewall-macros-0.9.3-150300.3.9.1.noarch.rpm firewalld-0.9.3-150300.3.9.1.noarch.rpm firewalld-0.9.3-150300.3.9.1.src.rpm firewalld-lang-0.9.3-150300.3.9.1.noarch.rpm python3-firewall-0.9.3-150300.3.9.1.noarch.rpm openSUSE-SLE-15.3-2022-1715 low SUSE Updates openSUSE-SLE 15.3 This update for python-configparser fixes the following issues: - Fixed issue on Python 2.x when future is present had unintended consequences. python-configparser-3.7.3-150100.3.3.1.src.rpm python2-configparser-3.7.3-150100.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-2118 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: golang-github-QubitProducts-exporter_exporter: - Adapted to build on Enterprise Linux. - Fix build for RedHat 7 - Require Go >= 1.14 also for CentOS - Add support for CentOS - Replace %{?systemd_requires} with %{?systemd_ordering} mgr-cfg: - Version 4.3.6-1 * Corrected source URL in spec file * Fix installation problem for SLE15SP4 due missing python-selinux * Fix python selinux package name depending on build target (bsc#1193600) * Do not build python 2 package for SLE15SP4 and higher * Remove unused legacy code mgr-custom-info: - Version 4.3.3-1 * Remove unused legacy code mgr-daemon: - Version 4.3.4-1 * Corrected source URLs in spec file. * Update translation strings mgr-osad: - Version 4.3.6-1 * Corrected source URL in spec file. * Do not build python 2 package for SLE15SP4 and higher * Removed spacewalk-selinux dependencies. * Updated source url. mgr-push: - Version 4.3.4-1 * Corrected source URLs in spec file. mgr-virtualization: - Version 4.3.5-1 * Corrected source URLs in spec file. * Do not build python 2 package for SLE15SP4 and higher prometheus-blackbox_exporter: - Enhanced to build on Enterprise Linux 8 prometheus-postgres_exporter: - Updated for RHEL8. python-hwdata: - Require python macros for building rhnlib: - Version 4.3.4-1 * Reorganize python files spacecmd: - Version 4.3.11-1 * on full system update call schedulePackageUpdate API (bsc#1197507) * parse boolean paramaters correctly (bsc#1197689) * Add parameter to set containerized proxy SSH port * Add proxy config generation subcommand * Option 'org_createfirst' added to perform initial organization and user creation * Added gettext build requirement for RHEL. * Removed RHEL 5 references. * Include group formulas configuration in spacecmd group_backup and spacecmd group_restore. This changes backup format to json, previously used plain text is still supported for reading (bsc#1190462) * Update translation strings * Improved event history listing and added new system_eventdetails command to retrieve the details of an event * Make schedule_deletearchived to get all actions without display limit * Allow passing a date limit for schedule_deletearchived on spacecmd (bsc#1181223) spacewalk-client-tools: - Version 4.3.9-1 * Corrected source URLs in spec file. * do not build python 2 package for SLE15 * Remove unused legacy code * Update translation strings spacewalk-koan: - Version 4.3.5-1 * Corrected source URLs in spec file. spacewalk-oscap: - Version 4.3.5-1 * Corrected source URLs in spec file. * Do not build python 2 package for SLE15SP4 and higher spacewalk-remote-utils: - Version 4.3.3-1 * Adapt the package for changes in rhnlib supportutils-plugin-susemanager-client: - Version 4.3.2-1 * Add proxy containers config and logs suseRegisterInfo: - Version 4.3.3-1 * Bump version to 4.3.0 supportutils-plugin-salt: - Add support for Salt Bundle uyuni-common-libs: - Version 4.3.4-1 * implement more decompression algorithms for reposync (bsc#1196704) * Reorganize python files * Add decompression of zck files to fileutils golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.12.1.src.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.12.1.x86_64.rpm golang-github-prometheus-promu-0.13.0-150000.3.6.1.src.rpm golang-github-prometheus-promu-0.13.0-150000.3.6.1.x86_64.rpm prometheus-postgres_exporter-0.10.0-150000.1.8.2.src.rpm prometheus-postgres_exporter-0.10.0-150000.1.8.2.x86_64.rpm python-hwdata-2.3.5-150000.3.6.1.src.rpm python2-hwdata-2.3.5-150000.3.6.1.noarch.rpm python3-hwdata-2.3.5-150000.3.6.1.noarch.rpm spacecmd-4.3.11-150000.3.80.2.noarch.rpm spacecmd-4.3.11-150000.3.80.2.src.rpm supportutils-plugin-salt-1.2.0-150000.3.6.1.noarch.rpm supportutils-plugin-salt-1.2.0-150000.3.6.1.src.rpm supportutils-plugin-susemanager-client-4.3.2-150000.3.18.1.noarch.rpm supportutils-plugin-susemanager-client-4.3.2-150000.3.18.1.src.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.12.1.s390x.rpm golang-github-prometheus-promu-0.13.0-150000.3.6.1.s390x.rpm prometheus-postgres_exporter-0.10.0-150000.1.8.2.s390x.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.12.1.ppc64le.rpm golang-github-prometheus-promu-0.13.0-150000.3.6.1.ppc64le.rpm prometheus-postgres_exporter-0.10.0-150000.1.8.2.ppc64le.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.12.1.aarch64.rpm golang-github-prometheus-promu-0.13.0-150000.3.6.1.aarch64.rpm prometheus-postgres_exporter-0.10.0-150000.1.8.2.aarch64.rpm openSUSE-SLE-15.3-2022-1824 moderate SUSE Updates openSUSE-SLE 15.3 This update for dhcp fixes the following issues: - Properly handle DHCRELAY(6)_OPTIONS (bsc#1198657) dhcp-4.3.6.P1-150000.6.14.1.src.rpm dhcp-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-client-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-devel-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-doc-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-relay-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-server-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-client-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-devel-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-doc-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-relay-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-server-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-client-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-devel-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-doc-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-relay-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-server-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-4.3.6.P1-150000.6.14.1.aarch64.rpm dhcp-client-4.3.6.P1-150000.6.14.1.aarch64.rpm dhcp-devel-4.3.6.P1-150000.6.14.1.aarch64.rpm dhcp-doc-4.3.6.P1-150000.6.14.1.aarch64.rpm dhcp-relay-4.3.6.P1-150000.6.14.1.aarch64.rpm dhcp-server-4.3.6.P1-150000.6.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-1871 moderate SUSE Updates openSUSE-SLE 15.3 This update for nftables fixes the following issues: - Fix rare crashes that could occur e.g. in firewalld (bsc#1197606) libnftables1-0.9.8-150300.3.3.1.x86_64.rpm nftables-0.9.8-150300.3.3.1.src.rpm nftables-0.9.8-150300.3.3.1.x86_64.rpm nftables-devel-0.9.8-150300.3.3.1.x86_64.rpm python3-nftables-0.9.8-150300.3.3.1.x86_64.rpm libnftables1-0.9.8-150300.3.3.1.s390x.rpm nftables-0.9.8-150300.3.3.1.s390x.rpm nftables-devel-0.9.8-150300.3.3.1.s390x.rpm python3-nftables-0.9.8-150300.3.3.1.s390x.rpm libnftables1-0.9.8-150300.3.3.1.ppc64le.rpm nftables-0.9.8-150300.3.3.1.ppc64le.rpm nftables-devel-0.9.8-150300.3.3.1.ppc64le.rpm python3-nftables-0.9.8-150300.3.3.1.ppc64le.rpm libnftables1-0.9.8-150300.3.3.1.aarch64.rpm nftables-0.9.8-150300.3.3.1.aarch64.rpm nftables-devel-0.9.8-150300.3.3.1.aarch64.rpm python3-nftables-0.9.8-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2140 important SUSE Updates openSUSE-SLE 15.3 This security update for golang-github-prometheus-node_exporter provides: Update golang-github-prometheus-node_exporter from version 1.1.2 to version 1.3.0 (bsc#1196338, jsc#SLE-24238, jsc#SLE-24239) - CVE-2022-21698: Denial of service using InstrumentHandlerCounter - Update vendor tarball with prometheus/client_golang 1.11.1 - Update to 1.3.0 * [CHANGE] Add path label to rapl collector #2146 * [CHANGE] Exclude filesystems under /run/credentials #2157 * [CHANGE] Add TCPTimeouts to netstat default filter #2189 * [FEATURE] Add lnstat collector for metrics from /proc/net/stat/ #1771 * [FEATURE] Add darwin powersupply collector #1777 * [FEATURE] Add support for monitoring GPUs on Linux #1998 * [FEATURE] Add Darwin thermal collector #2032 * [FEATURE] Add os release collector #2094 * [FEATURE] Add netdev.address-info collector #2105 * [FEATURE] Add clocksource metrics to time collector #2197 * [ENHANCEMENT] Support glob textfile collector directories #1985 * [ENHANCEMENT] ethtool: Expose node_ethtool_info metric #2080 * [ENHANCEMENT] Use include/exclude flags for ethtool filtering #2165 * [ENHANCEMENT] Add flag to disable guest CPU metrics #2123 * [ENHANCEMENT] Add DMI collector #2131 * [ENHANCEMENT] Add threads metrics to processes collector #2164 * [ENHANCMMENT] Reduce timer GC delays in the Linux filesystem collector #2169 * [ENHANCMMENT] Add TCPTimeouts to netstat default filter #2189 * [ENHANCMMENT] Use SysctlTimeval for boottime collector on BSD #2208 * [BUGFIX] ethtool: Sanitize metric names #2093 * [BUGFIX] Fix ethtool collector for multiple interfaces #2126 * [BUGFIX] Fix possible panic on macOS #2133 * [BUGFIX] Collect flag_info and bug_info only for one core #2156 * [BUGFIX] Prevent duplicate ethtool metric names #2187 - Update to 1.2.2 * Bug fixes Fix processes collector long int parsing #2112 - Update to 1.2.1 * Removed Remove obsolete capture permission denied error fix already included upstream * Bug fixes Fix zoneinfo parsing prometheus/procfs#386 Fix nvme collector log noise #2091 Fix rapl collector log noise #2092 - Update to 1.2.0 * Changes Rename filesystem collector flags to match other collectors #2012 Make node_exporter print usage to STDOUT #203 * Features Add conntrack statistics metrics #1155 Add ethtool stats collector #1832 Add flag to ignore network speed if it is unknown #1989 Add tapestats collector for Linux #2044 Add nvme collector #2062 * Enhancements Add ErrorLog plumbing to promhttp #1887 Add more Infiniband counters #2019 netclass: retrieve interface names and filter before parsing #2033 Add time zone offset metric #2060 * Bug fixes Handle errors from disabled PSI subsystem #1983 Fix panic when using backwards compatible flags #2000 Fix wrong value for OpenBSD memory buffer cache #2015 Only initiate collectors once #2048 Handle small backwards jumps in CPU idle #2067 - Capture permission denied error for "energy_uj" file (bsc#1190535) golang-github-prometheus-node_exporter-1.3.0-150100.3.12.1.src.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.12.1.x86_64.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.12.1.s390x.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.12.1.ppc64le.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-2139 important SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-alertmanager fixes the following issues: Update golang-github-prometheus-alertmanager from version 0.21.0 to version 0.23.0 (bsc#1196338, jsc#SLE-24077) - CVE-2022-21698: Denial of service using InstrumentHandlerCounter - Update vendor tarball with prometheus/client_golang 1.11.1 - Update required Go version to 1.16 - Use %autosetup macro - Update to version 0.23.0: * Release 0.23.0 * Release 0.23.0-rc.0 * amtool: Detect version drift and warn users (#2672) * Add ability to skip TLS verification for amtool (#2663) * Fix empty isEqual in amtool. (#2668) * Fix main tests (#2670) * cli: add new template render command (#2538) * OpsGenie: refer to alert instead of incident (#2609) * Docs: target_match and source_match are DEPRECATED (#2665) * Fix test not waiting for cluster member to be ready - Add go_modules to _service. - Added hardening to systemd service(s) with a modified prometheus-alertmanager.service (bsc#1181400) golang-github-prometheus-alertmanager-0.23.0-150100.4.7.1.src.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.7.1.x86_64.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.7.1.s390x.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.7.1.ppc64le.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-1666 important SUSE Updates openSUSE-SLE 15.3 This update for slurm fixes the following issues: - CVE-2022-29500: Fixed architectural flaw that could have been exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278). - CVE-2022-29501: Fixed a problem that an unprivileged user could have sent data to arbitrary unix socket as root (bsc#1199279). libnss_slurm2-20.11.9-150300.4.6.1.x86_64.rpm libpmi0-20.11.9-150300.4.6.1.x86_64.rpm libslurm36-20.11.9-150300.4.6.1.x86_64.rpm perl-slurm-20.11.9-150300.4.6.1.x86_64.rpm slurm-20.11.9-150300.4.6.1.src.rpm slurm-20.11.9-150300.4.6.1.x86_64.rpm slurm-auth-none-20.11.9-150300.4.6.1.x86_64.rpm slurm-config-20.11.9-150300.4.6.1.x86_64.rpm slurm-config-man-20.11.9-150300.4.6.1.x86_64.rpm slurm-cray-20.11.9-150300.4.6.1.x86_64.rpm slurm-devel-20.11.9-150300.4.6.1.x86_64.rpm slurm-doc-20.11.9-150300.4.6.1.x86_64.rpm slurm-hdf5-20.11.9-150300.4.6.1.x86_64.rpm slurm-lua-20.11.9-150300.4.6.1.x86_64.rpm slurm-munge-20.11.9-150300.4.6.1.x86_64.rpm slurm-node-20.11.9-150300.4.6.1.x86_64.rpm slurm-openlava-20.11.9-150300.4.6.1.x86_64.rpm slurm-pam_slurm-20.11.9-150300.4.6.1.x86_64.rpm slurm-plugins-20.11.9-150300.4.6.1.x86_64.rpm slurm-rest-20.11.9-150300.4.6.1.x86_64.rpm slurm-seff-20.11.9-150300.4.6.1.x86_64.rpm slurm-sjstat-20.11.9-150300.4.6.1.x86_64.rpm slurm-slurmdbd-20.11.9-150300.4.6.1.x86_64.rpm slurm-sql-20.11.9-150300.4.6.1.x86_64.rpm slurm-sview-20.11.9-150300.4.6.1.x86_64.rpm slurm-torque-20.11.9-150300.4.6.1.x86_64.rpm slurm-webdoc-20.11.9-150300.4.6.1.x86_64.rpm libnss_slurm2-20.11.9-150300.4.6.1.s390x.rpm libpmi0-20.11.9-150300.4.6.1.s390x.rpm libslurm36-20.11.9-150300.4.6.1.s390x.rpm perl-slurm-20.11.9-150300.4.6.1.s390x.rpm slurm-20.11.9-150300.4.6.1.s390x.rpm slurm-auth-none-20.11.9-150300.4.6.1.s390x.rpm slurm-config-20.11.9-150300.4.6.1.s390x.rpm slurm-config-man-20.11.9-150300.4.6.1.s390x.rpm slurm-cray-20.11.9-150300.4.6.1.s390x.rpm slurm-devel-20.11.9-150300.4.6.1.s390x.rpm slurm-doc-20.11.9-150300.4.6.1.s390x.rpm slurm-hdf5-20.11.9-150300.4.6.1.s390x.rpm slurm-lua-20.11.9-150300.4.6.1.s390x.rpm slurm-munge-20.11.9-150300.4.6.1.s390x.rpm slurm-node-20.11.9-150300.4.6.1.s390x.rpm slurm-openlava-20.11.9-150300.4.6.1.s390x.rpm slurm-pam_slurm-20.11.9-150300.4.6.1.s390x.rpm slurm-plugins-20.11.9-150300.4.6.1.s390x.rpm slurm-rest-20.11.9-150300.4.6.1.s390x.rpm slurm-seff-20.11.9-150300.4.6.1.s390x.rpm slurm-sjstat-20.11.9-150300.4.6.1.s390x.rpm slurm-slurmdbd-20.11.9-150300.4.6.1.s390x.rpm slurm-sql-20.11.9-150300.4.6.1.s390x.rpm slurm-sview-20.11.9-150300.4.6.1.s390x.rpm slurm-torque-20.11.9-150300.4.6.1.s390x.rpm slurm-webdoc-20.11.9-150300.4.6.1.s390x.rpm libnss_slurm2-20.11.9-150300.4.6.1.ppc64le.rpm libpmi0-20.11.9-150300.4.6.1.ppc64le.rpm libslurm36-20.11.9-150300.4.6.1.ppc64le.rpm perl-slurm-20.11.9-150300.4.6.1.ppc64le.rpm slurm-20.11.9-150300.4.6.1.ppc64le.rpm slurm-auth-none-20.11.9-150300.4.6.1.ppc64le.rpm slurm-config-20.11.9-150300.4.6.1.ppc64le.rpm slurm-config-man-20.11.9-150300.4.6.1.ppc64le.rpm slurm-cray-20.11.9-150300.4.6.1.ppc64le.rpm slurm-devel-20.11.9-150300.4.6.1.ppc64le.rpm slurm-doc-20.11.9-150300.4.6.1.ppc64le.rpm slurm-hdf5-20.11.9-150300.4.6.1.ppc64le.rpm slurm-lua-20.11.9-150300.4.6.1.ppc64le.rpm slurm-munge-20.11.9-150300.4.6.1.ppc64le.rpm slurm-node-20.11.9-150300.4.6.1.ppc64le.rpm slurm-openlava-20.11.9-150300.4.6.1.ppc64le.rpm slurm-pam_slurm-20.11.9-150300.4.6.1.ppc64le.rpm slurm-plugins-20.11.9-150300.4.6.1.ppc64le.rpm slurm-rest-20.11.9-150300.4.6.1.ppc64le.rpm slurm-seff-20.11.9-150300.4.6.1.ppc64le.rpm slurm-sjstat-20.11.9-150300.4.6.1.ppc64le.rpm slurm-slurmdbd-20.11.9-150300.4.6.1.ppc64le.rpm slurm-sql-20.11.9-150300.4.6.1.ppc64le.rpm slurm-sview-20.11.9-150300.4.6.1.ppc64le.rpm slurm-torque-20.11.9-150300.4.6.1.ppc64le.rpm slurm-webdoc-20.11.9-150300.4.6.1.ppc64le.rpm libnss_slurm2-20.11.9-150300.4.6.1.aarch64.rpm libpmi0-20.11.9-150300.4.6.1.aarch64.rpm libslurm36-20.11.9-150300.4.6.1.aarch64.rpm perl-slurm-20.11.9-150300.4.6.1.aarch64.rpm slurm-20.11.9-150300.4.6.1.aarch64.rpm slurm-auth-none-20.11.9-150300.4.6.1.aarch64.rpm slurm-config-20.11.9-150300.4.6.1.aarch64.rpm slurm-config-man-20.11.9-150300.4.6.1.aarch64.rpm slurm-cray-20.11.9-150300.4.6.1.aarch64.rpm slurm-devel-20.11.9-150300.4.6.1.aarch64.rpm slurm-doc-20.11.9-150300.4.6.1.aarch64.rpm slurm-hdf5-20.11.9-150300.4.6.1.aarch64.rpm slurm-lua-20.11.9-150300.4.6.1.aarch64.rpm slurm-munge-20.11.9-150300.4.6.1.aarch64.rpm slurm-node-20.11.9-150300.4.6.1.aarch64.rpm slurm-openlava-20.11.9-150300.4.6.1.aarch64.rpm slurm-pam_slurm-20.11.9-150300.4.6.1.aarch64.rpm slurm-plugins-20.11.9-150300.4.6.1.aarch64.rpm slurm-rest-20.11.9-150300.4.6.1.aarch64.rpm slurm-seff-20.11.9-150300.4.6.1.aarch64.rpm slurm-sjstat-20.11.9-150300.4.6.1.aarch64.rpm slurm-slurmdbd-20.11.9-150300.4.6.1.aarch64.rpm slurm-sql-20.11.9-150300.4.6.1.aarch64.rpm slurm-sview-20.11.9-150300.4.6.1.aarch64.rpm slurm-torque-20.11.9-150300.4.6.1.aarch64.rpm slurm-webdoc-20.11.9-150300.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1831 important SUSE Updates openSUSE-SLE 15.3 This update for slurm_20_11 fixes the following issues: - CVE-2022-29500: Fixed architectural flaw that could have been exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278). - CVE-2022-29501: Fixed a problem that an unprivileged user could have sent data to arbitrary unix socket as root (bsc#1199279). libnss_slurm2_20_11-20.11.9-150200.6.10.1.x86_64.rpm libpmi0_20_11-20.11.9-150200.6.10.1.x86_64.rpm perl-slurm_20_11-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-20.11.9-150200.6.10.1.src.rpm slurm_20_11-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-auth-none-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-config-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-config-man-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-cray-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-devel-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-doc-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-hdf5-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-lua-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-munge-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-node-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-openlava-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-pam_slurm-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-plugins-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-rest-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-seff-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-sjstat-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-slurmdbd-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-sql-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-sview-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-torque-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-webdoc-20.11.9-150200.6.10.1.x86_64.rpm libnss_slurm2_20_11-20.11.9-150200.6.10.1.s390x.rpm libpmi0_20_11-20.11.9-150200.6.10.1.s390x.rpm perl-slurm_20_11-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-auth-none-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-config-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-config-man-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-cray-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-devel-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-doc-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-hdf5-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-lua-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-munge-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-node-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-openlava-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-pam_slurm-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-plugins-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-rest-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-seff-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-sjstat-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-slurmdbd-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-sql-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-sview-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-torque-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-webdoc-20.11.9-150200.6.10.1.s390x.rpm libnss_slurm2_20_11-20.11.9-150200.6.10.1.ppc64le.rpm libpmi0_20_11-20.11.9-150200.6.10.1.ppc64le.rpm perl-slurm_20_11-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-auth-none-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-config-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-config-man-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-cray-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-devel-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-doc-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-hdf5-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-lua-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-munge-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-node-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-openlava-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-pam_slurm-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-plugins-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-rest-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-seff-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-sjstat-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-slurmdbd-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-sql-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-sview-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-torque-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-webdoc-20.11.9-150200.6.10.1.ppc64le.rpm libnss_slurm2_20_11-20.11.9-150200.6.10.1.aarch64.rpm libpmi0_20_11-20.11.9-150200.6.10.1.aarch64.rpm perl-slurm_20_11-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-auth-none-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-config-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-config-man-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-cray-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-devel-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-doc-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-hdf5-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-lua-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-munge-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-node-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-openlava-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-pam_slurm-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-plugins-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-rest-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-seff-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-sjstat-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-slurmdbd-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-sql-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-sview-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-torque-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-webdoc-20.11.9-150200.6.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-1752 important SUSE Updates openSUSE-SLE 15.3 This update for samba provides the following fixes: Bugfixes: - Revert NIS support removal (bsc#1199247); - Update to meet last ldb2 version update (bsc#1199362). - Use requires_eq macro to require the libldb2 version available at samba-dsdb-modules build time (bsc#1199362). - Add provides to samba-client-libs package to fix upgrades from previous versions (bsc#1197995). - Add missing samba-client requirement to samba-winbind package (bsc#1198255). - Add missing samba-libs requirement to samba-winbind package (bsc#1198255). - Fixed mismatched version of libldb2 (bsc#1196788). - Dropped obsolete Samba fsrvp v0->v1 state upgrade functionality (bsc#1080338). - Fixed ntlm authentications with "winbind use default domain = yes" (bsc#1173429, bsc#1196308). - Fixed samba-ad-dc status warning notification message by disabling systemd notifications in bgqd (bsc#1195896). - Fixed libldb version mismatch in Samba dsdb component (bsc#1118508). ctdb-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm ctdb-pcp-pmda-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm libsamba-policy-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm libsamba-policy-python3-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm libsamba-policy0-python3-32bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm libsamba-policy0-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.src.rpm samba-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-ad-dc-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-ad-dc-libs-32bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-ad-dc-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-ceph-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-client-32bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-client-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-client-libs-32bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-client-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-devel-32bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-doc-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.noarch.rpm samba-dsdb-modules-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-gpupdate-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-ldb-ldap-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-libs-32bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-libs-python3-32bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-libs-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-test-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-tool-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-winbind-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-winbind-libs-32bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm samba-winbind-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.x86_64.rpm ctdb-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm ctdb-pcp-pmda-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm libsamba-policy-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm libsamba-policy-python3-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm libsamba-policy0-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-ad-dc-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-ad-dc-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-client-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-client-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-dsdb-modules-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-gpupdate-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-ldb-ldap-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-libs-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-test-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-tool-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-winbind-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm samba-winbind-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.s390x.rpm ctdb-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm ctdb-pcp-pmda-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm libsamba-policy-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm libsamba-policy-python3-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm libsamba-policy0-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-ad-dc-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-ad-dc-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-client-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-client-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-dsdb-modules-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-gpupdate-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-ldb-ldap-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-libs-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-test-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-tool-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-winbind-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm samba-winbind-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.ppc64le.rpm ctdb-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm ctdb-pcp-pmda-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm libsamba-policy-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm libsamba-policy-python3-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm libsamba-policy0-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm libsamba-policy0-python3-64bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64_ilp32.rpm samba-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-ad-dc-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-ad-dc-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-ceph-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-client-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-client-64bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64_ilp32.rpm samba-client-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-devel-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-dsdb-modules-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-gpupdate-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-ldb-ldap-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-libs-64bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64_ilp32.rpm samba-libs-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-libs-python3-64bit-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64_ilp32.rpm samba-python3-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-test-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-tool-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-winbind-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm samba-winbind-libs-4.15.7+git.376.dd43aca9ab2-150300.3.32.1.aarch64.rpm openSUSE-SLE-15.3-2022-1803 moderate SUSE Updates openSUSE-SLE 15.3 This update for libarchive fixes the following issues: - CVE-2022-26280: Fixed out-of-bounds read via the component zipx_lzma_alone_init (bsc#1197634). bsdtar-3.4.2-150200.4.6.1.x86_64.rpm libarchive-3.4.2-150200.4.6.1.src.rpm libarchive-devel-3.4.2-150200.4.6.1.x86_64.rpm libarchive13-3.4.2-150200.4.6.1.x86_64.rpm libarchive13-32bit-3.4.2-150200.4.6.1.x86_64.rpm bsdtar-3.4.2-150200.4.6.1.s390x.rpm libarchive-devel-3.4.2-150200.4.6.1.s390x.rpm libarchive13-3.4.2-150200.4.6.1.s390x.rpm bsdtar-3.4.2-150200.4.6.1.ppc64le.rpm libarchive-devel-3.4.2-150200.4.6.1.ppc64le.rpm libarchive13-3.4.2-150200.4.6.1.ppc64le.rpm bsdtar-3.4.2-150200.4.6.1.aarch64.rpm libarchive-devel-3.4.2-150200.4.6.1.aarch64.rpm libarchive13-3.4.2-150200.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1862 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: - CVE-2022-29526: Fixed faccessat() system call operation that checked the wrong group (bsc#1199413). - go1.17.10 (released 2022-05-10) (bsc#1190649). go1.17-1.17.10-150000.1.34.1.i586.rpm go1.17-1.17.10-150000.1.34.1.src.rpm go1.17-doc-1.17.10-150000.1.34.1.i586.rpm go1.17-1.17.10-150000.1.34.1.x86_64.rpm go1.17-doc-1.17.10-150000.1.34.1.x86_64.rpm go1.17-race-1.17.10-150000.1.34.1.x86_64.rpm go1.17-1.17.10-150000.1.34.1.s390x.rpm go1.17-doc-1.17.10-150000.1.34.1.s390x.rpm go1.17-1.17.10-150000.1.34.1.ppc64le.rpm go1.17-doc-1.17.10-150000.1.34.1.ppc64le.rpm go1.17-1.17.10-150000.1.34.1.aarch64.rpm go1.17-doc-1.17.10-150000.1.34.1.aarch64.rpm go1.17-race-1.17.10-150000.1.34.1.aarch64.rpm openSUSE-SLE-15.3-2022-1829 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.18 fixes the following issues: - CVE-2022-29526: Fixed faccessat() system call operation that checked the wrong group (bsc#1199413). - go1.18.2 (released 2022-05-10) (bsc#1193742). go1.18-1.18.2-150000.1.17.1.src.rpm go1.18-1.18.2-150000.1.17.1.x86_64.rpm go1.18-doc-1.18.2-150000.1.17.1.x86_64.rpm go1.18-race-1.18.2-150000.1.17.1.x86_64.rpm go1.18-1.18.2-150000.1.17.1.s390x.rpm go1.18-doc-1.18.2-150000.1.17.1.s390x.rpm go1.18-1.18.2-150000.1.17.1.ppc64le.rpm go1.18-doc-1.18.2-150000.1.17.1.ppc64le.rpm go1.18-1.18.2-150000.1.17.1.aarch64.rpm go1.18-doc-1.18.2-150000.1.17.1.aarch64.rpm go1.18-race-1.18.2-150000.1.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-1730 important SUSE Updates openSUSE-SLE 15.3 This update for libslirp fixes the following issues: - CVE-2021-3592: Fixed invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364). - CVE-2021-3594: Fixed invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367). - CVE-2021-3595: Fixed invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366). - Fix a dhcp regression [bsc#1198773] libslirp-4.3.1-150300.6.2.src.rpm libslirp-devel-4.3.1-150300.6.2.x86_64.rpm libslirp0-4.3.1-150300.6.2.x86_64.rpm libslirp-devel-4.3.1-150300.6.2.s390x.rpm libslirp0-4.3.1-150300.6.2.s390x.rpm libslirp-devel-4.3.1-150300.6.2.ppc64le.rpm libslirp0-4.3.1-150300.6.2.ppc64le.rpm libslirp-devel-4.3.1-150300.6.2.aarch64.rpm libslirp0-4.3.1-150300.6.2.aarch64.rpm openSUSE-SLE-15.3-2022-1872 important SUSE Updates openSUSE-SLE 15.3 This update for oprofile fixes the following issues: - Resolve build issues due to binutils 2.34 api changes (bsc#1197793) libopagent1-1.3.0-150100.8.3.1.x86_64.rpm libopagent1-32bit-1.3.0-150100.8.3.1.x86_64.rpm oprofile-1.3.0-150100.8.3.1.src.rpm oprofile-1.3.0-150100.8.3.1.x86_64.rpm oprofile-32bit-1.3.0-150100.8.3.1.x86_64.rpm oprofile-devel-1.3.0-150100.8.3.1.x86_64.rpm libopagent1-1.3.0-150100.8.3.1.s390x.rpm oprofile-1.3.0-150100.8.3.1.s390x.rpm oprofile-devel-1.3.0-150100.8.3.1.s390x.rpm libopagent1-1.3.0-150100.8.3.1.ppc64le.rpm oprofile-1.3.0-150100.8.3.1.ppc64le.rpm oprofile-devel-1.3.0-150100.8.3.1.ppc64le.rpm libopagent1-1.3.0-150100.8.3.1.aarch64.rpm oprofile-1.3.0-150100.8.3.1.aarch64.rpm oprofile-devel-1.3.0-150100.8.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1719 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Various security fixes MFSA 2022-18 (bsc#1198970): - CVE-2022-1520: Incorrect security status shown after viewing an attached email (bmo#1745019). - CVE-2022-29914: Fullscreen notification bypass using popups (bmo#1746448). - CVE-2022-29909: Bypassing permission prompt in nested browsing contexts (bmo#1755081). - CVE-2022-29916: Leaking browser history with CSS variables (bmo#1760674). - CVE-2022-29911: iframe sandbox bypass (bmo#1761981). - CVE-2022-29912: Reader mode bypassed SameSite cookies (bmo#1692655). - CVE-2022-29913: Speech Synthesis feature not properly disabled (bmo#1764778). - CVE-2022-29917: Memory safety bugs fixed in Thunderbird 91.9 (bmo#1684739, bmo#1706441, bmo#1753298, bmo#1762614, bmo#1762620). MozillaThunderbird-91.9.0-150200.8.68.2.src.rpm MozillaThunderbird-91.9.0-150200.8.68.2.x86_64.rpm MozillaThunderbird-translations-common-91.9.0-150200.8.68.2.x86_64.rpm MozillaThunderbird-translations-other-91.9.0-150200.8.68.2.x86_64.rpm MozillaThunderbird-91.9.0-150200.8.68.2.s390x.rpm MozillaThunderbird-translations-common-91.9.0-150200.8.68.2.s390x.rpm MozillaThunderbird-translations-other-91.9.0-150200.8.68.2.s390x.rpm MozillaThunderbird-91.9.0-150200.8.68.2.ppc64le.rpm MozillaThunderbird-translations-common-91.9.0-150200.8.68.2.ppc64le.rpm MozillaThunderbird-translations-other-91.9.0-150200.8.68.2.ppc64le.rpm MozillaThunderbird-91.9.0-150200.8.68.2.aarch64.rpm MozillaThunderbird-translations-common-91.9.0-150200.8.68.2.aarch64.rpm MozillaThunderbird-translations-other-91.9.0-150200.8.68.2.aarch64.rpm openSUSE-SLE-15.3-2022-1883 important SUSE Updates openSUSE-SLE 15.3 This update for pcre2 fixes the following issues: - CVE-2022-1586: Fixed out-of-bounds read via missing Unicode property matching issue in JIT compiled regular expressions (bsc#1199232). libpcre2-16-0-10.31-150000.3.7.1.x86_64.rpm libpcre2-16-0-32bit-10.31-150000.3.7.1.x86_64.rpm libpcre2-32-0-10.31-150000.3.7.1.x86_64.rpm libpcre2-32-0-32bit-10.31-150000.3.7.1.x86_64.rpm libpcre2-8-0-10.31-150000.3.7.1.x86_64.rpm libpcre2-8-0-32bit-10.31-150000.3.7.1.x86_64.rpm libpcre2-posix2-10.31-150000.3.7.1.x86_64.rpm libpcre2-posix2-32bit-10.31-150000.3.7.1.x86_64.rpm pcre2-10.31-150000.3.7.1.src.rpm pcre2-devel-10.31-150000.3.7.1.x86_64.rpm pcre2-devel-static-10.31-150000.3.7.1.x86_64.rpm pcre2-doc-10.31-150000.3.7.1.noarch.rpm pcre2-tools-10.31-150000.3.7.1.x86_64.rpm libpcre2-16-0-10.31-150000.3.7.1.s390x.rpm libpcre2-32-0-10.31-150000.3.7.1.s390x.rpm libpcre2-8-0-10.31-150000.3.7.1.s390x.rpm libpcre2-posix2-10.31-150000.3.7.1.s390x.rpm pcre2-devel-10.31-150000.3.7.1.s390x.rpm pcre2-devel-static-10.31-150000.3.7.1.s390x.rpm pcre2-tools-10.31-150000.3.7.1.s390x.rpm libpcre2-16-0-10.31-150000.3.7.1.ppc64le.rpm libpcre2-32-0-10.31-150000.3.7.1.ppc64le.rpm libpcre2-8-0-10.31-150000.3.7.1.ppc64le.rpm libpcre2-posix2-10.31-150000.3.7.1.ppc64le.rpm pcre2-devel-10.31-150000.3.7.1.ppc64le.rpm pcre2-devel-static-10.31-150000.3.7.1.ppc64le.rpm pcre2-tools-10.31-150000.3.7.1.ppc64le.rpm libpcre2-16-0-10.31-150000.3.7.1.aarch64.rpm libpcre2-32-0-10.31-150000.3.7.1.aarch64.rpm libpcre2-8-0-10.31-150000.3.7.1.aarch64.rpm libpcre2-posix2-10.31-150000.3.7.1.aarch64.rpm pcre2-devel-10.31-150000.3.7.1.aarch64.rpm pcre2-devel-static-10.31-150000.3.7.1.aarch64.rpm pcre2-tools-10.31-150000.3.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-1727 moderate SUSE Updates openSUSE-SLE 15.3 This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220510 release. (bsc#1199423) Updated to Intel CPU Microcode 20220419 release. (bsc#1198717) - CVE-2022-21151: Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access (bsc#1199423). ucode-intel-20220510-150200.14.1.src.rpm ucode-intel-20220510-150200.14.1.x86_64.rpm openSUSE-SLE-15.3-2022-1925 moderate SUSE Updates openSUSE-SLE 15.3 This update for patch fixes the following issues: Security issues fixed: - CVE-2019-13636: Fixed follow symlinks unless --follow-symlinks is given. This increases the security against malicious patches (bsc#1142041). - CVE-2018-6952: Fixed swapping fakelines in pch_swap. This bug was causing a double free leading to a crash (bsc#1080985). Bugfixes: - Abort when cleaning up fails. This bug could cause an infinite loop when a patch wouldn't apply, leading to a segmentation fault (bsc#1111572). - Pass the correct stat to backup files. This bug would occasionally cause backup files to be missing when all hunks failed to apply (bsc#1198106). patch-2.7.6-150000.5.3.1.src.rpm patch-2.7.6-150000.5.3.1.x86_64.rpm patch-2.7.6-150000.5.3.1.s390x.rpm patch-2.7.6-150000.5.3.1.ppc64le.rpm patch-2.7.6-150000.5.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1762 moderate SUSE Updates openSUSE-SLE 15.3 This update for ImageMagick fixes the following issues: Security issues fixed: - CVE-2022-28463: Fixed buffer overflow in coders/cin.c (bsc#1199350). Bugfixes: - Use png_get_eXIf_1 when available (bsc#1197147). ImageMagick-7.0.7.34-150200.10.26.1.src.rpm ImageMagick-7.0.7.34-150200.10.26.1.x86_64.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.26.1.x86_64.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.26.1.x86_64.rpm ImageMagick-devel-32bit-7.0.7.34-150200.10.26.1.x86_64.rpm ImageMagick-devel-7.0.7.34-150200.10.26.1.x86_64.rpm ImageMagick-doc-7.0.7.34-150200.10.26.1.noarch.rpm ImageMagick-extra-7.0.7.34-150200.10.26.1.x86_64.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-150200.10.26.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.26.1.x86_64.rpm libMagick++-devel-32bit-7.0.7.34-150200.10.26.1.x86_64.rpm libMagick++-devel-7.0.7.34-150200.10.26.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-150200.10.26.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.26.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-150200.10.26.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.26.1.x86_64.rpm perl-PerlMagick-7.0.7.34-150200.10.26.1.x86_64.rpm ImageMagick-7.0.7.34-150200.10.26.1.s390x.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.26.1.s390x.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.26.1.s390x.rpm ImageMagick-devel-7.0.7.34-150200.10.26.1.s390x.rpm ImageMagick-extra-7.0.7.34-150200.10.26.1.s390x.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.26.1.s390x.rpm libMagick++-devel-7.0.7.34-150200.10.26.1.s390x.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.26.1.s390x.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.26.1.s390x.rpm perl-PerlMagick-7.0.7.34-150200.10.26.1.s390x.rpm ImageMagick-7.0.7.34-150200.10.26.1.ppc64le.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.26.1.ppc64le.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.26.1.ppc64le.rpm ImageMagick-devel-7.0.7.34-150200.10.26.1.ppc64le.rpm ImageMagick-extra-7.0.7.34-150200.10.26.1.ppc64le.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.26.1.ppc64le.rpm libMagick++-devel-7.0.7.34-150200.10.26.1.ppc64le.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.26.1.ppc64le.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.26.1.ppc64le.rpm perl-PerlMagick-7.0.7.34-150200.10.26.1.ppc64le.rpm ImageMagick-7.0.7.34-150200.10.26.1.aarch64.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.26.1.aarch64.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.26.1.aarch64.rpm ImageMagick-devel-7.0.7.34-150200.10.26.1.aarch64.rpm ImageMagick-extra-7.0.7.34-150200.10.26.1.aarch64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.26.1.aarch64.rpm libMagick++-devel-7.0.7.34-150200.10.26.1.aarch64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.26.1.aarch64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.26.1.aarch64.rpm perl-PerlMagick-7.0.7.34-150200.10.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-1748 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.9.0 ESR (MFSA 2022-17)(bsc#1198970): - CVE-2022-29914: Fullscreen notification bypass using popups - CVE-2022-29909: Bypassing permission prompt in nested browsing contexts - CVE-2022-29916: Leaking browser history with CSS variables - CVE-2022-29911: iframe Sandbox bypass - CVE-2022-29912: Reader mode bypassed SameSite cookies - CVE-2022-29917: Memory safety bugs fixed in Firefox 100 and Firefox ESR 91.9 MozillaFirefox-91.9.0-150200.152.37.3.src.rpm MozillaFirefox-91.9.0-150200.152.37.3.x86_64.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.37.3.x86_64.rpm MozillaFirefox-devel-91.9.0-150200.152.37.3.x86_64.rpm MozillaFirefox-translations-common-91.9.0-150200.152.37.3.x86_64.rpm MozillaFirefox-translations-other-91.9.0-150200.152.37.3.x86_64.rpm MozillaFirefox-91.9.0-150200.152.37.3.s390x.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.37.3.s390x.rpm MozillaFirefox-devel-91.9.0-150200.152.37.3.s390x.rpm MozillaFirefox-translations-common-91.9.0-150200.152.37.3.s390x.rpm MozillaFirefox-translations-other-91.9.0-150200.152.37.3.s390x.rpm MozillaFirefox-91.9.0-150200.152.37.3.ppc64le.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.37.3.ppc64le.rpm MozillaFirefox-devel-91.9.0-150200.152.37.3.ppc64le.rpm MozillaFirefox-translations-common-91.9.0-150200.152.37.3.ppc64le.rpm MozillaFirefox-translations-other-91.9.0-150200.152.37.3.ppc64le.rpm MozillaFirefox-91.9.0-150200.152.37.3.aarch64.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.37.3.aarch64.rpm MozillaFirefox-devel-91.9.0-150200.152.37.3.aarch64.rpm MozillaFirefox-translations-common-91.9.0-150200.152.37.3.aarch64.rpm MozillaFirefox-translations-other-91.9.0-150200.152.37.3.aarch64.rpm openSUSE-SLE-15.3-2022-1900 moderate SUSE Updates openSUSE-SLE 15.3 This update for rabbitmq-c fixes the following issues: - Resolve package build issues (bsc#1198202) librabbitmq-devel-0.10.0-150300.5.3.1.x86_64.rpm librabbitmq4-0.10.0-150300.5.3.1.x86_64.rpm rabbitmq-c-0.10.0-150300.5.3.1.src.rpm rabbitmq-c-tools-0.10.0-150300.5.3.1.x86_64.rpm librabbitmq-devel-0.10.0-150300.5.3.1.s390x.rpm librabbitmq4-0.10.0-150300.5.3.1.s390x.rpm rabbitmq-c-tools-0.10.0-150300.5.3.1.s390x.rpm librabbitmq-devel-0.10.0-150300.5.3.1.ppc64le.rpm librabbitmq4-0.10.0-150300.5.3.1.ppc64le.rpm rabbitmq-c-tools-0.10.0-150300.5.3.1.ppc64le.rpm librabbitmq-devel-0.10.0-150300.5.3.1.aarch64.rpm librabbitmq4-0.10.0-150300.5.3.1.aarch64.rpm rabbitmq-c-tools-0.10.0-150300.5.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-1722 important SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Improve the error message if monpassword was not set (bsc#1197956) ldirectord-4.8.0+git30.d0077df0-150300.8.23.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-150300.8.23.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.23.1.src.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.23.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.23.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.23.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.23.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.23.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.23.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.23.1.aarch64.rpm openSUSE-SLE-15.3-2022-1901 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for powerpc-utils fixes the following issues: Make Linux Hybrid Network Virtualization (HNV) work for any connection manager (jsc#SLE-23856): - Fix setting HNV primary slave with NM (bsc#1195404) - Update HNV implementation (bsc#1195404 jsc#SLE-23855) - Fix HNV migration and other HNV issues (bsc#1195404) - Add HNV wicked support (bsc#1193543 jsc#SLE-18127) - Install SUSE-specific scripts - Add support for vnic backup device for HNV (jsc#SLE-23097) - Add support for NVMf devices (jsc#SLE-18643, bsc#1198728) powerpc-utils-1.3.9-150300.9.23.1.ppc64le.rpm powerpc-utils-1.3.9-150300.9.23.1.src.rpm openSUSE-SLE-15.3-2022-1894 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: - CVE-2022-1552: Confine additional operations within "security restricted operation" sandboxes (bsc#1199475). postgresql12-12.11-150200.8.32.1.src.rpm postgresql12-12.11-150200.8.32.1.x86_64.rpm postgresql12-contrib-12.11-150200.8.32.1.x86_64.rpm postgresql12-devel-12.11-150200.8.32.1.x86_64.rpm postgresql12-docs-12.11-150200.8.32.1.noarch.rpm postgresql12-llvmjit-12.11-150200.8.32.1.x86_64.rpm postgresql12-plperl-12.11-150200.8.32.1.x86_64.rpm postgresql12-plpython-12.11-150200.8.32.1.x86_64.rpm postgresql12-pltcl-12.11-150200.8.32.1.x86_64.rpm postgresql12-server-12.11-150200.8.32.1.x86_64.rpm postgresql12-server-devel-12.11-150200.8.32.1.x86_64.rpm postgresql12-test-12.11-150200.8.32.1.x86_64.rpm postgresql12-12.11-150200.8.32.1.s390x.rpm postgresql12-contrib-12.11-150200.8.32.1.s390x.rpm postgresql12-devel-12.11-150200.8.32.1.s390x.rpm postgresql12-llvmjit-12.11-150200.8.32.1.s390x.rpm postgresql12-plperl-12.11-150200.8.32.1.s390x.rpm postgresql12-plpython-12.11-150200.8.32.1.s390x.rpm postgresql12-pltcl-12.11-150200.8.32.1.s390x.rpm postgresql12-server-12.11-150200.8.32.1.s390x.rpm postgresql12-server-devel-12.11-150200.8.32.1.s390x.rpm postgresql12-test-12.11-150200.8.32.1.s390x.rpm postgresql12-12.11-150200.8.32.1.ppc64le.rpm postgresql12-contrib-12.11-150200.8.32.1.ppc64le.rpm postgresql12-devel-12.11-150200.8.32.1.ppc64le.rpm postgresql12-llvmjit-12.11-150200.8.32.1.ppc64le.rpm postgresql12-plperl-12.11-150200.8.32.1.ppc64le.rpm postgresql12-plpython-12.11-150200.8.32.1.ppc64le.rpm postgresql12-pltcl-12.11-150200.8.32.1.ppc64le.rpm postgresql12-server-12.11-150200.8.32.1.ppc64le.rpm postgresql12-server-devel-12.11-150200.8.32.1.ppc64le.rpm postgresql12-test-12.11-150200.8.32.1.ppc64le.rpm postgresql12-12.11-150200.8.32.1.aarch64.rpm postgresql12-contrib-12.11-150200.8.32.1.aarch64.rpm postgresql12-devel-12.11-150200.8.32.1.aarch64.rpm postgresql12-llvmjit-12.11-150200.8.32.1.aarch64.rpm postgresql12-plperl-12.11-150200.8.32.1.aarch64.rpm postgresql12-plpython-12.11-150200.8.32.1.aarch64.rpm postgresql12-pltcl-12.11-150200.8.32.1.aarch64.rpm postgresql12-server-12.11-150200.8.32.1.aarch64.rpm postgresql12-server-devel-12.11-150200.8.32.1.aarch64.rpm postgresql12-test-12.11-150200.8.32.1.aarch64.rpm openSUSE-SLE-15.3-2022-1895 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - CVE-2022-1552: Confine additional operations within "security restricted operation" sandboxes (bsc#1199475). postgresql13-13.7-150200.5.28.1.src.rpm postgresql13-13.7-150200.5.28.1.x86_64.rpm postgresql13-contrib-13.7-150200.5.28.1.x86_64.rpm postgresql13-devel-13.7-150200.5.28.1.x86_64.rpm postgresql13-docs-13.7-150200.5.28.1.noarch.rpm postgresql13-llvmjit-13.7-150200.5.28.1.x86_64.rpm postgresql13-plperl-13.7-150200.5.28.1.x86_64.rpm postgresql13-plpython-13.7-150200.5.28.1.x86_64.rpm postgresql13-pltcl-13.7-150200.5.28.1.x86_64.rpm postgresql13-server-13.7-150200.5.28.1.x86_64.rpm postgresql13-server-devel-13.7-150200.5.28.1.x86_64.rpm postgresql13-test-13.7-150200.5.28.1.x86_64.rpm postgresql13-13.7-150200.5.28.1.s390x.rpm postgresql13-contrib-13.7-150200.5.28.1.s390x.rpm postgresql13-devel-13.7-150200.5.28.1.s390x.rpm postgresql13-llvmjit-13.7-150200.5.28.1.s390x.rpm postgresql13-plperl-13.7-150200.5.28.1.s390x.rpm postgresql13-plpython-13.7-150200.5.28.1.s390x.rpm postgresql13-pltcl-13.7-150200.5.28.1.s390x.rpm postgresql13-server-13.7-150200.5.28.1.s390x.rpm postgresql13-server-devel-13.7-150200.5.28.1.s390x.rpm postgresql13-test-13.7-150200.5.28.1.s390x.rpm postgresql13-13.7-150200.5.28.1.ppc64le.rpm postgresql13-contrib-13.7-150200.5.28.1.ppc64le.rpm postgresql13-devel-13.7-150200.5.28.1.ppc64le.rpm postgresql13-llvmjit-13.7-150200.5.28.1.ppc64le.rpm postgresql13-plperl-13.7-150200.5.28.1.ppc64le.rpm postgresql13-plpython-13.7-150200.5.28.1.ppc64le.rpm postgresql13-pltcl-13.7-150200.5.28.1.ppc64le.rpm postgresql13-server-13.7-150200.5.28.1.ppc64le.rpm postgresql13-server-devel-13.7-150200.5.28.1.ppc64le.rpm postgresql13-test-13.7-150200.5.28.1.ppc64le.rpm postgresql13-13.7-150200.5.28.1.aarch64.rpm postgresql13-contrib-13.7-150200.5.28.1.aarch64.rpm postgresql13-devel-13.7-150200.5.28.1.aarch64.rpm postgresql13-llvmjit-13.7-150200.5.28.1.aarch64.rpm postgresql13-plperl-13.7-150200.5.28.1.aarch64.rpm postgresql13-plpython-13.7-150200.5.28.1.aarch64.rpm postgresql13-pltcl-13.7-150200.5.28.1.aarch64.rpm postgresql13-server-13.7-150200.5.28.1.aarch64.rpm postgresql13-server-devel-13.7-150200.5.28.1.aarch64.rpm postgresql13-test-13.7-150200.5.28.1.aarch64.rpm openSUSE-SLE-15.3-2022-1908 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql14 fixes the following issues: - CVE-2022-1552: Confine additional operations within "security restricted operation" sandboxes (bsc#1199475). libecpg6-14.3-150200.5.12.2.x86_64.rpm libecpg6-32bit-14.3-150200.5.12.2.x86_64.rpm libpq5-14.3-150200.5.12.2.x86_64.rpm libpq5-32bit-14.3-150200.5.12.2.x86_64.rpm postgresql14-14.3-150200.5.12.1.src.rpm postgresql14-14.3-150200.5.12.2.src.rpm postgresql14-14.3-150200.5.12.2.x86_64.rpm postgresql14-contrib-14.3-150200.5.12.2.x86_64.rpm postgresql14-devel-14.3-150200.5.12.2.x86_64.rpm postgresql14-devel-mini-14.3-150200.5.12.1.x86_64.rpm postgresql14-docs-14.3-150200.5.12.2.noarch.rpm postgresql14-llvmjit-14.3-150200.5.12.2.x86_64.rpm postgresql14-plperl-14.3-150200.5.12.2.x86_64.rpm postgresql14-plpython-14.3-150200.5.12.2.x86_64.rpm postgresql14-pltcl-14.3-150200.5.12.2.x86_64.rpm postgresql14-server-14.3-150200.5.12.2.x86_64.rpm postgresql14-server-devel-14.3-150200.5.12.2.x86_64.rpm postgresql14-test-14.3-150200.5.12.2.x86_64.rpm libecpg6-14.3-150200.5.12.2.s390x.rpm libpq5-14.3-150200.5.12.2.s390x.rpm postgresql14-14.3-150200.5.12.2.s390x.rpm postgresql14-contrib-14.3-150200.5.12.2.s390x.rpm postgresql14-devel-14.3-150200.5.12.2.s390x.rpm postgresql14-devel-mini-14.3-150200.5.12.1.s390x.rpm postgresql14-llvmjit-14.3-150200.5.12.2.s390x.rpm postgresql14-plperl-14.3-150200.5.12.2.s390x.rpm postgresql14-plpython-14.3-150200.5.12.2.s390x.rpm postgresql14-pltcl-14.3-150200.5.12.2.s390x.rpm postgresql14-server-14.3-150200.5.12.2.s390x.rpm postgresql14-server-devel-14.3-150200.5.12.2.s390x.rpm postgresql14-test-14.3-150200.5.12.2.s390x.rpm libecpg6-14.3-150200.5.12.2.ppc64le.rpm libpq5-14.3-150200.5.12.2.ppc64le.rpm postgresql14-14.3-150200.5.12.2.ppc64le.rpm postgresql14-contrib-14.3-150200.5.12.2.ppc64le.rpm postgresql14-devel-14.3-150200.5.12.2.ppc64le.rpm postgresql14-devel-mini-14.3-150200.5.12.1.ppc64le.rpm postgresql14-llvmjit-14.3-150200.5.12.2.ppc64le.rpm postgresql14-plperl-14.3-150200.5.12.2.ppc64le.rpm postgresql14-plpython-14.3-150200.5.12.2.ppc64le.rpm postgresql14-pltcl-14.3-150200.5.12.2.ppc64le.rpm postgresql14-server-14.3-150200.5.12.2.ppc64le.rpm postgresql14-server-devel-14.3-150200.5.12.2.ppc64le.rpm postgresql14-test-14.3-150200.5.12.2.ppc64le.rpm libecpg6-14.3-150200.5.12.2.aarch64.rpm libpq5-14.3-150200.5.12.2.aarch64.rpm postgresql14-14.3-150200.5.12.2.aarch64.rpm postgresql14-contrib-14.3-150200.5.12.2.aarch64.rpm postgresql14-devel-14.3-150200.5.12.2.aarch64.rpm postgresql14-devel-mini-14.3-150200.5.12.1.aarch64.rpm postgresql14-llvmjit-14.3-150200.5.12.2.aarch64.rpm postgresql14-plperl-14.3-150200.5.12.2.aarch64.rpm postgresql14-plpython-14.3-150200.5.12.2.aarch64.rpm postgresql14-pltcl-14.3-150200.5.12.2.aarch64.rpm postgresql14-server-14.3-150200.5.12.2.aarch64.rpm postgresql14-server-devel-14.3-150200.5.12.2.aarch64.rpm postgresql14-test-14.3-150200.5.12.2.aarch64.rpm openSUSE-SLE-15.3-2022-1890 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: - CVE-2022-1552: Confine additional operations within "security restricted operation" sandboxes (bsc#1199475). postgresql10-10.21-150100.8.47.1.src.rpm postgresql10-10.21-150100.8.47.1.x86_64.rpm postgresql10-contrib-10.21-150100.8.47.1.x86_64.rpm postgresql10-docs-10.21-150100.8.47.1.noarch.rpm postgresql10-plperl-10.21-150100.8.47.1.x86_64.rpm postgresql10-plpython-10.21-150100.8.47.1.x86_64.rpm postgresql10-pltcl-10.21-150100.8.47.1.x86_64.rpm postgresql10-server-10.21-150100.8.47.1.x86_64.rpm postgresql10-test-10.21-150100.8.47.1.x86_64.rpm postgresql10-10.21-150100.8.47.1.s390x.rpm postgresql10-contrib-10.21-150100.8.47.1.s390x.rpm postgresql10-plperl-10.21-150100.8.47.1.s390x.rpm postgresql10-plpython-10.21-150100.8.47.1.s390x.rpm postgresql10-pltcl-10.21-150100.8.47.1.s390x.rpm postgresql10-server-10.21-150100.8.47.1.s390x.rpm postgresql10-test-10.21-150100.8.47.1.s390x.rpm postgresql10-10.21-150100.8.47.1.ppc64le.rpm postgresql10-contrib-10.21-150100.8.47.1.ppc64le.rpm postgresql10-plperl-10.21-150100.8.47.1.ppc64le.rpm postgresql10-plpython-10.21-150100.8.47.1.ppc64le.rpm postgresql10-pltcl-10.21-150100.8.47.1.ppc64le.rpm postgresql10-server-10.21-150100.8.47.1.ppc64le.rpm postgresql10-test-10.21-150100.8.47.1.ppc64le.rpm postgresql10-10.21-150100.8.47.1.aarch64.rpm postgresql10-contrib-10.21-150100.8.47.1.aarch64.rpm postgresql10-plperl-10.21-150100.8.47.1.aarch64.rpm postgresql10-plpython-10.21-150100.8.47.1.aarch64.rpm postgresql10-pltcl-10.21-150100.8.47.1.aarch64.rpm postgresql10-server-10.21-150100.8.47.1.aarch64.rpm postgresql10-test-10.21-150100.8.47.1.aarch64.rpm openSUSE-SLE-15.3-2022-1720 important SUSE Updates openSUSE-SLE 15.3 This update for python-rtslib-fb fixes the following issues: - Update parameters description. - Enable the 'disable_emulate_legacy_capacity' parameter. (bsc#1199090) python-rtslib-fb-2.1.74-150300.3.3.1.src.rpm python-rtslib-fb-common-2.1.74-150300.3.3.1.noarch.rpm python2-rtslib-fb-2.1.74-150300.3.3.1.noarch.rpm python3-rtslib-fb-2.1.74-150300.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-2528 low SUSE Updates openSUSE-SLE 15.3 This update for nvme-cli fixes the following issues: - Don't print error on failed to open in nvme-topology.c (bsc#1198158) - Allow selecting the network interface for connections (bsc#1199670) - Support unique discovery subsystem NQN (bsc#1199865 bsc#1192761) nvme-cli-1.13-150300.3.17.1.src.rpm nvme-cli-1.13-150300.3.17.1.x86_64.rpm nvme-cli-regress-script-1.13-150300.3.17.1.x86_64.rpm nvme-cli-1.13-150300.3.17.1.s390x.rpm nvme-cli-regress-script-1.13-150300.3.17.1.s390x.rpm nvme-cli-1.13-150300.3.17.1.ppc64le.rpm nvme-cli-regress-script-1.13-150300.3.17.1.ppc64le.rpm nvme-cli-1.13-150300.3.17.1.aarch64.rpm nvme-cli-regress-script-1.13-150300.3.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-2025 low SUSE Updates openSUSE-SLE 15.3 This update for grafana-status-panel fixes the following issues: - Update to version 1.0.11, signed for use with grafana v8.x (bsc#1198768) grafana-status-panel-1.0.11-150200.3.8.1.noarch.rpm grafana-status-panel-1.0.11-150200.3.8.1.src.rpm openSUSE-SLE-15.3-2022-2001 moderate SUSE Updates openSUSE-SLE 15.3 This update for s3fs fixes the following issues: - Update to version 1.91 (bsc#1198900) * Fix RowFlush can not upload last part smaller than 5MB using NoCacheMultipartPost * Fix IAM role retrieval from IMDSv2 * Add option to allow unsigned payloads * Fix mixupload return EntityTooSmall while a copypart is less than 5MB after split * Allow compilation on Windows via MSYS2 * Handle utimensat UTIME_NOW and UTIME_OMIT special values * Preserve sub-second precision in more situations * Always flush open files with O_CREAT flag * Fixed not to call Flush even if the file size is increased * Include climits to support musl libc - Update to version 1.90 + Don't ignore nomultipart when storage is low + Fix POSIX compatibility issues found by pjdfstest + Fail CheckBucket when S3 returns PermanentRedirect + Do not create zero-byte object when creating file + Allow arbitrary size AWS secret keys + Fix race conditions + Set explicit Content-Length: 0 when initiating MPU + Set CURLOPT_UNRESTRICTED_AUTH when authenticating + Add jitter to avoid thundering herd + Loosen CheckBucket to check only the bucket + Add support for AWS-style environment variables s3fs-1.91-150000.3.9.1.src.rpm s3fs-1.91-150000.3.9.1.x86_64.rpm s3fs-1.91-150000.3.9.1.s390x.rpm s3fs-1.91-150000.3.9.1.ppc64le.rpm s3fs-1.91-150000.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-1700 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Update to version 4.3.1+20220505.cf4ab649: * Fix: hb_report: Read data in a save way, to avoid UnicodeDecodeError (bsc#1198180) * Dev: ocfs2: Fix running ocfs2 stage on cluster with diskless-sbd * Fix: ui_configure: Give a deprecated warning when using "ms" subcommand (bsc#1194125) * Fix: xmlutil: Parse promotable clone correctly and also consider compatibility (bsc#1194125) * Fix: bootstrap: Change default transport type as udpu(unicast) (bsc#1132375) crmsh-4.3.1+20220505.cf4ab649-150200.5.80.1.noarch.rpm crmsh-4.3.1+20220505.cf4ab649-150200.5.80.1.src.rpm crmsh-scripts-4.3.1+20220505.cf4ab649-150200.5.80.1.noarch.rpm crmsh-test-4.3.1+20220505.cf4ab649-150200.5.80.1.noarch.rpm openSUSE-SLE-15.3-2022-2330 low SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issues: - Added data for 4_12_14-150000_150_89, 4_12_14-150100_197_111, 5_3_18-150200_24_112, 5_3_18-150300_59_60, 5_3_18-150300_59_63. (bsc#1020320) lifecycle-data-sle-module-live-patching-15-150000.4.75.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-150000.4.75.1.src.rpm openSUSE-SLE-15.3-2022-1840 moderate SUSE Updates openSUSE-SLE 15.3 This update for kernel-firmware fixes the following issues: Update AMD ucode and SEV firmware - (CVE-2021-26339, CVE-2021-26373, CVE-2021-26347, CVE-2021-26376, CVE-2021-26375, CVE-2021-26378, CVE-2021-26372, CVE-2021-26339, CVE-2021-26348, CVE-2021-26342, CVE-2021-26388, CVE-2021-26349, CVE-2021-26364, CVE-2021-26312, CVE-2021-26350, CVE-2021-46744, bsc#1199459, bsc#1199470) kernel-firmware-20210208-150300.4.10.1.noarch.rpm kernel-firmware-20210208-150300.4.10.1.src.rpm kernel-firmware-all-20210208-150300.4.10.1.noarch.rpm kernel-firmware-amdgpu-20210208-150300.4.10.1.noarch.rpm kernel-firmware-ath10k-20210208-150300.4.10.1.noarch.rpm kernel-firmware-ath11k-20210208-150300.4.10.1.noarch.rpm kernel-firmware-atheros-20210208-150300.4.10.1.noarch.rpm kernel-firmware-bluetooth-20210208-150300.4.10.1.noarch.rpm kernel-firmware-bnx2-20210208-150300.4.10.1.noarch.rpm kernel-firmware-brcm-20210208-150300.4.10.1.noarch.rpm kernel-firmware-chelsio-20210208-150300.4.10.1.noarch.rpm kernel-firmware-dpaa2-20210208-150300.4.10.1.noarch.rpm kernel-firmware-i915-20210208-150300.4.10.1.noarch.rpm kernel-firmware-intel-20210208-150300.4.10.1.noarch.rpm kernel-firmware-iwlwifi-20210208-150300.4.10.1.noarch.rpm kernel-firmware-liquidio-20210208-150300.4.10.1.noarch.rpm kernel-firmware-marvell-20210208-150300.4.10.1.noarch.rpm kernel-firmware-media-20210208-150300.4.10.1.noarch.rpm kernel-firmware-mediatek-20210208-150300.4.10.1.noarch.rpm kernel-firmware-mellanox-20210208-150300.4.10.1.noarch.rpm kernel-firmware-mwifiex-20210208-150300.4.10.1.noarch.rpm kernel-firmware-network-20210208-150300.4.10.1.noarch.rpm kernel-firmware-nfp-20210208-150300.4.10.1.noarch.rpm kernel-firmware-nvidia-20210208-150300.4.10.1.noarch.rpm kernel-firmware-platform-20210208-150300.4.10.1.noarch.rpm kernel-firmware-prestera-20210208-150300.4.10.1.noarch.rpm kernel-firmware-qlogic-20210208-150300.4.10.1.noarch.rpm kernel-firmware-radeon-20210208-150300.4.10.1.noarch.rpm kernel-firmware-realtek-20210208-150300.4.10.1.noarch.rpm kernel-firmware-serial-20210208-150300.4.10.1.noarch.rpm kernel-firmware-sound-20210208-150300.4.10.1.noarch.rpm kernel-firmware-ti-20210208-150300.4.10.1.noarch.rpm kernel-firmware-ueagle-20210208-150300.4.10.1.noarch.rpm kernel-firmware-usb-network-20210208-150300.4.10.1.noarch.rpm ucode-amd-20210208-150300.4.10.1.noarch.rpm openSUSE-SLE-15.3-2022-1912 important SUSE Updates openSUSE-SLE 15.3 This update for hdf5 fixes the following issues: Security issues fixed: - CVE-2020-10811: Fixed heap-based buffer over-read in the function H5O__layout_decode() located in H5Olayout.c (bsc#1167405). - CVE-2020-10810: Fixed NULL pointer dereference in the function H5AC_unpin_entry() located in H5AC.c (bsc#1167401). - CVE-2020-10809: Fixed heap-based buffer overflow in the function Decompress() located in decompress.c (bsc#1167404). - CVE-2018-17438: Fixed SIGFPE signal raise in the function H5D__select_io() of H5Dselect.c (bsc#1109570). - CVE-2018-17437: Fixed memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c. (bsc#1109569). - CVE-2018-17436: Fixed issue in ReadCode() in decompress.c that allowed attackers to cause a denial of service via a crafted HDF5 file (bsc#1109568). - CVE-2018-17434: Fixed SIGFPE signal raise in function apply_filters() of h5repack_filters.c (bsc#1109566). - CVE-2018-17433: Fixed heap-based buffer overflow in ReadGifImageDesc() in gifread.c (bsc#1109565). - CVE-2018-17432: Fixed NULL pointer dereference in H5O_sdspace_encode() in H5Osdspace.c (bsc#1109564). - CVE-2018-17237: Fixed SIGFPE signal raise in the function H5D__chunk_set_info_real() (bsc#1109168). - CVE-2018-17234: Fixed memory leak in the H5O__chunk_deserialize() function in H5Ocache.c (bsc#1109167). - CVE-2018-14460: Fixed heap-based buffer over-read in the function H5O_sdspace_decode in H5Osdspace.c (bsc#1102175). - CVE-2018-14033: Fixed heap-based buffer over-read in the function H5O_layout_decode in H5Olayout.c (bsc#1101471). - CVE-2018-14032: Fixed heap-based buffer over-read in the function H5O_fill_new_decode in H5Ofill.c (bsc#1101474). - CVE-2018-11206: Fixed out of bounds read in H5O_fill_new_decode and H5O_fill_old_decode in H5Ofill.c (bsc#1093657). Bugfixes: - Fix python-h5py packages built against out-of-date version of HDF5 (bsc#1196682). - Fix netcdf-cxx4 packages built against out-of-date version of HDF5 (bsc#1179521). hdf5-gnu-hpc-1.10.8-150300.4.3.1.noarch.rpm hdf5-gnu-hpc-devel-1.10.8-150300.4.3.1.noarch.rpm hdf5-gnu-mpich-hpc-1.10.8-150300.4.3.2.noarch.rpm hdf5-gnu-mpich-hpc-devel-1.10.8-150300.4.3.2.noarch.rpm hdf5-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.noarch.rpm hdf5-gnu-mvapich2-hpc-devel-1.10.8-150300.4.3.1.noarch.rpm hdf5-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.noarch.rpm hdf5-gnu-openmpi3-hpc-devel-1.10.8-150300.4.3.2.noarch.rpm hdf5-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.noarch.rpm hdf5-gnu-openmpi4-hpc-devel-1.10.8-150300.4.3.2.noarch.rpm hdf5-hpc-examples-1.10.8-150300.4.3.1.noarch.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.src.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.src.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.src.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.src.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.src.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.3.1.x86_64.rpm libhdf5-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.3.1.s390x.rpm libhdf5-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.3.1.aarch64.rpm libhdf5-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-2020 moderate SUSE Updates openSUSE-SLE 15.3 This update for sapwmp fixes the following issues: - Update to version 0.1+git.1645197740.6b06c5c: * wmp-check: Polish the phrase of error output. * wmp-check: raise error when user not configure MemoryLow of target slice in digital. * Polish pull request based on review comments. * check.sh: Add unprotect_list check of subcgroups * check.sh: Fix a wmp check bug of memory_low_children * Add switch f and avoid empty DBus message error. * Skip systemd managed processes jsc#PM-3309 (jsc#SLE-24330, jsc#SLE-24332) * Enable wmp-checker for SLE15SP4. sapwmp-0.1+git.1645197740.6b06c5c-150200.3.9.2.src.rpm sapwmp-0.1+git.1645197740.6b06c5c-150200.3.9.2.x86_64.rpm sapwmp-0.1+git.1645197740.6b06c5c-150200.3.9.2.s390x.rpm sapwmp-0.1+git.1645197740.6b06c5c-150200.3.9.2.ppc64le.rpm sapwmp-0.1+git.1645197740.6b06c5c-150200.3.9.2.aarch64.rpm openSUSE-SLE-15.3-2022-1906 moderate SUSE Updates openSUSE-SLE 15.3 This update for NetworkManager fixes the following issues: - Match more ciphers to better determine the access point security type (bsc#1198381) NetworkManager-1.22.10-150200.3.18.1.src.rpm NetworkManager-1.22.10-150200.3.18.1.x86_64.rpm NetworkManager-branding-upstream-1.22.10-150200.3.18.1.noarch.rpm NetworkManager-devel-1.22.10-150200.3.18.1.x86_64.rpm NetworkManager-devel-32bit-1.22.10-150200.3.18.1.x86_64.rpm NetworkManager-lang-1.22.10-150200.3.18.1.noarch.rpm libnm0-1.22.10-150200.3.18.1.x86_64.rpm typelib-1_0-NM-1_0-1.22.10-150200.3.18.1.x86_64.rpm NetworkManager-1.22.10-150200.3.18.1.s390x.rpm NetworkManager-devel-1.22.10-150200.3.18.1.s390x.rpm libnm0-1.22.10-150200.3.18.1.s390x.rpm typelib-1_0-NM-1_0-1.22.10-150200.3.18.1.s390x.rpm NetworkManager-1.22.10-150200.3.18.1.ppc64le.rpm NetworkManager-devel-1.22.10-150200.3.18.1.ppc64le.rpm libnm0-1.22.10-150200.3.18.1.ppc64le.rpm typelib-1_0-NM-1_0-1.22.10-150200.3.18.1.ppc64le.rpm NetworkManager-1.22.10-150200.3.18.1.aarch64.rpm NetworkManager-devel-1.22.10-150200.3.18.1.aarch64.rpm libnm0-1.22.10-150200.3.18.1.aarch64.rpm typelib-1_0-NM-1_0-1.22.10-150200.3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-2386 important SUSE Updates openSUSE-SLE 15.3 This update for azure-cli, azurecli-core, python-azure-core, python-azure-batch, python-azure-mgmt-compute, python-azure-mgmt-containerregistry, python-azure-mgmt-databoxedge, python-azure-mgmt-network, python-azure-mgmt-security, python-azure-sdk, python-msrest, python-azure-ai-formrecognizer, python-azure-synapse-managedprivateendpoints, python-azure-synapse-monitoring, python-azure-template contains the following fixes: Changes in azure-cli, azurecli-core: - Update in SLE-15. (bsc#1189411, bsc#1191482) - Fix regression in patch to disable update check. (bsc#1192671) - New upstream release 2.17.1: - For detailed information about changes see the HISTORY.rst file provided with this package Changes in python-azure-core: - Update from 1.9.0 to 1.22.1. (bsc#1189411, bsc#1191482) For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-batch: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 10.0.0 - For detailed information about changes see the CHANGELOG.md file provided with this package - Only build Python3 flavors for distributions 15 and greater Changes in python-azure-ai-formrecognizer: - Inclusion in SLE-15 .(bsc#1189411, bsc#1191482) Changes in python-azure-mgmt-compute: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 18.0.0 - For detailed information about changes see the CHANGELOG.md file provided with this package - Version 17.0.0 Changes in python-azure-mgmt-containerregistry: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 3.0.0rc16 - For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-mgmt-databoxedge: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 0.2.0 - For detailed information about changes see the CHANGELOG.md file provided with this package - Rename HISTORY.rst to CHANGELOG.md in %files section - Rename README.rst to README.md in %files section - Changes in python-azure-mgmt-network: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 17.0.0 - For detailed information about changes see the CHANGELOG.md file provided with this package - Changes in python-azure-mgmt-security: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 0.6.0 - For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-synapse-managedprivateendpoints: - Inclusion in SLE-15 .(bsc#1189411, bsc#1191482) Changes in python-azure-synapse-monitoring: - Inclusion in SLE-15 .(bsc#1189411, bsc#1191482) Changes in python-azure-template: - Inclusion in SLE-15 .(bsc#1189411, bsc#1191482) Changes in python-azure-sdk: Update in SLE-15 (bsc#1189411, bsc#1191482) - Add python-azure-sdk (Python2) to Obsoletes - Add additional packages from the Azure SDK to Requires - python-azure-ai-formrecognizer - python-azure-synapse-managedprivateendpoints - python-azure-synapse-monitoring - python-azure-template - Remove all version constraints in Requires Only build Python3 flavors for distributions 15 and greater Changes in python-msrest: - Update from 0.6.19 to 0.6.21. (bsc#1189411, bsc#1191482) For detailed information about changes see the CHANGELOG.md file provided with this package azure-cli-2.17.1-150100.6.11.2.noarch.rpm azure-cli-2.17.1-150100.6.11.2.src.rpm azure-cli-core-2.17.1-150100.6.14.2.noarch.rpm azure-cli-core-2.17.1-150100.6.14.2.src.rpm azure-cli-test-2.17.1-150100.6.11.2.src.rpm azure-cli-test-2.17.1-150100.6.11.2.x86_64.rpm python-azure-batch-10.0.0-150100.7.8.2.src.rpm python-azure-core-1.22.1-150100.3.7.2.src.rpm python-azure-mgmt-compute-18.0.0-150100.6.11.2.src.rpm python-azure-mgmt-containerregistry-3.0.0rc16-150100.6.8.2.src.rpm python-azure-mgmt-databoxedge-0.2.0-150100.3.7.2.src.rpm python-azure-mgmt-network-17.0.0-150100.6.8.2.src.rpm python-azure-mgmt-security-0.6.0-150100.3.7.2.src.rpm python-azure-sdk-4.0.0-150100.3.10.2.noarch.rpm python-azure-sdk-4.0.0-150100.3.10.2.src.rpm python-msrest-0.6.21-150100.6.8.2.src.rpm python2-azure-batch-10.0.0-150100.7.8.2.noarch.rpm python2-azure-core-1.22.1-150100.3.7.2.noarch.rpm python2-azure-mgmt-compute-18.0.0-150100.6.11.2.noarch.rpm python2-azure-mgmt-containerregistry-3.0.0rc16-150100.6.8.2.noarch.rpm python2-azure-mgmt-databoxedge-0.2.0-150100.3.7.2.noarch.rpm python2-azure-mgmt-network-17.0.0-150100.6.8.2.noarch.rpm python2-azure-mgmt-security-0.6.0-150100.3.7.2.noarch.rpm python2-msrest-0.6.21-150100.6.8.2.noarch.rpm python3-azure-batch-10.0.0-150100.7.8.2.noarch.rpm python3-azure-core-1.22.1-150100.3.7.2.noarch.rpm python3-azure-mgmt-compute-18.0.0-150100.6.11.2.noarch.rpm python3-azure-mgmt-containerregistry-3.0.0rc16-150100.6.8.2.noarch.rpm python3-azure-mgmt-databoxedge-0.2.0-150100.3.7.2.noarch.rpm python3-azure-mgmt-network-17.0.0-150100.6.8.2.noarch.rpm python3-azure-mgmt-security-0.6.0-150100.3.7.2.noarch.rpm python3-azure-sdk-4.0.0-150100.3.10.2.noarch.rpm python3-msrest-0.6.21-150100.6.8.2.noarch.rpm azure-cli-test-2.17.1-150100.6.11.2.s390x.rpm azure-cli-test-2.17.1-150100.6.11.2.ppc64le.rpm azure-cli-test-2.17.1-150100.6.11.2.aarch64.rpm openSUSE-SLE-15.3-2022-1844 moderate SUSE Updates openSUSE-SLE 15.3 This update for fribidi fixes the following issues: - CVE-2022-25308: Fixed stack out of bounds read (bsc#1196147). - CVE-2022-25309: Fixed heap-buffer-overflow in fribidi_cap_rtl_to_unicode (bsc#1196148). - CVE-2022-25310: Fixed NULL pointer dereference in fribidi_remove_bidi_marks (bsc#1196150). fribidi-1.0.5-150200.3.6.1.src.rpm fribidi-1.0.5-150200.3.6.1.x86_64.rpm fribidi-devel-1.0.5-150200.3.6.1.x86_64.rpm libfribidi0-1.0.5-150200.3.6.1.x86_64.rpm libfribidi0-32bit-1.0.5-150200.3.6.1.x86_64.rpm fribidi-1.0.5-150200.3.6.1.s390x.rpm fribidi-devel-1.0.5-150200.3.6.1.s390x.rpm libfribidi0-1.0.5-150200.3.6.1.s390x.rpm fribidi-1.0.5-150200.3.6.1.ppc64le.rpm fribidi-devel-1.0.5-150200.3.6.1.ppc64le.rpm libfribidi0-1.0.5-150200.3.6.1.ppc64le.rpm fribidi-1.0.5-150200.3.6.1.aarch64.rpm fribidi-devel-1.0.5-150200.3.6.1.aarch64.rpm libfribidi0-1.0.5-150200.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1826 important SUSE Updates openSUSE-SLE 15.3 This update for nut fixes the following issues: - Fix package build requirements (bsc#1197789) libupsclient1-2.7.4-150000.6.3.1.x86_64.rpm nut-2.7.4-150000.6.3.1.src.rpm nut-2.7.4-150000.6.3.1.x86_64.rpm nut-cgi-2.7.4-150000.6.3.1.x86_64.rpm nut-devel-2.7.4-150000.6.3.1.x86_64.rpm nut-devel-doc-html-2.7.4-150000.6.3.1.noarch.rpm nut-devel-doc-pdf-2.7.4-150000.6.3.1.noarch.rpm nut-doc-asciidoc-2.7.4-150000.6.3.1.noarch.rpm nut-doc-html-2.7.4-150000.6.3.1.noarch.rpm nut-doc-images-2.7.4-150000.6.3.1.noarch.rpm nut-doc-pdf-2.7.4-150000.6.3.1.noarch.rpm nut-drivers-net-2.7.4-150000.6.3.1.x86_64.rpm libupsclient1-2.7.4-150000.6.3.1.s390x.rpm nut-2.7.4-150000.6.3.1.s390x.rpm nut-cgi-2.7.4-150000.6.3.1.s390x.rpm nut-devel-2.7.4-150000.6.3.1.s390x.rpm nut-drivers-net-2.7.4-150000.6.3.1.s390x.rpm libupsclient1-2.7.4-150000.6.3.1.ppc64le.rpm nut-2.7.4-150000.6.3.1.ppc64le.rpm nut-cgi-2.7.4-150000.6.3.1.ppc64le.rpm nut-devel-2.7.4-150000.6.3.1.ppc64le.rpm nut-drivers-net-2.7.4-150000.6.3.1.ppc64le.rpm libupsclient1-2.7.4-150000.6.3.1.aarch64.rpm nut-2.7.4-150000.6.3.1.aarch64.rpm nut-cgi-2.7.4-150000.6.3.1.aarch64.rpm nut-devel-2.7.4-150000.6.3.1.aarch64.rpm nut-drivers-net-2.7.4-150000.6.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2024 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-azure-agent fixes the following issues: - Reset the dhcp config when deprovisioning and instance to ensure instances from aVM image created from that instance send host information to the DHCP server. (bsc#1198258) python-azure-agent-2.2.49.2-150100.3.23.1.noarch.rpm python-azure-agent-2.2.49.2-150100.3.23.1.src.rpm python-azure-agent-test-2.2.49.2-150100.3.23.1.noarch.rpm openSUSE-SLE-15.3-2022-1870 important SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2022-27781: Fixed CERTINFO never-ending busy-loop (bsc#1199223) - CVE-2022-27782: Fixed TLS and SSH connection too eager reuse (bsc#1199224) curl-7.66.0-150200.4.33.1.src.rpm curl-7.66.0-150200.4.33.1.x86_64.rpm libcurl-devel-32bit-7.66.0-150200.4.33.1.x86_64.rpm libcurl-devel-7.66.0-150200.4.33.1.x86_64.rpm libcurl4-32bit-7.66.0-150200.4.33.1.x86_64.rpm libcurl4-7.66.0-150200.4.33.1.x86_64.rpm curl-7.66.0-150200.4.33.1.s390x.rpm libcurl-devel-7.66.0-150200.4.33.1.s390x.rpm libcurl4-7.66.0-150200.4.33.1.s390x.rpm curl-7.66.0-150200.4.33.1.ppc64le.rpm libcurl-devel-7.66.0-150200.4.33.1.ppc64le.rpm libcurl4-7.66.0-150200.4.33.1.ppc64le.rpm curl-7.66.0-150200.4.33.1.aarch64.rpm libcurl-devel-7.66.0-150200.4.33.1.aarch64.rpm libcurl4-7.66.0-150200.4.33.1.aarch64.rpm openSUSE-SLE-15.3-2022-2831 moderate SUSE Updates openSUSE-SLE 15.3 This update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures fixes the following issues: - Update in SLE-15 (bsc#1196696, bsc#1195916, jsc#SLE-23972) - Remove redundant python3 dependency from Requires - Update regular expression to fix python shebang - Style is enforced upstream and triggers unnecessary build version requirements - Allow specifying fs_id in cloudwatch log group name - Includes fix for stunnel path - Added hardening to systemd service(s). - Raise minimal pytest version - Fix typo in the ansi2html Requires - Cleanup with spec-cleaner - Make sure the tests are really executed - Remove useless devel dependency - Multiprocessing support in Python 3.8 was broken, but is now fixed - Bumpy the URL to point to github rather than to docs python-apipkg-1.4-150000.3.2.1.src.rpm python-atomicwrites-1.1.5-150000.3.2.1.src.rpm python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch.rpm python-atomicwrites-doc-1.1.5-150000.3.2.1.src.rpm python-coverage-4.5.4-150000.3.3.2.src.rpm python-py-1.10.0-150000.5.9.2.src.rpm python-pycodestyle-2.5.0-150000.3.2.2.src.rpm python-pyflakes-2.1.1-150000.3.2.2.src.rpm python2-apipkg-1.4-150000.3.2.1.noarch.rpm python2-atomicwrites-1.1.5-150000.3.2.1.noarch.rpm python2-coverage-4.5.4-150000.3.3.2.x86_64.rpm python2-py-1.10.0-150000.5.9.2.noarch.rpm python2-pycodestyle-2.5.0-150000.3.2.2.noarch.rpm python2-pyflakes-2.1.1-150000.3.2.2.noarch.rpm python3-apipkg-1.4-150000.3.2.1.noarch.rpm python3-atomicwrites-1.1.5-150000.3.2.1.noarch.rpm python3-coverage-4.5.4-150000.3.3.2.x86_64.rpm python3-py-1.10.0-150000.5.9.2.noarch.rpm python3-pycodestyle-2.5.0-150000.3.2.2.noarch.rpm python3-pyflakes-2.1.1-150000.3.2.2.noarch.rpm python2-coverage-4.5.4-150000.3.3.2.s390x.rpm python3-coverage-4.5.4-150000.3.3.2.s390x.rpm python2-coverage-4.5.4-150000.3.3.2.ppc64le.rpm python3-coverage-4.5.4-150000.3.3.2.ppc64le.rpm python2-coverage-4.5.4-150000.3.3.2.aarch64.rpm python3-coverage-4.5.4-150000.3.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-2086 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: os-prober os-prober-1.76-150100.4.2.1.src.rpm os-prober-1.76-150100.4.2.1.x86_64.rpm os-prober-1.76-150100.4.2.1.s390x.rpm os-prober-1.76-150100.4.2.1.ppc64le.rpm os-prober-1.76-150100.4.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-2087 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: rp-pppoe linux-atm ppp libatm1-2.5.2-150000.3.2.1.x86_64.rpm linux-atm-2.5.2-150000.3.2.1.src.rpm linux-atm-2.5.2-150000.3.2.1.x86_64.rpm linux-atm-devel-2.5.2-150000.3.2.1.x86_64.rpm ppp-2.4.7-150000.5.8.1.src.rpm ppp-2.4.7-150000.5.8.1.x86_64.rpm ppp-devel-2.4.7-150000.5.8.1.x86_64.rpm ppp-modem-2.4.7-150000.5.8.1.noarch.rpm rp-pppoe-3.12-150000.6.3.2.src.rpm rp-pppoe-3.12-150000.6.3.2.x86_64.rpm libatm1-2.5.2-150000.3.2.1.s390x.rpm linux-atm-2.5.2-150000.3.2.1.s390x.rpm linux-atm-devel-2.5.2-150000.3.2.1.s390x.rpm ppp-2.4.7-150000.5.8.1.s390x.rpm ppp-devel-2.4.7-150000.5.8.1.s390x.rpm rp-pppoe-3.12-150000.6.3.2.s390x.rpm libatm1-2.5.2-150000.3.2.1.ppc64le.rpm linux-atm-2.5.2-150000.3.2.1.ppc64le.rpm linux-atm-devel-2.5.2-150000.3.2.1.ppc64le.rpm ppp-2.4.7-150000.5.8.1.ppc64le.rpm ppp-devel-2.4.7-150000.5.8.1.ppc64le.rpm rp-pppoe-3.12-150000.6.3.2.ppc64le.rpm libatm1-2.5.2-150000.3.2.1.aarch64.rpm linux-atm-2.5.2-150000.3.2.1.aarch64.rpm linux-atm-devel-2.5.2-150000.3.2.1.aarch64.rpm ppp-2.4.7-150000.5.8.1.aarch64.rpm ppp-devel-2.4.7-150000.5.8.1.aarch64.rpm rp-pppoe-3.12-150000.6.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-1830 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.9.1 ESR - MFSA 2022-19 (bsc#1199768): - CVE-2022-1802: Prototype pollution in Top-Level Await implementation - CVE-2022-1529: Untrusted input used in JavaScript object indexing, leading to prototype pollution MozillaFirefox-91.9.1-150200.152.40.1.src.rpm MozillaFirefox-91.9.1-150200.152.40.1.x86_64.rpm MozillaFirefox-branding-upstream-91.9.1-150200.152.40.1.x86_64.rpm MozillaFirefox-devel-91.9.1-150200.152.40.1.x86_64.rpm MozillaFirefox-translations-common-91.9.1-150200.152.40.1.x86_64.rpm MozillaFirefox-translations-other-91.9.1-150200.152.40.1.x86_64.rpm MozillaFirefox-91.9.1-150200.152.40.1.s390x.rpm MozillaFirefox-branding-upstream-91.9.1-150200.152.40.1.s390x.rpm MozillaFirefox-devel-91.9.1-150200.152.40.1.s390x.rpm MozillaFirefox-translations-common-91.9.1-150200.152.40.1.s390x.rpm MozillaFirefox-translations-other-91.9.1-150200.152.40.1.s390x.rpm MozillaFirefox-91.9.1-150200.152.40.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.9.1-150200.152.40.1.ppc64le.rpm MozillaFirefox-devel-91.9.1-150200.152.40.1.ppc64le.rpm MozillaFirefox-translations-common-91.9.1-150200.152.40.1.ppc64le.rpm MozillaFirefox-translations-other-91.9.1-150200.152.40.1.ppc64le.rpm MozillaFirefox-91.9.1-150200.152.40.1.aarch64.rpm MozillaFirefox-branding-upstream-91.9.1-150200.152.40.1.aarch64.rpm MozillaFirefox-devel-91.9.1-150200.152.40.1.aarch64.rpm MozillaFirefox-translations-common-91.9.1-150200.152.40.1.aarch64.rpm MozillaFirefox-translations-other-91.9.1-150200.152.40.1.aarch64.rpm openSUSE-SLE-15.3-2022-1861 important SUSE Updates openSUSE-SLE 15.3 This update for cups fixes the following issues: - CVE-2022-26691: Fixed an authentication bypass and code execution vulnerability (bsc#1199474) cups-2.2.7-150000.3.32.1.src.rpm cups-2.2.7-150000.3.32.1.x86_64.rpm cups-client-2.2.7-150000.3.32.1.x86_64.rpm cups-config-2.2.7-150000.3.32.1.x86_64.rpm cups-ddk-2.2.7-150000.3.32.1.x86_64.rpm cups-devel-2.2.7-150000.3.32.1.x86_64.rpm cups-devel-32bit-2.2.7-150000.3.32.1.x86_64.rpm libcups2-2.2.7-150000.3.32.1.x86_64.rpm libcups2-32bit-2.2.7-150000.3.32.1.x86_64.rpm libcupscgi1-2.2.7-150000.3.32.1.x86_64.rpm libcupscgi1-32bit-2.2.7-150000.3.32.1.x86_64.rpm libcupsimage2-2.2.7-150000.3.32.1.x86_64.rpm libcupsimage2-32bit-2.2.7-150000.3.32.1.x86_64.rpm libcupsmime1-2.2.7-150000.3.32.1.x86_64.rpm libcupsmime1-32bit-2.2.7-150000.3.32.1.x86_64.rpm libcupsppdc1-2.2.7-150000.3.32.1.x86_64.rpm libcupsppdc1-32bit-2.2.7-150000.3.32.1.x86_64.rpm cups-2.2.7-150000.3.32.1.s390x.rpm cups-client-2.2.7-150000.3.32.1.s390x.rpm cups-config-2.2.7-150000.3.32.1.s390x.rpm cups-ddk-2.2.7-150000.3.32.1.s390x.rpm cups-devel-2.2.7-150000.3.32.1.s390x.rpm libcups2-2.2.7-150000.3.32.1.s390x.rpm libcupscgi1-2.2.7-150000.3.32.1.s390x.rpm libcupsimage2-2.2.7-150000.3.32.1.s390x.rpm libcupsmime1-2.2.7-150000.3.32.1.s390x.rpm libcupsppdc1-2.2.7-150000.3.32.1.s390x.rpm cups-2.2.7-150000.3.32.1.ppc64le.rpm cups-client-2.2.7-150000.3.32.1.ppc64le.rpm cups-config-2.2.7-150000.3.32.1.ppc64le.rpm cups-ddk-2.2.7-150000.3.32.1.ppc64le.rpm cups-devel-2.2.7-150000.3.32.1.ppc64le.rpm libcups2-2.2.7-150000.3.32.1.ppc64le.rpm libcupscgi1-2.2.7-150000.3.32.1.ppc64le.rpm libcupsimage2-2.2.7-150000.3.32.1.ppc64le.rpm libcupsmime1-2.2.7-150000.3.32.1.ppc64le.rpm libcupsppdc1-2.2.7-150000.3.32.1.ppc64le.rpm cups-2.2.7-150000.3.32.1.aarch64.rpm cups-client-2.2.7-150000.3.32.1.aarch64.rpm cups-config-2.2.7-150000.3.32.1.aarch64.rpm cups-ddk-2.2.7-150000.3.32.1.aarch64.rpm cups-devel-2.2.7-150000.3.32.1.aarch64.rpm libcups2-2.2.7-150000.3.32.1.aarch64.rpm libcupscgi1-2.2.7-150000.3.32.1.aarch64.rpm libcupsimage2-2.2.7-150000.3.32.1.aarch64.rpm libcupsmime1-2.2.7-150000.3.32.1.aarch64.rpm libcupsppdc1-2.2.7-150000.3.32.1.aarch64.rpm openSUSE-SLE-15.3-2022-2026 low SUSE Updates openSUSE-SLE 15.3 This update for lirc fixes the following issues: - Fix library dependency. (bsc#1192772) libirrecord0-0.9.4c-150000.4.3.1.x86_64.rpm liblirc0-0.9.4c-150000.4.3.1.x86_64.rpm liblirc0-32bit-0.9.4c-150000.4.3.1.x86_64.rpm liblirc_client0-0.9.4c-150000.4.3.1.x86_64.rpm liblirc_client0-32bit-0.9.4c-150000.4.3.1.x86_64.rpm liblirc_driver0-0.9.4c-150000.4.3.1.x86_64.rpm liblirc_driver0-32bit-0.9.4c-150000.4.3.1.x86_64.rpm lirc-0.9.4c-150000.4.3.1.src.rpm lirc-config-0.9.4c-150000.4.3.1.noarch.rpm lirc-core-0.9.4c-150000.4.3.1.x86_64.rpm lirc-devel-0.9.4c-150000.4.3.1.x86_64.rpm lirc-disable-kernel-rc-0.9.4c-150000.4.3.1.x86_64.rpm lirc-drv-ftdi-0.9.4c-150000.4.3.1.x86_64.rpm lirc-drv-portaudio-0.9.4c-150000.4.3.1.x86_64.rpm lirc-tools-gui-0.9.4c-150000.4.3.1.x86_64.rpm libirrecord0-0.9.4c-150000.4.3.1.s390x.rpm liblirc0-0.9.4c-150000.4.3.1.s390x.rpm liblirc_client0-0.9.4c-150000.4.3.1.s390x.rpm liblirc_driver0-0.9.4c-150000.4.3.1.s390x.rpm lirc-core-0.9.4c-150000.4.3.1.s390x.rpm lirc-devel-0.9.4c-150000.4.3.1.s390x.rpm lirc-disable-kernel-rc-0.9.4c-150000.4.3.1.s390x.rpm lirc-drv-ftdi-0.9.4c-150000.4.3.1.s390x.rpm lirc-drv-portaudio-0.9.4c-150000.4.3.1.s390x.rpm lirc-tools-gui-0.9.4c-150000.4.3.1.s390x.rpm libirrecord0-0.9.4c-150000.4.3.1.ppc64le.rpm liblirc0-0.9.4c-150000.4.3.1.ppc64le.rpm liblirc_client0-0.9.4c-150000.4.3.1.ppc64le.rpm liblirc_driver0-0.9.4c-150000.4.3.1.ppc64le.rpm lirc-core-0.9.4c-150000.4.3.1.ppc64le.rpm lirc-devel-0.9.4c-150000.4.3.1.ppc64le.rpm lirc-disable-kernel-rc-0.9.4c-150000.4.3.1.ppc64le.rpm lirc-drv-ftdi-0.9.4c-150000.4.3.1.ppc64le.rpm lirc-drv-portaudio-0.9.4c-150000.4.3.1.ppc64le.rpm lirc-tools-gui-0.9.4c-150000.4.3.1.ppc64le.rpm libirrecord0-0.9.4c-150000.4.3.1.aarch64.rpm liblirc0-0.9.4c-150000.4.3.1.aarch64.rpm liblirc_client0-0.9.4c-150000.4.3.1.aarch64.rpm liblirc_driver0-0.9.4c-150000.4.3.1.aarch64.rpm lirc-core-0.9.4c-150000.4.3.1.aarch64.rpm lirc-devel-0.9.4c-150000.4.3.1.aarch64.rpm lirc-disable-kernel-rc-0.9.4c-150000.4.3.1.aarch64.rpm lirc-drv-ftdi-0.9.4c-150000.4.3.1.aarch64.rpm lirc-drv-portaudio-0.9.4c-150000.4.3.1.aarch64.rpm lirc-tools-gui-0.9.4c-150000.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2061 moderate SUSE Updates openSUSE-SLE 15.3 This update for SUSEConnect fixes the following issues: - Update to 0.3.34 - Manage the `System-Token` header. The `System-Token` header as delivered by SCC will be stored inside of the credentials file for later use on API calls. This way we add system clone detection for systems using this version of SUSE Connect. - Update to 0.3.33 - Add --keepalive command to send pings to SCC. - Add service/timer to periodically call --keepalive command to make system information in SCC and proxies more accurate. (bsc#1196076) SUSEConnect-0.3.34-150300.20.3.3.src.rpm SUSEConnect-0.3.34-150300.20.3.3.x86_64.rpm SUSEConnect-0.3.34-150300.20.3.3.s390x.rpm SUSEConnect-0.3.34-150300.20.3.3.ppc64le.rpm SUSEConnect-0.3.34-150300.20.3.3.aarch64.rpm openSUSE-SLE-15.3-2022-2994 moderate SUSE Updates openSUSE-SLE 15.3 This update for lame, libass, libcdio-paranoia, libdc1394, libgsm, libva, libvdpau, libvorbis, libvpx, libwebp, openjpeg, opus, speex, twolame adds some missing 32bit libraries to some products. (bsc#1198925) No codechanges were done in this update. cd-paranoia-10.2+0.93+1-150000.3.2.1.x86_64.rpm flac-1.3.2-150000.3.11.1.src.rpm flac-1.3.2-150000.3.11.1.x86_64.rpm flac-devel-1.3.2-150000.3.11.1.x86_64.rpm flac-devel-32bit-1.3.2-150000.3.11.1.x86_64.rpm flac-doc-1.3.2-150000.3.11.1.noarch.rpm lame-3.100-150000.3.2.1.src.rpm lame-3.100-150000.3.2.1.x86_64.rpm lame-doc-3.100-150000.3.2.1.x86_64.rpm lame-mp3rtp-3.100-150000.3.2.1.x86_64.rpm libFLAC++6-1.3.2-150000.3.11.1.x86_64.rpm libFLAC++6-32bit-1.3.2-150000.3.11.1.x86_64.rpm libFLAC8-1.3.2-150000.3.11.1.x86_64.rpm libFLAC8-32bit-1.3.2-150000.3.11.1.x86_64.rpm libass-0.14.0-150000.3.11.1.src.rpm libass-devel-0.14.0-150000.3.11.1.x86_64.rpm libass9-0.14.0-150000.3.11.1.x86_64.rpm libass9-32bit-0.14.0-150000.3.11.1.x86_64.rpm libcdio-0.94-150000.6.11.1.src.rpm libcdio-paranoia-10.2+0.93+1-150000.3.2.1.src.rpm libcdio-paranoia-devel-10.2+0.93+1-150000.3.2.1.x86_64.rpm libcdio16-0.94-150000.6.11.1.x86_64.rpm libcdio16-32bit-0.94-150000.6.11.1.x86_64.rpm libcdio_cdda2-10.2+0.93+1-150000.3.2.1.x86_64.rpm libcdio_cdda2-32bit-10.2+0.93+1-150000.3.2.1.x86_64.rpm libcdio_paranoia2-10.2+0.93+1-150000.3.2.1.x86_64.rpm libcdio_paranoia2-32bit-10.2+0.93+1-150000.3.2.1.x86_64.rpm libdc1394-2.2.5-150000.3.2.1.src.rpm libdc1394-22-2.2.5-150000.3.2.1.x86_64.rpm libdc1394-22-32bit-2.2.5-150000.3.2.1.x86_64.rpm libdc1394-devel-2.2.5-150000.3.2.1.x86_64.rpm libdc1394-tools-2.2.5-150000.3.2.1.x86_64.rpm libgsm-1.0.14-150000.3.4.1.src.rpm libgsm-devel-1.0.14-150000.3.4.1.x86_64.rpm libgsm-devel-32bit-1.0.14-150000.3.4.1.x86_64.rpm libgsm-utils-1.0.14-150000.3.4.1.x86_64.rpm libgsm1-1.0.14-150000.3.4.1.x86_64.rpm libgsm1-32bit-1.0.14-150000.3.4.1.x86_64.rpm libiso9660-10-0.94-150000.6.11.1.x86_64.rpm libiso9660-10-32bit-0.94-150000.6.11.1.x86_64.rpm libmp3lame-devel-3.100-150000.3.2.1.x86_64.rpm libmp3lame0-3.100-150000.3.2.1.x86_64.rpm libmp3lame0-32bit-3.100-150000.3.2.1.x86_64.rpm libogg-1.3.2-150000.3.2.1.src.rpm libogg-devel-1.3.2-150000.3.2.1.x86_64.rpm libogg0-1.3.2-150000.3.2.1.x86_64.rpm libogg0-32bit-1.3.2-150000.3.2.1.x86_64.rpm libopenjpeg1-1.5.2-150000.4.7.1.x86_64.rpm libopenjpeg1-32bit-1.5.2-150000.4.7.1.x86_64.rpm libopus-devel-1.3.1-150000.3.8.1.x86_64.rpm libopus0-1.3.1-150000.3.8.1.x86_64.rpm libopus0-32bit-1.3.1-150000.3.8.1.x86_64.rpm libraw1394-11-2.1.1-150000.3.2.1.x86_64.rpm libraw1394-11-32bit-2.1.1-150000.3.2.1.x86_64.rpm libraw1394-2.1.1-150000.3.2.1.src.rpm libraw1394-devel-2.1.1-150000.3.2.1.x86_64.rpm libraw1394-devel-32bit-2.1.1-150000.3.2.1.x86_64.rpm libraw1394-tools-2.1.1-150000.3.2.1.x86_64.rpm libsndfile-1.0.28-150000.5.17.1.src.rpm libsndfile-devel-1.0.28-150000.5.17.1.x86_64.rpm libsndfile-progs-1.0.28-150000.5.17.2.src.rpm libsndfile-progs-1.0.28-150000.5.17.2.x86_64.rpm libsndfile1-1.0.28-150000.5.17.1.x86_64.rpm libsndfile1-32bit-1.0.28-150000.5.17.1.x86_64.rpm libspeex1-1.2-150000.3.5.2.x86_64.rpm libspeex1-32bit-1.2-150000.3.5.2.x86_64.rpm libtwolame-devel-0.3.13-150000.3.2.2.x86_64.rpm libtwolame0-0.3.13-150000.3.2.2.x86_64.rpm libtwolame0-32bit-0.3.13-150000.3.2.2.x86_64.rpm libusb-1_0-0-1.0.21-150000.3.5.1.x86_64.rpm libusb-1_0-0-32bit-1.0.21-150000.3.5.1.x86_64.rpm libusb-1_0-1.0.21-150000.3.5.1.src.rpm libusb-1_0-devel-1.0.21-150000.3.5.1.x86_64.rpm libusb-1_0-devel-32bit-1.0.21-150000.3.5.1.x86_64.rpm libvdpau-1.1.1-150000.3.2.1.src.rpm libvdpau-devel-1.1.1-150000.3.2.1.x86_64.rpm libvdpau-devel-32bit-1.1.1-150000.3.2.1.x86_64.rpm libvdpau1-1.1.1-150000.3.2.1.x86_64.rpm libvdpau1-32bit-1.1.1-150000.3.2.1.x86_64.rpm libvdpau_trace1-1.1.1-150000.3.2.1.x86_64.rpm libvdpau_trace1-32bit-1.1.1-150000.3.2.1.x86_64.rpm libvorbis-1.3.6-150000.4.5.2.src.rpm libvorbis-devel-1.3.6-150000.4.5.2.x86_64.rpm libvorbis-devel-32bit-1.3.6-150000.4.5.2.x86_64.rpm libvorbis-doc-1.3.6-150000.4.5.1.noarch.rpm libvorbis-doc-1.3.6-150000.4.5.1.src.rpm libvorbis0-1.3.6-150000.4.5.2.x86_64.rpm libvorbis0-32bit-1.3.6-150000.4.5.2.x86_64.rpm libvorbisenc2-1.3.6-150000.4.5.2.x86_64.rpm libvorbisenc2-32bit-1.3.6-150000.4.5.2.x86_64.rpm libvorbisfile3-1.3.6-150000.4.5.2.x86_64.rpm libvorbisfile3-32bit-1.3.6-150000.4.5.2.x86_64.rpm libvpx-1.6.1-150000.6.8.1.src.rpm libvpx-devel-1.6.1-150000.6.8.1.x86_64.rpm libvpx4-1.6.1-150000.6.8.1.x86_64.rpm libvpx4-32bit-1.6.1-150000.6.8.1.x86_64.rpm libwebp-0.5.0-150000.3.7.1.src.rpm libwebp6-0.5.0-150000.3.7.1.x86_64.rpm libwebp6-32bit-0.5.0-150000.3.7.1.x86_64.rpm libwebpdecoder2-0.5.0-150000.3.7.1.x86_64.rpm libwebpdecoder2-32bit-0.5.0-150000.3.7.1.x86_64.rpm libwebpextras0-0.5.0-150000.3.7.1.x86_64.rpm libwebpextras0-32bit-0.5.0-150000.3.7.1.x86_64.rpm libwebpmux2-0.5.0-150000.3.7.1.x86_64.rpm libwebpmux2-32bit-0.5.0-150000.3.7.1.x86_64.rpm libxcb-1.13-150000.3.9.1.src.rpm libxcb-composite0-1.13-150000.3.9.1.x86_64.rpm libxcb-composite0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-damage0-1.13-150000.3.9.1.x86_64.rpm libxcb-damage0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-devel-1.13-150000.3.9.1.x86_64.rpm libxcb-devel-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-devel-doc-1.13-150000.3.9.1.noarch.rpm libxcb-dpms0-1.13-150000.3.9.1.x86_64.rpm libxcb-dpms0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-dri2-0-1.13-150000.3.9.1.x86_64.rpm libxcb-dri2-0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-dri3-0-1.13-150000.3.9.1.x86_64.rpm libxcb-dri3-0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-glx0-1.13-150000.3.9.1.x86_64.rpm libxcb-glx0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-present0-1.13-150000.3.9.1.x86_64.rpm libxcb-present0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-randr0-1.13-150000.3.9.1.x86_64.rpm libxcb-randr0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-record0-1.13-150000.3.9.1.x86_64.rpm libxcb-record0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-render0-1.13-150000.3.9.1.x86_64.rpm libxcb-render0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-res0-1.13-150000.3.9.1.x86_64.rpm libxcb-res0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-screensaver0-1.13-150000.3.9.1.x86_64.rpm libxcb-screensaver0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-shape0-1.13-150000.3.9.1.x86_64.rpm libxcb-shape0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-shm0-1.13-150000.3.9.1.x86_64.rpm libxcb-shm0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-sync1-1.13-150000.3.9.1.x86_64.rpm libxcb-sync1-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-xf86dri0-1.13-150000.3.9.1.x86_64.rpm libxcb-xf86dri0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-xfixes0-1.13-150000.3.9.1.x86_64.rpm libxcb-xfixes0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-xinerama0-1.13-150000.3.9.1.x86_64.rpm libxcb-xinerama0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-xinput0-1.13-150000.3.9.1.x86_64.rpm libxcb-xinput0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-xkb1-1.13-150000.3.9.1.x86_64.rpm libxcb-xkb1-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-xtest0-1.13-150000.3.9.1.x86_64.rpm libxcb-xtest0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-xv0-1.13-150000.3.9.1.x86_64.rpm libxcb-xv0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb-xvmc0-1.13-150000.3.9.1.x86_64.rpm libxcb-xvmc0-32bit-1.13-150000.3.9.1.x86_64.rpm libxcb1-1.13-150000.3.9.1.x86_64.rpm libxcb1-32bit-1.13-150000.3.9.1.x86_64.rpm openjpeg-1.5.2-150000.4.7.1.src.rpm openjpeg-1.5.2-150000.4.7.1.x86_64.rpm openjpeg-devel-1.5.2-150000.4.7.1.x86_64.rpm openjpeg-devel-32bit-1.5.2-150000.4.7.1.x86_64.rpm opus-1.3.1-150000.3.8.1.src.rpm speex-1.2-150000.3.5.2.src.rpm speex-1.2-150000.3.5.2.x86_64.rpm speex-devel-1.2-150000.3.5.2.x86_64.rpm twolame-0.3.13-150000.3.2.2.src.rpm twolame-0.3.13-150000.3.2.2.x86_64.rpm vpx-tools-1.6.1-150000.6.8.1.x86_64.rpm cd-paranoia-10.2+0.93+1-150000.3.2.1.s390x.rpm flac-1.3.2-150000.3.11.1.s390x.rpm flac-devel-1.3.2-150000.3.11.1.s390x.rpm lame-3.100-150000.3.2.1.s390x.rpm lame-doc-3.100-150000.3.2.1.s390x.rpm lame-mp3rtp-3.100-150000.3.2.1.s390x.rpm libFLAC++6-1.3.2-150000.3.11.1.s390x.rpm libFLAC8-1.3.2-150000.3.11.1.s390x.rpm libass-devel-0.14.0-150000.3.11.1.s390x.rpm libass9-0.14.0-150000.3.11.1.s390x.rpm libcdio-paranoia-devel-10.2+0.93+1-150000.3.2.1.s390x.rpm libcdio16-0.94-150000.6.11.1.s390x.rpm libcdio_cdda2-10.2+0.93+1-150000.3.2.1.s390x.rpm libcdio_paranoia2-10.2+0.93+1-150000.3.2.1.s390x.rpm libdc1394-22-2.2.5-150000.3.2.1.s390x.rpm libdc1394-devel-2.2.5-150000.3.2.1.s390x.rpm libdc1394-tools-2.2.5-150000.3.2.1.s390x.rpm libgsm-devel-1.0.14-150000.3.4.1.s390x.rpm libgsm-utils-1.0.14-150000.3.4.1.s390x.rpm libgsm1-1.0.14-150000.3.4.1.s390x.rpm libiso9660-10-0.94-150000.6.11.1.s390x.rpm libmp3lame-devel-3.100-150000.3.2.1.s390x.rpm libmp3lame0-3.100-150000.3.2.1.s390x.rpm libogg-devel-1.3.2-150000.3.2.1.s390x.rpm libogg0-1.3.2-150000.3.2.1.s390x.rpm libopenjpeg1-1.5.2-150000.4.7.1.s390x.rpm libopus-devel-1.3.1-150000.3.8.1.s390x.rpm libopus0-1.3.1-150000.3.8.1.s390x.rpm libraw1394-11-2.1.1-150000.3.2.1.s390x.rpm libraw1394-devel-2.1.1-150000.3.2.1.s390x.rpm libraw1394-tools-2.1.1-150000.3.2.1.s390x.rpm libsndfile-devel-1.0.28-150000.5.17.1.s390x.rpm libsndfile-progs-1.0.28-150000.5.17.2.s390x.rpm libsndfile1-1.0.28-150000.5.17.1.s390x.rpm libspeex1-1.2-150000.3.5.2.s390x.rpm libtwolame-devel-0.3.13-150000.3.2.2.s390x.rpm libtwolame0-0.3.13-150000.3.2.2.s390x.rpm libusb-1_0-0-1.0.21-150000.3.5.1.s390x.rpm libusb-1_0-devel-1.0.21-150000.3.5.1.s390x.rpm libvdpau-devel-1.1.1-150000.3.2.1.s390x.rpm libvdpau1-1.1.1-150000.3.2.1.s390x.rpm libvdpau_trace1-1.1.1-150000.3.2.1.s390x.rpm libvorbis-devel-1.3.6-150000.4.5.2.s390x.rpm libvorbis0-1.3.6-150000.4.5.2.s390x.rpm libvorbisenc2-1.3.6-150000.4.5.2.s390x.rpm libvorbisfile3-1.3.6-150000.4.5.2.s390x.rpm libvpx-devel-1.6.1-150000.6.8.1.s390x.rpm libvpx4-1.6.1-150000.6.8.1.s390x.rpm libwebp6-0.5.0-150000.3.7.1.s390x.rpm libwebpdecoder2-0.5.0-150000.3.7.1.s390x.rpm libwebpextras0-0.5.0-150000.3.7.1.s390x.rpm libwebpmux2-0.5.0-150000.3.7.1.s390x.rpm libxcb-composite0-1.13-150000.3.9.1.s390x.rpm libxcb-damage0-1.13-150000.3.9.1.s390x.rpm libxcb-devel-1.13-150000.3.9.1.s390x.rpm libxcb-dpms0-1.13-150000.3.9.1.s390x.rpm libxcb-dri2-0-1.13-150000.3.9.1.s390x.rpm libxcb-dri3-0-1.13-150000.3.9.1.s390x.rpm libxcb-glx0-1.13-150000.3.9.1.s390x.rpm libxcb-present0-1.13-150000.3.9.1.s390x.rpm libxcb-randr0-1.13-150000.3.9.1.s390x.rpm libxcb-record0-1.13-150000.3.9.1.s390x.rpm libxcb-render0-1.13-150000.3.9.1.s390x.rpm libxcb-res0-1.13-150000.3.9.1.s390x.rpm libxcb-screensaver0-1.13-150000.3.9.1.s390x.rpm libxcb-shape0-1.13-150000.3.9.1.s390x.rpm libxcb-shm0-1.13-150000.3.9.1.s390x.rpm libxcb-sync1-1.13-150000.3.9.1.s390x.rpm libxcb-xf86dri0-1.13-150000.3.9.1.s390x.rpm libxcb-xfixes0-1.13-150000.3.9.1.s390x.rpm libxcb-xinerama0-1.13-150000.3.9.1.s390x.rpm libxcb-xinput0-1.13-150000.3.9.1.s390x.rpm libxcb-xkb1-1.13-150000.3.9.1.s390x.rpm libxcb-xtest0-1.13-150000.3.9.1.s390x.rpm libxcb-xv0-1.13-150000.3.9.1.s390x.rpm libxcb-xvmc0-1.13-150000.3.9.1.s390x.rpm libxcb1-1.13-150000.3.9.1.s390x.rpm openjpeg-1.5.2-150000.4.7.1.s390x.rpm openjpeg-devel-1.5.2-150000.4.7.1.s390x.rpm speex-1.2-150000.3.5.2.s390x.rpm speex-devel-1.2-150000.3.5.2.s390x.rpm twolame-0.3.13-150000.3.2.2.s390x.rpm vpx-tools-1.6.1-150000.6.8.1.s390x.rpm cd-paranoia-10.2+0.93+1-150000.3.2.1.ppc64le.rpm flac-1.3.2-150000.3.11.1.ppc64le.rpm flac-devel-1.3.2-150000.3.11.1.ppc64le.rpm lame-3.100-150000.3.2.1.ppc64le.rpm lame-doc-3.100-150000.3.2.1.ppc64le.rpm lame-mp3rtp-3.100-150000.3.2.1.ppc64le.rpm libFLAC++6-1.3.2-150000.3.11.1.ppc64le.rpm libFLAC8-1.3.2-150000.3.11.1.ppc64le.rpm libass-devel-0.14.0-150000.3.11.1.ppc64le.rpm libass9-0.14.0-150000.3.11.1.ppc64le.rpm libcdio-paranoia-devel-10.2+0.93+1-150000.3.2.1.ppc64le.rpm libcdio16-0.94-150000.6.11.1.ppc64le.rpm libcdio_cdda2-10.2+0.93+1-150000.3.2.1.ppc64le.rpm libcdio_paranoia2-10.2+0.93+1-150000.3.2.1.ppc64le.rpm libdc1394-22-2.2.5-150000.3.2.1.ppc64le.rpm libdc1394-devel-2.2.5-150000.3.2.1.ppc64le.rpm libdc1394-tools-2.2.5-150000.3.2.1.ppc64le.rpm libgsm-devel-1.0.14-150000.3.4.1.ppc64le.rpm libgsm-utils-1.0.14-150000.3.4.1.ppc64le.rpm libgsm1-1.0.14-150000.3.4.1.ppc64le.rpm libiso9660-10-0.94-150000.6.11.1.ppc64le.rpm libmp3lame-devel-3.100-150000.3.2.1.ppc64le.rpm libmp3lame0-3.100-150000.3.2.1.ppc64le.rpm libogg-devel-1.3.2-150000.3.2.1.ppc64le.rpm libogg0-1.3.2-150000.3.2.1.ppc64le.rpm libopenjpeg1-1.5.2-150000.4.7.1.ppc64le.rpm libopus-devel-1.3.1-150000.3.8.1.ppc64le.rpm libopus0-1.3.1-150000.3.8.1.ppc64le.rpm libraw1394-11-2.1.1-150000.3.2.1.ppc64le.rpm libraw1394-devel-2.1.1-150000.3.2.1.ppc64le.rpm libraw1394-tools-2.1.1-150000.3.2.1.ppc64le.rpm libsndfile-devel-1.0.28-150000.5.17.1.ppc64le.rpm libsndfile-progs-1.0.28-150000.5.17.2.ppc64le.rpm libsndfile1-1.0.28-150000.5.17.1.ppc64le.rpm libspeex1-1.2-150000.3.5.2.ppc64le.rpm libtwolame-devel-0.3.13-150000.3.2.2.ppc64le.rpm libtwolame0-0.3.13-150000.3.2.2.ppc64le.rpm libusb-1_0-0-1.0.21-150000.3.5.1.ppc64le.rpm libusb-1_0-devel-1.0.21-150000.3.5.1.ppc64le.rpm libvdpau-devel-1.1.1-150000.3.2.1.ppc64le.rpm libvdpau1-1.1.1-150000.3.2.1.ppc64le.rpm libvdpau_trace1-1.1.1-150000.3.2.1.ppc64le.rpm libvorbis-devel-1.3.6-150000.4.5.2.ppc64le.rpm libvorbis0-1.3.6-150000.4.5.2.ppc64le.rpm libvorbisenc2-1.3.6-150000.4.5.2.ppc64le.rpm libvorbisfile3-1.3.6-150000.4.5.2.ppc64le.rpm libvpx-devel-1.6.1-150000.6.8.1.ppc64le.rpm libvpx4-1.6.1-150000.6.8.1.ppc64le.rpm libwebp6-0.5.0-150000.3.7.1.ppc64le.rpm libwebpdecoder2-0.5.0-150000.3.7.1.ppc64le.rpm libwebpextras0-0.5.0-150000.3.7.1.ppc64le.rpm libwebpmux2-0.5.0-150000.3.7.1.ppc64le.rpm libxcb-composite0-1.13-150000.3.9.1.ppc64le.rpm libxcb-damage0-1.13-150000.3.9.1.ppc64le.rpm libxcb-devel-1.13-150000.3.9.1.ppc64le.rpm libxcb-dpms0-1.13-150000.3.9.1.ppc64le.rpm libxcb-dri2-0-1.13-150000.3.9.1.ppc64le.rpm libxcb-dri3-0-1.13-150000.3.9.1.ppc64le.rpm libxcb-glx0-1.13-150000.3.9.1.ppc64le.rpm libxcb-present0-1.13-150000.3.9.1.ppc64le.rpm libxcb-randr0-1.13-150000.3.9.1.ppc64le.rpm libxcb-record0-1.13-150000.3.9.1.ppc64le.rpm libxcb-render0-1.13-150000.3.9.1.ppc64le.rpm libxcb-res0-1.13-150000.3.9.1.ppc64le.rpm libxcb-screensaver0-1.13-150000.3.9.1.ppc64le.rpm libxcb-shape0-1.13-150000.3.9.1.ppc64le.rpm libxcb-shm0-1.13-150000.3.9.1.ppc64le.rpm libxcb-sync1-1.13-150000.3.9.1.ppc64le.rpm libxcb-xf86dri0-1.13-150000.3.9.1.ppc64le.rpm libxcb-xfixes0-1.13-150000.3.9.1.ppc64le.rpm libxcb-xinerama0-1.13-150000.3.9.1.ppc64le.rpm libxcb-xinput0-1.13-150000.3.9.1.ppc64le.rpm libxcb-xkb1-1.13-150000.3.9.1.ppc64le.rpm libxcb-xtest0-1.13-150000.3.9.1.ppc64le.rpm libxcb-xv0-1.13-150000.3.9.1.ppc64le.rpm libxcb-xvmc0-1.13-150000.3.9.1.ppc64le.rpm libxcb1-1.13-150000.3.9.1.ppc64le.rpm openjpeg-1.5.2-150000.4.7.1.ppc64le.rpm openjpeg-devel-1.5.2-150000.4.7.1.ppc64le.rpm speex-1.2-150000.3.5.2.ppc64le.rpm speex-devel-1.2-150000.3.5.2.ppc64le.rpm twolame-0.3.13-150000.3.2.2.ppc64le.rpm vpx-tools-1.6.1-150000.6.8.1.ppc64le.rpm cd-paranoia-10.2+0.93+1-150000.3.2.1.aarch64.rpm flac-1.3.2-150000.3.11.1.aarch64.rpm flac-devel-1.3.2-150000.3.11.1.aarch64.rpm lame-3.100-150000.3.2.1.aarch64.rpm lame-doc-3.100-150000.3.2.1.aarch64.rpm lame-mp3rtp-3.100-150000.3.2.1.aarch64.rpm libFLAC++6-1.3.2-150000.3.11.1.aarch64.rpm libFLAC8-1.3.2-150000.3.11.1.aarch64.rpm libass-devel-0.14.0-150000.3.11.1.aarch64.rpm libass9-0.14.0-150000.3.11.1.aarch64.rpm libcdio-paranoia-devel-10.2+0.93+1-150000.3.2.1.aarch64.rpm libcdio16-0.94-150000.6.11.1.aarch64.rpm libcdio_cdda2-10.2+0.93+1-150000.3.2.1.aarch64.rpm libcdio_paranoia2-10.2+0.93+1-150000.3.2.1.aarch64.rpm libdc1394-22-2.2.5-150000.3.2.1.aarch64.rpm libdc1394-devel-2.2.5-150000.3.2.1.aarch64.rpm libdc1394-tools-2.2.5-150000.3.2.1.aarch64.rpm libgsm-devel-1.0.14-150000.3.4.1.aarch64.rpm libgsm-utils-1.0.14-150000.3.4.1.aarch64.rpm libgsm1-1.0.14-150000.3.4.1.aarch64.rpm libiso9660-10-0.94-150000.6.11.1.aarch64.rpm libmp3lame-devel-3.100-150000.3.2.1.aarch64.rpm libmp3lame0-3.100-150000.3.2.1.aarch64.rpm libogg-devel-1.3.2-150000.3.2.1.aarch64.rpm libogg0-1.3.2-150000.3.2.1.aarch64.rpm libopenjpeg1-1.5.2-150000.4.7.1.aarch64.rpm libopus-devel-1.3.1-150000.3.8.1.aarch64.rpm libopus0-1.3.1-150000.3.8.1.aarch64.rpm libraw1394-11-2.1.1-150000.3.2.1.aarch64.rpm libraw1394-devel-2.1.1-150000.3.2.1.aarch64.rpm libraw1394-tools-2.1.1-150000.3.2.1.aarch64.rpm libsndfile-devel-1.0.28-150000.5.17.1.aarch64.rpm libsndfile-progs-1.0.28-150000.5.17.2.aarch64.rpm libsndfile1-1.0.28-150000.5.17.1.aarch64.rpm libspeex1-1.2-150000.3.5.2.aarch64.rpm libtwolame-devel-0.3.13-150000.3.2.2.aarch64.rpm libtwolame0-0.3.13-150000.3.2.2.aarch64.rpm libusb-1_0-0-1.0.21-150000.3.5.1.aarch64.rpm libusb-1_0-devel-1.0.21-150000.3.5.1.aarch64.rpm libvdpau-devel-1.1.1-150000.3.2.1.aarch64.rpm libvdpau1-1.1.1-150000.3.2.1.aarch64.rpm libvdpau_trace1-1.1.1-150000.3.2.1.aarch64.rpm libvorbis-devel-1.3.6-150000.4.5.2.aarch64.rpm libvorbis0-1.3.6-150000.4.5.2.aarch64.rpm libvorbisenc2-1.3.6-150000.4.5.2.aarch64.rpm libvorbisfile3-1.3.6-150000.4.5.2.aarch64.rpm libvpx-devel-1.6.1-150000.6.8.1.aarch64.rpm libvpx4-1.6.1-150000.6.8.1.aarch64.rpm libwebp6-0.5.0-150000.3.7.1.aarch64.rpm libwebpdecoder2-0.5.0-150000.3.7.1.aarch64.rpm libwebpextras0-0.5.0-150000.3.7.1.aarch64.rpm libwebpmux2-0.5.0-150000.3.7.1.aarch64.rpm libxcb-composite0-1.13-150000.3.9.1.aarch64.rpm libxcb-damage0-1.13-150000.3.9.1.aarch64.rpm libxcb-devel-1.13-150000.3.9.1.aarch64.rpm libxcb-dpms0-1.13-150000.3.9.1.aarch64.rpm libxcb-dri2-0-1.13-150000.3.9.1.aarch64.rpm libxcb-dri3-0-1.13-150000.3.9.1.aarch64.rpm libxcb-glx0-1.13-150000.3.9.1.aarch64.rpm libxcb-present0-1.13-150000.3.9.1.aarch64.rpm libxcb-randr0-1.13-150000.3.9.1.aarch64.rpm libxcb-record0-1.13-150000.3.9.1.aarch64.rpm libxcb-render0-1.13-150000.3.9.1.aarch64.rpm libxcb-res0-1.13-150000.3.9.1.aarch64.rpm libxcb-screensaver0-1.13-150000.3.9.1.aarch64.rpm libxcb-shape0-1.13-150000.3.9.1.aarch64.rpm libxcb-shm0-1.13-150000.3.9.1.aarch64.rpm libxcb-sync1-1.13-150000.3.9.1.aarch64.rpm libxcb-xf86dri0-1.13-150000.3.9.1.aarch64.rpm libxcb-xfixes0-1.13-150000.3.9.1.aarch64.rpm libxcb-xinerama0-1.13-150000.3.9.1.aarch64.rpm libxcb-xinput0-1.13-150000.3.9.1.aarch64.rpm libxcb-xkb1-1.13-150000.3.9.1.aarch64.rpm libxcb-xtest0-1.13-150000.3.9.1.aarch64.rpm libxcb-xv0-1.13-150000.3.9.1.aarch64.rpm libxcb-xvmc0-1.13-150000.3.9.1.aarch64.rpm libxcb1-1.13-150000.3.9.1.aarch64.rpm openjpeg-1.5.2-150000.4.7.1.aarch64.rpm openjpeg-devel-1.5.2-150000.4.7.1.aarch64.rpm speex-1.2-150000.3.5.2.aarch64.rpm speex-devel-1.2-150000.3.5.2.aarch64.rpm twolame-0.3.13-150000.3.2.2.aarch64.rpm vpx-tools-1.6.1-150000.6.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-2062 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 91.9.1 MFSA 2022-19 (bsc#1199768): - CVE-2022-1802: Prototype pollution in Top-Level Await implementation (bmo#1770137). - CVE-2022-1529: Untrusted input used in JavaScript object indexing, leading to prototype pollution (bmo#1770048). Update to Mozilla Thunderbird 91.10 MFSA 2022-22 (bsc#1200027): - CVE-2022-31736: Cross-Origin resource's length leaked (bmo#1735923) - CVE-2022-31737: Heap buffer overflow in WebGL (bmo#1743767) - CVE-2022-31738: Browser window spoof using fullscreen mode (bmo#1756388) - CVE-2022-31739: Attacker-influenced path traversal when saving downloaded files (bmo#1765049) - CVE-2022-31740: Register allocation problem in WASM on arm64 (bmo#1766806) - CVE-2022-31741: Uninitialized variable leads to invalid memory read (bmo#1767590) - CVE-2022-1834: Braille space character caused incorrect sender email to be shown for a digitally signed email (bmo#1767816) - CVE-2022-31742: Querying a WebAuthn token with a large number of allowCredential entries may have leaked cross-origin information (bmo#1730434) - CVE-2022-31747: Memory safety bugs fixed in Thunderbird 91.10 (bmo#1760765, bmo#1765610, bmo#1766283, bmo#1767365, bmo#1768559, bmo#1768734) MozillaThunderbird-91.10.0-150200.8.73.1.src.rpm MozillaThunderbird-91.10.0-150200.8.73.1.x86_64.rpm MozillaThunderbird-translations-common-91.10.0-150200.8.73.1.x86_64.rpm MozillaThunderbird-translations-other-91.10.0-150200.8.73.1.x86_64.rpm MozillaThunderbird-91.10.0-150200.8.73.1.s390x.rpm MozillaThunderbird-translations-common-91.10.0-150200.8.73.1.s390x.rpm MozillaThunderbird-translations-other-91.10.0-150200.8.73.1.s390x.rpm MozillaThunderbird-91.10.0-150200.8.73.1.ppc64le.rpm MozillaThunderbird-translations-common-91.10.0-150200.8.73.1.ppc64le.rpm MozillaThunderbird-translations-other-91.10.0-150200.8.73.1.ppc64le.rpm MozillaThunderbird-91.10.0-150200.8.73.1.aarch64.rpm MozillaThunderbird-translations-common-91.10.0-150200.8.73.1.aarch64.rpm MozillaThunderbird-translations-other-91.10.0-150200.8.73.1.aarch64.rpm openSUSE-SLE-15.3-2022-2363 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust1.59 fixes the following issues: - For building requires gcc by default to enable linking to work correctly (bsc#1196496) cargo1.59-1.59.0-150300.7.7.2.x86_64.rpm rust1.59-1.59.0-150300.7.7.2.src.rpm rust1.59-1.59.0-150300.7.7.2.x86_64.rpm cargo1.59-1.59.0-150300.7.7.2.s390x.rpm rust1.59-1.59.0-150300.7.7.2.s390x.rpm cargo1.59-1.59.0-150300.7.7.2.ppc64le.rpm rust1.59-1.59.0-150300.7.7.2.ppc64le.rpm cargo1.59-1.59.0-150300.7.7.2.aarch64.rpm rust1.59-1.59.0-150300.7.7.2.aarch64.rpm openSUSE-SLE-15.3-2022-2644 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Fix(nfs): /var is not mounted during the transactional-update run (bsc#1184970) - Fix(nfs): give /run/rpcbind ownership to rpc user (bsc#1177461) dracut-049.1+suse.238.gd8dbb075-150200.3.60.1.src.rpm dracut-049.1+suse.238.gd8dbb075-150200.3.60.1.x86_64.rpm dracut-extra-049.1+suse.238.gd8dbb075-150200.3.60.1.x86_64.rpm dracut-fips-049.1+suse.238.gd8dbb075-150200.3.60.1.x86_64.rpm dracut-ima-049.1+suse.238.gd8dbb075-150200.3.60.1.x86_64.rpm dracut-tools-049.1+suse.238.gd8dbb075-150200.3.60.1.x86_64.rpm dracut-049.1+suse.238.gd8dbb075-150200.3.60.1.s390x.rpm dracut-extra-049.1+suse.238.gd8dbb075-150200.3.60.1.s390x.rpm dracut-fips-049.1+suse.238.gd8dbb075-150200.3.60.1.s390x.rpm dracut-ima-049.1+suse.238.gd8dbb075-150200.3.60.1.s390x.rpm dracut-tools-049.1+suse.238.gd8dbb075-150200.3.60.1.s390x.rpm dracut-049.1+suse.238.gd8dbb075-150200.3.60.1.ppc64le.rpm dracut-extra-049.1+suse.238.gd8dbb075-150200.3.60.1.ppc64le.rpm dracut-fips-049.1+suse.238.gd8dbb075-150200.3.60.1.ppc64le.rpm dracut-ima-049.1+suse.238.gd8dbb075-150200.3.60.1.ppc64le.rpm dracut-tools-049.1+suse.238.gd8dbb075-150200.3.60.1.ppc64le.rpm dracut-049.1+suse.238.gd8dbb075-150200.3.60.1.aarch64.rpm dracut-extra-049.1+suse.238.gd8dbb075-150200.3.60.1.aarch64.rpm dracut-fips-049.1+suse.238.gd8dbb075-150200.3.60.1.aarch64.rpm dracut-ima-049.1+suse.238.gd8dbb075-150200.3.60.1.aarch64.rpm dracut-tools-049.1+suse.238.gd8dbb075-150200.3.60.1.aarch64.rpm openSUSE-SLE-15.3-2022-1936 low SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - Update sss_cache command's manpage to clarify its effects on the memory cache. (bsc#1199393) libipa_hbac-devel-1.16.1-150300.23.31.1.x86_64.rpm libipa_hbac0-1.16.1-150300.23.31.1.x86_64.rpm libnfsidmap-sss-1.16.1-150300.23.31.1.x86_64.rpm libsss_certmap-devel-1.16.1-150300.23.31.1.x86_64.rpm libsss_certmap0-1.16.1-150300.23.31.1.x86_64.rpm libsss_idmap-devel-1.16.1-150300.23.31.1.x86_64.rpm libsss_idmap0-1.16.1-150300.23.31.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.31.1.x86_64.rpm libsss_nss_idmap0-1.16.1-150300.23.31.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-150300.23.31.1.x86_64.rpm libsss_simpleifp0-1.16.1-150300.23.31.1.x86_64.rpm python3-ipa_hbac-1.16.1-150300.23.31.1.x86_64.rpm python3-sss-murmur-1.16.1-150300.23.31.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-150300.23.31.1.x86_64.rpm python3-sssd-config-1.16.1-150300.23.31.1.x86_64.rpm sssd-1.16.1-150300.23.31.1.src.rpm sssd-1.16.1-150300.23.31.1.x86_64.rpm sssd-ad-1.16.1-150300.23.31.1.x86_64.rpm sssd-common-1.16.1-150300.23.31.1.x86_64.rpm sssd-common-32bit-1.16.1-150300.23.31.1.x86_64.rpm sssd-dbus-1.16.1-150300.23.31.1.x86_64.rpm sssd-ipa-1.16.1-150300.23.31.1.x86_64.rpm sssd-krb5-1.16.1-150300.23.31.1.x86_64.rpm sssd-krb5-common-1.16.1-150300.23.31.1.x86_64.rpm sssd-ldap-1.16.1-150300.23.31.1.x86_64.rpm sssd-proxy-1.16.1-150300.23.31.1.x86_64.rpm sssd-tools-1.16.1-150300.23.31.1.x86_64.rpm sssd-wbclient-1.16.1-150300.23.31.1.x86_64.rpm sssd-wbclient-devel-1.16.1-150300.23.31.1.x86_64.rpm sssd-winbind-idmap-1.16.1-150300.23.31.1.x86_64.rpm libipa_hbac-devel-1.16.1-150300.23.31.1.s390x.rpm libipa_hbac0-1.16.1-150300.23.31.1.s390x.rpm libnfsidmap-sss-1.16.1-150300.23.31.1.s390x.rpm libsss_certmap-devel-1.16.1-150300.23.31.1.s390x.rpm libsss_certmap0-1.16.1-150300.23.31.1.s390x.rpm libsss_idmap-devel-1.16.1-150300.23.31.1.s390x.rpm libsss_idmap0-1.16.1-150300.23.31.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-150300.23.31.1.s390x.rpm libsss_nss_idmap0-1.16.1-150300.23.31.1.s390x.rpm libsss_simpleifp-devel-1.16.1-150300.23.31.1.s390x.rpm libsss_simpleifp0-1.16.1-150300.23.31.1.s390x.rpm python3-ipa_hbac-1.16.1-150300.23.31.1.s390x.rpm python3-sss-murmur-1.16.1-150300.23.31.1.s390x.rpm python3-sss_nss_idmap-1.16.1-150300.23.31.1.s390x.rpm python3-sssd-config-1.16.1-150300.23.31.1.s390x.rpm sssd-1.16.1-150300.23.31.1.s390x.rpm sssd-ad-1.16.1-150300.23.31.1.s390x.rpm sssd-common-1.16.1-150300.23.31.1.s390x.rpm sssd-dbus-1.16.1-150300.23.31.1.s390x.rpm sssd-ipa-1.16.1-150300.23.31.1.s390x.rpm sssd-krb5-1.16.1-150300.23.31.1.s390x.rpm sssd-krb5-common-1.16.1-150300.23.31.1.s390x.rpm sssd-ldap-1.16.1-150300.23.31.1.s390x.rpm sssd-proxy-1.16.1-150300.23.31.1.s390x.rpm sssd-tools-1.16.1-150300.23.31.1.s390x.rpm sssd-wbclient-1.16.1-150300.23.31.1.s390x.rpm sssd-wbclient-devel-1.16.1-150300.23.31.1.s390x.rpm sssd-winbind-idmap-1.16.1-150300.23.31.1.s390x.rpm libipa_hbac-devel-1.16.1-150300.23.31.1.ppc64le.rpm libipa_hbac0-1.16.1-150300.23.31.1.ppc64le.rpm libnfsidmap-sss-1.16.1-150300.23.31.1.ppc64le.rpm libsss_certmap-devel-1.16.1-150300.23.31.1.ppc64le.rpm libsss_certmap0-1.16.1-150300.23.31.1.ppc64le.rpm libsss_idmap-devel-1.16.1-150300.23.31.1.ppc64le.rpm libsss_idmap0-1.16.1-150300.23.31.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-150300.23.31.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-150300.23.31.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-150300.23.31.1.ppc64le.rpm libsss_simpleifp0-1.16.1-150300.23.31.1.ppc64le.rpm python3-ipa_hbac-1.16.1-150300.23.31.1.ppc64le.rpm python3-sss-murmur-1.16.1-150300.23.31.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-150300.23.31.1.ppc64le.rpm python3-sssd-config-1.16.1-150300.23.31.1.ppc64le.rpm sssd-1.16.1-150300.23.31.1.ppc64le.rpm sssd-ad-1.16.1-150300.23.31.1.ppc64le.rpm sssd-common-1.16.1-150300.23.31.1.ppc64le.rpm sssd-dbus-1.16.1-150300.23.31.1.ppc64le.rpm sssd-ipa-1.16.1-150300.23.31.1.ppc64le.rpm sssd-krb5-1.16.1-150300.23.31.1.ppc64le.rpm sssd-krb5-common-1.16.1-150300.23.31.1.ppc64le.rpm sssd-ldap-1.16.1-150300.23.31.1.ppc64le.rpm sssd-proxy-1.16.1-150300.23.31.1.ppc64le.rpm sssd-tools-1.16.1-150300.23.31.1.ppc64le.rpm sssd-wbclient-1.16.1-150300.23.31.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-150300.23.31.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-150300.23.31.1.ppc64le.rpm libipa_hbac-devel-1.16.1-150300.23.31.1.aarch64.rpm libipa_hbac0-1.16.1-150300.23.31.1.aarch64.rpm libnfsidmap-sss-1.16.1-150300.23.31.1.aarch64.rpm libsss_certmap-devel-1.16.1-150300.23.31.1.aarch64.rpm libsss_certmap0-1.16.1-150300.23.31.1.aarch64.rpm libsss_idmap-devel-1.16.1-150300.23.31.1.aarch64.rpm libsss_idmap0-1.16.1-150300.23.31.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.31.1.aarch64.rpm libsss_nss_idmap0-1.16.1-150300.23.31.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-150300.23.31.1.aarch64.rpm libsss_simpleifp0-1.16.1-150300.23.31.1.aarch64.rpm python3-ipa_hbac-1.16.1-150300.23.31.1.aarch64.rpm python3-sss-murmur-1.16.1-150300.23.31.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-150300.23.31.1.aarch64.rpm python3-sssd-config-1.16.1-150300.23.31.1.aarch64.rpm sssd-1.16.1-150300.23.31.1.aarch64.rpm sssd-ad-1.16.1-150300.23.31.1.aarch64.rpm sssd-common-1.16.1-150300.23.31.1.aarch64.rpm sssd-dbus-1.16.1-150300.23.31.1.aarch64.rpm sssd-ipa-1.16.1-150300.23.31.1.aarch64.rpm sssd-krb5-1.16.1-150300.23.31.1.aarch64.rpm sssd-krb5-common-1.16.1-150300.23.31.1.aarch64.rpm sssd-ldap-1.16.1-150300.23.31.1.aarch64.rpm sssd-proxy-1.16.1-150300.23.31.1.aarch64.rpm sssd-tools-1.16.1-150300.23.31.1.aarch64.rpm sssd-wbclient-1.16.1-150300.23.31.1.aarch64.rpm sssd-wbclient-devel-1.16.1-150300.23.31.1.aarch64.rpm sssd-winbind-idmap-1.16.1-150300.23.31.1.aarch64.rpm openSUSE-SLE-15.3-2022-2063 moderate SUSE Updates openSUSE-SLE 15.3 This update for gimp fixes the following issues: - CVE-2022-30067: Fixed uncontrolled memory consumption via crafted XCF file (bsc#1199653). gimp-2.10.12-150300.9.3.1.src.rpm gimp-2.10.12-150300.9.3.1.x86_64.rpm gimp-devel-2.10.12-150300.9.3.1.x86_64.rpm gimp-lang-2.10.12-150300.9.3.1.noarch.rpm gimp-plugin-aa-2.10.12-150300.9.3.1.x86_64.rpm libgimp-2_0-0-2.10.12-150300.9.3.1.x86_64.rpm libgimp-2_0-0-32bit-2.10.12-150300.9.3.1.x86_64.rpm libgimpui-2_0-0-2.10.12-150300.9.3.1.x86_64.rpm libgimpui-2_0-0-32bit-2.10.12-150300.9.3.1.x86_64.rpm gimp-2.10.12-150300.9.3.1.s390x.rpm gimp-devel-2.10.12-150300.9.3.1.s390x.rpm gimp-plugin-aa-2.10.12-150300.9.3.1.s390x.rpm libgimp-2_0-0-2.10.12-150300.9.3.1.s390x.rpm libgimpui-2_0-0-2.10.12-150300.9.3.1.s390x.rpm gimp-2.10.12-150300.9.3.1.ppc64le.rpm gimp-devel-2.10.12-150300.9.3.1.ppc64le.rpm gimp-plugin-aa-2.10.12-150300.9.3.1.ppc64le.rpm libgimp-2_0-0-2.10.12-150300.9.3.1.ppc64le.rpm libgimpui-2_0-0-2.10.12-150300.9.3.1.ppc64le.rpm gimp-2.10.12-150300.9.3.1.aarch64.rpm gimp-devel-2.10.12-150300.9.3.1.aarch64.rpm gimp-plugin-aa-2.10.12-150300.9.3.1.aarch64.rpm libgimp-2_0-0-2.10.12-150300.9.3.1.aarch64.rpm libgimpui-2_0-0-2.10.12-150300.9.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2620 moderate SUSE Updates openSUSE-SLE 15.3 This update for gimp fixes the following issues: - CVE-2022-30067: Fixed uncontrolled memory consumption via crafted XCF file (bsc#1199653). gimp-2.10.12-150200.3.9.1.src.rpm gimp-plugins-python-2.10.12-150200.3.9.1.x86_64.rpm gimp-plugins-python-2.10.12-150200.3.9.1.s390x.rpm gimp-plugins-python-2.10.12-150200.3.9.1.ppc64le.rpm gimp-plugins-python-2.10.12-150200.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-1904 important SUSE Updates openSUSE-SLE 15.3 This update for libbluray fixes the following issues: - Implement the new java.io.FileSystem.isInvalid method that entered all supported java versions with April 2022 CPU (bsc#1199463) libbluray-1.3.0-150300.10.7.1.src.rpm libbluray-bdj-1.3.0-150300.10.7.1.noarch.rpm libbluray-devel-1.3.0-150300.10.7.1.x86_64.rpm libbluray-tools-1.3.0-150300.10.7.1.x86_64.rpm libbluray2-1.3.0-150300.10.7.1.x86_64.rpm libbluray2-32bit-1.3.0-150300.10.7.1.x86_64.rpm libbluray-devel-1.3.0-150300.10.7.1.s390x.rpm libbluray-tools-1.3.0-150300.10.7.1.s390x.rpm libbluray2-1.3.0-150300.10.7.1.s390x.rpm libbluray-devel-1.3.0-150300.10.7.1.ppc64le.rpm libbluray-tools-1.3.0-150300.10.7.1.ppc64le.rpm libbluray2-1.3.0-150300.10.7.1.ppc64le.rpm libbluray-devel-1.3.0-150300.10.7.1.aarch64.rpm libbluray-tools-1.3.0-150300.10.7.1.aarch64.rpm libbluray2-1.3.0-150300.10.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-1907 moderate SUSE Updates openSUSE-SLE 15.3 This update for hunspell fixes the following issues: - Add requirement for english dictionary (bsc#1199209) hunspell-1.6.2-150000.3.11.1.src.rpm hunspell-1.6.2-150000.3.11.1.x86_64.rpm hunspell-devel-1.6.2-150000.3.11.1.x86_64.rpm hunspell-devel-32bit-1.6.2-150000.3.11.1.x86_64.rpm hunspell-tools-1.6.2-150000.3.11.1.x86_64.rpm libhunspell-1_6-0-1.6.2-150000.3.11.1.x86_64.rpm libhunspell-1_6-0-32bit-1.6.2-150000.3.11.1.x86_64.rpm hunspell-1.6.2-150000.3.11.1.s390x.rpm hunspell-devel-1.6.2-150000.3.11.1.s390x.rpm hunspell-tools-1.6.2-150000.3.11.1.s390x.rpm libhunspell-1_6-0-1.6.2-150000.3.11.1.s390x.rpm hunspell-1.6.2-150000.3.11.1.ppc64le.rpm hunspell-devel-1.6.2-150000.3.11.1.ppc64le.rpm hunspell-tools-1.6.2-150000.3.11.1.ppc64le.rpm libhunspell-1_6-0-1.6.2-150000.3.11.1.ppc64le.rpm hunspell-1.6.2-150000.3.11.1.aarch64.rpm hunspell-devel-1.6.2-150000.3.11.1.aarch64.rpm hunspell-tools-1.6.2-150000.3.11.1.aarch64.rpm libhunspell-1_6-0-1.6.2-150000.3.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-1905 important SUSE Updates openSUSE-SLE 15.3 This update for gnome-packagekit fixes the following issues: - Fix issues with getting updates when there is a new gpg key signed in the repository (bsc#1198801) gnome-packagekit-3.32.0-150200.10.1.src.rpm gnome-packagekit-3.32.0-150200.10.1.x86_64.rpm gnome-packagekit-extras-3.32.0-150200.10.1.x86_64.rpm gnome-packagekit-lang-3.32.0-150200.10.1.noarch.rpm gnome-packagekit-3.32.0-150200.10.1.s390x.rpm gnome-packagekit-extras-3.32.0-150200.10.1.s390x.rpm gnome-packagekit-3.32.0-150200.10.1.ppc64le.rpm gnome-packagekit-extras-3.32.0-150200.10.1.ppc64le.rpm gnome-packagekit-3.32.0-150200.10.1.aarch64.rpm gnome-packagekit-extras-3.32.0-150200.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-3143 moderate SUSE Updates openSUSE-SLE 15.3 This update for ipmitool fixes the following issues: - Check for correct file descriptor (bsc#1175328) - Do not append the device number to the PIDFILE pathname, as it confuses systemd (bsc#1181063) ipmitool-1.8.18+git20200204.7ccea28-150200.3.8.1.src.rpm ipmitool-1.8.18+git20200204.7ccea28-150200.3.8.1.x86_64.rpm ipmitool-bmc-snmp-proxy-1.8.18+git20200204.7ccea28-150200.3.8.1.noarch.rpm ipmitool-1.8.18+git20200204.7ccea28-150200.3.8.1.s390x.rpm ipmitool-1.8.18+git20200204.7ccea28-150200.3.8.1.ppc64le.rpm ipmitool-1.8.18+git20200204.7ccea28-150200.3.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-4081 low SUSE Updates openSUSE-SLE 15.3 This update for dpkg fixes the following issues: - CVE-2022-1664: Fixed a directory traversal vulnerability in Dpkg::Source::Archive (bsc#1199944). dpkg-1.19.0.4-150000.4.4.1.src.rpm dpkg-1.19.0.4-150000.4.4.1.x86_64.rpm dpkg-devel-1.19.0.4-150000.4.4.1.x86_64.rpm dpkg-lang-1.19.0.4-150000.4.4.1.noarch.rpm update-alternatives-1.19.0.4-150000.4.4.1.src.rpm update-alternatives-1.19.0.4-150000.4.4.1.x86_64.rpm dpkg-1.19.0.4-150000.4.4.1.s390x.rpm dpkg-devel-1.19.0.4-150000.4.4.1.s390x.rpm update-alternatives-1.19.0.4-150000.4.4.1.s390x.rpm dpkg-1.19.0.4-150000.4.4.1.ppc64le.rpm dpkg-devel-1.19.0.4-150000.4.4.1.ppc64le.rpm update-alternatives-1.19.0.4-150000.4.4.1.ppc64le.rpm dpkg-1.19.0.4-150000.4.4.1.aarch64.rpm dpkg-devel-1.19.0.4-150000.4.4.1.aarch64.rpm update-alternatives-1.19.0.4-150000.4.4.1.aarch64.rpm openSUSE-SLE-15.3-2022-2070 important SUSE Updates openSUSE-SLE 15.3 This update for python-Twisted fixes the following issues: - CVE-2022-21716: Fixed that ssh server accepts an infinite amount of data using all the available memory (bsc#1196739). python-Twisted-19.10.0-150200.3.12.1.src.rpm python-Twisted-doc-19.10.0-150200.3.12.1.x86_64.rpm python2-Twisted-19.10.0-150200.3.12.1.x86_64.rpm python3-Twisted-19.10.0-150200.3.12.1.x86_64.rpm python-Twisted-doc-19.10.0-150200.3.12.1.s390x.rpm python2-Twisted-19.10.0-150200.3.12.1.s390x.rpm python3-Twisted-19.10.0-150200.3.12.1.s390x.rpm python-Twisted-doc-19.10.0-150200.3.12.1.ppc64le.rpm python2-Twisted-19.10.0-150200.3.12.1.ppc64le.rpm python3-Twisted-19.10.0-150200.3.12.1.ppc64le.rpm python-Twisted-doc-19.10.0-150200.3.12.1.aarch64.rpm python2-Twisted-19.10.0-150200.3.12.1.aarch64.rpm python3-Twisted-19.10.0-150200.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-2053 important SUSE Updates openSUSE-SLE 15.3 This update for u-boot fixes the following issues: - CVE-2022-30552: A large buffer overflow could have lead to a denial of service in the IP Packet deframentation code. (bsc#1200363) - CVE-2022-30790: A Hole Descriptor Overwrite could have lead to an arbitrary out of bounds write primitive. (bsc#1200364) - CVE-2022-30767: Fixed an unbounded memcpy with a failed length check leading to a buffer overflow (bsc#1199623). u-boot-2021.01-150300.7.12.1.src.rpm u-boot-tools-2021.01-150300.7.12.1.x86_64.rpm u-boot-tools-2021.01-150300.7.12.1.s390x.rpm u-boot-tools-2021.01-150300.7.12.1.ppc64le.rpm u-boot-avnetultra96rev1-2021.01-150300.7.12.1.aarch64.rpm u-boot-avnetultra96rev1-2021.01-150300.7.12.1.src.rpm u-boot-avnetultra96rev1-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-bananapim64-2021.01-150300.7.12.1.aarch64.rpm u-boot-bananapim64-2021.01-150300.7.12.1.src.rpm u-boot-bananapim64-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-dragonboard410c-2021.01-150300.7.12.1.aarch64.rpm u-boot-dragonboard410c-2021.01-150300.7.12.1.src.rpm u-boot-dragonboard410c-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-dragonboard820c-2021.01-150300.7.12.1.aarch64.rpm u-boot-dragonboard820c-2021.01-150300.7.12.1.src.rpm u-boot-dragonboard820c-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-evb-rk3399-2021.01-150300.7.12.1.aarch64.rpm u-boot-evb-rk3399-2021.01-150300.7.12.1.src.rpm u-boot-evb-rk3399-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-150300.7.12.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-150300.7.12.1.src.rpm u-boot-firefly-rk3399-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-geekbox-2021.01-150300.7.12.1.aarch64.rpm u-boot-geekbox-2021.01-150300.7.12.1.src.rpm u-boot-geekbox-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-hikey-2021.01-150300.7.12.1.aarch64.rpm u-boot-hikey-2021.01-150300.7.12.1.src.rpm u-boot-hikey-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-khadas-vim-2021.01-150300.7.12.1.aarch64.rpm u-boot-khadas-vim-2021.01-150300.7.12.1.src.rpm u-boot-khadas-vim-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-khadas-vim2-2021.01-150300.7.12.1.aarch64.rpm u-boot-khadas-vim2-2021.01-150300.7.12.1.src.rpm u-boot-khadas-vim2-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-libretech-ac-2021.01-150300.7.12.1.aarch64.rpm u-boot-libretech-ac-2021.01-150300.7.12.1.src.rpm u-boot-libretech-ac-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-libretech-cc-2021.01-150300.7.12.1.aarch64.rpm u-boot-libretech-cc-2021.01-150300.7.12.1.src.rpm u-boot-libretech-cc-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-150300.7.12.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-150300.7.12.1.src.rpm u-boot-ls1012afrdmqspi-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-150300.7.12.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-150300.7.12.1.src.rpm u-boot-mvebudb-88f3720-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-150300.7.12.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-150300.7.12.1.src.rpm u-boot-mvebudbarmada8k-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-150300.7.12.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-150300.7.12.1.src.rpm u-boot-mvebuespressobin-88f3720-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-150300.7.12.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-150300.7.12.1.src.rpm u-boot-mvebumcbin-88f8040-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-nanopia64-2021.01-150300.7.12.1.aarch64.rpm u-boot-nanopia64-2021.01-150300.7.12.1.src.rpm u-boot-nanopia64-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-odroid-c2-2021.01-150300.7.12.1.aarch64.rpm u-boot-odroid-c2-2021.01-150300.7.12.1.src.rpm u-boot-odroid-c2-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-odroid-c4-2021.01-150300.7.12.1.aarch64.rpm u-boot-odroid-c4-2021.01-150300.7.12.1.src.rpm u-boot-odroid-c4-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-odroid-n2-2021.01-150300.7.12.1.aarch64.rpm u-boot-odroid-n2-2021.01-150300.7.12.1.src.rpm u-boot-odroid-n2-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-orangepipc2-2021.01-150300.7.12.1.aarch64.rpm u-boot-orangepipc2-2021.01-150300.7.12.1.src.rpm u-boot-orangepipc2-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-p2371-2180-2021.01-150300.7.12.1.aarch64.rpm u-boot-p2371-2180-2021.01-150300.7.12.1.src.rpm u-boot-p2371-2180-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-150300.7.12.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-150300.7.12.1.src.rpm u-boot-p2771-0000-500-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-p3450-0000-2021.01-150300.7.12.1.aarch64.rpm u-boot-p3450-0000-2021.01-150300.7.12.1.src.rpm u-boot-p3450-0000-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-pine64plus-2021.01-150300.7.12.1.aarch64.rpm u-boot-pine64plus-2021.01-150300.7.12.1.src.rpm u-boot-pine64plus-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-pinebook-2021.01-150300.7.12.1.aarch64.rpm u-boot-pinebook-2021.01-150300.7.12.1.src.rpm u-boot-pinebook-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-150300.7.12.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-150300.7.12.1.src.rpm u-boot-pinebook-pro-rk3399-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-pineh64-2021.01-150300.7.12.1.aarch64.rpm u-boot-pineh64-2021.01-150300.7.12.1.src.rpm u-boot-pineh64-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-pinephone-2021.01-150300.7.12.1.aarch64.rpm u-boot-pinephone-2021.01-150300.7.12.1.src.rpm u-boot-pinephone-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-poplar-2021.01-150300.7.12.1.aarch64.rpm u-boot-poplar-2021.01-150300.7.12.1.src.rpm u-boot-poplar-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-150300.7.12.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-150300.7.12.1.src.rpm u-boot-rock-pi-4-rk3399-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-150300.7.12.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-150300.7.12.1.src.rpm u-boot-rock64-rk3328-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-150300.7.12.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-150300.7.12.1.src.rpm u-boot-rock960-rk3399-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-150300.7.12.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-150300.7.12.1.src.rpm u-boot-rockpro64-rk3399-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-rpi3-2021.01-150300.7.12.1.aarch64.rpm u-boot-rpi3-2021.01-150300.7.12.1.src.rpm u-boot-rpi3-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-rpi4-2021.01-150300.7.12.1.aarch64.rpm u-boot-rpi4-2021.01-150300.7.12.1.src.rpm u-boot-rpi4-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-rpiarm64-2021.01-150300.7.12.1.aarch64.rpm u-boot-rpiarm64-2021.01-150300.7.12.1.src.rpm u-boot-rpiarm64-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-tools-2021.01-150300.7.12.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-150300.7.12.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-150300.7.12.1.src.rpm u-boot-xilinxzynqmpvirt-doc-2021.01-150300.7.12.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-150300.7.12.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-150300.7.12.1.src.rpm u-boot-xilinxzynqmpzcu102rev10-doc-2021.01-150300.7.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-2003 important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: Update to 10.5.16 (bsc#1199928): - CVE-2021-46669 (bsc#1199928) - CVE-2022-27376 (bsc#1198628) - CVE-2022-27377 (bsc#1198603) - CVE-2022-27378 (bsc#1198604) - CVE-2022-27379 (bsc#1198605) - CVE-2022-27380 (bsc#1198606) - CVE-2022-27381 (bsc#1198607) - CVE-2022-27382 (bsc#1198609) - CVE-2022-27383 (bsc#1198610) - CVE-2022-27384 (bsc#1198611) - CVE-2022-27386 (bsc#1198612) - CVE-2022-27387 (bsc#1198613) - CVE-2022-27444 (bsc#1198634) - CVE-2022-27445 (bsc#1198629) - CVE-2022-27446 (bsc#1198630) - CVE-2022-27447 (bsc#1198631) - CVE-2022-27448 (bsc#1198632) - CVE-2022-27449 (bsc#1198633) - CVE-2022-27451 (bsc#1198639) - CVE-2022-27452 (bsc#1198640) - CVE-2022-27455 (bsc#1198638) - CVE-2022-27456 (bsc#1198635) - CVE-2022-27457 (bsc#1198636) - CVE-2022-27458 (bsc#1198637) - The following issue is not affecting this package: CVE-2022-21427 External refernences: - https://mariadb.com/kb/en/library/mariadb-10516-release-notes - https://mariadb.com/kb/en/library/mariadb-10516-changelog libmariadbd-devel-10.5.16-150300.3.18.1.x86_64.rpm libmariadbd19-10.5.16-150300.3.18.1.x86_64.rpm mariadb-10.5.16-150300.3.18.1.src.rpm mariadb-10.5.16-150300.3.18.1.x86_64.rpm mariadb-bench-10.5.16-150300.3.18.1.x86_64.rpm mariadb-client-10.5.16-150300.3.18.1.x86_64.rpm mariadb-errormessages-10.5.16-150300.3.18.1.noarch.rpm mariadb-rpm-macros-10.5.16-150300.3.18.1.x86_64.rpm mariadb-test-10.5.16-150300.3.18.1.x86_64.rpm mariadb-tools-10.5.16-150300.3.18.1.x86_64.rpm libmariadbd-devel-10.5.16-150300.3.18.1.s390x.rpm libmariadbd19-10.5.16-150300.3.18.1.s390x.rpm mariadb-10.5.16-150300.3.18.1.s390x.rpm mariadb-bench-10.5.16-150300.3.18.1.s390x.rpm mariadb-client-10.5.16-150300.3.18.1.s390x.rpm mariadb-rpm-macros-10.5.16-150300.3.18.1.s390x.rpm mariadb-test-10.5.16-150300.3.18.1.s390x.rpm mariadb-tools-10.5.16-150300.3.18.1.s390x.rpm libmariadbd-devel-10.5.16-150300.3.18.1.ppc64le.rpm libmariadbd19-10.5.16-150300.3.18.1.ppc64le.rpm mariadb-10.5.16-150300.3.18.1.ppc64le.rpm mariadb-bench-10.5.16-150300.3.18.1.ppc64le.rpm mariadb-client-10.5.16-150300.3.18.1.ppc64le.rpm mariadb-rpm-macros-10.5.16-150300.3.18.1.ppc64le.rpm mariadb-test-10.5.16-150300.3.18.1.ppc64le.rpm mariadb-tools-10.5.16-150300.3.18.1.ppc64le.rpm libmariadbd-devel-10.5.16-150300.3.18.1.aarch64.rpm libmariadbd19-10.5.16-150300.3.18.1.aarch64.rpm mariadb-10.5.16-150300.3.18.1.aarch64.rpm mariadb-bench-10.5.16-150300.3.18.1.aarch64.rpm mariadb-client-10.5.16-150300.3.18.1.aarch64.rpm mariadb-rpm-macros-10.5.16-150300.3.18.1.aarch64.rpm mariadb-test-10.5.16-150300.3.18.1.aarch64.rpm mariadb-tools-10.5.16-150300.3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-2064 important SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: Security fixes and hardenings for boothole 3 / boothole 2022 (bsc#1198581) - CVE-2021-3695: Fixed that a crafted PNG grayscale image could lead to out-of-bounds write in heap (bsc#1191184) - CVE-2021-3696: Fixed that a crafted PNG image could lead to out-of-bound write during huffman table handling (bsc#1191185) - CVE-2021-3697: Fixed that a crafted JPEG image could lead to buffer underflow write in the heap (bsc#1191186) - CVE-2022-28733: Fixed fragmentation math in net/ip (bsc#1198460) - CVE-2022-28734: Fixed an out-of-bound write for split http headers (bsc#1198493) - CVE-2022-28735: Fixed some verifier framework changes (bsc#1198495) - CVE-2022-28736: Fixed a use-after-free in chainloader command (bsc#1198496) - Update SBAT security contact (bsc#1193282) - Bump grub's SBAT generation to 2 - Use boot disks in OpenFirmware, fixing regression caused when the root LV is completely in the boot LUN (bsc#1197948) grub2-2.04-150300.22.20.2.src.rpm grub2-2.04-150300.22.20.2.x86_64.rpm grub2-arm64-efi-2.04-150300.22.20.2.noarch.rpm grub2-arm64-efi-debug-2.04-150300.22.20.2.noarch.rpm grub2-branding-upstream-2.04-150300.22.20.2.x86_64.rpm grub2-i386-pc-2.04-150300.22.20.2.noarch.rpm grub2-i386-pc-debug-2.04-150300.22.20.2.noarch.rpm grub2-powerpc-ieee1275-2.04-150300.22.20.2.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-150300.22.20.2.noarch.rpm grub2-snapper-plugin-2.04-150300.22.20.2.noarch.rpm grub2-systemd-sleep-plugin-2.04-150300.22.20.2.noarch.rpm grub2-x86_64-efi-2.04-150300.22.20.2.noarch.rpm grub2-x86_64-efi-debug-2.04-150300.22.20.2.noarch.rpm grub2-x86_64-xen-2.04-150300.22.20.2.noarch.rpm grub2-2.04-150300.22.20.2.s390x.rpm grub2-branding-upstream-2.04-150300.22.20.2.s390x.rpm grub2-s390x-emu-2.04-150300.22.20.2.s390x.rpm grub2-s390x-emu-debug-2.04-150300.22.20.2.s390x.rpm grub2-2.04-150300.22.20.2.ppc64le.rpm grub2-branding-upstream-2.04-150300.22.20.2.ppc64le.rpm grub2-2.04-150300.22.20.2.aarch64.rpm grub2-branding-upstream-2.04-150300.22.20.2.aarch64.rpm openSUSE-SLE-15.3-2022-2081 important SUSE Updates openSUSE-SLE 15.3 This update for 389-ds fixes the following issues: - CVE-2021-4091: Fixed double free in psearch (bsc#1195324). - CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889). 389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.src.rpm 389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64.rpm 389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64.rpm 389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64.rpm lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64.rpm libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.x86_64.rpm 389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x.rpm 389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x.rpm 389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x.rpm lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x.rpm libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.s390x.rpm 389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le.rpm 389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le.rpm 389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le.rpm lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le.rpm libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.ppc64le.rpm 389-ds-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64.rpm 389-ds-devel-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64.rpm 389-ds-snmp-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64.rpm lib389-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64.rpm libsvrcore0-1.4.4.19~git38.9951c1101-150300.3.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-1920 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.10.0 ESR (MFSA 2022-21)(bsc#1200027) - CVE-2022-31736: Cross-Origin resource's length leaked - CVE-2022-31737: Heap buffer overflow in WebGL - CVE-2022-31738: Browser window spoof using fullscreen mode - CVE-2022-31739: Attacker-influenced path traversal when saving downloaded files - CVE-2022-31740: Register allocation problem in WASM on arm64 - CVE-2022-31741: Uninitialized variable leads to invalid memory read - CVE-2022-31742: Querying a WebAuthn token with a large number of allowCredential entries may have leaked cross-origin information - CVE-2022-31747: Memory safety bugs fixed in Firefox 101 and Firefox ESR 91.10 MozillaFirefox-91.10.0-150200.152.43.1.src.rpm MozillaFirefox-91.10.0-150200.152.43.1.x86_64.rpm MozillaFirefox-branding-upstream-91.10.0-150200.152.43.1.x86_64.rpm MozillaFirefox-devel-91.10.0-150200.152.43.1.x86_64.rpm MozillaFirefox-translations-common-91.10.0-150200.152.43.1.x86_64.rpm MozillaFirefox-translations-other-91.10.0-150200.152.43.1.x86_64.rpm MozillaFirefox-91.10.0-150200.152.43.1.s390x.rpm MozillaFirefox-branding-upstream-91.10.0-150200.152.43.1.s390x.rpm MozillaFirefox-devel-91.10.0-150200.152.43.1.s390x.rpm MozillaFirefox-translations-common-91.10.0-150200.152.43.1.s390x.rpm MozillaFirefox-translations-other-91.10.0-150200.152.43.1.s390x.rpm MozillaFirefox-91.10.0-150200.152.43.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.10.0-150200.152.43.1.ppc64le.rpm MozillaFirefox-devel-91.10.0-150200.152.43.1.ppc64le.rpm MozillaFirefox-translations-common-91.10.0-150200.152.43.1.ppc64le.rpm MozillaFirefox-translations-other-91.10.0-150200.152.43.1.ppc64le.rpm MozillaFirefox-91.10.0-150200.152.43.1.aarch64.rpm MozillaFirefox-branding-upstream-91.10.0-150200.152.43.1.aarch64.rpm MozillaFirefox-devel-91.10.0-150200.152.43.1.aarch64.rpm MozillaFirefox-translations-common-91.10.0-150200.152.43.1.aarch64.rpm MozillaFirefox-translations-other-91.10.0-150200.152.43.1.aarch64.rpm openSUSE-SLE-15.3-2022-2097 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-network fixes the following issues: - CFA NM: replace problematic characters when getting the filename for the given wireless configuration (bsc#1199451). - 4.3.82 yast2-network-4.3.82-150300.3.28.1.noarch.rpm yast2-network-4.3.82-150300.3.28.1.src.rpm openSUSE-SLE-15.3-2022-2096 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-online-update-configuration fixes the following issues: - Reduce nesting in the "category_filter" section of the AutoYaST profile. The old (nested) format is still accepted. (bsc#1198848) yast2-online-update-configuration-4.3.3-150300.3.3.1.noarch.rpm yast2-online-update-configuration-4.3.3-150300.3.3.1.src.rpm openSUSE-SLE-15.3-2022-3275 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-aiohttp, python-typing_extensions fixes the following issues: - Include in SLE-15 (bsc#1197831) - Fixed required/optional keys with old-style TypedDict - Test in separate multibuild flavor to break depcycles with full python stdlib - Clean requirements specifications for python flavors - Add transitional typing-extensions provides - Fix tests for Python 3.9 - Official support for Python 3.8 and 3.9 - Fix build without python2 available - Fix isinstance() with generic protocol subclasses after subscripting - Fix tests for non-default interpreters - Use environment marker to specify typing dependency - Fix unions of protocols on Python 2 python-aiohttp-3.6.0-150100.3.9.1.src.rpm python-aiohttp-doc-3.6.0-150100.3.9.1.x86_64.rpm python3-aiohttp-3.6.0-150100.3.9.1.x86_64.rpm python-aiohttp-doc-3.6.0-150100.3.9.1.s390x.rpm python3-aiohttp-3.6.0-150100.3.9.1.s390x.rpm python-aiohttp-doc-3.6.0-150100.3.9.1.ppc64le.rpm python3-aiohttp-3.6.0-150100.3.9.1.ppc64le.rpm python-aiohttp-doc-3.6.0-150100.3.9.1.aarch64.rpm python3-aiohttp-3.6.0-150100.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-2703 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-google-resumable-media fixes the following issues: - Fix testsuite invocation (bsc#1197841) python-google-resumable-media-0.5.0-150200.5.6.1.src.rpm python2-google-resumable-media-0.5.0-150200.5.6.1.noarch.rpm python3-google-resumable-media-0.5.0-150200.5.6.1.noarch.rpm openSUSE-SLE-15.3-2022-2455 moderate SUSE Updates openSUSE-SLE 15.3 This update for perl-Bootloader fixes the following issues: - fix sysconfig parsing (bsc#1198828) - grub2/install: reset error code when passing through recover code (bsc#1198197) - grub2 install: Support secure boot on powerpc (bsc#1192764, jsc#SLE-18271) perl-Bootloader-0.939-150300.3.6.1.src.rpm perl-Bootloader-0.939-150300.3.6.1.x86_64.rpm perl-Bootloader-YAML-0.939-150300.3.6.1.x86_64.rpm perl-Bootloader-0.939-150300.3.6.1.s390x.rpm perl-Bootloader-YAML-0.939-150300.3.6.1.s390x.rpm perl-Bootloader-0.939-150300.3.6.1.ppc64le.rpm perl-Bootloader-YAML-0.939-150300.3.6.1.ppc64le.rpm perl-Bootloader-0.939-150300.3.6.1.aarch64.rpm perl-Bootloader-YAML-0.939-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2174 important SUSE Updates openSUSE-SLE 15.3 This update for python39 fixes the following issues: - CVE-2015-20107: avoid command injection in the mailcap module (bsc#1198511). - Update to 3.9.13: - Core and Builtins - gh-92311: Fixed a bug where setting frame.f_lineno to jump over a list comprehension could misbehave or crash. - gh-92112: Fix crash triggered by an evil custom mro() on a metaclass. - gh-92036: Fix a crash in subinterpreters related to the garbage collector. When a subinterpreter is deleted, untrack all objects tracked by its GC. To prevent a crash in deallocator functions expecting objects to be tracked by the GC, leak a strong reference to these objects on purpose, so they are never deleted and their deallocator functions are not called. Patch by Victor Stinner. - gh-91421: Fix a potential integer overflow in _Py_DecodeUTF8Ex. - bpo-46775: Some Windows system error codes(>= 10000) are now mapped into the correct errno and may now raise a subclass of OSError. Patch by Dong-hee Na. - bpo-46962: Classes and functions that unconditionally declared their docstrings ignoring the --without-doc-strings compilation flag no longer do so. - The classes affected are pickle.PickleBuffer, testcapi.RecursingInfinitelyError, and types.GenericAlias. - The functions affected are 24 methods in ctypes. - Patch by Oleg Iarygin. - bpo-36819: Fix crashes in built-in encoders with error handlers that return position less or equal than the starting position of non-encodable characters. - Library - gh-91581: utcfromtimestamp() no longer attempts to resolve fold in the pure Python implementation, since the fold is never 1 in UTC. In addition to being slightly faster in the common case, this also prevents some errors when the timestamp is close to datetime.min. Patch by Paul Ganssle. - gh-92530: Fix an issue that occurred after interrupting threading.Condition.notify(). - gh-92049: Forbid pickling constants re._constants.SUCCESS etc. Previously, pickling did not fail, but the result could not be unpickled. - bpo-47029: Always close the read end of the pipe used by multiprocessing.Queue after the last write of buffered data to the write end of the pipe to avoid BrokenPipeError at garbage collection and at multiprocessing.Queue.close() calls. Patch by Géry Ogam. - gh-91910: Add missing f prefix to f-strings in error messages from the multiprocessing and asyncio modules. - gh-91810: ElementTree method write() and function tostring() now use the text file''s encoding ("UTF-8" if not available) instead of locale encoding in XML declaration when encoding="unicode" is specified. - gh-91832: Add required attribute to argparse.Action repr output. - gh-91734: Fix OSS audio support on Solaris. - gh-91700: Compilation of regular expression containing a conditional expression (?(group)...) now raises an appropriate re.error if the group number refers to not defined group. Previously an internal RuntimeError was raised. - gh-91676: Fix unittest.IsolatedAsyncioTestCase to shutdown the per test event loop executor before returning from its run method so that a not yet stopped or garbage collected executor state does not persist beyond the test. - gh-90568: Parsing \N escapes of Unicode Named Character Sequences in a regular expression raises now re.error instead of TypeError. - gh-91595: Fix the comparison of character and integer inside Tools.gdb.libpython.write_repr(). Patch by Yu Liu. - gh-90622: Worker processes for concurrent.futures.ProcessPoolExecutor are no longer spawned on demand (a feature added in 3.9) when the multiprocessing context start method is "fork" as that can lead to deadlocks in the child processes due to a fork happening while threads are running. - gh-91575: Update case-insensitive matching in the re module to the latest Unicode version. - gh-91581: Remove an unhandled error case in the C implementation of calls to datetime.fromtimestamp with no time zone (i.e. getting a local time from an epoch timestamp). This should have no user-facing effect other than giving a possibly more accurate error message when called with timestamps that fall on 10000-01-01 in the local time. Patch by Paul Ganssle. - bpo-34480: Fix a bug where _markupbase raised an UnboundLocalError when an invalid keyword was found in marked section. Patch by Marek Suscak. - bpo-27929: Fix asyncio.loop.sock_connect() to only resolve names for socket.AF_INET or socket.AF_INET6 families. Resolution may not make sense for other families, like socket.AF_BLUETOOTH and socket.AF_UNIX. - bpo-43323: Fix errors in the email module if the charset itself contains undecodable/unencodable characters. - bpo-46787: Fix concurrent.futures.ProcessPoolExecutor exception memory leak - bpo-46415: Fix ipaddress.ip_{address,interface,network} raising TypeError instead of ValueError if given invalid tuple as address parameter. - bpo-44911: IsolatedAsyncioTestCase will no longer throw an exception while cancelling leaked tasks. Patch by Bar Harel. - bpo-44493: Add missing terminated NUL in sockaddr_un's length - This was potentially observable when using non-abstract AF_UNIX datagram sockets to processes written in another programming language. - bpo-42627: Fix incorrect parsing of Windows registry proxy settings - bpo-36073: Raise ProgrammingError instead of segfaulting on recursive usage of cursors in sqlite3 converters. Patch by Sergey Fedoseev. - Documentation - gh-91888: Add a new gh role to the documentation to link to GitHub issues. - gh-91783: Document security issues concerning the use of the function shutil.unpack_archive() - gh-91547: Remove "Undocumented modules" page. - bpo-44347: Clarify the meaning of dirs_exist_ok, a kwarg of shutil.copytree(). - bpo-38668: Update the introduction to documentation for os.path to remove warnings that became irrelevant after the implementations of PEP 383 and PEP 529. - bpo-47138: Pin Jinja to a version compatible with Sphinx version 2.4.4. - bpo-46962: All docstrings in code snippets are now wrapped into PyDoc_STR() to follow the guideline of PEP 7's Documentation Strings paragraph. Patch by Oleg Iarygin. - bpo-26792: Improve the docstrings of runpy.run_module() and runpy.run_path(). Original patch by Andrew Brezovsky. - bpo-45790: Adjust inaccurate phrasing in Defining Extension Types: Tutorial about the ob_base field and the macros used to access its contents. - bpo-42340: Document that in some circumstances KeyboardInterrupt may cause the code to enter an inconsistent state. Provided a sample workaround to avoid it if needed. - bpo-41233: Link the errnos referenced in Doc/library/exceptions.rst to their respective section in Doc/library/errno.rst, and vice versa. Previously this was only done for EINTR and InterruptedError. Patch by Yan "yyyyyyyan" Orestes. - bpo-38056: Overhaul the Error Handlers documentation in codecs. - bpo-13553: Document tkinter.Tk args. - Tests - gh-91607: Fix test_concurrent_futures to test the correct multiprocessing start method context in several cases where the test logic mixed this up. - bpo-47205: Skip test for sched_getaffinity() and sched_setaffinity() error case on FreeBSD. - bpo-29890: Add tests for ipaddress.IPv4Interface and ipaddress.IPv6Interface construction with tuple arguments. Original patch and tests by louisom. - Build - bpo-47103: Windows PGInstrument builds now copy a required DLL into the output directory, making it easier to run the profile stage of a PGO build. - Windows - bpo-47194: Update zlib to v1.2.12 to resolve CVE-2018-25032. - bpo-46785: Fix race condition between os.stat() and unlinking a file on Windows, by using errors codes returned by FindFirstFileW() when appropriate in win32_xstat_impl. - bpo-40859: Update Windows build to use xz-5.2.5 - Tools/Demos - gh-91583: Fix regression in the code generated by Argument Clinic for functions with the defining_class parameter. - Update to 3.9.12: - bpo-46968: Check for the existence of the "sys/auxv.h" header in faulthandler to avoid compilation problems in systems where this header doesn't exist. Patch by Pablo Galindo - bpo-47101: hashlib.algorithms_available now lists only algorithms that are provided by activated crypto providers on OpenSSL 3.0. Legacy algorithms are not listed unless the legacy provider has been loaded into the default OSSL context. - bpo-23691: Protect the re.finditer() iterator from re-entering. - bpo-42369: Fix thread safety of zipfile._SharedFile.tell() to avoid a "zipfile.BadZipFile: Bad CRC-32 for file" exception when reading a ZipFile from multiple threads. - bpo-38256: Fix binascii.crc32() when it is compiled to use zlib'c crc32 to work properly on inputs 4+GiB in length instead of returning the wrong result. The workaround prior to this was to always feed the function data in increments smaller than 4GiB or to just call the zlib module function. - bpo-39394: A warning about inline flags not at the start of the regular expression now contains the position of the flag. - bpo-47061: Deprecate the various modules listed by PEP 594: - aifc, asynchat, asyncore, audioop, cgi, cgitb, chunk, crypt, imghdr, msilib, nntplib, nis, ossaudiodev, pipes, smtpd, sndhdr, spwd, sunau, telnetlib, uu, xdrlib - bpo-2604: Fix bug where doctests using globals would fail when run multiple times. - bpo-45997: Fix asyncio.Semaphore re-aquiring FIFO order. - bpo-47022: The asynchat, asyncore and smtpd modules have been deprecated since at least Python 3.6. Their documentation has now been updated to note they will removed in Python 3.12 (PEP 594). - bpo-46421: Fix a unittest issue where if the command was invoked as python -m unittest and the filename(s) began with a dot (.), a ValueError is returned. - bpo-40296: Fix supporting generic aliases in pydoc. - bpo-14156: argparse.FileType now supports an argument of '-'; in binary mode, returning the .buffer attribute of sys.stdin/sys.stdout as appropriate. Modes including 'x' and 'a' are treated equivalently to 'w' when argument is '-'. Patch contributed by Josh Rosenberg - Update to 3.9.11: - bpo-46852: Rename the private undocumented float.__set_format__() method to float.__setformat__() to fix a typo introduced in Python 3.7. The method is only used by test_float. Patch by Victor Stinner. - bpo-46794: Bump up the libexpat version into 2.4.6 - bpo-46762: Fix an assert failure in debug builds when a '<', '>', or '=' is the last character in an f-string that's missing a closing right brace. - bpo-46732: Correct the docstring for the __bool__() method. Patch by Jelle Zijlstra. - bpo-40479: Add a missing call to va_end() in Modules/_hashopenssl.c. - bpo-46615: When iterating over sets internally in setobject.c, acquire strong references to the resulting items from the set. This prevents crashes in corner-cases of various set operations where the set gets mutated. - bpo-43721: Fix docstrings of getter, setter, and deleter to clarify that they create a new copy of the property. - bpo-46503: Fix an assert when parsing some invalid N escape sequences in f-strings. - bpo-46417: Fix a race condition on setting a type __bases__ attribute: the internal function add_subclass() now gets the PyTypeObject.tp_subclasses member after calling PyWeakref_NewRef() which can trigger a garbage collection which can indirectly modify PyTypeObject.tp_subclasses. Patch by Victor Stinner. - bpo-46383: Fix invalid signature of _zoneinfo's module_free function to resolve a crash on wasm32-emscripten platform. - bpo-43253: Fix a crash when closing transports where the underlying socket handle is already invalid on the Proactor event loop. - bpo-47004: Apply bugfixes from importlib_metadata 4.11.3, including bugfix for EntryPoint.extras, which was returning match objects and not the extras strings. - bpo-46985: Upgrade pip wheel bundled with ensurepip (pip 22.0.4) - bpo-46968: faulthandler: On Linux 5.14 and newer, dynamically determine size of signal handler stack size CPython allocates using getauxval(AT_MINSIGSTKSZ). This changes allows for Python extension's request to Linux kernel to use AMX_TILE instruction set on Sapphire Rapids Xeon processor to succeed, unblocking use of the ISA in frameworks. - bpo-46955: Expose asyncio.base_events.Server as asyncio.Server. Patch by Stefan Zabka. - bpo-46932: Update bundled libexpat to 2.4.7 - bpo-25707: Fixed a file leak in xml.etree.ElementTree.iterparse() when the iterator is not exhausted. Patch by Jacob Walls. - bpo-44886: Inherit asyncio proactor datagram transport from asyncio.DatagramTransport. - bpo-46827: Support UDP sockets in asyncio.loop.sock_connect() for selector-based event loops. Patch by Thomas Grainger. - bpo-46811: Make test suite support Expat >=2.4.5 - bpo-46252: Raise TypeError if ssl.SSLSocket is passed to transport-based APIs. - bpo-46784: Fix libexpat symbols collisions with user dynamically loaded or statically linked libexpat in embedded Python. - bpo-39327: shutil.rmtree() can now work with VirtualBox shared folders when running from the guest operating-system. - bpo-46756: Fix a bug in urllib.request.HTTPPasswordMgr.find_user_password() and urllib.request.HTTPPasswordMgrWithPriorAuth.is_authenticated() which allowed to bypass authorization. For example, access to URI example.org/foobar was allowed if the user was authorized for URI example.org/foo. - bpo-45863: When the tarfile module creates a pax format archive, it will put an integer representation of timestamps in the ustar header (if possible) for the benefit of older unarchivers, in addition to the existing full-precision timestamps in the pax extended header. - bpo-46672: Fix NameError in asyncio.gather() when initial type check fails. - bpo-45948: Fixed a discrepancy in the C implementation of the xml.etree.ElementTree module. Now, instantiating an xml.etree.ElementTree.XMLParser with a target=None keyword provides a default xml.etree.ElementTree.TreeBuilder target as the Python implementation does. - bpo-46591: Make the IDLE doc URL on the About IDLE dialog clickable. - bpo-46400: expat: Update libexpat from 2.4.1 to 2.4.4 - bpo-46487: Add the get_write_buffer_limits method to asyncio.transports.WriteTransport and to the SSL transport. - bpo-46539: In typing.get_type_hints(), support evaluating stringified ClassVar and Final annotations inside Annotated. Patch by Gregory Beauregard. - bpo-46491: Allow typing.Annotated to wrap typing.Final and typing.ClassVar. Patch by Gregory Beauregard. - bpo-46436: Fix command-line option -d/--directory in module http.server which is ignored when combined with command-line option --cgi. Patch by Géry Ogam. - bpo-41403: Make mock.patch() raise a TypeError with a relevant error message on invalid arg. Previously it allowed a cryptic AttributeError to escape. - bpo-46474: In importlib.metadata.EntryPoint.pattern, avoid potential REDoS by limiting ambiguity in consecutive whitespace. - bpo-46469: asyncio generic classes now return types.GenericAlias in __class_getitem__ instead of the same class. - bpo-46434: pdb now gracefully handles help when __doc__ is missing, for example when run with pregenerated optimized .pyc files. - bpo-46333: The __eq__() and __hash__() methods of typing.ForwardRef now honor the module parameter of typing.ForwardRef. Forward references from different modules are now differentiated. - bpo-43118: Fix a bug in inspect.signature() that was causing it to fail on some subclasses of classes with a __text_signature__ referencing module globals. Patch by Weipeng Hong. - bpo-21987: Fix an issue with tarfile.TarFile.getmember() getting a directory name with a trailing slash. - bpo-20392: Fix inconsistency with uppercase file extensions in MimeTypes.guess_type(). Patch by Kumar Aditya. - bpo-46080: Fix exception in argparse help text generation if a argparse.BooleanOptionalAction argument's default is argparse.SUPPRESS and it has help specified. Patch by Felix Fontein. - bpo-44439: Fix .write() method of a member file in ZipFile, when the input data is an object that supports the buffer protocol, the file length may be wrong. - bpo-45703: When a namespace package is imported before another module from the same namespace is created/installed in a different sys.path location while the program is running, calling the importlib.invalidate_caches() function will now also guarantee the new module is noticed. - bpo-24959: Fix bug where unittest sometimes drops frames from tracebacks of exceptions raised in tests. - bpo-46463: Fixes escape4chm.py script used when building the CHM documentation file - bpo-46913: Fix test_faulthandler.test_sigfpe() if Python is built with undefined behavior sanitizer (UBSAN): disable UBSAN on the faulthandler_sigfpe() function. Patch by Victor Stinner. - bpo-46708: Prevent default asyncio event loop policy modification warning after test_asyncio execution. - bpo-46616: Ensures test_importlib.test_windows cleans up registry keys after completion. - bpo-44359: test_ftplib now silently ignores socket errors to prevent logging unhandled threading exceptions. Patch by Victor Stinner. - bpo-46542: Fix a Python crash in test_lib2to3 when using Python built in debug mode: limit the recursion limit. Patch by Victor Stinner. - bpo-46576: test_peg_generator now disables compiler optimization when testing compilation of its own C extensions to significantly speed up the testing on non-debug builds of CPython. - bpo-46542: Fix test_json tests checking for RecursionError: modify these tests to use support.infinite_recursion(). Patch by Victor Stinner. - bpo-13886: Skip test_builtin PTY tests on non-ASCII characters if the readline module is loaded. The readline module changes input() behavior, but test_builtin is not intented to test the readline module. Patch by Victor Stinner. - bpo-38472: Fix GCC detection in setup.py when cross-compiling. The C compiler is now run with LC_ALL=C. Previously, the detection failed with a German locale. - bpo-46513: configure no longer uses AC_C_CHAR_UNSIGNED macro and pyconfig.h no longer defines reserved symbol __CHAR_UNSIGNED__. - bpo-45925: Update Windows installer to use SQLite 3.37.2. - bpo-45296: Clarify close, quit, and exit in IDLE. In the File menu, 'Close' and 'Exit' are now 'Close Window' (the current one) and 'Exit' is now 'Exit IDLE' (by closing all windows). In Shell, 'quit()' and 'exit()' mean 'close Shell'. If there are no other windows, this also exits IDLE. - bpo-45447: Apply IDLE syntax highlighting to pyi files. Patch by Alex Waygood and Terry Jan Reedy. libpython3_9-1_0-3.9.13-150300.4.13.1.x86_64.rpm libpython3_9-1_0-32bit-3.9.13-150300.4.13.1.x86_64.rpm python39-3.9.13-150300.4.13.1.src.rpm python39-3.9.13-150300.4.13.1.x86_64.rpm python39-32bit-3.9.13-150300.4.13.1.x86_64.rpm python39-base-3.9.13-150300.4.13.1.x86_64.rpm python39-base-32bit-3.9.13-150300.4.13.1.x86_64.rpm python39-core-3.9.13-150300.4.13.1.src.rpm python39-curses-3.9.13-150300.4.13.1.x86_64.rpm python39-dbm-3.9.13-150300.4.13.1.x86_64.rpm python39-devel-3.9.13-150300.4.13.1.x86_64.rpm python39-doc-3.9.13-150300.4.13.1.x86_64.rpm python39-doc-devhelp-3.9.13-150300.4.13.1.x86_64.rpm python39-documentation-3.9.13-150300.4.13.1.src.rpm python39-idle-3.9.13-150300.4.13.1.x86_64.rpm python39-testsuite-3.9.13-150300.4.13.1.x86_64.rpm python39-tk-3.9.13-150300.4.13.1.x86_64.rpm python39-tools-3.9.13-150300.4.13.1.x86_64.rpm libpython3_9-1_0-3.9.13-150300.4.13.1.s390x.rpm python39-3.9.13-150300.4.13.1.s390x.rpm python39-base-3.9.13-150300.4.13.1.s390x.rpm python39-curses-3.9.13-150300.4.13.1.s390x.rpm python39-dbm-3.9.13-150300.4.13.1.s390x.rpm python39-devel-3.9.13-150300.4.13.1.s390x.rpm python39-doc-3.9.13-150300.4.13.1.s390x.rpm python39-doc-devhelp-3.9.13-150300.4.13.1.s390x.rpm python39-idle-3.9.13-150300.4.13.1.s390x.rpm python39-testsuite-3.9.13-150300.4.13.1.s390x.rpm python39-tk-3.9.13-150300.4.13.1.s390x.rpm python39-tools-3.9.13-150300.4.13.1.s390x.rpm libpython3_9-1_0-3.9.13-150300.4.13.1.ppc64le.rpm python39-3.9.13-150300.4.13.1.ppc64le.rpm python39-base-3.9.13-150300.4.13.1.ppc64le.rpm python39-curses-3.9.13-150300.4.13.1.ppc64le.rpm python39-dbm-3.9.13-150300.4.13.1.ppc64le.rpm python39-devel-3.9.13-150300.4.13.1.ppc64le.rpm python39-doc-3.9.13-150300.4.13.1.ppc64le.rpm python39-doc-devhelp-3.9.13-150300.4.13.1.ppc64le.rpm python39-idle-3.9.13-150300.4.13.1.ppc64le.rpm python39-testsuite-3.9.13-150300.4.13.1.ppc64le.rpm python39-tk-3.9.13-150300.4.13.1.ppc64le.rpm python39-tools-3.9.13-150300.4.13.1.ppc64le.rpm libpython3_9-1_0-3.9.13-150300.4.13.1.aarch64.rpm python39-3.9.13-150300.4.13.1.aarch64.rpm python39-base-3.9.13-150300.4.13.1.aarch64.rpm python39-curses-3.9.13-150300.4.13.1.aarch64.rpm python39-dbm-3.9.13-150300.4.13.1.aarch64.rpm python39-devel-3.9.13-150300.4.13.1.aarch64.rpm python39-doc-3.9.13-150300.4.13.1.aarch64.rpm python39-doc-devhelp-3.9.13-150300.4.13.1.aarch64.rpm python39-idle-3.9.13-150300.4.13.1.aarch64.rpm python39-testsuite-3.9.13-150300.4.13.1.aarch64.rpm python39-tk-3.9.13-150300.4.13.1.aarch64.rpm python39-tools-3.9.13-150300.4.13.1.aarch64.rpm openSUSE-SLE-15.3-2022-2533 important SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nss fixes the following issues: Various FIPS 140-3 related fixes were backported from SUSE Linux Enterprise 15 SP4: - Makes the PBKDF known answer test compliant with NIST SP800-132. (bsc#1192079). - FIPS: Add on-demand integrity tests through sftk_FIPSRepeatIntegrityCheck() (bsc#1198980). - FIPS: mark algorithms as approved/non-approved according to security policy (bsc#1191546, bsc#1201298). - FIPS: remove hard disabling of unapproved algorithms. This requirement is now fulfilled by the service level indicator (bsc#1200325). - Run test suite at build time, and make it pass (bsc#1198486). - FIPS: skip algorithms that are hard disabled in FIPS mode. - Prevent expired PayPalEE cert from failing the tests. - Allow checksumming to be disabled, but only if we entered FIPS mode due to NSS_FIPS being set, not if it came from /proc. - FIPS: Make the PBKDF known answer test compliant with NIST SP800-132. - Update FIPS validation string to version-release format. - FIPS: remove XCBC MAC from list of FIPS approved algorithms. - Enable NSS_ENABLE_FIPS_INDICATORS and set NSS_FIPS_MODULE_ID for build. - FIPS: claim 3DES unapproved in FIPS mode (bsc#1192080). - FIPS: allow testing of unapproved algorithms (bsc#1192228). - FIPS: add version indicators. (bmo#1729550, bsc#1192086). - FIPS: fix some secret clearing (bmo#1697303, bsc#1192087). Version update to NSS 3.79: - Use PK11_GetSlotInfo instead of raw C_GetSlotInfo calls. - Update mercurial in clang-format docker image. - Use of uninitialized pointer in lg_init after alloc fail. - selfserv and tstclnt should use PR_GetPrefLoopbackAddrInfo. - Add SECMOD_LockedModuleHasRemovableSlots. - Fix secasn1d parsing of indefinite SEQUENCE inside indefinite GROUP. - Added RFC8422 compliant TLS <= 1.2 undefined/compressed ECPointFormat extension alerts. - TLS 1.3 Server: Send protocol_version alert on unsupported ClientHello.legacy_version. - Correct invalid record inner and outer content type alerts. - NSS does not properly import or export pkcs12 files with large passwords and pkcs5v2 encoding. - improve error handling after nssCKFWInstance_CreateObjectHandle. - Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple. - NSS 3.79 should depend on NSPR 4.34 Version update to NSS 3.78.1: - Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple Version update to NSS 3.78: - Added TLS 1.3 zero-length inner plaintext checks and tests, zero-length record/fragment handling tests. - Reworked overlong record size checks and added TLS1.3 specific boundaries. - Add ECH Grease Support to tstclnt - Add a strict variant of moz::pkix::CheckCertHostname. - Change SSL_REUSE_SERVER_ECDHE_KEY default to false. - Make SEC_PKCS12EnableCipher succeed - Update zlib in NSS to 1.2.12. Version update to NSS 3.77: - Fix link to TLS page on wireshark wiki - Add two D-TRUST 2020 root certificates. - Add Telia Root CA v2 root certificate. - Remove expired explicitly distrusted certificates from certdata.txt. - support specific RSA-PSS parameters in mozilla::pkix - Remove obsolete stateEnd check in SEC_ASN1DecoderUpdate. - Remove token member from NSSSlot struct. - Provide secure variants of mpp_pprime and mpp_make_prime. - Support UTF-8 library path in the module spec string. - Update nssUTF8_Length to RFC 3629 and fix buffer overrun. - Update googletest to 1.11.0 - Add SetTls13GreaseEchSize to experimental API. - TLS 1.3 Illegal legacy_version handling/alerts. - Fix calculation of ECH HRR Transcript. - Allow ld path to be set as environment variable. - Ensure we don't read uninitialized memory in ssl gtests. - Fix DataBuffer Move Assignment. - internal_error alert on Certificate Request with sha1+ecdsa in TLS 1.3 - rework signature verification in mozilla::pkix Version update to NSS 3.76.1 - Remove token member from NSSSlot struct. - Hold tokensLock through nssToken_GetSlot calls in nssTrustDomain_GetActiveSlots. - Check return value of PK11Slot_GetNSSToken. - Use Wycheproof JSON for RSASSA-PSS - Add SHA256 fingerprint comments to old certdata.txt entries. - Avoid truncating files in nss-release-helper.py. - Throw illegal_parameter alert for illegal extensions in handshake message. Version update to NSS 3.75 - Make DottedOIDToCode.py compatible with python3. - Avoid undefined shift in SSL_CERT_IS while fuzzing. - Remove redundant key type check. - Update ABI expectations to match ECH changes. - Enable CKM_CHACHA20. - check return on NSS_NoDB_Init and NSS_Shutdown. - Run ECDSA test vectors from bltest as part of the CI tests. - Add ECDSA test vectors to the bltest command line tool. - Allow to build using clang's integrated assembler. - Allow to override python for the build. - test HKDF output rather than input. - Use ASSERT macros to end failed tests early. - move assignment operator for DataBuffer. - Add test cases for ECH compression and unexpected extensions in SH. - Update tests for ECH-13. - Tidy up error handling. - Add tests for ECH HRR Changes. - Server only sends GREASE HRR extension if enabled by preference. - Update generation of the Associated Data for ECH-13. - When ECH is accepted, reject extensions which were only advertised in the Outer Client Hello. - Allow for compressed, non-contiguous, extensions. - Scramble the PSK extension in CHOuter. - Split custom extension handling for ECH. - Add ECH-13 HRR Handling. - Client side ECH padding. - Stricter ClientHelloInner Decompression. - Remove ECH_inner extension, use new enum format. - Update the version number for ECH-13 and adjust the ECHConfig size. Version update to NSS 3.74 - mozilla::pkix: support SHA-2 hashes in CertIDs in OCSP responses - Ensure clients offer consistent ciphersuites after HRR - NSS does not properly restrict server keys based on policy - Set nssckbi version number to 2.54 - Replace Google Trust Services LLC (GTS) R4 root certificate - Replace Google Trust Services LLC (GTS) R3 root certificate - Replace Google Trust Services LLC (GTS) R2 root certificate - Replace Google Trust Services LLC (GTS) R1 root certificate - Replace GlobalSign ECC Root CA R4 - Remove Expired Root Certificates - DST Root CA X3 - Remove Expiring Cybertrust Global Root and GlobalSign root certificates - Add renewed Autoridad de Certificacion Firmaprofesional CIF A62634068 root certificate - Add iTrusChina ECC root certificate - Add iTrusChina RSA root certificate - Add ISRG Root X2 root certificate - Add Chunghwa Telecom's HiPKI Root CA - G1 root certificate - Avoid a clang 13 unused variable warning in opt build - Check for missing signedData field - Ensure DER encoded signatures are within size limits - enable key logging option (boo#1195040) Version update to NSS 3.73.1: - Add SHA-2 support to mozilla::pkix's OSCP implementation Version update to NSS 3.73 - check for missing signedData field. - Ensure DER encoded signatures are within size limits. - NSS needs FiPS 140-3 version indicators. - pkix_CacheCert_Lookup doesn't return cached certs - sunset Coverity from NSS Fixed MFSA 2021-51 (bsc#1193170) CVE-2021-43527: Memory corruption via DER-encoded DSA and RSA-PSS signatures Version update to NSS 3.72 - Fix nsinstall parallel failure. - Increase KDF cache size to mitigate perf regression in about:logins Version update to NSS 3.71 - Set nssckbi version number to 2.52. - Respect server requirements of tlsfuzzer/test-tls13-signature-algorithms.py - Import of PKCS#12 files with Camellia encryption is not supported - Add HARICA Client ECC Root CA 2021. - Add HARICA Client RSA Root CA 2021. - Add HARICA TLS ECC Root CA 2021. - Add HARICA TLS RSA Root CA 2021. - Add TunTrust Root CA certificate to NSS. Version update to NSS 3.70 - Update test case to verify fix. - Explicitly disable downgrade check in TlsConnectStreamTls13.EchOuterWith12Max - Explicitly disable downgrade check in TlsConnectTest.DisableFalseStartOnFallback - Avoid using a lookup table in nssb64d. - Use HW accelerated SHA2 on AArch64 Big Endian. - Change default value of enableHelloDowngradeCheck to true. - Cache additional PBE entries. - Read HPKE vectors from official JSON. Version update to NSS 3.69.1: - Disable DTLS 1.0 and 1.1 by default - integrity checks in key4.db not happening on private components with AES_CBC NSS 3.69: - Disable DTLS 1.0 and 1.1 by default (backed out again) - integrity checks in key4.db not happening on private components with AES_CBC (backed out again) - SSL handling of signature algorithms ignores environmental invalid algorithms. - sqlite 3.34 changed it's open semantics, causing nss failures. - Gtest update changed the gtest reports, losing gtest details in all.sh reports. - NSS incorrectly accepting 1536 bit DH primes in FIPS mode - SQLite calls could timeout in starvation situations. - Coverity/cpp scanner errors found in nss 3.67 - Import the NSS documentation from MDN in nss/doc. - NSS using a tempdir to measure sql performance not active Version Update to 3.68.4 (bsc#1200027) - CVE-2022-31741: Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple. (bmo#1767590) Mozilla NSPR was updated to version 4.34: * add an API that returns a preferred loopback IP on hosts that have two IP stacks available. libfreebl3-3.79-150000.3.74.1.x86_64.rpm libfreebl3-32bit-3.79-150000.3.74.1.x86_64.rpm libfreebl3-hmac-3.79-150000.3.74.1.x86_64.rpm libfreebl3-hmac-32bit-3.79-150000.3.74.1.x86_64.rpm libsoftokn3-3.79-150000.3.74.1.x86_64.rpm libsoftokn3-32bit-3.79-150000.3.74.1.x86_64.rpm libsoftokn3-hmac-3.79-150000.3.74.1.x86_64.rpm libsoftokn3-hmac-32bit-3.79-150000.3.74.1.x86_64.rpm mozilla-nspr-32bit-4.34-150000.3.23.1.x86_64.rpm mozilla-nspr-4.34-150000.3.23.1.src.rpm mozilla-nspr-4.34-150000.3.23.1.x86_64.rpm mozilla-nspr-devel-4.34-150000.3.23.1.x86_64.rpm mozilla-nss-3.79-150000.3.74.1.src.rpm mozilla-nss-3.79-150000.3.74.1.x86_64.rpm mozilla-nss-32bit-3.79-150000.3.74.1.x86_64.rpm mozilla-nss-certs-3.79-150000.3.74.1.x86_64.rpm mozilla-nss-certs-32bit-3.79-150000.3.74.1.x86_64.rpm mozilla-nss-devel-3.79-150000.3.74.1.x86_64.rpm mozilla-nss-sysinit-3.79-150000.3.74.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.79-150000.3.74.1.x86_64.rpm mozilla-nss-tools-3.79-150000.3.74.1.x86_64.rpm libfreebl3-3.79-150000.3.74.1.s390x.rpm libfreebl3-hmac-3.79-150000.3.74.1.s390x.rpm libsoftokn3-3.79-150000.3.74.1.s390x.rpm libsoftokn3-hmac-3.79-150000.3.74.1.s390x.rpm mozilla-nspr-4.34-150000.3.23.1.s390x.rpm mozilla-nspr-devel-4.34-150000.3.23.1.s390x.rpm mozilla-nss-3.79-150000.3.74.1.s390x.rpm mozilla-nss-certs-3.79-150000.3.74.1.s390x.rpm mozilla-nss-devel-3.79-150000.3.74.1.s390x.rpm mozilla-nss-sysinit-3.79-150000.3.74.1.s390x.rpm mozilla-nss-tools-3.79-150000.3.74.1.s390x.rpm libfreebl3-3.79-150000.3.74.1.ppc64le.rpm libfreebl3-hmac-3.79-150000.3.74.1.ppc64le.rpm libsoftokn3-3.79-150000.3.74.1.ppc64le.rpm libsoftokn3-hmac-3.79-150000.3.74.1.ppc64le.rpm mozilla-nspr-4.34-150000.3.23.1.ppc64le.rpm mozilla-nspr-devel-4.34-150000.3.23.1.ppc64le.rpm mozilla-nss-3.79-150000.3.74.1.ppc64le.rpm mozilla-nss-certs-3.79-150000.3.74.1.ppc64le.rpm mozilla-nss-devel-3.79-150000.3.74.1.ppc64le.rpm mozilla-nss-sysinit-3.79-150000.3.74.1.ppc64le.rpm mozilla-nss-tools-3.79-150000.3.74.1.ppc64le.rpm libfreebl3-3.79-150000.3.74.1.aarch64.rpm libfreebl3-hmac-3.79-150000.3.74.1.aarch64.rpm libsoftokn3-3.79-150000.3.74.1.aarch64.rpm libsoftokn3-hmac-3.79-150000.3.74.1.aarch64.rpm mozilla-nspr-4.34-150000.3.23.1.aarch64.rpm mozilla-nspr-devel-4.34-150000.3.23.1.aarch64.rpm mozilla-nss-3.79-150000.3.74.1.aarch64.rpm mozilla-nss-certs-3.79-150000.3.74.1.aarch64.rpm mozilla-nss-devel-3.79-150000.3.74.1.aarch64.rpm mozilla-nss-sysinit-3.79-150000.3.74.1.aarch64.rpm mozilla-nss-tools-3.79-150000.3.74.1.aarch64.rpm openSUSE-SLE-15.3-2022-3501 important SUSE Updates openSUSE-SLE 15.3 This update for aws-cli, python-boto3, python-botocore fixes the following issues: Update AWS SDK and CLI in SUSE Linux Enterprise 15 (bsc#1199716, jsc#PED-1851) aws-cli: - Update from version 1.20.7 to version 1.24.4 (bsc#1199716, jsc#PED-1851) - For detailed changes see packaged CHANGELOG.rst or https://raw.githubusercontent.com/aws/aws-cli/1.24.4/CHANGELOG.rst - Updated required dependencies python-boto3: - Update from version 1.18.7 to version 1.23.4 (bsc#1199716, jsc#PED-1851) - For detailed changes see https://github.com/boto/boto3/blob/develop/CHANGELOG.rst#1234 - Updated required dependencies python-botocore: - Update from version 1.21.7 to version 1.26.4 (bsc#1199716, jsc#PED-1851) - For detailed changes see https://github.com/boto/botocore/blob/develop/CHANGELOG.rst#1264 - Updated required dependencies aws-cli-1.24.4-150200.30.8.1.noarch.rpm aws-cli-1.24.4-150200.30.8.1.src.rpm python-boto3-1.23.4-150200.23.9.1.src.rpm python-botocore-1.26.4-150200.37.9.1.src.rpm python3-boto3-1.23.4-150200.23.9.1.noarch.rpm python3-botocore-1.26.4-150200.37.9.1.noarch.rpm openSUSE-SLE-15.3-2022-2458 moderate SUSE Updates openSUSE-SLE 15.3 This update for regionServiceClientConfigEC2 fixes the following issues: - Update to version 4.0.0 (bsc#1199668) - Move cert location to usr form var to accomodate ro filesystem of SLE-Micro - Fix source location in spec file regionServiceClientConfigEC2-4.0.0-150000.3.21.1.noarch.rpm regionServiceClientConfigEC2-4.0.0-150000.3.21.1.src.rpm openSUSE-SLE-15.3-2022-2090 moderate SUSE Updates openSUSE-SLE 15.3 This update for regionServiceClientConfigAzure fixes the following issues: - Update to version 2.0.0 (bsc#1199668) - Move the certs to /usr from /var to accomodate ro filesystem of SLE-Micro - Fix source url in spec file regionServiceClientConfigAzure-2.0.0-150000.3.16.1.noarch.rpm regionServiceClientConfigAzure-2.0.0-150000.3.16.1.src.rpm openSUSE-SLE-15.3-2022-2459 moderate SUSE Updates openSUSE-SLE 15.3 This update for regionServiceClientConfigGCE fixes the following issues: - Update to version 4.0.0 (bsc#1199668) - Move the cert location to /usr for compatibility with ro setup of SLE-Micro - Fix url in spec file to pint to the proper location of the source regionServiceClientConfigGCE-4.0.0-150000.4.9.1.noarch.rpm regionServiceClientConfigGCE-4.0.0-150000.4.9.1.src.rpm openSUSE-SLE-15.3-2022-2456 moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Update to version 10.0.4 (bsc#1199668) - Store the update server certs in the '/etc' path instead of '/usr' to accomodate read only setup of SLE-Micro cloud-regionsrv-client-10.0.4-150000.6.73.1.noarch.rpm cloud-regionsrv-client-10.0.4-150000.6.73.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-150000.6.73.1.noarch.rpm cloud-regionsrv-client-plugin-azure-2.0.0-150000.6.73.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-150000.6.73.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-150000.6.73.1.noarch.rpm openSUSE-SLE-15.3-2022-2004 important SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: Update to go1.17.11 (released 2022-06-01) (bsc#1190649): - CVE-2022-30634: Fixed crypto/rand rand.Read hangs with extremely large buffers (bsc#1200134). - CVE-2022-30629: Fixed crypto/tls session tickets lack random ticket_age_add (bsc#1200135). - CVE-2022-29804: Fixed path/filepath Clean(`.\c:`) returns `c:` on Windows (bsc#1200137). - CVE-2022-30580: Fixed os/exec empty Cmd.Path can result in running unintended binary on Windows (bsc#1200136). go1.17-1.17.11-150000.1.37.1.i586.rpm go1.17-1.17.11-150000.1.37.1.src.rpm go1.17-doc-1.17.11-150000.1.37.1.i586.rpm go1.17-1.17.11-150000.1.37.1.x86_64.rpm go1.17-doc-1.17.11-150000.1.37.1.x86_64.rpm go1.17-race-1.17.11-150000.1.37.1.x86_64.rpm go1.17-1.17.11-150000.1.37.1.s390x.rpm go1.17-doc-1.17.11-150000.1.37.1.s390x.rpm go1.17-1.17.11-150000.1.37.1.ppc64le.rpm go1.17-doc-1.17.11-150000.1.37.1.ppc64le.rpm go1.17-1.17.11-150000.1.37.1.aarch64.rpm go1.17-doc-1.17.11-150000.1.37.1.aarch64.rpm go1.17-race-1.17.11-150000.1.37.1.aarch64.rpm openSUSE-SLE-15.3-2022-2005 important SUSE Updates openSUSE-SLE 15.3 This update for go1.18 fixes the following issues: Update to go1.18.3 (released 2022-06-01) (bsc#1193742): - CVE-2022-30634: Fixed crypto/rand rand.Read hangs with extremely large buffers (bsc#1200134). - CVE-2022-30629: Fixed crypto/tls session tickets lack random ticket_age_add (bsc#1200135). - CVE-2022-29804: Fixed path/filepath Clean(`.\c:`) returns `c:` on Windows (bsc#1200137). - CVE-2022-30580: Fixed os/exec empty Cmd.Path can result in running unintended binary on Windows (bsc#1200136). go1.18-1.18.3-150000.1.20.1.src.rpm go1.18-1.18.3-150000.1.20.1.x86_64.rpm go1.18-doc-1.18.3-150000.1.20.1.x86_64.rpm go1.18-race-1.18.3-150000.1.20.1.x86_64.rpm go1.18-1.18.3-150000.1.20.1.s390x.rpm go1.18-doc-1.18.3-150000.1.20.1.s390x.rpm go1.18-1.18.3-150000.1.20.1.ppc64le.rpm go1.18-doc-1.18.3-150000.1.20.1.ppc64le.rpm go1.18-1.18.3-150000.1.20.1.aarch64.rpm go1.18-doc-1.18.3-150000.1.20.1.aarch64.rpm go1.18-race-1.18.3-150000.1.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-2072 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: Update to version 2.36.3 (bsc#1200106) - CVE-2022-30293: Fixed heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer (bsc#1199287). - CVE-2022-26700: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26709: Fixed use after free issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26716: Fixed use after free issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26717: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26719: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). libjavascriptcoregtk-4_0-18-2.36.3-150200.35.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.36.3-150200.35.1.x86_64.rpm libwebkit2gtk-4_0-37-2.36.3-150200.35.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.36.3-150200.35.1.x86_64.rpm libwebkit2gtk3-lang-2.36.3-150200.35.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.36.3-150200.35.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.36.3-150200.35.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.3-150200.35.1.x86_64.rpm webkit-jsc-4-2.36.3-150200.35.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.36.3-150200.35.1.x86_64.rpm webkit2gtk3-2.36.3-150200.35.1.src.rpm webkit2gtk3-devel-2.36.3-150200.35.1.x86_64.rpm webkit2gtk3-minibrowser-2.36.3-150200.35.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.36.3-150200.35.1.s390x.rpm libwebkit2gtk-4_0-37-2.36.3-150200.35.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.36.3-150200.35.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.36.3-150200.35.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.3-150200.35.1.s390x.rpm webkit-jsc-4-2.36.3-150200.35.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.36.3-150200.35.1.s390x.rpm webkit2gtk3-devel-2.36.3-150200.35.1.s390x.rpm webkit2gtk3-minibrowser-2.36.3-150200.35.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.36.3-150200.35.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.36.3-150200.35.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.36.3-150200.35.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.36.3-150200.35.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.3-150200.35.1.ppc64le.rpm webkit-jsc-4-2.36.3-150200.35.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.36.3-150200.35.1.ppc64le.rpm webkit2gtk3-devel-2.36.3-150200.35.1.ppc64le.rpm webkit2gtk3-minibrowser-2.36.3-150200.35.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.36.3-150200.35.1.aarch64.rpm libwebkit2gtk-4_0-37-2.36.3-150200.35.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.3-150200.35.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.36.3-150200.35.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.3-150200.35.1.aarch64.rpm webkit-jsc-4-2.36.3-150200.35.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.36.3-150200.35.1.aarch64.rpm webkit2gtk3-devel-2.36.3-150200.35.1.aarch64.rpm webkit2gtk3-minibrowser-2.36.3-150200.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-2065 important SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2022-26358, CVE-2022-26359, CVE-2022-26360, CVE-2022-26361: Fixed IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues (XSA-400) (bsc#1197426) - CVE-2022-26362: Fixed race condition in typeref acquisition (bsc#1199965) - CVE-2022-26363, CVE-2022-26364: Fixed insufficient care with non-coherent mappings (bsc#1199966) xen-4.14.5_02-150300.3.29.1.src.rpm True xen-4.14.5_02-150300.3.29.1.x86_64.rpm True xen-devel-4.14.5_02-150300.3.29.1.x86_64.rpm True xen-doc-html-4.14.5_02-150300.3.29.1.x86_64.rpm True xen-libs-32bit-4.14.5_02-150300.3.29.1.x86_64.rpm True xen-libs-4.14.5_02-150300.3.29.1.x86_64.rpm True xen-tools-4.14.5_02-150300.3.29.1.x86_64.rpm True xen-tools-domU-4.14.5_02-150300.3.29.1.x86_64.rpm True xen-tools-xendomains-wait-disk-4.14.5_02-150300.3.29.1.noarch.rpm True xen-4.14.5_02-150300.3.29.1.aarch64.rpm True xen-devel-4.14.5_02-150300.3.29.1.aarch64.rpm True xen-doc-html-4.14.5_02-150300.3.29.1.aarch64.rpm True xen-libs-4.14.5_02-150300.3.29.1.aarch64.rpm True xen-tools-4.14.5_02-150300.3.29.1.aarch64.rpm True xen-tools-domU-4.14.5_02-150300.3.29.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2387 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust, rust1.61 fixes the following issues: This updates ships rust1.61. Version 1.61.0 (2022-05-19) ========================== Language -------- - `const fn` signatures can now include generic trait bounds - `const fn` signatures can now use `impl Trait` in argument and return position - Function pointers can now be created, cast, and passed around in a `const fn` - Recursive calls can now set the value of a function's opaque `impl Trait` return type Compiler -------- - Linking modifier syntax in `#[link]` attributes and on the command line, as well as the `whole-archive` modifier specifically, are now supported - The `char` type is now described as UTF-32 in debuginfo - he [`#[target_feature]`][target_feature] attribute [can now be used with aarch64 features - X86 [`#[target_feature = "adx"]` is now stable Libraries --------- - `ManuallyDrop<T>` is now documented to have the same layout as `T` - `#[ignore = "…"]` messages are printed when running tests - Consistently show absent stdio handles on Windows as NULL handles - Make `std::io::stdio::lock()` return `'static` handles. Previously, the creation of locked handles to stdin/stdout/stderr would borrow the handles being locked, which prevented writing `let out = std::io::stdout().lock();` because `out` would outlive the return value of `stdout()`. Such code now works, eliminating a common pitfall that affected many Rust users. - `Vec::from_raw_parts` is now less restrictive about its inputs - `std::thread::available_parallelism` now takes cgroup quotas into account. Since `available_parallelism` is often used to create a thread pool for parallel computation, which may be CPU-bound for performance, `available_parallelism` will return a value consistent with the ability to use that many threads continuously, if possible. For instance, in a container with 8 virtual CPUs but quotas only allowing for 50% usage, `available_parallelism` will return 4. Stabilized APIs --------------- - `Pin::static_mut` - `Pin::static_ref` - `Vec::retain_mut` - `VecDeque::retain_mut` - `Write` for `Cursor<[u8; N]>` - `std::os::unix::net::SocketAddr::from_pathname` - `std::process::ExitCode` and `std::process::Termination`. The stabilization of these two APIs now makes it possible for programs to return errors from `main` with custom exit codes. - `std::thread::JoinHandle::is_finished`] These APIs are now usable in const contexts: - `<*const T>::offset` and `<*mut T>::offset` - `<*const T>::wrapping_offset` and `<*mut T>::wrapping_offset` - `<*const T>::add` and `<*mut T>::add` - `<*const T>::sub` and `<*mut T>::sub` - `<*const T>::wrapping_add` and `<*mut T>::wrapping_add` - `<*const T>::wrapping_sub` and `<*mut T>::wrapping_sub` - `<[T]>::as_mut_ptr` - `<[T]>::as_ptr_range` - `<[T]>::as_mut_ptr_range` Cargo ----- No feature changes, but see compatibility notes. Compatibility Notes ------------------- - Previously native static libraries were linked as `whole-archive` in some cases, but now rustc tries not to use `whole-archive` unless explicitly requested. This change may result in linking errors in some cases. To fix such errors, native libraries linked from the command line, build scripts, or [`#[link]` attributes][link-attr] need to - (more common) either be reordered to respect dependencies between them (if `a` depends on `b` then `a` should go first and `b` second) - (less common) or be updated to use the [`+whole-archive`] modifier. - Catching a second unwind from FFI code while cleaning up from a Rust panic now causes the process to abort - Proc macros no longer see `ident` matchers wrapped in groups - The number of `#` in `r#` raw string literals is now required to be less than 256 - When checking that a dyn type satisfies a trait bound, supertrait bounds are now enforced - `cargo vendor` now only accepts one value for each `--sync` flag - `cfg` predicates in `all()` and `any()` are always evaluated to detect errors, instead of short-circuiting. The compatibility considerations here arise in nightly-only code that used the short-circuiting behavior of `all` to write something like `cfg(all(feature = "nightly", syntax-requiring-nightly))`, which will now fail to compile. Instead, use either `cfg_attr(feature = "nightly", ...)` or nested uses of `cfg`. - bootstrap: static-libstdcpp is now enabled by default, and can now be disabled when llvm-tools is enabled cargo-1.61.0-150300.21.26.1.x86_64.rpm cargo1.61-1.61.0-150300.7.3.1.x86_64.rpm rust-1.61.0-150300.21.26.1.src.rpm rust-1.61.0-150300.21.26.1.x86_64.rpm rust1.61-1.61.0-150300.7.3.1.src.rpm rust1.61-1.61.0-150300.7.3.1.x86_64.rpm cargo-1.61.0-150300.21.26.1.s390x.rpm cargo1.61-1.61.0-150300.7.3.1.s390x.rpm rust-1.61.0-150300.21.26.1.s390x.rpm rust1.61-1.61.0-150300.7.3.1.s390x.rpm cargo-1.61.0-150300.21.26.1.ppc64le.rpm cargo1.61-1.61.0-150300.7.3.1.ppc64le.rpm rust-1.61.0-150300.21.26.1.ppc64le.rpm rust1.61-1.61.0-150300.7.3.1.ppc64le.rpm cargo-1.61.0-150300.21.26.1.aarch64.rpm cargo1.61-1.61.0-150300.7.3.1.aarch64.rpm rust-1.61.0-150300.21.26.1.aarch64.rpm rust1.61-1.61.0-150300.7.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2321 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_0_0 fixes the following issues: - CVE-2022-1292: Fixed command injection in c_rehash (bsc#1199166). - CVE-2022-2068: Fixed more shell code injection issues in c_rehash. (bsc#1200550) libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl10-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-150000.3.56.1.x86_64.rpm openssl-1_0_0-1.0.2p-150000.3.56.1.src.rpm openssl-1_0_0-1.0.2p-150000.3.56.1.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.56.1.x86_64.rpm openssl-1_0_0-doc-1.0.2p-150000.3.56.1.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.s390x.rpm libopenssl10-1.0.2p-150000.3.56.1.s390x.rpm libopenssl1_0_0-1.0.2p-150000.3.56.1.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.56.1.s390x.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.56.1.s390x.rpm openssl-1_0_0-1.0.2p-150000.3.56.1.s390x.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.56.1.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.ppc64le.rpm libopenssl10-1.0.2p-150000.3.56.1.ppc64le.rpm libopenssl1_0_0-1.0.2p-150000.3.56.1.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.56.1.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.56.1.ppc64le.rpm openssl-1_0_0-1.0.2p-150000.3.56.1.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.56.1.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.aarch64.rpm libopenssl10-1.0.2p-150000.3.56.1.aarch64.rpm libopenssl1_0_0-1.0.2p-150000.3.56.1.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.56.1.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.56.1.aarch64.rpm openssl-1_0_0-1.0.2p-150000.3.56.1.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.56.1.aarch64.rpm openSUSE-SLE-15.3-2022-2341 important SUSE Updates openSUSE-SLE 15.3 This update for containerd, docker and runc fixes the following issues: containerd: - CVE-2022-31030: Fixed denial of service via invocation of the ExecSync API (bsc#1200145) docker: - Update to Docker 20.10.17-ce. See upstream changelog online at https://docs.docker.com/engine/release-notes/#201017. (bsc#1200145) runc: Update to runc v1.1.3. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.3. * Our seccomp `-ENOSYS` stub now correctly handles multiplexed syscalls on s390 and s390x. This solves the issue where syscalls the host kernel did not support would return `-EPERM` despite the existence of the `-ENOSYS` stub code (this was due to how s390x does syscall multiplexing). * Retry on dbus disconnect logic in libcontainer/cgroups/systemd now works as intended; this fix does not affect runc binary itself but is important for libcontainer users such as Kubernetes. * Inability to compile with recent clang due to an issue with duplicate constants in libseccomp-golang. * When using systemd cgroup driver, skip adding device paths that don't exist, to stop systemd from emitting warnings about those paths. * Socket activation was failing when more than 3 sockets were used. * Various CI fixes. * Allow to bind mount /proc/sys/kernel/ns_last_pid to inside container. - Fixed issues with newer syscalls (namely faccessat2) on older kernels on s390(x) caused by that platform's syscall multiplexing semantics. (bsc#1192051 bsc#1199565) Update to runc v1.1.2. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.2. Security issue fixed: - CVE-2022-29162: A bug was found in runc where runc exec --cap executed processes with non-empty inheritable Linux process capabilities, creating an atypical Linux environment. (bsc#1199460) - `runc spec` no longer sets any inheritable capabilities in the created example OCI spec (`config.json`) file. Update to runc v1.1.1. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.1. * runc run/start can now run a container with read-only /dev in OCI spec, rather than error out. (#3355) * runc exec now ensures that --cgroup argument is a sub-cgroup. (#3403) libcontainer systemd v2 manager no longer errors out if one of the files listed in /sys/kernel/cgroup/delegate do not exist in container's cgroup. (#3387, #3404) * Loosen OCI spec validation to avoid bogus "Intel RDT is not supported" error. (#3406) * libcontainer/cgroups no longer panics in cgroup v1 managers if stat of /sys/fs/cgroup/unified returns an error other than ENOENT. (#3435) Update to runc v1.1.0. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.0. - libcontainer will now refuse to build without the nsenter package being correctly compiled (specifically this requires CGO to be enabled). This should avoid folks accidentally creating broken runc binaries (and incorrectly importing our internal libraries into their projects). (#3331) Update to runc v1.1.0~rc1. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.0-rc.1. + Add support for RDMA cgroup added in Linux 4.11. * runc exec now produces exit code of 255 when the exec failed. This may help in distinguishing between runc exec failures (such as invalid options, non-running container or non-existent binary etc.) and failures of the command being executed. + runc run: new --keep option to skip removal exited containers artefacts. This might be useful to check the state (e.g. of cgroup controllers) after the container hasexited. + seccomp: add support for SCMP_ACT_KILL_PROCESS and SCMP_ACT_KILL_THREAD (the latter is just an alias for SCMP_ACT_KILL). + seccomp: add support for SCMP_ACT_NOTIFY (seccomp actions). This allows users to create sophisticated seccomp filters where syscalls can be efficiently emulated by privileged processes on the host. + checkpoint/restore: add an option (--lsm-mount-context) to set a different LSM mount context on restore. + intelrdt: support ClosID parameter. + runc exec --cgroup: an option to specify a (non-top) in-container cgroup to use for the process being executed. + cgroup v1 controllers now support hybrid hierarchy (i.e. when on a cgroup v1 machine a cgroup2 filesystem is mounted to /sys/fs/cgroup/unified, runc run/exec now adds the container to the appropriate cgroup under it). + sysctl: allow slashes in sysctl names, to better match sysctl(8)'s behaviour. + mounts: add support for bind-mounts which are inaccessible after switching the user namespace. Note that this does not permit the container any additional access to the host filesystem, it simply allows containers to have bind-mounts configured for paths the user can access but have restrictive access control settings for other users. + Add support for recursive mount attributes using mount_setattr(2). These have the same names as the proposed mount(8) options -- just prepend r to the option name (such as rro). + Add runc features subcommand to allow runc users to detect what features runc has been built with. This includes critical information such as supported mount flags, hook names, and so on. Note that the output of this command is subject to change and will not be considered stable until runc 1.2 at the earliest. The runtime-spec specification for this feature is being developed in opencontainers/runtime-spec#1130. * system: improve performance of /proc/$pid/stat parsing. * cgroup2: when /sys/fs/cgroup is configured as a read-write mount, change the ownership of certain cgroup control files (as per /sys/kernel/cgroup/delegate) to allow for proper deferral to the container process. * runc checkpoint/restore: fixed for containers with an external bind mount which destination is a symlink. * cgroup: improve openat2 handling for cgroup directory handle hardening. runc delete -f now succeeds (rather than timing out) on a paused container. * runc run/start/exec now refuses a frozen cgroup (paused container in case of exec). Users can disable this using --ignore-paused. - Update version data embedded in binary to correctly include the git commit of the release. Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? containerd-1.6.6-150000.73.2.src.rpm containerd-1.6.6-150000.73.2.x86_64.rpm containerd-ctr-1.6.6-150000.73.2.x86_64.rpm docker-20.10.17_ce-150000.166.1.src.rpm docker-20.10.17_ce-150000.166.1.x86_64.rpm docker-bash-completion-20.10.17_ce-150000.166.1.noarch.rpm docker-fish-completion-20.10.17_ce-150000.166.1.noarch.rpm docker-kubic-20.10.17_ce-150000.166.1.src.rpm docker-kubic-20.10.17_ce-150000.166.1.x86_64.rpm docker-kubic-bash-completion-20.10.17_ce-150000.166.1.noarch.rpm docker-kubic-fish-completion-20.10.17_ce-150000.166.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.166.1.x86_64.rpm docker-kubic-zsh-completion-20.10.17_ce-150000.166.1.noarch.rpm docker-zsh-completion-20.10.17_ce-150000.166.1.noarch.rpm runc-1.1.3-150000.30.1.src.rpm runc-1.1.3-150000.30.1.x86_64.rpm containerd-1.6.6-150000.73.2.s390x.rpm containerd-ctr-1.6.6-150000.73.2.s390x.rpm docker-20.10.17_ce-150000.166.1.s390x.rpm docker-kubic-20.10.17_ce-150000.166.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.166.1.s390x.rpm runc-1.1.3-150000.30.1.s390x.rpm containerd-1.6.6-150000.73.2.ppc64le.rpm containerd-ctr-1.6.6-150000.73.2.ppc64le.rpm docker-20.10.17_ce-150000.166.1.ppc64le.rpm docker-kubic-20.10.17_ce-150000.166.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.166.1.ppc64le.rpm runc-1.1.3-150000.30.1.ppc64le.rpm containerd-1.6.6-150000.73.2.aarch64.rpm containerd-ctr-1.6.6-150000.73.2.aarch64.rpm docker-20.10.17_ce-150000.166.1.aarch64.rpm docker-kubic-20.10.17_ce-150000.166.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.166.1.aarch64.rpm runc-1.1.3-150000.30.1.aarch64.rpm openSUSE-SLE-15.3-2022-2085 moderate SUSE Updates openSUSE-SLE 15.3 This optional update for i2c-tools provide the following changes: - Deliver i2c-tools to SUSE Package Hub. i2c-tools-4.0-150000.4.5.1.src.rpm i2c-tools-4.0-150000.4.5.1.x86_64.rpm libi2c0-4.0-150000.4.5.1.x86_64.rpm libi2c0-devel-4.0-150000.4.5.1.x86_64.rpm python3-smbus-4.0-150000.4.5.1.x86_64.rpm i2c-tools-4.0-150000.4.5.1.ppc64le.rpm libi2c0-4.0-150000.4.5.1.ppc64le.rpm libi2c0-devel-4.0-150000.4.5.1.ppc64le.rpm python3-smbus-4.0-150000.4.5.1.ppc64le.rpm i2c-tools-4.0-150000.4.5.1.aarch64.rpm libi2c0-4.0-150000.4.5.1.aarch64.rpm libi2c0-devel-4.0-150000.4.5.1.aarch64.rpm python3-smbus-4.0-150000.4.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-2111 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP1 kernel was updated. The following security bugs were fixed: - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2019-19377: Fixed an user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image. (bnc#1158266) - CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577) - CVE-2017-13695: Fixed a bug that caused a stack dump allowing local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted ACPI table. (bnc#1055710) - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). - CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063). - CVE-2021-39711: In bpf_prog_test_run_skb of test_run.c, there is a possible out of bounds read due to Incorrect Size Value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1197219). - CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP flag (bnc#1199505). - CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426). - CVE-2022-1516: Fixed null-ptr-deref caused by x25_disconnect (bsc#1199012). - CVE-2021-20321: Fixed a race condition accessing file object in the OverlayFS subsystem in the way users do rename in specific way with OverlayFS. A local user could have used this flaw to crash the system (bnc#1191647). - CVE-2019-20811: Fixed issue in rx_queue_add_kobject() and netdev_queue_add_kobject() in net/core/net-sysfs.c, where a reference count is mishandled (bnc#1172456). - CVE-2022-28748: Fixed memory lead over the network by ax88179_178a devices (bsc#1196018). - CVE-2018-7755: Fixed an issue in the fd_locked_ioctl function in drivers/block/floppy.c. The floppy driver will copy a kernel pointer to user memory in response to the FDGETPRM ioctl. An attacker can send the FDGETPRM ioctl and use the obtained kernel pointer to discover the location of kernel code and data and bypass kernel security protections such as KASLR (bnc#1084513). - CVE-2022-22942: Fixed stale file descriptors on failed usercopy (bsc#1195065). - CVE-2022-1419: Fixed a concurrency use-after-free in vgem_gem_dumb_create (bsc#1198742). - CVE-2021-43389: Fixed an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958). - CVE-2021-38208: Fixed a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call (bnc#1187055). - CVE-2022-1353: Fixed access controll to kernel memory in the pfkey_register function in net/key/af_key.c (bnc#1198516). - CVE-2021-20292: Fixed object validation prior to performing operations on the object in nouveau_sgdma_create_ttm in Nouveau DRM subsystem (bnc#1183723). - CVE-2022-1011: Fixed an use-after-free vulnerability which could allow a local attacker to retireve (partial) /etc/shadow hashes or any other data from filesystem when he can mount a FUSE filesystems. (bnc#1197343) - CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144). - CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism. (bnc#1177282) - CVE-2022-1975: Fixed a bug that allows an attacker to crash the linux kernel by simulating nfc device from user-space. (bsc#1200143) - CVE-2022-21499: Reinforce the kernel lockdown feature, until now it's been trivial to break out of it with kgdb or kdb. (bsc#1199426) - CVE-2022-1734: Fixed a r/w use-after-free when non synchronized between cleanup routine and firmware download routine. (bnc#1199605). The following non-security bugs were fixed: - btrfs: relocation: Only remove reloc rb_trees if reloc control has been initialized (bsc#1199399). - btrfs: tree-checker: fix incorrect printk format (bsc#1200249). - net: ena: A typo fix in the file ena_com.h (bsc#1198777). - net: ena: Add capabilities field with support for ENI stats capability (bsc#1198777). - net: ena: Add debug prints for invalid req_id resets (bsc#1198777). - net: ena: add device distinct log prefix to files (bsc#1198777). - net: ena: add jiffies of last napi call to stats (bsc#1198777). - net: ena: aggregate doorbell common operations into a function (bsc#1198777). - net: ena: aggregate stats increase into a function (bsc#1198777). - net: ena: Change ENI stats support check to use capabilities field (bsc#1198777). - net: ena: Change return value of ena_calc_io_queue_size() to void (bsc#1198777). - net: ena: Change the name of bad_csum variable (bsc#1198777). - net: ena: Extract recurring driver reset code into a function (bsc#1198777). - net: ena: fix coding style nits (bsc#1198777). - net: ena: fix DMA mapping function issues in XDP (bsc#1198777). - net: ena: Fix error handling when calculating max IO queues number (bsc#1198777). - net: ena: fix inaccurate print type (bsc#1198777). - net: ena: Fix undefined state when tx request id is out of bounds (bsc#1198777). - net: ena: Fix wrong rx request id by resetting device (bsc#1198777). - net: ena: Improve error logging in driver (bsc#1198777). - net: ena: introduce ndo_xdp_xmit() function for XDP_REDIRECT (bsc#1198777). - net: ena: introduce XDP redirect implementation (bsc#1198777). - net: ena: make symbol 'ena_alloc_map_page' static (bsc#1198777). - net: ena: Move reset completion print to the reset function (bsc#1198777). - net: ena: optimize data access in fast-path code (bsc#1198777). - net: ena: re-organize code to improve readability (bsc#1198777). - net: ena: Remove ena_calc_queue_size_ctx struct (bsc#1198777). - net: ena: remove extra words from comments (bsc#1198777). - net: ena: Remove module param and change message severity (bsc#1198777). - net: ena: Remove rcu_read_lock() around XDP program invocation (bsc#1198777). - net: ena: Remove redundant return code check (bsc#1198777). - net: ena: Remove unused code (bsc#1198777). - net: ena: store values in their appropriate variables types (bsc#1198777). - net: ena: Update XDP verdict upon failure (bsc#1198777). - net: ena: use build_skb() in RX path (bsc#1198777). - net: ena: use constant value for net_device allocation (bsc#1198777). - net: ena: Use dev_alloc() in RX buffer allocation (bsc#1198777). - net: ena: Use pci_sriov_configure_simple() to enable VFs (bsc#1198777). - net: ena: use xdp_frame in XDP TX flow (bsc#1198777). - net: ena: use xdp_return_frame() to free xdp frames (bsc#1198777). - net: mana: Add counter for packet dropped by XDP (bsc#1195651). - net: mana: Add counter for XDP_TX (bsc#1195651). - net: mana: Add handling of CQE_RX_TRUNCATED (bsc#1195651). - net: mana: Remove unnecessary check of cqe_type in mana_process_rx_cqe() (bsc#1195651). - net: mana: Reuse XDP dropped page (bsc#1195651). - net: mana: Use struct_size() helper in mana_gd_create_dma_region() (bsc#1195651). - PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (bsc#1199314). - powerpc/64: Fix kernel stack 16-byte alignment (bsc#1196999 ltc#196609S git-fixes). - powerpc/64: Interrupts save PPR on stack rather than thread_struct (bsc#1196999 ltc#196609). - powerpc/pseries: extract host bridge from pci_bus prior to bus removal (bsc#1182171 ltc#190900 bsc#1198660 ltc#197803). - powerpc/pseries: Fix use after free in remove_phb_dynamic() (bsc#1065729 bsc#1198660 ltc#197803). - scsi: scsi_dh_alua: Avoid crash during alua_bus_detach() (bsc#1028340 bsc#1198825). - SUNRPC: change locking for xs_swap_enable/disable (bsc#1196367). - x86/pm: Save the MSR validity status at context setup (bsc#1114648). - x86/speculation: Restore speculation related MSRs during S3 resume (bsc#1114648). kernel-debug-4.12.14-150100.197.114.2.nosrc.rpm True kernel-debug-base-4.12.14-150100.197.114.2.x86_64.rpm True kernel-default-4.12.14-150100.197.114.2.nosrc.rpm True kernel-kvmsmall-4.12.14-150100.197.114.2.nosrc.rpm True kernel-kvmsmall-base-4.12.14-150100.197.114.2.x86_64.rpm True kernel-vanilla-4.12.14-150100.197.114.2.nosrc.rpm True kernel-vanilla-4.12.14-150100.197.114.2.x86_64.rpm True kernel-vanilla-base-4.12.14-150100.197.114.2.x86_64.rpm True kernel-vanilla-devel-4.12.14-150100.197.114.2.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.114.2.x86_64.rpm True kernel-default-man-4.12.14-150100.197.114.2.s390x.rpm True kernel-vanilla-4.12.14-150100.197.114.2.s390x.rpm True kernel-vanilla-base-4.12.14-150100.197.114.2.s390x.rpm True kernel-vanilla-devel-4.12.14-150100.197.114.2.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.114.2.s390x.rpm True kernel-zfcpdump-4.12.14-150100.197.114.2.nosrc.rpm True kernel-zfcpdump-man-4.12.14-150100.197.114.2.s390x.rpm True kernel-debug-base-4.12.14-150100.197.114.2.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.114.2.ppc64le.rpm True kernel-vanilla-base-4.12.14-150100.197.114.2.ppc64le.rpm True kernel-vanilla-devel-4.12.14-150100.197.114.2.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.114.2.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.114.2.aarch64.rpm True kernel-vanilla-base-4.12.14-150100.197.114.2.aarch64.rpm True kernel-vanilla-devel-4.12.14-150100.197.114.2.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.114.2.aarch64.rpm True openSUSE-SLE-15.3-2022-2078 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-0168: Fixed a NULL pointer dereference in smb2_ioctl_query_info. (bsc#1197472) - CVE-2022-20008: Fixed bug that allows to read kernel heap memory due to uninitialized data in mmc_blk_read_single of block.c. (bnc#1199564) - CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019) - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2019-19377: Fixed an user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image. (bnc#1158266) - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). - CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577) - CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063). - CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP flag (bnc#1199505). - CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426). The following non-security bugs were fixed: - ACPI: property: Release subnode properties with data nodes (git-fixes). - ALSA: ctxfi: Add SB046x PCI ID (git-fixes). - ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes (git-fixes). - ALSA: hda - fix unused Realtek function when PM is not enabled (git-fixes). - ALSA: hda/realtek - Add new type for ALC245 (git-fixes). - ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop (git-fixes). - ALSA: hda/realtek: Enable headset mic on Lenovo P360 (git-fixes). - ALSA: pcm: Check for null pointer of pointer substream before dereferencing it (git-fixes). - ALSA: usb-audio: Add missing ep_idx in fixed EP quirks (git-fixes). - ALSA: usb-audio: Clear MIDI port active flag after draining (git-fixes). - ALSA: usb-audio: Configure sync endpoints before data (git-fixes). - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the constant (git-fixes). - ALSA: usb-audio: Restore Rane SL-1 quirk (git-fixes). - ALSA: wavefront: Proper check of get_user() error (git-fixes). - ARM: 9169/1: entry: fix Thumb2 bug in iWMMXt exception handling (git-fixes) - ARM: 9170/1: fix panic when kasan and kprobe are enabled (git-fixes) - ARM: 9187/1: JIVE: fix return value of __setup handler (git-fixes) - ARM: config: u8500: Re-enable AB8500 battery charging (git-fixes) - ARM: davinci: da850-evm: Avoid NULL pointer dereference (git-fixes) - ARM: dts: am3517-evm: Fix misc pinmuxing (git-fixes) - ARM: dts: armada-38x: Add generic compatible to UART nodes (git-fixes) - ARM: dts: at91: fix pinctrl phandles (git-fixes) - ARM: dts: at91: Map MCLK for wm8731 on at91sam9g20ek (git-fixes) - ARM: dts: at91: sama5d2: Fix PMERRLOC resource size (git-fixes) - ARM: dts: at91: sama5d4_xplained: fix pinctrl phandle name (git-fixes) - ARM: dts: bcm2835-rpi-b: Fix GPIO line names (git-fixes) - ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT (git-fixes) - ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED (git-fixes) - ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C (git-fixes) - ARM: dts: exynos: fix UART3 pins configuration in Exynos5250 (git-fixes) - ARM: dts: Fix OpenBMC flash layout label addresses (git-fixes) - ARM: dts: imx: Add missing LVDS decoder on M53Menlo (git-fixes) - ARM: dts: imx23-evk: Remove MX23_PAD_SSP1_DETECT from hog group (git-fixes) - ARM: dts: imx6qdl-apalis: Fix sgtl5000 detection issue (git-fixes) - ARM: dts: imx6qdl-udoo: Properly describe the SD card detect (git-fixes) - ARM: dts: imx6ull-colibri: fix vqmmc regulator (git-fixes) - ARM: dts: imx6ull-pinfunc: Fix CSI_DATA07__ESAI_TX0 pad name (git-fixes) - ARM: dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35 (git-fixes) - ARM: dts: meson: Fix the UART compatible strings (git-fixes) - ARM: dts: meson8: Fix the UART device-tree schema validation (git-fixes) - ARM: dts: meson8b: Fix the UART device-tree schema validation (git-fixes) - ARM: dts: qcom: ipq4019: fix sleep clock (git-fixes) - ARM: dts: qcom: msm8974: Drop flags for mdss irqs (git-fixes) - ARM: dts: suniv: F1C100: fix watchdog compatible (git-fixes) - ARM: ftrace: ensure that ADR takes the Thumb bit into account (git-fixes) - arm: mediatek: select arch timer for mt7629 (git-fixes) - ARM: omap: remove debug-leds driver (git-fixes) - ARM: OMAP2+: Fix refcount leak in omap_gic_of_init (git-fixes) - ARM: socfpga: dts: fix qspi node compatible (git-fixes) - ARM: socfpga: fix missing RESET_CONTROLLER (git-fixes) - ARM: tegra: Move panels to AUX bus (git-fixes) - arm64: dts: broadcom: Fix sata nodename (git-fixes) - arm64: dts: ns2: Fix spi-cpol and spi-cpha property (git-fixes) - arm64: dts: rockchip: Fix SDIO regulator supply properties on (git-fixes) - arm64: paravirt: Use RCU read locks to guard stolen_time (git-fixes). - arm64: pgtable: make __pte_to_phys/__phys_to_pte_val inline functions (git-fixes) - arm64/mm: avoid fixmap race condition when create pud mapping (git-fixes) - ASoC: atmel-classd: Remove endianness flag on class d component (git-fixes). - ASoC: atmel-pdmic: Remove endianness flag on pdmic component (git-fixes). - ASoC: da7219: Fix change notifications for tone generator frequency (git-fixes). - ASoC: dmaengine: Restore NULL prepare_slave_config() callback (git-fixes). - ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition (git-fixes). - ASoC: max98090: Generate notifications on changes for custom control (git-fixes). - ASoC: max98090: Move check for invalid values before casting in max98090_put_enab_tlv() (git-fixes). - ASoC: max98090: Reject invalid values in custom control put() (git-fixes). - ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe (git-fixes). - ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe (git-fixes). - ASoC: meson: Fix event generation for G12A tohdmi mux (git-fixes). - ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe (git-fixes). - ASoC: ops: Validate input values in snd_soc_put_volsw_range() (git-fixes). - ASoC: rk3328: fix disabling mclk on pclk probe failure (git-fixes). - ASoC: rt5514: Fix event generation for "DSP Voice Wake Up" control (git-fixes). - ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_* (git-fixes). - ASoC: wm2000: fix missing clk_disable_unprepare() on error in wm2000_anc_transition() (git-fixes). - ASoC: wm8958: Fix change notifications for DSP controls (git-fixes). - assoc_array: Fix BUG_ON during garbage collect (git-fixes). - ata: pata_hpt37x: fix PCI clock detection (git-fixes). - ata: pata_marvell: Check the 'bmdma_addr' beforing reading (git-fixes). - ath9k_htc: fix potential out of bounds access with invalid rxstatus->rs_keyix (git-fixes). - ath9k: fix ar9003_get_eepmisc (git-fixes). - batman-adv: Do not skb_split skbuffs with frag_list (git-fixes). - blk-cgroup: move blkcg_{get,set}_fc_appid out of line (bsc#1200045). - Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed (git-fixes). - Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout (git-fixes). - Bluetooth: Fix the creation of hdev->name (git-fixes). - Bluetooth: hci_qca: Use del_timer_sync() before freeing (git-fixes). - bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag (jsc#SLE-8371 bsc#1153274). - bnxt_en: Fix unnecessary dropping of RX packets (jsc#SLE-15075). - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the constant (git-fixes). - bus: sunxi-rsb: Fix the return value of sunxi_rsb_device_create() (git-fixes). - bus: ti-sysc: Fix warnings for unbind for serial (git-fixes). - can: grcan: grcan_close(): fix deadlock (git-fixes). - can: grcan: use ofdev->dev when allocating DMA memory (git-fixes). - carl9170: tx: fix an incorrect use of list iterator (git-fixes). - ceph: fix setting of xattrs on async created inodes (bsc#1200192). - cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp() (bsc#1199839). - clk: at91: generated: consider range when calculating best rate (git-fixes). - clk: bcm2835: fix bcm2835_clock_choose_div (git-fixes). - clk: imx8mp: fix usb_root_clk parent (git-fixes). - clk: renesas: r9a06g032: Fix the RTC hclock description (git-fixes). - clk: sunxi: sun9i-mmc: check return value after calling platform_get_resource() (git-fixes). - copy_process(): Move fd_install() out of sighand->siglock critical section (bsc#1199626). - crypto: caam - fix i.MX6SX entropy delay value (git-fixes). - crypto: ecrdsa - Fix incorrect use of vli_cmp (git-fixes). - crypto: stm32 - fix reference leak in stm32_crc_remove (git-fixes). - crypto: x86 - eliminate anonymous module_init and module_exit (git-fixes). - crypto: x86/chacha20 - Avoid spurious jumps to other functions (git-fixes). - dim: initialize all struct fields (git-fixes). - dmaengine: idxd: Fix the error handling path in idxd_cdev_register() (git-fixes). - dmaengine: stm32-mdma: remove GISR1 register (git-fixes). - docs: powerpc: Fix misspellings and grammar errors (bsc#1055117 ltc#159753). - docs: submitting-patches: Fix crossref to 'The canonical patch format' (git-fixes). - drbd: fix an invalid memory access caused by incorrect use of list iterator (git-fixes). - drbd: fix duplicate array initializer (git-fixes). - drbd: Fix five use after free bugs in get_initial_state (git-fixes). - drbd: remove assign_p_sizes_qlim (git-fixes). - drbd: use bdev based limit helpers in drbd_send_sizes (git-fixes). - drbd: use bdev_alignment_offset instead of queue_alignment_offset (git-fixes). - driver: core: fix deadlock in __device_attach (git-fixes). - driver: base: fix UAF when driver_attach failed (git-fixes). - drivers: base: cacheinfo: Get rid of DEFINE_SMP_CALL_CACHE_FUNCTION() (git-fixes) - drivers/base/memory: fix an unlikely reference counting issue in __add_memory_block() (git-fixes). - drivers/base/node.c: fix compaction sysfs file leak (git-fixes). - drm: mali-dp: potential dereference of null pointer (git-fixes). - drm: msm: fix possible memory leak in mdp5_crtc_cursor_set() (git-fixes). - drm: sti: do not use kernel-doc markers (git-fixes). - drm/amd/display/dc/gpio/gpio_service: Pass around correct dce_{version, environment} types (git-fixes). - drm/amdkfd: Fix GWS queue count (git-fixes). - drm/blend: fix typo in the comment (git-fixes). - drm/bridge: adv7511: clean up CEC adapter when probe fails (git-fixes). - drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX (git-fixes). - drm/bridge: Fix error handling in analogix_dp_probe (git-fixes). - drm/edid: fix invalid EDID extension block filtering (git-fixes). - drm/i915: Fix CFI violation with show_dynamic_id() (git-fixes). - drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses (git-fixes). - drm/komeda: Fix an undefined behavior bug in komeda_plane_add() (git-fixes). - drm/mediatek: Fix mtk_cec_mask() (git-fixes). - drm/msm: return an error pointer in msm_gem_prime_get_sg_table() (git-fixes). - drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init (git-fixes). - drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory free during pm runtime resume (git-fixes). - drm/msm/dpu: adjust display_v_end for eDP and DP (git-fixes). - drm/msm/dsi: fix error checks and return values for DSI xmit functions (git-fixes). - drm/msm/hdmi: check return value after calling platform_get_resource_byname() (git-fixes). - drm/msm/hdmi: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm/msm/mdp5: check the return of kzalloc() (git-fixes). - drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is detected (git-fixes). - drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is detected (git-fixes). - drm/nouveau: Fix a potential theorical leak in nouveau_get_backlight_name() (git-fixes). - drm/nouveau/clk: Fix an incorrect NULL check on list iterator (git-fixes). - drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator (git-fixes). - drm/nouveau/tegra: Stop using iommu_present() (git-fixes). - drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01 (git-fixes). - drm/rockchip: vop: fix possible null-ptr-deref in vop_bind() (git-fixes). - drm/vc4: hvs: Reset muxes at probe time (git-fixes). - drm/vc4: txp: Do not set TXP_VSTART_AT_EOF (git-fixes). - drm/vc4: txp: Force alpha to be 0xff if it's disabled (git-fixes). - drm/vmwgfx: Initialize drm_mode_fb_cmd2 (git-fixes). - EDAC/synopsys: Read the error count from the correct register (bsc#1178134). - firewire: core: extend card->lock in fw_core_handle_bus_reset (git-fixes). - firewire: fix potential uaf in outbound_phy_packet_callback() (git-fixes). - firewire: remove check of list iterator against head past the loop body (git-fixes). - firmware: arm_scmi: Fix list protocols enumeration in the base protocol (git-fixes). - firmware: arm_scmi: Validate BASE_DISCOVER_LIST_PROTOCOLS response (git-fixes). - firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle (git-fixes). - firmware: stratix10-svc: fix a missing check on list iterator (git-fixes). - genirq: Fix reference leaks on irq affinity notifiers (git-fixes) - genirq: Let GENERIC_IRQ_IPI select IRQ_DOMAIN_HIERARCHY (git-fixes) - genirq/affinity: Consider that CPUs on nodes can be (git-fixes) - genirq/affinity: Handle affinity setting on inactive (git-fixes) - genirq/msi: Ensure deactivation on teardown (git-fixes) - genirq/proc: Reject invalid affinity masks (again) (git-fixes) - genirq/timings: Fix error return code in (git-fixes) - genirq/timings: Prevent potential array overflow in (git-fixes) - gma500: fix an incorrect NULL check on list iterator (git-fixes). - gpio: adp5588: Remove support for platform setup and teardown callbacks (git-fixes). - gpio: gpio-vf610: do not touch other bits when set the target bit (git-fixes). - gpio: mvebu/pwm: Refuse requests with inverted polarity (git-fixes). - gpio: pca953x: fix irq_stat not updated when irq is disabled (irq_mask not set) (git-fixes). - gpio: pca953x: use the correct register address to do regcache sync (git-fixes). - gpiolib: of: fix bounds check for 'gpio-reserved-ranges' (git-fixes). - hex2bin: fix access beyond string end (git-fixes). - HID: elan: Fix potential double free in elan_input_configured (git-fixes). - HID: hid-led: fix maximum brightness for Dream Cheeky (git-fixes). - hinic: fix bug of wq out of bound access (bsc#1176447). - hwmon: (f71882fg) Fix negative temperature (git-fixes). - hwmon: (ltq-cputemp) restrict it to SOC_XWAY (git-fixes). - hwmon: (tmp401) Add OF device ID table (git-fixes). - i2c: at91: Initialize dma_buf in at91_twi_xfer() (git-fixes). - i2c: at91: use dma safe buffers (git-fixes). - i2c: mt7621: fix missing clk_disable_unprepare() on error in mtk_i2c_probe() (git-fixes). - i40e: stop disabling VFs due to PF error responses (git-fixes). - ice: arfs: fix use-after-free when freeing @rx_cpu_rmap (jsc#SLE-12878). - ice: Clear default forwarding VSI during VSI release (jsc#SLE-12878). - ice: Do not skip not enabled queues in ice_vc_dis_qs_msg (jsc#SLE-7926). - ice: Fix race conditions between virtchnl handling and VF ndo ops (git-fixes). - ice: synchronize_rcu() when terminating rings (jsc#SLE-7926). - iio: adc: ad7124: Remove shift from scan_type (git-fixes). - iio: adc: sc27xx: Fine tune the scale calibration values (git-fixes). - iio: adc: sc27xx: fix read big scale voltage not right (git-fixes). - iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check (git-fixes). - iio: dac: ad5446: Fix read_raw not returning set value (git-fixes). - iio: dac: ad5592r: Fix the missing return value (git-fixes). - iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on() (git-fixes). - Input: add bounds checking to input_set_capability() (git-fixes). - Input: ili210x - fix reset timing (git-fixes). - Input: sparcspkr - fix refcount leak in bbc_beep_probe (git-fixes). - Input: stmfts - do not leave device disabled in stmfts_input_open (git-fixes). - Input: stmfts - fix reference leak in stmfts_input_open (git-fixes). - iommu/amd: Increase timeout waiting for GA log enablement (bsc#1199052). - ionic: avoid races in ionic_heartbeat_check (bsc#1167773). - ionic: Cleanups in the Tx hotpath code (bsc#1167773). - ionic: disable napi when ionic_lif_init() fails (bsc#1167773). - ionic: Do not send reset commands if FW isn't running (bsc#1167773). - ionic: fix missing pci_release_regions() on error in ionic_probe() (bsc#1167773). - ionic: fix type complaint in ionic_dev_cmd_clean() (jsc#SLE-16649). - ionic: monitor fw status generation (bsc#1167773). - ionic: remove the dbid_inuse bitmap (bsc#1167773). - ionic: start watchdog after all is setup (bsc#1167773). - ivtv: fix incorrect device_caps for ivtvfb (git-fixes). - iwlwifi: iwl-dbg: Use del_timer_sync() before freeing (git-fixes). - iwlwifi: mvm: fix the return type for DSM functions 1 and 2 (git-fixes). - jbd2: Fake symbols defined under CONFIG_JBD2_DEBUG (bsc#1198971). - kABI: ivtv: restore caps member (git-fixes). - KVM: PPC: Fix TCE handling for VFIO (bsc#1061840 git-fixes). - KVM: VMX: Fix stale docs for kvm-intel.emulate_invalid_guest_state (git-fixes). - lan743x: fix rx_napi_poll/interrupt ping-pong (git-fixes). - lan743x: remove redundant assignment to variable rx_process_result (git-fixes). - lib/raid6/test: fix multiple definition linking error (git-fixes). - mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection (git-fixes). - mac80211: fix rx reordering with non explicit / psmp ack policy (git-fixes). - mac80211: Reset MBSSID parameters upon connection (git-fixes). - media: davinci: Make use of the helper function devm_platform_ioremap_resource() (git-fixes). - media: davinci: vpif: fix unbalanced runtime PM enable (git-fixes). - media: davinci: vpif: fix use-after-free on driver unbind (git-fixes). - media: media-entity.h: Fix documentation for media_create_intf_link (git-fixes). - media: ov7670: remove ov7670_power_off from ov7670_remove (git-fixes). - media: platform: add missing put_device() call in mtk_jpeg_probe() and mtk_jpeg_remove() (git-fixes). - media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init (git-fixes). - media: saa7134: fix incorrect use to determine if list is empty (git-fixes). - media: uvcvideo: Fix missing check to determine if element is found in list (git-fixes). - media: videobuf2: Fix the size printk format (git-fixes). - media: vim2m: Register video device after setting up internals (git-fixes). - mfd: ipaq-micro: Fix error check return value of platform_get_irq() (git-fixes). - misc: ocxl: fix possible double free in ocxl_file_register_afu (git-fixes). - mm, page_alloc: fix build_zonerefs_node() (git-fixes). - mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove() (jsc#SLE-15176, jsc#SLE-16387). - mmc: block: Use generic_cmd6_time when modifying INAND_CMD38_ARG_EXT_CSD (git-fixes). - mmc: core: Specify timeouts for BKOPS and CACHE_FLUSH for eMMC (git-fixes). - mt76: Fix undefined behavior due to shift overflowing the constant (git-fixes). - mt76: mt7663s: fix rx buffer refcounting (git-fixes). - mtd: rawnand: fix ecc parameters for mt7622 (git-fixes). - mtd: rawnand: Fix return value check of wait_for_completion_timeout (git-fixes). - mtd: spi-nor: core: Check written SR value in spi_nor_write_16bit_sr_and_check() (git-fixes). - net: bcmgenet: Fix a resource leak in an error handling path in the probe functin (git-fixes). - net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for internal PHYs (git-fixes). - net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access (git-fixes). - net: ethernet: Fix memleak in ethoc_probe (git-fixes). - net: ethernet: ti: cpts: fix ethtool output when no ptp_clock registered (git-fixes). - net: hdlc_ppp: Fix issues when mod_timer is called while timer is running (git-fixes). - net: hns3: add a check for index in hclge_get_rss_key() (git-fixes). - net: hns3: clear inited state and stop client after failed to register netdev (bsc#1154353). - net: hns3: fix bug when PF set the duplicate MAC address for VFs (jsc#SLE-14777). - net: hns3: fix kernel crash when unload VF while it is being reset (git-fixes). - net: korina: fix return value (git-fixes). - net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog (bsc#1183405). - net: stmmac: dwmac-sun8i: Balance internal PHY power (git-fixes). - net: stmmac: dwmac-sun8i: Balance internal PHY resource references (git-fixes). - net: stmmac: dwmac-sun8i: Balance syscon (de)initialization (git-fixes). - net: stmmac: dwmac-sun8i: Fix probe error handling (git-fixes). - net/mlx5: Fix a race on command flush flow (jsc#SLE-15172). - net/mlx5e: Fix the calling of update_buffer_lossy() API (jsc#SLE-15172). - netdevice: demote the type of some dev_addr_set() helpers (bsc#1200216). - netfilter: conntrack: connection timeout after re-register (bsc#1199035). - netfilter: conntrack: move synack init code to helper (bsc#1199035). - netfilter: conntrack: re-init state for retransmitted syn-ack (bsc#1199035). - netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (bsc#1199035). - netfilter: nf_conntrack_tcp: re-init for syn packets only (bsc#1199035). - netfilter: nft_set_rbtree: overlap detection with element re-addition after deletion (bsc#1176447). - NFC: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx (git-fixes). - NFC: nci: fix sleep in atomic context bugs caused by nci_skb_alloc (git-fixes). - NFC: netlink: fix sleep in atomic bug when firmware download timeout (git-fixes). - NFC: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs (git-fixes). - NFC: NULL out the dev->rfkill to prevent UAF (git-fixes). - NFS: limit use of ACCESS cache for negative responses (bsc#1196570). - NFS: Do not invalidate inode attributes on delegation return (git-fixes). - nl80211: show SSID for P2P_GO interfaces (git-fixes). - nvdimm/region: always show the 'align' attribute (bsc#1199114). - nvme-tcp: allow selecting the network interface for connections (bsc#1199670). - nvme-tcp: use __dev_get_by_name instead dev_get_by_name for OPT_HOST_IFACE (bsc#1199670). - objtool: Fix type of reloc::addend (git-fixes). - PCI: aardvark: Clear all MSIs at setup (git-fixes). - PCI: cadence: Fix find_first_zero_bit() limit (git-fixes). - PCI: Do not enable AtomicOps on VFs (git-fixes). - PCI: dwc: Fix setting error return on MSI DMA mapping failure (git-fixes). - PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (bsc#1199314). - PCI: imx6: Fix PERST# start-up sequence (git-fixes). - PCI: iproc: Set affinity mask on MSI interrupts (git-fixes). - PCI: qcom: Fix runtime PM imbalance on probe errors (git-fixes). - PCI: qcom: Fix unbalanced PHY init on probe errors (git-fixes). - PCI: rockchip: Fix find_first_zero_bit() limit (git-fixes). - PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits (git-fixes). - PCI/PM: Power up all devices during runtime resume (git-fixes). - phy: mapphone-mdm6600: Fix PM error handling in phy_mdm6600_probe (git-fixes). - phy: qcom-qmp: fix pipe-clock imbalance on power-on failure (git-fixes). - phy: qcom-qmp: fix reset-controller leak on probe errors (git-fixes). - phy: qcom-qmp: fix struct clk leak on probe errors (git-fixes). - phy: samsung: exynos5250-sata: fix missing device put in probe error paths (git-fixes). - phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe (git-fixes). - phy: ti: Add missing pm_runtime_disable() in serdes_am654_probe (git-fixes). - phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks (git-fixes). - pinctrl: mvebu: Fix irq_of_parse_and_map() return value (git-fixes). - pinctrl: pistachio: fix use of irq_of_parse_and_map() (git-fixes). - pinctrl: rockchip: fix RK3308 pinmux bits (git-fixes). - pinctrl/rockchip: support deferring other gpio params (git-fixes). - ping: fix the sk_bound_dev_if match in ping_lookup (bsc#1195826). - ping: remove pr_err from ping_lookup (bsc#1195826). - platform/chrome: cros_ec_debugfs: detach log reader wq from devm (git-fixes). - platform/x86: samsung-laptop: Fix an unsigned comparison which can never be negative (git-fixes). - powerpc: Enable the DAWR on POWER9 DD2.3 and above (bsc#1055117 ltc#159753). - powerpc/64s: Add CPU_FTRS_POWER10 to ALWAYS mask (jsc#SLE-13521 git-fixes). - powerpc/64s: Add CPU_FTRS_POWER9_DD2_2 to CPU_FTRS_ALWAYS mask (bsc#1061840 git-fixes). - powerpc/64s/radix: Fix huge vmap false positive (bsc#1156395). - powerpc/fadump: fix PT_LOAD segment for boot memory area (bsc#1103269 ltc#169948 git-fixes). - powerpc/powernv: Add __init attribute to eligible functions (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Get L1D flush requirements from device-tree (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Get STF barrier requirements from device-tree (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Remove POWER9 PVR version check for entry and uaccess flushes (bsc#1188885 ltc#193722 git-fixes). - powerpc/xive: Add some error handling code to 'xive_spapr_init()' (git-fixes). - powerpc/xive: Fix refcount leak in xive_spapr_init (git-fixes). - pwm: lp3943: Fix duty calculation in case period was clamped (git-fixes). - pwm: raspberrypi-poe: Fix endianness in firmware struct (git-fixes). - qlcnic: Fix error code in probe (git-fixes). - regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET (git-fixes). - regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt (git-fixes). - reset: tegra-bpmp: Restore Handle errors in BPMP response (git-fixes). - revert scsi: qla2xxx: Changes to support FCP2 Target (bsc#1198438). - rtc: fix use-after-free on device removal (git-fixes). - rtc: mc146818-lib: Fix the AltCentury for AMD platforms (git-fixes). - rtc: mt6397: check return value after calling platform_get_resource() (git-fixes). - sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl (git-fixes). - sata_fsl: fix warning in remove_proc_entry when rmmod sata_fsl (git-fixes). - sched/pelt: Fix attach_entity_load_avg() corner case (git-fixes) - sched/topology: Skip updating masks for non-online nodes (bsc#1197446 ltc#183000). - scsi: dc395x: Fix a missing check on list iterator (git-fixes). - scsi: fnic: Fix a tracing statement (git-fixes). - scsi: fnic: Replace DMA mask of 64 bits with 47 bits (bsc#1199631). - scsi: hisi_sas: Change permission of parameter prot_mask (git-fixes). - scsi: lpfc: Alter FPIN stat accounting logic (bsc#1200045). - scsi: lpfc: Change FA-PWWN detection methodology (bsc#1200045). - scsi: lpfc: Change VMID registration to be based on fabric parameters (bsc#1200045). - scsi: lpfc: Clear fabric topology flag before initiating a new FLOGI (bsc#1200045). - scsi: lpfc: Copyright updates for 14.2.0.2 patches (bsc#1200045). - scsi: lpfc: Correct BDE DMA address assignment for GEN_REQ_WQE (bsc#1200045 bsc#1198989 bsc#1197675). - scsi: lpfc: Correct CRC32 calculation for congestion stats (bsc#1200045). - scsi: lpfc: Decrement outstanding gidft_inp counter if lpfc_err_lost_link() (bsc#1200045). - scsi: lpfc: Expand setting ELS_ID field in ELS_REQUEST64_WQE (bsc#1200045). - scsi: lpfc: Fill in missing ndlp kref puts in error paths (bsc#1200045). - scsi: lpfc: Fix additional reference counting in lpfc_bsg_rport_els() (bsc#1200045). - scsi: lpfc: Fix call trace observed during I/O with CMF enabled (bsc#1200045). - scsi: lpfc: Fix diagnostic fw logging after a function reset (bsc#1200045). - scsi: lpfc: Fix dmabuf ptr assignment in lpfc_ct_reject_event() (bsc#1200045). - scsi: lpfc: Fix element offset in __lpfc_sli_release_iocbq_s4() (bsc#1200045). - scsi: lpfc: Fix field overload in lpfc_iocbq data structure (bsc#1200045). - scsi: lpfc: Fix ndlp put following a LOGO completion (bsc#1200045). - scsi: lpfc: Fix null pointer dereference after failing to issue FLOGI and PLOGI (bsc#1200045). - scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp() (bsc#1200045). - scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock (bsc#1200045). - scsi: lpfc: Fix split code for FLOGI on FCoE (bsc#1200045 bsc#1198989 bsc#1197675). - scsi: lpfc: Inhibit aborts if external loopback plug is inserted (bsc#1200045). - scsi: lpfc: Introduce FC_RSCN_MEMENTO flag for tracking post RSCN completion (bsc#1200045). - scsi: lpfc: Move cfg_log_verbose check before calling lpfc_dmp_dbg() (bsc#1200045). - scsi: lpfc: Move MI module parameter check to handle dynamic disable (bsc#1200045). - scsi: lpfc: Protect memory leak for NPIV ports sending PLOGI_RJT (bsc#1200045). - scsi: lpfc: Refactor cleanup of mailbox commands (bsc#1200045). - scsi: lpfc: Register for Application Services FC-4 type in Fabric topology (bsc#1200045). - scsi: lpfc: Remove false FDMI NVMe FC-4 support for NPIV ports (bsc#1200045). - scsi: lpfc: Remove redundant lpfc_sli_prep_wqe() call (bsc#1200045). - scsi: lpfc: Remove unnecessary null ndlp check in lpfc_sli_prep_wqe() (bsc#1200045). - scsi: lpfc: Remove unnecessary NULL pointer assignment for ELS_RDF path (bsc#1200045). - scsi: lpfc: Remove unneeded variable (bsc#1200045). - scsi: lpfc: Requeue SCSI I/O to upper layer when fw reports link down (bsc#1200045). - scsi: lpfc: Revise FDMI reporting of supported port speed for trunk groups (bsc#1200045). - scsi: lpfc: Rework FDMI initialization after link up (bsc#1200045). - scsi: lpfc: Transition to NPR state upon LOGO cmpl if link down or aborted (bsc#1200045). - scsi: lpfc: Tweak message log categories for ELS/FDMI/NVMe rescan (bsc#1200045). - scsi: lpfc: Update fc_prli_sent outstanding only after guaranteed IOCB submit (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.2 (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.3 (bsc#1200045). - scsi: lpfc: Update stat accounting for READ_STATUS mbox command (bsc#1200045). - scsi: lpfc: Use list_for_each_entry_safe() in rscn_recovery_check() (bsc#1200045). - scsi: lpfc: Use sg_dma_address() and sg_dma_len() macros for NVMe I/O (bsc#1200045). - scsi: lpfc: Zero SLI4 fcp_cmnd buffer's fcpCntl0 field (bsc#1200045). - scsi: pm8001: Fix abort all task initialization (git-fixes). - scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req() (git-fixes). - scsi: pm8001: Fix command initialization in pm80XX_send_read_log() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_set_sas_protocol_timer_config() (git-fixes). - scsi: pm8001: Fix NCQ NON DATA command completion handling (git-fixes). - scsi: pm8001: Fix NCQ NON DATA command task initialization (git-fixes). - scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update() (git-fixes). - scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config() (git-fixes). - scsi: pm80xx: Enable upper inbound, outbound queues (git-fixes). - scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63 (git-fixes). - scsi: qla2xxx: edif: Remove unneeded variable (bsc#1200046). - scsi: qla2xxx: Fix missed DMA unmap for aborted commands (bsc#1200046). - scsi: qla2xxx: Remove free_sg command flag (bsc#1200046). - scsi: qla2xxx: Remove unneeded flush_workqueue() (bsc#1200046). - scsi: sr: Do not leak information in ioctl (git-fixes). - scsi: ufs: core: Exclude UECxx from SFR dump list (git-fixes). - scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled (git-fixes). - scsi: ufs: qcom: Fix ufs_qcom_resume() (git-fixes). - scsi: virtio-scsi: Eliminate anonymous module_init & module_exit (git-fixes). - scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() (git-fixes). - selftests: firmware: Use smaller dictionary for XZ compression (git-fixes). - serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485 (git-fixes). - serial: 8250_mtk: Fix register address for XON/XOFF character (git-fixes). - serial: 8250_mtk: Fix UART_EFR register address (git-fixes). - serial: 8250: Also set sticky MCR bits in console restoration (git-fixes). - serial: 8250: core: Remove unneeded &lt;linux/pm_runtime.h> (git-fixes). - serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device (git-fixes). - serial: 8250: pxa: Remove unneeded &lt;linux/pm_runtime.h> (git-fixes). - serial: digicolor-usart: Do not allow CS5-6 (git-fixes). - serial: imx: fix overrun interrupts in DMA mode (git-fixes). - serial: meson: acquire port->lock in startup() (git-fixes). - serial: pch: do not overwrite xmit->buf[0] by x_char (git-fixes). - serial: rda-uart: Do not allow CS5-6 (git-fixes). - serial: sh-sci: Do not allow CS5-6 (git-fixes). - serial: sifive: Sanitize CSIZE and c_iflag (git-fixes). - serial: st-asc: Sanitize CSIZE and correct PARENB for CS7 (git-fixes). - serial: stm32-usart: Correct CSIZE, bits, and parity (git-fixes). - serial: txx9: Do not allow CS5-6 (git-fixes). - slimbus: qcom: Fix IRQ check in qcom_slim_probe (git-fixes). - smp: Fix offline cpu check in flush_smp_call_function_queue() (git-fixes). - smsc911x: allow using IRQ0 (git-fixes). - soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc (git-fixes). - soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc (git-fixes). - soc: rockchip: Fix refcount leak in rockchip_grf_init (git-fixes). - spi: img-spfi: Fix pm_runtime_get_sync() error checking (git-fixes). - spi: spi-cadence: Fix kernel-doc format for resume/suspend (git-fixes). - spi: spi-fsl-qspi: check return value after calling platform_get_resource_byname() (git-fixes). - spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout (git-fixes). - staging: fieldbus: Fix the error handling path in anybuss_host_common_probe() (git-fixes). - SUNRPC: Ensure gss-proxy connects on setup (git-fixes). - SUNRPC: Ensure that the gssproxy client can start in a connected state (git-fixes). - thermal: int340x: Fix attr.show callback prototype (git-fixes). - thermal/drivers/bcm2711: Do not clamp temperature at zero (git-fixes). - thermal/drivers/broadcom: Fix potential NULL dereference in sr_thermal_probe (git-fixes). - timekeeping: Really make sure wall_to_monotonic isn't (git-fixes) - timers: Fix warning condition in __run_timers() (git-fixes) - tpm: Fix buffer access in tpm2_get_tpm_pt() (git-fixes). - tpm: ibmvtpm: Correct the return value in tpm_ibmvtpm_probe() (bsc#1065729). - tracing: Fix potential double free in create_var_ref() (git-fixes). - tracing: Fix return value of trace_pid_write() (git-fixes). - tty: fix deadlock caused by calling printk() under tty_port->lock (git-fixes). - tty: goldfish: Use tty_port_destroy() to destroy port (git-fixes). - tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id and ida_simple_get (git-fixes). - tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe (git-fixes). - tty/serial: digicolor: fix possible null-ptr-deref in digicolor_uart_probe() (git-fixes). - usb: cdc-wdm: fix reading stuck on device close (git-fixes). - usb: dwc3: pci: Fix pm_runtime_get_sync() error checking (git-fixes). - usb: ehci-omap: drop unused ehci_read() function (git-fixes). - usb: gadget: configfs: clear deactivation flag in configfs_composite_unbind() (git-fixes). - usb: misc: fix improper handling of refcount in uss720_probe() (git-fixes). - usb: mtu3: fix USB 3.0 dual-role-switch from device to host (git-fixes). - usb: musb: Fix missing of_node_put() in omap2430_probe (git-fixes). - usb: quirks: add a Realtek card reader (git-fixes). - usb: quirks: add STRING quirk for VCOM device (git-fixes). - usb: serial: cp210x: add PIDs for Kamstrup USB Meter Reader (git-fixes). - usb: serial: option: add Fibocom L610 modem (git-fixes). - usb: serial: option: add Fibocom MA510 modem (git-fixes). - usb: serial: option: add support for Cinterion MV32-WA/MV32-WB (git-fixes). - usb: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions (git-fixes). - usb: serial: pl2303: add device id for HP LM930 Display (git-fixes). - usb: serial: qcserial: add support for Sierra Wireless EM7590 (git-fixes). - usb: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS (git-fixes). - usb: storage: karma: fix rio_karma_init return (git-fixes). - usb: typec: mux: Check dev_set_name() return value (git-fixes). - usb: typec: tcpci: Do not skip cleanup in .remove() on error (git-fixes). - usb: typec: ucsi: Fix reuse of completion structure (git-fixes). - usb: typec: ucsi: Fix role swapping (git-fixes). - usb: usbip: add missing device lock on tweak configuration cmd (git-fixes). - usb: usbip: fix a refcount leak in stub_probe() (git-fixes). - video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup (git-fixes). - watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe (git-fixes). - wifi: mac80211: fix use-after-free in chanctx code (git-fixes). - wireguard: device: check for metadata_dst with skb_valid_dst() (git-fixes). - xhci: increase usb U3 -> U0 link resume timeout from 100ms to 500ms (git-fixes). - xhci: stop polling roothubs after shutdown (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.71.2.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.71.2.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.71.2.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True kernel-debug-5.3.18-150300.59.71.2.nosrc.rpm True kernel-debug-5.3.18-150300.59.71.2.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.71.2.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.71.2.x86_64.rpm True kernel-default-5.3.18-150300.59.71.2.nosrc.rpm True kernel-default-5.3.18-150300.59.71.2.x86_64.rpm True kernel-default-base-5.3.18-150300.59.71.2.150300.18.43.2.src.rpm True kernel-default-base-5.3.18-150300.59.71.2.150300.18.43.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.71.2.150300.18.43.2.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.71.2.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.71.2.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.71.2.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.71.2.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.71.2.x86_64.rpm True kernel-devel-5.3.18-150300.59.71.2.noarch.rpm True kernel-docs-5.3.18-150300.59.71.2.noarch.rpm True kernel-docs-5.3.18-150300.59.71.2.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.71.2.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.71.2.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.71.2.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.71.2.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.71.2.x86_64.rpm True kernel-macros-5.3.18-150300.59.71.2.noarch.rpm True kernel-obs-build-5.3.18-150300.59.71.2.src.rpm True kernel-obs-build-5.3.18-150300.59.71.2.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.71.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.71.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.71.2.nosrc.rpm True kernel-preempt-5.3.18-150300.59.71.2.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.71.2.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.71.2.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.71.2.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.71.2.x86_64.rpm True kernel-source-5.3.18-150300.59.71.2.noarch.rpm True kernel-source-5.3.18-150300.59.71.2.src.rpm True kernel-source-vanilla-5.3.18-150300.59.71.2.noarch.rpm True kernel-syms-5.3.18-150300.59.71.1.src.rpm True kernel-syms-5.3.18-150300.59.71.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.71.2.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.71.2.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.71.2.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.71.2.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.71.2.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.71.2.s390x.rpm True kernel-default-5.3.18-150300.59.71.2.s390x.rpm True kernel-default-base-5.3.18-150300.59.71.2.150300.18.43.2.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.71.2.150300.18.43.2.s390x.rpm True kernel-default-devel-5.3.18-150300.59.71.2.s390x.rpm True kernel-default-extra-5.3.18-150300.59.71.2.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.71.2.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.71.2.s390x.rpm True kernel-default-optional-5.3.18-150300.59.71.2.s390x.rpm True kernel-obs-build-5.3.18-150300.59.71.2.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.71.1.s390x.rpm True kernel-syms-5.3.18-150300.59.71.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.71.2.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.71.2.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.71.2.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.71.2.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.71.2.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.71.2.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.71.2.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-debug-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-default-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.71.2.150300.18.43.2.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.71.2.150300.18.43.2.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.71.2.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.71.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.71.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.71.2.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.71.2.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.71.2.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.71.2.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.71.2.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.71.2.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.71.2.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.71.1.src.rpm True dtb-al-5.3.18-150300.59.71.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.71.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.71.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.71.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.71.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.71.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.71.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.71.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.71.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.71.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.71.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.71.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.71.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.71.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.71.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.71.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.71.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.71.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.71.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.71.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.71.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.71.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.71.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.71.2.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.71.2.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True kernel-64kb-5.3.18-150300.59.71.2.aarch64.rpm True kernel-64kb-5.3.18-150300.59.71.2.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.71.2.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.71.2.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.71.2.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.71.2.aarch64.rpm True kernel-default-5.3.18-150300.59.71.2.aarch64.rpm True kernel-default-base-5.3.18-150300.59.71.2.150300.18.43.2.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.71.2.150300.18.43.2.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.71.2.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.71.2.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.71.2.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.71.2.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.71.2.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.71.2.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.71.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.71.2.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.71.2.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.71.2.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.71.2.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.71.2.aarch64.rpm True kernel-syms-5.3.18-150300.59.71.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.71.2.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.71.2.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.71.2.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.71.2.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.71.2.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.71.2.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True openSUSE-SLE-15.3-2022-2638 moderate SUSE Updates openSUSE-SLE 15.3 This update for mokutil fixes the following issues: - Adds SBAT revocation support to mokutil. (bsc#1198458) New options added (see manpage): - mokutil --sbat List all entries in SBAT. - mokutil --set-sbat-policy (latest | previous | delete) To set the SBAT acceptance policy. - mokutil --list-sbat-revocations To list the current SBAT revocations. mokutil-0.4.0-150200.4.6.1.src.rpm mokutil-0.4.0-150200.4.6.1.x86_64.rpm mokutil-0.4.0-150200.4.6.1.ppc64le.rpm mokutil-0.4.0-150200.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2184 important SUSE Updates openSUSE-SLE 15.3 This update for liblouis fixes the following issues: - CVE-2022-26981: fix buffer overrun in compilePassOpcode (bsc#1197085). - CVE-2022-31783: prevent an invalid memory write in compileRule (bsc#1200120). liblouis-3.11.0-150200.3.3.1.src.rpm liblouis-data-3.11.0-150200.3.3.1.noarch.rpm liblouis-devel-3.11.0-150200.3.3.1.x86_64.rpm liblouis-doc-3.11.0-150200.3.3.1.x86_64.rpm liblouis-tools-3.11.0-150200.3.3.1.x86_64.rpm liblouis19-3.11.0-150200.3.3.1.x86_64.rpm python3-louis-3.11.0-150200.3.3.1.x86_64.rpm liblouis-devel-3.11.0-150200.3.3.1.s390x.rpm liblouis-doc-3.11.0-150200.3.3.1.s390x.rpm liblouis-tools-3.11.0-150200.3.3.1.s390x.rpm liblouis19-3.11.0-150200.3.3.1.s390x.rpm python3-louis-3.11.0-150200.3.3.1.s390x.rpm liblouis-devel-3.11.0-150200.3.3.1.ppc64le.rpm liblouis-doc-3.11.0-150200.3.3.1.ppc64le.rpm liblouis-tools-3.11.0-150200.3.3.1.ppc64le.rpm liblouis19-3.11.0-150200.3.3.1.ppc64le.rpm python3-louis-3.11.0-150200.3.3.1.ppc64le.rpm liblouis-devel-3.11.0-150200.3.3.1.aarch64.rpm liblouis-doc-3.11.0-150200.3.3.1.aarch64.rpm liblouis-tools-3.11.0-150200.3.3.1.aarch64.rpm liblouis19-3.11.0-150200.3.3.1.aarch64.rpm python3-louis-3.11.0-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2252 important SUSE Updates openSUSE-SLE 15.3 This update for liblouis fixes the following issues: - CVE-2022-26981: fix buffer overrun in compilePassOpcode (bsc#1197085). - CVE-2022-31783: prevent an invalid memory write in compileRule (bsc#1200120). liblouis-3.3.0-150000.4.8.1.src.rpm liblouis14-3.3.0-150000.4.8.1.x86_64.rpm liblouis14-3.3.0-150000.4.8.1.s390x.rpm liblouis14-3.3.0-150000.4.8.1.ppc64le.rpm liblouis14-3.3.0-150000.4.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-2079 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019) - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). - CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577) - CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063). - CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP flag (bnc#1199505). - CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426). - CVE-2019-19377: Fixed an user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image. (bnc#1158266) - CVE-2022-20008: Fixed bug that allows to read kernel heap memory due to uninitialized data in mmc_blk_read_single of block.c. (bnc#1199564) - CVE-2022-0168: Fixed a NULL pointer dereference in smb2_ioctl_query_info. (bsc#1197472) - CVE-2022-24448: Fixed an issue if an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should have occured, but the server instead returned uninitialized data in the file descriptor (bsc#1195612). The following non-security bugs were fixed: - ACPI: property: Release subnode properties with data nodes (git-fixes). - ALSA: ctxfi: Add SB046x PCI ID (git-fixes). - ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes (git-fixes). - ALSA: hda - fix unused Realtek function when PM is not enabled (git-fixes). - ALSA: hda/realtek - Add new type for ALC245 (git-fixes). - ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop (git-fixes). - ALSA: hda/realtek: Enable headset mic on Lenovo P360 (git-fixes). - ALSA: pcm: Check for null pointer of pointer substream before dereferencing it (git-fixes). - ALSA: usb-audio: Add missing ep_idx in fixed EP quirks (git-fixes). - ALSA: usb-audio: Clear MIDI port active flag after draining (git-fixes). - ALSA: usb-audio: Configure sync endpoints before data (git-fixes). - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the constant (git-fixes). - ALSA: usb-audio: Restore Rane SL-1 quirk (git-fixes). - ALSA: wavefront: Proper check of get_user() error (git-fixes). - ARM: 9169/1: entry: fix Thumb2 bug in iWMMXt exception handling (git-fixes) - ARM: 9170/1: fix panic when kasan and kprobe are enabled (git-fixes) - ARM: 9187/1: JIVE: fix return value of __setup handler (git-fixes) - ARM: config: u8500: Re-enable AB8500 battery charging (git-fixes) - ARM: davinci: da850-evm: Avoid NULL pointer dereference (git-fixes) - ARM: dts: am3517-evm: Fix misc pinmuxing (git-fixes) - ARM: dts: armada-38x: Add generic compatible to UART nodes (git-fixes) - ARM: dts: at91: fix pinctrl phandles (git-fixes) - ARM: dts: at91: Map MCLK for wm8731 on at91sam9g20ek (git-fixes) - ARM: dts: at91: sama5d2: Fix PMERRLOC resource size (git-fixes) - ARM: dts: at91: sama5d4_xplained: fix pinctrl phandle name (git-fixes) - ARM: dts: bcm2835-rpi-b: Fix GPIO line names (git-fixes) - ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT (git-fixes) - ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED (git-fixes) - ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C (git-fixes) - ARM: dts: exynos: fix UART3 pins configuration in Exynos5250 (git-fixes) - ARM: dts: Fix OpenBMC flash layout label addresses (git-fixes) - ARM: dts: imx: Add missing LVDS decoder on M53Menlo (git-fixes) - ARM: dts: imx23-evk: Remove MX23_PAD_SSP1_DETECT from hog group (git-fixes) - ARM: dts: imx6qdl-apalis: Fix sgtl5000 detection issue (git-fixes) - ARM: dts: imx6qdl-udoo: Properly describe the SD card detect (git-fixes) - ARM: dts: imx6ull-colibri: fix vqmmc regulator (git-fixes) - ARM: dts: imx6ull-pinfunc: Fix CSI_DATA07__ESAI_TX0 pad name (git-fixes) - ARM: dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35 (git-fixes) - ARM: dts: meson: Fix the UART compatible strings (git-fixes) - ARM: dts: meson8: Fix the UART device-tree schema validation (git-fixes) - ARM: dts: meson8b: Fix the UART device-tree schema validation (git-fixes) - ARM: dts: qcom: ipq4019: fix sleep clock (git-fixes) - ARM: dts: qcom: msm8974: Drop flags for mdss irqs (git-fixes) - ARM: dts: suniv: F1C100: fix watchdog compatible (git-fixes) - ARM: ftrace: ensure that ADR takes the Thumb bit into account (git-fixes) - ARM: mediatek: select arch timer for mt7629 (git-fixes) - ARM: omap: remove debug-leds driver (git-fixes) - ARM: OMAP2+: Fix refcount leak in omap_gic_of_init (git-fixes) - ARM: socfpga: dts: fix qspi node compatible (git-fixes) - ARM: socfpga: fix missing RESET_CONTROLLER (git-fixes) - ARM: tegra: Move panels to AUX bus (git-fixes) - arm64: dts: broadcom: Fix sata nodename (git-fixes) - arm64: dts: ns2: Fix spi-cpol and spi-cpha property (git-fixes) - arm64: dts: rockchip: Fix SDIO regulator supply properties on (git-fixes) - arm64: paravirt: Use RCU read locks to guard stolen_time (git-fixes). - arm64: pgtable: make __pte_to_phys/__phys_to_pte_val inline functions (git-fixes) - arm64/mm: avoid fixmap race condition when create pud mapping (git-fixes) - ASoC: atmel-classd: Remove endianness flag on class d component (git-fixes). - ASoC: atmel-pdmic: Remove endianness flag on pdmic component (git-fixes). - ASoC: da7219: Fix change notifications for tone generator frequency (git-fixes). - ASoC: dmaengine: Restore NULL prepare_slave_config() callback (git-fixes). - ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition (git-fixes). - ASoC: max98090: Generate notifications on changes for custom control (git-fixes). - ASoC: max98090: Move check for invalid values before casting in max98090_put_enab_tlv() (git-fixes). - ASoC: max98090: Reject invalid values in custom control put() (git-fixes). - ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe (git-fixes). - ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe (git-fixes). - ASoC: meson: Fix event generation for G12A tohdmi mux (git-fixes). - ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe (git-fixes). - ASoC: ops: Validate input values in snd_soc_put_volsw_range() (git-fixes). - ASoC: rk3328: fix disabling mclk on pclk probe failure (git-fixes). - ASoC: rt5514: Fix event generation for "DSP Voice Wake Up" control (git-fixes). - ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_* (git-fixes). - ASoC: wm2000: fix missing clk_disable_unprepare() on error in wm2000_anc_transition() (git-fixes). - ASoC: wm8958: Fix change notifications for DSP controls (git-fixes). - assoc_array: Fix BUG_ON during garbage collect (git-fixes). - ata: pata_hpt37x: fix PCI clock detection (git-fixes). - ata: pata_marvell: Check the 'bmdma_addr' beforing reading (git-fixes). - ath9k_htc: fix potential out of bounds access with invalid rxstatus->rs_keyix (git-fixes). - ath9k: fix ar9003_get_eepmisc (git-fixes). - backlight: qcom-wled: Respect enabled-strings in set_brightness (bsc#1152489) - batman-adv: Do not skb_split skbuffs with frag_list (git-fixes). - blk-cgroup: move blkcg_{get,set}_fc_appid out of line (bsc#1200045). - Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed (git-fixes). - Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout (git-fixes). - Bluetooth: Fix the creation of hdev->name (git-fixes). - Bluetooth: hci_qca: Use del_timer_sync() before freeing (git-fixes). - bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag (jsc#SLE-8371 bsc#1153274). - bnxt_en: Fix unnecessary dropping of RX packets (jsc#SLE-15075). - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the constant (git-fixes). - bus: sunxi-rsb: Fix the return value of sunxi_rsb_device_create() (git-fixes). - bus: ti-sysc: Fix warnings for unbind for serial (git-fixes). - can: grcan: grcan_close(): fix deadlock (git-fixes). - can: grcan: use ofdev->dev when allocating DMA memory (git-fixes). - carl9170: tx: fix an incorrect use of list iterator (git-fixes). - ceph: fix setting of xattrs on async created inodes (bsc#1200192). - cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp() (bsc#1199839). - clk: at91: generated: consider range when calculating best rate (git-fixes). - clk: bcm2835: fix bcm2835_clock_choose_div (git-fixes). - clk: imx8mp: fix usb_root_clk parent (git-fixes). - clk: renesas: r9a06g032: Fix the RTC hclock description (git-fixes). - clk: sunxi: sun9i-mmc: check return value after calling platform_get_resource() (git-fixes). - copy_process(): Move fd_install() out of sighand->siglock critical section (bsc#1199626). - crypto: caam - fix i.MX6SX entropy delay value (git-fixes). - crypto: ecrdsa - Fix incorrect use of vli_cmp (git-fixes). - crypto: stm32 - fix reference leak in stm32_crc_remove (git-fixes). - crypto: x86 - eliminate anonymous module_init & module_exit (git-fixes). - crypto: x86/chacha20 - Avoid spurious jumps to other functions (git-fixes). - dim: initialize all struct fields (git-fixes). - dmaengine: idxd: Fix the error handling path in idxd_cdev_register() (git-fixes). - dmaengine: stm32-mdma: remove GISR1 register (git-fixes). - docs: powerpc: Fix misspellings and grammar errors (bsc#1055117 ltc#159753). - docs: submitting-patches: Fix crossref to 'The canonical patch format' (git-fixes). - drbd: fix an invalid memory access caused by incorrect use of list iterator (git-fixes). - drbd: fix duplicate array initializer (git-fixes). - drbd: Fix five use after free bugs in get_initial_state (git-fixes). - drbd: remove assign_p_sizes_qlim (git-fixes). - drbd: use bdev based limit helpers in drbd_send_sizes (git-fixes). - drbd: use bdev_alignment_offset instead of queue_alignment_offset (git-fixes). - driver core: fix deadlock in __device_attach (git-fixes). - driver: base: fix UAF when driver_attach failed (git-fixes). - drivers: base: cacheinfo: Get rid of DEFINE_SMP_CALL_CACHE_FUNCTION() (git-fixes) - drivers/base/memory: fix an unlikely reference counting issue in __add_memory_block() (git-fixes). - drivers/base/node.c: fix compaction sysfs file leak (git-fixes). - drm: mali-dp: potential dereference of null pointer (git-fixes). - drm: msm: fix possible memory leak in mdp5_crtc_cursor_set() (git-fixes). - drm: sti: do not use kernel-doc markers (git-fixes). - drm/amd/display: Fix memory leak in dcn21_clock_source_create (bsc#1152472) - drm/amd/display/dc/gpio/gpio_service: Pass around correct dce_{version, environment} types (git-fixes). - drm/amdgpu: fix amdgpu_ras_block_late_init error handler (bsc#1152489) - drm/amdkfd: Fix GWS queue count (git-fixes). - drm/blend: fix typo in the comment (git-fixes). - drm/bridge: adv7511: clean up CEC adapter when probe fails (git-fixes). - drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX (git-fixes). - drm/bridge: Fix error handling in analogix_dp_probe (git-fixes). - drm/cma-helper: Set VM_DONTEXPAND for mmap (bsc#1152472) - drm/edid: fix invalid EDID extension block filtering (git-fixes). - drm/fb-helper: Mark screen buffers in system memory with (bsc#1152472) - drm/i915: Drop all references to DRM IRQ midlayer (bsc#1152489) - drm/i915: Fix CFI violation with show_dynamic_id() (git-fixes). - drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses (git-fixes). - drm/i915: Keep gem ctx->vm alive until the final put (bsc#1152489) - drm/i915: s/JSP2/ICP2/ PCH (bsc#1152489) - drm/komeda: Fix an undefined behavior bug in komeda_plane_add() (git-fixes). - drm/mediatek: Fix mtk_cec_mask() (git-fixes). - drm/msm: return an error pointer in msm_gem_prime_get_sg_table() (git-fixes). - drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init (git-fixes). - drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory free during pm runtime resume (git-fixes). - drm/msm/dpu: adjust display_v_end for eDP and DP (git-fixes). - drm/msm/dsi: fix error checks and return values for DSI xmit functions (git-fixes). - drm/msm/hdmi: check return value after calling platform_get_resource_byname() (git-fixes). - drm/msm/hdmi: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm/msm/mdp5: check the return of kzalloc() (git-fixes). - drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is detected (git-fixes). - drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is detected (git-fixes). - drm/nouveau: Fix a potential theorical leak in nouveau_get_backlight_name() (git-fixes). - drm/nouveau/clk: Fix an incorrect NULL check on list iterator (git-fixes). - drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator (git-fixes). - drm/nouveau/tegra: Stop using iommu_present() (git-fixes). - drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01 (git-fixes). - drm/prime: Fix use after free in mmap with drm_gem_ttm_mmap (bsc#1152472) - drm/rockchip: vop: fix possible null-ptr-deref in vop_bind() (git-fixes). - drm/vc4: crtc: Lookup the encoder from the register at boot (bsc#1198534) - drm/vc4: hvs: Reset muxes at probe time (git-fixes). - drm/vc4: txp: Do not set TXP_VSTART_AT_EOF (git-fixes). - drm/vc4: txp: Force alpha to be 0xff if it's disabled (git-fixes). - drm/vmwgfx: Initialize drm_mode_fb_cmd2 (git-fixes). - drm/vmwgfx: Remove unused compile options (bsc#1152472) - EDAC/synopsys: Read the error count from the correct register (bsc#1178134). - firewire: core: extend card->lock in fw_core_handle_bus_reset (git-fixes). - firewire: fix potential uaf in outbound_phy_packet_callback() (git-fixes). - firewire: remove check of list iterator against head past the loop body (git-fixes). - firmware: arm_scmi: Fix list protocols enumeration in the base protocol (git-fixes). - firmware: arm_scmi: Validate BASE_DISCOVER_LIST_PROTOCOLS response (git-fixes). - firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle (git-fixes). - firmware: stratix10-svc: fix a missing check on list iterator (git-fixes). - Fix double fget() in vhost_net_set_backend() (git-fixes). - genirq: Fix reference leaks on irq affinity notifiers (git-fixes) - genirq: Let GENERIC_IRQ_IPI select IRQ_DOMAIN_HIERARCHY (git-fixes) - genirq/affinity: Consider that CPUs on nodes can be (git-fixes) - genirq/affinity: Handle affinity setting on inactive (git-fixes) - genirq/msi: Ensure deactivation on teardown (git-fixes) - genirq/proc: Reject invalid affinity masks (again) (git-fixes) - genirq/timings: Fix error return code in (git-fixes) - genirq/timings: Prevent potential array overflow in (git-fixes) - gma500: fix an incorrect NULL check on list iterator (git-fixes). - gpio: adp5588: Remove support for platform setup and teardown callbacks (git-fixes). - gpio: gpio-vf610: do not touch other bits when set the target bit (git-fixes). - gpio: mvebu/pwm: Refuse requests with inverted polarity (git-fixes). - gpio: pca953x: fix irq_stat not updated when irq is disabled (irq_mask not set) (git-fixes). - gpio: pca953x: use the correct register address to do regcache sync (git-fixes). - gpiolib: of: fix bounds check for 'gpio-reserved-ranges' (git-fixes). - hex2bin: fix access beyond string end (git-fixes). - HID: elan: Fix potential double free in elan_input_configured (git-fixes). - HID: hid-led: fix maximum brightness for Dream Cheeky (git-fixes). - hinic: fix bug of wq out of bound access (bsc#1176447). - hwmon: (f71882fg) Fix negative temperature (git-fixes). - hwmon: (ltq-cputemp) restrict it to SOC_XWAY (git-fixes). - hwmon: (tmp401) Add OF device ID table (git-fixes). - i2c: at91: Initialize dma_buf in at91_twi_xfer() (git-fixes). - i2c: at91: use dma safe buffers (git-fixes). - i2c: mt7621: fix missing clk_disable_unprepare() on error in mtk_i2c_probe() (git-fixes). - i40e: stop disabling VFs due to PF error responses (git-fixes). - ice: arfs: fix use-after-free when freeing @rx_cpu_rmap (jsc#SLE-12878). - ice: Clear default forwarding VSI during VSI release (jsc#SLE-12878). - ice: Do not skip not enabled queues in ice_vc_dis_qs_msg (jsc#SLE-7926). - ice: Fix race conditions between virtchnl handling and VF ndo ops (git-fixes). - ice: synchronize_rcu() when terminating rings (jsc#SLE-7926). - iio: adc: ad7124: Remove shift from scan_type (git-fixes). - iio: adc: sc27xx: Fine tune the scale calibration values (git-fixes). - iio: adc: sc27xx: fix read big scale voltage not right (git-fixes). - iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check (git-fixes). - iio: dac: ad5446: Fix read_raw not returning set value (git-fixes). - iio: dac: ad5592r: Fix the missing return value (git-fixes). - iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on() (git-fixes). - Input: add bounds checking to input_set_capability() (git-fixes). - Input: ili210x - fix reset timing (git-fixes). - Input: sparcspkr - fix refcount leak in bbc_beep_probe (git-fixes). - Input: stmfts - do not leave device disabled in stmfts_input_open (git-fixes). - Input: stmfts - fix reference leak in stmfts_input_open (git-fixes). - iommu/amd: Increase timeout waiting for GA log enablement (bsc#1199052). - ionic: avoid races in ionic_heartbeat_check (bsc#1167773). - ionic: Cleanups in the Tx hotpath code (bsc#1167773). - ionic: disable napi when ionic_lif_init() fails (bsc#1167773). - ionic: Do not send reset commands if FW isn't running (bsc#1167773). - ionic: fix missing pci_release_regions() on error in ionic_probe() (bsc#1167773). - ionic: fix type complaint in ionic_dev_cmd_clean() (jsc#SLE-16649). - ionic: monitor fw status generation (bsc#1167773). - ionic: remove the dbid_inuse bitmap (bsc#1167773). - ionic: start watchdog after all is setup (bsc#1167773). - ivtv: fix incorrect device_caps for ivtvfb (git-fixes). - iwlwifi: iwl-dbg: Use del_timer_sync() before freeing (git-fixes). - iwlwifi: mvm: fix the return type for DSM functions 1 and 2 (git-fixes). - jbd2: Fake symbols defined under CONFIG_JBD2_DEBUG (bsc#1198971). - kABI: ivtv: restore caps member (git-fixes). - Kconfig.debug: drop selecting non-existing HARDLOCKUP_DETECTOR_ARCH (git-fixes). - KVM: PPC: Fix TCE handling for VFIO (bsc#1061840 git-fixes). - KVM: VMX: Fix stale docs for kvm-intel.emulate_invalid_guest_state (git-fixes). - lan743x: fix rx_napi_poll/interrupt ping-pong (git-fixes). - lan743x: remove redundant assignment to variable rx_process_result (git-fixes). - lib/raid6/test: fix multiple definition linking error (git-fixes). - lpfc: Readd update to version 14.2.0.1 (bsc#1197675 bsc#1196478 bsc#1198989) The update was reverted due to some regression on older hardware. These have been fixed in the meantime, thus update the driver. - mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection (git-fixes). - mac80211: fix rx reordering with non explicit / psmp ack policy (git-fixes). - mac80211: Reset MBSSID parameters upon connection (git-fixes). - media: davinci: Make use of the helper function devm_platform_ioremap_resource() (git-fixes). - media: davinci: vpif: fix unbalanced runtime PM enable (git-fixes). - media: davinci: vpif: fix use-after-free on driver unbind (git-fixes). - media: media-entity.h: Fix documentation for media_create_intf_link (git-fixes). - media: ov7670: remove ov7670_power_off from ov7670_remove (git-fixes). - media: platform: add missing put_device() call in mtk_jpeg_probe() and mtk_jpeg_remove() (git-fixes). - media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init (git-fixes). - media: saa7134: fix incorrect use to determine if list is empty (git-fixes). - media: uvcvideo: Fix missing check to determine if element is found in list (git-fixes). - media: videobuf2: Fix the size printk format (git-fixes). - media: vim2m: Register video device after setting up internals (git-fixes). - mfd: ipaq-micro: Fix error check return value of platform_get_irq() (git-fixes). - misc: ocxl: fix possible double free in ocxl_file_register_afu (git-fixes). - mm, page_alloc: fix build_zonerefs_node() (git-fixes). - mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove() (jsc#SLE-15176, jsc#SLE-16387). - mmc: block: Use generic_cmd6_time when modifying INAND_CMD38_ARG_EXT_CSD (git-fixes). - mmc: core: Specify timeouts for BKOPS and CACHE_FLUSH for eMMC (git-fixes). - mt76: Fix undefined behavior due to shift overflowing the constant (git-fixes). - mt76: mt7663s: fix rx buffer refcounting (git-fixes). - mtd: rawnand: fix ecc parameters for mt7622 (git-fixes). - mtd: rawnand: Fix return value check of wait_for_completion_timeout (git-fixes). - mtd: spi-nor: core: Check written SR value in spi_nor_write_16bit_sr_and_check() (git-fixes). - net: bcmgenet: Fix a resource leak in an error handling path in the probe functin (git-fixes). - net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for internal PHYs (git-fixes). - net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access (git-fixes). - net: ethernet: Fix memleak in ethoc_probe (git-fixes). - net: ethernet: ti: cpts: fix ethtool output when no ptp_clock registered (git-fixes). - net: hdlc_ppp: Fix issues when mod_timer is called while timer is running (git-fixes). - net: hns3: add a check for index in hclge_get_rss_key() (git-fixes). - net: hns3: clear inited state and stop client after failed to register netdev (bsc#1154353). - net: hns3: fix bug when PF set the duplicate MAC address for VFs (jsc#SLE-14777). - net: hns3: fix kernel crash when unload VF while it is being reset (git-fixes). - net: korina: fix return value (git-fixes). - net: mana: Add counter for packet dropped by XDP (bsc#1195651). - net: mana: Add counter for XDP_TX (bsc#1195651). - net: mana: Add handling of CQE_RX_TRUNCATED (bsc#1195651). - net: mana: Remove unnecessary check of cqe_type in mana_process_rx_cqe() (bsc#1195651). - net: mana: Reuse XDP dropped page (bsc#1195651). - net: mana: Use struct_size() helper in mana_gd_create_dma_region() (bsc#1195651). - net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog (bsc#1183405). - net: stmmac: dwmac-sun8i: Balance internal PHY power (git-fixes). - net: stmmac: dwmac-sun8i: Balance internal PHY resource references (git-fixes). - net: stmmac: dwmac-sun8i: Balance syscon (de)initialization (git-fixes). - net: stmmac: dwmac-sun8i: Fix probe error handling (git-fixes). - net/mlx5: Fix a race on command flush flow (jsc#SLE-15172). - net/mlx5e: Fix the calling of update_buffer_lossy() API (jsc#SLE-15172). - netdevice: demote the type of some dev_addr_set() helpers (bsc#1200216). - netfilter: conntrack: connection timeout after re-register (bsc#1199035). - netfilter: conntrack: move synack init code to helper (bsc#1199035). - netfilter: conntrack: re-init state for retransmitted syn-ack (bsc#1199035). - netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (bsc#1199035). - netfilter: nf_conntrack_tcp: re-init for syn packets only (bsc#1199035). - netfilter: nft_set_rbtree: overlap detection with element re-addition after deletion (bsc#1176447). - NFC: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx (git-fixes). - NFC: nci: fix sleep in atomic context bugs caused by nci_skb_alloc (git-fixes). - NFC: netlink: fix sleep in atomic bug when firmware download timeout (git-fixes). - NFC: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs (git-fixes). - NFC: NULL out the dev->rfkill to prevent UAF (git-fixes). - NFS: limit use of ACCESS cache for negative responses (bsc#1196570). - NFSv4: Do not invalidate inode attributes on delegation return (git-fixes). - nl80211: show SSID for P2P_GO interfaces (git-fixes). - nvdimm/region: always show the 'align' attribute (bsc#1199114). - nvme-tcp: allow selecting the network interface for connections (bsc#1199670). - nvme-tcp: use __dev_get_by_name instead dev_get_by_name for OPT_HOST_IFACE (bsc#1199670). - objtool: Fix type of reloc::addend (git-fixes). - PCI: aardvark: Clear all MSIs at setup (git-fixes). - PCI: cadence: Fix find_first_zero_bit() limit (git-fixes). - PCI: Do not enable AtomicOps on VFs (git-fixes). - PCI: dwc: Fix setting error return on MSI DMA mapping failure (git-fixes). - PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (bsc#1199314). - PCI: imx6: Fix PERST# start-up sequence (git-fixes). - PCI: iproc: Set affinity mask on MSI interrupts (git-fixes). - PCI: qcom: Fix runtime PM imbalance on probe errors (git-fixes). - PCI: qcom: Fix unbalanced PHY init on probe errors (git-fixes). - PCI: rockchip: Fix find_first_zero_bit() limit (git-fixes). - PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits (git-fixes). - PCI/PM: Power up all devices during runtime resume (git-fixes). - phy: mapphone-mdm6600: Fix PM error handling in phy_mdm6600_probe (git-fixes). - phy: qcom-qmp: fix pipe-clock imbalance on power-on failure (git-fixes). - phy: qcom-qmp: fix reset-controller leak on probe errors (git-fixes). - phy: qcom-qmp: fix struct clk leak on probe errors (git-fixes). - phy: samsung: exynos5250-sata: fix missing device put in probe error paths (git-fixes). - phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe (git-fixes). - phy: ti: Add missing pm_runtime_disable() in serdes_am654_probe (git-fixes). - phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks (git-fixes). - pinctrl: mvebu: Fix irq_of_parse_and_map() return value (git-fixes). - pinctrl: pistachio: fix use of irq_of_parse_and_map() (git-fixes). - pinctrl: rockchip: fix RK3308 pinmux bits (git-fixes). - pinctrl/rockchip: support deferring other gpio params (git-fixes). - ping: fix the sk_bound_dev_if match in ping_lookup (bsc#1195826). - ping: remove pr_err from ping_lookup (bsc#1195826). - platform/chrome: cros_ec_debugfs: detach log reader wq from devm (git-fixes). - platform/x86: samsung-laptop: Fix an unsigned comparison which can never be negative (git-fixes). - powerpc: Enable the DAWR on POWER9 DD2.3 and above (bsc#1055117 ltc#159753). - powerpc/64s: Add CPU_FTRS_POWER10 to ALWAYS mask (jsc#SLE-13521 git-fixes). - powerpc/64s: Add CPU_FTRS_POWER9_DD2_2 to CPU_FTRS_ALWAYS mask (bsc#1061840 git-fixes). - powerpc/64s/radix: Fix huge vmap false positive (bsc#1156395). - powerpc/fadump: fix PT_LOAD segment for boot memory area (bsc#1103269 ltc#169948 git-fixes). - powerpc/powernv: Add __init attribute to eligible functions (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Get L1D flush requirements from device-tree (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Get STF barrier requirements from device-tree (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Remove POWER9 PVR version check for entry and uaccess flushes (bsc#1188885 ltc#193722 git-fixes). - powerpc/xive: Add some error handling code to 'xive_spapr_init()' (git-fixes). - powerpc/xive: Fix refcount leak in xive_spapr_init (git-fixes). - pwm: lp3943: Fix duty calculation in case period was clamped (git-fixes). - pwm: raspberrypi-poe: Fix endianness in firmware struct (git-fixes). - qlcnic: Fix error code in probe (git-fixes). - regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET (git-fixes). - regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt (git-fixes). - reset: tegra-bpmp: Restore Handle errors in BPMP response (git-fixes). - rtc: fix use-after-free on device removal (git-fixes). - rtc: mc146818-lib: Fix the AltCentury for AMD platforms (git-fixes). - rtc: mt6397: check return value after calling platform_get_resource() (git-fixes). - sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl (git-fixes). - sata_fsl: fix warning in remove_proc_entry when rmmod sata_fsl (git-fixes). - sched/pelt: Fix attach_entity_load_avg() corner case (git-fixes) - sched/topology: Skip updating masks for non-online nodes (bsc#1197446 ltc#183000). - scsi: dc395x: Fix a missing check on list iterator (git-fixes). - scsi: fnic: Fix a tracing statement (git-fixes). - scsi: fnic: Replace DMA mask of 64 bits with 47 bits (bsc#1199631). - scsi: hisi_sas: Change permission of parameter prot_mask (git-fixes). - scsi: lpfc: Alter FPIN stat accounting logic (bsc#1200045). - scsi: lpfc: Change FA-PWWN detection methodology (bsc#1200045). - scsi: lpfc: Change VMID registration to be based on fabric parameters (bsc#1200045). - scsi: lpfc: Clear fabric topology flag before initiating a new FLOGI (bsc#1200045). - scsi: lpfc: Copyright updates for 14.2.0.2 patches (bsc#1200045). - scsi: lpfc: Correct BDE DMA address assignment for GEN_REQ_WQE (bsc#1200045 bsc#1198989 bsc#1197675). - scsi: lpfc: Correct CRC32 calculation for congestion stats (bsc#1200045). - scsi: lpfc: Decrement outstanding gidft_inp counter if lpfc_err_lost_link() (bsc#1200045). - scsi: lpfc: Expand setting ELS_ID field in ELS_REQUEST64_WQE (bsc#1200045). - scsi: lpfc: Fill in missing ndlp kref puts in error paths (bsc#1200045). - scsi: lpfc: Fix additional reference counting in lpfc_bsg_rport_els() (bsc#1200045). - scsi: lpfc: Fix call trace observed during I/O with CMF enabled (bsc#1200045). - scsi: lpfc: Fix diagnostic fw logging after a function reset (bsc#1200045). - scsi: lpfc: Fix dmabuf ptr assignment in lpfc_ct_reject_event() (bsc#1200045). - scsi: lpfc: Fix element offset in __lpfc_sli_release_iocbq_s4() (bsc#1200045). - scsi: lpfc: Fix field overload in lpfc_iocbq data structure (bsc#1200045). - scsi: lpfc: Fix ndlp put following a LOGO completion (bsc#1200045). - scsi: lpfc: Fix null pointer dereference after failing to issue FLOGI and PLOGI (bsc#1200045). - scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp() (bsc#1200045). - scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock (bsc#1200045). - scsi: lpfc: Fix split code for FLOGI on FCoE (bsc#1200045 bsc#1198989 bsc#1197675). - scsi: lpfc: Inhibit aborts if external loopback plug is inserted (bsc#1200045). - scsi: lpfc: Introduce FC_RSCN_MEMENTO flag for tracking post RSCN completion (bsc#1200045). - scsi: lpfc: Move cfg_log_verbose check before calling lpfc_dmp_dbg() (bsc#1200045). - scsi: lpfc: Move MI module parameter check to handle dynamic disable (bsc#1200045). - scsi: lpfc: Protect memory leak for NPIV ports sending PLOGI_RJT (bsc#1200045). - scsi: lpfc: Refactor cleanup of mailbox commands (bsc#1200045). - scsi: lpfc: Register for Application Services FC-4 type in Fabric topology (bsc#1200045). - scsi: lpfc: Remove false FDMI NVMe FC-4 support for NPIV ports (bsc#1200045). - scsi: lpfc: Remove redundant lpfc_sli_prep_wqe() call (bsc#1200045). - scsi: lpfc: Remove unnecessary null ndlp check in lpfc_sli_prep_wqe() (bsc#1200045). - scsi: lpfc: Remove unnecessary NULL pointer assignment for ELS_RDF path (bsc#1200045). - scsi: lpfc: Remove unneeded variable (bsc#1200045). - scsi: lpfc: Requeue SCSI I/O to upper layer when fw reports link down (bsc#1200045). - scsi: lpfc: Revise FDMI reporting of supported port speed for trunk groups (bsc#1200045). - scsi: lpfc: Rework FDMI initialization after link up (bsc#1200045). - scsi: lpfc: Transition to NPR state upon LOGO cmpl if link down or aborted (bsc#1200045). - scsi: lpfc: Tweak message log categories for ELS/FDMI/NVMe rescan (bsc#1200045). - scsi: lpfc: Update fc_prli_sent outstanding only after guaranteed IOCB submit (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.2 (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.3 (bsc#1200045). - scsi: lpfc: Update stat accounting for READ_STATUS mbox command (bsc#1200045). - scsi: lpfc: Use list_for_each_entry_safe() in rscn_recovery_check() (bsc#1200045). - scsi: lpfc: Use sg_dma_address() and sg_dma_len() macros for NVMe I/O (bsc#1200045). - scsi: lpfc: Zero SLI4 fcp_cmnd buffer's fcpCntl0 field (bsc#1200045). - scsi: pm8001: Fix abort all task initialization (git-fixes). - scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req() (git-fixes). - scsi: pm8001: Fix command initialization in pm80XX_send_read_log() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_set_sas_protocol_timer_config() (git-fixes). - scsi: pm8001: Fix NCQ NON DATA command completion handling (git-fixes). - scsi: pm8001: Fix NCQ NON DATA command task initialization (git-fixes). - scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update() (git-fixes). - scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config() (git-fixes). - scsi: pm80xx: Enable upper inbound, outbound queues (git-fixes). - scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63 (git-fixes). - scsi: qla2xxx: edif: Remove unneeded variable (bsc#1200046). - scsi: qla2xxx: Fix missed DMA unmap for aborted commands (bsc#1200046). - scsi: qla2xxx: Remove free_sg command flag (bsc#1200046). - scsi: qla2xxx: Remove unneeded flush_workqueue() (bsc#1200046). - scsi: sr: Do not leak information in ioctl (git-fixes). - scsi: ufs: core: Exclude UECxx from SFR dump list (git-fixes). - scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled (git-fixes). - scsi: ufs: qcom: Fix ufs_qcom_resume() (git-fixes). - scsi: virtio-scsi: Eliminate anonymous module_init & module_exit (git-fixes). - scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() (git-fixes). - selftests: firmware: Use smaller dictionary for XZ compression (git-fixes). - serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485 (git-fixes). - serial: 8250_mtk: Fix register address for XON/XOFF character (git-fixes). - serial: 8250_mtk: Fix UART_EFR register address (git-fixes). - serial: 8250: Also set sticky MCR bits in console restoration (git-fixes). - serial: 8250: core: Remove unneeded &lt;linux/pm_runtime.h> (git-fixes). - serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device (git-fixes). - serial: 8250: pxa: Remove unneeded &lt;linux/pm_runtime.h> (git-fixes). - serial: digicolor-usart: Do not allow CS5-6 (git-fixes). - serial: imx: fix overrun interrupts in DMA mode (git-fixes). - serial: meson: acquire port->lock in startup() (git-fixes). - serial: pch: do not overwrite xmit->buf[0] by x_char (git-fixes). - serial: rda-uart: Do not allow CS5-6 (git-fixes). - serial: sh-sci: Do not allow CS5-6 (git-fixes). - serial: sifive: Sanitize CSIZE and c_iflag (git-fixes). - serial: st-asc: Sanitize CSIZE and correct PARENB for CS7 (git-fixes). - serial: stm32-usart: Correct CSIZE, bits, and parity (git-fixes). - serial: txx9: Do not allow CS5-6 (git-fixes). - slimbus: qcom: Fix IRQ check in qcom_slim_probe (git-fixes). - smp: Fix offline cpu check in flush_smp_call_function_queue() (git-fixes). - smsc911x: allow using IRQ0 (git-fixes). - soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc (git-fixes). - soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc (git-fixes). - soc: rockchip: Fix refcount leak in rockchip_grf_init (git-fixes). - spi: img-spfi: Fix pm_runtime_get_sync() error checking (git-fixes). - spi: spi-cadence: Fix kernel-doc format for resume/suspend (git-fixes). - spi: spi-fsl-qspi: check return value after calling platform_get_resource_byname() (git-fixes). - spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout (git-fixes). - staging: fieldbus: Fix the error handling path in anybuss_host_common_probe() (git-fixes). - SUNRPC: Ensure gss-proxy connects on setup (git-fixes). - SUNRPC: Ensure that the gssproxy client can start in a connected state (git-fixes). - thermal: int340x: Fix attr.show callback prototype (git-fixes). - thermal/drivers/bcm2711: Do not clamp temperature at zero (git-fixes). - thermal/drivers/broadcom: Fix potential NULL dereference in sr_thermal_probe (git-fixes). - timekeeping: Really make sure wall_to_monotonic isn't (git-fixes) - timers: Fix warning condition in __run_timers() (git-fixes) - tpm: Fix buffer access in tpm2_get_tpm_pt() (git-fixes). - tpm: ibmvtpm: Correct the return value in tpm_ibmvtpm_probe() (bsc#1065729). - tracing: Fix potential double free in create_var_ref() (git-fixes). - tracing: Fix return value of trace_pid_write() (git-fixes). - tty: fix deadlock caused by calling printk() under tty_port->lock (git-fixes). - tty: goldfish: Use tty_port_destroy() to destroy port (git-fixes). - tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id and ida_simple_get (git-fixes). - tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe (git-fixes). - tty/serial: digicolor: fix possible null-ptr-deref in digicolor_uart_probe() (git-fixes). - usb: cdc-wdm: fix reading stuck on device close (git-fixes). - usb: dwc3: core: Fix tx/rx threshold settings (git-fixes). - usb: dwc3: core: Only handle soft-reset in DCTL (git-fixes). - usb: dwc3: gadget: Return proper request status (git-fixes). - usb: dwc3: pci: Fix pm_runtime_get_sync() error checking (git-fixes). - usb: ehci-omap: drop unused ehci_read() function (git-fixes). - usb: gadget: configfs: clear deactivation flag in configfs_composite_unbind() (git-fixes). - usb: hcd-pci: Use PCI_STD_NUM_BARS when checking standard BARs (bsc#1152489) - usb: misc: fix improper handling of refcount in uss720_probe() (git-fixes). - usb: mtu3: fix USB 3.0 dual-role-switch from device to host (git-fixes). - usb: musb: Fix missing of_node_put() in omap2430_probe (git-fixes). - usb: quirks: add a Realtek card reader (git-fixes). - usb: quirks: add STRING quirk for VCOM device (git-fixes). - usb: serial: cp210x: add PIDs for Kamstrup USB Meter Reader (git-fixes). - usb: serial: option: add Fibocom L610 modem (git-fixes). - usb: serial: option: add Fibocom MA510 modem (git-fixes). - usb: serial: option: add support for Cinterion MV32-WA/MV32-WB (git-fixes). - usb: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions (git-fixes). - usb: serial: pl2303: add device id for HP LM930 Display (git-fixes). - usb: serial: qcserial: add support for Sierra Wireless EM7590 (git-fixes). - usb: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS (git-fixes). - usb: storage: karma: fix rio_karma_init return (git-fixes). - usb: typec: mux: Check dev_set_name() return value (git-fixes). - usb: typec: tcpci: Do not skip cleanup in .remove() on error (git-fixes). - usb: typec: ucsi: Fix reuse of completion structure (git-fixes). - usb: typec: ucsi: Fix role swapping (git-fixes). - usb: usbip: add missing device lock on tweak configuration cmd (git-fixes). - usb: usbip: fix a refcount leak in stub_probe() (git-fixes). - video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup (git-fixes). - watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe (git-fixes). - wifi: mac80211: fix use-after-free in chanctx code (git-fixes). - wireguard: device: check for metadata_dst with skb_valid_dst() (git-fixes). - xhci: increase usb U3 -> U0 link resume timeout from 100ms to 500ms (git-fixes). - xhci: stop polling roothubs after shutdown (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.59.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.59.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.59.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.59.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.59.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.59.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.59.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.59.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.59.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.59.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.59.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.59.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.59.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.59.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.59.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.59.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.59.1.x86_64.rpm True openSUSE-SLE-15.3-2022-2094 important SUSE Updates openSUSE-SLE 15.3 This update for fence-agents fixes the following issues: - Fix and issue where 'fence-agents' is broken in GCP due to missing "--zone" parameter (bsc#1198872) fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.11.1.src.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.11.1.x86_64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.11.1.x86_64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.11.1.x86_64.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.11.1.s390x.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.11.1.s390x.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.11.1.s390x.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.11.1.ppc64le.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.11.1.ppc64le.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.11.1.ppc64le.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.11.1.aarch64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.11.1.aarch64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-2546 important SUSE Updates openSUSE-SLE 15.3 This update for gpg2 fixes the following issues: - CVE-2022-34903: Fixed a status injection vulnerability (bsc#1201225). - Use AES as default cipher instead of 3DES when we are in FIPS mode. (bsc#1196125) dirmngr-2.2.27-150300.3.5.1.x86_64.rpm gpg2-2.2.27-150300.3.5.1.src.rpm gpg2-2.2.27-150300.3.5.1.x86_64.rpm gpg2-lang-2.2.27-150300.3.5.1.noarch.rpm dirmngr-2.2.27-150300.3.5.1.s390x.rpm gpg2-2.2.27-150300.3.5.1.s390x.rpm dirmngr-2.2.27-150300.3.5.1.ppc64le.rpm gpg2-2.2.27-150300.3.5.1.ppc64le.rpm dirmngr-2.2.27-150300.3.5.1.aarch64.rpm gpg2-2.2.27-150300.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-3555 important SUSE Updates openSUSE-SLE 15.3 This update for aaa_base fixes the following issues: - The wrapper rootsh is not a restricted shell. (bsc#1199492) aaa_base-84.87+git20180409.04c9dae-150300.10.3.1.src.rpm aaa_base-84.87+git20180409.04c9dae-150300.10.3.1.x86_64.rpm aaa_base-extras-84.87+git20180409.04c9dae-150300.10.3.1.x86_64.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-150300.10.3.1.x86_64.rpm aaa_base-wsl-84.87+git20180409.04c9dae-150300.10.3.1.x86_64.rpm aaa_base-84.87+git20180409.04c9dae-150300.10.3.1.s390x.rpm aaa_base-extras-84.87+git20180409.04c9dae-150300.10.3.1.s390x.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-150300.10.3.1.s390x.rpm aaa_base-wsl-84.87+git20180409.04c9dae-150300.10.3.1.s390x.rpm aaa_base-84.87+git20180409.04c9dae-150300.10.3.1.ppc64le.rpm aaa_base-extras-84.87+git20180409.04c9dae-150300.10.3.1.ppc64le.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-150300.10.3.1.ppc64le.rpm aaa_base-wsl-84.87+git20180409.04c9dae-150300.10.3.1.ppc64le.rpm aaa_base-84.87+git20180409.04c9dae-150300.10.3.1.aarch64.rpm aaa_base-extras-84.87+git20180409.04c9dae-150300.10.3.1.aarch64.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-150300.10.3.1.aarch64.rpm aaa_base-wsl-84.87+git20180409.04c9dae-150300.10.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3905 important SUSE Updates openSUSE-SLE 15.3 This update for aaa_base and iputils fixes the following issues: aaa_base: - Failures in ping for SUSE Linux Enterprise 15 and 15 SP1 due to sysctl setting for ping_group_range (bsc#1199926, bsc#1199927) - The wrapper rootsh is not a restricted shell (bsc#1199492) iputils: - Fix device binding on ping6 for ICMP datagram socket. (bsc#1196840, bsc#1199918, bsc#1199926, bsc#1199927) iputils-s20161105-150000.8.6.1.src.rpm iputils-s20161105-150000.8.6.1.x86_64.rpm rarpd-s20161105-150000.8.6.1.x86_64.rpm iputils-s20161105-150000.8.6.1.s390x.rpm rarpd-s20161105-150000.8.6.1.s390x.rpm iputils-s20161105-150000.8.6.1.ppc64le.rpm rarpd-s20161105-150000.8.6.1.ppc64le.rpm iputils-s20161105-150000.8.6.1.aarch64.rpm rarpd-s20161105-150000.8.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2108 important SUSE Updates openSUSE-SLE 15.3 This update for rubygem-actionpack-5_1 and rubygem-activesupport-5_1 fixes the following issues: - CVE-2021-22904: Fixed possible DoS Vulnerability in Action Controller Token Authentication (bsc#1185780) - CVE-2022-23633: Fixed possible exposure of information vulnerability in Action Pack (bsc#1196182) ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.12.1.x86_64.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-150000.3.12.1.x86_64.rpm ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.6.1.x86_64.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.6.1.x86_64.rpm rubygem-actionpack-5_1-5.1.4-150000.3.12.1.src.rpm rubygem-activesupport-5_1-5.1.4-150000.3.6.1.src.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.12.1.s390x.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-150000.3.12.1.s390x.rpm ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.6.1.s390x.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.6.1.s390x.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.12.1.ppc64le.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-150000.3.12.1.ppc64le.rpm ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.6.1.ppc64le.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.6.1.ppc64le.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.12.1.aarch64.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-150000.3.12.1.aarch64.rpm ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.6.1.aarch64.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2251 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following issues: - CVE-2022-1292: Fixed command injection in c_rehash (bsc#1199166). - CVE-2022-2068: Fixed more shell code injection issues in c_rehash. (bsc#1200550) libopenssl-1_1-devel-1.1.1d-150200.11.48.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-150200.11.48.1.x86_64.rpm libopenssl1_1-1.1.1d-150200.11.48.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-150200.11.48.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-150200.11.48.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-150200.11.48.1.x86_64.rpm openssl-1_1-1.1.1d-150200.11.48.1.src.rpm openssl-1_1-1.1.1d-150200.11.48.1.x86_64.rpm openssl-1_1-doc-1.1.1d-150200.11.48.1.noarch.rpm libopenssl-1_1-devel-1.1.1d-150200.11.48.1.s390x.rpm libopenssl1_1-1.1.1d-150200.11.48.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-150200.11.48.1.s390x.rpm openssl-1_1-1.1.1d-150200.11.48.1.s390x.rpm libopenssl-1_1-devel-1.1.1d-150200.11.48.1.ppc64le.rpm libopenssl1_1-1.1.1d-150200.11.48.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-150200.11.48.1.ppc64le.rpm openssl-1_1-1.1.1d-150200.11.48.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-150200.11.48.1.aarch64.rpm libopenssl1_1-1.1.1d-150200.11.48.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-150200.11.48.1.aarch64.rpm openssl-1_1-1.1.1d-150200.11.48.1.aarch64.rpm openSUSE-SLE-15.3-2022-2056 important SUSE Updates openSUSE-SLE 15.3 This update for u-boot fixes the following issues: - A large buffer overflow could have lead to a denial of service in the IP Packet deframentation code. (CVE-2022-30552, bsc#1200363) - A Hole Descriptor Overwrite could have lead to an arbitrary out of bounds write primitive. (CVE-2022-30790, bsc#1200364) u-boot-xilinxzynqmpgeneric-2020.01-150200.10.12.1.aarch64.rpm u-boot-xilinxzynqmpgeneric-2020.01-150200.10.12.1.src.rpm u-boot-xilinxzynqmpgeneric-doc-2020.01-150200.10.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-2323 low SUSE Updates openSUSE-SLE 15.3 This update for systemd-presets-branding-SLE fixes the following issues: - Enable suseconnect-keepalive.timer for SUSEConnect (jsc#SLE-23312) systemd-presets-branding-SLE-15.1-150100.20.11.1.noarch.rpm systemd-presets-branding-SLE-15.1-150100.20.11.1.src.rpm openSUSE-SLE-15.3-2022-3214 low SUSE Updates openSUSE-SLE 15.3 This update for wpa_supplicant fixes the following issues: - Enable WPA3-Enterprise (SuiteB-192) support. (jsc#SLE-14992) wpa_supplicant-2.9-150000.4.36.1.src.rpm wpa_supplicant-2.9-150000.4.36.1.x86_64.rpm wpa_supplicant-gui-2.9-150000.4.36.1.x86_64.rpm wpa_supplicant-2.9-150000.4.36.1.s390x.rpm wpa_supplicant-gui-2.9-150000.4.36.1.s390x.rpm wpa_supplicant-2.9-150000.4.36.1.ppc64le.rpm wpa_supplicant-gui-2.9-150000.4.36.1.ppc64le.rpm wpa_supplicant-2.9-150000.4.36.1.aarch64.rpm wpa_supplicant-gui-2.9-150000.4.36.1.aarch64.rpm openSUSE-SLE-15.3-2022-2344 important SUSE Updates openSUSE-SLE 15.3 This update for python fixes the following issues: - CVE-2015-20107: avoid command injection in the mailcap module (bsc#1198511). libpython2_7-1_0-2.7.18-150000.41.1.x86_64.rpm libpython2_7-1_0-32bit-2.7.18-150000.41.1.x86_64.rpm python-2.7.18-150000.41.1.src.rpm python-2.7.18-150000.41.1.x86_64.rpm python-32bit-2.7.18-150000.41.1.x86_64.rpm python-base-2.7.18-150000.41.1.src.rpm python-base-2.7.18-150000.41.1.x86_64.rpm python-base-32bit-2.7.18-150000.41.1.x86_64.rpm python-curses-2.7.18-150000.41.1.x86_64.rpm python-demo-2.7.18-150000.41.1.x86_64.rpm python-devel-2.7.18-150000.41.1.x86_64.rpm python-doc-2.7.18-150000.41.1.noarch.rpm python-doc-2.7.18-150000.41.1.src.rpm python-doc-pdf-2.7.18-150000.41.1.noarch.rpm python-gdbm-2.7.18-150000.41.1.x86_64.rpm python-idle-2.7.18-150000.41.1.x86_64.rpm python-tk-2.7.18-150000.41.1.x86_64.rpm python-xml-2.7.18-150000.41.1.x86_64.rpm libpython2_7-1_0-2.7.18-150000.41.1.s390x.rpm python-2.7.18-150000.41.1.s390x.rpm python-base-2.7.18-150000.41.1.s390x.rpm python-curses-2.7.18-150000.41.1.s390x.rpm python-demo-2.7.18-150000.41.1.s390x.rpm python-devel-2.7.18-150000.41.1.s390x.rpm python-gdbm-2.7.18-150000.41.1.s390x.rpm python-idle-2.7.18-150000.41.1.s390x.rpm python-tk-2.7.18-150000.41.1.s390x.rpm python-xml-2.7.18-150000.41.1.s390x.rpm libpython2_7-1_0-2.7.18-150000.41.1.ppc64le.rpm python-2.7.18-150000.41.1.ppc64le.rpm python-base-2.7.18-150000.41.1.ppc64le.rpm python-curses-2.7.18-150000.41.1.ppc64le.rpm python-demo-2.7.18-150000.41.1.ppc64le.rpm python-devel-2.7.18-150000.41.1.ppc64le.rpm python-gdbm-2.7.18-150000.41.1.ppc64le.rpm python-idle-2.7.18-150000.41.1.ppc64le.rpm python-tk-2.7.18-150000.41.1.ppc64le.rpm python-xml-2.7.18-150000.41.1.ppc64le.rpm libpython2_7-1_0-2.7.18-150000.41.1.aarch64.rpm python-2.7.18-150000.41.1.aarch64.rpm python-base-2.7.18-150000.41.1.aarch64.rpm python-curses-2.7.18-150000.41.1.aarch64.rpm python-demo-2.7.18-150000.41.1.aarch64.rpm python-devel-2.7.18-150000.41.1.aarch64.rpm python-gdbm-2.7.18-150000.41.1.aarch64.rpm python-idle-2.7.18-150000.41.1.aarch64.rpm python-tk-2.7.18-150000.41.1.aarch64.rpm python-xml-2.7.18-150000.41.1.aarch64.rpm openSUSE-SLE-15.3-2022-2357 important SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - CVE-2015-20107: avoid command injection in the mailcap module (bsc#1198511). libpython3_6m1_0-3.6.15-150300.10.27.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.15-150300.10.27.1.x86_64.rpm python3-3.6.15-150300.10.27.1.src.rpm python3-3.6.15-150300.10.27.1.x86_64.rpm python3-base-3.6.15-150300.10.27.1.x86_64.rpm python3-core-3.6.15-150300.10.27.1.src.rpm python3-curses-3.6.15-150300.10.27.1.x86_64.rpm python3-dbm-3.6.15-150300.10.27.1.x86_64.rpm python3-devel-3.6.15-150300.10.27.1.x86_64.rpm python3-doc-3.6.15-150300.10.27.1.x86_64.rpm python3-doc-devhelp-3.6.15-150300.10.27.1.x86_64.rpm python3-documentation-3.6.15-150300.10.27.1.src.rpm python3-idle-3.6.15-150300.10.27.1.x86_64.rpm python3-testsuite-3.6.15-150300.10.27.1.x86_64.rpm python3-tk-3.6.15-150300.10.27.1.x86_64.rpm python3-tools-3.6.15-150300.10.27.1.x86_64.rpm libpython3_6m1_0-3.6.15-150300.10.27.1.s390x.rpm python3-3.6.15-150300.10.27.1.s390x.rpm python3-base-3.6.15-150300.10.27.1.s390x.rpm python3-curses-3.6.15-150300.10.27.1.s390x.rpm python3-dbm-3.6.15-150300.10.27.1.s390x.rpm python3-devel-3.6.15-150300.10.27.1.s390x.rpm python3-doc-3.6.15-150300.10.27.1.s390x.rpm python3-doc-devhelp-3.6.15-150300.10.27.1.s390x.rpm python3-idle-3.6.15-150300.10.27.1.s390x.rpm python3-testsuite-3.6.15-150300.10.27.1.s390x.rpm python3-tk-3.6.15-150300.10.27.1.s390x.rpm python3-tools-3.6.15-150300.10.27.1.s390x.rpm libpython3_6m1_0-3.6.15-150300.10.27.1.ppc64le.rpm python3-3.6.15-150300.10.27.1.ppc64le.rpm python3-base-3.6.15-150300.10.27.1.ppc64le.rpm python3-curses-3.6.15-150300.10.27.1.ppc64le.rpm python3-dbm-3.6.15-150300.10.27.1.ppc64le.rpm python3-devel-3.6.15-150300.10.27.1.ppc64le.rpm python3-doc-3.6.15-150300.10.27.1.ppc64le.rpm python3-doc-devhelp-3.6.15-150300.10.27.1.ppc64le.rpm python3-idle-3.6.15-150300.10.27.1.ppc64le.rpm python3-testsuite-3.6.15-150300.10.27.1.ppc64le.rpm python3-tk-3.6.15-150300.10.27.1.ppc64le.rpm python3-tools-3.6.15-150300.10.27.1.ppc64le.rpm libpython3_6m1_0-3.6.15-150300.10.27.1.aarch64.rpm python3-3.6.15-150300.10.27.1.aarch64.rpm python3-base-3.6.15-150300.10.27.1.aarch64.rpm python3-curses-3.6.15-150300.10.27.1.aarch64.rpm python3-dbm-3.6.15-150300.10.27.1.aarch64.rpm python3-devel-3.6.15-150300.10.27.1.aarch64.rpm python3-doc-3.6.15-150300.10.27.1.aarch64.rpm python3-doc-devhelp-3.6.15-150300.10.27.1.aarch64.rpm python3-idle-3.6.15-150300.10.27.1.aarch64.rpm python3-testsuite-3.6.15-150300.10.27.1.aarch64.rpm python3-tk-3.6.15-150300.10.27.1.aarch64.rpm python3-tools-3.6.15-150300.10.27.1.aarch64.rpm openSUSE-SLE-15.3-2022-3150 low SUSE Updates openSUSE-SLE 15.3 This update for hplip fixes the following issues: - Fix C compiler flags which results in better device detection. (bsc#1198794) hplip-3.21.10-150300.4.6.1.src.rpm hplip-3.21.10-150300.4.6.1.x86_64.rpm hplip-devel-3.21.10-150300.4.6.1.x86_64.rpm hplip-hpijs-3.21.10-150300.4.6.1.x86_64.rpm hplip-sane-3.21.10-150300.4.6.1.x86_64.rpm hplip-scan-utils-3.21.10-150300.4.6.1.x86_64.rpm hplip-3.21.10-150300.4.6.1.s390x.rpm hplip-devel-3.21.10-150300.4.6.1.s390x.rpm hplip-hpijs-3.21.10-150300.4.6.1.s390x.rpm hplip-sane-3.21.10-150300.4.6.1.s390x.rpm hplip-scan-utils-3.21.10-150300.4.6.1.s390x.rpm hplip-3.21.10-150300.4.6.1.ppc64le.rpm hplip-devel-3.21.10-150300.4.6.1.ppc64le.rpm hplip-hpijs-3.21.10-150300.4.6.1.ppc64le.rpm hplip-sane-3.21.10-150300.4.6.1.ppc64le.rpm hplip-scan-utils-3.21.10-150300.4.6.1.ppc64le.rpm hplip-3.21.10-150300.4.6.1.aarch64.rpm hplip-devel-3.21.10-150300.4.6.1.aarch64.rpm hplip-hpijs-3.21.10-150300.4.6.1.aarch64.rpm hplip-sane-3.21.10-150300.4.6.1.aarch64.rpm hplip-scan-utils-3.21.10-150300.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2102 important SUSE Updates openSUSE-SLE 15.3 This update for vim fixes the following issues: - CVE-2017-17087: Fixed information leak via .swp files (bsc#1070955). - CVE-2021-3875: Fixed heap-based buffer overflow (bsc#1191770). - CVE-2021-3903: Fixed heap-based buffer overflow (bsc#1192167). - CVE-2021-3968: Fixed heap-based buffer overflow (bsc#1192902). - CVE-2021-3973: Fixed heap-based buffer overflow (bsc#1192903). - CVE-2021-3974: Fixed use-after-free (bsc#1192904). - CVE-2021-4069: Fixed use-after-free in ex_open()in src/ex_docmd.c (bsc#1193466). - CVE-2021-4136: Fixed heap-based buffer overflow (bsc#1193905). - CVE-2021-4166: Fixed out-of-bounds read (bsc#1194093). - CVE-2021-4192: Fixed use-after-free (bsc#1194217). - CVE-2021-4193: Fixed out-of-bounds read (bsc#1194216). - CVE-2022-0128: Fixed out-of-bounds read (bsc#1194388). - CVE-2022-0213: Fixed heap-based buffer overflow (bsc#1194885). - CVE-2022-0261: Fixed heap-based buffer overflow (bsc#1194872). - CVE-2022-0318: Fixed heap-based buffer overflow (bsc#1195004). - CVE-2022-0359: Fixed heap-based buffer overflow in init_ccline() in ex_getln.c (bsc#1195203). - CVE-2022-0392: Fixed heap-based buffer overflow (bsc#1195332). - CVE-2022-0407: Fixed heap-based buffer overflow (bsc#1195354). - CVE-2022-0696: Fixed NULL pointer dereference (bsc#1196361). - CVE-2022-1381: Fixed global heap buffer overflow in skip_range (bsc#1198596). - CVE-2022-1420: Fixed out-of-range pointer offset (bsc#1198748). - CVE-2022-1616: Fixed use-after-free in append_command (bsc#1199331). - CVE-2022-1619: Fixed heap-based Buffer Overflow in function cmdline_erase_chars (bsc#1199333). - CVE-2022-1620: Fixed NULL pointer dereference in function vim_regexec_string (bsc#1199334). - CVE-2022-1733: Fixed heap-based buffer overflow in cindent.c (bsc#1199655). - CVE-2022-1735: Fixed heap-based buffer overflow (bsc#1199651). - CVE-2022-1771: Fixed stack exhaustion (bsc#1199693). - CVE-2022-1785: Fixed out-of-bounds write (bsc#1199745). - CVE-2022-1796: Fixed use-after-free in find_pattern_in_path (bsc#1199747). - CVE-2022-1851: Fixed out-of-bounds read (bsc#1199936). - CVE-2022-1897: Fixed out-of-bounds write (bsc#1200010). - CVE-2022-1898: Fixed use-after-free (bsc#1200011). - CVE-2022-1927: Fixed buffer over-read (bsc#1200012). gvim-8.2.5038-150000.5.21.1.x86_64.rpm vim-8.2.5038-150000.5.21.1.src.rpm vim-8.2.5038-150000.5.21.1.x86_64.rpm vim-data-8.2.5038-150000.5.21.1.noarch.rpm vim-data-common-8.2.5038-150000.5.21.1.noarch.rpm vim-small-8.2.5038-150000.5.21.1.x86_64.rpm gvim-8.2.5038-150000.5.21.1.s390x.rpm vim-8.2.5038-150000.5.21.1.s390x.rpm vim-small-8.2.5038-150000.5.21.1.s390x.rpm gvim-8.2.5038-150000.5.21.1.ppc64le.rpm vim-8.2.5038-150000.5.21.1.ppc64le.rpm vim-small-8.2.5038-150000.5.21.1.ppc64le.rpm gvim-8.2.5038-150000.5.21.1.aarch64.rpm vim-8.2.5038-150000.5.21.1.aarch64.rpm vim-small-8.2.5038-150000.5.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-2269 moderate SUSE Updates openSUSE-SLE 15.3 This update for virt-manager fixes the following issues: - Upstream bug fixes: (bsc#1027942) Volume upload use 1MiB read size. Console: fix error with old pygobject. Virtinst: fix message format string. Createnet: Remove some unnecessary annotations. Fix forgetting password from keyring. - Add support for detecting SUSE Linux Enterprise Micro. iscsiuio-0.7.8.6-150300.32.18.1.x86_64.rpm libopeniscsiusr0_2_0-2.1.7-150300.32.18.1.x86_64.rpm open-iscsi-2.1.7-150300.32.18.1.src.rpm open-iscsi-2.1.7-150300.32.18.1.x86_64.rpm open-iscsi-devel-2.1.7-150300.32.18.1.x86_64.rpm iscsiuio-0.7.8.6-150300.32.18.1.s390x.rpm libopeniscsiusr0_2_0-2.1.7-150300.32.18.1.s390x.rpm open-iscsi-2.1.7-150300.32.18.1.s390x.rpm open-iscsi-devel-2.1.7-150300.32.18.1.s390x.rpm iscsiuio-0.7.8.6-150300.32.18.1.ppc64le.rpm libopeniscsiusr0_2_0-2.1.7-150300.32.18.1.ppc64le.rpm open-iscsi-2.1.7-150300.32.18.1.ppc64le.rpm open-iscsi-devel-2.1.7-150300.32.18.1.ppc64le.rpm iscsiuio-0.7.8.6-150300.32.18.1.aarch64.rpm libopeniscsiusr0_2_0-2.1.7-150300.32.18.1.aarch64.rpm open-iscsi-2.1.7-150300.32.18.1.aarch64.rpm open-iscsi-devel-2.1.7-150300.32.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-2254 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2022-26354: Fixed missing virtqueue detach on error can lead to memory leak (bsc#1198712) - CVE-2021-4207: Fixed double fetch in qxl_cursor() can lead to heap buffer overflow (bsc#1198037) - CVE-2021-4206: Fixed integer overflow in cursor_alloc() can lead to heap buffer overflow (bsc#1198035) qemu-5.2.0-150300.115.2.src.rpm qemu-5.2.0-150300.115.2.x86_64.rpm qemu-arm-5.2.0-150300.115.2.x86_64.rpm qemu-audio-alsa-5.2.0-150300.115.2.x86_64.rpm qemu-audio-pa-5.2.0-150300.115.2.x86_64.rpm qemu-audio-spice-5.2.0-150300.115.2.x86_64.rpm qemu-block-curl-5.2.0-150300.115.2.x86_64.rpm qemu-block-dmg-5.2.0-150300.115.2.x86_64.rpm qemu-block-gluster-5.2.0-150300.115.2.x86_64.rpm qemu-block-iscsi-5.2.0-150300.115.2.x86_64.rpm qemu-block-nfs-5.2.0-150300.115.2.x86_64.rpm qemu-block-rbd-5.2.0-150300.115.2.x86_64.rpm qemu-block-ssh-5.2.0-150300.115.2.x86_64.rpm qemu-chardev-baum-5.2.0-150300.115.2.x86_64.rpm qemu-chardev-spice-5.2.0-150300.115.2.x86_64.rpm qemu-extra-5.2.0-150300.115.2.x86_64.rpm qemu-guest-agent-5.2.0-150300.115.2.x86_64.rpm qemu-hw-display-qxl-5.2.0-150300.115.2.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.115.2.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.115.2.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-150300.115.2.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.115.2.x86_64.rpm qemu-hw-usb-redirect-5.2.0-150300.115.2.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-150300.115.2.x86_64.rpm qemu-ipxe-1.0.0+-150300.115.2.noarch.rpm qemu-ivshmem-tools-5.2.0-150300.115.2.x86_64.rpm qemu-ksm-5.2.0-150300.115.2.x86_64.rpm qemu-kvm-5.2.0-150300.115.2.x86_64.rpm qemu-lang-5.2.0-150300.115.2.x86_64.rpm qemu-linux-user-5.2.0-150300.115.2.src.rpm qemu-linux-user-5.2.0-150300.115.2.x86_64.rpm qemu-microvm-5.2.0-150300.115.2.noarch.rpm qemu-ppc-5.2.0-150300.115.2.x86_64.rpm qemu-s390x-5.2.0-150300.115.2.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-150300.115.2.noarch.rpm qemu-sgabios-8-150300.115.2.noarch.rpm qemu-skiboot-5.2.0-150300.115.2.noarch.rpm qemu-testsuite-5.2.0-150300.115.4.src.rpm qemu-testsuite-5.2.0-150300.115.4.x86_64.rpm qemu-tools-5.2.0-150300.115.2.x86_64.rpm qemu-ui-curses-5.2.0-150300.115.2.x86_64.rpm qemu-ui-gtk-5.2.0-150300.115.2.x86_64.rpm qemu-ui-opengl-5.2.0-150300.115.2.x86_64.rpm qemu-ui-spice-app-5.2.0-150300.115.2.x86_64.rpm qemu-ui-spice-core-5.2.0-150300.115.2.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-150300.115.2.noarch.rpm qemu-vhost-user-gpu-5.2.0-150300.115.2.x86_64.rpm qemu-x86-5.2.0-150300.115.2.x86_64.rpm qemu-5.2.0-150300.115.2.s390x.rpm qemu-arm-5.2.0-150300.115.2.s390x.rpm qemu-audio-alsa-5.2.0-150300.115.2.s390x.rpm qemu-audio-pa-5.2.0-150300.115.2.s390x.rpm qemu-audio-spice-5.2.0-150300.115.2.s390x.rpm qemu-block-curl-5.2.0-150300.115.2.s390x.rpm qemu-block-dmg-5.2.0-150300.115.2.s390x.rpm qemu-block-gluster-5.2.0-150300.115.2.s390x.rpm qemu-block-iscsi-5.2.0-150300.115.2.s390x.rpm qemu-block-nfs-5.2.0-150300.115.2.s390x.rpm qemu-block-rbd-5.2.0-150300.115.2.s390x.rpm qemu-block-ssh-5.2.0-150300.115.2.s390x.rpm qemu-chardev-baum-5.2.0-150300.115.2.s390x.rpm qemu-chardev-spice-5.2.0-150300.115.2.s390x.rpm qemu-extra-5.2.0-150300.115.2.s390x.rpm qemu-guest-agent-5.2.0-150300.115.2.s390x.rpm qemu-hw-display-qxl-5.2.0-150300.115.2.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.115.2.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.115.2.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-150300.115.2.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.115.2.s390x.rpm qemu-hw-usb-redirect-5.2.0-150300.115.2.s390x.rpm qemu-hw-usb-smartcard-5.2.0-150300.115.2.s390x.rpm qemu-ivshmem-tools-5.2.0-150300.115.2.s390x.rpm qemu-ksm-5.2.0-150300.115.2.s390x.rpm qemu-kvm-5.2.0-150300.115.2.s390x.rpm qemu-lang-5.2.0-150300.115.2.s390x.rpm qemu-linux-user-5.2.0-150300.115.2.s390x.rpm qemu-ppc-5.2.0-150300.115.2.s390x.rpm qemu-s390x-5.2.0-150300.115.2.s390x.rpm qemu-testsuite-5.2.0-150300.115.4.s390x.rpm qemu-tools-5.2.0-150300.115.2.s390x.rpm qemu-ui-curses-5.2.0-150300.115.2.s390x.rpm qemu-ui-gtk-5.2.0-150300.115.2.s390x.rpm qemu-ui-opengl-5.2.0-150300.115.2.s390x.rpm qemu-ui-spice-app-5.2.0-150300.115.2.s390x.rpm qemu-ui-spice-core-5.2.0-150300.115.2.s390x.rpm qemu-vhost-user-gpu-5.2.0-150300.115.2.s390x.rpm qemu-x86-5.2.0-150300.115.2.s390x.rpm qemu-5.2.0-150300.115.2.ppc64le.rpm qemu-SLOF-5.2.0-150300.115.2.noarch.rpm qemu-arm-5.2.0-150300.115.2.ppc64le.rpm qemu-audio-alsa-5.2.0-150300.115.2.ppc64le.rpm qemu-audio-pa-5.2.0-150300.115.2.ppc64le.rpm qemu-audio-spice-5.2.0-150300.115.2.ppc64le.rpm qemu-block-curl-5.2.0-150300.115.2.ppc64le.rpm qemu-block-dmg-5.2.0-150300.115.2.ppc64le.rpm qemu-block-gluster-5.2.0-150300.115.2.ppc64le.rpm qemu-block-iscsi-5.2.0-150300.115.2.ppc64le.rpm qemu-block-nfs-5.2.0-150300.115.2.ppc64le.rpm qemu-block-rbd-5.2.0-150300.115.2.ppc64le.rpm qemu-block-ssh-5.2.0-150300.115.2.ppc64le.rpm qemu-chardev-baum-5.2.0-150300.115.2.ppc64le.rpm qemu-chardev-spice-5.2.0-150300.115.2.ppc64le.rpm qemu-extra-5.2.0-150300.115.2.ppc64le.rpm qemu-guest-agent-5.2.0-150300.115.2.ppc64le.rpm qemu-hw-display-qxl-5.2.0-150300.115.2.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.115.2.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.115.2.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-150300.115.2.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.115.2.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-150300.115.2.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-150300.115.2.ppc64le.rpm qemu-ivshmem-tools-5.2.0-150300.115.2.ppc64le.rpm qemu-ksm-5.2.0-150300.115.2.ppc64le.rpm qemu-lang-5.2.0-150300.115.2.ppc64le.rpm qemu-linux-user-5.2.0-150300.115.2.ppc64le.rpm qemu-ppc-5.2.0-150300.115.2.ppc64le.rpm qemu-s390x-5.2.0-150300.115.2.ppc64le.rpm qemu-testsuite-5.2.0-150300.115.4.ppc64le.rpm qemu-tools-5.2.0-150300.115.2.ppc64le.rpm qemu-ui-curses-5.2.0-150300.115.2.ppc64le.rpm qemu-ui-gtk-5.2.0-150300.115.2.ppc64le.rpm qemu-ui-opengl-5.2.0-150300.115.2.ppc64le.rpm qemu-ui-spice-app-5.2.0-150300.115.2.ppc64le.rpm qemu-ui-spice-core-5.2.0-150300.115.2.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-150300.115.2.ppc64le.rpm qemu-x86-5.2.0-150300.115.2.ppc64le.rpm qemu-5.2.0-150300.115.2.aarch64.rpm qemu-arm-5.2.0-150300.115.2.aarch64.rpm qemu-audio-alsa-5.2.0-150300.115.2.aarch64.rpm qemu-audio-pa-5.2.0-150300.115.2.aarch64.rpm qemu-audio-spice-5.2.0-150300.115.2.aarch64.rpm qemu-block-curl-5.2.0-150300.115.2.aarch64.rpm qemu-block-dmg-5.2.0-150300.115.2.aarch64.rpm qemu-block-gluster-5.2.0-150300.115.2.aarch64.rpm qemu-block-iscsi-5.2.0-150300.115.2.aarch64.rpm qemu-block-nfs-5.2.0-150300.115.2.aarch64.rpm qemu-block-rbd-5.2.0-150300.115.2.aarch64.rpm qemu-block-ssh-5.2.0-150300.115.2.aarch64.rpm qemu-chardev-baum-5.2.0-150300.115.2.aarch64.rpm qemu-chardev-spice-5.2.0-150300.115.2.aarch64.rpm qemu-extra-5.2.0-150300.115.2.aarch64.rpm qemu-guest-agent-5.2.0-150300.115.2.aarch64.rpm qemu-hw-display-qxl-5.2.0-150300.115.2.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.115.2.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.115.2.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-150300.115.2.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.115.2.aarch64.rpm qemu-hw-usb-redirect-5.2.0-150300.115.2.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-150300.115.2.aarch64.rpm qemu-ivshmem-tools-5.2.0-150300.115.2.aarch64.rpm qemu-ksm-5.2.0-150300.115.2.aarch64.rpm qemu-lang-5.2.0-150300.115.2.aarch64.rpm qemu-linux-user-5.2.0-150300.115.2.aarch64.rpm qemu-ppc-5.2.0-150300.115.2.aarch64.rpm qemu-s390x-5.2.0-150300.115.2.aarch64.rpm qemu-testsuite-5.2.0-150300.115.4.aarch64.rpm qemu-tools-5.2.0-150300.115.2.aarch64.rpm qemu-ui-curses-5.2.0-150300.115.2.aarch64.rpm qemu-ui-gtk-5.2.0-150300.115.2.aarch64.rpm qemu-ui-opengl-5.2.0-150300.115.2.aarch64.rpm qemu-ui-spice-app-5.2.0-150300.115.2.aarch64.rpm qemu-ui-spice-core-5.2.0-150300.115.2.aarch64.rpm qemu-vhost-user-gpu-5.2.0-150300.115.2.aarch64.rpm qemu-x86-5.2.0-150300.115.2.aarch64.rpm openSUSE-SLE-15.3-2022-2390 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for build, obs-scm-bridge, obs-service-tar_scm, osc fixes the following issues: Support the Multi Factor Authentication and the git based workflow. (jsc#SLE-24657, jsc#SLE-24652, jsc#SLE-24653) Please, see the following details changes for more information. Upgrade build from version 20210120 to 20220613 as obs-scm-bridge dependency (jsc#SLE-24657, jsc#SLE-24652, jsc#SLE-24653) - Stop building aarch64_ilp32 baselibs for aarch64 - avod aio=io_uring for now on SLE15-SP4 workers - Update SLE 15 SP4 and Leap 15.4 build config (bsc#1198740) - Use aio=io_uring if available (bsc#1197699) - debian cross build support via multi-arch (obsoleting cbinstall remnants) - Tumbleweed config synced - documentation updates - rename --debug to --debuginfo to be more exact. - docu: add buildflags:ccachtype and OBS-DoNotAppendProfileToContainername - Use git+https instead of git-https as url schema - add oops=panic kernel parameter - Updated distribution configurations (esp. Leap 15.4 and Tumbleweed) - new preinstallimages are using zstd by default - source subdirectories are used in git managed sources - supporting kvm builds as non-root user - Extend stage selection support for rpm builds - various distribution config updates - Support "BuildFlags: cumulaterpms" (was done only via suse_version before) - docker: * Add support for --root and --installroot global zypper options * improve registry handling * initial Dockerfile.dapper support * support 'curl' commands in docker builds * strip known domains from container name * support container alias names - pbuild: * add --debug option for building debuginfo packages * Use /.dockerenv as marker for docker environment * support privileged docker/nspawn mode * move --cap-add=SYS_ADMIN --cap-add=MKNOD to privileged mode * initvm: do not attempt to mount /proc and binfmt_misc handler if present * rename --hide-timestamps to --no-timestamps * reuse options from older builds * revised --single build mode * support ccache * Implement SCC calculation * Improve --shell-after-build and --single options * initial documentation of pbuild - Kiwi: * always append the profile name to kiwi container names * Add support for OBS-RemoteAsset and OBS-CopyToImage directives - container builds: * support newer podman versions * supporting multiple containers for multi-stage builds * FROM scratch build support - Other fixes: * Avoid shutdown of host when using nspawn * change sccache default size limit * speed up improvements in - vm shutdown - rpm preinstall - avoid calling external commands in a loop - using zstd for preinstallimages - no more unpacking progress indicators to avoid slowdown - virtio handling * fixed vm-type=qemu * multiple smaller bugfixes and speed improvements * Load selinux policy when using a preinstall image * Use the pax format for preinstall images if bsdtar is available * Add %riscv to std_macros * Fix combine_configs dropping newlines * epoch handling in debian builds * catch more cases where a failed build is marked as host error * fixing wrong status reporting when a job got killed * hugetlbfs handling fixes * try mounting selinuxfs in VM * Create the /sys dir when preinstalling (to satisfy dracut) - Features: * Add arm32 and loongarch definitions * Add compatibility code to initvm * Use upstream way of binfmt argv0 preservation (bsc#1197298) * Add template support for Build::SimpleJSON * download_assets: add --outdir --clean --show-dir-srcmd5 parameters support multiple --arch arguments * asset support for golang modules * add support for LXC 4. * new shortcuts for rpm building: --rpm-noprep, --rpm-build-in-place, --rpm-build-in-place-noprep for building directly from upstream git repositories without any tar ball. * mount securityfs if not mounted by kernel-obs-build * collect steal time during VM builds in statistics. * declare armv8 and armv7 compatible * support OBS Debuginfo build flag for Red Hat variants * setup rpmmacros for all build types and earlier * introducing --verbose option, currently only showing kernel messages. * support cpio creation for special files * handle QEMU >= 6.0 on POWER9 * deb zstd support (for Ubuntu 21.10) * support KVM builds with enabled network * modulemd support improvements * Support a "Distmacro" directive for recipe parser-only macros * initial config for Leap 15.4 * Unify ccache and sccache handling * Fix unpacking of deb/arch archives without bsdtar * cross architecture build support (for rpm and kiwi) * modulemd meta data support * supporting external asset stores for source files * support multiple post build checks placed in the directory: /usr/lib/build/post-build-checks/ * sccache support * New --shell-after-fail option * allow to disable squashfs in SimpleImage * supporting aarch64 kernel on armv?l distributions * Supporting URL's in Flatpak manifests Provide obs-scm-bridge on version 0.2: (jsc#SLE-24657, jsc#SLE-24652, jsc#SLE-24653) * no shallow clone when used with osc * support for LFS fetch * Fixes for _config file export and path handling * Fix a traceback when a project or a package is managed in scm, print a warning instead. Update osc from version 0.172.0 to 0.179.0 (jsc#SLE-24657, jsc#SLE-24652, jsc#SLE-24653) - 0.179.0 - signature (ssh key) authetication fixes (RSA key support, skip binary files) - commandline: handle calls without arguments gracefully - use percent-quoted url for download url generation - osc co/up: highlight pending requests' header - get_results(): fix check for empty details - another exception for github URLs for "osc add" - update Sphinx configuration, documentation fixes - make Sphinx optional in setup.py not to break package builds - support flavors in aggregatepac - check if repos provided to aggregatepac command exist - several coding style fixes - 0.178.0 - EXPERIMENTAL: git repository handling * init command is working inside of a git repository * downloadassets command fetches references assets from build description * checkout is cloning from git - EXPERIMENTAL: signature (ssh key) authetication * allow to configure 'sshkey' option in the config * try to guess ssh key from the keys added to ssh-agent * rename OscHTTPBasicAuthHandler to OscHTTPAuthHandler * simplify bad auth retry workaround needed for old python versions - add support for building preinstall images - add support for building Helm charts - show the md5s that are failing to validate after fetching a package - add missing space to copypac completion - never require login in the help command - linkdiff: raise an exception when an added file is missing - run tests via calling 'setup.py test' - several coding style fixes - spec file: - run tests via calling 'setup.py test' - disabled tests in debian.rules - 0.177.0 * switch to python3 in osc-wrapper and make python3 explicit * allow formatting of the sccache uri * show repository state and details * a few minor fixes and improvements in credentials handling * order credential managers by priority * kernel keyring is now supported as credential manager * support regex based name filtering in core.get_prj_results() * revision parsing parseRevisionOption(): cleanup and make logic consistent * use sr_ids[0] for superseding (fixes issues with superseding requests containing many packages * download logs and metadata in subdirs named by packages when osc getbinaries is issued on project level or in multibuild case - spec file: * recommed python-keyring-keyutils for new kernel keyring backend - 0.176.0 * add -F option to osc submitreq * add --verbose option to build command * fix getbinaries command to fetch also multibuild packages * fix getbinaries -M/--multibuild-package option usage * skip fetching metadata and logs in the getbinaries command * do not download a bdep with a hdrmd5 from the api by default * re-download file from API when hdrmd5 doesn't match * honor --download-api-only option * remove Windows from the supported operating systems * fix license in setup.py * add py3.10 and py3.11 to the classifiers in setup.py * use the latest version of COPYING file from gnu.org * fix crash on terminal resize during download * do not fail with a traceback in case of a config error * preserve oscrc symlink when writing conf file * escape % character in binary download URLs * fix printing paths to built debian packages - 0.175.1: * Modified SPEC file to be more compatible with KOJI and COPR. ** Modified SPEC file to use python3 for CentOS/RHEL 7 ** Modified SPEC file use fedora/rhel version macros. ** Changed perl to sed in %install section of SPEC file. - 0.175.0: * do not crash when running "osc search --binary --verbose foo" * don't run source services when building outside of an OSC package working copy * fix XDG_CONFIG_HOME * offer a force ("f") choice in metafile.edit's error handling code path * fix XPath used in search requests * add support for creating a workflow token via "osc token" * handle missing os.sysconf more gracefully * detachbranch: remove _link when link target got removed * improve error message in case of an URLError * fix downloading from mirrors * avoid sending entire projects on "osc mr" * fix hdmrd5 check of local cached files * improve logic for conffile mode handling - 0.174.0: * fix password deletion via "osc config -d <apiurl> pass" * support changing the password store via "osc config <apiurl> --select-password-store") * support slash syntax in osc browse ("osc browse prj/pkg" is equivalent to "osc browse prj pkg") * fix the commit of a frozen package wc * fix local product builds using obsrepositories:/ directives * print a meaningful message when trying to a commit a non-existent package - force Mageia >= 8 builds to python3; python2 is deprecated in Mageia 8 and up. - 0.173.0: * add showlinked command to show all references of packages linking to a given one * add build --shell-after-build flag. It can also be set via .oscrc. * add build --stage flag. Useful for example for fixing file lists and just running the install section to see the result of it (use --stage=i=). Check the help for more details. * allow to run build script as non-root, by setting su-wrapper empty => osc is not guessing anymore if user builds are wanted * add support for cross arch local build using a sysroot * support slash notation in "osc creq -a <action type> args" * add "--force" option to the "osc add" command (can be used to override the exclude_glob config option) * support the commit of arbitrary sized files * add support for sccache - Install macros.osc to %{_rpmmacrodir}, not to /etc/rpm. Update obs-service-tar_scm from version 0.10.22.1615538418.07a353d to version 0.10.30.1641990734.bdad8f9 (bsc#1200148) - Update to version 0.10.30.1641990734.bdad8f9: * fixes for python2.7 compatibility * fix test cases * fix various linter problems with pylint 2.11.1 * disable consider-using-f-string in pylint * added TC for _stash_pop_required * assertTarIsDeeply now more verbose in case of failure * remove tearDown/Trace from testenv.py * fix regression to keep local changes when running in osc * various fixes to make linter happy * fix tests for python 2.7 - Update to version 0.10.29.1634038025.85bfc3f: * fix test cases * fix various linter problems with pylint 2.11.1 * disable consider-using-f-string in pylint * added TC for _stash_pop_required * assertTarIsDeeply now more verbose in case of failure * remove tearDown/Trace from testenv.py * fix regression to keep local changes when running in osc - Update to version 0.10.28.1632141620.a8837d3: * fix missing "checkout" when running in osc * fix breakage on version detection * change locale - Update to version 0.10.27.1626072657.0fb7a03: * [ci] enhanced github actions for multiple python versions * Create main.yml * Change date format from short to %Y%m%d. - Update to version 0.10.26.1624258505.aed4969: * almalinux in spec file * fix include filters for obscpio files * fix python interpreter for mageia 8 * TarScm: use owner/group root in .obscpio files - Update to version 0.10.26.1623775884.87f49a8: * fixed include/exclude filtering * add '--' to git log command if file/dir equal revision exists * add '--source' to git log command * disabled consider-using-with in .pylint*rc * package .gitignore files * Fix version _none_ generate tarball with '-' * Prevent KeyError in check_for_branch_request method * removed skipped test case (obsolete since 5 yrs) * testing for obscpio/obsinfo * fix regression - obsinfo included the version string * Revert "remove useless variables" * remove useless variables * added param --without-version * extracted dstname to _dstname * cleanup TarSCM/tasks.py for pylint * add date/time to logging output for better debugging * Fix typos obs-scm-bridge-0.2-150100.3.3.1.noarch.rpm obs-scm-bridge-0.2-150100.3.3.1.src.rpm obs-service-appimage-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-obs_scm-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-obs_scm-common-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-snapcraft-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-tar-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-tar_scm-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-tar_scm-0.10.30.1641990734.bdad8f9-150000.3.15.1.src.rpm osc-0.179.0-150100.3.29.1.noarch.rpm osc-0.179.0-150100.3.29.1.src.rpm perl-Crypt-SSLeay-0.72-150000.5.5.1.src.rpm perl-Crypt-SSLeay-0.72-150000.5.5.1.x86_64.rpm perl-YAML-LibYAML-0.69-150000.3.5.1.src.rpm perl-YAML-LibYAML-0.69-150000.3.5.1.x86_64.rpm perl-Crypt-SSLeay-0.72-150000.5.5.1.s390x.rpm perl-YAML-LibYAML-0.69-150000.3.5.1.s390x.rpm perl-Crypt-SSLeay-0.72-150000.5.5.1.ppc64le.rpm perl-YAML-LibYAML-0.69-150000.3.5.1.ppc64le.rpm perl-Crypt-SSLeay-0.72-150000.5.5.1.aarch64.rpm perl-YAML-LibYAML-0.69-150000.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-2060 moderate SUSE Updates openSUSE-SLE 15.3 This recommended update for geronimo-specs provides the following fix: - Ship geronimo-annotation-1_0-api to SUSE Manager server as it is now needed by google-gson. (bsc#1200426) geronimo-annotation-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-commonj-1_1-apis-1.2-150200.15.2.1.noarch.rpm geronimo-corba-1_0-apis-1.2-150200.15.2.1.noarch.rpm geronimo-corba-2_3-apis-1.2-150200.15.2.1.noarch.rpm geronimo-ejb-2_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-ejb-3_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-el-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-interceptor-3_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-j2ee-1_4-apis-1.2-150200.15.2.1.noarch.rpm geronimo-j2ee-connector-1_5-api-1.2-150200.15.2.1.noarch.rpm geronimo-j2ee-deployment-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-j2ee-management-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-j2ee-management-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-jacc-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-jacc-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-jaf-1_0_2-api-1.2-150200.15.2.1.noarch.rpm geronimo-jaf-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-javaee-deployment-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-javamail-1_3_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-javamail-1_4-api-1.2-150200.15.2.1.noarch.rpm geronimo-jaxr-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-jaxrpc-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-jms-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-jpa-3_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-jsp-2_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-jsp-2_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-jta-1_0_1B-api-1.2-150200.15.2.1.noarch.rpm geronimo-jta-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-qname-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-saaj-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-servlet-2_4-api-1.2-150200.15.2.1.noarch.rpm geronimo-servlet-2_5-api-1.2-150200.15.2.1.noarch.rpm geronimo-specs-1.2-150200.15.2.1.src.rpm geronimo-stax-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-ws-metadata-2_0-api-1.2-150200.15.2.1.noarch.rpm openSUSE-SLE-15.3-2022-2310 important SUSE Updates openSUSE-SLE 15.3 This update of s390-tools fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) libekmfweb1-2.15.1-150300.8.24.1.s390x.rpm libekmfweb1-devel-2.15.1-150300.8.24.1.s390x.rpm osasnmpd-2.15.1-150300.8.24.1.s390x.rpm s390-tools-2.15.1-150300.8.24.1.s390x.rpm s390-tools-2.15.1-150300.8.24.1.src.rpm s390-tools-hmcdrvfs-2.15.1-150300.8.24.1.s390x.rpm s390-tools-zdsfs-2.15.1-150300.8.24.1.s390x.rpm openSUSE-SLE-15.3-2022-2322 important SUSE Updates openSUSE-SLE 15.3 This update of fwupd fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) dfu-tool-1.5.8-150300.3.5.1.x86_64.rpm fwupd-1.5.8-150300.3.5.1.src.rpm fwupd-1.5.8-150300.3.5.1.x86_64.rpm fwupd-devel-1.5.8-150300.3.5.1.x86_64.rpm fwupd-lang-1.5.8-150300.3.5.1.noarch.rpm fwupdtpmevlog-1.5.8-150300.3.5.1.x86_64.rpm libfwupd2-1.5.8-150300.3.5.1.x86_64.rpm libfwupdplugin1-1.5.8-150300.3.5.1.x86_64.rpm typelib-1_0-Fwupd-2_0-1.5.8-150300.3.5.1.x86_64.rpm typelib-1_0-FwupdPlugin-1_0-1.5.8-150300.3.5.1.x86_64.rpm dfu-tool-1.5.8-150300.3.5.1.s390x.rpm fwupd-1.5.8-150300.3.5.1.s390x.rpm fwupd-devel-1.5.8-150300.3.5.1.s390x.rpm fwupdtpmevlog-1.5.8-150300.3.5.1.s390x.rpm libfwupd2-1.5.8-150300.3.5.1.s390x.rpm libfwupdplugin1-1.5.8-150300.3.5.1.s390x.rpm typelib-1_0-Fwupd-2_0-1.5.8-150300.3.5.1.s390x.rpm typelib-1_0-FwupdPlugin-1_0-1.5.8-150300.3.5.1.s390x.rpm dfu-tool-1.5.8-150300.3.5.1.ppc64le.rpm fwupd-1.5.8-150300.3.5.1.ppc64le.rpm fwupd-devel-1.5.8-150300.3.5.1.ppc64le.rpm fwupdtpmevlog-1.5.8-150300.3.5.1.ppc64le.rpm libfwupd2-1.5.8-150300.3.5.1.ppc64le.rpm libfwupdplugin1-1.5.8-150300.3.5.1.ppc64le.rpm typelib-1_0-Fwupd-2_0-1.5.8-150300.3.5.1.ppc64le.rpm typelib-1_0-FwupdPlugin-1_0-1.5.8-150300.3.5.1.ppc64le.rpm dfu-tool-1.5.8-150300.3.5.1.aarch64.rpm fwupd-1.5.8-150300.3.5.1.aarch64.rpm fwupd-devel-1.5.8-150300.3.5.1.aarch64.rpm fwupdtpmevlog-1.5.8-150300.3.5.1.aarch64.rpm libfwupd2-1.5.8-150300.3.5.1.aarch64.rpm libfwupdplugin1-1.5.8-150300.3.5.1.aarch64.rpm typelib-1_0-Fwupd-2_0-1.5.8-150300.3.5.1.aarch64.rpm typelib-1_0-FwupdPlugin-1_0-1.5.8-150300.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-2810 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-kiwi fixes the following issues: - Preserve the LABEL= setting when the grub config file is re-generated. (bsc#1197616) - Add ensure empty tmpdirs option for OCI containers. (bsc#1197783) - Set /.snapshots subvolume to mode 0700 (bsc#1194992) dracut-kiwi-lib-9.24.36-150100.3.53.2.x86_64.rpm dracut-kiwi-live-9.24.36-150100.3.53.2.x86_64.rpm dracut-kiwi-oem-dump-9.24.36-150100.3.53.2.x86_64.rpm dracut-kiwi-oem-repart-9.24.36-150100.3.53.2.x86_64.rpm dracut-kiwi-overlay-9.24.36-150100.3.53.2.x86_64.rpm kiwi-man-pages-9.24.36-150100.3.53.2.x86_64.rpm kiwi-pxeboot-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-bootloaders-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-containers-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-core-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-disk-images-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-filesystems-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-image-validation-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-iso-media-9.24.36-150100.3.53.2.x86_64.rpm kiwi-tools-9.24.36-150100.3.53.2.x86_64.rpm python-kiwi-9.24.36-150100.3.53.2.src.rpm python3-kiwi-9.24.36-150100.3.53.2.x86_64.rpm dracut-kiwi-lib-9.24.36-150100.3.53.2.s390x.rpm dracut-kiwi-live-9.24.36-150100.3.53.2.s390x.rpm dracut-kiwi-oem-dump-9.24.36-150100.3.53.2.s390x.rpm dracut-kiwi-oem-repart-9.24.36-150100.3.53.2.s390x.rpm dracut-kiwi-overlay-9.24.36-150100.3.53.2.s390x.rpm kiwi-man-pages-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-bootloaders-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-containers-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-core-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-disk-images-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-filesystems-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-image-validation-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-iso-media-9.24.36-150100.3.53.2.s390x.rpm kiwi-tools-9.24.36-150100.3.53.2.s390x.rpm python3-kiwi-9.24.36-150100.3.53.2.s390x.rpm dracut-kiwi-lib-9.24.36-150100.3.53.2.ppc64le.rpm dracut-kiwi-live-9.24.36-150100.3.53.2.ppc64le.rpm dracut-kiwi-oem-dump-9.24.36-150100.3.53.2.ppc64le.rpm dracut-kiwi-oem-repart-9.24.36-150100.3.53.2.ppc64le.rpm dracut-kiwi-overlay-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-man-pages-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-bootloaders-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-containers-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-core-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-disk-images-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-filesystems-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-image-validation-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-iso-media-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-tools-9.24.36-150100.3.53.2.ppc64le.rpm python3-kiwi-9.24.36-150100.3.53.2.ppc64le.rpm dracut-kiwi-lib-9.24.36-150100.3.53.2.aarch64.rpm dracut-kiwi-live-9.24.36-150100.3.53.2.aarch64.rpm dracut-kiwi-oem-dump-9.24.36-150100.3.53.2.aarch64.rpm dracut-kiwi-oem-repart-9.24.36-150100.3.53.2.aarch64.rpm dracut-kiwi-overlay-9.24.36-150100.3.53.2.aarch64.rpm kiwi-man-pages-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-bootloaders-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-containers-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-core-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-disk-images-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-filesystems-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-image-validation-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-iso-media-9.24.36-150100.3.53.2.aarch64.rpm kiwi-tools-9.24.36-150100.3.53.2.aarch64.rpm python3-kiwi-9.24.36-150100.3.53.2.aarch64.rpm openSUSE-SLE-15.3-2022-3028 low SUSE Updates openSUSE-SLE 15.3 This update for python-pytz fixes the following issues: - update to 2022.1: matches tzdata 2022a - declare python 3.10 compatibility python-pytz-2022.1-150300.3.6.1.src.rpm python2-pytz-2022.1-150300.3.6.1.noarch.rpm python3-pytz-2022.1-150300.3.6.1.noarch.rpm openSUSE-SLE-15.3-2022-2259 moderate SUSE Updates openSUSE-SLE 15.3 This update for ImageMagick fixes the following issues: - CVE-2019-17540: Fixed heap-based buffer overflow in ReadPSInfo in coders/ps.c. (bsc#1153866) - CVE-2022-32545: Fixed an outside the range of representable values of type. (bsc#1200388) - CVE-2022-32546: Fixed an outside the range of representable values of type. (bsc#1200389) - CVE-2022-32547: Fixed a load of misaligned address at MagickCore/property.c. (bsc#1200387) ImageMagick-7.0.7.34-150200.10.31.1.src.rpm ImageMagick-7.0.7.34-150200.10.31.1.x86_64.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.31.1.x86_64.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.31.1.x86_64.rpm ImageMagick-devel-32bit-7.0.7.34-150200.10.31.1.x86_64.rpm ImageMagick-devel-7.0.7.34-150200.10.31.1.x86_64.rpm ImageMagick-doc-7.0.7.34-150200.10.31.1.noarch.rpm ImageMagick-extra-7.0.7.34-150200.10.31.1.x86_64.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-150200.10.31.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.31.1.x86_64.rpm libMagick++-devel-32bit-7.0.7.34-150200.10.31.1.x86_64.rpm libMagick++-devel-7.0.7.34-150200.10.31.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-150200.10.31.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.31.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-150200.10.31.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.31.1.x86_64.rpm perl-PerlMagick-7.0.7.34-150200.10.31.1.x86_64.rpm ImageMagick-7.0.7.34-150200.10.31.1.s390x.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.31.1.s390x.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.31.1.s390x.rpm ImageMagick-devel-7.0.7.34-150200.10.31.1.s390x.rpm ImageMagick-extra-7.0.7.34-150200.10.31.1.s390x.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.31.1.s390x.rpm libMagick++-devel-7.0.7.34-150200.10.31.1.s390x.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.31.1.s390x.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.31.1.s390x.rpm perl-PerlMagick-7.0.7.34-150200.10.31.1.s390x.rpm ImageMagick-7.0.7.34-150200.10.31.1.ppc64le.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.31.1.ppc64le.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.31.1.ppc64le.rpm ImageMagick-devel-7.0.7.34-150200.10.31.1.ppc64le.rpm ImageMagick-extra-7.0.7.34-150200.10.31.1.ppc64le.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.31.1.ppc64le.rpm libMagick++-devel-7.0.7.34-150200.10.31.1.ppc64le.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.31.1.ppc64le.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.31.1.ppc64le.rpm perl-PerlMagick-7.0.7.34-150200.10.31.1.ppc64le.rpm ImageMagick-7.0.7.34-150200.10.31.1.aarch64.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.31.1.aarch64.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.31.1.aarch64.rpm ImageMagick-devel-7.0.7.34-150200.10.31.1.aarch64.rpm ImageMagick-extra-7.0.7.34-150200.10.31.1.aarch64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.31.1.aarch64.rpm libMagick++-devel-7.0.7.34-150200.10.31.1.aarch64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.31.1.aarch64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.31.1.aarch64.rpm perl-PerlMagick-7.0.7.34-150200.10.31.1.aarch64.rpm openSUSE-SLE-15.3-2022-2342 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: - CVE-2022-26377: Fixed possible request smuggling in mod_proxy_ajp (bsc#1200338) - CVE-2022-28614: Fixed read beyond bounds via ap_rwrite() (bsc#1200340) - CVE-2022-28615: Fixed read beyond bounds in ap_strcmp_match() (bsc#1200341) - CVE-2022-29404: Fixed denial of service in mod_lua r:parsebody (bsc#1200345) - CVE-2022-30556: Fixed information disclosure in mod_lua with websockets (bsc#1200350) - CVE-2022-30522: Fixed mod_sed denial of service (bsc#1200352) - CVE-2022-31813: Fixed mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism (bsc#1200348) apache2-2.4.51-150200.3.48.1.src.rpm apache2-2.4.51-150200.3.48.1.x86_64.rpm apache2-devel-2.4.51-150200.3.48.1.x86_64.rpm apache2-doc-2.4.51-150200.3.48.1.noarch.rpm apache2-event-2.4.51-150200.3.48.1.x86_64.rpm apache2-example-pages-2.4.51-150200.3.48.1.x86_64.rpm apache2-prefork-2.4.51-150200.3.48.1.x86_64.rpm apache2-utils-2.4.51-150200.3.48.1.x86_64.rpm apache2-worker-2.4.51-150200.3.48.1.x86_64.rpm apache2-2.4.51-150200.3.48.1.s390x.rpm apache2-devel-2.4.51-150200.3.48.1.s390x.rpm apache2-event-2.4.51-150200.3.48.1.s390x.rpm apache2-example-pages-2.4.51-150200.3.48.1.s390x.rpm apache2-prefork-2.4.51-150200.3.48.1.s390x.rpm apache2-utils-2.4.51-150200.3.48.1.s390x.rpm apache2-worker-2.4.51-150200.3.48.1.s390x.rpm apache2-2.4.51-150200.3.48.1.ppc64le.rpm apache2-devel-2.4.51-150200.3.48.1.ppc64le.rpm apache2-event-2.4.51-150200.3.48.1.ppc64le.rpm apache2-example-pages-2.4.51-150200.3.48.1.ppc64le.rpm apache2-prefork-2.4.51-150200.3.48.1.ppc64le.rpm apache2-utils-2.4.51-150200.3.48.1.ppc64le.rpm apache2-worker-2.4.51-150200.3.48.1.ppc64le.rpm apache2-2.4.51-150200.3.48.1.aarch64.rpm apache2-devel-2.4.51-150200.3.48.1.aarch64.rpm apache2-event-2.4.51-150200.3.48.1.aarch64.rpm apache2-example-pages-2.4.51-150200.3.48.1.aarch64.rpm apache2-prefork-2.4.51-150200.3.48.1.aarch64.rpm apache2-utils-2.4.51-150200.3.48.1.aarch64.rpm apache2-worker-2.4.51-150200.3.48.1.aarch64.rpm openSUSE-SLE-15.3-2022-2114 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for build provides the following changes: Support the Multi Factor Authentication in osc (jsc#SLE-24657, jsc#SLE-24652, jsc#SLE-24653) - Upgrade build from version 20220422 to version 20220613: * deb: defer dpkg triggers until all packages are installed, and disable man-db altogether * Add support of Debian Source format 3.0 (quilt) and changelog modification * Stop building aarch64_ilp32 baselibs for aarch64 build-20220613-150200.12.1.noarch.rpm build-20220613-150200.12.1.src.rpm build-initvm-x86_64-20220613-150200.12.1.noarch.rpm build-mkbaselibs-20220613-150200.12.1.noarch.rpm build-mkdrpms-20220613-150200.12.1.noarch.rpm build-initvm-s390x-20220613-150200.12.1.noarch.rpm build-initvm-powerpc64le-20220613-150200.12.1.noarch.rpm build-initvm-aarch64-20220613-150200.12.1.noarch.rpm openSUSE-SLE-15.3-2022-2399 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: ComplianceAsCode was updated to 0.1.62 (jsc#ECO-3319): - Update rhel8 stig to v1r6 - OL7 STIG v2r7 update - Initial definition of ANSSI BP28 minmal profile for SUSE Linux Enterprise scap-security-guide-0.1.62-150000.1.39.1.noarch.rpm scap-security-guide-0.1.62-150000.1.39.1.src.rpm scap-security-guide-debian-0.1.62-150000.1.39.1.noarch.rpm scap-security-guide-redhat-0.1.62-150000.1.39.1.noarch.rpm scap-security-guide-ubuntu-0.1.62-150000.1.39.1.noarch.rpm openSUSE-SLE-15.3-2022-2850 moderate SUSE Updates openSUSE-SLE 15.3 This update for rustup fixes the following issues: - added correct provides to the obsoletes of older rust subpackages, to get correct provides obsoletes pairs and allow better transition between RPMs. (bsc#1200499) rustup-1.24.3~git1.0a74fef5-150300.7.10.1.src.rpm rustup-1.24.3~git1.0a74fef5-150300.7.10.1.x86_64.rpm rustup-1.24.3~git1.0a74fef5-150300.7.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-2340 important SUSE Updates openSUSE-SLE 15.3 This update of fwupdate fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) fwupdate-12-150100.11.10.1.src.rpm fwupdate-12-150100.11.10.1.x86_64.rpm fwupdate-devel-12-150100.11.10.1.x86_64.rpm fwupdate-efi-12-150100.11.10.1.x86_64.rpm libfwup1-12-150100.11.10.1.x86_64.rpm fwupdate-12-150100.11.10.1.aarch64.rpm fwupdate-devel-12-150100.11.10.1.aarch64.rpm fwupdate-efi-12-150100.11.10.1.aarch64.rpm libfwup1-12-150100.11.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-2156 important SUSE Updates openSUSE-SLE 15.3 - Add python3-dnspython and python3-zypp-plugin to unrestricted channels. python-dnspython-1.15.0-150000.3.2.1.src.rpm python2-dnspython-1.15.0-150000.3.2.1.noarch.rpm python2-zypp-plugin-0.6.3-150000.4.2.1.noarch.rpm python3-dnspython-1.15.0-150000.3.2.1.noarch.rpm python3-zypp-plugin-0.6.3-150000.4.2.1.noarch.rpm zypp-plugin-0.6.3-150000.4.2.1.src.rpm openSUSE-SLE-15.3-2022-2168 important SUSE Updates openSUSE-SLE 15.3 This update of drbd fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) drbd-9.0.29~0+git.9a7bc817-150300.3.5.1.src.rpm drbd-9.0.29~0+git.9a7bc817-150300.3.5.1.x86_64.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_150300.59.71-150300.3.5.1.x86_64.rpm drbd-kmp-preempt-9.0.29~0+git.9a7bc817_k5.3.18_150300.59.71-150300.3.5.1.x86_64.rpm drbd-kmp-rt-9.0.29~0+git.9a7bc817_k5.3.18_8.13-150300.3.5.1.x86_64.rpm drbd-9.0.29~0+git.9a7bc817-150300.3.5.1.s390x.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_150300.59.71-150300.3.5.1.s390x.rpm drbd-9.0.29~0+git.9a7bc817-150300.3.5.1.ppc64le.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_150300.59.71-150300.3.5.1.ppc64le.rpm drbd-9.0.29~0+git.9a7bc817-150300.3.5.1.aarch64.rpm drbd-kmp-64kb-9.0.29~0+git.9a7bc817_k5.3.18_150300.59.71-150300.3.5.1.aarch64.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_150300.59.71-150300.3.5.1.aarch64.rpm drbd-kmp-preempt-9.0.29~0+git.9a7bc817_k5.3.18_150300.59.71-150300.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-2563 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-migration-services fixes the following issues: - Enable prechecks as a systemd process - Add an EnvironmentFile to 'suse-migration-prepare.service' (bsc#1199028) - Add fix option to pre-checks - Remove --no-kernel from host independant initrd - Add an unsupported caveat for hpc - Add multiversion kernel checks to pre-checks - Enable prechecks for SLES15-Migration - Add fix for setup in tests - Add more details around migration_proudct - Add an option to create a 'fat' initrd - Fix pytest 7 compatibility - Mocks the command call for tests that run in an environment with no partitions or partitions have not been defined - Add zypper migration plugin verbosity - This fixes issue with migration in 'DMS'. (bsc#1191634) - Add migration_product to documentation - Show config file content in the migration log suse-migration-services-2.0.33-150000.1.46.1.noarch.rpm suse-migration-services-2.0.33-150000.1.46.1.src.rpm openSUSE-SLE-15.3-2022-2564 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-migration-rpm fixes the following issues: Update for suse-migration-rpm. suse-migration-rpm-1.0.1-150000.1.12.1.src.rpm suse-migration-rpm-1.0.1-150000.1.12.1.x86_64.rpm suse-migration-rpm-1.0.1-150000.1.12.1.s390x.rpm suse-migration-rpm-1.0.1-150000.1.12.1.ppc64le.rpm suse-migration-rpm-1.0.1-150000.1.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-2157 moderate SUSE Updates openSUSE-SLE 15.3 This update for binutils fixes the following issues: - For building the shim 15.6~rc1 and later versions aarch64 image, objcopy needs to support efi-app-aarch64 target. (bsc#1198458) binutils-2.37-150100.7.37.1.src.rpm binutils-2.37-150100.7.37.1.x86_64.rpm binutils-devel-2.37-150100.7.37.1.x86_64.rpm binutils-devel-32bit-2.37-150100.7.37.1.x86_64.rpm binutils-gold-2.37-150100.7.37.1.x86_64.rpm bpftrace-0.11.4-150300.3.11.4.src.rpm bpftrace-0.11.4-150300.3.11.4.x86_64.rpm bpftrace-tools-0.11.4-150300.3.11.4.noarch.rpm cross-aarch64-binutils-2.37-150100.7.37.1.src.rpm cross-aarch64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-arm-binutils-2.37-150100.7.37.1.src.rpm cross-arm-binutils-2.37-150100.7.37.1.x86_64.rpm cross-avr-binutils-2.37-150100.7.37.1.src.rpm cross-avr-binutils-2.37-150100.7.37.1.x86_64.rpm cross-epiphany-binutils-2.37-150100.7.37.1.src.rpm cross-epiphany-binutils-2.37-150100.7.37.1.x86_64.rpm cross-hppa-binutils-2.37-150100.7.37.1.src.rpm cross-hppa-binutils-2.37-150100.7.37.1.x86_64.rpm cross-hppa64-binutils-2.37-150100.7.37.1.src.rpm cross-hppa64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-i386-binutils-2.37-150100.7.37.1.src.rpm cross-i386-binutils-2.37-150100.7.37.1.x86_64.rpm cross-ia64-binutils-2.37-150100.7.37.1.src.rpm cross-ia64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-m68k-binutils-2.37-150100.7.37.1.src.rpm cross-m68k-binutils-2.37-150100.7.37.1.x86_64.rpm cross-mips-binutils-2.37-150100.7.37.1.src.rpm cross-mips-binutils-2.37-150100.7.37.1.x86_64.rpm cross-ppc-binutils-2.37-150100.7.37.1.src.rpm cross-ppc-binutils-2.37-150100.7.37.1.x86_64.rpm cross-ppc64-binutils-2.37-150100.7.37.1.src.rpm cross-ppc64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-ppc64le-binutils-2.37-150100.7.37.1.src.rpm cross-ppc64le-binutils-2.37-150100.7.37.1.x86_64.rpm cross-riscv64-binutils-2.37-150100.7.37.1.src.rpm cross-riscv64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-rx-binutils-2.37-150100.7.37.1.src.rpm cross-rx-binutils-2.37-150100.7.37.1.x86_64.rpm cross-s390-binutils-2.37-150100.7.37.1.src.rpm cross-s390-binutils-2.37-150100.7.37.1.x86_64.rpm cross-s390x-binutils-2.37-150100.7.37.1.src.rpm cross-s390x-binutils-2.37-150100.7.37.1.x86_64.rpm cross-sparc-binutils-2.37-150100.7.37.1.src.rpm cross-sparc-binutils-2.37-150100.7.37.1.x86_64.rpm cross-sparc64-binutils-2.37-150100.7.37.1.src.rpm cross-sparc64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-spu-binutils-2.37-150100.7.37.1.src.rpm cross-spu-binutils-2.37-150100.7.37.1.x86_64.rpm libctf-nobfd0-2.37-150100.7.37.1.x86_64.rpm libctf0-2.37-150100.7.37.1.x86_64.rpm binutils-2.37-150100.7.37.1.s390x.rpm binutils-devel-2.37-150100.7.37.1.s390x.rpm binutils-gold-2.37-150100.7.37.1.s390x.rpm bpftrace-0.11.4-150300.3.11.4.s390x.rpm cross-aarch64-binutils-2.37-150100.7.37.1.s390x.rpm cross-arm-binutils-2.37-150100.7.37.1.s390x.rpm cross-avr-binutils-2.37-150100.7.37.1.s390x.rpm cross-epiphany-binutils-2.37-150100.7.37.1.s390x.rpm cross-hppa-binutils-2.37-150100.7.37.1.s390x.rpm cross-hppa64-binutils-2.37-150100.7.37.1.s390x.rpm cross-i386-binutils-2.37-150100.7.37.1.s390x.rpm cross-ia64-binutils-2.37-150100.7.37.1.s390x.rpm cross-m68k-binutils-2.37-150100.7.37.1.s390x.rpm cross-mips-binutils-2.37-150100.7.37.1.s390x.rpm cross-ppc-binutils-2.37-150100.7.37.1.s390x.rpm cross-ppc64-binutils-2.37-150100.7.37.1.s390x.rpm cross-ppc64le-binutils-2.37-150100.7.37.1.s390x.rpm cross-riscv64-binutils-2.37-150100.7.37.1.s390x.rpm cross-rx-binutils-2.37-150100.7.37.1.s390x.rpm cross-s390-binutils-2.37-150100.7.37.1.s390x.rpm cross-sparc-binutils-2.37-150100.7.37.1.s390x.rpm cross-sparc64-binutils-2.37-150100.7.37.1.s390x.rpm cross-spu-binutils-2.37-150100.7.37.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.37.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.37.1.src.rpm libctf-nobfd0-2.37-150100.7.37.1.s390x.rpm libctf0-2.37-150100.7.37.1.s390x.rpm binutils-2.37-150100.7.37.1.ppc64le.rpm binutils-devel-2.37-150100.7.37.1.ppc64le.rpm binutils-gold-2.37-150100.7.37.1.ppc64le.rpm bpftrace-0.11.4-150300.3.11.4.ppc64le.rpm cross-aarch64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-arm-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-avr-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-epiphany-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-hppa-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-hppa64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-i386-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-ia64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-m68k-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-mips-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-ppc-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-ppc64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-riscv64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-rx-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-s390-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-s390x-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-sparc-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-sparc64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-spu-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-x86_64-binutils-2.37-150100.7.37.1.ppc64le.rpm libctf-nobfd0-2.37-150100.7.37.1.ppc64le.rpm libctf0-2.37-150100.7.37.1.ppc64le.rpm binutils-2.37-150100.7.37.1.aarch64.rpm binutils-devel-2.37-150100.7.37.1.aarch64.rpm binutils-gold-2.37-150100.7.37.1.aarch64.rpm bpftrace-0.11.4-150300.3.11.4.aarch64.rpm cross-arm-binutils-2.37-150100.7.37.1.aarch64.rpm cross-avr-binutils-2.37-150100.7.37.1.aarch64.rpm cross-epiphany-binutils-2.37-150100.7.37.1.aarch64.rpm cross-hppa-binutils-2.37-150100.7.37.1.aarch64.rpm cross-hppa64-binutils-2.37-150100.7.37.1.aarch64.rpm cross-i386-binutils-2.37-150100.7.37.1.aarch64.rpm cross-ia64-binutils-2.37-150100.7.37.1.aarch64.rpm cross-m68k-binutils-2.37-150100.7.37.1.aarch64.rpm cross-mips-binutils-2.37-150100.7.37.1.aarch64.rpm cross-ppc-binutils-2.37-150100.7.37.1.aarch64.rpm cross-ppc64-binutils-2.37-150100.7.37.1.aarch64.rpm cross-ppc64le-binutils-2.37-150100.7.37.1.aarch64.rpm cross-riscv64-binutils-2.37-150100.7.37.1.aarch64.rpm cross-rx-binutils-2.37-150100.7.37.1.aarch64.rpm cross-s390-binutils-2.37-150100.7.37.1.aarch64.rpm cross-s390x-binutils-2.37-150100.7.37.1.aarch64.rpm cross-sparc-binutils-2.37-150100.7.37.1.aarch64.rpm cross-sparc64-binutils-2.37-150100.7.37.1.aarch64.rpm cross-spu-binutils-2.37-150100.7.37.1.aarch64.rpm cross-x86_64-binutils-2.37-150100.7.37.1.aarch64.rpm libctf-nobfd0-2.37-150100.7.37.1.aarch64.rpm libctf0-2.37-150100.7.37.1.aarch64.rpm openSUSE-SLE-15.3-2022-2173 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-1966: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015) - CVE-2022-1975: Fixed a sleep-in-atomic bug that allows attacker to crash linux kernel by simulating nfc device from user-space. (bsc#1200143) - CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144) - CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism. (bnc#1177282) - The following non-security bugs were fixed: - ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default (git-fixes). - ACPI: sysfs: Fix BERT error region memory mapping (git-fixes). - ACPI: sysfs: Make sparse happy about address space in use (git-fixes). - ALSA: hda/conexant - Fix loopback issue with CX20632 (git-fixes). - ALSA: usb-audio: Optimize TEAC clock quirk (git-fixes). - ALSA: usb-audio: Set up (implicit) sync for Saffire 6 (git-fixes). - ALSA: usb-audio: Skip generic sync EP parse for secondary EP (git-fixes). - ALSA: usb-audio: Workaround for clock setup on TEAC devices (git-fixes). - ASoC: dapm: Do not fold register value changes into notifications (git-fixes). - ASoC: max98357a: remove dependency on GPIOLIB (git-fixes). - ASoC: rt5645: Fix errorenous cleanup order (git-fixes). - ASoC: tscs454: Add endianness flag in snd_soc_component_driver (git-fixes). - ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files (git-fixes). - ath9k: fix QCA9561 PA bias level (git-fixes). - b43: Fix assigning negative value to unsigned variable (git-fixes). - b43legacy: Fix assigning negative value to unsigned variable (git-fixes). - blk-mq: fix tag_get wait task can't be awakened (bsc#1200263). - blk-mq: Fix wrong wakeup batch configuration which will cause hang (bsc#1200263). - block: fix bio_clone_blkg_association() to associate with proper blkcg_gq (bsc#1200259). - btrfs: tree-checker: fix incorrect printk format (bsc#1200249). - cfg80211: set custom regdomain after wiphy registration (git-fixes). - clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value (git-fixes). - clocksource/drivers/sp804: Avoid error on multiple instances (git-fixes). - dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace (git-fixes). - dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type (git-fixes). - drivers: i2c: thunderx: Allow driver to work with ACPI defined TWSI controllers (git-fixes). - drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop() (git-fixes). - drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop() (git-fixes). - drivers: tty: serial: Fix deadlock in sa1100_set_termios() (git-fixes). - drivers: usb: host: Fix deadlock in oxu_bus_suspend() (git-fixes). - drm: imx: fix compiler warning with gcc-12 (git-fixes). - drm: msm: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm/amdgpu/cs: make commands with 0 chunks illegal behaviour (git-fixes). - drm/amdgpu/smu10: fix SoC/fclk units in auto mode (git-fixes). - drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo (git-fixes). - drm/atomic: Force bridge self-refresh-exit on CRTC switch (git-fixes). - drm/bridge: analogix_dp: Support PSR-exit to disable transition (git-fixes). - drm/i915: Fix -Wstringop-overflow warning in call to intel_read_wm_latency() (git-fixes). - drm/i915: fix i915_globals_exit() section mismatch error (git-fixes). - drm/komeda: return early if drm_universal_plane_init() fails (git-fixes). - drm/msm/dsi: fix address for second DSI PHY on SDM660 (git-fixes). - drm/plane: Move range check for format_count earlier (git-fixes). - drm/radeon: fix a possible null pointer dereference (git-fixes). - drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes (git-fixes). - efi: Add missing prototype for efi_capsule_setup_info (git-fixes). - efi: Do not import certificates from UEFI Secure Boot for T2 Macs (git-fixes). - fbcon: Consistently protect deferred_takeover with console_lock() (git-fixes). - ftrace: Clean up hash direct_functions on register failures (git-fixes). - HID: bigben: fix slab-out-of-bounds Write in bigben_probe (git-fixes). - HID: multitouch: Add support for Google Whiskers Touchpad (git-fixes). - hwmon: Make chip parameter for with_info API mandatory (git-fixes). - i2c: cadence: Increase timeout per message if necessary (git-fixes). - i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging (git-fixes). - iio: dummy: iio_simple_dummy: check the return value of kstrdup() (git-fixes). - Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag (git-fixes). - Input: goodix - fix spurious key release events (git-fixes). - ipw2x00: Fix potential NULL dereference in libipw_xmit() (git-fixes). - irqchip: irq-xtensa-mx: fix initial IRQ affinity (git-fixes). - irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x (git-fixes). - irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value (git-fixes). - irqchip/exiu: Fix acknowledgment of edge triggered interrupts (git-fixes). - iwlwifi: mvm: fix assert 1F04 upon reconfig (git-fixes). - KVM: fix wrong exception emulation in check_rdtsc (git-fixes). - KVM: nVMX: Invalidate all roots when emulating INVVPID without EPT (git-fixes). - KVM: nVMX: Query current VMCS when determining if MSR bitmaps are in use (git-fixes). - KVM: nVMX: Set LDTR to its architecturally defined value on nested VM-Exit (git-fixes). - KVM: nVMX: Unconditionally clear nested.pi_pending on nested VM-Enter (git-fixes). - KVM: s390: pv: add macros for UVC CC values (git-fixes). - KVM: s390: pv: avoid double free of sida page (git-fixes). - KVM: s390: pv: avoid stalls for kvm_s390_pv_init_vm (git-fixes). - KVM: s390: vsie/gmap: reduce gmap_rmap overhead (git-fixes). - KVM: VMX: Flush all EPTP/VPID contexts on remote TLB flush (git-fixes). - KVM: VMX: Use current VMCS to query WAITPKG support for MSR emulation (git-fixes). - KVM: x86: clflushopt should be treated as a no-op by emulation (git-fixes). - KVM: x86: Do not force set BSP bit when local APIC is managed by userspace (git-fixes). - KVM: x86: Fix emulation in writing cr8 (git-fixes). - KVM: x86: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce (git-fixes). - KVM: x86: Immediately reset the MMU context when the SMM flag is cleared (git-fixes). - KVM: x86: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode (git-fixes). - KVM: x86: Mark CR4.TSD as being possibly owned by the guest (git-fixes). - KVM: x86: Migrate the PIT only if vcpu0 is migrated, not any BSP (git-fixes). - KVM: x86: Toggling CR4.PKE does not load PDPTEs in PAE mode (git-fixes). - KVM: x86: Toggling CR4.SMAP does not load PDPTEs in PAE mode (git-fixes). - KVM: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU (git-fixes). - KVM: x86/emulator: Defer not-present segment check in __load_segment_descriptor() (git-fixes). - KVM: x86/pmu: Fix HW_REF_CPU_CYCLES event pseudo-encoding in intel_arch_events[] (git-fixes). - mac80211: upgrade passive scan to active scan on DFS channels after beacon rx (git-fixes). - md: fix an incorrect NULL check in does_sb_need_changing (git-fixes). - md: fix an incorrect NULL check in md_reload_sb (git-fixes). - media: cx25821: Fix the warning when removing the module (git-fixes). - media: netup_unidvb: Do not leak SPI master in probe error path (git-fixes). - media: pci: cx23885: Fix the error handling in cx23885_initdev() (git-fixes). - media: venus: hfi: avoid null dereference in deinit (git-fixes). - misc: rtsx: set NULL intfdata when probe fails (git-fixes). - mmc: block: Fix CQE recovery reset success (git-fixes). - mmc: jz4740: Apply DMA engine limits to maximum segment size (git-fixes). - modpost: fix removing numeric suffixes (git-fixes). - modpost: fix undefined behavior of is_arm_mapping_symbol() (git-fixes). - mt76: check return value of mt76_txq_send_burst in mt76_txq_schedule_list (git-fixes). - mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue (git-fixes). - net: rtlwifi: properly check for alloc_workqueue() failure (git-fixes). - nfc: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION (git-fixes). - nfc: st21nfca: fix incorrect validating logic in EVT_TRANSACTION (git-fixes). - nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling (git-fixes). - NFS: Do not report ENOSPC write errors twice (git-fixes). - nfsd: Fix null-ptr-deref in nfsd_fill_super() (git-fixes). - PCI: hv: Fix NUMA node assignment when kernel boots with custom NUMA topology (bsc#1199365). - pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards (git-fixes). - pinctrl: sunxi: fix f1c100s uart2 function (git-fixes). - platform/chrome: cros_ec_proto: Send command again when timeout occurs (git-fixes). - platform/x86: wmi: Fix driver->notify() vs ->probe() race (git-fixes). - platform/x86: wmi: Replace read_takes_no_args with a flags field (git-fixes). - devfreq: rk3399_dmc: Disable edev on remove() (git-fixes). - raid5: introduce MD_BROKEN (git-fixes). - rtl818x: Prevent using not initialized queues (git-fixes). - rtlwifi: Use pr_warn instead of WARN_ONCE (git-fixes). - s390: fix detection of vector enhancements facility 1 vs. vector packed decimal facility (git-fixes). - s390: fix strrchr() implementation (git-fixes). - s390/cio: dont call css_wait_for_slow_path() inside a lock (git-fixes). - s390/cio: Fix the "type" field in s390_cio_tpi tracepoint (git-fixes). - s390/crypto: fix scatterwalk_unmap() callers in AES-GCM (git-fixes). - s390/ctcm: fix potential memory leak (git-fixes). - s390/ctcm: fix variable dereferenced before check (git-fixes). - s390/dasd: fix data corruption for ESE devices (bsc#1200207 LTC#198454). - s390/dasd: Fix read for ESE with blksize 4k (bsc#1200206 LTC#198455). - s390/dasd: Fix read inconsistency for ESE DASD devices (bsc#1200206 LTC#198455). - s390/dasd: prevent double format of tracks for ESE devices (bsc#1200207 LTC#198454). - s390/ftrace: fix ftrace_update_ftrace_func implementation (git-fixes). - s390/lcs: fix variable dereferenced before check (git-fixes). - s390/mcck: fix invalid KVM guest condition check (git-fixes). - s390/mcck: isolate SIE instruction when setting CIF_MCCK_GUEST flag (git-fixes). - s390/nmi: handle guarded storage validity failures for KVM guests (git-fixes). - s390/nmi: handle vector validity failures for KVM guests (git-fixes). - s390/pv: fix the forcing of the swiotlb (git-fixes). - s390/qdio: cancel the ESTABLISH ccw after timeout (git-fixes). - s390/qdio: fix roll-back after timeout on ESTABLISH ccw (git-fixes). - s390/vfio-ap: fix circular lockdep when setting/clearing crypto masks (git-fixes). - serial: msm_serial: disable interrupts in __msm_console_write() (git-fixes). - spi: Introduce device-managed SPI controller allocation (git-fixes). - spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA direction (git-fixes). - spi: stm32-qspi: Fix wait_cmd timeout in APM mode (git-fixes). - staging: rtl8712: fix uninit-value in r871xu_drv_init() (git-fixes). - staging: rtl8712: fix uninit-value in usb_read8() and friends (git-fixes). - tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator (git-fixes). - tty: Fix a possible resource leak in icom_probe (git-fixes). - tty: synclink_gt: Fix null-pointer-dereference in slgt_clean() (git-fixes). - usb: core: hcd: Add support for deferring roothub registration (git-fixes). - usb: dwc2: gadget: do not reset gadget's driver->bus (git-fixes). - usb: hcd-pci: Fully suspend across freeze/thaw cycle (git-fixes). - usb: host: isp116x: check return value after calling platform_get_resource() (git-fixes). - usb: new quirk for Dell Gen 2 devices (git-fixes). - usb: serial: option: add Quectel BG95 modem (git-fixes). - vfio-ccw: Check initialized flag in cp_init() (git-fixes). - vfio/ccw: Remove unneeded GFP_DMA (git-fixes). - video: fbdev: pxa3xx-gcu: release the resources correctly in pxa3xx_gcu_probe/remove() (git-fixes). - virtio/s390: implement virtio-ccw revision 2 correctly (git-fixes). - vringh: Fix loop descriptors check in the indirect cases (git-fixes). - watchdog: wdat_wdt: Stop watchdog when rebooting the system (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.76.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.76.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.76.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.76.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.76.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.76.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.76.1.x86_64.rpm True kernel-default-5.3.18-150300.59.76.1.nosrc.rpm True kernel-default-5.3.18-150300.59.76.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.76.1.150300.18.45.2.src.rpm True kernel-default-base-5.3.18-150300.59.76.1.150300.18.45.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.76.1.150300.18.45.2.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.76.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.76.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.76.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.76.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.76.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.76.1.noarch.rpm True kernel-docs-5.3.18-150300.59.76.1.noarch.rpm True kernel-docs-5.3.18-150300.59.76.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.76.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.76.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.76.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.76.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.76.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.76.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.76.1.src.rpm True kernel-obs-build-5.3.18-150300.59.76.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.76.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.76.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.76.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.76.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.76.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.76.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.76.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.76.1.x86_64.rpm True kernel-source-5.3.18-150300.59.76.1.noarch.rpm True kernel-source-5.3.18-150300.59.76.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.76.1.noarch.rpm True kernel-syms-5.3.18-150300.59.76.1.src.rpm True kernel-syms-5.3.18-150300.59.76.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.76.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.76.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.76.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.76.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.76.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.76.1.s390x.rpm True kernel-default-5.3.18-150300.59.76.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.76.1.150300.18.45.2.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.76.1.150300.18.45.2.s390x.rpm True kernel-default-devel-5.3.18-150300.59.76.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.76.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.76.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.76.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.76.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.76.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.76.1.s390x.rpm True kernel-syms-5.3.18-150300.59.76.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.76.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.76.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.76.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.76.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.76.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.76.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.76.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.76.1.150300.18.45.2.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.76.1.150300.18.45.2.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.76.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.76.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.76.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.76.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.76.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.76.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.76.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.76.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.76.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.76.1.src.rpm True dtb-al-5.3.18-150300.59.76.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.76.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.76.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.76.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.76.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.76.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.76.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.76.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.76.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.76.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.76.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.76.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.76.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.76.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.76.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.76.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.76.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.76.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.76.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.76.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.76.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.76.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.76.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.76.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.76.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.76.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.76.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.76.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.76.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.76.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.76.1.aarch64.rpm True kernel-default-5.3.18-150300.59.76.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.76.1.150300.18.45.2.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.76.1.150300.18.45.2.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.76.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.76.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.76.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.76.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.76.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.76.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.76.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.76.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.76.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.76.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.76.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.76.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.76.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.76.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.76.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.76.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.76.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.76.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.76.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2999 moderate SUSE Updates openSUSE-SLE 15.3 This update for adios, netcdf, petsc, trilinos rebuilds packages to adjust dependencies for hdf 1.10.8 update. (bsc#1200376) adios-gnu-mpich-hpc-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-mpich-hpc-devel-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-mpich-hpc-devel-static-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-mvapich2-hpc-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-mvapich2-hpc-devel-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-mvapich2-hpc-devel-static-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-openmpi2-hpc-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-openmpi2-hpc-devel-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-openmpi2-hpc-devel-static-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-openmpi3-hpc-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-openmpi3-hpc-devel-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-openmpi3-hpc-devel-static-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-openmpi4-hpc-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-openmpi4-hpc-devel-1.13.1-150300.12.2.1.noarch.rpm adios-gnu-openmpi4-hpc-devel-static-1.13.1-150300.12.2.1.noarch.rpm adios_1_13_1-gnu-mpich-hpc-1.13.1-150300.12.2.1.src.rpm adios_1_13_1-gnu-mpich-hpc-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-mpich-hpc-devel-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-mpich-hpc-devel-static-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-mvapich2-hpc-1.13.1-150300.12.2.1.src.rpm adios_1_13_1-gnu-mvapich2-hpc-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-mvapich2-hpc-devel-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-mvapich2-hpc-devel-static-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-openmpi2-hpc-1.13.1-150300.12.2.1.src.rpm adios_1_13_1-gnu-openmpi2-hpc-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-openmpi2-hpc-devel-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-openmpi2-hpc-devel-static-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-openmpi3-hpc-1.13.1-150300.12.2.1.src.rpm adios_1_13_1-gnu-openmpi3-hpc-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-openmpi3-hpc-devel-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-openmpi3-hpc-devel-static-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-openmpi4-hpc-1.13.1-150300.12.2.1.src.rpm adios_1_13_1-gnu-openmpi4-hpc-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-openmpi4-hpc-devel-1.13.1-150300.12.2.1.x86_64.rpm adios_1_13_1-gnu-openmpi4-hpc-devel-static-1.13.1-150300.12.2.1.x86_64.rpm libnetcdf-cxx4-gnu-hpc-4.3.1-150300.8.2.1.x86_64.rpm libnetcdf-cxx4-gnu-hpc-devel-4.3.1-150300.8.2.1.x86_64.rpm libnetcdf-cxx4_4_3_1-gnu-hpc-4.3.1-150300.8.2.1.x86_64.rpm libnetcdf-cxx4_4_3_1-gnu-hpc-devel-4.3.1-150300.8.2.1.x86_64.rpm libnetcdf-cxx4_4_3_1-gnu-hpc-devel-static-4.3.1-150300.8.2.1.x86_64.rpm libnetcdf-fortran-gnu-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-fortran-gnu-mpich-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-fortran-gnu-mvapich2-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-fortran-gnu-openmpi2-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-fortran-gnu-openmpi3-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-fortran-gnu-openmpi4-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-fortran_4_5_3-gnu-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-fortran_4_5_3-gnu-mpich-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-fortran_4_5_3-gnu-mvapich2-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-fortran_4_5_3-gnu-openmpi2-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-fortran_4_5_3-gnu-openmpi3-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-fortran_4_5_3-gnu-openmpi4-hpc-4.5.3-150300.4.2.1.x86_64.rpm libnetcdf-gnu-hpc-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf-gnu-mpich-hpc-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf18-32bit-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf18-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf18-openmpi2-32bit-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf18-openmpi2-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf18-openmpi3-32bit-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf18-openmpi3-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf18-openmpi4-32bit-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf18-openmpi4-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.x86_64.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.x86_64.rpm libpetsc-gnu-mpich-hpc-3.14.5-150300.3.2.1.x86_64.rpm libpetsc-gnu-mvapich2-hpc-3.14.5-150300.3.2.1.x86_64.rpm libpetsc-gnu-openmpi2-hpc-3.14.5-150300.3.2.1.x86_64.rpm libpetsc-gnu-openmpi3-hpc-3.14.5-150300.3.2.1.x86_64.rpm libpetsc-gnu-openmpi4-hpc-3.14.5-150300.3.2.1.x86_64.rpm libpetsc_3_14_5-gnu-mpich-hpc-3.14.5-150300.3.2.1.x86_64.rpm libpetsc_3_14_5-gnu-mvapich2-hpc-3.14.5-150300.3.2.1.x86_64.rpm libpetsc_3_14_5-gnu-openmpi2-hpc-3.14.5-150300.3.2.1.x86_64.rpm libpetsc_3_14_5-gnu-openmpi3-hpc-3.14.5-150300.3.2.1.x86_64.rpm libpetsc_3_14_5-gnu-openmpi4-hpc-3.14.5-150300.3.2.1.x86_64.rpm libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.8.1.x86_64.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.8.1.x86_64.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.8.1.x86_64.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.8.1.x86_64.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.8.1.x86_64.rpm netcdf-4.7.4-150300.4.5.1.src.rpm netcdf-4.7.4-150300.4.5.1.x86_64.rpm netcdf-cxx4-gnu-hpc-tools-4.3.1-150300.8.2.1.noarch.rpm netcdf-cxx4_4_3_1-gnu-hpc-4.3.1-150300.8.2.1.src.rpm netcdf-cxx4_4_3_1-gnu-hpc-tools-4.3.1-150300.8.2.1.noarch.rpm netcdf-devel-4.7.4-150300.4.5.1.x86_64.rpm netcdf-devel-data-4.7.4-150300.4.5.1.x86_64.rpm netcdf-devel-static-4.7.4-150300.4.5.1.x86_64.rpm netcdf-fortran-gnu-hpc-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran-gnu-hpc-devel-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran-gnu-mpich-hpc-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran-gnu-mpich-hpc-devel-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran-gnu-mvapich2-hpc-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran-gnu-mvapich2-hpc-devel-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran-gnu-openmpi2-hpc-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran-gnu-openmpi2-hpc-devel-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran-gnu-openmpi3-hpc-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran-gnu-openmpi3-hpc-devel-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran-gnu-openmpi4-hpc-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran-gnu-openmpi4-hpc-devel-4.5.3-150300.4.2.1.noarch.rpm netcdf-fortran_4_5_3-gnu-hpc-4.5.3-150300.4.2.1.src.rpm netcdf-fortran_4_5_3-gnu-hpc-4.5.3-150300.4.2.1.x86_64.rpm netcdf-fortran_4_5_3-gnu-hpc-devel-4.5.3-150300.4.2.1.x86_64.rpm netcdf-fortran_4_5_3-gnu-mpich-hpc-4.5.3-150300.4.2.1.src.rpm netcdf-fortran_4_5_3-gnu-mpich-hpc-4.5.3-150300.4.2.1.x86_64.rpm netcdf-fortran_4_5_3-gnu-mpich-hpc-devel-4.5.3-150300.4.2.1.x86_64.rpm netcdf-fortran_4_5_3-gnu-mvapich2-hpc-4.5.3-150300.4.2.1.src.rpm netcdf-fortran_4_5_3-gnu-mvapich2-hpc-4.5.3-150300.4.2.1.x86_64.rpm netcdf-fortran_4_5_3-gnu-mvapich2-hpc-devel-4.5.3-150300.4.2.1.x86_64.rpm netcdf-fortran_4_5_3-gnu-openmpi2-hpc-4.5.3-150300.4.2.1.src.rpm netcdf-fortran_4_5_3-gnu-openmpi2-hpc-4.5.3-150300.4.2.1.x86_64.rpm netcdf-fortran_4_5_3-gnu-openmpi2-hpc-devel-4.5.3-150300.4.2.1.x86_64.rpm netcdf-fortran_4_5_3-gnu-openmpi3-hpc-4.5.3-150300.4.2.1.src.rpm netcdf-fortran_4_5_3-gnu-openmpi3-hpc-4.5.3-150300.4.2.1.x86_64.rpm netcdf-fortran_4_5_3-gnu-openmpi3-hpc-devel-4.5.3-150300.4.2.1.x86_64.rpm netcdf-fortran_4_5_3-gnu-openmpi4-hpc-4.5.3-150300.4.2.1.src.rpm netcdf-fortran_4_5_3-gnu-openmpi4-hpc-4.5.3-150300.4.2.1.x86_64.rpm netcdf-fortran_4_5_3-gnu-openmpi4-hpc-devel-4.5.3-150300.4.2.1.x86_64.rpm netcdf-gnu-hpc-4.7.4-150300.4.5.1.noarch.rpm netcdf-gnu-hpc-devel-4.7.4-150300.4.5.1.noarch.rpm netcdf-gnu-mpich-hpc-4.7.4-150300.4.5.1.noarch.rpm netcdf-gnu-mpich-hpc-devel-4.7.4-150300.4.5.1.noarch.rpm netcdf-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.noarch.rpm netcdf-gnu-mvapich2-hpc-devel-4.7.4-150300.4.5.1.noarch.rpm netcdf-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.noarch.rpm netcdf-gnu-openmpi2-hpc-devel-4.7.4-150300.4.5.1.noarch.rpm netcdf-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.noarch.rpm netcdf-gnu-openmpi3-hpc-devel-4.7.4-150300.4.5.1.noarch.rpm netcdf-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.noarch.rpm netcdf-gnu-openmpi4-hpc-devel-4.7.4-150300.4.5.1.noarch.rpm netcdf-openmpi2-4.7.4-150300.4.5.1.src.rpm netcdf-openmpi2-4.7.4-150300.4.5.1.x86_64.rpm netcdf-openmpi2-devel-4.7.4-150300.4.5.1.x86_64.rpm netcdf-openmpi2-devel-static-4.7.4-150300.4.5.1.x86_64.rpm netcdf-openmpi3-4.7.4-150300.4.5.1.src.rpm netcdf-openmpi3-4.7.4-150300.4.5.1.x86_64.rpm netcdf-openmpi3-devel-4.7.4-150300.4.5.1.x86_64.rpm netcdf-openmpi3-devel-static-4.7.4-150300.4.5.1.x86_64.rpm netcdf-openmpi4-4.7.4-150300.4.5.1.src.rpm netcdf-openmpi4-4.7.4-150300.4.5.1.x86_64.rpm netcdf-openmpi4-devel-4.7.4-150300.4.5.1.x86_64.rpm netcdf-openmpi4-devel-static-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-hpc-4.7.4-150300.4.5.1.src.rpm netcdf_4_7_4-gnu-hpc-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.5.1.src.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.src.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.src.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.src.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.src.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-150300.4.5.1.x86_64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-150300.4.5.1.x86_64.rpm petsc-3.14.5-150300.3.2.1.src.rpm petsc-doc-3.14.5-150300.3.2.1.noarch.rpm petsc-gnu-mpich-hpc-devel-3.14.5-150300.3.2.1.x86_64.rpm petsc-gnu-mvapich2-hpc-devel-3.14.5-150300.3.2.1.x86_64.rpm petsc-gnu-openmpi2-hpc-devel-3.14.5-150300.3.2.1.x86_64.rpm petsc-gnu-openmpi3-hpc-devel-3.14.5-150300.3.2.1.x86_64.rpm petsc-gnu-openmpi4-hpc-devel-3.14.5-150300.3.2.1.x86_64.rpm petsc_3_14_5-gnu-mpich-hpc-3.14.5-150300.3.2.1.src.rpm petsc_3_14_5-gnu-mpich-hpc-devel-3.14.5-150300.3.2.1.x86_64.rpm petsc_3_14_5-gnu-mpich-hpc-saws-3.14.5-150300.3.2.1.x86_64.rpm petsc_3_14_5-gnu-mvapich2-hpc-3.14.5-150300.3.2.1.src.rpm petsc_3_14_5-gnu-mvapich2-hpc-devel-3.14.5-150300.3.2.1.x86_64.rpm petsc_3_14_5-gnu-mvapich2-hpc-saws-3.14.5-150300.3.2.1.x86_64.rpm petsc_3_14_5-gnu-openmpi2-hpc-3.14.5-150300.3.2.1.src.rpm petsc_3_14_5-gnu-openmpi2-hpc-devel-3.14.5-150300.3.2.1.x86_64.rpm petsc_3_14_5-gnu-openmpi2-hpc-saws-3.14.5-150300.3.2.1.x86_64.rpm petsc_3_14_5-gnu-openmpi3-hpc-3.14.5-150300.3.2.1.src.rpm petsc_3_14_5-gnu-openmpi3-hpc-devel-3.14.5-150300.3.2.1.x86_64.rpm petsc_3_14_5-gnu-openmpi3-hpc-saws-3.14.5-150300.3.2.1.x86_64.rpm petsc_3_14_5-gnu-openmpi4-hpc-3.14.5-150300.3.2.1.src.rpm petsc_3_14_5-gnu-openmpi4-hpc-devel-3.14.5-150300.3.2.1.x86_64.rpm petsc_3_14_5-gnu-openmpi4-hpc-saws-3.14.5-150300.3.2.1.x86_64.rpm trilinos-gnu-mpich-hpc-devel-13.2.0-150300.3.8.1.noarch.rpm trilinos-gnu-mvapich2-hpc-devel-13.2.0-150300.3.8.1.noarch.rpm trilinos-gnu-openmpi2-hpc-devel-13.2.0-150300.3.8.1.noarch.rpm trilinos-gnu-openmpi3-hpc-devel-13.2.0-150300.3.8.1.noarch.rpm trilinos-gnu-openmpi4-hpc-devel-13.2.0-150300.3.8.1.noarch.rpm trilinos-hpc-doc-13.2.0-150300.3.8.1.noarch.rpm trilinos_13_2_0-gnu-mpich-hpc-13.2.0-150300.3.8.1.src.rpm trilinos_13_2_0-gnu-mvapich2-hpc-13.2.0-150300.3.8.1.src.rpm trilinos_13_2_0-gnu-openmpi2-hpc-13.2.0-150300.3.8.1.src.rpm trilinos_13_2_0-gnu-openmpi3-hpc-13.2.0-150300.3.8.1.src.rpm trilinos_13_2_0-gnu-openmpi4-hpc-13.2.0-150300.3.8.1.src.rpm trilinos_13_2_0-hpc-13.2.0-150300.3.8.1.src.rpm libnetcdf-gnu-hpc-4.7.4-150300.4.5.1.s390x.rpm libnetcdf-gnu-mpich-hpc-4.7.4-150300.4.5.1.s390x.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.s390x.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.s390x.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.s390x.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.s390x.rpm libnetcdf18-4.7.4-150300.4.5.1.s390x.rpm libnetcdf18-openmpi2-4.7.4-150300.4.5.1.s390x.rpm libnetcdf18-openmpi3-4.7.4-150300.4.5.1.s390x.rpm libnetcdf18-openmpi4-4.7.4-150300.4.5.1.s390x.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-150300.4.5.1.s390x.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.5.1.s390x.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.s390x.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.s390x.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.s390x.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.s390x.rpm netcdf-4.7.4-150300.4.5.1.s390x.rpm netcdf-devel-4.7.4-150300.4.5.1.s390x.rpm netcdf-devel-data-4.7.4-150300.4.5.1.s390x.rpm netcdf-devel-static-4.7.4-150300.4.5.1.s390x.rpm netcdf-openmpi2-4.7.4-150300.4.5.1.s390x.rpm netcdf-openmpi2-devel-4.7.4-150300.4.5.1.s390x.rpm netcdf-openmpi2-devel-static-4.7.4-150300.4.5.1.s390x.rpm netcdf-openmpi3-4.7.4-150300.4.5.1.s390x.rpm netcdf-openmpi3-devel-4.7.4-150300.4.5.1.s390x.rpm netcdf-openmpi3-devel-static-4.7.4-150300.4.5.1.s390x.rpm netcdf-openmpi4-4.7.4-150300.4.5.1.s390x.rpm netcdf-openmpi4-devel-4.7.4-150300.4.5.1.s390x.rpm netcdf-openmpi4-devel-static-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-hpc-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-150300.4.5.1.s390x.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-150300.4.5.1.s390x.rpm adios_1_13_1-gnu-mpich-hpc-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-mpich-hpc-devel-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-mpich-hpc-devel-static-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-mvapich2-hpc-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-mvapich2-hpc-devel-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-mvapich2-hpc-devel-static-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-openmpi2-hpc-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-openmpi2-hpc-devel-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-openmpi2-hpc-devel-static-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-openmpi3-hpc-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-openmpi3-hpc-devel-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-openmpi3-hpc-devel-static-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-openmpi4-hpc-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-openmpi4-hpc-devel-1.13.1-150300.12.2.1.ppc64le.rpm adios_1_13_1-gnu-openmpi4-hpc-devel-static-1.13.1-150300.12.2.1.ppc64le.rpm libnetcdf-cxx4-gnu-hpc-4.3.1-150300.8.2.1.ppc64le.rpm libnetcdf-cxx4-gnu-hpc-devel-4.3.1-150300.8.2.1.ppc64le.rpm libnetcdf-cxx4_4_3_1-gnu-hpc-4.3.1-150300.8.2.1.ppc64le.rpm libnetcdf-cxx4_4_3_1-gnu-hpc-devel-4.3.1-150300.8.2.1.ppc64le.rpm libnetcdf-cxx4_4_3_1-gnu-hpc-devel-static-4.3.1-150300.8.2.1.ppc64le.rpm libnetcdf-fortran-gnu-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-fortran-gnu-mpich-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-fortran-gnu-mvapich2-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-fortran-gnu-openmpi2-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-fortran-gnu-openmpi3-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-fortran-gnu-openmpi4-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-fortran_4_5_3-gnu-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-fortran_4_5_3-gnu-mpich-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-fortran_4_5_3-gnu-mvapich2-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-fortran_4_5_3-gnu-openmpi2-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-fortran_4_5_3-gnu-openmpi3-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-fortran_4_5_3-gnu-openmpi4-hpc-4.5.3-150300.4.2.1.ppc64le.rpm libnetcdf-gnu-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf-gnu-mpich-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf18-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf18-openmpi2-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf18-openmpi3-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf18-openmpi4-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.ppc64le.rpm libpetsc-gnu-mpich-hpc-3.14.5-150300.3.2.1.ppc64le.rpm libpetsc-gnu-mvapich2-hpc-3.14.5-150300.3.2.1.ppc64le.rpm libpetsc-gnu-openmpi2-hpc-3.14.5-150300.3.2.1.ppc64le.rpm libpetsc-gnu-openmpi3-hpc-3.14.5-150300.3.2.1.ppc64le.rpm libpetsc-gnu-openmpi4-hpc-3.14.5-150300.3.2.1.ppc64le.rpm libpetsc_3_14_5-gnu-mpich-hpc-3.14.5-150300.3.2.1.ppc64le.rpm libpetsc_3_14_5-gnu-mvapich2-hpc-3.14.5-150300.3.2.1.ppc64le.rpm libpetsc_3_14_5-gnu-openmpi2-hpc-3.14.5-150300.3.2.1.ppc64le.rpm libpetsc_3_14_5-gnu-openmpi3-hpc-3.14.5-150300.3.2.1.ppc64le.rpm libpetsc_3_14_5-gnu-openmpi4-hpc-3.14.5-150300.3.2.1.ppc64le.rpm libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.8.1.ppc64le.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.8.1.ppc64le.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.8.1.ppc64le.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.8.1.ppc64le.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.8.1.ppc64le.rpm netcdf-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-devel-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-devel-data-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-devel-static-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-hpc-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-hpc-devel-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-mpich-hpc-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-mpich-hpc-devel-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-mvapich2-hpc-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-mvapich2-hpc-devel-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-openmpi2-hpc-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-openmpi2-hpc-devel-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-openmpi3-hpc-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-openmpi3-hpc-devel-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-openmpi4-hpc-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-fortran_4_5_3-gnu-openmpi4-hpc-devel-4.5.3-150300.4.2.1.ppc64le.rpm netcdf-openmpi2-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-openmpi2-devel-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-openmpi2-devel-static-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-openmpi3-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-openmpi3-devel-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-openmpi3-devel-static-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-openmpi4-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-openmpi4-devel-4.7.4-150300.4.5.1.ppc64le.rpm netcdf-openmpi4-devel-static-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-hpc-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-150300.4.5.1.ppc64le.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-150300.4.5.1.ppc64le.rpm petsc-gnu-mpich-hpc-devel-3.14.5-150300.3.2.1.ppc64le.rpm petsc-gnu-mvapich2-hpc-devel-3.14.5-150300.3.2.1.ppc64le.rpm petsc-gnu-openmpi2-hpc-devel-3.14.5-150300.3.2.1.ppc64le.rpm petsc-gnu-openmpi3-hpc-devel-3.14.5-150300.3.2.1.ppc64le.rpm petsc-gnu-openmpi4-hpc-devel-3.14.5-150300.3.2.1.ppc64le.rpm petsc_3_14_5-gnu-mpich-hpc-devel-3.14.5-150300.3.2.1.ppc64le.rpm petsc_3_14_5-gnu-mpich-hpc-saws-3.14.5-150300.3.2.1.ppc64le.rpm petsc_3_14_5-gnu-mvapich2-hpc-devel-3.14.5-150300.3.2.1.ppc64le.rpm petsc_3_14_5-gnu-mvapich2-hpc-saws-3.14.5-150300.3.2.1.ppc64le.rpm petsc_3_14_5-gnu-openmpi2-hpc-devel-3.14.5-150300.3.2.1.ppc64le.rpm petsc_3_14_5-gnu-openmpi2-hpc-saws-3.14.5-150300.3.2.1.ppc64le.rpm petsc_3_14_5-gnu-openmpi3-hpc-devel-3.14.5-150300.3.2.1.ppc64le.rpm petsc_3_14_5-gnu-openmpi3-hpc-saws-3.14.5-150300.3.2.1.ppc64le.rpm petsc_3_14_5-gnu-openmpi4-hpc-devel-3.14.5-150300.3.2.1.ppc64le.rpm petsc_3_14_5-gnu-openmpi4-hpc-saws-3.14.5-150300.3.2.1.ppc64le.rpm adios_1_13_1-gnu-mpich-hpc-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-mpich-hpc-devel-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-mpich-hpc-devel-static-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-mvapich2-hpc-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-mvapich2-hpc-devel-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-mvapich2-hpc-devel-static-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-openmpi2-hpc-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-openmpi2-hpc-devel-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-openmpi2-hpc-devel-static-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-openmpi3-hpc-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-openmpi3-hpc-devel-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-openmpi3-hpc-devel-static-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-openmpi4-hpc-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-openmpi4-hpc-devel-1.13.1-150300.12.2.1.aarch64.rpm adios_1_13_1-gnu-openmpi4-hpc-devel-static-1.13.1-150300.12.2.1.aarch64.rpm libnetcdf-cxx4-gnu-hpc-4.3.1-150300.8.2.1.aarch64.rpm libnetcdf-cxx4-gnu-hpc-devel-4.3.1-150300.8.2.1.aarch64.rpm libnetcdf-cxx4_4_3_1-gnu-hpc-4.3.1-150300.8.2.1.aarch64.rpm libnetcdf-cxx4_4_3_1-gnu-hpc-devel-4.3.1-150300.8.2.1.aarch64.rpm libnetcdf-cxx4_4_3_1-gnu-hpc-devel-static-4.3.1-150300.8.2.1.aarch64.rpm libnetcdf-fortran-gnu-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-fortran-gnu-mpich-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-fortran-gnu-mvapich2-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-fortran-gnu-openmpi2-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-fortran-gnu-openmpi3-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-fortran-gnu-openmpi4-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-fortran_4_5_3-gnu-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-fortran_4_5_3-gnu-mpich-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-fortran_4_5_3-gnu-mvapich2-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-fortran_4_5_3-gnu-openmpi2-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-fortran_4_5_3-gnu-openmpi3-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-fortran_4_5_3-gnu-openmpi4-hpc-4.5.3-150300.4.2.1.aarch64.rpm libnetcdf-gnu-hpc-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf-gnu-mpich-hpc-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf18-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf18-openmpi2-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf18-openmpi3-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf18-openmpi4-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.aarch64.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.aarch64.rpm libpetsc-gnu-mpich-hpc-3.14.5-150300.3.2.1.aarch64.rpm libpetsc-gnu-mvapich2-hpc-3.14.5-150300.3.2.1.aarch64.rpm libpetsc-gnu-openmpi2-hpc-3.14.5-150300.3.2.1.aarch64.rpm libpetsc-gnu-openmpi3-hpc-3.14.5-150300.3.2.1.aarch64.rpm libpetsc-gnu-openmpi4-hpc-3.14.5-150300.3.2.1.aarch64.rpm libpetsc_3_14_5-gnu-mpich-hpc-3.14.5-150300.3.2.1.aarch64.rpm libpetsc_3_14_5-gnu-mvapich2-hpc-3.14.5-150300.3.2.1.aarch64.rpm libpetsc_3_14_5-gnu-openmpi2-hpc-3.14.5-150300.3.2.1.aarch64.rpm libpetsc_3_14_5-gnu-openmpi3-hpc-3.14.5-150300.3.2.1.aarch64.rpm libpetsc_3_14_5-gnu-openmpi4-hpc-3.14.5-150300.3.2.1.aarch64.rpm libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.8.1.aarch64.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.8.1.aarch64.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.8.1.aarch64.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.8.1.aarch64.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.8.1.aarch64.rpm netcdf-4.7.4-150300.4.5.1.aarch64.rpm netcdf-devel-4.7.4-150300.4.5.1.aarch64.rpm netcdf-devel-data-4.7.4-150300.4.5.1.aarch64.rpm netcdf-devel-static-4.7.4-150300.4.5.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-hpc-4.5.3-150300.4.2.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-hpc-devel-4.5.3-150300.4.2.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-mpich-hpc-4.5.3-150300.4.2.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-mpich-hpc-devel-4.5.3-150300.4.2.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-mvapich2-hpc-4.5.3-150300.4.2.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-mvapich2-hpc-devel-4.5.3-150300.4.2.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-openmpi2-hpc-4.5.3-150300.4.2.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-openmpi2-hpc-devel-4.5.3-150300.4.2.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-openmpi3-hpc-4.5.3-150300.4.2.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-openmpi3-hpc-devel-4.5.3-150300.4.2.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-openmpi4-hpc-4.5.3-150300.4.2.1.aarch64.rpm netcdf-fortran_4_5_3-gnu-openmpi4-hpc-devel-4.5.3-150300.4.2.1.aarch64.rpm netcdf-openmpi2-4.7.4-150300.4.5.1.aarch64.rpm netcdf-openmpi2-devel-4.7.4-150300.4.5.1.aarch64.rpm netcdf-openmpi2-devel-static-4.7.4-150300.4.5.1.aarch64.rpm netcdf-openmpi3-4.7.4-150300.4.5.1.aarch64.rpm netcdf-openmpi3-devel-4.7.4-150300.4.5.1.aarch64.rpm netcdf-openmpi3-devel-static-4.7.4-150300.4.5.1.aarch64.rpm netcdf-openmpi4-4.7.4-150300.4.5.1.aarch64.rpm netcdf-openmpi4-devel-4.7.4-150300.4.5.1.aarch64.rpm netcdf-openmpi4-devel-static-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-hpc-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-150300.4.5.1.aarch64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-150300.4.5.1.aarch64.rpm petsc-gnu-mpich-hpc-devel-3.14.5-150300.3.2.1.aarch64.rpm petsc-gnu-mvapich2-hpc-devel-3.14.5-150300.3.2.1.aarch64.rpm petsc-gnu-openmpi2-hpc-devel-3.14.5-150300.3.2.1.aarch64.rpm petsc-gnu-openmpi3-hpc-devel-3.14.5-150300.3.2.1.aarch64.rpm petsc-gnu-openmpi4-hpc-devel-3.14.5-150300.3.2.1.aarch64.rpm petsc_3_14_5-gnu-mpich-hpc-devel-3.14.5-150300.3.2.1.aarch64.rpm petsc_3_14_5-gnu-mpich-hpc-saws-3.14.5-150300.3.2.1.aarch64.rpm petsc_3_14_5-gnu-mvapich2-hpc-devel-3.14.5-150300.3.2.1.aarch64.rpm petsc_3_14_5-gnu-mvapich2-hpc-saws-3.14.5-150300.3.2.1.aarch64.rpm petsc_3_14_5-gnu-openmpi2-hpc-devel-3.14.5-150300.3.2.1.aarch64.rpm petsc_3_14_5-gnu-openmpi2-hpc-saws-3.14.5-150300.3.2.1.aarch64.rpm petsc_3_14_5-gnu-openmpi3-hpc-devel-3.14.5-150300.3.2.1.aarch64.rpm petsc_3_14_5-gnu-openmpi3-hpc-saws-3.14.5-150300.3.2.1.aarch64.rpm petsc_3_14_5-gnu-openmpi4-hpc-devel-3.14.5-150300.3.2.1.aarch64.rpm petsc_3_14_5-gnu-openmpi4-hpc-saws-3.14.5-150300.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-3206 low SUSE Updates openSUSE-SLE 15.3 This update for bash-completion fixes the following issues: - Enable upstream commit to list ko.zst modules as well. (bsc#1199724) bash-completion-2.7-150000.4.9.1.noarch.rpm bash-completion-2.7-150000.4.9.1.src.rpm bash-completion-devel-2.7-150000.4.9.1.noarch.rpm bash-completion-doc-2.7-150000.4.9.1.noarch.rpm bash-completion-doc-2.7-150000.4.9.1.src.rpm openSUSE-SLE-15.3-2022-4355 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2: schema, network, installation, autoyast2, fcoe-client and registration fixes the following issues: yast2-schema: - Added missing route extrapara element to the networking section (bsc#1201129) - Support for flatten and nested "category_filter" element in the "online_update_configuration" section (bsc#1198848). yast2-network: - Allow more than 6 domains in resolver search list (bsc#1200155) - Added a class to generate the configuration needed for a FCoE device being aware of it during the installation (bsc#1199554) - Fixed issue when writing the NetworkManager config without a gateway (bsc#1203866) yast2-installation: - Do not restart services when updating the package (bsc#1199480,bsc#1200274) - AutoYaST SecondStage: Added a missing dependency to the service to prevent getty-autogeneration listen on 5901 port (bsc#1199746) - AutoYaST SecondStage: Revert changes introduced in 4.3.46 running the initscript service before systemd-user-sessions again once systemd patched logind. (bsc#1195059, bsc#1200780) yast2-registration: - Import SSL certificate from the reg. server; - AutoYaST data also in the self-update step (bsc#1199091, bsc#1198642) autoyast2: - Revert the modification done in version 4.3.97 running the initscripts before systed-user-sessions service again once systemd fixed logind (bsc#1195059, bsc#1200780) - Process the task-list section in an installed system once the general section is imported (bsc#1201953) yast2-fcoe-client: - Use yast2-network to write the sysconfig files in order to be aware of the new connections added during the installation (bsc#1199554). autoyast2-4.3.104-150300.3.52.1.noarch.rpm autoyast2-4.3.104-150300.3.52.1.src.rpm autoyast2-installation-4.3.104-150300.3.52.1.noarch.rpm yast2-fcoe-client-4.3.2-150300.3.6.1.noarch.rpm yast2-fcoe-client-4.3.2-150300.3.6.1.src.rpm yast2-installation-4.3.55-150300.3.34.2.noarch.rpm yast2-installation-4.3.55-150300.3.34.2.src.rpm yast2-network-4.3.86-150300.3.35.1.noarch.rpm yast2-network-4.3.86-150300.3.35.1.src.rpm yast2-registration-4.3.26-150300.3.12.2.noarch.rpm yast2-registration-4.3.26-150300.3.12.2.src.rpm yast2-schema-4.3.31-150300.3.20.3.src.rpm yast2-schema-4.3.31-150300.3.20.3.x86_64.rpm yast2-schema-4.3.31-150300.3.20.3.s390x.rpm yast2-schema-4.3.31-150300.3.20.3.ppc64le.rpm yast2-schema-4.3.31-150300.3.20.3.aarch64.rpm openSUSE-SLE-15.3-2022-2339 moderate SUSE Updates openSUSE-SLE 15.3 This update for rsyslog fixes the following issues: - Remove inotify watch descriptor in imfile on inode change detected. (bsc#1198939) rsyslog-8.2106.0-150200.4.29.1.src.rpm rsyslog-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-diag-tools-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-doc-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-dbi-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-gssapi-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-gtls-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-mysql-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-omtcl-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-ossl-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-pgsql-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-relp-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-snmp-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.29.1.x86_64.rpm rsyslog-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-diag-tools-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-doc-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-dbi-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-gssapi-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-gtls-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-mysql-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-omtcl-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-ossl-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-pgsql-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-relp-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-snmp-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.29.1.s390x.rpm rsyslog-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-diag-tools-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-doc-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-dbi-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-gssapi-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-gtls-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-mysql-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-omtcl-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-ossl-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-pgsql-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-relp-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-snmp-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.29.1.ppc64le.rpm rsyslog-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-diag-tools-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-doc-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-dbi-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-gssapi-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-gtls-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-mysql-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-omtcl-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-ossl-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-pgsql-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-relp-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-snmp-8.2106.0-150200.4.29.1.aarch64.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.29.1.aarch64.rpm openSUSE-SLE-15.3-2022-2364 moderate SUSE Updates openSUSE-SLE 15.3 This update for mdadm fixes the following issue: - Resource RAID failed during cluster patch, Mdadm gets floating point error (bsc#1197158) mdadm-4.1-150300.24.15.1.src.rpm mdadm-4.1-150300.24.15.1.x86_64.rpm mdadm-4.1-150300.24.15.1.s390x.rpm mdadm-4.1-150300.24.15.1.ppc64le.rpm mdadm-4.1-150300.24.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-3135 low SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issue: - Update pci, usb and vendor ids to version 0.360 (bsc#1200110) hwdata-0.360-150000.3.48.1.noarch.rpm hwdata-0.360-150000.3.48.1.src.rpm openSUSE-SLE-15.3-2022-2805 moderate SUSE Updates openSUSE-SLE 15.3 This update for gvfs fixes the following issues: - Fix inability to mount smb share with samba 4.16 (bsc#1198718) gvfs-1.42.2-150200.6.3.1.src.rpm gvfs-1.42.2-150200.6.3.1.x86_64.rpm gvfs-32bit-1.42.2-150200.6.3.1.x86_64.rpm gvfs-backend-afc-1.42.2-150200.6.3.1.x86_64.rpm gvfs-backend-samba-1.42.2-150200.6.3.1.x86_64.rpm gvfs-backends-1.42.2-150200.6.3.1.x86_64.rpm gvfs-devel-1.42.2-150200.6.3.1.x86_64.rpm gvfs-fuse-1.42.2-150200.6.3.1.x86_64.rpm gvfs-lang-1.42.2-150200.6.3.1.noarch.rpm gvfs-1.42.2-150200.6.3.1.s390x.rpm gvfs-backend-afc-1.42.2-150200.6.3.1.s390x.rpm gvfs-backend-samba-1.42.2-150200.6.3.1.s390x.rpm gvfs-backends-1.42.2-150200.6.3.1.s390x.rpm gvfs-devel-1.42.2-150200.6.3.1.s390x.rpm gvfs-fuse-1.42.2-150200.6.3.1.s390x.rpm gvfs-1.42.2-150200.6.3.1.ppc64le.rpm gvfs-backend-afc-1.42.2-150200.6.3.1.ppc64le.rpm gvfs-backend-samba-1.42.2-150200.6.3.1.ppc64le.rpm gvfs-backends-1.42.2-150200.6.3.1.ppc64le.rpm gvfs-devel-1.42.2-150200.6.3.1.ppc64le.rpm gvfs-fuse-1.42.2-150200.6.3.1.ppc64le.rpm gvfs-1.42.2-150200.6.3.1.aarch64.rpm gvfs-backend-afc-1.42.2-150200.6.3.1.aarch64.rpm gvfs-backend-samba-1.42.2-150200.6.3.1.aarch64.rpm gvfs-backends-1.42.2-150200.6.3.1.aarch64.rpm gvfs-devel-1.42.2-150200.6.3.1.aarch64.rpm gvfs-fuse-1.42.2-150200.6.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3127 moderate SUSE Updates openSUSE-SLE 15.3 This update for libtirpc fixes the following issues: - Exclude ipv6 addresses in client protocol version 2 code (bsc#1200800) - Fix memory leak in params.r_addr assignement (bsc#1198752) libtirpc-1.2.6-150300.3.11.1.src.rpm libtirpc-devel-1.2.6-150300.3.11.1.x86_64.rpm libtirpc-netconfig-1.2.6-150300.3.11.1.x86_64.rpm libtirpc3-1.2.6-150300.3.11.1.x86_64.rpm libtirpc3-32bit-1.2.6-150300.3.11.1.x86_64.rpm libtirpc-devel-1.2.6-150300.3.11.1.s390x.rpm libtirpc-netconfig-1.2.6-150300.3.11.1.s390x.rpm libtirpc3-1.2.6-150300.3.11.1.s390x.rpm libtirpc-devel-1.2.6-150300.3.11.1.ppc64le.rpm libtirpc-netconfig-1.2.6-150300.3.11.1.ppc64le.rpm libtirpc3-1.2.6-150300.3.11.1.ppc64le.rpm libtirpc-devel-1.2.6-150300.3.11.1.aarch64.rpm libtirpc-netconfig-1.2.6-150300.3.11.1.aarch64.rpm libtirpc3-1.2.6-150300.3.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-3114 moderate SUSE Updates openSUSE-SLE 15.3 This update for PackageKit fixes the following issues: - Fix packages lock being ignored (bsc#1199895) PackageKit-1.1.13-150200.4.26.1.src.rpm True PackageKit-1.1.13-150200.4.26.1.x86_64.rpm True PackageKit-backend-dnf-1.1.13-150200.4.26.1.x86_64.rpm True PackageKit-backend-zypp-1.1.13-150200.4.26.1.x86_64.rpm True PackageKit-branding-upstream-1.1.13-150200.4.26.1.noarch.rpm True PackageKit-devel-1.1.13-150200.4.26.1.x86_64.rpm True PackageKit-gstreamer-plugin-1.1.13-150200.4.26.1.x86_64.rpm True PackageKit-gtk3-module-1.1.13-150200.4.26.1.x86_64.rpm True PackageKit-lang-1.1.13-150200.4.26.1.noarch.rpm True libpackagekit-glib2-18-1.1.13-150200.4.26.1.x86_64.rpm True libpackagekit-glib2-18-32bit-1.1.13-150200.4.26.1.x86_64.rpm True libpackagekit-glib2-devel-1.1.13-150200.4.26.1.x86_64.rpm True libpackagekit-glib2-devel-32bit-1.1.13-150200.4.26.1.x86_64.rpm True typelib-1_0-PackageKitGlib-1_0-1.1.13-150200.4.26.1.x86_64.rpm True PackageKit-1.1.13-150200.4.26.1.s390x.rpm True PackageKit-backend-dnf-1.1.13-150200.4.26.1.s390x.rpm True PackageKit-backend-zypp-1.1.13-150200.4.26.1.s390x.rpm True PackageKit-devel-1.1.13-150200.4.26.1.s390x.rpm True PackageKit-gstreamer-plugin-1.1.13-150200.4.26.1.s390x.rpm True PackageKit-gtk3-module-1.1.13-150200.4.26.1.s390x.rpm True libpackagekit-glib2-18-1.1.13-150200.4.26.1.s390x.rpm True libpackagekit-glib2-devel-1.1.13-150200.4.26.1.s390x.rpm True typelib-1_0-PackageKitGlib-1_0-1.1.13-150200.4.26.1.s390x.rpm True PackageKit-1.1.13-150200.4.26.1.ppc64le.rpm True PackageKit-backend-dnf-1.1.13-150200.4.26.1.ppc64le.rpm True PackageKit-backend-zypp-1.1.13-150200.4.26.1.ppc64le.rpm True PackageKit-devel-1.1.13-150200.4.26.1.ppc64le.rpm True PackageKit-gstreamer-plugin-1.1.13-150200.4.26.1.ppc64le.rpm True PackageKit-gtk3-module-1.1.13-150200.4.26.1.ppc64le.rpm True libpackagekit-glib2-18-1.1.13-150200.4.26.1.ppc64le.rpm True libpackagekit-glib2-devel-1.1.13-150200.4.26.1.ppc64le.rpm True typelib-1_0-PackageKitGlib-1_0-1.1.13-150200.4.26.1.ppc64le.rpm True PackageKit-1.1.13-150200.4.26.1.aarch64.rpm True PackageKit-backend-dnf-1.1.13-150200.4.26.1.aarch64.rpm True PackageKit-backend-zypp-1.1.13-150200.4.26.1.aarch64.rpm True PackageKit-devel-1.1.13-150200.4.26.1.aarch64.rpm True PackageKit-gstreamer-plugin-1.1.13-150200.4.26.1.aarch64.rpm True PackageKit-gtk3-module-1.1.13-150200.4.26.1.aarch64.rpm True libpackagekit-glib2-18-1.1.13-150200.4.26.1.aarch64.rpm True libpackagekit-glib2-devel-1.1.13-150200.4.26.1.aarch64.rpm True typelib-1_0-PackageKitGlib-1_0-1.1.13-150200.4.26.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2272 important SUSE Updates openSUSE-SLE 15.3 This update of dpdk fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) dpdk-18.11.9-150100.4.16.1.src.rpm libdpdk-18_11-18.11.9-150100.4.16.1.x86_64.rpm libdpdk-18_11-18.11.9-150100.4.16.1.ppc64le.rpm libdpdk-18_11-18.11.9-150100.4.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-2267 important SUSE Updates openSUSE-SLE 15.3 This update of dpdk fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) dpdk-19.11.4-150300.13.3.src.rpm dpdk-19.11.4-150300.13.3.x86_64.rpm dpdk-devel-19.11.4-150300.13.3.x86_64.rpm dpdk-doc-19.11.4-150300.13.3.noarch.rpm dpdk-examples-19.11.4-150300.13.3.x86_64.rpm dpdk-kmp-default-19.11.4_k5.3.18_150300.59.76-150300.13.3.x86_64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_150300.59.76-150300.13.3.x86_64.rpm dpdk-tools-19.11.4-150300.13.3.x86_64.rpm libdpdk-20_0-19.11.4-150300.13.3.x86_64.rpm dpdk-19.11.4-150300.13.3.ppc64le.rpm dpdk-devel-19.11.4-150300.13.3.ppc64le.rpm dpdk-examples-19.11.4-150300.13.3.ppc64le.rpm dpdk-kmp-default-19.11.4_k5.3.18_150300.59.76-150300.13.3.ppc64le.rpm dpdk-tools-19.11.4-150300.13.3.ppc64le.rpm libdpdk-20_0-19.11.4-150300.13.3.ppc64le.rpm dpdk-19.11.4-150300.13.3.aarch64.rpm dpdk-devel-19.11.4-150300.13.3.aarch64.rpm dpdk-examples-19.11.4-150300.13.3.aarch64.rpm dpdk-kmp-default-19.11.4_k5.3.18_150300.59.76-150300.13.3.aarch64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_150300.59.76-150300.13.3.aarch64.rpm dpdk-thunderx-19.11.4-150300.13.3.aarch64.rpm dpdk-thunderx-19.11.4-150300.13.3.src.rpm dpdk-thunderx-devel-19.11.4-150300.13.3.aarch64.rpm dpdk-thunderx-doc-19.11.4-150300.13.3.noarch.rpm dpdk-thunderx-examples-19.11.4-150300.13.3.aarch64.rpm dpdk-thunderx-kmp-default-19.11.4_k5.3.18_150300.59.76-150300.13.3.aarch64.rpm dpdk-thunderx-kmp-preempt-19.11.4_k5.3.18_150300.59.76-150300.13.3.aarch64.rpm dpdk-thunderx-tools-19.11.4-150300.13.3.aarch64.rpm dpdk-tools-19.11.4-150300.13.3.aarch64.rpm libdpdk-20_0-19.11.4-150300.13.3.aarch64.rpm openSUSE-SLE-15.3-2022-2400 important SUSE Updates openSUSE-SLE 15.3 This update of oracleasm fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) oracleasm-2.0.8-150300.19.5.3.src.rpm oracleasm-kmp-default-2.0.8_k5.3.18_150300.59.76-150300.19.5.3.x86_64.rpm oracleasm-kmp-preempt-2.0.8_k5.3.18_150300.59.76-150300.19.5.3.x86_64.rpm oracleasm-kmp-rt-2.0.8_k5.3.18_8.13-150300.19.5.3.x86_64.rpm oracleasm-kmp-default-2.0.8_k5.3.18_150300.59.76-150300.19.5.3.s390x.rpm oracleasm-kmp-default-2.0.8_k5.3.18_150300.59.76-150300.19.5.3.ppc64le.rpm oracleasm-kmp-64kb-2.0.8_k5.3.18_150300.59.76-150300.19.5.3.aarch64.rpm oracleasm-kmp-default-2.0.8_k5.3.18_150300.59.76-150300.19.5.3.aarch64.rpm oracleasm-kmp-preempt-2.0.8_k5.3.18_150300.59.76-150300.19.5.3.aarch64.rpm openSUSE-SLE-15.3-2022-2178 important SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - CVE-2022-22967: Fixed missing check for PAM_ACCT_MGM return value that could be used to bypass PAM authentication (bsc#1200566) python3-salt-3004-150300.53.24.1.x86_64.rpm True salt-3004-150300.53.24.1.src.rpm True salt-3004-150300.53.24.1.x86_64.rpm True salt-api-3004-150300.53.24.1.x86_64.rpm True salt-bash-completion-3004-150300.53.24.1.noarch.rpm True salt-cloud-3004-150300.53.24.1.x86_64.rpm True salt-doc-3004-150300.53.24.1.x86_64.rpm True salt-fish-completion-3004-150300.53.24.1.noarch.rpm True salt-master-3004-150300.53.24.1.x86_64.rpm True salt-minion-3004-150300.53.24.1.x86_64.rpm True salt-proxy-3004-150300.53.24.1.x86_64.rpm True salt-ssh-3004-150300.53.24.1.x86_64.rpm True salt-standalone-formulas-configuration-3004-150300.53.24.1.x86_64.rpm True salt-syndic-3004-150300.53.24.1.x86_64.rpm True salt-transactional-update-3004-150300.53.24.1.x86_64.rpm True salt-zsh-completion-3004-150300.53.24.1.noarch.rpm True python3-salt-3004-150300.53.24.1.s390x.rpm True salt-3004-150300.53.24.1.s390x.rpm True salt-api-3004-150300.53.24.1.s390x.rpm True salt-cloud-3004-150300.53.24.1.s390x.rpm True salt-doc-3004-150300.53.24.1.s390x.rpm True salt-master-3004-150300.53.24.1.s390x.rpm True salt-minion-3004-150300.53.24.1.s390x.rpm True salt-proxy-3004-150300.53.24.1.s390x.rpm True salt-ssh-3004-150300.53.24.1.s390x.rpm True salt-standalone-formulas-configuration-3004-150300.53.24.1.s390x.rpm True salt-syndic-3004-150300.53.24.1.s390x.rpm True salt-transactional-update-3004-150300.53.24.1.s390x.rpm True python3-salt-3004-150300.53.24.1.ppc64le.rpm True salt-3004-150300.53.24.1.ppc64le.rpm True salt-api-3004-150300.53.24.1.ppc64le.rpm True salt-cloud-3004-150300.53.24.1.ppc64le.rpm True salt-doc-3004-150300.53.24.1.ppc64le.rpm True salt-master-3004-150300.53.24.1.ppc64le.rpm True salt-minion-3004-150300.53.24.1.ppc64le.rpm True salt-proxy-3004-150300.53.24.1.ppc64le.rpm True salt-ssh-3004-150300.53.24.1.ppc64le.rpm True salt-standalone-formulas-configuration-3004-150300.53.24.1.ppc64le.rpm True salt-syndic-3004-150300.53.24.1.ppc64le.rpm True salt-transactional-update-3004-150300.53.24.1.ppc64le.rpm True python3-salt-3004-150300.53.24.1.aarch64.rpm True salt-3004-150300.53.24.1.aarch64.rpm True salt-api-3004-150300.53.24.1.aarch64.rpm True salt-cloud-3004-150300.53.24.1.aarch64.rpm True salt-doc-3004-150300.53.24.1.aarch64.rpm True salt-master-3004-150300.53.24.1.aarch64.rpm True salt-minion-3004-150300.53.24.1.aarch64.rpm True salt-proxy-3004-150300.53.24.1.aarch64.rpm True salt-ssh-3004-150300.53.24.1.aarch64.rpm True salt-standalone-formulas-configuration-3004-150300.53.24.1.aarch64.rpm True salt-syndic-3004-150300.53.24.1.aarch64.rpm True salt-transactional-update-3004-150300.53.24.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2402 important SUSE Updates openSUSE-SLE 15.3 This update for python-PyJWT fixes the following issues: - CVE-2022-29217: Fixed key confusion through non-blocklisted public key format (bsc#1199756). python-PyJWT-1.7.1-150200.3.3.1.src.rpm python2-PyJWT-1.7.1-150200.3.3.1.noarch.rpm python3-PyJWT-1.7.1-150200.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-2185 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2022-31625: Fixed uninitialized pointers free in Postgres extension. (bsc#1200645) - CVE-2022-31626: Fixed buffer overflow via user-supplied password when using pdo_mysql extension with mysqlnd driver. (bsc#1200628). apache2-mod_php7-7.4.6-150200.3.41.1.x86_64.rpm php7-7.4.6-150200.3.41.1.src.rpm php7-7.4.6-150200.3.41.1.x86_64.rpm php7-bcmath-7.4.6-150200.3.41.1.x86_64.rpm php7-bz2-7.4.6-150200.3.41.1.x86_64.rpm php7-calendar-7.4.6-150200.3.41.1.x86_64.rpm php7-ctype-7.4.6-150200.3.41.1.x86_64.rpm php7-curl-7.4.6-150200.3.41.1.x86_64.rpm php7-dba-7.4.6-150200.3.41.1.x86_64.rpm php7-devel-7.4.6-150200.3.41.1.x86_64.rpm php7-dom-7.4.6-150200.3.41.1.x86_64.rpm php7-embed-7.4.6-150200.3.41.1.x86_64.rpm php7-enchant-7.4.6-150200.3.41.1.x86_64.rpm php7-exif-7.4.6-150200.3.41.1.x86_64.rpm php7-fastcgi-7.4.6-150200.3.41.1.x86_64.rpm php7-fileinfo-7.4.6-150200.3.41.1.x86_64.rpm php7-firebird-7.4.6-150200.3.41.1.x86_64.rpm php7-fpm-7.4.6-150200.3.41.1.x86_64.rpm php7-ftp-7.4.6-150200.3.41.1.x86_64.rpm php7-gd-7.4.6-150200.3.41.1.x86_64.rpm php7-gettext-7.4.6-150200.3.41.1.x86_64.rpm php7-gmp-7.4.6-150200.3.41.1.x86_64.rpm php7-iconv-7.4.6-150200.3.41.1.x86_64.rpm php7-intl-7.4.6-150200.3.41.1.x86_64.rpm php7-json-7.4.6-150200.3.41.1.x86_64.rpm php7-ldap-7.4.6-150200.3.41.1.x86_64.rpm php7-mbstring-7.4.6-150200.3.41.1.x86_64.rpm php7-mysql-7.4.6-150200.3.41.1.x86_64.rpm php7-odbc-7.4.6-150200.3.41.1.x86_64.rpm php7-opcache-7.4.6-150200.3.41.1.x86_64.rpm php7-openssl-7.4.6-150200.3.41.1.x86_64.rpm php7-pcntl-7.4.6-150200.3.41.1.x86_64.rpm php7-pdo-7.4.6-150200.3.41.1.x86_64.rpm php7-pgsql-7.4.6-150200.3.41.1.x86_64.rpm php7-phar-7.4.6-150200.3.41.1.x86_64.rpm php7-posix-7.4.6-150200.3.41.1.x86_64.rpm php7-readline-7.4.6-150200.3.41.1.x86_64.rpm php7-shmop-7.4.6-150200.3.41.1.x86_64.rpm php7-snmp-7.4.6-150200.3.41.1.x86_64.rpm php7-soap-7.4.6-150200.3.41.1.x86_64.rpm php7-sockets-7.4.6-150200.3.41.1.x86_64.rpm php7-sodium-7.4.6-150200.3.41.1.x86_64.rpm php7-sqlite-7.4.6-150200.3.41.1.x86_64.rpm php7-sysvmsg-7.4.6-150200.3.41.1.x86_64.rpm php7-sysvsem-7.4.6-150200.3.41.1.x86_64.rpm php7-sysvshm-7.4.6-150200.3.41.1.x86_64.rpm php7-test-7.4.6-150200.3.41.1.src.rpm php7-test-7.4.6-150200.3.41.1.x86_64.rpm php7-tidy-7.4.6-150200.3.41.1.x86_64.rpm php7-tokenizer-7.4.6-150200.3.41.1.x86_64.rpm php7-xmlreader-7.4.6-150200.3.41.1.x86_64.rpm php7-xmlrpc-7.4.6-150200.3.41.1.x86_64.rpm php7-xmlwriter-7.4.6-150200.3.41.1.x86_64.rpm php7-xsl-7.4.6-150200.3.41.1.x86_64.rpm php7-zip-7.4.6-150200.3.41.1.x86_64.rpm php7-zlib-7.4.6-150200.3.41.1.x86_64.rpm apache2-mod_php7-7.4.6-150200.3.41.1.s390x.rpm php7-7.4.6-150200.3.41.1.s390x.rpm php7-bcmath-7.4.6-150200.3.41.1.s390x.rpm php7-bz2-7.4.6-150200.3.41.1.s390x.rpm php7-calendar-7.4.6-150200.3.41.1.s390x.rpm php7-ctype-7.4.6-150200.3.41.1.s390x.rpm php7-curl-7.4.6-150200.3.41.1.s390x.rpm php7-dba-7.4.6-150200.3.41.1.s390x.rpm php7-devel-7.4.6-150200.3.41.1.s390x.rpm php7-dom-7.4.6-150200.3.41.1.s390x.rpm php7-embed-7.4.6-150200.3.41.1.s390x.rpm php7-enchant-7.4.6-150200.3.41.1.s390x.rpm php7-exif-7.4.6-150200.3.41.1.s390x.rpm php7-fastcgi-7.4.6-150200.3.41.1.s390x.rpm php7-fileinfo-7.4.6-150200.3.41.1.s390x.rpm php7-firebird-7.4.6-150200.3.41.1.s390x.rpm php7-fpm-7.4.6-150200.3.41.1.s390x.rpm php7-ftp-7.4.6-150200.3.41.1.s390x.rpm php7-gd-7.4.6-150200.3.41.1.s390x.rpm php7-gettext-7.4.6-150200.3.41.1.s390x.rpm php7-gmp-7.4.6-150200.3.41.1.s390x.rpm php7-iconv-7.4.6-150200.3.41.1.s390x.rpm php7-intl-7.4.6-150200.3.41.1.s390x.rpm php7-json-7.4.6-150200.3.41.1.s390x.rpm php7-ldap-7.4.6-150200.3.41.1.s390x.rpm php7-mbstring-7.4.6-150200.3.41.1.s390x.rpm php7-mysql-7.4.6-150200.3.41.1.s390x.rpm php7-odbc-7.4.6-150200.3.41.1.s390x.rpm php7-opcache-7.4.6-150200.3.41.1.s390x.rpm php7-openssl-7.4.6-150200.3.41.1.s390x.rpm php7-pcntl-7.4.6-150200.3.41.1.s390x.rpm php7-pdo-7.4.6-150200.3.41.1.s390x.rpm php7-pgsql-7.4.6-150200.3.41.1.s390x.rpm php7-phar-7.4.6-150200.3.41.1.s390x.rpm php7-posix-7.4.6-150200.3.41.1.s390x.rpm php7-readline-7.4.6-150200.3.41.1.s390x.rpm php7-shmop-7.4.6-150200.3.41.1.s390x.rpm php7-snmp-7.4.6-150200.3.41.1.s390x.rpm php7-soap-7.4.6-150200.3.41.1.s390x.rpm php7-sockets-7.4.6-150200.3.41.1.s390x.rpm php7-sodium-7.4.6-150200.3.41.1.s390x.rpm php7-sqlite-7.4.6-150200.3.41.1.s390x.rpm php7-sysvmsg-7.4.6-150200.3.41.1.s390x.rpm php7-sysvsem-7.4.6-150200.3.41.1.s390x.rpm php7-sysvshm-7.4.6-150200.3.41.1.s390x.rpm php7-test-7.4.6-150200.3.41.1.s390x.rpm php7-tidy-7.4.6-150200.3.41.1.s390x.rpm php7-tokenizer-7.4.6-150200.3.41.1.s390x.rpm php7-xmlreader-7.4.6-150200.3.41.1.s390x.rpm php7-xmlrpc-7.4.6-150200.3.41.1.s390x.rpm php7-xmlwriter-7.4.6-150200.3.41.1.s390x.rpm php7-xsl-7.4.6-150200.3.41.1.s390x.rpm php7-zip-7.4.6-150200.3.41.1.s390x.rpm php7-zlib-7.4.6-150200.3.41.1.s390x.rpm apache2-mod_php7-7.4.6-150200.3.41.1.ppc64le.rpm php7-7.4.6-150200.3.41.1.ppc64le.rpm php7-bcmath-7.4.6-150200.3.41.1.ppc64le.rpm php7-bz2-7.4.6-150200.3.41.1.ppc64le.rpm php7-calendar-7.4.6-150200.3.41.1.ppc64le.rpm php7-ctype-7.4.6-150200.3.41.1.ppc64le.rpm php7-curl-7.4.6-150200.3.41.1.ppc64le.rpm php7-dba-7.4.6-150200.3.41.1.ppc64le.rpm php7-devel-7.4.6-150200.3.41.1.ppc64le.rpm php7-dom-7.4.6-150200.3.41.1.ppc64le.rpm php7-embed-7.4.6-150200.3.41.1.ppc64le.rpm php7-enchant-7.4.6-150200.3.41.1.ppc64le.rpm php7-exif-7.4.6-150200.3.41.1.ppc64le.rpm php7-fastcgi-7.4.6-150200.3.41.1.ppc64le.rpm php7-fileinfo-7.4.6-150200.3.41.1.ppc64le.rpm php7-firebird-7.4.6-150200.3.41.1.ppc64le.rpm php7-fpm-7.4.6-150200.3.41.1.ppc64le.rpm php7-ftp-7.4.6-150200.3.41.1.ppc64le.rpm php7-gd-7.4.6-150200.3.41.1.ppc64le.rpm php7-gettext-7.4.6-150200.3.41.1.ppc64le.rpm php7-gmp-7.4.6-150200.3.41.1.ppc64le.rpm php7-iconv-7.4.6-150200.3.41.1.ppc64le.rpm php7-intl-7.4.6-150200.3.41.1.ppc64le.rpm php7-json-7.4.6-150200.3.41.1.ppc64le.rpm php7-ldap-7.4.6-150200.3.41.1.ppc64le.rpm php7-mbstring-7.4.6-150200.3.41.1.ppc64le.rpm php7-mysql-7.4.6-150200.3.41.1.ppc64le.rpm php7-odbc-7.4.6-150200.3.41.1.ppc64le.rpm php7-opcache-7.4.6-150200.3.41.1.ppc64le.rpm php7-openssl-7.4.6-150200.3.41.1.ppc64le.rpm php7-pcntl-7.4.6-150200.3.41.1.ppc64le.rpm php7-pdo-7.4.6-150200.3.41.1.ppc64le.rpm php7-pgsql-7.4.6-150200.3.41.1.ppc64le.rpm php7-phar-7.4.6-150200.3.41.1.ppc64le.rpm php7-posix-7.4.6-150200.3.41.1.ppc64le.rpm php7-readline-7.4.6-150200.3.41.1.ppc64le.rpm php7-shmop-7.4.6-150200.3.41.1.ppc64le.rpm php7-snmp-7.4.6-150200.3.41.1.ppc64le.rpm php7-soap-7.4.6-150200.3.41.1.ppc64le.rpm php7-sockets-7.4.6-150200.3.41.1.ppc64le.rpm php7-sodium-7.4.6-150200.3.41.1.ppc64le.rpm php7-sqlite-7.4.6-150200.3.41.1.ppc64le.rpm php7-sysvmsg-7.4.6-150200.3.41.1.ppc64le.rpm php7-sysvsem-7.4.6-150200.3.41.1.ppc64le.rpm php7-sysvshm-7.4.6-150200.3.41.1.ppc64le.rpm php7-test-7.4.6-150200.3.41.1.ppc64le.rpm php7-tidy-7.4.6-150200.3.41.1.ppc64le.rpm php7-tokenizer-7.4.6-150200.3.41.1.ppc64le.rpm php7-xmlreader-7.4.6-150200.3.41.1.ppc64le.rpm php7-xmlrpc-7.4.6-150200.3.41.1.ppc64le.rpm php7-xmlwriter-7.4.6-150200.3.41.1.ppc64le.rpm php7-xsl-7.4.6-150200.3.41.1.ppc64le.rpm php7-zip-7.4.6-150200.3.41.1.ppc64le.rpm php7-zlib-7.4.6-150200.3.41.1.ppc64le.rpm apache2-mod_php7-7.4.6-150200.3.41.1.aarch64.rpm php7-7.4.6-150200.3.41.1.aarch64.rpm php7-bcmath-7.4.6-150200.3.41.1.aarch64.rpm php7-bz2-7.4.6-150200.3.41.1.aarch64.rpm php7-calendar-7.4.6-150200.3.41.1.aarch64.rpm php7-ctype-7.4.6-150200.3.41.1.aarch64.rpm php7-curl-7.4.6-150200.3.41.1.aarch64.rpm php7-dba-7.4.6-150200.3.41.1.aarch64.rpm php7-devel-7.4.6-150200.3.41.1.aarch64.rpm php7-dom-7.4.6-150200.3.41.1.aarch64.rpm php7-embed-7.4.6-150200.3.41.1.aarch64.rpm php7-enchant-7.4.6-150200.3.41.1.aarch64.rpm php7-exif-7.4.6-150200.3.41.1.aarch64.rpm php7-fastcgi-7.4.6-150200.3.41.1.aarch64.rpm php7-fileinfo-7.4.6-150200.3.41.1.aarch64.rpm php7-firebird-7.4.6-150200.3.41.1.aarch64.rpm php7-fpm-7.4.6-150200.3.41.1.aarch64.rpm php7-ftp-7.4.6-150200.3.41.1.aarch64.rpm php7-gd-7.4.6-150200.3.41.1.aarch64.rpm php7-gettext-7.4.6-150200.3.41.1.aarch64.rpm php7-gmp-7.4.6-150200.3.41.1.aarch64.rpm php7-iconv-7.4.6-150200.3.41.1.aarch64.rpm php7-intl-7.4.6-150200.3.41.1.aarch64.rpm php7-json-7.4.6-150200.3.41.1.aarch64.rpm php7-ldap-7.4.6-150200.3.41.1.aarch64.rpm php7-mbstring-7.4.6-150200.3.41.1.aarch64.rpm php7-mysql-7.4.6-150200.3.41.1.aarch64.rpm php7-odbc-7.4.6-150200.3.41.1.aarch64.rpm php7-opcache-7.4.6-150200.3.41.1.aarch64.rpm php7-openssl-7.4.6-150200.3.41.1.aarch64.rpm php7-pcntl-7.4.6-150200.3.41.1.aarch64.rpm php7-pdo-7.4.6-150200.3.41.1.aarch64.rpm php7-pgsql-7.4.6-150200.3.41.1.aarch64.rpm php7-phar-7.4.6-150200.3.41.1.aarch64.rpm php7-posix-7.4.6-150200.3.41.1.aarch64.rpm php7-readline-7.4.6-150200.3.41.1.aarch64.rpm php7-shmop-7.4.6-150200.3.41.1.aarch64.rpm php7-snmp-7.4.6-150200.3.41.1.aarch64.rpm php7-soap-7.4.6-150200.3.41.1.aarch64.rpm php7-sockets-7.4.6-150200.3.41.1.aarch64.rpm php7-sodium-7.4.6-150200.3.41.1.aarch64.rpm php7-sqlite-7.4.6-150200.3.41.1.aarch64.rpm php7-sysvmsg-7.4.6-150200.3.41.1.aarch64.rpm php7-sysvsem-7.4.6-150200.3.41.1.aarch64.rpm php7-sysvshm-7.4.6-150200.3.41.1.aarch64.rpm php7-test-7.4.6-150200.3.41.1.aarch64.rpm php7-tidy-7.4.6-150200.3.41.1.aarch64.rpm php7-tokenizer-7.4.6-150200.3.41.1.aarch64.rpm php7-xmlreader-7.4.6-150200.3.41.1.aarch64.rpm php7-xmlrpc-7.4.6-150200.3.41.1.aarch64.rpm php7-xmlwriter-7.4.6-150200.3.41.1.aarch64.rpm php7-xsl-7.4.6-150200.3.41.1.aarch64.rpm php7-zip-7.4.6-150200.3.41.1.aarch64.rpm php7-zlib-7.4.6-150200.3.41.1.aarch64.rpm openSUSE-SLE-15.3-2022-2866 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-presets-common-SUSE fixes the following issues: - CVE-2022-1706: Fixed accessible configs from unprivileged containers in VMs running on VMware products (bsc#1199524). The following non-security bugs were fixed: - Modify branding-preset-states to fix systemd-presets-common-SUSE not enabling new user systemd service preset configuration just as it handles system service presets. By passing an (optional) second parameter "user", the save/apply-changes commands now work with user services instead of system ones (bsc#1200485) - Add the wireplumber user service preset to enable it by default in SLE15-SP4 where it replaced pipewire-media-session, but keep pipewire-media-session preset so we don't have to branch the systemd-presets-common-SUSE package for SP4 (bsc#1200485) systemd-presets-common-SUSE-15-150100.8.17.1.noarch.rpm systemd-presets-common-SUSE-15-150100.8.17.1.src.rpm openSUSE-SLE-15.3-2022-2192 critical SUSE Updates openSUSE-SLE 15.3 This update for rubygem-rack fixes the following issues: - CVE-2022-30122: Fixed crafted multipart POST request may cause a DoS (bsc#1200748) - CVE-2022-30123: Fixed crafted requests can cause shell escape sequences (bsc#1200750) ruby2.5-rubygem-rack-2.0.8-150000.3.6.1.x86_64.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.6.1.x86_64.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.6.1.x86_64.rpm rubygem-rack-2.0.8-150000.3.6.1.src.rpm ruby2.5-rubygem-rack-2.0.8-150000.3.6.1.s390x.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.6.1.s390x.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.6.1.s390x.rpm ruby2.5-rubygem-rack-2.0.8-150000.3.6.1.ppc64le.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.6.1.ppc64le.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.6.1.ppc64le.rpm ruby2.5-rubygem-rack-2.0.8-150000.3.6.1.aarch64.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.6.1.aarch64.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2172 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-1012: Fixed a small table perturb size in the TCP source port generation algorithm which could leads to information leak. (bsc#1199482). - CVE-2022-20141: Fixed an use after free due to improper locking. This bug could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. (bnc#1200604) - CVE-2022-32250: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015) - CVE-2022-1975: Fixed a sleep-in-atomic bug that allows attacker to crash linux kernel by simulating nfc device from user-space. (bsc#1200143) - CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144) - CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism. (bnc#1177282) The following non-security bugs were fixed: - ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default (git-fixes). - ACPI: sysfs: Fix BERT error region memory mapping (git-fixes). - ACPI: sysfs: Make sparse happy about address space in use (git-fixes). - ALSA: hda/conexant - Fix loopback issue with CX20632 (git-fixes). - ALSA: usb-audio: Optimize TEAC clock quirk (git-fixes). - ALSA: usb-audio: Set up (implicit) sync for Saffire 6 (git-fixes). - ALSA: usb-audio: Skip generic sync EP parse for secondary EP (git-fixes). - ALSA: usb-audio: Workaround for clock setup on TEAC devices (git-fixes). - arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399 (git-fixes) - ASoC: dapm: Do not fold register value changes into notifications (git-fixes). - ASoC: max98357a: remove dependency on GPIOLIB (git-fixes). - ASoC: rt5645: Fix errorenous cleanup order (git-fixes). - ASoC: tscs454: Add endianness flag in snd_soc_component_driver (git-fixes). - ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files (git-fixes). - ath9k: fix QCA9561 PA bias level (git-fixes). - b43: Fix assigning negative value to unsigned variable (git-fixes). - b43legacy: Fix assigning negative value to unsigned variable (git-fixes). - blk-mq: fix tag_get wait task can't be awakened (bsc#1200263). - blk-mq: Fix wrong wakeup batch configuration which will cause hang (bsc#1200263). - block: fix bio_clone_blkg_association() to associate with proper blkcg_gq (bsc#1200259). - btrfs: tree-checker: fix incorrect printk format (bsc#1200249). - certs/blacklist_hashes.c: fix const confusion in certs blacklist (git-fixes). - cfg80211: set custom regdomain after wiphy registration (git-fixes). - clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value (git-fixes). - clocksource/drivers/sp804: Avoid error on multiple instances (git-fixes). - dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace (git-fixes). - dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type (git-fixes). - drivers: i2c: thunderx: Allow driver to work with ACPI defined TWSI controllers (git-fixes). - drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop() (git-fixes). - drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop() (git-fixes). - drivers: tty: serial: Fix deadlock in sa1100_set_termios() (git-fixes). - drivers: usb: host: Fix deadlock in oxu_bus_suspend() (git-fixes). - drm: imx: fix compiler warning with gcc-12 (git-fixes). - drm: msm: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm/amdgpu/cs: make commands with 0 chunks illegal behaviour (git-fixes). - drm/amdgpu/smu10: fix SoC/fclk units in auto mode (git-fixes). - drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo (git-fixes). - drm/atomic: Force bridge self-refresh-exit on CRTC switch (git-fixes). - drm/bridge: analogix_dp: Support PSR-exit to disable transition (git-fixes). - drm/i915: Fix -Wstringop-overflow warning in call to intel_read_wm_latency() (git-fixes). - drm/i915: fix i915_globals_exit() section mismatch error (git-fixes). - drm/i915: Update TGL and RKL DMC firmware versions (bsc#1198924). - drm/i915/reset: Fix error_state_read ptr + offset use (git-fixes). - drm/komeda: return early if drm_universal_plane_init() fails (git-fixes). - drm/msm/dsi: fix address for second DSI PHY on SDM660 (git-fixes). - drm/plane: Move range check for format_count earlier (git-fixes). - drm/radeon: fix a possible null pointer dereference (git-fixes). - drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes (git-fixes). - efi: Add missing prototype for efi_capsule_setup_info (git-fixes). - efi: Do not import certificates from UEFI Secure Boot for T2 Macs (git-fixes). - fbcon: Consistently protect deferred_takeover with console_lock() (git-fixes). - ftrace: Clean up hash direct_functions on register failures (git-fixes). - HID: bigben: fix slab-out-of-bounds Write in bigben_probe (git-fixes). - HID: multitouch: Add support for Google Whiskers Touchpad (git-fixes). - hwmon: Make chip parameter for with_info API mandatory (git-fixes). - i2c: cadence: Increase timeout per message if necessary (git-fixes). - i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging (git-fixes). - iio: dummy: iio_simple_dummy: check the return value of kstrdup() (git-fixes). - Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag (git-fixes). - Input: goodix - fix spurious key release events (git-fixes). - ipw2x00: Fix potential NULL dereference in libipw_xmit() (git-fixes). - irqchip: irq-xtensa-mx: fix initial IRQ affinity (git-fixes). - irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x (git-fixes). - irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value (git-fixes). - irqchip/exiu: Fix acknowledgment of edge triggered interrupts (git-fixes). - iwlwifi: mvm: fix assert 1F04 upon reconfig (git-fixes). - KVM: fix wrong exception emulation in check_rdtsc (git-fixes). - KVM: nVMX: Invalidate all roots when emulating INVVPID without EPT (git-fixes). - KVM: nVMX: Query current VMCS when determining if MSR bitmaps are in use (git-fixes). - KVM: nVMX: Set LDTR to its architecturally defined value on nested VM-Exit (git-fixes). - KVM: nVMX: Unconditionally clear nested.pi_pending on nested VM-Enter (git-fixes). - KVM: s390: pv: add macros for UVC CC values (git-fixes). - KVM: s390: pv: avoid double free of sida page (git-fixes). - KVM: s390: pv: avoid stalls for kvm_s390_pv_init_vm (git-fixes). - KVM: s390: vsie/gmap: reduce gmap_rmap overhead (git-fixes). - KVM: VMX: Flush all EPTP/VPID contexts on remote TLB flush (git-fixes). - KVM: VMX: Use current VMCS to query WAITPKG support for MSR emulation (git-fixes). - KVM: x86: clflushopt should be treated as a no-op by emulation (git-fixes). - KVM: x86: Do not force set BSP bit when local APIC is managed by userspace (git-fixes). - KVM: x86: Fix emulation in writing cr8 (git-fixes). - KVM: x86: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce (git-fixes). - KVM: x86: Immediately reset the MMU context when the SMM flag is cleared (git-fixes). - KVM: x86: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode (git-fixes). - KVM: x86: Mark CR4.TSD as being possibly owned by the guest (git-fixes). - KVM: x86: Migrate the PIT only if vcpu0 is migrated, not any BSP (git-fixes). - KVM: x86: Toggling CR4.PKE does not load PDPTEs in PAE mode (git-fixes). - KVM: x86: Toggling CR4.SMAP does not load PDPTEs in PAE mode (git-fixes). - KVM: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU (git-fixes). - KVM: x86/emulator: Defer not-present segment check in __load_segment_descriptor() (git-fixes). - KVM: x86/pmu: Fix HW_REF_CPU_CYCLES event pseudo-encoding in intel_arch_events[] (git-fixes). - mac80211: upgrade passive scan to active scan on DFS channels after beacon rx (git-fixes). - md: fix an incorrect NULL check in does_sb_need_changing (git-fixes). - md: fix an incorrect NULL check in md_reload_sb (git-fixes). - media: cx25821: Fix the warning when removing the module (git-fixes). - media: netup_unidvb: Do not leak SPI master in probe error path (git-fixes). - media: pci: cx23885: Fix the error handling in cx23885_initdev() (git-fixes). - media: venus: hfi: avoid null dereference in deinit (git-fixes). - misc: rtsx: set NULL intfdata when probe fails (git-fixes). - mmc: block: Fix CQE recovery reset success (git-fixes). - mmc: jz4740: Apply DMA engine limits to maximum segment size (git-fixes). - modpost: fix removing numeric suffixes (git-fixes). - modpost: fix undefined behavior of is_arm_mapping_symbol() (git-fixes). - mt76: check return value of mt76_txq_send_burst in mt76_txq_schedule_list (git-fixes). - mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue (git-fixes). - net: ax25: Fix deadlock caused by skb_recv_datagram in ax25_recvmsg (git-fixes). - net: rtlwifi: properly check for alloc_workqueue() failure (git-fixes). - nfc: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION (git-fixes). - nfc: st21nfca: fix incorrect validating logic in EVT_TRANSACTION (git-fixes). - nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling (git-fixes). - NFS: Do not report ENOSPC write errors twice (git-fixes). - nfsd: Fix null-ptr-deref in nfsd_fill_super() (git-fixes). - PCI: hv: Fix NUMA node assignment when kernel boots with custom NUMA topology (bsc#1199365). - pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards (git-fixes). - pinctrl: sunxi: fix f1c100s uart2 function (git-fixes). - platform/chrome: cros_ec_proto: Send command again when timeout occurs (git-fixes). - platform/x86: wmi: Fix driver->notify() vs ->probe() race (git-fixes). - platform/x86: wmi: Replace read_takes_no_args with a flags field (git-fixes). - PM / devfreq: rk3399_dmc: Disable edev on remove() (git-fixes). - powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address (bsc#1200343 ltc#198477). - raid5: introduce MD_BROKEN (git-fixes). - random: Add and use pr_fmt() (bsc#1184924). - random: remove unnecessary unlikely() (bsc#1184924). - rtl818x: Prevent using not initialized queues (git-fixes). - rtlwifi: Use pr_warn instead of WARN_ONCE (git-fixes). - s390: fix detection of vector enhancements facility 1 vs. vector packed decimal facility (git-fixes). - s390: fix strrchr() implementation (git-fixes). - s390/cio: dont call css_wait_for_slow_path() inside a lock (git-fixes). - s390/cio: Fix the "type" field in s390_cio_tpi tracepoint (git-fixes). - s390/crypto: fix scatterwalk_unmap() callers in AES-GCM (git-fixes). - s390/ctcm: fix potential memory leak (git-fixes). - s390/ctcm: fix variable dereferenced before check (git-fixes). - s390/dasd: fix data corruption for ESE devices (bsc#1200207 LTC#198454). - s390/dasd: Fix read for ESE with blksize 4k (bsc#1200206 LTC#198455). - s390/dasd: Fix read inconsistency for ESE DASD devices (bsc#1200206 LTC#198455). - s390/dasd: prevent double format of tracks for ESE devices (bsc#1200207 LTC#198454). - s390/ftrace: fix ftrace_update_ftrace_func implementation (git-fixes). - s390/lcs: fix variable dereferenced before check (git-fixes). - s390/mcck: fix invalid KVM guest condition check (git-fixes). - s390/mcck: isolate SIE instruction when setting CIF_MCCK_GUEST flag (git-fixes). - s390/nmi: handle guarded storage validity failures for KVM guests (git-fixes). - s390/nmi: handle vector validity failures for KVM guests (git-fixes). - s390/pv: fix the forcing of the swiotlb (git-fixes). - s390/qdio: cancel the ESTABLISH ccw after timeout (git-fixes). - s390/qdio: fix roll-back after timeout on ESTABLISH ccw (git-fixes). - s390/vfio-ap: fix circular lockdep when setting/clearing crypto masks (git-fixes). - serial: msm_serial: disable interrupts in __msm_console_write() (git-fixes). - spi: Introduce device-managed SPI controller allocation (git-fixes). - spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA direction (git-fixes). - spi: stm32-qspi: Fix wait_cmd timeout in APM mode (git-fixes). - staging: rtl8712: fix uninit-value in r871xu_drv_init() (git-fixes). - staging: rtl8712: fix uninit-value in usb_read8() and friends (git-fixes). - tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator (git-fixes). - tty: Fix a possible resource leak in icom_probe (git-fixes). - tty: synclink_gt: Fix null-pointer-dereference in slgt_clean() (git-fixes). - usb: core: hcd: Add support for deferring roothub registration (git-fixes). - usb: dwc2: gadget: do not reset gadget's driver->bus (git-fixes). - usb: hcd-pci: Fully suspend across freeze/thaw cycle (git-fixes). - usb: host: isp116x: check return value after calling platform_get_resource() (git-fixes). - usb: new quirk for Dell Gen 2 devices (git-fixes). - usb: serial: option: add Quectel BG95 modem (git-fixes). - vfio-ccw: Check initialized flag in cp_init() (git-fixes). - vfio/ccw: Remove unneeded GFP_DMA (git-fixes). - video: fbdev: pxa3xx-gcu: release the resources correctly in pxa3xx_gcu_probe/remove() (git-fixes). - virtio/s390: implement virtio-ccw revision 2 correctly (git-fixes). - vringh: Fix loop descriptors check in the indirect cases (git-fixes). - watchdog: wdat_wdt: Stop watchdog when rebooting the system (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.62.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.62.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.62.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.62.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.62.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.62.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.62.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.62.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.62.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.62.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.62.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.62.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.62.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.62.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.62.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.62.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.62.1.x86_64.rpm True openSUSE-SLE-15.3-2022-2361 important SUSE Updates openSUSE-SLE 15.3 This update for pcre fixes the following issues: - CVE-2022-1586: Fixed unicode property matching issue. (bsc#1199232) libpcre1-32bit-8.45-150000.20.13.1.x86_64.rpm libpcre1-8.45-150000.20.13.1.x86_64.rpm libpcre16-0-32bit-8.45-150000.20.13.1.x86_64.rpm libpcre16-0-8.45-150000.20.13.1.x86_64.rpm libpcrecpp0-32bit-8.45-150000.20.13.1.x86_64.rpm libpcrecpp0-8.45-150000.20.13.1.x86_64.rpm libpcreposix0-32bit-8.45-150000.20.13.1.x86_64.rpm libpcreposix0-8.45-150000.20.13.1.x86_64.rpm pcre-8.45-150000.20.13.1.src.rpm pcre-devel-8.45-150000.20.13.1.x86_64.rpm pcre-devel-static-8.45-150000.20.13.1.x86_64.rpm pcre-doc-8.45-150000.20.13.1.noarch.rpm pcre-tools-8.45-150000.20.13.1.x86_64.rpm libpcre1-8.45-150000.20.13.1.s390x.rpm libpcre16-0-8.45-150000.20.13.1.s390x.rpm libpcrecpp0-8.45-150000.20.13.1.s390x.rpm libpcreposix0-8.45-150000.20.13.1.s390x.rpm pcre-devel-8.45-150000.20.13.1.s390x.rpm pcre-devel-static-8.45-150000.20.13.1.s390x.rpm pcre-tools-8.45-150000.20.13.1.s390x.rpm libpcre1-8.45-150000.20.13.1.ppc64le.rpm libpcre16-0-8.45-150000.20.13.1.ppc64le.rpm libpcrecpp0-8.45-150000.20.13.1.ppc64le.rpm libpcreposix0-8.45-150000.20.13.1.ppc64le.rpm pcre-devel-8.45-150000.20.13.1.ppc64le.rpm pcre-devel-static-8.45-150000.20.13.1.ppc64le.rpm pcre-tools-8.45-150000.20.13.1.ppc64le.rpm libpcre1-8.45-150000.20.13.1.aarch64.rpm libpcre16-0-8.45-150000.20.13.1.aarch64.rpm libpcrecpp0-8.45-150000.20.13.1.aarch64.rpm libpcreposix0-8.45-150000.20.13.1.aarch64.rpm pcre-devel-8.45-150000.20.13.1.aarch64.rpm pcre-devel-static-8.45-150000.20.13.1.aarch64.rpm pcre-tools-8.45-150000.20.13.1.aarch64.rpm openSUSE-SLE-15.3-2022-2955 moderate SUSE Updates openSUSE-SLE 15.3 This update for bpftrace fixes the following issues: - do not link against the shared BFD libraries to avoid explicit binutils dependency (bsc#1200630) bpftrace-0.11.4-150300.3.14.1.src.rpm bpftrace-0.11.4-150300.3.14.1.x86_64.rpm bpftrace-tools-0.11.4-150300.3.14.1.noarch.rpm bpftrace-0.11.4-150300.3.14.1.s390x.rpm bpftrace-0.11.4-150300.3.14.1.ppc64le.rpm bpftrace-0.11.4-150300.3.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-2313 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 91.11.0 ESR (MFSA 2022-25) (bsc#1200793): - CVE-2022-2200: Undesired attributes could be set as part of prototype pollution (bmo#1771381) - CVE-2022-31744: CSP bypass enabling stylesheet injection (bmo#1757604) - CVE-2022-34468: CSP sandbox header without `allow-scripts` can be bypassed via retargeted javascript: URI (bmo#1768537) - CVE-2022-34470: Use-after-free in nsSHistory (bmo#1765951) - CVE-2022-34472: Unavailable PAC file resulted in OCSP requests being blocked (bmo#1770123) - CVE-2022-34478: Microsoft protocols can be attacked if a user accepts a prompt (bmo#1773717) - CVE-2022-34479: A popup window could be resized in a way to overlay the address bar with web content (bmo#1745595) - CVE-2022-34481: Potential integer overflow in ReplaceElementsAt (bmo#1497246) - CVE-2022-34484: Memory safety bugs fixed in Firefox 102 and Firefox ESR 91.11 (bmo#1763634, bmo#1772651) MozillaFirefox-91.11.0-150200.152.48.1.src.rpm MozillaFirefox-91.11.0-150200.152.48.1.x86_64.rpm MozillaFirefox-branding-upstream-91.11.0-150200.152.48.1.x86_64.rpm MozillaFirefox-devel-91.11.0-150200.152.48.1.x86_64.rpm MozillaFirefox-translations-common-91.11.0-150200.152.48.1.x86_64.rpm MozillaFirefox-translations-other-91.11.0-150200.152.48.1.x86_64.rpm MozillaFirefox-91.11.0-150200.152.48.1.s390x.rpm MozillaFirefox-branding-upstream-91.11.0-150200.152.48.1.s390x.rpm MozillaFirefox-devel-91.11.0-150200.152.48.1.s390x.rpm MozillaFirefox-translations-common-91.11.0-150200.152.48.1.s390x.rpm MozillaFirefox-translations-other-91.11.0-150200.152.48.1.s390x.rpm MozillaFirefox-91.11.0-150200.152.48.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.11.0-150200.152.48.1.ppc64le.rpm MozillaFirefox-devel-91.11.0-150200.152.48.1.ppc64le.rpm MozillaFirefox-translations-common-91.11.0-150200.152.48.1.ppc64le.rpm MozillaFirefox-translations-other-91.11.0-150200.152.48.1.ppc64le.rpm MozillaFirefox-91.11.0-150200.152.48.1.aarch64.rpm MozillaFirefox-branding-upstream-91.11.0-150200.152.48.1.aarch64.rpm MozillaFirefox-devel-91.11.0-150200.152.48.1.aarch64.rpm MozillaFirefox-translations-common-91.11.0-150200.152.48.1.aarch64.rpm MozillaFirefox-translations-other-91.11.0-150200.152.48.1.aarch64.rpm openSUSE-SLE-15.3-2022-2406 moderate SUSE Updates openSUSE-SLE 15.3 This update for glibc fixes the following issues: - powerpc: Fix VSX register number on __strncpy_power9 (bsc#1200334) - Disable warnings due to deprecated libselinux symbols used by nss and nscd (bsc#1197718) - i386: Remove broken CAN_USE_REGISTER_ASM_EBP (bsc#1197718) - rtld: Avoid using up static TLS surplus for optimizations (bsc#1200855, BZ #25051) This readds the s390 32bit glibc and libcrypt1 libraries (glibc-32bit, glibc-locale-base-32bit, libcrypt1-32bit). glibc-2.31-150300.31.2.src.rpm glibc-2.31-150300.31.2.x86_64.rpm glibc-32bit-2.31-150300.31.2.x86_64.rpm glibc-devel-2.31-150300.31.2.x86_64.rpm glibc-devel-32bit-2.31-150300.31.2.x86_64.rpm glibc-devel-static-2.31-150300.31.2.x86_64.rpm glibc-devel-static-32bit-2.31-150300.31.2.x86_64.rpm glibc-extra-2.31-150300.31.2.x86_64.rpm glibc-html-2.31-150300.31.2.noarch.rpm glibc-i18ndata-2.31-150300.31.2.noarch.rpm glibc-info-2.31-150300.31.2.noarch.rpm glibc-lang-2.31-150300.31.2.noarch.rpm glibc-locale-2.31-150300.31.2.x86_64.rpm glibc-locale-base-2.31-150300.31.2.x86_64.rpm glibc-locale-base-32bit-2.31-150300.31.2.x86_64.rpm glibc-profile-2.31-150300.31.2.x86_64.rpm glibc-profile-32bit-2.31-150300.31.2.x86_64.rpm glibc-utils-2.31-150300.31.1.x86_64.rpm glibc-utils-32bit-2.31-150300.31.1.x86_64.rpm glibc-utils-src-2.31-150300.31.1.src.rpm libcrypt1-32bit-4.4.15-150300.4.4.3.x86_64.rpm libcrypt1-4.4.15-150300.4.4.3.x86_64.rpm libxcrypt-4.4.15-150300.4.4.3.src.rpm libxcrypt-devel-32bit-4.4.15-150300.4.4.3.x86_64.rpm libxcrypt-devel-4.4.15-150300.4.4.3.x86_64.rpm libxcrypt-devel-static-4.4.15-150300.4.4.3.x86_64.rpm nscd-2.31-150300.31.2.x86_64.rpm glibc-2.31-150300.31.2.s390x.rpm glibc-devel-2.31-150300.31.2.s390x.rpm glibc-devel-static-2.31-150300.31.2.s390x.rpm glibc-extra-2.31-150300.31.2.s390x.rpm glibc-locale-2.31-150300.31.2.s390x.rpm glibc-locale-base-2.31-150300.31.2.s390x.rpm glibc-profile-2.31-150300.31.2.s390x.rpm glibc-utils-2.31-150300.31.1.s390x.rpm libcrypt1-4.4.15-150300.4.4.3.s390x.rpm libxcrypt-devel-4.4.15-150300.4.4.3.s390x.rpm libxcrypt-devel-static-4.4.15-150300.4.4.3.s390x.rpm nscd-2.31-150300.31.2.s390x.rpm glibc-2.31-150300.31.2.ppc64le.rpm glibc-devel-2.31-150300.31.2.ppc64le.rpm glibc-devel-static-2.31-150300.31.2.ppc64le.rpm glibc-extra-2.31-150300.31.2.ppc64le.rpm glibc-locale-2.31-150300.31.2.ppc64le.rpm glibc-locale-base-2.31-150300.31.2.ppc64le.rpm glibc-profile-2.31-150300.31.2.ppc64le.rpm glibc-utils-2.31-150300.31.1.ppc64le.rpm libcrypt1-4.4.15-150300.4.4.3.ppc64le.rpm libxcrypt-devel-4.4.15-150300.4.4.3.ppc64le.rpm libxcrypt-devel-static-4.4.15-150300.4.4.3.ppc64le.rpm nscd-2.31-150300.31.2.ppc64le.rpm glibc-2.31-150300.31.2.aarch64.rpm glibc-devel-2.31-150300.31.2.aarch64.rpm glibc-devel-static-2.31-150300.31.2.aarch64.rpm glibc-extra-2.31-150300.31.2.aarch64.rpm glibc-locale-2.31-150300.31.2.aarch64.rpm glibc-locale-base-2.31-150300.31.2.aarch64.rpm glibc-profile-2.31-150300.31.2.aarch64.rpm glibc-utils-2.31-150300.31.1.aarch64.rpm libcrypt1-4.4.15-150300.4.4.3.aarch64.rpm libxcrypt-devel-4.4.15-150300.4.4.3.aarch64.rpm libxcrypt-devel-static-4.4.15-150300.4.4.3.aarch64.rpm nscd-2.31-150300.31.2.aarch64.rpm openSUSE-SLE-15.3-2022-2470 important SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Allow control characters in environment variable values (bsc#1200170) - Call pam_loginuid when creating user@.service (bsc#1198507) - Fix parsing error in s390 udev rules conversion script (bsc#1198732) - Fix issues with multipath setup (bsc#1137373, bsc#1181658, bsc#1194708, bsc#1195157, bsc#1197570) - Flagsify EscapeStyle and make ESCAPE_BACKSLASH_ONELINE implicit - Revert "basic/env-util: (mostly) follow POSIX for what variable names are allowed" - basic/env-util: (mostly) follow POSIX for what variable names are allowed - basic/env-util: make function shorter - basic/escape: add mode where empty arguments are still shown as "" - basic/escape: always escape newlines in shell_escape() - basic/escape: escape control characters, but not utf-8, in shell quoting - basic/escape: use consistent location for "*" in function declarations - basic/string-util: inline iterator variable declarations - basic/string-util: simplify how str_realloc() is used - basic/string-util: split out helper function - core/device: device_coldplug(): don't set DEVICE_DEAD - core/device: do not downgrade device state if it is already enumerated - core/device: drop unnecessary condition - string-util: explicitly cast character to unsigned - string-util: fix build error on aarch64 - test-env-util: Verify that \r is disallowed in env var values - test-env-util: print function headers libsystemd0-246.16-150300.7.48.1.x86_64.rpm True libsystemd0-32bit-246.16-150300.7.48.1.x86_64.rpm True libudev-devel-246.16-150300.7.48.1.x86_64.rpm True libudev-devel-32bit-246.16-150300.7.48.1.x86_64.rpm True libudev1-246.16-150300.7.48.1.x86_64.rpm True libudev1-32bit-246.16-150300.7.48.1.x86_64.rpm True nss-myhostname-246.16-150300.7.48.1.x86_64.rpm True nss-myhostname-32bit-246.16-150300.7.48.1.x86_64.rpm True nss-mymachines-246.16-150300.7.48.1.x86_64.rpm True nss-mymachines-32bit-246.16-150300.7.48.1.x86_64.rpm True nss-resolve-246.16-150300.7.48.1.x86_64.rpm True nss-systemd-246.16-150300.7.48.1.x86_64.rpm True systemd-246.16-150300.7.48.1.src.rpm True systemd-246.16-150300.7.48.1.x86_64.rpm True systemd-32bit-246.16-150300.7.48.1.x86_64.rpm True systemd-container-246.16-150300.7.48.1.x86_64.rpm True systemd-coredump-246.16-150300.7.48.1.x86_64.rpm True systemd-devel-246.16-150300.7.48.1.x86_64.rpm True systemd-doc-246.16-150300.7.48.1.x86_64.rpm True systemd-journal-remote-246.16-150300.7.48.1.x86_64.rpm True systemd-lang-246.16-150300.7.48.1.noarch.rpm True systemd-logger-246.16-150300.7.48.1.x86_64.rpm True systemd-network-246.16-150300.7.48.1.x86_64.rpm True systemd-sysvinit-246.16-150300.7.48.1.x86_64.rpm True udev-246.16-150300.7.48.1.x86_64.rpm True libsystemd0-246.16-150300.7.48.1.s390x.rpm True libudev-devel-246.16-150300.7.48.1.s390x.rpm True libudev1-246.16-150300.7.48.1.s390x.rpm True nss-myhostname-246.16-150300.7.48.1.s390x.rpm True nss-mymachines-246.16-150300.7.48.1.s390x.rpm True nss-resolve-246.16-150300.7.48.1.s390x.rpm True nss-systemd-246.16-150300.7.48.1.s390x.rpm True systemd-246.16-150300.7.48.1.s390x.rpm True systemd-container-246.16-150300.7.48.1.s390x.rpm True systemd-coredump-246.16-150300.7.48.1.s390x.rpm True systemd-devel-246.16-150300.7.48.1.s390x.rpm True systemd-doc-246.16-150300.7.48.1.s390x.rpm True systemd-journal-remote-246.16-150300.7.48.1.s390x.rpm True systemd-logger-246.16-150300.7.48.1.s390x.rpm True systemd-network-246.16-150300.7.48.1.s390x.rpm True systemd-sysvinit-246.16-150300.7.48.1.s390x.rpm True udev-246.16-150300.7.48.1.s390x.rpm True libsystemd0-246.16-150300.7.48.1.ppc64le.rpm True libudev-devel-246.16-150300.7.48.1.ppc64le.rpm True libudev1-246.16-150300.7.48.1.ppc64le.rpm True nss-myhostname-246.16-150300.7.48.1.ppc64le.rpm True nss-mymachines-246.16-150300.7.48.1.ppc64le.rpm True nss-resolve-246.16-150300.7.48.1.ppc64le.rpm True nss-systemd-246.16-150300.7.48.1.ppc64le.rpm True systemd-246.16-150300.7.48.1.ppc64le.rpm True systemd-container-246.16-150300.7.48.1.ppc64le.rpm True systemd-coredump-246.16-150300.7.48.1.ppc64le.rpm True systemd-devel-246.16-150300.7.48.1.ppc64le.rpm True systemd-doc-246.16-150300.7.48.1.ppc64le.rpm True systemd-journal-remote-246.16-150300.7.48.1.ppc64le.rpm True systemd-logger-246.16-150300.7.48.1.ppc64le.rpm True systemd-network-246.16-150300.7.48.1.ppc64le.rpm True systemd-sysvinit-246.16-150300.7.48.1.ppc64le.rpm True udev-246.16-150300.7.48.1.ppc64le.rpm True libsystemd0-246.16-150300.7.48.1.aarch64.rpm True libudev-devel-246.16-150300.7.48.1.aarch64.rpm True libudev1-246.16-150300.7.48.1.aarch64.rpm True nss-myhostname-246.16-150300.7.48.1.aarch64.rpm True nss-mymachines-246.16-150300.7.48.1.aarch64.rpm True nss-resolve-246.16-150300.7.48.1.aarch64.rpm True nss-systemd-246.16-150300.7.48.1.aarch64.rpm True systemd-246.16-150300.7.48.1.aarch64.rpm True systemd-container-246.16-150300.7.48.1.aarch64.rpm True systemd-coredump-246.16-150300.7.48.1.aarch64.rpm True systemd-devel-246.16-150300.7.48.1.aarch64.rpm True systemd-doc-246.16-150300.7.48.1.aarch64.rpm True systemd-journal-remote-246.16-150300.7.48.1.aarch64.rpm True systemd-logger-246.16-150300.7.48.1.aarch64.rpm True systemd-network-246.16-150300.7.48.1.aarch64.rpm True systemd-sysvinit-246.16-150300.7.48.1.aarch64.rpm True udev-246.16-150300.7.48.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2471 important SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Allow control characters in environment variable values (bsc#1200170) - basic/env-util: Allow newlines in values of environment variables - man: tweak description of auto/noauto (bsc#1191502) - shared/install: avoid overwriting 'r' counter with a partial result (bsc#1148309) - shared/install: fix error codes returned by install_context_apply() - shared/install: ignore failures for auxiliary files - systemctl: suppress enable/disable messages when `-q` is given - test-env-util: Verify that \r is disallowed in env var values - test-env-util: print function headers - udev: 60-persistent-storage-tape.rules: handle duplicate device ID (bsc#1195529) systemd-234-150000.24.111.1.src.rpm True systemd-bash-completion-234-150000.24.111.1.noarch.rpm True openSUSE-SLE-15.3-2022-2553 important SUSE Updates openSUSE-SLE 15.3 This update for squid fixes the following issues: - CVE-2021-46784: Fixed DoS when processing gopher server responses. (bsc#1200907) - CVE-2021-33620: Fixed DoS in HTTP Response processing (bsc#1185923, bsc#1186654) squid-4.17-150000.5.32.1.src.rpm squid-4.17-150000.5.32.1.x86_64.rpm squid-4.17-150000.5.32.1.s390x.rpm squid-4.17-150000.5.32.1.ppc64le.rpm squid-4.17-150000.5.32.1.aarch64.rpm openSUSE-SLE-15.3-2022-2668 moderate SUSE Updates openSUSE-SLE 15.3 This update of ldns fixes the following issue: - ldns is shipped to the unsupported packagehub module as dependency of unbound. (bsc#1200843) ldns-1.7.0-150000.4.8.1.src.rpm ldns-1.7.0-150000.4.8.1.x86_64.rpm ldns-devel-1.7.0-150000.4.8.1.x86_64.rpm libldns2-1.7.0-150000.4.8.1.x86_64.rpm libunbound2-1.6.8-150100.10.8.1.x86_64.rpm perl-DNS-LDNS-1.7.0-150000.4.8.1.x86_64.rpm python3-ldns-1.7.0-150000.4.8.1.x86_64.rpm unbound-1.6.8-150100.10.8.1.src.rpm unbound-1.6.8-150100.10.8.1.x86_64.rpm unbound-anchor-1.6.8-150100.10.8.1.x86_64.rpm unbound-devel-1.6.8-150100.10.8.1.x86_64.rpm unbound-munin-1.6.8-150100.10.8.1.noarch.rpm unbound-python-1.6.8-150100.10.8.1.x86_64.rpm ldns-1.7.0-150000.4.8.1.s390x.rpm ldns-devel-1.7.0-150000.4.8.1.s390x.rpm libldns2-1.7.0-150000.4.8.1.s390x.rpm libunbound2-1.6.8-150100.10.8.1.s390x.rpm perl-DNS-LDNS-1.7.0-150000.4.8.1.s390x.rpm python3-ldns-1.7.0-150000.4.8.1.s390x.rpm unbound-1.6.8-150100.10.8.1.s390x.rpm unbound-anchor-1.6.8-150100.10.8.1.s390x.rpm unbound-devel-1.6.8-150100.10.8.1.s390x.rpm unbound-python-1.6.8-150100.10.8.1.s390x.rpm ldns-1.7.0-150000.4.8.1.ppc64le.rpm ldns-devel-1.7.0-150000.4.8.1.ppc64le.rpm libldns2-1.7.0-150000.4.8.1.ppc64le.rpm libunbound2-1.6.8-150100.10.8.1.ppc64le.rpm perl-DNS-LDNS-1.7.0-150000.4.8.1.ppc64le.rpm python3-ldns-1.7.0-150000.4.8.1.ppc64le.rpm unbound-1.6.8-150100.10.8.1.ppc64le.rpm unbound-anchor-1.6.8-150100.10.8.1.ppc64le.rpm unbound-devel-1.6.8-150100.10.8.1.ppc64le.rpm unbound-python-1.6.8-150100.10.8.1.ppc64le.rpm ldns-1.7.0-150000.4.8.1.aarch64.rpm ldns-devel-1.7.0-150000.4.8.1.aarch64.rpm libldns2-1.7.0-150000.4.8.1.aarch64.rpm libunbound2-1.6.8-150100.10.8.1.aarch64.rpm perl-DNS-LDNS-1.7.0-150000.4.8.1.aarch64.rpm python3-ldns-1.7.0-150000.4.8.1.aarch64.rpm unbound-1.6.8-150100.10.8.1.aarch64.rpm unbound-anchor-1.6.8-150100.10.8.1.aarch64.rpm unbound-devel-1.6.8-150100.10.8.1.aarch64.rpm unbound-python-1.6.8-150100.10.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-2320 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - CVE-2022-2200: Undesired attributes could be set as part of prototype pollution (bmo#1771381) - CVE-2022-2226: An email with a mismatching OpenPGP signature date was accepted as valid (bmo#1775441) - CVE-2022-31744: CSP bypass enabling stylesheet injection (bmo#1757604) - CVE-2022-34468: CSP sandbox header without `allow-scripts` can be bypassed via retargeted javascript: URI (bmo#1768537) - CVE-2022-34470: Use-after-free in nsSHistory (bmo#1765951) - CVE-2022-34472: Unavailable PAC file resulted in OCSP requests being blocked (bmo#1770123) - CVE-2022-34478: Microsoft protocols can be attacked if a user accepts a prompt (bmo#1773717) - CVE-2022-34479: A popup window could be resized in a way to overlay the address bar with web content (bmo#1745595) - CVE-2022-34481: Potential integer overflow in ReplaceElementsAt (bmo#1497246) - CVE-2022-34484: Memory safety bugs fixed in Thunderbird 91.11 and Thunderbird 102 (bmo#1763634, bmo#1772651) MozillaThunderbird-91.11.0-150200.8.76.1.src.rpm MozillaThunderbird-91.11.0-150200.8.76.1.x86_64.rpm MozillaThunderbird-translations-common-91.11.0-150200.8.76.1.x86_64.rpm MozillaThunderbird-translations-other-91.11.0-150200.8.76.1.x86_64.rpm MozillaThunderbird-91.11.0-150200.8.76.1.s390x.rpm MozillaThunderbird-translations-common-91.11.0-150200.8.76.1.s390x.rpm MozillaThunderbird-translations-other-91.11.0-150200.8.76.1.s390x.rpm MozillaThunderbird-91.11.0-150200.8.76.1.ppc64le.rpm MozillaThunderbird-translations-common-91.11.0-150200.8.76.1.ppc64le.rpm MozillaThunderbird-translations-other-91.11.0-150200.8.76.1.ppc64le.rpm MozillaThunderbird-91.11.0-150200.8.76.1.aarch64.rpm MozillaThunderbird-translations-common-91.11.0-150200.8.76.1.aarch64.rpm MozillaThunderbird-translations-other-91.11.0-150200.8.76.1.aarch64.rpm openSUSE-SLE-15.3-2022-2270 low SUSE Updates openSUSE-SLE 15.3 This updates for python-M2Crypto and SUSEConnect fixes the following issues: - This is a re-release, no souce changes. This releases the packages to some extra repositories. (jsc#PM-3081) python-M2Crypto-0.35.2-150000.3.11.1.src.rpm python-M2Crypto-doc-0.35.2-150000.3.11.1.noarch.rpm python2-M2Crypto-0.35.2-150000.3.11.1.x86_64.rpm python3-M2Crypto-0.35.2-150000.3.11.1.x86_64.rpm python2-M2Crypto-0.35.2-150000.3.11.1.s390x.rpm python3-M2Crypto-0.35.2-150000.3.11.1.s390x.rpm python2-M2Crypto-0.35.2-150000.3.11.1.ppc64le.rpm python3-M2Crypto-0.35.2-150000.3.11.1.ppc64le.rpm python2-M2Crypto-0.35.2-150000.3.11.1.aarch64.rpm python3-M2Crypto-0.35.2-150000.3.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-2530 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: Update to version jdk8u332 - April 2022 CPU (icedtea-3.23.0) - CVE-2022-21426: Better XPath expression handling (bsc#1198672) - CVE-2022-21443: Improved Object Identification (bsc#1198675) - CVE-2022-21434: Better invocation handler handling (bsc#1198674) - CVE-2022-21476: Improve Santuario processing (bsc#1198671) - CVE-2022-21496: Improve URL supports (bsc#1198673) And further Security fixes, Import of OpenJDK 8 u332, Backports and Bug fixes. java-1_8_0-openjdk-1.8.0.332-150000.3.67.1.src.rpm java-1_8_0-openjdk-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.332-150000.3.67.1.noarch.rpm java-1_8_0-openjdk-src-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-src-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-1.8.0.332-150000.3.67.1.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.332-150000.3.67.1.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.332-150000.3.67.1.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.332-150000.3.67.1.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.332-150000.3.67.1.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.332-150000.3.67.1.aarch64.rpm openSUSE-SLE-15.3-2022-2327 important SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2022-32206: HTTP compression denial of service (bsc#1200735) - CVE-2022-32208: FTP-KRB bad message verification (bsc#1200737) curl-7.66.0-150200.4.36.1.src.rpm curl-7.66.0-150200.4.36.1.x86_64.rpm libcurl-devel-32bit-7.66.0-150200.4.36.1.x86_64.rpm libcurl-devel-7.66.0-150200.4.36.1.x86_64.rpm libcurl4-32bit-7.66.0-150200.4.36.1.x86_64.rpm libcurl4-7.66.0-150200.4.36.1.x86_64.rpm curl-7.66.0-150200.4.36.1.s390x.rpm libcurl-devel-7.66.0-150200.4.36.1.s390x.rpm libcurl4-7.66.0-150200.4.36.1.s390x.rpm curl-7.66.0-150200.4.36.1.ppc64le.rpm libcurl-devel-7.66.0-150200.4.36.1.ppc64le.rpm libcurl4-7.66.0-150200.4.36.1.ppc64le.rpm curl-7.66.0-150200.4.36.1.aarch64.rpm libcurl-devel-7.66.0-150200.4.36.1.aarch64.rpm libcurl4-7.66.0-150200.4.36.1.aarch64.rpm openSUSE-SLE-15.3-2022-2348 important SUSE Updates openSUSE-SLE 15.3 This update of crash fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) crash-7.2.9-150300.23.10.1.src.rpm crash-7.2.9-150300.23.10.1.x86_64.rpm crash-devel-7.2.9-150300.23.10.1.x86_64.rpm crash-doc-7.2.9-150300.23.10.1.x86_64.rpm crash-eppic-7.2.9-150300.23.10.1.x86_64.rpm crash-gcore-7.2.9-150300.23.10.1.x86_64.rpm crash-kmp-default-7.2.9_k5.3.18_150300.59.76-150300.23.10.1.x86_64.rpm crash-kmp-preempt-7.2.9_k5.3.18_150300.59.76-150300.23.10.1.x86_64.rpm crash-7.2.9-150300.23.10.1.s390x.rpm crash-devel-7.2.9-150300.23.10.1.s390x.rpm crash-doc-7.2.9-150300.23.10.1.s390x.rpm crash-eppic-7.2.9-150300.23.10.1.s390x.rpm crash-kmp-default-7.2.9_k5.3.18_150300.59.76-150300.23.10.1.s390x.rpm crash-7.2.9-150300.23.10.1.ppc64le.rpm crash-devel-7.2.9-150300.23.10.1.ppc64le.rpm crash-doc-7.2.9-150300.23.10.1.ppc64le.rpm crash-eppic-7.2.9-150300.23.10.1.ppc64le.rpm crash-kmp-default-7.2.9_k5.3.18_150300.59.76-150300.23.10.1.ppc64le.rpm crash-7.2.9-150300.23.10.1.aarch64.rpm crash-devel-7.2.9-150300.23.10.1.aarch64.rpm crash-doc-7.2.9-150300.23.10.1.aarch64.rpm crash-eppic-7.2.9-150300.23.10.1.aarch64.rpm crash-kmp-64kb-7.2.9_k5.3.18_150300.59.76-150300.23.10.1.aarch64.rpm crash-kmp-default-7.2.9_k5.3.18_150300.59.76-150300.23.10.1.aarch64.rpm crash-kmp-preempt-7.2.9_k5.3.18_150300.59.76-150300.23.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-2328 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following issues: - CVE-2022-2097: Fixed partial missing encryption in AES OCB mode (bsc#1201099). libopenssl-1_1-devel-1.1.1d-150200.11.51.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-150200.11.51.1.x86_64.rpm libopenssl1_1-1.1.1d-150200.11.51.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-150200.11.51.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-150200.11.51.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-150200.11.51.1.x86_64.rpm openssl-1_1-1.1.1d-150200.11.51.1.src.rpm openssl-1_1-1.1.1d-150200.11.51.1.x86_64.rpm openssl-1_1-doc-1.1.1d-150200.11.51.1.noarch.rpm libopenssl-1_1-devel-1.1.1d-150200.11.51.1.s390x.rpm libopenssl1_1-1.1.1d-150200.11.51.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-150200.11.51.1.s390x.rpm openssl-1_1-1.1.1d-150200.11.51.1.s390x.rpm libopenssl-1_1-devel-1.1.1d-150200.11.51.1.ppc64le.rpm libopenssl1_1-1.1.1d-150200.11.51.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-150200.11.51.1.ppc64le.rpm openssl-1_1-1.1.1d-150200.11.51.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-150200.11.51.1.aarch64.rpm libopenssl1_1-1.1.1d-150200.11.51.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-150200.11.51.1.aarch64.rpm openssl-1_1-1.1.1d-150200.11.51.1.aarch64.rpm openSUSE-SLE-15.3-2022-2641 moderate SUSE Updates openSUSE-SLE 15.3 This update for xscreensaver fixes the following issues: - CVE-2021-34557: Fixed potential crash and unlock while disconnecting video output with more than 10 monitors (bsc#1186918) xscreensaver-5.44-150000.5.6.1.src.rpm xscreensaver-5.44-150000.5.6.1.x86_64.rpm xscreensaver-data-5.44-150000.5.6.1.x86_64.rpm xscreensaver-data-extra-5.44-150000.5.6.1.x86_64.rpm xscreensaver-lang-5.44-150000.5.6.1.noarch.rpm xscreensaver-5.44-150000.5.6.1.s390x.rpm xscreensaver-data-5.44-150000.5.6.1.s390x.rpm xscreensaver-data-extra-5.44-150000.5.6.1.s390x.rpm xscreensaver-5.44-150000.5.6.1.ppc64le.rpm xscreensaver-data-5.44-150000.5.6.1.ppc64le.rpm xscreensaver-data-extra-5.44-150000.5.6.1.ppc64le.rpm xscreensaver-5.44-150000.5.6.1.aarch64.rpm xscreensaver-data-5.44-150000.5.6.1.aarch64.rpm xscreensaver-data-extra-5.44-150000.5.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2628 important SUSE Updates openSUSE-SLE 15.3 This update for apparmor fixes the following issues: - Add new rule to fix reported "DENIED" audit records with Apparmor profile "usr.sbin.smbd" (bsc#1196850) - Add new rule to allow reading of openssl.cnf (bsc#1195463) apache2-mod_apparmor-2.13.6-150300.3.15.1.x86_64.rpm apparmor-2.13.6-150300.3.15.1.src.rpm apparmor-abstractions-2.13.6-150300.3.15.1.noarch.rpm apparmor-docs-2.13.6-150300.3.15.1.noarch.rpm apparmor-parser-2.13.6-150300.3.15.1.x86_64.rpm apparmor-parser-lang-2.13.6-150300.3.15.1.noarch.rpm apparmor-profiles-2.13.6-150300.3.15.1.noarch.rpm apparmor-utils-2.13.6-150300.3.15.1.noarch.rpm apparmor-utils-lang-2.13.6-150300.3.15.1.noarch.rpm libapparmor-2.13.6-150300.3.15.1.src.rpm libapparmor-devel-2.13.6-150300.3.15.1.x86_64.rpm libapparmor1-2.13.6-150300.3.15.1.x86_64.rpm libapparmor1-32bit-2.13.6-150300.3.15.1.x86_64.rpm pam_apparmor-2.13.6-150300.3.15.1.x86_64.rpm pam_apparmor-32bit-2.13.6-150300.3.15.1.x86_64.rpm perl-apparmor-2.13.6-150300.3.15.1.x86_64.rpm python3-apparmor-2.13.6-150300.3.15.1.x86_64.rpm ruby-apparmor-2.13.6-150300.3.15.1.x86_64.rpm apache2-mod_apparmor-2.13.6-150300.3.15.1.s390x.rpm apparmor-parser-2.13.6-150300.3.15.1.s390x.rpm libapparmor-devel-2.13.6-150300.3.15.1.s390x.rpm libapparmor1-2.13.6-150300.3.15.1.s390x.rpm pam_apparmor-2.13.6-150300.3.15.1.s390x.rpm perl-apparmor-2.13.6-150300.3.15.1.s390x.rpm python3-apparmor-2.13.6-150300.3.15.1.s390x.rpm ruby-apparmor-2.13.6-150300.3.15.1.s390x.rpm apache2-mod_apparmor-2.13.6-150300.3.15.1.ppc64le.rpm apparmor-parser-2.13.6-150300.3.15.1.ppc64le.rpm libapparmor-devel-2.13.6-150300.3.15.1.ppc64le.rpm libapparmor1-2.13.6-150300.3.15.1.ppc64le.rpm pam_apparmor-2.13.6-150300.3.15.1.ppc64le.rpm perl-apparmor-2.13.6-150300.3.15.1.ppc64le.rpm python3-apparmor-2.13.6-150300.3.15.1.ppc64le.rpm ruby-apparmor-2.13.6-150300.3.15.1.ppc64le.rpm apache2-mod_apparmor-2.13.6-150300.3.15.1.aarch64.rpm apparmor-parser-2.13.6-150300.3.15.1.aarch64.rpm libapparmor-devel-2.13.6-150300.3.15.1.aarch64.rpm libapparmor1-2.13.6-150300.3.15.1.aarch64.rpm pam_apparmor-2.13.6-150300.3.15.1.aarch64.rpm perl-apparmor-2.13.6-150300.3.15.1.aarch64.rpm python3-apparmor-2.13.6-150300.3.15.1.aarch64.rpm ruby-apparmor-2.13.6-150300.3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-2801 moderate SUSE Updates openSUSE-SLE 15.3 This update for cifs-utils fixes the following issues: - CVE-2022-29869: Fixed verbose messages on option parsing causing information leak (bsc#1198976). cifs-utils-6.9-150100.5.18.1.src.rpm cifs-utils-6.9-150100.5.18.1.x86_64.rpm cifs-utils-devel-6.9-150100.5.18.1.x86_64.rpm pam_cifscreds-6.9-150100.5.18.1.x86_64.rpm cifs-utils-6.9-150100.5.18.1.s390x.rpm cifs-utils-devel-6.9-150100.5.18.1.s390x.rpm pam_cifscreds-6.9-150100.5.18.1.s390x.rpm cifs-utils-6.9-150100.5.18.1.ppc64le.rpm cifs-utils-devel-6.9-150100.5.18.1.ppc64le.rpm pam_cifscreds-6.9-150100.5.18.1.ppc64le.rpm cifs-utils-6.9-150100.5.18.1.aarch64.rpm cifs-utils-devel-6.9-150100.5.18.1.aarch64.rpm pam_cifscreds-6.9-150100.5.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-2326 important SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Predictable log file in /tmp in mariadb.in (bsc#1146691). - Allow aws-vpc-move-ip to specify an interface label to distinguish the IP address (bsc#1199766) - Implement options to disable DAD and to allow sending NA in the background (bsc#1196164) ldirectord-4.8.0+git30.d0077df0-150300.8.28.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-150300.8.28.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.28.1.src.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.28.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.28.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.28.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.28.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.28.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.28.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.28.1.aarch64.rpm openSUSE-SLE-15.3-2022-2422 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. NOTE: This update has been retracted, as it has caused regressions on multiple machines types. The following security bugs were fixed: - CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information (bsc#1199657). - CVE-2022-34918: Fixed a buffer overflow with nft_set_elem_init() that could be used by a local attacker to escalate privileges (bnc#1201171). - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050). - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages (bsc#1199487). - CVE-2022-20132: Fixed out of bounds read due to improper input validation in lg_probe and related functions of hid-lg.c (bsc#1200619). - CVE-2022-1012: Fixed information leak caused by small table perturb size in the TCP source port generation algorithm (bsc#1199482). - CVE-2022-33981: Fixed use-after-free in floppy driver (bsc#1200692) - CVE-2022-20141: Fixed a possible use after free due to improper locking in ip_check_mc_rcu() (bsc#1200604). - CVE-2021-4157: Fixed an out of memory bounds write flaw in the NFS subsystem, related to the replication of files with NFS. A user could potentially crash the system or escalate privileges on the system (bsc#1194013). - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). The following non-security bugs were fixed: - ALSA: hda/conexant: Fix missing beep setup (git-fixes). - ALSA: hda/realtek - Add HW8326 support (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD70PNT (git-fixes). - ALSA: hda/realtek - ALC897 headset MIC no sound (git-fixes). - ALSA: hda/via: Fix missing beep setup (git-fixes). - arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399 (git-fixes) - arm64: ftrace: fix branch range checks (git-fixes) - ASoC: cs35l36: Update digital volume TLV (git-fixes). - ASoC: cs42l52: Correct TLV for Bypass Volume (git-fixes). - ASoC: cs42l52: Fix TLV scales for mixer controls (git-fixes). - ASoC: cs42l56: Correct typo in minimum level for SX volume controls (git-fixes). - ASoC: cs53l30: Correct number of volume levels on SX controls (git-fixes). - ASoC: es8328: Fix event generation for deemphasis control (git-fixes). - ASoC: nau8822: Add operation for internal PLL off and on (git-fixes). - ASoC: wm8962: Fix suspend while playing music (git-fixes). - ASoC: wm_adsp: Fix event generation for wm_adsp_fw_put() (git-fixes). - ata: libata: add qc->flags in ata_qc_complete_template tracepoint (git-fixes). - ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo() (git-fixes). - bcache: avoid journal no-space deadlock by reserving 1 journal bucket (git-fixes). - bcache: avoid unnecessary soft lockup in kworker update_writeback_rate() (bsc#1197362). - bcache: fixup multiple threads crash (git-fixes). - bcache: improve multithreaded bch_btree_check() (git-fixes). - bcache: improve multithreaded bch_sectors_dirty_init() (git-fixes). - bcache: memset on stack variables in bch_btree_check() and bch_sectors_dirty_init() (git-fixes). - bcache: remove incremental dirty sector counting for bch_sectors_dirty_init() (git-fixes). - bio: fix page leak bio_add_hw_page failure (git-fixes). - blk-cgroup: fix a hd_struct leak in blkcg_fill_root_iostats (git-fixes). - blk-iolatency: Fix inflight count imbalances and IO hangs on offline (bsc#1200825). - blk-mq: clear active_queues before clearing BLK_MQ_F_TAG_QUEUE_SHARED (bsc#1200263). - blk-mq: do not update io_ticks with passthrough requests (bsc#1200816). - blk-mq: drop workarounds for cpu hotplug queue management (bsc#1185762) - blk-mq: update hctx->dispatch_busy in case of real scheduler (git-fixes). - block: advance iov_iter on bio_add_hw_page failure (git-fixes). - block: do not merge across cgroup boundaries if blkcg is enabled (bsc#1198020). - block: Fix handling of offline queues in blk_mq_alloc_request_hctx() (bsc#1185762). - block: Fix kABI in blk-merge.c (bsc#1198020). - block/keyslot-manager: prevent crash when num_slots=1 (git-fixes). - bus: fsl-mc-bus: fix KASAN use-after-free in fsl_mc_bus_remove() (git-fixes). - caif_virtio: fix race between virtio_device_ready() and ndo_open() (git-fixes). - ceph: add some lockdep assertions around snaprealm handling (bsc#1201147). - ceph: clean up locking annotation for ceph_get_snap_realm and __lookup_snap_realm (bsc#1201149). - certs/blacklist_hashes.c: fix const confusion in certs blacklist (git-fixes). - cifs: add WARN_ON for when chan_count goes below minimum (bsc#1200217). - cifs: adjust DebugData to use chans_need_reconnect for conn status (bsc#1200217). - cifs: alloc_path_with_tree_prefix: do not append sep. if the path is empty (bsc#1200217). - cifs: avoid parallel session setups on same channel (bsc#1200217). - cifs: avoid race during socket reconnect between send and recv (bsc#1200217). - cifs: call cifs_reconnect when a connection is marked (bsc#1200217). - cifs: call helper functions for marking channels for reconnect (bsc#1200217). - cifs: change smb2_query_info_compound to use a cached fid, if available (bsc#1200217). - cifs: check for smb1 in open_cached_dir() (bsc#1200217). - cifs: check reconnects for channels of active tcons too (bsc#1200217). - cifs: Check the IOCB_DIRECT flag, not O_DIRECT (bsc#1200217). - cifs: cifs_ses_mark_for_reconnect should also update reconnect bits (bsc#1200217). - cifs: clean up an inconsistent indenting (bsc#1200217). - cifs: destage any unwritten data to the server before calling copychunk_write (bsc#1200217). - cifs: do not build smb1ops if legacy support is disabled (bsc#1200217). - cifs: do not call cifs_dfs_query_info_nonascii_quirk() if nodfs was set (bsc#1200217). - cifs: do not use tcpStatus after negotiate completes (bsc#1200217). - cifs: do not use uninitialized data in the owner/group sid (bsc#1200217). - cifs: fix confusing unneeded warning message on smb2.1 and earlier (bsc#1200217). - cifs: fix double free race when mount fails in cifs_get_root() (bsc#1200217). - cifs: fix FILE_BOTH_DIRECTORY_INFO definition (bsc#1200217). - cifs: fix handlecache and multiuser (bsc#1200217). - cifs: fix hang on cifs_get_next_mid() (bsc#1200217). - cifs: fix incorrect use of list iterator after the loop (bsc#1200217). - cifs: fix minor compile warning (bsc#1200217). - cifs: fix missed refcounting of ipc tcon (bsc#1200217). - cifs: fix ntlmssp auth when there is no key exchange (bsc#1200217). - cifs: fix NULL ptr dereference in refresh_mounts() (bsc#1200217). - cifs: fix potential deadlock in direct reclaim (bsc#1200217). - cifs: fix potential double free during failed mount (bsc#1200217). - cifs: fix potential race with cifsd thread (bsc#1200217). - cifs: fix set of group SID via NTSD xattrs (bsc#1200217). - cifs: fix signed integer overflow when fl_end is OFFSET_MAX (bsc#1200217). - cifs: Fix smb311_update_preauth_hash() kernel-doc comment (bsc#1200217). - cifs: fix the cifs_reconnect path for DFS (bsc#1200217). - cifs: fix the connection state transitions with multichannel (bsc#1200217). - cifs: fix uninitialized pointer in error case in dfs_cache_get_tgt_share (bsc#1200217). - cifs: fix workstation_name for multiuser mounts (bsc#1200217). - cifs: force new session setup and tcon for dfs (bsc#1200217). - cifs: free ntlmsspblob allocated in negotiate (bsc#1200217). - cifs: ignore resource_id while getting fscache super cookie (bsc#1200217). - cifs: maintain a state machine for tcp/smb/tcon sessions (bsc#1200217). - cifs: make status checks in version independent callers (bsc#1200217). - cifs: mark sessions for reconnection in helper function (bsc#1200217). - cifs: modefromsids must add an ACE for authenticated users (bsc#1200217). - cifs: move definition of cifs_fattr earlier in cifsglob.h (bsc#1200217). - cifs: move superblock magic defitions to magic.h (bsc#1200217). - cifs: potential buffer overflow in handling symlinks (bsc#1200217). - cifs: print TIDs as hex (bsc#1200217). - cifs: protect all accesses to chan_* with chan_lock (bsc#1200217). - cifs: quirk for STATUS_OBJECT_NAME_INVALID returned for non-ASCII dfs refs (bsc#1200217). - cifs: reconnect only the connection and not smb session where possible (bsc#1200217). - cifs: release cached dentries only if mount is complete (bsc#1200217). - cifs: remove check of list iterator against head past the loop body (bsc#1200217). - cifs: remove redundant assignment to pointer p (bsc#1200217). - cifs: remove repeated debug message on cifs_put_smb_ses() (bsc#1200217). - cifs: remove repeated state change in dfs tree connect (bsc#1200217). - cifs: remove unused variable ses_selected (bsc#1200217). - cifs: return ENOENT for DFS lookup_cache_entry() (bsc#1200217). - cifs: return the more nuanced writeback error on close() (bsc#1200217). - cifs: sanitize multiple delimiters in prepath (bsc#1200217). - cifs: serialize all mount attempts (bsc#1200217). - cifs: set the CREATE_NOT_FILE when opening the directory in use_cached_dir() (bsc#1200217). - cifs: skip trailing separators of prefix paths (bsc#1200217). - cifs: smbd: fix typo in comment (bsc#1200217). - cifs: Split the smb3_add_credits tracepoint (bsc#1200217). - cifs: take cifs_tcp_ses_lock for status checks (bsc#1200217). - cifs: track individual channel status using chans_need_reconnect (bsc#1200217). - cifs: unlock chan_lock before calling cifs_put_tcp_session (bsc#1200217). - cifs: update internal module number (bsc#1193629). - cifs: update internal module number (bsc#1200217). - cifs: update tcpStatus during negotiate and sess setup (bsc#1200217). - cifs: use a different reconnect helper for non-cifsd threads (bsc#1200217). - cifs: use correct lock type in cifs_reconnect() (bsc#1200217). - cifs: Use kzalloc instead of kmalloc/memset (bsc#1200217). - cifs: use new enum for ses_status (bsc#1200217). - cifs: use the chans_need_reconnect bitmap for reconnect status (bsc#1200217). - cifs: verify that tcon is valid before dereference in cifs_kill_sb (bsc#1200217). - cifs: version operations for smb20 unneeded when legacy support disabled (bsc#1200217). - cifs: wait for tcon resource_id before getting fscache super (bsc#1200217). - cifs: we do not need a spinlock around the tree access during umount (bsc#1200217). - cifs: when extending a file with falloc we should make files not-sparse (bsc#1200217). - drivers: cpufreq: Add missing of_node_put() in qoriq-cpufreq.c (git-fixes). - drm/i915/reset: Fix error_state_read ptr + offset use (git-fixes). - drm/i915: Update TGL and RKL DMC firmware versions (bsc#1198924). - drm/msm: Fix double pm_runtime_disable() call (git-fixes). - drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf (git-fixes). - drm/sun4i: Fix crash during suspend after component bind failure (git-fixes). - exec: Force single empty string when argv is empty (bsc#1200571). - ext4: add check to prevent attempting to resize an fs with sparse_super2 (bsc#1197754). - ext4: fix bug_on ext4_mb_use_inode_pa (bsc#1200810). - ext4: fix bug_on in __es_tree_search (bsc#1200809). - ext4: fix race condition between ext4_write and ext4_convert_inline_data (bsc#1200807). - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole (bsc#1200806). - ext4: make variable "count" signed (bsc#1200820). - Fix a warning about a malformed kernel doc comment in cifs (bsc#1200217). - fuse: annotate lock in fuse_reverse_inval_entry() (bsc#1201143). - gpio: winbond: Fix error code in winbond_gpio_get() (git-fixes). - gtp: use icmp_ndo_send helper (git-fixes). - hwmon: (ibmaem) do not call platform_device_del() if platform_device_add() fails (git-fixes). - i2c: designware: Use standard optional ref clock implementation (git-fixes). - ibmvnic: Properly dispose of all skbs during a failover (bsc#1200925). - iio:accel:bma180: rearrange iio trigger get and register (git-fixes). - iio: accel: mma8452: ignore the return value of reset operation (git-fixes). - iio: adc: axp288: Override TS pin bias current for some models (git-fixes). - iio: adc: vf610: fix conversion mode sysfs node name (git-fixes). - iio:chemical:ccs811: rearrange iio trigger get and register (git-fixes). - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up() (git-fixes). - iio: trigger: sysfs: fix use-after-free on remove (git-fixes). - init: Initialize noop_backing_dev_info early (bsc#1200822). - inotify: show inotify mask flags in proc fdinfo (bsc#1200600). - iomap: iomap_write_failed fix (bsc#1200829). - ipvs: add sysctl_run_estimation to support disable estimation (bsc#1195504). - jfs: fix divide error in dbNextAG (bsc#1200828). - kABI fix of sysctl_run_estimation (git-fixes). - kabi: nvme workaround header include (bsc#1201193). - kabi/severities: ignore KABI for NVMe target (bsc#1192761) - linux/dim: Fix divide by 0 in RDMA DIM (git-fixes). - md: fix update super 1.0 on rdev size change (git-fixes). - move devm_allocate to end of structure for kABI (git-fixes). - mtd: rawnand: gpmi: Fix setting busy timeout setting (git-fixes). - net: ax25: Fix deadlock caused by skb_recv_datagram in ax25_recvmsg (git-fixes). - net: ethernet: stmmac: Disable hardware multicast filter (git-fixes). - net: ieee802154: ca8210: Stop leaking skb's (git-fixes). - net: lantiq: Add locking for TX DMA channel (git-fixes). - net: rose: fix UAF bugs caused by timer handler (git-fixes). - net: stmmac: reset Tx desc base address before restarting Tx (git-fixes). - net: usb: ax88179_178a: Fix packet receiving (git-fixes). - nfc: nfcmrvl: Fix irq_of_parse_and_map() return value (git-fixes). - nfc: nfcmrvl: Fix memory leak in nfcmrvl_play_deferred (git-fixes). - NFC: nxp-nci: Do not issue a zero length i2c_master_read() (git-fixes). - NFS: Do not report EINTR/ERESTARTSYS as mapping errors (git-fixes). - NFS: Do not report errors from nfs_pageio_complete() more than once (git-fixes). - NFS: Do not report flush errors in nfs_write_end() (git-fixes). - NFS: Further fixes to the writeback error handling (git-fixes). - NFS: Memory allocation failures are not server fatal errors (git-fixes). - NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout (git-fixes). - nvdimm: Fix firmware activation deadlock scenarios (git-fixes). - nvdimm/region: Fix default alignment for small regions (git-fixes). - nvme: add CNTRLTYPE definitions for 'identify controller' (bsc#1192761). - nvme: Add connect option 'discovery' (bsc#1192761). - nvme: add new discovery log page entry definitions (bsc#1192761). - nvme: display correct subsystem NQN (bsc#1192761). - nvme: expose subsystem type in sysfs attribute 'subsystype' (bsc#1192761). - nvme: kabi fix nvme subsystype change (bsc#1192761) - nvmet: add nvmet_is_disc_subsys() helper (bsc#1192761). - nvmet: add nvmet_req_subsys() helper (bsc#1192761). - nvme-tcp: fix H2CData PDU send accounting (again) (git-fixes). - nvmet: do not check iosqes,iocqes for discovery controllers (bsc#1192761). - nvmet: fix freeing unallocated p2pmem (git-fixes). - nvmet: make discovery NQN configurable (bsc#1192761). - nvmet-rdma: Fix NULL deref when SEND is completed with error (git-fixes). - nvmet-rdma: Fix NULL deref when setting pi_enable and traddr INADDR_ANY (git-fixes). - nvmet: register discovery subsystem as 'current' (bsc#1192761). - nvmet: set 'CNTRLTYPE' in the identify controller data (bsc#1192761). - nvmet: switch check for subsystem type (bsc#1192761). - phy: aquantia: Fix AN when higher speeds than 1G are not advertised (git-fixes). - pNFS: Do not keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE (git-fixes). - powerpc/idle: Fix return value of __setup() handler (bsc#1065729). - powerpc/perf: Fix the threshold compare group constraint for power9 (bsc#1065729). - powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address (bsc#1200343 ltc#198477). - random: Add and use pr_fmt() (bsc#1184924). - random: remove unnecessary unlikely() (bsc#1184924). - regmap-irq: Fix a bug in regmap_irq_enable() for type_in_mask chips (git-fixes). - Revert "block: Fix a lockdep complaint triggered by request queue flushing" (git-fixes). - scsi: core: Show SCMD_LAST in text form (git-fixes). - scsi: ibmvfc: Allocate/free queue resource only during probe/remove (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: ibmvfc: Store vhost pointer during subcrq allocation (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: lpfc: Add more logging of cmd and cqe information for aborted NVMe cmds (bsc#1201193). - scsi: lpfc: Address NULL pointer dereference after starget_to_rport() (bsc#1201193). - scsi: lpfc: Add support for ATTO Fibre Channel devices (bsc#1201193). - scsi: lpfc: Add support for VMID tagging of NVMe I/Os (bsc#1201193). - scsi: lpfc: Allow reduced polling rate for nvme_admin_async_event cmd completion (bsc#1201193). - scsi: lpfc: Commonize VMID code location (bsc#1201193). - scsi: lpfc: Correct BDE type for XMIT_SEQ64_WQE in lpfc_ct_reject_event() (bsc#1201193). - scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology (bsc#1201193). - scsi: lpfc: Resolve NULL ptr dereference after an ELS LOGO is aborted (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following abort path refactoring (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following SLI path refactoring (bsc#1201193). - scsi: lpfc: Rework lpfc_vmid_get_appid() to be protocol independent (bsc#1201193). - scsi: lpfc: Update lpfc version to 14.2.0.4 (bsc#1201193). - scsi: nvme: Added a new sysfs attribute appid_store (bsc#1201193). - scsi: nvme-fc: Add new routine nvme_fc_io_getuuid() (bsc#1201193). - scsi: qla2xxx: Add a new v2 dport diagnostic feature (bsc#1201160). - scsi: qla2xxx: Add debug prints in the device remove path (bsc#1201160). - scsi: qla2xxx: edif: Add bsg interface to read doorbell events (bsc#1201160). - scsi: qla2xxx: edif: Add retry for ELS passthrough (bsc#1201160). - scsi: qla2xxx: edif: bsg refactor (bsc#1201160). - scsi: qla2xxx: edif: Fix I/O timeout due to over-subscription (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n discovery issue with secure target (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n login retry for secure device (bsc#1201160). - scsi: qla2xxx: edif: Fix no login after app start (bsc#1201160). - scsi: qla2xxx: edif: Fix no logout on delete for N2N (bsc#1201160). - scsi: qla2xxx: edif: Fix potential stuck session in sa update (bsc#1201160). - scsi: qla2xxx: edif: Fix session thrash (bsc#1201160). - scsi: qla2xxx: edif: Fix slow session teardown (bsc#1201160). - scsi: qla2xxx: edif: Reduce disruption due to multiple app start (bsc#1201160). - scsi: qla2xxx: edif: Reduce Initiator-Initiator thrashing (bsc#1201160). - scsi: qla2xxx: edif: Reduce N2N thrashing at app_start time (bsc#1201160). - scsi: qla2xxx: edif: Remove old doorbell interface (bsc#1201160). - scsi: qla2xxx: edif: Send LOGO for unexpected IKE message (bsc#1201160). - scsi: qla2xxx: edif: Synchronize NPIV deletion with authentication application (bsc#1201160). - scsi: qla2xxx: edif: Tear down session if keys have been removed (bsc#1201160). - scsi: qla2xxx: edif: Wait for app to ack on sess down (bsc#1201160). - scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (bsc#1201160). - scsi: qla2xxx: Fix erroneous mailbox timeout after PCI error injection (bsc#1201160). - scsi: qla2xxx: Fix excessive I/O error messages by default (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets during port perturbation tests (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets on long port disable with I/Os (bsc#1201160). - scsi: qla2xxx: Fix losing target when it reappears during delete (bsc#1201160). - scsi: qla2xxx: Remove setting of 'req' and 'rsp' parameters (bsc#1201160). - scsi: qla2xxx: Remove unused 'ql_dm_tgt_ex_pct' parameter (bsc#1201160). - scsi: qla2xxx: Turn off multi-queue for 8G adapters (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.500-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.600-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.700-k (bsc#1201160). - scsi: qla2xxx: Wind down adapter after PCIe error (bsc#1201160). - scsi: sd: sd_zbc: Do not pass GFP_NOIO to kvcalloc (git-fixes). - scsi: sd: sd_zbc: Fix handling of host-aware ZBC disks (git-fixes). - scsi: sd: sd_zbc: Fix ZBC disk initialization (git-fixes). - scsi: sd: Signal drive managed SMR disks (git-fixes). - scsi: sd_zbc: Do not limit max_zone_append sectors to (git-fixes). - scsi: sd_zbc: Ensure buffer size is aligned to SECTOR_SIZE (git-fixes). - scsi: sd_zbc: Improve zone revalidation (git-fixes). - scsi: sd_zbc: Remove unused inline functions (git-fixes). - scsi: sd_zbc: Support disks with more than 2**32 logical (git-fixes). - scsi: smartpqi: create module parameters for LUN reset (bsc#1179195 bsc#1200622). - smb3: add mount parm nosparse (bsc#1200217). - smb3: add trace point for lease not found issue (bsc#1200217). - smb3: add trace point for oplock not found (bsc#1200217). - smb3: check for null tcon (bsc#1200217). - smb3: cleanup and clarify status of tree connections (bsc#1200217). - smb3: do not set rc when used and unneeded in query_info_compound (bsc#1200217). - SMB3: EBADF/EIO errors in rename/open caused by race condition in smb2_compound_op (bsc#1200217). - smb3: fix incorrect session setup check for multiuser mounts (bsc#1200217). - smb3: fix ksmbd bigendian bug in oplock break, and move its struct to smbfs_common (bsc#1200217). - smb3: fix snapshot mount option (bsc#1200217). - smb3 improve error message when mount options conflict with posix (bsc#1200217). - smb3: move defines for ioctl protocol header and SMB2 sizes to smbfs_common (bsc#1200217). - smb3: move defines for query info and query fsinfo to smbfs_common (bsc#1200217). - smb3: move more common protocol header definitions to smbfs_common (bsc#1200217). - smb3: send NTLMSSP version information (bsc#1200217). - soc: bcm: brcmstb: pm: pm-arm: Fix refcount leak in brcmstb_pm_probe (git-fixes). - spi: Fix use-after-free with devm_spi_alloc_* (git-fixes). - SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer() (git-fixes). - sunvnet: use icmp_ndo_send helper (git-fixes). - tty: goldfish: Fix free_irq() on remove (git-fixes). - usb: chipidea: udc: check request status before setting device address (git-fixes). - usb: dwc2: Fix memory leak in dwc2_hcd_init (git-fixes). - usb: gadget: lpc32xx_udc: Fix refcount leak in lpc32xx_udc_probe (git-fixes). - usb: gadget: u_ether: fix regression in setting fixed MAC address (git-fixes). - usbnet: fix memory allocation in helpers (git-fixes). - USB: serial: io_ti: add Agilent E5805A support (git-fixes). - USB: serial: option: add Quectel EM05-G modem (git-fixes). - USB: serial: option: add Quectel RM500K module support (git-fixes). - USB: serial: option: add support for Cinterion MV31 with new baseline (git-fixes). - USB: serial: option: add Telit LE910Cx 0x1250 composition (git-fixes). - usb: xhci: Workaround for S3 issue on AMD SNPS 3.0 xHC (git-fixes). - veth: fix races around rq->rx_notify_masked (git-fixes). - virtio-mmio: fix missing put_device() when vm_cmdline_parent registration failed (git-fixes). - virtio-net: fix race between ndo_open() and virtio_device_ready() (git-fixes). - virtio_net: fix xdp_rxq_info bug after suspend/resume (git-fixes). - virtio-pci: Remove wrong address verification in vp_del_vqs() (git-fixes). - vmxnet3: fix minimum vectors alloc issue (bsc#1199489). - writeback: Avoid skipping inode writeback (bsc#1200813). - writeback: Fix inode->i_io_list not be protected by inode->i_lock error (bsc#1200821). - xhci: Add reset resume quirk for AMD xhci controller (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.81.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.81.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.81.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.81.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.81.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.81.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.81.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.81.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.81.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.81.1.x86_64.rpm True kernel-default-5.3.18-150300.59.81.1.nosrc.rpm True kernel-default-5.3.18-150300.59.81.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.81.1.150300.18.47.2.src.rpm True kernel-default-base-5.3.18-150300.59.81.1.150300.18.47.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.81.1.150300.18.47.2.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.81.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.81.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.81.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.81.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.81.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.81.1.noarch.rpm True kernel-docs-5.3.18-150300.59.81.1.noarch.rpm True kernel-docs-5.3.18-150300.59.81.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.81.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.81.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.81.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.81.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.81.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.81.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.81.1.src.rpm True kernel-obs-build-5.3.18-150300.59.81.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.81.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.81.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.81.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.81.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.81.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.81.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.81.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.81.1.x86_64.rpm True kernel-source-5.3.18-150300.59.81.1.noarch.rpm True kernel-source-5.3.18-150300.59.81.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.81.1.noarch.rpm True kernel-syms-5.3.18-150300.59.81.1.src.rpm True kernel-syms-5.3.18-150300.59.81.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.81.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.81.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.81.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.81.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.81.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.81.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.81.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.81.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.81.1.s390x.rpm True kernel-default-5.3.18-150300.59.81.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.81.1.150300.18.47.2.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.81.1.150300.18.47.2.s390x.rpm True kernel-default-devel-5.3.18-150300.59.81.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.81.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.81.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.81.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.81.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.81.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.81.1.s390x.rpm True kernel-syms-5.3.18-150300.59.81.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.81.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.81.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.81.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.81.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.81.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.81.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.81.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.81.1.150300.18.47.2.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.81.1.150300.18.47.2.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.81.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.81.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.81.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.81.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.81.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.81.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.81.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.81.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.81.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.81.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.81.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.81.1.src.rpm True dtb-al-5.3.18-150300.59.81.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.81.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.81.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.81.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.81.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.81.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.81.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.81.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.81.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.81.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.81.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.81.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.81.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.81.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.81.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.81.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.81.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.81.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.81.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.81.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.81.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.81.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.81.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.81.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.81.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.81.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.81.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.81.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.81.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.81.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.81.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.81.1.aarch64.rpm True kernel-default-5.3.18-150300.59.81.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.81.1.150300.18.47.2.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.81.1.150300.18.47.2.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.81.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.81.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.81.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.81.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.81.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.81.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.81.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.81.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.81.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.81.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.81.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.81.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.81.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.81.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.81.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.81.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.81.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.81.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.81.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.81.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.81.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.81.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2647 low SUSE Updates openSUSE-SLE 15.3 This update for tiff fixes the following issues: - CVE-2022-2056: Fixed a division by zero denial of service (bsc#1201176). - CVE-2022-2057: Fixed a division by zero denial of service (bsc#1201175). - CVE-2022-2058: Fixed a division by zero denial of service (bsc#1201174). libtiff-devel-32bit-4.0.9-150000.45.11.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.11.1.x86_64.rpm libtiff5-32bit-4.0.9-150000.45.11.1.x86_64.rpm libtiff5-4.0.9-150000.45.11.1.x86_64.rpm tiff-4.0.9-150000.45.11.1.src.rpm tiff-4.0.9-150000.45.11.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.11.1.s390x.rpm libtiff5-4.0.9-150000.45.11.1.s390x.rpm tiff-4.0.9-150000.45.11.1.s390x.rpm libtiff-devel-4.0.9-150000.45.11.1.ppc64le.rpm libtiff5-4.0.9-150000.45.11.1.ppc64le.rpm tiff-4.0.9-150000.45.11.1.ppc64le.rpm libtiff-devel-4.0.9-150000.45.11.1.aarch64.rpm libtiff5-4.0.9-150000.45.11.1.aarch64.rpm tiff-4.0.9-150000.45.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-2376 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information (bsc#1199657). - CVE-2022-34918: Fixed a buffer overflow with nft_set_elem_init() that could be used by a local attacker to escalate privileges (bnc#1201171). - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050). - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages (bsc#1199487). - CVE-2022-20132: Fixed out of bounds read due to improper input validation in lg_probe and related functions of hid-lg.c (bsc#1200619). - CVE-2022-33981: Fixed use-after-free in floppy driver (bsc#1200692) - CVE-2021-4157: Fixed an out of memory bounds write flaw in the NFS subsystem, related to the replication of files with NFS. A user could potentially crash the system or escalate privileges on the system (bsc#1194013). - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). The following non-security bugs were fixed: - ALSA: hda/conexant: Fix missing beep setup (git-fixes). - ALSA: hda/realtek - Add HW8326 support (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD70PNT (git-fixes). - ALSA: hda/realtek - ALC897 headset MIC no sound (git-fixes). - ALSA: hda/via: Fix missing beep setup (git-fixes). - arm64: ftrace: fix branch range checks (git-fixes) - ASoC: cs35l36: Update digital volume TLV (git-fixes). - ASoC: cs42l52: Correct TLV for Bypass Volume (git-fixes). - ASoC: cs42l52: Fix TLV scales for mixer controls (git-fixes). - ASoC: cs42l56: Correct typo in minimum level for SX volume controls (git-fixes). - ASoC: cs53l30: Correct number of volume levels on SX controls (git-fixes). - ASoC: es8328: Fix event generation for deemphasis control (git-fixes). - ASoC: nau8822: Add operation for internal PLL off and on (git-fixes). - ASoC: wm8962: Fix suspend while playing music (git-fixes). - ASoC: wm_adsp: Fix event generation for wm_adsp_fw_put() (git-fixes). - ata: libata: add qc->flags in ata_qc_complete_template tracepoint (git-fixes). - ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo() (git-fixes). - bcache: avoid journal no-space deadlock by reserving 1 journal bucket (git-fixes). - bcache: avoid unnecessary soft lockup in kworker update_writeback_rate() (bsc#1197362). - bcache: fixup multiple threads crash (git-fixes). - bcache: improve multithreaded bch_btree_check() (git-fixes). - bcache: improve multithreaded bch_sectors_dirty_init() (git-fixes). - bcache: memset on stack variables in bch_btree_check() and bch_sectors_dirty_init() (git-fixes). - bcache: remove incremental dirty sector counting for bch_sectors_dirty_init() (git-fixes). - bio: fix page leak bio_add_hw_page failure (git-fixes). - blk-cgroup: fix a hd_struct leak in blkcg_fill_root_iostats (git-fixes). - blk-iolatency: Fix inflight count imbalances and IO hangs on offline (bsc#1200825). - blk-mq: clear active_queues before clearing BLK_MQ_F_TAG_QUEUE_SHARED (bsc#1200263). - blk-mq: do not update io_ticks with passthrough requests (bsc#1200816). - blk-mq: drop workarounds for cpu hotplug queue management (bsc#1185762) - blk-mq: update hctx->dispatch_busy in case of real scheduler (git-fixes). - block: advance iov_iter on bio_add_hw_page failure (git-fixes). - block: do not merge across cgroup boundaries if blkcg is enabled (bsc#1198020). - block: Fix handling of offline queues in blk_mq_alloc_request_hctx() (bsc#1185762). - block: Fix kABI in blk-merge.c (bsc#1198020). - block/keyslot-manager: prevent crash when num_slots=1 (git-fixes). - bus: fsl-mc-bus: fix KASAN use-after-free in fsl_mc_bus_remove() (git-fixes). - caif_virtio: fix race between virtio_device_ready() and ndo_open() (git-fixes). - ceph: add some lockdep assertions around snaprealm handling (bsc#1201147). - ceph: clean up locking annotation for ceph_get_snap_realm and __lookup_snap_realm (bsc#1201149). - cifs: add WARN_ON for when chan_count goes below minimum (bsc#1200217). - cifs: adjust DebugData to use chans_need_reconnect for conn status (bsc#1200217). - cifs: alloc_path_with_tree_prefix: do not append sep. if the path is empty (bsc#1200217). - cifs: avoid parallel session setups on same channel (bsc#1200217). - cifs: avoid race during socket reconnect between send and recv (bsc#1200217). - cifs: call cifs_reconnect when a connection is marked (bsc#1200217). - cifs: call helper functions for marking channels for reconnect (bsc#1200217). - cifs: change smb2_query_info_compound to use a cached fid, if available (bsc#1200217). - cifs: check for smb1 in open_cached_dir() (bsc#1200217). - cifs: check reconnects for channels of active tcons too (bsc#1200217). - cifs: Check the IOCB_DIRECT flag, not O_DIRECT (bsc#1200217). - cifs: cifs_ses_mark_for_reconnect should also update reconnect bits (bsc#1200217). - cifs: clean up an inconsistent indenting (bsc#1200217). - cifs: destage any unwritten data to the server before calling copychunk_write (bsc#1200217). - cifs: do not build smb1ops if legacy support is disabled (bsc#1200217). - cifs: do not call cifs_dfs_query_info_nonascii_quirk() if nodfs was set (bsc#1200217). - cifs: do not use tcpStatus after negotiate completes (bsc#1200217). - cifs: do not use uninitialized data in the owner/group sid (bsc#1200217). - cifs: fix confusing unneeded warning message on smb2.1 and earlier (bsc#1200217). - cifs: fix double free race when mount fails in cifs_get_root() (bsc#1200217). - cifs: fix FILE_BOTH_DIRECTORY_INFO definition (bsc#1200217). - cifs: fix handlecache and multiuser (bsc#1200217). - cifs: fix hang on cifs_get_next_mid() (bsc#1200217). - cifs: fix incorrect use of list iterator after the loop (bsc#1200217). - cifs: fix minor compile warning (bsc#1200217). - cifs: fix missed refcounting of ipc tcon (bsc#1200217). - cifs: fix ntlmssp auth when there is no key exchange (bsc#1200217). - cifs: fix NULL ptr dereference in refresh_mounts() (bsc#1200217). - cifs: fix potential deadlock in direct reclaim (bsc#1200217). - cifs: fix potential double free during failed mount (bsc#1200217). - cifs: fix potential race with cifsd thread (bsc#1200217). - cifs: fix set of group SID via NTSD xattrs (bsc#1200217). - cifs: fix signed integer overflow when fl_end is OFFSET_MAX (bsc#1200217). - cifs: Fix smb311_update_preauth_hash() kernel-doc comment (bsc#1200217). - cifs: fix the cifs_reconnect path for DFS (bsc#1200217). - cifs: fix the connection state transitions with multichannel (bsc#1200217). - cifs: fix uninitialized pointer in error case in dfs_cache_get_tgt_share (bsc#1200217). - cifs: fix workstation_name for multiuser mounts (bsc#1200217). - cifs: force new session setup and tcon for dfs (bsc#1200217). - cifs: free ntlmsspblob allocated in negotiate (bsc#1200217). - cifs: ignore resource_id while getting fscache super cookie (bsc#1200217). - cifs: maintain a state machine for tcp/smb/tcon sessions (bsc#1200217). - cifs: make status checks in version independent callers (bsc#1200217). - cifs: mark sessions for reconnection in helper function (bsc#1200217). - cifs: modefromsids must add an ACE for authenticated users (bsc#1200217). - cifs: move definition of cifs_fattr earlier in cifsglob.h (bsc#1200217). - cifs: move superblock magic defitions to magic.h (bsc#1200217). - cifs: potential buffer overflow in handling symlinks (bsc#1200217). - cifs: print TIDs as hex (bsc#1200217). - cifs: protect all accesses to chan_* with chan_lock (bsc#1200217). - cifs: quirk for STATUS_OBJECT_NAME_INVALID returned for non-ASCII dfs refs (bsc#1200217). - cifs: reconnect only the connection and not smb session where possible (bsc#1200217). - cifs: release cached dentries only if mount is complete (bsc#1200217). - cifs: remove check of list iterator against head past the loop body (bsc#1200217). - cifs: remove redundant assignment to pointer p (bsc#1200217). - cifs: remove repeated debug message on cifs_put_smb_ses() (bsc#1200217). - cifs: remove repeated state change in dfs tree connect (bsc#1200217). - cifs: remove unused variable ses_selected (bsc#1200217). - cifs: return ENOENT for DFS lookup_cache_entry() (bsc#1200217). - cifs: return the more nuanced writeback error on close() (bsc#1200217). - cifs: sanitize multiple delimiters in prepath (bsc#1200217). - cifs: serialize all mount attempts (bsc#1200217). - cifs: set the CREATE_NOT_FILE when opening the directory in use_cached_dir() (bsc#1200217). - cifs: skip trailing separators of prefix paths (bsc#1200217). - cifs: smbd: fix typo in comment (bsc#1200217). - cifs: Split the smb3_add_credits tracepoint (bsc#1200217). - cifs: take cifs_tcp_ses_lock for status checks (bsc#1200217). - cifs: track individual channel status using chans_need_reconnect (bsc#1200217). - cifs: unlock chan_lock before calling cifs_put_tcp_session (bsc#1200217). - cifs: update internal module number (bsc#1193629). - cifs: update internal module number (bsc#1200217). - cifs: update tcpStatus during negotiate and sess setup (bsc#1200217). - cifs: use a different reconnect helper for non-cifsd threads (bsc#1200217). - cifs: use correct lock type in cifs_reconnect() (bsc#1200217). - cifs: Use kzalloc instead of kmalloc/memset (bsc#1200217). - cifs: use new enum for ses_status (bsc#1200217). - cifs: use the chans_need_reconnect bitmap for reconnect status (bsc#1200217). - cifs: verify that tcon is valid before dereference in cifs_kill_sb (bsc#1200217). - cifs: version operations for smb20 unneeded when legacy support disabled (bsc#1200217). - cifs: wait for tcon resource_id before getting fscache super (bsc#1200217). - cifs: we do not need a spinlock around the tree access during umount (bsc#1200217). - cifs: when extending a file with falloc we should make files not-sparse (bsc#1200217). - drivers: cpufreq: Add missing of_node_put() in qoriq-cpufreq.c (git-fixes). - drm/msm: Fix double pm_runtime_disable() call (git-fixes). - drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf (git-fixes). - drm/sun4i: Fix crash during suspend after component bind failure (git-fixes). - exec: Force single empty string when argv is empty (bsc#1200571). - ext4: add check to prevent attempting to resize an fs with sparse_super2 (bsc#1197754). - ext4: fix bug_on ext4_mb_use_inode_pa (bsc#1200810). - ext4: fix bug_on in __es_tree_search (bsc#1200809). - ext4: fix race condition between ext4_write and ext4_convert_inline_data (bsc#1200807). - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole (bsc#1200806). - ext4: make variable "count" signed (bsc#1200820). - fuse: annotate lock in fuse_reverse_inval_entry() (bsc#1201143). - gpio: winbond: Fix error code in winbond_gpio_get() (git-fixes). - gtp: use icmp_ndo_send helper (git-fixes). - hwmon: (ibmaem) do not call platform_device_del() if platform_device_add() fails (git-fixes). - i2c: designware: Use standard optional ref clock implementation (git-fixes). - ibmvnic: Properly dispose of all skbs during a failover (bsc#1200925). - iio:accel:bma180: rearrange iio trigger get and register (git-fixes). - iio: accel: mma8452: ignore the return value of reset operation (git-fixes). - iio: adc: axp288: Override TS pin bias current for some models (git-fixes). - iio: adc: vf610: fix conversion mode sysfs node name (git-fixes). - iio:chemical:ccs811: rearrange iio trigger get and register (git-fixes). - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up() (git-fixes). - iio: trigger: sysfs: fix use-after-free on remove (git-fixes). - init: Initialize noop_backing_dev_info early (bsc#1200822). - inotify: show inotify mask flags in proc fdinfo (bsc#1200600). - iomap: iomap_write_failed fix (bsc#1200829). - ipvs: add sysctl_run_estimation to support disable estimation (bsc#1195504). - jfs: fix divide error in dbNextAG (bsc#1200828). - kABI fix of sysctl_run_estimation (git-fixes). - kabi: nvme workaround header include (bsc#1201193). - kabi/severities: ignore KABI for NVMe target (bsc#1192761) - linux/dim: Fix divide by 0 in RDMA DIM (git-fixes). - md: fix update super 1.0 on rdev size change (git-fixes). - move devm_allocate to end of structure for kABI (git-fixes). - mtd: rawnand: gpmi: Fix setting busy timeout setting (git-fixes). - net: ethernet: stmmac: Disable hardware multicast filter (git-fixes). - net: ieee802154: ca8210: Stop leaking skb's (git-fixes). - net: lantiq: Add locking for TX DMA channel (git-fixes). - net: rose: fix UAF bugs caused by timer handler (git-fixes). - net: stmmac: reset Tx desc base address before restarting Tx (git-fixes). - net: usb: ax88179_178a: Fix packet receiving (git-fixes). - nfc: nfcmrvl: Fix irq_of_parse_and_map() return value (git-fixes). - nfc: nfcmrvl: Fix memory leak in nfcmrvl_play_deferred (git-fixes). - NFC: nxp-nci: Do not issue a zero length i2c_master_read() (git-fixes). - NFS: Do not report EINTR/ERESTARTSYS as mapping errors (git-fixes). - NFS: Do not report errors from nfs_pageio_complete() more than once (git-fixes). - NFS: Do not report flush errors in nfs_write_end() (git-fixes). - NFS: Further fixes to the writeback error handling (git-fixes). - NFS: Memory allocation failures are not server fatal errors (git-fixes). - NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout (git-fixes). - nvdimm: Fix firmware activation deadlock scenarios (git-fixes). - nvdimm/region: Fix default alignment for small regions (git-fixes). - nvme: add CNTRLTYPE definitions for 'identify controller' (bsc#1192761). - nvme: Add connect option 'discovery' (bsc#1192761). - nvme: add new discovery log page entry definitions (bsc#1192761). - nvme: display correct subsystem NQN (bsc#1192761). - nvme: expose subsystem type in sysfs attribute 'subsystype' (bsc#1192761). - nvme: kabi fix nvme subsystype change (bsc#1192761) - nvmet: add nvmet_is_disc_subsys() helper (bsc#1192761). - nvmet: add nvmet_req_subsys() helper (bsc#1192761). - nvme-tcp: fix H2CData PDU send accounting (again) (git-fixes). - nvmet: do not check iosqes,iocqes for discovery controllers (bsc#1192761). - nvmet: fix freeing unallocated p2pmem (git-fixes). - nvmet: make discovery NQN configurable (bsc#1192761). - nvmet-rdma: Fix NULL deref when SEND is completed with error (git-fixes). - nvmet-rdma: Fix NULL deref when setting pi_enable and traddr INADDR_ANY (git-fixes). - nvmet: register discovery subsystem as 'current' (bsc#1192761). - nvmet: set 'CNTRLTYPE' in the identify controller data (bsc#1192761). - nvmet: switch check for subsystem type (bsc#1192761). - pahole 1.22 required for full BTF features. also recommend pahole for kernel-source to make the kernel buildable with standard config - phy: aquantia: Fix AN when higher speeds than 1G are not advertised (git-fixes). - pNFS: Do not keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE (git-fixes). - powerpc/idle: Fix return value of __setup() handler (bsc#1065729). - powerpc/perf: Fix the threshold compare group constraint for power9 (bsc#1065729). - regmap-irq: Fix a bug in regmap_irq_enable() for type_in_mask chips (git-fixes). - Revert "block: Fix a lockdep complaint triggered by request queue flushing" (git-fixes). - scsi: core: Show SCMD_LAST in text form (git-fixes). - scsi: ibmvfc: Allocate/free queue resource only during probe/remove (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: ibmvfc: Store vhost pointer during subcrq allocation (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: lpfc: Add more logging of cmd and cqe information for aborted NVMe cmds (bsc#1201193). - scsi: lpfc: Address NULL pointer dereference after starget_to_rport() (bsc#1201193). - scsi: lpfc: Add support for ATTO Fibre Channel devices (bsc#1201193). - scsi: lpfc: Add support for VMID tagging of NVMe I/Os (bsc#1201193). - scsi: lpfc: Allow reduced polling rate for nvme_admin_async_event cmd completion (bsc#1201193). - scsi: lpfc: Commonize VMID code location (bsc#1201193). - scsi: lpfc: Correct BDE type for XMIT_SEQ64_WQE in lpfc_ct_reject_event() (bsc#1201193). - scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology (bsc#1201193). - scsi: lpfc: Resolve NULL ptr dereference after an ELS LOGO is aborted (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following abort path refactoring (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following SLI path refactoring (bsc#1201193). - scsi: lpfc: Rework lpfc_vmid_get_appid() to be protocol independent (bsc#1201193). - scsi: lpfc: Update lpfc version to 14.2.0.4 (bsc#1201193). - scsi: nvme: Added a new sysfs attribute appid_store (bsc#1201193). - scsi: nvme-fc: Add new routine nvme_fc_io_getuuid() (bsc#1201193). - scsi: qla2xxx: Add a new v2 dport diagnostic feature (bsc#1201160). - scsi: qla2xxx: Add debug prints in the device remove path (bsc#1201160). - scsi: qla2xxx: edif: Add bsg interface to read doorbell events (bsc#1201160). - scsi: qla2xxx: edif: Add retry for ELS passthrough (bsc#1201160). - scsi: qla2xxx: edif: bsg refactor (bsc#1201160). - scsi: qla2xxx: edif: Fix I/O timeout due to over-subscription (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n discovery issue with secure target (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n login retry for secure device (bsc#1201160). - scsi: qla2xxx: edif: Fix no login after app start (bsc#1201160). - scsi: qla2xxx: edif: Fix no logout on delete for N2N (bsc#1201160). - scsi: qla2xxx: edif: Fix potential stuck session in sa update (bsc#1201160). - scsi: qla2xxx: edif: Fix session thrash (bsc#1201160). - scsi: qla2xxx: edif: Fix slow session teardown (bsc#1201160). - scsi: qla2xxx: edif: Reduce disruption due to multiple app start (bsc#1201160). - scsi: qla2xxx: edif: Reduce Initiator-Initiator thrashing (bsc#1201160). - scsi: qla2xxx: edif: Reduce N2N thrashing at app_start time (bsc#1201160). - scsi: qla2xxx: edif: Remove old doorbell interface (bsc#1201160). - scsi: qla2xxx: edif: Send LOGO for unexpected IKE message (bsc#1201160). - scsi: qla2xxx: edif: Synchronize NPIV deletion with authentication application (bsc#1201160). - scsi: qla2xxx: edif: Tear down session if keys have been removed (bsc#1201160). - scsi: qla2xxx: edif: Wait for app to ack on sess down (bsc#1201160). - scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (bsc#1201160). - scsi: qla2xxx: Fix erroneous mailbox timeout after PCI error injection (bsc#1201160). - scsi: qla2xxx: Fix excessive I/O error messages by default (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets during port perturbation tests (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets on long port disable with I/Os (bsc#1201160). - scsi: qla2xxx: Fix losing target when it reappears during delete (bsc#1201160). - scsi: qla2xxx: Remove setting of 'req' and 'rsp' parameters (bsc#1201160). - scsi: qla2xxx: Remove unused 'ql_dm_tgt_ex_pct' parameter (bsc#1201160). - scsi: qla2xxx: Turn off multi-queue for 8G adapters (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.500-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.600-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.700-k (bsc#1201160). - scsi: qla2xxx: Wind down adapter after PCIe error (bsc#1201160). - scsi: sd: sd_zbc: Do not pass GFP_NOIO to kvcalloc (git-fixes). - scsi: sd: sd_zbc: Fix handling of host-aware ZBC disks (git-fixes). - scsi: sd: sd_zbc: Fix ZBC disk initialization (git-fixes). - scsi: sd: Signal drive managed SMR disks (git-fixes). - scsi: sd_zbc: Do not limit max_zone_append sectors to (git-fixes). - scsi: sd_zbc: Ensure buffer size is aligned to SECTOR_SIZE (git-fixes). - scsi: sd_zbc: Improve zone revalidation (git-fixes). - scsi: sd_zbc: Remove unused inline functions (git-fixes). - scsi: sd_zbc: Support disks with more than 2**32 logical (git-fixes). - scsi: smartpqi: create module parameters for LUN reset (bsc#1179195 bsc#1200622). - smb3: add mount parm nosparse (bsc#1200217). - smb3: add trace point for lease not found issue (bsc#1200217). - smb3: add trace point for oplock not found (bsc#1200217). - smb3: check for null tcon (bsc#1200217). - smb3: cleanup and clarify status of tree connections (bsc#1200217). - smb3: do not set rc when used and unneeded in query_info_compound (bsc#1200217). - SMB3: EBADF/EIO errors in rename/open caused by race condition in smb2_compound_op (bsc#1200217). - smb3: fix incorrect session setup check for multiuser mounts (bsc#1200217). - smb3: fix ksmbd bigendian bug in oplock break, and move its struct to smbfs_common (bsc#1200217). - smb3: fix snapshot mount option (bsc#1200217). - smb3 improve error message when mount options conflict with posix (bsc#1200217). - smb3: move defines for ioctl protocol header and SMB2 sizes to smbfs_common (bsc#1200217). - smb3: move defines for query info and query fsinfo to smbfs_common (bsc#1200217). - smb3 move more common protocol header definitions to smbfs_common (bsc#1200217). - smb3: send NTLMSSP version information (bsc#1200217). - soc: bcm: brcmstb: pm: pm-arm: Fix refcount leak in brcmstb_pm_probe (git-fixes). - spi: Fix use-after-free with devm_spi_alloc_* (git-fixes). - SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer() (git-fixes). - sunvnet: use icmp_ndo_send helper (git-fixes). - tty: goldfish: Fix free_irq() on remove (git-fixes). - usb: chipidea: udc: check request status before setting device address (git-fixes). - usb: dwc2: Fix memory leak in dwc2_hcd_init (git-fixes). - usb: gadget: lpc32xx_udc: Fix refcount leak in lpc32xx_udc_probe (git-fixes). - usb: gadget: u_ether: fix regression in setting fixed MAC address (git-fixes). - usbnet: fix memory allocation in helpers (git-fixes). - USB: serial: io_ti: add Agilent E5805A support (git-fixes). - USB: serial: option: add Quectel EM05-G modem (git-fixes). - USB: serial: option: add Quectel RM500K module support (git-fixes). - USB: serial: option: add support for Cinterion MV31 with new baseline (git-fixes). - USB: serial: option: add Telit LE910Cx 0x1250 composition (git-fixes). - usb: xhci: Workaround for S3 issue on AMD SNPS 3.0 xHC (git-fixes). - veth: fix races around rq->rx_notify_masked (git-fixes). - virtio-mmio: fix missing put_device() when vm_cmdline_parent registration failed (git-fixes). - virtio-net: fix race between ndo_open() and virtio_device_ready() (git-fixes). - virtio_net: fix xdp_rxq_info bug after suspend/resume (git-fixes). - virtio-pci: Remove wrong address verification in vp_del_vqs() (git-fixes). - vmxnet3: fix minimum vectors alloc issue (bsc#1199489). - writeback: Avoid skipping inode writeback (bsc#1200813). - writeback: Fix inode->i_io_list not be protected by inode->i_lock error (bsc#1200821). - xhci: Add reset resume quirk for AMD xhci controller (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.69.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.69.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.69.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.69.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.69.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.69.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.69.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.69.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.69.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.69.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.69.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.69.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.69.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.69.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.69.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.69.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.69.1.x86_64.rpm True openSUSE-SLE-15.3-2022-2535 important SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - CVE-2022-29187: Incomplete fix for CVE-2022-24765: potential command injection via git worktree (bsc#1201431). - Allow to opt-out from the check added in the security fix for CVE-2022-24765 (bsc#1200119) git-2.26.2-150000.41.1.src.rpm openSUSE-SLE-15.3-2022-2735 moderate SUSE Updates openSUSE-SLE 15.3 This update for tar fixes the following issues: - Fix race condition while creating intermediate subdirectories (bsc#1200657) tar-1.34-150000.3.15.1.src.rpm tar-1.34-150000.3.15.1.x86_64.rpm tar-backup-scripts-1.34-150000.3.15.1.noarch.rpm tar-doc-1.34-150000.3.15.1.noarch.rpm tar-lang-1.34-150000.3.15.1.noarch.rpm tar-rmt-1.34-150000.3.15.1.x86_64.rpm tar-tests-1.34-150000.3.15.1.x86_64.rpm tar-1.34-150000.3.15.1.s390x.rpm tar-rmt-1.34-150000.3.15.1.s390x.rpm tar-tests-1.34-150000.3.15.1.s390x.rpm tar-1.34-150000.3.15.1.ppc64le.rpm tar-rmt-1.34-150000.3.15.1.ppc64le.rpm tar-tests-1.34-150000.3.15.1.ppc64le.rpm tar-1.34-150000.3.15.1.aarch64.rpm tar-rmt-1.34-150000.3.15.1.aarch64.rpm tar-tests-1.34-150000.3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-3255 moderate SUSE Updates openSUSE-SLE 15.3 This update for pulseaudio fixes the following issues: - Drop SDL_AUDIODRIVER override, as SDL already prefers PA as default; this also fixes the recent breakage with SDL2 (bsc#1189778) libpulse-devel-14.2-150300.6.3.1.x86_64.rpm libpulse-devel-32bit-14.2-150300.6.3.1.x86_64.rpm libpulse-mainloop-glib0-14.2-150300.6.3.1.x86_64.rpm libpulse-mainloop-glib0-32bit-14.2-150300.6.3.1.x86_64.rpm libpulse0-14.2-150300.6.3.1.x86_64.rpm libpulse0-32bit-14.2-150300.6.3.1.x86_64.rpm pulseaudio-14.2-150300.6.3.1.src.rpm pulseaudio-14.2-150300.6.3.1.x86_64.rpm pulseaudio-bash-completion-14.2-150300.6.3.1.x86_64.rpm pulseaudio-esound-compat-14.2-150300.6.3.1.x86_64.rpm pulseaudio-gdm-hooks-14.2-150300.6.3.1.x86_64.rpm pulseaudio-lang-14.2-150300.6.3.1.noarch.rpm pulseaudio-module-bluetooth-14.2-150300.6.3.1.x86_64.rpm pulseaudio-module-gconf-14.2-150300.6.3.1.x86_64.rpm pulseaudio-module-gsettings-14.2-150300.6.3.1.x86_64.rpm pulseaudio-module-jack-14.2-150300.6.3.1.x86_64.rpm pulseaudio-module-lirc-14.2-150300.6.3.1.x86_64.rpm pulseaudio-module-x11-14.2-150300.6.3.1.x86_64.rpm pulseaudio-module-zeroconf-14.2-150300.6.3.1.x86_64.rpm pulseaudio-system-wide-14.2-150300.6.3.1.x86_64.rpm pulseaudio-utils-14.2-150300.6.3.1.x86_64.rpm pulseaudio-utils-32bit-14.2-150300.6.3.1.x86_64.rpm pulseaudio-zsh-completion-14.2-150300.6.3.1.x86_64.rpm libpulse-devel-14.2-150300.6.3.1.s390x.rpm libpulse-mainloop-glib0-14.2-150300.6.3.1.s390x.rpm libpulse0-14.2-150300.6.3.1.s390x.rpm pulseaudio-14.2-150300.6.3.1.s390x.rpm pulseaudio-bash-completion-14.2-150300.6.3.1.s390x.rpm pulseaudio-esound-compat-14.2-150300.6.3.1.s390x.rpm pulseaudio-gdm-hooks-14.2-150300.6.3.1.s390x.rpm pulseaudio-module-bluetooth-14.2-150300.6.3.1.s390x.rpm pulseaudio-module-gconf-14.2-150300.6.3.1.s390x.rpm pulseaudio-module-gsettings-14.2-150300.6.3.1.s390x.rpm pulseaudio-module-jack-14.2-150300.6.3.1.s390x.rpm pulseaudio-module-lirc-14.2-150300.6.3.1.s390x.rpm pulseaudio-module-x11-14.2-150300.6.3.1.s390x.rpm pulseaudio-module-zeroconf-14.2-150300.6.3.1.s390x.rpm pulseaudio-system-wide-14.2-150300.6.3.1.s390x.rpm pulseaudio-utils-14.2-150300.6.3.1.s390x.rpm pulseaudio-zsh-completion-14.2-150300.6.3.1.s390x.rpm libpulse-devel-14.2-150300.6.3.1.ppc64le.rpm libpulse-mainloop-glib0-14.2-150300.6.3.1.ppc64le.rpm libpulse0-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-bash-completion-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-esound-compat-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-gdm-hooks-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-module-bluetooth-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-module-gconf-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-module-gsettings-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-module-jack-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-module-lirc-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-module-x11-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-module-zeroconf-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-system-wide-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-utils-14.2-150300.6.3.1.ppc64le.rpm pulseaudio-zsh-completion-14.2-150300.6.3.1.ppc64le.rpm libpulse-devel-14.2-150300.6.3.1.aarch64.rpm libpulse-mainloop-glib0-14.2-150300.6.3.1.aarch64.rpm libpulse0-14.2-150300.6.3.1.aarch64.rpm pulseaudio-14.2-150300.6.3.1.aarch64.rpm pulseaudio-bash-completion-14.2-150300.6.3.1.aarch64.rpm pulseaudio-esound-compat-14.2-150300.6.3.1.aarch64.rpm pulseaudio-gdm-hooks-14.2-150300.6.3.1.aarch64.rpm pulseaudio-module-bluetooth-14.2-150300.6.3.1.aarch64.rpm pulseaudio-module-gconf-14.2-150300.6.3.1.aarch64.rpm pulseaudio-module-gsettings-14.2-150300.6.3.1.aarch64.rpm pulseaudio-module-jack-14.2-150300.6.3.1.aarch64.rpm pulseaudio-module-lirc-14.2-150300.6.3.1.aarch64.rpm pulseaudio-module-x11-14.2-150300.6.3.1.aarch64.rpm pulseaudio-module-zeroconf-14.2-150300.6.3.1.aarch64.rpm pulseaudio-system-wide-14.2-150300.6.3.1.aarch64.rpm pulseaudio-utils-14.2-150300.6.3.1.aarch64.rpm pulseaudio-zsh-completion-14.2-150300.6.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2974 moderate SUSE Updates openSUSE-SLE 15.3 This update for btrfsprogs fixes the following issues: - Build btrfsprogs against libudev-devel properly - Ignore path devices when scanning btrfs filesystem (bsc#1199391) btrfsprogs-4.19.1-150300.18.5.1.src.rpm btrfsprogs-4.19.1-150300.18.5.1.x86_64.rpm btrfsprogs-udev-rules-4.19.1-150300.18.5.1.noarch.rpm libbtrfs-devel-4.19.1-150300.18.5.1.x86_64.rpm libbtrfs0-4.19.1-150300.18.5.1.x86_64.rpm btrfsprogs-4.19.1-150300.18.5.1.s390x.rpm libbtrfs-devel-4.19.1-150300.18.5.1.s390x.rpm libbtrfs0-4.19.1-150300.18.5.1.s390x.rpm btrfsprogs-4.19.1-150300.18.5.1.ppc64le.rpm libbtrfs-devel-4.19.1-150300.18.5.1.ppc64le.rpm libbtrfs0-4.19.1-150300.18.5.1.ppc64le.rpm btrfsprogs-4.19.1-150300.18.5.1.aarch64.rpm libbtrfs-devel-4.19.1-150300.18.5.1.aarch64.rpm libbtrfs0-4.19.1-150300.18.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-2525 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: Update to version 2.36.4 (bsc#1201221): - CVE-2022-22662: Processing maliciously crafted web content may disclose sensitive user information. - CVE-2022-22677: The video in a webRTC call may be interrupted if the audio capture gets interrupted. - CVE-2022-26710: Processing maliciously crafted web content may lead to arbitrary code execution. libjavascriptcoregtk-4_0-18-2.36.4-150200.38.2.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.36.4-150200.38.2.x86_64.rpm libwebkit2gtk-4_0-37-2.36.4-150200.38.2.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.36.4-150200.38.2.x86_64.rpm libwebkit2gtk3-lang-2.36.4-150200.38.2.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.36.4-150200.38.2.x86_64.rpm typelib-1_0-WebKit2-4_0-2.36.4-150200.38.2.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.4-150200.38.2.x86_64.rpm webkit-jsc-4-2.36.4-150200.38.2.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.36.4-150200.38.2.x86_64.rpm webkit2gtk3-2.36.4-150200.38.2.src.rpm webkit2gtk3-devel-2.36.4-150200.38.2.x86_64.rpm webkit2gtk3-minibrowser-2.36.4-150200.38.2.x86_64.rpm libjavascriptcoregtk-4_0-18-2.36.4-150200.38.2.s390x.rpm libwebkit2gtk-4_0-37-2.36.4-150200.38.2.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.36.4-150200.38.2.s390x.rpm typelib-1_0-WebKit2-4_0-2.36.4-150200.38.2.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.4-150200.38.2.s390x.rpm webkit-jsc-4-2.36.4-150200.38.2.s390x.rpm webkit2gtk-4_0-injected-bundles-2.36.4-150200.38.2.s390x.rpm webkit2gtk3-devel-2.36.4-150200.38.2.s390x.rpm webkit2gtk3-minibrowser-2.36.4-150200.38.2.s390x.rpm libjavascriptcoregtk-4_0-18-2.36.4-150200.38.2.ppc64le.rpm libwebkit2gtk-4_0-37-2.36.4-150200.38.2.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.36.4-150200.38.2.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.36.4-150200.38.2.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.4-150200.38.2.ppc64le.rpm webkit-jsc-4-2.36.4-150200.38.2.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.36.4-150200.38.2.ppc64le.rpm webkit2gtk3-devel-2.36.4-150200.38.2.ppc64le.rpm webkit2gtk3-minibrowser-2.36.4-150200.38.2.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.36.4-150200.38.2.aarch64.rpm libwebkit2gtk-4_0-37-2.36.4-150200.38.2.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.4-150200.38.2.aarch64.rpm typelib-1_0-WebKit2-4_0-2.36.4-150200.38.2.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.4-150200.38.2.aarch64.rpm webkit-jsc-4-2.36.4-150200.38.2.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.36.4-150200.38.2.aarch64.rpm webkit2gtk3-devel-2.36.4-150200.38.2.aarch64.rpm webkit2gtk3-minibrowser-2.36.4-150200.38.2.aarch64.rpm openSUSE-SLE-15.3-2022-2375 important SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - CVE-2022-2319: Fixed out-of-bounds access in _CheckSetSections() (ZDI-CAN-16062) (bsc#1194179). - CVE-2022-2320: Fixed out-of-bounds access in CheckSetDeviceIndicators() (ZDI-CAN-16070) (bsc#1194181). xorg-x11-server-1.20.3-150200.22.5.55.1.src.rpm xorg-x11-server-1.20.3-150200.22.5.55.1.x86_64.rpm xorg-x11-server-extra-1.20.3-150200.22.5.55.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.55.1.x86_64.rpm xorg-x11-server-source-1.20.3-150200.22.5.55.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.55.1.x86_64.rpm xorg-x11-server-1.20.3-150200.22.5.55.1.s390x.rpm xorg-x11-server-extra-1.20.3-150200.22.5.55.1.s390x.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.55.1.s390x.rpm xorg-x11-server-source-1.20.3-150200.22.5.55.1.s390x.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.55.1.s390x.rpm xorg-x11-server-1.20.3-150200.22.5.55.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-150200.22.5.55.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.55.1.ppc64le.rpm xorg-x11-server-source-1.20.3-150200.22.5.55.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.55.1.ppc64le.rpm xorg-x11-server-1.20.3-150200.22.5.55.1.aarch64.rpm xorg-x11-server-extra-1.20.3-150200.22.5.55.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.55.1.aarch64.rpm xorg-x11-server-source-1.20.3-150200.22.5.55.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.55.1.aarch64.rpm openSUSE-SLE-15.3-2022-2547 important SUSE Updates openSUSE-SLE 15.3 This update for logrotate fixes the following issues: Security issues fixed: - Improved coredump handing for SUID binaries (bsc#1192449). Non-security issues fixed: - Fixed "logrotate emits unintended warning: keyword size not properly separated, found 0x3d" (bsc#1200278, bsc#1200802). logrotate-3.13.0-150000.4.7.1.src.rpm logrotate-3.13.0-150000.4.7.1.x86_64.rpm logrotate-3.13.0-150000.4.7.1.s390x.rpm logrotate-3.13.0-150000.4.7.1.ppc64le.rpm logrotate-3.13.0-150000.4.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-2353 critical SUSE Updates openSUSE-SLE 15.3 This update for freerdp fixes the following issues: - CVE-2022-24882: Fixed incorrect check parameters in NTLM (bsc#1198919). - CVE-2022-24883: Fixed authentication against invalid SAM files (bsc#1198921). freerdp-2.1.2-150200.15.15.1.src.rpm freerdp-2.1.2-150200.15.15.1.x86_64.rpm freerdp-devel-2.1.2-150200.15.15.1.x86_64.rpm freerdp-proxy-2.1.2-150200.15.15.1.x86_64.rpm freerdp-server-2.1.2-150200.15.15.1.x86_64.rpm freerdp-wayland-2.1.2-150200.15.15.1.x86_64.rpm libfreerdp2-2.1.2-150200.15.15.1.x86_64.rpm libuwac0-0-2.1.2-150200.15.15.1.x86_64.rpm libwinpr2-2.1.2-150200.15.15.1.x86_64.rpm uwac0-0-devel-2.1.2-150200.15.15.1.x86_64.rpm winpr2-devel-2.1.2-150200.15.15.1.x86_64.rpm freerdp-2.1.2-150200.15.15.1.s390x.rpm freerdp-devel-2.1.2-150200.15.15.1.s390x.rpm freerdp-proxy-2.1.2-150200.15.15.1.s390x.rpm freerdp-server-2.1.2-150200.15.15.1.s390x.rpm freerdp-wayland-2.1.2-150200.15.15.1.s390x.rpm libfreerdp2-2.1.2-150200.15.15.1.s390x.rpm libuwac0-0-2.1.2-150200.15.15.1.s390x.rpm libwinpr2-2.1.2-150200.15.15.1.s390x.rpm uwac0-0-devel-2.1.2-150200.15.15.1.s390x.rpm winpr2-devel-2.1.2-150200.15.15.1.s390x.rpm freerdp-2.1.2-150200.15.15.1.ppc64le.rpm freerdp-devel-2.1.2-150200.15.15.1.ppc64le.rpm freerdp-proxy-2.1.2-150200.15.15.1.ppc64le.rpm freerdp-server-2.1.2-150200.15.15.1.ppc64le.rpm freerdp-wayland-2.1.2-150200.15.15.1.ppc64le.rpm libfreerdp2-2.1.2-150200.15.15.1.ppc64le.rpm libuwac0-0-2.1.2-150200.15.15.1.ppc64le.rpm libwinpr2-2.1.2-150200.15.15.1.ppc64le.rpm uwac0-0-devel-2.1.2-150200.15.15.1.ppc64le.rpm winpr2-devel-2.1.2-150200.15.15.1.ppc64le.rpm freerdp-2.1.2-150200.15.15.1.aarch64.rpm freerdp-devel-2.1.2-150200.15.15.1.aarch64.rpm freerdp-proxy-2.1.2-150200.15.15.1.aarch64.rpm freerdp-server-2.1.2-150200.15.15.1.aarch64.rpm freerdp-wayland-2.1.2-150200.15.15.1.aarch64.rpm libfreerdp2-2.1.2-150200.15.15.1.aarch64.rpm libuwac0-0-2.1.2-150200.15.15.1.aarch64.rpm libwinpr2-2.1.2-150200.15.15.1.aarch64.rpm uwac0-0-devel-2.1.2-150200.15.15.1.aarch64.rpm winpr2-devel-2.1.2-150200.15.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-2454 important SUSE Updates openSUSE-SLE 15.3 This update for SAPHanaSR fixes the following issues: - Version bump to 0.160.1 - fix HANA_CALL function to support MCOS environments again (bsc#1198780) - fix SAPHanaSR-replay-archive to handle hb_report archives again (bsc#1198897) - add HANA_CALL_TIMEOUT parameter back to the resource agents and read the setting from the cluster configuration, if available. Defaults to '60'. Related to github issue#36 - add new HA/DR provider hook susTkOver (jsc#SLE-16347) - add new hook script for SAP HANA System Replication Scale-Up Cost Optimized Scenario. (jsc#SLE-18613) - add a new instance parameter 'REMOVE_SAP_SOCKETS'. It is an optional parameter and defaults to 'true'. Now you can control, if the RA should remove the unix domain sockets related to sapstartsrv before (re-)start sapstartsrv or if it should try to adjust the permissions and ownership of these files instead. SAPHanaSR-0.160.1-150000.4.20.1.noarch.rpm SAPHanaSR-0.160.1-150000.4.20.1.src.rpm SAPHanaSR-doc-0.160.1-150000.4.20.1.noarch.rpm openSUSE-SLE-15.3-2022-2448 important SUSE Updates openSUSE-SLE 15.3 This update for dovecot23 fixes the following issues: - CVE-2022-30550: Fixed privilege escalation in dovecot when similar master and non-master passdbs are used (bsc#1201267). dovecot23-2.3.15-150200.62.1.src.rpm dovecot23-2.3.15-150200.62.1.x86_64.rpm dovecot23-backend-mysql-2.3.15-150200.62.1.x86_64.rpm dovecot23-backend-pgsql-2.3.15-150200.62.1.x86_64.rpm dovecot23-backend-sqlite-2.3.15-150200.62.1.x86_64.rpm dovecot23-devel-2.3.15-150200.62.1.x86_64.rpm dovecot23-fts-2.3.15-150200.62.1.x86_64.rpm dovecot23-fts-lucene-2.3.15-150200.62.1.x86_64.rpm dovecot23-fts-solr-2.3.15-150200.62.1.x86_64.rpm dovecot23-fts-squat-2.3.15-150200.62.1.x86_64.rpm dovecot23-2.3.15-150200.62.1.s390x.rpm dovecot23-backend-mysql-2.3.15-150200.62.1.s390x.rpm dovecot23-backend-pgsql-2.3.15-150200.62.1.s390x.rpm dovecot23-backend-sqlite-2.3.15-150200.62.1.s390x.rpm dovecot23-devel-2.3.15-150200.62.1.s390x.rpm dovecot23-fts-2.3.15-150200.62.1.s390x.rpm dovecot23-fts-lucene-2.3.15-150200.62.1.s390x.rpm dovecot23-fts-solr-2.3.15-150200.62.1.s390x.rpm dovecot23-fts-squat-2.3.15-150200.62.1.s390x.rpm dovecot23-2.3.15-150200.62.1.ppc64le.rpm dovecot23-backend-mysql-2.3.15-150200.62.1.ppc64le.rpm dovecot23-backend-pgsql-2.3.15-150200.62.1.ppc64le.rpm dovecot23-backend-sqlite-2.3.15-150200.62.1.ppc64le.rpm dovecot23-devel-2.3.15-150200.62.1.ppc64le.rpm dovecot23-fts-2.3.15-150200.62.1.ppc64le.rpm dovecot23-fts-lucene-2.3.15-150200.62.1.ppc64le.rpm dovecot23-fts-solr-2.3.15-150200.62.1.ppc64le.rpm dovecot23-fts-squat-2.3.15-150200.62.1.ppc64le.rpm dovecot23-2.3.15-150200.62.1.aarch64.rpm dovecot23-backend-mysql-2.3.15-150200.62.1.aarch64.rpm dovecot23-backend-pgsql-2.3.15-150200.62.1.aarch64.rpm dovecot23-backend-sqlite-2.3.15-150200.62.1.aarch64.rpm dovecot23-devel-2.3.15-150200.62.1.aarch64.rpm dovecot23-fts-2.3.15-150200.62.1.aarch64.rpm dovecot23-fts-lucene-2.3.15-150200.62.1.aarch64.rpm dovecot23-fts-solr-2.3.15-150200.62.1.aarch64.rpm dovecot23-fts-squat-2.3.15-150200.62.1.aarch64.rpm openSUSE-SLE-15.3-2022-2411 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information (bsc#1199657). - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages (bsc#1199487). - CVE-2022-20132: Fixed out of bounds read due to improper input validation in lg_probe and related functions of hid-lg.c (bsc#1200619). - CVE-2022-33981: Fixed use-after-free in floppy driver (bsc#1200692) - CVE-2022-20141: Fixed a possible use after free due to improper locking in ip_check_mc_rcu() (bsc#1200604). - CVE-2021-4157: Fixed an out of memory bounds write flaw in the NFS subsystem, related to the replication of files with NFS. A user could potentially crash the system or escalate privileges on the system (bsc#1194013). - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). - CVE-2022-2318: Fixed a use-after-free vulnerabilities in the timer handler in net/rose/rose_timer.c that allow attackers to crash the system without any privileges (bsc#1201251). - CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends (bsc#1200762). - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050). The following non-security bugs were fixed: - exec: Force single empty string when argv is empty (bsc#1200571). kernel-debug-4.12.14-150100.197.117.1.nosrc.rpm True kernel-debug-base-4.12.14-150100.197.117.1.x86_64.rpm True kernel-default-4.12.14-150100.197.117.1.nosrc.rpm True kernel-kvmsmall-4.12.14-150100.197.117.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-150100.197.117.1.x86_64.rpm True kernel-vanilla-4.12.14-150100.197.117.1.nosrc.rpm True kernel-vanilla-4.12.14-150100.197.117.1.x86_64.rpm True kernel-vanilla-base-4.12.14-150100.197.117.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-150100.197.117.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.117.1.x86_64.rpm True kernel-default-man-4.12.14-150100.197.117.1.s390x.rpm True kernel-vanilla-4.12.14-150100.197.117.1.s390x.rpm True kernel-vanilla-base-4.12.14-150100.197.117.1.s390x.rpm True kernel-vanilla-devel-4.12.14-150100.197.117.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.117.1.s390x.rpm True kernel-zfcpdump-4.12.14-150100.197.117.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-150100.197.117.1.s390x.rpm True kernel-debug-base-4.12.14-150100.197.117.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.117.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-150100.197.117.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-150100.197.117.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.117.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.117.1.aarch64.rpm True kernel-vanilla-base-4.12.14-150100.197.117.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-150100.197.117.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.117.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2551 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs16 fixes the following issues: - CVE-2022-32212: Fixed DNS rebinding in --inspect via invalid IP addresses (bsc#1201328). - CVE-2022-32213: Fixed HTTP request smuggling due to flawed parsing of Transfer-Encoding (bsc#1201325). - CVE-2022-32214: Fixed HTTP request smuggling due to improper delimiting of header fields (bsc#1201326). - CVE-2022-32215: Fixed HTTP request smuggling due to incorrect parsing of multi-line Transfer-Encoding (bsc#1201327). The following non-security bug was fixed: - Add buildtime version check to determine if we need patched openssl Requires: or already in upstream. (bsc#1192489) nodejs16-16.16.0-150300.7.6.2.src.rpm nodejs16-16.16.0-150300.7.6.2.x86_64.rpm nodejs16-devel-16.16.0-150300.7.6.2.x86_64.rpm nodejs16-docs-16.16.0-150300.7.6.2.noarch.rpm npm16-16.16.0-150300.7.6.2.x86_64.rpm nodejs16-16.16.0-150300.7.6.2.s390x.rpm nodejs16-devel-16.16.0-150300.7.6.2.s390x.rpm npm16-16.16.0-150300.7.6.2.s390x.rpm nodejs16-16.16.0-150300.7.6.2.ppc64le.rpm nodejs16-devel-16.16.0-150300.7.6.2.ppc64le.rpm npm16-16.16.0-150300.7.6.2.ppc64le.rpm nodejs16-16.16.0-150300.7.6.2.aarch64.rpm nodejs16-devel-16.16.0-150300.7.6.2.aarch64.rpm npm16-16.16.0-150300.7.6.2.aarch64.rpm openSUSE-SLE-15.3-2022-2572 moderate SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: libzypp: - appdata plugin: Pass path to the repodata/ directory inside the cache (bsc#1197684) - zypp-rpm: flush rpm script output buffer before sending endOfScriptTag - PluginRepoverification: initial version hooked into repo::Downloader and repo refresh - Immediately start monitoring the download.transfer_timeout. Do not wait until the first data arrived (bsc#1199042) - singletrans: no dry-run commit if doing just download-only - Work around cases where sat repo.start points to an invalid solvable. May happen if (wrong arch) solvables were removed at the beginning of the repo. - Fix misplaced #endif SINGLE_RPMTRANS_AS_DEFAULT_FOR_ZYPPER zypper: - Basic JobReport for "cmdout/monitor" - versioncmp: if verbose, also print the edition 'parts' which are compared - Make sure MediaAccess is closed on exception (bsc#1194550) - Display plus-content hint conditionally - Honor the NO_COLOR environment variable when auto-detecting whether to use color - Define table columns which should be sorted natural [case insensitive] - lr/ls: Use highlight color on name and alias as well libzypp-17.30.2-150200.39.1.src.rpm True libzypp-17.30.2-150200.39.1.x86_64.rpm True libzypp-devel-17.30.2-150200.39.1.x86_64.rpm True libzypp-devel-doc-17.30.2-150200.39.1.x86_64.rpm True zypper-1.14.53-150200.33.1.src.rpm True zypper-1.14.53-150200.33.1.x86_64.rpm True zypper-aptitude-1.14.53-150200.33.1.noarch.rpm True zypper-log-1.14.53-150200.33.1.noarch.rpm True zypper-needs-restarting-1.14.53-150200.33.1.noarch.rpm True libzypp-17.30.2-150200.39.1.s390x.rpm True libzypp-devel-17.30.2-150200.39.1.s390x.rpm True libzypp-devel-doc-17.30.2-150200.39.1.s390x.rpm True zypper-1.14.53-150200.33.1.s390x.rpm True libzypp-17.30.2-150200.39.1.ppc64le.rpm True libzypp-devel-17.30.2-150200.39.1.ppc64le.rpm True libzypp-devel-doc-17.30.2-150200.39.1.ppc64le.rpm True zypper-1.14.53-150200.33.1.ppc64le.rpm True libzypp-17.30.2-150200.39.1.aarch64.rpm True libzypp-devel-17.30.2-150200.39.1.aarch64.rpm True libzypp-devel-doc-17.30.2-150200.39.1.aarch64.rpm True zypper-1.14.53-150200.33.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2904 moderate SUSE Updates openSUSE-SLE 15.3 This update for openldap2 fixes the following issues: - Prevent memory reuse which may lead to instability (bsc#1198341) libldap-2_4-2-2.4.46-150200.14.11.2.x86_64.rpm libldap-2_4-2-32bit-2.4.46-150200.14.11.2.x86_64.rpm libldap-data-2.4.46-150200.14.11.2.noarch.rpm openldap2-2.4.46-150200.14.11.2.src.rpm openldap2-2.4.46-150200.14.11.2.x86_64.rpm openldap2-back-meta-2.4.46-150200.14.11.2.x86_64.rpm openldap2-back-perl-2.4.46-150200.14.11.2.x86_64.rpm openldap2-back-sock-2.4.46-150200.14.11.2.x86_64.rpm openldap2-back-sql-2.4.46-150200.14.11.2.x86_64.rpm openldap2-client-2.4.46-150200.14.11.2.x86_64.rpm openldap2-contrib-2.4.46-150200.14.11.2.x86_64.rpm openldap2-devel-2.4.46-150200.14.11.2.x86_64.rpm openldap2-devel-32bit-2.4.46-150200.14.11.2.x86_64.rpm openldap2-devel-static-2.4.46-150200.14.11.2.x86_64.rpm openldap2-doc-2.4.46-150200.14.11.2.noarch.rpm openldap2-ppolicy-check-password-1.2-150200.14.11.2.x86_64.rpm libldap-2_4-2-2.4.46-150200.14.11.2.s390x.rpm openldap2-2.4.46-150200.14.11.2.s390x.rpm openldap2-back-meta-2.4.46-150200.14.11.2.s390x.rpm openldap2-back-perl-2.4.46-150200.14.11.2.s390x.rpm openldap2-back-sock-2.4.46-150200.14.11.2.s390x.rpm openldap2-back-sql-2.4.46-150200.14.11.2.s390x.rpm openldap2-client-2.4.46-150200.14.11.2.s390x.rpm openldap2-contrib-2.4.46-150200.14.11.2.s390x.rpm openldap2-devel-2.4.46-150200.14.11.2.s390x.rpm openldap2-devel-static-2.4.46-150200.14.11.2.s390x.rpm openldap2-ppolicy-check-password-1.2-150200.14.11.2.s390x.rpm libldap-2_4-2-2.4.46-150200.14.11.2.ppc64le.rpm openldap2-2.4.46-150200.14.11.2.ppc64le.rpm openldap2-back-meta-2.4.46-150200.14.11.2.ppc64le.rpm openldap2-back-perl-2.4.46-150200.14.11.2.ppc64le.rpm openldap2-back-sock-2.4.46-150200.14.11.2.ppc64le.rpm openldap2-back-sql-2.4.46-150200.14.11.2.ppc64le.rpm openldap2-client-2.4.46-150200.14.11.2.ppc64le.rpm openldap2-contrib-2.4.46-150200.14.11.2.ppc64le.rpm openldap2-devel-2.4.46-150200.14.11.2.ppc64le.rpm openldap2-devel-static-2.4.46-150200.14.11.2.ppc64le.rpm openldap2-ppolicy-check-password-1.2-150200.14.11.2.ppc64le.rpm libldap-2_4-2-2.4.46-150200.14.11.2.aarch64.rpm openldap2-2.4.46-150200.14.11.2.aarch64.rpm openldap2-back-meta-2.4.46-150200.14.11.2.aarch64.rpm openldap2-back-perl-2.4.46-150200.14.11.2.aarch64.rpm openldap2-back-sock-2.4.46-150200.14.11.2.aarch64.rpm openldap2-back-sql-2.4.46-150200.14.11.2.aarch64.rpm openldap2-client-2.4.46-150200.14.11.2.aarch64.rpm openldap2-contrib-2.4.46-150200.14.11.2.aarch64.rpm openldap2-devel-2.4.46-150200.14.11.2.aarch64.rpm openldap2-devel-static-2.4.46-150200.14.11.2.aarch64.rpm openldap2-ppolicy-check-password-1.2-150200.14.11.2.aarch64.rpm openSUSE-SLE-15.3-2022-2425 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: - CVE-2022-32212: Fixed DNS rebinding in --inspect via invalid IP addresses (bsc#1201328). - CVE-2022-32213: Fixed HTTP request smuggling due to flawed parsing of Transfer-Encoding (bsc#1201325). - CVE-2022-32214: Fixed HTTP request smuggling due to improper delimiting of header fields (bsc#1201326). - CVE-2022-32215: Fixed HTTP request smuggling due to incorrect parsing of multi-line Transfer-Encoding (bsc#1201327). nodejs14-14.20.0-150200.15.34.1.src.rpm nodejs14-14.20.0-150200.15.34.1.x86_64.rpm nodejs14-devel-14.20.0-150200.15.34.1.x86_64.rpm nodejs14-docs-14.20.0-150200.15.34.1.noarch.rpm npm14-14.20.0-150200.15.34.1.x86_64.rpm nodejs14-14.20.0-150200.15.34.1.s390x.rpm nodejs14-devel-14.20.0-150200.15.34.1.s390x.rpm npm14-14.20.0-150200.15.34.1.s390x.rpm nodejs14-14.20.0-150200.15.34.1.ppc64le.rpm nodejs14-devel-14.20.0-150200.15.34.1.ppc64le.rpm npm14-14.20.0-150200.15.34.1.ppc64le.rpm nodejs14-14.20.0-150200.15.34.1.aarch64.rpm nodejs14-devel-14.20.0-150200.15.34.1.aarch64.rpm npm14-14.20.0-150200.15.34.1.aarch64.rpm openSUSE-SLE-15.3-2022-3147 moderate SUSE Updates openSUSE-SLE 15.3 This update for tpm2.0-tools fixes the following issues: - Add support for eventlogs containing SHA1 digests (bsc#1199864) - Add support for parsing eventlogs directly from /sys (bsc#1199864) tpm2.0-tools-4.3.0-150300.4.6.1.src.rpm tpm2.0-tools-4.3.0-150300.4.6.1.x86_64.rpm tpm2.0-tools-4.3.0-150300.4.6.1.s390x.rpm tpm2.0-tools-4.3.0-150300.4.6.1.ppc64le.rpm tpm2.0-tools-4.3.0-150300.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2583 important SUSE Updates openSUSE-SLE 15.3 This update for aws-iam-authenticator fixes the following issues: - CVE-2022-2385: Fixed AccessKeyID validation bypass (bsc#1201395). aws-iam-authenticator-0.5.3-150000.1.9.1.src.rpm aws-iam-authenticator-0.5.3-150000.1.9.1.x86_64.rpm aws-iam-authenticator-0.5.3-150000.1.9.1.s390x.rpm aws-iam-authenticator-0.5.3-150000.1.9.1.ppc64le.rpm aws-iam-authenticator-0.5.3-150000.1.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3132 moderate SUSE Updates openSUSE-SLE 15.3 This update for sg3_utils fixes the following issues: - Add systemd service files for LUN masking (bsc#1099278, bsc#954600) - Fix exit status of `sg_turs` command, when not ready in single case (bsc#1095671) - Add timeout parameter to rescan-scsi-bus.sh (bsc#1199248) libsgutils-devel-1.44~763+22.a121545-150300.16.5.1.x86_64.rpm libsgutils2-1_43-2-1.44~763+22.a121545-150300.16.5.1.x86_64.rpm sg3_utils-1.44~763+22.a121545-150300.16.5.1.src.rpm sg3_utils-1.44~763+22.a121545-150300.16.5.1.x86_64.rpm libsgutils-devel-1.44~763+22.a121545-150300.16.5.1.s390x.rpm libsgutils2-1_43-2-1.44~763+22.a121545-150300.16.5.1.s390x.rpm sg3_utils-1.44~763+22.a121545-150300.16.5.1.s390x.rpm libsgutils-devel-1.44~763+22.a121545-150300.16.5.1.ppc64le.rpm libsgutils2-1_43-2-1.44~763+22.a121545-150300.16.5.1.ppc64le.rpm sg3_utils-1.44~763+22.a121545-150300.16.5.1.ppc64le.rpm libsgutils-devel-1.44~763+22.a121545-150300.16.5.1.aarch64.rpm libsgutils2-1_43-2-1.44~763+22.a121545-150300.16.5.1.aarch64.rpm sg3_utils-1.44~763+22.a121545-150300.16.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-2430 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - CVE-2022-32212: Fixed DNS rebinding in --inspect via invalid IP addresses (bsc#1201328). - CVE-2022-32213: Fixed HTTP request smuggling due to flawed parsing of Transfer-Encoding (bsc#1201325). - CVE-2022-32214: Fixed HTTP request smuggling due to improper delimiting of header fields (bsc#1201326). - CVE-2022-32215: Fixed HTTP request smuggling due to incorrect parsing of multi-line Transfer-Encoding (bsc#1201327). nodejs12-12.22.12-150200.4.35.1.src.rpm nodejs12-12.22.12-150200.4.35.1.x86_64.rpm nodejs12-devel-12.22.12-150200.4.35.1.x86_64.rpm nodejs12-docs-12.22.12-150200.4.35.1.noarch.rpm npm12-12.22.12-150200.4.35.1.x86_64.rpm nodejs12-12.22.12-150200.4.35.1.s390x.rpm nodejs12-devel-12.22.12-150200.4.35.1.s390x.rpm npm12-12.22.12-150200.4.35.1.s390x.rpm nodejs12-12.22.12-150200.4.35.1.ppc64le.rpm nodejs12-devel-12.22.12-150200.4.35.1.ppc64le.rpm npm12-12.22.12-150200.4.35.1.ppc64le.rpm nodejs12-12.22.12-150200.4.35.1.aarch64.rpm nodejs12-devel-12.22.12-150200.4.35.1.aarch64.rpm npm12-12.22.12-150200.4.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-3548 moderate SUSE Updates openSUSE-SLE 15.3 This update for sassc fixes the following issues: - Update to version 3.6.2 (bsc#1201074): * Improve pseudo selector handling * Code improvements * Fix various functions arguments * Fix "call" for $function * Check weight argument on invert call * Fix bug in scale-color with positive saturation * Minor API documentation improvements * Fix selector isInvisible logic * Fix evaluation of unary expressions in loops * Fix attribute selector equality with modifiers sassc-3.6.2-150200.3.3.1.src.rpm sassc-3.6.2-150200.3.3.1.x86_64.rpm sassc-3.6.2-150200.3.3.1.s390x.rpm sassc-3.6.2-150200.3.3.1.ppc64le.rpm sassc-3.6.2-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2671 important SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: Update to go version 1.17.13 (bsc#1190649): - CVE-2022-32189: encoding/gob, math/big: decoding big.Float and big.Rat can panic (bsc#1202035). - CVE-2022-30635: encoding/gob: stack exhaustion in Decoder.Decode (bsc#1201444). - CVE-2022-30631: compress/gzip: stack exhaustion in Reader.Read (bsc#1201437). - CVE-2022-1962: go/parser: stack exhaustion in all Parse* functions (bsc#1201448). - CVE-2022-28131: encoding/xml: stack exhaustion in Decoder.Skip (bsc#1201443). - CVE-2022-1705: net/http: improper sanitization of Transfer-Encoding header (bsc#1201434) - CVE-2022-30630: io/fs: stack exhaustion in Glob (bsc#1201447). - CVE-2022-32148: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working (bsc#1201436) - CVE-2022-30632: path/filepath: stack exhaustion in Glob (bsc#1201445). - CVE-2022-30633: encoding/xml: stack exhaustion in Unmarshal (bsc#1201440). go1.17-1.17.13-150000.1.42.1.i586.rpm go1.17-1.17.13-150000.1.42.1.src.rpm go1.17-doc-1.17.13-150000.1.42.1.i586.rpm go1.17-1.17.13-150000.1.42.1.x86_64.rpm go1.17-doc-1.17.13-150000.1.42.1.x86_64.rpm go1.17-race-1.17.13-150000.1.42.1.x86_64.rpm go1.17-1.17.13-150000.1.42.1.s390x.rpm go1.17-doc-1.17.13-150000.1.42.1.s390x.rpm go1.17-1.17.13-150000.1.42.1.ppc64le.rpm go1.17-doc-1.17.13-150000.1.42.1.ppc64le.rpm go1.17-1.17.13-150000.1.42.1.aarch64.rpm go1.17-doc-1.17.13-150000.1.42.1.aarch64.rpm go1.17-race-1.17.13-150000.1.42.1.aarch64.rpm openSUSE-SLE-15.3-2022-2672 important SUSE Updates openSUSE-SLE 15.3 This update for go1.18 fixes the following issues: Update to go version 1.18.5 (bsc#1193742): - CVE-2022-32189: encoding/gob, math/big: decoding big.Float and big.Rat can panic (bsc#1202035). - CVE-2022-1705: net/http: improper sanitization of Transfer-Encoding header (bsc#1201434) - CVE-2022-32148: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working (bsc#1201436) - CVE-2022-30631: compress/gzip: stack exhaustion in Reader.Read (bsc#1201437). - CVE-2022-30633: encoding/xml: stack exhaustion in Unmarshal (bsc#1201440). - CVE-2022-28131: encoding/xml: stack exhaustion in Decoder.Skip (bsc#1201443). - CVE-2022-30635: encoding/gob: stack exhaustion in Decoder.Decode (bsc#1201444). - CVE-2022-30632: path/filepath: stack exhaustion in Glob (bsc#1201445). - CVE-2022-30630: io/fs: stack exhaustion in Glob (bsc#1201447). - CVE-2022-1962: go/parser: stack exhaustion in all Parse* functions (bsc#1201448). go1.18-1.18.5-150000.1.25.1.src.rpm go1.18-1.18.5-150000.1.25.1.x86_64.rpm go1.18-doc-1.18.5-150000.1.25.1.x86_64.rpm go1.18-race-1.18.5-150000.1.25.1.x86_64.rpm go1.18-1.18.5-150000.1.25.1.s390x.rpm go1.18-doc-1.18.5-150000.1.25.1.s390x.rpm go1.18-1.18.5-150000.1.25.1.ppc64le.rpm go1.18-doc-1.18.5-150000.1.25.1.ppc64le.rpm go1.18-1.18.5-150000.1.25.1.aarch64.rpm go1.18-doc-1.18.5-150000.1.25.1.aarch64.rpm go1.18-race-1.18.5-150000.1.25.1.aarch64.rpm openSUSE-SLE-15.3-2022-2562 important SUSE Updates openSUSE-SLE 15.3 This update for python-M2Crypto fixes the following issues: - CVE-2020-25657: Fixed Bleichenbacher timing attacks in the RSA decryption API (bsc#1178829). python-M2Crypto-0.35.2-150000.3.14.1.src.rpm python-M2Crypto-doc-0.35.2-150000.3.14.1.noarch.rpm python2-M2Crypto-0.35.2-150000.3.14.1.x86_64.rpm python3-M2Crypto-0.35.2-150000.3.14.1.x86_64.rpm python2-M2Crypto-0.35.2-150000.3.14.1.s390x.rpm python3-M2Crypto-0.35.2-150000.3.14.1.s390x.rpm python2-M2Crypto-0.35.2-150000.3.14.1.ppc64le.rpm python3-M2Crypto-0.35.2-150000.3.14.1.ppc64le.rpm python2-M2Crypto-0.35.2-150000.3.14.1.aarch64.rpm python3-M2Crypto-0.35.2-150000.3.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-2586 important SUSE Updates openSUSE-SLE 15.3 This update for ldb, samba fixes the following issues: - CVE-2022-32746: Fixed a use-after-free occurring in database audit logging (bsc#1201490). - CVE-2022-32745: Fixed a remote server crash with an LDAP add or modify request (bsc#1201492). - CVE-2022-2031: Fixed AD restrictions bypass associated with changing passwords (bsc#1201495). - CVE-2022-32742: Fixed a memory leak in SMB1 (bsc#1201496). - CVE-2022-32744: Fixed an arbitrary password change request for any AD user (bsc#1201493). The following security bugs were fixed: samba was updated to 4.15.8: * Use pathref fd instead of io fd in vfs_default_durable_cookie; (bso#15042); * Setting fruit:resource = stream in vfs_fruit causes a panic; (bso#15099); * Add support for bind 9.18; (bso#14986); * logging dsdb audit to specific files does not work; (bso#15076); * vfs_gpfs with vfs_shadowcopy2 fail to restore file if original file had been deleted; (bso#15069); * netgroups support removed; (bso#15087); (bsc#1199247); * net ads info shows LDAP Server: 0.0.0.0 depending on contacted server; (bso#14674); (bsc#1199734); * waf produces incorrect names for python extensions with Python 3.11; (bso#15071); * smbclient commands del & deltree fail with NT_STATUS_OBJECT_PATH_NOT_FOUND with DFS; (bso#15100); (bsc#1200556); * vfs_gpfs recalls=no option prevents listing files; (bso#15055); * waf produces incorrect names for python extensions with Python 3.11; (bso#15071); * Compile error in source3/utils/regedit_hexedit.c; (bso#15091); * ldconfig: /lib64/libsmbconf.so.0 is not a symbolic link; (bso#15108); * smbd doesn't handle UPNs for looking up names; (bso#15054); * Out-by-4 error in smbd read reply max_send clamp; (bso#14443); - Move pdb backends from package samba-libs to package samba-client-libs and remove samba-libs requirement from samba-winbind; (bsc#1200964); (bsc#1198255); - Use the canonical realm name to refresh the Kerberos tickets; (bsc#1196224); (bso#14979); - Fix smbclient commands del & deltree failing with NT_STATUS_OBJECT_PATH_NOT_FOUND with DFS; (bso#15100); (bsc#1200556). ldb was updated to version 2.4.3 * Fix build problems, waf produces incorrect names for python extensions; (bso#15071); ctdb-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm ctdb-pcp-pmda-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm ldb-2.4.3-150300.3.20.1.src.rpm ldb-tools-2.4.3-150300.3.20.1.x86_64.rpm libldb-devel-2.4.3-150300.3.20.1.x86_64.rpm libldb2-2.4.3-150300.3.20.1.x86_64.rpm libldb2-32bit-2.4.3-150300.3.20.1.x86_64.rpm libsamba-policy-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm libsamba-policy-python3-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm libsamba-policy0-python3-32bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm libsamba-policy0-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm python3-ldb-2.4.3-150300.3.20.1.x86_64.rpm python3-ldb-32bit-2.4.3-150300.3.20.1.x86_64.rpm python3-ldb-devel-2.4.3-150300.3.20.1.x86_64.rpm samba-4.15.8+git.500.d5910280cc7-150300.3.37.1.src.rpm samba-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-ad-dc-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-ad-dc-libs-32bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-ad-dc-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-ceph-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-client-32bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-client-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-client-libs-32bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-client-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-devel-32bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-doc-4.15.8+git.500.d5910280cc7-150300.3.37.1.noarch.rpm samba-dsdb-modules-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-gpupdate-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-ldb-ldap-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-libs-32bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-libs-python3-32bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-libs-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-test-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-tool-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-winbind-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-winbind-libs-32bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm samba-winbind-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.x86_64.rpm ctdb-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm ctdb-pcp-pmda-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm ldb-tools-2.4.3-150300.3.20.1.s390x.rpm libldb-devel-2.4.3-150300.3.20.1.s390x.rpm libldb2-2.4.3-150300.3.20.1.s390x.rpm libsamba-policy-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm libsamba-policy-python3-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm libsamba-policy0-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm python3-ldb-2.4.3-150300.3.20.1.s390x.rpm python3-ldb-devel-2.4.3-150300.3.20.1.s390x.rpm samba-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-ad-dc-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-ad-dc-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-client-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-client-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-dsdb-modules-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-gpupdate-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-ldb-ldap-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-libs-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-test-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-tool-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-winbind-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm samba-winbind-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.s390x.rpm ctdb-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm ctdb-pcp-pmda-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm ldb-tools-2.4.3-150300.3.20.1.ppc64le.rpm libldb-devel-2.4.3-150300.3.20.1.ppc64le.rpm libldb2-2.4.3-150300.3.20.1.ppc64le.rpm libsamba-policy-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm libsamba-policy-python3-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm libsamba-policy0-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm python3-ldb-2.4.3-150300.3.20.1.ppc64le.rpm python3-ldb-devel-2.4.3-150300.3.20.1.ppc64le.rpm samba-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-ad-dc-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-ad-dc-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-client-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-client-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-dsdb-modules-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-gpupdate-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-ldb-ldap-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-libs-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-test-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-tool-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-winbind-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm samba-winbind-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.ppc64le.rpm ctdb-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm ctdb-pcp-pmda-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm ldb-tools-2.4.3-150300.3.20.1.aarch64.rpm libldb-devel-2.4.3-150300.3.20.1.aarch64.rpm libldb2-2.4.3-150300.3.20.1.aarch64.rpm libsamba-policy-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm libsamba-policy-python3-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm libsamba-policy0-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm libsamba-policy0-python3-64bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64_ilp32.rpm python3-ldb-2.4.3-150300.3.20.1.aarch64.rpm python3-ldb-devel-2.4.3-150300.3.20.1.aarch64.rpm samba-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-ad-dc-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-ad-dc-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-ceph-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-client-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-client-64bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64_ilp32.rpm samba-client-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-devel-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-dsdb-modules-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-gpupdate-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-ldb-ldap-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-libs-64bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64_ilp32.rpm samba-libs-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-libs-python3-64bit-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64_ilp32.rpm samba-python3-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-test-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-tool-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-winbind-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm samba-winbind-libs-4.15.8+git.500.d5910280cc7-150300.3.37.1.aarch64.rpm openSUSE-SLE-15.3-2022-3012 moderate SUSE Updates openSUSE-SLE 15.3 This update for tigervnc fixes the following issues: - Fix VNC client not refreshing screen correctly due to an issue on TLS stream buffers (bsc#1199477) libXvnc-devel-1.9.0-150100.19.20.1.x86_64.rpm libXvnc1-1.9.0-150100.19.20.1.x86_64.rpm tigervnc-1.9.0-150100.19.20.1.src.rpm tigervnc-1.9.0-150100.19.20.1.x86_64.rpm tigervnc-x11vnc-1.9.0-150100.19.20.1.noarch.rpm xorg-x11-Xvnc-1.9.0-150100.19.20.1.x86_64.rpm xorg-x11-Xvnc-java-1.9.0-150100.19.20.1.noarch.rpm xorg-x11-Xvnc-module-1.9.0-150100.19.20.1.x86_64.rpm xorg-x11-Xvnc-novnc-1.9.0-150100.19.20.1.noarch.rpm libXvnc-devel-1.9.0-150100.19.20.1.s390x.rpm libXvnc1-1.9.0-150100.19.20.1.s390x.rpm tigervnc-1.9.0-150100.19.20.1.s390x.rpm xorg-x11-Xvnc-1.9.0-150100.19.20.1.s390x.rpm libXvnc-devel-1.9.0-150100.19.20.1.ppc64le.rpm libXvnc1-1.9.0-150100.19.20.1.ppc64le.rpm tigervnc-1.9.0-150100.19.20.1.ppc64le.rpm xorg-x11-Xvnc-1.9.0-150100.19.20.1.ppc64le.rpm xorg-x11-Xvnc-module-1.9.0-150100.19.20.1.ppc64le.rpm libXvnc-devel-1.9.0-150100.19.20.1.aarch64.rpm libXvnc1-1.9.0-150100.19.20.1.aarch64.rpm tigervnc-1.9.0-150100.19.20.1.aarch64.rpm xorg-x11-Xvnc-1.9.0-150100.19.20.1.aarch64.rpm xorg-x11-Xvnc-module-1.9.0-150100.19.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-2550 important SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - CVE-2022-29187: Incomplete fix for CVE-2022-24765: potential command injection via git worktree (bsc#1201431). git-2.35.3-150300.10.15.1.src.rpm git-2.35.3-150300.10.15.1.x86_64.rpm git-arch-2.35.3-150300.10.15.1.x86_64.rpm git-core-2.35.3-150300.10.15.1.x86_64.rpm git-credential-gnome-keyring-2.35.3-150300.10.15.1.x86_64.rpm git-credential-libsecret-2.35.3-150300.10.15.1.x86_64.rpm git-cvs-2.35.3-150300.10.15.1.x86_64.rpm git-daemon-2.35.3-150300.10.15.1.x86_64.rpm git-doc-2.35.3-150300.10.15.1.noarch.rpm git-email-2.35.3-150300.10.15.1.x86_64.rpm git-gui-2.35.3-150300.10.15.1.x86_64.rpm git-p4-2.35.3-150300.10.15.1.x86_64.rpm git-svn-2.35.3-150300.10.15.1.x86_64.rpm git-web-2.35.3-150300.10.15.1.x86_64.rpm gitk-2.35.3-150300.10.15.1.x86_64.rpm perl-Git-2.35.3-150300.10.15.1.x86_64.rpm git-2.35.3-150300.10.15.1.s390x.rpm git-arch-2.35.3-150300.10.15.1.s390x.rpm git-core-2.35.3-150300.10.15.1.s390x.rpm git-credential-gnome-keyring-2.35.3-150300.10.15.1.s390x.rpm git-credential-libsecret-2.35.3-150300.10.15.1.s390x.rpm git-cvs-2.35.3-150300.10.15.1.s390x.rpm git-daemon-2.35.3-150300.10.15.1.s390x.rpm git-email-2.35.3-150300.10.15.1.s390x.rpm git-gui-2.35.3-150300.10.15.1.s390x.rpm git-p4-2.35.3-150300.10.15.1.s390x.rpm git-svn-2.35.3-150300.10.15.1.s390x.rpm git-web-2.35.3-150300.10.15.1.s390x.rpm gitk-2.35.3-150300.10.15.1.s390x.rpm perl-Git-2.35.3-150300.10.15.1.s390x.rpm git-2.35.3-150300.10.15.1.ppc64le.rpm git-arch-2.35.3-150300.10.15.1.ppc64le.rpm git-core-2.35.3-150300.10.15.1.ppc64le.rpm git-credential-gnome-keyring-2.35.3-150300.10.15.1.ppc64le.rpm git-credential-libsecret-2.35.3-150300.10.15.1.ppc64le.rpm git-cvs-2.35.3-150300.10.15.1.ppc64le.rpm git-daemon-2.35.3-150300.10.15.1.ppc64le.rpm git-email-2.35.3-150300.10.15.1.ppc64le.rpm git-gui-2.35.3-150300.10.15.1.ppc64le.rpm git-p4-2.35.3-150300.10.15.1.ppc64le.rpm git-svn-2.35.3-150300.10.15.1.ppc64le.rpm git-web-2.35.3-150300.10.15.1.ppc64le.rpm gitk-2.35.3-150300.10.15.1.ppc64le.rpm perl-Git-2.35.3-150300.10.15.1.ppc64le.rpm git-2.35.3-150300.10.15.1.aarch64.rpm git-arch-2.35.3-150300.10.15.1.aarch64.rpm git-core-2.35.3-150300.10.15.1.aarch64.rpm git-credential-gnome-keyring-2.35.3-150300.10.15.1.aarch64.rpm git-credential-libsecret-2.35.3-150300.10.15.1.aarch64.rpm git-cvs-2.35.3-150300.10.15.1.aarch64.rpm git-daemon-2.35.3-150300.10.15.1.aarch64.rpm git-email-2.35.3-150300.10.15.1.aarch64.rpm git-gui-2.35.3-150300.10.15.1.aarch64.rpm git-p4-2.35.3-150300.10.15.1.aarch64.rpm git-svn-2.35.3-150300.10.15.1.aarch64.rpm git-web-2.35.3-150300.10.15.1.aarch64.rpm gitk-2.35.3-150300.10.15.1.aarch64.rpm perl-Git-2.35.3-150300.10.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-2614 moderate SUSE Updates openSUSE-SLE 15.3 This update for dwarves and elfutils fixes the following issues: elfutils was updated to version 0.177 (jsc#SLE-24501): - elfclassify: New tool to analyze ELF objects. - readelf: Print DW_AT_data_member_location as decimal offset. Decode DW_AT_discr_list block attributes. - libdw: Add DW_AT_GNU_numerator, DW_AT_GNU_denominator and DW_AT_GNU_bias. - libdwelf: Add dwelf_elf_e_machine_string. dwelf_elf_begin now only returns NULL when there is an error reading or decompressing a file. If the file is not an ELF file an ELF handle of type ELF_K_NONE is returned. - backends: Add support for C-SKY. Update to version 0.176: - build: Add new --enable-install-elfh option. Do NOT use this for system installs (it overrides glibc elf.h). - backends: riscv improved core file and return value location support. - Fixes: - CVE-2019-7146, CVE-2019-7148, CVE-2019-7149, CVE-2019-7664 - CVE-2019-7150: dwfl_segment_report_module doesn't check whether the dyn data read from core file is truncated (bsc#1123685) - CVE-2019-7665: NT_PLATFORM core file note should be a zero terminated string (CVE is a bit misleading, as this is not a bug in libelf as described) (bsc#1125007) Update to version 0.175: - readelf: Handle mutliple .debug_macro sections. Recognize and parse GNU Property, NT_VERSION and GNU Build Attribute ELF Notes. - strip: Handle SHT_GROUP correctly. Add strip --reloc-debug-sections-only option. Handle relocations against GNU compressed sections. - libdwelf: New function dwelf_elf_begin. - libcpu: Recognize bpf jump variants BPF_JLT, BPF_JLE, BPF_JSLT and BPF_JSLE. backends: RISCV handles ADD/SUB relocations. Handle SHT_X86_64_UNWIND. - CVE-2018-18521: arlib: Divide-by-zero vulnerabilities in the function arlib_add_symbols() used by eu-ranlib (bsc#1112723) - CVE-2018-18310: Invalid Address Read problem in dwfl_segment_report_module.c (bsc#1111973) - CVE-2018-18520: eu-size: Bad handling of ar files inside are files (bsc#1112726) Update to version 0.174: - libelf, libdw and all tools now handle extended shnum and shstrndx correctly. - elfcompress: Don't rewrite input file if no section data needs updating. Try harder to keep same file mode bits (suid) on rewrite. - strip: Handle mixed (out of order) allocated/non-allocated sections. - unstrip: Handle SHT_GROUP sections. - backends: RISCV and M68K now have backend implementations to generate CFI based backtraces. - Fixes: - CVE-2018-16402: libelf: denial of service/double free on an attempt to decompress the same section twice (bsc#1107066) Double-free crash in nm and readelf - CVE-2018-16403: heap buffer overflow in readelf (bsc#1107067) - CVE-2018-16062: heap-buffer-overflow in /elfutils/libdw/dwarf_getaranges.c:156 (bsc#1106390) Update to version 0.173: - More fixes for crashes and hangs found by afl-fuzz. In particular various functions now detect and break infinite loops caused by bad DIE tree cycles. - readelf: Will now lookup the size and signedness of constant value types to display them correctly (and not just how they were encoded). - libdw: New function dwarf_next_lines to read CU-less .debug_line data. dwarf_begin_elf now accepts ELF files containing just .debug_line or .debug_frame sections (which can be read without needing a DIE tree from the .debug_info section). Removed dwarf_getscn_info, which was never implemented. - backends: Handle BPF simple relocations. The RISCV backends now handles ABI specific CFI and knows about RISCV register types and names. Update to version 0.172: - Various bug fixes in libdw and eu-readelf dealing with bad DWARF5 data. Thanks to running the afl fuzzer on eu-readelf and various testcases. Update to version 0.171: - DWARF5 and split dwarf, including GNU DebugFission, are supported now. Data can be read from the new DWARF sections .debug_addr, .debug_line_str, .debug_loclists, .debug_str_offsets and .debug_rnglists. Plus the new DWARF5 and GNU DebugFission encodings of the existing .debug sections. Also in split DWARF .dwo (DWARF object) files. This support is mostly handled by existing functions (dwarf_getlocation*, dwarf_getsrclines, dwarf_ranges, dwarf_form*, etc.) now returning the data from the new sections and data formats. But some new functions have been added to more easily get information about skeleton and split compile units (dwarf_get_units and dwarf_cu_info), handle new attribute data (dwarf_getabbrevattr_data) and to keep references to Dwarf_Dies that might come from different sections or files (dwarf_die_addr_die). - Not yet supported are .dwp (Dwarf Package) and .sup (Dwarf Supplementary) files, the .debug_names index, the .debug_cu_index and .debug_tu_index sections. Only a single .debug_info (and .debug_types) section are currently handled. - readelf: Handle all new DWARF5 sections. --debug-dump=info+ will show split unit DIEs when found. --dwarf-skeleton can be used when inspecting a .dwo file. Recognizes GNU locviews with --debug-dump=loc. - libdw: New functions dwarf_die_addr_die, dwarf_get_units, dwarf_getabbrevattr_data and dwarf_cu_info. libdw will now try to resolve the alt file on first use of an alt attribute FORM when not set yet with dwarf_set_alt. dwarf_aggregate_size() now works with multi-dimensional arrays. - libdwfl: Use process_vm_readv when available instead of ptrace. backends: Add a RISC-V backend. There were various improvements to build on Windows. The sha1 and md5 implementations have been removed, they weren't used. Update to version 0.170: - libdw: Added new DWARF5 attribute, tag, character encoding, language code, calling convention, defaulted member function and macro constants to dwarf.h. New functions dwarf_default_lower_bound and dwarf_line_file. dwarf_peel_type now handles DWARF5 immutable, packed and shared tags. dwarf_getmacros now handles DWARF5 .debug_macro sections. - strip: Add -R, --remove-section=SECTION and --keep-section=SECTION. - backends: The bpf disassembler is now always build on all platforms. Update to version 0.169: - backends: Add support for EM_PPC64 GNU_ATTRIBUTES. Frame pointer unwinding fallback support for i386, x86_64, aarch64. - translations: Update Polish translation. - CVE-2017-7611: elfutils: DoS (heap-based buffer over-read and application crash) via a crafted ELF file (bsc#1033088) - CVE-2017-7610: elflint: heap-based buffer overflow in check_group (bsc#1033087) - CVE-2017-7609: memory allocation failure in __libelf_decompress (bsc#1033086) - CVE-2017-7607: heap-based buffer overflow in handle_gnu_hashi (readelf.c) (bsc#1033084) - CVE-2017-7608: heap-based buffer overflow in ebl_object_note_type_name (eblobjnotetypename.c) (bsc#1033085) - CVE-2017-7613: elfutils: denial of service (memory consumption) via a crafted ELF file (bsc#1033090) - CVE-2017-7612: elfutils: denial of service (heap-based buffer over-read and application crash) via a crafted ELF file (bsc#1033089) - Don't make elfutils recommend elfutils-lang as elfutils-lang already supplements elfutils. dwarves is shipped new in version 1.22 to provide tooling for use by the Linux Kernel BTF verification framework. dwarves-1.22-150300.7.3.1.src.rpm dwarves-1.22-150300.7.3.1.x86_64.rpm elfutils-0.177-150300.11.3.1.src.rpm elfutils-0.177-150300.11.3.1.x86_64.rpm elfutils-lang-0.177-150300.11.3.1.noarch.rpm libasm-devel-0.177-150300.11.3.1.x86_64.rpm libasm1-0.177-150300.11.3.1.x86_64.rpm libasm1-32bit-0.177-150300.11.3.1.x86_64.rpm libdw-devel-0.177-150300.11.3.1.x86_64.rpm libdw1-0.177-150300.11.3.1.x86_64.rpm libdw1-32bit-0.177-150300.11.3.1.x86_64.rpm libdwarves-devel-1.22-150300.7.3.1.x86_64.rpm libdwarves-devel-32bit-1.22-150300.7.3.1.x86_64.rpm libdwarves1-1.22-150300.7.3.1.x86_64.rpm libdwarves1-32bit-1.22-150300.7.3.1.x86_64.rpm libebl-devel-0.177-150300.11.3.1.x86_64.rpm libebl-plugins-0.177-150300.11.3.1.x86_64.rpm libebl-plugins-32bit-0.177-150300.11.3.1.x86_64.rpm libelf-devel-0.177-150300.11.3.1.x86_64.rpm libelf-devel-32bit-0.177-150300.11.3.1.x86_64.rpm libelf1-0.177-150300.11.3.1.x86_64.rpm libelf1-32bit-0.177-150300.11.3.1.x86_64.rpm dwarves-1.22-150300.7.3.1.s390x.rpm elfutils-0.177-150300.11.3.1.s390x.rpm libasm-devel-0.177-150300.11.3.1.s390x.rpm libasm1-0.177-150300.11.3.1.s390x.rpm libdw-devel-0.177-150300.11.3.1.s390x.rpm libdw1-0.177-150300.11.3.1.s390x.rpm libdwarves-devel-1.22-150300.7.3.1.s390x.rpm libdwarves1-1.22-150300.7.3.1.s390x.rpm libebl-devel-0.177-150300.11.3.1.s390x.rpm libebl-plugins-0.177-150300.11.3.1.s390x.rpm libelf-devel-0.177-150300.11.3.1.s390x.rpm libelf1-0.177-150300.11.3.1.s390x.rpm dwarves-1.22-150300.7.3.1.ppc64le.rpm elfutils-0.177-150300.11.3.1.ppc64le.rpm libasm-devel-0.177-150300.11.3.1.ppc64le.rpm libasm1-0.177-150300.11.3.1.ppc64le.rpm libdw-devel-0.177-150300.11.3.1.ppc64le.rpm libdw1-0.177-150300.11.3.1.ppc64le.rpm libdwarves-devel-1.22-150300.7.3.1.ppc64le.rpm libdwarves1-1.22-150300.7.3.1.ppc64le.rpm libebl-devel-0.177-150300.11.3.1.ppc64le.rpm libebl-plugins-0.177-150300.11.3.1.ppc64le.rpm libelf-devel-0.177-150300.11.3.1.ppc64le.rpm libelf1-0.177-150300.11.3.1.ppc64le.rpm dwarves-1.22-150300.7.3.1.aarch64.rpm elfutils-0.177-150300.11.3.1.aarch64.rpm libasm-devel-0.177-150300.11.3.1.aarch64.rpm libasm1-0.177-150300.11.3.1.aarch64.rpm libdw-devel-0.177-150300.11.3.1.aarch64.rpm libdw1-0.177-150300.11.3.1.aarch64.rpm libdwarves-devel-1.22-150300.7.3.1.aarch64.rpm libdwarves1-1.22-150300.7.3.1.aarch64.rpm libebl-devel-0.177-150300.11.3.1.aarch64.rpm libebl-plugins-0.177-150300.11.3.1.aarch64.rpm libelf-devel-0.177-150300.11.3.1.aarch64.rpm libelf1-0.177-150300.11.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2874 moderate SUSE Updates openSUSE-SLE 15.3 This update for perl-HTTP-Daemon fixes the following issues: - CVE-2022-31081: Fixed request smuggling in HTTP::Daemon (bsc#1201157). perl-HTTP-Daemon-6.01-150000.3.5.1.noarch.rpm perl-HTTP-Daemon-6.01-150000.3.5.1.src.rpm openSUSE-SLE-15.3-2022-2405 moderate SUSE Updates openSUSE-SLE 15.3 This update for p11-kit fixes the following issues: - CVE-2020-29362: Fixed a 4 byte overread in p11_rpc_buffer_get_byte_array which could lead to crashes (bsc#1180065) libp11-kit0-0.23.2-150000.4.16.1.x86_64.rpm libp11-kit0-32bit-0.23.2-150000.4.16.1.x86_64.rpm p11-kit-0.23.2-150000.4.16.1.src.rpm p11-kit-0.23.2-150000.4.16.1.x86_64.rpm p11-kit-32bit-0.23.2-150000.4.16.1.x86_64.rpm p11-kit-devel-0.23.2-150000.4.16.1.x86_64.rpm p11-kit-nss-trust-0.23.2-150000.4.16.1.x86_64.rpm p11-kit-nss-trust-32bit-0.23.2-150000.4.16.1.x86_64.rpm p11-kit-tools-0.23.2-150000.4.16.1.x86_64.rpm libp11-kit0-0.23.2-150000.4.16.1.s390x.rpm p11-kit-0.23.2-150000.4.16.1.s390x.rpm p11-kit-devel-0.23.2-150000.4.16.1.s390x.rpm p11-kit-nss-trust-0.23.2-150000.4.16.1.s390x.rpm p11-kit-tools-0.23.2-150000.4.16.1.s390x.rpm libp11-kit0-0.23.2-150000.4.16.1.ppc64le.rpm p11-kit-0.23.2-150000.4.16.1.ppc64le.rpm p11-kit-devel-0.23.2-150000.4.16.1.ppc64le.rpm p11-kit-nss-trust-0.23.2-150000.4.16.1.ppc64le.rpm p11-kit-tools-0.23.2-150000.4.16.1.ppc64le.rpm libp11-kit0-0.23.2-150000.4.16.1.aarch64.rpm p11-kit-0.23.2-150000.4.16.1.aarch64.rpm p11-kit-devel-0.23.2-150000.4.16.1.aarch64.rpm p11-kit-nss-trust-0.23.2-150000.4.16.1.aarch64.rpm p11-kit-tools-0.23.2-150000.4.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-2752 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-codecov fixes the following issues: - CVE-2019-10800: Fixed sanitization of gcov arguments before being being provided to the popen method (bsc#1201494). python-codecov-2.0.15-150100.3.3.1.src.rpm python2-codecov-2.0.15-150100.3.3.1.noarch.rpm python3-codecov-2.0.15-150100.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-2756 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust-cbindgen fixes the following issues: rust-cbindgen was updated to version 0.23.0+git0: * constant: Make const.allow_constexpr default to true. * constant: Allow more constexpr constants. * Update syn dependency to at least 1.0.88 Update to version 0.22.0+git0: * Support rename rule for union body members. * constant: Add support for other expressions WebRender uses. * constant: Add support for associated constant expressions. * Fix regression in CamelCase rename rule (should be lowerCamelCase) * enumeration: simplify standard types in variants. * Avoid generating and writing bindings when called recursively * Cython: Omit per-variant tags in unions generated for Rust enums * Update various dependencies. * v0.21.0 Update to version 0.21.0+git0: * Remove etesync from readme. * Update docs.md * Remove wgpu-native from users. * Address clippy lint. * unraw the identifiers * Silence some dead_code warnings. Update to version 0.20.0+git0: * Don't use `check` profile when expanding code on a release build * Update --pretty=expanded to -Zunpretty=expanded * Fix some clippy lints. * Simplify Pin<T> to T * add `Builder::with_using_namespaces` * Ignore PhantomPinned * Move the target-guessing code from #676 to its own function. * Only fetch dependencies for current platform by default (#676) - Update vendored dependencies to resolve potential memory corruption in dependency ( RUSTSEC-2021-0003 ) rust-cbindgen-0.23.0+git0-150000.1.12.1.src.rpm rust-cbindgen-0.23.0+git0-150000.1.12.1.x86_64.rpm rust-cbindgen-0.23.0+git0-150000.1.12.1.s390x.rpm rust-cbindgen-0.23.0+git0-150000.1.12.1.ppc64le.rpm rust-cbindgen-0.23.0+git0-150000.1.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-2717 moderate SUSE Updates openSUSE-SLE 15.3 This update for ncurses fixes the following issues: - CVE-2022-29458: Fixed segfaulting out-of-bounds read in convert_strings in tinfo/read_entry.c (bsc#1198627). libncurses5-32bit-6.1-150000.5.12.1.x86_64.rpm libncurses5-6.1-150000.5.12.1.x86_64.rpm libncurses6-32bit-6.1-150000.5.12.1.x86_64.rpm libncurses6-6.1-150000.5.12.1.x86_64.rpm ncurses-6.1-150000.5.12.1.src.rpm ncurses-devel-32bit-6.1-150000.5.12.1.x86_64.rpm ncurses-devel-6.1-150000.5.12.1.x86_64.rpm ncurses-utils-6.1-150000.5.12.1.x86_64.rpm ncurses5-devel-32bit-6.1-150000.5.12.1.x86_64.rpm ncurses5-devel-6.1-150000.5.12.1.x86_64.rpm tack-6.1-150000.5.12.1.x86_64.rpm terminfo-6.1-150000.5.12.1.x86_64.rpm terminfo-base-6.1-150000.5.12.1.x86_64.rpm terminfo-iterm-6.1-150000.5.12.1.x86_64.rpm terminfo-screen-6.1-150000.5.12.1.x86_64.rpm libncurses5-6.1-150000.5.12.1.s390x.rpm libncurses6-6.1-150000.5.12.1.s390x.rpm ncurses-devel-6.1-150000.5.12.1.s390x.rpm ncurses-utils-6.1-150000.5.12.1.s390x.rpm ncurses5-devel-6.1-150000.5.12.1.s390x.rpm tack-6.1-150000.5.12.1.s390x.rpm terminfo-6.1-150000.5.12.1.s390x.rpm terminfo-base-6.1-150000.5.12.1.s390x.rpm terminfo-iterm-6.1-150000.5.12.1.s390x.rpm terminfo-screen-6.1-150000.5.12.1.s390x.rpm libncurses5-6.1-150000.5.12.1.ppc64le.rpm libncurses6-6.1-150000.5.12.1.ppc64le.rpm ncurses-devel-6.1-150000.5.12.1.ppc64le.rpm ncurses-utils-6.1-150000.5.12.1.ppc64le.rpm ncurses5-devel-6.1-150000.5.12.1.ppc64le.rpm tack-6.1-150000.5.12.1.ppc64le.rpm terminfo-6.1-150000.5.12.1.ppc64le.rpm terminfo-base-6.1-150000.5.12.1.ppc64le.rpm terminfo-iterm-6.1-150000.5.12.1.ppc64le.rpm terminfo-screen-6.1-150000.5.12.1.ppc64le.rpm libncurses5-6.1-150000.5.12.1.aarch64.rpm libncurses6-6.1-150000.5.12.1.aarch64.rpm ncurses-devel-6.1-150000.5.12.1.aarch64.rpm ncurses-utils-6.1-150000.5.12.1.aarch64.rpm ncurses5-devel-6.1-150000.5.12.1.aarch64.rpm tack-6.1-150000.5.12.1.aarch64.rpm terminfo-6.1-150000.5.12.1.aarch64.rpm terminfo-base-6.1-150000.5.12.1.aarch64.rpm terminfo-iterm-6.1-150000.5.12.1.aarch64.rpm terminfo-screen-6.1-150000.5.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-2924 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc10 fixes the following issues: Update to GCC 10.4 release (80c8c5b8f69bcd2dd168933fe6a), git2794 * includes remaining regression fixes from the branch * Removes cyclades header use from libsanitizer. [bsc#1188076] - Add gcc10-PIE, similar to gcc-PIE but affecting gcc10 [bsc#1195628] - Remove sys/rseq.h from include-fixed - Put libstdc++6-pp Requires on the shared library and drop to Recoomends. - Properly adjust license GPL-3.0 WITH GCC-exception-3.1 to GPL-3.0-or-later WITH GCC-exception-3.1 - Remove bits/unistd_ext.h from include-fixed - Force using llvm11 for amdgcn offloading since llvm12 doesn't yet work. cpp10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-aarch64-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-aarch64-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-aarch64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-arm-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-arm-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-arm-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-hppa-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-hppa-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-hppa-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-i386-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-i386-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-i386-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-m68k-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-m68k-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-m68k-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-mips-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-mips-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-mips-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-nvptx-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-nvptx-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-nvptx-newlib10-devel-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-ppc64-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-ppc64-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-ppc64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-ppc64le-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-ppc64le-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-ppc64le-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-riscv64-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-riscv64-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-riscv64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-s390x-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-s390x-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-s390x-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-sparc-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-sparc-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-sparc64-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-sparc64-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-sparc64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm cross-sparcv9-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-10.4.0+git2794-150000.1.9.1.src.rpm gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-ada-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-ada-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-c++-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-c++-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-d-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-d-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-fortran-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-fortran-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-go-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-go-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-info-10.4.0+git2794-150000.1.9.1.noarch.rpm gcc10-locale-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-obj-c++-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-obj-c++-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-objc-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-objc-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm gcc10-testresults-10.4.0+git2794-150000.1.9.1.src.rpm gcc10-testresults-10.4.0+git2794-150000.1.9.1.x86_64.rpm libada10-10.4.0+git2794-150000.1.9.1.x86_64.rpm libada10-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm libgdruntime1-10.4.0+git2794-150000.1.9.1.x86_64.rpm libgdruntime1-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm libgo16-10.4.0+git2794-150000.1.9.1.x86_64.rpm libgo16-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm libgphobos1-10.4.0+git2794-150000.1.9.1.x86_64.rpm libgphobos1-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm libstdc++6-devel-gcc10-10.4.0+git2794-150000.1.9.1.x86_64.rpm libstdc++6-devel-gcc10-32bit-10.4.0+git2794-150000.1.9.1.x86_64.rpm cpp10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-aarch64-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-aarch64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-arm-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-arm-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-hppa-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-hppa-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-i386-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-i386-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-m68k-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-m68k-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-mips-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-mips-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-ppc64-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-ppc64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-ppc64le-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-ppc64le-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-riscv64-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-riscv64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-sparc-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-sparc64-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-sparc64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-sparcv9-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-x86_64-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm cross-x86_64-gcc10-10.4.0+git2794-150000.1.9.1.src.rpm cross-x86_64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-ada-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-ada-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-c++-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-c++-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-d-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-d-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-fortran-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-fortran-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-go-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-go-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-locale-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-obj-c++-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-obj-c++-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-objc-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-objc-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm gcc10-testresults-10.4.0+git2794-150000.1.9.1.s390x.rpm libada10-10.4.0+git2794-150000.1.9.1.s390x.rpm libada10-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm libgdruntime1-10.4.0+git2794-150000.1.9.1.s390x.rpm libgdruntime1-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm libgo16-10.4.0+git2794-150000.1.9.1.s390x.rpm libgo16-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm libgphobos1-10.4.0+git2794-150000.1.9.1.s390x.rpm libgphobos1-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm libstdc++6-devel-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm libstdc++6-devel-gcc10-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm libstdc++6-pp-gcc10-10.4.0+git2794-150000.1.9.1.s390x.rpm libstdc++6-pp-gcc10-32bit-10.4.0+git2794-150000.1.9.1.s390x.rpm cpp10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-aarch64-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-aarch64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-arm-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-arm-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-hppa-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-hppa-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-i386-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-i386-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-m68k-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-m68k-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-mips-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-mips-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-ppc64-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-ppc64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-riscv64-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-riscv64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-s390x-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-s390x-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-sparc-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-sparc64-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-sparc64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-sparcv9-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-x86_64-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cross-x86_64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.ppc64le.rpm gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm gcc10-ada-10.4.0+git2794-150000.1.9.1.ppc64le.rpm gcc10-c++-10.4.0+git2794-150000.1.9.1.ppc64le.rpm gcc10-fortran-10.4.0+git2794-150000.1.9.1.ppc64le.rpm gcc10-go-10.4.0+git2794-150000.1.9.1.ppc64le.rpm gcc10-locale-10.4.0+git2794-150000.1.9.1.ppc64le.rpm gcc10-obj-c++-10.4.0+git2794-150000.1.9.1.ppc64le.rpm gcc10-objc-10.4.0+git2794-150000.1.9.1.ppc64le.rpm gcc10-testresults-10.4.0+git2794-150000.1.9.1.ppc64le.rpm libada10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm libgo16-10.4.0+git2794-150000.1.9.1.ppc64le.rpm libstdc++6-devel-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm libstdc++6-pp-gcc10-10.4.0+git2794-150000.1.9.1.ppc64le.rpm cpp10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-arm-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-arm-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-hppa-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-hppa-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-i386-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-i386-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-m68k-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-m68k-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-mips-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-mips-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-ppc64-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-ppc64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-ppc64le-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-ppc64le-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-riscv64-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-riscv64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-s390x-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-s390x-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-sparc-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-sparc64-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-sparc64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-sparcv9-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-x86_64-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm cross-x86_64-gcc10-icecream-backend-10.4.0+git2794-150000.1.9.1.aarch64.rpm gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm gcc10-ada-10.4.0+git2794-150000.1.9.1.aarch64.rpm gcc10-c++-10.4.0+git2794-150000.1.9.1.aarch64.rpm gcc10-d-10.4.0+git2794-150000.1.9.1.aarch64.rpm gcc10-fortran-10.4.0+git2794-150000.1.9.1.aarch64.rpm gcc10-go-10.4.0+git2794-150000.1.9.1.aarch64.rpm gcc10-locale-10.4.0+git2794-150000.1.9.1.aarch64.rpm gcc10-obj-c++-10.4.0+git2794-150000.1.9.1.aarch64.rpm gcc10-objc-10.4.0+git2794-150000.1.9.1.aarch64.rpm gcc10-testresults-10.4.0+git2794-150000.1.9.1.aarch64.rpm libada10-10.4.0+git2794-150000.1.9.1.aarch64.rpm libgdruntime1-10.4.0+git2794-150000.1.9.1.aarch64.rpm libgo16-10.4.0+git2794-150000.1.9.1.aarch64.rpm libgphobos1-10.4.0+git2794-150000.1.9.1.aarch64.rpm libstdc++6-devel-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm libstdc++6-pp-gcc10-10.4.0+git2794-150000.1.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3215 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpm fixes the following issues: - Support Ed25519 RPM signatures [jsc#SLE-24714] python-rpm-4.14.3-150300.49.1.src.rpm python2-rpm-4.14.3-150300.49.1.x86_64.rpm python3-rpm-4.14.3-150300.49.1.x86_64.rpm rpm-32bit-4.14.3-150300.49.1.x86_64.rpm rpm-4.14.3-150300.49.1.src.rpm rpm-4.14.3-150300.49.1.x86_64.rpm rpm-build-4.14.3-150300.49.1.x86_64.rpm rpm-devel-4.14.3-150300.49.1.x86_64.rpm rpm-ndb-32bit-4.14.3-150300.49.1.x86_64.rpm rpm-ndb-4.14.3-150300.49.1.src.rpm rpm-ndb-4.14.3-150300.49.1.x86_64.rpm python2-rpm-4.14.3-150300.49.1.s390x.rpm python3-rpm-4.14.3-150300.49.1.s390x.rpm rpm-4.14.3-150300.49.1.s390x.rpm rpm-build-4.14.3-150300.49.1.s390x.rpm rpm-devel-4.14.3-150300.49.1.s390x.rpm rpm-ndb-4.14.3-150300.49.1.s390x.rpm python2-rpm-4.14.3-150300.49.1.ppc64le.rpm python3-rpm-4.14.3-150300.49.1.ppc64le.rpm rpm-4.14.3-150300.49.1.ppc64le.rpm rpm-build-4.14.3-150300.49.1.ppc64le.rpm rpm-devel-4.14.3-150300.49.1.ppc64le.rpm rpm-ndb-4.14.3-150300.49.1.ppc64le.rpm python2-rpm-4.14.3-150300.49.1.aarch64.rpm python3-rpm-4.14.3-150300.49.1.aarch64.rpm rpm-4.14.3-150300.49.1.aarch64.rpm rpm-build-4.14.3-150300.49.1.aarch64.rpm rpm-devel-4.14.3-150300.49.1.aarch64.rpm rpm-ndb-4.14.3-150300.49.1.aarch64.rpm openSUSE-SLE-15.3-2022-2588 moderate SUSE Updates openSUSE-SLE 15.3 This update for fence-agents fixes the following issue: - Azure fence agent doesn't work correctly on SLES15 SP3 - fence_azure_arm fails with error 'MSIAuthentication' object has no attribute 'get_token' (bsc#1195891) fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.14.1.src.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.14.1.x86_64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.14.1.x86_64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.14.1.x86_64.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.14.1.s390x.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.14.1.s390x.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.14.1.s390x.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.14.1.ppc64le.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.14.1.ppc64le.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.14.1.ppc64le.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.14.1.aarch64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.14.1.aarch64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-2678 important SUSE Updates openSUSE-SLE 15.3 This update for hwinfo fixes the following issues: - Keep NVMe's namespace output consistency when the option `nvme_core.multipath=1` (bsc#1199948) - Fix bug in determining serial console device name (bsc#1198043) - Don't rely on select() updating its timeout argument (bsc#1184339) - Fix logic around CD-ROM detection - Prevent closing of the open CD-ROM tray after read - Always read numerical 32bit serial number from EDID header. Override this with ASCII serial number from display descriptor, if available. - Display numerical 32bit serial number for monitors without serial number display descriptor - Fix timezone issue in SOURCE_DATE_EPOCH code - Recognize loongarch64 architecture - Update PCI and USB ids hwinfo-21.82-150300.3.3.1.src.rpm hwinfo-21.82-150300.3.3.1.x86_64.rpm hwinfo-devel-21.82-150300.3.3.1.x86_64.rpm hwinfo-21.82-150300.3.3.1.s390x.rpm hwinfo-devel-21.82-150300.3.3.1.s390x.rpm hwinfo-21.82-150300.3.3.1.ppc64le.rpm hwinfo-devel-21.82-150300.3.3.1.ppc64le.rpm hwinfo-21.82-150300.3.3.1.aarch64.rpm hwinfo-devel-21.82-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2649 important SUSE Updates openSUSE-SLE 15.3 This update for pcre2 fixes the following issues: - CVE-2019-20454: Fixed out-of-bounds read in JIT mode when \X is used in non-UTF mode (bsc#1164384). - CVE-2022-1587: Fixed out-of-bounds read due to bug in recursions (bsc#1199235). libpcre2-16-0-10.31-150000.3.12.1.x86_64.rpm libpcre2-16-0-32bit-10.31-150000.3.12.1.x86_64.rpm libpcre2-32-0-10.31-150000.3.12.1.x86_64.rpm libpcre2-32-0-32bit-10.31-150000.3.12.1.x86_64.rpm libpcre2-8-0-10.31-150000.3.12.1.x86_64.rpm libpcre2-8-0-32bit-10.31-150000.3.12.1.x86_64.rpm libpcre2-posix2-10.31-150000.3.12.1.x86_64.rpm libpcre2-posix2-32bit-10.31-150000.3.12.1.x86_64.rpm pcre2-10.31-150000.3.12.1.src.rpm pcre2-devel-10.31-150000.3.12.1.x86_64.rpm pcre2-devel-static-10.31-150000.3.12.1.x86_64.rpm pcre2-doc-10.31-150000.3.12.1.noarch.rpm pcre2-tools-10.31-150000.3.12.1.x86_64.rpm libpcre2-16-0-10.31-150000.3.12.1.s390x.rpm libpcre2-32-0-10.31-150000.3.12.1.s390x.rpm libpcre2-8-0-10.31-150000.3.12.1.s390x.rpm libpcre2-posix2-10.31-150000.3.12.1.s390x.rpm pcre2-devel-10.31-150000.3.12.1.s390x.rpm pcre2-devel-static-10.31-150000.3.12.1.s390x.rpm pcre2-tools-10.31-150000.3.12.1.s390x.rpm libpcre2-16-0-10.31-150000.3.12.1.ppc64le.rpm libpcre2-32-0-10.31-150000.3.12.1.ppc64le.rpm libpcre2-8-0-10.31-150000.3.12.1.ppc64le.rpm libpcre2-posix2-10.31-150000.3.12.1.ppc64le.rpm pcre2-devel-10.31-150000.3.12.1.ppc64le.rpm pcre2-devel-static-10.31-150000.3.12.1.ppc64le.rpm pcre2-tools-10.31-150000.3.12.1.ppc64le.rpm libpcre2-16-0-10.31-150000.3.12.1.aarch64.rpm libpcre2-32-0-10.31-150000.3.12.1.aarch64.rpm libpcre2-8-0-10.31-150000.3.12.1.aarch64.rpm libpcre2-posix2-10.31-150000.3.12.1.aarch64.rpm pcre2-devel-10.31-150000.3.12.1.aarch64.rpm pcre2-devel-static-10.31-150000.3.12.1.aarch64.rpm pcre2-tools-10.31-150000.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-2795 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Fix grafana missing binaries in SUSE Linux Enterprise Desktop 15 Service Pack 4 via PackageHub (bsc#1201055) - Affected source packages: grafana grafana-piechart-panel grafana-status-panel system-user-grafana grafana-8.3.5-150200.3.23.1.src.rpm grafana-8.3.5-150200.3.23.1.x86_64.rpm grafana-piechart-panel-1.6.1-150200.3.8.1.noarch.rpm grafana-piechart-panel-1.6.1-150200.3.8.1.src.rpm grafana-status-panel-1.0.11-150200.3.10.1.noarch.rpm grafana-status-panel-1.0.11-150200.3.10.1.src.rpm system-user-grafana-1.0.0-150200.5.5.1.noarch.rpm system-user-grafana-1.0.0-150200.5.5.1.src.rpm grafana-8.3.5-150200.3.23.1.s390x.rpm grafana-8.3.5-150200.3.23.1.ppc64le.rpm grafana-8.3.5-150200.3.23.1.aarch64.rpm openSUSE-SLE-15.3-2022-2494 important SUSE Updates openSUSE-SLE 15.3 This update for glibc fixes the following issues: - Remove tunables from static tls surplus patch which caused crashes (bsc#1200855) - i386: Disable check_consistency for GCC 5 and above (bsc#1201640, BZ #25788) glibc-2.31-150300.37.1.src.rpm glibc-2.31-150300.37.1.x86_64.rpm glibc-32bit-2.31-150300.37.1.x86_64.rpm glibc-devel-2.31-150300.37.1.x86_64.rpm glibc-devel-32bit-2.31-150300.37.1.x86_64.rpm glibc-devel-static-2.31-150300.37.1.x86_64.rpm glibc-devel-static-32bit-2.31-150300.37.1.x86_64.rpm glibc-extra-2.31-150300.37.1.x86_64.rpm glibc-html-2.31-150300.37.1.noarch.rpm glibc-i18ndata-2.31-150300.37.1.noarch.rpm glibc-info-2.31-150300.37.1.noarch.rpm glibc-lang-2.31-150300.37.1.noarch.rpm glibc-locale-2.31-150300.37.1.x86_64.rpm glibc-locale-base-2.31-150300.37.1.x86_64.rpm glibc-locale-base-32bit-2.31-150300.37.1.x86_64.rpm glibc-profile-2.31-150300.37.1.x86_64.rpm glibc-profile-32bit-2.31-150300.37.1.x86_64.rpm glibc-utils-2.31-150300.37.1.x86_64.rpm glibc-utils-32bit-2.31-150300.37.1.x86_64.rpm glibc-utils-src-2.31-150300.37.1.src.rpm nscd-2.31-150300.37.1.x86_64.rpm glibc-2.31-150300.37.1.s390x.rpm glibc-devel-2.31-150300.37.1.s390x.rpm glibc-devel-static-2.31-150300.37.1.s390x.rpm glibc-extra-2.31-150300.37.1.s390x.rpm glibc-locale-2.31-150300.37.1.s390x.rpm glibc-locale-base-2.31-150300.37.1.s390x.rpm glibc-profile-2.31-150300.37.1.s390x.rpm glibc-utils-2.31-150300.37.1.s390x.rpm nscd-2.31-150300.37.1.s390x.rpm glibc-2.31-150300.37.1.ppc64le.rpm glibc-devel-2.31-150300.37.1.ppc64le.rpm glibc-devel-static-2.31-150300.37.1.ppc64le.rpm glibc-extra-2.31-150300.37.1.ppc64le.rpm glibc-locale-2.31-150300.37.1.ppc64le.rpm glibc-locale-base-2.31-150300.37.1.ppc64le.rpm glibc-profile-2.31-150300.37.1.ppc64le.rpm glibc-utils-2.31-150300.37.1.ppc64le.rpm nscd-2.31-150300.37.1.ppc64le.rpm glibc-2.31-150300.37.1.aarch64.rpm glibc-devel-2.31-150300.37.1.aarch64.rpm glibc-devel-static-2.31-150300.37.1.aarch64.rpm glibc-extra-2.31-150300.37.1.aarch64.rpm glibc-locale-2.31-150300.37.1.aarch64.rpm glibc-locale-base-2.31-150300.37.1.aarch64.rpm glibc-profile-2.31-150300.37.1.aarch64.rpm glibc-utils-2.31-150300.37.1.aarch64.rpm nscd-2.31-150300.37.1.aarch64.rpm openSUSE-SLE-15.3-2022-3666 important SUSE Updates openSUSE-SLE 15.3 This update for helm fixes the following issues: helm was updated to version 3.9.4: * CVE-2022-36055: Fixed denial of service through string value parsing (bsc#1203054). * Updating the certificates used for testing * Updating index handling helm was updated to version 3.9.3: - CVE-2022-1996: Updated kube-openapi to fix an issue that could result in a CORS protection bypass (bsc#1200528). * Fix missing array length check on release helm was updated to version 3.9.2: * Update of the circleci image helm was updated to version 3.9.1: * Update to support Kubernetes 1.24.2 * Improve logging and safety of statefulSetReady * Make token caching an opt-in feature * Bump github.com/lib/pq from 1.10.5 to 1.10.6 * Bump github.com/Masterminds/squirrel from 1.5.2 to 1.5.3 helm was updated to version 3.9.0: * Added a --quiet flag to helm lint * Added a --post-renderer-args flag to support arguments being passed to the post renderer * Added more checks during the signing process * Updated to add Kubernetes 1.24 support helm was updated to version 3.8.2: * Bump oras.land/oras-go from 1.1.0 to 1.1.1 * Fixing downloader plugin error handling * Simplify testdata charts * Simplify testdata charts * Add tests for multi-level dependencies. * Fix value precedence * Bumping Kubernetes package versions * Updating vcs to latest version * Dont modify provided transport * Pass http getter as pointer in tests * Add docs block * Add transport option and tests * Reuse http transport * Updating Kubernetes libs to 0.23.4 (latest) * fix: remove deadcode * fix: helm package tests * fix: helm package with dependency update for charts with OCI dependencies * Fix typo Unset the env var before func return in Unit Test * add legal name check * maint: fix syntax error in deploy.sh * linting issue fixed * only apply overwrite if version is canary * overwrite flag added to az storage blob upload-batch * Avoid querying for OCI tags can explicit version provided in chart dependencies * Management of bearer tokens for tag listing * Updating Kubernetes packages to 1.23.3 * refactor: use `os.ReadDir` for lightweight directory reading * Add IngressClass to manifests to be (un)installed * feat(comp): Shell completion for OCI * Fix install memory/goroutine leak helm-3.9.4-150000.1.10.3.src.rpm helm-3.9.4-150000.1.10.3.x86_64.rpm helm-bash-completion-3.9.4-150000.1.10.3.noarch.rpm helm-fish-completion-3.9.4-150000.1.10.3.noarch.rpm helm-zsh-completion-3.9.4-150000.1.10.3.noarch.rpm helm-3.9.4-150000.1.10.3.s390x.rpm helm-3.9.4-150000.1.10.3.ppc64le.rpm helm-3.9.4-150000.1.10.3.aarch64.rpm openSUSE-SLE-15.3-2022-2650 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-ibm fixes the following issues: Update to Java 8.0 Service Refresh 7 Fix Pack 10 [bsc#1201643] - CVE-2022-21476 (bsc#1198671), CVE-2022-21449 (bsc#1198670), CVE-2022-21496 (bsc#1198673), CVE-2022-21434 (bsc#1198674), CVE-2022-21426 (bsc#1198672), CVE-2022-21443 (bsc#1198675), CVE-2021-35561 (bsc#1191912), CVE-2022-21299 (bsc#1194931). java-1_8_0-ibm-1.8.0_sr7.10-150000.3.59.1.nosrc.rpm java-1_8_0-ibm-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-32bit-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-alsa-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-demo-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-devel-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-devel-32bit-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-plugin-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-src-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-1.8.0_sr7.10-150000.3.59.1.s390x.rpm java-1_8_0-ibm-demo-1.8.0_sr7.10-150000.3.59.1.s390x.rpm java-1_8_0-ibm-devel-1.8.0_sr7.10-150000.3.59.1.s390x.rpm java-1_8_0-ibm-src-1.8.0_sr7.10-150000.3.59.1.s390x.rpm java-1_8_0-ibm-1.8.0_sr7.10-150000.3.59.1.ppc64le.rpm java-1_8_0-ibm-demo-1.8.0_sr7.10-150000.3.59.1.ppc64le.rpm java-1_8_0-ibm-devel-1.8.0_sr7.10-150000.3.59.1.ppc64le.rpm java-1_8_0-ibm-src-1.8.0_sr7.10-150000.3.59.1.ppc64le.rpm openSUSE-SLE-15.3-2022-2599 important SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2022-26363, CVE-2022-26364: Fixed insufficient care with non-coherent mappings (XSA-402) (bsc#1199966). - CVE-2022-21123, CVE-2022-21125, CVE-2022-21166: Fixed MMIO stale data vulnerabilities on x86 (XSA-404) (bsc#1200549). - CVE-2022-26362: Fixed a race condition in typeref acquisition (XSA-401) (bsc#1199965). - CVE-2022-33745: Fixed insufficient TLB flush for x86 PV guests in shadow mode (XSA-408) (bsc#1201394). - CVE-2022-23816, CVE-2022-23825, CVE-2022-29900: Fixed RETBLEED vulnerability, arbitrary speculative code execution with return instructions (XSA-407) (bsc#1201469). Fixed several upstream bugs (bsc#1027519). xen-4.14.5_04-150300.3.32.1.src.rpm True xen-4.14.5_04-150300.3.32.1.x86_64.rpm True xen-devel-4.14.5_04-150300.3.32.1.x86_64.rpm True xen-doc-html-4.14.5_04-150300.3.32.1.x86_64.rpm True xen-libs-32bit-4.14.5_04-150300.3.32.1.x86_64.rpm True xen-libs-4.14.5_04-150300.3.32.1.x86_64.rpm True xen-tools-4.14.5_04-150300.3.32.1.x86_64.rpm True xen-tools-domU-4.14.5_04-150300.3.32.1.x86_64.rpm True xen-tools-xendomains-wait-disk-4.14.5_04-150300.3.32.1.noarch.rpm True xen-4.14.5_04-150300.3.32.1.aarch64.rpm True xen-devel-4.14.5_04-150300.3.32.1.aarch64.rpm True xen-doc-html-4.14.5_04-150300.3.32.1.aarch64.rpm True xen-libs-4.14.5_04-150300.3.32.1.aarch64.rpm True xen-tools-4.14.5_04-150300.3.32.1.aarch64.rpm True xen-tools-domU-4.14.5_04-150300.3.32.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2681 low SUSE Updates openSUSE-SLE 15.3 This update for wavpack fixes the following issues: - CVE-2022-2476: Fixed a Null pointer dereference in wvunpack (bsc#1201716). libwavpack1-32bit-5.4.0-150000.4.15.1.x86_64.rpm libwavpack1-5.4.0-150000.4.15.1.x86_64.rpm wavpack-5.4.0-150000.4.15.1.src.rpm wavpack-5.4.0-150000.4.15.1.x86_64.rpm wavpack-devel-5.4.0-150000.4.15.1.x86_64.rpm libwavpack1-5.4.0-150000.4.15.1.s390x.rpm wavpack-5.4.0-150000.4.15.1.s390x.rpm wavpack-devel-5.4.0-150000.4.15.1.s390x.rpm libwavpack1-5.4.0-150000.4.15.1.ppc64le.rpm wavpack-5.4.0-150000.4.15.1.ppc64le.rpm wavpack-devel-5.4.0-150000.4.15.1.ppc64le.rpm libwavpack1-5.4.0-150000.4.15.1.aarch64.rpm wavpack-5.4.0-150000.4.15.1.aarch64.rpm wavpack-devel-5.4.0-150000.4.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-2549 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information (bsc#1199657). - CVE-2022-34918: Fixed a buffer overflow with nft_set_elem_init() that could be used by a local attacker to escalate privileges (bnc#1201171). - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050). - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages (bsc#1199487). - CVE-2022-20132: Fixed out of bounds read due to improper input validation in lg_probe and related functions of hid-lg.c (bsc#1200619). - CVE-2022-1012: Fixed information leak caused by small table perturb size in the TCP source port generation algorithm (bsc#1199482). - CVE-2022-33981: Fixed use-after-free in floppy driver (bsc#1200692) - CVE-2022-20141: Fixed a possible use after free due to improper locking in ip_check_mc_rcu() (bsc#1200604). - CVE-2021-4157: Fixed an out of memory bounds write flaw in the NFS subsystem, related to the replication of files with NFS. A user could potentially crash the system or escalate privileges on the system (bsc#1194013). - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). The following non-security bugs were fixed: - ALSA: hda/conexant: Fix missing beep setup (git-fixes). - ALSA: hda/realtek - Add HW8326 support (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD70PNT (git-fixes). - ALSA: hda/realtek - ALC897 headset MIC no sound (git-fixes). - ALSA: hda/via: Fix missing beep setup (git-fixes). - arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399 (git-fixes) - arm64: ftrace: fix branch range checks (git-fixes) - ASoC: cs35l36: Update digital volume TLV (git-fixes). - ASoC: cs42l52: Correct TLV for Bypass Volume (git-fixes). - ASoC: cs42l52: Fix TLV scales for mixer controls (git-fixes). - ASoC: cs42l56: Correct typo in minimum level for SX volume controls (git-fixes). - ASoC: cs53l30: Correct number of volume levels on SX controls (git-fixes). - ASoC: es8328: Fix event generation for deemphasis control (git-fixes). - ASoC: nau8822: Add operation for internal PLL off and on (git-fixes). - ASoC: wm8962: Fix suspend while playing music (git-fixes). - ASoC: wm_adsp: Fix event generation for wm_adsp_fw_put() (git-fixes). - ata: libata: add qc->flags in ata_qc_complete_template tracepoint (git-fixes). - ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo() (git-fixes). - bcache: avoid journal no-space deadlock by reserving 1 journal bucket (git-fixes). - bcache: avoid unnecessary soft lockup in kworker update_writeback_rate() (bsc#1197362). - bcache: fixup multiple threads crash (git-fixes). - bcache: improve multithreaded bch_btree_check() (git-fixes). - bcache: improve multithreaded bch_sectors_dirty_init() (git-fixes). - bcache: memset on stack variables in bch_btree_check() and bch_sectors_dirty_init() (git-fixes). - bcache: remove incremental dirty sector counting for bch_sectors_dirty_init() (git-fixes). - bio: fix page leak bio_add_hw_page failure (git-fixes). - blk-cgroup: fix a hd_struct leak in blkcg_fill_root_iostats (git-fixes). - blk-iolatency: Fix inflight count imbalances and IO hangs on offline (bsc#1200825). - blk-mq: clear active_queues before clearing BLK_MQ_F_TAG_QUEUE_SHARED (bsc#1200263). - blk-mq: do not update io_ticks with passthrough requests (bsc#1200816). - blk-mq: drop workarounds for cpu hotplug queue management (bsc#1185762) - blk-mq: update hctx->dispatch_busy in case of real scheduler (git-fixes). - block: advance iov_iter on bio_add_hw_page failure (git-fixes). - block: do not merge across cgroup boundaries if blkcg is enabled (bsc#1198020). - block: Fix handling of offline queues in blk_mq_alloc_request_hctx() (bsc#1185762). - block: Fix kABI in blk-merge.c (bsc#1198020). - block/keyslot-manager: prevent crash when num_slots=1 (git-fixes). - bus: fsl-mc-bus: fix KASAN use-after-free in fsl_mc_bus_remove() (git-fixes). - caif_virtio: fix race between virtio_device_ready() and ndo_open() (git-fixes). - ceph: add some lockdep assertions around snaprealm handling (bsc#1201147). - ceph: clean up locking annotation for ceph_get_snap_realm and __lookup_snap_realm (bsc#1201149). - certs/blacklist_hashes.c: fix const confusion in certs blacklist (git-fixes). - cifs: add WARN_ON for when chan_count goes below minimum (bsc#1200217). - cifs: adjust DebugData to use chans_need_reconnect for conn status (bsc#1200217). - cifs: alloc_path_with_tree_prefix: do not append sep. if the path is empty (bsc#1200217). - cifs: avoid parallel session setups on same channel (bsc#1200217). - cifs: avoid race during socket reconnect between send and recv (bsc#1200217). - cifs: call cifs_reconnect when a connection is marked (bsc#1200217). - cifs: call helper functions for marking channels for reconnect (bsc#1200217). - cifs: change smb2_query_info_compound to use a cached fid, if available (bsc#1200217). - cifs: check for smb1 in open_cached_dir() (bsc#1200217). - cifs: check reconnects for channels of active tcons too (bsc#1200217). - cifs: Check the IOCB_DIRECT flag, not O_DIRECT (bsc#1200217). - cifs: cifs_ses_mark_for_reconnect should also update reconnect bits (bsc#1200217). - cifs: clean up an inconsistent indenting (bsc#1200217). - cifs: destage any unwritten data to the server before calling copychunk_write (bsc#1200217). - cifs: do not build smb1ops if legacy support is disabled (bsc#1200217). - cifs: do not call cifs_dfs_query_info_nonascii_quirk() if nodfs was set (bsc#1200217). - cifs: do not use tcpStatus after negotiate completes (bsc#1200217). - cifs: do not use uninitialized data in the owner/group sid (bsc#1200217). - cifs: fix confusing unneeded warning message on smb2.1 and earlier (bsc#1200217). - cifs: fix double free race when mount fails in cifs_get_root() (bsc#1200217). - cifs: fix FILE_BOTH_DIRECTORY_INFO definition (bsc#1200217). - cifs: fix handlecache and multiuser (bsc#1200217). - cifs: fix hang on cifs_get_next_mid() (bsc#1200217). - cifs: fix incorrect use of list iterator after the loop (bsc#1200217). - cifs: fix minor compile warning (bsc#1200217). - cifs: fix missed refcounting of ipc tcon (bsc#1200217). - cifs: fix ntlmssp auth when there is no key exchange (bsc#1200217). - cifs: fix NULL ptr dereference in refresh_mounts() (bsc#1200217). - cifs: fix potential deadlock in direct reclaim (bsc#1200217). - cifs: fix potential double free during failed mount (bsc#1200217). - cifs: fix potential race with cifsd thread (bsc#1200217). - cifs: fix set of group SID via NTSD xattrs (bsc#1200217). - cifs: fix signed integer overflow when fl_end is OFFSET_MAX (bsc#1200217). - cifs: Fix smb311_update_preauth_hash() kernel-doc comment (bsc#1200217). - cifs: fix the cifs_reconnect path for DFS (bsc#1200217). - cifs: fix the connection state transitions with multichannel (bsc#1200217). - cifs: fix uninitialized pointer in error case in dfs_cache_get_tgt_share (bsc#1200217). - cifs: fix workstation_name for multiuser mounts (bsc#1200217). - cifs: force new session setup and tcon for dfs (bsc#1200217). - cifs: free ntlmsspblob allocated in negotiate (bsc#1200217). - cifs: ignore resource_id while getting fscache super cookie (bsc#1200217). - cifs: maintain a state machine for tcp/smb/tcon sessions (bsc#1200217). - cifs: make status checks in version independent callers (bsc#1200217). - cifs: mark sessions for reconnection in helper function (bsc#1200217). - cifs: modefromsids must add an ACE for authenticated users (bsc#1200217). - cifs: move definition of cifs_fattr earlier in cifsglob.h (bsc#1200217). - cifs: move superblock magic defitions to magic.h (bsc#1200217). - cifs: potential buffer overflow in handling symlinks (bsc#1200217). - cifs: print TIDs as hex (bsc#1200217). - cifs: protect all accesses to chan_* with chan_lock (bsc#1200217). - cifs: quirk for STATUS_OBJECT_NAME_INVALID returned for non-ASCII dfs refs (bsc#1200217). - cifs: reconnect only the connection and not smb session where possible (bsc#1200217). - cifs: release cached dentries only if mount is complete (bsc#1200217). - cifs: remove check of list iterator against head past the loop body (bsc#1200217). - cifs: remove redundant assignment to pointer p (bsc#1200217). - cifs: remove repeated debug message on cifs_put_smb_ses() (bsc#1200217). - cifs: remove repeated state change in dfs tree connect (bsc#1200217). - cifs: remove unused variable ses_selected (bsc#1200217). - cifs: return ENOENT for DFS lookup_cache_entry() (bsc#1200217). - cifs: return the more nuanced writeback error on close() (bsc#1200217). - cifs: sanitize multiple delimiters in prepath (bsc#1200217). - cifs: serialize all mount attempts (bsc#1200217). - cifs: set the CREATE_NOT_FILE when opening the directory in use_cached_dir() (bsc#1200217). - cifs: skip trailing separators of prefix paths (bsc#1200217). - cifs: smbd: fix typo in comment (bsc#1200217). - cifs: Split the smb3_add_credits tracepoint (bsc#1200217). - cifs: take cifs_tcp_ses_lock for status checks (bsc#1200217). - cifs: track individual channel status using chans_need_reconnect (bsc#1200217). - cifs: unlock chan_lock before calling cifs_put_tcp_session (bsc#1200217). - cifs: update internal module number (bsc#1193629). - cifs: update internal module number (bsc#1200217). - cifs: update tcpStatus during negotiate and sess setup (bsc#1200217). - cifs: use a different reconnect helper for non-cifsd threads (bsc#1200217). - cifs: use correct lock type in cifs_reconnect() (bsc#1200217). - cifs: Use kzalloc instead of kmalloc/memset (bsc#1200217). - cifs: use new enum for ses_status (bsc#1200217). - cifs: use the chans_need_reconnect bitmap for reconnect status (bsc#1200217). - cifs: verify that tcon is valid before dereference in cifs_kill_sb (bsc#1200217). - cifs: version operations for smb20 unneeded when legacy support disabled (bsc#1200217). - cifs: wait for tcon resource_id before getting fscache super (bsc#1200217). - cifs: we do not need a spinlock around the tree access during umount (bsc#1200217). - cifs: when extending a file with falloc we should make files not-sparse (bsc#1200217). - drivers: cpufreq: Add missing of_node_put() in qoriq-cpufreq.c (git-fixes). - drm/i915/reset: Fix error_state_read ptr + offset use (git-fixes). - drm/i915: Update TGL and RKL DMC firmware versions (bsc#1198924). - drm/msm: Fix double pm_runtime_disable() call (git-fixes). - drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf (git-fixes). - drm/sun4i: Fix crash during suspend after component bind failure (git-fixes). - exec: Force single empty string when argv is empty (bsc#1200571). - ext4: add check to prevent attempting to resize an fs with sparse_super2 (bsc#1197754). - ext4: fix bug_on ext4_mb_use_inode_pa (bsc#1200810). - ext4: fix bug_on in __es_tree_search (bsc#1200809). - ext4: fix race condition between ext4_write and ext4_convert_inline_data (bsc#1200807). - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole (bsc#1200806). - ext4: make variable "count" signed (bsc#1200820). - Fix a warning about a malformed kernel doc comment in cifs (bsc#1200217). - fuse: annotate lock in fuse_reverse_inval_entry() (bsc#1201143). - gpio: winbond: Fix error code in winbond_gpio_get() (git-fixes). - gtp: use icmp_ndo_send helper (git-fixes). - hwmon: (ibmaem) do not call platform_device_del() if platform_device_add() fails (git-fixes). - i2c: designware: Use standard optional ref clock implementation (git-fixes). - ibmvnic: Properly dispose of all skbs during a failover (bsc#1200925). - iio:accel:bma180: rearrange iio trigger get and register (git-fixes). - iio: accel: mma8452: ignore the return value of reset operation (git-fixes). - iio: adc: axp288: Override TS pin bias current for some models (git-fixes). - iio: adc: vf610: fix conversion mode sysfs node name (git-fixes). - iio:chemical:ccs811: rearrange iio trigger get and register (git-fixes). - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up() (git-fixes). - iio: trigger: sysfs: fix use-after-free on remove (git-fixes). - init: Initialize noop_backing_dev_info early (bsc#1200822). - inotify: show inotify mask flags in proc fdinfo (bsc#1200600). - iomap: iomap_write_failed fix (bsc#1200829). - ipvs: add sysctl_run_estimation to support disable estimation (bsc#1195504). - jfs: fix divide error in dbNextAG (bsc#1200828). - kABI fix of sysctl_run_estimation (git-fixes). - kabi: nvme workaround header include (bsc#1201193). - kabi/severities: ignore KABI for NVMe target (bsc#1192761) - linux/dim: Fix divide by 0 in RDMA DIM (git-fixes). - md: fix update super 1.0 on rdev size change (git-fixes). - move devm_allocate to end of structure for kABI (git-fixes). - mtd: rawnand: gpmi: Fix setting busy timeout setting (git-fixes). - net: ax25: Fix deadlock caused by skb_recv_datagram in ax25_recvmsg (git-fixes). - net: ethernet: stmmac: Disable hardware multicast filter (git-fixes). - net: ieee802154: ca8210: Stop leaking skb's (git-fixes). - net: lantiq: Add locking for TX DMA channel (git-fixes). - net: rose: fix UAF bugs caused by timer handler (git-fixes). - net: stmmac: reset Tx desc base address before restarting Tx (git-fixes). - net: usb: ax88179_178a: Fix packet receiving (git-fixes). - nfc: nfcmrvl: Fix irq_of_parse_and_map() return value (git-fixes). - nfc: nfcmrvl: Fix memory leak in nfcmrvl_play_deferred (git-fixes). - NFC: nxp-nci: Do not issue a zero length i2c_master_read() (git-fixes). - NFS: Do not report EINTR/ERESTARTSYS as mapping errors (git-fixes). - NFS: Do not report errors from nfs_pageio_complete() more than once (git-fixes). - NFS: Do not report flush errors in nfs_write_end() (git-fixes). - NFS: Further fixes to the writeback error handling (git-fixes). - NFS: Memory allocation failures are not server fatal errors (git-fixes). - NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout (git-fixes). - nvdimm: Fix firmware activation deadlock scenarios (git-fixes). - nvdimm/region: Fix default alignment for small regions (git-fixes). - nvme: add CNTRLTYPE definitions for 'identify controller' (bsc#1192761). - nvme: Add connect option 'discovery' (bsc#1192761). - nvme: add new discovery log page entry definitions (bsc#1192761). - nvme: display correct subsystem NQN (bsc#1192761). - nvme: expose subsystem type in sysfs attribute 'subsystype' (bsc#1192761). - nvme: kabi fix nvme subsystype change (bsc#1192761) - nvmet: add nvmet_is_disc_subsys() helper (bsc#1192761). - nvmet: add nvmet_req_subsys() helper (bsc#1192761). - nvme-tcp: fix H2CData PDU send accounting (again) (git-fixes). - nvmet: do not check iosqes,iocqes for discovery controllers (bsc#1192761). - nvmet: fix freeing unallocated p2pmem (git-fixes). - nvmet: make discovery NQN configurable (bsc#1192761). - nvmet-rdma: Fix NULL deref when SEND is completed with error (git-fixes). - nvmet-rdma: Fix NULL deref when setting pi_enable and traddr INADDR_ANY (git-fixes). - nvmet: register discovery subsystem as 'current' (bsc#1192761). - nvmet: set 'CNTRLTYPE' in the identify controller data (bsc#1192761). - nvmet: switch check for subsystem type (bsc#1192761). - phy: aquantia: Fix AN when higher speeds than 1G are not advertised (git-fixes). - pNFS: Do not keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE (git-fixes). - powerpc/idle: Fix return value of __setup() handler (bsc#1065729). - powerpc/perf: Fix the threshold compare group constraint for power9 (bsc#1065729). - powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address (bsc#1200343 ltc#198477). - random: Add and use pr_fmt() (bsc#1184924). - random: remove unnecessary unlikely() (bsc#1184924). - regmap-irq: Fix a bug in regmap_irq_enable() for type_in_mask chips (git-fixes). - Revert "block: Fix a lockdep complaint triggered by request queue flushing" (git-fixes). - scsi: core: Show SCMD_LAST in text form (git-fixes). - scsi: ibmvfc: Allocate/free queue resource only during probe/remove (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: ibmvfc: Store vhost pointer during subcrq allocation (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: lpfc: Add more logging of cmd and cqe information for aborted NVMe cmds (bsc#1201193). - scsi: lpfc: Address NULL pointer dereference after starget_to_rport() (bsc#1201193). - scsi: lpfc: Add support for ATTO Fibre Channel devices (bsc#1201193). - scsi: lpfc: Add support for VMID tagging of NVMe I/Os (bsc#1201193). - scsi: lpfc: Allow reduced polling rate for nvme_admin_async_event cmd completion (bsc#1201193). - scsi: lpfc: Commonize VMID code location (bsc#1201193). - scsi: lpfc: Correct BDE type for XMIT_SEQ64_WQE in lpfc_ct_reject_event() (bsc#1201193). - scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology (bsc#1201193). - scsi: lpfc: Resolve NULL ptr dereference after an ELS LOGO is aborted (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following abort path refactoring (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following SLI path refactoring (bsc#1201193). - scsi: lpfc: Rework lpfc_vmid_get_appid() to be protocol independent (bsc#1201193). - scsi: lpfc: Update lpfc version to 14.2.0.4 (bsc#1201193). - scsi: nvme: Added a new sysfs attribute appid_store (bsc#1201193). - scsi: nvme-fc: Add new routine nvme_fc_io_getuuid() (bsc#1201193). - scsi: qla2xxx: Add a new v2 dport diagnostic feature (bsc#1201160). - scsi: qla2xxx: Add debug prints in the device remove path (bsc#1201160). - scsi: qla2xxx: edif: Add bsg interface to read doorbell events (bsc#1201160). - scsi: qla2xxx: edif: Add retry for ELS passthrough (bsc#1201160). - scsi: qla2xxx: edif: bsg refactor (bsc#1201160). - scsi: qla2xxx: edif: Fix I/O timeout due to over-subscription (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n discovery issue with secure target (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n login retry for secure device (bsc#1201160). - scsi: qla2xxx: edif: Fix no login after app start (bsc#1201160). - scsi: qla2xxx: edif: Fix no logout on delete for N2N (bsc#1201160). - scsi: qla2xxx: edif: Fix potential stuck session in sa update (bsc#1201160). - scsi: qla2xxx: edif: Fix session thrash (bsc#1201160). - scsi: qla2xxx: edif: Fix slow session teardown (bsc#1201160). - scsi: qla2xxx: edif: Reduce disruption due to multiple app start (bsc#1201160). - scsi: qla2xxx: edif: Reduce Initiator-Initiator thrashing (bsc#1201160). - scsi: qla2xxx: edif: Reduce N2N thrashing at app_start time (bsc#1201160). - scsi: qla2xxx: edif: Remove old doorbell interface (bsc#1201160). - scsi: qla2xxx: edif: Send LOGO for unexpected IKE message (bsc#1201160). - scsi: qla2xxx: edif: Synchronize NPIV deletion with authentication application (bsc#1201160). - scsi: qla2xxx: edif: Tear down session if keys have been removed (bsc#1201160). - scsi: qla2xxx: edif: Wait for app to ack on sess down (bsc#1201160). - scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (bsc#1201160). - scsi: qla2xxx: Fix erroneous mailbox timeout after PCI error injection (bsc#1201160). - scsi: qla2xxx: Fix excessive I/O error messages by default (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets during port perturbation tests (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets on long port disable with I/Os (bsc#1201160). - scsi: qla2xxx: Fix losing target when it reappears during delete (bsc#1201160). - scsi: qla2xxx: Remove setting of 'req' and 'rsp' parameters (bsc#1201160). - scsi: qla2xxx: Remove unused 'ql_dm_tgt_ex_pct' parameter (bsc#1201160). - scsi: qla2xxx: Turn off multi-queue for 8G adapters (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.500-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.600-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.700-k (bsc#1201160). - scsi: qla2xxx: Wind down adapter after PCIe error (bsc#1201160). - scsi: sd: sd_zbc: Do not pass GFP_NOIO to kvcalloc (git-fixes). - scsi: sd: sd_zbc: Fix handling of host-aware ZBC disks (git-fixes). - scsi: sd: sd_zbc: Fix ZBC disk initialization (git-fixes). - scsi: sd: Signal drive managed SMR disks (git-fixes). - scsi: sd_zbc: Do not limit max_zone_append sectors to (git-fixes). - scsi: sd_zbc: Ensure buffer size is aligned to SECTOR_SIZE (git-fixes). - scsi: sd_zbc: Improve zone revalidation (git-fixes). - scsi: sd_zbc: Remove unused inline functions (git-fixes). - scsi: sd_zbc: Support disks with more than 2**32 logical (git-fixes). - scsi: smartpqi: create module parameters for LUN reset (bsc#1179195 bsc#1200622). - smb3: add mount parm nosparse (bsc#1200217). - smb3: add trace point for lease not found issue (bsc#1200217). - smb3: add trace point for oplock not found (bsc#1200217). - smb3: check for null tcon (bsc#1200217). - smb3: cleanup and clarify status of tree connections (bsc#1200217). - smb3: do not set rc when used and unneeded in query_info_compound (bsc#1200217). - SMB3: EBADF/EIO errors in rename/open caused by race condition in smb2_compound_op (bsc#1200217). - smb3: fix incorrect session setup check for multiuser mounts (bsc#1200217). - smb3: fix ksmbd bigendian bug in oplock break, and move its struct to smbfs_common (bsc#1200217). - smb3: fix snapshot mount option (bsc#1200217). - smb3 improve error message when mount options conflict with posix (bsc#1200217). - smb3: move defines for ioctl protocol header and SMB2 sizes to smbfs_common (bsc#1200217). - smb3: move defines for query info and query fsinfo to smbfs_common (bsc#1200217). - smb3: move more common protocol header definitions to smbfs_common (bsc#1200217). - smb3: send NTLMSSP version information (bsc#1200217). - soc: bcm: brcmstb: pm: pm-arm: Fix refcount leak in brcmstb_pm_probe (git-fixes). - spi: Fix use-after-free with devm_spi_alloc_* (git-fixes). - SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer() (git-fixes). - sunvnet: use icmp_ndo_send helper (git-fixes). - tty: goldfish: Fix free_irq() on remove (git-fixes). - usb: chipidea: udc: check request status before setting device address (git-fixes). - usb: dwc2: Fix memory leak in dwc2_hcd_init (git-fixes). - usb: gadget: lpc32xx_udc: Fix refcount leak in lpc32xx_udc_probe (git-fixes). - usb: gadget: u_ether: fix regression in setting fixed MAC address (git-fixes). - usbnet: fix memory allocation in helpers (git-fixes). - USB: serial: io_ti: add Agilent E5805A support (git-fixes). - USB: serial: option: add Quectel EM05-G modem (git-fixes). - USB: serial: option: add Quectel RM500K module support (git-fixes). - USB: serial: option: add support for Cinterion MV31 with new baseline (git-fixes). - USB: serial: option: add Telit LE910Cx 0x1250 composition (git-fixes). - usb: xhci: Workaround for S3 issue on AMD SNPS 3.0 xHC (git-fixes). - veth: fix races around rq->rx_notify_masked (git-fixes). - virtio-mmio: fix missing put_device() when vm_cmdline_parent registration failed (git-fixes). - virtio-net: fix race between ndo_open() and virtio_device_ready() (git-fixes). - virtio_net: fix xdp_rxq_info bug after suspend/resume (git-fixes). - virtio-pci: Remove wrong address verification in vp_del_vqs() (git-fixes). - vmxnet3: fix minimum vectors alloc issue (bsc#1199489). - writeback: Avoid skipping inode writeback (bsc#1200813). - writeback: Fix inode->i_io_list not be protected by inode->i_lock error (bsc#1200821). - xhci: Add reset resume quirk for AMD xhci controller (git-fixes). - x86/entry: Remove skip_r11rcx (bsc#1201644). cluster-md-kmp-default-5.3.18-150300.59.87.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.87.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.87.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.87.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.87.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.87.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.87.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.87.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.87.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.87.1.x86_64.rpm True kernel-default-5.3.18-150300.59.87.1.nosrc.rpm True kernel-default-5.3.18-150300.59.87.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.87.1.150300.18.50.2.src.rpm True kernel-default-base-5.3.18-150300.59.87.1.150300.18.50.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.87.1.150300.18.50.2.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.87.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.87.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.87.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.87.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.87.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.87.1.noarch.rpm True kernel-docs-5.3.18-150300.59.87.1.noarch.rpm True kernel-docs-5.3.18-150300.59.87.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.87.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.87.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.87.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.87.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.87.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.87.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.87.1.src.rpm True kernel-obs-build-5.3.18-150300.59.87.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.87.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.87.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.87.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.87.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.87.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.87.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.87.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.87.1.x86_64.rpm True kernel-source-5.3.18-150300.59.87.1.noarch.rpm True kernel-source-5.3.18-150300.59.87.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.87.1.noarch.rpm True kernel-syms-5.3.18-150300.59.87.1.src.rpm True kernel-syms-5.3.18-150300.59.87.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.87.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.87.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.87.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.87.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.87.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.87.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.87.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.87.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.87.1.s390x.rpm True kernel-default-5.3.18-150300.59.87.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.87.1.150300.18.50.2.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.87.1.150300.18.50.2.s390x.rpm True kernel-default-devel-5.3.18-150300.59.87.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.87.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.87.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.87.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.87.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.87.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.87.1.s390x.rpm True kernel-syms-5.3.18-150300.59.87.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.87.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.87.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.87.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.87.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.87.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.87.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.87.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.87.1.150300.18.50.2.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.87.1.150300.18.50.2.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.87.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.87.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.87.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.87.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.87.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.87.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.87.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.87.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.87.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.87.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.87.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.87.1.src.rpm True dtb-al-5.3.18-150300.59.87.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.87.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.87.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.87.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.87.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.87.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.87.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.87.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.87.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.87.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.87.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.87.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.87.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.87.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.87.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.87.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.87.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.87.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.87.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.87.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.87.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.87.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.87.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.87.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.87.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.87.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.87.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.87.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.87.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.87.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.87.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.87.1.aarch64.rpm True kernel-default-5.3.18-150300.59.87.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.87.1.150300.18.50.2.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.87.1.150300.18.50.2.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.87.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.87.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.87.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.87.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.87.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.87.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.87.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.87.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.87.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.87.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.87.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.87.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.87.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.87.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.87.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.87.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.87.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.87.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.87.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.87.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.87.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.87.1.aarch64.rpm True openSUSE-SLE-15.3-2022-4008 moderate SUSE Updates openSUSE-SLE 15.3 This update for python3-ec2imgutils fixes the following issues: - Update to version 10.0.1 + Follow up fix to (bsc#1199722) allow the user a choice of 2.0 and v2.0 as tpm versions on the command line - Update to version 10.0.0 (bsc#1199722) + Add --tpm-support as command line option and tpm_support to the API to register images that support NitroTPM + API change for ec2deprecateimg. It is now possible to deprecate an image without providing a successor image. - Add rpm-macros to build requirements in spec. python3-ec2imgutils-10.0.1-150200.6.7.1.noarch.rpm python3-ec2imgutils-10.0.1-150200.6.7.1.src.rpm openSUSE-SLE-15.3-2022-2707 important SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: Update to upstream tag jdk-11.0.16+8 (July 2022 CPU) - CVE-2022-21540: Improve class compilation (bsc#1201694) - CVE-2022-21541: Enhance MethodHandle invocations (bsc#1201692) - CVE-2022-34169: Improve Xalan supports (bsc#1201684) java-11-openjdk-11.0.16.0-150000.3.83.1.src.rpm java-11-openjdk-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-accessibility-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-demo-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-devel-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-headless-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-javadoc-11.0.16.0-150000.3.83.1.noarch.rpm java-11-openjdk-jmods-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-src-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-accessibility-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-demo-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-devel-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-headless-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-jmods-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-src-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-demo-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-devel-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-headless-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-jmods-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-src-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-accessibility-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-demo-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-devel-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-headless-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-jmods-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-src-11.0.16.0-150000.3.83.1.aarch64.rpm openSUSE-SLE-15.3-2022-2754 moderate SUSE Updates openSUSE-SLE 15.3 This update for libnbd fixes the following issues: - CVE-2022-0485: Fixed a missing error handling that may create corrupted destination image (bsc#1195636). libnbd-1.12.4-150300.8.12.1.src.rpm libnbd-1.12.4-150300.8.12.1.x86_64.rpm libnbd-bash-completion-1.12.4-150300.8.12.1.noarch.rpm libnbd-devel-1.12.4-150300.8.12.1.x86_64.rpm libnbd0-1.12.4-150300.8.12.1.x86_64.rpm nbdfuse-1.12.4-150300.8.12.1.x86_64.rpm libnbd-1.12.4-150300.8.12.1.s390x.rpm libnbd-devel-1.12.4-150300.8.12.1.s390x.rpm libnbd0-1.12.4-150300.8.12.1.s390x.rpm nbdfuse-1.12.4-150300.8.12.1.s390x.rpm libnbd-1.12.4-150300.8.12.1.ppc64le.rpm libnbd-devel-1.12.4-150300.8.12.1.ppc64le.rpm libnbd0-1.12.4-150300.8.12.1.ppc64le.rpm nbdfuse-1.12.4-150300.8.12.1.ppc64le.rpm libnbd-1.12.4-150300.8.12.1.aarch64.rpm libnbd-devel-1.12.4-150300.8.12.1.aarch64.rpm libnbd0-1.12.4-150300.8.12.1.aarch64.rpm nbdfuse-1.12.4-150300.8.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-2616 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: - Fix the build for RHEL 7 and clones (python-setuptools is used) scap-security-guide-0.1.62-150000.1.42.1.noarch.rpm scap-security-guide-0.1.62-150000.1.42.1.src.rpm scap-security-guide-debian-0.1.62-150000.1.42.1.noarch.rpm scap-security-guide-redhat-0.1.62-150000.1.42.1.noarch.rpm scap-security-guide-ubuntu-0.1.62-150000.1.42.1.noarch.rpm openSUSE-SLE-15.3-2022-2548 critical SUSE Updates openSUSE-SLE 15.3 This update for python-cssselect implements packages to the unrestrictied repository. python-cssselect-1.0.3-150000.3.3.1.src.rpm python2-cssselect-1.0.3-150000.3.3.1.noarch.rpm python3-cssselect-1.0.3-150000.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-2989 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql14 fixes the following issues: - Upgrade to version 14.5: - CVE-2022-2625: Fixed an issue where extension scripts would replace objects not belonging to that extension (bsc#1202368). - Upgrade to version 14.4 (bsc#1200437) - Release notes: https://www.postgresql.org/docs/release/14.4/ - Release announcement: https://www.postgresql.org/about/news/p-2470/ - Prevent possible corruption of indexes created or rebuilt with the CONCURRENTLY option (bsc#1200437) - Pin to llvm13 until the next patchlevel update (bsc#1198166) libecpg6-14.5-150200.5.17.1.x86_64.rpm libecpg6-32bit-14.5-150200.5.17.1.x86_64.rpm libpq5-14.5-150200.5.17.1.x86_64.rpm libpq5-32bit-14.5-150200.5.17.1.x86_64.rpm postgresql14-14.5-150200.5.17.1.src.rpm postgresql14-14.5-150200.5.17.1.x86_64.rpm postgresql14-contrib-14.5-150200.5.17.1.x86_64.rpm postgresql14-devel-14.5-150200.5.17.1.x86_64.rpm postgresql14-docs-14.5-150200.5.17.1.noarch.rpm postgresql14-llvmjit-14.5-150200.5.17.1.x86_64.rpm postgresql14-plperl-14.5-150200.5.17.1.x86_64.rpm postgresql14-plpython-14.5-150200.5.17.1.x86_64.rpm postgresql14-pltcl-14.5-150200.5.17.1.x86_64.rpm postgresql14-server-14.5-150200.5.17.1.x86_64.rpm postgresql14-server-devel-14.5-150200.5.17.1.x86_64.rpm postgresql14-test-14.5-150200.5.17.1.x86_64.rpm libecpg6-14.5-150200.5.17.1.s390x.rpm libpq5-14.5-150200.5.17.1.s390x.rpm postgresql14-14.5-150200.5.17.1.s390x.rpm postgresql14-contrib-14.5-150200.5.17.1.s390x.rpm postgresql14-devel-14.5-150200.5.17.1.s390x.rpm postgresql14-llvmjit-14.5-150200.5.17.1.s390x.rpm postgresql14-plperl-14.5-150200.5.17.1.s390x.rpm postgresql14-plpython-14.5-150200.5.17.1.s390x.rpm postgresql14-pltcl-14.5-150200.5.17.1.s390x.rpm postgresql14-server-14.5-150200.5.17.1.s390x.rpm postgresql14-server-devel-14.5-150200.5.17.1.s390x.rpm postgresql14-test-14.5-150200.5.17.1.s390x.rpm libecpg6-14.5-150200.5.17.1.ppc64le.rpm libpq5-14.5-150200.5.17.1.ppc64le.rpm postgresql14-14.5-150200.5.17.1.ppc64le.rpm postgresql14-contrib-14.5-150200.5.17.1.ppc64le.rpm postgresql14-devel-14.5-150200.5.17.1.ppc64le.rpm postgresql14-llvmjit-14.5-150200.5.17.1.ppc64le.rpm postgresql14-plperl-14.5-150200.5.17.1.ppc64le.rpm postgresql14-plpython-14.5-150200.5.17.1.ppc64le.rpm postgresql14-pltcl-14.5-150200.5.17.1.ppc64le.rpm postgresql14-server-14.5-150200.5.17.1.ppc64le.rpm postgresql14-server-devel-14.5-150200.5.17.1.ppc64le.rpm postgresql14-test-14.5-150200.5.17.1.ppc64le.rpm libecpg6-14.5-150200.5.17.1.aarch64.rpm libpq5-14.5-150200.5.17.1.aarch64.rpm postgresql14-14.5-150200.5.17.1.aarch64.rpm postgresql14-contrib-14.5-150200.5.17.1.aarch64.rpm postgresql14-devel-14.5-150200.5.17.1.aarch64.rpm postgresql14-llvmjit-14.5-150200.5.17.1.aarch64.rpm postgresql14-plperl-14.5-150200.5.17.1.aarch64.rpm postgresql14-plpython-14.5-150200.5.17.1.aarch64.rpm postgresql14-pltcl-14.5-150200.5.17.1.aarch64.rpm postgresql14-server-14.5-150200.5.17.1.aarch64.rpm postgresql14-server-devel-14.5-150200.5.17.1.aarch64.rpm postgresql14-test-14.5-150200.5.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-2611 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.12.0 ESR (bsc#1201758): - CVE-2022-36319: Mouse Position spoofing with CSS transforms - CVE-2022-36318: Directory indexes for bundled resources reflected URL parameters MozillaFirefox-91.12.0-150200.152.53.1.src.rpm MozillaFirefox-91.12.0-150200.152.53.1.x86_64.rpm MozillaFirefox-branding-upstream-91.12.0-150200.152.53.1.x86_64.rpm MozillaFirefox-devel-91.12.0-150200.152.53.1.x86_64.rpm MozillaFirefox-translations-common-91.12.0-150200.152.53.1.x86_64.rpm MozillaFirefox-translations-other-91.12.0-150200.152.53.1.x86_64.rpm MozillaFirefox-91.12.0-150200.152.53.1.s390x.rpm MozillaFirefox-branding-upstream-91.12.0-150200.152.53.1.s390x.rpm MozillaFirefox-devel-91.12.0-150200.152.53.1.s390x.rpm MozillaFirefox-translations-common-91.12.0-150200.152.53.1.s390x.rpm MozillaFirefox-translations-other-91.12.0-150200.152.53.1.s390x.rpm MozillaFirefox-91.12.0-150200.152.53.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.12.0-150200.152.53.1.ppc64le.rpm MozillaFirefox-devel-91.12.0-150200.152.53.1.ppc64le.rpm MozillaFirefox-translations-common-91.12.0-150200.152.53.1.ppc64le.rpm MozillaFirefox-translations-other-91.12.0-150200.152.53.1.ppc64le.rpm MozillaFirefox-91.12.0-150200.152.53.1.aarch64.rpm MozillaFirefox-branding-upstream-91.12.0-150200.152.53.1.aarch64.rpm MozillaFirefox-devel-91.12.0-150200.152.53.1.aarch64.rpm MozillaFirefox-translations-common-91.12.0-150200.152.53.1.aarch64.rpm MozillaFirefox-translations-other-91.12.0-150200.152.53.1.aarch64.rpm openSUSE-SLE-15.3-2022-2663 important SUSE Updates openSUSE-SLE 15.3 This update for harfbuzz fixes the following issues: - CVE-2022-33068: Fixed a integer overflow in hb-ot-shape-fallback.cc (bsc#1200900). harfbuzz-2.6.4-150200.3.3.1.src.rpm harfbuzz-devel-2.6.4-150200.3.3.1.x86_64.rpm harfbuzz-tools-2.6.4-150200.3.3.1.x86_64.rpm libharfbuzz-gobject0-2.6.4-150200.3.3.1.x86_64.rpm libharfbuzz-gobject0-32bit-2.6.4-150200.3.3.1.x86_64.rpm libharfbuzz-icu0-2.6.4-150200.3.3.1.x86_64.rpm libharfbuzz-icu0-32bit-2.6.4-150200.3.3.1.x86_64.rpm libharfbuzz-subset0-2.6.4-150200.3.3.1.x86_64.rpm libharfbuzz-subset0-32bit-2.6.4-150200.3.3.1.x86_64.rpm libharfbuzz0-2.6.4-150200.3.3.1.x86_64.rpm libharfbuzz0-32bit-2.6.4-150200.3.3.1.x86_64.rpm typelib-1_0-HarfBuzz-0_0-2.6.4-150200.3.3.1.x86_64.rpm harfbuzz-devel-2.6.4-150200.3.3.1.s390x.rpm harfbuzz-tools-2.6.4-150200.3.3.1.s390x.rpm libharfbuzz-gobject0-2.6.4-150200.3.3.1.s390x.rpm libharfbuzz-icu0-2.6.4-150200.3.3.1.s390x.rpm libharfbuzz-subset0-2.6.4-150200.3.3.1.s390x.rpm libharfbuzz0-2.6.4-150200.3.3.1.s390x.rpm typelib-1_0-HarfBuzz-0_0-2.6.4-150200.3.3.1.s390x.rpm harfbuzz-devel-2.6.4-150200.3.3.1.ppc64le.rpm harfbuzz-tools-2.6.4-150200.3.3.1.ppc64le.rpm libharfbuzz-gobject0-2.6.4-150200.3.3.1.ppc64le.rpm libharfbuzz-icu0-2.6.4-150200.3.3.1.ppc64le.rpm libharfbuzz-subset0-2.6.4-150200.3.3.1.ppc64le.rpm libharfbuzz0-2.6.4-150200.3.3.1.ppc64le.rpm typelib-1_0-HarfBuzz-0_0-2.6.4-150200.3.3.1.ppc64le.rpm harfbuzz-devel-2.6.4-150200.3.3.1.aarch64.rpm harfbuzz-tools-2.6.4-150200.3.3.1.aarch64.rpm libharfbuzz-gobject0-2.6.4-150200.3.3.1.aarch64.rpm libharfbuzz-icu0-2.6.4-150200.3.3.1.aarch64.rpm libharfbuzz-subset0-2.6.4-150200.3.3.1.aarch64.rpm libharfbuzz0-2.6.4-150200.3.3.1.aarch64.rpm typelib-1_0-HarfBuzz-0_0-2.6.4-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2653 important SUSE Updates openSUSE-SLE 15.3 This update for u-boot fixes the following issues: - CVE-2022-33967: Fixed heap overflow in squashfs filesystem implementation (bsc#1201745). - CVE-2022-34835: Fixed stack buffer overflow vulnerability in i2c md command (bsc#1201214). u-boot-2021.01-150300.7.15.1.src.rpm u-boot-tools-2021.01-150300.7.15.1.x86_64.rpm u-boot-tools-2021.01-150300.7.15.1.s390x.rpm u-boot-tools-2021.01-150300.7.15.1.ppc64le.rpm u-boot-avnetultra96rev1-2021.01-150300.7.15.1.aarch64.rpm u-boot-avnetultra96rev1-2021.01-150300.7.15.1.src.rpm u-boot-avnetultra96rev1-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-bananapim64-2021.01-150300.7.15.1.aarch64.rpm u-boot-bananapim64-2021.01-150300.7.15.1.src.rpm u-boot-bananapim64-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-dragonboard410c-2021.01-150300.7.15.1.aarch64.rpm u-boot-dragonboard410c-2021.01-150300.7.15.1.src.rpm u-boot-dragonboard410c-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-dragonboard820c-2021.01-150300.7.15.1.aarch64.rpm u-boot-dragonboard820c-2021.01-150300.7.15.1.src.rpm u-boot-dragonboard820c-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-evb-rk3399-2021.01-150300.7.15.1.aarch64.rpm u-boot-evb-rk3399-2021.01-150300.7.15.1.src.rpm u-boot-evb-rk3399-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-150300.7.15.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-150300.7.15.1.src.rpm u-boot-firefly-rk3399-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-geekbox-2021.01-150300.7.15.1.aarch64.rpm u-boot-geekbox-2021.01-150300.7.15.1.src.rpm u-boot-geekbox-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-hikey-2021.01-150300.7.15.1.aarch64.rpm u-boot-hikey-2021.01-150300.7.15.1.src.rpm u-boot-hikey-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-khadas-vim-2021.01-150300.7.15.1.aarch64.rpm u-boot-khadas-vim-2021.01-150300.7.15.1.src.rpm u-boot-khadas-vim-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-khadas-vim2-2021.01-150300.7.15.1.aarch64.rpm u-boot-khadas-vim2-2021.01-150300.7.15.1.src.rpm u-boot-khadas-vim2-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-libretech-ac-2021.01-150300.7.15.1.aarch64.rpm u-boot-libretech-ac-2021.01-150300.7.15.1.src.rpm u-boot-libretech-ac-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-libretech-cc-2021.01-150300.7.15.1.aarch64.rpm u-boot-libretech-cc-2021.01-150300.7.15.1.src.rpm u-boot-libretech-cc-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-150300.7.15.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-150300.7.15.1.src.rpm u-boot-ls1012afrdmqspi-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-150300.7.15.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-150300.7.15.1.src.rpm u-boot-mvebudb-88f3720-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-150300.7.15.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-150300.7.15.1.src.rpm u-boot-mvebudbarmada8k-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-150300.7.15.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-150300.7.15.1.src.rpm u-boot-mvebuespressobin-88f3720-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-150300.7.15.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-150300.7.15.1.src.rpm u-boot-mvebumcbin-88f8040-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-nanopia64-2021.01-150300.7.15.1.aarch64.rpm u-boot-nanopia64-2021.01-150300.7.15.1.src.rpm u-boot-nanopia64-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-odroid-c2-2021.01-150300.7.15.1.aarch64.rpm u-boot-odroid-c2-2021.01-150300.7.15.1.src.rpm u-boot-odroid-c2-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-odroid-c4-2021.01-150300.7.15.1.aarch64.rpm u-boot-odroid-c4-2021.01-150300.7.15.1.src.rpm u-boot-odroid-c4-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-odroid-n2-2021.01-150300.7.15.1.aarch64.rpm u-boot-odroid-n2-2021.01-150300.7.15.1.src.rpm u-boot-odroid-n2-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-orangepipc2-2021.01-150300.7.15.1.aarch64.rpm u-boot-orangepipc2-2021.01-150300.7.15.1.src.rpm u-boot-orangepipc2-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-p2371-2180-2021.01-150300.7.15.1.aarch64.rpm u-boot-p2371-2180-2021.01-150300.7.15.1.src.rpm u-boot-p2371-2180-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-150300.7.15.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-150300.7.15.1.src.rpm u-boot-p2771-0000-500-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-p3450-0000-2021.01-150300.7.15.1.aarch64.rpm u-boot-p3450-0000-2021.01-150300.7.15.1.src.rpm u-boot-p3450-0000-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-pine64plus-2021.01-150300.7.15.1.aarch64.rpm u-boot-pine64plus-2021.01-150300.7.15.1.src.rpm u-boot-pine64plus-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-pinebook-2021.01-150300.7.15.1.aarch64.rpm u-boot-pinebook-2021.01-150300.7.15.1.src.rpm u-boot-pinebook-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-150300.7.15.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-150300.7.15.1.src.rpm u-boot-pinebook-pro-rk3399-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-pineh64-2021.01-150300.7.15.1.aarch64.rpm u-boot-pineh64-2021.01-150300.7.15.1.src.rpm u-boot-pineh64-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-pinephone-2021.01-150300.7.15.1.aarch64.rpm u-boot-pinephone-2021.01-150300.7.15.1.src.rpm u-boot-pinephone-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-poplar-2021.01-150300.7.15.1.aarch64.rpm u-boot-poplar-2021.01-150300.7.15.1.src.rpm u-boot-poplar-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-150300.7.15.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-150300.7.15.1.src.rpm u-boot-rock-pi-4-rk3399-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-150300.7.15.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-150300.7.15.1.src.rpm u-boot-rock64-rk3328-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-150300.7.15.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-150300.7.15.1.src.rpm u-boot-rock960-rk3399-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-150300.7.15.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-150300.7.15.1.src.rpm u-boot-rockpro64-rk3399-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-rpi3-2021.01-150300.7.15.1.aarch64.rpm u-boot-rpi3-2021.01-150300.7.15.1.src.rpm u-boot-rpi3-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-rpi4-2021.01-150300.7.15.1.aarch64.rpm u-boot-rpi4-2021.01-150300.7.15.1.src.rpm u-boot-rpi4-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-rpiarm64-2021.01-150300.7.15.1.aarch64.rpm u-boot-rpiarm64-2021.01-150300.7.15.1.src.rpm u-boot-rpiarm64-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-tools-2021.01-150300.7.15.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-150300.7.15.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-150300.7.15.1.src.rpm u-boot-xilinxzynqmpvirt-doc-2021.01-150300.7.15.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-150300.7.15.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-150300.7.15.1.src.rpm u-boot-xilinxzynqmpzcu102rev10-doc-2021.01-150300.7.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-2654 important SUSE Updates openSUSE-SLE 15.3 This update for u-boot fixes the following issues: - CVE-2022-34835: Fixed stack buffer overflow vulnerability in i2c md command (bsc#1201214). u-boot-xilinxzynqmpgeneric-2020.01-150200.10.15.1.aarch64.rpm u-boot-xilinxzynqmpgeneric-2020.01-150200.10.15.1.src.rpm u-boot-xilinxzynqmpgeneric-doc-2020.01-150200.10.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-2613 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-parallax fixes the following issues: - Don't use ssh if a command is running on local (bsc#1200833) python-parallax-1.0.6-150200.4.6.1.src.rpm python2-parallax-1.0.6-150200.4.6.1.noarch.rpm python3-parallax-1.0.6-150200.4.6.1.noarch.rpm openSUSE-SLE-15.3-2022-2592 important SUSE Updates openSUSE-SLE 15.3 This update for rubygem-tzinfo fixes the following issues: - CVE-2022-31163: Fixed relative path traversal vulnerability that allows TZInfo::Timezone.get to load arbitrary files (bsc#1201835). ruby2.5-rubygem-tzinfo-1.2.4-150000.3.3.1.x86_64.rpm ruby2.5-rubygem-tzinfo-doc-1.2.4-150000.3.3.1.x86_64.rpm ruby2.5-rubygem-tzinfo-testsuite-1.2.4-150000.3.3.1.x86_64.rpm rubygem-tzinfo-1.2.4-150000.3.3.1.src.rpm ruby2.5-rubygem-tzinfo-1.2.4-150000.3.3.1.s390x.rpm ruby2.5-rubygem-tzinfo-doc-1.2.4-150000.3.3.1.s390x.rpm ruby2.5-rubygem-tzinfo-testsuite-1.2.4-150000.3.3.1.s390x.rpm ruby2.5-rubygem-tzinfo-1.2.4-150000.3.3.1.ppc64le.rpm ruby2.5-rubygem-tzinfo-doc-1.2.4-150000.3.3.1.ppc64le.rpm ruby2.5-rubygem-tzinfo-testsuite-1.2.4-150000.3.3.1.ppc64le.rpm ruby2.5-rubygem-tzinfo-1.2.4-150000.3.3.1.aarch64.rpm ruby2.5-rubygem-tzinfo-doc-1.2.4-150000.3.3.1.aarch64.rpm ruby2.5-rubygem-tzinfo-testsuite-1.2.4-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2970 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Fix KDE Plasma 5 missing binaries in SUSE Linux Enterprise Desktop 15 Service Pack 4 via PackageHub (bsc#1201055) - Affected source packages: libdbusmenu-qt5 xapian-core libdbusmenu-qt5-0.9.3+16.04.20160218-150300.3.3.1.src.rpm libdbusmenu-qt5-2-0.9.3+16.04.20160218-150300.3.3.1.x86_64.rpm libdbusmenu-qt5-2-32bit-0.9.3+16.04.20160218-150300.3.3.1.x86_64.rpm libdbusmenu-qt5-devel-0.9.3+16.04.20160218-150300.3.3.1.x86_64.rpm libdbusmenu-qt5-devel-32bit-0.9.3+16.04.20160218-150300.3.3.1.x86_64.rpm libxapian-devel-1.4.17-150300.3.2.1.x86_64.rpm libxapian30-1.4.17-150300.3.2.1.x86_64.rpm libxapian30-32bit-1.4.17-150300.3.2.1.x86_64.rpm xapian-core-1.4.17-150300.3.2.1.src.rpm xapian-core-1.4.17-150300.3.2.1.x86_64.rpm xapian-core-doc-1.4.17-150300.3.2.1.x86_64.rpm xapian-core-examples-1.4.17-150300.3.2.1.x86_64.rpm libdbusmenu-qt5-2-0.9.3+16.04.20160218-150300.3.3.1.s390x.rpm libdbusmenu-qt5-devel-0.9.3+16.04.20160218-150300.3.3.1.s390x.rpm libxapian-devel-1.4.17-150300.3.2.1.s390x.rpm libxapian30-1.4.17-150300.3.2.1.s390x.rpm xapian-core-1.4.17-150300.3.2.1.s390x.rpm xapian-core-doc-1.4.17-150300.3.2.1.s390x.rpm xapian-core-examples-1.4.17-150300.3.2.1.s390x.rpm libdbusmenu-qt5-2-0.9.3+16.04.20160218-150300.3.3.1.ppc64le.rpm libdbusmenu-qt5-devel-0.9.3+16.04.20160218-150300.3.3.1.ppc64le.rpm libxapian-devel-1.4.17-150300.3.2.1.ppc64le.rpm libxapian30-1.4.17-150300.3.2.1.ppc64le.rpm xapian-core-1.4.17-150300.3.2.1.ppc64le.rpm xapian-core-doc-1.4.17-150300.3.2.1.ppc64le.rpm xapian-core-examples-1.4.17-150300.3.2.1.ppc64le.rpm libdbusmenu-qt5-2-0.9.3+16.04.20160218-150300.3.3.1.aarch64.rpm libdbusmenu-qt5-devel-0.9.3+16.04.20160218-150300.3.3.1.aarch64.rpm libxapian-devel-1.4.17-150300.3.2.1.aarch64.rpm libxapian30-1.4.17-150300.3.2.1.aarch64.rpm xapian-core-1.4.17-150300.3.2.1.aarch64.rpm xapian-core-doc-1.4.17-150300.3.2.1.aarch64.rpm xapian-core-examples-1.4.17-150300.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-2673 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-ujson fixes the following issues: - CVE-2022-31116: Fixed improper decoding of escaped surrogate characters (bsc#1201255). - CVE-2022-31117: Fixed a double free while reallocating a buffer for string decoding (bsc#1201254). python-ujson-1.35-150100.3.5.1.src.rpm python2-ujson-1.35-150100.3.5.1.x86_64.rpm python3-ujson-1.35-150100.3.5.1.x86_64.rpm python2-ujson-1.35-150100.3.5.1.s390x.rpm python3-ujson-1.35-150100.3.5.1.s390x.rpm python2-ujson-1.35-150100.3.5.1.ppc64le.rpm python3-ujson-1.35-150100.3.5.1.ppc64le.rpm python2-ujson-1.35-150100.3.5.1.aarch64.rpm python3-ujson-1.35-150100.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-3319 low SUSE Updates openSUSE-SLE 15.3 This update for perl-DBD-Pg fixes the following issues: - Adjust tests for reltuples being -1 for new relations (bsc#1197797) perl-DBD-Pg-3.10.4-150200.3.3.1.src.rpm perl-DBD-Pg-3.10.4-150200.3.3.1.x86_64.rpm perl-DBD-Pg-3.10.4-150200.3.3.1.s390x.rpm perl-DBD-Pg-3.10.4-150200.3.3.1.ppc64le.rpm perl-DBD-Pg-3.10.4-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3145 moderate SUSE Updates openSUSE-SLE 15.3 This update for perl-LWP-Protocol-https fixes the following issues: - Explicitly add hostname for SNI to start_SSL (bsc#1199718) perl-LWP-Protocol-https-6.06-150000.3.3.1.noarch.rpm perl-LWP-Protocol-https-6.06-150000.3.3.1.src.rpm openSUSE-SLE-15.3-2022-2670 important SUSE Updates openSUSE-SLE 15.3 This update for qpdf fixes the following issues: - CVE-2022-34503: Fixed a heap buffer overflow via the function QPDF:processXRefStream (bsc#1201830). - CVE-2021-36978: Fixed heap-based buffer overflow in Pl_ASCII85Decoder::write (bsc#1188514). libqpdf21-8.0.2-150000.3.5.1.x86_64.rpm qpdf-8.0.2-150000.3.5.1.src.rpm libqpdf21-8.0.2-150000.3.5.1.s390x.rpm libqpdf21-8.0.2-150000.3.5.1.ppc64le.rpm libqpdf21-8.0.2-150000.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-3258 moderate SUSE Updates openSUSE-SLE 15.3 This update for sca-appliance-broker fixes the following issues: - Update setup-sca checks for php8 (bsc#1201011) sca-appliance-broker-1.3.2-150300.3.3.1.noarch.rpm sca-appliance-broker-1.3.2-150300.3.3.1.src.rpm openSUSE-SLE-15.3-2022-2902 moderate SUSE Updates openSUSE-SLE 15.3 This update for Mesa fixes the following issues: - Change default driver from 'iris' back to 'i965' for Intel Gen8-11 hardware; that way we also use the same driver used by X and Mesa (bsc#1200965, bsc#1197045, bsc#1197046) Mesa-20.2.4-150300.59.3.1.src.rpm Mesa-20.2.4-150300.59.3.1.x86_64.rpm Mesa-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-KHR-devel-20.2.4-150300.59.3.1.x86_64.rpm Mesa-devel-20.2.4-150300.59.3.1.x86_64.rpm Mesa-dri-20.2.4-150300.59.3.1.x86_64.rpm Mesa-dri-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-dri-devel-20.2.4-150300.59.3.1.x86_64.rpm Mesa-dri-nouveau-20.2.4-150300.59.3.1.x86_64.rpm Mesa-dri-nouveau-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-drivers-20.2.4-150300.59.3.1.src.rpm Mesa-gallium-20.2.4-150300.59.3.1.x86_64.rpm Mesa-gallium-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libEGL-devel-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libEGL-devel-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libEGL1-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libEGL1-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libGL-devel-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libGL-devel-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libGL1-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libGL1-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libGLESv1_CM-devel-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libGLESv1_CM-devel-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libGLESv2-devel-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libGLESv2-devel-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libGLESv3-devel-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libOpenCL-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libVulkan-devel-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libd3d-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libd3d-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libd3d-devel-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libd3d-devel-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libglapi-devel-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libglapi-devel-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libglapi0-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libglapi0-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-libva-20.2.4-150300.59.3.1.x86_64.rpm Mesa-vulkan-device-select-20.2.4-150300.59.3.1.x86_64.rpm Mesa-vulkan-device-select-32bit-20.2.4-150300.59.3.1.x86_64.rpm Mesa-vulkan-overlay-20.2.4-150300.59.3.1.x86_64.rpm Mesa-vulkan-overlay-32bit-20.2.4-150300.59.3.1.x86_64.rpm libOSMesa-devel-20.2.4-150300.59.3.1.x86_64.rpm libOSMesa-devel-32bit-20.2.4-150300.59.3.1.x86_64.rpm libOSMesa8-20.2.4-150300.59.3.1.x86_64.rpm libOSMesa8-32bit-20.2.4-150300.59.3.1.x86_64.rpm libXvMC_nouveau-20.2.4-150300.59.3.1.x86_64.rpm libXvMC_nouveau-32bit-20.2.4-150300.59.3.1.x86_64.rpm libXvMC_r600-20.2.4-150300.59.3.1.x86_64.rpm libXvMC_r600-32bit-20.2.4-150300.59.3.1.x86_64.rpm libgbm-devel-20.2.4-150300.59.3.1.x86_64.rpm libgbm-devel-32bit-20.2.4-150300.59.3.1.x86_64.rpm libgbm1-20.2.4-150300.59.3.1.x86_64.rpm libgbm1-32bit-20.2.4-150300.59.3.1.x86_64.rpm libvdpau_nouveau-20.2.4-150300.59.3.1.x86_64.rpm libvdpau_nouveau-32bit-20.2.4-150300.59.3.1.x86_64.rpm libvdpau_r300-20.2.4-150300.59.3.1.x86_64.rpm libvdpau_r300-32bit-20.2.4-150300.59.3.1.x86_64.rpm libvdpau_r600-20.2.4-150300.59.3.1.x86_64.rpm libvdpau_r600-32bit-20.2.4-150300.59.3.1.x86_64.rpm libvdpau_radeonsi-20.2.4-150300.59.3.1.x86_64.rpm libvdpau_radeonsi-32bit-20.2.4-150300.59.3.1.x86_64.rpm libvulkan_intel-20.2.4-150300.59.3.1.x86_64.rpm libvulkan_intel-32bit-20.2.4-150300.59.3.1.x86_64.rpm libvulkan_radeon-20.2.4-150300.59.3.1.x86_64.rpm libvulkan_radeon-32bit-20.2.4-150300.59.3.1.x86_64.rpm libxatracker-devel-1.0.0-150300.59.3.1.x86_64.rpm libxatracker2-1.0.0-150300.59.3.1.x86_64.rpm Mesa-20.2.4-150300.59.3.1.s390x.rpm Mesa-KHR-devel-20.2.4-150300.59.3.1.s390x.rpm Mesa-devel-20.2.4-150300.59.3.1.s390x.rpm Mesa-dri-20.2.4-150300.59.3.1.s390x.rpm Mesa-dri-devel-20.2.4-150300.59.3.1.s390x.rpm Mesa-libEGL-devel-20.2.4-150300.59.3.1.s390x.rpm Mesa-libEGL1-20.2.4-150300.59.3.1.s390x.rpm Mesa-libGL-devel-20.2.4-150300.59.3.1.s390x.rpm Mesa-libGL1-20.2.4-150300.59.3.1.s390x.rpm Mesa-libGLESv1_CM-devel-20.2.4-150300.59.3.1.s390x.rpm Mesa-libGLESv2-devel-20.2.4-150300.59.3.1.s390x.rpm Mesa-libGLESv3-devel-20.2.4-150300.59.3.1.s390x.rpm Mesa-libglapi-devel-20.2.4-150300.59.3.1.s390x.rpm Mesa-libglapi0-20.2.4-150300.59.3.1.s390x.rpm libOSMesa-devel-20.2.4-150300.59.3.1.s390x.rpm libOSMesa8-20.2.4-150300.59.3.1.s390x.rpm libgbm-devel-20.2.4-150300.59.3.1.s390x.rpm libgbm1-20.2.4-150300.59.3.1.s390x.rpm Mesa-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-KHR-devel-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-devel-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-dri-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-dri-devel-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-dri-nouveau-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-gallium-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-libEGL-devel-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-libEGL1-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-libGL-devel-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-libGL1-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-libGLESv1_CM-devel-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-libGLESv2-devel-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-libGLESv3-devel-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-libOpenCL-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-libglapi-devel-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-libglapi0-20.2.4-150300.59.3.1.ppc64le.rpm Mesa-libva-20.2.4-150300.59.3.1.ppc64le.rpm libOSMesa-devel-20.2.4-150300.59.3.1.ppc64le.rpm libOSMesa8-20.2.4-150300.59.3.1.ppc64le.rpm libXvMC_nouveau-20.2.4-150300.59.3.1.ppc64le.rpm libXvMC_r600-20.2.4-150300.59.3.1.ppc64le.rpm libgbm-devel-20.2.4-150300.59.3.1.ppc64le.rpm libgbm1-20.2.4-150300.59.3.1.ppc64le.rpm libvdpau_nouveau-20.2.4-150300.59.3.1.ppc64le.rpm libvdpau_r300-20.2.4-150300.59.3.1.ppc64le.rpm libvdpau_r600-20.2.4-150300.59.3.1.ppc64le.rpm libvdpau_radeonsi-20.2.4-150300.59.3.1.ppc64le.rpm libxatracker-devel-1.0.0-150300.59.3.1.ppc64le.rpm libxatracker2-1.0.0-150300.59.3.1.ppc64le.rpm Mesa-20.2.4-150300.59.3.1.aarch64.rpm Mesa-KHR-devel-20.2.4-150300.59.3.1.aarch64.rpm Mesa-devel-20.2.4-150300.59.3.1.aarch64.rpm Mesa-dri-20.2.4-150300.59.3.1.aarch64.rpm Mesa-dri-devel-20.2.4-150300.59.3.1.aarch64.rpm Mesa-dri-nouveau-20.2.4-150300.59.3.1.aarch64.rpm Mesa-dri-vc4-20.2.4-150300.59.3.1.aarch64.rpm Mesa-gallium-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libEGL-devel-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libEGL1-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libGL-devel-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libGL1-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libGLESv1_CM-devel-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libGLESv2-devel-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libGLESv3-devel-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libOpenCL-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libd3d-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libd3d-devel-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libglapi-devel-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libglapi0-20.2.4-150300.59.3.1.aarch64.rpm Mesa-libva-20.2.4-150300.59.3.1.aarch64.rpm libOSMesa-devel-20.2.4-150300.59.3.1.aarch64.rpm libOSMesa8-20.2.4-150300.59.3.1.aarch64.rpm libXvMC_nouveau-20.2.4-150300.59.3.1.aarch64.rpm libXvMC_r600-20.2.4-150300.59.3.1.aarch64.rpm libgbm-devel-20.2.4-150300.59.3.1.aarch64.rpm libgbm1-20.2.4-150300.59.3.1.aarch64.rpm libvdpau_nouveau-20.2.4-150300.59.3.1.aarch64.rpm libvdpau_r300-20.2.4-150300.59.3.1.aarch64.rpm libvdpau_r600-20.2.4-150300.59.3.1.aarch64.rpm libvdpau_radeonsi-20.2.4-150300.59.3.1.aarch64.rpm libxatracker-devel-1.0.0-150300.59.3.1.aarch64.rpm libxatracker2-1.0.0-150300.59.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3682 important SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - CVE-2022-2795: Fixed potential performance degredation due to missing database lookup limits when processing large delegations (bsc#1203614). - CVE-2022-38177: Fixed a memory leak that could be externally triggered in the DNSSEC verification code for the ECDSA algorithm (bsc#1203619). - CVE-2022-38178: Fixed memory leaks that could be externally triggered in the DNSSEC verification code for the EdDSA algorithm (bsc#1203620). Bugfixes: - Changed ownership of /var/lib/named/master from named:named to root:root (bsc#1201247) bind-9.16.6-150300.22.21.2.src.rpm bind-9.16.6-150300.22.21.2.x86_64.rpm bind-chrootenv-9.16.6-150300.22.21.2.x86_64.rpm bind-devel-9.16.6-150300.22.21.2.x86_64.rpm bind-doc-9.16.6-150300.22.21.2.noarch.rpm bind-utils-9.16.6-150300.22.21.2.x86_64.rpm libbind9-1600-9.16.6-150300.22.21.2.x86_64.rpm libdns1605-9.16.6-150300.22.21.2.x86_64.rpm libirs-devel-9.16.6-150300.22.21.2.x86_64.rpm libirs1601-9.16.6-150300.22.21.2.x86_64.rpm libisc1606-9.16.6-150300.22.21.2.x86_64.rpm libisccc1600-9.16.6-150300.22.21.2.x86_64.rpm libisccfg1600-9.16.6-150300.22.21.2.x86_64.rpm libns1604-9.16.6-150300.22.21.2.x86_64.rpm python3-bind-9.16.6-150300.22.21.2.noarch.rpm bind-9.16.6-150300.22.21.2.s390x.rpm bind-chrootenv-9.16.6-150300.22.21.2.s390x.rpm bind-devel-9.16.6-150300.22.21.2.s390x.rpm bind-utils-9.16.6-150300.22.21.2.s390x.rpm libbind9-1600-9.16.6-150300.22.21.2.s390x.rpm libdns1605-9.16.6-150300.22.21.2.s390x.rpm libirs-devel-9.16.6-150300.22.21.2.s390x.rpm libirs1601-9.16.6-150300.22.21.2.s390x.rpm libisc1606-9.16.6-150300.22.21.2.s390x.rpm libisccc1600-9.16.6-150300.22.21.2.s390x.rpm libisccfg1600-9.16.6-150300.22.21.2.s390x.rpm libns1604-9.16.6-150300.22.21.2.s390x.rpm bind-9.16.6-150300.22.21.2.ppc64le.rpm bind-chrootenv-9.16.6-150300.22.21.2.ppc64le.rpm bind-devel-9.16.6-150300.22.21.2.ppc64le.rpm bind-utils-9.16.6-150300.22.21.2.ppc64le.rpm libbind9-1600-9.16.6-150300.22.21.2.ppc64le.rpm libdns1605-9.16.6-150300.22.21.2.ppc64le.rpm libirs-devel-9.16.6-150300.22.21.2.ppc64le.rpm libirs1601-9.16.6-150300.22.21.2.ppc64le.rpm libisc1606-9.16.6-150300.22.21.2.ppc64le.rpm libisccc1600-9.16.6-150300.22.21.2.ppc64le.rpm libisccfg1600-9.16.6-150300.22.21.2.ppc64le.rpm libns1604-9.16.6-150300.22.21.2.ppc64le.rpm bind-9.16.6-150300.22.21.2.aarch64.rpm bind-chrootenv-9.16.6-150300.22.21.2.aarch64.rpm bind-devel-9.16.6-150300.22.21.2.aarch64.rpm bind-utils-9.16.6-150300.22.21.2.aarch64.rpm libbind9-1600-9.16.6-150300.22.21.2.aarch64.rpm libdns1605-9.16.6-150300.22.21.2.aarch64.rpm libirs-devel-9.16.6-150300.22.21.2.aarch64.rpm libirs1601-9.16.6-150300.22.21.2.aarch64.rpm libisc1606-9.16.6-150300.22.21.2.aarch64.rpm libisccc1600-9.16.6-150300.22.21.2.aarch64.rpm libisccfg1600-9.16.6-150300.22.21.2.aarch64.rpm libns1604-9.16.6-150300.22.21.2.aarch64.rpm openSUSE-SLE-15.3-2022-3200 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint fixes the following issues: - Add oddjob-gpupdate whitelisting for D-Bus (bsc#1188680) - Adjust NetworkManager priv helper spelling in whitelisting (bsc#1201207) rpmlint-1.10-150000.7.58.1.noarch.rpm rpmlint-1.10-150000.7.58.1.src.rpm openSUSE-SLE-15.3-2022-2612 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-kiwi_metainfo_helper fixes the following issues: - Generate OS_VERSION_NO_DASH based on os-release VERSION, to replace dash with space in OS name (bsc#1195061) - Improve examples in README. obs-service-kiwi_metainfo_helper-0.6-150000.1.18.1.noarch.rpm obs-service-kiwi_metainfo_helper-0.6-150000.1.18.1.src.rpm openSUSE-SLE-15.3-2022-2608 important SUSE Updates openSUSE-SLE 15.3 This update for booth fixes the following issues: - CVE-2022-2553: authfile directive in booth config file is completely ignored (bsc#1201946). booth-1.0-150300.18.3.1.src.rpm booth-1.0-150300.18.3.1.x86_64.rpm booth-test-1.0-150300.18.3.1.x86_64.rpm booth-1.0-150300.18.3.1.s390x.rpm booth-test-1.0-150300.18.3.1.s390x.rpm booth-1.0-150300.18.3.1.ppc64le.rpm booth-test-1.0-150300.18.3.1.ppc64le.rpm booth-1.0-150300.18.3.1.aarch64.rpm booth-test-1.0-150300.18.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2944 important SUSE Updates openSUSE-SLE 15.3 This update for procps fixes the following issues: - Fix 'free' command reporting misleading "used" value (bsc#1181475) libprocps7-3.3.15-150000.7.25.1.x86_64.rpm procps-3.3.15-150000.7.25.1.src.rpm procps-3.3.15-150000.7.25.1.x86_64.rpm procps-devel-3.3.15-150000.7.25.1.x86_64.rpm libprocps7-3.3.15-150000.7.25.1.s390x.rpm procps-3.3.15-150000.7.25.1.s390x.rpm procps-devel-3.3.15-150000.7.25.1.s390x.rpm libprocps7-3.3.15-150000.7.25.1.ppc64le.rpm procps-3.3.15-150000.7.25.1.ppc64le.rpm procps-devel-3.3.15-150000.7.25.1.ppc64le.rpm libprocps7-3.3.15-150000.7.25.1.aarch64.rpm procps-3.3.15-150000.7.25.1.aarch64.rpm procps-devel-3.3.15-150000.7.25.1.aarch64.rpm openSUSE-SLE-15.3-2022-2590 critical SUSE Updates openSUSE-SLE 15.3 This update provides the following changes: - Deliver missing binary suse-migration-pre-checks suse-migration-pre-checks-2.0.33-150000.1.48.1.noarch.rpm suse-migration-rpm-1.0.1-150000.1.14.1.src.rpm suse-migration-rpm-1.0.1-150000.1.14.1.x86_64.rpm suse-migration-services-2.0.33-150000.1.48.1.noarch.rpm suse-migration-services-2.0.33-150000.1.48.1.src.rpm suse-migration-rpm-1.0.1-150000.1.14.1.s390x.rpm suse-migration-rpm-1.0.1-150000.1.14.1.ppc64le.rpm suse-migration-rpm-1.0.1-150000.1.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-3032 moderate SUSE Updates openSUSE-SLE 15.3 This update for libtcnative-1-0 fixes the following issues: - Avoid crash reading session ID after handshake failure. (bsc#1199170) libtcnative-1-0-1.2.23-150100.3.6.1.src.rpm libtcnative-1-0-1.2.23-150100.3.6.1.x86_64.rpm libtcnative-1-0-devel-1.2.23-150100.3.6.1.x86_64.rpm libtcnative-1-0-1.2.23-150100.3.6.1.s390x.rpm libtcnative-1-0-devel-1.2.23-150100.3.6.1.s390x.rpm libtcnative-1-0-1.2.23-150100.3.6.1.ppc64le.rpm libtcnative-1-0-devel-1.2.23-150100.3.6.1.ppc64le.rpm libtcnative-1-0-1.2.23-150100.3.6.1.aarch64.rpm libtcnative-1-0-devel-1.2.23-150100.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2820 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - Update to version 2.36.5 (bsc#1201980): - Add support for PAC proxy in the WebDriver implementation. - Fix video playback when loaded through custom URIs, this fixes video playback in the Yelp documentation browser. - Fix WebKitWebView::context-menu when using GTK4. - Fix LTO builds with GCC. - Fix several crashes and rendering issues. - Security fixes: - CVE-2022-32792: Fixed processing maliciously crafted web content may lead to arbitrary code execution. - CVE-2022-32816: Fixed visiting a website that frames malicious content may lead to UI spoofing. libjavascriptcoregtk-4_0-18-2.36.5-150200.41.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.36.5-150200.41.1.x86_64.rpm libwebkit2gtk-4_0-37-2.36.5-150200.41.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.36.5-150200.41.1.x86_64.rpm libwebkit2gtk3-lang-2.36.5-150200.41.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.36.5-150200.41.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.36.5-150200.41.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.5-150200.41.1.x86_64.rpm webkit-jsc-4-2.36.5-150200.41.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.36.5-150200.41.1.x86_64.rpm webkit2gtk3-2.36.5-150200.41.1.src.rpm webkit2gtk3-devel-2.36.5-150200.41.1.x86_64.rpm webkit2gtk3-minibrowser-2.36.5-150200.41.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.36.5-150200.41.1.s390x.rpm libwebkit2gtk-4_0-37-2.36.5-150200.41.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.36.5-150200.41.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.36.5-150200.41.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.5-150200.41.1.s390x.rpm webkit-jsc-4-2.36.5-150200.41.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.36.5-150200.41.1.s390x.rpm webkit2gtk3-devel-2.36.5-150200.41.1.s390x.rpm webkit2gtk3-minibrowser-2.36.5-150200.41.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.36.5-150200.41.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.36.5-150200.41.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.36.5-150200.41.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.36.5-150200.41.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.5-150200.41.1.ppc64le.rpm webkit-jsc-4-2.36.5-150200.41.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.36.5-150200.41.1.ppc64le.rpm webkit2gtk3-devel-2.36.5-150200.41.1.ppc64le.rpm webkit2gtk3-minibrowser-2.36.5-150200.41.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.36.5-150200.41.1.aarch64.rpm libwebkit2gtk-4_0-37-2.36.5-150200.41.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.5-150200.41.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.36.5-150200.41.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.5-150200.41.1.aarch64.rpm webkit-jsc-4-2.36.5-150200.41.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.36.5-150200.41.1.aarch64.rpm webkit2gtk3-devel-2.36.5-150200.41.1.aarch64.rpm webkit2gtk3-minibrowser-2.36.5-150200.41.1.aarch64.rpm openSUSE-SLE-15.3-2022-2996 moderate SUSE Updates openSUSE-SLE 15.3 This update for gdk-pixbuf fixes the following issues: - CVE-2021-46829: Fixed overflow when compositing or clearing frames (bsc#1201826). gdk-pixbuf-2.40.0-150200.3.6.1.src.rpm gdk-pixbuf-devel-2.40.0-150200.3.6.1.x86_64.rpm gdk-pixbuf-devel-32bit-2.40.0-150200.3.6.1.x86_64.rpm gdk-pixbuf-lang-2.40.0-150200.3.6.1.noarch.rpm gdk-pixbuf-query-loaders-2.40.0-150200.3.6.1.x86_64.rpm gdk-pixbuf-query-loaders-32bit-2.40.0-150200.3.6.1.x86_64.rpm gdk-pixbuf-thumbnailer-2.40.0-150200.3.6.1.x86_64.rpm libgdk_pixbuf-2_0-0-2.40.0-150200.3.6.1.x86_64.rpm libgdk_pixbuf-2_0-0-32bit-2.40.0-150200.3.6.1.x86_64.rpm typelib-1_0-GdkPixbuf-2_0-2.40.0-150200.3.6.1.x86_64.rpm typelib-1_0-GdkPixdata-2_0-2.40.0-150200.3.6.1.x86_64.rpm gdk-pixbuf-devel-2.40.0-150200.3.6.1.s390x.rpm gdk-pixbuf-query-loaders-2.40.0-150200.3.6.1.s390x.rpm gdk-pixbuf-thumbnailer-2.40.0-150200.3.6.1.s390x.rpm libgdk_pixbuf-2_0-0-2.40.0-150200.3.6.1.s390x.rpm typelib-1_0-GdkPixbuf-2_0-2.40.0-150200.3.6.1.s390x.rpm typelib-1_0-GdkPixdata-2_0-2.40.0-150200.3.6.1.s390x.rpm gdk-pixbuf-devel-2.40.0-150200.3.6.1.ppc64le.rpm gdk-pixbuf-query-loaders-2.40.0-150200.3.6.1.ppc64le.rpm gdk-pixbuf-thumbnailer-2.40.0-150200.3.6.1.ppc64le.rpm libgdk_pixbuf-2_0-0-2.40.0-150200.3.6.1.ppc64le.rpm typelib-1_0-GdkPixbuf-2_0-2.40.0-150200.3.6.1.ppc64le.rpm typelib-1_0-GdkPixdata-2_0-2.40.0-150200.3.6.1.ppc64le.rpm gdk-pixbuf-devel-2.40.0-150200.3.6.1.aarch64.rpm gdk-pixbuf-query-loaders-2.40.0-150200.3.6.1.aarch64.rpm gdk-pixbuf-thumbnailer-2.40.0-150200.3.6.1.aarch64.rpm libgdk_pixbuf-2_0-0-2.40.0-150200.3.6.1.aarch64.rpm typelib-1_0-GdkPixbuf-2_0-2.40.0-150200.3.6.1.aarch64.rpm typelib-1_0-GdkPixdata-2_0-2.40.0-150200.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3008 moderate SUSE Updates openSUSE-SLE 15.3 This update for rsyslog fixes the following issues: - Fix memory access violation issue in qDeqLinkedList during shutdown (bsc#1199283) rsyslog-8.2106.0-150200.4.32.1.src.rpm rsyslog-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-diag-tools-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-doc-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-dbi-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-gssapi-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-gtls-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-mysql-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-omtcl-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-ossl-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-pgsql-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-relp-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-snmp-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.32.1.x86_64.rpm rsyslog-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-diag-tools-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-doc-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-dbi-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-gssapi-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-gtls-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-mysql-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-omtcl-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-ossl-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-pgsql-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-relp-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-snmp-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.32.1.s390x.rpm rsyslog-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-diag-tools-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-doc-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-dbi-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-gssapi-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-gtls-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-mysql-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-omtcl-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-ossl-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-pgsql-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-relp-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-snmp-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.32.1.ppc64le.rpm rsyslog-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-diag-tools-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-doc-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-dbi-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-gssapi-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-gtls-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-mysql-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-omtcl-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-ossl-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-pgsql-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-relp-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-snmp-8.2106.0-150200.4.32.1.aarch64.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.32.1.aarch64.rpm openSUSE-SLE-15.3-2022-2748 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 91.12 * changed: Support for Google Talk chat accounts removed * fixed: OpenPGP signatures were broken when "Primary Password" dialog remained open * fixed: Various security fixes - Security fixes (MFSA 2022-31) (bsc#1201758): - CVE-2022-36319: Fixed mouse Position spoofing with CSS transforms (bmo#1737722) - CVE-2022-36318: Fixed directory indexes for bundled resources reflected URL parameters (bmo#1771774) MozillaThunderbird-91.12.0-150200.8.79.1.src.rpm MozillaThunderbird-91.12.0-150200.8.79.1.x86_64.rpm MozillaThunderbird-translations-common-91.12.0-150200.8.79.1.x86_64.rpm MozillaThunderbird-translations-other-91.12.0-150200.8.79.1.x86_64.rpm MozillaThunderbird-91.12.0-150200.8.79.1.s390x.rpm MozillaThunderbird-translations-common-91.12.0-150200.8.79.1.s390x.rpm MozillaThunderbird-translations-other-91.12.0-150200.8.79.1.s390x.rpm MozillaThunderbird-91.12.0-150200.8.79.1.ppc64le.rpm MozillaThunderbird-translations-common-91.12.0-150200.8.79.1.ppc64le.rpm MozillaThunderbird-translations-other-91.12.0-150200.8.79.1.ppc64le.rpm MozillaThunderbird-91.12.0-150200.8.79.1.aarch64.rpm MozillaThunderbird-translations-common-91.12.0-150200.8.79.1.aarch64.rpm MozillaThunderbird-translations-other-91.12.0-150200.8.79.1.aarch64.rpm openSUSE-SLE-15.3-2022-3219 moderate SUSE Updates openSUSE-SLE 15.3 This update for sysconfig fixes the following issues: - netconfig: remove sed dependency - netconfig/dns-resolver: remove search limit of 6 domains (bsc#1199093) - netconfig: cleanup /var/run leftovers (bsc#1194557) - netconfig: update ntp man page documentation, fix typos - netconfig: revert NM default policy change change (bsc#1185882) With the change to the default policy, netconfig with NetworkManager as network.service accepted settings from all services/programs directly instead only from NetworkManager, where plugins/services have to deliver their settings to apply them. - Also support service(network) provides sysconfig-0.85.9-150200.12.1.src.rpm sysconfig-0.85.9-150200.12.1.x86_64.rpm sysconfig-netconfig-0.85.9-150200.12.1.x86_64.rpm sysconfig-0.85.9-150200.12.1.s390x.rpm sysconfig-netconfig-0.85.9-150200.12.1.s390x.rpm sysconfig-0.85.9-150200.12.1.ppc64le.rpm sysconfig-netconfig-0.85.9-150200.12.1.ppc64le.rpm sysconfig-0.85.9-150200.12.1.aarch64.rpm sysconfig-netconfig-0.85.9-150200.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-3095 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issues: - Added data for 4_12_14-150000_150_92, 4_12_14-150100_197_114, 5_14_21-150400_22, 5_3_18-150200_24_115, 5_3_18-150300_59_68, 5_3_18-150300_59_71, 5_3_18-150300_59_76. (bsc#1020320) lifecycle-data-sle-module-live-patching-15-150000.4.78.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-150000.4.78.1.src.rpm openSUSE-SLE-15.3-2022-3223 moderate SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: libzypp: - Improve handling of package locks, allowing to reset the status of its initial state (bsc#1199895) - Fix issues when receiving exceptions from curl_easy_cleanup (bsc#1201092) - Don't auto-flag kernel-firmware as 'reboot-needed' (bsc#1200993) - Remove Medianetwork and its dependent code. First reason for this is that MediaNetwork was just meant as a way to test the new CURL based downloaded. Second the Provide API is going to completely replace the current media backend. zypper: - Truncate the 'Name' column when using `zypper lr`, if the table is wider than the terminal (bsc#1201638) - Reject install/remove modifier without argument (bsc#1201576) - zypper-download: Handle unresolvable arguments as errors - Put signing key supplying repository name in quotes libzypp-17.31.0-150200.42.1.src.rpm True libzypp-17.31.0-150200.42.1.x86_64.rpm True libzypp-devel-17.31.0-150200.42.1.x86_64.rpm True libzypp-devel-doc-17.31.0-150200.42.1.x86_64.rpm True zypper-1.14.55-150200.36.1.src.rpm True zypper-1.14.55-150200.36.1.x86_64.rpm True zypper-aptitude-1.14.55-150200.36.1.noarch.rpm True zypper-log-1.14.55-150200.36.1.noarch.rpm True zypper-needs-restarting-1.14.55-150200.36.1.noarch.rpm True libzypp-17.31.0-150200.42.1.s390x.rpm True libzypp-devel-17.31.0-150200.42.1.s390x.rpm True libzypp-devel-doc-17.31.0-150200.42.1.s390x.rpm True zypper-1.14.55-150200.36.1.s390x.rpm True libzypp-17.31.0-150200.42.1.ppc64le.rpm True libzypp-devel-17.31.0-150200.42.1.ppc64le.rpm True libzypp-devel-doc-17.31.0-150200.42.1.ppc64le.rpm True zypper-1.14.55-150200.36.1.ppc64le.rpm True libzypp-17.31.0-150200.42.1.aarch64.rpm True libzypp-devel-17.31.0-150200.42.1.aarch64.rpm True libzypp-devel-doc-17.31.0-150200.42.1.aarch64.rpm True zypper-1.14.55-150200.36.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2971 moderate SUSE Updates openSUSE-SLE 15.3 This optional update provides the following changes: - Fix KDE Plasma 5 missing binaries in SUSE Linux Enterprise Desktop 15 Service Pack 4 via PackageHub (bsc#1201055) - Affected source packages: libgepub libdmtx libdmtx-0.7.4-150000.3.2.1.src.rpm libdmtx-devel-0.7.4-150000.3.2.1.x86_64.rpm libdmtx0-0.7.4-150000.3.2.1.x86_64.rpm libdmtx0-32bit-0.7.4-150000.3.2.1.x86_64.rpm libgepub-0.6.0-150200.3.2.1.src.rpm libgepub-0_6-0-0.6.0-150200.3.2.1.x86_64.rpm libgepub-devel-0.6.0-150200.3.2.1.x86_64.rpm typelib-1_0-Gepub-0_6-0.6.0-150200.3.2.1.x86_64.rpm libdmtx-devel-0.7.4-150000.3.2.1.s390x.rpm libdmtx0-0.7.4-150000.3.2.1.s390x.rpm libgepub-0_6-0-0.6.0-150200.3.2.1.s390x.rpm libgepub-devel-0.6.0-150200.3.2.1.s390x.rpm typelib-1_0-Gepub-0_6-0.6.0-150200.3.2.1.s390x.rpm libdmtx-devel-0.7.4-150000.3.2.1.ppc64le.rpm libdmtx0-0.7.4-150000.3.2.1.ppc64le.rpm libgepub-0_6-0-0.6.0-150200.3.2.1.ppc64le.rpm libgepub-devel-0.6.0-150200.3.2.1.ppc64le.rpm typelib-1_0-Gepub-0_6-0.6.0-150200.3.2.1.ppc64le.rpm libdmtx-devel-0.7.4-150000.3.2.1.aarch64.rpm libdmtx0-0.7.4-150000.3.2.1.aarch64.rpm libgepub-0_6-0-0.6.0-150200.3.2.1.aarch64.rpm libgepub-devel-0.6.0-150200.3.2.1.aarch64.rpm typelib-1_0-Gepub-0_6-0.6.0-150200.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-3276 moderate SUSE Updates openSUSE-SLE 15.3 Implement ECO jsc#SLE-20950 to fix the channel configuration for libeconf-devel having L3 support (instead of unsupported). libeconf-0.4.4+git20220104.962774f-150300.3.8.1.src.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.8.1.x86_64.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.8.1.x86_64.rpm libeconf0-32bit-0.4.4+git20220104.962774f-150300.3.8.1.x86_64.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.8.1.s390x.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.8.1.s390x.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.8.1.ppc64le.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.8.1.ppc64le.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.8.1.aarch64.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-3107 moderate SUSE Updates openSUSE-SLE 15.3 This update for gimp fixes the following issues: - CVE-2022-32990: Fixed an unhandled exception which may lead to denial of service (bsc#1201192). gimp-2.10.12-150300.9.6.1.src.rpm gimp-2.10.12-150300.9.6.1.x86_64.rpm gimp-devel-2.10.12-150300.9.6.1.x86_64.rpm gimp-lang-2.10.12-150300.9.6.1.noarch.rpm gimp-plugin-aa-2.10.12-150300.9.6.1.x86_64.rpm libgimp-2_0-0-2.10.12-150300.9.6.1.x86_64.rpm libgimp-2_0-0-32bit-2.10.12-150300.9.6.1.x86_64.rpm libgimpui-2_0-0-2.10.12-150300.9.6.1.x86_64.rpm libgimpui-2_0-0-32bit-2.10.12-150300.9.6.1.x86_64.rpm gimp-2.10.12-150300.9.6.1.s390x.rpm gimp-devel-2.10.12-150300.9.6.1.s390x.rpm gimp-plugin-aa-2.10.12-150300.9.6.1.s390x.rpm libgimp-2_0-0-2.10.12-150300.9.6.1.s390x.rpm libgimpui-2_0-0-2.10.12-150300.9.6.1.s390x.rpm gimp-2.10.12-150300.9.6.1.ppc64le.rpm gimp-devel-2.10.12-150300.9.6.1.ppc64le.rpm gimp-plugin-aa-2.10.12-150300.9.6.1.ppc64le.rpm libgimp-2_0-0-2.10.12-150300.9.6.1.ppc64le.rpm libgimpui-2_0-0-2.10.12-150300.9.6.1.ppc64le.rpm gimp-2.10.12-150300.9.6.1.aarch64.rpm gimp-devel-2.10.12-150300.9.6.1.aarch64.rpm gimp-plugin-aa-2.10.12-150300.9.6.1.aarch64.rpm libgimp-2_0-0-2.10.12-150300.9.6.1.aarch64.rpm libgimpui-2_0-0-2.10.12-150300.9.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2827 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36557: Fixed race condition between the VT_DISALLOCATE ioctl and closing/opening of ttys that could lead to a use-after-free (bnc#1201429). - CVE-2020-36558: Fixed race condition involving VT_RESIZEX that could lead to a NULL pointer dereference and general protection fault (bnc#1200910). - CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO (bnc#1201635). - CVE-2021-33656: Fixed out of bounds write with ioctl PIO_FONT (bnc#1201636). - CVE-2022-1462: Fixed an out-of-bounds read flaw in the TeleTYpe subsystem (bnc#1198829). - CVE-2022-20166: Fixed possible out of bounds write due to sprintf unsafety that could cause local escalation of privilege (bnc#1200598). - CVE-2022-36946: Fixed incorrect packet truncation in nfqnl_mangle() that could lead to remote DoS (bnc#1201940). The following non-security bugs were fixed: - cifs: On cifs_reconnect, resolve the hostname again (bsc#1201926). - cifs: Simplify reconnect code when dfs upcall is enabled (bsc#1201926). - cifs: To match file servers, make sure the server hostname matches (bsc#1201926). - cifs: fix memory leak of smb3_fs_context_dup::server_hostname (bsc#1201926). - cifs: set a minimum of 120s for next dns resolution (bsc#1201926). - cifs: use the expiry output of dns_query to schedule next resolution (bsc#1201926). - kvm: emulate: Fix SETcc emulation function offsets with SLS (bsc#1201930). - kvm: emulate: do not adjust size of fastop and setcc subroutines (bsc#1201930). - rpm/*.spec.in: remove backtick usage - rpm/constraints.in: skip SLOW_DISK workers for kernel-source - rpm/kernel-obs-build.spec.in: Also depend on dracut-systemd (bsc#1195775) - rpm/kernel-obs-build.spec.in: add systemd-initrd and terminfo dracut module (bsc#1195775) - rpm/kernel-obs-build.spec.in: use default dracut modules (bsc#1195926, bsc#1198484) - x86/entry: Remove skip_r11rcx (bsc#1201644). kernel-debug-4.12.14-150100.197.120.1.nosrc.rpm True kernel-debug-base-4.12.14-150100.197.120.1.x86_64.rpm True kernel-default-4.12.14-150100.197.120.1.nosrc.rpm True kernel-kvmsmall-4.12.14-150100.197.120.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-150100.197.120.1.x86_64.rpm True kernel-vanilla-4.12.14-150100.197.120.1.nosrc.rpm True kernel-vanilla-4.12.14-150100.197.120.1.x86_64.rpm True kernel-vanilla-base-4.12.14-150100.197.120.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-150100.197.120.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.120.1.x86_64.rpm True kernel-default-man-4.12.14-150100.197.120.1.s390x.rpm True kernel-vanilla-4.12.14-150100.197.120.1.s390x.rpm True kernel-vanilla-base-4.12.14-150100.197.120.1.s390x.rpm True kernel-vanilla-devel-4.12.14-150100.197.120.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.120.1.s390x.rpm True kernel-zfcpdump-4.12.14-150100.197.120.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-150100.197.120.1.s390x.rpm True kernel-debug-base-4.12.14-150100.197.120.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.120.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-150100.197.120.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-150100.197.120.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.120.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.120.1.aarch64.rpm True kernel-vanilla-base-4.12.14-150100.197.120.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-150100.197.120.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.120.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2982 moderate SUSE Updates openSUSE-SLE 15.3 This update for util-linux fixes the following issues: - su: Change owner and mode for pty (bsc#1200842) - agetty: Resolve tty name even if stdin is specified (bsc#1197178) - libmount: When moving a mount point, update all sub mount entries in utab (bsc#1198731) - mesg: use only stat() to get the current terminal status (bsc#1200842) libblkid-devel-2.36.2-150300.4.23.1.x86_64.rpm libblkid-devel-32bit-2.36.2-150300.4.23.1.x86_64.rpm libblkid-devel-static-2.36.2-150300.4.23.1.x86_64.rpm libblkid1-2.36.2-150300.4.23.1.x86_64.rpm libblkid1-32bit-2.36.2-150300.4.23.1.x86_64.rpm libfdisk-devel-2.36.2-150300.4.23.1.x86_64.rpm libfdisk-devel-32bit-2.36.2-150300.4.23.1.x86_64.rpm libfdisk-devel-static-2.36.2-150300.4.23.1.x86_64.rpm libfdisk1-2.36.2-150300.4.23.1.x86_64.rpm libfdisk1-32bit-2.36.2-150300.4.23.1.x86_64.rpm libmount-devel-2.36.2-150300.4.23.1.x86_64.rpm libmount-devel-32bit-2.36.2-150300.4.23.1.x86_64.rpm libmount-devel-static-2.36.2-150300.4.23.1.x86_64.rpm libmount1-2.36.2-150300.4.23.1.x86_64.rpm libmount1-32bit-2.36.2-150300.4.23.1.x86_64.rpm libsmartcols-devel-2.36.2-150300.4.23.1.x86_64.rpm libsmartcols-devel-32bit-2.36.2-150300.4.23.1.x86_64.rpm libsmartcols-devel-static-2.36.2-150300.4.23.1.x86_64.rpm libsmartcols1-2.36.2-150300.4.23.1.x86_64.rpm libsmartcols1-32bit-2.36.2-150300.4.23.1.x86_64.rpm libuuid-devel-2.36.2-150300.4.23.1.x86_64.rpm libuuid-devel-32bit-2.36.2-150300.4.23.1.x86_64.rpm libuuid-devel-static-2.36.2-150300.4.23.1.x86_64.rpm libuuid1-2.36.2-150300.4.23.1.x86_64.rpm libuuid1-32bit-2.36.2-150300.4.23.1.x86_64.rpm python3-libmount-2.36.2-150300.4.23.1.src.rpm python3-libmount-2.36.2-150300.4.23.1.x86_64.rpm util-linux-2.36.2-150300.4.23.1.src.rpm util-linux-2.36.2-150300.4.23.1.x86_64.rpm util-linux-lang-2.36.2-150300.4.23.1.noarch.rpm util-linux-systemd-2.36.2-150300.4.23.1.src.rpm util-linux-systemd-2.36.2-150300.4.23.1.x86_64.rpm uuidd-2.36.2-150300.4.23.1.x86_64.rpm libblkid-devel-2.36.2-150300.4.23.1.s390x.rpm libblkid-devel-static-2.36.2-150300.4.23.1.s390x.rpm libblkid1-2.36.2-150300.4.23.1.s390x.rpm libfdisk-devel-2.36.2-150300.4.23.1.s390x.rpm libfdisk-devel-static-2.36.2-150300.4.23.1.s390x.rpm libfdisk1-2.36.2-150300.4.23.1.s390x.rpm libmount-devel-2.36.2-150300.4.23.1.s390x.rpm libmount-devel-static-2.36.2-150300.4.23.1.s390x.rpm libmount1-2.36.2-150300.4.23.1.s390x.rpm libsmartcols-devel-2.36.2-150300.4.23.1.s390x.rpm libsmartcols-devel-static-2.36.2-150300.4.23.1.s390x.rpm libsmartcols1-2.36.2-150300.4.23.1.s390x.rpm libuuid-devel-2.36.2-150300.4.23.1.s390x.rpm libuuid-devel-static-2.36.2-150300.4.23.1.s390x.rpm libuuid1-2.36.2-150300.4.23.1.s390x.rpm python3-libmount-2.36.2-150300.4.23.1.s390x.rpm util-linux-2.36.2-150300.4.23.1.s390x.rpm util-linux-systemd-2.36.2-150300.4.23.1.s390x.rpm uuidd-2.36.2-150300.4.23.1.s390x.rpm libblkid-devel-2.36.2-150300.4.23.1.ppc64le.rpm libblkid-devel-static-2.36.2-150300.4.23.1.ppc64le.rpm libblkid1-2.36.2-150300.4.23.1.ppc64le.rpm libfdisk-devel-2.36.2-150300.4.23.1.ppc64le.rpm libfdisk-devel-static-2.36.2-150300.4.23.1.ppc64le.rpm libfdisk1-2.36.2-150300.4.23.1.ppc64le.rpm libmount-devel-2.36.2-150300.4.23.1.ppc64le.rpm libmount-devel-static-2.36.2-150300.4.23.1.ppc64le.rpm libmount1-2.36.2-150300.4.23.1.ppc64le.rpm libsmartcols-devel-2.36.2-150300.4.23.1.ppc64le.rpm libsmartcols-devel-static-2.36.2-150300.4.23.1.ppc64le.rpm libsmartcols1-2.36.2-150300.4.23.1.ppc64le.rpm libuuid-devel-2.36.2-150300.4.23.1.ppc64le.rpm libuuid-devel-static-2.36.2-150300.4.23.1.ppc64le.rpm libuuid1-2.36.2-150300.4.23.1.ppc64le.rpm python3-libmount-2.36.2-150300.4.23.1.ppc64le.rpm util-linux-2.36.2-150300.4.23.1.ppc64le.rpm util-linux-systemd-2.36.2-150300.4.23.1.ppc64le.rpm uuidd-2.36.2-150300.4.23.1.ppc64le.rpm libblkid-devel-2.36.2-150300.4.23.1.aarch64.rpm libblkid-devel-static-2.36.2-150300.4.23.1.aarch64.rpm libblkid1-2.36.2-150300.4.23.1.aarch64.rpm libfdisk-devel-2.36.2-150300.4.23.1.aarch64.rpm libfdisk-devel-static-2.36.2-150300.4.23.1.aarch64.rpm libfdisk1-2.36.2-150300.4.23.1.aarch64.rpm libmount-devel-2.36.2-150300.4.23.1.aarch64.rpm libmount-devel-static-2.36.2-150300.4.23.1.aarch64.rpm libmount1-2.36.2-150300.4.23.1.aarch64.rpm libsmartcols-devel-2.36.2-150300.4.23.1.aarch64.rpm libsmartcols-devel-static-2.36.2-150300.4.23.1.aarch64.rpm libsmartcols1-2.36.2-150300.4.23.1.aarch64.rpm libuuid-devel-2.36.2-150300.4.23.1.aarch64.rpm libuuid-devel-static-2.36.2-150300.4.23.1.aarch64.rpm libuuid1-2.36.2-150300.4.23.1.aarch64.rpm python3-libmount-2.36.2-150300.4.23.1.aarch64.rpm util-linux-2.36.2-150300.4.23.1.aarch64.rpm util-linux-systemd-2.36.2-150300.4.23.1.aarch64.rpm uuidd-2.36.2-150300.4.23.1.aarch64.rpm openSUSE-SLE-15.3-2022-2690 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust, rust1.62 fixes the following issues: This update delivers rust1.62. - Improve support for wasi targets Version 1.62.1 (2022-07-19) ========================== Rust 1.62.1 addresses a few recent regressions in the compiler and standard library, and also mitigates a CPU vulnerability on Intel SGX. * The compiler fixed unsound function coercions involving `impl Trait` return types. * The compiler fixed an incremental compilation bug with `async fn` lifetimes. * Windows added a fallback for overlapped I/O in synchronous reads and writes. * The `x86_64-fortanix-unknown-sgx` target added a mitigation for the MMIO stale data vulnerability, advisory [INTEL-SA-00615]. - Experimental support for wasi targets Version 1.62.0 (2022-06-30) ========================== Language -------- - Stabilize `#[derive(Default)]` on enums with a `#[default]` variant - Teach flow sensitive checks that visibly uninhabited call expressions never return - Fix constants not getting dropped if part of a diverging expression - Support unit struct/enum variant in destructuring assignment][95380 - Remove mutable_borrow_reservation_conflict lint and allow the code pattern Compiler -------- - linker: Stop using whole-archive on dependencies of dylibs - Make `unaligned_references` lint deny-by-default This lint is also a future compatibility lint, and is expected to eventually become a hard error. - Only add codegen backend to dep info if -Zbinary-dep-depinfo is used - Reject `#[thread_local]` attribute on non-static items - Add tier 3 `aarch64-pc-windows-gnullvm` and `x86_64-pc-windows-gnullvm` targets\* - Implement a lint to warn about unused macro rules - Promote `x86_64-unknown-none` target to Tier 2 * Refer to Rust's [platform support page][platform-support-doc] for more information on Rust's tiered platform support. Libraries --------- - Windows: Use a pipe relay for chaining pipes - Replace Linux Mutex and Condvar with futex based ones. - Replace RwLock by a futex based one on Linux - std: directly use pthread in UNIX parker implementation Stabilized APIs --------------- - `bool::then_some` - `f32::total_cmp` - `f64::total_cmp` - `Stdin::lines` - `windows::CommandExt::raw_arg` - `impl<T: Default> Default for AssertUnwindSafe<T>` - `From<Rc<str>> for Rc<[u8]>` rc-u8-from-str - `From<Arc<str>> for Arc<[u8]>` arc-u8-from-str - `FusedIterator for EncodeWide` - RDM intrinsics on aarch64 stdarch/1285 Clippy ------ - Create clippy lint against unexpectedly late drop for temporaries in match scrutinee expressions Cargo ----- - Added the `cargo add` command for adding dependencies to `Cargo.toml` from the command-line. [docs](https://doc.rust-lang.org/nightly/cargo/commands/cargo-add.html) - Package ID specs now support `name@version` syntax in addition to the previous `name:version` to align with the behavior in `cargo add` and other tools. `cargo install` and `cargo yank` also now support this syntax so the version does not need to passed as a separate flag. - The `git` and `registry` directories in Cargo's home directory (usually `~/.cargo`) are now marked as cache directories so that they are not included in backups or content indexing (on Windows). - Added automatic `@` argfile support, which will use "response files" if the command-line to `rustc` exceeds the operating system's limit. Compatibility Notes ------------------- - `cargo test` now passes `--target` to `rustdoc` if the specified target is the same as the host target. - rustdoc: doctests are now run on unexported `macro_rules!` macros, matching other private items - rustdoc: Remove .woff font files - Enforce Copy bounds for repeat elements while considering lifetimes - Windows: Fix potentinal unsoundness by aborting if `File` reads or writes cannot complete synchronously. cargo-1.62.0-150300.21.29.1.x86_64.rpm cargo1.62-1.62.1-150300.7.4.1.x86_64.rpm rust-1.62.0-150300.21.29.1.src.rpm rust-1.62.0-150300.21.29.1.x86_64.rpm rust1.62-1.62.1-150300.7.4.1.src.rpm rust1.62-1.62.1-150300.7.4.1.x86_64.rpm cargo-1.62.0-150300.21.29.1.s390x.rpm cargo1.62-1.62.1-150300.7.4.1.s390x.rpm rust-1.62.0-150300.21.29.1.s390x.rpm rust1.62-1.62.1-150300.7.4.1.s390x.rpm cargo-1.62.0-150300.21.29.1.ppc64le.rpm cargo1.62-1.62.1-150300.7.4.1.ppc64le.rpm rust-1.62.0-150300.21.29.1.ppc64le.rpm rust1.62-1.62.1-150300.7.4.1.ppc64le.rpm cargo-1.62.0-150300.21.29.1.aarch64.rpm cargo1.62-1.62.1-150300.7.4.1.aarch64.rpm rust-1.62.0-150300.21.29.1.aarch64.rpm rust1.62-1.62.1-150300.7.4.1.aarch64.rpm openSUSE-SLE-15.3-2022-2860 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Fix 'unexpected output' error when using `crmadmin -S` (bsc#1199412) - Stop and disable csync2.socket on removed node (bsc#1199325) - crm report: use sudo when under non root and hacluster user (bsc#1199634) - crm report: put info/warning/debug messages into stdout crmsh-4.3.1+20220610.733357e2-150200.5.83.1.noarch.rpm crmsh-4.3.1+20220610.733357e2-150200.5.83.1.src.rpm crmsh-scripts-4.3.1+20220610.733357e2-150200.5.83.1.noarch.rpm crmsh-test-4.3.1+20220610.733357e2-150200.5.83.1.noarch.rpm openSUSE-SLE-15.3-2022-2758 moderate SUSE Updates openSUSE-SLE 15.3 This update for clamsap fixes the following issues: clamsap was updated to version 0.104 (jsc#PED-805) * Relax javascript check in PDF * use https source url, also https URL * Wildcard support for MIME type lists * Fix SAR file content scan * Add option for PDF active content * Remove own default settings from VsaGetConfig and rely on clamav defaults * Change default virusname in case clamav does not return any virus name. * Limit pcre calls * Increase Version because tested with latest clam engine * Support new parameter SCANHEURISTICLEVEL clamsap-0.104.2-150000.4.6.1.src.rpm clamsap-0.104.2-150000.4.6.1.x86_64.rpm clamsap-0.104.2-150000.4.6.1.s390x.rpm clamsap-0.104.2-150000.4.6.1.ppc64le.rpm clamsap-0.104.2-150000.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2741 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-36946: Fixed an incorrect packet trucation operation which could lead to denial of service (bnc#1201940). - CVE-2022-29581: Fixed improper update of reference count in net/sched that could cause root privilege escalation (bnc#1199665). - CVE-2022-20166: Fixed several possible memory safety issues due to unsafe operations (bsc#1200598). - CVE-2020-36558: Fixed a race condition involving VT_RESIZEX which could lead to a NULL pointer dereference and general protection fault (bnc#1200910). - CVE-2020-36557: Fixed a race condition between the VT_DISALLOCATE ioctl and closing/opening of TTYs that could lead to a use-after-free (bnc#1201429). - CVE-2021-33655: Fixed an out of bounds write by ioctl cmd FBIOPUT_VSCREENINFO (bnc#1201635). - CVE-2021-33656: Fixed an out of bounds write related to ioctl cmd PIO_FONT (bnc#1201636). - CVE-2022-21505: Fixed a kernel lockdown bypass via IMA policy (bsc#1201458). - CVE-2022-1462: Fixed an out-of-bounds read flaw in the TTY subsystem (bnc#1198829). - CVE-2022-1116: Fixed an integer overflow vulnerability in io_uring which allowed a local attacker to escalate privileges to root (bnc#1199647).- CVE-2022-2318: Fixed a use-after-free vulnerability in the timer handler in Rose subsystem that allowed unprivileged attackers to crash the system (bsc#1201251). - CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends (bsc#1200762). The following non-security bugs were fixed: - Fixed a system crash related to the recent RETBLEED mitigation (bsc#1201644, bsc#1201664, bsc#1201672, bsc#1201673, bsc#1201676). - qla2xxx: drop patch which prevented nvme port discovery (bsc#1200651 bsc#1200644 bsc#1201954 bsc#1201958). - kvm: emulate: do not adjust size of fastop and setcc subroutines (bsc#1201930). - bpf, cpumap: Remove rcpu pointer from cpu_map_build_skb signature (bsc#1199364). - bpf: enable BPF type format (BTF) (jsc#SLE-24559). - nfs: avoid NULL pointer dereference when there is unflushed data (bsc#1201196). - hv_netvsc: Add (more) validation for untrusted Hyper-V values (bsc#1199364). - hv_netvsc: Add comment of netvsc_xdp_xmit() (bsc#1199364). - hv_netvsc: Add support for XDP_REDIRECT (bsc#1199364). - hv_netvsc: Copy packets sent by Hyper-V out of the receive buffer (bsc#1199364). - hv_netvsc: Fix validation in netvsc_linkstatus_callback() (bsc#1199364). - kvm/emulate: Fix SETcc emulation function offsets with SLS (bsc#1201930). - lkdtm: Disable return thunks in rodata.c (bsc#1178134). - net, xdp: Introduce __xdp_build_skb_from_frame utility routine (bsc#1199364). - net, xdp: Introduce xdp_build_skb_from_frame utility routine (bsc#1199364). - nvme: consider also host_iface when checking ip options (bsc#1199670). - powerpc/mobility: wait for memory transfer to complete (bsc#1201846 ltc#198761). - powerpc/pseries/mobility: set NMI watchdog factor during an LPM (bsc#1201846 ltc#198761). - powerpc/watchdog: introduce a NMI watchdog's factor (bsc#1201846 ltc#198761). - scsi: lpfc: Copyright updates for 14.2.0.5 patches (bsc#1201956). - scsi: lpfc: Fix attempted FA-PWWN usage after feature disable (bsc#1201956). - scsi: lpfc: Fix lost NVMe paths during LIF bounce stress test (bsc#1201956 bsc#1200521). - scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE (bsc#1201956). - scsi: lpfc: Fix uninitialized cqe field in lpfc_nvme_cancel_iocb() (bsc#1201956). - scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input (bsc#1201956). - scsi: lpfc: Refactor lpfc_nvmet_prep_abort_wqe() into lpfc_sli_prep_abort_xri() (bsc#1201956). - scsi: lpfc: Remove Menlo/Hornet related code (bsc#1201956). - scsi: lpfc: Remove extra atomic_inc on cmd_pending in queuecommand after VMID (bsc#1201956). - scsi: lpfc: Revert RSCN_MEMENTO workaround for misbehaved configuration (bsc#1201956). - scsi: lpfc: Set PU field when providing D_ID in XMIT_ELS_RSP64_CX iocb (bsc#1201956). - scsi: lpfc: Update lpfc version to 14.2.0.5 (bsc#1201956). - scsi: qla2xxx: Check correct variable in qla24xx_async_gffid() (bsc#1201958). - scsi: qla2xxx: Fix discovery issues in FC-AL topology (bsc#1201958). - scsi: qla2xxx: Fix imbalance vha->vref_count (bsc#1201958). - scsi: qla2xxx: Fix incorrect display of max frame size (bsc#1201958). - scsi: qla2xxx: Fix response queue handler reading stale packets (bsc#1201958). - scsi: qla2xxx: Fix sparse warning for dport_data (bsc#1201958). - scsi: qla2xxx: Update manufacturer details (bsc#1201958). - scsi: qla2xxx: Update version to 10.02.07.800-k (bsc#1201958). - scsi: qla2xxx: Zero undefined mailbox IN registers (bsc#1201958). - scsi: qla2xxx: edif: Fix dropped IKE message (bsc#1201958). - watchdog: export lockup_detector_reconfigure (bsc#1201846 ltc#198761). - x86/bugs: Remove apostrophe typo (bsc#1178134). - x86/entry: Remove skip_r11rcx (bsc#1201644). - x86/retbleed: Add fine grained Kconfig knobs (bsc#1178134). - xen/netback: avoid entering xenvif_rx_next_skb() with an empty rx queue (bsc#1201381). cluster-md-kmp-azure-5.3.18-150300.38.75.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.75.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.75.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.75.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.75.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.75.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.75.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.75.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.75.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.75.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.75.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.75.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.75.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.75.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.75.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.75.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.75.1.x86_64.rpm True openSUSE-SLE-15.3-2022-2814 important SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Increase update delay on first iteration. (bsc#1201415) * This change is needed because the initial iteration of `hyptop` can produce bloated values independent from the update delay set by the user. libekmfweb1-2.15.1-150300.8.27.1.s390x.rpm libekmfweb1-devel-2.15.1-150300.8.27.1.s390x.rpm osasnmpd-2.15.1-150300.8.27.1.s390x.rpm s390-tools-2.15.1-150300.8.27.1.s390x.rpm s390-tools-2.15.1-150300.8.27.1.src.rpm s390-tools-hmcdrvfs-2.15.1-150300.8.27.1.s390x.rpm s390-tools-zdsfs-2.15.1-150300.8.27.1.s390x.rpm openSUSE-SLE-15.3-2022-2835 important SUSE Updates openSUSE-SLE 15.3 This update for ntfs-3g_ntfsprogs fixes the following issues: Updated to version 2022.5.17 (bsc#1199978): - CVE-2022-30783: Fixed an issue where messages between NTFS-3G and the kernel could be intercepted when using libfuse-lite. - CVE-2022-30784: Fixed a memory exhaustion issue when opening a crafted NTFS image. - CVE-2022-30785: Fixed a bug where arbitrary memory read and write operations could be achieved whe using libfuse-lite. - CVE-2022-30786: Fixed a memory corruption issue when opening a crafted NTFS image. - CVE-2022-30787: Fixed an integer underflow which enabled arbitrary memory read operations when using libfuse-lite. - CVE-2022-30788: Fixed a memory corruption issue when opening a crafted NTFS image. - CVE-2022-30789: Fixed a memory corruption issue when opening a crafted NTFS image. libntfs-3g-devel-2022.5.17-150000.3.11.1.x86_64.rpm libntfs-3g87-2022.5.17-150000.3.11.1.x86_64.rpm ntfs-3g-2022.5.17-150000.3.11.1.x86_64.rpm ntfs-3g_ntfsprogs-2022.5.17-150000.3.11.1.src.rpm ntfsprogs-2022.5.17-150000.3.11.1.x86_64.rpm ntfsprogs-extra-2022.5.17-150000.3.11.1.x86_64.rpm libntfs-3g-devel-2022.5.17-150000.3.11.1.s390x.rpm libntfs-3g87-2022.5.17-150000.3.11.1.s390x.rpm ntfs-3g-2022.5.17-150000.3.11.1.s390x.rpm ntfsprogs-2022.5.17-150000.3.11.1.s390x.rpm ntfsprogs-extra-2022.5.17-150000.3.11.1.s390x.rpm libntfs-3g-devel-2022.5.17-150000.3.11.1.ppc64le.rpm libntfs-3g87-2022.5.17-150000.3.11.1.ppc64le.rpm ntfs-3g-2022.5.17-150000.3.11.1.ppc64le.rpm ntfsprogs-2022.5.17-150000.3.11.1.ppc64le.rpm ntfsprogs-extra-2022.5.17-150000.3.11.1.ppc64le.rpm libntfs-3g-devel-2022.5.17-150000.3.11.1.aarch64.rpm libntfs-3g87-2022.5.17-150000.3.11.1.aarch64.rpm ntfs-3g-2022.5.17-150000.3.11.1.aarch64.rpm ntfsprogs-2022.5.17-150000.3.11.1.aarch64.rpm ntfsprogs-extra-2022.5.17-150000.3.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-3019 moderate SUSE Updates openSUSE-SLE 15.3 This update for lshw fixes the following issues: - Update to version B.02.19.2+git.20220628 * make version check optional - Update to version B.02.19.2+git.20220310: * Set product name for all netdevs sharing the same PCI number - Update to version B.02.19.2+git.20211222: * Add Spanish translation * Fix mistakes in Catalan translation - Update to version B.02.19.2+git.20211102: * Read and parse network transceiver module eeprom * use max (9) Gzip compression * Add Catalan translation * Update POT file * Add more network speeds - Update to version B.02.19.2+git.20211013: * support for new ethtool capabilities * code clean-up * allow pkg-config override * Translate all words of a phrase together lshw-B.02.19.2+git.20220628-150200.3.12.1.src.rpm lshw-B.02.19.2+git.20220628-150200.3.12.1.x86_64.rpm lshw-gui-B.02.19.2+git.20220628-150200.3.12.1.x86_64.rpm lshw-lang-B.02.19.2+git.20220628-150200.3.12.1.noarch.rpm lshw-B.02.19.2+git.20220628-150200.3.12.1.s390x.rpm lshw-gui-B.02.19.2+git.20220628-150200.3.12.1.s390x.rpm lshw-B.02.19.2+git.20220628-150200.3.12.1.ppc64le.rpm lshw-gui-B.02.19.2+git.20220628-150200.3.12.1.ppc64le.rpm lshw-B.02.19.2+git.20220628-150200.3.12.1.aarch64.rpm lshw-gui-B.02.19.2+git.20220628-150200.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-2755 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-xsl-stylesheets fixes the following issues: Changes in suse-xsl-stylesheets: - Update SUSE stylesheets - New three-column layout - Update translation strings - Replace old SUSE logo - Update 2.86.0 - Update to JQuery 1.12.4 (#485) - Fix color issues (#486) - Add new section "creating a new release" in README - Update 2.85.2 - Fix single h1 issue in HTML in #484 (improves SEO) - update README - Update 2.85.1 - Fix #453: colors in <phrase role="color:..."> works now - update README - Add requirement for google-poppins-fonts - Update to 2.85.0 - Fix #479: Typo fix in parameter qnumber -> number - Fix #478: reduce length count for socialmedia and search description to 150 - Fix #474: Support alt/title attributes in images - Fix #455: Add missing strings for HTML output - Fix #286: Rudimentary style <result> element - Update to 2.84.1 - Fix #454: Implement color for phrase/para - Fix #470: Make "Report bug" links attached to titles - Update to 2.84.0: - Fix #96: Remove SUSE address - Fix #458: figure-label for fr-fr: remove stray letter "t" - Fix #458: Add missing datetime format for zh_* - Fix #465: Replace old SUSE logo for suse2013 - Fix #463: Use correct inline color for screen - Add README for SUSE's SASS customization https://github.com/openSUSE/suse-xsl/releases/tag/2.84.0 - Beta release of the SUSE XSL stylesheets 2.83.0: https://github.com/openSUSE/suse-xsl/releases/tag/2.83.0 - PDF/HTML - A variety of small, but important bug fixes for the SUSE 2022 stylesheets, including a fix for a PDF build breaker - Remove obsolete susexsl-fetch-source-git script (bsc#1187783) suse-xsl-stylesheets-2.86.0-150300.3.3.1.noarch.rpm suse-xsl-stylesheets-2.86.0-150300.3.3.1.src.rpm openSUSE-SLE-15.3-2022-2941 moderate SUSE Updates openSUSE-SLE 15.3 This update for libslirp fixes the following issues: - CVE-2021-3593: Fixed invalid pointer initialization may lead to information disclosure (udp6) (bsc#1187365). Non-security fixes: - Fix the version header (bsc#1201551) libslirp-4.3.1-150300.11.1.src.rpm libslirp-devel-4.3.1-150300.11.1.x86_64.rpm libslirp0-4.3.1-150300.11.1.x86_64.rpm libslirp-devel-4.3.1-150300.11.1.s390x.rpm libslirp0-4.3.1-150300.11.1.s390x.rpm libslirp-devel-4.3.1-150300.11.1.ppc64le.rpm libslirp0-4.3.1-150300.11.1.ppc64le.rpm libslirp-devel-4.3.1-150300.11.1.aarch64.rpm libslirp0-4.3.1-150300.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-3202 moderate SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - Create kdcinfo file for sub-domains (bsc#1197925) libipa_hbac-devel-1.16.1-150300.23.34.1.x86_64.rpm libipa_hbac0-1.16.1-150300.23.34.1.x86_64.rpm libnfsidmap-sss-1.16.1-150300.23.34.1.x86_64.rpm libsss_certmap-devel-1.16.1-150300.23.34.1.x86_64.rpm libsss_certmap0-1.16.1-150300.23.34.1.x86_64.rpm libsss_idmap-devel-1.16.1-150300.23.34.1.x86_64.rpm libsss_idmap0-1.16.1-150300.23.34.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.34.1.x86_64.rpm libsss_nss_idmap0-1.16.1-150300.23.34.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-150300.23.34.1.x86_64.rpm libsss_simpleifp0-1.16.1-150300.23.34.1.x86_64.rpm python3-ipa_hbac-1.16.1-150300.23.34.1.x86_64.rpm python3-sss-murmur-1.16.1-150300.23.34.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-150300.23.34.1.x86_64.rpm python3-sssd-config-1.16.1-150300.23.34.1.x86_64.rpm sssd-1.16.1-150300.23.34.1.src.rpm sssd-1.16.1-150300.23.34.1.x86_64.rpm sssd-ad-1.16.1-150300.23.34.1.x86_64.rpm sssd-common-1.16.1-150300.23.34.1.x86_64.rpm sssd-common-32bit-1.16.1-150300.23.34.1.x86_64.rpm sssd-dbus-1.16.1-150300.23.34.1.x86_64.rpm sssd-ipa-1.16.1-150300.23.34.1.x86_64.rpm sssd-krb5-1.16.1-150300.23.34.1.x86_64.rpm sssd-krb5-common-1.16.1-150300.23.34.1.x86_64.rpm sssd-ldap-1.16.1-150300.23.34.1.x86_64.rpm sssd-proxy-1.16.1-150300.23.34.1.x86_64.rpm sssd-tools-1.16.1-150300.23.34.1.x86_64.rpm sssd-wbclient-1.16.1-150300.23.34.1.x86_64.rpm sssd-wbclient-devel-1.16.1-150300.23.34.1.x86_64.rpm sssd-winbind-idmap-1.16.1-150300.23.34.1.x86_64.rpm libipa_hbac-devel-1.16.1-150300.23.34.1.s390x.rpm libipa_hbac0-1.16.1-150300.23.34.1.s390x.rpm libnfsidmap-sss-1.16.1-150300.23.34.1.s390x.rpm libsss_certmap-devel-1.16.1-150300.23.34.1.s390x.rpm libsss_certmap0-1.16.1-150300.23.34.1.s390x.rpm libsss_idmap-devel-1.16.1-150300.23.34.1.s390x.rpm libsss_idmap0-1.16.1-150300.23.34.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-150300.23.34.1.s390x.rpm libsss_nss_idmap0-1.16.1-150300.23.34.1.s390x.rpm libsss_simpleifp-devel-1.16.1-150300.23.34.1.s390x.rpm libsss_simpleifp0-1.16.1-150300.23.34.1.s390x.rpm python3-ipa_hbac-1.16.1-150300.23.34.1.s390x.rpm python3-sss-murmur-1.16.1-150300.23.34.1.s390x.rpm python3-sss_nss_idmap-1.16.1-150300.23.34.1.s390x.rpm python3-sssd-config-1.16.1-150300.23.34.1.s390x.rpm sssd-1.16.1-150300.23.34.1.s390x.rpm sssd-ad-1.16.1-150300.23.34.1.s390x.rpm sssd-common-1.16.1-150300.23.34.1.s390x.rpm sssd-dbus-1.16.1-150300.23.34.1.s390x.rpm sssd-ipa-1.16.1-150300.23.34.1.s390x.rpm sssd-krb5-1.16.1-150300.23.34.1.s390x.rpm sssd-krb5-common-1.16.1-150300.23.34.1.s390x.rpm sssd-ldap-1.16.1-150300.23.34.1.s390x.rpm sssd-proxy-1.16.1-150300.23.34.1.s390x.rpm sssd-tools-1.16.1-150300.23.34.1.s390x.rpm sssd-wbclient-1.16.1-150300.23.34.1.s390x.rpm sssd-wbclient-devel-1.16.1-150300.23.34.1.s390x.rpm sssd-winbind-idmap-1.16.1-150300.23.34.1.s390x.rpm libipa_hbac-devel-1.16.1-150300.23.34.1.ppc64le.rpm libipa_hbac0-1.16.1-150300.23.34.1.ppc64le.rpm libnfsidmap-sss-1.16.1-150300.23.34.1.ppc64le.rpm libsss_certmap-devel-1.16.1-150300.23.34.1.ppc64le.rpm libsss_certmap0-1.16.1-150300.23.34.1.ppc64le.rpm libsss_idmap-devel-1.16.1-150300.23.34.1.ppc64le.rpm libsss_idmap0-1.16.1-150300.23.34.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-150300.23.34.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-150300.23.34.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-150300.23.34.1.ppc64le.rpm libsss_simpleifp0-1.16.1-150300.23.34.1.ppc64le.rpm python3-ipa_hbac-1.16.1-150300.23.34.1.ppc64le.rpm python3-sss-murmur-1.16.1-150300.23.34.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-150300.23.34.1.ppc64le.rpm python3-sssd-config-1.16.1-150300.23.34.1.ppc64le.rpm sssd-1.16.1-150300.23.34.1.ppc64le.rpm sssd-ad-1.16.1-150300.23.34.1.ppc64le.rpm sssd-common-1.16.1-150300.23.34.1.ppc64le.rpm sssd-dbus-1.16.1-150300.23.34.1.ppc64le.rpm sssd-ipa-1.16.1-150300.23.34.1.ppc64le.rpm sssd-krb5-1.16.1-150300.23.34.1.ppc64le.rpm sssd-krb5-common-1.16.1-150300.23.34.1.ppc64le.rpm sssd-ldap-1.16.1-150300.23.34.1.ppc64le.rpm sssd-proxy-1.16.1-150300.23.34.1.ppc64le.rpm sssd-tools-1.16.1-150300.23.34.1.ppc64le.rpm sssd-wbclient-1.16.1-150300.23.34.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-150300.23.34.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-150300.23.34.1.ppc64le.rpm libipa_hbac-devel-1.16.1-150300.23.34.1.aarch64.rpm libipa_hbac0-1.16.1-150300.23.34.1.aarch64.rpm libnfsidmap-sss-1.16.1-150300.23.34.1.aarch64.rpm libsss_certmap-devel-1.16.1-150300.23.34.1.aarch64.rpm libsss_certmap0-1.16.1-150300.23.34.1.aarch64.rpm libsss_idmap-devel-1.16.1-150300.23.34.1.aarch64.rpm libsss_idmap0-1.16.1-150300.23.34.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.34.1.aarch64.rpm libsss_nss_idmap0-1.16.1-150300.23.34.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-150300.23.34.1.aarch64.rpm libsss_simpleifp0-1.16.1-150300.23.34.1.aarch64.rpm python3-ipa_hbac-1.16.1-150300.23.34.1.aarch64.rpm python3-sss-murmur-1.16.1-150300.23.34.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-150300.23.34.1.aarch64.rpm python3-sssd-config-1.16.1-150300.23.34.1.aarch64.rpm sssd-1.16.1-150300.23.34.1.aarch64.rpm sssd-ad-1.16.1-150300.23.34.1.aarch64.rpm sssd-common-1.16.1-150300.23.34.1.aarch64.rpm sssd-dbus-1.16.1-150300.23.34.1.aarch64.rpm sssd-ipa-1.16.1-150300.23.34.1.aarch64.rpm sssd-krb5-1.16.1-150300.23.34.1.aarch64.rpm sssd-krb5-common-1.16.1-150300.23.34.1.aarch64.rpm sssd-ldap-1.16.1-150300.23.34.1.aarch64.rpm sssd-proxy-1.16.1-150300.23.34.1.aarch64.rpm sssd-tools-1.16.1-150300.23.34.1.aarch64.rpm sssd-wbclient-1.16.1-150300.23.34.1.aarch64.rpm sssd-wbclient-devel-1.16.1-150300.23.34.1.aarch64.rpm sssd-winbind-idmap-1.16.1-150300.23.34.1.aarch64.rpm openSUSE-SLE-15.3-2022-2822 important SUSE Updates openSUSE-SLE 15.3 This update for python-Twisted fixes the following issues: - CVE-2020-10109: Fixed an HTTP request smuggling issue (bsc#1166458). python-Twisted-19.10.0-150200.3.15.1.src.rpm python-Twisted-doc-19.10.0-150200.3.15.1.x86_64.rpm python2-Twisted-19.10.0-150200.3.15.1.x86_64.rpm python3-Twisted-19.10.0-150200.3.15.1.x86_64.rpm python-Twisted-doc-19.10.0-150200.3.15.1.s390x.rpm python2-Twisted-19.10.0-150200.3.15.1.s390x.rpm python3-Twisted-19.10.0-150200.3.15.1.s390x.rpm python-Twisted-doc-19.10.0-150200.3.15.1.ppc64le.rpm python2-Twisted-19.10.0-150200.3.15.1.ppc64le.rpm python3-Twisted-19.10.0-150200.3.15.1.ppc64le.rpm python-Twisted-doc-19.10.0-150200.3.15.1.aarch64.rpm python2-Twisted-19.10.0-150200.3.15.1.aarch64.rpm python3-Twisted-19.10.0-150200.3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-2856 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: - Updated to version jdk8u345 (icedtea-3.24.0) - CVE-2022-21540: Fixed a potential Java sandbox bypass (bsc#1201694). - CVE-2022-21541: Fixed a potential Java sandbox bypass (bsc#1201692). - CVE-2022-34169: Fixed an issue where arbitrary bytecode could be executed via a malicious stylesheet (bsc#1201684). - Non-security fixes: - Allowed for customization of PKCS12 keystores (bsc#1195163). java-1_8_0-openjdk-1.8.0.345-150000.3.70.1.src.rpm java-1_8_0-openjdk-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.345-150000.3.70.1.noarch.rpm java-1_8_0-openjdk-src-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-src-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-1.8.0.345-150000.3.70.1.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.345-150000.3.70.1.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.345-150000.3.70.1.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.345-150000.3.70.1.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.345-150000.3.70.1.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.345-150000.3.70.1.aarch64.rpm openSUSE-SLE-15.3-2022-2879 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: scap-security-guide was updated to 0.1.63 (jsc#ECO-3319): - multiple bugfixes in SUSE profiles - Expand project guidelines - Add Draft OCP4 STIG profile - Add anssi_bp28_intermediary profile - add products/uos20 to support UnionTech OS Server 20 - products/alinux3: Add CIS Alibaba Cloud Linux 3 profiles - Remove WRLinux Products - Update CIS RHEL8 Benchmark for v2.0.0 SUSE specific issues fixed: - stig: /etc/shadow group owner should not be root but shadow (bsc#1200149) - sles15_script-stig.sh: remediation_functions: No such file or directory (bsc#1200163) - SLES-15-010130 - The SUSE operating system must initiate a session lock after a 15-minute period of inactivity (bsc#1200122) scap-security-guide-0.1.63-150000.1.45.1.noarch.rpm scap-security-guide-0.1.63-150000.1.45.1.src.rpm scap-security-guide-debian-0.1.63-150000.1.45.1.noarch.rpm scap-security-guide-redhat-0.1.63-150000.1.45.1.noarch.rpm scap-security-guide-ubuntu-0.1.63-150000.1.45.1.noarch.rpm openSUSE-SLE-15.3-2022-2868 important SUSE Updates openSUSE-SLE 15.3 This update for u-boot fixes the following issues: - CVE-2022-33103: Fixed a flaw in the squashfs subsystem that could lead to arbitrary code execution (bsc#1201213). u-boot-2021.01-150300.7.18.1.src.rpm u-boot-tools-2021.01-150300.7.18.1.x86_64.rpm u-boot-tools-2021.01-150300.7.18.1.s390x.rpm u-boot-tools-2021.01-150300.7.18.1.ppc64le.rpm u-boot-avnetultra96rev1-2021.01-150300.7.18.1.aarch64.rpm u-boot-avnetultra96rev1-2021.01-150300.7.18.1.src.rpm u-boot-avnetultra96rev1-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-bananapim64-2021.01-150300.7.18.1.aarch64.rpm u-boot-bananapim64-2021.01-150300.7.18.1.src.rpm u-boot-bananapim64-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-dragonboard410c-2021.01-150300.7.18.1.aarch64.rpm u-boot-dragonboard410c-2021.01-150300.7.18.1.src.rpm u-boot-dragonboard410c-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-dragonboard820c-2021.01-150300.7.18.1.aarch64.rpm u-boot-dragonboard820c-2021.01-150300.7.18.1.src.rpm u-boot-dragonboard820c-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-evb-rk3399-2021.01-150300.7.18.1.aarch64.rpm u-boot-evb-rk3399-2021.01-150300.7.18.1.src.rpm u-boot-evb-rk3399-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-150300.7.18.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-150300.7.18.1.src.rpm u-boot-firefly-rk3399-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-geekbox-2021.01-150300.7.18.1.aarch64.rpm u-boot-geekbox-2021.01-150300.7.18.1.src.rpm u-boot-geekbox-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-hikey-2021.01-150300.7.18.1.aarch64.rpm u-boot-hikey-2021.01-150300.7.18.1.src.rpm u-boot-hikey-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-khadas-vim-2021.01-150300.7.18.1.aarch64.rpm u-boot-khadas-vim-2021.01-150300.7.18.1.src.rpm u-boot-khadas-vim-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-khadas-vim2-2021.01-150300.7.18.1.aarch64.rpm u-boot-khadas-vim2-2021.01-150300.7.18.1.src.rpm u-boot-khadas-vim2-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-libretech-ac-2021.01-150300.7.18.1.aarch64.rpm u-boot-libretech-ac-2021.01-150300.7.18.1.src.rpm u-boot-libretech-ac-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-libretech-cc-2021.01-150300.7.18.1.aarch64.rpm u-boot-libretech-cc-2021.01-150300.7.18.1.src.rpm u-boot-libretech-cc-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-150300.7.18.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-150300.7.18.1.src.rpm u-boot-ls1012afrdmqspi-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-150300.7.18.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-150300.7.18.1.src.rpm u-boot-mvebudb-88f3720-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-150300.7.18.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-150300.7.18.1.src.rpm u-boot-mvebudbarmada8k-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-150300.7.18.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-150300.7.18.1.src.rpm u-boot-mvebuespressobin-88f3720-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-150300.7.18.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-150300.7.18.1.src.rpm u-boot-mvebumcbin-88f8040-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-nanopia64-2021.01-150300.7.18.1.aarch64.rpm u-boot-nanopia64-2021.01-150300.7.18.1.src.rpm u-boot-nanopia64-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-odroid-c2-2021.01-150300.7.18.1.aarch64.rpm u-boot-odroid-c2-2021.01-150300.7.18.1.src.rpm u-boot-odroid-c2-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-odroid-c4-2021.01-150300.7.18.1.aarch64.rpm u-boot-odroid-c4-2021.01-150300.7.18.1.src.rpm u-boot-odroid-c4-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-odroid-n2-2021.01-150300.7.18.1.aarch64.rpm u-boot-odroid-n2-2021.01-150300.7.18.1.src.rpm u-boot-odroid-n2-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-orangepipc2-2021.01-150300.7.18.1.aarch64.rpm u-boot-orangepipc2-2021.01-150300.7.18.1.src.rpm u-boot-orangepipc2-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-p2371-2180-2021.01-150300.7.18.1.aarch64.rpm u-boot-p2371-2180-2021.01-150300.7.18.1.src.rpm u-boot-p2371-2180-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-150300.7.18.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-150300.7.18.1.src.rpm u-boot-p2771-0000-500-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-p3450-0000-2021.01-150300.7.18.1.aarch64.rpm u-boot-p3450-0000-2021.01-150300.7.18.1.src.rpm u-boot-p3450-0000-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-pine64plus-2021.01-150300.7.18.1.aarch64.rpm u-boot-pine64plus-2021.01-150300.7.18.1.src.rpm u-boot-pine64plus-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-pinebook-2021.01-150300.7.18.1.aarch64.rpm u-boot-pinebook-2021.01-150300.7.18.1.src.rpm u-boot-pinebook-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-150300.7.18.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-150300.7.18.1.src.rpm u-boot-pinebook-pro-rk3399-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-pineh64-2021.01-150300.7.18.1.aarch64.rpm u-boot-pineh64-2021.01-150300.7.18.1.src.rpm u-boot-pineh64-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-pinephone-2021.01-150300.7.18.1.aarch64.rpm u-boot-pinephone-2021.01-150300.7.18.1.src.rpm u-boot-pinephone-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-poplar-2021.01-150300.7.18.1.aarch64.rpm u-boot-poplar-2021.01-150300.7.18.1.src.rpm u-boot-poplar-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-150300.7.18.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-150300.7.18.1.src.rpm u-boot-rock-pi-4-rk3399-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-150300.7.18.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-150300.7.18.1.src.rpm u-boot-rock64-rk3328-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-150300.7.18.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-150300.7.18.1.src.rpm u-boot-rock960-rk3399-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-150300.7.18.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-150300.7.18.1.src.rpm u-boot-rockpro64-rk3399-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-rpi3-2021.01-150300.7.18.1.aarch64.rpm u-boot-rpi3-2021.01-150300.7.18.1.src.rpm u-boot-rpi3-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-rpi4-2021.01-150300.7.18.1.aarch64.rpm u-boot-rpi4-2021.01-150300.7.18.1.src.rpm u-boot-rpi4-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-rpiarm64-2021.01-150300.7.18.1.aarch64.rpm u-boot-rpiarm64-2021.01-150300.7.18.1.src.rpm u-boot-rpiarm64-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-tools-2021.01-150300.7.18.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-150300.7.18.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-150300.7.18.1.src.rpm u-boot-xilinxzynqmpvirt-doc-2021.01-150300.7.18.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-150300.7.18.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-150300.7.18.1.src.rpm u-boot-xilinxzynqmpzcu102rev10-doc-2021.01-150300.7.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-3097 moderate SUSE Updates openSUSE-SLE 15.3 This update for deja-dup fixes the following issues: - Google is deprecating support for localhost redirects when authorizing an oauth client. So we need to switch to a custom URI scheme like 'org.dejadup:' and registering that with the system in our desktop file. (bsc#1199740) deja-dup-40.6-150200.2.7.1.src.rpm deja-dup-40.6-150200.2.7.1.x86_64.rpm deja-dup-lang-40.6-150200.2.7.1.noarch.rpm nautilus-deja-dup-40.6-150200.2.7.1.x86_64.rpm deja-dup-40.6-150200.2.7.1.s390x.rpm nautilus-deja-dup-40.6-150200.2.7.1.s390x.rpm deja-dup-40.6-150200.2.7.1.ppc64le.rpm nautilus-deja-dup-40.6-150200.2.7.1.ppc64le.rpm deja-dup-40.6-150200.2.7.1.aarch64.rpm nautilus-deja-dup-40.6-150200.2.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-2757 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-source_validator fixes the following issues: - Update to version 0.25 (bsc#1202132) * Reject empty or ill-formatted patches * Use ERROR for prefixing errors * Split out GPG validation into own check and improve it * Allow mode=manual services * spec_query: add elif support * Also read package in _multibuild * display diff if previous file is present in 20-files-present-and-referenced * Use xmllint for listing multibuild flavors * Don't break if there is no *.spec * Allow for multibuild specfiles with empty default flavour * No need to compress buildtime generated tarballs * Fix running the checks on a directory with whitespace in its path * spec_query: print line numbers on %if/%else/%endif error * Do not complain about debian.*.triggers * No need to compress buildtime generated tarballs * One .changes file per package is enough * allow _multibuild to handle multiple specs * The --buildflavor option was missing from the help output * 70-baselibs: do not run subshells * allow -MACRO ending for changes file on multibuild setups * skip source files checks for product definition directories * Add missing dependency to the debian/control file * /usr/include/X11 is still a valid path. * make path for helpers variable * fix for #bsc985980 * check for LICENSE or COPYING files marked as %doc * 70-baselibs: call spec_query with --no-conditionals so that checking package tevent sees the python3-tevent package for the baselibs checker * Build-depend on obs-build to fix Debian build * move multibuild or multi spec in front * add glibc testcase using multibuild * support _multibuild files when validating sources * do not use "--no-conditionals" for baselibs check obs-service-source_validator-0.25-150000.3.3.1.noarch.rpm obs-service-source_validator-0.25-150000.3.3.1.src.rpm openSUSE-SLE-15.3-2022-3179 moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-node_exporter fixes the following issues: - Exclude s390 arch. - Update spec file in order to make --version work (bsc#1196652) golang-github-prometheus-node_exporter-1.3.0-150100.3.15.1.src.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.15.1.x86_64.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.15.1.s390x.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.15.1.ppc64le.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-3183 moderate SUSE Updates openSUSE-SLE 15.3 This recommended update for salt fixes the following issues: - Add support for gpgautoimport in zypperpkg module - Update Salt to work with Jinja >= and <= 3.1.0 (bsc#1198744) - Fix salt.states.file.managed() for follow_symlinks=True and test=True (bsc#1199372) - Make Salt 3004 compatible with pyzmq >= 23.0.0 (bsc#1201082) - Add support for name, pkgs and diff_attr parameters to upgrade function for zypper and yum (bsc#1198489) - Fix ownership of salt thin directory when using the Salt Bundle - Set default target for pip from VENV_PIP_TARGET environment variable - Normalize package names once with pkg.installed/removed using yum (bsc#1195895) - Save log to logfile with docker.build - Use Salt Bundle in dockermod - Ignore errors on reading license files with dpkg_lowpkg (bsc#1197288) python3-salt-3004-150300.53.27.1.x86_64.rpm True salt-3004-150300.53.27.1.src.rpm True salt-3004-150300.53.27.1.x86_64.rpm True salt-api-3004-150300.53.27.1.x86_64.rpm True salt-bash-completion-3004-150300.53.27.1.noarch.rpm True salt-cloud-3004-150300.53.27.1.x86_64.rpm True salt-doc-3004-150300.53.27.1.x86_64.rpm True salt-fish-completion-3004-150300.53.27.1.noarch.rpm True salt-master-3004-150300.53.27.1.x86_64.rpm True salt-minion-3004-150300.53.27.1.x86_64.rpm True salt-proxy-3004-150300.53.27.1.x86_64.rpm True salt-ssh-3004-150300.53.27.1.x86_64.rpm True salt-standalone-formulas-configuration-3004-150300.53.27.1.x86_64.rpm True salt-syndic-3004-150300.53.27.1.x86_64.rpm True salt-transactional-update-3004-150300.53.27.1.x86_64.rpm True salt-zsh-completion-3004-150300.53.27.1.noarch.rpm True python3-salt-3004-150300.53.27.1.s390x.rpm True salt-3004-150300.53.27.1.s390x.rpm True salt-api-3004-150300.53.27.1.s390x.rpm True salt-cloud-3004-150300.53.27.1.s390x.rpm True salt-doc-3004-150300.53.27.1.s390x.rpm True salt-master-3004-150300.53.27.1.s390x.rpm True salt-minion-3004-150300.53.27.1.s390x.rpm True salt-proxy-3004-150300.53.27.1.s390x.rpm True salt-ssh-3004-150300.53.27.1.s390x.rpm True salt-standalone-formulas-configuration-3004-150300.53.27.1.s390x.rpm True salt-syndic-3004-150300.53.27.1.s390x.rpm True salt-transactional-update-3004-150300.53.27.1.s390x.rpm True python3-salt-3004-150300.53.27.1.ppc64le.rpm True salt-3004-150300.53.27.1.ppc64le.rpm True salt-api-3004-150300.53.27.1.ppc64le.rpm True salt-cloud-3004-150300.53.27.1.ppc64le.rpm True salt-doc-3004-150300.53.27.1.ppc64le.rpm True salt-master-3004-150300.53.27.1.ppc64le.rpm True salt-minion-3004-150300.53.27.1.ppc64le.rpm True salt-proxy-3004-150300.53.27.1.ppc64le.rpm True salt-ssh-3004-150300.53.27.1.ppc64le.rpm True salt-standalone-formulas-configuration-3004-150300.53.27.1.ppc64le.rpm True salt-syndic-3004-150300.53.27.1.ppc64le.rpm True salt-transactional-update-3004-150300.53.27.1.ppc64le.rpm True python3-salt-3004-150300.53.27.1.aarch64.rpm True salt-3004-150300.53.27.1.aarch64.rpm True salt-api-3004-150300.53.27.1.aarch64.rpm True salt-cloud-3004-150300.53.27.1.aarch64.rpm True salt-doc-3004-150300.53.27.1.aarch64.rpm True salt-master-3004-150300.53.27.1.aarch64.rpm True salt-minion-3004-150300.53.27.1.aarch64.rpm True salt-proxy-3004-150300.53.27.1.aarch64.rpm True salt-ssh-3004-150300.53.27.1.aarch64.rpm True salt-standalone-formulas-configuration-3004-150300.53.27.1.aarch64.rpm True salt-syndic-3004-150300.53.27.1.aarch64.rpm True salt-transactional-update-3004-150300.53.27.1.aarch64.rpm True openSUSE-SLE-15.3-2022-3166 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: salt: - Add support for gpgautoimport in zypperpkg module - Update Salt to work with Jinja >= and <= 3.1.0 (bsc#1198744) - Fix salt.states.file.managed() for follow_symlinks=True and test=True (bsc#1199372) - Make Salt 3004 compatible with pyzmq >= 23.0.0 (bsc#1201082) - Add support for name, pkgs and diff_attr parameters to upgrade function for zypper and yum (bsc#1198489) - Fix ownership of salt thin directory when using the Salt Bundle - Set default target for pip from VENV_PIP_TARGET environment variable - Normalize package names once with pkg.installed/removed using yum (bsc#1195895) - Save log to logfile with docker.build - Use Salt Bundle in dockermod - Ignore errors on reading license files with dpkg_lowpkg (bsc#1197288) supportutils-plugin-salt: - Update to version 1.2.1 * Remove ERROR messages on Salt client systems - Declare the LICENSE file as license and not doc supportutils-plugin-salt-1.2.1-150000.3.9.1.noarch.rpm True supportutils-plugin-salt-1.2.1-150000.3.9.1.src.rpm True openSUSE-SLE-15.3-2022-2882 important SUSE Updates openSUSE-SLE 15.3 This update for gnutls fixes the following issues: - CVE-2022-2509: Fixed a double free issue during PKCS7 verification (bsc#1202020). gnutls-3.6.7-150200.14.19.2.src.rpm gnutls-3.6.7-150200.14.19.2.x86_64.rpm gnutls-guile-3.6.7-150200.14.19.2.x86_64.rpm libgnutls-devel-3.6.7-150200.14.19.2.x86_64.rpm libgnutls-devel-32bit-3.6.7-150200.14.19.2.x86_64.rpm libgnutls30-3.6.7-150200.14.19.2.x86_64.rpm libgnutls30-32bit-3.6.7-150200.14.19.2.x86_64.rpm libgnutls30-hmac-3.6.7-150200.14.19.2.x86_64.rpm libgnutls30-hmac-32bit-3.6.7-150200.14.19.2.x86_64.rpm libgnutlsxx-devel-3.6.7-150200.14.19.2.x86_64.rpm libgnutlsxx28-3.6.7-150200.14.19.2.x86_64.rpm gnutls-3.6.7-150200.14.19.2.s390x.rpm gnutls-guile-3.6.7-150200.14.19.2.s390x.rpm libgnutls-devel-3.6.7-150200.14.19.2.s390x.rpm libgnutls30-3.6.7-150200.14.19.2.s390x.rpm libgnutls30-hmac-3.6.7-150200.14.19.2.s390x.rpm libgnutlsxx-devel-3.6.7-150200.14.19.2.s390x.rpm libgnutlsxx28-3.6.7-150200.14.19.2.s390x.rpm gnutls-3.6.7-150200.14.19.2.ppc64le.rpm gnutls-guile-3.6.7-150200.14.19.2.ppc64le.rpm libgnutls-devel-3.6.7-150200.14.19.2.ppc64le.rpm libgnutls30-3.6.7-150200.14.19.2.ppc64le.rpm libgnutls30-hmac-3.6.7-150200.14.19.2.ppc64le.rpm libgnutlsxx-devel-3.6.7-150200.14.19.2.ppc64le.rpm libgnutlsxx28-3.6.7-150200.14.19.2.ppc64le.rpm gnutls-3.6.7-150200.14.19.2.aarch64.rpm gnutls-guile-3.6.7-150200.14.19.2.aarch64.rpm libgnutls-devel-3.6.7-150200.14.19.2.aarch64.rpm libgnutls30-3.6.7-150200.14.19.2.aarch64.rpm libgnutls30-hmac-3.6.7-150200.14.19.2.aarch64.rpm libgnutlsxx-devel-3.6.7-150200.14.19.2.aarch64.rpm libgnutlsxx28-3.6.7-150200.14.19.2.aarch64.rpm openSUSE-SLE-15.3-2022-2839 important SUSE Updates openSUSE-SLE 15.3 This update for podman fixes the following issues: Updated to version 3.4.7: - CVE-2022-1227: Fixed an issue that could allow an attacker to publish a malicious image to a public registry and run arbitrary code in the victim's context via the 'podman top' command (bsc#1182428). - CVE-2022-27191: Fixed a potential crash via SSH under specific configurations (bsc#1197284). - CVE-2022-21698: Fixed a potential denial of service that affected servers that used Prometheus instrumentation (bsc#1196338). podman-3.4.7-150300.9.9.2.src.rpm podman-3.4.7-150300.9.9.2.x86_64.rpm podman-cni-config-3.4.7-150300.9.9.2.noarch.rpm podman-3.4.7-150300.9.9.2.s390x.rpm podman-3.4.7-150300.9.9.2.ppc64le.rpm podman-3.4.7-150300.9.9.2.aarch64.rpm openSUSE-SLE-15.3-2022-2749 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.19 fixes the following issues: go1.19 (released 2022-08-02) is a major release of Go. go1.19.x minor releases will be provided through August 2023. https://github.com/golang/go/wiki/Go-Release-Cycle go1.19 arrives five months after go1.18. Most of its changes are in the implementation of the toolchain, runtime, and libraries. As always, the release maintains the Go 1 promise of compatibility. We expect almost all Go programs to continue to compile and run as before. (Refs bsc#1200441 go1.19 release tracking) * See release notes https://golang.org/doc/go1.19. Excerpts relevant to OBS environment and for SUSE/openSUSE follow: * There is only one small change to the language, a very small correction to the scope of type parameters in method declarations. Existing programs are unaffected. * The Go memory model has been revised to align Go with the memory model used by C, C++, Java, JavaScript, Rust, and Swift. Go only provides sequentially consistent atomics, not any of the more relaxed forms found in other languages. Along with the memory model update, Go 1.19 introduces new types in the sync/atomic package that make it easier to use atomic values, such as atomic.Int64 and atomic.Pointer[T]. * go1.19 adds support for the Loongson 64-bit architecture LoongArch on Linux (GOOS=linux, GOARCH=loong64). The ABI implemented is LP64D. Minimum kernel version supported is 5.19. * The riscv64 port now supports passing function arguments and result using registers. Benchmarking shows typical performance improvements of 10% or more on riscv64. * Go 1.19 adds support for links, lists, and clearer headings in doc comments. As part of this change, gofmt now reformats doc comments to make their rendered meaning clearer. See "Go Doc Comments" for syntax details and descriptions of common mistakes now highlighted by gofmt. As another part of this change, the new package go/doc/comment provides parsing and reformatting of doc comments as well as support for rendering them to HTML, Markdown, and text. * The new build constraint "unix" is now recognized in //go:build lines. The constraint is satisfied if the target operating system, also known as GOOS, is a Unix or Unix-like system. For the 1.19 release it is satisfied if GOOS is one of aix, android, darwin, dragonfly, freebsd, hurd, illumos, ios, linux, netbsd, openbsd, or solaris. In future releases the unix constraint may match additional newly supported operating systems. * The -trimpath flag, if set, is now included in the build settings stamped into Go binaries by go build, and can be examined using go version -m or debug.ReadBuildInfo. * go generate now sets the GOROOT environment variable explicitly in the generator's environment, so that generators can locate the correct GOROOT even if built with -trimpath. * go test and go generate now place GOROOT/bin at the beginning of the PATH used for the subprocess, so tests and generators that execute the go command will resolve it to same GOROOT. * go env now quotes entries that contain spaces in the CGO_CFLAGS, CGO_CPPFLAGS, CGO_CXXFLAGS, CGO_FFLAGS, CGO_LDFLAGS, and GOGCCFLAGS variables it reports. * go list -json now accepts a comma-separated list of JSON fields to populate. If a list is specified, the JSON output will include only those fields, and go list may avoid work to compute fields that are not included. In some cases, this may suppress errors that would otherwise be reported. * The go command now caches information necessary to load some modules, which should result in a speed-up of some go list invocations. * The vet checker "errorsas" now reports when errors.As is called with a second argument of type *error, a common mistake. * The runtime now includes support for a soft memory limit. This memory limit includes the Go heap and all other memory managed by the runtime, and excludes external memory sources such as mappings of the binary itself, memory managed in other languages, and memory held by the operating system on behalf of the Go program. This limit may be managed via runtime/debug.SetMemoryLimit or the equivalent GOMEMLIMIT environment variable. The limit works in conjunction with runtime/debug.SetGCPercent / GOGC, and will be respected even if GOGC=off, allowing Go programs to always make maximal use of their memory limit, improving resource efficiency in some cases. * In order to limit the effects of GC thrashing when the program's live heap size approaches the soft memory limit, the Go runtime also attempts to limit total GC CPU utilization to 50%, excluding idle time, choosing to use more memory over preventing application progress. In practice, we expect this limit to only play a role in exceptional cases, and the new runtime metric /gc/limiter/last-enabled:gc-cycle reports when this last occurred. * The runtime now schedules many fewer GC worker goroutines on idle operating system threads when the application is idle enough to force a periodic GC cycle. * The runtime will now allocate initial goroutine stacks based on the historic average stack usage of goroutines. This avoids some of the early stack growth and copying needed in the average case in exchange for at most 2x wasted space on below-average goroutines. * On Unix operating systems, Go programs that import package os now automatically increase the open file limit (RLIMIT_NOFILE) to the maximum allowed value; that is, they change the soft limit to match the hard limit. This corrects artificially low limits set on some systems for compatibility with very old C programs using the select system call. Go programs are not helped by that limit, and instead even simple programs like gofmt often ran out of file descriptors on such systems when processing many files in parallel. One impact of this change is that Go programs that in turn execute very old C programs in child processes may run those programs with too high a limit. This can be corrected by setting the hard limit before invoking the Go program. * Unrecoverable fatal errors (such as concurrent map writes, or unlock of unlocked mutexes) now print a simpler traceback excluding runtime metadata (equivalent to a fatal panic) unless GOTRACEBACK=system or crash. Runtime-internal fatal error tracebacks always include full metadata regardless of the value of GOTRACEBACK * Support for debugger-injected function calls has been added on ARM64, enabling users to call functions from their binary in an interactive debugging session when using a debugger that is updated to make use of this functionality. * The address sanitizer support added in Go 1.18 now handles function arguments and global variables more precisely. * The compiler now uses a jump table to implement large integer and string switch statements. Performance improvements for the switch statement vary but can be on the order of 20% faster. (GOARCH=amd64 and GOARCH=arm64 only) * The Go compiler now requires the -p=importpath flag to build a linkable object file. This is already supplied by the go command and by Bazel. Any other build systems that invoke the Go compiler directly will need to make sure they pass this flag as well. * The Go compiler no longer accepts the -importmap flag. Build systems that invoke the Go compiler directly must use the -importcfg flag instead. * Like the compiler, the assembler now requires the -p=importpath flag to build a linkable object file. This is already supplied by the go command. Any other build systems that invoke the Go assembler directly will need to make sure they pass this flag as well. * Command and LookPath no longer allow results from a PATH search to be found relative to the current directory. This removes a common source of security problems but may also break existing programs that depend on using, say, exec.Command("prog") to run a binary named prog (or, on Windows, prog.exe) in the current directory. See the os/exec package documentation for information about how best to update such programs. * On Windows, Command and LookPath now respect the NoDefaultCurrentDirectoryInExePath environment variable, making it possible to disable the default implicit search of “.” in PATH lookups on Windows systems. * crypto/elliptic: Operating on invalid curve points (those for which the IsOnCurve method returns false, and which are never returned by Unmarshal or by a Curve method operating on a valid point) has always been undefined behavior and can lead to key recovery attacks. If an invalid point is supplied to Marshal, MarshalCompressed, Add, Double, or ScalarMult, they will now panic. ScalarBaseMult operations on the P224, P384, and P521 curves are now up to three times faster, leading to similar speedups in some ECDSA operations. The generic (not platform optimized) P256 implementation was replaced with one derived from a formally verified model; this might lead to significant slowdowns on 32-bit platforms. * crypto/rand: Read no longer buffers random data obtained from the operating system between calls. Applications that perform many small reads at high frequency might choose to wrap Reader in a bufio.Reader for performance reasons, taking care to use io.ReadFull to ensure no partial reads occur. The Prime implementation was changed to use only rejection sampling, which removes a bias when generating small primes in non-cryptographic contexts, removes one possible minor timing leak, and better aligns the behavior with BoringSSL, all while simplifying the implementation. The change does produce different outputs for a given random source stream compared to the previous implementation, which can break tests written expecting specific results from specific deterministic random sources. To help prevent such problems in the future, the implementation is now intentionally non-deterministic with respect to the input stream. * crypto/tls: The GODEBUG option tls10default=1 has been removed. It is still possible to enable TLS 1.0 client-side by setting Config.MinVersion. The TLS server and client now reject duplicate extensions in TLS handshakes, as required by RFC 5246, Section 7.4.1.4 and RFC 8446, Section 4.2. * crypto/x509: CreateCertificate no longer supports creating certificates with SignatureAlgorithm set to MD5WithRSA. CreateCertificate no longer accepts negative serial numbers. CreateCertificate will not emit an empty SEQUENCE anymore when the produced certificate has no extensions. ParseCertificate and ParseCertificateRequest now reject certificates and CSRs which contain duplicate extensions. The new CertPool.Clone and CertPool.Equal methods allow cloning a CertPool and checking the equivalence of two CertPools respectively. The new function ParseRevocationList provides a faster, safer to use CRL parser which returns a RevocationList. Parsing a CRL also populates the new RevocationList fields RawIssuer, Signature, AuthorityKeyId, and Extensions, which are ignored by CreateRevocationList. The new method RevocationList.CheckSignatureFrom checks that the signature on a CRL is a valid signature from a Certificate. The ParseCRL and ParseDERCRL functions are now deprecated in favor of ParseRevocationList. The Certificate.CheckCRLSignature method is deprecated in favor of RevocationList.CheckSignatureFrom. The path builder of Certificate.Verify was overhauled and should now produce better chains and/or be more efficient in complicated scenarios. Name constraints are now also enforced on non-leaf certificates. * crypto/x509/pkix: The types CertificateList and TBSCertificateList have been deprecated. The new crypto/x509 CRL functionality should be used instead. * debug/elf: The new EM_LOONGARCH and R_LARCH_* constants support the loong64 port. * debug/pe: The new File.COFFSymbolReadSectionDefAux method, which returns a COFFSymbolAuxFormat5, provides access to COMDAT information in PE file sections. These are supported by new IMAGE_COMDAT_* and IMAGE_SCN_* constants. * runtime: The GOROOT function now returns the empty string (instead of "go") when the binary was built with the -trimpath flag set and the GOROOT variable is not set in the process environment. * runtime/metrics: The new /sched/gomaxprocs:threads metric reports the current runtime.GOMAXPROCS value. The new /cgo/go-to-c-calls:calls metric reports the total number of calls made from Go to C. This metric is identical to the runtime.NumCgoCall function. The new /gc/limiter/last-enabled:gc-cycle metric reports the last GC cycle when the GC CPU limiter was enabled. See the runtime notes for details about the GC CPU limiter. * runtime/pprof: Stop-the-world pause times have been significantly reduced when collecting goroutine profiles, reducing the overall latency impact to the application. MaxRSS is now reported in heap profiles for all Unix operating systems (it was previously only reported for GOOS=android, darwin, ios, and linux). * runtime/race: The race detector has been upgraded to use thread sanitizer version v3 on all supported platforms except windows/amd64 and openbsd/amd64, which remain on v2. Compared to v2, it is now typically 1.5x to 2x faster, uses half as much memory, and it supports an unlimited number of goroutines. On Linux, the race detector now requires at least glibc version 2.17 and GNU binutils 2.26. The race detector is now supported on GOARCH=s390x. Race detector support for openbsd/amd64 has been removed from thread sanitizer upstream, so it is unlikely to ever be updated from v2. * runtime/trace: When tracing and the CPU profiler are enabled simultaneously, the execution trace includes CPU profile samples as instantaneous events. * syscall: On PowerPC (GOARCH=ppc64, ppc64le), Syscall, Syscall6, RawSyscall, and RawSyscall6 now always return 0 for return value r2 instead of an undefined value. On AIX and Solaris, Getrusage is now defined. - Trace viewer html and javascript files moved from misc/trace in previous versions to src/cmd/trace/static in go1.19. * Added files with mode 0644: /usr/share/go/1.19/src/cmd/trace/static /usr/share/go/1.19/src/cmd/trace/static/README.md /usr/share/go/1.19/src/cmd/trace/static/trace_viewer_full.html /usr/share/go/1.19/src/cmd/trace/static/webcomponents.min.js go1.19-1.19-150000.1.3.1.src.rpm go1.19-1.19-150000.1.3.1.x86_64.rpm go1.19-doc-1.19-150000.1.3.1.x86_64.rpm go1.19-race-1.19-150000.1.3.1.x86_64.rpm go1.19-1.19-150000.1.3.1.s390x.rpm go1.19-doc-1.19-150000.1.3.1.s390x.rpm go1.19-1.19-150000.1.3.1.ppc64le.rpm go1.19-doc-1.19-150000.1.3.1.ppc64le.rpm go1.19-1.19-150000.1.3.1.aarch64.rpm go1.19-doc-1.19-150000.1.3.1.aarch64.rpm go1.19-race-1.19-150000.1.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3029 moderate SUSE Updates openSUSE-SLE 15.3 This update for 389-ds fixes the following issues: - CVE-2022-2850: Fixed an application crash when running a sync_repl client that could be triggered via a malformed cookie (bsc#1202470). Non-security fixes: - Update to version 1.4.4.19~git46.c900a28c8: * CI - makes replication/acceptance_test.py::test_modify_entry more robust * UI - LDAP Editor is not updated when we switch instances - Improvements to openldap import with password policy present (bsc#1199908) - Update to version 1.4.4.19~git43.8ba2ea21f: * fix covscan * BUG - pid file handling * Memory leak in slapi_ldap_get_lderrno * Need a compatibility option about sub suffix handling * Release tarballs don't contain cockpit webapp * Replication broken after password change * Harden ReplicationManager.wait_for_replication * dscontainer: TypeError: unsupported operand type(s) for /: 'str' and 'int' * CLI - dsconf backend export breaks with multiple backends * CLI - improve task handling 389-ds-1.4.4.19~git46.c900a28c8-150300.3.22.1.src.rpm 389-ds-1.4.4.19~git46.c900a28c8-150300.3.22.1.x86_64.rpm 389-ds-devel-1.4.4.19~git46.c900a28c8-150300.3.22.1.x86_64.rpm 389-ds-snmp-1.4.4.19~git46.c900a28c8-150300.3.22.1.x86_64.rpm lib389-1.4.4.19~git46.c900a28c8-150300.3.22.1.x86_64.rpm libsvrcore0-1.4.4.19~git46.c900a28c8-150300.3.22.1.x86_64.rpm 389-ds-1.4.4.19~git46.c900a28c8-150300.3.22.1.s390x.rpm 389-ds-devel-1.4.4.19~git46.c900a28c8-150300.3.22.1.s390x.rpm 389-ds-snmp-1.4.4.19~git46.c900a28c8-150300.3.22.1.s390x.rpm lib389-1.4.4.19~git46.c900a28c8-150300.3.22.1.s390x.rpm libsvrcore0-1.4.4.19~git46.c900a28c8-150300.3.22.1.s390x.rpm 389-ds-1.4.4.19~git46.c900a28c8-150300.3.22.1.ppc64le.rpm 389-ds-devel-1.4.4.19~git46.c900a28c8-150300.3.22.1.ppc64le.rpm 389-ds-snmp-1.4.4.19~git46.c900a28c8-150300.3.22.1.ppc64le.rpm lib389-1.4.4.19~git46.c900a28c8-150300.3.22.1.ppc64le.rpm libsvrcore0-1.4.4.19~git46.c900a28c8-150300.3.22.1.ppc64le.rpm 389-ds-1.4.4.19~git46.c900a28c8-150300.3.22.1.aarch64.rpm 389-ds-devel-1.4.4.19~git46.c900a28c8-150300.3.22.1.aarch64.rpm 389-ds-snmp-1.4.4.19~git46.c900a28c8-150300.3.22.1.aarch64.rpm lib389-1.4.4.19~git46.c900a28c8-150300.3.22.1.aarch64.rpm libsvrcore0-1.4.4.19~git46.c900a28c8-150300.3.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-4354 moderate SUSE Updates openSUSE-SLE 15.3 This update for mvapich2 fixes the following issues: - Fix SIGFPE during MPI_Init on non-NUMA systems (bsc#1199808, bsc#1175679) mvapich2-psm2_2_3_3-gnu-hpc-2.3.3-150200.3.3.1.src.rpm mvapich2-psm2_2_3_3-gnu-hpc-2.3.3-150200.3.3.1.x86_64.rpm mvapich2-psm2_2_3_3-gnu-hpc-devel-2.3.3-150200.3.3.1.x86_64.rpm mvapich2-psm2_2_3_3-gnu-hpc-devel-static-2.3.3-150200.3.3.1.x86_64.rpm mvapich2-psm2_2_3_3-gnu-hpc-doc-2.3.3-150200.3.3.1.x86_64.rpm mvapich2-psm2_2_3_3-gnu-hpc-macros-devel-2.3.3-150200.3.3.1.x86_64.rpm mvapich2-psm_2_3_3-gnu-hpc-2.3.3-150200.3.3.1.src.rpm mvapich2-psm_2_3_3-gnu-hpc-2.3.3-150200.3.3.1.x86_64.rpm mvapich2-psm_2_3_3-gnu-hpc-devel-2.3.3-150200.3.3.1.x86_64.rpm mvapich2-psm_2_3_3-gnu-hpc-devel-static-2.3.3-150200.3.3.1.x86_64.rpm mvapich2-psm_2_3_3-gnu-hpc-doc-2.3.3-150200.3.3.1.x86_64.rpm mvapich2-psm_2_3_3-gnu-hpc-macros-devel-2.3.3-150200.3.3.1.x86_64.rpm mvapich2_2_3_3-gnu-hpc-2.3.3-150200.3.3.1.src.rpm mvapich2_2_3_3-gnu-hpc-2.3.3-150200.3.3.1.x86_64.rpm mvapich2_2_3_3-gnu-hpc-devel-2.3.3-150200.3.3.1.x86_64.rpm mvapich2_2_3_3-gnu-hpc-devel-static-2.3.3-150200.3.3.1.x86_64.rpm mvapich2_2_3_3-gnu-hpc-doc-2.3.3-150200.3.3.1.x86_64.rpm mvapich2_2_3_3-gnu-hpc-macros-devel-2.3.3-150200.3.3.1.x86_64.rpm mvapich2_2_3_3-gnu-hpc-2.3.3-150200.3.3.1.s390x.rpm mvapich2_2_3_3-gnu-hpc-devel-2.3.3-150200.3.3.1.s390x.rpm mvapich2_2_3_3-gnu-hpc-devel-static-2.3.3-150200.3.3.1.s390x.rpm mvapich2_2_3_3-gnu-hpc-doc-2.3.3-150200.3.3.1.s390x.rpm mvapich2_2_3_3-gnu-hpc-macros-devel-2.3.3-150200.3.3.1.s390x.rpm mvapich2_2_3_3-gnu-hpc-2.3.3-150200.3.3.1.ppc64le.rpm mvapich2_2_3_3-gnu-hpc-devel-2.3.3-150200.3.3.1.ppc64le.rpm mvapich2_2_3_3-gnu-hpc-devel-static-2.3.3-150200.3.3.1.ppc64le.rpm mvapich2_2_3_3-gnu-hpc-doc-2.3.3-150200.3.3.1.ppc64le.rpm mvapich2_2_3_3-gnu-hpc-macros-devel-2.3.3-150200.3.3.1.ppc64le.rpm mvapich2_2_3_3-gnu-hpc-2.3.3-150200.3.3.1.aarch64.rpm mvapich2_2_3_3-gnu-hpc-devel-2.3.3-150200.3.3.1.aarch64.rpm mvapich2_2_3_3-gnu-hpc-devel-static-2.3.3-150200.3.3.1.aarch64.rpm mvapich2_2_3_3-gnu-hpc-doc-2.3.3-150200.3.3.1.aarch64.rpm mvapich2_2_3_3-gnu-hpc-macros-devel-2.3.3-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3024 moderate SUSE Updates openSUSE-SLE 15.3 This update for plymouth fixes the following issues: - Avoid aborting on multiple font path match, pick the first one. (bsc#1183425) - When screen DPI greater then 160, display will scale output twice. (bsc#1183425, bsc#1184309) libply-boot-client5-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm libply-splash-core5-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm libply-splash-graphics5-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm libply5-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-0.9.5+git20190908+3abfab2-150300.7.5.1.src.rpm plymouth-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-branding-upstream-0.9.5+git20190908+3abfab2-150300.7.5.1.noarch.rpm plymouth-devel-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-dracut-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-plugin-fade-throbber-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-plugin-label-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-plugin-label-ft-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-plugin-script-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-plugin-space-flares-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-plugin-throbgress-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-plugin-tribar-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-plugin-two-step-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-scripts-0.9.5+git20190908+3abfab2-150300.7.5.1.x86_64.rpm plymouth-theme-bgrt-0.9.5+git20190908+3abfab2-150300.7.5.1.noarch.rpm plymouth-theme-fade-in-0.9.5+git20190908+3abfab2-150300.7.5.1.noarch.rpm plymouth-theme-script-0.9.5+git20190908+3abfab2-150300.7.5.1.noarch.rpm plymouth-theme-solar-0.9.5+git20190908+3abfab2-150300.7.5.1.noarch.rpm plymouth-theme-spinfinity-0.9.5+git20190908+3abfab2-150300.7.5.1.noarch.rpm plymouth-theme-spinner-0.9.5+git20190908+3abfab2-150300.7.5.1.noarch.rpm plymouth-theme-tribar-0.9.5+git20190908+3abfab2-150300.7.5.1.noarch.rpm libply-boot-client5-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm libply-splash-core5-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm libply-splash-graphics5-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm libply5-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-devel-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-dracut-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-plugin-fade-throbber-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-plugin-label-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-plugin-label-ft-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-plugin-script-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-plugin-space-flares-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-plugin-throbgress-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-plugin-tribar-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-plugin-two-step-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm plymouth-scripts-0.9.5+git20190908+3abfab2-150300.7.5.1.s390x.rpm libply-boot-client5-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm libply-splash-core5-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm libply-splash-graphics5-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm libply5-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-devel-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-dracut-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-plugin-fade-throbber-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-plugin-label-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-plugin-label-ft-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-plugin-script-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-plugin-space-flares-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-plugin-throbgress-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-plugin-tribar-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-plugin-two-step-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm plymouth-scripts-0.9.5+git20190908+3abfab2-150300.7.5.1.ppc64le.rpm libply-boot-client5-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm libply-splash-core5-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm libply-splash-graphics5-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm libply5-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-devel-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-dracut-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-plugin-fade-throbber-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-plugin-label-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-plugin-label-ft-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-plugin-script-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-plugin-space-flares-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-plugin-throbgress-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-plugin-tribar-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-plugin-two-step-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm plymouth-scripts-0.9.5+git20190908+3abfab2-150300.7.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-2790 moderate SUSE Updates openSUSE-SLE 15.3 This update for supportutils-plugin-ha-sap fixes the following issues: - Update to version 0.0.3+git.1659022100.39bfcd6: * Update README.md * Replace spaces to tabs. * Search for other groups too. * Include /etc/group in plugin-ha_sap.txt (bsc#1201831) * Update ha_sap * Update pacemaker.log location change * suppress link path in Readme.md * add section 'Additional information' to the Readme.md * change release status of the project supportutils-plugin-ha-sap-0.0.3+git.1659022100.39bfcd6-150000.1.9.1.noarch.rpm supportutils-plugin-ha-sap-0.0.3+git.1659022100.39bfcd6-150000.1.9.1.src.rpm openSUSE-SLE-15.3-2022-2875 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36516: Fixed TCP session data injection vulnerability via the mixed IPID assignment method (bnc#1196616). - CVE-2020-36557: Fixed race condition between the VT_DISALLOCATE ioctl and closing/opening of ttys that could lead to a use-after-free (bnc#1201429). - CVE-2020-36558: Fixed race condition involving VT_RESIZEX that could lead to a NULL pointer dereference and general protection fault (bnc#1200910). - CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO (bnc#1201635). - CVE-2021-33656: Fixed out of bounds write with ioctl PIO_FONT (bnc#1201636). - CVE-2022-1116: Fixed a integer overflow vulnerability in io_uring which allowed a local attacker to cause memory corruption and escalate privileges to root (bnc#1199647). - CVE-2022-1462: Fixed an out-of-bounds read flaw in the TeleTYpe subsystem (bnc#1198829). - CVE-2022-2318: Fixed a use-after-free vulnerabilities in the timer handler in net/rose/rose_timer.c that allow attackers to crash the system without any privileges (bsc#1201251). - CVE-2022-2639: Fixed integer underflow that could lead to out-of-bounds write in reserve_sfa_size() (bsc#1202154). - CVE-2022-20166: Fixed possible out of bounds write due to sprintf unsafety that could cause local escalation of privilege (bnc#1200598) - CVE-2022-21505: Fixed kexec lockdown bypass with IMA policy (bsc#1201458). - CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends (bsc#1200762). - CVE-2022-29581: Fixed improper update of Reference Count in net/sched that could cause root privilege escalation (bnc#1199665). - CVE-2022-32250: Fixed user-after-free in net/netfilter/nf_tables_api.c that could allow local privilege escalation (bnc#1200015). - CVE-2022-36946: Fixed incorrect packet truncation in nfqnl_mangle() that could lead to remote DoS (bnc#1201940). The following non-security bugs were fixed: - ACPI: APEI: Better fix to avoid spamming the console with old error logs (git-fixes). - ACPI: CPPC: Do not prevent CPPC from working in the future (git-fixes). - ACPI: video: Shortening quirk list by identifying Clevo by board_name only (git-fixes). - ALSA: hda - Add fixup for Dell Latitidue E5430 (git-fixes). - ALSA: hda/conexant: Apply quirk for another HP ProDesk 600 G3 model (git-fixes). - ALSA: hda/realtek - Enable the headset-mic on a Xiaomi's laptop (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc221 (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 (git-fixes). - ASoC: Intel: Skylake: Correct the handling of fmt_config flexible array (git-fixes). - ASoC: Intel: Skylake: Correct the ssp rate discovery in skl_get_ssp_clks() (git-fixes). - ASoC: Remove unused hw_write_t type (git-fixes). - ASoC: cs47l15: Fix event generation for low power mux control (git-fixes). - ASoC: madera: Fix event generation for OUT1 demux (git-fixes). - ASoC: madera: Fix event generation for rate controls (git-fixes). - ASoC: ops: Fix off by one in range control validation (git-fixes). - ASoC: sgtl5000: Fix noise on shutdown/remove (git-fixes). - ASoC: wm5110: Fix DRE control (git-fixes). - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put (git-fixes). - Bluetooth: hci_intel: Add check for platform_driver_register (git-fixes). - FDDI: defxx: Bail out gracefully with unassigned PCI resource for CSR (git-fixes). - FDDI: defxx: Make MMIO the configuration default except for EISA (git-fixes). - Fixed a system crash related to the recent RETBLEED mitigation (bsc#1201644, bsc#1201664, bsc#1201672, bsc#1201673, bsc#1201676). - Fixed battery detection problem on macbooks (bnc#1201206). - HID: cp2112: prevent a buffer overflow in cp2112_xfer() (git-fixes). - KVM/emulate: Fix SETcc emulation function offsets with SLS (bsc#1201930). - KVM: VMX: Add non-canonical check on writes to RTIT address MSRs (git-fixes). - KVM: VMX: Do not freeze guest when event delivery causes an APIC-access exit (git-fixes). - KVM: apic: avoid calculating pending eoi from an uninitialized val (git-fixes). - KVM: arm64: Avoid setting the upper 32 bits of TCR_EL2 and CPTR_EL2 (bsc#1201442) - KVM: arm64: Fix definition of PAGE_HYP_DEVICE (git-fixes) - KVM: emulate: do not adjust size of fastop and setcc subroutines (bsc#1201930). - KVM: nVMX: avoid NULL pointer dereference with incorrect EVMCS GPAs (git-fixes). - KVM: nVMX: handle nested posted interrupts when apicv is disabled for L1 (git-fixes). - KVM: x86/pmu: Fix UBSAN shift-out-of-bounds warning in intel_pmu_refresh() (git-fixes). - KVM: x86: Do not let userspace set host-reserved cr4 bits (git-fixes). - KVM: x86: Fix split-irqchip vs interrupt injection window request (git-fixes). - KVM: x86: Refactor prefix decoding to prevent Spectre-v1/L1TF attacks (git-fixes). - KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (git-fixes). - KVM: x86: handle !lapic_in_kernel case in kvm_cpu_*_extint (git-fixes). - NFC: nxp-nci: do not print header length mismatch on i2c error (git-fixes). - PCI/portdrv: Do not disable AER reporting in get_port_device_capability() (git-fixes). - PCI: dwc: Add unroll iATU space support to dw_pcie_disable_atu() (git-fixes). - PCI: dwc: Always enable CDM check if "snps,enable-cdm-check" exists (git-fixes). - PCI: dwc: Deallocate EPC memory on dw_pcie_ep_init() errors (git-fixes). - PCI: dwc: Disable outbound windows only for controllers using iATU (git-fixes). - PCI: dwc: Stop link on host_init errors and de-initialization (git-fixes). - PCI: qcom: Power on PHY before IPQ8074 DBI register accesses (git-fixes). - PCI: qcom: Set up rev 2.1.0 PARF_PHY before enabling clocks (git-fixes). - PCI: tegra194: Fix PM error handling in tegra_pcie_config_ep() (git-fixes). - PCI: tegra194: Fix Root Port interrupt handling (git-fixes). - PCI: tegra194: Fix link up retry sequence (git-fixes). - PM: runtime: Remove link state checks in rpm_get/put_supplier() (git-fixes). - Sort in RETbleed backport into the sorted section Now that it is upstream.. - USB: Follow-up to SPDX identifiers addition - remove now useless comments (git-fixes). - USB: serial: fix tty-port initialized comments (git-fixes). - USB: serial: ftdi_sio: add Belimo device ids (git-fixes). - amd-xgbe: Update DMA coherency values (git-fixes). - arm64 module: set plt* section addresses to 0x0 (git-fixes) - arm64: Extend workaround for erratum 1024718 to all versions of (git-fixes) - arm64: asm: Add new-style position independent function annotations (git-fixes) - arm64: compat: Ensure upper 32 bits of x0 are zero on syscall return (git-fixes) - arm64: dts: marvell: armada-37xx: Set pcie_reset_pin to gpio function (git-fixes) - arm64: dts: marvell: espressobin: Add ethernet switch aliases (git-fixes) - arm64: dts: marvell: espressobin: add ethernet alias (git-fixes) - arm64: dts: mcbin: support 2W SFP modules (git-fixes) - arm64: fix compat syscall return truncation (git-fixes) - arm64: fix inline asm in load_unaligned_zeropad() (git-fixes) - arm64: mm: Do not invalidate FROM_DEVICE buffers at start of DMA (git-fixes) - arm64: module: remove (NOLOAD) from linker script (git-fixes) - arm64: module: rework special section handling (git-fixes) - arm64: perf: Report the PC value in REGS_ABI_32 mode (git-fixes) - arm64: ptrace: Consistently use pseudo-singlestep exceptions (git-fixes) - arm64: ptrace: Override SPSR.SS when single-stepping is enabled (git-fixes) - arm64: stackleak: fix current_top_of_stack() (git-fixes) - arm64: uprobe: Return EOPNOTSUPP for AARCH32 instruction probing (git-fixes) - arm64: vdso: Avoid ISB after reading from cntvct_el0 (git-fixes) - ath10k: Fix error handling in ath10k_setup_msa_resources (git-fixes). - ath10k: do not enforce interrupt trigger type (git-fixes). - ax88179_178a: add ethtool_op_get_ts_info() (git-fixes). - blk-zoned: allow BLKREPORTZONE without CAP_SYS_ADMIN (git-fixes). - blk-zoned: allow zone management send operations without CAP_SYS_ADMIN (git-fixes). - block/compat_ioctl: fix range check in BLKGETSIZE (git-fixes). - block: Fix fsync always failed if once failed (git-fixes). - block: Fix wrong offset in bio_truncate() (git-fixes). - block: bio-integrity: Advance seed correctly for larger interval sizes (git-fixes). - block: do not delete queue kobject before its children (git-fixes). - block: drbd: drbd_nl: Make conversion to 'enum drbd_ret_code' explicit (git-fixes). - bpf, cpumap: Remove rcpu pointer from cpu_map_build_skb signature (bsc#1199364). - bpf: Add config to allow loading modules with BTF mismatches (jsc#SLE-24559). - bpf: Add in-kernel split BTF support (jsc#SLE-24559). - bpf: Assign ID to vmlinux BTF and return extra info for BTF in GET_OBJ_INFO (jsc#SLE-24559). - bpf: Keep module's btf_data_size intact after load (jsc#SLE-24559). - bpf: Load and verify kernel module BTFs (jsc#SLE-24559). - bpf: Provide function to get vmlinux BTF information (jsc#SLE-24559). - bpf: Sanitize BTF data pointer after module is loaded (jsc#SLE-24559). - bus: hisi_lpc: fix missing platform_device_put() in hisi_lpc_acpi_probe() (git-fixes). - can: Break loopback loop on loopback documentation (git-fixes). - can: error: specify the values of data[5..7] of CAN error frames (git-fixes). - can: gs_usb: gs_usb_open/close(): fix memory leak (git-fixes). - can: hi311x: do not report txerr and rxerr during bus-off (git-fixes). - can: kvaser_usb_hydra: do not report txerr and rxerr during bus-off (git-fixes). - can: kvaser_usb_leaf: do not report txerr and rxerr during bus-off (git-fixes). - can: pch_can: do not report txerr and rxerr during bus-off (git-fixes). - can: pch_can: pch_can_error(): initialize errc before using it (git-fixes). - can: rcar_can: do not report txerr and rxerr during bus-off (git-fixes). - can: sja1000: do not report txerr and rxerr during bus-off (git-fixes). - can: sun4i_can: do not report txerr and rxerr during bus-off (git-fixes). - can: usb_8dev: do not report txerr and rxerr during bus-off (git-fixes). - clk: qcom: camcc-sdm845: Fix topology around titan_top power domain (git-fixes). - clk: qcom: clk-krait: unlock spin after mux completion (git-fixes). - clk: qcom: ipq8074: SW workaround for UBI32 PLL lock (git-fixes). - clk: qcom: ipq8074: fix NSS core PLL-s (git-fixes). - clk: qcom: ipq8074: fix NSS port frequency tables (git-fixes). - clk: qcom: ipq8074: set BRANCH_HALT_DELAY flag for UBI clocks (git-fixes). - clk: renesas: r9a06g032: Fix UART clkgrp bitsel (git-fixes). - config: enable DEBUG_INFO_BTF This option allows users to access the btf type information for vmlinux but not kernel modules. - cpuidle: PSCI: Move the `has_lpi` check to the beginning of the (git-fixes) - crypto: qat - disable registration of algorithms (git-fixes). - crypto: qat - fix memory leak in RSA (git-fixes). - crypto: qat - remove dma_free_coherent() for DH (git-fixes). - crypto: qat - remove dma_free_coherent() for RSA (git-fixes). - crypto: qat - set to zero DH parameters before free (git-fixes). - cxgb4: Fix the -Wmisleading-indentation warning (git-fixes). - dm btree remove: assign new_root only when removal succeeds (git-fixes). - dm btree remove: fix use after free in rebalance_children() (git-fixes). - dm bufio: subtract the number of initial sectors in dm_bufio_get_device_size (git-fixes). - dm crypt: Avoid percpu_counter spinlock contention in crypt_page_alloc() (git-fixes). - dm crypt: fix get_key_size compiler warning if !CONFIG_KEYS (git-fixes). - dm crypt: make printing of the key constant-time (git-fixes). - dm integrity: conditionally disable "recalculate" feature (git-fixes). - dm integrity: fix a crash if "recalculate" used without "internal_hash" (git-fixes). - dm integrity: fix error code in dm_integrity_ctr() (git-fixes). - dm integrity: fix memory corruption when tag_size is less than digest size (git-fixes). - dm integrity: fix the maximum number of arguments (git-fixes). - dm mirror log: round up region bitmap size to BITS_PER_LONG (git-fixes). - dm persistent data: packed struct should have an aligned() attribute too (git-fixes). - dm raid: fix inconclusive reshape layout on fast raid4/5/6 table reload sequences (git-fixes). - dm snapshot: fix crash with transient storage and zero chunk size (git-fixes). - dm snapshot: flush merged data before committing metadata (git-fixes). - dm snapshot: properly fix a crash when an origin has no snapshots (git-fixes). - dm space map common: fix division bug in sm_ll_find_free_block() (git-fixes). - dm stats: add cond_resched when looping over entries (git-fixes). - dm verity: fix FEC for RS roots unaligned to block size (git-fixes). - dm: fix mempool NULL pointer race when completing IO (git-fixes). - dmaengine: at_xdma: handle errors of at_xdmac_alloc_desc() correctly (git-fixes). - dmaengine: imx-sdma: Allow imx8m for imx7 FW revs (git-fixes). - dmaengine: pl330: Fix lockdep warning about non-static key (git-fixes). - dmaengine: ti: Add missing put_device in ti_dra7_xbar_route_allocate (git-fixes). - dmaengine: ti: Fix refcount leak in ti_dra7_xbar_route_allocate (git-fixes). - do not call utsname() after ->nsproxy is NULL (bsc#1201196). - drbd: fix potential silent data corruption (git-fixes). - driver core: fix potential deadlock in __driver_attach (git-fixes). - drivers/net: Fix kABI in tun.c (git-fixes). - drivers: net: fix memory leak in atusb_probe (git-fixes). - drivers: net: fix memory leak in peak_usb_create_dev (git-fixes). - drm/amd/display: Enable building new display engine with KCOV enabled (git-fixes). - drm/bridge: tc358767: Make sure Refclk clock are enabled (git-fixes). - drm/doc: Fix comment typo (git-fixes). - drm/exynos/exynos7_drm_decon: free resources when clk_set_parent() failed (git-fixes). - drm/i915/gt: Serialize TLB invalidates with GT resets (git-fixes). - drm/i915/selftests: fix a couple IS_ERR() vs NULL tests (git-fixes). - drm/i915: fix a possible refcount leak in intel_dp_add_mst_connector() (git-fixes). - drm/mcde: Fix refcount leak in mcde_dsi_bind (git-fixes). - drm/mediatek: Add pull-down MIPI operation in mtk_dsi_poweroff function (git-fixes). - drm/mediatek: dpi: Only enable dpi after the bridge is enabled (git-fixes). - drm/mediatek: dpi: Remove output format of YUV (git-fixes). - drm/mipi-dbi: align max_chunk to 2 in spi_transfer (git-fixes). - drm/msm/hdmi: enable core-vcc/core-vdda-supply for 8996 platform (git-fixes). - drm/msm/mdp5: Fix global state lock backoff (git-fixes). - drm/nouveau: fix another off-by-one in nvbios_addr (git-fixes). - drm/panfrost: Fix shrinker list corruption by madvise IOCTL (git-fixes). - drm/panfrost: Put mapping instead of shmem obj on panfrost_mmu_map_fault_addr() error (git-fixes). - drm/radeon: fix incorrrect SPDX-License-Identifiers (git-fixes). - drm/radeon: fix potential buffer overflow in ni_set_mc_special_registers() (git-fixes). - drm/rockchip: Fix an error handling path rockchip_dp_probe() (git-fixes). - drm/rockchip: vop: Do not crash for invalid duplicate_state() (git-fixes). - drm/st7735r: Fix module autoloading for Okaya RH128128T (git-fixes). - drm/vc4: dsi: Add correct stop condition to vc4_dsi_encoder_disable iteration (git-fixes). - drm/vc4: dsi: Correct DSI divider calculations (git-fixes). - drm/vc4: dsi: Correct pixel order for DSI0 (git-fixes). - drm/vc4: hdmi: Correct HDMI timing registers for interlaced modes (git-fixes). - drm/vc4: hdmi: Fix timings for interlaced modes (git-fixes). - drm/vc4: plane: Fix margin calculations for the right/bottom edges (git-fixes). - drm/vc4: plane: Remove subpixel positioning check (git-fixes). - drm: adv7511: override i2c address of cec before accessing it (git-fixes). - drm: bridge: adv7511: Add check for mipi_dsi_driver_register (git-fixes). - drm: bridge: sii8620: fix possible off-by-one (git-fixes). - fbcon: Disallow setting font bigger than screen size (git-fixes). - fbcon: Prevent that screen size is smaller than font size (git-fixes). - fbdev: fbmem: Fix logo center image dx issue (git-fixes). - fbmem: Check virtual screen sizes in fb_set_var() (git-fixes). - fpga: altera-pr-ip: fix unsigned comparison with less than zero (git-fixes). - ftgmac100: Restart MAC HW once (git-fixes). - gpio: gpiolib-of: Fix refcount bugs in of_mm_gpiochip_add_data() (git-fixes). - gpio: pca953x: only use single read/write for No AI mode (git-fixes). - gpio: pca953x: use the correct range when do regmap sync (git-fixes). - gpio: pca953x: use the correct register address when regcache sync during init (git-fixes). - hex2bin: make the function hex_to_bin constant-time (git-fixes). - hv_netvsc: Add (more) validation for untrusted Hyper-V values (bsc#1199364). - hv_netvsc: Add comment of netvsc_xdp_xmit() (bsc#1199364). - hv_netvsc: Add support for XDP_REDIRECT (bsc#1199364). - hv_netvsc: Copy packets sent by Hyper-V out of the receive buffer (bsc#1199364). - hv_netvsc: Fix validation in netvsc_linkstatus_callback() (bsc#1199364). - i2c: Fix a potential use after free (git-fixes). - i2c: cadence: Change large transfer count reset logic to be unconditional (git-fixes). - i2c: cadence: Support PEC for SMBus block read (git-fixes). - i2c: cadence: Unregister the clk notifier in error path (git-fixes). - i2c: mux-gpmux: Add of_node_put() when breaking out of loop (git-fixes). - ida: do not use BUG_ON() for debugging (git-fixes). - igb: Enable RSS for Intel I211 Ethernet Controller (git-fixes). - iio: accel: bma220: Fix alignment for DMA safety (git-fixes). - iio: accel: sca3000: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7266: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7298: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7476: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7766: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7768-1: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7887: Fix alignment for DMA safety (git-fixes). - iio: adc: hi8435: Fix alignment for DMA safety (git-fixes). - iio: adc: ltc2497: Fix alignment for DMA safety (git-fixes). - iio: adc: max1027: Fix alignment for DMA safety (git-fixes). - iio: adc: max11100: Fix alignment for DMA safety (git-fixes). - iio: adc: max1118: Fix alignment for DMA safety (git-fixes). - iio: adc: mcp320x: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc0832: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc084s021: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc12138: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc128s052: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc161s626: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads124s08: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads7950: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads8344: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads8688: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-tlc4541: Fix alignment for DMA safety (git-fixes). - iio: amplifiers: ad8366: Fix alignment for DMA safety (git-fixes). - iio: core: Fix IIO_ALIGN and rename as it was not sufficiently large (git-fixes). - iio: dac: ad5064: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5360: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5421: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5449: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5504: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5755: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5761: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5764: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5791: Fix alignment for DMA saftey (git-fixes). - iio: dac: ad7303: Fix alignment for DMA safety (git-fixes). - iio: dac: ad8801: Fix alignment for DMA safety (git-fixes). - iio: dac: mcp4922: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac082s085: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac5571: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac7311: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac7612: Fix alignment for DMA safety (git-fixes). - iio: frequency: ad9523: Fix alignment for DMA safety (git-fixes). - iio: frequency: adf4350: Fix alignment for DMA safety (git-fixes). - iio: frequency: adf4371: Fix alignment for DMA safety (git-fixes). - iio: gyro: adis16080: Fix alignment for DMA safety (git-fixes). - iio: gyro: adis16130: Fix alignment for DMA safety (git-fixes). - iio: gyro: adxrs450: Fix alignment for DMA safety (git-fixes). - iio: gyro: fxas210002c: Fix alignment for DMA safety (git-fixes). - iio: light: isl29028: Fix the warning in isl29028_remove() (git-fixes). - iio: potentiometer: ad5272: Fix alignment for DMA safety (git-fixes). - iio: potentiometer: max5481: Fix alignment for DMA safety (git-fixes). - iio: potentiometer: mcp41010: Fix alignment for DMA safety (git-fixes). - iio: potentiometer: mcp4131: Fix alignment for DMA safety (git-fixes). - iio: proximity: as3935: Fix alignment for DMA safety (git-fixes). - iio: resolver: ad2s1200: Fix alignment for DMA safety (git-fixes). - iio: resolver: ad2s90: Fix alignment for DMA safety (git-fixes). - ima: Fix a potential integer overflow in ima_appraise_measurement (git-fixes). - ima: Fix potential memory leak in ima_init_crypto() (git-fixes). - intel_th: Fix a resource leak in an error handling path (git-fixes). - intel_th: msu-sink: Potential dereference of null pointer (git-fixes). - intel_th: msu: Fix vmalloced buffers (git-fixes). - kABI workaround for rtsx_usb (git-fixes). - kabi: create module private struct to hold btf size/data (jsc#SLE-24559). - kbuild: Build kernel module BTFs if BTF is enabled and pahole supports it (jsc#SLE-24559). - kbuild: Skip module BTF generation for out-of-tree external modules (jsc#SLE-24559). - kbuild: add marker for build log of *.mod.o (jsc#SLE-24559). - kbuild: drop $(wildcard $^) check in if_changed* for faster rebuild (jsc#SLE-24559). - kbuild: rebuild modules when module linker scripts are updated (jsc#SLE-24559). - kbuild: rename any-prereq to newer-prereqs (jsc#SLE-24559). - kbuild: split final module linking out into Makefile.modfinal (jsc#SLE-24559). - lib/string.c: implement stpcpy (git-fixes). - linux/random.h: Mark CONFIG_ARCH_RANDOM functions __must_check (git-fixes). - linux/random.h: Remove arch_has_random, arch_has_random_seed (git-fixes). - linux/random.h: Use false with bool (git-fixes). - lkdtm: Disable return thunks in rodata.c (bsc#1178134). - macvlan: remove redundant null check on data (git-fixes). - md/bitmap: wait for external bitmap writes to complete during tear down (git-fixes). - md/raid0: Ignore RAID0 layout if the second zone has only one device (git-fixes). - md: Set prev_flush_start and flush_bio in an atomic way (git-fixes). - md: bcache: check the return value of kzalloc() in detached_dev_do_request() (git-fixes). - media: hdpvr: fix error value returns in hdpvr_read (git-fixes). - media: rc: increase rc-mm tolerance and add debug message (git-fixes). - media: rtl28xxu: Add support for PROlectrix DV107669 DVB-T dongle (git-fixes). - media: rtl28xxu: add missing sleep before probing slave demod (git-fixes). - media: rtl28xxu: set keymap for Astrometa DVB-T2 (git-fixes). - media: smipcie: fix interrupt handling and IR timeout (git-fixes). - media: tw686x: Register the irq at the end of probe (git-fixes). - media: usb: dvb-usb-v2: rtl28xxu: convert to use i2c_new_client_device() (git-fixes). - media: v4l2-mem2mem: always consider OUTPUT queue during poll (git-fixes). - media: v4l2-mem2mem: reorder checks in v4l2_m2m_poll() (git-fixes). - mediatek: mt76: mac80211: Fix missing of_node_put() in mt76_led_init() (git-fixes). - memregion: Fix memregion_free() fallback definition (git-fixes). - memstick/ms_block: Fix a memory leak (git-fixes). - memstick/ms_block: Fix some incorrect memory allocation (git-fixes). - meson-mx-socinfo: Fix refcount leak in meson_mx_socinfo_init (git-fixes). - misc: rtsx: Fix an error handling path in rtsx_pci_probe() (git-fixes). - misc: rtsx_usb: fix use of dma mapped buffer for usb bulk transfer (git-fixes). - misc: rtsx_usb: set return value in rsp_buf alloc err path (git-fixes). - misc: rtsx_usb: use separate command and response buffers (git-fixes). - mm/slub: add missing TID updates on slab deactivation (git-fixes). - mm: fix page reference leak in soft_offline_page() (git fixes (mm/memory-failure)). - mmc: cavium-octeon: Add of_node_put() when breaking out of loop (git-fixes). - mmc: cavium-thunderx: Add of_node_put() when breaking out of loop (git-fixes). - mmc: sdhci-of-at91: fix set_uhs_signaling rewriting of MC1R (git-fixes). - mmc: sdhci-of-esdhc: Fix refcount leak in esdhc_signal_voltage_switch (git-fixes). - mt7601u: add USB device ID for some versions of XiaoDu WiFi Dongle (git-fixes). - mt76: mt76x02u: fix possible memory leak in __mt76x02u_mcu_send_msg (git-fixes). - net, xdp: Introduce __xdp_build_skb_from_frame utility routine (bsc#1199364). - net, xdp: Introduce xdp_build_skb_from_frame utility routine (bsc#1199364). - net/mlx5e: When changing XDP program without reset, take refs for XSK RQs (git-fixes). - net/sonic: Fix some resource leaks in error handling paths (git-fixes). - net: ag71xx: remove unnecessary MTU reservation (git-fixes). - net: allwinner: Fix some resources leak in the error handling path of the probe and in the remove function (git-fixes). - net: amd-xgbe: Fix NETDEV WATCHDOG transmit queue timeout warning (git-fixes). - net: amd-xgbe: Fix network fluctuations when using 1G BELFUSE SFP (git-fixes). - net: amd-xgbe: Reset link when the link never comes back (git-fixes). - net: amd-xgbe: Reset the PHY rx data path when mailbox command timeout (git-fixes). - net: axienet: Handle deferred probe on clock properly (git-fixes). - net: dsa: bcm_sf2: Qualify phydev->dev_flags based on port (git-fixes). - net: dsa: bcm_sf2: put device node before return (git-fixes). - net: dsa: lantiq_gswip: Exclude RMII from modes that report 1 GbE (git-fixes). - net: dsa: lantiq_gswip: Let GSWIP automatically set the xMII clock (git-fixes). - net: enetc: fix incorrect TPID when receiving 802.1ad tagged packets (git-fixes). - net: enetc: keep RX ring consumer index in sync with hardware (git-fixes). - net: evaluate net.ipv4.conf.all.proxy_arp_pvlan (git-fixes). - net: evaluate net.ipvX.conf.all.ignore_routes_with_linkdown (git-fixes). - net: hns3: fix error mask definition of flow director (git-fixes). - net: hso: bail out on interrupt URB allocation failure (git-fixes). - net: lapbether: Remove netif_start_queue / netif_stop_queue (git-fixes). - net: ll_temac: Fix potential NULL dereference in temac_probe() (git-fixes). - net: ll_temac: Use devm_platform_ioremap_resource_byname() (git-fixes). - net: macb: add function to disable all macb clocks (git-fixes). - net: macb: restore cmp registers on resume path (git-fixes). - net: macb: unprepare clocks in case of failure (git-fixes). - net: mscc: Fix OF_MDIO config check (git-fixes). - net: mvneta: Remove per-cpu queue mapping for Armada 3700 (git-fixes). - net: rose: fix UAF bug caused by rose_t0timer_expiry (git-fixes). - net: stmmac: dwmac-sun8i: Provide TX and RX fifo sizes (git-fixes). - net: stmmac: dwmac1000: provide multicast filter fallback (git-fixes). - net: stmmac: fix CBS idleslope and sendslope calculation (git-fixes). - net: stmmac: fix incorrect DMA channel intr enable setting of EQoS v4.10 (git-fixes). - net: stmmac: fix watchdog timeout during suspend/resume stress test (git-fixes). - net: stmmac: stop each tx channel independently (git-fixes). - net: tun: set tun->dev->addr_len during TUNSETLINK processing (git-fixes). - net: usb: ax88179_178a: add Allied Telesis AT-UMCs (git-fixes). - net: usb: ax88179_178a: add MCT usb 3.0 adapter (git-fixes). - net: usb: ax88179_178a: add Toshiba usb 3.0 adapter (git-fixes). - net: usb: ax88179_178a: remove redundant assignment to variable ret (git-fixes). - net: usb: ax88179_178a: write mac to hardware in get_mac_addr (git-fixes). - net: usb: qmi_wwan: add Telit 0x1060 composition (git-fixes). - net: usb: qmi_wwan: add Telit 0x1070 composition (git-fixes). - net: usb: use eth_hw_addr_set() (git-fixes). - nvme: consider also host_iface when checking ip options (bsc#1199670). - octeontx2-af: fix memory leak of lmac and lmac->name (git-fixes). - pinctrl: sunxi: a83t: Fix NAND function name for some pins (git-fixes). - pinctrl: sunxi: sunxi_pconf_set: use correct offset (git-fixes). - platform/olpc: Fix uninitialized data in debugfs write (git-fixes). - platform/x86: hp-wmi: Ignore Sanitization Mode event (git-fixes). - power/reset: arm-versatile: Fix refcount leak in versatile_reboot_probe (git-fixes). - powerpc/mobility: wait for memory transfer to complete (bsc#1201846 ltc#198761). - powerpc/pseries/mobility: set NMI watchdog factor during an LPM (bsc#1201846 ltc#198761). - powerpc/watchdog: introduce a NMI watchdog's factor (bsc#1201846 ltc#198761). - profiling: fix shift-out-of-bounds bugs (git fixes). - qla2xxx: drop patch which prevented nvme port discovery (bsc#1200651 bsc#1200644 bsc#1201954 bsc#1201958). - r8169: fix accessing unset transport header (git-fixes). - random: document add_hwgenerator_randomness() with other input functions (git-fixes). - random: fix typo in comments (git-fixes). - random: remove useless header comment (git fixes). - raw: Fix a data-race around sysctl_raw_l3mdev_accept (git-fixes). - regulator: of: Fix refcount leak bug in of_get_regulation_constraints() (git-fixes). - rpm/kernel-binary.spec.in: Require dwarves >= 1.22 on SLE15-SP3 or newer Dwarves 1.22 or newer is required to build kernels with BTF information embedded in modules. - sched/debug: Remove mpol_get/put and task_lock/unlock from (git-fixes) - sched/fair: Revise comment about lb decision matrix (git fixes (sched/fair)). - sched/membarrier: fix missing local execution of ipi_sync_rq_state() (git fixes (sched/membarrier)). - scripts: dummy-tools, add pahole (jsc#SLE-24559). - scsi: core: Fix error handling of scsi_host_alloc() (git-fixes). - scsi: core: Fix failure handling of scsi_add_host_with_dma() (git-fixes). - scsi: core: Only put parent device if host state differs from SHOST_CREATED (git-fixes). - scsi: core: Put .shost_dev in failure path if host state changes to RUNNING (git-fixes). - scsi: core: Put LLD module refcnt after SCSI device is released (git-fixes). - scsi: core: Retry I/O for Notify (Enable Spinup) Required error (git-fixes). - scsi: lpfc: Copyright updates for 14.2.0.5 patches (bsc#1201956). - scsi: lpfc: Fix attempted FA-PWWN usage after feature disable (bsc#1201956). - scsi: lpfc: Fix lost NVMe paths during LIF bounce stress test (bsc#1201956 bsc#1200521). - scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE (bsc#1201956). - scsi: lpfc: Fix uninitialized cqe field in lpfc_nvme_cancel_iocb() (bsc#1201956). - scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input (bsc#1201956). - scsi: lpfc: Refactor lpfc_nvmet_prep_abort_wqe() into lpfc_sli_prep_abort_xri() (bsc#1201956). - scsi: lpfc: Remove Menlo/Hornet related code (bsc#1201956). - scsi: lpfc: Remove extra atomic_inc on cmd_pending in queuecommand after VMID (bsc#1201956). - scsi: lpfc: Revert RSCN_MEMENTO workaround for misbehaved configuration (bsc#1201956). - scsi: lpfc: Set PU field when providing D_ID in XMIT_ELS_RSP64_CX iocb (bsc#1201956). - scsi: lpfc: Update lpfc version to 14.2.0.5 (bsc#1201956). - scsi: qla2xxx: Check correct variable in qla24xx_async_gffid() (bsc#1201958). - scsi: qla2xxx: Fix discovery issues in FC-AL topology (bsc#1201958). - scsi: qla2xxx: Fix imbalance vha->vref_count (bsc#1201958). - scsi: qla2xxx: Fix incorrect display of max frame size (bsc#1201958). - scsi: qla2xxx: Fix response queue handler reading stale packets (bsc#1201958). - scsi: qla2xxx: Fix sparse warning for dport_data (bsc#1201958). - scsi: qla2xxx: Update manufacturer details (bsc#1201958). - scsi: qla2xxx: Update version to 10.02.07.800-k (bsc#1201958). - scsi: qla2xxx: Zero undefined mailbox IN registers (bsc#1201958). - scsi: qla2xxx: edif: Fix dropped IKE message (bsc#1201958). - scsi: scsi_debug: Sanity check block descriptor length in resp_mode_select() (git-fixes). - scsi: sd: Fix potential NULL pointer dereference (git-fixes). - scsi: ufs: Release clock if DMA map fails (git-fixes). - scsi: ufs: handle cleanup correctly on devm_reset_control_get error (git-fixes). - serial: 8250: fix return error code in serial8250_request_std_resource() (git-fixes). - serial: pl011: UPSTAT_AUTORTS requires .throttle/unthrottle (git-fixes). - serial: stm32: Clear prev values before setting RTS delays (git-fixes). - soc: fsl: guts: machine variable might be unset (git-fixes). - soc: ixp4xx/npe: Fix unused match warning (git-fixes). - soundwire: bus_type: fix remove and shutdown support (git-fixes). - spi: &lt;linux/spi/spi.h>: add missing struct kernel-doc entry (git-fixes). - spi: amd: Limit max transfer and message size (git-fixes). - staging: rtl8192u: Fix sleep in atomic context bug in dm_fsync_timer_callback (git-fixes). - sysctl: Fix data races in proc_dointvec() (git-fixes). - sysctl: Fix data races in proc_dointvec_jiffies() (git-fixes). - sysctl: Fix data races in proc_dointvec_minmax() (git-fixes). - sysctl: Fix data races in proc_douintvec() (git-fixes). - sysctl: Fix data races in proc_douintvec_minmax() (git-fixes). - sysctl: Fix data-races in proc_dointvec_ms_jiffies() (git-fixes). - thermal/tools/tmon: Include pthread and time headers in tmon.h (git-fixes). - tick/nohz: Use WARN_ON_ONCE() to prevent console saturation (git fixes (kernel/time)). - usb: dwc3: add cancelled reasons for dwc3 requests (git-fixes). - usb: dwc3: gadget: Fix event pending check (git-fixes). - usb: gadget: udc: amd5536 depends on HAS_DMA (git-fixes). - usb: host: Fix refcount leak in ehci_hcd_ppc_of_probe (git-fixes). - usb: host: xhci: use snprintf() in xhci_decode_trb() (git-fixes). - usb: ohci-nxp: Fix refcount leak in ohci_hcd_nxp_probe (git-fixes). - usb: typec: add missing uevent when partner support PD (git-fixes). - usb: typec: ucsi: Acknowledge the GET_ERROR_STATUS command completion (git-fixes). - usb: xhci: tegra: Fix error check (git-fixes). - usbnet: fix memory leak in error case (git-fixes). - video: of_display_timing.h: include errno.h (git-fixes). - virtio-gpu: fix a missing check to avoid NULL dereference (git-fixes). - virtio-net: fix the race between refill work and close (git-fixes). - virtio_mmio: Add missing PM calls to freeze/restore (git-fixes). - virtio_mmio: Restore guest page size on resume (git-fixes). - watchdog: export lockup_detector_reconfigure (bsc#1201846 ltc#198761). - wifi: iwlegacy: 4965: fix potential off-by-one overflow in il4965_rs_fill_link_cmd() (git-fixes). - wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue (git-fixes). - wifi: libertas: Fix possible refcount leak in if_usb_probe() (git-fixes). - wifi: mac80211: fix queue selection for mesh/OCB interfaces (git-fixes). - wifi: p54: Fix an error handling path in p54spi_probe() (git-fixes). - wifi: p54: add missing parentheses in p54_flush() (git-fixes). - wifi: rtlwifi: fix error codes in rtl_debugfs_set_write_h2c() (git-fixes). - wifi: wil6210: debugfs: fix info leak in wil_write_file_wmi() (git-fixes). - wifi: wil6210: debugfs: fix uninitialized variable use in `wil_write_file_wmi()` (git-fixes). - x86/bugs: Remove apostrophe typo (bsc#1178134). - x86/kvmclock: Move this_cpu_pvti into kvmclock.h (git-fixes). - x86/retbleed: Add fine grained Kconfig knobs (bsc#1178134). - xen/netback: avoid entering xenvif_rx_next_skb() with an empty rx queue (bsc#1201381). - xen: detect uninitialized xenbus in xenbus_init (git-fixes). - xen: do not continue xenstore initialization in case of errors (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.90.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.90.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.90.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.90.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.90.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.90.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.90.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.90.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.90.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.90.1.x86_64.rpm True kernel-default-5.3.18-150300.59.90.1.nosrc.rpm True kernel-default-5.3.18-150300.59.90.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.90.1.150300.18.52.1.src.rpm True kernel-default-base-5.3.18-150300.59.90.1.150300.18.52.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.90.1.150300.18.52.1.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.90.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.90.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.90.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.90.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.90.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.90.1.noarch.rpm True kernel-docs-5.3.18-150300.59.90.1.noarch.rpm True kernel-docs-5.3.18-150300.59.90.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.90.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.90.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.90.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.90.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.90.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.90.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.90.1.src.rpm True kernel-obs-build-5.3.18-150300.59.90.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.90.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.90.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.90.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.90.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.90.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.90.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.90.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.90.1.x86_64.rpm True kernel-source-5.3.18-150300.59.90.1.noarch.rpm True kernel-source-5.3.18-150300.59.90.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.90.1.noarch.rpm True kernel-syms-5.3.18-150300.59.90.1.src.rpm True kernel-syms-5.3.18-150300.59.90.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.90.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.90.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.90.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.90.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.90.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.90.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.90.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.90.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.90.1.s390x.rpm True kernel-default-5.3.18-150300.59.90.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.90.1.150300.18.52.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.90.1.150300.18.52.1.s390x.rpm True kernel-default-devel-5.3.18-150300.59.90.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.90.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.90.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.90.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.90.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.90.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.90.1.s390x.rpm True kernel-syms-5.3.18-150300.59.90.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.90.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.90.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.90.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.90.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.90.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.90.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.90.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.90.1.150300.18.52.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.90.1.150300.18.52.1.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.90.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.90.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.90.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.90.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.90.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.90.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.90.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.90.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.90.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.90.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.90.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.90.1.src.rpm True dtb-al-5.3.18-150300.59.90.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.90.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.90.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.90.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.90.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.90.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.90.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.90.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.90.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.90.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.90.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.90.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.90.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.90.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.90.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.90.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.90.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.90.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.90.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.90.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.90.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.90.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.90.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.90.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.90.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.90.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.90.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.90.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.90.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.90.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.90.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.90.1.aarch64.rpm True kernel-default-5.3.18-150300.59.90.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.90.1.150300.18.52.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.90.1.150300.18.52.1.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.90.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.90.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.90.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.90.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.90.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.90.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.90.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.90.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.90.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.90.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.90.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.90.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.90.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.90.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.90.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.90.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.90.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.90.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.90.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.90.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.90.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.90.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2855 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs10 fixes the following issues: - CVE-2021-22930, CVE-2021-22940: Fixed two memory corruption issues during HTTP/2 stream cancellation (bsc#1188917, bsc#1189368). - CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2021-22960, CVE-2021-22959: Fixed multiple HTTP request smuggling issues in the underlying HTTP parser (bsc#1201325, bsc#1201326, bsc#1201327, bsc#1191602, bsc#1191601). - CVE-2022-32212: Fixed a DNS rebinding issue caused by improper IPv4 validation (bsc#1201328). nodejs10-10.24.1-150000.1.47.1.src.rpm nodejs10-10.24.1-150000.1.47.1.x86_64.rpm nodejs10-devel-10.24.1-150000.1.47.1.x86_64.rpm nodejs10-docs-10.24.1-150000.1.47.1.noarch.rpm npm10-10.24.1-150000.1.47.1.x86_64.rpm nodejs10-10.24.1-150000.1.47.1.s390x.rpm nodejs10-devel-10.24.1-150000.1.47.1.s390x.rpm npm10-10.24.1-150000.1.47.1.s390x.rpm nodejs10-10.24.1-150000.1.47.1.ppc64le.rpm nodejs10-devel-10.24.1-150000.1.47.1.ppc64le.rpm npm10-10.24.1-150000.1.47.1.ppc64le.rpm nodejs10-10.24.1-150000.1.47.1.aarch64.rpm nodejs10-devel-10.24.1-150000.1.47.1.aarch64.rpm npm10-10.24.1-150000.1.47.1.aarch64.rpm openSUSE-SLE-15.3-2022-3178 important SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: ansible: - Update to version 2.9.27 (jsc#SLE-23631, jsc#SLE-24133) * CVE-2021-3620 ansible-connection module discloses sensitive info in traceback error message (in 2.9.27) (bsc#1187725) * CVE-2021-3583 Template Injection through yaml multi-line strings with ansible facts used in template. (in 2.9.23) (bsc#1188061) * ansible module nmcli is broken in ansible 2.9.13 (in 2.9.15) (bsc#1176460) - Update to 2.9.22: * CVE-2021-3447 (bsc#1183684) multiple modules expose secured values * CVE-2021-20228 (bsc#1181935) basic.py no_log with fallback option * CVE-2021-20191 (bsc#1181119) multiple collections exposes secured values * CVE-2021-20180 (bsc#1180942) bitbucket_pipeline_variable exposes sensitive values * CVE-2021-20178 (bsc#1180816) user data leak in snmp_facts module dracut-saltboot: - Require e2fsprogs (bsc#1202614) - Update to version 0.1.1657643023.0d694ce * Update dracut-saltboot dependencies (bsc#1200970) * Fix network loading when ipappend is used in pxe config * Add new information messages golang-github-QubitProducts-exporter_exporter: - Remove license file from %doc mgr-daemon: - Version 4.3.5-1 * Update translation strings mgr-virtualization: - Version 4.3.6-1 * Report all VMs in poller, not only running ones (bsc#1199528) prometheus-blackbox_exporter: - Exclude s390 arch python-hwdata: - Declare the LICENSE file as license and not doc spacecmd: - Version 4.3.14-1 * Fix missing argument on system_listmigrationtargets (bsc#1201003) * Show correct help on calling kickstart_importjson with no arguments * Fix tracebacks on spacecmd kickstart_export (bsc#1200591) * Change proxy container config default filename to end with tar.gz * Update translation strings spacewalk-client-tools: - Version 4.3.11-1 * Update translation strings uyuni-common-libs: - Version 4.3.5-1 * Fix reposync issue about 'rpm.hdr' object has no attribute 'get' uyuni-proxy-systemd-services: - Version 4.3.6-1 * Expose port 80 (bsc#1200142) * Use volumes rather than bind mounts * TFTPD to listen on udp port (bsc#1200968) * Add TAG variable in configuration * Fix containers namespaces in configuration zypp-plugin-spacewalk: - 1.0.13 * Log in before listing channels. (bsc#1197963, bsc#1193585) ansible-2.9.27-150000.1.14.1.noarch.rpm ansible-2.9.27-150000.1.14.1.src.rpm ansible-doc-2.9.27-150000.1.14.1.noarch.rpm ansible-test-2.9.27-150000.1.14.1.noarch.rpm dracut-saltboot-0.1.1657643023.0d694ce-150000.1.35.1.noarch.rpm dracut-saltboot-0.1.1657643023.0d694ce-150000.1.35.1.src.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.15.1.src.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.15.1.x86_64.rpm python-hwdata-2.3.5-150000.3.9.1.src.rpm python2-hwdata-2.3.5-150000.3.9.1.noarch.rpm python3-hwdata-2.3.5-150000.3.9.1.noarch.rpm spacecmd-4.3.14-150000.3.83.1.noarch.rpm spacecmd-4.3.14-150000.3.83.1.src.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.15.1.s390x.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.15.1.ppc64le.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-2896 moderate SUSE Updates openSUSE-SLE 15.3 This update for raptor fixes the following issues: - CVE-2020-25713: Fixed an out of bounds access triggered via a malformed input file (bsc#1178903). libraptor-devel-2.0.15-150200.9.12.1.x86_64.rpm libraptor2-0-2.0.15-150200.9.12.1.x86_64.rpm libraptor2-0-32bit-2.0.15-150200.9.12.1.x86_64.rpm raptor-2.0.15-150200.9.12.1.src.rpm raptor-2.0.15-150200.9.12.1.x86_64.rpm libraptor-devel-2.0.15-150200.9.12.1.s390x.rpm libraptor2-0-2.0.15-150200.9.12.1.s390x.rpm raptor-2.0.15-150200.9.12.1.s390x.rpm libraptor-devel-2.0.15-150200.9.12.1.ppc64le.rpm libraptor2-0-2.0.15-150200.9.12.1.ppc64le.rpm raptor-2.0.15-150200.9.12.1.ppc64le.rpm libraptor-devel-2.0.15-150200.9.12.1.aarch64.rpm libraptor2-0-2.0.15-150200.9.12.1.aarch64.rpm raptor-2.0.15-150200.9.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-2891 important SUSE Updates openSUSE-SLE 15.3 This update for freerdp fixes the following issues: - CVE-2021-41159: Fixed improper validation of client input (bsc#1191895). - CVE-2022-41160: Fixed improper region checks (bsc#1191895). freerdp-2.1.2-150200.15.18.1.src.rpm freerdp-2.1.2-150200.15.18.1.x86_64.rpm freerdp-devel-2.1.2-150200.15.18.1.x86_64.rpm freerdp-proxy-2.1.2-150200.15.18.1.x86_64.rpm freerdp-server-2.1.2-150200.15.18.1.x86_64.rpm freerdp-wayland-2.1.2-150200.15.18.1.x86_64.rpm libfreerdp2-2.1.2-150200.15.18.1.x86_64.rpm libuwac0-0-2.1.2-150200.15.18.1.x86_64.rpm libwinpr2-2.1.2-150200.15.18.1.x86_64.rpm uwac0-0-devel-2.1.2-150200.15.18.1.x86_64.rpm winpr2-devel-2.1.2-150200.15.18.1.x86_64.rpm freerdp-2.1.2-150200.15.18.1.s390x.rpm freerdp-devel-2.1.2-150200.15.18.1.s390x.rpm freerdp-proxy-2.1.2-150200.15.18.1.s390x.rpm freerdp-server-2.1.2-150200.15.18.1.s390x.rpm freerdp-wayland-2.1.2-150200.15.18.1.s390x.rpm libfreerdp2-2.1.2-150200.15.18.1.s390x.rpm libuwac0-0-2.1.2-150200.15.18.1.s390x.rpm libwinpr2-2.1.2-150200.15.18.1.s390x.rpm uwac0-0-devel-2.1.2-150200.15.18.1.s390x.rpm winpr2-devel-2.1.2-150200.15.18.1.s390x.rpm freerdp-2.1.2-150200.15.18.1.ppc64le.rpm freerdp-devel-2.1.2-150200.15.18.1.ppc64le.rpm freerdp-proxy-2.1.2-150200.15.18.1.ppc64le.rpm freerdp-server-2.1.2-150200.15.18.1.ppc64le.rpm freerdp-wayland-2.1.2-150200.15.18.1.ppc64le.rpm libfreerdp2-2.1.2-150200.15.18.1.ppc64le.rpm libuwac0-0-2.1.2-150200.15.18.1.ppc64le.rpm libwinpr2-2.1.2-150200.15.18.1.ppc64le.rpm uwac0-0-devel-2.1.2-150200.15.18.1.ppc64le.rpm winpr2-devel-2.1.2-150200.15.18.1.ppc64le.rpm freerdp-2.1.2-150200.15.18.1.aarch64.rpm freerdp-devel-2.1.2-150200.15.18.1.aarch64.rpm freerdp-proxy-2.1.2-150200.15.18.1.aarch64.rpm freerdp-server-2.1.2-150200.15.18.1.aarch64.rpm freerdp-wayland-2.1.2-150200.15.18.1.aarch64.rpm libfreerdp2-2.1.2-150200.15.18.1.aarch64.rpm libuwac0-0-2.1.2-150200.15.18.1.aarch64.rpm libwinpr2-2.1.2-150200.15.18.1.aarch64.rpm uwac0-0-devel-2.1.2-150200.15.18.1.aarch64.rpm winpr2-devel-2.1.2-150200.15.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-2876 important SUSE Updates openSUSE-SLE 15.3 This update for gfbgraph fixes the following issues: - CVE-2021-39358: Fixed missing TLS certificate verification (bsc#1189850). gfbgraph-0.2.3-150000.3.5.1.src.rpm gfbgraph-devel-0.2.3-150000.3.5.1.x86_64.rpm libgfbgraph-0_2-0-0.2.3-150000.3.5.1.x86_64.rpm typelib-1_0-GFBGraph-0_2-0.2.3-150000.3.5.1.x86_64.rpm gfbgraph-devel-0.2.3-150000.3.5.1.s390x.rpm libgfbgraph-0_2-0-0.2.3-150000.3.5.1.s390x.rpm typelib-1_0-GFBGraph-0_2-0.2.3-150000.3.5.1.s390x.rpm gfbgraph-devel-0.2.3-150000.3.5.1.ppc64le.rpm libgfbgraph-0_2-0-0.2.3-150000.3.5.1.ppc64le.rpm typelib-1_0-GFBGraph-0_2-0.2.3-150000.3.5.1.ppc64le.rpm gfbgraph-devel-0.2.3-150000.3.5.1.aarch64.rpm libgfbgraph-0_2-0-0.2.3-150000.3.5.1.aarch64.rpm typelib-1_0-GFBGraph-0_2-0.2.3-150000.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-3185 moderate SUSE Updates openSUSE-SLE 15.3 This optional update for apache-commons-compress provides: - There are no code changes in this update. - The update delivers apache-commons-compress 1.21 to SUSE Manager as new dependency for spacewalk-java. apache-commons-compress-1.21-150200.3.7.1.noarch.rpm apache-commons-compress-1.21-150200.3.7.1.src.rpm apache-commons-compress-javadoc-1.21-150200.3.7.1.noarch.rpm openSUSE-SLE-15.3-2022-2889 important SUSE Updates openSUSE-SLE 15.3 This update for emacs-apel fixes the following issues: - Fix build issue on SUSE Linux Enterprise 15 Service Pack 4 (bsc#1197714) emacs-apel-10.8-150000.3.3.1.noarch.rpm emacs-apel-10.8-150000.3.3.1.src.rpm openSUSE-SLE-15.3-2022-3164 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-update fixes the following issues: - Use the "norecovery" mount option when searching the root partitions (bsc#1195894) yast2-update-4.3.4-150300.3.6.1.src.rpm yast2-update-4.3.4-150300.3.6.1.x86_64.rpm yast2-update-FACTORY-4.3.4-150300.3.6.1.x86_64.rpm yast2-update-4.3.4-150300.3.6.1.s390x.rpm yast2-update-FACTORY-4.3.4-150300.3.6.1.s390x.rpm yast2-update-4.3.4-150300.3.6.1.ppc64le.rpm yast2-update-FACTORY-4.3.4-150300.3.6.1.ppc64le.rpm yast2-update-4.3.4-150300.3.6.1.aarch64.rpm yast2-update-FACTORY-4.3.4-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3151 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-iscsi fixes the following issues: - Modify SPEC file so systemd unit files are mode 644 (not 755) (bsc#1200570) - On Tumbleweed, moved logrotate files from user-specific directory /etc/logrotate.d to vendor-specific /usr/etc/logrotate.d iscsiuio-0.7.8.6-150300.32.21.1.x86_64.rpm libopeniscsiusr0_2_0-2.1.7-150300.32.21.1.x86_64.rpm open-iscsi-2.1.7-150300.32.21.1.src.rpm open-iscsi-2.1.7-150300.32.21.1.x86_64.rpm open-iscsi-devel-2.1.7-150300.32.21.1.x86_64.rpm iscsiuio-0.7.8.6-150300.32.21.1.s390x.rpm libopeniscsiusr0_2_0-2.1.7-150300.32.21.1.s390x.rpm open-iscsi-2.1.7-150300.32.21.1.s390x.rpm open-iscsi-devel-2.1.7-150300.32.21.1.s390x.rpm iscsiuio-0.7.8.6-150300.32.21.1.ppc64le.rpm libopeniscsiusr0_2_0-2.1.7-150300.32.21.1.ppc64le.rpm open-iscsi-2.1.7-150300.32.21.1.ppc64le.rpm open-iscsi-devel-2.1.7-150300.32.21.1.ppc64le.rpm iscsiuio-0.7.8.6-150300.32.21.1.aarch64.rpm libopeniscsiusr0_2_0-2.1.7-150300.32.21.1.aarch64.rpm open-iscsi-2.1.7-150300.32.21.1.aarch64.rpm open-iscsi-devel-2.1.7-150300.32.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-2947 important SUSE Updates openSUSE-SLE 15.3 This update for zlib fixes the following issues: - CVE-2022-37434: Fixed heap-based buffer over-read or buffer overflow via large gzip header extra field (bsc#1202175). libminizip1-1.2.11-150000.3.33.1.x86_64.rpm libminizip1-32bit-1.2.11-150000.3.33.1.x86_64.rpm libz1-1.2.11-150000.3.33.1.x86_64.rpm libz1-32bit-1.2.11-150000.3.33.1.x86_64.rpm minizip-devel-1.2.11-150000.3.33.1.x86_64.rpm zlib-1.2.11-150000.3.33.1.src.rpm zlib-devel-1.2.11-150000.3.33.1.x86_64.rpm zlib-devel-32bit-1.2.11-150000.3.33.1.x86_64.rpm zlib-devel-static-1.2.11-150000.3.33.1.x86_64.rpm zlib-devel-static-32bit-1.2.11-150000.3.33.1.x86_64.rpm libminizip1-1.2.11-150000.3.33.1.s390x.rpm libz1-1.2.11-150000.3.33.1.s390x.rpm minizip-devel-1.2.11-150000.3.33.1.s390x.rpm zlib-devel-1.2.11-150000.3.33.1.s390x.rpm zlib-devel-static-1.2.11-150000.3.33.1.s390x.rpm libminizip1-1.2.11-150000.3.33.1.ppc64le.rpm libz1-1.2.11-150000.3.33.1.ppc64le.rpm minizip-devel-1.2.11-150000.3.33.1.ppc64le.rpm zlib-devel-1.2.11-150000.3.33.1.ppc64le.rpm zlib-devel-static-1.2.11-150000.3.33.1.ppc64le.rpm libminizip1-1.2.11-150000.3.33.1.aarch64.rpm libz1-1.2.11-150000.3.33.1.aarch64.rpm minizip-devel-1.2.11-150000.3.33.1.aarch64.rpm zlib-devel-1.2.11-150000.3.33.1.aarch64.rpm zlib-devel-static-1.2.11-150000.3.33.1.aarch64.rpm openSUSE-SLE-15.3-2022-4152 low SUSE Updates openSUSE-SLE 15.3 This update for novnc fixes the following issues: - For greater compatibility specify string binary as protocol (bsc#1201933) novnc-1.2.0-150100.3.6.1.noarch.rpm novnc-1.2.0-150100.3.6.1.src.rpm openSUSE-SLE-15.3-2022-3241 moderate SUSE Updates openSUSE-SLE 15.3 This update for cups fixes the following issues: - Stuck print jobs being cancelled immediately, despite MaxJobTime being set to 0 (bsc#1201511) cups-2.2.7-150000.3.35.1.src.rpm cups-2.2.7-150000.3.35.1.x86_64.rpm cups-client-2.2.7-150000.3.35.1.x86_64.rpm cups-config-2.2.7-150000.3.35.1.x86_64.rpm cups-ddk-2.2.7-150000.3.35.1.x86_64.rpm cups-devel-2.2.7-150000.3.35.1.x86_64.rpm cups-devel-32bit-2.2.7-150000.3.35.1.x86_64.rpm libcups2-2.2.7-150000.3.35.1.x86_64.rpm libcups2-32bit-2.2.7-150000.3.35.1.x86_64.rpm libcupscgi1-2.2.7-150000.3.35.1.x86_64.rpm libcupscgi1-32bit-2.2.7-150000.3.35.1.x86_64.rpm libcupsimage2-2.2.7-150000.3.35.1.x86_64.rpm libcupsimage2-32bit-2.2.7-150000.3.35.1.x86_64.rpm libcupsmime1-2.2.7-150000.3.35.1.x86_64.rpm libcupsmime1-32bit-2.2.7-150000.3.35.1.x86_64.rpm libcupsppdc1-2.2.7-150000.3.35.1.x86_64.rpm libcupsppdc1-32bit-2.2.7-150000.3.35.1.x86_64.rpm cups-2.2.7-150000.3.35.1.s390x.rpm cups-client-2.2.7-150000.3.35.1.s390x.rpm cups-config-2.2.7-150000.3.35.1.s390x.rpm cups-ddk-2.2.7-150000.3.35.1.s390x.rpm cups-devel-2.2.7-150000.3.35.1.s390x.rpm libcups2-2.2.7-150000.3.35.1.s390x.rpm libcupscgi1-2.2.7-150000.3.35.1.s390x.rpm libcupsimage2-2.2.7-150000.3.35.1.s390x.rpm libcupsmime1-2.2.7-150000.3.35.1.s390x.rpm libcupsppdc1-2.2.7-150000.3.35.1.s390x.rpm cups-2.2.7-150000.3.35.1.ppc64le.rpm cups-client-2.2.7-150000.3.35.1.ppc64le.rpm cups-config-2.2.7-150000.3.35.1.ppc64le.rpm cups-ddk-2.2.7-150000.3.35.1.ppc64le.rpm cups-devel-2.2.7-150000.3.35.1.ppc64le.rpm libcups2-2.2.7-150000.3.35.1.ppc64le.rpm libcupscgi1-2.2.7-150000.3.35.1.ppc64le.rpm libcupsimage2-2.2.7-150000.3.35.1.ppc64le.rpm libcupsmime1-2.2.7-150000.3.35.1.ppc64le.rpm libcupsppdc1-2.2.7-150000.3.35.1.ppc64le.rpm cups-2.2.7-150000.3.35.1.aarch64.rpm cups-client-2.2.7-150000.3.35.1.aarch64.rpm cups-config-2.2.7-150000.3.35.1.aarch64.rpm cups-ddk-2.2.7-150000.3.35.1.aarch64.rpm cups-devel-2.2.7-150000.3.35.1.aarch64.rpm libcups2-2.2.7-150000.3.35.1.aarch64.rpm libcupscgi1-2.2.7-150000.3.35.1.aarch64.rpm libcupsimage2-2.2.7-150000.3.35.1.aarch64.rpm libcupsmime1-2.2.7-150000.3.35.1.aarch64.rpm libcupsppdc1-2.2.7-150000.3.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-2957 important SUSE Updates openSUSE-SLE 15.3 This update for gstreamer-plugins-good fixes the following issues: - CVE-2022-1920: Fixed integer overflow in WavPack header handling code (bsc#1201688). - CVE-2022-1921: Fixed integer overflow resulting in heap corruption in avidemux element (bsc#1201693). - CVE-2022-1922: Fixed integer overflows in mkv demuxing (bsc#1201702). - CVE-2022-1923: Fixed integer overflows in mkv demuxing using bzip (bsc#1201704). - CVE-2022-1924: Fixed integer overflows in mkv demuxing using lzo (bsc#1201706). - CVE-2022-1925: Fixed integer overflows in mkv demuxing using HEADERSTRIP (bsc#1201707). - CVE-2022-2122: Fixed integer overflows in qtdemux using zlib (bsc#1201708). gstreamer-plugins-good-1.16.3-150200.3.9.1.src.rpm gstreamer-plugins-good-1.16.3-150200.3.9.1.x86_64.rpm gstreamer-plugins-good-32bit-1.16.3-150200.3.9.1.x86_64.rpm gstreamer-plugins-good-doc-1.16.3-150200.3.9.1.x86_64.rpm gstreamer-plugins-good-extra-1.16.3-150200.3.9.1.x86_64.rpm gstreamer-plugins-good-extra-32bit-1.16.3-150200.3.9.1.x86_64.rpm gstreamer-plugins-good-gtk-1.16.3-150200.3.9.1.x86_64.rpm gstreamer-plugins-good-jack-1.16.3-150200.3.9.1.x86_64.rpm gstreamer-plugins-good-jack-32bit-1.16.3-150200.3.9.1.x86_64.rpm gstreamer-plugins-good-lang-1.16.3-150200.3.9.1.noarch.rpm gstreamer-plugins-good-qtqml-1.16.3-150200.3.9.1.x86_64.rpm gstreamer-plugins-good-1.16.3-150200.3.9.1.s390x.rpm gstreamer-plugins-good-doc-1.16.3-150200.3.9.1.s390x.rpm gstreamer-plugins-good-extra-1.16.3-150200.3.9.1.s390x.rpm gstreamer-plugins-good-gtk-1.16.3-150200.3.9.1.s390x.rpm gstreamer-plugins-good-jack-1.16.3-150200.3.9.1.s390x.rpm gstreamer-plugins-good-qtqml-1.16.3-150200.3.9.1.s390x.rpm gstreamer-plugins-good-1.16.3-150200.3.9.1.ppc64le.rpm gstreamer-plugins-good-doc-1.16.3-150200.3.9.1.ppc64le.rpm gstreamer-plugins-good-extra-1.16.3-150200.3.9.1.ppc64le.rpm gstreamer-plugins-good-gtk-1.16.3-150200.3.9.1.ppc64le.rpm gstreamer-plugins-good-jack-1.16.3-150200.3.9.1.ppc64le.rpm gstreamer-plugins-good-qtqml-1.16.3-150200.3.9.1.ppc64le.rpm gstreamer-plugins-good-1.16.3-150200.3.9.1.aarch64.rpm gstreamer-plugins-good-doc-1.16.3-150200.3.9.1.aarch64.rpm gstreamer-plugins-good-extra-1.16.3-150200.3.9.1.aarch64.rpm gstreamer-plugins-good-gtk-1.16.3-150200.3.9.1.aarch64.rpm gstreamer-plugins-good-jack-1.16.3-150200.3.9.1.aarch64.rpm gstreamer-plugins-good-qtqml-1.16.3-150200.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-2960 moderate SUSE Updates openSUSE-SLE 15.3 This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220809 release (bsc#1201727): - CVE-2022-21233: Fixed an issue where stale data may have been leaked from the legacy xAPIC MMIO region, which could be used to compromise an SGX enclave (INTEL-SA-00657). See also: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00657.html Other fixes: - Update for functional issues. See also: https://www.intel.com/content/www/us/en/processors/xeon/scalable/xeon-scalable-spec-update.html?wapkw=processor+specification+update - Updated Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | SKX-SP | B1 | 06-55-03/97 | 0100015d | 0100015e | Xeon Scalable | SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006d05 | 02006e05 | Xeon Scalable | SKX-D | M1 | 06-55-04/b7 | 02006d05 | 02006e05 | Xeon D-21xx | ICX-SP | D0 | 06-6a-06/87 | 0d000363 | 0d000375 | Xeon Scalable Gen3 | GLK | B0 | 06-7a-01/01 | 0000003a | 0000003c | Pentium Silver N/J5xxx, Celeron N/J4xxx | GLK-R | R0 | 06-7a-08/01 | 0000001e | 00000020 | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 | ICL-U/Y | D1 | 06-7e-05/80 | 000000b0 | 000000b2 | Core Gen10 Mobile | TGL-R | C0 | 06-8c-02/c2 | 00000026 | 00000028 | Core Gen11 Mobile | TGL-H | R0 | 06-8d-01/c2 | 0000003e | 00000040 | Core Gen11 Mobile | RKL-S | B0 | 06-a7-01/02 | 00000053 | 00000054 | Core Gen11 | ADL | C0 | 06-97-02/03 | 0000001f | 00000022 | Core Gen12 | ADL | C0 | 06-97-05/03 | 0000001f | 00000022 | Core Gen12 | ADL | L0 | 06-9a-03/80 | 0000041c | 00000421 | Core Gen12 | ADL | L0 | 06-9a-04/80 | 0000041c | 00000421 | Core Gen12 | ADL | C0 | 06-bf-02/03 | 0000001f | 00000022 | Core Gen12 | ADL | C0 | 06-bf-05/03 | 0000001f | 00000022 | Core Gen12 ------------------------------------------------------------------ ucode-intel-20220809-150200.18.1.src.rpm True ucode-intel-20220809-150200.18.1.x86_64.rpm True openSUSE-SLE-15.3-2022-3388 moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-agent, google-guest-oslogin, google-osconfig-agent fixes the following issues: - Update to version 20220713.00 (bsc#1202100, bsc#1202101) - Use pam_moduledir (bsc#1191036) - Use install command in %post section to create state file (bsc#1202826) - Avoid bashim in post install scripts (bsc#1195391) - Don't restart daemon on package upgrade, create a state file instead (bsc#1194319) google-guest-agent-20220713.00-150000.1.29.1.src.rpm google-guest-agent-20220713.00-150000.1.29.1.x86_64.rpm google-guest-oslogin-20220721.00-150000.1.30.1.src.rpm google-guest-oslogin-20220721.00-150000.1.30.1.x86_64.rpm google-osconfig-agent-20220801.00-150000.1.22.1.src.rpm google-osconfig-agent-20220801.00-150000.1.22.1.x86_64.rpm google-guest-agent-20220713.00-150000.1.29.1.s390x.rpm google-guest-oslogin-20220721.00-150000.1.30.1.s390x.rpm google-osconfig-agent-20220801.00-150000.1.22.1.s390x.rpm google-guest-agent-20220713.00-150000.1.29.1.ppc64le.rpm google-guest-oslogin-20220721.00-150000.1.30.1.ppc64le.rpm google-osconfig-agent-20220801.00-150000.1.22.1.ppc64le.rpm google-guest-agent-20220713.00-150000.1.29.1.aarch64.rpm google-guest-oslogin-20220721.00-150000.1.30.1.aarch64.rpm google-osconfig-agent-20220801.00-150000.1.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-3831 moderate SUSE Updates openSUSE-SLE 15.3 This optional update includes the packages below in SLE Micro 5.2 (bsc#1199084, jsc#SMO-106): - raspberrypi-firmware - raspberrypi-firmware-config - raspberrypi-firmware-dt - bcm43xx-firmware - u-boot-rpiarm64 - wireless-tools bcm43xx-firmware-20180314-150300.23.7.1.noarch.rpm bcm43xx-firmware-20180314-150300.23.7.1.src.rpm libiw-devel-30.pre9-150000.4.2.1.x86_64.rpm libiw30-30.pre9-150000.4.2.1.x86_64.rpm raspberrypi-firmware-2021.03.10-150300.4.2.1.noarch.rpm raspberrypi-firmware-2021.03.10-150300.4.2.1.src.rpm raspberrypi-firmware-config-2021.03.10-150300.4.2.1.noarch.rpm raspberrypi-firmware-config-2021.03.10-150300.4.2.1.src.rpm raspberrypi-firmware-dt-2021.03.15-150300.4.2.1.noarch.rpm raspberrypi-firmware-dt-2021.03.15-150300.4.2.1.src.rpm raspberrypi-firmware-extra-2021.03.10-150300.4.2.1.noarch.rpm raspberrypi-firmware-extra-pi4-2021.03.10-150300.4.2.1.noarch.rpm u-boot-2021.01-150300.7.21.1.src.rpm u-boot-tools-2021.01-150300.7.21.1.x86_64.rpm wireless-tools-30.pre9-150000.4.2.1.src.rpm wireless-tools-30.pre9-150000.4.2.1.x86_64.rpm libiw-devel-30.pre9-150000.4.2.1.s390x.rpm libiw30-30.pre9-150000.4.2.1.s390x.rpm u-boot-tools-2021.01-150300.7.21.1.s390x.rpm wireless-tools-30.pre9-150000.4.2.1.s390x.rpm libiw-devel-30.pre9-150000.4.2.1.ppc64le.rpm libiw30-30.pre9-150000.4.2.1.ppc64le.rpm u-boot-tools-2021.01-150300.7.21.1.ppc64le.rpm wireless-tools-30.pre9-150000.4.2.1.ppc64le.rpm libiw-devel-30.pre9-150000.4.2.1.aarch64.rpm libiw30-30.pre9-150000.4.2.1.aarch64.rpm u-boot-avnetultra96rev1-2021.01-150300.7.21.1.aarch64.rpm u-boot-avnetultra96rev1-2021.01-150300.7.21.1.src.rpm u-boot-avnetultra96rev1-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-bananapim64-2021.01-150300.7.21.1.aarch64.rpm u-boot-bananapim64-2021.01-150300.7.21.1.src.rpm u-boot-bananapim64-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-dragonboard410c-2021.01-150300.7.21.1.aarch64.rpm u-boot-dragonboard410c-2021.01-150300.7.21.1.src.rpm u-boot-dragonboard410c-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-dragonboard820c-2021.01-150300.7.21.1.aarch64.rpm u-boot-dragonboard820c-2021.01-150300.7.21.1.src.rpm u-boot-dragonboard820c-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-evb-rk3399-2021.01-150300.7.21.1.aarch64.rpm u-boot-evb-rk3399-2021.01-150300.7.21.1.src.rpm u-boot-evb-rk3399-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-150300.7.21.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-150300.7.21.1.src.rpm u-boot-firefly-rk3399-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-geekbox-2021.01-150300.7.21.1.aarch64.rpm u-boot-geekbox-2021.01-150300.7.21.1.src.rpm u-boot-geekbox-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-hikey-2021.01-150300.7.21.1.aarch64.rpm u-boot-hikey-2021.01-150300.7.21.1.src.rpm u-boot-hikey-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-khadas-vim-2021.01-150300.7.21.1.aarch64.rpm u-boot-khadas-vim-2021.01-150300.7.21.1.src.rpm u-boot-khadas-vim-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-khadas-vim2-2021.01-150300.7.21.1.aarch64.rpm u-boot-khadas-vim2-2021.01-150300.7.21.1.src.rpm u-boot-khadas-vim2-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-libretech-ac-2021.01-150300.7.21.1.aarch64.rpm u-boot-libretech-ac-2021.01-150300.7.21.1.src.rpm u-boot-libretech-ac-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-libretech-cc-2021.01-150300.7.21.1.aarch64.rpm u-boot-libretech-cc-2021.01-150300.7.21.1.src.rpm u-boot-libretech-cc-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-150300.7.21.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-150300.7.21.1.src.rpm u-boot-ls1012afrdmqspi-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-150300.7.21.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-150300.7.21.1.src.rpm u-boot-mvebudb-88f3720-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-150300.7.21.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-150300.7.21.1.src.rpm u-boot-mvebudbarmada8k-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-150300.7.21.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-150300.7.21.1.src.rpm u-boot-mvebuespressobin-88f3720-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-150300.7.21.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-150300.7.21.1.src.rpm u-boot-mvebumcbin-88f8040-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-nanopia64-2021.01-150300.7.21.1.aarch64.rpm u-boot-nanopia64-2021.01-150300.7.21.1.src.rpm u-boot-nanopia64-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-odroid-c2-2021.01-150300.7.21.1.aarch64.rpm u-boot-odroid-c2-2021.01-150300.7.21.1.src.rpm u-boot-odroid-c2-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-odroid-c4-2021.01-150300.7.21.1.aarch64.rpm u-boot-odroid-c4-2021.01-150300.7.21.1.src.rpm u-boot-odroid-c4-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-odroid-n2-2021.01-150300.7.21.1.aarch64.rpm u-boot-odroid-n2-2021.01-150300.7.21.1.src.rpm u-boot-odroid-n2-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-orangepipc2-2021.01-150300.7.21.1.aarch64.rpm u-boot-orangepipc2-2021.01-150300.7.21.1.src.rpm u-boot-orangepipc2-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-p2371-2180-2021.01-150300.7.21.1.aarch64.rpm u-boot-p2371-2180-2021.01-150300.7.21.1.src.rpm u-boot-p2371-2180-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-150300.7.21.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-150300.7.21.1.src.rpm u-boot-p2771-0000-500-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-p3450-0000-2021.01-150300.7.21.1.aarch64.rpm u-boot-p3450-0000-2021.01-150300.7.21.1.src.rpm u-boot-p3450-0000-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-pine64plus-2021.01-150300.7.21.1.aarch64.rpm u-boot-pine64plus-2021.01-150300.7.21.1.src.rpm u-boot-pine64plus-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-pinebook-2021.01-150300.7.21.1.aarch64.rpm u-boot-pinebook-2021.01-150300.7.21.1.src.rpm u-boot-pinebook-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-150300.7.21.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-150300.7.21.1.src.rpm u-boot-pinebook-pro-rk3399-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-pineh64-2021.01-150300.7.21.1.aarch64.rpm u-boot-pineh64-2021.01-150300.7.21.1.src.rpm u-boot-pineh64-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-pinephone-2021.01-150300.7.21.1.aarch64.rpm u-boot-pinephone-2021.01-150300.7.21.1.src.rpm u-boot-pinephone-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-poplar-2021.01-150300.7.21.1.aarch64.rpm u-boot-poplar-2021.01-150300.7.21.1.src.rpm u-boot-poplar-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-150300.7.21.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-150300.7.21.1.src.rpm u-boot-rock-pi-4-rk3399-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-150300.7.21.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-150300.7.21.1.src.rpm u-boot-rock64-rk3328-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-150300.7.21.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-150300.7.21.1.src.rpm u-boot-rock960-rk3399-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-150300.7.21.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-150300.7.21.1.src.rpm u-boot-rockpro64-rk3399-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-rpi3-2021.01-150300.7.21.1.aarch64.rpm u-boot-rpi3-2021.01-150300.7.21.1.src.rpm u-boot-rpi3-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-rpi4-2021.01-150300.7.21.1.aarch64.rpm u-boot-rpi4-2021.01-150300.7.21.1.src.rpm u-boot-rpi4-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-rpiarm64-2021.01-150300.7.21.1.aarch64.rpm u-boot-rpiarm64-2021.01-150300.7.21.1.src.rpm u-boot-rpiarm64-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-tools-2021.01-150300.7.21.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-150300.7.21.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-150300.7.21.1.src.rpm u-boot-xilinxzynqmpvirt-doc-2021.01-150300.7.21.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-150300.7.21.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-150300.7.21.1.src.rpm u-boot-xilinxzynqmpzcu102rev10-doc-2021.01-150300.7.21.1.aarch64.rpm wireless-tools-30.pre9-150000.4.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-3260 moderate SUSE Updates openSUSE-SLE 15.3 This update for openCryptoki fixes the following issues: - Fix C_GetMechanismList returning CKR_BUFFER_TOO_SMALL in the EP11 token (bsc#1202028) openCryptoki-3.15.1-150300.5.12.1.src.rpm openCryptoki-3.15.1-150300.5.12.1.x86_64.rpm openCryptoki-64bit-3.15.1-150300.5.12.1.x86_64.rpm openCryptoki-devel-3.15.1-150300.5.12.1.x86_64.rpm openCryptoki-3.15.1-150300.5.12.1.s390x.rpm openCryptoki-64bit-3.15.1-150300.5.12.1.s390x.rpm openCryptoki-devel-3.15.1-150300.5.12.1.s390x.rpm openCryptoki-3.15.1-150300.5.12.1.ppc64le.rpm openCryptoki-64bit-3.15.1-150300.5.12.1.ppc64le.rpm openCryptoki-devel-3.15.1-150300.5.12.1.ppc64le.rpm openCryptoki-3.15.1-150300.5.12.1.aarch64.rpm openCryptoki-64bit-3.15.1-150300.5.12.1.aarch64.rpm openCryptoki-devel-3.15.1-150300.5.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-3317 moderate SUSE Updates openSUSE-SLE 15.3 This update for live-langset-data fixes the following issues: - Don't restart systemd-vconsole-setup.service explicitly (bsc#1187618) - Use command `y2start` instead of `y2base` that caused issues with nokogiri live-langset-data-2.0-150300.13.3.1.noarch.rpm live-langset-data-2.0-150300.13.3.1.src.rpm openSUSE-SLE-15.3-2022-3162 moderate SUSE Updates openSUSE-SLE 15.3 This update for libyajl fixes the following issues: - CVE-2022-24795: Fixed heap-based buffer overflow when handling large inputs (bsc#1198405). libyajl-2.1.0-150000.4.3.1.src.rpm libyajl-devel-2.1.0-150000.4.3.1.x86_64.rpm libyajl-devel-32bit-2.1.0-150000.4.3.1.x86_64.rpm libyajl-devel-static-2.1.0-150000.4.3.1.x86_64.rpm libyajl2-2.1.0-150000.4.3.1.x86_64.rpm libyajl2-32bit-2.1.0-150000.4.3.1.x86_64.rpm yajl-2.1.0-150000.4.3.1.x86_64.rpm libyajl-devel-2.1.0-150000.4.3.1.s390x.rpm libyajl-devel-static-2.1.0-150000.4.3.1.s390x.rpm libyajl2-2.1.0-150000.4.3.1.s390x.rpm yajl-2.1.0-150000.4.3.1.s390x.rpm libyajl-devel-2.1.0-150000.4.3.1.ppc64le.rpm libyajl-devel-static-2.1.0-150000.4.3.1.ppc64le.rpm libyajl2-2.1.0-150000.4.3.1.ppc64le.rpm yajl-2.1.0-150000.4.3.1.ppc64le.rpm libyajl-devel-2.1.0-150000.4.3.1.aarch64.rpm libyajl-devel-static-2.1.0-150000.4.3.1.aarch64.rpm libyajl2-2.1.0-150000.4.3.1.aarch64.rpm yajl-2.1.0-150000.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2883 important SUSE Updates openSUSE-SLE 15.3 This update for bluez fixes the following issues: - CVE-2022-0204: Fixed a buffer overflow in the implementation of the gatt protocol (bsc#1194704). bluez-5.55-150300.3.11.1.src.rpm bluez-5.55-150300.3.11.1.x86_64.rpm bluez-auto-enable-devices-5.55-150300.3.11.1.noarch.rpm bluez-cups-5.55-150300.3.11.1.x86_64.rpm bluez-deprecated-5.55-150300.3.11.1.x86_64.rpm bluez-devel-32bit-5.55-150300.3.11.1.x86_64.rpm bluez-devel-5.55-150300.3.11.1.x86_64.rpm bluez-test-5.55-150300.3.11.1.x86_64.rpm libbluetooth3-32bit-5.55-150300.3.11.1.x86_64.rpm libbluetooth3-5.55-150300.3.11.1.x86_64.rpm bluez-5.55-150300.3.11.1.s390x.rpm bluez-cups-5.55-150300.3.11.1.s390x.rpm bluez-deprecated-5.55-150300.3.11.1.s390x.rpm bluez-devel-5.55-150300.3.11.1.s390x.rpm bluez-test-5.55-150300.3.11.1.s390x.rpm libbluetooth3-5.55-150300.3.11.1.s390x.rpm bluez-5.55-150300.3.11.1.ppc64le.rpm bluez-cups-5.55-150300.3.11.1.ppc64le.rpm bluez-deprecated-5.55-150300.3.11.1.ppc64le.rpm bluez-devel-5.55-150300.3.11.1.ppc64le.rpm bluez-test-5.55-150300.3.11.1.ppc64le.rpm libbluetooth3-5.55-150300.3.11.1.ppc64le.rpm bluez-5.55-150300.3.11.1.aarch64.rpm bluez-cups-5.55-150300.3.11.1.aarch64.rpm bluez-deprecated-5.55-150300.3.11.1.aarch64.rpm bluez-devel-5.55-150300.3.11.1.aarch64.rpm bluez-test-5.55-150300.3.11.1.aarch64.rpm libbluetooth3-5.55-150300.3.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-2946 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: - Upgrade to 10.22: - CVE-2022-2625: Fixed an issue where extension scripts would replace objects not belonging to that extension (bsc#1202368). postgresql10-10.22-150100.8.50.1.src.rpm postgresql10-10.22-150100.8.50.1.x86_64.rpm postgresql10-contrib-10.22-150100.8.50.1.x86_64.rpm postgresql10-docs-10.22-150100.8.50.1.noarch.rpm postgresql10-plperl-10.22-150100.8.50.1.x86_64.rpm postgresql10-plpython-10.22-150100.8.50.1.x86_64.rpm postgresql10-pltcl-10.22-150100.8.50.1.x86_64.rpm postgresql10-server-10.22-150100.8.50.1.x86_64.rpm postgresql10-test-10.22-150100.8.50.1.x86_64.rpm postgresql10-10.22-150100.8.50.1.s390x.rpm postgresql10-contrib-10.22-150100.8.50.1.s390x.rpm postgresql10-plperl-10.22-150100.8.50.1.s390x.rpm postgresql10-plpython-10.22-150100.8.50.1.s390x.rpm postgresql10-pltcl-10.22-150100.8.50.1.s390x.rpm postgresql10-server-10.22-150100.8.50.1.s390x.rpm postgresql10-test-10.22-150100.8.50.1.s390x.rpm postgresql10-10.22-150100.8.50.1.ppc64le.rpm postgresql10-contrib-10.22-150100.8.50.1.ppc64le.rpm postgresql10-plperl-10.22-150100.8.50.1.ppc64le.rpm postgresql10-plpython-10.22-150100.8.50.1.ppc64le.rpm postgresql10-pltcl-10.22-150100.8.50.1.ppc64le.rpm postgresql10-server-10.22-150100.8.50.1.ppc64le.rpm postgresql10-test-10.22-150100.8.50.1.ppc64le.rpm postgresql10-10.22-150100.8.50.1.aarch64.rpm postgresql10-contrib-10.22-150100.8.50.1.aarch64.rpm postgresql10-plperl-10.22-150100.8.50.1.aarch64.rpm postgresql10-plpython-10.22-150100.8.50.1.aarch64.rpm postgresql10-pltcl-10.22-150100.8.50.1.aarch64.rpm postgresql10-server-10.22-150100.8.50.1.aarch64.rpm postgresql10-test-10.22-150100.8.50.1.aarch64.rpm openSUSE-SLE-15.3-2022-2959 important SUSE Updates openSUSE-SLE 15.3 This update for rsync fixes the following issues: - CVE-2022-29154: Fixed an arbitrary file write issue that could be triggered by a malicious remote server (bsc#1201840). rsync-3.1.3-150000.4.13.1.src.rpm rsync-3.1.3-150000.4.13.1.x86_64.rpm rsync-3.1.3-150000.4.13.1.s390x.rpm rsync-3.1.3-150000.4.13.1.ppc64le.rpm rsync-3.1.3-150000.4.13.1.aarch64.rpm openSUSE-SLE-15.3-2022-2844 important SUSE Updates openSUSE-SLE 15.3 This update for tar fixes the following issues: - A regression in a previous update lead to potential deadlocks when extracting an archive. (bsc#1202436) tar-1.34-150000.3.18.1.src.rpm tar-1.34-150000.3.18.1.x86_64.rpm tar-backup-scripts-1.34-150000.3.18.1.noarch.rpm tar-doc-1.34-150000.3.18.1.noarch.rpm tar-lang-1.34-150000.3.18.1.noarch.rpm tar-rmt-1.34-150000.3.18.1.x86_64.rpm tar-tests-1.34-150000.3.18.1.x86_64.rpm tar-1.34-150000.3.18.1.s390x.rpm tar-rmt-1.34-150000.3.18.1.s390x.rpm tar-tests-1.34-150000.3.18.1.s390x.rpm tar-1.34-150000.3.18.1.ppc64le.rpm tar-rmt-1.34-150000.3.18.1.ppc64le.rpm tar-tests-1.34-150000.3.18.1.ppc64le.rpm tar-1.34-150000.3.18.1.aarch64.rpm tar-rmt-1.34-150000.3.18.1.aarch64.rpm tar-tests-1.34-150000.3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-2921 important SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Drop or soften some of the deprecation warnings (jsc#PED-944) - Ensure root user can login even if systemd-user-sessions.service is not activated yet (bsc#1195059) - tmpfiles: check for the correct directory libsystemd0-246.16-150300.7.51.1.x86_64.rpm True libsystemd0-32bit-246.16-150300.7.51.1.x86_64.rpm True libudev-devel-246.16-150300.7.51.1.x86_64.rpm True libudev-devel-32bit-246.16-150300.7.51.1.x86_64.rpm True libudev1-246.16-150300.7.51.1.x86_64.rpm True libudev1-32bit-246.16-150300.7.51.1.x86_64.rpm True nss-myhostname-246.16-150300.7.51.1.x86_64.rpm True nss-myhostname-32bit-246.16-150300.7.51.1.x86_64.rpm True nss-mymachines-246.16-150300.7.51.1.x86_64.rpm True nss-mymachines-32bit-246.16-150300.7.51.1.x86_64.rpm True nss-resolve-246.16-150300.7.51.1.x86_64.rpm True nss-systemd-246.16-150300.7.51.1.x86_64.rpm True systemd-246.16-150300.7.51.1.src.rpm True systemd-246.16-150300.7.51.1.x86_64.rpm True systemd-32bit-246.16-150300.7.51.1.x86_64.rpm True systemd-container-246.16-150300.7.51.1.x86_64.rpm True systemd-coredump-246.16-150300.7.51.1.x86_64.rpm True systemd-devel-246.16-150300.7.51.1.x86_64.rpm True systemd-doc-246.16-150300.7.51.1.x86_64.rpm True systemd-journal-remote-246.16-150300.7.51.1.x86_64.rpm True systemd-lang-246.16-150300.7.51.1.noarch.rpm True systemd-logger-246.16-150300.7.51.1.x86_64.rpm True systemd-network-246.16-150300.7.51.1.x86_64.rpm True systemd-sysvinit-246.16-150300.7.51.1.x86_64.rpm True udev-246.16-150300.7.51.1.x86_64.rpm True libsystemd0-246.16-150300.7.51.1.s390x.rpm True libudev-devel-246.16-150300.7.51.1.s390x.rpm True libudev1-246.16-150300.7.51.1.s390x.rpm True nss-myhostname-246.16-150300.7.51.1.s390x.rpm True nss-mymachines-246.16-150300.7.51.1.s390x.rpm True nss-resolve-246.16-150300.7.51.1.s390x.rpm True nss-systemd-246.16-150300.7.51.1.s390x.rpm True systemd-246.16-150300.7.51.1.s390x.rpm True systemd-container-246.16-150300.7.51.1.s390x.rpm True systemd-coredump-246.16-150300.7.51.1.s390x.rpm True systemd-devel-246.16-150300.7.51.1.s390x.rpm True systemd-doc-246.16-150300.7.51.1.s390x.rpm True systemd-journal-remote-246.16-150300.7.51.1.s390x.rpm True systemd-logger-246.16-150300.7.51.1.s390x.rpm True systemd-network-246.16-150300.7.51.1.s390x.rpm True systemd-sysvinit-246.16-150300.7.51.1.s390x.rpm True udev-246.16-150300.7.51.1.s390x.rpm True libsystemd0-246.16-150300.7.51.1.ppc64le.rpm True libudev-devel-246.16-150300.7.51.1.ppc64le.rpm True libudev1-246.16-150300.7.51.1.ppc64le.rpm True nss-myhostname-246.16-150300.7.51.1.ppc64le.rpm True nss-mymachines-246.16-150300.7.51.1.ppc64le.rpm True nss-resolve-246.16-150300.7.51.1.ppc64le.rpm True nss-systemd-246.16-150300.7.51.1.ppc64le.rpm True systemd-246.16-150300.7.51.1.ppc64le.rpm True systemd-container-246.16-150300.7.51.1.ppc64le.rpm True systemd-coredump-246.16-150300.7.51.1.ppc64le.rpm True systemd-devel-246.16-150300.7.51.1.ppc64le.rpm True systemd-doc-246.16-150300.7.51.1.ppc64le.rpm True systemd-journal-remote-246.16-150300.7.51.1.ppc64le.rpm True systemd-logger-246.16-150300.7.51.1.ppc64le.rpm True systemd-network-246.16-150300.7.51.1.ppc64le.rpm True systemd-sysvinit-246.16-150300.7.51.1.ppc64le.rpm True udev-246.16-150300.7.51.1.ppc64le.rpm True libsystemd0-246.16-150300.7.51.1.aarch64.rpm True libudev-devel-246.16-150300.7.51.1.aarch64.rpm True libudev1-246.16-150300.7.51.1.aarch64.rpm True nss-myhostname-246.16-150300.7.51.1.aarch64.rpm True nss-mymachines-246.16-150300.7.51.1.aarch64.rpm True nss-resolve-246.16-150300.7.51.1.aarch64.rpm True nss-systemd-246.16-150300.7.51.1.aarch64.rpm True systemd-246.16-150300.7.51.1.aarch64.rpm True systemd-container-246.16-150300.7.51.1.aarch64.rpm True systemd-coredump-246.16-150300.7.51.1.aarch64.rpm True systemd-devel-246.16-150300.7.51.1.aarch64.rpm True systemd-doc-246.16-150300.7.51.1.aarch64.rpm True systemd-journal-remote-246.16-150300.7.51.1.aarch64.rpm True systemd-logger-246.16-150300.7.51.1.aarch64.rpm True systemd-network-246.16-150300.7.51.1.aarch64.rpm True systemd-sysvinit-246.16-150300.7.51.1.aarch64.rpm True udev-246.16-150300.7.51.1.aarch64.rpm True openSUSE-SLE-15.3-2022-2881 important SUSE Updates openSUSE-SLE 15.3 This update for spice fixes the following issues: - CVE-2021-20201: Fixed an issue which could allow clients to cause a denial of service by repeatedly renegotiating a connection (bsc#1181686). libspice-server-devel-0.14.3-150300.3.3.1.x86_64.rpm libspice-server1-0.14.3-150300.3.3.1.x86_64.rpm spice-0.14.3-150300.3.3.1.src.rpm libspice-server-devel-0.14.3-150300.3.3.1.s390x.rpm libspice-server1-0.14.3-150300.3.3.1.s390x.rpm libspice-server-devel-0.14.3-150300.3.3.1.ppc64le.rpm libspice-server1-0.14.3-150300.3.3.1.ppc64le.rpm libspice-server-devel-0.14.3-150300.3.3.1.aarch64.rpm libspice-server1-0.14.3-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2987 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - Update to 13.8: - CVE-2022-2625: Fixed an issue where extension scripts would replace objects not belonging to that extension (bsc#1202368). postgresql13-13.8-150200.5.31.1.src.rpm postgresql13-13.8-150200.5.31.1.x86_64.rpm postgresql13-contrib-13.8-150200.5.31.1.x86_64.rpm postgresql13-devel-13.8-150200.5.31.1.x86_64.rpm postgresql13-docs-13.8-150200.5.31.1.noarch.rpm postgresql13-llvmjit-13.8-150200.5.31.1.x86_64.rpm postgresql13-plperl-13.8-150200.5.31.1.x86_64.rpm postgresql13-plpython-13.8-150200.5.31.1.x86_64.rpm postgresql13-pltcl-13.8-150200.5.31.1.x86_64.rpm postgresql13-server-13.8-150200.5.31.1.x86_64.rpm postgresql13-server-devel-13.8-150200.5.31.1.x86_64.rpm postgresql13-test-13.8-150200.5.31.1.x86_64.rpm postgresql13-13.8-150200.5.31.1.s390x.rpm postgresql13-contrib-13.8-150200.5.31.1.s390x.rpm postgresql13-devel-13.8-150200.5.31.1.s390x.rpm postgresql13-llvmjit-13.8-150200.5.31.1.s390x.rpm postgresql13-plperl-13.8-150200.5.31.1.s390x.rpm postgresql13-plpython-13.8-150200.5.31.1.s390x.rpm postgresql13-pltcl-13.8-150200.5.31.1.s390x.rpm postgresql13-server-13.8-150200.5.31.1.s390x.rpm postgresql13-server-devel-13.8-150200.5.31.1.s390x.rpm postgresql13-test-13.8-150200.5.31.1.s390x.rpm postgresql13-13.8-150200.5.31.1.ppc64le.rpm postgresql13-contrib-13.8-150200.5.31.1.ppc64le.rpm postgresql13-devel-13.8-150200.5.31.1.ppc64le.rpm postgresql13-llvmjit-13.8-150200.5.31.1.ppc64le.rpm postgresql13-plperl-13.8-150200.5.31.1.ppc64le.rpm postgresql13-plpython-13.8-150200.5.31.1.ppc64le.rpm postgresql13-pltcl-13.8-150200.5.31.1.ppc64le.rpm postgresql13-server-13.8-150200.5.31.1.ppc64le.rpm postgresql13-server-devel-13.8-150200.5.31.1.ppc64le.rpm postgresql13-test-13.8-150200.5.31.1.ppc64le.rpm postgresql13-13.8-150200.5.31.1.aarch64.rpm postgresql13-contrib-13.8-150200.5.31.1.aarch64.rpm postgresql13-devel-13.8-150200.5.31.1.aarch64.rpm postgresql13-llvmjit-13.8-150200.5.31.1.aarch64.rpm postgresql13-plperl-13.8-150200.5.31.1.aarch64.rpm postgresql13-plpython-13.8-150200.5.31.1.aarch64.rpm postgresql13-pltcl-13.8-150200.5.31.1.aarch64.rpm postgresql13-server-13.8-150200.5.31.1.aarch64.rpm postgresql13-server-devel-13.8-150200.5.31.1.aarch64.rpm postgresql13-test-13.8-150200.5.31.1.aarch64.rpm openSUSE-SLE-15.3-2022-3103 important SUSE Updates openSUSE-SLE 15.3 This update for python-bottle fixes the following issues: - CVE-2022-31799: Fixed an error mishandling issue that could lead to remote denial of service (bsc#1200286). python-bottle-0.12.13-150000.3.6.1.src.rpm python-bottle-doc-0.12.13-150000.3.6.1.noarch.rpm python2-bottle-0.12.13-150000.3.6.1.noarch.rpm python3-bottle-0.12.13-150000.3.6.1.noarch.rpm openSUSE-SLE-15.3-2022-2870 moderate SUSE Updates openSUSE-SLE 15.3 This update for rubygem-rails-html-sanitizer fixes the following issues: - CVE-2022-32209: Fixed a potential content injection under specific configurations (bsc#1201183). ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1.x86_64.rpm ruby2.5-rubygem-rails-html-sanitizer-doc-1.0.4-150000.4.3.1.x86_64.rpm ruby2.5-rubygem-rails-html-sanitizer-testsuite-1.0.4-150000.4.3.1.x86_64.rpm rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1.src.rpm ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1.s390x.rpm ruby2.5-rubygem-rails-html-sanitizer-doc-1.0.4-150000.4.3.1.s390x.rpm ruby2.5-rubygem-rails-html-sanitizer-testsuite-1.0.4-150000.4.3.1.s390x.rpm ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1.ppc64le.rpm ruby2.5-rubygem-rails-html-sanitizer-doc-1.0.4-150000.4.3.1.ppc64le.rpm ruby2.5-rubygem-rails-html-sanitizer-testsuite-1.0.4-150000.4.3.1.ppc64le.rpm ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1.aarch64.rpm ruby2.5-rubygem-rails-html-sanitizer-doc-1.0.4-150000.4.3.1.aarch64.rpm ruby2.5-rubygem-rails-html-sanitizer-testsuite-1.0.4-150000.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3766 important SUSE Updates openSUSE-SLE 15.3 This update for buildah fixes the following issues: - CVE-2021-20206: Fixed an issue in libcni that could allow an attacker to execute arbitrary binaries on the host (bsc#1181961). - CVE-2020-10696: Fixed an issue that could lead to files being overwritten during the image building process (bsc#1167864). - CVE-2022-2990: Fixed possible information disclosure and modification / bsc#1202812 Buildah was updated to version 1.27.1: * run: add container gid to additional groups - Add fix for CVE-2022-2990 / bsc#1202812 Update to version 1.27.0: * Don't try to call runLabelStdioPipes if spec.Linux is not set * build: support filtering cache by duration using --cache-ttl * build: support building from commit when using git repo as build context * build: clean up git repos correctly when using subdirs * integration tests: quote "?" in shell scripts * test: manifest inspect should have OCIv1 annotation * vendor: bump to c/common@87fab4b7019a * Failure to determine a file or directory should print an error * refactor: remove unused CommitOptions from generateBuildOutput * stage_executor: generate output for cases with no commit * stage_executor, commit: output only if last stage in build * Use errors.Is() instead of os.Is{Not,}Exist * Minor test tweak for podman-remote compatibility * Cirrus: Use the latest imgts container * imagebuildah: complain about the right Dockerfile * tests: don't try to wrap `nil` errors * cmd/buildah.commitCmd: don't shadow "err" * cmd/buildah.pullCmd: complain about DecryptConfig/EncryptConfig * Fix a copy/paste error message * Fix a typo in an error message * build,cache: support pulling/pushing cache layers to/from remote sources * Update vendor of containers/(common, storage, image) * Rename chroot/run.go to chroot/run_linux.go * Don't bother telling codespell to skip files that don't exist * Set user namespace defaults correctly for the library * imagebuildah: optimize cache hits for COPY and ADD instructions * Cirrus: Update VM images w/ updated bats * docs, run: show SELinux label flag for cache and bind mounts * imagebuildah, build: remove undefined concurrent writes * bump github.com/opencontainers/runtime-tools * Add FreeBSD support for 'buildah info' * Vendor in latest containers/(storage, common, image) * Add freebsd cross build targets * Make the jail package build on 32bit platforms * Cirrus: Ensure the build-push VM image is labeled * GHA: Fix dynamic script filename * Vendor in containers/(common, storage, image) * Run codespell * Remove import of github.com/pkg/errors * Avoid using cgo in pkg/jail * Rename footypes to fooTypes for naming consistency * Move cleanupTempVolumes and cleanupRunMounts to run_common.go * Make the various run mounts work for FreeBSD * Move get{Bind,Tmpfs,Secret,SSH}Mount to run_common.go * Move runSetupRunMounts to run_common.go * Move cleanableDestinationListFromMounts to run_common.go * Make setupMounts and runSetupBuiltinVolumes work on FreeBSD * Move setupMounts and runSetupBuiltinVolumes to run_common.go * Tidy up - runMakeStdioPipe can't be shared with linux * Move runAcceptTerminal to run_common.go * Move stdio copying utilities to run_common.go * Move runUsingRuntime and runCollectOutput to run_common.go * Move fileCloser, waitForSync and contains to run_common.go * Move checkAndOverrideIsolationOptions to run_common.go * Move DefaultNamespaceOptions to run_common.go * Move getNetworkInterface to run_common.go * Move configureEnvironment to run_common.go * Don't crash in configureUIDGID if Process.Capabilities is nil * Move configureUIDGID to run_common.go * Move runLookupPath to run_common.go * Move setupTerminal to run_common.go * Move etc file generation utilities to run_common.go * Add run support for FreeBSD * Add a simple FreeBSD jail library * Add FreeBSD support to pkg/chrootuser * Sync call signature for RunUsingChroot with chroot/run.go * test: verify feature to resolve basename with args * vendor: bump openshift/imagebuilder to master@4151e43 * GHA: Remove required reserved-name use * buildah: set XDG_RUNTIME_DIR before setting default runroot * imagebuildah: honor build output even if build container is not commited * chroot: honor DefaultErrnoRet * [CI:DOCS] improve pull-policy documentation * tests: retrofit test since --file does not supports dir * Switch to golang native error wrapping * BuildDockerfiles: error out if path to containerfile is a directory * define.downloadToDirectory: fail early if bad HTTP response * GHA: Allow re-use of Cirrus-Cron fail-mail workflow * add: fail on bad http response instead of writing to container * [CI:DOCS] Update buildahimage comment * lint: inspectable is never nil * vendor: c/common to common@7e1563b * build: support OCI hooks for ephemeral build containers * [CI:BUILD] Install latest buildah instead of compiling * Add subid support with BuildRequires and BUILDTAG [NO NEW TESTS NEEDED] * Make sure cpp is installed in buildah images * demo: use unshare for rootless invocations * buildah.spec.rpkg: initial addition * build: fix test for subid 4 * build, userns: add support for --userns=auto * Fix building upstream buildah image * Remove redundant buildahimages-are-sane validation * Docs: Update multi-arch buildah images readme * Cirrus: Migrate multiarch build off github actions * retrofit-tests: we skip unused stages so use stages * stage_executor: dont rely on stage while looking for additional-context * buildkit, multistage: skip computing unwanted stages * More test cleanup * copier: work around freebsd bug for "mkdir /" * Replace $BUILDAH_BINARY with buildah() function * Fix up buildah images * Make util and copier build on FreeBSD * Vendor in latest github.com/sirupsen/logrus * Makefile: allow building without .git * run_unix: don't return an error from getNetworkInterface * run_unix: return a valid DefaultNamespaceOptions * Update vendor of containers/storage * chroot: use ActKillThread instead of ActKill * use resolvconf package from c/common/libnetwork * update c/common to latest main * copier: add `NoOverwriteNonDirDir` option * Sort buildoptions and move cli/build functions to internal * Fix TODO: de-spaghettify run mounts * Move options parsing out of build.go and into pkg/cli * [CI:DOCS] Tutorial 04 - Include Debian/Ubuntu deps * build, multiarch: support splitting build logs for --platform * [CI:BUILD] WIP Cleanup Image Dockerfiles * cli remove stutter * docker-parity: ignore sanity check if baseImage history is null * build, commit: allow disabling image history with --omit-history * Fix use generic/ambiguous DEBUG name * Cirrus: use Ubuntu 22.04 LTS * Fix codespell errors * Remove util.StringInSlice because it is defined in containers/common * buildah: add support for renaming a device in rootless setups * squash: never use build cache when computing last step of last stage * Update vendor of containers/(common, storage, image) * buildkit: supports additionalBuildContext in builds via --build-context * buildah source pull/push: show progress bar * run: allow resuing secret twice in different RUN steps * test helpers: default to being rootless-aware * Add --cpp-flag flag to buildah build * build: accept branch and subdirectory when context is git repo * Vendor in latest containers/common * vendor: update c/storage and c/image * Fix gentoo install docs * copier: move NSS load to new process * Add test for prevention of reusing encrypted layers * Make `buildah build --label foo` create an empty "foo" label again Update to version 1.26.4: * build, multiarch: support splitting build logs for --platform * copier: add `NoOverwriteNonDirDir` option * docker-parity: ignore sanity check if baseImage history is null * build, commit: allow disabling image history with --omit-history * buildkit: supports additionalBuildContext in builds via --build-context * Add --cpp-flag flag to buildah build Update to version 1.26.3: * define.downloadToDirectory: fail early if bad HTTP response * add: fail on bad http response instead of writing to container * squash: never use build cache when computing last step of last stage * run: allow resuing secret twice in different RUN steps * integration tests: update expected error messages * integration tests: quote "?" in shell scripts * Use errors.Is() to check for storage errors * lint: inspectable is never nil * chroot: use ActKillThread instead of ActKill * chroot: honor DefaultErrnoRet * Set user namespace defaults correctly for the library * contrib/rpm/buildah.spec: fix `rpm` parser warnings Drop requires on apparmor pattern, should be moved elsewhere for systems which want AppArmor instead of SELinux. - Update BuildRequires to libassuan-devel >= 2.5.2, pkgconfig file is required to build. Update to version 1.26.2: * buildah: add support for renaming a device in rootless setups Update to version 1.26.1: * Make `buildah build --label foo` create an empty "foo" label again * imagebuildah,build: move deepcopy of args before we spawn goroutine * Vendor in containers/storage v1.40.2 * buildah.BuilderOptions.DefaultEnv is ignored, so mark it as deprecated * help output: get more consistent about option usage text * Handle OS version and features flags * buildah build: --annotation and --label should remove values * buildah build: add a --env * buildah: deep copy options.Args before performing concurrent build/stage * test: inline platform and builtinargs behaviour * vendor: bump imagebuilder to master/009dbc6 * build: automatically set correct TARGETPLATFORM where expected * Vendor in containers/(common, storage, image) * imagebuildah, executor: process arg variables while populating baseMap * buildkit: add support for custom build output with --output * Cirrus: Update CI VMs to F36 * fix staticcheck linter warning for deprecated function * Fix docs build on FreeBSD * copier.unwrapError(): update for Go 1.16 * copier.PutOptions: add StripSetuidBit/StripSetgidBit/StripStickyBit * copier.Put(): write to read-only directories * Ed's periodic test cleanup * using consistent lowercase 'invalid' word in returned err msg * use etchosts package from c/common * run: set actual hostname in /etc/hostname to match docker parity * Update vendor of containers/(common,storage,image) * manifest-create: allow creating manifest list from local image * Update vendor of storage,common,image * Initialize network backend before first pull * oci spec: change special mount points for namespaces * tests/helpers.bash: assert handle corner cases correctly * buildah: actually use containers.conf settings * integration tests: learn to start a dummy registry * Fix error check to work on Podman * buildah build should accept at most one arg * tests: reduce concurrency for flaky bud-multiple-platform-no-run * vendor in latest containers/common,image,storage * manifest-add: allow override arch,variant while adding image * Remove a stray `\` from .containerenv * Vendor in latest opencontainers/selinux v1.10.1 * build, commit: allow removing default identity labels * Create shorter names for containers based on image IDs * test: skip rootless on cgroupv2 in root env * fix hang when oci runtime fails * Set permissions for GitHub actions * copier test: use correct UID/GID in test archives * run: set parent-death signals and forward SIGHUP/SIGINT/SIGTERM buildah-1.27.1-150300.8.11.1.src.rpm buildah-1.27.1-150300.8.11.1.x86_64.rpm libgpg-error-1.42-150300.9.3.1.src.rpm libgpg-error-devel-1.42-150300.9.3.1.x86_64.rpm libgpg-error-devel-32bit-1.42-150300.9.3.1.x86_64.rpm libgpg-error0-1.42-150300.9.3.1.x86_64.rpm libgpg-error0-32bit-1.42-150300.9.3.1.x86_64.rpm buildah-1.27.1-150300.8.11.1.s390x.rpm libgpg-error-devel-1.42-150300.9.3.1.s390x.rpm libgpg-error0-1.42-150300.9.3.1.s390x.rpm buildah-1.27.1-150300.8.11.1.ppc64le.rpm libgpg-error-devel-1.42-150300.9.3.1.ppc64le.rpm libgpg-error0-1.42-150300.9.3.1.ppc64le.rpm buildah-1.27.1-150300.8.11.1.aarch64.rpm libgpg-error-devel-1.42-150300.9.3.1.aarch64.rpm libgpg-error0-1.42-150300.9.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-2949 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-ibm fixes the following issues: - Updated to Java 8.0 Service Refresh 7 Fix Pack 11 (bsc#1202427): - CVE-2022-34169: Fixed an integer truncation issue in the Xalan Java XSLT library that occurred when processing malicious stylesheets (bsc#1201684). - CVE-2022-21549: Fixed an issue that could lead to computing negative random exponentials (bsc#1201685). - CVE-2022-21541: Fixed a potential bypass of sandbox restrictions in the Hotspot component (bsc#1201692). - CVE-2022-21540: Fixed a potential bypass of sandbox restrictions in the Hotspot component (bsc#1201694). java-1_8_0-ibm-1.8.0_sr7.11-150000.3.62.1.nosrc.rpm java-1_8_0-ibm-1.8.0_sr7.11-150000.3.62.1.x86_64.rpm java-1_8_0-ibm-32bit-1.8.0_sr7.11-150000.3.62.1.x86_64.rpm java-1_8_0-ibm-alsa-1.8.0_sr7.11-150000.3.62.1.x86_64.rpm java-1_8_0-ibm-demo-1.8.0_sr7.11-150000.3.62.1.x86_64.rpm java-1_8_0-ibm-devel-1.8.0_sr7.11-150000.3.62.1.x86_64.rpm java-1_8_0-ibm-devel-32bit-1.8.0_sr7.11-150000.3.62.1.x86_64.rpm java-1_8_0-ibm-plugin-1.8.0_sr7.11-150000.3.62.1.x86_64.rpm java-1_8_0-ibm-src-1.8.0_sr7.11-150000.3.62.1.x86_64.rpm java-1_8_0-ibm-1.8.0_sr7.11-150000.3.62.1.s390x.rpm java-1_8_0-ibm-demo-1.8.0_sr7.11-150000.3.62.1.s390x.rpm java-1_8_0-ibm-devel-1.8.0_sr7.11-150000.3.62.1.s390x.rpm java-1_8_0-ibm-src-1.8.0_sr7.11-150000.3.62.1.s390x.rpm java-1_8_0-ibm-1.8.0_sr7.11-150000.3.62.1.ppc64le.rpm java-1_8_0-ibm-demo-1.8.0_sr7.11-150000.3.62.1.ppc64le.rpm java-1_8_0-ibm-devel-1.8.0_sr7.11-150000.3.62.1.ppc64le.rpm java-1_8_0-ibm-src-1.8.0_sr7.11-150000.3.62.1.ppc64le.rpm openSUSE-SLE-15.3-2022-2853 low SUSE Updates openSUSE-SLE 15.3 This update for python-iniconfig provides the following fix: - Ship python3-iniconfig also to openSUSE 15.3 and 15.4 (bsc#1202498) python-iniconfig-1.1.1-150000.1.5.1.src.rpm python3-iniconfig-1.1.1-150000.1.5.1.noarch.rpm openSUSE-SLE-15.3-2022-3092 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openj9 fixes the following issues: - Updated to OpenJDK 8u345 build 01 with OpenJ9 0.33.0 virtual machine: - CVE-2022-34169: Fixed an integer truncation issue in the Xalan Java XSLT library that occurred when processing malicious stylesheets (bsc#1201684). - CVE-2022-21541: Fixed a potential bypass of sandbox restrictions in the Hotspot component (bsc#1201692). - CVE-2022-21540: Fixed a potential bypass of sandbox restrictions in the Hotspot component (bsc#1201694). - Updated to OpenJDK 8u332 build 09 with OpenJ9 0.32.0 virtual machine: - CVE-2021-41041: Failed an issue that could allow unverified methods to be invoked using MethodHandles (bsc#1198935). - CVE-2022-21426: Fixed a remote partial denial of service issue (component: JAXP) (bsc#1198672). - CVE-2022-21434: Fixed an issue that could allow a remote attacker to update, insert or delete data (component: Libraries) (bsc#1198674). - CVE-2022-21443: Fixed a remote partial denial of service issue (component: Libraries) (bsc#1198675). - CVE-2022-21476: Fixed an issue that could allow unauthorized access to confidential data (component: Libraries) (bsc#1198671). - CVE-2022-21496: Fixed an issue that could allow a remote attacker to update, insert or delete data (component: JNDI) (bsc#1198673). java-1_8_0-openj9-1.8.0.345-150200.3.24.1.src.rpm java-1_8_0-openj9-1.8.0.345-150200.3.24.1.x86_64.rpm java-1_8_0-openj9-accessibility-1.8.0.345-150200.3.24.1.x86_64.rpm java-1_8_0-openj9-demo-1.8.0.345-150200.3.24.1.x86_64.rpm java-1_8_0-openj9-devel-1.8.0.345-150200.3.24.1.x86_64.rpm java-1_8_0-openj9-headless-1.8.0.345-150200.3.24.1.x86_64.rpm java-1_8_0-openj9-javadoc-1.8.0.345-150200.3.24.1.noarch.rpm java-1_8_0-openj9-src-1.8.0.345-150200.3.24.1.x86_64.rpm java-1_8_0-openj9-1.8.0.345-150200.3.24.1.s390x.rpm java-1_8_0-openj9-accessibility-1.8.0.345-150200.3.24.1.s390x.rpm java-1_8_0-openj9-demo-1.8.0.345-150200.3.24.1.s390x.rpm java-1_8_0-openj9-devel-1.8.0.345-150200.3.24.1.s390x.rpm java-1_8_0-openj9-headless-1.8.0.345-150200.3.24.1.s390x.rpm java-1_8_0-openj9-src-1.8.0.345-150200.3.24.1.s390x.rpm java-1_8_0-openj9-1.8.0.345-150200.3.24.1.ppc64le.rpm java-1_8_0-openj9-accessibility-1.8.0.345-150200.3.24.1.ppc64le.rpm java-1_8_0-openj9-demo-1.8.0.345-150200.3.24.1.ppc64le.rpm java-1_8_0-openj9-devel-1.8.0.345-150200.3.24.1.ppc64le.rpm java-1_8_0-openj9-headless-1.8.0.345-150200.3.24.1.ppc64le.rpm java-1_8_0-openj9-src-1.8.0.345-150200.3.24.1.ppc64le.rpm openSUSE-SLE-15.3-2022-2988 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: - Update to 12.12: - CVE-2022-2625: Fixed an issue where extension scripts would replace objects not belonging to that extension (bsc#1202368). postgresql12-12.12-150200.8.35.1.src.rpm postgresql12-12.12-150200.8.35.1.x86_64.rpm postgresql12-contrib-12.12-150200.8.35.1.x86_64.rpm postgresql12-devel-12.12-150200.8.35.1.x86_64.rpm postgresql12-docs-12.12-150200.8.35.1.noarch.rpm postgresql12-llvmjit-12.12-150200.8.35.1.x86_64.rpm postgresql12-plperl-12.12-150200.8.35.1.x86_64.rpm postgresql12-plpython-12.12-150200.8.35.1.x86_64.rpm postgresql12-pltcl-12.12-150200.8.35.1.x86_64.rpm postgresql12-server-12.12-150200.8.35.1.x86_64.rpm postgresql12-server-devel-12.12-150200.8.35.1.x86_64.rpm postgresql12-test-12.12-150200.8.35.1.x86_64.rpm postgresql12-12.12-150200.8.35.1.s390x.rpm postgresql12-contrib-12.12-150200.8.35.1.s390x.rpm postgresql12-devel-12.12-150200.8.35.1.s390x.rpm postgresql12-llvmjit-12.12-150200.8.35.1.s390x.rpm postgresql12-plperl-12.12-150200.8.35.1.s390x.rpm postgresql12-plpython-12.12-150200.8.35.1.s390x.rpm postgresql12-pltcl-12.12-150200.8.35.1.s390x.rpm postgresql12-server-12.12-150200.8.35.1.s390x.rpm postgresql12-server-devel-12.12-150200.8.35.1.s390x.rpm postgresql12-test-12.12-150200.8.35.1.s390x.rpm postgresql12-12.12-150200.8.35.1.ppc64le.rpm postgresql12-contrib-12.12-150200.8.35.1.ppc64le.rpm postgresql12-devel-12.12-150200.8.35.1.ppc64le.rpm postgresql12-llvmjit-12.12-150200.8.35.1.ppc64le.rpm postgresql12-plperl-12.12-150200.8.35.1.ppc64le.rpm postgresql12-plpython-12.12-150200.8.35.1.ppc64le.rpm postgresql12-pltcl-12.12-150200.8.35.1.ppc64le.rpm postgresql12-server-12.12-150200.8.35.1.ppc64le.rpm postgresql12-server-devel-12.12-150200.8.35.1.ppc64le.rpm postgresql12-test-12.12-150200.8.35.1.ppc64le.rpm postgresql12-12.12-150200.8.35.1.aarch64.rpm postgresql12-contrib-12.12-150200.8.35.1.aarch64.rpm postgresql12-devel-12.12-150200.8.35.1.aarch64.rpm postgresql12-llvmjit-12.12-150200.8.35.1.aarch64.rpm postgresql12-plperl-12.12-150200.8.35.1.aarch64.rpm postgresql12-plpython-12.12-150200.8.35.1.aarch64.rpm postgresql12-pltcl-12.12-150200.8.35.1.aarch64.rpm postgresql12-server-12.12-150200.8.35.1.aarch64.rpm postgresql12-server-devel-12.12-150200.8.35.1.aarch64.rpm postgresql12-test-12.12-150200.8.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-2943 low SUSE Updates openSUSE-SLE 15.3 This update for python-iniconfig provides the following fix: - Ship missing python2-iniconfig to openSUSE 15.3 (bsc#1202498) python-iniconfig-1.1.1-150000.1.7.1.src.rpm python2-iniconfig-1.1.1-150000.1.7.1.noarch.rpm python3-iniconfig-1.1.1-150000.1.7.1.noarch.rpm openSUSE-SLE-15.3-2022-3142 moderate SUSE Updates openSUSE-SLE 15.3 This update for icu fixes the following issues: - CVE-2020-21913: Fixed a memory safetey issue that could lead to use after free (bsc#1193951). icu-65.1-150200.4.5.1.src.rpm icu-65.1-150200.4.5.1.x86_64.rpm libicu-devel-32bit-65.1-150200.4.5.1.x86_64.rpm libicu-devel-65.1-150200.4.5.1.x86_64.rpm libicu-doc-65.1-150200.4.5.1.x86_64.rpm libicu-suse65_1-32bit-65.1-150200.4.5.1.x86_64.rpm libicu-suse65_1-65.1-150200.4.5.1.x86_64.rpm libicu65_1-bedata-65.1-150200.4.5.1.noarch.rpm libicu65_1-ledata-65.1-150200.4.5.1.noarch.rpm icu-65.1-150200.4.5.1.s390x.rpm libicu-devel-65.1-150200.4.5.1.s390x.rpm libicu-doc-65.1-150200.4.5.1.s390x.rpm libicu-suse65_1-65.1-150200.4.5.1.s390x.rpm icu-65.1-150200.4.5.1.ppc64le.rpm libicu-devel-65.1-150200.4.5.1.ppc64le.rpm libicu-doc-65.1-150200.4.5.1.ppc64le.rpm libicu-suse65_1-65.1-150200.4.5.1.ppc64le.rpm icu-65.1-150200.4.5.1.aarch64.rpm libicu-devel-65.1-150200.4.5.1.aarch64.rpm libicu-doc-65.1-150200.4.5.1.aarch64.rpm libicu-suse65_1-65.1-150200.4.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-2908 important SUSE Updates openSUSE-SLE 15.3 This update for python-lxml fixes the following issues: - CVE-2022-2309: Fixed NULL pointer dereference due to state leak between parser runs (bsc#1201253). python-lxml-4.7.1-150200.3.10.1.src.rpm python2-lxml-4.7.1-150200.3.10.1.x86_64.rpm python2-lxml-devel-4.7.1-150200.3.10.1.x86_64.rpm python3-lxml-4.7.1-150200.3.10.1.x86_64.rpm python3-lxml-devel-4.7.1-150200.3.10.1.x86_64.rpm python2-lxml-4.7.1-150200.3.10.1.s390x.rpm python2-lxml-devel-4.7.1-150200.3.10.1.s390x.rpm python3-lxml-4.7.1-150200.3.10.1.s390x.rpm python3-lxml-devel-4.7.1-150200.3.10.1.s390x.rpm python2-lxml-4.7.1-150200.3.10.1.ppc64le.rpm python2-lxml-devel-4.7.1-150200.3.10.1.ppc64le.rpm python3-lxml-4.7.1-150200.3.10.1.ppc64le.rpm python3-lxml-devel-4.7.1-150200.3.10.1.ppc64le.rpm python2-lxml-4.7.1-150200.3.10.1.aarch64.rpm python2-lxml-devel-4.7.1-150200.3.10.1.aarch64.rpm python3-lxml-4.7.1-150200.3.10.1.aarch64.rpm python3-lxml-devel-4.7.1-150200.3.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-3141 moderate SUSE Updates openSUSE-SLE 15.3 This update for icu fixes the following issues: - CVE-2020-21913: Fixed a memory safetey issue that could lead to use after free (bsc#1193951). icu-60.2-150000.3.12.1.src.rpm libicu60_2-32bit-60.2-150000.3.12.1.x86_64.rpm libicu60_2-60.2-150000.3.12.1.x86_64.rpm libicu60_2-bedata-60.2-150000.3.12.1.noarch.rpm libicu60_2-ledata-60.2-150000.3.12.1.noarch.rpm libicu60_2-60.2-150000.3.12.1.s390x.rpm libicu60_2-60.2-150000.3.12.1.ppc64le.rpm libicu60_2-60.2-150000.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-25556 low SUSE Updates openSUSE-SLE 15.3 This update for python-zope.testing and python-zope.event fixes the following issue: - Add missing python3 packages python-zope.event and python-zope.testing to subpackages of Package Hub. python-zope.event-4.2.0-150000.2.2.2.src.rpm python-zope.event-doc-4.2.0-150000.2.2.2.noarch.rpm python-zope.testing-4.7-150200.2.2.1.src.rpm python2-zope.event-4.2.0-150000.2.2.2.noarch.rpm python2-zope.testing-4.7-150200.2.2.1.noarch.rpm python3-zope.event-4.2.0-150000.2.2.2.noarch.rpm python3-zope.testing-4.7-150200.2.2.1.noarch.rpm openSUSE-SLE-15.3-2022-2916 critical SUSE Updates openSUSE-SLE 15.3 This update for aws-efs-utils fixes the following issues: - Fix missing binaries from the previous update aws-efs-utils-1.31.3-150100.4.5.1.noarch.rpm aws-efs-utils-1.31.3-150100.4.5.1.src.rpm openSUSE-SLE-15.3-2022-2922 important SUSE Updates openSUSE-SLE 15.3 This update for libyang fixes the following issues: - CVE-2021-28905: Fixed a reachable assertion which could be exploited by an attacker to cause a denial of service (bsc#1186377). libyang-1.0.184-150300.3.3.1.src.rpm libyang-cpp-devel-1.0.184-150300.3.3.1.x86_64.rpm libyang-cpp1-1.0.184-150300.3.3.1.x86_64.rpm libyang-devel-1.0.184-150300.3.3.1.x86_64.rpm libyang-doc-1.0.184-150300.3.3.1.noarch.rpm libyang-extentions-1.0.184-150300.3.3.1.x86_64.rpm libyang1-1.0.184-150300.3.3.1.x86_64.rpm python3-yang-1.0.184-150300.3.3.1.x86_64.rpm yang-tools-1.0.184-150300.3.3.1.x86_64.rpm libyang-cpp-devel-1.0.184-150300.3.3.1.s390x.rpm libyang-cpp1-1.0.184-150300.3.3.1.s390x.rpm libyang-devel-1.0.184-150300.3.3.1.s390x.rpm libyang-extentions-1.0.184-150300.3.3.1.s390x.rpm libyang1-1.0.184-150300.3.3.1.s390x.rpm python3-yang-1.0.184-150300.3.3.1.s390x.rpm yang-tools-1.0.184-150300.3.3.1.s390x.rpm libyang-cpp-devel-1.0.184-150300.3.3.1.ppc64le.rpm libyang-cpp1-1.0.184-150300.3.3.1.ppc64le.rpm libyang-devel-1.0.184-150300.3.3.1.ppc64le.rpm libyang-extentions-1.0.184-150300.3.3.1.ppc64le.rpm libyang1-1.0.184-150300.3.3.1.ppc64le.rpm python3-yang-1.0.184-150300.3.3.1.ppc64le.rpm yang-tools-1.0.184-150300.3.3.1.ppc64le.rpm libyang-cpp-devel-1.0.184-150300.3.3.1.aarch64.rpm libyang-cpp1-1.0.184-150300.3.3.1.aarch64.rpm libyang-devel-1.0.184-150300.3.3.1.aarch64.rpm libyang-extentions-1.0.184-150300.3.3.1.aarch64.rpm libyang1-1.0.184-150300.3.3.1.aarch64.rpm python3-yang-1.0.184-150300.3.3.1.aarch64.rpm yang-tools-1.0.184-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3093 important SUSE Updates openSUSE-SLE 15.3 This update for python-Flask-Security-Too fixes the following issues: - CVE-2021-21241: Fixed an issue where GET requests lacking CSRF protection to certain endpoints could return the user's authentication token (bsc#1181058). python-Flask-Security-Too-3.4.2-150200.3.3.1.src.rpm python3-Flask-Security-Too-3.4.2-150200.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-3119 moderate SUSE Updates openSUSE-SLE 15.3 This update for ImageMagick fixes the following issues: - CVE-2021-20224: Fixed an integer overflow that could be triggered via a crafted file (bsc#1202800). - CVE-2022-2719: Fixed a reachable assertion that could lead to denial of service via a crafted file (bsc#1202250). ImageMagick-7.0.7.34-150200.10.36.1.src.rpm ImageMagick-7.0.7.34-150200.10.36.1.x86_64.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.36.1.x86_64.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.36.1.x86_64.rpm ImageMagick-devel-32bit-7.0.7.34-150200.10.36.1.x86_64.rpm ImageMagick-devel-7.0.7.34-150200.10.36.1.x86_64.rpm ImageMagick-doc-7.0.7.34-150200.10.36.1.noarch.rpm ImageMagick-extra-7.0.7.34-150200.10.36.1.x86_64.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-150200.10.36.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.36.1.x86_64.rpm libMagick++-devel-32bit-7.0.7.34-150200.10.36.1.x86_64.rpm libMagick++-devel-7.0.7.34-150200.10.36.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-150200.10.36.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.36.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-150200.10.36.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.36.1.x86_64.rpm perl-PerlMagick-7.0.7.34-150200.10.36.1.x86_64.rpm ImageMagick-7.0.7.34-150200.10.36.1.s390x.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.36.1.s390x.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.36.1.s390x.rpm ImageMagick-devel-7.0.7.34-150200.10.36.1.s390x.rpm ImageMagick-extra-7.0.7.34-150200.10.36.1.s390x.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.36.1.s390x.rpm libMagick++-devel-7.0.7.34-150200.10.36.1.s390x.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.36.1.s390x.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.36.1.s390x.rpm perl-PerlMagick-7.0.7.34-150200.10.36.1.s390x.rpm ImageMagick-7.0.7.34-150200.10.36.1.ppc64le.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.36.1.ppc64le.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.36.1.ppc64le.rpm ImageMagick-devel-7.0.7.34-150200.10.36.1.ppc64le.rpm ImageMagick-extra-7.0.7.34-150200.10.36.1.ppc64le.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.36.1.ppc64le.rpm libMagick++-devel-7.0.7.34-150200.10.36.1.ppc64le.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.36.1.ppc64le.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.36.1.ppc64le.rpm perl-PerlMagick-7.0.7.34-150200.10.36.1.ppc64le.rpm ImageMagick-7.0.7.34-150200.10.36.1.aarch64.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.36.1.aarch64.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.36.1.aarch64.rpm ImageMagick-devel-7.0.7.34-150200.10.36.1.aarch64.rpm ImageMagick-extra-7.0.7.34-150200.10.36.1.aarch64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.36.1.aarch64.rpm libMagick++-devel-7.0.7.34-150200.10.36.1.aarch64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.36.1.aarch64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.36.1.aarch64.rpm perl-PerlMagick-7.0.7.34-150200.10.36.1.aarch64.rpm openSUSE-SLE-15.3-2022-3252 moderate SUSE Updates openSUSE-SLE 15.3 This update for freetype2 fixes the following issues: - CVE-2022-27404 Fixed a segmentation fault via a crafted typeface (bsc#1198830). - CVE-2022-27405 Fixed a buffer overflow via a crafted typeface (bsc#1198832). - CVE-2022-27406 Fixed a segmentation fault via a crafted typeface (bsc#1198823). Non-security fixes: - Updated to version 2.10.4 freetype2-2.10.4-150000.4.12.1.src.rpm freetype2-devel-2.10.4-150000.4.12.1.x86_64.rpm freetype2-devel-32bit-2.10.4-150000.4.12.1.x86_64.rpm freetype2-profile-tti35-2.10.4-150000.4.12.1.noarch.rpm ft2demos-2.10.4-150000.4.12.1.nosrc.rpm ft2demos-2.10.4-150000.4.12.1.x86_64.rpm ftbench-2.10.4-150000.4.12.1.x86_64.rpm ftdiff-2.10.4-150000.4.12.1.x86_64.rpm ftdump-2.10.4-150000.4.12.1.x86_64.rpm ftgamma-2.10.4-150000.4.12.1.x86_64.rpm ftgrid-2.10.4-150000.4.12.1.x86_64.rpm ftinspect-2.10.4-150000.4.12.1.x86_64.rpm ftlint-2.10.4-150000.4.12.1.x86_64.rpm ftmulti-2.10.4-150000.4.12.1.x86_64.rpm ftstring-2.10.4-150000.4.12.1.x86_64.rpm ftvalid-2.10.4-150000.4.12.1.x86_64.rpm ftview-2.10.4-150000.4.12.1.x86_64.rpm libfreetype6-2.10.4-150000.4.12.1.x86_64.rpm libfreetype6-32bit-2.10.4-150000.4.12.1.x86_64.rpm freetype2-devel-2.10.4-150000.4.12.1.s390x.rpm ft2demos-2.10.4-150000.4.12.1.s390x.rpm ftbench-2.10.4-150000.4.12.1.s390x.rpm ftdiff-2.10.4-150000.4.12.1.s390x.rpm ftdump-2.10.4-150000.4.12.1.s390x.rpm ftgamma-2.10.4-150000.4.12.1.s390x.rpm ftgrid-2.10.4-150000.4.12.1.s390x.rpm ftinspect-2.10.4-150000.4.12.1.s390x.rpm ftlint-2.10.4-150000.4.12.1.s390x.rpm ftmulti-2.10.4-150000.4.12.1.s390x.rpm ftstring-2.10.4-150000.4.12.1.s390x.rpm ftvalid-2.10.4-150000.4.12.1.s390x.rpm ftview-2.10.4-150000.4.12.1.s390x.rpm libfreetype6-2.10.4-150000.4.12.1.s390x.rpm freetype2-devel-2.10.4-150000.4.12.1.ppc64le.rpm ft2demos-2.10.4-150000.4.12.1.ppc64le.rpm ftbench-2.10.4-150000.4.12.1.ppc64le.rpm ftdiff-2.10.4-150000.4.12.1.ppc64le.rpm ftdump-2.10.4-150000.4.12.1.ppc64le.rpm ftgamma-2.10.4-150000.4.12.1.ppc64le.rpm ftgrid-2.10.4-150000.4.12.1.ppc64le.rpm ftinspect-2.10.4-150000.4.12.1.ppc64le.rpm ftlint-2.10.4-150000.4.12.1.ppc64le.rpm ftmulti-2.10.4-150000.4.12.1.ppc64le.rpm ftstring-2.10.4-150000.4.12.1.ppc64le.rpm ftvalid-2.10.4-150000.4.12.1.ppc64le.rpm ftview-2.10.4-150000.4.12.1.ppc64le.rpm libfreetype6-2.10.4-150000.4.12.1.ppc64le.rpm freetype2-devel-2.10.4-150000.4.12.1.aarch64.rpm ft2demos-2.10.4-150000.4.12.1.aarch64.rpm ftbench-2.10.4-150000.4.12.1.aarch64.rpm ftdiff-2.10.4-150000.4.12.1.aarch64.rpm ftdump-2.10.4-150000.4.12.1.aarch64.rpm ftgamma-2.10.4-150000.4.12.1.aarch64.rpm ftgrid-2.10.4-150000.4.12.1.aarch64.rpm ftinspect-2.10.4-150000.4.12.1.aarch64.rpm ftlint-2.10.4-150000.4.12.1.aarch64.rpm ftmulti-2.10.4-150000.4.12.1.aarch64.rpm ftstring-2.10.4-150000.4.12.1.aarch64.rpm ftvalid-2.10.4-150000.4.12.1.aarch64.rpm ftview-2.10.4-150000.4.12.1.aarch64.rpm libfreetype6-2.10.4-150000.4.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-3239 moderate SUSE Updates openSUSE-SLE 15.3 This update for tpm2-0-tss fixes the following issues: - Fix missing zero initialization of a header data field that could lead to data corruption if the TPM does not support partial read (bsc#1202172) libtss2-esys0-2.4.5-150300.3.3.1.x86_64.rpm libtss2-esys0-32bit-2.4.5-150300.3.3.1.x86_64.rpm libtss2-fapi0-2.4.5-150300.3.3.1.x86_64.rpm libtss2-mu0-2.4.5-150300.3.3.1.x86_64.rpm libtss2-mu0-32bit-2.4.5-150300.3.3.1.x86_64.rpm libtss2-rc0-2.4.5-150300.3.3.1.x86_64.rpm libtss2-sys0-2.4.5-150300.3.3.1.x86_64.rpm libtss2-sys0-32bit-2.4.5-150300.3.3.1.x86_64.rpm libtss2-tcti-device0-2.4.5-150300.3.3.1.x86_64.rpm libtss2-tcti-device0-32bit-2.4.5-150300.3.3.1.x86_64.rpm libtss2-tcti-mssim0-2.4.5-150300.3.3.1.x86_64.rpm libtss2-tcti-mssim0-32bit-2.4.5-150300.3.3.1.x86_64.rpm libtss2-tctildr0-2.4.5-150300.3.3.1.x86_64.rpm tpm2-0-tss-2.4.5-150300.3.3.1.src.rpm tpm2-0-tss-2.4.5-150300.3.3.1.x86_64.rpm tpm2-0-tss-devel-2.4.5-150300.3.3.1.x86_64.rpm libtss2-esys0-2.4.5-150300.3.3.1.s390x.rpm libtss2-fapi0-2.4.5-150300.3.3.1.s390x.rpm libtss2-mu0-2.4.5-150300.3.3.1.s390x.rpm libtss2-rc0-2.4.5-150300.3.3.1.s390x.rpm libtss2-sys0-2.4.5-150300.3.3.1.s390x.rpm libtss2-tcti-device0-2.4.5-150300.3.3.1.s390x.rpm libtss2-tcti-mssim0-2.4.5-150300.3.3.1.s390x.rpm libtss2-tctildr0-2.4.5-150300.3.3.1.s390x.rpm tpm2-0-tss-2.4.5-150300.3.3.1.s390x.rpm tpm2-0-tss-devel-2.4.5-150300.3.3.1.s390x.rpm libtss2-esys0-2.4.5-150300.3.3.1.ppc64le.rpm libtss2-fapi0-2.4.5-150300.3.3.1.ppc64le.rpm libtss2-mu0-2.4.5-150300.3.3.1.ppc64le.rpm libtss2-rc0-2.4.5-150300.3.3.1.ppc64le.rpm libtss2-sys0-2.4.5-150300.3.3.1.ppc64le.rpm libtss2-tcti-device0-2.4.5-150300.3.3.1.ppc64le.rpm libtss2-tcti-mssim0-2.4.5-150300.3.3.1.ppc64le.rpm libtss2-tctildr0-2.4.5-150300.3.3.1.ppc64le.rpm tpm2-0-tss-2.4.5-150300.3.3.1.ppc64le.rpm tpm2-0-tss-devel-2.4.5-150300.3.3.1.ppc64le.rpm libtss2-esys0-2.4.5-150300.3.3.1.aarch64.rpm libtss2-fapi0-2.4.5-150300.3.3.1.aarch64.rpm libtss2-mu0-2.4.5-150300.3.3.1.aarch64.rpm libtss2-rc0-2.4.5-150300.3.3.1.aarch64.rpm libtss2-sys0-2.4.5-150300.3.3.1.aarch64.rpm libtss2-tcti-device0-2.4.5-150300.3.3.1.aarch64.rpm libtss2-tcti-mssim0-2.4.5-150300.3.3.1.aarch64.rpm libtss2-tctildr0-2.4.5-150300.3.3.1.aarch64.rpm tpm2-0-tss-2.4.5-150300.3.3.1.aarch64.rpm tpm2-0-tss-devel-2.4.5-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3004 low SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2022-35252: Fixed a potential injection of control characters into cookies, which could be exploited by sister sites to cause a denial of service (bsc#1202593). curl-7.66.0-150200.4.39.1.src.rpm curl-7.66.0-150200.4.39.1.x86_64.rpm libcurl-devel-32bit-7.66.0-150200.4.39.1.x86_64.rpm libcurl-devel-7.66.0-150200.4.39.1.x86_64.rpm libcurl4-32bit-7.66.0-150200.4.39.1.x86_64.rpm libcurl4-7.66.0-150200.4.39.1.x86_64.rpm curl-7.66.0-150200.4.39.1.s390x.rpm libcurl-devel-7.66.0-150200.4.39.1.s390x.rpm libcurl4-7.66.0-150200.4.39.1.s390x.rpm curl-7.66.0-150200.4.39.1.ppc64le.rpm libcurl-devel-7.66.0-150200.4.39.1.ppc64le.rpm libcurl4-7.66.0-150200.4.39.1.ppc64le.rpm curl-7.66.0-150200.4.39.1.aarch64.rpm libcurl-devel-7.66.0-150200.4.39.1.aarch64.rpm libcurl4-7.66.0-150200.4.39.1.aarch64.rpm openSUSE-SLE-15.3-2022-3030 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.13.0 ESR (bsc#1202645): - CVE-2022-38472: Fixed a potential address bar spoofing via XSLT error handling. - CVE-2022-38473: Fixed an issue where cross-origin XSLT documents could inherit the parent's permissions. - CVE-2022-38478: Fixed various memory safety issues. MozillaFirefox-91.13.0-150200.152.56.2.src.rpm MozillaFirefox-91.13.0-150200.152.56.2.x86_64.rpm MozillaFirefox-branding-SLE-91-150200.9.7.1.src.rpm MozillaFirefox-branding-SLE-91-150200.9.7.1.x86_64.rpm MozillaFirefox-branding-upstream-91.13.0-150200.152.56.2.x86_64.rpm MozillaFirefox-devel-91.13.0-150200.152.56.2.x86_64.rpm MozillaFirefox-translations-common-91.13.0-150200.152.56.2.x86_64.rpm MozillaFirefox-translations-other-91.13.0-150200.152.56.2.x86_64.rpm MozillaFirefox-91.13.0-150200.152.56.2.s390x.rpm MozillaFirefox-branding-SLE-91-150200.9.7.1.s390x.rpm MozillaFirefox-branding-upstream-91.13.0-150200.152.56.2.s390x.rpm MozillaFirefox-devel-91.13.0-150200.152.56.2.s390x.rpm MozillaFirefox-translations-common-91.13.0-150200.152.56.2.s390x.rpm MozillaFirefox-translations-other-91.13.0-150200.152.56.2.s390x.rpm MozillaFirefox-91.13.0-150200.152.56.2.ppc64le.rpm MozillaFirefox-branding-SLE-91-150200.9.7.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.13.0-150200.152.56.2.ppc64le.rpm MozillaFirefox-devel-91.13.0-150200.152.56.2.ppc64le.rpm MozillaFirefox-translations-common-91.13.0-150200.152.56.2.ppc64le.rpm MozillaFirefox-translations-other-91.13.0-150200.152.56.2.ppc64le.rpm MozillaFirefox-91.13.0-150200.152.56.2.aarch64.rpm MozillaFirefox-branding-SLE-91-150200.9.7.1.aarch64.rpm MozillaFirefox-branding-upstream-91.13.0-150200.152.56.2.aarch64.rpm MozillaFirefox-devel-91.13.0-150200.152.56.2.aarch64.rpm MozillaFirefox-translations-common-91.13.0-150200.152.56.2.aarch64.rpm MozillaFirefox-translations-other-91.13.0-150200.152.56.2.aarch64.rpm openSUSE-SLE-15.3-2022-3116 moderate SUSE Updates openSUSE-SLE 15.3 This update for openvswitch fixes the following issues: - CVE-2021-36980: Fixed a use-after-free issue during the decoding of a RAW_ENCAP action (bsc#1188524). libopenvswitch-2_14-0-2.14.2-150300.19.3.1.x86_64.rpm libovn-20_06-0-20.06.2-150300.19.3.1.x86_64.rpm openvswitch-2.14.2-150300.19.3.1.src.rpm openvswitch-2.14.2-150300.19.3.1.x86_64.rpm openvswitch-devel-2.14.2-150300.19.3.1.x86_64.rpm openvswitch-doc-2.14.2-150300.19.3.1.noarch.rpm openvswitch-ipsec-2.14.2-150300.19.3.1.x86_64.rpm openvswitch-pki-2.14.2-150300.19.3.1.x86_64.rpm openvswitch-test-2.14.2-150300.19.3.1.x86_64.rpm openvswitch-vtep-2.14.2-150300.19.3.1.x86_64.rpm ovn-20.06.2-150300.19.3.1.x86_64.rpm ovn-central-20.06.2-150300.19.3.1.x86_64.rpm ovn-devel-20.06.2-150300.19.3.1.x86_64.rpm ovn-doc-20.06.2-150300.19.3.1.noarch.rpm ovn-docker-20.06.2-150300.19.3.1.x86_64.rpm ovn-host-20.06.2-150300.19.3.1.x86_64.rpm ovn-vtep-20.06.2-150300.19.3.1.x86_64.rpm python3-ovs-2.14.2-150300.19.3.1.x86_64.rpm libopenvswitch-2_14-0-2.14.2-150300.19.3.1.s390x.rpm libovn-20_06-0-20.06.2-150300.19.3.1.s390x.rpm openvswitch-2.14.2-150300.19.3.1.s390x.rpm openvswitch-devel-2.14.2-150300.19.3.1.s390x.rpm openvswitch-ipsec-2.14.2-150300.19.3.1.s390x.rpm openvswitch-pki-2.14.2-150300.19.3.1.s390x.rpm openvswitch-test-2.14.2-150300.19.3.1.s390x.rpm openvswitch-vtep-2.14.2-150300.19.3.1.s390x.rpm ovn-20.06.2-150300.19.3.1.s390x.rpm ovn-central-20.06.2-150300.19.3.1.s390x.rpm ovn-devel-20.06.2-150300.19.3.1.s390x.rpm ovn-docker-20.06.2-150300.19.3.1.s390x.rpm ovn-host-20.06.2-150300.19.3.1.s390x.rpm ovn-vtep-20.06.2-150300.19.3.1.s390x.rpm python3-ovs-2.14.2-150300.19.3.1.s390x.rpm libopenvswitch-2_14-0-2.14.2-150300.19.3.1.ppc64le.rpm libovn-20_06-0-20.06.2-150300.19.3.1.ppc64le.rpm openvswitch-2.14.2-150300.19.3.1.ppc64le.rpm openvswitch-devel-2.14.2-150300.19.3.1.ppc64le.rpm openvswitch-ipsec-2.14.2-150300.19.3.1.ppc64le.rpm openvswitch-pki-2.14.2-150300.19.3.1.ppc64le.rpm openvswitch-test-2.14.2-150300.19.3.1.ppc64le.rpm openvswitch-vtep-2.14.2-150300.19.3.1.ppc64le.rpm ovn-20.06.2-150300.19.3.1.ppc64le.rpm ovn-central-20.06.2-150300.19.3.1.ppc64le.rpm ovn-devel-20.06.2-150300.19.3.1.ppc64le.rpm ovn-docker-20.06.2-150300.19.3.1.ppc64le.rpm ovn-host-20.06.2-150300.19.3.1.ppc64le.rpm ovn-vtep-20.06.2-150300.19.3.1.ppc64le.rpm python3-ovs-2.14.2-150300.19.3.1.ppc64le.rpm libopenvswitch-2_14-0-2.14.2-150300.19.3.1.aarch64.rpm libovn-20_06-0-20.06.2-150300.19.3.1.aarch64.rpm openvswitch-2.14.2-150300.19.3.1.aarch64.rpm openvswitch-devel-2.14.2-150300.19.3.1.aarch64.rpm openvswitch-ipsec-2.14.2-150300.19.3.1.aarch64.rpm openvswitch-pki-2.14.2-150300.19.3.1.aarch64.rpm openvswitch-test-2.14.2-150300.19.3.1.aarch64.rpm openvswitch-vtep-2.14.2-150300.19.3.1.aarch64.rpm ovn-20.06.2-150300.19.3.1.aarch64.rpm ovn-central-20.06.2-150300.19.3.1.aarch64.rpm ovn-devel-20.06.2-150300.19.3.1.aarch64.rpm ovn-docker-20.06.2-150300.19.3.1.aarch64.rpm ovn-host-20.06.2-150300.19.3.1.aarch64.rpm ovn-vtep-20.06.2-150300.19.3.1.aarch64.rpm python3-ovs-2.14.2-150300.19.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3096 moderate SUSE Updates openSUSE-SLE 15.3 This update for openvswitch fixes the following issues: - CVE-2021-36980: Fixed a use-after-free issue during the decoding of a RAW_ENCAP action (bsc#1188524). libopenvswitch-2_13-0-2.13.2-150200.9.17.1.x86_64.rpm libovn-20_03-0-20.03.1-150200.9.17.1.x86_64.rpm openvswitch-2.13.2-150200.9.17.1.src.rpm libopenvswitch-2_13-0-2.13.2-150200.9.17.1.s390x.rpm libovn-20_03-0-20.03.1-150200.9.17.1.s390x.rpm libopenvswitch-2_13-0-2.13.2-150200.9.17.1.ppc64le.rpm libovn-20_03-0-20.03.1-150200.9.17.1.ppc64le.rpm libopenvswitch-2_13-0-2.13.2-150200.9.17.1.aarch64.rpm libovn-20_03-0-20.03.1-150200.9.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-3298 important SUSE Updates openSUSE-SLE 15.3 This update for python-psutil fixes the following issues: - Adopt change of used memory calculation from upstream of procps (bsc#1181475) python-psutil-5.8.0-150300.3.3.2.src.rpm python2-psutil-5.8.0-150300.3.3.2.x86_64.rpm python3-psutil-5.8.0-150300.3.3.2.x86_64.rpm python2-psutil-5.8.0-150300.3.3.2.s390x.rpm python3-psutil-5.8.0-150300.3.3.2.s390x.rpm python2-psutil-5.8.0-150300.3.3.2.ppc64le.rpm python3-psutil-5.8.0-150300.3.3.2.ppc64le.rpm python2-psutil-5.8.0-150300.3.3.2.aarch64.rpm python3-psutil-5.8.0-150300.3.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-2972 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for python-kubernetes provides: - Deliver python3-kubernetes to the Containers Module 15 SP4. (jsc#SLE-17904, MSC-443) * Deliver python3-google-auth to Basesystem Module 15 SP4 as dependency of python3-kubernetes. * Deliver python3-cachetools to Basesystem Module 15 SP4 as dependency of python3-google-auth. - There are no visible changes for the final user. python-cachetools-4.1.0-150200.3.4.1.src.rpm python-google-auth-1.21.2-150300.3.6.1.src.rpm python-kubernetes-8.0.1-150100.3.7.1.src.rpm python2-google-auth-1.21.2-150300.3.6.1.noarch.rpm python2-kubernetes-8.0.1-150100.3.7.1.noarch.rpm python3-cachetools-4.1.0-150200.3.4.1.noarch.rpm python3-google-auth-1.21.2-150300.3.6.1.noarch.rpm python3-kubernetes-8.0.1-150100.3.7.1.noarch.rpm openSUSE-SLE-15.3-2022-2923 important SUSE Updates openSUSE-SLE 15.3 This update for keepalived fixes the following issues: - CVE-2021-44225: Fix a potential privilege escalation due to insufficient control in the D-Bus policy (bsc#1193115). keepalived-2.0.19-150100.3.6.1.src.rpm keepalived-2.0.19-150100.3.6.1.x86_64.rpm keepalived-2.0.19-150100.3.6.1.s390x.rpm keepalived-2.0.19-150100.3.6.1.ppc64le.rpm keepalived-2.0.19-150100.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3091 moderate SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nss fixes the following issues: Update to NSS 3.79.1 (bsc#1202645) * compare signature and signatureAlgorithm fields in legacy certificate verifier. * Uninitialized value in cert_ComputeCertType. * protect SFTKSlot needLogin with slotLock. * avoid data race on primary password change. * check for null template in sec_asn1{d,e}_push_state. - FIPS: unapprove the rest of the DSA ciphers, keeping signature verification only (bsc#1201298). libfreebl3-3.79.1-150000.3.77.1.x86_64.rpm libfreebl3-32bit-3.79.1-150000.3.77.1.x86_64.rpm libfreebl3-hmac-3.79.1-150000.3.77.1.x86_64.rpm libfreebl3-hmac-32bit-3.79.1-150000.3.77.1.x86_64.rpm libsoftokn3-3.79.1-150000.3.77.1.x86_64.rpm libsoftokn3-32bit-3.79.1-150000.3.77.1.x86_64.rpm libsoftokn3-hmac-3.79.1-150000.3.77.1.x86_64.rpm libsoftokn3-hmac-32bit-3.79.1-150000.3.77.1.x86_64.rpm mozilla-nss-3.79.1-150000.3.77.1.src.rpm mozilla-nss-3.79.1-150000.3.77.1.x86_64.rpm mozilla-nss-32bit-3.79.1-150000.3.77.1.x86_64.rpm mozilla-nss-certs-3.79.1-150000.3.77.1.x86_64.rpm mozilla-nss-certs-32bit-3.79.1-150000.3.77.1.x86_64.rpm mozilla-nss-devel-3.79.1-150000.3.77.1.x86_64.rpm mozilla-nss-sysinit-3.79.1-150000.3.77.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.79.1-150000.3.77.1.x86_64.rpm mozilla-nss-tools-3.79.1-150000.3.77.1.x86_64.rpm libfreebl3-3.79.1-150000.3.77.1.s390x.rpm libfreebl3-hmac-3.79.1-150000.3.77.1.s390x.rpm libsoftokn3-3.79.1-150000.3.77.1.s390x.rpm libsoftokn3-hmac-3.79.1-150000.3.77.1.s390x.rpm mozilla-nss-3.79.1-150000.3.77.1.s390x.rpm mozilla-nss-certs-3.79.1-150000.3.77.1.s390x.rpm mozilla-nss-devel-3.79.1-150000.3.77.1.s390x.rpm mozilla-nss-sysinit-3.79.1-150000.3.77.1.s390x.rpm mozilla-nss-tools-3.79.1-150000.3.77.1.s390x.rpm libfreebl3-3.79.1-150000.3.77.1.ppc64le.rpm libfreebl3-hmac-3.79.1-150000.3.77.1.ppc64le.rpm libsoftokn3-3.79.1-150000.3.77.1.ppc64le.rpm libsoftokn3-hmac-3.79.1-150000.3.77.1.ppc64le.rpm mozilla-nss-3.79.1-150000.3.77.1.ppc64le.rpm mozilla-nss-certs-3.79.1-150000.3.77.1.ppc64le.rpm mozilla-nss-devel-3.79.1-150000.3.77.1.ppc64le.rpm mozilla-nss-sysinit-3.79.1-150000.3.77.1.ppc64le.rpm mozilla-nss-tools-3.79.1-150000.3.77.1.ppc64le.rpm libfreebl3-3.79.1-150000.3.77.1.aarch64.rpm libfreebl3-hmac-3.79.1-150000.3.77.1.aarch64.rpm libsoftokn3-3.79.1-150000.3.77.1.aarch64.rpm libsoftokn3-hmac-3.79.1-150000.3.77.1.aarch64.rpm mozilla-nss-3.79.1-150000.3.77.1.aarch64.rpm mozilla-nss-certs-3.79.1-150000.3.77.1.aarch64.rpm mozilla-nss-devel-3.79.1-150000.3.77.1.aarch64.rpm mozilla-nss-sysinit-3.79.1-150000.3.77.1.aarch64.rpm mozilla-nss-tools-3.79.1-150000.3.77.1.aarch64.rpm openSUSE-SLE-15.3-2022-2936 important SUSE Updates openSUSE-SLE 15.3 This update for open-vm-tools fixes the following issues: - Updated to version 12.1.0 (build 20219665) (bsc#1202733): - CVE-2022-31676: Fixed an issue that could allow unprivileged users inside a virtual machine to escalate privileges (bsc#1202657). libvmtools-devel-12.1.0-150300.19.1.x86_64.rpm libvmtools0-12.1.0-150300.19.1.x86_64.rpm open-vm-tools-12.1.0-150300.19.1.src.rpm open-vm-tools-12.1.0-150300.19.1.x86_64.rpm open-vm-tools-desktop-12.1.0-150300.19.1.x86_64.rpm open-vm-tools-sdmp-12.1.0-150300.19.1.x86_64.rpm libvmtools-devel-12.1.0-150300.19.1.aarch64.rpm libvmtools0-12.1.0-150300.19.1.aarch64.rpm open-vm-tools-12.1.0-150300.19.1.aarch64.rpm open-vm-tools-desktop-12.1.0-150300.19.1.aarch64.rpm open-vm-tools-sdmp-12.1.0-150300.19.1.aarch64.rpm openSUSE-SLE-15.3-2022-2929 important SUSE Updates openSUSE-SLE 15.3 This update for timezone fixes the following issue: - Reflect new Chile DST change (bsc#1202310) timezone-2022a-150000.75.10.1.src.rpm timezone-2022a-150000.75.10.1.x86_64.rpm timezone-java-2022a-150000.75.10.1.noarch.rpm timezone-java-2022a-150000.75.10.1.src.rpm timezone-2022a-150000.75.10.1.s390x.rpm timezone-2022a-150000.75.10.1.ppc64le.rpm timezone-2022a-150000.75.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-2953 moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - While the source code was updated to support SLE Micro the spec file was not updated for the new locations of the cache and the certs. Update the spec file to be consistent with the code implementation. (bsc#1202706) - Handle exception when trying to deregister a system form the server. (bsc#1201612) cloud-regionsrv-client-10.0.5-150000.6.76.1.noarch.rpm cloud-regionsrv-client-10.0.5-150000.6.76.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-150000.6.76.1.noarch.rpm cloud-regionsrv-client-plugin-azure-2.0.0-150000.6.76.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-150000.6.76.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-150000.6.76.1.noarch.rpm openSUSE-SLE-15.3-2022-3262 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc11 ships some missing 32bit libraries for s390x. (bsc#1199140) cpp11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.src.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.x86_64.rpm cross-aarch64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.src.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.x86_64.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.src.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.x86_64.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.src.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.x86_64.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-nvptx-gcc11-11.3.0+git1637-150000.1.11.1.src.rpm cross-nvptx-gcc11-11.3.0+git1637-150000.1.11.1.x86_64.rpm cross-nvptx-newlib11-devel-11.3.0+git1637-150000.1.11.1.x86_64.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-ppc64le-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.src.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.x86_64.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.src.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.x86_64.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.src.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.x86_64.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-s390x-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.x86_64.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-11.3.0+git1637-150000.1.11.2.src.rpm gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-PIE-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-ada-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-ada-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-c++-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-c++-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-d-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-d-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-fortran-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-fortran-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-go-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-go-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-info-11.3.0+git1637-150000.1.11.2.noarch.rpm gcc11-locale-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-obj-c++-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-objc-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-objc-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm gcc11-testresults-11.3.0+git1637-150000.1.11.2.src.rpm gcc11-testresults-11.3.0+git1637-150000.1.11.2.x86_64.rpm libada11-11.3.0+git1637-150000.1.11.2.x86_64.rpm libada11-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libasan6-11.3.0+git1637-150000.1.11.2.x86_64.rpm libasan6-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libatomic1-11.3.0+git1637-150000.1.11.2.x86_64.rpm libatomic1-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgcc_s1-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgcc_s1-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgdruntime2-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgdruntime2-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgfortran5-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgfortran5-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgo19-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgo19-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgomp1-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgomp1-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgphobos2-11.3.0+git1637-150000.1.11.2.x86_64.rpm libgphobos2-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libitm1-11.3.0+git1637-150000.1.11.2.x86_64.rpm libitm1-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm liblsan0-11.3.0+git1637-150000.1.11.2.x86_64.rpm libobjc4-11.3.0+git1637-150000.1.11.2.x86_64.rpm libobjc4-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libquadmath0-11.3.0+git1637-150000.1.11.2.x86_64.rpm libquadmath0-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libstdc++6-11.3.0+git1637-150000.1.11.2.x86_64.rpm libstdc++6-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm libstdc++6-devel-gcc11-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libstdc++6-locale-11.3.0+git1637-150000.1.11.2.x86_64.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.11.2.x86_64.rpm libstdc++6-pp-gcc11-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm libtsan0-11.3.0+git1637-150000.1.11.2.x86_64.rpm libubsan1-11.3.0+git1637-150000.1.11.2.x86_64.rpm libubsan1-32bit-11.3.0+git1637-150000.1.11.2.x86_64.rpm cpp11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.s390x.rpm cross-aarch64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.s390x.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.s390x.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.s390x.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-ppc64le-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.s390x.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.s390x.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.s390x.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.11.2.src.rpm cross-x86_64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-PIE-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-ada-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-ada-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-c++-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-c++-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-d-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-d-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-fortran-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-fortran-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-go-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-go-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-locale-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-obj-c++-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-objc-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-objc-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm gcc11-testresults-11.3.0+git1637-150000.1.11.2.s390x.rpm libada11-11.3.0+git1637-150000.1.11.2.s390x.rpm libada11-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libasan6-11.3.0+git1637-150000.1.11.2.s390x.rpm libasan6-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libatomic1-11.3.0+git1637-150000.1.11.2.s390x.rpm libatomic1-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libgcc_s1-11.3.0+git1637-150000.1.11.2.s390x.rpm libgcc_s1-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libgdruntime2-11.3.0+git1637-150000.1.11.2.s390x.rpm libgdruntime2-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libgfortran5-11.3.0+git1637-150000.1.11.2.s390x.rpm libgfortran5-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libgo19-11.3.0+git1637-150000.1.11.2.s390x.rpm libgo19-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libgomp1-11.3.0+git1637-150000.1.11.2.s390x.rpm libgomp1-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libgphobos2-11.3.0+git1637-150000.1.11.2.s390x.rpm libgphobos2-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libitm1-11.3.0+git1637-150000.1.11.2.s390x.rpm libitm1-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libobjc4-11.3.0+git1637-150000.1.11.2.s390x.rpm libobjc4-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libstdc++6-11.3.0+git1637-150000.1.11.2.s390x.rpm libstdc++6-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm libstdc++6-devel-gcc11-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libstdc++6-locale-11.3.0+git1637-150000.1.11.2.s390x.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.11.2.s390x.rpm libstdc++6-pp-gcc11-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm libubsan1-11.3.0+git1637-150000.1.11.2.s390x.rpm libubsan1-32bit-11.3.0+git1637-150000.1.11.2.s390x.rpm cpp11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.ppc64le.rpm cross-aarch64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.ppc64le.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.ppc64le.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.ppc64le.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.ppc64le.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.ppc64le.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.ppc64le.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-s390x-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cross-x86_64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.ppc64le.rpm gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm gcc11-PIE-11.3.0+git1637-150000.1.11.2.ppc64le.rpm gcc11-ada-11.3.0+git1637-150000.1.11.2.ppc64le.rpm gcc11-c++-11.3.0+git1637-150000.1.11.2.ppc64le.rpm gcc11-fortran-11.3.0+git1637-150000.1.11.2.ppc64le.rpm gcc11-go-11.3.0+git1637-150000.1.11.2.ppc64le.rpm gcc11-locale-11.3.0+git1637-150000.1.11.2.ppc64le.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.11.2.ppc64le.rpm gcc11-objc-11.3.0+git1637-150000.1.11.2.ppc64le.rpm gcc11-testresults-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libada11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libasan6-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libatomic1-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libgcc_s1-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libgfortran5-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libgo19-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libgomp1-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libitm1-11.3.0+git1637-150000.1.11.2.ppc64le.rpm liblsan0-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libobjc4-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libquadmath0-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libstdc++6-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libstdc++6-locale-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libtsan0-11.3.0+git1637-150000.1.11.2.ppc64le.rpm libubsan1-11.3.0+git1637-150000.1.11.2.ppc64le.rpm cpp11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.aarch64.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.aarch64.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.aarch64.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-ppc64le-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.aarch64.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.aarch64.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.11.1.aarch64.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-s390x-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm cross-x86_64-gcc11-icecream-backend-11.3.0+git1637-150000.1.11.2.aarch64.rpm gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm gcc11-PIE-11.3.0+git1637-150000.1.11.2.aarch64.rpm gcc11-ada-11.3.0+git1637-150000.1.11.2.aarch64.rpm gcc11-c++-11.3.0+git1637-150000.1.11.2.aarch64.rpm gcc11-d-11.3.0+git1637-150000.1.11.2.aarch64.rpm gcc11-fortran-11.3.0+git1637-150000.1.11.2.aarch64.rpm gcc11-go-11.3.0+git1637-150000.1.11.2.aarch64.rpm gcc11-locale-11.3.0+git1637-150000.1.11.2.aarch64.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.11.2.aarch64.rpm gcc11-objc-11.3.0+git1637-150000.1.11.2.aarch64.rpm gcc11-testresults-11.3.0+git1637-150000.1.11.2.aarch64.rpm libada11-11.3.0+git1637-150000.1.11.2.aarch64.rpm libasan6-11.3.0+git1637-150000.1.11.2.aarch64.rpm libatomic1-11.3.0+git1637-150000.1.11.2.aarch64.rpm libgcc_s1-11.3.0+git1637-150000.1.11.2.aarch64.rpm libgdruntime2-11.3.0+git1637-150000.1.11.2.aarch64.rpm libgfortran5-11.3.0+git1637-150000.1.11.2.aarch64.rpm libgo19-11.3.0+git1637-150000.1.11.2.aarch64.rpm libgomp1-11.3.0+git1637-150000.1.11.2.aarch64.rpm libgphobos2-11.3.0+git1637-150000.1.11.2.aarch64.rpm libhwasan0-11.3.0+git1637-150000.1.11.2.aarch64.rpm libitm1-11.3.0+git1637-150000.1.11.2.aarch64.rpm liblsan0-11.3.0+git1637-150000.1.11.2.aarch64.rpm libobjc4-11.3.0+git1637-150000.1.11.2.aarch64.rpm libstdc++6-11.3.0+git1637-150000.1.11.2.aarch64.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm libstdc++6-locale-11.3.0+git1637-150000.1.11.2.aarch64.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.11.2.aarch64.rpm libtsan0-11.3.0+git1637-150000.1.11.2.aarch64.rpm libubsan1-11.3.0+git1637-150000.1.11.2.aarch64.rpm openSUSE-SLE-15.3-2022-3191 moderate SUSE Updates openSUSE-SLE 15.3 This update for libEMF fixes the following issues: - CVE-2020-13999: Fixed an integer overflow that could lead to denial of service via a crafted file (bsc#1173070). libEMF-1.0.7-150000.3.6.1.src.rpm libEMF-devel-1.0.7-150000.3.6.1.x86_64.rpm libEMF-utils-1.0.7-150000.3.6.1.x86_64.rpm libEMF1-1.0.7-150000.3.6.1.x86_64.rpm libEMF-devel-1.0.7-150000.3.6.1.s390x.rpm libEMF-utils-1.0.7-150000.3.6.1.s390x.rpm libEMF1-1.0.7-150000.3.6.1.s390x.rpm libEMF-devel-1.0.7-150000.3.6.1.ppc64le.rpm libEMF-utils-1.0.7-150000.3.6.1.ppc64le.rpm libEMF1-1.0.7-150000.3.6.1.ppc64le.rpm libEMF-devel-1.0.7-150000.3.6.1.aarch64.rpm libEMF-utils-1.0.7-150000.3.6.1.aarch64.rpm libEMF1-1.0.7-150000.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3327 important SUSE Updates openSUSE-SLE 15.3 This update for oniguruma fixes the following issues: - CVE-2019-19246: Fixed an out of bounds access during regular expression matching (bsc#1157805). - CVE-2019-19204: Fixed an out of bounds access when compiling a crafted regular expression (bsc#1164569). - CVE-2019-19203: Fixed an out of bounds access when performing a string search (bsc#1164550). - CVE-2019-16163: Fixed an uncontrolled recursion issue when compiling a crafted regular expression, which could lead to denial of service (bsc#1150130). - CVE-2020-26159: Fixed an off-by-one buffer overflow (bsc#1177179). - CVE-2019-13224: Fixed a potential use-after-free when handling multiple different encodings (bsc#1142847). libonig4-6.7.0-150000.3.3.1.x86_64.rpm oniguruma-6.7.0-150000.3.3.1.src.rpm oniguruma-devel-6.7.0-150000.3.3.1.x86_64.rpm libonig4-6.7.0-150000.3.3.1.s390x.rpm oniguruma-devel-6.7.0-150000.3.3.1.s390x.rpm libonig4-6.7.0-150000.3.3.1.ppc64le.rpm oniguruma-devel-6.7.0-150000.3.3.1.ppc64le.rpm libonig4-6.7.0-150000.3.3.1.aarch64.rpm oniguruma-devel-6.7.0-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3792 moderate SUSE Updates openSUSE-SLE 15.3 This update for grafana-piechart-panel fixes the following issues: - Update grafana-piechart-panel to version 1.6.2 that is signed for use with Grafana v8.x (bsc#1200501) grafana-piechart-panel-1.6.2-150200.3.11.1.noarch.rpm grafana-piechart-panel-1.6.2-150200.3.11.1.src.rpm openSUSE-SLE-15.3-2022-2980 moderate SUSE Updates openSUSE-SLE 15.3 This update for clamsap provides: Update clamsap to version 0.104.3 (jsc#PED-805) - Fix XML MIME type detection using libmagic clamsap-0.104.3-150000.4.9.1.src.rpm clamsap-0.104.3-150000.4.9.1.x86_64.rpm clamsap-0.104.3-150000.4.9.1.s390x.rpm clamsap-0.104.3-150000.4.9.1.ppc64le.rpm clamsap-0.104.3-150000.4.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-2951 important SUSE Updates openSUSE-SLE 15.3 This update for suse-migration-services fixes the following issues: - Bump version: 2.0.34 - Add handling for locating the cache files in cloud-regionsrv-client (bsc#1202706) - Update document version and authors - Add missing python3-PyYAML dependency on suse-migration-pre-checks suse-migration-pre-checks-2.0.34-150000.1.51.1.noarch.rpm suse-migration-services-2.0.34-150000.1.51.1.noarch.rpm suse-migration-services-2.0.34-150000.1.51.1.src.rpm openSUSE-SLE-15.3-2022-3395 moderate SUSE Updates openSUSE-SLE 15.3 This update for ca-certificates-mozilla fixes the following issues: Updated to 2.56 state of Mozilla SSL root CAs (bsc#1202868) - Added: - Certainly Root E1 - Certainly Root R1 - DigiCert SMIME ECC P384 Root G5 - DigiCert SMIME RSA4096 Root G5 - DigiCert TLS ECC P384 Root G5 - DigiCert TLS RSA4096 Root G5 - E-Tugra Global Root CA ECC v3 - E-Tugra Global Root CA RSA v3 - Removed: - Hellenic Academic and Research Institutions RootCA 2011 Updated to 2.54 state of Mozilla SSL root CAs (bsc#1199079) - Added: - Autoridad de Certificacion Firmaprofesional CIF A62634068 - D-TRUST BR Root CA 1 2020 - D-TRUST EV Root CA 1 2020 - GlobalSign ECC Root CA R4 - GTS Root R1 - GTS Root R2 - GTS Root R3 - GTS Root R4 - HiPKI Root CA - G1 - ISRG Root X2 - Telia Root CA v2 - vTrus ECC Root CA - vTrus Root CA - Removed: - Cybertrust Global Root - DST Root CA X3 - DigiNotar PKIoverheid CA Organisatie - G2 - GlobalSign ECC Root CA R4 - GlobalSign Root CA R2 - GTS Root R1 - GTS Root R2 - GTS Root R3 - GTS Root R4 Updated to 2.50 state of the Mozilla NSS Certificate store (bsc#1188006) - Added: - HARICA Client ECC Root CA 2021 - HARICA Client RSA Root CA 2021 - HARICA TLS ECC Root CA 2021 - HARICA TLS RSA Root CA 2021 - TunTrust Root CA Updated to 2.46 state of the Mozilla NSS Certificate store (bsc#1181994) - Added new root CAs: - NAVER Global Root Certification Authority - Removed old root CAs: - GeoTrust Global CA - GeoTrust Primary Certification Authority - GeoTrust Primary Certification Authority - G3 - GeoTrust Universal CA - GeoTrust Universal CA 2 - thawte Primary Root CA - thawte Primary Root CA - G2 - thawte Primary Root CA - G3 - VeriSign Class 3 Public Primary Certification Authority - G4 - VeriSign Class 3 Public Primary Certification Authority - G5 ca-certificates-mozilla-2.56-150200.24.1.noarch.rpm ca-certificates-mozilla-2.56-150200.24.1.src.rpm ca-certificates-mozilla-prebuilt-2.56-150200.24.1.noarch.rpm ca-certificates-mozilla-prebuilt-2.56-150200.24.1.src.rpm openSUSE-SLE-15.3-2022-3452 moderate SUSE Updates openSUSE-SLE 15.3 This update for glibc fixes the following issues: - Reversing calculation of __x86_shared_non_temporal_threshold (bsc#1201942) - powerpc: Optimized memcmp for power10 (jsc#PED-987) glibc-2.31-150300.41.1.src.rpm glibc-2.31-150300.41.1.x86_64.rpm glibc-32bit-2.31-150300.41.1.x86_64.rpm glibc-devel-2.31-150300.41.1.x86_64.rpm glibc-devel-32bit-2.31-150300.41.1.x86_64.rpm glibc-devel-static-2.31-150300.41.1.x86_64.rpm glibc-devel-static-32bit-2.31-150300.41.1.x86_64.rpm glibc-extra-2.31-150300.41.1.x86_64.rpm glibc-html-2.31-150300.41.1.noarch.rpm glibc-i18ndata-2.31-150300.41.1.noarch.rpm glibc-info-2.31-150300.41.1.noarch.rpm glibc-lang-2.31-150300.41.1.noarch.rpm glibc-locale-2.31-150300.41.1.x86_64.rpm glibc-locale-base-2.31-150300.41.1.x86_64.rpm glibc-locale-base-32bit-2.31-150300.41.1.x86_64.rpm glibc-profile-2.31-150300.41.1.x86_64.rpm glibc-profile-32bit-2.31-150300.41.1.x86_64.rpm glibc-utils-2.31-150300.41.1.x86_64.rpm glibc-utils-32bit-2.31-150300.41.1.x86_64.rpm glibc-utils-src-2.31-150300.41.1.src.rpm nscd-2.31-150300.41.1.x86_64.rpm glibc-2.31-150300.41.1.s390x.rpm glibc-devel-2.31-150300.41.1.s390x.rpm glibc-devel-static-2.31-150300.41.1.s390x.rpm glibc-extra-2.31-150300.41.1.s390x.rpm glibc-locale-2.31-150300.41.1.s390x.rpm glibc-locale-base-2.31-150300.41.1.s390x.rpm glibc-profile-2.31-150300.41.1.s390x.rpm glibc-utils-2.31-150300.41.1.s390x.rpm nscd-2.31-150300.41.1.s390x.rpm glibc-2.31-150300.41.1.ppc64le.rpm glibc-devel-2.31-150300.41.1.ppc64le.rpm glibc-devel-static-2.31-150300.41.1.ppc64le.rpm glibc-extra-2.31-150300.41.1.ppc64le.rpm glibc-locale-2.31-150300.41.1.ppc64le.rpm glibc-locale-base-2.31-150300.41.1.ppc64le.rpm glibc-profile-2.31-150300.41.1.ppc64le.rpm glibc-utils-2.31-150300.41.1.ppc64le.rpm nscd-2.31-150300.41.1.ppc64le.rpm glibc-2.31-150300.41.1.aarch64.rpm glibc-devel-2.31-150300.41.1.aarch64.rpm glibc-devel-static-2.31-150300.41.1.aarch64.rpm glibc-extra-2.31-150300.41.1.aarch64.rpm glibc-locale-2.31-150300.41.1.aarch64.rpm glibc-locale-base-2.31-150300.41.1.aarch64.rpm glibc-profile-2.31-150300.41.1.aarch64.rpm glibc-utils-2.31-150300.41.1.aarch64.rpm nscd-2.31-150300.41.1.aarch64.rpm openSUSE-SLE-15.3-2022-3218 important SUSE Updates openSUSE-SLE 15.3 This update for nbdkit fixes the following issues: - Update to version 1.30.7 (jsc#ECO-3633) * configure: Use printf to print $ISOPROG * configure: Print the version of curl, libnbd and libssh * configure: Make the 'feature' function print the dots * tests/test-protect.c: Fix typo in previous commit * tests/test-protect.c: Skip test if "disk" was not created * common/include: Rename BUILD_BUG_ON_ZERO to something more meaningful * common/include/test-array-size.c: Avoid Clang warning * vddk: Demote another "phone home" error message to debug * Use ARRAY_SIZE macro in various places in nbdkit * common/include: Add ARRAY_SIZE macro * tests/test-parallel-sh.sh: Skip test under valgrind + debuginfod * tests/test-parallel-sh.sh: Small cleanups * server: Work around incorrect include in gnutls/socket.h * server: Display kTLS setting in debug output * exitwhen: Check nbdkit doesn't exit before the pipe is closed * valgrind: Update comment about valgrind bug affecting OCaml * ocaml: Add further valgrind suppression * ocaml: Add valgrind suppression for OCaml 4.14 bug * perl: Move GCC diagnostic ignored earlier * docs/nbdkit-protocol.pod: block size support was added in 1.30 - Enable linuxdisk plugin nbdkit-1.30.7-150300.8.9.1.src.rpm nbdkit-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-bash-completion-1.30.7-150300.8.9.1.noarch.rpm nbdkit-basic-filters-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-basic-plugins-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-curl-plugin-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-devel-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-example-plugins-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-gzip-filter-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-nbd-plugin-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-python-plugin-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-server-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-ssh-plugin-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-tar-filter-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-tmpdisk-plugin-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-vddk-plugin-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-xz-filter-1.30.7-150300.8.9.1.x86_64.rpm nbdkit-1.30.7-150300.8.9.1.s390x.rpm nbdkit-basic-filters-1.30.7-150300.8.9.1.s390x.rpm nbdkit-basic-plugins-1.30.7-150300.8.9.1.s390x.rpm nbdkit-curl-plugin-1.30.7-150300.8.9.1.s390x.rpm nbdkit-devel-1.30.7-150300.8.9.1.s390x.rpm nbdkit-example-plugins-1.30.7-150300.8.9.1.s390x.rpm nbdkit-gzip-filter-1.30.7-150300.8.9.1.s390x.rpm nbdkit-nbd-plugin-1.30.7-150300.8.9.1.s390x.rpm nbdkit-python-plugin-1.30.7-150300.8.9.1.s390x.rpm nbdkit-server-1.30.7-150300.8.9.1.s390x.rpm nbdkit-ssh-plugin-1.30.7-150300.8.9.1.s390x.rpm nbdkit-tar-filter-1.30.7-150300.8.9.1.s390x.rpm nbdkit-tmpdisk-plugin-1.30.7-150300.8.9.1.s390x.rpm nbdkit-xz-filter-1.30.7-150300.8.9.1.s390x.rpm nbdkit-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-basic-filters-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-basic-plugins-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-curl-plugin-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-devel-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-example-plugins-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-gzip-filter-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-nbd-plugin-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-python-plugin-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-server-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-ssh-plugin-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-tar-filter-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-tmpdisk-plugin-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-xz-filter-1.30.7-150300.8.9.1.ppc64le.rpm nbdkit-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-basic-filters-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-basic-plugins-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-curl-plugin-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-devel-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-example-plugins-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-gzip-filter-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-nbd-plugin-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-python-plugin-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-server-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-ssh-plugin-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-tar-filter-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-tmpdisk-plugin-1.30.7-150300.8.9.1.aarch64.rpm nbdkit-xz-filter-1.30.7-150300.8.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3481 moderate SUSE Updates openSUSE-SLE 15.3 This update for libvirt fixes the following issues: - spec: Include aarch64 in the list of architectures that 'Require' dmidecode (bsc#1202608) - qemu: Support memory allocation threads (bsc#1197084) libvirt-7.1.0-150300.6.35.2.src.rpm libvirt-7.1.0-150300.6.35.2.x86_64.rpm libvirt-admin-7.1.0-150300.6.35.2.x86_64.rpm libvirt-bash-completion-7.1.0-150300.6.35.2.noarch.rpm libvirt-client-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-config-network-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-hooks-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-lxc-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-qemu-7.1.0-150300.6.35.2.x86_64.rpm libvirt-daemon-xen-7.1.0-150300.6.35.2.x86_64.rpm libvirt-devel-32bit-7.1.0-150300.6.35.2.x86_64.rpm libvirt-devel-7.1.0-150300.6.35.2.x86_64.rpm libvirt-doc-7.1.0-150300.6.35.2.noarch.rpm libvirt-libs-7.1.0-150300.6.35.2.x86_64.rpm libvirt-lock-sanlock-7.1.0-150300.6.35.2.x86_64.rpm libvirt-nss-7.1.0-150300.6.35.2.x86_64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.35.2.x86_64.rpm libvirt-7.1.0-150300.6.35.2.s390x.rpm libvirt-admin-7.1.0-150300.6.35.2.s390x.rpm libvirt-client-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-config-network-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-network-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-hooks-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-lxc-7.1.0-150300.6.35.2.s390x.rpm libvirt-daemon-qemu-7.1.0-150300.6.35.2.s390x.rpm libvirt-devel-7.1.0-150300.6.35.2.s390x.rpm libvirt-libs-7.1.0-150300.6.35.2.s390x.rpm libvirt-lock-sanlock-7.1.0-150300.6.35.2.s390x.rpm libvirt-nss-7.1.0-150300.6.35.2.s390x.rpm wireshark-plugin-libvirt-7.1.0-150300.6.35.2.s390x.rpm libvirt-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-admin-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-client-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-config-network-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-hooks-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-lxc-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-daemon-qemu-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-devel-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-libs-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-lock-sanlock-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-nss-7.1.0-150300.6.35.2.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-150300.6.35.2.ppc64le.rpm libvirt-7.1.0-150300.6.35.2.aarch64.rpm libvirt-admin-7.1.0-150300.6.35.2.aarch64.rpm libvirt-client-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-config-network-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-hooks-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-lxc-7.1.0-150300.6.35.2.aarch64.rpm libvirt-daemon-qemu-7.1.0-150300.6.35.2.aarch64.rpm libvirt-devel-7.1.0-150300.6.35.2.aarch64.rpm libvirt-libs-7.1.0-150300.6.35.2.aarch64.rpm libvirt-lock-sanlock-7.1.0-150300.6.35.2.aarch64.rpm libvirt-nss-7.1.0-150300.6.35.2.aarch64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.35.2.aarch64.rpm openSUSE-SLE-15.3-2022-3308 moderate SUSE Updates openSUSE-SLE 15.3 This update for mdadm fixes the following issues: - imsm: support for third Sata controller (bsc#1201297) - mdadm: enable Intel Alderlake RSTe configuration (bsc#1201297) mdadm-4.1-150300.24.18.1.src.rpm mdadm-4.1-150300.24.18.1.x86_64.rpm mdadm-4.1-150300.24.18.1.s390x.rpm mdadm-4.1-150300.24.18.1.ppc64le.rpm mdadm-4.1-150300.24.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-3435 important SUSE Updates openSUSE-SLE 15.3 This update for runc fixes the following issues: - Fix mounting via wrong proc fd. When the user and mount namespaces are used, and the bind mount is followed by the cgroup mount in the spec, the cgroup was mounted using the bind mount's mount fd. - Fix "permission denied" error from runc run on noexec fs - Fix regression causing a failed 'exec' error after systemctl daemon-reload (bsc#1202821) runc-1.1.4-150000.33.4.src.rpm runc-1.1.4-150000.33.4.x86_64.rpm runc-1.1.4-150000.33.4.s390x.rpm runc-1.1.4-150000.33.4.ppc64le.rpm runc-1.1.4-150000.33.4.aarch64.rpm openSUSE-SLE-15.3-2022-3158 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.19 fixes the following issues: - Bootstrap using go1.16 on SUSE Linux Enterprise 15 and newer (bsc#1200441) - Simplify conditional gcc_go_version 12 on Tumbleweed, 11 elsewhere - Add _constraints for worker disk space 5G needed by SUSE Linux Enterprise 15 x86_64 - SUSE Linux Enterprise 12 s390x use bcond_without gccgo to bootstrap using gcc11go - Refresh Go bootstrap builds with gcc8 for SUSE Linux Enterprise 12. go1.19-1.19-150000.1.6.1.src.rpm go1.19-1.19-150000.1.6.1.x86_64.rpm go1.19-doc-1.19-150000.1.6.1.x86_64.rpm go1.19-race-1.19-150000.1.6.1.x86_64.rpm go1.19-1.19-150000.1.6.1.s390x.rpm go1.19-doc-1.19-150000.1.6.1.s390x.rpm go1.19-1.19-150000.1.6.1.ppc64le.rpm go1.19-doc-1.19-150000.1.6.1.ppc64le.rpm go1.19-1.19-150000.1.6.1.aarch64.rpm go1.19-doc-1.19-150000.1.6.1.aarch64.rpm go1.19-race-1.19-150000.1.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3157 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.18 fixes the following issues: - Bootstrap using go1.16 on SUSE Linux Enterprise 15 and newer (bsc#1193742) - Simplify conditional gcc_go_version 12 on Tumbleweed, 11 elsewhere go1.18-1.18.5-150000.1.28.1.src.rpm go1.18-1.18.5-150000.1.28.1.x86_64.rpm go1.18-doc-1.18.5-150000.1.28.1.x86_64.rpm go1.18-race-1.18.5-150000.1.28.1.x86_64.rpm go1.18-1.18.5-150000.1.28.1.s390x.rpm go1.18-doc-1.18.5-150000.1.28.1.s390x.rpm go1.18-1.18.5-150000.1.28.1.ppc64le.rpm go1.18-doc-1.18.5-150000.1.28.1.ppc64le.rpm go1.18-1.18.5-150000.1.28.1.aarch64.rpm go1.18-doc-1.18.5-150000.1.28.1.aarch64.rpm go1.18-race-1.18.5-150000.1.28.1.aarch64.rpm openSUSE-SLE-15.3-2022-3155 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: - Bootstrap using go1.16 on SUSE Linux Enterprise 15 and newer (bsc#1190649) - Simplify conditional gcc_go_version 12 on Tumbleweed, 11 elsewhere go1.17-1.17.13-150000.1.45.1.i586.rpm go1.17-1.17.13-150000.1.45.1.src.rpm go1.17-doc-1.17.13-150000.1.45.1.i586.rpm go1.17-1.17.13-150000.1.45.1.x86_64.rpm go1.17-doc-1.17.13-150000.1.45.1.x86_64.rpm go1.17-race-1.17.13-150000.1.45.1.x86_64.rpm go1.17-1.17.13-150000.1.45.1.s390x.rpm go1.17-doc-1.17.13-150000.1.45.1.s390x.rpm go1.17-1.17.13-150000.1.45.1.ppc64le.rpm go1.17-doc-1.17.13-150000.1.45.1.ppc64le.rpm go1.17-1.17.13-150000.1.45.1.aarch64.rpm go1.17-doc-1.17.13-150000.1.45.1.aarch64.rpm go1.17-race-1.17.13-150000.1.45.1.aarch64.rpm openSUSE-SLE-15.3-2022-3156 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: - Bootstrap using Go 1.12 on SUSE Linux Enterprise 15 and newer and Go 1.11 elsewhere (bsc#1182345) - Bootstrap using gcc-go any version go1.16-1.16.15-150000.1.49.1.src.rpm go1.16-1.16.15-150000.1.49.1.x86_64.rpm go1.16-doc-1.16.15-150000.1.49.1.x86_64.rpm go1.16-race-1.16.15-150000.1.49.1.x86_64.rpm go1.16-1.16.15-150000.1.49.1.s390x.rpm go1.16-doc-1.16.15-150000.1.49.1.s390x.rpm go1.16-1.16.15-150000.1.49.1.ppc64le.rpm go1.16-doc-1.16.15-150000.1.49.1.ppc64le.rpm go1.16-1.16.15-150000.1.49.1.aarch64.rpm go1.16-doc-1.16.15-150000.1.49.1.aarch64.rpm go1.16-race-1.16.15-150000.1.49.1.aarch64.rpm openSUSE-SLE-15.3-2022-3249 important SUSE Updates openSUSE-SLE 15.3 This update for clamav fixes the following issues: clamav was updated to 0.103.7 (bsc#1202986) * Upgrade the vendored UnRAR library to version 6.1.7. * Fix logical signature "Intermediates" feature. * Relax constraints on slightly malformed zip archives that contain overlapping file entries. clamav-0.103.7-150000.3.41.1.src.rpm clamav-0.103.7-150000.3.41.1.x86_64.rpm clamav-devel-0.103.7-150000.3.41.1.x86_64.rpm libclamav9-0.103.7-150000.3.41.1.x86_64.rpm libfreshclam2-0.103.7-150000.3.41.1.x86_64.rpm clamav-0.103.7-150000.3.41.1.s390x.rpm clamav-devel-0.103.7-150000.3.41.1.s390x.rpm libclamav9-0.103.7-150000.3.41.1.s390x.rpm libfreshclam2-0.103.7-150000.3.41.1.s390x.rpm clamav-0.103.7-150000.3.41.1.ppc64le.rpm clamav-devel-0.103.7-150000.3.41.1.ppc64le.rpm libclamav9-0.103.7-150000.3.41.1.ppc64le.rpm libfreshclam2-0.103.7-150000.3.41.1.ppc64le.rpm clamav-0.103.7-150000.3.41.1.aarch64.rpm clamav-devel-0.103.7-150000.3.41.1.aarch64.rpm libclamav9-0.103.7-150000.3.41.1.aarch64.rpm libfreshclam2-0.103.7-150000.3.41.1.aarch64.rpm openSUSE-SLE-15.3-2022-3456 important SUSE Updates openSUSE-SLE 15.3 This update for libostree fixes the following issues: - CVE-2014-9862: Fixed arbitrary write on heap vulnerability (bsc#1201770). libostree-1-1-2020.8-150200.3.6.1.x86_64.rpm libostree-2020.8-150200.3.6.1.src.rpm libostree-2020.8-150200.3.6.1.x86_64.rpm libostree-devel-2020.8-150200.3.6.1.x86_64.rpm libostree-grub2-2020.8-150200.3.6.1.x86_64.rpm typelib-1_0-OSTree-1_0-2020.8-150200.3.6.1.x86_64.rpm libostree-1-1-2020.8-150200.3.6.1.s390x.rpm libostree-2020.8-150200.3.6.1.s390x.rpm libostree-devel-2020.8-150200.3.6.1.s390x.rpm typelib-1_0-OSTree-1_0-2020.8-150200.3.6.1.s390x.rpm libostree-1-1-2020.8-150200.3.6.1.ppc64le.rpm libostree-2020.8-150200.3.6.1.ppc64le.rpm libostree-devel-2020.8-150200.3.6.1.ppc64le.rpm libostree-grub2-2020.8-150200.3.6.1.ppc64le.rpm typelib-1_0-OSTree-1_0-2020.8-150200.3.6.1.ppc64le.rpm libostree-1-1-2020.8-150200.3.6.1.aarch64.rpm libostree-2020.8-150200.3.6.1.aarch64.rpm libostree-devel-2020.8-150200.3.6.1.aarch64.rpm libostree-grub2-2020.8-150200.3.6.1.aarch64.rpm typelib-1_0-OSTree-1_0-2020.8-150200.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3251 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs16 fixes the following issues: - CVE-2022-35949: Fixed SSRF when an application takes in user input into the path/pathname option of undici.request (bsc#1202382). - CVE-2022-35948: Fixed CRLF injection via Content-Type (bsc#1202383). - CVE-2022-29244: Fixed npm pack ignores root-level .gitignore and .npmignore file exclusion directives when run in a workspace (bsc#1200517). - CVE-2022-31150: Fixed CRLF injection in node-undici (bsc#1201710). Bugfixes: - Enable crypto-policies for SLE15 SP4+ and TW (bsc#1200303) nodejs16-16.17.0-150300.7.9.1.src.rpm nodejs16-16.17.0-150300.7.9.1.x86_64.rpm nodejs16-devel-16.17.0-150300.7.9.1.x86_64.rpm nodejs16-docs-16.17.0-150300.7.9.1.noarch.rpm npm16-16.17.0-150300.7.9.1.x86_64.rpm nodejs16-16.17.0-150300.7.9.1.s390x.rpm nodejs16-devel-16.17.0-150300.7.9.1.s390x.rpm npm16-16.17.0-150300.7.9.1.s390x.rpm nodejs16-16.17.0-150300.7.9.1.ppc64le.rpm nodejs16-devel-16.17.0-150300.7.9.1.ppc64le.rpm npm16-16.17.0-150300.7.9.1.ppc64le.rpm nodejs16-16.17.0-150300.7.9.1.aarch64.rpm nodejs16-devel-16.17.0-150300.7.9.1.aarch64.rpm npm16-16.17.0-150300.7.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3229 important SUSE Updates openSUSE-SLE 15.3 This update for vim fixes the following issues: Updated to version 9.0 with patch level 0313: - CVE-2022-2183: Fixed out-of-bounds read through get_lisp_indent() (bsc#1200902). - CVE-2022-2182: Fixed heap-based buffer overflow through parse_cmd_address() (bsc#1200903). - CVE-2022-2175: Fixed buffer over-read through cmdline_insert_reg() (bsc#1200904). - CVE-2022-2304: Fixed stack buffer overflow in spell_dump_compl() (bsc#1201249). - CVE-2022-2343: Fixed heap-based buffer overflow in GitHub repository vim prior to 9.0.0044 (bsc#1201356). - CVE-2022-2344: Fixed another heap-based buffer overflow vim prior to 9.0.0045 (bsc#1201359). - CVE-2022-2345: Fixed use after free in GitHub repository vim prior to 9.0.0046. (bsc#1201363). - CVE-2022-2819: Fixed heap-based Buffer Overflow in compile_lock_unlock() (bsc#1202414). - CVE-2022-2874: Fixed NULL Pointer Dereference in generate_loadvar() (bsc#1202552). - CVE-2022-1968: Fixed use after free in utf_ptr2char (bsc#1200270). - CVE-2022-2124: Fixed out of bounds read in current_quote() (bsc#1200697). - CVE-2022-2125: Fixed out of bounds read in get_lisp_indent() (bsc#1200698). - CVE-2022-2126: Fixed out of bounds read in suggest_trie_walk() (bsc#1200700). - CVE-2022-2129: Fixed out of bounds write in vim_regsub_both() (bsc#1200701). - CVE-2022-1720: Fixed out of bounds read in grab_file_name() (bsc#1200732). - CVE-2022-2264: Fixed out of bounds read in inc() (bsc#1201132). - CVE-2022-2284: Fixed out of bounds read in utfc_ptr2len() (bsc#1201133). - CVE-2022-2285: Fixed negative size passed to memmove() due to integer overflow (bsc#1201134). - CVE-2022-2286: Fixed out of bounds read in ins_bytes() (bsc#1201135). - CVE-2022-2287: Fixed out of bounds read in suggest_trie_walk() (bsc#1201136). - CVE-2022-2231: Fixed null pointer dereference skipwhite() (bsc#1201150). - CVE-2022-2210: Fixed out of bounds read in ml_append_int() (bsc#1201151). - CVE-2022-2208: Fixed null pointer dereference in diff_check() (bsc#1201152). - CVE-2022-2207: Fixed out of bounds read in ins_bs() (bsc#1201153). - CVE-2022-2257: Fixed out of bounds read in msg_outtrans_special() (bsc#1201154). - CVE-2022-2206: Fixed out of bounds read in msg_outtrans_attr() (bsc#1201155). - CVE-2022-2522: Fixed out of bounds read via nested autocommand (bsc#1201863). - CVE-2022-2571: Fixed heap-based buffer overflow related to ins_comp_get_next_word_or_line() (bsc#1202046). - CVE-2022-2580: Fixed heap-based buffer overflow related to eval_string() (bsc#1202049). - CVE-2022-2581: Fixed out-of-bounds read related to cstrchr() (bsc#1202050). - CVE-2022-2598: Fixed undefined behavior for Input to API related to diff_mark_adjust_tp() and ex_diffgetput() (bsc#1202051). - CVE-2022-2817: Fixed use after gree in f_assert_fails() (bsc#1202420). - CVE-2022-2816: Fixed out-of-bounds Read in check_vim9_unlet() (bsc#1202421). - CVE-2022-2862: Fixed use-after-free in compile_nested_function() (bsc#1202511). - CVE-2022-2849: Fixed invalid memory access related to mb_ptr2len() (bsc#1202512). - CVE-2022-2845: Fixed buffer Over-read related to display_dollar() (bsc#1202515). - CVE-2022-2889: Fixed use-after-free in find_var_also_in_script() in evalvars.c (bsc#1202599). - CVE-2022-2923: Fixed NULL pointer dereference in GitHub repository vim/vim prior to 9.0.0240 (bsc#1202687). - CVE-2022-2946: Fixed use after free in function vim_vsnprintf_typval (bsc#1202689). - CVE-2022-3016: Fixed use after free in vim prior to 9.0.0285 (bsc#1202862). Bugfixes: - Fixing vim error on startup (bsc#1200884). - Fixing vim SUSE Linux Enterprise Server 15 SP4 Basesystem plugin-tlib issue (bsc#1201620). gvim-9.0.0313-150000.5.25.1.x86_64.rpm vim-9.0.0313-150000.5.25.1.src.rpm vim-9.0.0313-150000.5.25.1.x86_64.rpm vim-data-9.0.0313-150000.5.25.1.noarch.rpm vim-data-common-9.0.0313-150000.5.25.1.noarch.rpm vim-small-9.0.0313-150000.5.25.1.x86_64.rpm gvim-9.0.0313-150000.5.25.1.s390x.rpm vim-9.0.0313-150000.5.25.1.s390x.rpm vim-small-9.0.0313-150000.5.25.1.s390x.rpm gvim-9.0.0313-150000.5.25.1.ppc64le.rpm vim-9.0.0313-150000.5.25.1.ppc64le.rpm vim-small-9.0.0313-150000.5.25.1.ppc64le.rpm gvim-9.0.0313-150000.5.25.1.aarch64.rpm vim-9.0.0313-150000.5.25.1.aarch64.rpm vim-small-9.0.0313-150000.5.25.1.aarch64.rpm openSUSE-SLE-15.3-2022-3304 moderate SUSE Updates openSUSE-SLE 15.3 This update for libassuan fixes the following issues: - Add a timeout for writing to a SOCKS5 proxy - Add workaround for a problem with LD_LIBRARY_PATH on newer systems - Fix issue in the logging code - Fix some build trivialities - Upgrade autoconf libassuan-2.5.5-150000.4.3.1.src.rpm libassuan-devel-2.5.5-150000.4.3.1.x86_64.rpm libassuan0-2.5.5-150000.4.3.1.x86_64.rpm libassuan0-32bit-2.5.5-150000.4.3.1.x86_64.rpm libassuan-devel-2.5.5-150000.4.3.1.s390x.rpm libassuan0-2.5.5-150000.4.3.1.s390x.rpm libassuan-devel-2.5.5-150000.4.3.1.ppc64le.rpm libassuan0-2.5.5-150000.4.3.1.ppc64le.rpm libassuan-devel-2.5.5-150000.4.3.1.aarch64.rpm libassuan0-2.5.5-150000.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3955 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - CVE-2022-1615: Fixed error handling in random number generation (bso#15103)(bsc#1202976). - CVE-2022-32743: Implement validated dnsHostName write rights (bso#14833)(bsc#1202803). Bugfixes: - Fixed use after free when iterating smbd_server_connection->connections after tree disconnect failure (bso#15128)(bsc#1200102). ctdb-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm ctdb-pcp-pmda-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm libsamba-policy-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm libsamba-policy-python3-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm libsamba-policy0-python3-32bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm libsamba-policy0-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-4.15.8+git.527.8d0c05d313e-150300.3.40.2.src.rpm samba-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-ad-dc-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-ad-dc-libs-32bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-ad-dc-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-ceph-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-client-32bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-client-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-client-libs-32bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-client-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-devel-32bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-doc-4.15.8+git.527.8d0c05d313e-150300.3.40.2.noarch.rpm samba-dsdb-modules-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-gpupdate-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-ldb-ldap-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-libs-32bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-libs-python3-32bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-libs-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-test-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-tool-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-winbind-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-winbind-libs-32bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm samba-winbind-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.x86_64.rpm ctdb-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm ctdb-pcp-pmda-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm libsamba-policy-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm libsamba-policy-python3-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm libsamba-policy0-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-ad-dc-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-ad-dc-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-client-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-client-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-dsdb-modules-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-gpupdate-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-ldb-ldap-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-libs-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-test-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-tool-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-winbind-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm samba-winbind-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.s390x.rpm ctdb-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm ctdb-pcp-pmda-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm libsamba-policy-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm libsamba-policy-python3-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm libsamba-policy0-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-ad-dc-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-ad-dc-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-client-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-client-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-dsdb-modules-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-gpupdate-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-ldb-ldap-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-libs-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-test-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-tool-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-winbind-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm samba-winbind-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.ppc64le.rpm ctdb-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm ctdb-pcp-pmda-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm libsamba-policy-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm libsamba-policy-python3-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm libsamba-policy0-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm libsamba-policy0-python3-64bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64_ilp32.rpm samba-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-ad-dc-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-ad-dc-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-ceph-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-client-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-client-64bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64_ilp32.rpm samba-client-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-devel-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-dsdb-modules-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-gpupdate-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-ldb-ldap-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-libs-64bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64_ilp32.rpm samba-libs-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-libs-python3-64bit-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64_ilp32.rpm samba-python3-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-test-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-tool-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-winbind-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm samba-winbind-libs-4.15.8+git.527.8d0c05d313e-150300.3.40.2.aarch64.rpm openSUSE-SLE-15.3-2022-3689 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for rpm provides: - Support Ed25519 RPM signatures (jsc#SLE-24714, jsc#SLE-24715) dwz-0.12-150000.3.2.1.src.rpm dwz-0.12-150000.3.2.1.x86_64.rpm dwz-0.12-150000.3.2.1.s390x.rpm dwz-0.12-150000.3.2.1.ppc64le.rpm dwz-0.12-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-3710 important SUSE Updates openSUSE-SLE 15.3 This update for multipath-tools fixes the following issues: - CVE-2022-41973: Fixed a symlink attack in multipathd. (bsc#1202739) - CVE-2022-41974: Fixed an authorization bypass issue in multipathd. (bsc#1202739) - multipathd: add "force_reconfigure" option (bsc#1189551) The command "multipathd -kreconfigure" changes behavior: instead of reloading every map, it checks map configuration and reloads only modified maps. This speeds up the reconfigure operation substantially. The old behavior can be reinstated by setting "force_reconfigure yes" in multipath.conf (not recommended). Note: "force_reconfigure yes" is not supported in SLE15-SP4 and beyond, which provide the command "multipathd -k'reconfigure all'" - multipathd: avoid stalled clients during reconfigure (bsc#1189551) - multipathd: handle client disconnect correctly (bsc#1189551) - Avoid linking to libreadline to avoid licensing issue (bsc#1202616) - multipathd: don't switch to DAEMON_IDLE during startup (bsc#1197570) - multipathd: disallow changing to/from fpin marginal paths on reconfig - multipathd handle fpin events (bsc#1195506,jsc#PED-1448) - multipath: fix exit status of multipath -T (bsc#1191900) kpartx-0.8.5+126+suse.8ce8da5-150300.2.14.1.x86_64.rpm libdmmp-devel-0.8.5+126+suse.8ce8da5-150300.2.14.1.x86_64.rpm libdmmp0_2_0-0.8.5+126+suse.8ce8da5-150300.2.14.1.x86_64.rpm libmpath0-0.8.5+126+suse.8ce8da5-150300.2.14.1.x86_64.rpm multipath-tools-0.8.5+126+suse.8ce8da5-150300.2.14.1.src.rpm multipath-tools-0.8.5+126+suse.8ce8da5-150300.2.14.1.x86_64.rpm multipath-tools-devel-0.8.5+126+suse.8ce8da5-150300.2.14.1.x86_64.rpm kpartx-0.8.5+126+suse.8ce8da5-150300.2.14.1.s390x.rpm libdmmp-devel-0.8.5+126+suse.8ce8da5-150300.2.14.1.s390x.rpm libdmmp0_2_0-0.8.5+126+suse.8ce8da5-150300.2.14.1.s390x.rpm libmpath0-0.8.5+126+suse.8ce8da5-150300.2.14.1.s390x.rpm multipath-tools-0.8.5+126+suse.8ce8da5-150300.2.14.1.s390x.rpm multipath-tools-devel-0.8.5+126+suse.8ce8da5-150300.2.14.1.s390x.rpm kpartx-0.8.5+126+suse.8ce8da5-150300.2.14.1.ppc64le.rpm libdmmp-devel-0.8.5+126+suse.8ce8da5-150300.2.14.1.ppc64le.rpm libdmmp0_2_0-0.8.5+126+suse.8ce8da5-150300.2.14.1.ppc64le.rpm libmpath0-0.8.5+126+suse.8ce8da5-150300.2.14.1.ppc64le.rpm multipath-tools-0.8.5+126+suse.8ce8da5-150300.2.14.1.ppc64le.rpm multipath-tools-devel-0.8.5+126+suse.8ce8da5-150300.2.14.1.ppc64le.rpm kpartx-0.8.5+126+suse.8ce8da5-150300.2.14.1.aarch64.rpm libdmmp-devel-0.8.5+126+suse.8ce8da5-150300.2.14.1.aarch64.rpm libdmmp0_2_0-0.8.5+126+suse.8ce8da5-150300.2.14.1.aarch64.rpm libmpath0-0.8.5+126+suse.8ce8da5-150300.2.14.1.aarch64.rpm multipath-tools-0.8.5+126+suse.8ce8da5-150300.2.14.1.aarch64.rpm multipath-tools-devel-0.8.5+126+suse.8ce8da5-150300.2.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-3712 important SUSE Updates openSUSE-SLE 15.3 This update for multipath-tools fixes the following issues: - CVE-2022-41974: Fixed an authorization bypass issue in multipathd. (bsc#1202739) - Avoid linking to libreadline to avoid licensing issue (bsc#1202616) libdmmp0_1_0-0.7.3+173+suse.7dd1b01-150000.3.29.1.x86_64.rpm multipath-tools-0.7.3+173+suse.7dd1b01-150000.3.29.1.src.rpm multipath-tools-rbd-0.7.3+173+suse.7dd1b01-150000.3.29.1.x86_64.rpm libdmmp0_1_0-0.7.3+173+suse.7dd1b01-150000.3.29.1.s390x.rpm multipath-tools-rbd-0.7.3+173+suse.7dd1b01-150000.3.29.1.s390x.rpm libdmmp0_1_0-0.7.3+173+suse.7dd1b01-150000.3.29.1.ppc64le.rpm multipath-tools-rbd-0.7.3+173+suse.7dd1b01-150000.3.29.1.ppc64le.rpm libdmmp0_1_0-0.7.3+173+suse.7dd1b01-150000.3.29.1.aarch64.rpm multipath-tools-rbd-0.7.3+173+suse.7dd1b01-150000.3.29.1.aarch64.rpm openSUSE-SLE-15.3-2022-3295 moderate SUSE Updates openSUSE-SLE 15.3 This update for go fixes the following issues: - Update to current stable go1.19 (bsc#1200441) - Add define tsan_arch for s390x ppc64le new in go1.19 go-1.19-150000.3.26.1.src.rpm go-1.19-150000.3.26.1.x86_64.rpm go-doc-1.19-150000.3.26.1.x86_64.rpm go-race-1.19-150000.3.26.1.x86_64.rpm go-1.19-150000.3.26.1.s390x.rpm go-doc-1.19-150000.3.26.1.s390x.rpm go-1.19-150000.3.26.1.ppc64le.rpm go-doc-1.19-150000.3.26.1.ppc64le.rpm go-1.19-150000.3.26.1.aarch64.rpm go-doc-1.19-150000.3.26.1.aarch64.rpm go-race-1.19-150000.3.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-3230 important SUSE Updates openSUSE-SLE 15.3 This update for gdk-pixbuf fixes the following issues: - CVE-2021-44648: Fixed overflow vulnerability in lzw code size (bsc#1194633). gdk-pixbuf-2.40.0-150200.3.9.1.src.rpm gdk-pixbuf-devel-2.40.0-150200.3.9.1.x86_64.rpm gdk-pixbuf-devel-32bit-2.40.0-150200.3.9.1.x86_64.rpm gdk-pixbuf-lang-2.40.0-150200.3.9.1.noarch.rpm gdk-pixbuf-query-loaders-2.40.0-150200.3.9.1.x86_64.rpm gdk-pixbuf-query-loaders-32bit-2.40.0-150200.3.9.1.x86_64.rpm gdk-pixbuf-thumbnailer-2.40.0-150200.3.9.1.x86_64.rpm libgdk_pixbuf-2_0-0-2.40.0-150200.3.9.1.x86_64.rpm libgdk_pixbuf-2_0-0-32bit-2.40.0-150200.3.9.1.x86_64.rpm typelib-1_0-GdkPixbuf-2_0-2.40.0-150200.3.9.1.x86_64.rpm typelib-1_0-GdkPixdata-2_0-2.40.0-150200.3.9.1.x86_64.rpm gdk-pixbuf-devel-2.40.0-150200.3.9.1.s390x.rpm gdk-pixbuf-query-loaders-2.40.0-150200.3.9.1.s390x.rpm gdk-pixbuf-thumbnailer-2.40.0-150200.3.9.1.s390x.rpm libgdk_pixbuf-2_0-0-2.40.0-150200.3.9.1.s390x.rpm typelib-1_0-GdkPixbuf-2_0-2.40.0-150200.3.9.1.s390x.rpm typelib-1_0-GdkPixdata-2_0-2.40.0-150200.3.9.1.s390x.rpm gdk-pixbuf-devel-2.40.0-150200.3.9.1.ppc64le.rpm gdk-pixbuf-query-loaders-2.40.0-150200.3.9.1.ppc64le.rpm gdk-pixbuf-thumbnailer-2.40.0-150200.3.9.1.ppc64le.rpm libgdk_pixbuf-2_0-0-2.40.0-150200.3.9.1.ppc64le.rpm typelib-1_0-GdkPixbuf-2_0-2.40.0-150200.3.9.1.ppc64le.rpm typelib-1_0-GdkPixdata-2_0-2.40.0-150200.3.9.1.ppc64le.rpm gdk-pixbuf-devel-2.40.0-150200.3.9.1.aarch64.rpm gdk-pixbuf-query-loaders-2.40.0-150200.3.9.1.aarch64.rpm gdk-pixbuf-thumbnailer-2.40.0-150200.3.9.1.aarch64.rpm libgdk_pixbuf-2_0-0-2.40.0-150200.3.9.1.aarch64.rpm typelib-1_0-GdkPixbuf-2_0-2.40.0-150200.3.9.1.aarch64.rpm typelib-1_0-GdkPixdata-2_0-2.40.0-150200.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3154 moderate SUSE Updates openSUSE-SLE 15.3 This update for udisks2 fixes the following issues: - CVE-2021-3802: Fixed insecure defaults in user-accessible mount helpers (bsc#1190606). - Fixed vulnerability that allowed mounting ext4 devices over existing entries in fstab (bsc#1098797). libudisks2-0-2.8.1-150200.3.3.1.x86_64.rpm libudisks2-0-devel-2.8.1-150200.3.3.1.x86_64.rpm libudisks2-0_bcache-2.8.1-150200.3.3.1.x86_64.rpm libudisks2-0_btrfs-2.8.1-150200.3.3.1.x86_64.rpm libudisks2-0_lsm-2.8.1-150200.3.3.1.x86_64.rpm libudisks2-0_lvm2-2.8.1-150200.3.3.1.x86_64.rpm libudisks2-0_zram-2.8.1-150200.3.3.1.x86_64.rpm typelib-1_0-UDisks-2_0-2.8.1-150200.3.3.1.x86_64.rpm udisks2-2.8.1-150200.3.3.1.src.rpm udisks2-2.8.1-150200.3.3.1.x86_64.rpm udisks2-lang-2.8.1-150200.3.3.1.noarch.rpm libudisks2-0-2.8.1-150200.3.3.1.s390x.rpm libudisks2-0-devel-2.8.1-150200.3.3.1.s390x.rpm libudisks2-0_bcache-2.8.1-150200.3.3.1.s390x.rpm libudisks2-0_btrfs-2.8.1-150200.3.3.1.s390x.rpm libudisks2-0_lsm-2.8.1-150200.3.3.1.s390x.rpm libudisks2-0_lvm2-2.8.1-150200.3.3.1.s390x.rpm libudisks2-0_zram-2.8.1-150200.3.3.1.s390x.rpm typelib-1_0-UDisks-2_0-2.8.1-150200.3.3.1.s390x.rpm udisks2-2.8.1-150200.3.3.1.s390x.rpm libudisks2-0-2.8.1-150200.3.3.1.ppc64le.rpm libudisks2-0-devel-2.8.1-150200.3.3.1.ppc64le.rpm libudisks2-0_bcache-2.8.1-150200.3.3.1.ppc64le.rpm libudisks2-0_btrfs-2.8.1-150200.3.3.1.ppc64le.rpm libudisks2-0_lsm-2.8.1-150200.3.3.1.ppc64le.rpm libudisks2-0_lvm2-2.8.1-150200.3.3.1.ppc64le.rpm libudisks2-0_zram-2.8.1-150200.3.3.1.ppc64le.rpm typelib-1_0-UDisks-2_0-2.8.1-150200.3.3.1.ppc64le.rpm udisks2-2.8.1-150200.3.3.1.ppc64le.rpm libudisks2-0-2.8.1-150200.3.3.1.aarch64.rpm libudisks2-0-devel-2.8.1-150200.3.3.1.aarch64.rpm libudisks2-0_bcache-2.8.1-150200.3.3.1.aarch64.rpm libudisks2-0_btrfs-2.8.1-150200.3.3.1.aarch64.rpm libudisks2-0_lsm-2.8.1-150200.3.3.1.aarch64.rpm libudisks2-0_lvm2-2.8.1-150200.3.3.1.aarch64.rpm libudisks2-0_zram-2.8.1-150200.3.3.1.aarch64.rpm typelib-1_0-UDisks-2_0-2.8.1-150200.3.3.1.aarch64.rpm udisks2-2.8.1-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3448 moderate SUSE Updates openSUSE-SLE 15.3 This update for Mesa fixes the following issue: - Remove confusing option `-Dprefer-iris=false`. (bsc#1202850) * The default driver for Intel Gen8-11 hardware is already "i965" and the option `-Dprefer-iris=false` is not needed. Mesa-20.2.4-150300.59.6.1.src.rpm Mesa-20.2.4-150300.59.6.1.x86_64.rpm Mesa-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-KHR-devel-20.2.4-150300.59.6.1.x86_64.rpm Mesa-devel-20.2.4-150300.59.6.1.x86_64.rpm Mesa-dri-20.2.4-150300.59.6.1.x86_64.rpm Mesa-dri-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-dri-devel-20.2.4-150300.59.6.1.x86_64.rpm Mesa-dri-nouveau-20.2.4-150300.59.6.1.x86_64.rpm Mesa-dri-nouveau-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-drivers-20.2.4-150300.59.6.1.src.rpm Mesa-gallium-20.2.4-150300.59.6.1.x86_64.rpm Mesa-gallium-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libEGL-devel-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libEGL-devel-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libEGL1-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libEGL1-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libGL-devel-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libGL-devel-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libGL1-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libGL1-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libGLESv1_CM-devel-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libGLESv1_CM-devel-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libGLESv2-devel-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libGLESv2-devel-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libGLESv3-devel-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libOpenCL-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libVulkan-devel-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libd3d-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libd3d-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libd3d-devel-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libd3d-devel-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libglapi-devel-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libglapi-devel-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libglapi0-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libglapi0-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-libva-20.2.4-150300.59.6.1.x86_64.rpm Mesa-vulkan-device-select-20.2.4-150300.59.6.1.x86_64.rpm Mesa-vulkan-device-select-32bit-20.2.4-150300.59.6.1.x86_64.rpm Mesa-vulkan-overlay-20.2.4-150300.59.6.1.x86_64.rpm Mesa-vulkan-overlay-32bit-20.2.4-150300.59.6.1.x86_64.rpm libOSMesa-devel-20.2.4-150300.59.6.1.x86_64.rpm libOSMesa-devel-32bit-20.2.4-150300.59.6.1.x86_64.rpm libOSMesa8-20.2.4-150300.59.6.1.x86_64.rpm libOSMesa8-32bit-20.2.4-150300.59.6.1.x86_64.rpm libXvMC_nouveau-20.2.4-150300.59.6.1.x86_64.rpm libXvMC_nouveau-32bit-20.2.4-150300.59.6.1.x86_64.rpm libXvMC_r600-20.2.4-150300.59.6.1.x86_64.rpm libXvMC_r600-32bit-20.2.4-150300.59.6.1.x86_64.rpm libgbm-devel-20.2.4-150300.59.6.1.x86_64.rpm libgbm-devel-32bit-20.2.4-150300.59.6.1.x86_64.rpm libgbm1-20.2.4-150300.59.6.1.x86_64.rpm libgbm1-32bit-20.2.4-150300.59.6.1.x86_64.rpm libvdpau_nouveau-20.2.4-150300.59.6.1.x86_64.rpm libvdpau_nouveau-32bit-20.2.4-150300.59.6.1.x86_64.rpm libvdpau_r300-20.2.4-150300.59.6.1.x86_64.rpm libvdpau_r300-32bit-20.2.4-150300.59.6.1.x86_64.rpm libvdpau_r600-20.2.4-150300.59.6.1.x86_64.rpm libvdpau_r600-32bit-20.2.4-150300.59.6.1.x86_64.rpm libvdpau_radeonsi-20.2.4-150300.59.6.1.x86_64.rpm libvdpau_radeonsi-32bit-20.2.4-150300.59.6.1.x86_64.rpm libvulkan_intel-20.2.4-150300.59.6.1.x86_64.rpm libvulkan_intel-32bit-20.2.4-150300.59.6.1.x86_64.rpm libvulkan_radeon-20.2.4-150300.59.6.1.x86_64.rpm libvulkan_radeon-32bit-20.2.4-150300.59.6.1.x86_64.rpm libxatracker-devel-1.0.0-150300.59.6.1.x86_64.rpm libxatracker2-1.0.0-150300.59.6.1.x86_64.rpm Mesa-20.2.4-150300.59.6.1.s390x.rpm Mesa-KHR-devel-20.2.4-150300.59.6.1.s390x.rpm Mesa-devel-20.2.4-150300.59.6.1.s390x.rpm Mesa-dri-20.2.4-150300.59.6.1.s390x.rpm Mesa-dri-devel-20.2.4-150300.59.6.1.s390x.rpm Mesa-libEGL-devel-20.2.4-150300.59.6.1.s390x.rpm Mesa-libEGL1-20.2.4-150300.59.6.1.s390x.rpm Mesa-libGL-devel-20.2.4-150300.59.6.1.s390x.rpm Mesa-libGL1-20.2.4-150300.59.6.1.s390x.rpm Mesa-libGLESv1_CM-devel-20.2.4-150300.59.6.1.s390x.rpm Mesa-libGLESv2-devel-20.2.4-150300.59.6.1.s390x.rpm Mesa-libGLESv3-devel-20.2.4-150300.59.6.1.s390x.rpm Mesa-libglapi-devel-20.2.4-150300.59.6.1.s390x.rpm Mesa-libglapi0-20.2.4-150300.59.6.1.s390x.rpm libOSMesa-devel-20.2.4-150300.59.6.1.s390x.rpm libOSMesa8-20.2.4-150300.59.6.1.s390x.rpm libgbm-devel-20.2.4-150300.59.6.1.s390x.rpm libgbm1-20.2.4-150300.59.6.1.s390x.rpm Mesa-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-KHR-devel-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-devel-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-dri-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-dri-devel-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-dri-nouveau-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-gallium-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-libEGL-devel-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-libEGL1-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-libGL-devel-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-libGL1-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-libGLESv1_CM-devel-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-libGLESv2-devel-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-libGLESv3-devel-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-libOpenCL-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-libglapi-devel-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-libglapi0-20.2.4-150300.59.6.1.ppc64le.rpm Mesa-libva-20.2.4-150300.59.6.1.ppc64le.rpm libOSMesa-devel-20.2.4-150300.59.6.1.ppc64le.rpm libOSMesa8-20.2.4-150300.59.6.1.ppc64le.rpm libXvMC_nouveau-20.2.4-150300.59.6.1.ppc64le.rpm libXvMC_r600-20.2.4-150300.59.6.1.ppc64le.rpm libgbm-devel-20.2.4-150300.59.6.1.ppc64le.rpm libgbm1-20.2.4-150300.59.6.1.ppc64le.rpm libvdpau_nouveau-20.2.4-150300.59.6.1.ppc64le.rpm libvdpau_r300-20.2.4-150300.59.6.1.ppc64le.rpm libvdpau_r600-20.2.4-150300.59.6.1.ppc64le.rpm libvdpau_radeonsi-20.2.4-150300.59.6.1.ppc64le.rpm libxatracker-devel-1.0.0-150300.59.6.1.ppc64le.rpm libxatracker2-1.0.0-150300.59.6.1.ppc64le.rpm Mesa-20.2.4-150300.59.6.1.aarch64.rpm Mesa-KHR-devel-20.2.4-150300.59.6.1.aarch64.rpm Mesa-devel-20.2.4-150300.59.6.1.aarch64.rpm Mesa-dri-20.2.4-150300.59.6.1.aarch64.rpm Mesa-dri-devel-20.2.4-150300.59.6.1.aarch64.rpm Mesa-dri-nouveau-20.2.4-150300.59.6.1.aarch64.rpm Mesa-dri-vc4-20.2.4-150300.59.6.1.aarch64.rpm Mesa-gallium-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libEGL-devel-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libEGL1-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libGL-devel-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libGL1-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libGLESv1_CM-devel-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libGLESv2-devel-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libGLESv3-devel-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libOpenCL-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libd3d-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libd3d-devel-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libglapi-devel-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libglapi0-20.2.4-150300.59.6.1.aarch64.rpm Mesa-libva-20.2.4-150300.59.6.1.aarch64.rpm libOSMesa-devel-20.2.4-150300.59.6.1.aarch64.rpm libOSMesa8-20.2.4-150300.59.6.1.aarch64.rpm libXvMC_nouveau-20.2.4-150300.59.6.1.aarch64.rpm libXvMC_r600-20.2.4-150300.59.6.1.aarch64.rpm libgbm-devel-20.2.4-150300.59.6.1.aarch64.rpm libgbm1-20.2.4-150300.59.6.1.aarch64.rpm libvdpau_nouveau-20.2.4-150300.59.6.1.aarch64.rpm libvdpau_r300-20.2.4-150300.59.6.1.aarch64.rpm libvdpau_r600-20.2.4-150300.59.6.1.aarch64.rpm libvdpau_radeonsi-20.2.4-150300.59.6.1.aarch64.rpm libxatracker-devel-1.0.0-150300.59.6.1.aarch64.rpm libxatracker2-1.0.0-150300.59.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3271 moderate SUSE Updates openSUSE-SLE 15.3 This update for perl fixes the following issues: - CVE-2017-6512: Fixed File::Path rmtree/remove_tree race condition (bsc#1047178). perl-32bit-5.26.1-150300.17.11.1.x86_64.rpm perl-5.26.1-150300.17.11.1.src.rpm perl-5.26.1-150300.17.11.1.x86_64.rpm perl-base-32bit-5.26.1-150300.17.11.1.x86_64.rpm perl-base-5.26.1-150300.17.11.1.x86_64.rpm perl-core-DB_File-32bit-5.26.1-150300.17.11.1.x86_64.rpm perl-core-DB_File-5.26.1-150300.17.11.1.x86_64.rpm perl-doc-5.26.1-150300.17.11.1.noarch.rpm perl-5.26.1-150300.17.11.1.s390x.rpm perl-base-5.26.1-150300.17.11.1.s390x.rpm perl-core-DB_File-5.26.1-150300.17.11.1.s390x.rpm perl-5.26.1-150300.17.11.1.ppc64le.rpm perl-base-5.26.1-150300.17.11.1.ppc64le.rpm perl-core-DB_File-5.26.1-150300.17.11.1.ppc64le.rpm perl-5.26.1-150300.17.11.1.aarch64.rpm perl-base-5.26.1-150300.17.11.1.aarch64.rpm perl-core-DB_File-5.26.1-150300.17.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-3248 important SUSE Updates openSUSE-SLE 15.3 This update for qpdf fixes the following issues: - CVE-2021-36978: Fixed heap-based buffer overflow in Pl_ASCII85Decoder::write (bsc#1188514). libqpdf26-9.0.2-150200.3.3.1.x86_64.rpm qpdf-9.0.2-150200.3.3.1.src.rpm libqpdf26-9.0.2-150200.3.3.1.s390x.rpm libqpdf26-9.0.2-150200.3.3.1.ppc64le.rpm libqpdf26-9.0.2-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3245 important SUSE Updates openSUSE-SLE 15.3 This update for libyang fixes the following issues: - CVE-2021-28906: Fixed missing check in read_yin_leaf that can lead to DoS (bsc#1186378) - CVE-2021-28904: Fixed missing check in ext_get_plugin that lead to DoS (bsc#1186376). - CVE-2021-28903: Fixed stack overflow in lyxml_parse_mem (bsc#1186375). - CVE-2021-28902: Fixed missing check in read_yin_container that can lead to DoS (bsc#1186374). libyang-1.0.184-150300.3.6.1.src.rpm libyang-cpp-devel-1.0.184-150300.3.6.1.x86_64.rpm libyang-cpp1-1.0.184-150300.3.6.1.x86_64.rpm libyang-devel-1.0.184-150300.3.6.1.x86_64.rpm libyang-doc-1.0.184-150300.3.6.1.noarch.rpm libyang-extentions-1.0.184-150300.3.6.1.x86_64.rpm libyang1-1.0.184-150300.3.6.1.x86_64.rpm python3-yang-1.0.184-150300.3.6.1.x86_64.rpm yang-tools-1.0.184-150300.3.6.1.x86_64.rpm libyang-cpp-devel-1.0.184-150300.3.6.1.s390x.rpm libyang-cpp1-1.0.184-150300.3.6.1.s390x.rpm libyang-devel-1.0.184-150300.3.6.1.s390x.rpm libyang-extentions-1.0.184-150300.3.6.1.s390x.rpm libyang1-1.0.184-150300.3.6.1.s390x.rpm python3-yang-1.0.184-150300.3.6.1.s390x.rpm yang-tools-1.0.184-150300.3.6.1.s390x.rpm libyang-cpp-devel-1.0.184-150300.3.6.1.ppc64le.rpm libyang-cpp1-1.0.184-150300.3.6.1.ppc64le.rpm libyang-devel-1.0.184-150300.3.6.1.ppc64le.rpm libyang-extentions-1.0.184-150300.3.6.1.ppc64le.rpm libyang1-1.0.184-150300.3.6.1.ppc64le.rpm python3-yang-1.0.184-150300.3.6.1.ppc64le.rpm yang-tools-1.0.184-150300.3.6.1.ppc64le.rpm libyang-cpp-devel-1.0.184-150300.3.6.1.aarch64.rpm libyang-cpp1-1.0.184-150300.3.6.1.aarch64.rpm libyang-devel-1.0.184-150300.3.6.1.aarch64.rpm libyang-extentions-1.0.184-150300.3.6.1.aarch64.rpm libyang1-1.0.184-150300.3.6.1.aarch64.rpm python3-yang-1.0.184-150300.3.6.1.aarch64.rpm yang-tools-1.0.184-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3246 important SUSE Updates openSUSE-SLE 15.3 This update for frr fixes the following issues: - CVE-2022-37032: Fixed out-of-bounds read in the BGP daemon that may lead to information disclosure or denial of service (bsc#1202023). - CVE-2019-25074: Fixed a memory leak in the IS-IS daemon that may lead to server memory exhaustion (bsc#1202022). frr-7.4-150300.4.7.1.src.rpm frr-7.4-150300.4.7.1.x86_64.rpm frr-devel-7.4-150300.4.7.1.x86_64.rpm libfrr0-7.4-150300.4.7.1.x86_64.rpm libfrr_pb0-7.4-150300.4.7.1.x86_64.rpm libfrrcares0-7.4-150300.4.7.1.x86_64.rpm libfrrfpm_pb0-7.4-150300.4.7.1.x86_64.rpm libfrrgrpc_pb0-7.4-150300.4.7.1.x86_64.rpm libfrrospfapiclient0-7.4-150300.4.7.1.x86_64.rpm libfrrsnmp0-7.4-150300.4.7.1.x86_64.rpm libfrrzmq0-7.4-150300.4.7.1.x86_64.rpm libmlag_pb0-7.4-150300.4.7.1.x86_64.rpm frr-7.4-150300.4.7.1.s390x.rpm frr-devel-7.4-150300.4.7.1.s390x.rpm libfrr0-7.4-150300.4.7.1.s390x.rpm libfrr_pb0-7.4-150300.4.7.1.s390x.rpm libfrrcares0-7.4-150300.4.7.1.s390x.rpm libfrrfpm_pb0-7.4-150300.4.7.1.s390x.rpm libfrrgrpc_pb0-7.4-150300.4.7.1.s390x.rpm libfrrospfapiclient0-7.4-150300.4.7.1.s390x.rpm libfrrsnmp0-7.4-150300.4.7.1.s390x.rpm libfrrzmq0-7.4-150300.4.7.1.s390x.rpm libmlag_pb0-7.4-150300.4.7.1.s390x.rpm frr-7.4-150300.4.7.1.ppc64le.rpm frr-devel-7.4-150300.4.7.1.ppc64le.rpm libfrr0-7.4-150300.4.7.1.ppc64le.rpm libfrr_pb0-7.4-150300.4.7.1.ppc64le.rpm libfrrcares0-7.4-150300.4.7.1.ppc64le.rpm libfrrfpm_pb0-7.4-150300.4.7.1.ppc64le.rpm libfrrgrpc_pb0-7.4-150300.4.7.1.ppc64le.rpm libfrrospfapiclient0-7.4-150300.4.7.1.ppc64le.rpm libfrrsnmp0-7.4-150300.4.7.1.ppc64le.rpm libfrrzmq0-7.4-150300.4.7.1.ppc64le.rpm libmlag_pb0-7.4-150300.4.7.1.ppc64le.rpm frr-7.4-150300.4.7.1.aarch64.rpm frr-devel-7.4-150300.4.7.1.aarch64.rpm libfrr0-7.4-150300.4.7.1.aarch64.rpm libfrr_pb0-7.4-150300.4.7.1.aarch64.rpm libfrrcares0-7.4-150300.4.7.1.aarch64.rpm libfrrfpm_pb0-7.4-150300.4.7.1.aarch64.rpm libfrrgrpc_pb0-7.4-150300.4.7.1.aarch64.rpm libfrrospfapiclient0-7.4-150300.4.7.1.aarch64.rpm libfrrsnmp0-7.4-150300.4.7.1.aarch64.rpm libfrrzmq0-7.4-150300.4.7.1.aarch64.rpm libmlag_pb0-7.4-150300.4.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-3292 moderate SUSE Updates openSUSE-SLE 15.3 This update for ruby2.5 fixes the following issues: - CVE-2021-41819: Fixed cookie prefix spoofing in CGI::Cookie.parse (bsc#1193081). libruby2_5-2_5-2.5.9-150000.4.26.1.x86_64.rpm ruby2.5-2.5.9-150000.4.26.1.src.rpm ruby2.5-2.5.9-150000.4.26.1.x86_64.rpm ruby2.5-devel-2.5.9-150000.4.26.1.x86_64.rpm ruby2.5-devel-extra-2.5.9-150000.4.26.1.x86_64.rpm ruby2.5-doc-2.5.9-150000.4.26.1.x86_64.rpm ruby2.5-doc-ri-2.5.9-150000.4.26.1.noarch.rpm ruby2.5-stdlib-2.5.9-150000.4.26.1.x86_64.rpm libruby2_5-2_5-2.5.9-150000.4.26.1.s390x.rpm ruby2.5-2.5.9-150000.4.26.1.s390x.rpm ruby2.5-devel-2.5.9-150000.4.26.1.s390x.rpm ruby2.5-devel-extra-2.5.9-150000.4.26.1.s390x.rpm ruby2.5-doc-2.5.9-150000.4.26.1.s390x.rpm ruby2.5-stdlib-2.5.9-150000.4.26.1.s390x.rpm libruby2_5-2_5-2.5.9-150000.4.26.1.ppc64le.rpm ruby2.5-2.5.9-150000.4.26.1.ppc64le.rpm ruby2.5-devel-2.5.9-150000.4.26.1.ppc64le.rpm ruby2.5-devel-extra-2.5.9-150000.4.26.1.ppc64le.rpm ruby2.5-doc-2.5.9-150000.4.26.1.ppc64le.rpm ruby2.5-stdlib-2.5.9-150000.4.26.1.ppc64le.rpm libruby2_5-2_5-2.5.9-150000.4.26.1.aarch64.rpm ruby2.5-2.5.9-150000.4.26.1.aarch64.rpm ruby2.5-devel-2.5.9-150000.4.26.1.aarch64.rpm ruby2.5-devel-extra-2.5.9-150000.4.26.1.aarch64.rpm ruby2.5-doc-2.5.9-150000.4.26.1.aarch64.rpm ruby2.5-stdlib-2.5.9-150000.4.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-3591 moderate SUSE Updates openSUSE-SLE 15.3 This update for kdump fixes the following issues: - Fix unload issue when secure boot enabled (bsc#1186272) - Fix network-related dracut options handling for fadump case (bsc#1201051) kdump-0.9.0-150300.18.15.1.src.rpm kdump-0.9.0-150300.18.15.1.x86_64.rpm kdump-0.9.0-150300.18.15.1.s390x.rpm kdump-0.9.0-150300.18.15.1.ppc64le.rpm kdump-0.9.0-150300.18.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-3264 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-39190: Fixed an issue that was discovered in net/netfilter/nf_tables_api.c and could cause a denial of service upon binding to an already bound chain (bnc#1203117). - CVE-2022-39188: Fixed race condition in include/asm-generic/tlb.h where a device driver can free a page while it still has stale TLB entries (bnc#1203107). - CVE-2022-36879: Fixed an issue in xfrm_expand_policies in net/xfrm/xfrm_policy.c where a refcount could be dropped twice (bnc#1201948). - CVE-2022-3028: Fixed race condition that was found in the IP framework for transforming packets (XFRM subsystem) (bnc#1202898). - CVE-2022-2977: Fixed reference counting for struct tpm_chip (bsc#1202672). - CVE-2022-2905: Fixed tnum_range usage on array range checking for poke descriptors (bsc#1202564, bsc#1202860). - CVE-2022-2663: Fixed an issue that was found in nf_conntrack_irc where the message handling could be confused and incorrectly matches the message (bnc#1202097). - CVE-2022-26373: Fixed non-transparent sharing of return predictor targets between contexts in some Intel Processors (bnc#1201726). - CVE-2022-2588: Fixed use-after-free in cls_route (bsc#1202096). - CVE-2022-20369: Fixed out of bounds write in v4l2_m2m_querybuf of v4l2-mem2mem.c (bnc#1202347). - CVE-2022-20368: Fixed slab-out-of-bounds access in packet_recvmsg() (bsc#1202346). - CVE-2021-4203: Fixed use-after-free read flaw that was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (bnc#1194535). - CVE-2021-4155: Fixed a data leak flaw that was found in the way XFS_IOC_ALLOCSP IOCTL in the XFS filesystem (bnc#1194272). - CVE-2020-27784: Fixed a vulnerability that was found in printer_ioctl() printer_ioctl() when accessing a deallocated instance (bnc#1202895). - CVE-2016-3695: Fixed an issue inside the einj_error_inject function in drivers/acpi/apei/einj.c that allowed users to simulate hardware errors and consequently cause a denial of service (bnc#1023051). The following non-security bugs were fixed: - ACPI: EC: Remove duplicate ThinkPad X1 Carbon 6th entry from DMI quirks (git-fixes). - ACPI: LPSS: Fix missing check in register_device_clock() (git-fixes). - ACPI: PM: save NVS memory for Lenovo G40-45 (git-fixes). - ACPI: processor: Remove freq Qos request for all CPUs (git-fixes). - ACPI: property: Return type of acpi_add_nondev_subnodes() should be bool (git-fixes). - ACPI: video: Force backlight native for some TongFang devices (git-fixes). - ALSA: bcd2000: Fix a UAF bug on the error path of probing (git-fixes). - ALSA: hda/cirrus - support for iMac 12,1 model (git-fixes). - ALSA: hda/conexant: Add quirk for LENOVO 20149 Notebook model (git-fixes). - ALSA: hda/realtek: Add a quirk for HP OMEN 15 (8786) mute LED (git-fixes). - ALSA: hda/realtek: Add mute LED quirk for HP Omen laptop (git-fixes). - ALSA: hda/realtek: Add new alc285-hp-amp-init model (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo L140PU (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP50PNJ (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP70PNJ (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP70PNP (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NS50PU (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NV45PZ (git-fixes). - ALSA: hda/realtek: Add quirk for Dell Latitude 7520 (git-fixes). - ALSA: hda/realtek: Add quirk for HP Dev One (git-fixes). - ALSA: hda/realtek: Add quirk for HP Spectre x360 15-eb0xxx (git-fixes). - ALSA: hda/realtek: Add quirk for TongFang devices with pop noise (git-fixes). - ALSA: hda/realtek: Add quirk for another Asus K42JZ model (git-fixes). - ALSA: hda/realtek: Add quirk for the Framework Laptop (git-fixes). - ALSA: hda/realtek: Fix LED on HP ProBook 435 G7 (git-fixes). - ALSA: hda/realtek: Fix deadlock by COEF mutex (git-fixes). - ALSA: hda/realtek: Fix headset mic for Acer SF313-51 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP machines (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for a HP ProBook (git-fixes). - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machine (git-fixes). - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machines (git-fixes). - ALSA: info: Fix llseek return value when using callback (git-fixes). - ALSA: usb-audio: More comprehensive mixer map for ASUS ROG Zenith II (git-fixes). - ARM: 9077/1: PLT: Move struct plt_entries definition to header (git-fixes). - ARM: 9078/1: Add warn suppress parameter to arm_gen_branch_link() (git-fixes). - ARM: 9079/1: ftrace: Add MODULE_PLTS support (git-fixes). - ARM: 9098/1: ftrace: MODULE_PLT: Fix build problem without DYNAMIC_FTRACE (git-fixes). - ASoC: SOF: debug: Fix potential buffer overflow by snprintf() (git-fixes). - ASoC: audio-graph-card: Add of_node_put() in fail path (git-fixes). - ASoC: codecs: da7210: add check for i2c_add_driver (git-fixes). - ASoC: codecs: msm8916-wcd-digital: move gains from SX_TLV to S8_TLV (git-fixes). - ASoC: codecs: wcd9335: move gains from SX_TLV to S8_TLV (git-fixes). - ASoC: mt6797-mt6351: Fix refcount leak in mt6797_mt6351_dev_probe (git-fixes). - ASoC: qcom: q6dsp: Fix an off-by-one in q6adm_alloc_copp() (git-fixes). - ASoC: tas2770: Allow mono streams (git-fixes). - Bluetooth: L2CAP: Fix build errors in some archs (git-fixes). - Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm regression (git-fixes). - Bluetooth: MGMT: Fixes build warnings with C=1 (git-fixes). - Fix parsing of rpm/macros.kernel-source on SLE12 (bsc#1201019). - HID: alps: Declare U1_UNICORN_LEGACY support (git-fixes). - HID: steam: Prevent NULL pointer dereference in steam_{recv,send}_report (git-fixes). - HID: wacom: Do not register pad_input for touch switch (git-fixes). - HID: wacom: Only report rotation for art pen (git-fixes). - Input: iforce - wake up after clearing IFORCE_XMIT_RUNNING flag (git-fixes). - Input: rk805-pwrkey - fix module autoloading (git-fixes). - KABI: cgroup: Restore KABI of css_set (bsc#1201610). - KVM: PPC: Book3S HV: Context tracking exit guest context before enabling irqs (bsc#1065729). - KVM: PPC: Book3S HV: Prevent POWER7/8 TLB flush flushing SLB (bsc#1156395). - KVM: PPC: Book3S HV: Use GLOBAL_TOC for kvmppc_h_set_dabr/xdabr() (bsc#1156395). - KVM: PPC: Fix vmx/vsx mixup in mmio emulation (bsc#1156395). - KVM: PPC: Use arch_get_random_seed_long instead of powernv variant (bsc#1156395). - KVM: VMX: Refuse to load kvm_intel if EPT and NX are disabled (git-fixes). - KVM: nVMX: Snapshot pre-VM-Enter BNDCFGS for !nested_run_pending case (git-fixes). - KVM: nVMX: Snapshot pre-VM-Enter DEBUGCTL for !nested_run_pending case (git-fixes). - KVM: x86: accept userspace interrupt only if no event is injected (git-fixes). - NFS: fix nfs_path in case of a rename retry (git-fixes). - NFSD: Add missing NFSv2 .pc_func methods (git-fixes). - NFSD: Clamp WRITE offsets (git-fixes). - NFSD: Fix possible sleep during nfsd4_release_lockowner() (git-fixes). - NFSD: prevent integer overflow on 32 bit systems (git-fixes). - NFSD: prevent underflow in nfssvc_decode_writeargs() (git-fixes). - NFSv4.2: support EXCHGID4_FLAG_SUPP_FENCE_OPS 4.2 EXCHANGE_ID flag (git-fixes). - NFSv4: Fix second deadlock in nfs4_evict_inode() (git-fixes). - NFSv4: nfs4_proc_set_acl needs to restore NFS_CAP_UIDGID_NOMAP on error (git-fixes). - NTB: ntb_tool: uninitialized heap data in tool_fn_write() (git-fixes). - PCI/ACPI: Guard ARM64-specific mcfg_quirks (git-fixes). - PCI: Add ACS quirk for Broadcom BCM5750x NICs (git-fixes). - PCI: hv: Fix hv_arch_irq_unmask() for multi-MSI (bsc#1200845). - PCI: hv: Fix interrupt mapping for multi-MSI (bsc#1200845). - PCI: hv: Fix multi-MSI to allow more than one MSI vector (bsc#1200845). - PCI: hv: Make the code arch neutral by adding arch specific interfaces (bsc#1200845). - PCI: hv: Only reuse existing IRTE allocation for Multi-MSI (bsc#1200845). - PCI: hv: Reuse existing IRTE allocation in compose_msi_msg() (bsc#1200845). - PCI: qcom: Fix pipe clock imbalance (git-fixes). - SUNRPC reverting d03727b248d0 ("NFSv4 fix CLOSE not waiting for direct IO compeletion") (git-fixes). - SUNRPC: Clean up scheduling of autoclose (git-fixes). - SUNRPC: Do not dereference xprt->snd_task if it's a cookie (git-fixes). - SUNRPC: Fix READ_PLUS crasher (git-fixes). - SUNRPC: Prevent immediate close+reconnect (git-fixes). - VMCI: Add support for ARM64 (bsc#1199291, jsc#SLE-24635). - VMCI: Check exclusive_vectors when freeing interrupt 1 (bsc#1199291, jsc#SLE-24635). - VMCI: Enforce queuepair max size for IOCTL_VMCI_QUEUEPAIR_ALLOC (bsc#1199291, jsc#SLE-24635). - VMCI: Fix some error handling paths in vmci_guest_probe_device() (bsc#1199291, jsc#SLE-24635). - VMCI: Release notification_bitmap in error path (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add MMIO access to registers (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add support for DMA datagrams receive (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add support for DMA datagrams sends (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: allocate send and receive buffers for DMA datagrams (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: detect DMA datagram capability (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: register dummy IRQ handlers for DMA datagrams (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: set OS page size (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: whitespace formatting change for vmci register defines (bsc#1199291, jsc#SLE-24635). - arm64: signal: nofpsimd: Do not allocate fp/simd context when not available (git-fixes). - asm-generic: sections: refactor memory_intersects (git-fixes). - ata: libata-eh: Add missing command name (git-fixes). - atm: idt77252: fix use-after-free bugs caused by tst_timer (git-fixes). - blk-iocost: clamp inuse and skip noops in __propagate_weights() (bsc#1202722). - blk-iocost: fix operation ordering in iocg_wake_fn() (bsc#1202720). - blk-iocost: fix weight updates of inner active iocgs (bsc#1202717). - blk-iocost: rename propagate_active_weights() to propagate_weights() (bsc#1202722). - blktrace: fix blk_rq_merge documentation (git-fixes). - can: ems_usb: fix clang's -Wunaligned-access warning (git-fixes). - can: m_can: process interrupt only when not runtime suspended (git-fixes). - ceph: do not leak snap_rwsem in handle_cap_grant (bsc#1202810). - ceph: do not truncate file in atomic_open (bsc#1202811). - cgroup: Trace event cgroup id fields should be u64 (git-fixes). - cgroup: Use separate src/dst nodes when preloading css_sets for migration (bsc#1201610). - clk: bcm: rpi: Fix error handling of raspberrypi_fw_get_rate (git-fixes). - clk: core: Fix runtime PM sequence in clk_core_unprepare() (git-fixes). - clk: core: Honor CLK_OPS_PARENT_ENABLE for clk gate ops (git-fixes). - clk: qcom: ipq8074: dont disable gcc_sleep_clk_src (git-fixes). - clk: rockchip: add sclk_mac_lbtest to rk3188_critical_clocks (git-fixes). - coresight: cti: Correct the parameter for pm_runtime_put (git-fixes). - devlink: Fix use-after-free after a failed reload (git-fixes). - dm raid: fix KASAN warning in raid5_add_disks (git-fixes). - dmaengine: sprd: Cleanup in .remove() after pm_runtime_get_sync() failed (git-fixes). - dpaa2-eth: unregister the netdev before disconnecting from the PHY (git-fixes). - driver core: Do not probe devices after bus_type.match() probe deferral (git-fixes). - drm/amdgpu: Check BO's requested pinning domains against its preferred_domains (git-fixes). - drm/amdgpu: remove useless condition in amdgpu_job_stop_all_jobs_on_sched() (git-fixes). - drm/gem: Properly annotate WW context on drm_gem_lock_reservations() error (git-fixes). - drm/i915/reg: Fix spelling mistake "Unsupport" -> "Unsupported" (git-fixes). - drm/meson: Fix overflow implicit truncation warnings (git-fixes). - drm/meson: Fix refcount bugs in meson_vpu_has_available_connectors() (git-fixes). - drm/msm/dsi: Fix number of regulators for SDM660 (git-fixes). - drm/msm/dsi: Fix number of regulators for msm8996_dsi_cfg (git-fixes). - drm/msm/dsi: fix the inconsistent indenting (git-fixes). - drm/sun4i: dsi: Prevent underflow when computing packet sizes (git-fixes). - ehea: fix error return code in ehea_restart_qps() (git-fixes). - enetc: Fix endianness issues for enetc_qos (git-fixes). - ethernet: sun: niu: fix missing checks of niu_pci_eeprom_read() (git-fixes). - ext4: Fix BUG_ON in ext4_bread when write quota data (bsc#1197755). - ext4: add reserved GDT blocks check (bsc#1202712). - ext4: do not set SB_ACTIVE in ext4_orphan_cleanup() (bsc#1202708). - ext4: do not use the orphan list when migrating an inode (bsc#1197756). - ext4: fix bug_on in ext4_writepages (bsc#1200872). - ext4: fix error handling code in add_new_gdb (bsc#1179722). - ext4: fix error handling in ext4_restore_inline_data() (bsc#1197757). - ext4: fix invalid inode checksum (bsc#1179723). - ext4: fix loff_t overflow in ext4_max_bitmap_size() (bsc#1202709). - ext4: fix overhead calculation to account for the reserved gdt blocks (bsc#1200869). - ext4: fix potential infinite loop in ext4_dx_readdir() (bsc#1191662). - ext4: fix race when reusing xattr blocks (bsc#1198971). - ext4: fix symlink file size not match to file content (bsc#1200868). - ext4: fix use-after-free in ext4_rename_dir_prepare (bsc#1200871). - ext4: fix use-after-free in ext4_search_dir (bsc#1202710). - ext4: fix warning in ext4_handle_inode_extension (bsc#1202711). - ext4: force overhead calculation if the s_overhead_cluster makes no sense (bsc#1200870). - ext4: recover csum seed of tmp_inode after migrating to extents (bsc#1202713). - ext4: remove EA inode entry from mbcache on inode eviction (bsc#1198971). - ext4: unindent codeblock in ext4_xattr_block_set() (bsc#1198971). - fbcon: Fix boundary checks for fbcon=vc:n1-n2 parameters (git-fixes). - firmware: tegra: bpmp: Do only aligned access to IPC memory area (git-fixes). - fs-writeback: writeback_sb_inodes: Recalculate 'wrote' according skipped pages (bsc#1200873). - fuse: Remove the control interface for virtio-fs (bsc#1203137). - fuse: ioctl: translate ENOSYS (bsc#1203136). - fuse: limit nsec (bsc#1203135). - gadgetfs: ep_io - wait until IRQ finishes (git-fixes). - geneve: do not use RT_TOS for IPv6 flowlabel (git-fixes). - geneve: fix TOS inheriting for ipv4 (git-fixes). - gpio: pca953x: Add mutex_lock for regcache sync in PM (git-fixes). - hv_netvsc: Load and store the proper (NBL_HASH_INFO) per-packet info (bsc#1202701). - hwmon: (gpio-fan) Fix array out of bounds access (git-fixes). - i2c: imx: Make sure to unregister adapter on remove() (git-fixes). - ice: report supported and advertised autoneg using PHY capabilities (git-fixes). - ieee802154/adf7242: defer destroy_workqueue call (git-fixes). - iio: adc: mcp3911: make use of the sign bit (git-fixes). - iio: adc: mcp3911: use correct formula for AD conversion (git-fixes). - intel_th: pci: Add Meteor Lake-P support (git-fixes). - intel_th: pci: Add Raptor Lake-S CPU support (git-fixes). - intel_th: pci: Add Raptor Lake-S PCH support (git-fixes). - iommu/amd: Simplify and Consolidate Virtual APIC (AVIC) Enablement (git-fixes). - iommu/arm-smmu: qcom_iommu: Add of_node_put() when breaking out of loop (git-fixes). - iommu/exynos: Handle failed IOMMU device registration properly (git-fixes). - iommu/iova: Improve 32-bit free space estimate (git-fixes). - iommu/ipmmu-vmsa: Check for error num after setting mask (git-fixes). - iommu/mediatek: Add list_del in mtk_iommu_remove (git-fixes). - iommu/msm: Fix an incorrect NULL check on list iterator (git-fixes). - iommu/omap: Fix regression in probe for NULL pointer dereference (git-fixes). - iommu/vt-d: Calculate mask for non-aligned flushes (git-fixes). - iommu/vt-d: Fix PCI bus rescan device hot add (git-fixes). - iommu/vt-d: Fix RID2PASID setup/teardown failure (git-fixes). - iommu/vt-d: avoid invalid memory access via node_online(NUMA_NO_NODE) (git-fixes). - ipheth: fix EOVERFLOW in ipheth_rcvbulk_callback (git-fixes). - ipmi: ssif: initialize ssif_info->client early (git-fixes). - ixgbevf: add correct exception tracing for XDP (git-fixes). - jbd2: fix assertion 'jh->b_frozen_data == NULL' failure when journal aborted (bsc#1202716). - jbd2: fix outstanding credits assert in jbd2_journal_commit_transaction() (bsc#1202715). - kabi/severities: add stmmac driver local sumbols - kbuild: do not create built-in objects for external module builds (jsc#SLE-24559 bsc#1202756). - kbuild: dummy-tools: avoid tmpdir leak in dummy gcc (bsc#1181862 git-fixes). - kbuild: dummy-tools: avoid tmpdir leak in dummy gcc (git-fixes). - kernel-obs-build: include qemu_fw_cfg (boo#1201705) - kfifo: fix kfifo_to_user() return type (git-fixes). - kfifo: fix ternary sign extension bugs (git-fixes). - lib/list_debug.c: Detect uninitialized lists (git-fixes). - lib: bitmap: provide devm_bitmap_alloc() and devm_bitmap_zalloc() (git-fixes). - lightnvm: Remove lightnvm implemenation (bsc#1191881 bsc#1201420 ZDI-CAN-17325). - list: add "list_del_init_careful()" to go with "list_empty_careful()" (bsc#1202745). - locking/lockdep: Avoid potential access of invalid memory in lock_class (git-fixes). - loop: Fix missing discard support when using LOOP_CONFIGURE (bsc#1202718). - mbcache: add functions to delete entry if unused (bsc#1198971). - mbcache: do not reclaim used entries (bsc#1198971). - md/bitmap: do not set sb values if can't pass sanity check (bsc#1197158). - mfd: max77620: Fix refcount leak in max77620_initialise_fps (git-fixes). - mfd: t7l66xb: Drop platform disable callback (git-fixes). - misc: fastrpc: fix memory corruption on open (git-fixes). - misc: fastrpc: fix memory corruption on probe (git-fixes). - mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (git-fixes, bsc#1203098). - mm: bdi: initialize bdi_min_ratio when bdi is unregistered (bsc#1197763). - mm: memcontrol: fix potential oom_lock recursion deadlock (bsc#1202447). - mmc: pxamci: Fix an error handling path in pxamci_probe() (git-fixes). - mmc: pxamci: Fix another error handling path in pxamci_probe() (git-fixes). - module: Ignore _GLOBAL_OFFSET_TABLE_ when warning for undefined symbols (git-fixes). - mtd: maps: Fix refcount leak in ap_flash_init (git-fixes). - mtd: maps: Fix refcount leak in of_flash_probe_versatile (git-fixes). - mtd: partitions: Fix refcount leak in parse_redboot_of (git-fixes). - mtd: rawnand: meson: Fix a potential double free issue (git-fixes). - mtd: sm_ftl: Fix deadlock caused by cancel_work_sync in sm_release (git-fixes). - mtd: st_spi_fsm: Add a clk_disable_unprepare() in .probe()'s error path (git-fixes). - net/mlx5e: Check for needed capability for cvlan matching (git-fixes). - net/sonic: Fix a resource leak in an error handling path in 'jazz_sonic_probe()' (git-fixes). - net: bcmgenet: Add mdio-bcm-unimac soft dependency (git-fixes). - net: cpsw: Properly initialise struct page_pool_params (git-fixes). - net: cpsw: add missing of_node_put() in cpsw_probe_dt() (git-fixes). - net: davinci_emac: Fix incorrect masking of tx and rx error channel (git-fixes). - net: dsa: b53: fix an off by one in checking "vlan->vid" (git-fixes). - net: dsa: felix: suppress -EPROBE_DEFER errors (git-fixes). - net: dsa: mt7530: fix VLAN traffic leaks (git-fixes). - net: enetc: Use pci_release_region() to release some resources (git-fixes). - net: enetc: report software timestamping via SO_TIMESTAMPING (git-fixes). - net: enetc: unmap DMA in enetc_send_cmd() (git-fixes). - net: ethernet: aeroflex: fix UAF in greth_of_remove (git-fixes). - net: ethernet: ezchip: fix UAF in nps_enet_remove (git-fixes). - net: ethernet: ezchip: fix error handling (git-fixes). - net: ethernet: ezchip: remove redundant check (git-fixes). - net: ethernet: fix potential use-after-free in ec_bhf_remove (git-fixes). - net: ethernet: ti: cpsw_ale: Fix access to un-initialized memory (git-fixes). - net: fec: fix the potential memory leak in fec_enet_init() (git-fixes). - net: fec_ptp: add clock rate zero check (git-fixes). - net: ftgmac100: Fix crash when removing driver (git-fixes). - net: hdlc_x25: Return meaningful error code in x25_open (git-fixes). - net: hns: Fix kernel-doc (git-fixes). - net: lantiq: fix memory corruption in RX ring (git-fixes). - net: lapbether: Prevent racing when checking whether the netif is running (git-fixes). - net: moxa: Use devm_platform_get_and_ioremap_resource() (git-fixes). - net: mscc: ocelot: correctly report the timestamping RX filters in ethtool (git-fixes). - net: mscc: ocelot: do not downgrade timestamping RX filters in SIOCSHWTSTAMP (git-fixes). - net: mvpp2: fix interrupt mask/unmask skip condition (git-fixes). - net: netcp: Fix an error message (git-fixes). - net: pch_gbe: Propagate error from devm_gpio_request_one() (git-fixes). - net: rose: fix netdev reference changes (git-fixes). - net: sock: tracing: Fix sock_exceed_buf_limit not to dereference stale pointer (git-fixes). - net: stmicro: handle clk_prepare() failure during init (git-fixes). - net: stmmac: Modify configuration method of EEE timers (git-fixes). - net: stmmac: Use resolved link config in mac_link_up() (git-fixes). - net: stmmac: disable clocks in stmmac_remove_config_dt() (git-fixes). - net: stmmac: dwmac1000: Fix extended MAC address registers definition (git-fixes). - net: vmxnet3: fix possible NULL pointer dereference in vmxnet3_rq_cleanup() (bsc#1200431). - net: vmxnet3: fix possible use-after-free bugs in vmxnet3_rq_alloc_rx_buf() (bsc#1200431). - net: vmxnet3: remove multiple false checks in vmxnet3_ethtool.c (bsc#1200431). - net:emac/emac-mac: Fix a use after free in emac_mac_tx_buf_send (git-fixes). - net:enetc: allocate CBD ring data memory using DMA coherent methods (git-fixes). - net_sched: cls_route: disallow handle of 0 (bsc#1202393). - nfsd: fix use-after-free due to delegation race (git-fixes). - nvme: fix RCU hole that allowed for endless looping in multipath round robin (bsc#1202636). - objtool: Add support for intra-function calls (bsc#1202396). - objtool: Make handle_insn_ops() unconditional (bsc#1202396). - objtool: Remove INSN_STACK (bsc#1202396). - objtool: Rework allocating stack_ops on decode (bsc#1202396). - objtool: Support multiple stack_op per instruction (bsc#1202396). - ocfs2: drop acl cache for directories too (bsc#1191667). - ocfs2: fix crash when initialize filecheck kobj fails (bsc#1197920). - ocfs2: mount fails with buffer overflow in strlen (bsc#1197760). - octeontx2-af: fix infinite loop in unmapping NPC counter (git-fixes). - perf bench: Share some global variables to fix build with gcc 10 (git-fixes). - pinctrl/rockchip: fix gpio device creation (git-fixes). - pinctrl: nomadik: Fix refcount leak in nmk_pinctrl_dt_subnode_to_map (git-fixes). - pinctrl: qcom: msm8916: Allow CAMSS GP clocks to be muxed (git-fixes). - pinctrl: sunxi: Add I/O bias setting for H6 R-PIO (git-fixes). - platform/x86: pmc_atom: Fix SLP_TYPx bitfield mask (git-fixes). - powerpc/perf: Optimize clearing the pending PMI and remove WARN_ON for PMI check in power_pmu_disable (bsc#1156395). - powerpc/powernv/kvm: Use darn for H_RANDOM on Power9 (bsc#1065729). - powerpc/powernv: Avoid crashing if rng is NULL (bsc#1065729). - powerpc/powernv: Staticify functions without prototypes (bsc#1065729). - powerpc/powernv: delay rng platform device creation until later in boot (bsc#1065729). - powerpc/powernv: rename remaining rng powernv_ functions to pnv_ (bsc#1065729). - powerpc/powernv: wire up rng during setup_arch (bsc#1065729). - powerpc/pseries: wire up rng during setup_arch() (bsc#1065729). - powerpc/xive: Fix refcount leak in xive_get_max_prio (git-fixess). - powerpc: Enable execve syscall exit tracepoint (bsc#1065729). - powerpc: define get_cycles macro for arch-override (bsc#1065729). - powerpc: powernv: kABI: add back powernv_get_random_long (bsc#1065729). - profiling: fix shift too large makes kernel panic (git-fixes). - qlcnic: Add null check after calling netdev_alloc_skb (git-fixes). - random: fix crash on multiple early calls to add_bootloader_randomness() (git-fixes). - ratelimit: Fix data-races in ___ratelimit() (git-fixes). - reiserfs: fix handling of -EOPNOTSUPP in reiserfs_for_each_xattr (bsc#1202714). - remoteproc: qcom: q6v5-mss: add powerdomains to MSM8996 config (git-fixes). - remoteproc: qcom: wcnss: Fix handling of IRQs (git-fixes). - s390/crash: fix incorrect number of bytes to copy to user space (git-fixes). - s390/crash: make copy_oldmem_page() return number of bytes copied (git-fixes). - s390/mm: do not trigger write fault when vma does not allow VM_WRITE (git-fixes). - s390/mm: fix 2KB pgtable release race (git-fixes). - s390/ptrace: pass invalid syscall numbers to tracing (bsc#1192594 LTC#197522). - scsi: lpfc: Add warning notification period to CMF_SYNC_WQE (bsc#1203063). - scsi: lpfc: Check the return value of alloc_workqueue() (bsc#1203063). - scsi: lpfc: Copyright updates for 14.2.0.6 patches (bsc#1203063). - scsi: lpfc: Fix null ndlp ptr dereference in abnormal exit path for GFT_ID (bsc#1203063). - scsi: lpfc: Fix unsolicited FLOGI receive handling during PT2PT discovery (bsc#1203063). - scsi: lpfc: Remove SANDiags related code (bsc#1203063). - scsi: lpfc: Rework MIB Rx Monitor debug info logic (bsc#1203063). - scsi: lpfc: Update lpfc version to 14.2.0.6 (bsc#1203063). - selftests: futex: Use variable MAKE instead of make (git-fixes). - serial: 8250_dw: Store LSR into lsr_saved_flags in dw8250_tx_wait_empty() (git-fixes). - serial: fsl_lpuart: RS485 RTS polariy is inverse (git-fixes). - serial: mvebu-uart: uart2 error bits clearing (git-fixes). - serial: tegra: Change lower tolerance baud rate limit for tegra20 and tegra30 (git-fixes). - silence nfscache allocation warnings with kvzalloc (git-fixes). - spi: Fix incorrect cs_setup delay handling (git-fixes). - spi: spi-rspi: Fix PIO fallback on RZ platforms (git-fixes). - spi: synquacer: Add missing clk_disable_unprepare() (git-fixes). - spmi: trace: fix stack-out-of-bound access in SPMI tracing functions (git-fixes). - staging: rtl8712: fix use after free bugs (git-fixes). - tee: optee: Fix incorrect page free bug (git-fixes). - thermal: Fix NULL pointer dereferences in of_thermal_ functions (git-fixes). - thermal: sysfs: Fix cooling_device_stats_setup() error code path (git-fixes). - thunderbolt: Use the actual buffer in tb_async_error() (git-fixes). - tools/thermal: Fix possible path truncations (git-fixes). - tracing/histogram: Fix a potential memory leak for kstrdup() (git-fixes). - tracing/histograms: Fix memory leak problem (git-fixes). - tracing/probes: Have kprobes and uprobes use $COMM too (git-fixes). - tracing: Add ustring operation to filtering string pointers (git-fixes). - tty: serial: Fix refcount leak bug in ucc_uart.c (git-fixes). - tty: serial: lpuart: disable flow control while waiting for the transmit engine to complete (git-fixes). - tty: vt: initialize unicode screen buffer (git-fixes). - usb: dwc2: fix wrong order of phy_power_on and phy_init (git-fixes). - usb: dwc3: Switch to platform_get_irq_byname_optional() (git-fixes). - usb: dwc3: ep0: Fix delay status handling (git-fixes). - usb: dwc3: gadget: END_TRANSFER before CLEAR_STALL command (git-fixes). - usb: dwc3: gadget: Fix IN endpoint max packet size allocation (git-fixes). - usb: dwc3: gadget: Refactor dwc3_gadget_ep_dequeue (git-fixes). - usb: dwc3: gadget: Remove FS bInterval_m1 limitation (git-fixes). - usb: dwc3: gadget: Remove unnecessary checks (git-fixes). - usb: dwc3: gadget: Replace list_for_each_entry_safe() if using giveback (git-fixes). - usb: dwc3: gadget: Store resource index of start cmd (git-fixes). - usb: dwc3: qcom: fix missing optional irq warnings. - usb: gadget: mass_storage: Fix cdrom data transfers on MAC-OS (git-fixes). - usb: gadget: u_audio: fix race condition on endpoint stop (git-fixes). - usb: gadget: udc-xilinx: replace memcpy with memcpy_toio (git-fixes). - usb: gadget: uvc: call uvc uvcg_warn on completed status instead of uvcg_info (git-fixes). - usb: host: ohci-ppc-of: Fix refcount leak bug (git-fixes). - usb: renesas: Fix refcount leak bug (git-fixes). - usb: typec: altmodes/displayport: correct pin assignment for UFP receptacles (git-fixes). - usbnet: Fix linkwatch use-after-free on disconnect (git-fixes). - usbnet: smsc95xx: Fix deadlock on runtime resume (git-fixes). - vboxguest: Do not use devm for irq (git-fixes). - vfio/ccw: Remove UUID from s390 debug log (git-fixes). - video: fbdev: amba-clcd: Fix refcount leak bugs (git-fixes). - video: fbdev: arkfb: Check the size of screen before memset_io() (git-fixes). - video: fbdev: arkfb: Fix a divide-by-zero bug in ark_set_pixclock() (git-fixes). - video: fbdev: i740fb: Check the argument of i740_calc_vclk() (git-fixes). - video: fbdev: s3fb: Check the size of screen before memset_io() (git-fixes). - video: fbdev: sis: fix typos in SiS_GetModeID() (git-fixes). - video: fbdev: vt8623fb: Check the size of screen before memset_io() (git-fixes). - virtio_net: fix memory leak inside XPD_TX with mergeable (git-fixes). - vmxnet3: Implement ethtool's get_channels command (bsc#1200431). - vmxnet3: Record queue number to incoming packets (bsc#1200431). - vmxnet3: Remove useless DMA-32 fallback configuration (bsc#1200431). - vmxnet3: add command to set ring buffer sizes (bsc#1200431). - vmxnet3: add support for capability registers (bsc#1200431). - vmxnet3: add support for large passthrough BAR register (bsc#1200431). - vmxnet3: add support for out of order rx completion (bsc#1200431). - vmxnet3: disable overlay offloads if UPT device does not support (bsc#1200431). - vmxnet3: do not reschedule napi for rx processing (bsc#1200431). - vmxnet3: do not stop tx queues after netif_device_detach() (bsc#1200431). - vmxnet3: limit number of TXDs used for TSO packet (bsc#1200431). - vmxnet3: prepare for version 7 changes (bsc#1200431). - vmxnet3: switch from 'pci_' to 'dma_' API (bsc#1200431). - vmxnet3: update to version 7 (bsc#1200431). - vmxnet3: use ext1 field to indicate encapsulated packet (bsc#1200431). - vsock: Fix memory leak in vsock_connect() (git-fixes). - vsock: Set socket state back to SS_UNCONNECTED in vsock_connect_timeout() (git-fixes). - watchdog: armada_37xx_wdt: check the return value of devm_ioremap() in armada_37xx_wdt_probe() (git-fixes). - wifi: cfg80211: debugfs: fix return type in ht40allow_map_read() (git-fixes). - wifi: mac80211: Do not finalize CSA in IBSS mode if state is disconnected (git-fixes). - wifi: mac80211_hwsim: add back erroneously removed cast (git-fixes). - wifi: mac80211_hwsim: fix race condition in pending packet (git-fixes). - wifi: mac80211_hwsim: use 32-bit skb cookie (git-fixes). - x86/olpc: fix 'logical not is only applied to the left hand side' (git-fixes). - xfs: Fix assert failure in xfs_setattr_size() (git-fixes). - xfs: bunmapi has unnecessary AG lock ordering issues (git-fixes). - xfs: check sb_meta_uuid for dabuf buffer recovery (bsc#1202577). - xfs: make xfs_rtalloc_query_range input parameters const (git-fixes). - xfs: mark a data structure sick if there are cross-referencing errors (git-fixes). - xfs: only reset incore inode health state flags when reclaiming an inode (git-fixes). - xfs: prevent a UAF when log IO errors race with unmount (git-fixes). - xfs: use kmem_cache_free() for kmem_cache objects (git-fixes). - xprtrdma: Fix XDRBUF_SPARSE_PAGES support (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.93.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.93.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.93.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.93.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.93.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.93.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.93.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.93.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.93.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.93.1.x86_64.rpm True kernel-default-5.3.18-150300.59.93.1.nosrc.rpm True kernel-default-5.3.18-150300.59.93.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.93.1.150300.18.54.1.src.rpm True kernel-default-base-5.3.18-150300.59.93.1.150300.18.54.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.93.1.150300.18.54.1.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.93.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.93.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.93.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.93.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.93.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.93.1.noarch.rpm True kernel-docs-5.3.18-150300.59.93.1.noarch.rpm True kernel-docs-5.3.18-150300.59.93.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.93.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.93.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.93.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.93.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.93.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.93.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.93.1.src.rpm True kernel-obs-build-5.3.18-150300.59.93.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.93.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.93.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.93.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.93.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.93.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.93.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.93.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.93.1.x86_64.rpm True kernel-source-5.3.18-150300.59.93.1.noarch.rpm True kernel-source-5.3.18-150300.59.93.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.93.1.noarch.rpm True kernel-syms-5.3.18-150300.59.93.1.src.rpm True kernel-syms-5.3.18-150300.59.93.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.93.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.93.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.93.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.93.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.93.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.93.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.93.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.93.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.93.1.s390x.rpm True kernel-default-5.3.18-150300.59.93.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.93.1.150300.18.54.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.93.1.150300.18.54.1.s390x.rpm True kernel-default-devel-5.3.18-150300.59.93.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.93.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.93.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.93.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.93.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.93.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.93.1.s390x.rpm True kernel-syms-5.3.18-150300.59.93.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.93.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.93.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.93.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.93.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.93.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.93.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.93.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.93.1.150300.18.54.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.93.1.150300.18.54.1.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.93.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.93.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.93.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.93.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.93.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.93.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.93.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.93.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.93.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.93.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.93.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.93.1.src.rpm True dtb-al-5.3.18-150300.59.93.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.93.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.93.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.93.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.93.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.93.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.93.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.93.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.93.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.93.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.93.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.93.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.93.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.93.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.93.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.93.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.93.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.93.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.93.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.93.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.93.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.93.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.93.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.93.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.93.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.93.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.93.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.93.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.93.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.93.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.93.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.93.1.aarch64.rpm True kernel-default-5.3.18-150300.59.93.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.93.1.150300.18.54.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.93.1.150300.18.54.1.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.93.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.93.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.93.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.93.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.93.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.93.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.93.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.93.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.93.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.93.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.93.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.93.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.93.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.93.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.93.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.93.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.93.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.93.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.93.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.93.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.93.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.93.1.aarch64.rpm True openSUSE-SLE-15.3-2022-3396 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Mozilla Firefox was updated to 102.3.0esr ESR (bsc#1200793, bsc#1201758, bsc#1202645, bsc#1203477): - CVE-2022-40959: Fixed bypassing FeaturePolicy restrictions on transient pages. - CVE-2022-40960: Fixed data-race when parsing non-UTF-8 URLs in threads. - CVE-2022-40958: Fixed bypassing secure context restriction for cookies with __Host and __Secure prefix. - CVE-2022-40956: Fixed content-security-policy base-uri bypass. - CVE-2022-40957: Fixed incoherent instruction cache when building WASM on ARM64. - CVE-2022-40962: Fixed memory safety bugs. - CVE-2022-38472: Fixed a potential address bar spoofing via XSLT error handling. - CVE-2022-38473: Fixed an issue where cross-origin XSLT documents could inherit the parent's permissions. - CVE-2022-38478: Fixed various memory safety issues. - CVE-2022-38476: Fixed data race and potential use-after-free in PK11_ChangePW. - CVE-2022-38477: Fixed memory safety bugs. - CVE-2022-36319: Fixed mouse position spoofing with CSS transforms. - CVE-2022-36318: Fixed directory indexes for bundled resources reflected URL parameters. - CVE-2022-36314: Fixed unexpected network loads when opening local .lnk files. - CVE-2022-2505: Fixed memory safety bugs. - CVE-2022-34479: Fixed vulnerabilty where a popup window could be resized in a way to overlay the address bar with web content. - CVE-2022-34470: Fixed use-after-free in nsSHistory. - CVE-2022-34468: Fixed bypass of CSP sandbox header without `allow-scripts` via retargeted javascript: URI. - CVE-2022-34482: Fixed drag and drop of malicious image that could have led to malicious executable and potential code execution. - CVE-2022-34483: Fixed drag and drop of malicious image that could have led to malicious executable and potential code execution. - CVE-2022-34476: Fixed vulnerability where ASN.1 parser could have been tricked into accepting malformed ASN.1. - CVE-2022-34481: Fixed potential integer overflow in ReplaceElementsAt - CVE-2022-34474: Fixed vulnerability where sandboxed iframes could redirect to external schemes. - CVE-2022-34469: Fixed TLS certificate errors on HSTS-protected domains which could be bypassed by the user on Firefox for Android. - CVE-2022-34471: Fixed vulnerability where a compromised server could trick a browser into an addon downgrade. - CVE-2022-34472: Fixed vulnerability where an unavailable PAC file resulted in OCSP requests being blocked. - CVE-2022-34478: Fixed vulnerability where Microsoft protocols can be attacked if a user accepts a prompt. - CVE-2022-2200: Fixed vulnerability where undesired attributes could be set as part of prototype pollution. - CVE-2022-34480: Fixed free of uninitialized pointer in lg_init. - CVE-2022-34477: Fixed vulnerability in MediaError message property leaking information on cross-origin same-site pages. - CVE-2022-34475: Fixed vulnerability where the HTML Sanitizer could have been bypassed via same-origin script via use tags. - CVE-2022-34473: Fixed vulnerability where the HTML Sanitizer could have been bypassed via use tags. - CVE-2022-34484: Fixed memory safety bugs. - CVE-2022-34485: Fixed memory safety bugs. MozillaFirefox-102.3.0-150200.152.61.1.src.rpm MozillaFirefox-102.3.0-150200.152.61.1.x86_64.rpm MozillaFirefox-branding-SLE-102-150200.9.10.1.src.rpm MozillaFirefox-branding-SLE-102-150200.9.10.1.x86_64.rpm MozillaFirefox-branding-upstream-102.3.0-150200.152.61.1.x86_64.rpm MozillaFirefox-devel-102.3.0-150200.152.61.1.x86_64.rpm MozillaFirefox-translations-common-102.3.0-150200.152.61.1.x86_64.rpm MozillaFirefox-translations-other-102.3.0-150200.152.61.1.x86_64.rpm MozillaFirefox-102.3.0-150200.152.61.1.s390x.rpm MozillaFirefox-branding-SLE-102-150200.9.10.1.s390x.rpm MozillaFirefox-branding-upstream-102.3.0-150200.152.61.1.s390x.rpm MozillaFirefox-devel-102.3.0-150200.152.61.1.s390x.rpm MozillaFirefox-translations-common-102.3.0-150200.152.61.1.s390x.rpm MozillaFirefox-translations-other-102.3.0-150200.152.61.1.s390x.rpm MozillaFirefox-102.3.0-150200.152.61.1.ppc64le.rpm MozillaFirefox-branding-SLE-102-150200.9.10.1.ppc64le.rpm MozillaFirefox-branding-upstream-102.3.0-150200.152.61.1.ppc64le.rpm MozillaFirefox-devel-102.3.0-150200.152.61.1.ppc64le.rpm MozillaFirefox-translations-common-102.3.0-150200.152.61.1.ppc64le.rpm MozillaFirefox-translations-other-102.3.0-150200.152.61.1.ppc64le.rpm MozillaFirefox-102.3.0-150200.152.61.1.aarch64.rpm MozillaFirefox-branding-SLE-102-150200.9.10.1.aarch64.rpm MozillaFirefox-branding-upstream-102.3.0-150200.152.61.1.aarch64.rpm MozillaFirefox-devel-102.3.0-150200.152.61.1.aarch64.rpm MozillaFirefox-translations-common-102.3.0-150200.152.61.1.aarch64.rpm MozillaFirefox-translations-other-102.3.0-150200.152.61.1.aarch64.rpm openSUSE-SLE-15.3-2022-3558 low SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sled fixes the following issues: Update the release notes to version 15.3.20220831 (bsc#933411) - Update outdated links (bsc#1187664) release-notes-sled-15.3.20220831-150300.3.6.1.noarch.rpm release-notes-sled-15.3.20220831-150300.3.6.1.src.rpm openSUSE-SLE-15.3-2022-3821 moderate SUSE Updates openSUSE-SLE 15.3 This update for adcli fixes the following issues: - Remove errx() calls on error conditions to execute the cleanup function and delete the krb5 snippets created in /tmp (bsc#1202647) - Set umask before calling mkdtemp (bsc#1202647) adcli-0.8.2-150200.9.9.1.src.rpm adcli-0.8.2-150200.9.9.1.x86_64.rpm adcli-doc-0.8.2-150200.9.9.1.x86_64.rpm adcli-0.8.2-150200.9.9.1.s390x.rpm adcli-doc-0.8.2-150200.9.9.1.s390x.rpm adcli-0.8.2-150200.9.9.1.ppc64le.rpm adcli-doc-0.8.2-150200.9.9.1.ppc64le.rpm adcli-0.8.2-150200.9.9.1.aarch64.rpm adcli-doc-0.8.2-150200.9.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3612 moderate SUSE Updates openSUSE-SLE 15.3 This update for SUSEConnect fixes the following issues: - Allow suseconnect-keepalive.service to recognize a configured proxy. (bsc#1200994) - Remove the `WantedBy` statement from suseconnect-keepalive.service since it's only to be triggered by a systemd timer. - SUSEConnect will now ensure that the `PROXY_ENABLED` environment variable is honored. - Write services with ssl_verify=no when using connect with insecure - Rely on system-wide defaults for enabling the keepalive timer by systemd-presets-branding-SLE. (bsc#1200641) SUSEConnect-0.3.36-150300.20.6.1.src.rpm SUSEConnect-0.3.36-150300.20.6.1.x86_64.rpm SUSEConnect-0.3.36-150300.20.6.1.s390x.rpm SUSEConnect-0.3.36-150300.20.6.1.ppc64le.rpm SUSEConnect-0.3.36-150300.20.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3426 moderate SUSE Updates openSUSE-SLE 15.3 This update for osinfo-db fixes the following issues: - Fail to deploy sle15sp5 guest via virt-install with osinfo (bsc#1202827) - Add support for openSUSE Leap 15.5, SLES 15.5, and SLE Micro 5.3 - Update to database version 20220516 osinfo-db-20220727-150300.3.8.1.noarch.rpm osinfo-db-20220727-150300.3.8.1.src.rpm openSUSE-SLE-15.3-2022-3408 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP1 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36516: Fixed an issue in the mixed IPID assignment method where an attacker was able to inject data into or terminate a victim's TCP session (bnc#1196616). - CVE-2021-4203: Fixed use-after-free read flaw that was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (bnc#1194535). - CVE-2022-1012: Fixed a memory leak problem that was found in the TCP source port generation algorithm in net/ipv4/tcp.c (bnc#1199482). - CVE-2022-20368: Fixed slab-out-of-bounds access in packet_recvmsg() (bsc#1202346). - CVE-2022-20369: Fixed out of bounds write in v4l2_m2m_querybuf of v4l2-mem2mem.c (bnc#1202347). - CVE-2022-21385: Fixed a flaw in net_rds_alloc_sgs() that allowed unprivileged local users to crash the machine (bnc#1202897). - CVE-2022-2588: Fixed use-after-free in cls_route (bsc#1202096). - CVE-2022-26373: Fixed non-transparent sharing of return predictor targets between contexts in some Intel Processors (bnc#1201726). - CVE-2022-2639: Fixed an integer coercion error that was found in the openvswitch kernel module (bnc#1202154). - CVE-2022-2663: Fixed an issue that was found in nf_conntrack_irc where the message handling could be confused and incorrectly matches the message (bnc#1202097). - CVE-2022-29581: Fixed improper update of reference count vulnerability in net/sched that allowed a local attacker to cause privilege escalation to root (bnc#1199665). - CVE-2022-2977: Fixed reference counting for struct tpm_chip (bsc#1202672). - CVE-2022-3028: Fixed race condition that was found in the IP framework for transforming packets (XFRM subsystem) (bnc#1202898). - CVE-2022-36879: Fixed an issue in xfrm_expand_policies in net/xfrm/xfrm_policy.c where a refcount could be dropped twice (bnc#1201948). - CVE-2022-39188: Fixed race condition in include/asm-generic/tlb.h where a device driver can free a page while it still has stale TLB entries (bnc#1203107). The following non-security bugs were fixed: - rpm: Fix parsing of rpm/macros.kernel-source on SLE12 (bsc#1201019). - cifs: fix error paths in cifs_tree_connect() (bsc#1177440). - cifs: fix uninitialized pointer in error case in dfs_cache_get_tgt_share (bsc#1188944). - cifs: report error instead of invalid when revalidating a dentry fails (bsc#1177440). - cifs: skip trailing separators of prefix paths (bsc#1188944). - kernel-obs-build: include qemu_fw_cfg (boo#1201705) - lightnvm: Remove lightnvm implemenation (bsc#1191881 bsc#1201420 ZDI-CAN-17325). - md/bitmap: do not set sb values if can't pass sanity check (bsc#1197158). - mm/rmap.c: do not reuse anon_vma if we just want a copy (git-fixes, bsc#1203098). - mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (git-fixes, bsc#1203098). - net_sched: cls_route: disallow handle of 0 (bsc#1202393). - net_sched: cls_route: disallow handle of 0 (bsc#1202393). - objtool: Add --backtrace support (bsc#1202396). - objtool: Add support for intra-function calls (bsc#1202396). - objtool: Allow no-op CFI ops in alternatives (bsc#1202396). - objtool: Convert insn type to enum (bsc#1202396). - objtool: Do not use ignore flag for fake jumps (bsc#1202396). - objtool: Fix !CFI insn_state propagation (bsc#1202396). - objtool: Fix ORC vs alternatives (bsc#1202396). - objtool: Fix sibling call detection (bsc#1202396). - objtool: Make handle_insn_ops() unconditional (bsc#1202396). - objtool: Remove INSN_STACK (bsc#1202396). - objtool: Remove check preventing branches within alternative (bsc#1202396). - objtool: Rename elf_open() to prevent conflict with libelf from elftoolchain (bsc#1202396). - objtool: Rename struct cfi_state (bsc#1202396). - objtool: Rework allocating stack_ops on decode (bsc#1202396). - objtool: Rewrite alt->skip_orig (bsc#1202396). - objtool: Set insn->func for alternatives (bsc#1202396). - objtool: Support conditional retpolines (bsc#1202396). - objtool: Support multiple stack_op per instruction (bsc#1202396). - objtool: Track original function across branches (bsc#1202396). - objtool: Uniquely identify alternative instruction groups (bsc#1202396). - objtool: Use Elf_Scn typedef instead of assuming struct name (bsc#1202396). - tcp: add some entropy in __inet_hash_connect() (bsc#1180153 bsc#1202335). - tcp: change source port randomizarion at connect() time (bsc#1180153 bsc#1202335). kernel-debug-4.12.14-150100.197.123.1.nosrc.rpm True kernel-debug-base-4.12.14-150100.197.123.1.x86_64.rpm True kernel-default-4.12.14-150100.197.123.1.nosrc.rpm True kernel-kvmsmall-4.12.14-150100.197.123.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-150100.197.123.1.x86_64.rpm True kernel-vanilla-4.12.14-150100.197.123.1.nosrc.rpm True kernel-vanilla-4.12.14-150100.197.123.1.x86_64.rpm True kernel-vanilla-base-4.12.14-150100.197.123.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-150100.197.123.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.123.1.x86_64.rpm True kernel-default-man-4.12.14-150100.197.123.1.s390x.rpm True kernel-vanilla-4.12.14-150100.197.123.1.s390x.rpm True kernel-vanilla-base-4.12.14-150100.197.123.1.s390x.rpm True kernel-vanilla-devel-4.12.14-150100.197.123.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.123.1.s390x.rpm True kernel-zfcpdump-4.12.14-150100.197.123.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-150100.197.123.1.s390x.rpm True kernel-debug-base-4.12.14-150100.197.123.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.123.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-150100.197.123.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-150100.197.123.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.123.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.123.1.aarch64.rpm True kernel-vanilla-base-4.12.14-150100.197.123.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-150100.197.123.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.123.1.aarch64.rpm True openSUSE-SLE-15.3-2022-3325 important SUSE Updates openSUSE-SLE 15.3 This update for go1.18 fixes the following issues: Update to go version 1.18.6 (bsc#1193742): - CVE-2022-27664: Fixed DoS in net/http caused by mishandled server errors after sending GOAWAY (bsc#1203185). go1.18-1.18.6-150000.1.31.1.src.rpm go1.18-1.18.6-150000.1.31.1.x86_64.rpm go1.18-doc-1.18.6-150000.1.31.1.x86_64.rpm go1.18-race-1.18.6-150000.1.31.1.x86_64.rpm go1.18-1.18.6-150000.1.31.1.s390x.rpm go1.18-doc-1.18.6-150000.1.31.1.s390x.rpm go1.18-1.18.6-150000.1.31.1.ppc64le.rpm go1.18-doc-1.18.6-150000.1.31.1.ppc64le.rpm go1.18-1.18.6-150000.1.31.1.aarch64.rpm go1.18-doc-1.18.6-150000.1.31.1.aarch64.rpm go1.18-race-1.18.6-150000.1.31.1.aarch64.rpm openSUSE-SLE-15.3-2022-3326 important SUSE Updates openSUSE-SLE 15.3 This update for go1.19 fixes the following issues: Update to go version 1.19.1 (bsc#1200441): - CVE-2022-27664: Fixed DoS in net/http caused by mishandled server errors after sending GOAWAY (bsc#1203185). - CVE-2022-32190: Fixed missing stripping of relative path components in net/url JoinPath (bsc#1203186). go1.19-1.19.1-150000.1.9.1.src.rpm go1.19-1.19.1-150000.1.9.1.x86_64.rpm go1.19-doc-1.19.1-150000.1.9.1.x86_64.rpm go1.19-race-1.19.1-150000.1.9.1.x86_64.rpm go1.19-1.19.1-150000.1.9.1.s390x.rpm go1.19-doc-1.19.1-150000.1.9.1.s390x.rpm go1.19-1.19.1-150000.1.9.1.ppc64le.rpm go1.19-doc-1.19.1-150000.1.9.1.ppc64le.rpm go1.19-1.19.1-150000.1.9.1.aarch64.rpm go1.19-doc-1.19.1-150000.1.9.1.aarch64.rpm go1.19-race-1.19.1-150000.1.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3228 critical SUSE Updates openSUSE-SLE 15.3 This update for regionServiceClientConfigEC2 fixes the following issues: - Update to version 4.1.0 (bsc#1203215) + New certs for 52.79.82.165 and 54.247.166.75 regionServiceClientConfigEC2-4.1.0-150000.3.24.1.noarch.rpm regionServiceClientConfigEC2-4.1.0-150000.3.24.1.src.rpm openSUSE-SLE-15.3-2022-3907 moderate SUSE Updates openSUSE-SLE 15.3 This update for gstreamer-plugins-base fixes the following issues: - CVE-2021-3522: Fixed ID3v2 tag frame size check and potential invalid reads (bsc#1185448). gstreamer-plugins-base-1.16.3-150200.4.6.2.src.rpm gstreamer-plugins-base-1.16.3-150200.4.6.2.x86_64.rpm gstreamer-plugins-base-32bit-1.16.3-150200.4.6.2.x86_64.rpm gstreamer-plugins-base-devel-1.16.3-150200.4.6.2.x86_64.rpm gstreamer-plugins-base-devel-32bit-1.16.3-150200.4.6.2.x86_64.rpm gstreamer-plugins-base-doc-1.16.3-150200.4.6.2.x86_64.rpm gstreamer-plugins-base-lang-1.16.3-150200.4.6.2.noarch.rpm libgstallocators-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgstallocators-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm libgstapp-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgstapp-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm libgstaudio-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgstaudio-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm libgstfft-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgstfft-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm libgstgl-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgstgl-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm libgstpbutils-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgstpbutils-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm libgstriff-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgstriff-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm libgstrtp-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgstrtp-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm libgstrtsp-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgstrtsp-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm libgstsdp-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgstsdp-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm libgsttag-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgsttag-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm libgstvideo-1_0-0-1.16.3-150200.4.6.2.x86_64.rpm libgstvideo-1_0-0-32bit-1.16.3-150200.4.6.2.x86_64.rpm typelib-1_0-GstAllocators-1_0-1.16.3-150200.4.6.2.x86_64.rpm typelib-1_0-GstApp-1_0-1.16.3-150200.4.6.2.x86_64.rpm typelib-1_0-GstAudio-1_0-1.16.3-150200.4.6.2.x86_64.rpm typelib-1_0-GstGL-1_0-1.16.3-150200.4.6.2.x86_64.rpm typelib-1_0-GstPbutils-1_0-1.16.3-150200.4.6.2.x86_64.rpm typelib-1_0-GstRtp-1_0-1.16.3-150200.4.6.2.x86_64.rpm typelib-1_0-GstRtsp-1_0-1.16.3-150200.4.6.2.x86_64.rpm typelib-1_0-GstSdp-1_0-1.16.3-150200.4.6.2.x86_64.rpm typelib-1_0-GstTag-1_0-1.16.3-150200.4.6.2.x86_64.rpm typelib-1_0-GstVideo-1_0-1.16.3-150200.4.6.2.x86_64.rpm gstreamer-plugins-base-1.16.3-150200.4.6.2.s390x.rpm gstreamer-plugins-base-devel-1.16.3-150200.4.6.2.s390x.rpm gstreamer-plugins-base-doc-1.16.3-150200.4.6.2.s390x.rpm libgstallocators-1_0-0-1.16.3-150200.4.6.2.s390x.rpm libgstapp-1_0-0-1.16.3-150200.4.6.2.s390x.rpm libgstaudio-1_0-0-1.16.3-150200.4.6.2.s390x.rpm libgstfft-1_0-0-1.16.3-150200.4.6.2.s390x.rpm libgstgl-1_0-0-1.16.3-150200.4.6.2.s390x.rpm libgstpbutils-1_0-0-1.16.3-150200.4.6.2.s390x.rpm libgstriff-1_0-0-1.16.3-150200.4.6.2.s390x.rpm libgstrtp-1_0-0-1.16.3-150200.4.6.2.s390x.rpm libgstrtsp-1_0-0-1.16.3-150200.4.6.2.s390x.rpm libgstsdp-1_0-0-1.16.3-150200.4.6.2.s390x.rpm libgsttag-1_0-0-1.16.3-150200.4.6.2.s390x.rpm libgstvideo-1_0-0-1.16.3-150200.4.6.2.s390x.rpm typelib-1_0-GstAllocators-1_0-1.16.3-150200.4.6.2.s390x.rpm typelib-1_0-GstApp-1_0-1.16.3-150200.4.6.2.s390x.rpm typelib-1_0-GstAudio-1_0-1.16.3-150200.4.6.2.s390x.rpm typelib-1_0-GstGL-1_0-1.16.3-150200.4.6.2.s390x.rpm typelib-1_0-GstPbutils-1_0-1.16.3-150200.4.6.2.s390x.rpm typelib-1_0-GstRtp-1_0-1.16.3-150200.4.6.2.s390x.rpm typelib-1_0-GstRtsp-1_0-1.16.3-150200.4.6.2.s390x.rpm typelib-1_0-GstSdp-1_0-1.16.3-150200.4.6.2.s390x.rpm typelib-1_0-GstTag-1_0-1.16.3-150200.4.6.2.s390x.rpm typelib-1_0-GstVideo-1_0-1.16.3-150200.4.6.2.s390x.rpm gstreamer-plugins-base-1.16.3-150200.4.6.2.ppc64le.rpm gstreamer-plugins-base-devel-1.16.3-150200.4.6.2.ppc64le.rpm gstreamer-plugins-base-doc-1.16.3-150200.4.6.2.ppc64le.rpm libgstallocators-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm libgstapp-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm libgstaudio-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm libgstfft-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm libgstgl-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm libgstpbutils-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm libgstriff-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm libgstrtp-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm libgstrtsp-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm libgstsdp-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm libgsttag-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm libgstvideo-1_0-0-1.16.3-150200.4.6.2.ppc64le.rpm typelib-1_0-GstAllocators-1_0-1.16.3-150200.4.6.2.ppc64le.rpm typelib-1_0-GstApp-1_0-1.16.3-150200.4.6.2.ppc64le.rpm typelib-1_0-GstAudio-1_0-1.16.3-150200.4.6.2.ppc64le.rpm typelib-1_0-GstGL-1_0-1.16.3-150200.4.6.2.ppc64le.rpm typelib-1_0-GstPbutils-1_0-1.16.3-150200.4.6.2.ppc64le.rpm typelib-1_0-GstRtp-1_0-1.16.3-150200.4.6.2.ppc64le.rpm typelib-1_0-GstRtsp-1_0-1.16.3-150200.4.6.2.ppc64le.rpm typelib-1_0-GstSdp-1_0-1.16.3-150200.4.6.2.ppc64le.rpm typelib-1_0-GstTag-1_0-1.16.3-150200.4.6.2.ppc64le.rpm typelib-1_0-GstVideo-1_0-1.16.3-150200.4.6.2.ppc64le.rpm gstreamer-plugins-base-1.16.3-150200.4.6.2.aarch64.rpm gstreamer-plugins-base-devel-1.16.3-150200.4.6.2.aarch64.rpm gstreamer-plugins-base-doc-1.16.3-150200.4.6.2.aarch64.rpm libgstallocators-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm libgstapp-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm libgstaudio-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm libgstfft-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm libgstgl-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm libgstpbutils-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm libgstriff-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm libgstrtp-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm libgstrtsp-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm libgstsdp-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm libgsttag-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm libgstvideo-1_0-0-1.16.3-150200.4.6.2.aarch64.rpm typelib-1_0-GstAllocators-1_0-1.16.3-150200.4.6.2.aarch64.rpm typelib-1_0-GstApp-1_0-1.16.3-150200.4.6.2.aarch64.rpm typelib-1_0-GstAudio-1_0-1.16.3-150200.4.6.2.aarch64.rpm typelib-1_0-GstGL-1_0-1.16.3-150200.4.6.2.aarch64.rpm typelib-1_0-GstPbutils-1_0-1.16.3-150200.4.6.2.aarch64.rpm typelib-1_0-GstRtp-1_0-1.16.3-150200.4.6.2.aarch64.rpm typelib-1_0-GstRtsp-1_0-1.16.3-150200.4.6.2.aarch64.rpm typelib-1_0-GstSdp-1_0-1.16.3-150200.4.6.2.aarch64.rpm typelib-1_0-GstTag-1_0-1.16.3-150200.4.6.2.aarch64.rpm typelib-1_0-GstVideo-1_0-1.16.3-150200.4.6.2.aarch64.rpm openSUSE-SLE-15.3-2022-3267 important SUSE Updates openSUSE-SLE 15.3 This update for libzapojit fixes the following issues: - CVE-2021-39360: Fixed missing guard against invalid SSL certificates (bsc#1189844). libzapojit-0.0.3-150000.3.5.1.src.rpm libzapojit-0_0-0-0.0.3-150000.3.5.1.x86_64.rpm libzapojit-devel-0.0.3-150000.3.5.1.x86_64.rpm typelib-1_0-Zpj-0_0-0.0.3-150000.3.5.1.x86_64.rpm libzapojit-0_0-0-0.0.3-150000.3.5.1.s390x.rpm libzapojit-devel-0.0.3-150000.3.5.1.s390x.rpm typelib-1_0-Zpj-0_0-0.0.3-150000.3.5.1.s390x.rpm libzapojit-0_0-0-0.0.3-150000.3.5.1.ppc64le.rpm libzapojit-devel-0.0.3-150000.3.5.1.ppc64le.rpm typelib-1_0-Zpj-0_0-0.0.3-150000.3.5.1.ppc64le.rpm libzapojit-0_0-0-0.0.3-150000.3.5.1.aarch64.rpm libzapojit-devel-0.0.3-150000.3.5.1.aarch64.rpm typelib-1_0-Zpj-0_0-0.0.3-150000.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-3667 moderate SUSE Updates openSUSE-SLE 15.3 This update for clone-master-clean-up fixes the following issues: - CVE-2021-32000: Fixed some potentially dangerous file system operations (bsc#1181050). Bugfixes: - Fixed clone-master-clean-up failing to remove btrfs snapshots (bsc#1203651). clone-master-clean-up-1.8-150100.3.14.1.noarch.rpm clone-master-clean-up-1.8-150100.3.14.1.src.rpm openSUSE-SLE-15.3-2022-3259 important SUSE Updates openSUSE-SLE 15.3 This update for rubygem-kramdown fixes the following issues: - CVE-2020-14001: Fixed processing template options inside documents allowing unintended read access or embedded Ruby code execution (bsc#1174297). ruby2.5-rubygem-kramdown-1.15.0-150000.3.3.1.x86_64.rpm ruby2.5-rubygem-kramdown-doc-1.15.0-150000.3.3.1.x86_64.rpm ruby2.5-rubygem-kramdown-testsuite-1.15.0-150000.3.3.1.x86_64.rpm rubygem-kramdown-1.15.0-150000.3.3.1.src.rpm ruby2.5-rubygem-kramdown-1.15.0-150000.3.3.1.s390x.rpm ruby2.5-rubygem-kramdown-doc-1.15.0-150000.3.3.1.s390x.rpm ruby2.5-rubygem-kramdown-testsuite-1.15.0-150000.3.3.1.s390x.rpm ruby2.5-rubygem-kramdown-1.15.0-150000.3.3.1.ppc64le.rpm ruby2.5-rubygem-kramdown-doc-1.15.0-150000.3.3.1.ppc64le.rpm ruby2.5-rubygem-kramdown-testsuite-1.15.0-150000.3.3.1.ppc64le.rpm ruby2.5-rubygem-kramdown-1.15.0-150000.3.3.1.aarch64.rpm ruby2.5-rubygem-kramdown-doc-1.15.0-150000.3.3.1.aarch64.rpm ruby2.5-rubygem-kramdown-testsuite-1.15.0-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3351 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - CVE-2022-32893: Fixed several crashes and rendering issues (bsc#1202807). - Fixed WebKitGTK not allow to be used from non-main threads (bsc#1202169). libjavascriptcoregtk-4_0-18-2.36.7-150200.44.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.36.7-150200.44.1.x86_64.rpm libwebkit2gtk-4_0-37-2.36.7-150200.44.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.36.7-150200.44.1.x86_64.rpm libwebkit2gtk3-lang-2.36.7-150200.44.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.36.7-150200.44.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.36.7-150200.44.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.7-150200.44.1.x86_64.rpm webkit-jsc-4-2.36.7-150200.44.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.36.7-150200.44.1.x86_64.rpm webkit2gtk3-2.36.7-150200.44.1.src.rpm webkit2gtk3-devel-2.36.7-150200.44.1.x86_64.rpm webkit2gtk3-minibrowser-2.36.7-150200.44.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.36.7-150200.44.1.s390x.rpm libwebkit2gtk-4_0-37-2.36.7-150200.44.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.36.7-150200.44.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.36.7-150200.44.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.7-150200.44.1.s390x.rpm webkit-jsc-4-2.36.7-150200.44.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.36.7-150200.44.1.s390x.rpm webkit2gtk3-devel-2.36.7-150200.44.1.s390x.rpm webkit2gtk3-minibrowser-2.36.7-150200.44.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.36.7-150200.44.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.36.7-150200.44.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.36.7-150200.44.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.36.7-150200.44.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.7-150200.44.1.ppc64le.rpm webkit-jsc-4-2.36.7-150200.44.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.36.7-150200.44.1.ppc64le.rpm webkit2gtk3-devel-2.36.7-150200.44.1.ppc64le.rpm webkit2gtk3-minibrowser-2.36.7-150200.44.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.36.7-150200.44.1.aarch64.rpm libwebkit2gtk-4_0-37-2.36.7-150200.44.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.7-150200.44.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.36.7-150200.44.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.7-150200.44.1.aarch64.rpm webkit-jsc-4-2.36.7-150200.44.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.36.7-150200.44.1.aarch64.rpm webkit2gtk3-devel-2.36.7-150200.44.1.aarch64.rpm webkit2gtk3-minibrowser-2.36.7-150200.44.1.aarch64.rpm openSUSE-SLE-15.3-2022-3307 moderate SUSE Updates openSUSE-SLE 15.3 This update for sqlite3 fixes the following issues: Security issues fixed: - CVE-2022-35737: Fixed an array-bounds overflow if billions of bytes are used in a string argument to a C API (bnc#1201783). - CVE-2021-36690: Fixed an issue with the SQLite Expert extension when a column has no collating sequence (bsc#1189802). - Package the Tcl bindings here again so that we only ship one copy of SQLite (bsc#1195773). sqlite was updated to 3.39.3: * Use a statement journal on DML statement affecting two or more database rows if the statement makes use of a SQL functions that might abort. * Use a mutex to protect the PRAGMA temp_store_directory and PRAGMA data_store_directory statements, even though they are decremented and documented as not being threadsafe. Update to 3.39.2: * Fix a performance regression in the query planner associated with rearranging the order of FROM clause terms in the presences of a LEFT JOIN. * Apply fixes for CVE-2022-35737, Chromium bugs 1343348 and 1345947, forum post 3607259d3c, and other minor problems discovered by internal testing. [boo#1201783] Update to 3.39.1: * Fix an incorrect result from a query that uses a view that contains a compound SELECT in which only one arm contains a RIGHT JOIN and where the view is not the first FROM clause term of the query that contains the view * Fix a long-standing problem with ALTER TABLE RENAME that can only arise if the sqlite3_limit(SQLITE_LIMIT_SQL_LENGTH) is set to a very small value. * Fix a long-standing problem in FTS3 that can only arise when compiled with the SQLITE_ENABLE_FTS3_PARENTHESIS compile-time option. * Fix the initial-prefix optimization for the REGEXP extension so that it works correctly even if the prefix contains characters that require a 3-byte UTF8 encoding. * Enhance the sqlite_stmt virtual table so that it buffers all of its output. Update to 3.39.0: * Add (long overdue) support for RIGHT and FULL OUTER JOIN * Add new binary comparison operators IS NOT DISTINCT FROM and IS DISTINCT FROM that are equivalent to IS and IS NOT, respective, for compatibility with PostgreSQL and SQL standards * Add a new return code (value "3") from the sqlite3_vtab_distinct() interface that indicates a query that has both DISTINCT and ORDER BY clauses * Added the sqlite3_db_name() interface * The unix os interface resolves all symbolic links in database filenames to create a canonical name for the database before the file is opened * Defer materializing views until the materialization is actually needed, thus avoiding unnecessary work if the materialization turns out to never be used * The HAVING clause of a SELECT statement is now allowed on any aggregate query, even queries that do not have a GROUP BY clause * Many microoptimizations collectively reduce CPU cycles by about 2.3%. Update to 3.38.5: * Fix a blunder in the CLI of the 3.38.4 release Update to 3.38.4: * fix a byte-code problem in the Bloom filter pull-down optimization added by release 3.38.0 in which an error in the byte code causes the byte code engine to enter an infinite loop when the pull-down optimization encounters a NULL key Update to 3.38.3: * Fix a case of the query planner be overly aggressive with optimizing automatic-index and Bloom-filter construction, using inappropriate ON clause terms to restrict the size of the automatic-index or Bloom filter, and resulting in missing rows in the output. * Other minor patches. See the timeline for details. Update to 3.38.2: * Fix a problem with the Bloom filter optimization that might cause an incorrect answer when doing a LEFT JOIN with a WHERE clause constraint that says that one of the columns on the right table of the LEFT JOIN is NULL. * Other minor patches. - Package the Tcl bindings here again so that we only ship one copy of SQLite (bsc#1195773). Update to 3.38.1: * Fix problems with the new Bloom filter optimization that might cause some obscure queries to get an incorrect answer. * Fix the localtime modifier of the date and time functions so that it preserves fractional seconds. * Fix the sqlite_offset SQL function so that it works correctly even in corner cases such as when the argument is a virtual column or the column of a view. * Fix row value IN operator constraints on virtual tables so that they work correctly even if the virtual table implementation relies on bytecode to filter rows that do not satisfy the constraint. * Other minor fixes to assert() statements, test cases, and documentation. See the source code timeline for details. Update to 3.38.0 * Add the -> and ->> operators for easier processing of JSON * The JSON functions are now built-ins * Enhancements to date and time functions * Rename the printf() SQL function to format() for better compatibility, with alias for backwards compatibility. * Add the sqlite3_error_offset() interface for helping localize an SQL error to a specific character in the input SQL text * Enhance the interface to virtual tables * CLI columnar output modes are enhanced to correctly handle tabs and newlines embedded in text, and add options like "--wrap N", "--wordwrap on", and "--quote" to the columnar output modes. * Query planner enhancements using a Bloom filter to speed up large analytic queries, and a balanced merge tree to evaluate UNION or UNION ALL compound SELECT statements that have an ORDER BY clause. * The ALTER TABLE statement is changed to silently ignores entries in the sqlite_schema table that do not parse when PRAGMA writable_schema=ON Update to 3.37.2: * Fix a bug introduced in version 3.35.0 (2021-03-12) that can cause database corruption if a SAVEPOINT is rolled back while in PRAGMA temp_store=MEMORY mode, and other changes are made, and then the outer transaction commits * Fix a long-standing problem with ON DELETE CASCADE and ON UPDATE CASCADE in which a cache of the bytecode used to implement the cascading change was not being reset following a local DDL change Update to 3.37.1: * Fix a bug introduced by the UPSERT enhancements of version 3.35.0 that can cause incorrect byte-code to be generated for some obscure but valid SQL, possibly resulting in a NULL- pointer dereference. * Fix an OOB read that can occur in FTS5 when reading corrupt database files. * Improved robustness of the --safe option in the CLI. * Other minor fixes to assert() statements and test cases. Updated to 3.37.0: * STRICT tables provide a prescriptive style of data type management, for developers who prefer that kind of thing. * When adding columns that contain a CHECK constraint or a generated column containing a NOT NULL constraint, the ALTER TABLE ADD COLUMN now checks new constraints against preexisting rows in the database and will only proceed if no constraints are violated. * Added the PRAGMA table_list statement. * Add the .connection command, allowing the CLI to keep multiple database connections open at the same time. * Add the --safe command-line option that disables dot-commands and SQL statements that might cause side-effects that extend beyond the single database file named on the command-line. * CLI: Performance improvements when reading SQL statements that span many lines. * Added the sqlite3_autovacuum_pages() interface. * The sqlite3_deserialize() does not and has never worked for the TEMP database. That limitation is now noted in the documentation. * The query planner now omits ORDER BY clauses on subqueries and views if removing those clauses does not change the semantics of the query. * The generate_series table-valued function extension is modified so that the first parameter ("START") is now required. This is done as a way to demonstrate how to write table-valued functions with required parameters. The legacy behavior is available using the -DZERO_ARGUMENT_GENERATE_SERIES compile-time option. * Added new sqlite3_changes64() and sqlite3_total_changes64() interfaces. * Added the SQLITE_OPEN_EXRESCODE flag option to sqlite3_open_v2(). * Use less memory to hold the database schema. * bsc#1189802, CVE-2021-36690: Fix an issue with the SQLite Expert extension when a column has no collating sequence. libsqlite3-0-3.39.3-150000.3.17.1.x86_64.rpm libsqlite3-0-32bit-3.39.3-150000.3.17.1.x86_64.rpm sqlite3-3.39.3-150000.3.17.1.src.rpm sqlite3-3.39.3-150000.3.17.1.x86_64.rpm sqlite3-devel-3.39.3-150000.3.17.1.x86_64.rpm sqlite3-doc-3.39.3-150000.3.17.1.noarch.rpm sqlite3-tcl-3.39.3-150000.3.17.1.x86_64.rpm libsqlite3-0-3.39.3-150000.3.17.1.s390x.rpm sqlite3-3.39.3-150000.3.17.1.s390x.rpm sqlite3-devel-3.39.3-150000.3.17.1.s390x.rpm sqlite3-tcl-3.39.3-150000.3.17.1.s390x.rpm libsqlite3-0-3.39.3-150000.3.17.1.ppc64le.rpm sqlite3-3.39.3-150000.3.17.1.ppc64le.rpm sqlite3-devel-3.39.3-150000.3.17.1.ppc64le.rpm sqlite3-tcl-3.39.3-150000.3.17.1.ppc64le.rpm libsqlite3-0-3.39.3-150000.3.17.1.aarch64.rpm sqlite3-3.39.3-150000.3.17.1.aarch64.rpm sqlite3-devel-3.39.3-150000.3.17.1.aarch64.rpm sqlite3-tcl-3.39.3-150000.3.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-3397 important SUSE Updates openSUSE-SLE 15.3 This update for snakeyaml fixes the following issues: - CVE-2022-38750: Fixed uncaught exception in org.yaml.snakeyaml.constructor.BaseConstructor.constructObject (bsc#1203158). - CVE-2022-38749: Fixed StackOverflowError for many open unmatched brackets (bsc#1203149). - CVE-2022-38752: Fixed uncaught exception in java.base/java.util.ArrayList.hashCode (bsc#1203154). - CVE-2022-38751: Fixed unrestricted data matched with Regular Expressions (bsc#1203153). - CVE-2022-25857: Fixed denial of service vulnerability due missing to nested depth limitation for collections (bsc#1202932). snakeyaml-1.31-150200.3.8.1.noarch.rpm snakeyaml-1.31-150200.3.8.1.src.rpm snakeyaml-javadoc-1.31-150200.3.8.1.noarch.rpm openSUSE-SLE-15.3-2022-3552 low SUSE Updates openSUSE-SLE 15.3 This update for ImageMagick fixes the following issues: - CVE-2021-3574: Fixed memory leaks with convert command (bsc#1203212). ImageMagick-7.0.7.34-150200.10.39.1.src.rpm ImageMagick-7.0.7.34-150200.10.39.1.x86_64.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.39.1.x86_64.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.39.1.x86_64.rpm ImageMagick-devel-32bit-7.0.7.34-150200.10.39.1.x86_64.rpm ImageMagick-devel-7.0.7.34-150200.10.39.1.x86_64.rpm ImageMagick-doc-7.0.7.34-150200.10.39.1.noarch.rpm ImageMagick-extra-7.0.7.34-150200.10.39.1.x86_64.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-150200.10.39.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.39.1.x86_64.rpm libMagick++-devel-32bit-7.0.7.34-150200.10.39.1.x86_64.rpm libMagick++-devel-7.0.7.34-150200.10.39.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-150200.10.39.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.39.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-150200.10.39.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.39.1.x86_64.rpm perl-PerlMagick-7.0.7.34-150200.10.39.1.x86_64.rpm ImageMagick-7.0.7.34-150200.10.39.1.s390x.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.39.1.s390x.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.39.1.s390x.rpm ImageMagick-devel-7.0.7.34-150200.10.39.1.s390x.rpm ImageMagick-extra-7.0.7.34-150200.10.39.1.s390x.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.39.1.s390x.rpm libMagick++-devel-7.0.7.34-150200.10.39.1.s390x.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.39.1.s390x.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.39.1.s390x.rpm perl-PerlMagick-7.0.7.34-150200.10.39.1.s390x.rpm ImageMagick-7.0.7.34-150200.10.39.1.ppc64le.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.39.1.ppc64le.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.39.1.ppc64le.rpm ImageMagick-devel-7.0.7.34-150200.10.39.1.ppc64le.rpm ImageMagick-extra-7.0.7.34-150200.10.39.1.ppc64le.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.39.1.ppc64le.rpm libMagick++-devel-7.0.7.34-150200.10.39.1.ppc64le.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.39.1.ppc64le.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.39.1.ppc64le.rpm perl-PerlMagick-7.0.7.34-150200.10.39.1.ppc64le.rpm ImageMagick-7.0.7.34-150200.10.39.1.aarch64.rpm ImageMagick-config-7-SUSE-7.0.7.34-150200.10.39.1.aarch64.rpm ImageMagick-config-7-upstream-7.0.7.34-150200.10.39.1.aarch64.rpm ImageMagick-devel-7.0.7.34-150200.10.39.1.aarch64.rpm ImageMagick-extra-7.0.7.34-150200.10.39.1.aarch64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.39.1.aarch64.rpm libMagick++-devel-7.0.7.34-150200.10.39.1.aarch64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.39.1.aarch64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.39.1.aarch64.rpm perl-PerlMagick-7.0.7.34-150200.10.39.1.aarch64.rpm openSUSE-SLE-15.3-2022-3990 moderate SUSE Updates openSUSE-SLE 15.3 This update for LibVNCServer fixes the following issues: - CVE-2020-29260: Fixed memory leakage via rfbClientCleanup() (bsc#1203106). LibVNCServer-0.9.10-150000.4.29.1.src.rpm LibVNCServer-devel-0.9.10-150000.4.29.1.x86_64.rpm libvncclient0-0.9.10-150000.4.29.1.x86_64.rpm libvncserver0-0.9.10-150000.4.29.1.x86_64.rpm LibVNCServer-devel-0.9.10-150000.4.29.1.s390x.rpm libvncclient0-0.9.10-150000.4.29.1.s390x.rpm libvncserver0-0.9.10-150000.4.29.1.s390x.rpm LibVNCServer-devel-0.9.10-150000.4.29.1.ppc64le.rpm libvncclient0-0.9.10-150000.4.29.1.ppc64le.rpm libvncserver0-0.9.10-150000.4.29.1.ppc64le.rpm LibVNCServer-devel-0.9.10-150000.4.29.1.aarch64.rpm libvncclient0-0.9.10-150000.4.29.1.aarch64.rpm libvncserver0-0.9.10-150000.4.29.1.aarch64.rpm openSUSE-SLE-15.3-2022-3523 moderate SUSE Updates openSUSE-SLE 15.3 This update for libjpeg-turbo fixes the following issues: - CVE-2020-35538: Fixed null pointer dereference in jcopy_sample_rows() function (bsc#1202915). libjpeg-turbo-1.5.3-150000.32.5.1.src.rpm libjpeg-turbo-1.5.3-150000.32.5.1.x86_64.rpm libjpeg62-32bit-62.2.0-150000.32.5.1.x86_64.rpm libjpeg62-62.2.0-150000.32.5.1.x86_64.rpm libjpeg62-devel-32bit-62.2.0-150000.32.5.1.x86_64.rpm libjpeg62-devel-62.2.0-150000.32.5.1.x86_64.rpm libjpeg62-turbo-1.5.3-150000.32.5.1.src.rpm libjpeg62-turbo-1.5.3-150000.32.5.1.x86_64.rpm libjpeg8-32bit-8.1.2-150000.32.5.1.x86_64.rpm libjpeg8-8.1.2-150000.32.5.1.x86_64.rpm libjpeg8-devel-32bit-8.1.2-150000.32.5.1.x86_64.rpm libjpeg8-devel-8.1.2-150000.32.5.1.x86_64.rpm libturbojpeg0-32bit-8.1.2-150000.32.5.1.x86_64.rpm libturbojpeg0-8.1.2-150000.32.5.1.x86_64.rpm libjpeg-turbo-1.5.3-150000.32.5.1.s390x.rpm libjpeg62-62.2.0-150000.32.5.1.s390x.rpm libjpeg62-devel-62.2.0-150000.32.5.1.s390x.rpm libjpeg62-turbo-1.5.3-150000.32.5.1.s390x.rpm libjpeg8-8.1.2-150000.32.5.1.s390x.rpm libjpeg8-devel-8.1.2-150000.32.5.1.s390x.rpm libturbojpeg0-8.1.2-150000.32.5.1.s390x.rpm libjpeg-turbo-1.5.3-150000.32.5.1.ppc64le.rpm libjpeg62-62.2.0-150000.32.5.1.ppc64le.rpm libjpeg62-devel-62.2.0-150000.32.5.1.ppc64le.rpm libjpeg62-turbo-1.5.3-150000.32.5.1.ppc64le.rpm libjpeg8-8.1.2-150000.32.5.1.ppc64le.rpm libjpeg8-devel-8.1.2-150000.32.5.1.ppc64le.rpm libturbojpeg0-8.1.2-150000.32.5.1.ppc64le.rpm libjpeg-turbo-1.5.3-150000.32.5.1.aarch64.rpm libjpeg62-62.2.0-150000.32.5.1.aarch64.rpm libjpeg62-devel-62.2.0-150000.32.5.1.aarch64.rpm libjpeg62-turbo-1.5.3-150000.32.5.1.aarch64.rpm libjpeg8-8.1.2-150000.32.5.1.aarch64.rpm libjpeg8-devel-8.1.2-150000.32.5.1.aarch64.rpm libturbojpeg0-8.1.2-150000.32.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-3321 important SUSE Updates openSUSE-SLE 15.3 This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container fixes the following issues: Security issues fixed: - CVE-2022-1798: Fix arbitrary file read on the host from KubeVirt VMs (bsc#1202516) Security issues fixed in vendored dependencies: - CVE-2022-1996: Fixed go-restful CORS bypass (bsc#1200528) - CVE-2022-29162: Fixed runc incorrect handling of inheritable capabilities in default configuration (bsc#1199460) Other fixes: - Pack nft rules and nsswitch.conf for virt-handler - Only create 1MiB-aligned disk images (bsc#1199603) - Avoid to return nil failure message - Use semantic equality comparison - Allow to configure utility containers for update test - Install nftables to manage network rules - Install tar to allow kubectl cp ... - Symlink nsswitch.conf and nft rules to proper locations - Enable USB redirection support for QEMU - Install vim-small instread of vim - Drop libvirt-daemon-driver-storage-core - Install ethtool and gawk (bsc#1199392) - Use non-versioned appliance to avoid redundant rpm query - Explicitly state the dependency on kubevirt main package kubevirt-0.49.0-150300.8.13.1.src.rpm kubevirt-container-disk-0.49.0-150300.8.13.1.x86_64.rpm kubevirt-manifests-0.49.0-150300.8.13.1.x86_64.rpm kubevirt-tests-0.49.0-150300.8.13.1.x86_64.rpm kubevirt-virt-api-0.49.0-150300.8.13.1.x86_64.rpm kubevirt-virt-controller-0.49.0-150300.8.13.1.x86_64.rpm kubevirt-virt-handler-0.49.0-150300.8.13.1.x86_64.rpm kubevirt-virt-launcher-0.49.0-150300.8.13.1.x86_64.rpm kubevirt-virt-operator-0.49.0-150300.8.13.1.x86_64.rpm kubevirt-virtctl-0.49.0-150300.8.13.1.x86_64.rpm obs-service-kubevirt_containers_meta-0.49.0-150300.8.13.1.x86_64.rpm openSUSE-SLE-15.3-2022-3305 important SUSE Updates openSUSE-SLE 15.3 This update for libtirpc fixes the following issues: - CVE-2021-46828: Fixed denial of service vulnerability with lots of connections (bsc#1201680). libtirpc-1.2.6-150300.3.14.1.src.rpm libtirpc-devel-1.2.6-150300.3.14.1.x86_64.rpm libtirpc-netconfig-1.2.6-150300.3.14.1.x86_64.rpm libtirpc3-1.2.6-150300.3.14.1.x86_64.rpm libtirpc3-32bit-1.2.6-150300.3.14.1.x86_64.rpm libtirpc-devel-1.2.6-150300.3.14.1.s390x.rpm libtirpc-netconfig-1.2.6-150300.3.14.1.s390x.rpm libtirpc3-1.2.6-150300.3.14.1.s390x.rpm libtirpc-devel-1.2.6-150300.3.14.1.ppc64le.rpm libtirpc-netconfig-1.2.6-150300.3.14.1.ppc64le.rpm libtirpc3-1.2.6-150300.3.14.1.ppc64le.rpm libtirpc-devel-1.2.6-150300.3.14.1.aarch64.rpm libtirpc-netconfig-1.2.6-150300.3.14.1.aarch64.rpm libtirpc3-1.2.6-150300.3.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-3281 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Updated to Mozilla Thunderbird 102.2.2: - CVE-2022-3033: Fixed leaking of sensitive information when composing a response to an HTML email with a META refresh tag (bsc#1203007). - CVE-2022-3032: Fixed missing blocking of remote content specified in an HTML document that was nested inside an iframe's srcdoc attribute (bsc#1203007). - CVE-2022-3034: Fixed issue where iframe element in an HTML email could trigger a network request (bsc#1203007). - CVE-2022-36059: Fixed DoS in Matrix SDK bundled with Thunderbird service attack (bsc#1203007). - CVE-2022-38472: Fixed Address bar spoofing via XSLT error handling (bsc#1202645). - CVE-2022-38473: Fixed cross-origin XSLT Documents inheriting the parent's permissions (bsc#1202645). - CVE-2022-38476: Fixed data race and potential use-after-free in PK11_ChangePW (bsc#1202645). - CVE-2022-38477: Fixed memory safety bugs (bsc#1202645). - CVE-2022-38478: Fixed memory safety bugs (bsc#1202645). - CVE-2022-36319: Fixed mouse position spoofing with CSS transforms (bsc#1201758). - CVE-2022-36318: Fixed directory indexes for bundled resources reflected URL parameters (bsc#1201758). - CVE-2022-36314: Fixed unexpected network loads when opening local .lnk files (bsc#1201758). - CVE-2022-2505: Fixed memory safety bugs (bsc#1201758). - CVE-2022-34479: Fixed vulnerability which could overlay the address bar with web content (bsc#1200793). - CVE-2022-34470: Fixed use-after-free in nsSHistory (bsc#1200793). - CVE-2022-34468: Fixed CSP sandbox header without `allow-scripts` bypass via retargeted javascript (bsc#1200793). - CVE-2022-2226: Fixed emails with a mismatching OpenPGP signature date incorrectly accepted as valid (bsc#1200793). - CVE-2022-34481: Fixed integer overflow in ReplaceElementsAt (bsc#1200793). - CVE-2022-31744: Fixed CSP bypass enabling stylesheet injection (bsc#1200793). - CVE-2022-34472: Fixed unavailable PAC file resulting in OCSP requests being blocked (bsc#1200793). - CVE-2022-34478: Fixed Microsoft protocols attacks if a user accepts a prompt (bsc#1200793). - CVE-2022-2200: Fixed vulnerability where undesired attributes could be set as part of prototype pollution (bsc#1200793). - CVE-2022-34484: Fixed memory safety bugs (bsc#1200793). MozillaThunderbird-102.2.2-150200.8.82.1.src.rpm MozillaThunderbird-102.2.2-150200.8.82.1.x86_64.rpm MozillaThunderbird-translations-common-102.2.2-150200.8.82.1.x86_64.rpm MozillaThunderbird-translations-other-102.2.2-150200.8.82.1.x86_64.rpm MozillaThunderbird-102.2.2-150200.8.82.1.s390x.rpm MozillaThunderbird-translations-common-102.2.2-150200.8.82.1.s390x.rpm MozillaThunderbird-translations-other-102.2.2-150200.8.82.1.s390x.rpm MozillaThunderbird-102.2.2-150200.8.82.1.ppc64le.rpm MozillaThunderbird-translations-common-102.2.2-150200.8.82.1.ppc64le.rpm MozillaThunderbird-translations-other-102.2.2-150200.8.82.1.ppc64le.rpm MozillaThunderbird-102.2.2-150200.8.82.1.aarch64.rpm MozillaThunderbird-translations-common-102.2.2-150200.8.82.1.aarch64.rpm MozillaThunderbird-translations-other-102.2.2-150200.8.82.1.aarch64.rpm openSUSE-SLE-15.3-2022-3807 important SUSE Updates openSUSE-SLE 15.3 This update for libconfuse0 fixes the following issues: - CVE-2022-40320: Fixed a heap-based buffer over-read in cfg_tilde_expand in confuse.c (bsc#1203326). libconfuse-devel-2.8-150000.3.3.1.x86_64.rpm libconfuse0-2.8-150000.3.3.1.src.rpm libconfuse0-2.8-150000.3.3.1.x86_64.rpm libconfuse0-lang-2.8-150000.3.3.1.noarch.rpm libconfuse-devel-2.8-150000.3.3.1.s390x.rpm libconfuse0-2.8-150000.3.3.1.s390x.rpm libconfuse-devel-2.8-150000.3.3.1.ppc64le.rpm libconfuse0-2.8-150000.3.3.1.ppc64le.rpm libconfuse-devel-2.8-150000.3.3.1.aarch64.rpm libconfuse0-2.8-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3871 important SUSE Updates openSUSE-SLE 15.3 This update for libxml2 fixes the following issues: - CVE-2016-3709: Fixed possible XSS vulnerability (bsc#1201978). - CVE-2022-40303: Fixed integer overflows with XML_PARSE_HUGE (bsc#1204366). - CVE-2022-40304: Fixed dict corruption caused by entity reference cycles (bsc#1204367). libxml2-2-2.9.7-150000.3.51.1.x86_64.rpm libxml2-2-32bit-2.9.7-150000.3.51.1.x86_64.rpm libxml2-2.9.7-150000.3.51.1.src.rpm libxml2-devel-2.9.7-150000.3.51.1.x86_64.rpm libxml2-devel-32bit-2.9.7-150000.3.51.1.x86_64.rpm libxml2-doc-2.9.7-150000.3.51.1.noarch.rpm libxml2-tools-2.9.7-150000.3.51.1.x86_64.rpm python-libxml2-python-2.9.7-150000.3.51.1.src.rpm python2-libxml2-python-2.9.7-150000.3.51.1.x86_64.rpm python3-libxml2-python-2.9.7-150000.3.51.1.x86_64.rpm libxml2-2-2.9.7-150000.3.51.1.s390x.rpm libxml2-devel-2.9.7-150000.3.51.1.s390x.rpm libxml2-tools-2.9.7-150000.3.51.1.s390x.rpm python2-libxml2-python-2.9.7-150000.3.51.1.s390x.rpm python3-libxml2-python-2.9.7-150000.3.51.1.s390x.rpm libxml2-2-2.9.7-150000.3.51.1.ppc64le.rpm libxml2-devel-2.9.7-150000.3.51.1.ppc64le.rpm libxml2-tools-2.9.7-150000.3.51.1.ppc64le.rpm python2-libxml2-python-2.9.7-150000.3.51.1.ppc64le.rpm python3-libxml2-python-2.9.7-150000.3.51.1.ppc64le.rpm libxml2-2-2.9.7-150000.3.51.1.aarch64.rpm libxml2-devel-2.9.7-150000.3.51.1.aarch64.rpm libxml2-tools-2.9.7-150000.3.51.1.aarch64.rpm python2-libxml2-python-2.9.7-150000.3.51.1.aarch64.rpm python3-libxml2-python-2.9.7-150000.3.51.1.aarch64.rpm openSUSE-SLE-15.3-2022-3335 important SUSE Updates openSUSE-SLE 15.3 This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues: Update to version 1.43.2 - Release notes https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.43.2 Security issues fixed: - CVE-2022-1996: Fixed CORS bypass in go-restful vendored dependency (bsc#1200528) Other fixes: - Include additional tools used by cdi-importer: cdi-containerimage-server cdi-source-update-poller - Pack only cdi-{cr,operator}.yaml into the manifests RPM - Install tar package (used for cloning filesystem PVCs) containerized-data-importer-1.43.2-150300.8.9.3.src.rpm containerized-data-importer-api-1.43.2-150300.8.9.3.x86_64.rpm containerized-data-importer-cloner-1.43.2-150300.8.9.3.x86_64.rpm containerized-data-importer-controller-1.43.2-150300.8.9.3.x86_64.rpm containerized-data-importer-importer-1.43.2-150300.8.9.3.x86_64.rpm containerized-data-importer-manifests-1.43.2-150300.8.9.3.x86_64.rpm containerized-data-importer-operator-1.43.2-150300.8.9.3.x86_64.rpm containerized-data-importer-uploadproxy-1.43.2-150300.8.9.3.x86_64.rpm containerized-data-importer-uploadserver-1.43.2-150300.8.9.3.x86_64.rpm obs-service-cdi_containers_meta-1.43.2-150300.8.9.3.x86_64.rpm openSUSE-SLE-15.3-2022-3393 moderate SUSE Updates openSUSE-SLE 15.3 This update for libarchive fixes the following issues: - CVE-2021-23177: Fixed symlink ACL extraction that modifies ACLs of the target system (bsc#1192425). bsdtar-3.4.2-150200.4.9.1.x86_64.rpm libarchive-3.4.2-150200.4.9.1.src.rpm libarchive-devel-3.4.2-150200.4.9.1.x86_64.rpm libarchive13-3.4.2-150200.4.9.1.x86_64.rpm libarchive13-32bit-3.4.2-150200.4.9.1.x86_64.rpm bsdtar-3.4.2-150200.4.9.1.s390x.rpm libarchive-devel-3.4.2-150200.4.9.1.s390x.rpm libarchive13-3.4.2-150200.4.9.1.s390x.rpm bsdtar-3.4.2-150200.4.9.1.ppc64le.rpm libarchive-devel-3.4.2-150200.4.9.1.ppc64le.rpm libarchive13-3.4.2-150200.4.9.1.ppc64le.rpm bsdtar-3.4.2-150200.4.9.1.aarch64.rpm libarchive-devel-3.4.2-150200.4.9.1.aarch64.rpm libarchive13-3.4.2-150200.4.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3430 important SUSE Updates openSUSE-SLE 15.3 This update for dpdk fixes the following issues: - CVE-2022-2132: Fixed DoS when a vhost header crosses more than two descriptors and exhausts all mbufs (bsc#1202903). dpdk-18.11.9-150100.4.19.1.src.rpm libdpdk-18_11-18.11.9-150100.4.19.1.x86_64.rpm libdpdk-18_11-18.11.9-150100.4.19.1.ppc64le.rpm libdpdk-18_11-18.11.9-150100.4.19.1.aarch64.rpm openSUSE-SLE-15.3-2022-3391 important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: Update to 10.5.17: - CVE-2022-32082: Fixed assertion failure at table->get_ref_count() == 0 in dict0dict.cc (bsc#1201162). - CVE-2022-32089: Fixed segmentation fault via the component st_select_lex_unit::exclude_level (bsc#1201169). - CVE-2022-32081: Fixed use-after-poison in prepare_inplace_add_virtual at /storage/innobase/handler/handler0alter.cc (bsc#1201161). - CVE-2022-32091: Fixed use-after-poison in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc (bsc#1201170). - CVE-2022-32084: Fixed segmentation fault via the component sub_select (bsc#1201164). - CVE-2022-38791: Fixed deadlock in compress_write in extra/mariabackup/ds_compress.cc (bsc#1202863). - CVE-2022-32088: Fixed segmentation fault via the component Exec_time_tracker::get_loops/Filesort_tracker::report_use/filesort (bsc#1201168). - CVE-2022-32087: Fixed segmentation fault via the component Item_args::walk_args (bsc#1201167). - CVE-2022-32086: Fixed segmentation fault via the component Item_field::fix_outer_field (bsc#1201166). - CVE-2022-32085: Fixed segmentation fault via the component Item_func_in::cleanup/Item::cleanup_processor (bsc#1201165). - CVE-2022-32083: Fixed segmentation fault via the component Item_subselect::init_expr_cache_tracker (bsc#1201163). Bugfixes: - Fixed mysql-systemd-helper being unaware of custom group (bsc#1200105). libmariadbd-devel-10.5.17-150300.3.21.1.x86_64.rpm libmariadbd19-10.5.17-150300.3.21.1.x86_64.rpm mariadb-10.5.17-150300.3.21.1.src.rpm mariadb-10.5.17-150300.3.21.1.x86_64.rpm mariadb-bench-10.5.17-150300.3.21.1.x86_64.rpm mariadb-client-10.5.17-150300.3.21.1.x86_64.rpm mariadb-errormessages-10.5.17-150300.3.21.1.noarch.rpm mariadb-rpm-macros-10.5.17-150300.3.21.1.x86_64.rpm mariadb-test-10.5.17-150300.3.21.1.x86_64.rpm mariadb-tools-10.5.17-150300.3.21.1.x86_64.rpm libmariadbd-devel-10.5.17-150300.3.21.1.s390x.rpm libmariadbd19-10.5.17-150300.3.21.1.s390x.rpm mariadb-10.5.17-150300.3.21.1.s390x.rpm mariadb-bench-10.5.17-150300.3.21.1.s390x.rpm mariadb-client-10.5.17-150300.3.21.1.s390x.rpm mariadb-rpm-macros-10.5.17-150300.3.21.1.s390x.rpm mariadb-test-10.5.17-150300.3.21.1.s390x.rpm mariadb-tools-10.5.17-150300.3.21.1.s390x.rpm libmariadbd-devel-10.5.17-150300.3.21.1.ppc64le.rpm libmariadbd19-10.5.17-150300.3.21.1.ppc64le.rpm mariadb-10.5.17-150300.3.21.1.ppc64le.rpm mariadb-bench-10.5.17-150300.3.21.1.ppc64le.rpm mariadb-client-10.5.17-150300.3.21.1.ppc64le.rpm mariadb-rpm-macros-10.5.17-150300.3.21.1.ppc64le.rpm mariadb-test-10.5.17-150300.3.21.1.ppc64le.rpm mariadb-tools-10.5.17-150300.3.21.1.ppc64le.rpm libmariadbd-devel-10.5.17-150300.3.21.1.aarch64.rpm libmariadbd19-10.5.17-150300.3.21.1.aarch64.rpm mariadb-10.5.17-150300.3.21.1.aarch64.rpm mariadb-bench-10.5.17-150300.3.21.1.aarch64.rpm mariadb-client-10.5.17-150300.3.21.1.aarch64.rpm mariadb-rpm-macros-10.5.17-150300.3.21.1.aarch64.rpm mariadb-test-10.5.17-150300.3.21.1.aarch64.rpm mariadb-tools-10.5.17-150300.3.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-3579 moderate SUSE Updates openSUSE-SLE 15.3 This update for rmt-server fixes the following issues: - Implement `System-Token` header handling to improve unique system reporting. - Add --proxy-byos flag to rmt-cli systems command to filter BYOS systems using RMT as a proxy - Retry failed http requests automatically (bsc#1197405, bsc#1188578, bsc#1198721, bsc#1199961) - Improved rmt-client-setup-res script for CentOS8.x and RHEL/RES8.x (bsc#1197038) rmt-server-2.9-150300.3.18.1.src.rpm rmt-server-2.9-150300.3.18.1.x86_64.rpm rmt-server-config-2.9-150300.3.18.1.x86_64.rpm rmt-server-pubcloud-2.9-150300.3.18.1.x86_64.rpm rmt-server-2.9-150300.3.18.1.s390x.rpm rmt-server-config-2.9-150300.3.18.1.s390x.rpm rmt-server-pubcloud-2.9-150300.3.18.1.s390x.rpm rmt-server-2.9-150300.3.18.1.ppc64le.rpm rmt-server-config-2.9-150300.3.18.1.ppc64le.rpm rmt-server-pubcloud-2.9-150300.3.18.1.ppc64le.rpm rmt-server-2.9-150300.3.18.1.aarch64.rpm rmt-server-config-2.9-150300.3.18.1.aarch64.rpm rmt-server-pubcloud-2.9-150300.3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-4270 moderate SUSE Updates openSUSE-SLE 15.3 This update for lvm2 fixes the following issues: - Design changes to avoid kernel panic (bsc#1198523) - Fix device-mapper rpm package versioning to prevent migration issues (bsc#1199074) - killed lvmlockd doesn't clear/adopt locks leading to inability to start volume group (bsc#1203216) device-mapper-2.03.05_1.02.163-150200.8.49.1.x86_64.rpm device-mapper-devel-2.03.05_1.02.163-150200.8.49.1.x86_64.rpm device-mapper-devel-32bit-2.03.05_1.02.163-150200.8.49.1.x86_64.rpm libdevmapper-event1_03-2.03.05_1.02.163-150200.8.49.1.x86_64.rpm libdevmapper-event1_03-32bit-2.03.05_1.02.163-150200.8.49.1.x86_64.rpm libdevmapper1_03-2.03.05_1.02.163-150200.8.49.1.x86_64.rpm libdevmapper1_03-32bit-2.03.05_1.02.163-150200.8.49.1.x86_64.rpm liblvm2cmd2_03-2.03.05-150200.8.49.1.x86_64.rpm lvm2-2.03.05-150200.8.49.1.src.rpm lvm2-2.03.05-150200.8.49.1.x86_64.rpm lvm2-devel-2.03.05-150200.8.49.1.x86_64.rpm lvm2-device-mapper-2.03.05-150200.8.49.1.src.rpm lvm2-lockd-2.03.05-150200.8.49.1.x86_64.rpm lvm2-lvmlockd-2.03.05-150200.8.49.1.src.rpm lvm2-testsuite-2.03.05-150200.8.49.1.x86_64.rpm device-mapper-2.03.05_1.02.163-150200.8.49.1.s390x.rpm device-mapper-devel-2.03.05_1.02.163-150200.8.49.1.s390x.rpm libdevmapper-event1_03-2.03.05_1.02.163-150200.8.49.1.s390x.rpm libdevmapper1_03-2.03.05_1.02.163-150200.8.49.1.s390x.rpm liblvm2cmd2_03-2.03.05-150200.8.49.1.s390x.rpm lvm2-2.03.05-150200.8.49.1.s390x.rpm lvm2-devel-2.03.05-150200.8.49.1.s390x.rpm lvm2-lockd-2.03.05-150200.8.49.1.s390x.rpm lvm2-testsuite-2.03.05-150200.8.49.1.s390x.rpm device-mapper-2.03.05_1.02.163-150200.8.49.1.ppc64le.rpm device-mapper-devel-2.03.05_1.02.163-150200.8.49.1.ppc64le.rpm libdevmapper-event1_03-2.03.05_1.02.163-150200.8.49.1.ppc64le.rpm libdevmapper1_03-2.03.05_1.02.163-150200.8.49.1.ppc64le.rpm liblvm2cmd2_03-2.03.05-150200.8.49.1.ppc64le.rpm lvm2-2.03.05-150200.8.49.1.ppc64le.rpm lvm2-devel-2.03.05-150200.8.49.1.ppc64le.rpm lvm2-lockd-2.03.05-150200.8.49.1.ppc64le.rpm lvm2-testsuite-2.03.05-150200.8.49.1.ppc64le.rpm device-mapper-2.03.05_1.02.163-150200.8.49.1.aarch64.rpm device-mapper-devel-2.03.05_1.02.163-150200.8.49.1.aarch64.rpm libdevmapper-event1_03-2.03.05_1.02.163-150200.8.49.1.aarch64.rpm libdevmapper1_03-2.03.05_1.02.163-150200.8.49.1.aarch64.rpm liblvm2cmd2_03-2.03.05-150200.8.49.1.aarch64.rpm lvm2-2.03.05-150200.8.49.1.aarch64.rpm lvm2-devel-2.03.05-150200.8.49.1.aarch64.rpm lvm2-lockd-2.03.05-150200.8.49.1.aarch64.rpm lvm2-testsuite-2.03.05-150200.8.49.1.aarch64.rpm openSUSE-SLE-15.3-2022-4020 moderate SUSE Updates openSUSE-SLE 15.3 This update for nfs-utils fixes the following issues: - Fix nfsdcltrack bug that affected non-x86 archs (bsc#1202627) - Ensure sysctl setting work (bsc#1199856) nfs-client-2.1.1-150100.10.27.1.x86_64.rpm nfs-doc-2.1.1-150100.10.27.1.x86_64.rpm nfs-kernel-server-2.1.1-150100.10.27.1.x86_64.rpm nfs-utils-2.1.1-150100.10.27.1.src.rpm nfs-client-2.1.1-150100.10.27.1.s390x.rpm nfs-doc-2.1.1-150100.10.27.1.s390x.rpm nfs-kernel-server-2.1.1-150100.10.27.1.s390x.rpm nfs-client-2.1.1-150100.10.27.1.ppc64le.rpm nfs-doc-2.1.1-150100.10.27.1.ppc64le.rpm nfs-kernel-server-2.1.1-150100.10.27.1.ppc64le.rpm nfs-client-2.1.1-150100.10.27.1.aarch64.rpm nfs-doc-2.1.1-150100.10.27.1.aarch64.rpm nfs-kernel-server-2.1.1-150100.10.27.1.aarch64.rpm openSUSE-SLE-15.3-2022-3394 moderate SUSE Updates openSUSE-SLE 15.3 This update for permissions fixes the following issues: - CVE-2022-31252: Fixed chkstat group controlled paths (bsc#1203018). permissions-20181225-150200.23.15.1.src.rpm permissions-20181225-150200.23.15.1.x86_64.rpm permissions-zypp-plugin-20181225-150200.23.15.1.noarch.rpm permissions-20181225-150200.23.15.1.s390x.rpm permissions-20181225-150200.23.15.1.ppc64le.rpm permissions-20181225-150200.23.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-3495 important SUSE Updates openSUSE-SLE 15.3 This update for libgit2 fixes the following issues: - Fixed DoS by oob write in constructed commit object with a very large number of parents (bsc#1158981). - CVE-2019-1352: Fixed git on Windows being unaware of NTFS Alternate Data Streams (bnc#1158790). - CVE-2022-24765: Fixed potential command injection via git worktree (bsc#1198234). - CVE-2022-29187: Fixed incomplete fix for CVE-2022-24765 (bsc#1201431). libgit2-0.26.8-150000.3.15.1.src.rpm libgit2-26-0.26.8-150000.3.15.1.x86_64.rpm libgit2-26-32bit-0.26.8-150000.3.15.1.x86_64.rpm libgit2-26-0.26.8-150000.3.15.1.s390x.rpm libgit2-26-0.26.8-150000.3.15.1.ppc64le.rpm libgit2-26-0.26.8-150000.3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-3494 important SUSE Updates openSUSE-SLE 15.3 This update for libgit2 fixes the following issues: - CVE-2022-24765: Fixed potential command injection via git worktree (bsc#1198234). - CVE-2022-29187: Fixed incomplete fix for CVE-2022-24765 (bsc#1201431). libgit2-0.28.4-150200.3.3.1.src.rpm libgit2-28-0.28.4-150200.3.3.1.x86_64.rpm libgit2-28-32bit-0.28.4-150200.3.3.1.x86_64.rpm libgit2-devel-0.28.4-150200.3.3.1.x86_64.rpm libgit2-28-0.28.4-150200.3.3.1.s390x.rpm libgit2-devel-0.28.4-150200.3.3.1.s390x.rpm libgit2-28-0.28.4-150200.3.3.1.ppc64le.rpm libgit2-devel-0.28.4-150200.3.3.1.ppc64le.rpm libgit2-28-0.28.4-150200.3.3.1.aarch64.rpm libgit2-devel-0.28.4-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3694 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issues: Lifecycle data update. (bsc#1020320) - Added data for 4_12_14-150000_150_95, 4_12_14-150000_150_98, 4_12_14-150100_197_117, 4_12_14-150100_197_120, 5_14_21-150400_24_11, 5_14_21-150400_24_18, 5_3_18-150200_24_120, 5_3_18-150200_24_126, 5_3_18-150300_59_81, 5_3_18-150300_59_87, 5_3_18-150300_59_90. lifecycle-data-sle-module-live-patching-15-150000.4.81.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-150000.4.81.1.src.rpm openSUSE-SLE-15.3-2022-3685 moderate SUSE Updates openSUSE-SLE 15.3 This optional update for monitoring-plugins and its dependencies provides: freeradius-client: - Deliver missing freeradius-client to SUSE Package Hub 15 SP4 and solve migration issues from 15 SP3. (ijsc#MSC-399) - There are NO code changes. monitoring-plugins: - Deliver missing monitoring plugins to SUSE Package Hub 15 SP4 and solve migration issues from 15 SP3. (ijsc#MSC-399) - There are NO code changes. perl-Crypt-DES: - Deliver missing perl-Crypt-DES to SUSE Package Hub 15 SP4 and solve migration issues from 15 SP3. (ijsc#MSC-399) - There are NO code changes. perl-Crypt-Rijndael: - Deliver missing perl-Crypt-Rijndaelto SUSE Package Hub 15 SP4 and solve migration issues from 15 SP3. (ijsc#MSC-399) - There are NO code changes. perl-Net-SNMP: - Deliver missing perl-Net-SNMP to SUSE Package Hub 15 SP4 and solve migration issues from 15 SP3. (ijsc#MSC-399) - There are NO code changes. monitoring-plugins-2.3.1-150000.3.11.1.src.rpm monitoring-plugins-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-all-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-breeze-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-by_ssh-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-cluster-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-common-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-cups-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-dbi-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-dbi-mysql-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-dbi-pgsql-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-dbi-sqlite3-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-dhcp-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-dig-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-disk-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-disk_smb-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-dns-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-dummy-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-extras-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-file_age-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-flexlm-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-fping-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-hpjd-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-http-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-icmp-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-ide_smart-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-ifoperstatus-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-ifstatus-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-ircd-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-ldap-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-load-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-log-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-mailq-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-mrtg-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-mrtgtraf-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-mysql-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-nagios-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-nt-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-ntp_peer-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-ntp_time-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-nwstat-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-oracle-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-overcr-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-pgsql-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-ping-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-procs-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-radius-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-real-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-rpc-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-sensors-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-smtp-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-snmp-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-ssh-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-swap-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-tcp-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-time-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-ups-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-users-2.3.1-150000.3.11.1.x86_64.rpm monitoring-plugins-wave-2.3.1-150000.3.11.1.x86_64.rpm perl-Crypt-DES-2.07-150000.3.4.1.src.rpm perl-Crypt-DES-2.07-150000.3.4.1.x86_64.rpm perl-Crypt-Rijndael-1.13-150000.3.4.1.src.rpm perl-Crypt-Rijndael-1.13-150000.3.4.1.x86_64.rpm perl-Net-SNMP-6.0.1-150000.3.4.1.noarch.rpm perl-Net-SNMP-6.0.1-150000.3.4.1.src.rpm monitoring-plugins-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-all-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-breeze-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-by_ssh-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-cluster-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-common-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-cups-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-dbi-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-dbi-mysql-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-dbi-pgsql-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-dbi-sqlite3-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-dhcp-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-dig-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-disk-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-disk_smb-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-dns-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-dummy-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-extras-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-file_age-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-flexlm-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-fping-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-hpjd-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-http-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-icmp-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-ide_smart-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-ifoperstatus-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-ifstatus-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-ircd-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-ldap-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-load-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-log-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-mailq-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-mrtg-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-mrtgtraf-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-mysql-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-nagios-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-nt-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-ntp_peer-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-ntp_time-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-nwstat-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-oracle-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-overcr-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-pgsql-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-ping-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-procs-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-radius-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-real-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-rpc-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-smtp-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-snmp-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-ssh-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-swap-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-tcp-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-time-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-ups-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-users-2.3.1-150000.3.11.1.s390x.rpm monitoring-plugins-wave-2.3.1-150000.3.11.1.s390x.rpm perl-Crypt-DES-2.07-150000.3.4.1.s390x.rpm perl-Crypt-Rijndael-1.13-150000.3.4.1.s390x.rpm monitoring-plugins-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-all-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-breeze-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-by_ssh-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-cluster-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-common-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-cups-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-dbi-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-dbi-mysql-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-dbi-pgsql-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-dbi-sqlite3-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-dhcp-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-dig-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-disk-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-disk_smb-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-dns-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-dummy-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-extras-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-file_age-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-flexlm-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-fping-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-hpjd-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-http-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-icmp-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-ide_smart-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-ifoperstatus-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-ifstatus-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-ircd-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-ldap-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-load-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-log-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-mailq-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-mrtg-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-mrtgtraf-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-mysql-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-nagios-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-nt-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-ntp_peer-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-ntp_time-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-nwstat-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-oracle-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-overcr-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-pgsql-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-ping-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-procs-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-radius-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-real-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-rpc-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-sensors-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-smtp-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-snmp-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-ssh-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-swap-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-tcp-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-time-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-ups-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-users-2.3.1-150000.3.11.1.ppc64le.rpm monitoring-plugins-wave-2.3.1-150000.3.11.1.ppc64le.rpm perl-Crypt-DES-2.07-150000.3.4.1.ppc64le.rpm perl-Crypt-Rijndael-1.13-150000.3.4.1.ppc64le.rpm monitoring-plugins-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-all-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-breeze-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-by_ssh-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-cluster-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-common-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-cups-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-dbi-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-dbi-mysql-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-dbi-pgsql-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-dbi-sqlite3-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-dhcp-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-dig-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-disk-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-disk_smb-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-dns-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-dummy-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-extras-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-file_age-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-flexlm-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-fping-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-hpjd-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-http-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-icmp-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-ide_smart-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-ifoperstatus-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-ifstatus-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-ircd-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-ldap-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-load-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-log-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-mailq-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-mrtg-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-mrtgtraf-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-mysql-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-nagios-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-nt-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-ntp_peer-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-ntp_time-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-nwstat-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-oracle-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-overcr-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-pgsql-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-ping-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-procs-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-radius-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-real-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-rpc-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-sensors-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-smtp-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-snmp-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-ssh-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-swap-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-tcp-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-time-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-ups-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-users-2.3.1-150000.3.11.1.aarch64.rpm monitoring-plugins-wave-2.3.1-150000.3.11.1.aarch64.rpm perl-Crypt-DES-2.07-150000.3.4.1.aarch64.rpm perl-Crypt-Rijndael-1.13-150000.3.4.1.aarch64.rpm openSUSE-SLE-15.3-2022-3684 low SUSE Updates openSUSE-SLE 15.3 This update for celt, jack, libogg, libtheora fixes the following issue: - celt, jack, libogg, libtheora 32bit base libraries are shipped to meet dependencies of the ffmpeg 32bit libraries (bsc#1198925). Also two bugs in jack were fixed (bsc#1132458 bsc#1108981). celt-0.11.3-150000.3.3.1.src.rpm celt-0.11.3-150000.3.3.1.x86_64.rpm jack-1.9.12-150000.3.3.1.src.rpm jack-1.9.12-150000.3.3.1.x86_64.rpm jack-32bit-1.9.12-150000.3.3.1.x86_64.rpm libcelt-devel-0.11.3-150000.3.3.1.x86_64.rpm libcelt-devel-32bit-0.11.3-150000.3.3.1.x86_64.rpm libcelt0-2-0.11.3-150000.3.3.1.x86_64.rpm libcelt0-2-32bit-0.11.3-150000.3.3.1.x86_64.rpm libjack-devel-1.9.12-150000.3.3.1.x86_64.rpm libjack-devel-32bit-1.9.12-150000.3.3.1.x86_64.rpm libjack0-1.9.12-150000.3.3.1.x86_64.rpm libjack0-32bit-1.9.12-150000.3.3.1.x86_64.rpm libjacknet0-1.9.12-150000.3.3.1.x86_64.rpm libjacknet0-32bit-1.9.12-150000.3.3.1.x86_64.rpm libjackserver0-1.9.12-150000.3.3.1.x86_64.rpm libjackserver0-32bit-1.9.12-150000.3.3.1.x86_64.rpm libogg-1.3.2-150000.3.4.1.src.rpm libogg-devel-1.3.2-150000.3.4.1.x86_64.rpm libogg0-1.3.2-150000.3.4.1.x86_64.rpm libogg0-32bit-1.3.2-150000.3.4.1.x86_64.rpm libtheora-1.1.1-150000.3.3.1.src.rpm libtheora-devel-1.1.1-150000.3.3.1.x86_64.rpm libtheora0-1.1.1-150000.3.3.1.x86_64.rpm libtheora0-32bit-1.1.1-150000.3.3.1.x86_64.rpm libtheoradec1-1.1.1-150000.3.3.1.x86_64.rpm libtheoradec1-32bit-1.1.1-150000.3.3.1.x86_64.rpm libtheoraenc1-1.1.1-150000.3.3.1.x86_64.rpm libtheoraenc1-32bit-1.1.1-150000.3.3.1.x86_64.rpm celt-0.11.3-150000.3.3.1.s390x.rpm jack-1.9.12-150000.3.3.1.s390x.rpm libcelt-devel-0.11.3-150000.3.3.1.s390x.rpm libcelt0-2-0.11.3-150000.3.3.1.s390x.rpm libjack-devel-1.9.12-150000.3.3.1.s390x.rpm libjack0-1.9.12-150000.3.3.1.s390x.rpm libjacknet0-1.9.12-150000.3.3.1.s390x.rpm libjackserver0-1.9.12-150000.3.3.1.s390x.rpm libogg-devel-1.3.2-150000.3.4.1.s390x.rpm libogg0-1.3.2-150000.3.4.1.s390x.rpm libtheora-devel-1.1.1-150000.3.3.1.s390x.rpm libtheora0-1.1.1-150000.3.3.1.s390x.rpm libtheoradec1-1.1.1-150000.3.3.1.s390x.rpm libtheoraenc1-1.1.1-150000.3.3.1.s390x.rpm celt-0.11.3-150000.3.3.1.ppc64le.rpm jack-1.9.12-150000.3.3.1.ppc64le.rpm libcelt-devel-0.11.3-150000.3.3.1.ppc64le.rpm libcelt0-2-0.11.3-150000.3.3.1.ppc64le.rpm libjack-devel-1.9.12-150000.3.3.1.ppc64le.rpm libjack0-1.9.12-150000.3.3.1.ppc64le.rpm libjacknet0-1.9.12-150000.3.3.1.ppc64le.rpm libjackserver0-1.9.12-150000.3.3.1.ppc64le.rpm libogg-devel-1.3.2-150000.3.4.1.ppc64le.rpm libogg0-1.3.2-150000.3.4.1.ppc64le.rpm libtheora-devel-1.1.1-150000.3.3.1.ppc64le.rpm libtheora0-1.1.1-150000.3.3.1.ppc64le.rpm libtheoradec1-1.1.1-150000.3.3.1.ppc64le.rpm libtheoraenc1-1.1.1-150000.3.3.1.ppc64le.rpm celt-0.11.3-150000.3.3.1.aarch64.rpm jack-1.9.12-150000.3.3.1.aarch64.rpm libcelt-devel-0.11.3-150000.3.3.1.aarch64.rpm libcelt0-2-0.11.3-150000.3.3.1.aarch64.rpm libjack-devel-1.9.12-150000.3.3.1.aarch64.rpm libjack0-1.9.12-150000.3.3.1.aarch64.rpm libjacknet0-1.9.12-150000.3.3.1.aarch64.rpm libjackserver0-1.9.12-150000.3.3.1.aarch64.rpm libogg-devel-1.3.2-150000.3.4.1.aarch64.rpm libogg0-1.3.2-150000.3.4.1.aarch64.rpm libtheora-devel-1.1.1-150000.3.3.1.aarch64.rpm libtheora0-1.1.1-150000.3.3.1.aarch64.rpm libtheoradec1-1.1.1-150000.3.3.1.aarch64.rpm libtheoraenc1-1.1.1-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3309 moderate SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: Updated to Wireshark 3.6.8: - CVE-2022-3190: Fixed F5 Ethernet Trailer dissector infinite loop (bsc#1203388). - CVE-2021-4186: Fixed Gryphon dissector crash (bsc#1194165). libwireshark15-3.6.8-150000.3.74.1.x86_64.rpm libwiretap12-3.6.8-150000.3.74.1.x86_64.rpm libwsutil13-3.6.8-150000.3.74.1.x86_64.rpm wireshark-3.6.8-150000.3.74.1.src.rpm wireshark-3.6.8-150000.3.74.1.x86_64.rpm wireshark-devel-3.6.8-150000.3.74.1.x86_64.rpm wireshark-ui-qt-3.6.8-150000.3.74.1.x86_64.rpm libwireshark15-3.6.8-150000.3.74.1.s390x.rpm libwiretap12-3.6.8-150000.3.74.1.s390x.rpm libwsutil13-3.6.8-150000.3.74.1.s390x.rpm wireshark-3.6.8-150000.3.74.1.s390x.rpm wireshark-devel-3.6.8-150000.3.74.1.s390x.rpm wireshark-ui-qt-3.6.8-150000.3.74.1.s390x.rpm libwireshark15-3.6.8-150000.3.74.1.ppc64le.rpm libwiretap12-3.6.8-150000.3.74.1.ppc64le.rpm libwsutil13-3.6.8-150000.3.74.1.ppc64le.rpm wireshark-3.6.8-150000.3.74.1.ppc64le.rpm wireshark-devel-3.6.8-150000.3.74.1.ppc64le.rpm wireshark-ui-qt-3.6.8-150000.3.74.1.ppc64le.rpm libwireshark15-3.6.8-150000.3.74.1.aarch64.rpm libwiretap12-3.6.8-150000.3.74.1.aarch64.rpm libwsutil13-3.6.8-150000.3.74.1.aarch64.rpm wireshark-3.6.8-150000.3.74.1.aarch64.rpm wireshark-devel-3.6.8-150000.3.74.1.aarch64.rpm wireshark-ui-qt-3.6.8-150000.3.74.1.aarch64.rpm openSUSE-SLE-15.3-2022-3457 important SUSE Updates openSUSE-SLE 15.3 This update for vsftpd fixes the following issues: - CVE-2021-3618: Enforced security checks against ALPACA attack (PM-3322, jsc#SLE-23896, bsc#1187686, bsc#1187678). - Added hardening to systemd services (bsc#1181400). Bugfixes: - Fixed a seccomp failure in FIPS mode when SSL was enabled (bsc#1052900). - Allowed wait4() to be called so that the broker can wait for its child processes (bsc#1021387). - Fixed hang when using seccomp and syslog (bsc#971784). - Allowed sendto() syscall when /dev/log support is enabled (bsc#786024). vsftpd-3.0.5-150200.12.9.1.src.rpm vsftpd-3.0.5-150200.12.9.1.x86_64.rpm vsftpd-3.0.5-150200.12.9.1.s390x.rpm vsftpd-3.0.5-150200.12.9.1.ppc64le.rpm vsftpd-3.0.5-150200.12.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3390 important SUSE Updates openSUSE-SLE 15.3 This update for dpdk fixes the following issues: - CVE-2022-2132: Fixed DoS when a vhost header crosses more than two descriptors and exhausts all mbufs (bsc#1202903). - CVE-2022-28199: Fixed buffer overflow in the vhost code (bsc#1202956). dpdk-19.11.4-150300.16.1.src.rpm dpdk-19.11.4-150300.16.1.x86_64.rpm dpdk-devel-19.11.4-150300.16.1.x86_64.rpm dpdk-doc-19.11.4-150300.16.1.noarch.rpm dpdk-examples-19.11.4-150300.16.1.x86_64.rpm dpdk-kmp-default-19.11.4_k5.3.18_150300.59.93-150300.16.1.x86_64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_150300.59.93-150300.16.1.x86_64.rpm dpdk-tools-19.11.4-150300.16.1.x86_64.rpm libdpdk-20_0-19.11.4-150300.16.1.x86_64.rpm dpdk-19.11.4-150300.16.1.ppc64le.rpm dpdk-devel-19.11.4-150300.16.1.ppc64le.rpm dpdk-examples-19.11.4-150300.16.1.ppc64le.rpm dpdk-kmp-default-19.11.4_k5.3.18_150300.59.93-150300.16.1.ppc64le.rpm dpdk-tools-19.11.4-150300.16.1.ppc64le.rpm libdpdk-20_0-19.11.4-150300.16.1.ppc64le.rpm dpdk-19.11.4-150300.16.1.aarch64.rpm dpdk-devel-19.11.4-150300.16.1.aarch64.rpm dpdk-examples-19.11.4-150300.16.1.aarch64.rpm dpdk-kmp-default-19.11.4_k5.3.18_150300.59.93-150300.16.1.aarch64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_150300.59.93-150300.16.1.aarch64.rpm dpdk-thunderx-19.11.4-150300.16.1.aarch64.rpm dpdk-thunderx-19.11.4-150300.16.1.src.rpm dpdk-thunderx-devel-19.11.4-150300.16.1.aarch64.rpm dpdk-thunderx-doc-19.11.4-150300.16.1.noarch.rpm dpdk-thunderx-examples-19.11.4-150300.16.1.aarch64.rpm dpdk-thunderx-kmp-default-19.11.4_k5.3.18_150300.59.93-150300.16.1.aarch64.rpm dpdk-thunderx-kmp-preempt-19.11.4_k5.3.18_150300.59.93-150300.16.1.aarch64.rpm dpdk-thunderx-tools-19.11.4-150300.16.1.aarch64.rpm dpdk-tools-19.11.4-150300.16.1.aarch64.rpm libdpdk-20_0-19.11.4-150300.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-3833 moderate SUSE Updates openSUSE-SLE 15.3 This update for podofo fixes the following issues: - CVE-2018-12983: Fixed a stack overrun (bsc#1099719). libpodofo-devel-0.9.6-150300.3.6.1.x86_64.rpm libpodofo0_9_6-0.9.6-150300.3.6.1.x86_64.rpm podofo-0.9.6-150300.3.6.1.src.rpm podofo-0.9.6-150300.3.6.1.x86_64.rpm libpodofo-devel-0.9.6-150300.3.6.1.s390x.rpm libpodofo0_9_6-0.9.6-150300.3.6.1.s390x.rpm podofo-0.9.6-150300.3.6.1.s390x.rpm libpodofo-devel-0.9.6-150300.3.6.1.ppc64le.rpm libpodofo0_9_6-0.9.6-150300.3.6.1.ppc64le.rpm podofo-0.9.6-150300.3.6.1.ppc64le.rpm libpodofo-devel-0.9.6-150300.3.6.1.aarch64.rpm libpodofo0_9_6-0.9.6-150300.3.6.1.aarch64.rpm podofo-0.9.6-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3347 moderate SUSE Updates openSUSE-SLE 15.3 This update for rubygem-rack fixes the following issues: - CVE-2020-8184: Fixed vulnerability where percent-encoded cookies can be used to overwrite existing prefixed cookie names (bsc#1173351). - CVE-2020-8161: Fixed directory traversal in Rack:Directory (bsc#1172037). ruby2.5-rubygem-rack-2.0.8-150000.3.9.1.x86_64.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.9.1.x86_64.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.9.1.x86_64.rpm rubygem-rack-2.0.8-150000.3.9.1.src.rpm ruby2.5-rubygem-rack-2.0.8-150000.3.9.1.s390x.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.9.1.s390x.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.9.1.s390x.rpm ruby2.5-rubygem-rack-2.0.8-150000.3.9.1.ppc64le.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.9.1.ppc64le.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.9.1.ppc64le.rpm ruby2.5-rubygem-rack-2.0.8-150000.3.9.1.aarch64.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.9.1.aarch64.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3972 low SUSE Updates openSUSE-SLE 15.3 This update for p7zip fixes the following issue: - Ship p7zip-full to SLE15-SP3 basesystem (bsc#1203316). p7zip-16.02-150200.14.9.2.src.rpm p7zip-16.02-150200.14.9.2.x86_64.rpm p7zip-doc-16.02-150200.14.9.2.noarch.rpm p7zip-full-16.02-150200.14.9.2.x86_64.rpm p7zip-16.02-150200.14.9.2.s390x.rpm p7zip-full-16.02-150200.14.9.2.s390x.rpm p7zip-16.02-150200.14.9.2.ppc64le.rpm p7zip-full-16.02-150200.14.9.2.ppc64le.rpm p7zip-16.02-150200.14.9.2.aarch64.rpm p7zip-full-16.02-150200.14.9.2.aarch64.rpm openSUSE-SLE-15.3-2022-3490 important SUSE Updates openSUSE-SLE 15.3 This update for slurm fixes the following issues: - CVE-2022-31251: Fixed a potential security vulnerability in the test package (bsc#1201674). - CVE-2022-29500: Fixed an architectural flaw can be exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278). - CVE-2022-29501: Fixed a vulnerability where an unprivileged user can send data to arbitrary unix socket as root (bsc#1199279). libslurm35-20.02.7-150200.3.14.2.x86_64.rpm slurm-20.02.7-150200.3.14.2.src.rpm libslurm35-20.02.7-150200.3.14.2.s390x.rpm libslurm35-20.02.7-150200.3.14.2.ppc64le.rpm libslurm35-20.02.7-150200.3.14.2.aarch64.rpm openSUSE-SLE-15.3-2022-3447 important SUSE Updates openSUSE-SLE 15.3 This recommended update for myspell-dictionaries provides: - Deliver missing myspell-de_CH and myspell-de_AT to the SUSE Linux Enterprise Basesystem Module. (bsc#1203307) - There are NO code changes. myspell-af_NA-20191219-150000.3.25.1.noarch.rpm myspell-af_ZA-20191219-150000.3.25.1.noarch.rpm myspell-an-20191219-150000.3.25.1.noarch.rpm myspell-an_ES-20191219-150000.3.25.1.noarch.rpm myspell-ar-20191219-150000.3.25.1.noarch.rpm myspell-ar_AE-20191219-150000.3.25.1.noarch.rpm myspell-ar_BH-20191219-150000.3.25.1.noarch.rpm myspell-ar_DZ-20191219-150000.3.25.1.noarch.rpm myspell-ar_EG-20191219-150000.3.25.1.noarch.rpm myspell-ar_IQ-20191219-150000.3.25.1.noarch.rpm myspell-ar_JO-20191219-150000.3.25.1.noarch.rpm myspell-ar_KW-20191219-150000.3.25.1.noarch.rpm myspell-ar_LB-20191219-150000.3.25.1.noarch.rpm myspell-ar_LY-20191219-150000.3.25.1.noarch.rpm myspell-ar_MA-20191219-150000.3.25.1.noarch.rpm myspell-ar_OM-20191219-150000.3.25.1.noarch.rpm myspell-ar_QA-20191219-150000.3.25.1.noarch.rpm myspell-ar_SA-20191219-150000.3.25.1.noarch.rpm myspell-ar_SD-20191219-150000.3.25.1.noarch.rpm myspell-ar_SY-20191219-150000.3.25.1.noarch.rpm myspell-ar_TN-20191219-150000.3.25.1.noarch.rpm myspell-ar_YE-20191219-150000.3.25.1.noarch.rpm myspell-be_BY-20191219-150000.3.25.1.noarch.rpm myspell-bg_BG-20191219-150000.3.25.1.noarch.rpm myspell-bn_BD-20191219-150000.3.25.1.noarch.rpm myspell-bn_IN-20191219-150000.3.25.1.noarch.rpm myspell-bo-20191219-150000.3.25.1.noarch.rpm myspell-bo_CN-20191219-150000.3.25.1.noarch.rpm myspell-bo_IN-20191219-150000.3.25.1.noarch.rpm myspell-br_FR-20191219-150000.3.25.1.noarch.rpm myspell-bs-20191219-150000.3.25.1.noarch.rpm myspell-bs_BA-20191219-150000.3.25.1.noarch.rpm myspell-ca-20191219-150000.3.25.1.noarch.rpm myspell-ca_AD-20191219-150000.3.25.1.noarch.rpm myspell-ca_ES-20191219-150000.3.25.1.noarch.rpm myspell-ca_ES_valencia-20191219-150000.3.25.1.noarch.rpm myspell-ca_FR-20191219-150000.3.25.1.noarch.rpm myspell-ca_IT-20191219-150000.3.25.1.noarch.rpm myspell-cs_CZ-20191219-150000.3.25.1.noarch.rpm myspell-da_DK-20191219-150000.3.25.1.noarch.rpm myspell-de-20191219-150000.3.25.1.noarch.rpm myspell-de_AT-20191219-150000.3.25.1.noarch.rpm myspell-de_CH-20191219-150000.3.25.1.noarch.rpm myspell-de_DE-20191219-150000.3.25.1.noarch.rpm myspell-dictionaries-20191219-150000.3.25.1.src.rpm myspell-dictionaries-20191219-150000.3.25.1.x86_64.rpm myspell-el_GR-20191219-150000.3.25.1.noarch.rpm myspell-en-20191219-150000.3.25.1.noarch.rpm myspell-en_AU-20191219-150000.3.25.1.noarch.rpm myspell-en_BS-20191219-150000.3.25.1.noarch.rpm myspell-en_BZ-20191219-150000.3.25.1.noarch.rpm myspell-en_CA-20191219-150000.3.25.1.noarch.rpm myspell-en_GB-20191219-150000.3.25.1.noarch.rpm myspell-en_GH-20191219-150000.3.25.1.noarch.rpm myspell-en_IE-20191219-150000.3.25.1.noarch.rpm myspell-en_IN-20191219-150000.3.25.1.noarch.rpm myspell-en_JM-20191219-150000.3.25.1.noarch.rpm myspell-en_MW-20191219-150000.3.25.1.noarch.rpm myspell-en_NA-20191219-150000.3.25.1.noarch.rpm myspell-en_NZ-20191219-150000.3.25.1.noarch.rpm myspell-en_PH-20191219-150000.3.25.1.noarch.rpm myspell-en_TT-20191219-150000.3.25.1.noarch.rpm myspell-en_US-20191219-150000.3.25.1.noarch.rpm myspell-en_ZA-20191219-150000.3.25.1.noarch.rpm myspell-en_ZW-20191219-150000.3.25.1.noarch.rpm myspell-es-20191219-150000.3.25.1.noarch.rpm myspell-es_AR-20191219-150000.3.25.1.noarch.rpm myspell-es_BO-20191219-150000.3.25.1.noarch.rpm myspell-es_CL-20191219-150000.3.25.1.noarch.rpm myspell-es_CO-20191219-150000.3.25.1.noarch.rpm myspell-es_CR-20191219-150000.3.25.1.noarch.rpm myspell-es_CU-20191219-150000.3.25.1.noarch.rpm myspell-es_DO-20191219-150000.3.25.1.noarch.rpm myspell-es_EC-20191219-150000.3.25.1.noarch.rpm myspell-es_ES-20191219-150000.3.25.1.noarch.rpm myspell-es_GT-20191219-150000.3.25.1.noarch.rpm myspell-es_HN-20191219-150000.3.25.1.noarch.rpm myspell-es_MX-20191219-150000.3.25.1.noarch.rpm myspell-es_NI-20191219-150000.3.25.1.noarch.rpm myspell-es_PA-20191219-150000.3.25.1.noarch.rpm myspell-es_PE-20191219-150000.3.25.1.noarch.rpm myspell-es_PR-20191219-150000.3.25.1.noarch.rpm myspell-es_PY-20191219-150000.3.25.1.noarch.rpm myspell-es_SV-20191219-150000.3.25.1.noarch.rpm myspell-es_UY-20191219-150000.3.25.1.noarch.rpm myspell-es_VE-20191219-150000.3.25.1.noarch.rpm myspell-et_EE-20191219-150000.3.25.1.noarch.rpm myspell-fr_BE-20191219-150000.3.25.1.noarch.rpm myspell-fr_CA-20191219-150000.3.25.1.noarch.rpm myspell-fr_CH-20191219-150000.3.25.1.noarch.rpm myspell-fr_FR-20191219-150000.3.25.1.noarch.rpm myspell-fr_LU-20191219-150000.3.25.1.noarch.rpm myspell-fr_MC-20191219-150000.3.25.1.noarch.rpm myspell-gd_GB-20191219-150000.3.25.1.noarch.rpm myspell-gl-20191219-150000.3.25.1.noarch.rpm myspell-gl_ES-20191219-150000.3.25.1.noarch.rpm myspell-gu_IN-20191219-150000.3.25.1.noarch.rpm myspell-gug-20191219-150000.3.25.1.noarch.rpm myspell-gug_PY-20191219-150000.3.25.1.noarch.rpm myspell-he_IL-20191219-150000.3.25.1.noarch.rpm myspell-hi_IN-20191219-150000.3.25.1.noarch.rpm myspell-hr_HR-20191219-150000.3.25.1.noarch.rpm myspell-hu_HU-20191219-150000.3.25.1.noarch.rpm myspell-id-20191219-150000.3.25.1.noarch.rpm myspell-id_ID-20191219-150000.3.25.1.noarch.rpm myspell-is-20191219-150000.3.25.1.noarch.rpm myspell-is_IS-20191219-150000.3.25.1.noarch.rpm myspell-it_IT-20191219-150000.3.25.1.noarch.rpm myspell-kmr_Latn-20191219-150000.3.25.1.noarch.rpm myspell-kmr_Latn_SY-20191219-150000.3.25.1.noarch.rpm myspell-kmr_Latn_TR-20191219-150000.3.25.1.noarch.rpm myspell-lightproof-en-20191219-150000.3.25.1.x86_64.rpm myspell-lightproof-hu_HU-20191219-150000.3.25.1.x86_64.rpm myspell-lightproof-pt_BR-20191219-150000.3.25.1.x86_64.rpm myspell-lightproof-ru_RU-20191219-150000.3.25.1.x86_64.rpm myspell-lo_LA-20191219-150000.3.25.1.noarch.rpm myspell-lt_LT-20191219-150000.3.25.1.noarch.rpm myspell-lv_LV-20191219-150000.3.25.1.noarch.rpm myspell-nb_NO-20191219-150000.3.25.1.noarch.rpm myspell-ne_NP-20191219-150000.3.25.1.noarch.rpm myspell-nl_BE-20191219-150000.3.25.1.noarch.rpm myspell-nl_NL-20191219-150000.3.25.1.noarch.rpm myspell-nn_NO-20191219-150000.3.25.1.noarch.rpm myspell-no-20191219-150000.3.25.1.noarch.rpm myspell-oc_FR-20191219-150000.3.25.1.noarch.rpm myspell-pl_PL-20191219-150000.3.25.1.noarch.rpm myspell-pt_AO-20191219-150000.3.25.1.noarch.rpm myspell-pt_BR-20191219-150000.3.25.1.noarch.rpm myspell-pt_PT-20191219-150000.3.25.1.noarch.rpm myspell-ro-20191219-150000.3.25.1.noarch.rpm myspell-ro_RO-20191219-150000.3.25.1.noarch.rpm myspell-ru_RU-20191219-150000.3.25.1.noarch.rpm myspell-si_LK-20191219-150000.3.25.1.noarch.rpm myspell-sk_SK-20191219-150000.3.25.1.noarch.rpm myspell-sl_SI-20191219-150000.3.25.1.noarch.rpm myspell-sq_AL-20191219-150000.3.25.1.noarch.rpm myspell-sr-20191219-150000.3.25.1.noarch.rpm myspell-sr_CS-20191219-150000.3.25.1.noarch.rpm myspell-sr_Latn_CS-20191219-150000.3.25.1.noarch.rpm myspell-sr_Latn_RS-20191219-150000.3.25.1.noarch.rpm myspell-sr_RS-20191219-150000.3.25.1.noarch.rpm myspell-sv_FI-20191219-150000.3.25.1.noarch.rpm myspell-sv_SE-20191219-150000.3.25.1.noarch.rpm myspell-sw_TZ-20191219-150000.3.25.1.noarch.rpm myspell-te-20191219-150000.3.25.1.noarch.rpm myspell-te_IN-20191219-150000.3.25.1.noarch.rpm myspell-th_TH-20191219-150000.3.25.1.noarch.rpm myspell-tr-20191219-150000.3.25.1.noarch.rpm myspell-tr_TR-20191219-150000.3.25.1.noarch.rpm myspell-uk_UA-20191219-150000.3.25.1.noarch.rpm myspell-vi-20191219-150000.3.25.1.noarch.rpm myspell-vi_VN-20191219-150000.3.25.1.noarch.rpm myspell-zu_ZA-20191219-150000.3.25.1.noarch.rpm myspell-dictionaries-20191219-150000.3.25.1.s390x.rpm myspell-lightproof-en-20191219-150000.3.25.1.s390x.rpm myspell-lightproof-hu_HU-20191219-150000.3.25.1.s390x.rpm myspell-lightproof-pt_BR-20191219-150000.3.25.1.s390x.rpm myspell-lightproof-ru_RU-20191219-150000.3.25.1.s390x.rpm myspell-dictionaries-20191219-150000.3.25.1.ppc64le.rpm myspell-lightproof-en-20191219-150000.3.25.1.ppc64le.rpm myspell-lightproof-hu_HU-20191219-150000.3.25.1.ppc64le.rpm myspell-lightproof-pt_BR-20191219-150000.3.25.1.ppc64le.rpm myspell-lightproof-ru_RU-20191219-150000.3.25.1.ppc64le.rpm myspell-dictionaries-20191219-150000.3.25.1.aarch64.rpm myspell-lightproof-en-20191219-150000.3.25.1.aarch64.rpm myspell-lightproof-hu_HU-20191219-150000.3.25.1.aarch64.rpm myspell-lightproof-pt_BR-20191219-150000.3.25.1.aarch64.rpm myspell-lightproof-ru_RU-20191219-150000.3.25.1.aarch64.rpm openSUSE-SLE-15.3-2022-3673 moderate SUSE Updates openSUSE-SLE 15.3 This update for jasper fixes the following issues: - CVE-2022-2963: Fixed memory leaks in function cmdopts_parse (bsc#1202642). jasper-2.0.14-150000.3.28.1.src.rpm jasper-2.0.14-150000.3.28.1.x86_64.rpm libjasper-devel-2.0.14-150000.3.28.1.x86_64.rpm libjasper4-2.0.14-150000.3.28.1.x86_64.rpm libjasper4-32bit-2.0.14-150000.3.28.1.x86_64.rpm jasper-2.0.14-150000.3.28.1.s390x.rpm libjasper-devel-2.0.14-150000.3.28.1.s390x.rpm libjasper4-2.0.14-150000.3.28.1.s390x.rpm jasper-2.0.14-150000.3.28.1.ppc64le.rpm libjasper-devel-2.0.14-150000.3.28.1.ppc64le.rpm libjasper4-2.0.14-150000.3.28.1.ppc64le.rpm jasper-2.0.14-150000.3.28.1.aarch64.rpm libjasper-devel-2.0.14-150000.3.28.1.aarch64.rpm libjasper4-2.0.14-150000.3.28.1.aarch64.rpm openSUSE-SLE-15.3-2022-4501 important SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: ceph was updated to the Pacific release (16.2.9-536-g41a9f9a5573): + (bsc#1195359, bsc#1200553) rgw: check bucket shard init status in RGWRadosBILogTrimCR + (bsc#1194131) ceph-volume: honour osd_dmcrypt_key_size option (CVE-2021-3979) + (bsc#1200064,) Remove last vestiges of docker.io image paths + (bsc#1196044) cephadm: prometheus: The generatorURL in alerts is only using hostname + (bsc#1196785) cephadm: avoid crashing on expected non-zero exit + (jsc#SES-2515) High-availability NFS export + (bsc#1194875) [SES7P] include/buffer: include <memory> + cephadm: update image paths to registry.suse.com + cephadm: use snmp-notifier image from registry.suse.de + cephadm: infer the default container image during pull + mgr/cephadm: try to get FQDN for inventory address + (bsc#1194875) common: fix FTBFS due to dout & need_dynamic on GCC-12 + (bsc#1196938) cephadm: preserve authorized_keys file during upgrade + Update Prometheus Container image paths (pr #459) + mgr/dashboard: Fix documentation URL (pr #456) + mgr/dashboard: Adapt downstream branded navigation page (pr #454) + Update prometheus-server version + (bsc#1194353) Downstream branding breaks dashboard npm build + (bsc#1178073) mgr/dashboard: fix downstream NFS doc links ceph-16.2.9.536+g41a9f9a5573-150300.6.3.1.src.rpm ceph-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm ceph-base-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm ceph-common-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm ceph-fuse-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm ceph-grafana-dashboards-16.2.9.536+g41a9f9a5573-150300.6.3.1.noarch.rpm ceph-immutable-object-cache-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm ceph-mds-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm ceph-mgr-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm ceph-mgr-cephadm-16.2.9.536+g41a9f9a5573-150300.6.3.1.noarch.rpm ceph-mgr-dashboard-16.2.9.536+g41a9f9a5573-150300.6.3.1.noarch.rpm ceph-mgr-diskprediction-local-16.2.9.536+g41a9f9a5573-150300.6.3.1.noarch.rpm ceph-mgr-k8sevents-16.2.9.536+g41a9f9a5573-150300.6.3.1.noarch.rpm ceph-mgr-modules-core-16.2.9.536+g41a9f9a5573-150300.6.3.1.noarch.rpm ceph-mgr-rook-16.2.9.536+g41a9f9a5573-150300.6.3.1.noarch.rpm ceph-mon-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm ceph-osd-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm ceph-prometheus-alerts-16.2.9.536+g41a9f9a5573-150300.6.3.1.noarch.rpm ceph-radosgw-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm ceph-test-16.2.9.536+g41a9f9a5573-150300.6.3.1.src.rpm ceph-test-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm cephadm-16.2.9.536+g41a9f9a5573-150300.6.3.1.noarch.rpm cephfs-shell-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm fmt-8.0.1-150300.7.5.1.src.rpm libcephfs-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm libcephfs2-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm libfmt8-8.0.1-150300.7.5.1.x86_64.rpm librados-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm librados2-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm libradospp-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm librbd-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm librbd1-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm librgw-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm librgw2-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm python3-ceph-argparse-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm python3-ceph-common-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm python3-cephfs-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm python3-rados-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm python3-rbd-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm python3-rgw-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm rados-objclass-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm rbd-fuse-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm rbd-mirror-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm rbd-nbd-16.2.9.536+g41a9f9a5573-150300.6.3.1.x86_64.rpm ceph-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm ceph-base-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm ceph-common-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm ceph-fuse-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm ceph-immutable-object-cache-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm ceph-mds-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm ceph-mgr-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm ceph-mon-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm ceph-osd-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm ceph-radosgw-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm cephfs-shell-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm libcephfs-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm libcephfs2-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm libfmt8-8.0.1-150300.7.5.1.s390x.rpm librados-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm librados2-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm libradospp-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm librbd-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm librbd1-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm librgw-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm librgw2-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm python3-ceph-argparse-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm python3-ceph-common-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm python3-cephfs-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm python3-rados-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm python3-rbd-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm python3-rgw-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm rados-objclass-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm rbd-fuse-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm rbd-mirror-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm rbd-nbd-16.2.9.536+g41a9f9a5573-150300.6.3.1.s390x.rpm ceph-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm ceph-base-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm ceph-common-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm ceph-fuse-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm ceph-immutable-object-cache-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm ceph-mds-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm ceph-mgr-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm ceph-mon-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm ceph-osd-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm ceph-radosgw-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm cephfs-shell-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm libcephfs-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm libcephfs2-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm libfmt8-8.0.1-150300.7.5.1.ppc64le.rpm librados-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm librados2-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm libradospp-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm librbd-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm librbd1-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm librgw-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm librgw2-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm python3-ceph-argparse-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm python3-ceph-common-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm python3-cephfs-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm python3-rados-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm python3-rbd-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm python3-rgw-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm rados-objclass-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm rbd-fuse-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm rbd-mirror-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm rbd-nbd-16.2.9.536+g41a9f9a5573-150300.6.3.1.ppc64le.rpm ceph-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm ceph-base-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm ceph-common-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm ceph-fuse-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm ceph-immutable-object-cache-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm ceph-mds-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm ceph-mgr-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm ceph-mon-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm ceph-osd-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm ceph-radosgw-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm cephfs-shell-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm libcephfs-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm libcephfs2-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm libfmt8-8.0.1-150300.7.5.1.aarch64.rpm librados-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm librados2-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm libradospp-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm librbd-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm librbd1-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm librgw-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm librgw2-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm python3-ceph-argparse-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm python3-ceph-common-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm python3-cephfs-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm python3-rados-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm python3-rbd-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm python3-rgw-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm rados-objclass-devel-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm rbd-fuse-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm rbd-mirror-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm rbd-nbd-16.2.9.536+g41a9f9a5573-150300.6.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3398 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: - Update to rust version 1.63.0 - for details see the rust1.63 package cargo-1.63.0-150300.21.32.1.x86_64.rpm cargo1.63-1.63.0-150300.7.3.1.x86_64.rpm rust-1.63.0-150300.21.32.1.src.rpm rust-1.63.0-150300.21.32.1.x86_64.rpm rust1.63-1.63.0-150300.7.3.1.src.rpm rust1.63-1.63.0-150300.7.3.1.x86_64.rpm cargo-1.63.0-150300.21.32.1.s390x.rpm cargo1.63-1.63.0-150300.7.3.1.s390x.rpm rust-1.63.0-150300.21.32.1.s390x.rpm rust1.63-1.63.0-150300.7.3.1.s390x.rpm cargo-1.63.0-150300.21.32.1.ppc64le.rpm cargo1.63-1.63.0-150300.7.3.1.ppc64le.rpm rust-1.63.0-150300.21.32.1.ppc64le.rpm rust1.63-1.63.0-150300.7.3.1.ppc64le.rpm cargo-1.63.0-150300.21.32.1.aarch64.rpm cargo1.63-1.63.0-150300.7.3.1.aarch64.rpm rust-1.63.0-150300.21.32.1.aarch64.rpm rust1.63-1.63.0-150300.7.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3451 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust1.62 fixes the following issues: - CVE-2022-36113: Fixed symlink hijack vulnerability (bsc#1203433). - CVE-2022-36114: Fixed zip bomb vulnerability (bsc#1203431). cargo1.62-1.62.1-150300.7.7.1.x86_64.rpm rust1.62-1.62.1-150300.7.7.1.src.rpm rust1.62-1.62.1-150300.7.7.1.x86_64.rpm cargo1.62-1.62.1-150300.7.7.1.s390x.rpm rust1.62-1.62.1-150300.7.7.1.s390x.rpm cargo1.62-1.62.1-150300.7.7.1.ppc64le.rpm rust1.62-1.62.1-150300.7.7.1.ppc64le.rpm cargo1.62-1.62.1-150300.7.7.1.aarch64.rpm rust1.62-1.62.1-150300.7.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-3400 moderate SUSE Updates openSUSE-SLE 15.3 This update for libcaca fixes the following issues: - CVE-2021-3410: Fixed overflow when multiplying large ints (bsc#1182731). caca-utils-0.99.beta19.git20171003-150200.11.9.1.x86_64.rpm libcaca-0.99.beta19.git20171003-150200.11.9.1.src.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.9.1.x86_64.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.9.1.x86_64.rpm libcaca0-0.99.beta19.git20171003-150200.11.9.1.x86_64.rpm libcaca0-32bit-0.99.beta19.git20171003-150200.11.9.1.x86_64.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.9.1.x86_64.rpm libcaca0-plugins-32bit-0.99.beta19.git20171003-150200.11.9.1.x86_64.rpm python3-caca-0.99.beta19.git20171003-150200.11.9.1.noarch.rpm caca-utils-0.99.beta19.git20171003-150200.11.9.1.s390x.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.9.1.s390x.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.9.1.s390x.rpm libcaca0-0.99.beta19.git20171003-150200.11.9.1.s390x.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.9.1.s390x.rpm caca-utils-0.99.beta19.git20171003-150200.11.9.1.ppc64le.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.9.1.ppc64le.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.9.1.ppc64le.rpm libcaca0-0.99.beta19.git20171003-150200.11.9.1.ppc64le.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.9.1.ppc64le.rpm caca-utils-0.99.beta19.git20171003-150200.11.9.1.aarch64.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.9.1.aarch64.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.9.1.aarch64.rpm libcaca0-0.99.beta19.git20171003-150200.11.9.1.aarch64.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-4387 moderate SUSE Updates openSUSE-SLE 15.3 This update for libteam fixes the following issues: - Set ports priority to local and kernel configurations (bsc#1200505) libteam-1.27-150000.4.6.1.src.rpm libteam-devel-1.27-150000.4.6.1.x86_64.rpm libteam-tools-1.27-150000.4.6.1.x86_64.rpm libteam5-1.27-150000.4.6.1.x86_64.rpm libteamdctl0-1.27-150000.4.6.1.x86_64.rpm python-libteam-1.27-150000.4.6.1.x86_64.rpm libteam-devel-1.27-150000.4.6.1.s390x.rpm libteam-tools-1.27-150000.4.6.1.s390x.rpm libteam5-1.27-150000.4.6.1.s390x.rpm libteamdctl0-1.27-150000.4.6.1.s390x.rpm python-libteam-1.27-150000.4.6.1.s390x.rpm libteam-devel-1.27-150000.4.6.1.ppc64le.rpm libteam-tools-1.27-150000.4.6.1.ppc64le.rpm libteam5-1.27-150000.4.6.1.ppc64le.rpm libteamdctl0-1.27-150000.4.6.1.ppc64le.rpm python-libteam-1.27-150000.4.6.1.ppc64le.rpm libteam-devel-1.27-150000.4.6.1.aarch64.rpm libteam-tools-1.27-150000.4.6.1.aarch64.rpm libteam5-1.27-150000.4.6.1.aarch64.rpm libteamdctl0-1.27-150000.4.6.1.aarch64.rpm python-libteam-1.27-150000.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3609 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-39190: Fixed an issue that was discovered in net/netfilter/nf_tables_api.c and could cause a denial of service upon binding to an already bound chain (bnc#1203117). - CVE-2022-39188: Fixed race condition in include/asm-generic/tlb.h where a device driver can free a page while it still has stale TLB entries (bnc#1203107). - CVE-2022-36879: Fixed an issue in xfrm_expand_policies in net/xfrm/xfrm_policy.c where a refcount could be dropped twice (bnc#1201948). - CVE-2022-3028: Fixed race condition that was found in the IP framework for transforming packets (XFRM subsystem) (bnc#1202898). - CVE-2022-2977: Fixed reference counting for struct tpm_chip (bsc#1202672). - CVE-2022-2905: Fixed tnum_range usage on array range checking for poke descriptors (bsc#1202564, bsc#1202860). - CVE-2022-2663: Fixed an issue that was found in nf_conntrack_irc where the message handling could be confused and incorrectly matches the message (bnc#1202097). - CVE-2022-2639: Fixed an integer coercion error that was found in the openvswitch kernel module (bnc#1202154). - CVE-2022-26373: Fixed non-transparent sharing of return predictor targets between contexts in some Intel Processors (bnc#1201726). - CVE-2022-2588: Fixed use-after-free in cls_route (bsc#1202096). - CVE-2022-20369: Fixed out of bounds write in v4l2_m2m_querybuf of v4l2-mem2mem.c (bnc#1202347). - CVE-2022-20368: Fixed slab-out-of-bounds access in packet_recvmsg() (bsc#1202346). - CVE-2021-4203: Fixed use-after-free read flaw that was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (bnc#1194535). - CVE-2021-4155: Fixed a data leak flaw that was found in the way XFS_IOC_ALLOCSP IOCTL in the XFS filesystem (bnc#1194272). - CVE-2020-36516: Fixed an issue in the mixed IPID assignment method where an attacker was able to inject data into or terminate a victim's TCP session (bnc#1196616). - CVE-2020-27784: Fixed a vulnerability that was found in printer_ioctl() printer_ioctl() when accessing a deallocated instance (bnc#1202895). - CVE-2016-3695: Fixed an issue inside the einj_error_inject function in drivers/acpi/apei/einj.c that allowed users to simulate hardware errors and consequently cause a denial of service (bnc#1023051). - CVE-2022-3303: Fixed a race condition in the sound subsystem due to improper locking (bnc#1203769). - CVE-2022-41218: Fixed an use-after-free caused by refcount races in drivers/media/dvb-core/dmxdev.c (bnc#1202960). - CVE-2022-3239: Fixed an use-after-free in the video4linux driver that could lead a local user to able to crash the system or escalate their privileges (bnc#1203552). - CVE-2022-41848: Fixed a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling ioctl (bnc#1203987). - CVE-2022-41849: Fixed a race condition and resultant use-after-free if a physically proximate attacker removes a USB device while calling open (bnc#1203992). - CVE-2022-2586: Fixed a use-after-free which can be triggered when a nft table is deleted (bnc#1202095). - CVE-2022-41222: Fixed a use-after-free via a stale TLB because an rmap lock is not held during a PUD move (bnc#1203622). - CVE-2022-2503: Fixed a bug in dm-verity, device-mapper table reloads allowed users with root privileges to switch out the target with an equivalent dm-linear target and bypass verification till reboot. This allowed root to bypass LoadPin and can be used to load untrusted and unverified kernel modules and firmware, which implies arbitrary kernel execution and persistence for peripherals that do not verify firmware updates (bnc#1202677). - CVE-2020-16119: Fixed a use-after-free vulnerability exploitable by a local attacker due to reuse of a DCCP socket. (bnc#1177471) The following non-security bugs were fixed: - ACPI: APEI: Better fix to avoid spamming the console with old error logs (git-fixes). - ACPI: CPPC: Do not prevent CPPC from working in the future (git-fixes). - ACPI: EC: Remove duplicate ThinkPad X1 Carbon 6th entry from DMI quirks (git-fixes). - ACPI: LPSS: Fix missing check in register_device_clock() (git-fixes). - ACPI: PM: save NVS memory for Lenovo G40-45 (git-fixes). - ACPI: processor: Remove freq Qos request for all CPUs (git-fixes). - ACPI: property: Return type of acpi_add_nondev_subnodes() should be bool (git-fixes). - ACPI: video: Force backlight native for some TongFang devices (git-fixes). - ACPI: video: Shortening quirk list by identifying Clevo by board_name only (git-fixes). - ALSA: aloop: Fix random zeros in capture data when using jiffies timer (git-fixes). - ALSA: bcd2000: Fix a UAF bug on the error path of probing (git-fixes). - ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc() (git-fixes). - ALSA: hda/cirrus - support for iMac 12,1 model (git-fixes). - ALSA: hda/conexant: Add quirk for LENOVO 20149 Notebook model (git-fixes). - ALSA: hda/realtek: Add a quirk for HP OMEN 15 (8786) mute LED (git-fixes). - ALSA: hda/realtek: Add mute LED quirk for HP Omen laptop (git-fixes). - ALSA: hda/realtek: Add new alc285-hp-amp-init model (git-fixes). - ALSA: hda/realtek: Add quirk for another Asus K42JZ model (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo L140PU (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP50PNJ (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP70PNJ (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP70PNP (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NS50PU (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NV45PZ (git-fixes). - ALSA: hda/realtek: Add quirk for Dell Latitude 7520 (git-fixes). - ALSA: hda/realtek: Add quirk for HP Dev One (git-fixes). - ALSA: hda/realtek: Add quirk for HP Spectre x360 15-eb0xxx (git-fixes). - ALSA: hda/realtek: Add quirk for the Framework Laptop (git-fixes). - ALSA: hda/realtek: Add quirk for TongFang devices with pop noise (git-fixes). - ALSA: hda/realtek: Fix deadlock by COEF mutex (git-fixes). - ALSA: hda/realtek: Fix headset mic for Acer SF313-51 (git-fixes). - ALSA: hda/realtek: Fix LED on HP ProBook 435 G7 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for a HP ProBook (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP machines (git-fixes). - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machine (git-fixes). - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machines (git-fixes). - ALSA: hda/realtek: Re-arrange quirk table entries (git-fixes). - ALSA: info: Fix llseek return value when using callback (git-fixes). - ALSA: seq: Fix data-race at module auto-loading (git-fixes). - ALSA: seq: oss: Fix data-race for max_midi_devs access (git-fixes). - ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() (git-fixes). - ALSA: usb-audio: fix spelling mistakes (git-fixes). - ALSA: usb-audio: Inform the delayed registration more properly (git-fixes). - ALSA: usb-audio: More comprehensive mixer map for ASUS ROG Zenith II (git-fixes). - ALSA: usb-audio: Register card again for iface over delayed_register option (git-fixes). - ALSA: usb-audio: Split endpoint setups for hw_params and prepare (git-fixes). - ARM: 9077/1: PLT: Move struct plt_entries definition to header (git-fixes). - ARM: 9078/1: Add warn suppress parameter to arm_gen_branch_link() (git-fixes). - ARM: 9079/1: ftrace: Add MODULE_PLTS support (git-fixes). - ARM: 9098/1: ftrace: MODULE_PLT: Fix build problem without DYNAMIC_FTRACE (git-fixes). - arm64: cpufeature: Allow different PMU versions in ID_DFR0_EL1 (git-fixes) - arm64: dts: allwinner: A64 Sopine: phy-mode rgmii-id (git-fixes) - arm64: dts: allwinner: a64-sopine-baseboard: change RGMII mode to (bsc#1202341) - arm64: dts: allwinner: H5: NanoPi Neo Plus2: phy-mode rgmii-id (git-fixes) - arm64: dts: rockchip: Pull up wlan wake# on Gru-Bob (git-fixes) - arm64: dts: rockchip: Remove 'enable-active-low' from rk3399-puma (git-fixes) - arm64: dts: rockchip: Set RK3399-Gru PCLK_EDP to 24 MHz (git-fixes) - arm64: dts: uniphier: Fix USB interrupts for PXs3 SoC (git-fixes) - arm64: kexec_file: use more system keyrings to verify kernel image signature (bsc#1196444). - arm64: mm: Always update TCR_EL1 from __cpu_set_tcr_t0sz() (git-fixes) - arm64: mm: fix p?d_leaf() (git-fixes) - arm64: mm: use a 48-bit ID map when possible on 52-bit VA builds (git-fixes) - arm64: mm: Validate hotplug range before creating linear mapping (git-fixes) - arm64: signal: nofpsimd: Do not allocate fp/simd context when not available (git-fixes). - arm64: tegra: Fix SDMMC1 CD on P2888 (git-fixes) - arm64: tegra: Remove non existent Tegra194 reset (git-fixes) - arm64: tlb: fix the TTL value of tlb_get_level (git-fixes) - asm-generic: sections: refactor memory_intersects (git-fixes). - ASoC: audio-graph-card: Add of_node_put() in fail path (git-fixes). - ASoC: codecs: da7210: add check for i2c_add_driver (git-fixes). - ASoC: codecs: msm8916-wcd-digital: move gains from SX_TLV to S8_TLV (git-fixes). - ASoC: codecs: wcd9335: move gains from SX_TLV to S8_TLV (git-fixes). - ASoC: mt6797-mt6351: Fix refcount leak in mt6797_mt6351_dev_probe (git-fixes). - ASoC: qcom: q6dsp: Fix an off-by-one in q6adm_alloc_copp() (git-fixes). - ASoC: SOF: debug: Fix potential buffer overflow by snprintf() (git-fixes). - ASoC: tas2770: Allow mono streams (git-fixes). - ata: libata-eh: Add missing command name (git-fixes). - ath10k: do not enforce interrupt trigger type (git-fixes). - ath10k: Fix error handling in ath10k_setup_msa_resources (git-fixes). - atm: idt77252: fix use-after-free bugs caused by tst_timer (git-fixes). - blk-iocost: clamp inuse and skip noops in __propagate_weights() (bsc#1202722). - blk-iocost: fix operation ordering in iocg_wake_fn() (bsc#1202720). - blk-iocost: fix weight updates of inner active iocgs (bsc#1202717). - blk-iocost: rename propagate_active_weights() to propagate_weights() (bsc#1202722). - blktrace: fix blk_rq_merge documentation (git-fixes). - Bluetooth: hci_intel: Add check for platform_driver_register (git-fixes). - Bluetooth: L2CAP: Fix build errors in some archs (git-fixes). - Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm regression (git-fixes). - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put (git-fixes). - Bluetooth: MGMT: Fixes build warnings with C=1 (git-fixes). - bpf: Compile out btf_parse_module() if module BTF is not enabled (git-fixes). - bus: hisi_lpc: fix missing platform_device_put() in hisi_lpc_acpi_probe() (git-fixes). - can: Break loopback loop on loopback documentation (git-fixes). - can: ems_usb: fix clang's -Wunaligned-access warning (git-fixes). - can: error: specify the values of data[5..7] of CAN error frames (git-fixes). - can: hi311x: do not report txerr and rxerr during bus-off (git-fixes). - can: kvaser_usb_hydra: do not report txerr and rxerr during bus-off (git-fixes). - can: kvaser_usb_leaf: do not report txerr and rxerr during bus-off (git-fixes). - can: m_can: process interrupt only when not runtime suspended (git-fixes). - can: pch_can: do not report txerr and rxerr during bus-off (git-fixes). - can: pch_can: pch_can_error(): initialize errc before using it (git-fixes). - can: rcar_can: do not report txerr and rxerr during bus-off (git-fixes). - can: sja1000: do not report txerr and rxerr during bus-off (git-fixes). - can: sun4i_can: do not report txerr and rxerr during bus-off (git-fixes). - can: usb_8dev: do not report txerr and rxerr during bus-off (git-fixes). - ceph: do not leak snap_rwsem in handle_cap_grant (bsc#1202810). - ceph: do not truncate file in atomic_open (bsc#1202811). - cgroup: cgroup_get_from_id() must check the looked-up kn is a directory (bsc#1203906). - cgroup: Trace event cgroup id fields should be u64 (git-fixes). - cgroup: Use separate src/dst nodes when preloading css_sets for migration (bsc#1201610). - clk: bcm: rpi: Fix error handling of raspberrypi_fw_get_rate (git-fixes). - clk: core: Fix runtime PM sequence in clk_core_unprepare() (git-fixes). - clk: core: Honor CLK_OPS_PARENT_ENABLE for clk gate ops (git-fixes). - clk: qcom: camcc-sdm845: Fix topology around titan_top power domain (git-fixes). - clk: qcom: clk-krait: unlock spin after mux completion (git-fixes). - clk: qcom: ipq8074: dont disable gcc_sleep_clk_src (git-fixes). - clk: qcom: ipq8074: fix NSS core PLL-s (git-fixes). - clk: qcom: ipq8074: fix NSS port frequency tables (git-fixes). - clk: qcom: ipq8074: set BRANCH_HALT_DELAY flag for UBI clocks (git-fixes). - clk: qcom: ipq8074: SW workaround for UBI32 PLL lock (git-fixes). - clk: renesas: r9a06g032: Fix UART clkgrp bitsel (git-fixes). - clk: rockchip: add sclk_mac_lbtest to rk3188_critical_clocks (git-fixes). - coresight: cti: Correct the parameter for pm_runtime_put (git-fixes). - crypto: arm64/gcm - Select AEAD for GHASH_ARM64_CE (git-fixes) - crypto: arm64/poly1305 - fix a read out-of-bound (git-fixes) - devlink: Fix use-after-free after a failed reload (git-fixes). - dm raid: fix KASAN warning in raid5_add_disks (git-fixes). - dmaengine: sprd: Cleanup in .remove() after pm_runtime_get_sync() failed (git-fixes). - dpaa2-eth: unregister the netdev before disconnecting from the PHY (git-fixes). - driver core: Do not probe devices after bus_type.match() probe deferral (git-fixes). - driver core: fix potential deadlock in __driver_attach (git-fixes). - drm: adv7511: override i2c address of cec before accessing it (git-fixes). - drm: bridge: adv7511: Add check for mipi_dsi_driver_register (git-fixes). - drm: bridge: sii8620: fix possible off-by-one (git-fixes). - drm/amd/display: Enable building new display engine with KCOV enabled (git-fixes). - drm/amdgpu: Check BO's requested pinning domains against its preferred_domains (git-fixes). - drm/amdgpu: Check num_gfx_rings for gfx v9_0 rb setup (git-fixes). - drm/amdgpu: mmVM_L2_CNTL3 register not initialized correctly (git-fixes). - drm/amdgpu: remove useless condition in amdgpu_job_stop_all_jobs_on_sched() (git-fixes). - drm/bridge: tc358767: Make sure Refclk clock are enabled (git-fixes). - drm/doc: Fix comment typo (git-fixes). - drm/exynos/exynos7_drm_decon: free resources when clk_set_parent() failed (git-fixes). - drm/gem: Fix GEM handle release errors (git-fixes). - drm/gem: Properly annotate WW context on drm_gem_lock_reservations() error (git-fixes). - drm/i915/glk: ECS Liva Q2 needs GLK HDMI port timing quirk (git-fixes). - drm/i915/reg: Fix spelling mistake "Unsupport" -> "Unsupported" (git-fixes). - drm/mcde: Fix refcount leak in mcde_dsi_bind (git-fixes). - drm/mediatek: Add pull-down MIPI operation in mtk_dsi_poweroff function (git-fixes). - drm/mediatek: dpi: Only enable dpi after the bridge is enabled (git-fixes). - drm/mediatek: dpi: Remove output format of YUV (git-fixes). - drm/meson: Correct OSD1 global alpha value (git-fixes). - drm/meson: Fix OSD1 RGB to YCbCr coefficient (git-fixes). - drm/meson: Fix overflow implicit truncation warnings (git-fixes). - drm/meson: Fix refcount bugs in meson_vpu_has_available_connectors() (git-fixes). - drm/mipi-dbi: align max_chunk to 2 in spi_transfer (git-fixes). - drm/msm/dsi: Fix number of regulators for msm8996_dsi_cfg (git-fixes). - drm/msm/dsi: Fix number of regulators for SDM660 (git-fixes). - drm/msm/dsi: fix the inconsistent indenting (git-fixes). - drm/msm/hdmi: enable core-vcc/core-vdda-supply for 8996 platform (git-fixes). - drm/msm/mdp5: Fix global state lock backoff (git-fixes). - drm/msm/rd: Fix FIFO-full deadlock (git-fixes). - drm/nouveau: fix another off-by-one in nvbios_addr (git-fixes). - drm/radeon: add a force flush to delay work when radeon (git-fixes). - drm/radeon: fix incorrrect SPDX-License-Identifiers (git-fixes). - drm/radeon: fix potential buffer overflow in ni_set_mc_special_registers() (git-fixes). - drm/rockchip: Fix an error handling path rockchip_dp_probe() (git-fixes). - drm/rockchip: vop: Do not crash for invalid duplicate_state() (git-fixes). - drm/st7735r: Fix module autoloading for Okaya RH128128T (git-fixes). - drm/sun4i: dsi: Prevent underflow when computing packet sizes (git-fixes). - drm/vc4: dsi: Add correct stop condition to vc4_dsi_encoder_disable iteration (git-fixes). - drm/vc4: dsi: Correct DSI divider calculations (git-fixes). - drm/vc4: dsi: Correct pixel order for DSI0 (git-fixes). - drm/vc4: hdmi: Correct HDMI timing registers for interlaced modes (git-fixes). - drm/vc4: hdmi: Fix timings for interlaced modes (git-fixes). - drm/vc4: plane: Fix margin calculations for the right/bottom edges (git-fixes). - drm/vc4: plane: Remove subpixel positioning check (git-fixes). - efi: capsule-loader: Fix use-after-free in efi_capsule_write (git-fixes). - ehea: fix error return code in ehea_restart_qps() (git-fixes). - enetc: Fix endianness issues for enetc_qos (git-fixes). - ethernet: sun: niu: fix missing checks of niu_pci_eeprom_read() (git-fixes). - ext4: add reserved GDT blocks check (bsc#1202712). - ext4: do not set SB_ACTIVE in ext4_orphan_cleanup() (bsc#1202708). - ext4: do not use the orphan list when migrating an inode (bsc#1197756). - ext4: Fix BUG_ON in ext4_bread when write quota data (bsc#1197755). - ext4: fix bug_on in ext4_writepages (bsc#1200872). - ext4: fix error handling code in add_new_gdb (bsc#1179722). - ext4: fix error handling in ext4_restore_inline_data() (bsc#1197757). - ext4: fix invalid inode checksum (bsc#1179723). - ext4: fix loff_t overflow in ext4_max_bitmap_size() (bsc#1202709). - ext4: fix overhead calculation to account for the reserved gdt blocks (bsc#1200869). - ext4: fix potential infinite loop in ext4_dx_readdir() (bsc#1191662). - ext4: fix race when reusing xattr blocks (bsc#1198971). - ext4: fix symlink file size not match to file content (bsc#1200868). - ext4: fix use-after-free in ext4_rename_dir_prepare (bsc#1200871). - ext4: fix use-after-free in ext4_search_dir (bsc#1202710). - ext4: fix warning in ext4_handle_inode_extension (bsc#1202711). - ext4: force overhead calculation if the s_overhead_cluster makes no sense (bsc#1200870). - ext4: recover csum seed of tmp_inode after migrating to extents (bsc#1202713). - ext4: remove EA inode entry from mbcache on inode eviction (bsc#1198971). - ext4: unindent codeblock in ext4_xattr_block_set() (bsc#1198971). - fbcon: Fix boundary checks for fbcon=vc:n1-n2 parameters (git-fixes). - fbdev: chipsfb: Add missing pci_disable_device() in chipsfb_pci_init() (git-fixes). - fbdev: fb_pm2fb: Avoid potential divide by zero error (git-fixes). - firmware: tegra: bpmp: Do only aligned access to IPC memory area (git-fixes). - Fix parsing of rpm/macros.kernel-source on SLE12 (bsc#1201019). - fpga: altera-pr-ip: fix unsigned comparison with less than zero (git-fixes). - fs-writeback: writeback_sb_inodes: Recalculate 'wrote' according skipped pages (bsc#1200873). - ftrace: Fix NULL pointer dereference in is_ftrace_trampoline when ftrace is dead (git-fixes). - fuse: ioctl: translate ENOSYS (bsc#1203136). - fuse: limit nsec (bsc#1203135). - fuse: Remove the control interface for virtio-fs (bsc#1203137). - gadgetfs: ep_io - wait until IRQ finishes (git-fixes). - geneve: do not use RT_TOS for IPv6 flowlabel (git-fixes). - geneve: fix TOS inheriting for ipv4 (git-fixes). - gpio: gpiolib-of: Fix refcount bugs in of_mm_gpiochip_add_data() (git-fixes). - gpio: mpc8xxx: Fix support for IRQ_TYPE_LEVEL_LOW flow_type in mpc85xx (git-fixes). - gpio: pca953x: Add mutex_lock for regcache sync in PM (git-fixes). - HID: alps: Declare U1_UNICORN_LEGACY support (git-fixes). - HID: cp2112: prevent a buffer overflow in cp2112_xfer() (git-fixes). - HID: intel-ish-hid: ishtp: Fix ishtp client sending disordered message (git-fixes). - HID: ishtp-hid-clientHID: ishtp-hid-client: Fix comment typo (git-fixes). - HID: steam: Prevent NULL pointer dereference in steam_{recv,send}_report (git-fixes). - HID: wacom: Do not register pad_input for touch switch (git-fixes). - HID: wacom: Only report rotation for art pen (git-fixes). - hv_netvsc: Load and store the proper (NBL_HASH_INFO) per-packet info (bsc#1202701). - hwmon: (gpio-fan) Fix array out of bounds access (git-fixes). - i2c: cadence: Support PEC for SMBus block read (git-fixes). - i2c: Fix a potential use after free (git-fixes). - i2c: imx: Make sure to unregister adapter on remove() (git-fixes). - i2c: mux-gpmux: Add of_node_put() when breaking out of loop (git-fixes). - ice: report supported and advertised autoneg using PHY capabilities (git-fixes). - ieee802154: cc2520: add rc code in cc2520_tx() (git-fixes). - ieee802154/adf7242: defer destroy_workqueue call (git-fixes). - iio: accel: bma220: Fix alignment for DMA safety (git-fixes). - iio: accel: sca3000: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7266: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7298: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7476: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7766: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7768-1: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7887: Fix alignment for DMA safety (git-fixes). - iio: adc: hi8435: Fix alignment for DMA safety (git-fixes). - iio: adc: ltc2497: Fix alignment for DMA safety (git-fixes). - iio: adc: max1027: Fix alignment for DMA safety (git-fixes). - iio: adc: max11100: Fix alignment for DMA safety (git-fixes). - iio: adc: max1118: Fix alignment for DMA safety (git-fixes). - iio: adc: mcp320x: Fix alignment for DMA safety (git-fixes). - iio: adc: mcp3911: make use of the sign bit (git-fixes). - iio: adc: mcp3911: use correct formula for AD conversion (git-fixes). - iio: adc: ti-adc0832: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc084s021: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc12138: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc128s052: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc161s626: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads124s08: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads7950: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads8344: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads8688: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-tlc4541: Fix alignment for DMA safety (git-fixes). - iio: amplifiers: ad8366: Fix alignment for DMA safety (git-fixes). - iio: core: Fix IIO_ALIGN and rename as it was not sufficiently large (git-fixes). - iio: dac: ad5064: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5360: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5421: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5449: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5504: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5755: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5761: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5764: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5791: Fix alignment for DMA saftey (git-fixes). - iio: dac: ad7303: Fix alignment for DMA safety (git-fixes). - iio: dac: ad8801: Fix alignment for DMA safety (git-fixes). - iio: dac: mcp4922: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac082s085: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac5571: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac7311: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac7612: Fix alignment for DMA safety (git-fixes). - iio: frequency: ad9523: Fix alignment for DMA safety (git-fixes). - iio: frequency: adf4350: Fix alignment for DMA safety (git-fixes). - iio: frequency: adf4371: Fix alignment for DMA safety (git-fixes). - iio: gyro: adis16080: Fix alignment for DMA safety (git-fixes). - iio: gyro: adis16130: Fix alignment for DMA safety (git-fixes). - iio: gyro: adxrs450: Fix alignment for DMA safety (git-fixes). - iio: gyro: fxas210002c: Fix alignment for DMA safety (git-fixes). - iio: light: isl29028: Fix the warning in isl29028_remove() (git-fixes). - iio: potentiometer: ad5272: Fix alignment for DMA safety (git-fixes). - iio: potentiometer: max5481: Fix alignment for DMA safety (git-fixes). - iio: potentiometer: mcp41010: Fix alignment for DMA safety (git-fixes). - iio: potentiometer: mcp4131: Fix alignment for DMA safety (git-fixes). - iio: proximity: as3935: Fix alignment for DMA safety (git-fixes). - iio: resolver: ad2s1200: Fix alignment for DMA safety (git-fixes). - iio: resolver: ad2s90: Fix alignment for DMA safety (git-fixes). - ima: force signature verification when CONFIG_KEXEC_SIG is configured (bsc#1203737). - Input: iforce - add support for Boeder Force Feedback Wheel (git-fixes). - Input: iforce - wake up after clearing IFORCE_XMIT_RUNNING flag (git-fixes). - Input: melfas_mip4 - fix return value check in mip4_probe() (git-fixes). - Input: rk805-pwrkey - fix module autoloading (git-fixes). - Input: snvs_pwrkey - fix SNVS_HPVIDR1 register address (git-fixes). - intel_th: Fix a resource leak in an error handling path (git-fixes). - intel_th: msu-sink: Potential dereference of null pointer (git-fixes). - intel_th: msu: Fix vmalloced buffers (git-fixes). - intel_th: pci: Add Meteor Lake-P support (git-fixes). - intel_th: pci: Add Raptor Lake-S CPU support (git-fixes). - intel_th: pci: Add Raptor Lake-S PCH support (git-fixes). - iommu/amd: Simplify and Consolidate Virtual APIC (AVIC) Enablement (git-fixes). - iommu/arm-smmu: qcom_iommu: Add of_node_put() when breaking out of loop (git-fixes). - iommu/exynos: Handle failed IOMMU device registration properly (git-fixes). - iommu/iova: Improve 32-bit free space estimate (git-fixes). - iommu/ipmmu-vmsa: Check for error num after setting mask (git-fixes). - iommu/mediatek: Add list_del in mtk_iommu_remove (git-fixes). - iommu/msm: Fix an incorrect NULL check on list iterator (git-fixes). - iommu/omap: Fix regression in probe for NULL pointer dereference (git-fixes). - iommu/vt-d: avoid invalid memory access via node_online(NUMA_NO_NODE) (git-fixes). - iommu/vt-d: Calculate mask for non-aligned flushes (git-fixes). - iommu/vt-d: Fix PCI bus rescan device hot add (git-fixes). - iommu/vt-d: Fix RID2PASID setup/teardown failure (git-fixes). - ipheth: fix EOVERFLOW in ipheth_rcvbulk_callback (git-fixes). - ipmi: ssif: initialize ssif_info->client early (git-fixes). - ixgbevf: add correct exception tracing for XDP (git-fixes). - jbd2: fix assertion 'jh->b_frozen_data == NULL' failure when journal aborted (bsc#1202716). - jbd2: fix outstanding credits assert in jbd2_journal_commit_transaction() (bsc#1202715). - jfs: fix GPF in diFree (bsc#1203389). - JFS: fix memleak in jfs_mount (git-fixes). - JFS: more checks for invalid superblock (git-fixes). - jfs: prevent NULL deref in diFree (bsc#1203389). - kABI: cgroup: Restore KABI of css_set (bsc#1201610). - kABI: x86: kexec: hide new include from genksyms (bsc#1196444). - kabi/severities: add stmmac driver local sumbols - kexec: clean up arch_kexec_kernel_verify_sig (bsc#1196444). - kexec: do not verify the signature without the lockdown or mandatory signature (bsc#1203737). - kexec: drop weak attribute from arch_kexec_apply_relocations[_add] (bsc#1196444). - kexec: drop weak attribute from functions (bsc#1196444). - kexec: drop weak attribute from functions (bsc#1196444). - kexec: KEYS, s390: Make use of built-in and secondary keyring for signature verification (bsc#1196444). - kexec: KEYS: make the code in bzImage64_verify_sig generic (bsc#1196444). - kfifo: fix kfifo_to_user() return type (git-fixes). - kfifo: fix ternary sign extension bugs (git-fixes). - KVM: arm64: Avoid setting the upper 32 bits of TCR_EL2 and CPTR_EL2 (bsc#1201442) - KVM: nVMX: Let userspace set nVMX MSR to any _host_ supported value (git-fixes). - KVM: nVMX: Snapshot pre-VM-Enter BNDCFGS for !nested_run_pending case (git-fixes). - KVM: nVMX: Snapshot pre-VM-Enter DEBUGCTL for !nested_run_pending case (git-fixes). - KVM: PPC: Book3S HV: Context tracking exit guest context before enabling irqs (bsc#1065729). - KVM: PPC: Book3S HV: Prevent POWER7/8 TLB flush flushing SLB (bsc#1156395). - KVM: PPC: Book3S HV: Use GLOBAL_TOC for kvmppc_h_set_dabr/xdabr() (bsc#1156395). - KVM: PPC: Fix vmx/vsx mixup in mmio emulation (bsc#1156395). - KVM: PPC: Use arch_get_random_seed_long instead of powernv variant (bsc#1156395). - KVM: VMX: Refuse to load kvm_intel if EPT and NX are disabled (git-fixes). - KVM: x86: accept userspace interrupt only if no event is injected (git-fixes). - KVM: x86: Mark TSS busy during LTR emulation _after_ all fault checks (git-fixes). - KVM: x86: Set error code to segment selector on LLDT/LTR non-canonical #GP (git-fixes). - lib: bitmap: provide devm_bitmap_alloc() and devm_bitmap_zalloc() (git-fixes). - lib/list_debug.c: Detect uninitialized lists (git-fixes). - lightnvm: Remove lightnvm implemenation (bsc#1191881 bsc#1201420 ZDI-CAN-17325). - list: add "list_del_init_careful()" to go with "list_empty_careful()" (bsc#1202745). - locking/lockdep: Avoid potential access of invalid memory in lock_class (git-fixes). - loop: Fix missing discard support when using LOOP_CONFIGURE (bsc#1202718). - mbcache: add functions to delete entry if unused (bsc#1198971). - mbcache: do not reclaim used entries (bsc#1198971). - md-raid10: fix KASAN warning (git-fixes). - md: call __md_stop_writes in md_stop (git-fixes). - md: unlock mddev before reap sync_thread in action_store (bsc#1197659). - md/bitmap: do not set sb values if can't pass sanity check (bsc#1197158). - media: hdpvr: fix error value returns in hdpvr_read (git-fixes). - media: rc: increase rc-mm tolerance and add debug message (git-fixes). - media: rtl28xxu: add missing sleep before probing slave demod (git-fixes). - media: rtl28xxu: Add support for PROlectrix DV107669 DVB-T dongle (git-fixes). - media: rtl28xxu: set keymap for Astrometa DVB-T2 (git-fixes). - media: smipcie: fix interrupt handling and IR timeout (git-fixes). - media: tw686x: Register the irq at the end of probe (git-fixes). - media: usb: dvb-usb-v2: rtl28xxu: convert to use i2c_new_client_device() (git-fixes). - media: v4l2-mem2mem: always consider OUTPUT queue during poll (git-fixes). - media: v4l2-mem2mem: reorder checks in v4l2_m2m_poll() (git-fixes). - mediatek: mt76: mac80211: Fix missing of_node_put() in mt76_led_init() (git-fixes). - memstick/ms_block: Fix a memory leak (git-fixes). - memstick/ms_block: Fix some incorrect memory allocation (git-fixes). - meson-mx-socinfo: Fix refcount leak in meson_mx_socinfo_init (git-fixes). - mfd: max77620: Fix refcount leak in max77620_initialise_fps (git-fixes). - mfd: t7l66xb: Drop platform disable callback (git-fixes). - misc: fastrpc: fix memory corruption on open (git-fixes). - misc: fastrpc: fix memory corruption on probe (git-fixes). - misc: rtsx: Fix an error handling path in rtsx_pci_probe() (git-fixes). - mm: bdi: initialize bdi_min_ratio when bdi is unregistered (bsc#1197763). - mm: fix page reference leak in soft_offline_page() (git fixes (mm/memory-failure)). - mm: memcontrol: fix potential oom_lock recursion deadlock (bsc#1202447). - mm: pagewalk: Fix race between unmap and page walker (git-fixes, bsc#1203159). - mm: proc: smaps_rollup: do not stall write attempts on mmap_lock (bsc#1201990). - mm: rmap: Fix anon_vma->degree ambiguity leading to double-reuse (git-fixes, bsc#1203098). - mm: smaps*: extend smap_gather_stats to support specified beginning (bsc#1201990). - mmap locking API: add mmap_lock_is_contended() (bsc#1201990). - mmc: cavium-octeon: Add of_node_put() when breaking out of loop (git-fixes). - mmc: cavium-thunderx: Add of_node_put() when breaking out of loop (git-fixes). - mmc: pxamci: Fix an error handling path in pxamci_probe() (git-fixes). - mmc: pxamci: Fix another error handling path in pxamci_probe() (git-fixes). - mmc: sdhci-of-at91: fix set_uhs_signaling rewriting of MC1R (git-fixes). - mmc: sdhci-of-esdhc: Fix refcount leak in esdhc_signal_voltage_switch (git-fixes). - module: Ignore _GLOBAL_OFFSET_TABLE_ when warning for undefined symbols (git-fixes). - mt76: mt76x02u: fix possible memory leak in __mt76x02u_mcu_send_msg (git-fixes). - mt7601u: add USB device ID for some versions of XiaoDu WiFi Dongle (git-fixes). - mtd: maps: Fix refcount leak in ap_flash_init (git-fixes). - mtd: maps: Fix refcount leak in of_flash_probe_versatile (git-fixes). - mtd: partitions: Fix refcount leak in parse_redboot_of (git-fixes). - mtd: rawnand: meson: Fix a potential double free issue (git-fixes). - mtd: sm_ftl: Fix deadlock caused by cancel_work_sync in sm_release (git-fixes). - mtd: st_spi_fsm: Add a clk_disable_unprepare() in .probe()'s error path (git-fixes). - net_sched: cls_route: disallow handle of 0 (bsc#1202393). - net: bcmgenet: Add mdio-bcm-unimac soft dependency (git-fixes). - net: cpsw: add missing of_node_put() in cpsw_probe_dt() (git-fixes). - net: cpsw: Properly initialise struct page_pool_params (git-fixes). - net: davinci_emac: Fix incorrect masking of tx and rx error channel (git-fixes). - net: dsa: b53: fix an off by one in checking "vlan->vid" (git-fixes). - net: dsa: felix: suppress -EPROBE_DEFER errors (git-fixes). - net: dsa: mt7530: fix VLAN traffic leaks (git-fixes). - net: enetc: report software timestamping via SO_TIMESTAMPING (git-fixes). - net: enetc: unmap DMA in enetc_send_cmd() (git-fixes). - net: enetc: Use pci_release_region() to release some resources (git-fixes). - net: ethernet: aeroflex: fix UAF in greth_of_remove (git-fixes). - net: ethernet: ezchip: fix error handling (git-fixes). - net: ethernet: ezchip: fix UAF in nps_enet_remove (git-fixes). - net: ethernet: ezchip: remove redundant check (git-fixes). - net: ethernet: fix potential use-after-free in ec_bhf_remove (git-fixes). - net: ethernet: ti: cpsw_ale: Fix access to un-initialized memory (git-fixes). - net: fec_ptp: add clock rate zero check (git-fixes). - net: fec: fix the potential memory leak in fec_enet_init() (git-fixes). - net: ftgmac100: Fix crash when removing driver (git-fixes). - net: hdlc_x25: Return meaningful error code in x25_open (git-fixes). - net: hns: Fix kernel-doc (git-fixes). - net: lantiq: fix memory corruption in RX ring (git-fixes). - net: lapbether: Prevent racing when checking whether the netif is running (git-fixes). - net: mana: Add rmb after checking owner bits (git-fixes). - net: mana: Add support of XDP_REDIRECT action (bug#1201310, jsc#PED-529). - net: mana: Add the Linux MANA PF driver (bug#1201309, jsc#PED-529). - net: moxa: Use devm_platform_get_and_ioremap_resource() (git-fixes). - net: mscc: ocelot: correctly report the timestamping RX filters in ethtool (git-fixes). - net: mscc: ocelot: do not downgrade timestamping RX filters in SIOCSHWTSTAMP (git-fixes). - net: mvpp2: fix interrupt mask/unmask skip condition (git-fixes). - net: netcp: Fix an error message (git-fixes). - net: pch_gbe: Propagate error from devm_gpio_request_one() (git-fixes). - net: rose: fix netdev reference changes (git-fixes). - net: sock: tracing: Fix sock_exceed_buf_limit not to dereference stale pointer (git-fixes). - net: stmicro: handle clk_prepare() failure during init (git-fixes). - net: stmmac: disable clocks in stmmac_remove_config_dt() (git-fixes). - net: stmmac: dwmac1000: Fix extended MAC address registers definition (git-fixes). - net: stmmac: Modify configuration method of EEE timers (git-fixes). - net: stmmac: Use resolved link config in mac_link_up() (git-fixes). - net: vmxnet3: fix possible NULL pointer dereference in vmxnet3_rq_cleanup() (bsc#1200431). - net: vmxnet3: fix possible use-after-free bugs in vmxnet3_rq_alloc_rx_buf() (bsc#1200431). - net: vmxnet3: remove multiple false checks in vmxnet3_ethtool.c (bsc#1200431). - net:emac/emac-mac: Fix a use after free in emac_mac_tx_buf_send (git-fixes). - net:enetc: allocate CBD ring data memory using DMA coherent methods (git-fixes). - net/mlx5e: Check for needed capability for cvlan matching (git-fixes). - net/sonic: Fix a resource leak in an error handling path in 'jazz_sonic_probe()' (git-fixes). - NFS: Do not decrease the value of seq_nr_highest_sent (git-fixes). - NFS: fix nfs_path in case of a rename retry (git-fixes). - NFS: Fix races in the legacy idmapper upcall (git-fixes). - NFS: Fix second deadlock in nfs4_evict_inode() (git-fixes). - NFS: Handle NFS4ERR_DELAY replies to OP_SEQUENCE correctly (git-fixes). - NFS: nfs4_proc_set_acl needs to restore NFS_CAP_UIDGID_NOMAP on error (git-fixes). - NFS: RECLAIM_COMPLETE must handle EACCES (git-fixes). - NFS: support EXCHGID4_FLAG_SUPP_FENCE_OPS 4.2 EXCHANGE_ID flag (git-fixes). - NFSD: Add missing NFSv2 .pc_func methods (git-fixes). - NFSD: Clamp WRITE offsets (git-fixes). - NFSD: Fix offset type in I/O trace points (git-fixes). - NFSD: Fix possible sleep during nfsd4_release_lockowner() (git-fixes). - NFSD: fix use-after-free due to delegation race (git-fixes). - NFSD: prevent integer overflow on 32 bit systems (git-fixes). - NFSD: prevent underflow in nfssvc_decode_writeargs() (git-fixes). - NTB: ntb_tool: uninitialized heap data in tool_fn_write() (git-fixes). - nvme-fabrics: parse nvme connect Linux error codes (bsc#1201865). - nvme-rdma: Handle number of queue changes (bsc#1201865). - nvme-tcp: fix UAF when detecting digest errors (bsc#1200313 bsc#1201489). - nvme-tcp: Handle number of queue changes (bsc#1201865). - nvme: fix RCU hole that allowed for endless looping in multipath round robin (bsc#1202636). - nvmet: Expose max queues to configfs (bsc#1201865). - objtool: Add support for intra-function calls (bsc#1202396). - objtool: Make handle_insn_ops() unconditional (bsc#1202396). - objtool: Remove INSN_STACK (bsc#1202396). - objtool: Rework allocating stack_ops on decode (bsc#1202396). - objtool: Support multiple stack_op per instruction (bsc#1202396). - ocfs2: drop acl cache for directories too (bsc#1191667). - ocfs2: fix crash when initialize filecheck kobj fails (bsc#1197920). - ocfs2: mount fails with buffer overflow in strlen (bsc#1197760). - octeontx2-af: fix infinite loop in unmapping NPC counter (git-fixes). - of: fdt: fix off-by-one error in unflatten_dt_nodes() (git-fixes). - of/device: Fix up of_dma_configure_id() stub (git-fixes). - PCI: Add ACS quirk for Broadcom BCM5750x NICs (git-fixes). - PCI: dwc: Add unroll iATU space support to dw_pcie_disable_atu() (git-fixes). - PCI: dwc: Always enable CDM check if "snps,enable-cdm-check" exists (git-fixes). - PCI: dwc: Deallocate EPC memory on dw_pcie_ep_init() errors (git-fixes). - PCI: dwc: Disable outbound windows only for controllers using iATU (git-fixes). - PCI: dwc: Stop link on host_init errors and de-initialization (git-fixes). - PCI: hv: Fix hv_arch_irq_unmask() for multi-MSI (bsc#1200845). - PCI: hv: Fix interrupt mapping for multi-MSI (bsc#1200845). - PCI: hv: Fix multi-MSI to allow more than one MSI vector (bsc#1200845). - PCI: hv: Make the code arch neutral by adding arch specific interfaces (bsc#1200845). - PCI: hv: Only reuse existing IRTE allocation for Multi-MSI (bsc#1200845). - PCI: hv: Reuse existing IRTE allocation in compose_msi_msg() (bsc#1200845). - PCI: qcom: Fix pipe clock imbalance (git-fixes). - PCI: qcom: Power on PHY before IPQ8074 DBI register accesses (git-fixes). - PCI: qcom: Set up rev 2.1.0 PARF_PHY before enabling clocks (git-fixes). - PCI: tegra194: Fix link up retry sequence (git-fixes). - PCI: tegra194: Fix PM error handling in tegra_pcie_config_ep() (git-fixes). - PCI: tegra194: Fix Root Port interrupt handling (git-fixes). - PCI/ACPI: Guard ARM64-specific mcfg_quirks (git-fixes). - PCI/portdrv: Do not disable AER reporting in get_port_device_capability() (git-fixes). - perf bench: Share some global variables to fix build with gcc 10 (git-fixes). - pinctrl: nomadik: Fix refcount leak in nmk_pinctrl_dt_subnode_to_map (git-fixes). - pinctrl: qcom: msm8916: Allow CAMSS GP clocks to be muxed (git-fixes). - pinctrl: rockchip: Enhance support for IRQ_TYPE_EDGE_BOTH (git-fixes). - pinctrl: sunxi: Add I/O bias setting for H6 R-PIO (git-fixes). - pinctrl/rockchip: fix gpio device creation (git-fixes). - platform/olpc: Fix uninitialized data in debugfs write (git-fixes). - platform/x86: acer-wmi: Acer Aspire One AOD270/Packard Bell Dot keymap fixes (git-fixes). - platform/x86: pmc_atom: Fix SLP_TYPx bitfield mask (git-fixes). - PM: runtime: Remove link state checks in rpm_get/put_supplier() (git-fixes). - powerpc: define get_cycles macro for arch-override (bsc#1065729). - powerpc: Enable execve syscall exit tracepoint (bsc#1065729). - powerpc: powernv: kABI: add back powernv_get_random_long (bsc#1065729). - powerpc/drmem: Make lmb_size 64 bit (bsc#1203424 ltc#199544). - powerpc/memhotplug: Make lmb size 64bit (bsc#1203424 ltc#199544). - powerpc/perf: Optimize clearing the pending PMI and remove WARN_ON for PMI check in power_pmu_disable (bsc#1156395). - powerpc/powernv: Avoid crashing if rng is NULL (bsc#1065729). - powerpc/powernv: delay rng platform device creation until later in boot (bsc#1065729). - powerpc/powernv: rename remaining rng powernv_ functions to pnv_ (bsc#1065729). - powerpc/powernv: Staticify functions without prototypes (bsc#1065729). - powerpc/powernv: wire up rng during setup_arch (bsc#1065729). - powerpc/powernv/kvm: Use darn for H_RANDOM on Power9 (bsc#1065729). - powerpc/pseries: wire up rng during setup_arch() (bsc#1065729). - powerpc/xive: Fix refcount leak in xive_get_max_prio (git-fixess). - ppc64/kdump: Limit kdump base to 512MB (bsc#1203410 ltc#199904). - profiling: fix shift too large makes kernel panic (git-fixes). - profiling: fix shift-out-of-bounds bugs (git fixes). - psi: Fix uaf issue when psi trigger is destroyed while being polled (bsc#1203909). - qlcnic: Add null check after calling netdev_alloc_skb (git-fixes). - random: fix crash on multiple early calls to add_bootloader_randomness() (git-fixes). - random: remove useless header comment (git fixes). - ratelimit: Fix data-races in ___ratelimit() (git-fixes). - regulator: core: Clean up on enable failure (git-fixes). - regulator: of: Fix refcount leak bug in of_get_regulation_constraints() (git-fixes). - reiserfs: fix handling of -EOPNOTSUPP in reiserfs_for_each_xattr (bsc#1202714). - remoteproc: qcom: q6v5-mss: add powerdomains to MSM8996 config (git-fixes). - remoteproc: qcom: wcnss: Fix handling of IRQs (git-fixes). - s390/crash: fix incorrect number of bytes to copy to user space (git-fixes). - s390/crash: make copy_oldmem_page() return number of bytes copied (git-fixes). - s390/mm: do not trigger write fault when vma does not allow VM_WRITE (git-fixes). - s390/mm: fix 2KB pgtable release race (git-fixes). - s390/ptrace: pass invalid syscall numbers to tracing (bsc#1192594 LTC#197522). - s390/qeth: cache link_info for ethtool (bsc#1202984 LTC#199607). - s390/qeth: clean up default cases for ethtool link mode (bsc#1202984 LTC#199607). - s390/qeth: improve QUERY CARD INFO processing (bsc#1202984 LTC#199607). - s390/qeth: improve selection of ethtool link modes (bsc#1202984 LTC#199607). - s390/qeth: set static link info during initialization (bsc#1202984 LTC#199607). - s390/qeth: tolerate error when querying card info (bsc#1202984 LTC#199607). - s390/qeth: use QUERY OAT for initial link info (bsc#1202984 LTC#199607). - sched/debug: Remove mpol_get/put and task_lock/unlock from (git-fixes) - sched/fair: Revise comment about lb decision matrix (git fixes (sched/fair)). - sched/membarrier: fix missing local execution of ipi_sync_rq_state() (git fixes (sched/membarrier)). - scsi: core: Fix bad pointer dereference when ehandler kthread is invalid (git-fixes). - scsi: lpfc: Add missing destroy_workqueue() in error path (bsc#1203939). - scsi: lpfc: Add missing free iocb and nlp kref put for early return VMID cases (bsc#1203939). - scsi: lpfc: Add reporting capability for Link Degrade Signaling (bsc#1203939). - scsi: lpfc: Add warning notification period to CMF_SYNC_WQE (bsc#1203063). - scsi: lpfc: Check the return value of alloc_workqueue() (bsc#1203063). - scsi: lpfc: Copyright updates for 14.2.0.6 patches (bsc#1203063). - scsi: lpfc: Fix FLOGI ACC with wrong SID in PT2PT topology (bsc#1203939). - scsi: lpfc: Fix mbuf pool resource detected as busy at driver unload (bsc#1203939). - scsi: lpfc: Fix multiple NVMe remoteport registration calls for the same NPort ID (bsc#1203939). - scsi: lpfc: Fix null ndlp ptr dereference in abnormal exit path for GFT_ID (bsc#1203063). - scsi: lpfc: Fix prli_fc4_req checks in PRLI handling (bsc#1203939). - scsi: lpfc: Fix unsolicited FLOGI receive handling during PT2PT discovery (bsc#1203063). - scsi: lpfc: Fix various issues reported by tools (bsc#1203939). - scsi: lpfc: Move scsi_host_template outside dynamically allocated/freed phba (bsc#1185032 bsc#1203939). - scsi: lpfc: Remove SANDiags related code (bsc#1203063). - scsi: lpfc: Remove the unneeded result variable (bsc#1203939). - scsi: lpfc: Remove unneeded result variable (bsc#1203939). - scsi: lpfc: Rename mp/bmp dma buffers to rq/rsp in lpfc_fdmi_cmd (bsc#1203939). - scsi: lpfc: Return DID_TRANSPORT_DISRUPTED instead of DID_REQUEUE (bsc#1203939). - scsi: lpfc: Rework FDMI attribute registration for unintential padding (bsc#1203939). - scsi: lpfc: Rework lpfc_fdmi_cmd() routine for cleanup and consistency (bsc#1203939). - scsi: lpfc: Rework MIB Rx Monitor debug info logic (bsc#1203063). - scsi: lpfc: Update congestion mode logging for Emulex SAN Manager application (bsc#1203939). - scsi: lpfc: Update lpfc version to 14.2.0.6 (bsc#1203063). - scsi: lpfc: Update lpfc version to 14.2.0.7 (bsc#1203939). - scsi: mpt3sas: Fix use-after-free warning (git-fixes). - scsi: qla2xxx: Add debugfs create/delete helpers (bsc#1203935). - scsi: qla2xxx: Add NVMe parameters support in Auxiliary Image Status (bsc#1203935). - scsi: qla2xxx: Always wait for qlt_sess_work_fn() from qlt_stop_phase1() (bsc#1203935). - scsi: qla2xxx: Avoid flush_scheduled_work() usage (bsc#1203935). - scsi: qla2xxx: Disable ATIO interrupt coalesce for quad port ISP27XX (bsc#1203935). - scsi: qla2xxx: Drop DID_TARGET_FAILURE use (bsc#1203935). - scsi: qla2xxx: Fix memory leak in __qlt_24xx_handle_abts() (bsc#1203935). - scsi: qla2xxx: Fix response queue handler reading stale packets (bsc#1203935). - scsi: qla2xxx: Log message "skipping scsi_scan_host()" as informational (bsc#1203935). - scsi: qla2xxx: Remove unused declarations for qla2xxx (bsc#1203935). - scsi: qla2xxx: Remove unused del_sess_list field (bsc#1203935). - scsi: qla2xxx: Remove unused qlt_tmr_work() (bsc#1203935). - scsi: qla2xxx: Revert "scsi: qla2xxx: Fix response queue handler reading stale packets" (bsc#1203935). - scsi: qla2xxx: Update version to 10.02.07.900-k (bsc#1203935). - scsi: sg: Allow waiting for commands to complete on removed device (git-fixes). - scsi: smartpqi: Fix DMA direction for RAID requests (git-fixes). - scsi: smartpqi: Shorten drive visibility after removal (bsc#1200622). - scsi: smartpqi: Update LUN reset handler (bsc#1200622). - selftests: futex: Use variable MAKE instead of make (git-fixes). - serial: 8250_dw: Store LSR into lsr_saved_flags in dw8250_tx_wait_empty() (git-fixes). - serial: fsl_lpuart: RS485 RTS polariy is inverse (git-fixes). - serial: mvebu-uart: uart2 error bits clearing (git-fixes). - serial: tegra: Change lower tolerance baud rate limit for tegra20 and tegra30 (git-fixes). - soc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs (git-fixes). - soc: fsl: guts: machine variable might be unset (git-fixes). - soundwire: bus_type: fix remove and shutdown support (git-fixes). - spi: Fix incorrect cs_setup delay handling (git-fixes). - spi: spi-rspi: Fix PIO fallback on RZ platforms (git-fixes). - spi: synquacer: Add missing clk_disable_unprepare() (git-fixes). - spmi: trace: fix stack-out-of-bound access in SPMI tracing functions (git-fixes). - squashfs: fix divide error in calculate_skip() (git-fixes). - staging: rtl8192u: Fix sleep in atomic context bug in dm_fsync_timer_callback (git-fixes). - staging: rtl8712: fix use after free bugs (git-fixes). - SUNRPC reverting d03727b248d0 ("NFSv4 fix CLOSE not waiting for direct IO compeletion") (git-fixes). - SUNRPC: Clean up scheduling of autoclose (git-fixes). - SUNRPC: Do not call connect() more than once on a TCP socket (git-fixes). - SUNRPC: Do not dereference xprt->snd_task if it's a cookie (git-fixes). - SUNRPC: Do not leak sockets in xs_local_connect() (git-fixes). - SUNRPC: fix expiry of auth creds (git-fixes). - SUNRPC: Fix misplaced barrier in call_decode (git-fixes). - SUNRPC: Fix READ_PLUS crasher (git-fixes). - SUNRPC: Partial revert of commit 6f9f17287e78 (git-fixes). - SUNRPC: Prevent immediate close+reconnect (git-fixes). - SUNRPC: Reinitialise the backchannel request buffers before reuse (git-fixes). - SUNRPC: RPC level errors should set task->tk_rpc_status (git-fixes). - svcrdma: Hold private mutex while invoking rdma_accept() (git-fixes). - tee: optee: Fix incorrect page free bug (git-fixes). - thermal: Fix NULL pointer dereferences in of_thermal_ functions (git-fixes). - thermal: sysfs: Fix cooling_device_stats_setup() error code path (git-fixes). - thermal/tools/tmon: Include pthread and time headers in tmon.h (git-fixes). - thunderbolt: Use the actual buffer in tb_async_error() (git-fixes). - tick/nohz: Use WARN_ON_ONCE() to prevent console saturation (git fixes (kernel/time)). - tools/thermal: Fix possible path truncations (git-fixes). - tracing: Add ustring operation to filtering string pointers (git-fixes). - tracing: hold caller_addr to hardirq_{enable,disable}_ip (git-fixes). - tracing/histogram: Fix a potential memory leak for kstrdup() (git-fixes). - tracing/histograms: Fix memory leak problem (git-fixes). - tracing/probes: Have kprobes and uprobes use $COMM too (git-fixes). - tty: serial: Fix refcount leak bug in ucc_uart.c (git-fixes). - tty: serial: lpuart: disable flow control while waiting for the transmit engine to complete (git-fixes). - tty: vt: initialize unicode screen buffer (git-fixes). - USB: cdc-acm: Add Icom PMR F3400 support (0c26:0020) (git-fixes). - USB: core: Fix RST error in hub.c (git-fixes). - USB: core: Prevent nested device-reset calls (git-fixes). - USB: dwc2: fix wrong order of phy_power_on and phy_init (git-fixes). - USB: dwc3: add cancelled reasons for dwc3 requests (git-fixes). - USB: dwc3: disable USB core PHY management (git-fixes). - USB: dwc3: ep0: Fix delay status handling (git-fixes). - USB: dwc3: gadget: END_TRANSFER before CLEAR_STALL command (git-fixes). - USB: dwc3: gadget: Fix IN endpoint max packet size allocation (git-fixes). - USB: dwc3: gadget: Refactor dwc3_gadget_ep_dequeue (git-fixes). - USB: dwc3: gadget: Remove FS bInterval_m1 limitation (git-fixes). - USB: dwc3: gadget: Remove unnecessary checks (git-fixes). - USB: dwc3: gadget: Replace list_for_each_entry_safe() if using giveback (git-fixes). - USB: dwc3: gadget: Store resource index of start cmd (git-fixes). - USB: dwc3: qcom: fix missing optional irq warnings. - USB: dwc3: Switch to platform_get_irq_byname_optional() (git-fixes). - USB: ehci: handshake CMD_RUN instead of STS_HALT (git-fixes). - USB: Follow-up to SPDX identifiers addition - remove now useless comments (git-fixes). - USB: gadget: mass_storage: Fix cdrom data transfers on MAC-OS (git-fixes). - USB: gadget: u_audio: fix race condition on endpoint stop (git-fixes). - USB: gadget: udc-xilinx: replace memcpy with memcpy_toio (git-fixes). - USB: gadget: udc: amd5536 depends on HAS_DMA (git-fixes). - USB: gadget: uvc: call uvc uvcg_warn on completed status instead of uvcg_info (git-fixes). - USB: host: Fix refcount leak in ehci_hcd_ppc_of_probe (git-fixes). - USB: host: ohci-ppc-of: Fix refcount leak bug (git-fixes). - USB: host: xhci: use snprintf() in xhci_decode_trb() (git-fixes). - USB: ohci-nxp: Fix refcount leak in ohci_hcd_nxp_probe (git-fixes). - USB: otg-fsm: Fix hrtimer list corruption (git-fixes). - USB: renesas: Fix refcount leak bug (git-fixes). - USB: serial: ch341: fix disabled rx timer on older devices (git-fixes). - USB: serial: ch341: fix lost character on LCR updates (git-fixes). - USB: serial: ch341: name prescaler, divisor registers (git-fixes). - USB: serial: cp210x: add Decagon UCA device id (git-fixes). - USB: serial: fix tty-port initialized comments (git-fixes). - USB: serial: ftdi_sio: add Omron CS1W-CIF31 device id (git-fixes). - USB: serial: option: add Quectel EM060K modem (git-fixes). - USB: serial: option: add support for Cinterion MV32-WA/WB RmNet mode (git-fixes). - USB: serial: option: add support for OPPO R11 diag port (git-fixes). - USB: storage: Add ASUS &lt;0x0b05:0x1932> to IGNORE_UAS (git-fixes). - USB: storage: Add ignore-residue quirk for NXP PN7462AU (git-fixes). - USB: struct usb_device: hide new member (git-fixes). - USB: typec: altmodes/displayport: correct pin assignment for UFP receptacles (git-fixes). - USB: typec: ucsi: Acknowledge the GET_ERROR_STATUS command completion (git-fixes). - USB: xhci: tegra: Fix error check (git-fixes). - usbnet: Fix linkwatch use-after-free on disconnect (git-fixes). - usbnet: Fix memory leak in usbnet_disconnect() (git-fixes). - usbnet: smsc95xx: Fix deadlock on runtime resume (git-fixes). - vboxguest: Do not use devm for irq (git-fixes). - vfio/ccw: Remove UUID from s390 debug log (git-fixes). - video: fbdev: amba-clcd: Fix refcount leak bugs (git-fixes). - video: fbdev: arkfb: Check the size of screen before memset_io() (git-fixes). - video: fbdev: arkfb: Fix a divide-by-zero bug in ark_set_pixclock() (git-fixes). - video: fbdev: i740fb: Check the argument of i740_calc_vclk() (git-fixes). - video: fbdev: s3fb: Check the size of screen before memset_io() (git-fixes). - video: fbdev: sis: fix typos in SiS_GetModeID() (git-fixes). - video: fbdev: vt8623fb: Check the size of screen before memset_io() (git-fixes). - virtio_net: fix memory leak inside XPD_TX with mergeable (git-fixes). - virtio-gpu: fix a missing check to avoid NULL dereference (git-fixes). - virtio-net: fix the race between refill work and close (git-fixes). - VMCI: Add support for ARM64 (bsc#1199291, jsc#SLE-24635). - VMCI: Check exclusive_vectors when freeing interrupt 1 (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add MMIO access to registers (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add support for DMA datagrams receive (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add support for DMA datagrams sends (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: allocate send and receive buffers for DMA datagrams (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: detect DMA datagram capability (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: register dummy IRQ handlers for DMA datagrams (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: set OS page size (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: whitespace formatting change for vmci register defines (bsc#1199291, jsc#SLE-24635). - VMCI: Enforce queuepair max size for IOCTL_VMCI_QUEUEPAIR_ALLOC (bsc#1199291, jsc#SLE-24635). - VMCI: Fix some error handling paths in vmci_guest_probe_device() (bsc#1199291, jsc#SLE-24635). - VMCI: Release notification_bitmap in error path (bsc#1199291, jsc#SLE-24635). - vmxnet3: add command to set ring buffer sizes (bsc#1200431). - vmxnet3: add support for capability registers (bsc#1200431). - vmxnet3: add support for large passthrough BAR register (bsc#1200431). - vmxnet3: add support for out of order rx completion (bsc#1200431). - vmxnet3: disable overlay offloads if UPT device does not support (bsc#1200431). - vmxnet3: do not reschedule napi for rx processing (bsc#1200431). - vmxnet3: do not stop tx queues after netif_device_detach() (bsc#1200431). - vmxnet3: Implement ethtool's get_channels command (bsc#1200431). - vmxnet3: limit number of TXDs used for TSO packet (bsc#1200431). - vmxnet3: prepare for version 7 changes (bsc#1200431). - vmxnet3: Record queue number to incoming packets (bsc#1200431). - vmxnet3: Remove useless DMA-32 fallback configuration (bsc#1200431). - vmxnet3: switch from 'pci_' to 'dma_' API (bsc#1200431). - vmxnet3: update to version 7 (bsc#1200431). - vmxnet3: use ext1 field to indicate encapsulated packet (bsc#1200431). - vsock: Fix memory leak in vsock_connect() (git-fixes). - vsock: Set socket state back to SS_UNCONNECTED in vsock_connect_timeout() (git-fixes). - vt: Clear selection before changing the font (git-fixes). - vt: selection, introduce vc_is_sel (git-fixes). - watchdog: armada_37xx_wdt: check the return value of devm_ioremap() in armada_37xx_wdt_probe() (git-fixes). - watchdog: wdat_wdt: Set the min and max timeout values properly (bsc#1194023). - wifi: cfg80211: debugfs: fix return type in ht40allow_map_read() (git-fixes). - wifi: iwlegacy: 4965: corrected fix for potential off-by-one overflow in il4965_rs_fill_link_cmd() (git-fixes). - wifi: iwlegacy: 4965: fix potential off-by-one overflow in il4965_rs_fill_link_cmd() (git-fixes). - wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue (git-fixes). - wifi: libertas: Fix possible refcount leak in if_usb_probe() (git-fixes). - wifi: mac80211_hwsim: add back erroneously removed cast (git-fixes). - wifi: mac80211_hwsim: fix race condition in pending packet (git-fixes). - wifi: mac80211_hwsim: use 32-bit skb cookie (git-fixes). - wifi: mac80211: Do not finalize CSA in IBSS mode if state is disconnected (git-fixes). - wifi: p54: add missing parentheses in p54_flush() (git-fixes). - wifi: p54: Fix an error handling path in p54spi_probe() (git-fixes). - wifi: rtlwifi: fix error codes in rtl_debugfs_set_write_h2c() (git-fixes). - wifi: wil6210: debugfs: fix info leak in wil_write_file_wmi() (git-fixes). - wifi: wil6210: debugfs: fix uninitialized variable use in `wil_write_file_wmi()` (git-fixes). - x86/bugs: Reenable retbleed=off While for older kernels the return thunks are statically built in and cannot be dynamically patched out, retbleed=off should still work so that it can be disabled. - x86/kexec: fix memory leak of elf header buffer (bsc#1196444). - x86/olpc: fix 'logical not is only applied to the left hand side' (git-fixes). - x86/xen: Remove undefined behavior in setup_features() (git-fixes). - xen/xenbus: fix return type in xenbus_file_read() (git-fixes). - xfs: bunmapi has unnecessary AG lock ordering issues (git-fixes). - xfs: check sb_meta_uuid for dabuf buffer recovery (bsc#1202577). - xfs: Fix assert failure in xfs_setattr_size() (git-fixes). - xfs: make xfs_rtalloc_query_range input parameters const (git-fixes). - xfs: mark a data structure sick if there are cross-referencing errors (git-fixes). - xfs: only reset incore inode health state flags when reclaiming an inode (git-fixes). - xfs: prevent a UAF when log IO errors race with unmount (git-fixes). - xfs: use kmem_cache_free() for kmem_cache objects (git-fixes). - xprtrdma: Fix cwnd update ordering (git-fixes). - xprtrdma: Fix XDRBUF_SPARSE_PAGES support (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.80.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.80.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.80.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.80.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.80.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.80.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.80.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.80.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.80.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.80.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.80.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.80.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.80.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.80.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.80.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.80.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.80.1.x86_64.rpm True openSUSE-SLE-15.3-2022-3462 important SUSE Updates openSUSE-SLE 15.3 This update for slurm_18_08 fixes the following issues: - CVE-2022-31251: Fixed a potential security vulnerability in the test package (bsc#1201674). - CVE-2022-29500: Fixed an architectural flaw can be exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278). - CVE-2022-29501: Fixed a vulnerability where an unprivileged user can send data to arbitrary unix socket as root (bsc#1199279). libpmi0_18_08-18.08.9-150000.1.17.1.x86_64.rpm perl-slurm_18_08-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-18.08.9-150000.1.17.1.src.rpm slurm_18_08-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-auth-none-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-config-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-config-man-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-cray-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-devel-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-doc-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-hdf5-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-lua-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-munge-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-node-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-openlava-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-pam_slurm-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-plugins-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-seff-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-sjstat-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-slurmdbd-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-sql-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-sview-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-torque-18.08.9-150000.1.17.1.x86_64.rpm slurm_18_08-webdoc-18.08.9-150000.1.17.1.x86_64.rpm libpmi0_18_08-18.08.9-150000.1.17.1.s390x.rpm perl-slurm_18_08-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-auth-none-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-config-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-config-man-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-cray-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-devel-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-doc-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-hdf5-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-lua-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-munge-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-node-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-openlava-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-pam_slurm-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-plugins-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-seff-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-sjstat-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-slurmdbd-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-sql-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-sview-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-torque-18.08.9-150000.1.17.1.s390x.rpm slurm_18_08-webdoc-18.08.9-150000.1.17.1.s390x.rpm libpmi0_18_08-18.08.9-150000.1.17.1.ppc64le.rpm perl-slurm_18_08-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-auth-none-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-config-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-config-man-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-cray-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-devel-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-doc-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-hdf5-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-lua-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-munge-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-node-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-openlava-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-pam_slurm-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-plugins-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-seff-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-sjstat-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-slurmdbd-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-sql-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-sview-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-torque-18.08.9-150000.1.17.1.ppc64le.rpm slurm_18_08-webdoc-18.08.9-150000.1.17.1.ppc64le.rpm libpmi0_18_08-18.08.9-150000.1.17.1.aarch64.rpm perl-slurm_18_08-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-auth-none-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-config-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-config-man-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-cray-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-devel-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-doc-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-hdf5-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-lua-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-munge-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-node-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-openlava-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-pam_slurm-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-plugins-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-seff-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-sjstat-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-slurmdbd-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-sql-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-sview-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-torque-18.08.9-150000.1.17.1.aarch64.rpm slurm_18_08-webdoc-18.08.9-150000.1.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-3468 important SUSE Updates openSUSE-SLE 15.3 This update for slurm fixes the following issues: - CVE-2022-31251: Fixed a potential security vulnerability in the test package (bsc#1201674). - CVE-2022-29500: Fixed an architectural flaw can be exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278). - CVE-2022-29501: Fixed a vulnerability where an unprivileged user can send data to arbitrary unix socket as root (bsc#1199279). libslurm33-18.08.9-150100.3.22.1.x86_64.rpm slurm-18.08.9-150100.3.22.1.src.rpm libslurm33-18.08.9-150100.3.22.1.s390x.rpm libslurm33-18.08.9-150100.3.22.1.ppc64le.rpm libslurm33-18.08.9-150100.3.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-3512 important SUSE Updates openSUSE-SLE 15.3 This update for python fixes the following issues: - CVE-2021-28861: Fixed an open redirection vulnerability in the HTTP server when an URI path starts with // (bsc#1202624). libpython2_7-1_0-2.7.18-150000.44.1.x86_64.rpm libpython2_7-1_0-32bit-2.7.18-150000.44.1.x86_64.rpm python-2.7.18-150000.44.1.src.rpm python-2.7.18-150000.44.1.x86_64.rpm python-32bit-2.7.18-150000.44.1.x86_64.rpm python-base-2.7.18-150000.44.1.src.rpm python-base-2.7.18-150000.44.1.x86_64.rpm python-base-32bit-2.7.18-150000.44.1.x86_64.rpm python-curses-2.7.18-150000.44.1.x86_64.rpm python-demo-2.7.18-150000.44.1.x86_64.rpm python-devel-2.7.18-150000.44.1.x86_64.rpm python-doc-2.7.18-150000.44.1.noarch.rpm python-doc-2.7.18-150000.44.1.src.rpm python-doc-pdf-2.7.18-150000.44.1.noarch.rpm python-gdbm-2.7.18-150000.44.1.x86_64.rpm python-idle-2.7.18-150000.44.1.x86_64.rpm python-tk-2.7.18-150000.44.1.x86_64.rpm python-xml-2.7.18-150000.44.1.x86_64.rpm libpython2_7-1_0-2.7.18-150000.44.1.s390x.rpm python-2.7.18-150000.44.1.s390x.rpm python-base-2.7.18-150000.44.1.s390x.rpm python-curses-2.7.18-150000.44.1.s390x.rpm python-demo-2.7.18-150000.44.1.s390x.rpm python-devel-2.7.18-150000.44.1.s390x.rpm python-gdbm-2.7.18-150000.44.1.s390x.rpm python-idle-2.7.18-150000.44.1.s390x.rpm python-tk-2.7.18-150000.44.1.s390x.rpm python-xml-2.7.18-150000.44.1.s390x.rpm libpython2_7-1_0-2.7.18-150000.44.1.ppc64le.rpm python-2.7.18-150000.44.1.ppc64le.rpm python-base-2.7.18-150000.44.1.ppc64le.rpm python-curses-2.7.18-150000.44.1.ppc64le.rpm python-demo-2.7.18-150000.44.1.ppc64le.rpm python-devel-2.7.18-150000.44.1.ppc64le.rpm python-gdbm-2.7.18-150000.44.1.ppc64le.rpm python-idle-2.7.18-150000.44.1.ppc64le.rpm python-tk-2.7.18-150000.44.1.ppc64le.rpm python-xml-2.7.18-150000.44.1.ppc64le.rpm libpython2_7-1_0-2.7.18-150000.44.1.aarch64.rpm python-2.7.18-150000.44.1.aarch64.rpm python-base-2.7.18-150000.44.1.aarch64.rpm python-curses-2.7.18-150000.44.1.aarch64.rpm python-demo-2.7.18-150000.44.1.aarch64.rpm python-devel-2.7.18-150000.44.1.aarch64.rpm python-gdbm-2.7.18-150000.44.1.aarch64.rpm python-idle-2.7.18-150000.44.1.aarch64.rpm python-tk-2.7.18-150000.44.1.aarch64.rpm python-xml-2.7.18-150000.44.1.aarch64.rpm openSUSE-SLE-15.3-2022-3904 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssh fixes the following issue: - Prevent empty messages from being sent. (bsc#1192439) openssh-8.4p1-150300.3.12.2.src.rpm openssh-8.4p1-150300.3.12.2.x86_64.rpm openssh-askpass-gnome-8.4p1-150300.3.12.1.src.rpm openssh-askpass-gnome-8.4p1-150300.3.12.1.x86_64.rpm openssh-cavs-8.4p1-150300.3.12.2.x86_64.rpm openssh-clients-8.4p1-150300.3.12.2.x86_64.rpm openssh-common-8.4p1-150300.3.12.2.x86_64.rpm openssh-fips-8.4p1-150300.3.12.2.x86_64.rpm openssh-helpers-8.4p1-150300.3.12.2.x86_64.rpm openssh-server-8.4p1-150300.3.12.2.x86_64.rpm openssh-8.4p1-150300.3.12.2.s390x.rpm openssh-askpass-gnome-8.4p1-150300.3.12.1.s390x.rpm openssh-cavs-8.4p1-150300.3.12.2.s390x.rpm openssh-clients-8.4p1-150300.3.12.2.s390x.rpm openssh-common-8.4p1-150300.3.12.2.s390x.rpm openssh-fips-8.4p1-150300.3.12.2.s390x.rpm openssh-helpers-8.4p1-150300.3.12.2.s390x.rpm openssh-server-8.4p1-150300.3.12.2.s390x.rpm openssh-8.4p1-150300.3.12.2.ppc64le.rpm openssh-askpass-gnome-8.4p1-150300.3.12.1.ppc64le.rpm openssh-cavs-8.4p1-150300.3.12.2.ppc64le.rpm openssh-clients-8.4p1-150300.3.12.2.ppc64le.rpm openssh-common-8.4p1-150300.3.12.2.ppc64le.rpm openssh-fips-8.4p1-150300.3.12.2.ppc64le.rpm openssh-helpers-8.4p1-150300.3.12.2.ppc64le.rpm openssh-server-8.4p1-150300.3.12.2.ppc64le.rpm openssh-8.4p1-150300.3.12.2.aarch64.rpm openssh-askpass-gnome-8.4p1-150300.3.12.1.aarch64.rpm openssh-cavs-8.4p1-150300.3.12.2.aarch64.rpm openssh-clients-8.4p1-150300.3.12.2.aarch64.rpm openssh-common-8.4p1-150300.3.12.2.aarch64.rpm openssh-fips-8.4p1-150300.3.12.2.aarch64.rpm openssh-helpers-8.4p1-150300.3.12.2.aarch64.rpm openssh-server-8.4p1-150300.3.12.2.aarch64.rpm openSUSE-SLE-15.3-2022-3399 moderate SUSE Updates openSUSE-SLE 15.3 This update for unzip fixes the following issues: - CVE-2022-0530: Fixed SIGSEGV during the conversion of an utf-8 string to a local string (bsc#1196177). - CVE-2022-0529: Fixed heap out-of-bound writes and reads during conversion of wide string to local string (bsc#1196180) unzip-6.00-150000.4.11.1.src.rpm unzip-6.00-150000.4.11.1.x86_64.rpm unzip-doc-6.00-150000.4.11.1.x86_64.rpm unzip-6.00-150000.4.11.1.s390x.rpm unzip-doc-6.00-150000.4.11.1.s390x.rpm unzip-6.00-150000.4.11.1.ppc64le.rpm unzip-doc-6.00-150000.4.11.1.ppc64le.rpm unzip-6.00-150000.4.11.1.aarch64.rpm unzip-doc-6.00-150000.4.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-3485 important SUSE Updates openSUSE-SLE 15.3 This update for python39 fixes the following issues: python39 was updated to version 3.9.14: - CVE-2020-10735: Fixed DoS due to int() type in PyLong_FromString() not limiting amount of digits when converting text to int (bsc#1203125). - CVE-2021-28861: Fixed an open redirection vulnerability in the HTTP server when an URI path starts with // (bsc#1202624). libpython3_9-1_0-3.9.14-150300.4.16.1.x86_64.rpm libpython3_9-1_0-32bit-3.9.14-150300.4.16.1.x86_64.rpm python39-3.9.14-150300.4.16.1.src.rpm python39-3.9.14-150300.4.16.1.x86_64.rpm python39-32bit-3.9.14-150300.4.16.1.x86_64.rpm python39-base-3.9.14-150300.4.16.1.x86_64.rpm python39-base-32bit-3.9.14-150300.4.16.1.x86_64.rpm python39-core-3.9.14-150300.4.16.1.src.rpm python39-curses-3.9.14-150300.4.16.1.x86_64.rpm python39-dbm-3.9.14-150300.4.16.1.x86_64.rpm python39-devel-3.9.14-150300.4.16.1.x86_64.rpm python39-doc-3.9.14-150300.4.16.1.x86_64.rpm python39-doc-devhelp-3.9.14-150300.4.16.1.x86_64.rpm python39-documentation-3.9.14-150300.4.16.1.src.rpm python39-idle-3.9.14-150300.4.16.1.x86_64.rpm python39-testsuite-3.9.14-150300.4.16.1.x86_64.rpm python39-tk-3.9.14-150300.4.16.1.x86_64.rpm python39-tools-3.9.14-150300.4.16.1.x86_64.rpm libpython3_9-1_0-3.9.14-150300.4.16.1.s390x.rpm python39-3.9.14-150300.4.16.1.s390x.rpm python39-base-3.9.14-150300.4.16.1.s390x.rpm python39-curses-3.9.14-150300.4.16.1.s390x.rpm python39-dbm-3.9.14-150300.4.16.1.s390x.rpm python39-devel-3.9.14-150300.4.16.1.s390x.rpm python39-doc-3.9.14-150300.4.16.1.s390x.rpm python39-doc-devhelp-3.9.14-150300.4.16.1.s390x.rpm python39-idle-3.9.14-150300.4.16.1.s390x.rpm python39-testsuite-3.9.14-150300.4.16.1.s390x.rpm python39-tk-3.9.14-150300.4.16.1.s390x.rpm python39-tools-3.9.14-150300.4.16.1.s390x.rpm libpython3_9-1_0-3.9.14-150300.4.16.1.ppc64le.rpm python39-3.9.14-150300.4.16.1.ppc64le.rpm python39-base-3.9.14-150300.4.16.1.ppc64le.rpm python39-curses-3.9.14-150300.4.16.1.ppc64le.rpm python39-dbm-3.9.14-150300.4.16.1.ppc64le.rpm python39-devel-3.9.14-150300.4.16.1.ppc64le.rpm python39-doc-3.9.14-150300.4.16.1.ppc64le.rpm python39-doc-devhelp-3.9.14-150300.4.16.1.ppc64le.rpm python39-idle-3.9.14-150300.4.16.1.ppc64le.rpm python39-testsuite-3.9.14-150300.4.16.1.ppc64le.rpm python39-tk-3.9.14-150300.4.16.1.ppc64le.rpm python39-tools-3.9.14-150300.4.16.1.ppc64le.rpm libpython3_9-1_0-3.9.14-150300.4.16.1.aarch64.rpm python39-3.9.14-150300.4.16.1.aarch64.rpm python39-base-3.9.14-150300.4.16.1.aarch64.rpm python39-curses-3.9.14-150300.4.16.1.aarch64.rpm python39-dbm-3.9.14-150300.4.16.1.aarch64.rpm python39-devel-3.9.14-150300.4.16.1.aarch64.rpm python39-doc-3.9.14-150300.4.16.1.aarch64.rpm python39-doc-devhelp-3.9.14-150300.4.16.1.aarch64.rpm python39-idle-3.9.14-150300.4.16.1.aarch64.rpm python39-testsuite-3.9.14-150300.4.16.1.aarch64.rpm python39-tk-3.9.14-150300.4.16.1.aarch64.rpm python39-tools-3.9.14-150300.4.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-3491 important SUSE Updates openSUSE-SLE 15.3 This update for slurm_20_02 fixes the following issues: - CVE-2022-31251: Fixed security vulnerability in the test package (bsc#1201674). - CVE-2022-29500: Fixed architectural flaw that can be exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278). - CVE-2022-29501: Fixed vulnerability where an unprivileged user can send data to arbitrary unix socket as root (bsc#1199279). Bugfixes: - Fixed qstat error message (torque wrapper) (bsc#1186646). libnss_slurm2_20_02-20.02.7-150100.3.24.1.x86_64.rpm libpmi0_20_02-20.02.7-150100.3.24.1.x86_64.rpm perl-slurm_20_02-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-20.02.7-150100.3.24.1.src.rpm slurm_20_02-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-auth-none-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-config-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-config-man-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-cray-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-devel-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-doc-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-hdf5-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-lua-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-munge-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-node-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-openlava-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-pam_slurm-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-plugins-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-rest-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-seff-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-sjstat-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-slurmdbd-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-sql-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-sview-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-torque-20.02.7-150100.3.24.1.x86_64.rpm slurm_20_02-webdoc-20.02.7-150100.3.24.1.x86_64.rpm libnss_slurm2_20_02-20.02.7-150100.3.24.1.s390x.rpm libpmi0_20_02-20.02.7-150100.3.24.1.s390x.rpm perl-slurm_20_02-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-auth-none-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-config-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-config-man-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-cray-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-devel-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-doc-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-hdf5-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-lua-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-munge-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-node-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-openlava-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-pam_slurm-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-plugins-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-rest-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-seff-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-sjstat-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-slurmdbd-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-sql-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-sview-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-torque-20.02.7-150100.3.24.1.s390x.rpm slurm_20_02-webdoc-20.02.7-150100.3.24.1.s390x.rpm libnss_slurm2_20_02-20.02.7-150100.3.24.1.ppc64le.rpm libpmi0_20_02-20.02.7-150100.3.24.1.ppc64le.rpm perl-slurm_20_02-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-auth-none-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-config-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-config-man-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-cray-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-devel-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-doc-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-hdf5-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-lua-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-munge-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-node-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-openlava-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-pam_slurm-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-plugins-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-rest-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-seff-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-sjstat-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-slurmdbd-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-sql-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-sview-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-torque-20.02.7-150100.3.24.1.ppc64le.rpm slurm_20_02-webdoc-20.02.7-150100.3.24.1.ppc64le.rpm libnss_slurm2_20_02-20.02.7-150100.3.24.1.aarch64.rpm libpmi0_20_02-20.02.7-150100.3.24.1.aarch64.rpm perl-slurm_20_02-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-auth-none-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-config-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-config-man-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-cray-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-devel-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-doc-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-hdf5-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-lua-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-munge-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-node-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-openlava-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-pam_slurm-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-plugins-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-rest-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-seff-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-sjstat-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-slurmdbd-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-sql-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-sview-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-torque-20.02.7-150100.3.24.1.aarch64.rpm slurm_20_02-webdoc-20.02.7-150100.3.24.1.aarch64.rpm openSUSE-SLE-15.3-2022-4261 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for libvpd fixes the following issues: libvpd: - New package at version 2.2.9 needed by lsvpd (jsc#SLE-25107, jsc#SLE-24497) libvpd-2.2.9-150200.5.3.1.src.rpm libvpd-2_2-3-2.2.9-150200.5.3.1.x86_64.rpm libvpd-2_2-3-32bit-2.2.9-150200.5.3.1.x86_64.rpm libvpd-base-2.2.9-150200.5.3.1.x86_64.rpm libvpd-devel-2.2.9-150200.5.3.1.x86_64.rpm libvpd-devel-32bit-2.2.9-150200.5.3.1.x86_64.rpm libvpd-2_2-3-2.2.9-150200.5.3.1.s390x.rpm libvpd-base-2.2.9-150200.5.3.1.s390x.rpm libvpd-devel-2.2.9-150200.5.3.1.s390x.rpm libvpd-2_2-3-2.2.9-150200.5.3.1.ppc64le.rpm libvpd-base-2.2.9-150200.5.3.1.ppc64le.rpm libvpd-devel-2.2.9-150200.5.3.1.ppc64le.rpm libvpd-2_2-3-2.2.9-150200.5.3.1.aarch64.rpm libvpd-base-2.2.9-150200.5.3.1.aarch64.rpm libvpd-devel-2.2.9-150200.5.3.1.aarch64.rpm openSUSE-SLE-15.3-2023-30 important SUSE Updates openSUSE-SLE 15.3 This update for tcl fixes the following issues: - Fixed a race condition in test socket-13.1. - Removed the SQLite extension and use the packaged sqlite3 instead (bsc#1195773). tcl-32bit-8.6.12-150300.14.6.1.x86_64.rpm tcl-8.6.12-150300.14.6.1.src.rpm tcl-8.6.12-150300.14.6.1.x86_64.rpm tcl-devel-8.6.12-150300.14.6.1.x86_64.rpm tcl-8.6.12-150300.14.6.1.s390x.rpm tcl-devel-8.6.12-150300.14.6.1.s390x.rpm tcl-8.6.12-150300.14.6.1.ppc64le.rpm tcl-devel-8.6.12-150300.14.6.1.ppc64le.rpm tcl-8.6.12-150300.14.6.1.aarch64.rpm tcl-devel-8.6.12-150300.14.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4196 moderate SUSE Updates openSUSE-SLE 15.3 This update for opensc fixes the following issues: - CVE-2019-6502: Fixed memory leak in sc_context_create in ctx.c (bsc#1122756). opensc-0.19.0-150100.3.19.1.src.rpm opensc-0.19.0-150100.3.19.1.x86_64.rpm opensc-32bit-0.19.0-150100.3.19.1.x86_64.rpm opensc-0.19.0-150100.3.19.1.s390x.rpm opensc-0.19.0-150100.3.19.1.ppc64le.rpm opensc-0.19.0-150100.3.19.1.aarch64.rpm openSUSE-SLE-15.3-2022-3819 moderate SUSE Updates openSUSE-SLE 15.3 This update for podman fixes the following issues: - CVE-2022-2989: Fixed possible information disclosure and modification (bsc#1202809). podman-3.4.7-150300.9.12.1.src.rpm podman-3.4.7-150300.9.12.1.x86_64.rpm podman-cni-config-3.4.7-150300.9.12.1.noarch.rpm podman-3.4.7-150300.9.12.1.s390x.rpm podman-3.4.7-150300.9.12.1.ppc64le.rpm podman-3.4.7-150300.9.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-3729 important SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - CVE-2022-2795: Fixed potential performance degredation due to missing database lookup limits when processing large delegations (bsc#1203614). - CVE-2022-38177: Fixed a memory leak that could be externally triggered in the DNSSEC verification code for the ECDSA algorithm (bsc#1203619). - CVE-2022-38178: Fixed memory leaks that could be externally triggered in the DNSSEC verification code for the EdDSA algorithm (bsc#1203620). bind-9.16.6-150000.12.63.1.src.rpm bind-devel-32bit-9.16.6-150000.12.63.1.x86_64.rpm libbind9-1600-32bit-9.16.6-150000.12.63.1.x86_64.rpm libdns1605-32bit-9.16.6-150000.12.63.1.x86_64.rpm libirs1601-32bit-9.16.6-150000.12.63.1.x86_64.rpm libisc1606-32bit-9.16.6-150000.12.63.1.x86_64.rpm libisccc1600-32bit-9.16.6-150000.12.63.1.x86_64.rpm libisccfg1600-32bit-9.16.6-150000.12.63.1.x86_64.rpm libns1604-32bit-9.16.6-150000.12.63.1.x86_64.rpm openSUSE-SLE-15.3-2022-3538 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: Updated to version 2.36.8 (bsc#1203530): - CVE-2022-32886: Fixed a buffer overflow issue that could potentially lead to code execution. - CVE-2022-32912: Fixed an out-of-bounds read that could potentially lead to code execution. libjavascriptcoregtk-4_0-18-2.36.8-150200.47.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.36.8-150200.47.1.x86_64.rpm libwebkit2gtk-4_0-37-2.36.8-150200.47.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.36.8-150200.47.1.x86_64.rpm libwebkit2gtk3-lang-2.36.8-150200.47.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.36.8-150200.47.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.36.8-150200.47.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.8-150200.47.1.x86_64.rpm webkit-jsc-4-2.36.8-150200.47.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.36.8-150200.47.1.x86_64.rpm webkit2gtk3-2.36.8-150200.47.1.src.rpm webkit2gtk3-devel-2.36.8-150200.47.1.x86_64.rpm webkit2gtk3-minibrowser-2.36.8-150200.47.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.36.8-150200.47.1.s390x.rpm libwebkit2gtk-4_0-37-2.36.8-150200.47.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.36.8-150200.47.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.36.8-150200.47.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.8-150200.47.1.s390x.rpm webkit-jsc-4-2.36.8-150200.47.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.36.8-150200.47.1.s390x.rpm webkit2gtk3-devel-2.36.8-150200.47.1.s390x.rpm webkit2gtk3-minibrowser-2.36.8-150200.47.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.36.8-150200.47.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.36.8-150200.47.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.36.8-150200.47.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.36.8-150200.47.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.8-150200.47.1.ppc64le.rpm webkit-jsc-4-2.36.8-150200.47.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.36.8-150200.47.1.ppc64le.rpm webkit2gtk3-devel-2.36.8-150200.47.1.ppc64le.rpm webkit2gtk3-minibrowser-2.36.8-150200.47.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.36.8-150200.47.1.aarch64.rpm libwebkit2gtk-4_0-37-2.36.8-150200.47.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.8-150200.47.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.36.8-150200.47.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.8-150200.47.1.aarch64.rpm webkit-jsc-4-2.36.8-150200.47.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.36.8-150200.47.1.aarch64.rpm webkit2gtk3-devel-2.36.8-150200.47.1.aarch64.rpm webkit2gtk3-minibrowser-2.36.8-150200.47.1.aarch64.rpm openSUSE-SLE-15.3-2022-3535 important SUSE Updates openSUSE-SLE 15.3 This update for slurm fixes the following issues: - CVE-2022-31251: Fixed a potential security vulnerability in the test package (bsc#1201674). - CVE-2022-29500: Fixed architectural flaw that could have been exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278). - CVE-2022-29501: Fixed a problem that an unprivileged user could have sent data to arbitrary unix socket as root (bsc#1199279). libslurm32-17.11.13-150000.6.40.1.x86_64.rpm slurm-17.11.13-150000.6.40.1.src.rpm libslurm32-17.11.13-150000.6.40.1.s390x.rpm libslurm32-17.11.13-150000.6.40.1.ppc64le.rpm libslurm32-17.11.13-150000.6.40.1.aarch64.rpm openSUSE-SLE-15.3-2022-3505 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - OCF: controld: Give warning when no-quorum-policy not set as freeze while using DLM (bsc#1129707) - scheduler: do not enforce resource stop if any new probe/monitor indicates the resource was not running on the target (bsc#1196340) - tools: set commands in crm_resource before changing any options (bsc#1198409) libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.24.1.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.24.1.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.24.1.src.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.24.1.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.24.1.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-150300.4.24.1.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.24.1.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.24.1.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.24.1.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.24.1.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.24.1.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.24.1.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.24.1.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.24.1.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.24.1.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.24.1.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.24.1.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.24.1.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.24.1.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.24.1.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.24.1.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.24.1.aarch64.rpm openSUSE-SLE-15.3-2022-3574 low SUSE Updates openSUSE-SLE 15.3 This update for clamsap fixes the following issues: - Add reference to bsc#1200699 in the changelog (bsc#1200699). clamsap-0.104.3-150000.4.12.1.src.rpm clamsap-0.104.3-150000.4.12.1.x86_64.rpm clamsap-0.104.3-150000.4.12.1.s390x.rpm clamsap-0.104.3-150000.4.12.1.ppc64le.rpm clamsap-0.104.3-150000.4.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-3509 low SUSE Updates openSUSE-SLE 15.3 This update for libqb fixes the following issues: - Fix linker (bsc#1192470) - log: callsite symbols of main object are also handled in initializer (bsc#1075418) - IPC: server: avoid temporary channel priority loss (bsc#1188212) libqb-1.0.3+20171226.6d62b64-150000.3.6.1.src.rpm libqb0-1.0.3+20171226.6d62b64-150000.3.6.1.x86_64.rpm libqb0-32bit-1.0.3+20171226.6d62b64-150000.3.6.1.x86_64.rpm libqb0-1.0.3+20171226.6d62b64-150000.3.6.1.s390x.rpm libqb0-1.0.3+20171226.6d62b64-150000.3.6.1.ppc64le.rpm libqb0-1.0.3+20171226.6d62b64-150000.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4021 low SUSE Updates openSUSE-SLE 15.3 This update for mdadm fixes the following issues: - Add EXTRAVERSION as make argument on build (jsc#SLE-24761, bsc#1193566) mdadm-4.1-150300.24.21.1.src.rpm mdadm-4.1-150300.24.21.1.x86_64.rpm mdadm-4.1-150300.24.21.1.s390x.rpm mdadm-4.1-150300.24.21.1.ppc64le.rpm mdadm-4.1-150300.24.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-3973 moderate SUSE Updates openSUSE-SLE 15.3 This update for util-linux fixes the following issues: - Fix file conflict during upgrade (bsc#1204211) - libuuid improvements (bsc#1201959, PED-1150): libuuid: Fix range when parsing UUIDs. Improve cache handling for short running applications-increment the cache size over runtime. Implement continuous clock handling for time based UUIDs. Check clock value from clock file to provide seamless libuuid. libblkid-devel-2.36.2-150300.4.28.1.x86_64.rpm libblkid-devel-32bit-2.36.2-150300.4.28.1.x86_64.rpm libblkid-devel-static-2.36.2-150300.4.28.1.x86_64.rpm libblkid1-2.36.2-150300.4.28.1.x86_64.rpm libblkid1-32bit-2.36.2-150300.4.28.1.x86_64.rpm libfdisk-devel-2.36.2-150300.4.28.1.x86_64.rpm libfdisk-devel-32bit-2.36.2-150300.4.28.1.x86_64.rpm libfdisk-devel-static-2.36.2-150300.4.28.1.x86_64.rpm libfdisk1-2.36.2-150300.4.28.1.x86_64.rpm libfdisk1-32bit-2.36.2-150300.4.28.1.x86_64.rpm libmount-devel-2.36.2-150300.4.28.1.x86_64.rpm libmount-devel-32bit-2.36.2-150300.4.28.1.x86_64.rpm libmount-devel-static-2.36.2-150300.4.28.1.x86_64.rpm libmount1-2.36.2-150300.4.28.1.x86_64.rpm libmount1-32bit-2.36.2-150300.4.28.1.x86_64.rpm libsmartcols-devel-2.36.2-150300.4.28.1.x86_64.rpm libsmartcols-devel-32bit-2.36.2-150300.4.28.1.x86_64.rpm libsmartcols-devel-static-2.36.2-150300.4.28.1.x86_64.rpm libsmartcols1-2.36.2-150300.4.28.1.x86_64.rpm libsmartcols1-32bit-2.36.2-150300.4.28.1.x86_64.rpm libuuid-devel-2.36.2-150300.4.28.1.x86_64.rpm libuuid-devel-32bit-2.36.2-150300.4.28.1.x86_64.rpm libuuid-devel-static-2.36.2-150300.4.28.1.x86_64.rpm libuuid1-2.36.2-150300.4.28.1.x86_64.rpm libuuid1-32bit-2.36.2-150300.4.28.1.x86_64.rpm python3-libmount-2.36.2-150300.4.28.1.src.rpm python3-libmount-2.36.2-150300.4.28.1.x86_64.rpm util-linux-2.36.2-150300.4.28.1.src.rpm util-linux-2.36.2-150300.4.28.1.x86_64.rpm util-linux-lang-2.36.2-150300.4.28.1.noarch.rpm util-linux-systemd-2.36.2-150300.4.28.1.src.rpm util-linux-systemd-2.36.2-150300.4.28.1.x86_64.rpm uuidd-2.36.2-150300.4.28.1.x86_64.rpm libblkid-devel-2.36.2-150300.4.28.1.s390x.rpm libblkid-devel-static-2.36.2-150300.4.28.1.s390x.rpm libblkid1-2.36.2-150300.4.28.1.s390x.rpm libfdisk-devel-2.36.2-150300.4.28.1.s390x.rpm libfdisk-devel-static-2.36.2-150300.4.28.1.s390x.rpm libfdisk1-2.36.2-150300.4.28.1.s390x.rpm libmount-devel-2.36.2-150300.4.28.1.s390x.rpm libmount-devel-static-2.36.2-150300.4.28.1.s390x.rpm libmount1-2.36.2-150300.4.28.1.s390x.rpm libsmartcols-devel-2.36.2-150300.4.28.1.s390x.rpm libsmartcols-devel-static-2.36.2-150300.4.28.1.s390x.rpm libsmartcols1-2.36.2-150300.4.28.1.s390x.rpm libuuid-devel-2.36.2-150300.4.28.1.s390x.rpm libuuid-devel-static-2.36.2-150300.4.28.1.s390x.rpm libuuid1-2.36.2-150300.4.28.1.s390x.rpm python3-libmount-2.36.2-150300.4.28.1.s390x.rpm util-linux-2.36.2-150300.4.28.1.s390x.rpm util-linux-systemd-2.36.2-150300.4.28.1.s390x.rpm uuidd-2.36.2-150300.4.28.1.s390x.rpm libblkid-devel-2.36.2-150300.4.28.1.ppc64le.rpm libblkid-devel-static-2.36.2-150300.4.28.1.ppc64le.rpm libblkid1-2.36.2-150300.4.28.1.ppc64le.rpm libfdisk-devel-2.36.2-150300.4.28.1.ppc64le.rpm libfdisk-devel-static-2.36.2-150300.4.28.1.ppc64le.rpm libfdisk1-2.36.2-150300.4.28.1.ppc64le.rpm libmount-devel-2.36.2-150300.4.28.1.ppc64le.rpm libmount-devel-static-2.36.2-150300.4.28.1.ppc64le.rpm libmount1-2.36.2-150300.4.28.1.ppc64le.rpm libsmartcols-devel-2.36.2-150300.4.28.1.ppc64le.rpm libsmartcols-devel-static-2.36.2-150300.4.28.1.ppc64le.rpm libsmartcols1-2.36.2-150300.4.28.1.ppc64le.rpm libuuid-devel-2.36.2-150300.4.28.1.ppc64le.rpm libuuid-devel-static-2.36.2-150300.4.28.1.ppc64le.rpm libuuid1-2.36.2-150300.4.28.1.ppc64le.rpm python3-libmount-2.36.2-150300.4.28.1.ppc64le.rpm util-linux-2.36.2-150300.4.28.1.ppc64le.rpm util-linux-systemd-2.36.2-150300.4.28.1.ppc64le.rpm uuidd-2.36.2-150300.4.28.1.ppc64le.rpm libblkid-devel-2.36.2-150300.4.28.1.aarch64.rpm libblkid-devel-static-2.36.2-150300.4.28.1.aarch64.rpm libblkid1-2.36.2-150300.4.28.1.aarch64.rpm libfdisk-devel-2.36.2-150300.4.28.1.aarch64.rpm libfdisk-devel-static-2.36.2-150300.4.28.1.aarch64.rpm libfdisk1-2.36.2-150300.4.28.1.aarch64.rpm libmount-devel-2.36.2-150300.4.28.1.aarch64.rpm libmount-devel-static-2.36.2-150300.4.28.1.aarch64.rpm libmount1-2.36.2-150300.4.28.1.aarch64.rpm libsmartcols-devel-2.36.2-150300.4.28.1.aarch64.rpm libsmartcols-devel-static-2.36.2-150300.4.28.1.aarch64.rpm libsmartcols1-2.36.2-150300.4.28.1.aarch64.rpm libuuid-devel-2.36.2-150300.4.28.1.aarch64.rpm libuuid-devel-static-2.36.2-150300.4.28.1.aarch64.rpm libuuid1-2.36.2-150300.4.28.1.aarch64.rpm python3-libmount-2.36.2-150300.4.28.1.aarch64.rpm util-linux-2.36.2-150300.4.28.1.aarch64.rpm util-linux-systemd-2.36.2-150300.4.28.1.aarch64.rpm uuidd-2.36.2-150300.4.28.1.aarch64.rpm openSUSE-SLE-15.3-2022-3737 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Add Amazon EC2 detection for virtual grains (bsc#1195624) - Change the delimiters to prevent possible tracebacks on some packages with dpkg_lowpkg - Fix 'test_ipc' unit test - Fix Syndic authentication errors (bsc#1199562) - Fix state.apply in test mode with file state module on user/group checking (bsc#1202167) - Fix the regression in schedule module released in version 3004 (bsc#1202631) - Handle non-UTF-8 bytes in core grains generation (bsc#1202165) - Make zypperpkg to retry if RPM lock is temporarily unavailable (bsc#1200596) python3-salt-3004-150300.53.30.1.x86_64.rpm True salt-3004-150300.53.30.1.src.rpm True salt-3004-150300.53.30.1.x86_64.rpm True salt-api-3004-150300.53.30.1.x86_64.rpm True salt-bash-completion-3004-150300.53.30.1.noarch.rpm True salt-cloud-3004-150300.53.30.1.x86_64.rpm True salt-doc-3004-150300.53.30.1.x86_64.rpm True salt-fish-completion-3004-150300.53.30.1.noarch.rpm True salt-master-3004-150300.53.30.1.x86_64.rpm True salt-minion-3004-150300.53.30.1.x86_64.rpm True salt-proxy-3004-150300.53.30.1.x86_64.rpm True salt-ssh-3004-150300.53.30.1.x86_64.rpm True salt-standalone-formulas-configuration-3004-150300.53.30.1.x86_64.rpm True salt-syndic-3004-150300.53.30.1.x86_64.rpm True salt-transactional-update-3004-150300.53.30.1.x86_64.rpm True salt-zsh-completion-3004-150300.53.30.1.noarch.rpm True python3-salt-3004-150300.53.30.1.s390x.rpm True salt-3004-150300.53.30.1.s390x.rpm True salt-api-3004-150300.53.30.1.s390x.rpm True salt-cloud-3004-150300.53.30.1.s390x.rpm True salt-doc-3004-150300.53.30.1.s390x.rpm True salt-master-3004-150300.53.30.1.s390x.rpm True salt-minion-3004-150300.53.30.1.s390x.rpm True salt-proxy-3004-150300.53.30.1.s390x.rpm True salt-ssh-3004-150300.53.30.1.s390x.rpm True salt-standalone-formulas-configuration-3004-150300.53.30.1.s390x.rpm True salt-syndic-3004-150300.53.30.1.s390x.rpm True salt-transactional-update-3004-150300.53.30.1.s390x.rpm True python3-salt-3004-150300.53.30.1.ppc64le.rpm True salt-3004-150300.53.30.1.ppc64le.rpm True salt-api-3004-150300.53.30.1.ppc64le.rpm True salt-cloud-3004-150300.53.30.1.ppc64le.rpm True salt-doc-3004-150300.53.30.1.ppc64le.rpm True salt-master-3004-150300.53.30.1.ppc64le.rpm True salt-minion-3004-150300.53.30.1.ppc64le.rpm True salt-proxy-3004-150300.53.30.1.ppc64le.rpm True salt-ssh-3004-150300.53.30.1.ppc64le.rpm True salt-standalone-formulas-configuration-3004-150300.53.30.1.ppc64le.rpm True salt-syndic-3004-150300.53.30.1.ppc64le.rpm True salt-transactional-update-3004-150300.53.30.1.ppc64le.rpm True python3-salt-3004-150300.53.30.1.aarch64.rpm True salt-3004-150300.53.30.1.aarch64.rpm True salt-api-3004-150300.53.30.1.aarch64.rpm True salt-cloud-3004-150300.53.30.1.aarch64.rpm True salt-doc-3004-150300.53.30.1.aarch64.rpm True salt-master-3004-150300.53.30.1.aarch64.rpm True salt-minion-3004-150300.53.30.1.aarch64.rpm True salt-proxy-3004-150300.53.30.1.aarch64.rpm True salt-ssh-3004-150300.53.30.1.aarch64.rpm True salt-standalone-formulas-configuration-3004-150300.53.30.1.aarch64.rpm True salt-syndic-3004-150300.53.30.1.aarch64.rpm True salt-transactional-update-3004-150300.53.30.1.aarch64.rpm True openSUSE-SLE-15.3-2022-4124 low SUSE Updates openSUSE-SLE 15.3 This update for 389-ds fixes the following issues: - CVE-2021-45710: Fixed tokio data race with memory corruption (bsc#1194119). - Update to version 2.0.16~git56.d15a0a7. - Failure to migrate from openldap if pwdPolicyChecker present (bsc#1205146). - Resolve issue with checklist post migration when dds is present (bsc#1204748). - Improve reliability of migrations from openldap when dynamic directory services is configured (bsc#1204493). 389-ds-1.4.4.19~git59.136fc84-150300.3.27.1.src.rpm 389-ds-1.4.4.19~git59.136fc84-150300.3.27.1.x86_64.rpm 389-ds-devel-1.4.4.19~git59.136fc84-150300.3.27.1.x86_64.rpm 389-ds-snmp-1.4.4.19~git59.136fc84-150300.3.27.1.x86_64.rpm lib389-1.4.4.19~git59.136fc84-150300.3.27.1.x86_64.rpm libsvrcore0-1.4.4.19~git59.136fc84-150300.3.27.1.x86_64.rpm 389-ds-1.4.4.19~git59.136fc84-150300.3.27.1.s390x.rpm 389-ds-devel-1.4.4.19~git59.136fc84-150300.3.27.1.s390x.rpm 389-ds-snmp-1.4.4.19~git59.136fc84-150300.3.27.1.s390x.rpm lib389-1.4.4.19~git59.136fc84-150300.3.27.1.s390x.rpm libsvrcore0-1.4.4.19~git59.136fc84-150300.3.27.1.s390x.rpm 389-ds-1.4.4.19~git59.136fc84-150300.3.27.1.ppc64le.rpm 389-ds-devel-1.4.4.19~git59.136fc84-150300.3.27.1.ppc64le.rpm 389-ds-snmp-1.4.4.19~git59.136fc84-150300.3.27.1.ppc64le.rpm lib389-1.4.4.19~git59.136fc84-150300.3.27.1.ppc64le.rpm libsvrcore0-1.4.4.19~git59.136fc84-150300.3.27.1.ppc64le.rpm 389-ds-1.4.4.19~git59.136fc84-150300.3.27.1.aarch64.rpm 389-ds-devel-1.4.4.19~git59.136fc84-150300.3.27.1.aarch64.rpm 389-ds-snmp-1.4.4.19~git59.136fc84-150300.3.27.1.aarch64.rpm lib389-1.4.4.19~git59.136fc84-150300.3.27.1.aarch64.rpm libsvrcore0-1.4.4.19~git59.136fc84-150300.3.27.1.aarch64.rpm openSUSE-SLE-15.3-2022-3596 important SUSE Updates openSUSE-SLE 15.3 This update for squid fixes the following issues: - CVE-2022-41317: Fixed exposure of sensitive information in cache manager (bsc#1203677). - CVE-2022-41318: Fixed buffer overread in SSPI and SMB Authentication (bsc#1203680). squid-4.17-150000.5.35.1.src.rpm squid-4.17-150000.5.35.1.x86_64.rpm squid-4.17-150000.5.35.1.s390x.rpm squid-4.17-150000.5.35.1.ppc64le.rpm squid-4.17-150000.5.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-3597 important SUSE Updates openSUSE-SLE 15.3 This update for expat fixes the following issues: - CVE-2022-40674: Fixed use-after-free in the doContent function in xmlparse.c (bsc#1203438). expat-2.2.5-150000.3.22.1.src.rpm expat-2.2.5-150000.3.22.1.x86_64.rpm libexpat-devel-2.2.5-150000.3.22.1.x86_64.rpm libexpat-devel-32bit-2.2.5-150000.3.22.1.x86_64.rpm libexpat1-2.2.5-150000.3.22.1.x86_64.rpm libexpat1-32bit-2.2.5-150000.3.22.1.x86_64.rpm expat-2.2.5-150000.3.22.1.s390x.rpm libexpat-devel-2.2.5-150000.3.22.1.s390x.rpm libexpat1-2.2.5-150000.3.22.1.s390x.rpm expat-2.2.5-150000.3.22.1.ppc64le.rpm libexpat-devel-2.2.5-150000.3.22.1.ppc64le.rpm libexpat1-2.2.5-150000.3.22.1.ppc64le.rpm expat-2.2.5-150000.3.22.1.aarch64.rpm libexpat-devel-2.2.5-150000.3.22.1.aarch64.rpm libexpat1-2.2.5-150000.3.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-3834 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-Flask-Security fixes the following issues: - CVE-2021-23385: Fixed open redirect (bsc#1202105). python-Flask-Security-3.0.0-150100.4.3.1.src.rpm python2-Flask-Security-3.0.0-150100.4.3.1.noarch.rpm python3-Flask-Security-3.0.0-150100.4.3.1.noarch.rpm openSUSE-SLE-15.3-2022-3867 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-Flask-Security-Too fixes the following issues: - CVE-2021-23385: Fixed open redirect (bsc#1202105). python-Flask-Security-Too-3.4.2-150200.3.6.1.src.rpm python3-Flask-Security-Too-3.4.2-150200.3.6.1.noarch.rpm openSUSE-SLE-15.3-2022-3598 important SUSE Updates openSUSE-SLE 15.3 This update for exiv2 fixes the following issues: - CVE-2021-37621: Fixed denial of service due to infinite loop in Image:printIFDStructure (bsc#1189333). - CVE-2021-37620: Fixed out-of-bounds read in XmpTextValue:read() (bsc#1189332). - CVE-2021-37619: Fixed out-of-bounds read in Exiv2:Jp2Image:encodeJp2Header (bsc#1189331). - CVE-2021-37618: Fixed out-of-bounds read in Exiv2:Jp2Image:printStructure (bsc#1189330). - CVE-2021-32617: Fixed denial of service inside inefficient algorithm (quadratic complexity) (bsc#1186192). - CVE-2021-31292: Fixed integer overflow in CrwMap:encode0x1810 (bsc#1188756). - CVE-2021-31291: Fixed heap-based buffer overflow vulnerability in jp2image.cpp may lead to a denial of service (bsc#1188733). - CVE-2021-29470: Fixed out-of-bounds read in Exiv2:Jp2Image:encodeJp2Header (bsc#1185447). - CVE-2020-18899: Fixed uncontrolled memory allocation (bsc#1189636). - CVE-2020-18898: Fixed remote denial of service in printIFDStructure function (bsc#1189780). - CVE-2018-8977: Fixed remote denial of service in Exiv2::Internal::printCsLensFFFF function in canonmn_int.cpp (bsc#1086798). - CVE-2018-8976: Fixed remote denial of service in image.cpp Exiv2::Internal::stringFormat via out-of-bounds read (bsc#1086810). - CVE-2018-5772: Fixed segmentation fault caused by uncontrolled recursion inthe Exiv2::Image::printIFDStructure (bsc#1076579). - CVE-2018-18915: Fixed an infinite loop in the Exiv2:Image:printIFDStructure function (bsc#1114690). - CVE-2018-10772: Fixed segmentation fault when the function Exiv2::tEXtToDataBuf() is finished (bsc#1092096). exiv2-0.26-150000.6.16.1.src.rpm exiv2-0.26-150000.6.16.1.x86_64.rpm exiv2-lang-0.26-150000.6.16.1.noarch.rpm libexiv2-26-0.26-150000.6.16.1.x86_64.rpm libexiv2-26-32bit-0.26-150000.6.16.1.x86_64.rpm libexiv2-devel-0.26-150000.6.16.1.x86_64.rpm libexiv2-doc-0.26-150000.6.16.1.x86_64.rpm exiv2-0.26-150000.6.16.1.s390x.rpm libexiv2-26-0.26-150000.6.16.1.s390x.rpm libexiv2-devel-0.26-150000.6.16.1.s390x.rpm libexiv2-doc-0.26-150000.6.16.1.s390x.rpm exiv2-0.26-150000.6.16.1.ppc64le.rpm libexiv2-26-0.26-150000.6.16.1.ppc64le.rpm libexiv2-devel-0.26-150000.6.16.1.ppc64le.rpm libexiv2-doc-0.26-150000.6.16.1.ppc64le.rpm exiv2-0.26-150000.6.16.1.aarch64.rpm libexiv2-26-0.26-150000.6.16.1.aarch64.rpm libexiv2-devel-0.26-150000.6.16.1.aarch64.rpm libexiv2-doc-0.26-150000.6.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-3571 important SUSE Updates openSUSE-SLE 15.3 This update for rubygem-puma fixes the following issues: Updated to version 4.3.12: - CVE-2022-24790: Fixed HTTP request smuggling if proxy is not RFC7230 compliant (bsc#1197818). ruby2.5-rubygem-puma-4.3.12-150000.3.9.1.x86_64.rpm ruby2.5-rubygem-puma-doc-4.3.12-150000.3.9.1.x86_64.rpm rubygem-puma-4.3.12-150000.3.9.1.src.rpm ruby2.5-rubygem-puma-4.3.12-150000.3.9.1.s390x.rpm ruby2.5-rubygem-puma-doc-4.3.12-150000.3.9.1.s390x.rpm ruby2.5-rubygem-puma-4.3.12-150000.3.9.1.ppc64le.rpm ruby2.5-rubygem-puma-doc-4.3.12-150000.3.9.1.ppc64le.rpm ruby2.5-rubygem-puma-4.3.12-150000.3.9.1.aarch64.rpm ruby2.5-rubygem-puma-doc-4.3.12-150000.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3949 moderate SUSE Updates openSUSE-SLE 15.3 This update for rustup fixes the following issues: Updated to version 1.25.1~0: - CVE-2022-24713: Fixed Regex denial of service (bsc#1196972). - CVE-2021-45710: Fixed tokio data race with memory corruption (bsc#1194119). rustup-1.25.1~0-150300.7.13.2.src.rpm rustup-1.25.1~0-150300.7.13.2.x86_64.rpm rustup-1.25.1~0-150300.7.13.2.aarch64.rpm openSUSE-SLE-15.3-2022-3743 moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-alertmanager fixes the following issues: - Do not include sources (bsc#1200725) golang-github-prometheus-alertmanager-0.23.0-150100.4.10.1.src.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.10.1.x86_64.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.10.1.s390x.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.10.1.ppc64le.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-3745 moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-node_exporter fixes the following issues: (bsc#1196338, jsc#SLE-24238, jsc#SLE-24239, jsc#SUMA-114, CVE-2022-21698) golang-github-prometheus-node_exporter-1.3.0-150100.3.18.1.src.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.18.1.x86_64.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.18.1.s390x.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.18.1.ppc64le.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-3613 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql-jdbc fixes the following issues: - CVE-2022-31197: Fixed SQL injection vulnerability (bsc#1202170). postgresql-jdbc-42.2.25-150300.3.8.1.noarch.rpm postgresql-jdbc-42.2.25-150300.3.8.1.src.rpm postgresql-jdbc-javadoc-42.2.25-150300.3.8.1.noarch.rpm openSUSE-SLE-15.3-2022-4170 low SUSE Updates openSUSE-SLE 15.3 This update for colord fixes the following issues: - CVE-2021-42523: Fixed small memory leak in sqlite3_exec (bsc#1202802). colord-1.4.4-150200.4.6.1.src.rpm colord-1.4.4-150200.4.6.1.x86_64.rpm colord-color-profiles-1.4.4-150200.4.6.1.x86_64.rpm colord-lang-1.4.4-150200.4.6.1.noarch.rpm libcolord-devel-1.4.4-150200.4.6.1.x86_64.rpm libcolord2-1.4.4-150200.4.6.1.x86_64.rpm libcolord2-32bit-1.4.4-150200.4.6.1.x86_64.rpm libcolorhug2-1.4.4-150200.4.6.1.x86_64.rpm typelib-1_0-Colord-1_0-1.4.4-150200.4.6.1.x86_64.rpm typelib-1_0-Colorhug-1_0-1.4.4-150200.4.6.1.x86_64.rpm colord-1.4.4-150200.4.6.1.s390x.rpm colord-color-profiles-1.4.4-150200.4.6.1.s390x.rpm libcolord-devel-1.4.4-150200.4.6.1.s390x.rpm libcolord2-1.4.4-150200.4.6.1.s390x.rpm libcolorhug2-1.4.4-150200.4.6.1.s390x.rpm typelib-1_0-Colord-1_0-1.4.4-150200.4.6.1.s390x.rpm typelib-1_0-Colorhug-1_0-1.4.4-150200.4.6.1.s390x.rpm colord-1.4.4-150200.4.6.1.ppc64le.rpm colord-color-profiles-1.4.4-150200.4.6.1.ppc64le.rpm libcolord-devel-1.4.4-150200.4.6.1.ppc64le.rpm libcolord2-1.4.4-150200.4.6.1.ppc64le.rpm libcolorhug2-1.4.4-150200.4.6.1.ppc64le.rpm typelib-1_0-Colord-1_0-1.4.4-150200.4.6.1.ppc64le.rpm typelib-1_0-Colorhug-1_0-1.4.4-150200.4.6.1.ppc64le.rpm colord-1.4.4-150200.4.6.1.aarch64.rpm colord-color-profiles-1.4.4-150200.4.6.1.aarch64.rpm libcolord-devel-1.4.4-150200.4.6.1.aarch64.rpm libcolord2-1.4.4-150200.4.6.1.aarch64.rpm libcolorhug2-1.4.4-150200.4.6.1.aarch64.rpm typelib-1_0-Colord-1_0-1.4.4-150200.4.6.1.aarch64.rpm typelib-1_0-Colorhug-1_0-1.4.4-150200.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3621 moderate SUSE Updates openSUSE-SLE 15.3 This update for rubygem-activesupport-5_1 fixes the following issues: - CVE-2022-27777: Fixed cross-site scripting vulnerability in Action View tag helper (bsc#1199060). ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.9.1.x86_64.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.9.1.x86_64.rpm rubygem-activesupport-5_1-5.1.4-150000.3.9.1.src.rpm ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.9.1.s390x.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.9.1.s390x.rpm ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.9.1.ppc64le.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.9.1.ppc64le.rpm ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.9.1.aarch64.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3614 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: Updated to version 14.20.1: - CVE-2022-32213: Fixed bypass via obs-fold mechanic (bsc#1201325). - CVE-2022-35256: Fixed incorrect Parsing of Header Fields (bsc#1203832). nodejs14-14.20.1-150200.15.37.1.src.rpm nodejs14-14.20.1-150200.15.37.1.x86_64.rpm nodejs14-devel-14.20.1-150200.15.37.1.x86_64.rpm nodejs14-docs-14.20.1-150200.15.37.1.noarch.rpm npm14-14.20.1-150200.15.37.1.x86_64.rpm nodejs14-14.20.1-150200.15.37.1.s390x.rpm nodejs14-devel-14.20.1-150200.15.37.1.s390x.rpm npm14-14.20.1-150200.15.37.1.s390x.rpm nodejs14-14.20.1-150200.15.37.1.ppc64le.rpm nodejs14-devel-14.20.1-150200.15.37.1.ppc64le.rpm npm14-14.20.1-150200.15.37.1.ppc64le.rpm nodejs14-14.20.1-150200.15.37.1.aarch64.rpm nodejs14-devel-14.20.1-150200.15.37.1.aarch64.rpm npm14-14.20.1-150200.15.37.1.aarch64.rpm openSUSE-SLE-15.3-2022-3615 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs16 fixes the following issues: Updated to version 16.17.1: - CVE-2022-32213: Fixed bypass via obs-fold mechanic (bsc#1201325). - CVE-2022-32215: Fixed incorrect Parsing of Multi-line Transfer-Encoding (bsc#1201327). - CVE-2022-35256: Fixed incorrect Parsing of Header Fields (bsc#1203832). - CVE-2022-35255: FIxed weak randomness in WebCrypto keygen (bsc#1203831). nodejs16-16.17.1-150300.7.12.1.src.rpm nodejs16-16.17.1-150300.7.12.1.x86_64.rpm nodejs16-devel-16.17.1-150300.7.12.1.x86_64.rpm nodejs16-docs-16.17.1-150300.7.12.1.noarch.rpm npm16-16.17.1-150300.7.12.1.x86_64.rpm nodejs16-16.17.1-150300.7.12.1.s390x.rpm nodejs16-devel-16.17.1-150300.7.12.1.s390x.rpm npm16-16.17.1-150300.7.12.1.s390x.rpm nodejs16-16.17.1-150300.7.12.1.ppc64le.rpm nodejs16-devel-16.17.1-150300.7.12.1.ppc64le.rpm npm16-16.17.1-150300.7.12.1.ppc64le.rpm nodejs16-16.17.1-150300.7.12.1.aarch64.rpm nodejs16-devel-16.17.1-150300.7.12.1.aarch64.rpm npm16-16.17.1-150300.7.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-3765 important SUSE Updates openSUSE-SLE 15.3 This update for grafana fixes the following issues: Updated to version 8.3.10 (jsc#SLE-24565, jsc#SLE-23422, jsc#SLE-23439): - CVE-2022-31097: Fixed XSS vulnerability in the Unified Alerting (bsc#1201535). - CVE-2022-31107: Fixed OAuth account takeover vulnerability (bsc#1201539). - CVE-2022-21702: Fixed XSS through attacker-controlled data source (bsc#1195726). - CVE-2022-21703: Fixed Cross Site Request Forgery (bsc#1195727). - CVE-2022-21713: Fixed Teams API IDOR (bsc#1195728). grafana-8.3.10-150200.3.26.1.src.rpm grafana-8.3.10-150200.3.26.1.x86_64.rpm grafana-8.3.10-150200.3.26.1.s390x.rpm grafana-8.3.10-150200.3.26.1.ppc64le.rpm grafana-8.3.10-150200.3.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-3751 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: dracut-saltboot: - Update to version 0.1.1661440542.6cbe0da * Use standard susemanager.conf * Move image services to dracut-saltboot package * Use salt bundle golang-github-lusitaniae-apache_exporter: - Update to upstream release 0.11.0 (jsc#SLE-24791) * Add TLS support * Switch to logger, please check --log.level and --log.format flags - Update to version 0.10.1 * Bugfix: Reset ProxyBalancer metrics on each scrape to remove stale data - Update to version 0.10.0 * Add Apache Proxy and other metrics - Update to version 0.8.0 * Change commandline flags * Add metrics: Apache version, request duration total - Adapted to build on Enterprise Linux 8 - Require building with Go 1.15 - Add %license macro for LICENSE file grafana: - Update to version 8.3.10 + Security: * CVE-2022-31097: Cross Site Scripting vulnerability in the Unified Alerting (bsc#1201535) * CVE-2022-31107: Fixes OAuth account takeover vulnerability (bsc#1201539) - Update to version 8.3.9 + Bug fixes: * Geomap: Display legend * Prometheus: Fix timestamp truncation - Update to version 8.3.7 + Bug fix: * Provisioning: Ensure that the default value for orgID is set when provisioning datasources to be deleted. - Update to version 8.3.6 + Features and enhancements: * Cloud Monitoring: Reduce request size when listing labels. * Explore: Show scalar data result in a table instead of graph. * Snapshots: Updates the default external snapshot server URL. * Table: Makes footer not overlap table content. * Tempo: Add request histogram to service graph datalink. * Tempo: Add time range to tempo search query behind a feature flag. * Tempo: Auto-clear results when changing query type. * Tempo: Display start time in search results as relative time. * CloudMonitoring: Fix resource labels in query editor. * Cursor sync: Apply the settings without saving the dashboard. * LibraryPanels: Fix for Error while cleaning library panels. * Logs Panel: Fix timestamp parsing for string dates without timezone. * Prometheus: Fix some of the alerting queries that use reduce/math operation. * TablePanel: Fix ad-hoc variables not working on default datasources. * Text Panel: Fix alignment of elements. * Variables: Fix for constant variables in self referencing links. - Update to version 8.3.5 (jsc#SLE-23439, jsc#SLE-23422, jsc#SLE-24565) mgr-daemon: - Version 4.3.6-1 * Update translation strings spacecmd: - Version 4.3.15-1 * Process date values in spacecmd api calls (bsc#1198903) spacewalk-client-tools: - Version 4.3.12-1 * Update translation strings uyuni-common-libs: - Version 4.3.6-1 * Do not allow creating path if nonexistent user or group in fileutils. dracut-saltboot-0.1.1661440542.6cbe0da-150000.1.38.1.noarch.rpm dracut-saltboot-0.1.1661440542.6cbe0da-150000.1.38.1.src.rpm golang-github-lusitaniae-apache_exporter-0.11.0-150000.1.12.1.src.rpm golang-github-lusitaniae-apache_exporter-0.11.0-150000.1.12.1.x86_64.rpm spacecmd-4.3.15-150000.3.86.1.noarch.rpm spacecmd-4.3.15-150000.3.86.1.src.rpm golang-github-lusitaniae-apache_exporter-0.11.0-150000.1.12.1.s390x.rpm golang-github-lusitaniae-apache_exporter-0.11.0-150000.1.12.1.ppc64le.rpm golang-github-lusitaniae-apache_exporter-0.11.0-150000.1.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-3616 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - CVE-2022-35256: Fixed incorrect parsing of header fields (bsc#1203832). - CVE-2022-32213: Fixed bypass via obs-fold mechanic (bsc#1201325). nodejs12-12.22.12-150200.4.38.1.src.rpm nodejs12-12.22.12-150200.4.38.1.x86_64.rpm nodejs12-devel-12.22.12-150200.4.38.1.x86_64.rpm nodejs12-docs-12.22.12-150200.4.38.1.noarch.rpm npm12-12.22.12-150200.4.38.1.x86_64.rpm nodejs12-12.22.12-150200.4.38.1.s390x.rpm nodejs12-devel-12.22.12-150200.4.38.1.s390x.rpm npm12-12.22.12-150200.4.38.1.s390x.rpm nodejs12-12.22.12-150200.4.38.1.ppc64le.rpm nodejs12-devel-12.22.12-150200.4.38.1.ppc64le.rpm npm12-12.22.12-150200.4.38.1.ppc64le.rpm nodejs12-12.22.12-150200.4.38.1.aarch64.rpm nodejs12-devel-12.22.12-150200.4.38.1.aarch64.rpm npm12-12.22.12-150200.4.38.1.aarch64.rpm openSUSE-SLE-15.3-2022-3835 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs10 fixes the following issues: - CVE-2022-35256: Fixed incorrect parsing of header fields (bsc#1203832). - CVE-2022-32213: Fixed bypass via obs-fold mechanic (bsc#1201325). nodejs10-10.24.1-150000.1.50.1.src.rpm nodejs10-10.24.1-150000.1.50.1.x86_64.rpm nodejs10-devel-10.24.1-150000.1.50.1.x86_64.rpm nodejs10-docs-10.24.1-150000.1.50.1.noarch.rpm npm10-10.24.1-150000.1.50.1.x86_64.rpm nodejs10-10.24.1-150000.1.50.1.s390x.rpm nodejs10-devel-10.24.1-150000.1.50.1.s390x.rpm npm10-10.24.1-150000.1.50.1.s390x.rpm nodejs10-10.24.1-150000.1.50.1.ppc64le.rpm nodejs10-devel-10.24.1-150000.1.50.1.ppc64le.rpm npm10-10.24.1-150000.1.50.1.ppc64le.rpm nodejs10-10.24.1-150000.1.50.1.aarch64.rpm nodejs10-devel-10.24.1-150000.1.50.1.aarch64.rpm npm10-10.24.1-150000.1.50.1.aarch64.rpm openSUSE-SLE-15.3-2022-3730 important SUSE Updates openSUSE-SLE 15.3 This update for python-paramiko fixes the following issues: Updated to version 2.4.3: - CVE-2018-1000805: Fixed authentication bypass (bsc#1111151). Bugfixes: - Fixed Ed25519 key handling for certain key comment lengths (bsc#1200603). python-paramiko-2.4.3-150100.6.15.1.src.rpm python-paramiko-doc-2.4.3-150100.6.15.1.noarch.rpm python2-paramiko-2.4.3-150100.6.15.1.noarch.rpm python3-paramiko-2.4.3-150100.6.15.1.noarch.rpm openSUSE-SLE-15.3-2022-3570 important SUSE Updates openSUSE-SLE 15.3 This update for prometheus-ha_cluster_exporter fixes the following issues: - Release 1.3.0 (jsc#PED-2052) - Added: - TLS and basic auth support (#200) - sysconfig file now available to override systemd unit CLI arguments (#200) - Changed - **Deprecated**: Some CLI flags were deprecated in favour of new ones according to upstream conventions (#200) - Boilerplate now uses the Prometheus Exporter Toolkit (#200) - Rename dashboard provider subpackage (#196) prometheus-ha_cluster_exporter-1.3.0+git.1653405719.2a65dfc-150200.3.18.1.src.rpm prometheus-ha_cluster_exporter-1.3.0+git.1653405719.2a65dfc-150200.3.18.1.x86_64.rpm prometheus-ha_cluster_exporter-1.3.0+git.1653405719.2a65dfc-150200.3.18.1.s390x.rpm prometheus-ha_cluster_exporter-1.3.0+git.1653405719.2a65dfc-150200.3.18.1.ppc64le.rpm prometheus-ha_cluster_exporter-1.3.0+git.1653405719.2a65dfc-150200.3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-3544 important SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - CVE-2021-28861: Fixed an open redirection vulnerability in the HTTP server when an URI path starts with // (bsc#1202624). libpython3_6m1_0-3.6.15-150300.10.30.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.15-150300.10.30.1.x86_64.rpm python3-3.6.15-150300.10.30.1.src.rpm python3-3.6.15-150300.10.30.1.x86_64.rpm python3-base-3.6.15-150300.10.30.1.x86_64.rpm python3-core-3.6.15-150300.10.30.1.src.rpm python3-curses-3.6.15-150300.10.30.1.x86_64.rpm python3-dbm-3.6.15-150300.10.30.1.x86_64.rpm python3-devel-3.6.15-150300.10.30.1.x86_64.rpm python3-doc-3.6.15-150300.10.30.1.x86_64.rpm python3-doc-devhelp-3.6.15-150300.10.30.1.x86_64.rpm python3-documentation-3.6.15-150300.10.30.1.src.rpm python3-idle-3.6.15-150300.10.30.1.x86_64.rpm python3-testsuite-3.6.15-150300.10.30.1.x86_64.rpm python3-tk-3.6.15-150300.10.30.1.x86_64.rpm python3-tools-3.6.15-150300.10.30.1.x86_64.rpm libpython3_6m1_0-3.6.15-150300.10.30.1.s390x.rpm python3-3.6.15-150300.10.30.1.s390x.rpm python3-base-3.6.15-150300.10.30.1.s390x.rpm python3-curses-3.6.15-150300.10.30.1.s390x.rpm python3-dbm-3.6.15-150300.10.30.1.s390x.rpm python3-devel-3.6.15-150300.10.30.1.s390x.rpm python3-doc-3.6.15-150300.10.30.1.s390x.rpm python3-doc-devhelp-3.6.15-150300.10.30.1.s390x.rpm python3-idle-3.6.15-150300.10.30.1.s390x.rpm python3-testsuite-3.6.15-150300.10.30.1.s390x.rpm python3-tk-3.6.15-150300.10.30.1.s390x.rpm python3-tools-3.6.15-150300.10.30.1.s390x.rpm libpython3_6m1_0-3.6.15-150300.10.30.1.ppc64le.rpm python3-3.6.15-150300.10.30.1.ppc64le.rpm python3-base-3.6.15-150300.10.30.1.ppc64le.rpm python3-curses-3.6.15-150300.10.30.1.ppc64le.rpm python3-dbm-3.6.15-150300.10.30.1.ppc64le.rpm python3-devel-3.6.15-150300.10.30.1.ppc64le.rpm python3-doc-3.6.15-150300.10.30.1.ppc64le.rpm python3-doc-devhelp-3.6.15-150300.10.30.1.ppc64le.rpm python3-idle-3.6.15-150300.10.30.1.ppc64le.rpm python3-testsuite-3.6.15-150300.10.30.1.ppc64le.rpm python3-tk-3.6.15-150300.10.30.1.ppc64le.rpm python3-tools-3.6.15-150300.10.30.1.ppc64le.rpm libpython3_6m1_0-3.6.15-150300.10.30.1.aarch64.rpm python3-3.6.15-150300.10.30.1.aarch64.rpm python3-base-3.6.15-150300.10.30.1.aarch64.rpm python3-curses-3.6.15-150300.10.30.1.aarch64.rpm python3-dbm-3.6.15-150300.10.30.1.aarch64.rpm python3-devel-3.6.15-150300.10.30.1.aarch64.rpm python3-doc-3.6.15-150300.10.30.1.aarch64.rpm python3-doc-devhelp-3.6.15-150300.10.30.1.aarch64.rpm python3-idle-3.6.15-150300.10.30.1.aarch64.rpm python3-testsuite-3.6.15-150300.10.30.1.aarch64.rpm python3-tk-3.6.15-150300.10.30.1.aarch64.rpm python3-tools-3.6.15-150300.10.30.1.aarch64.rpm openSUSE-SLE-15.3-2022-4189 moderate SUSE Updates openSUSE-SLE 15.3 This update for abseil-cpp fixes the following issues: - Adjust headers ABI info to fix linker error when using new compilers (bsc#1203378) - Do not make programs compiled with abseil require new-ish CPUs (bsc#1203379) abseil-cpp-20211102.0-150300.7.6.1.src.rpm abseil-cpp-20211102.0-150300.7.6.1.x86_64.rpm abseil-cpp-devel-20211102.0-150300.7.6.1.x86_64.rpm abseil-cpp-20211102.0-150300.7.6.1.s390x.rpm abseil-cpp-devel-20211102.0-150300.7.6.1.s390x.rpm abseil-cpp-20211102.0-150300.7.6.1.ppc64le.rpm abseil-cpp-devel-20211102.0-150300.7.6.1.ppc64le.rpm abseil-cpp-20211102.0-150300.7.6.1.aarch64.rpm abseil-cpp-devel-20211102.0-150300.7.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3900 moderate SUSE Updates openSUSE-SLE 15.3 This update for docker fixes the following issues: - Fix a crash-on-start issue with dockerd (bsc#1200022) Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? docker-20.10.17_ce-150000.169.1.src.rpm docker-20.10.17_ce-150000.169.1.x86_64.rpm docker-bash-completion-20.10.17_ce-150000.169.1.noarch.rpm docker-fish-completion-20.10.17_ce-150000.169.1.noarch.rpm docker-kubic-20.10.17_ce-150000.169.1.src.rpm docker-kubic-20.10.17_ce-150000.169.1.x86_64.rpm docker-kubic-bash-completion-20.10.17_ce-150000.169.1.noarch.rpm docker-kubic-fish-completion-20.10.17_ce-150000.169.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.169.1.x86_64.rpm docker-kubic-zsh-completion-20.10.17_ce-150000.169.1.noarch.rpm docker-zsh-completion-20.10.17_ce-150000.169.1.noarch.rpm docker-20.10.17_ce-150000.169.1.s390x.rpm docker-kubic-20.10.17_ce-150000.169.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.169.1.s390x.rpm docker-20.10.17_ce-150000.169.1.ppc64le.rpm docker-kubic-20.10.17_ce-150000.169.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.169.1.ppc64le.rpm docker-20.10.17_ce-150000.169.1.aarch64.rpm docker-kubic-20.10.17_ce-150000.169.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.169.1.aarch64.rpm openSUSE-SLE-15.3-2022-3927 moderate SUSE Updates openSUSE-SLE 15.3 This update for runc fixes the following issues: - Update to runc v1.1.4 (bsc#1202021) - Fix failed exec after systemctl daemon-reload (bsc#1202821) - Fix mounting via wrong proc - Fix "permission denied" error from runc run on noexec filesystem runc-1.1.4-150000.36.1.src.rpm runc-1.1.4-150000.36.1.x86_64.rpm runc-1.1.4-150000.36.1.s390x.rpm runc-1.1.4-150000.36.1.ppc64le.rpm runc-1.1.4-150000.36.1.aarch64.rpm openSUSE-SLE-15.3-2022-4234 moderate SUSE Updates openSUSE-SLE 15.3 This update for osc fixes the following issues: - 0.182.0 - fix build on SLE12 / python 2.7 - SSH auth: Fix getallmatchingheaders() output to correspond with headers.get_all() - send HTTP header Accept: application/xml - git_version: return version from the source code if there's no matching tag - spec file: - Revert to python2 on SLE12 - Recommend openssh for ssh key auth - fix building on distros that are not openSUSE or SLE - build against python3.6 for SLE12 and older - 0.181.0 - fix crash when 'pass' is not set in the config file - add missing attributes to Package when scm_url is set - fix failure to create config in current dir - update list of considered file names for ssh key autodetection - allow users to prefer ssh key over password auth - ssh: recognize gpg keys (yubikey usage) - fix operating on _project meta - revert "interpretation of string literals in messages" that broke unicode handling - fix product build rpm caching - enable md5 revisions in osc log - parseRevisionOption(): raise an exception on invalid revisions - 0.180.0 - warn when trying to commit a prj/pac managed in scm - fix crash on "osc up" for git based package/projects - don't traceback on invalid credentials manager - improve README, rename it to README.md - declare OscHTTPSignatureAuthHandler as a new-style class - remove illegal character in comment osc-0.182.0-150100.3.32.1.noarch.rpm osc-0.182.0-150100.3.32.1.src.rpm openSUSE-SLE-15.3-2022-3814 moderate SUSE Updates openSUSE-SLE 15.3 This update for sapstartsrv-resource-agents and supportutils-plugin-ha-sap fixes the following issues: sapstartsrv-resource-agents: - Version bump to 0.9.1 - man page updates based on customer feedback - remove 'BuildRequire python3-mock' as this is no longer needed for the tests supportutils-plugin-ha-sap: - Update to version 0.0.4 - fix basic support for saptune - add saptune version 3 awareness and add a hint for the new saptune supportconfig (bsc#1203202) sapstartsrv-resource-agents-0.9.1+git.1663751963.e0ef8a2-150000.1.15.1.noarch.rpm sapstartsrv-resource-agents-0.9.1+git.1663751963.e0ef8a2-150000.1.15.1.src.rpm supportutils-plugin-ha-sap-0.0.4+git.1663763480.2bbd713-150000.1.12.1.noarch.rpm supportutils-plugin-ha-sap-0.0.4+git.1663763480.2bbd713-150000.1.12.1.src.rpm openSUSE-SLE-15.3-2022-3910 moderate SUSE Updates openSUSE-SLE 15.3 This update for pam fixes the following issue: - Update pam_motd to the most current version. (PED-1712) pam-1.3.0-150000.6.61.1.src.rpm pam-1.3.0-150000.6.61.1.x86_64.rpm pam-32bit-1.3.0-150000.6.61.1.x86_64.rpm pam-devel-1.3.0-150000.6.61.1.x86_64.rpm pam-devel-32bit-1.3.0-150000.6.61.1.x86_64.rpm pam-doc-1.3.0-150000.6.61.1.noarch.rpm pam-extra-1.3.0-150000.6.61.1.x86_64.rpm pam-extra-32bit-1.3.0-150000.6.61.1.x86_64.rpm pam-1.3.0-150000.6.61.1.s390x.rpm pam-devel-1.3.0-150000.6.61.1.s390x.rpm pam-extra-1.3.0-150000.6.61.1.s390x.rpm pam-1.3.0-150000.6.61.1.ppc64le.rpm pam-devel-1.3.0-150000.6.61.1.ppc64le.rpm pam-extra-1.3.0-150000.6.61.1.ppc64le.rpm pam-1.3.0-150000.6.61.1.aarch64.rpm pam-devel-1.3.0-150000.6.61.1.aarch64.rpm pam-extra-1.3.0-150000.6.61.1.aarch64.rpm openSUSE-SLE-15.3-2022-3611 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Azure Events RA can not handle AV Zones (jsc#PED-2000) ldirectord-4.8.0+git30.d0077df0-150300.8.31.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-150300.8.31.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.31.1.src.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.31.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.31.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.31.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.31.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.31.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.31.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.31.1.aarch64.rpm openSUSE-SLE-15.3-2022-3901 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following issues: - Default to RFC7919 groups when generating ECDH parameters using 'genpkey' or 'dhparam' in FIPS mode (bsc#1180995) - Fix memory leaks (bsc#1203046) libopenssl-1_1-devel-1.1.1d-150200.11.54.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-150200.11.54.1.x86_64.rpm libopenssl1_1-1.1.1d-150200.11.54.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-150200.11.54.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-150200.11.54.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-150200.11.54.1.x86_64.rpm openssl-1_1-1.1.1d-150200.11.54.1.src.rpm openssl-1_1-1.1.1d-150200.11.54.1.x86_64.rpm openssl-1_1-doc-1.1.1d-150200.11.54.1.noarch.rpm libopenssl-1_1-devel-1.1.1d-150200.11.54.1.s390x.rpm libopenssl1_1-1.1.1d-150200.11.54.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-150200.11.54.1.s390x.rpm openssl-1_1-1.1.1d-150200.11.54.1.s390x.rpm libopenssl-1_1-devel-1.1.1d-150200.11.54.1.ppc64le.rpm libopenssl1_1-1.1.1d-150200.11.54.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-150200.11.54.1.ppc64le.rpm openssl-1_1-1.1.1d-150200.11.54.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-150200.11.54.1.aarch64.rpm libopenssl1_1-1.1.1d-150200.11.54.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-150200.11.54.1.aarch64.rpm openssl-1_1-1.1.1d-150200.11.54.1.aarch64.rpm openSUSE-SLE-15.3-2022-3869 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_0_0 fixes the following issues: - Default to RFC7919 groups when generating ECDH parameters using 'genpkey' or 'dhparam' in FIPS mode (bsc#1180995) libopenssl-1_0_0-devel-1.0.2p-150000.3.59.1.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-150000.3.59.1.x86_64.rpm libopenssl10-1.0.2p-150000.3.59.1.x86_64.rpm libopenssl1_0_0-1.0.2p-150000.3.59.1.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-150000.3.59.1.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.59.1.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-150000.3.59.1.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.59.1.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-150000.3.59.1.x86_64.rpm openssl-1_0_0-1.0.2p-150000.3.59.1.src.rpm openssl-1_0_0-1.0.2p-150000.3.59.1.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.59.1.x86_64.rpm openssl-1_0_0-doc-1.0.2p-150000.3.59.1.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-150000.3.59.1.s390x.rpm libopenssl10-1.0.2p-150000.3.59.1.s390x.rpm libopenssl1_0_0-1.0.2p-150000.3.59.1.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.59.1.s390x.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.59.1.s390x.rpm openssl-1_0_0-1.0.2p-150000.3.59.1.s390x.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.59.1.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-150000.3.59.1.ppc64le.rpm libopenssl10-1.0.2p-150000.3.59.1.ppc64le.rpm libopenssl1_0_0-1.0.2p-150000.3.59.1.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.59.1.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.59.1.ppc64le.rpm openssl-1_0_0-1.0.2p-150000.3.59.1.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.59.1.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-150000.3.59.1.aarch64.rpm libopenssl10-1.0.2p-150000.3.59.1.aarch64.rpm libopenssl1_0_0-1.0.2p-150000.3.59.1.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.59.1.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.59.1.aarch64.rpm openssl-1_0_0-1.0.2p-150000.3.59.1.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.59.1.aarch64.rpm openSUSE-SLE-15.3-2022-4069 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - Version update to 7.4.33: - CVE-2022-31630: Fixed out-of-bounds read due to insufficient input validation in imageloadfont() (bsc#1204979). - CVE-2022-37454: Fixed buffer overflow in hash_update() on long parameter (bsc#1204577). - Version update to 7.4.32 (jsc#SLE-23639) - CVE-2022-31628: Fixed an uncontrolled recursion in the phar uncompressor while decompressing "quines" gzip files. (bsc#1203867) - CVE-2022-31629: Fixed a bug which could lead an attacker to set an insecure cookie that will treated as secure in the victim's browser. (bsc#1203870) apache2-mod_php7-7.4.33-150200.3.46.2.x86_64.rpm php7-7.4.33-150200.3.46.2.src.rpm php7-7.4.33-150200.3.46.2.x86_64.rpm php7-bcmath-7.4.33-150200.3.46.2.x86_64.rpm php7-bz2-7.4.33-150200.3.46.2.x86_64.rpm php7-calendar-7.4.33-150200.3.46.2.x86_64.rpm php7-ctype-7.4.33-150200.3.46.2.x86_64.rpm php7-curl-7.4.33-150200.3.46.2.x86_64.rpm php7-dba-7.4.33-150200.3.46.2.x86_64.rpm php7-devel-7.4.33-150200.3.46.2.x86_64.rpm php7-dom-7.4.33-150200.3.46.2.x86_64.rpm php7-embed-7.4.33-150200.3.46.2.x86_64.rpm php7-enchant-7.4.33-150200.3.46.2.x86_64.rpm php7-exif-7.4.33-150200.3.46.2.x86_64.rpm php7-fastcgi-7.4.33-150200.3.46.2.x86_64.rpm php7-fileinfo-7.4.33-150200.3.46.2.x86_64.rpm php7-firebird-7.4.33-150200.3.46.2.x86_64.rpm php7-fpm-7.4.33-150200.3.46.2.x86_64.rpm php7-ftp-7.4.33-150200.3.46.2.x86_64.rpm php7-gd-7.4.33-150200.3.46.2.x86_64.rpm php7-gettext-7.4.33-150200.3.46.2.x86_64.rpm php7-gmp-7.4.33-150200.3.46.2.x86_64.rpm php7-iconv-7.4.33-150200.3.46.2.x86_64.rpm php7-intl-7.4.33-150200.3.46.2.x86_64.rpm php7-json-7.4.33-150200.3.46.2.x86_64.rpm php7-ldap-7.4.33-150200.3.46.2.x86_64.rpm php7-mbstring-7.4.33-150200.3.46.2.x86_64.rpm php7-mysql-7.4.33-150200.3.46.2.x86_64.rpm php7-odbc-7.4.33-150200.3.46.2.x86_64.rpm php7-opcache-7.4.33-150200.3.46.2.x86_64.rpm php7-openssl-7.4.33-150200.3.46.2.x86_64.rpm php7-pcntl-7.4.33-150200.3.46.2.x86_64.rpm php7-pdo-7.4.33-150200.3.46.2.x86_64.rpm php7-pgsql-7.4.33-150200.3.46.2.x86_64.rpm php7-phar-7.4.33-150200.3.46.2.x86_64.rpm php7-posix-7.4.33-150200.3.46.2.x86_64.rpm php7-readline-7.4.33-150200.3.46.2.x86_64.rpm php7-shmop-7.4.33-150200.3.46.2.x86_64.rpm php7-snmp-7.4.33-150200.3.46.2.x86_64.rpm php7-soap-7.4.33-150200.3.46.2.x86_64.rpm php7-sockets-7.4.33-150200.3.46.2.x86_64.rpm php7-sodium-7.4.33-150200.3.46.2.x86_64.rpm php7-sqlite-7.4.33-150200.3.46.2.x86_64.rpm php7-sysvmsg-7.4.33-150200.3.46.2.x86_64.rpm php7-sysvsem-7.4.33-150200.3.46.2.x86_64.rpm php7-sysvshm-7.4.33-150200.3.46.2.x86_64.rpm php7-test-7.4.33-150200.3.46.2.src.rpm php7-test-7.4.33-150200.3.46.2.x86_64.rpm php7-tidy-7.4.33-150200.3.46.2.x86_64.rpm php7-tokenizer-7.4.33-150200.3.46.2.x86_64.rpm php7-xmlreader-7.4.33-150200.3.46.2.x86_64.rpm php7-xmlrpc-7.4.33-150200.3.46.2.x86_64.rpm php7-xmlwriter-7.4.33-150200.3.46.2.x86_64.rpm php7-xsl-7.4.33-150200.3.46.2.x86_64.rpm php7-zip-7.4.33-150200.3.46.2.x86_64.rpm php7-zlib-7.4.33-150200.3.46.2.x86_64.rpm apache2-mod_php7-7.4.33-150200.3.46.2.s390x.rpm php7-7.4.33-150200.3.46.2.s390x.rpm php7-bcmath-7.4.33-150200.3.46.2.s390x.rpm php7-bz2-7.4.33-150200.3.46.2.s390x.rpm php7-calendar-7.4.33-150200.3.46.2.s390x.rpm php7-ctype-7.4.33-150200.3.46.2.s390x.rpm php7-curl-7.4.33-150200.3.46.2.s390x.rpm php7-dba-7.4.33-150200.3.46.2.s390x.rpm php7-devel-7.4.33-150200.3.46.2.s390x.rpm php7-dom-7.4.33-150200.3.46.2.s390x.rpm php7-embed-7.4.33-150200.3.46.2.s390x.rpm php7-enchant-7.4.33-150200.3.46.2.s390x.rpm php7-exif-7.4.33-150200.3.46.2.s390x.rpm php7-fastcgi-7.4.33-150200.3.46.2.s390x.rpm php7-fileinfo-7.4.33-150200.3.46.2.s390x.rpm php7-firebird-7.4.33-150200.3.46.2.s390x.rpm php7-fpm-7.4.33-150200.3.46.2.s390x.rpm php7-ftp-7.4.33-150200.3.46.2.s390x.rpm php7-gd-7.4.33-150200.3.46.2.s390x.rpm php7-gettext-7.4.33-150200.3.46.2.s390x.rpm php7-gmp-7.4.33-150200.3.46.2.s390x.rpm php7-iconv-7.4.33-150200.3.46.2.s390x.rpm php7-intl-7.4.33-150200.3.46.2.s390x.rpm php7-json-7.4.33-150200.3.46.2.s390x.rpm php7-ldap-7.4.33-150200.3.46.2.s390x.rpm php7-mbstring-7.4.33-150200.3.46.2.s390x.rpm php7-mysql-7.4.33-150200.3.46.2.s390x.rpm php7-odbc-7.4.33-150200.3.46.2.s390x.rpm php7-opcache-7.4.33-150200.3.46.2.s390x.rpm php7-openssl-7.4.33-150200.3.46.2.s390x.rpm php7-pcntl-7.4.33-150200.3.46.2.s390x.rpm php7-pdo-7.4.33-150200.3.46.2.s390x.rpm php7-pgsql-7.4.33-150200.3.46.2.s390x.rpm php7-phar-7.4.33-150200.3.46.2.s390x.rpm php7-posix-7.4.33-150200.3.46.2.s390x.rpm php7-readline-7.4.33-150200.3.46.2.s390x.rpm php7-shmop-7.4.33-150200.3.46.2.s390x.rpm php7-snmp-7.4.33-150200.3.46.2.s390x.rpm php7-soap-7.4.33-150200.3.46.2.s390x.rpm php7-sockets-7.4.33-150200.3.46.2.s390x.rpm php7-sodium-7.4.33-150200.3.46.2.s390x.rpm php7-sqlite-7.4.33-150200.3.46.2.s390x.rpm php7-sysvmsg-7.4.33-150200.3.46.2.s390x.rpm php7-sysvsem-7.4.33-150200.3.46.2.s390x.rpm php7-sysvshm-7.4.33-150200.3.46.2.s390x.rpm php7-test-7.4.33-150200.3.46.2.s390x.rpm php7-tidy-7.4.33-150200.3.46.2.s390x.rpm php7-tokenizer-7.4.33-150200.3.46.2.s390x.rpm php7-xmlreader-7.4.33-150200.3.46.2.s390x.rpm php7-xmlrpc-7.4.33-150200.3.46.2.s390x.rpm php7-xmlwriter-7.4.33-150200.3.46.2.s390x.rpm php7-xsl-7.4.33-150200.3.46.2.s390x.rpm php7-zip-7.4.33-150200.3.46.2.s390x.rpm php7-zlib-7.4.33-150200.3.46.2.s390x.rpm apache2-mod_php7-7.4.33-150200.3.46.2.ppc64le.rpm php7-7.4.33-150200.3.46.2.ppc64le.rpm php7-bcmath-7.4.33-150200.3.46.2.ppc64le.rpm php7-bz2-7.4.33-150200.3.46.2.ppc64le.rpm php7-calendar-7.4.33-150200.3.46.2.ppc64le.rpm php7-ctype-7.4.33-150200.3.46.2.ppc64le.rpm php7-curl-7.4.33-150200.3.46.2.ppc64le.rpm php7-dba-7.4.33-150200.3.46.2.ppc64le.rpm php7-devel-7.4.33-150200.3.46.2.ppc64le.rpm php7-dom-7.4.33-150200.3.46.2.ppc64le.rpm php7-embed-7.4.33-150200.3.46.2.ppc64le.rpm php7-enchant-7.4.33-150200.3.46.2.ppc64le.rpm php7-exif-7.4.33-150200.3.46.2.ppc64le.rpm php7-fastcgi-7.4.33-150200.3.46.2.ppc64le.rpm php7-fileinfo-7.4.33-150200.3.46.2.ppc64le.rpm php7-firebird-7.4.33-150200.3.46.2.ppc64le.rpm php7-fpm-7.4.33-150200.3.46.2.ppc64le.rpm php7-ftp-7.4.33-150200.3.46.2.ppc64le.rpm php7-gd-7.4.33-150200.3.46.2.ppc64le.rpm php7-gettext-7.4.33-150200.3.46.2.ppc64le.rpm php7-gmp-7.4.33-150200.3.46.2.ppc64le.rpm php7-iconv-7.4.33-150200.3.46.2.ppc64le.rpm php7-intl-7.4.33-150200.3.46.2.ppc64le.rpm php7-json-7.4.33-150200.3.46.2.ppc64le.rpm php7-ldap-7.4.33-150200.3.46.2.ppc64le.rpm php7-mbstring-7.4.33-150200.3.46.2.ppc64le.rpm php7-mysql-7.4.33-150200.3.46.2.ppc64le.rpm php7-odbc-7.4.33-150200.3.46.2.ppc64le.rpm php7-opcache-7.4.33-150200.3.46.2.ppc64le.rpm php7-openssl-7.4.33-150200.3.46.2.ppc64le.rpm php7-pcntl-7.4.33-150200.3.46.2.ppc64le.rpm php7-pdo-7.4.33-150200.3.46.2.ppc64le.rpm php7-pgsql-7.4.33-150200.3.46.2.ppc64le.rpm php7-phar-7.4.33-150200.3.46.2.ppc64le.rpm php7-posix-7.4.33-150200.3.46.2.ppc64le.rpm php7-readline-7.4.33-150200.3.46.2.ppc64le.rpm php7-shmop-7.4.33-150200.3.46.2.ppc64le.rpm php7-snmp-7.4.33-150200.3.46.2.ppc64le.rpm php7-soap-7.4.33-150200.3.46.2.ppc64le.rpm php7-sockets-7.4.33-150200.3.46.2.ppc64le.rpm php7-sodium-7.4.33-150200.3.46.2.ppc64le.rpm php7-sqlite-7.4.33-150200.3.46.2.ppc64le.rpm php7-sysvmsg-7.4.33-150200.3.46.2.ppc64le.rpm php7-sysvsem-7.4.33-150200.3.46.2.ppc64le.rpm php7-sysvshm-7.4.33-150200.3.46.2.ppc64le.rpm php7-test-7.4.33-150200.3.46.2.ppc64le.rpm php7-tidy-7.4.33-150200.3.46.2.ppc64le.rpm php7-tokenizer-7.4.33-150200.3.46.2.ppc64le.rpm php7-xmlreader-7.4.33-150200.3.46.2.ppc64le.rpm php7-xmlrpc-7.4.33-150200.3.46.2.ppc64le.rpm php7-xmlwriter-7.4.33-150200.3.46.2.ppc64le.rpm php7-xsl-7.4.33-150200.3.46.2.ppc64le.rpm php7-zip-7.4.33-150200.3.46.2.ppc64le.rpm php7-zlib-7.4.33-150200.3.46.2.ppc64le.rpm apache2-mod_php7-7.4.33-150200.3.46.2.aarch64.rpm php7-7.4.33-150200.3.46.2.aarch64.rpm php7-bcmath-7.4.33-150200.3.46.2.aarch64.rpm php7-bz2-7.4.33-150200.3.46.2.aarch64.rpm php7-calendar-7.4.33-150200.3.46.2.aarch64.rpm php7-ctype-7.4.33-150200.3.46.2.aarch64.rpm php7-curl-7.4.33-150200.3.46.2.aarch64.rpm php7-dba-7.4.33-150200.3.46.2.aarch64.rpm php7-devel-7.4.33-150200.3.46.2.aarch64.rpm php7-dom-7.4.33-150200.3.46.2.aarch64.rpm php7-embed-7.4.33-150200.3.46.2.aarch64.rpm php7-enchant-7.4.33-150200.3.46.2.aarch64.rpm php7-exif-7.4.33-150200.3.46.2.aarch64.rpm php7-fastcgi-7.4.33-150200.3.46.2.aarch64.rpm php7-fileinfo-7.4.33-150200.3.46.2.aarch64.rpm php7-firebird-7.4.33-150200.3.46.2.aarch64.rpm php7-fpm-7.4.33-150200.3.46.2.aarch64.rpm php7-ftp-7.4.33-150200.3.46.2.aarch64.rpm php7-gd-7.4.33-150200.3.46.2.aarch64.rpm php7-gettext-7.4.33-150200.3.46.2.aarch64.rpm php7-gmp-7.4.33-150200.3.46.2.aarch64.rpm php7-iconv-7.4.33-150200.3.46.2.aarch64.rpm php7-intl-7.4.33-150200.3.46.2.aarch64.rpm php7-json-7.4.33-150200.3.46.2.aarch64.rpm php7-ldap-7.4.33-150200.3.46.2.aarch64.rpm php7-mbstring-7.4.33-150200.3.46.2.aarch64.rpm php7-mysql-7.4.33-150200.3.46.2.aarch64.rpm php7-odbc-7.4.33-150200.3.46.2.aarch64.rpm php7-opcache-7.4.33-150200.3.46.2.aarch64.rpm php7-openssl-7.4.33-150200.3.46.2.aarch64.rpm php7-pcntl-7.4.33-150200.3.46.2.aarch64.rpm php7-pdo-7.4.33-150200.3.46.2.aarch64.rpm php7-pgsql-7.4.33-150200.3.46.2.aarch64.rpm php7-phar-7.4.33-150200.3.46.2.aarch64.rpm php7-posix-7.4.33-150200.3.46.2.aarch64.rpm php7-readline-7.4.33-150200.3.46.2.aarch64.rpm php7-shmop-7.4.33-150200.3.46.2.aarch64.rpm php7-snmp-7.4.33-150200.3.46.2.aarch64.rpm php7-soap-7.4.33-150200.3.46.2.aarch64.rpm php7-sockets-7.4.33-150200.3.46.2.aarch64.rpm php7-sodium-7.4.33-150200.3.46.2.aarch64.rpm php7-sqlite-7.4.33-150200.3.46.2.aarch64.rpm php7-sysvmsg-7.4.33-150200.3.46.2.aarch64.rpm php7-sysvsem-7.4.33-150200.3.46.2.aarch64.rpm php7-sysvshm-7.4.33-150200.3.46.2.aarch64.rpm php7-test-7.4.33-150200.3.46.2.aarch64.rpm php7-tidy-7.4.33-150200.3.46.2.aarch64.rpm php7-tokenizer-7.4.33-150200.3.46.2.aarch64.rpm php7-xmlreader-7.4.33-150200.3.46.2.aarch64.rpm php7-xmlrpc-7.4.33-150200.3.46.2.aarch64.rpm php7-xmlwriter-7.4.33-150200.3.46.2.aarch64.rpm php7-xsl-7.4.33-150200.3.46.2.aarch64.rpm php7-zip-7.4.33-150200.3.46.2.aarch64.rpm php7-zlib-7.4.33-150200.3.46.2.aarch64.rpm openSUSE-SLE-15.3-2022-3731 important SUSE Updates openSUSE-SLE 15.3 This update for python-waitress fixes the following issues: - CVE-2022-24761: Fixed a bug to avoid inconsistent interpretation of HTTP requests leading to request smuggling. (bsc#1197255) python-waitress-1.4.3-150000.3.6.1.src.rpm python2-waitress-1.4.3-150000.3.6.1.noarch.rpm python3-waitress-1.4.3-150000.3.6.1.noarch.rpm openSUSE-SLE-15.3-2022-4488 moderate SUSE Updates openSUSE-SLE 15.3 This update for apache2-mod_wsgi fixes the following issues: - CVE-2022-2255: Hardened the trusted proxy header filter to avoid bypass. (bsc#1201634) apache2-mod_wsgi-4.5.18-150000.4.6.1.src.rpm apache2-mod_wsgi-4.5.18-150000.4.6.1.x86_64.rpm apache2-mod_wsgi-python3-4.5.18-150000.4.6.1.src.rpm apache2-mod_wsgi-python3-4.5.18-150000.4.6.1.x86_64.rpm apache2-mod_wsgi-4.5.18-150000.4.6.1.s390x.rpm apache2-mod_wsgi-python3-4.5.18-150000.4.6.1.s390x.rpm apache2-mod_wsgi-4.5.18-150000.4.6.1.ppc64le.rpm apache2-mod_wsgi-python3-4.5.18-150000.4.6.1.ppc64le.rpm apache2-mod_wsgi-4.5.18-150000.4.6.1.aarch64.rpm apache2-mod_wsgi-python3-4.5.18-150000.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3660 moderate SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2022-0216: Fixed a use after free issue found in hw/scsi/lsi53c895a.c. (bsc#1198038) - CVE-2022-35414: Fixed an uninitialized read during address translation that leads to a crash. (bsc#1201367) qemu-5.2.0-150300.118.3.src.rpm qemu-5.2.0-150300.118.3.x86_64.rpm qemu-arm-5.2.0-150300.118.3.x86_64.rpm qemu-audio-alsa-5.2.0-150300.118.3.x86_64.rpm qemu-audio-pa-5.2.0-150300.118.3.x86_64.rpm qemu-audio-spice-5.2.0-150300.118.3.x86_64.rpm qemu-block-curl-5.2.0-150300.118.3.x86_64.rpm qemu-block-dmg-5.2.0-150300.118.3.x86_64.rpm qemu-block-gluster-5.2.0-150300.118.3.x86_64.rpm qemu-block-iscsi-5.2.0-150300.118.3.x86_64.rpm qemu-block-nfs-5.2.0-150300.118.3.x86_64.rpm qemu-block-rbd-5.2.0-150300.118.3.x86_64.rpm qemu-block-ssh-5.2.0-150300.118.3.x86_64.rpm qemu-chardev-baum-5.2.0-150300.118.3.x86_64.rpm qemu-chardev-spice-5.2.0-150300.118.3.x86_64.rpm qemu-extra-5.2.0-150300.118.3.x86_64.rpm qemu-guest-agent-5.2.0-150300.118.3.x86_64.rpm qemu-hw-display-qxl-5.2.0-150300.118.3.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.118.3.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.118.3.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-150300.118.3.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.118.3.x86_64.rpm qemu-hw-usb-redirect-5.2.0-150300.118.3.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-150300.118.3.x86_64.rpm qemu-ipxe-1.0.0+-150300.118.3.noarch.rpm qemu-ivshmem-tools-5.2.0-150300.118.3.x86_64.rpm qemu-ksm-5.2.0-150300.118.3.x86_64.rpm qemu-kvm-5.2.0-150300.118.3.x86_64.rpm qemu-lang-5.2.0-150300.118.3.x86_64.rpm qemu-linux-user-5.2.0-150300.118.2.src.rpm qemu-linux-user-5.2.0-150300.118.2.x86_64.rpm qemu-microvm-5.2.0-150300.118.3.noarch.rpm qemu-ppc-5.2.0-150300.118.3.x86_64.rpm qemu-s390x-5.2.0-150300.118.3.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-150300.118.3.noarch.rpm qemu-sgabios-8-150300.118.3.noarch.rpm qemu-skiboot-5.2.0-150300.118.3.noarch.rpm qemu-testsuite-5.2.0-150300.118.5.src.rpm qemu-testsuite-5.2.0-150300.118.5.x86_64.rpm qemu-tools-5.2.0-150300.118.3.x86_64.rpm qemu-ui-curses-5.2.0-150300.118.3.x86_64.rpm qemu-ui-gtk-5.2.0-150300.118.3.x86_64.rpm qemu-ui-opengl-5.2.0-150300.118.3.x86_64.rpm qemu-ui-spice-app-5.2.0-150300.118.3.x86_64.rpm qemu-ui-spice-core-5.2.0-150300.118.3.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-150300.118.3.noarch.rpm qemu-vhost-user-gpu-5.2.0-150300.118.3.x86_64.rpm qemu-x86-5.2.0-150300.118.3.x86_64.rpm qemu-5.2.0-150300.118.3.s390x.rpm qemu-arm-5.2.0-150300.118.3.s390x.rpm qemu-audio-alsa-5.2.0-150300.118.3.s390x.rpm qemu-audio-pa-5.2.0-150300.118.3.s390x.rpm qemu-audio-spice-5.2.0-150300.118.3.s390x.rpm qemu-block-curl-5.2.0-150300.118.3.s390x.rpm qemu-block-dmg-5.2.0-150300.118.3.s390x.rpm qemu-block-gluster-5.2.0-150300.118.3.s390x.rpm qemu-block-iscsi-5.2.0-150300.118.3.s390x.rpm qemu-block-nfs-5.2.0-150300.118.3.s390x.rpm qemu-block-rbd-5.2.0-150300.118.3.s390x.rpm qemu-block-ssh-5.2.0-150300.118.3.s390x.rpm qemu-chardev-baum-5.2.0-150300.118.3.s390x.rpm qemu-chardev-spice-5.2.0-150300.118.3.s390x.rpm qemu-extra-5.2.0-150300.118.3.s390x.rpm qemu-guest-agent-5.2.0-150300.118.3.s390x.rpm qemu-hw-display-qxl-5.2.0-150300.118.3.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.118.3.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.118.3.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-150300.118.3.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.118.3.s390x.rpm qemu-hw-usb-redirect-5.2.0-150300.118.3.s390x.rpm qemu-hw-usb-smartcard-5.2.0-150300.118.3.s390x.rpm qemu-ivshmem-tools-5.2.0-150300.118.3.s390x.rpm qemu-ksm-5.2.0-150300.118.3.s390x.rpm qemu-kvm-5.2.0-150300.118.3.s390x.rpm qemu-lang-5.2.0-150300.118.3.s390x.rpm qemu-linux-user-5.2.0-150300.118.2.s390x.rpm qemu-ppc-5.2.0-150300.118.3.s390x.rpm qemu-s390x-5.2.0-150300.118.3.s390x.rpm qemu-testsuite-5.2.0-150300.118.5.s390x.rpm qemu-tools-5.2.0-150300.118.3.s390x.rpm qemu-ui-curses-5.2.0-150300.118.3.s390x.rpm qemu-ui-gtk-5.2.0-150300.118.3.s390x.rpm qemu-ui-opengl-5.2.0-150300.118.3.s390x.rpm qemu-ui-spice-app-5.2.0-150300.118.3.s390x.rpm qemu-ui-spice-core-5.2.0-150300.118.3.s390x.rpm qemu-vhost-user-gpu-5.2.0-150300.118.3.s390x.rpm qemu-x86-5.2.0-150300.118.3.s390x.rpm qemu-5.2.0-150300.118.3.ppc64le.rpm qemu-SLOF-5.2.0-150300.118.3.noarch.rpm qemu-arm-5.2.0-150300.118.3.ppc64le.rpm qemu-audio-alsa-5.2.0-150300.118.3.ppc64le.rpm qemu-audio-pa-5.2.0-150300.118.3.ppc64le.rpm qemu-audio-spice-5.2.0-150300.118.3.ppc64le.rpm qemu-block-curl-5.2.0-150300.118.3.ppc64le.rpm qemu-block-dmg-5.2.0-150300.118.3.ppc64le.rpm qemu-block-gluster-5.2.0-150300.118.3.ppc64le.rpm qemu-block-iscsi-5.2.0-150300.118.3.ppc64le.rpm qemu-block-nfs-5.2.0-150300.118.3.ppc64le.rpm qemu-block-rbd-5.2.0-150300.118.3.ppc64le.rpm qemu-block-ssh-5.2.0-150300.118.3.ppc64le.rpm qemu-chardev-baum-5.2.0-150300.118.3.ppc64le.rpm qemu-chardev-spice-5.2.0-150300.118.3.ppc64le.rpm qemu-extra-5.2.0-150300.118.3.ppc64le.rpm qemu-guest-agent-5.2.0-150300.118.3.ppc64le.rpm qemu-hw-display-qxl-5.2.0-150300.118.3.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.118.3.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.118.3.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-150300.118.3.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.118.3.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-150300.118.3.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-150300.118.3.ppc64le.rpm qemu-ivshmem-tools-5.2.0-150300.118.3.ppc64le.rpm qemu-ksm-5.2.0-150300.118.3.ppc64le.rpm qemu-lang-5.2.0-150300.118.3.ppc64le.rpm qemu-linux-user-5.2.0-150300.118.2.ppc64le.rpm qemu-ppc-5.2.0-150300.118.3.ppc64le.rpm qemu-s390x-5.2.0-150300.118.3.ppc64le.rpm qemu-testsuite-5.2.0-150300.118.5.ppc64le.rpm qemu-tools-5.2.0-150300.118.3.ppc64le.rpm qemu-ui-curses-5.2.0-150300.118.3.ppc64le.rpm qemu-ui-gtk-5.2.0-150300.118.3.ppc64le.rpm qemu-ui-opengl-5.2.0-150300.118.3.ppc64le.rpm qemu-ui-spice-app-5.2.0-150300.118.3.ppc64le.rpm qemu-ui-spice-core-5.2.0-150300.118.3.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-150300.118.3.ppc64le.rpm qemu-x86-5.2.0-150300.118.3.ppc64le.rpm qemu-5.2.0-150300.118.3.aarch64.rpm qemu-arm-5.2.0-150300.118.3.aarch64.rpm qemu-audio-alsa-5.2.0-150300.118.3.aarch64.rpm qemu-audio-pa-5.2.0-150300.118.3.aarch64.rpm qemu-audio-spice-5.2.0-150300.118.3.aarch64.rpm qemu-block-curl-5.2.0-150300.118.3.aarch64.rpm qemu-block-dmg-5.2.0-150300.118.3.aarch64.rpm qemu-block-gluster-5.2.0-150300.118.3.aarch64.rpm qemu-block-iscsi-5.2.0-150300.118.3.aarch64.rpm qemu-block-nfs-5.2.0-150300.118.3.aarch64.rpm qemu-block-rbd-5.2.0-150300.118.3.aarch64.rpm qemu-block-ssh-5.2.0-150300.118.3.aarch64.rpm qemu-chardev-baum-5.2.0-150300.118.3.aarch64.rpm qemu-chardev-spice-5.2.0-150300.118.3.aarch64.rpm qemu-extra-5.2.0-150300.118.3.aarch64.rpm qemu-guest-agent-5.2.0-150300.118.3.aarch64.rpm qemu-hw-display-qxl-5.2.0-150300.118.3.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.118.3.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.118.3.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-150300.118.3.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.118.3.aarch64.rpm qemu-hw-usb-redirect-5.2.0-150300.118.3.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-150300.118.3.aarch64.rpm qemu-ivshmem-tools-5.2.0-150300.118.3.aarch64.rpm qemu-ksm-5.2.0-150300.118.3.aarch64.rpm qemu-lang-5.2.0-150300.118.3.aarch64.rpm qemu-linux-user-5.2.0-150300.118.2.aarch64.rpm qemu-ppc-5.2.0-150300.118.3.aarch64.rpm qemu-s390x-5.2.0-150300.118.3.aarch64.rpm qemu-testsuite-5.2.0-150300.118.5.aarch64.rpm qemu-tools-5.2.0-150300.118.3.aarch64.rpm qemu-ui-curses-5.2.0-150300.118.3.aarch64.rpm qemu-ui-gtk-5.2.0-150300.118.3.aarch64.rpm qemu-ui-opengl-5.2.0-150300.118.3.aarch64.rpm qemu-ui-spice-app-5.2.0-150300.118.3.aarch64.rpm qemu-ui-spice-core-5.2.0-150300.118.3.aarch64.rpm qemu-vhost-user-gpu-5.2.0-150300.118.3.aarch64.rpm qemu-x86-5.2.0-150300.118.3.aarch64.rpm openSUSE-SLE-15.3-2022-3594 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2021-3409: Fixed an incomplete fix for CVE-2020-17380 and CVE-2020-25085 in sdhi controller. (bsc#1182282) - CVE-2021-4206: Fixed an integer overflow in cursor_alloc which can lead to heap buffer overflow. (bsc#1198035) - CVE-2021-4207: Fixed a double fetch in qxl_cursor ehich can lead to heap buffer overflow. (bsc#1198037) - CVE-2022-0216: Fixed a use after free issue found in hw/scsi/lsi53c895a.c. (bsc#1198038) - CVE-2022-35414: Fixed an uninitialized read during address translation that leads to a crash. (bsc#1201367) qemu-4.2.1-150200.69.1.src.rpm qemu-s390-4.2.1-150200.69.1.x86_64.rpm qemu-s390-4.2.1-150200.69.1.s390x.rpm qemu-s390-4.2.1-150200.69.1.ppc64le.rpm qemu-s390-4.2.1-150200.69.1.aarch64.rpm openSUSE-SLE-15.3-2022-3768 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2021-3409: Fixed an incomplete fix for CVE-2020-17380 and CVE-2020-25085 in sdhi controller. (bsc#1182282) - CVE-2021-4206: Fixed an integer overflow in cursor_alloc which can lead to heap buffer overflow. (bsc#1198035) - CVE-2021-4207: Fixed a double fetch in qxl_cursor ehich can lead to heap buffer overflow. (bsc#1198037) - CVE-2022-0216: Fixed a use after free issue found in hw/scsi/lsi53c895a.c. (bsc#1198038) - CVE-2022-35414: Fixed an uninitialized read during address translation that leads to a crash. (bsc#1201367) - CVE-2021-3507: Fixed a heap buffer overflow in DMA read data transfers. (bsc#1185000) - CVE-2020-17380: Fixed a heap buffer overflow in sdhci_sdma_transfer_multi_blocks. (bsc#1175144) qemu-3.1.1.1-150100.80.43.2.src.rpm openSUSE-SLE-15.3-2022-3991 moderate SUSE Updates openSUSE-SLE 15.3 This update for dhcp fixes the following issues: - CVE-2022-2928: Fixed an option refcount overflow (bsc#1203988). - CVE-2022-2929: Fixed a DHCP memory leak (bsc#1203989). dhcp-4.3.6.P1-150000.6.17.1.src.rpm dhcp-4.3.6.P1-150000.6.17.1.x86_64.rpm dhcp-client-4.3.6.P1-150000.6.17.1.x86_64.rpm dhcp-devel-4.3.6.P1-150000.6.17.1.x86_64.rpm dhcp-doc-4.3.6.P1-150000.6.17.1.x86_64.rpm dhcp-relay-4.3.6.P1-150000.6.17.1.x86_64.rpm dhcp-server-4.3.6.P1-150000.6.17.1.x86_64.rpm dhcp-4.3.6.P1-150000.6.17.1.s390x.rpm dhcp-client-4.3.6.P1-150000.6.17.1.s390x.rpm dhcp-devel-4.3.6.P1-150000.6.17.1.s390x.rpm dhcp-doc-4.3.6.P1-150000.6.17.1.s390x.rpm dhcp-relay-4.3.6.P1-150000.6.17.1.s390x.rpm dhcp-server-4.3.6.P1-150000.6.17.1.s390x.rpm dhcp-4.3.6.P1-150000.6.17.1.ppc64le.rpm dhcp-client-4.3.6.P1-150000.6.17.1.ppc64le.rpm dhcp-devel-4.3.6.P1-150000.6.17.1.ppc64le.rpm dhcp-doc-4.3.6.P1-150000.6.17.1.ppc64le.rpm dhcp-relay-4.3.6.P1-150000.6.17.1.ppc64le.rpm dhcp-server-4.3.6.P1-150000.6.17.1.ppc64le.rpm dhcp-4.3.6.P1-150000.6.17.1.aarch64.rpm dhcp-client-4.3.6.P1-150000.6.17.1.aarch64.rpm dhcp-devel-4.3.6.P1-150000.6.17.1.aarch64.rpm dhcp-doc-4.3.6.P1-150000.6.17.1.aarch64.rpm dhcp-relay-4.3.6.P1-150000.6.17.1.aarch64.rpm dhcp-server-4.3.6.P1-150000.6.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-3693 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15-SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-20008: Fixed local information disclosure due to possibility to read kernel heap memory via mmc_blk_read_single of block.c (bnc#1199564). - CVE-2022-2503: Fixed a vulnerability that allowed root to bypass LoadPin and load untrusted and unverified kernel modules and firmware (bnc#1202677). - CVE-2022-32296: Fixed vulnerability where TCP servers were allowed to identify clients by observing what source ports are used (bnc#1200288). - CVE-2022-3239: Fixed an use-after-free in the video4linux driver that could lead a local user to able to crash the system or escalate their privileges (bnc#1203552). - CVE-2022-3303: Fixed a race condition in the sound subsystem due to improper locking (bnc#1203769). - CVE-2022-41218: Fixed an use-after-free caused by refcount races in drivers/media/dvb-core/dmxdev.c (bnc#1202960). - CVE-2022-41848: Fixed a race condition in drivers/char/pcmcia/synclink_cs.c mgslpc_ioctl and mgslpc_detach (bnc#1203987). The following non-security bugs were fixed: - dtb: Do not include sources in src.rpm - refer to kernel-source Same as other kernel binary packages there is no need to carry duplicate sources in dtb packages. - mkspec: eliminate @NOSOURCE@ macro This should be alsways used with @SOURCES@, just include the content there. - net: mana: Add rmb after checking owner bits (git-fixes). - net: mana: Add the Linux MANA PF driver (bnc#1201309, jsc#PED-529). - x86/bugs: Reenable retbleed=off While for older kernels the return thunks are statically built in and cannot be dynamically patched out, retbleed=off should still be possible to do so that the mitigation can still be disabled on Intel who do not use the return thunks but IBRS. kernel-debug-4.12.14-150100.197.126.1.nosrc.rpm True kernel-debug-base-4.12.14-150100.197.126.1.x86_64.rpm True kernel-default-4.12.14-150100.197.126.1.nosrc.rpm True kernel-kvmsmall-4.12.14-150100.197.126.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-150100.197.126.1.x86_64.rpm True kernel-vanilla-4.12.14-150100.197.126.1.nosrc.rpm True kernel-vanilla-4.12.14-150100.197.126.1.x86_64.rpm True kernel-vanilla-base-4.12.14-150100.197.126.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-150100.197.126.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.126.1.x86_64.rpm True kernel-default-man-4.12.14-150100.197.126.1.s390x.rpm True kernel-vanilla-4.12.14-150100.197.126.1.s390x.rpm True kernel-vanilla-base-4.12.14-150100.197.126.1.s390x.rpm True kernel-vanilla-devel-4.12.14-150100.197.126.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.126.1.s390x.rpm True kernel-zfcpdump-4.12.14-150100.197.126.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-150100.197.126.1.s390x.rpm True kernel-debug-base-4.12.14-150100.197.126.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.126.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-150100.197.126.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-150100.197.126.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.126.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.126.1.aarch64.rpm True kernel-vanilla-base-4.12.14-150100.197.126.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-150100.197.126.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.126.1.aarch64.rpm True openSUSE-SLE-15.3-2022-3668 important SUSE Updates openSUSE-SLE 15.3 This update for go1.18 fixes the following issues: Updated to version 1.18.7 (bsc#1193742): - CVE-2022-41715: Fixed memory exhaustion in regexp/syntax (bsc#1204023). - CVE-2022-2879: Fixed unbounded memory consumption when reading headers in archive/tar (bsc#1204024). - CVE-2022-2880: Fixed ReverseProxy forwarding unparseable query parameters (bsc#1204025). go1.18-1.18.7-150000.1.34.1.src.rpm go1.18-1.18.7-150000.1.34.1.x86_64.rpm go1.18-doc-1.18.7-150000.1.34.1.x86_64.rpm go1.18-race-1.18.7-150000.1.34.1.x86_64.rpm go1.18-1.18.7-150000.1.34.1.s390x.rpm go1.18-doc-1.18.7-150000.1.34.1.s390x.rpm go1.18-1.18.7-150000.1.34.1.ppc64le.rpm go1.18-doc-1.18.7-150000.1.34.1.ppc64le.rpm go1.18-1.18.7-150000.1.34.1.aarch64.rpm go1.18-doc-1.18.7-150000.1.34.1.aarch64.rpm go1.18-race-1.18.7-150000.1.34.1.aarch64.rpm openSUSE-SLE-15.3-2022-3669 important SUSE Updates openSUSE-SLE 15.3 This update for go1.19 fixes the following issues: Updated to version 1.19.2 (bsc#1200441): - CVE-2022-41715: Fixed memory exhaustion in regexp/syntax (bsc#1204023). - CVE-2022-2879: Fixed unbounded memory consumption when reading headers in archive/tar (bsc#1204024). - CVE-2022-2880: Fixed ReverseProxy forwarding unparseable query parameters (bsc#1204025). go1.19-1.19.2-150000.1.12.1.src.rpm go1.19-1.19.2-150000.1.12.1.x86_64.rpm go1.19-doc-1.19.2-150000.1.12.1.x86_64.rpm go1.19-race-1.19.2-150000.1.12.1.x86_64.rpm go1.19-1.19.2-150000.1.12.1.s390x.rpm go1.19-doc-1.19.2-150000.1.12.1.s390x.rpm go1.19-1.19.2-150000.1.12.1.ppc64le.rpm go1.19-doc-1.19.2-150000.1.12.1.ppc64le.rpm go1.19-1.19.2-150000.1.12.1.aarch64.rpm go1.19-doc-1.19.2-150000.1.12.1.aarch64.rpm go1.19-race-1.19.2-150000.1.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-3633 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: Rust was updated to ship in version 1.64.0 in rust1.64. Version 1.64.0 (2022-09-22) =========================== Language -------- - Unions with mutable references or tuples of allowed types are now allowed - It is now considered valid to deallocate memory pointed to by a shared reference `&T` [if every byte in `T` is inside an `UnsafeCell`] - Unused tuple struct fields are now warned against in an allow-by-default lint, [`unused_tuple_struct_fields`] Compiler -------- - Add Nintendo Switch as tier 3 target - Refer to Rust's platform support page for more information on Rust's tiered platform support. - Only compile `#[used]` as llvm.compiler.used for ELF targets - Add the `--diagnostic-width` compiler flag to define the terminal width. - Add support for link-flavor `rust-lld` for iOS, tvOS and watchOS Libraries --------- - Remove restrictions on compare-exchange memory ordering. - You can now `write!` or `writeln!` into an `OsString`: [Implement `fmt::Write` for `OsString`] - Make RwLockReadGuard covariant - Implement `FusedIterator` for `std::net::[Into]Incoming` - `impl<T: AsRawFd> AsRawFd for {Arc,Box}<T>` - `ptr::copy` and `ptr::swap` are doing untyped copies - Add cgroupv1 support to `available_parallelism` - Mitigate many incorrect uses of `mem::uninitialized` Stabilized APIs --------------- - future::IntoFuture - future::poll_fn - task::ready! - num::NonZero*::checked_mul - num::NonZero*::checked_pow - num::NonZero*::saturating_mul - num::NonZero*::saturating_pow - num::NonZeroI*::abs - num::NonZeroI*::checked_abs - num::NonZeroI*::overflowing_abs - num::NonZeroI*::saturating_abs - num::NonZeroI*::unsigned_abs - num::NonZeroI*::wrapping_abs - num::NonZeroU*::checked_add - num::NonZeroU*::checked_next_power_of_two - num::NonZeroU*::saturating_add - os::unix::process::CommandExt::process_group - os::windows::fs::FileTypeExt::is_symlink_dir - os::windows::fs::FileTypeExt::is_symlink_file These types were previously stable in std::ffi, but are now also available in core and alloc: - core::ffi::CStr - core::ffi::FromBytesWithNulError - alloc::ffi::CString - alloc::ffi::FromVecWithNulError - alloc::ffi::IntoStringError - alloc::ffi::NulError These types were previously stable in std::os::raw, but are now also available in core::ffi and std::ffi: - ffi::c_char - ffi::c_double - ffi::c_float - ffi::c_int - ffi::c_long - ffi::c_longlong - ffi::c_schar - ffi::c_short - ffi::c_uchar - ffi::c_uint - ffi::c_ulong - ffi::c_ulonglong - ffi::c_ushort These APIs are now usable in const contexts: - slice::from_raw_parts Cargo ----- - Packages can now inherit settings from the workspace so that the settings can be centralized in one place. - Cargo commands can now accept multiple `--target` flags to build for multiple targets at once - The --jobs argument can now take a negative number to count backwards from the max CPUs. - cargo add will now update Cargo.lock. - Added the --crate-type flag to `cargo rustc` to override the crate type. - Significantly improved the performance fetching git dependencies from GitHub when using a hash in the `rev` field. Misc ---- - The rust-analyzer rustup component is now available on the stable channel. Compatibility Notes ------------------- - The minimum required versions for all -linux-nu` targets are now at least kernel 3.2 and glibc 2.17, for targets that previously supported older versions. - Network primitives are now implemented with the ideal Rust layout, not the C system layout - Add assertion that `transmute_copy`'s `U` is not larger than `T` - A soundness bug in `BTreeMap` was fixed - The Drop behavior of C-like enums cast to ints has changed - Relate late-bound closure lifetimes to parent fn in NLL - Errors at const-eval time are now in future incompatibility reports - On the `thumbv6m-none-eabi` target, some incorrect `asm!` statements were erroneously accepted if they used the high registers (r8 to r14) as an input/output operand. This is no longer accepted. - `impl Trait` was accidentally accepted as the associated type value of return-position `impl Trait`, without fulfilling all the trait bounds of that associated type, as long as the hidden type satisfies said bounds. This has been fixed. cargo-1.64.0-150300.21.35.1.x86_64.rpm cargo1.64-1.64.0-150300.7.3.1.x86_64.rpm rust-1.64.0-150300.21.35.1.src.rpm rust-1.64.0-150300.21.35.1.x86_64.rpm rust1.64-1.64.0-150300.7.3.1.src.rpm rust1.64-1.64.0-150300.7.3.1.x86_64.rpm cargo-1.64.0-150300.21.35.1.s390x.rpm cargo1.64-1.64.0-150300.7.3.1.s390x.rpm rust-1.64.0-150300.21.35.1.s390x.rpm rust1.64-1.64.0-150300.7.3.1.s390x.rpm cargo-1.64.0-150300.21.35.1.ppc64le.rpm cargo1.64-1.64.0-150300.7.3.1.ppc64le.rpm rust-1.64.0-150300.21.35.1.ppc64le.rpm rust1.64-1.64.0-150300.7.3.1.ppc64le.rpm cargo-1.64.0-150300.21.35.1.aarch64.rpm cargo1.64-1.64.0-150300.7.3.1.aarch64.rpm rust-1.64.0-150300.21.35.1.aarch64.rpm rust1.64-1.64.0-150300.7.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3557 critical SUSE Updates openSUSE-SLE 15.3 This update for aws-efs-utils fixes the following issues: - Update to version 1.33.4 (bsc#1203170) * Fix the issue where watchdog sending signal to incorrect processes and add FIPS mode support * Apply additional check on awscredsuri option - from version 1.33.3 * Fix the potential stunnel hanging issue caused by full subprocess PIPE filled by stunnel log * Specify FIPS mode in configuration * Add separate env_path for macOS; Add comments * Update get-pip.py download url in README - from version 1.33.2 * Fix the incorrect path to generate read_ahead_kb config file and Bump the default tls port range from 400 to 1000 - Add patch to use unittest.mock instead of mock in testsuite - Use relative URL in Source field - version update to 1.33.1 * Enable mount process to retry on failed or timed out mount.nfs command * use unittest.mock instead of mock - version update to 1.32.1 * Enable watchdog to check stunnel health periodically and restart hanging stunnel process when necessary. - do not require python-mock for build aws-efs-utils-1.33.4-150100.4.8.1.noarch.rpm aws-efs-utils-1.33.4-150100.4.8.1.src.rpm openSUSE-SLE-15.3-2022-3569 important SUSE Updates openSUSE-SLE 15.3 This update for SAPHanaSR fixes the following issues: - SAPHanaSR-monitor not reporting correctly. (bsc#1192963) - Version bump to 0.161.1_BF - add the required 'xmllint' to the package (bsc#1201945) - changes to the demote_clone function of the resource agent: if the role is '1:P' (topology agent run into timeouts) the function fail with rc=1, to get the managed resource stopped changes to the stop_clone function of the topology agent: call landscapeHostConfiguration.py and set the roles as they were reported. If the command timed out, set the role to '1:P' and return 1 to get the node fenced. The used timeout for the landscapeHostConfiguration.py call can be configured by the cluster action timeout, if needed. It will be 50% of the action timeout or the minimum of 300s. (bsc#1198127) - add new HA/DR provider hook susChkSrv (jsc#PED-1241, jsc#PED-1240, jsc#PED-1253) - add new tool SAPHanaSR-manageProvider to show, add and delete HA/DR provider sections in the global.ini of SAP HANA. - update suse icon to new branding SAPHanaSR-0.161.1_BF-150000.4.25.1.noarch.rpm SAPHanaSR-0.161.1_BF-150000.4.25.1.src.rpm SAPHanaSR-doc-0.161.1_BF-150000.4.25.1.noarch.rpm openSUSE-SLE-15.3-2022-3775 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-40768: Fixed information leak in the scsi driver which allowed local users to obtain sensitive information from kernel memory. (bnc#1203514) - CVE-2022-3169: Fixed a denial of service flaw which occurs when consecutive requests to NVME_IOCTL_RESET and the NVME_IOCTL_SUBSYS_RESET are sent. (bnc#1203290) - CVE-2022-42722: Fixed crash in beacon protection for P2P-device. (bsc#1204125) - CVE-2022-42719: Fixed MBSSID parsing use-after-free. (bsc#1204051) - CVE-2022-42721: Avoid nontransmitted BSS list corruption. (bsc#1204060) - CVE-2022-42720: Fixed BSS refcounting bugs. (bsc#1204059) - CVE-2022-3303: Fixed a race condition in the sound subsystem due to improper locking (bnc#1203769). - CVE-2022-41218: Fixed an use-after-free caused by refcount races in drivers/media/dvb-core/dmxdev.c (bnc#1202960). - CVE-2022-3239: Fixed an use-after-free in the video4linux driver that could lead a local user to able to crash the system or escalate their privileges (bnc#1203552). - CVE-2022-41848: Fixed a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling ioctl (bnc#1203987). - CVE-2022-41849: Fixed a race condition and resultant use-after-free if a physically proximate attacker removes a USB device while calling open (bnc#1203992). - CVE-2022-41674: Fixed a DoS issue where kernel can crash on the reception of specific WiFi Frames (bsc#1203770). - CVE-2022-2586: Fixed a use-after-free which can be triggered when a nft table is deleted (bnc#1202095). - CVE-2022-41222: Fixed a use-after-free via a stale TLB because an rmap lock is not held during a PUD move (bnc#1203622). - CVE-2022-2503: Fixed a bug in dm-verity, device-mapper table reloads allowed users with root privileges to switch out the target with an equivalent dm-linear target and bypass verification till reboot. This allowed root to bypass LoadPin and can be used to load untrusted and unverified kernel modules and firmware, which implies arbitrary kernel execution and persistence for peripherals that do not verify firmware updates (bnc#1202677). - CVE-2022-20008: Fixed a bug which allowed to read kernel heap memory due to uninitialized data. This could lead to local information disclosure if reading from an SD card that triggers errors, with no additional execution privileges needed. (bnc#1199564) - CVE-2020-16119: Fixed a use-after-free vulnerability exploitable by a local attacker due to reuse of a DCCP socket. (bnc#1177471) The following non-security bugs were fixed: - ALSA: aloop: Fix random zeros in capture data when using jiffies timer (git-fixes). - ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc() (git-fixes). - ALSA: hda/realtek: Re-arrange quirk table entries (git-fixes). - ALSA: seq: Fix data-race at module auto-loading (git-fixes). - ALSA: seq: oss: Fix data-race for max_midi_devs access (git-fixes). - ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() (git-fixes). - ALSA: usb-audio: fix spelling mistakes (git-fixes). - ALSA: usb-audio: Inform the delayed registration more properly (git-fixes). - ALSA: usb-audio: Register card again for iface over delayed_register option (git-fixes). - ALSA: usb-audio: Split endpoint setups for hw_params and prepare (git-fixes). - arm64: cpufeature: Allow different PMU versions in ID_DFR0_EL1 (git-fixes) - arm64: dts: allwinner: A64 Sopine: phy-mode rgmii-id (git-fixes) - arm64: dts: allwinner: a64-sopine-baseboard: change RGMII mode to (bsc#1202341) - arm64: dts: allwinner: H5: NanoPi Neo Plus2: phy-mode rgmii-id (git-fixes) - arm64: dts: rockchip: Pull up wlan wake# on Gru-Bob (git-fixes) - arm64: dts: rockchip: Remove 'enable-active-low' from rk3399-puma (git-fixes) - arm64: dts: rockchip: Set RK3399-Gru PCLK_EDP to 24 MHz (git-fixes) - arm64: dts: uniphier: Fix USB interrupts for PXs3 SoC (git-fixes) - arm64: kexec_file: use more system keyrings to verify kernel image signature (bsc#1196444). - arm64: mm: Always update TCR_EL1 from __cpu_set_tcr_t0sz() (git-fixes) - arm64: mm: fix p?d_leaf() (git-fixes) - arm64: mm: use a 48-bit ID map when possible on 52-bit VA builds (git-fixes) - arm64: tegra: Fix SDMMC1 CD on P2888 (git-fixes) - arm64: tegra: Remove non existent Tegra194 reset (git-fixes) - arm64: tlb: fix the TTL value of tlb_get_level (git-fixes) - arm64/mm: Validate hotplug range before creating linear mapping (git-fixes) - bpf: Compile out btf_parse_module() if module BTF is not enabled (git-fixes). - cgroup: cgroup_get_from_id() must check the looked-up kn is a directory (bsc#1203906). - crypto: arm64/gcm - Select AEAD for GHASH_ARM64_CE (git-fixes) - crypto: arm64/poly1305 - fix a read out-of-bound (git-fixes) - drm/amdgpu: Check num_gfx_rings for gfx v9_0 rb setup (git-fixes). - drm/amdgpu: mmVM_L2_CNTL3 register not initialized correctly (git-fixes). - drm/gem: Fix GEM handle release errors (git-fixes). - drm/i915/glk: ECS Liva Q2 needs GLK HDMI port timing quirk (git-fixes). - drm/meson: Correct OSD1 global alpha value (git-fixes). - drm/meson: Fix OSD1 RGB to YCbCr coefficient (git-fixes). - drm/msm/rd: Fix FIFO-full deadlock (git-fixes). - drm/radeon: add a force flush to delay work when radeon (git-fixes). - dtb: Do not include sources in src.rpm - refer to kernel-source Same as other kernel binary packages there is no need to carry duplicate sources in dtb packages. - efi: capsule-loader: Fix use-after-free in efi_capsule_write (git-fixes). - fbdev: chipsfb: Add missing pci_disable_device() in chipsfb_pci_init() (git-fixes). - fbdev: fb_pm2fb: Avoid potential divide by zero error (git-fixes). - ftrace: Fix NULL pointer dereference in is_ftrace_trampoline when ftrace is dead (git-fixes). - gpio: mpc8xxx: Fix support for IRQ_TYPE_LEVEL_LOW flow_type in mpc85xx (git-fixes). - HID: intel-ish-hid: ishtp: Fix ishtp client sending disordered message (git-fixes). - HID: ishtp-hid-clientHID: ishtp-hid-client: Fix comment typo (git-fixes). - ieee802154: cc2520: add rc code in cc2520_tx() (git-fixes). - ima: force signature verification when CONFIG_KEXEC_SIG is configured (bsc#1203737). - Input: iforce - add support for Boeder Force Feedback Wheel (git-fixes). - Input: melfas_mip4 - fix return value check in mip4_probe() (git-fixes). - Input: snvs_pwrkey - fix SNVS_HPVIDR1 register address (git-fixes). - JFS: fix GPF in diFree (bsc#1203389). - JFS: fix memleak in jfs_mount (git-fixes). - JFS: more checks for invalid superblock (git-fixes). - JFS: prevent NULL deref in diFree (bsc#1203389). - kABI: x86: kexec: hide new include from genksyms (bsc#1196444). - kexec: clean up arch_kexec_kernel_verify_sig (bsc#1196444). - kexec: do not verify the signature without the lockdown or mandatory signature (bsc#1203737). - kexec: drop weak attribute from arch_kexec_apply_relocations[_add] (bsc#1196444). - kexec: drop weak attribute from functions (bsc#1196444). - kexec: drop weak attribute from functions (bsc#1196444). - kexec: KEYS: make the code in bzImage64_verify_sig generic (bsc#1196444). - kexec: KEYS: s390: Make use of built-in and secondary keyring for signature verification (bsc#1196444). - KVM: nVMX: Let userspace set nVMX MSR to any _host_ supported value (git-fixes). - KVM: x86: Mark TSS busy during LTR emulation _after_ all fault checks (git-fixes). - KVM: x86: Set error code to segment selector on LLDT/LTR non-canonical #GP (git-fixes). - md-raid10: fix KASAN warning (git-fixes). - md: call __md_stop_writes in md_stop (git-fixes). - md: unlock mddev before reap sync_thread in action_store (bsc#1197659). - mm: pagewalk: Fix race between unmap and page walker (git-fixes, bsc#1203159). - mm: proc: smaps_rollup: do not stall write attempts on mmap_lock (bsc#1201990). - mm: smaps*: extend smap_gather_stats to support specified beginning (bsc#1201990). - net: mana: Add rmb after checking owner bits (git-fixes). - net: mana: Add support of XDP_REDIRECT action (bug#1201310, jsc#PED-529). - net: mana: Add the Linux MANA PF driver (bug#1201309, jsc#PED-529). - NFS: Do not decrease the value of seq_nr_highest_sent (git-fixes). - NFS: Fix races in the legacy idmapper upcall (git-fixes). - NFS: Handle NFS4ERR_DELAY replies to OP_SEQUENCE correctly (git-fixes). - NFS: RECLAIM_COMPLETE must handle EACCES (git-fixes). - NFSD: Fix offset type in I/O trace points (git-fixes). - nvme-fabrics: parse nvme connect Linux error codes (bsc#1201865). - nvme-rdma: Handle number of queue changes (bsc#1201865). - nvme-tcp: fix UAF when detecting digest errors (bsc#1200313 bsc#1201489). - nvme-tcp: Handle number of queue changes (bsc#1201865). - nvmet: Expose max queues to configfs (bsc#1201865). - of: device: Fix up of_dma_configure_id() stub (git-fixes). - of: fdt: fix off-by-one error in unflatten_dt_nodes() (git-fixes). - pinctrl: rockchip: Enhance support for IRQ_TYPE_EDGE_BOTH (git-fixes). - platform/x86: acer-wmi: Acer Aspire One AOD270/Packard Bell Dot keymap fixes (git-fixes). - powerpc/drmem: Make lmb_size 64 bit (bsc#1203424 ltc#199544). - powerpc/memhotplug: Make lmb size 64bit (bsc#1203424 ltc#199544). - ppc64/kdump: Limit kdump base to 512MB (bsc#1203410 ltc#199904). - psi: Fix uaf issue when psi trigger is destroyed while being polled (bsc#1203909). - regulator: core: Clean up on enable failure (git-fixes). - s390/qeth: cache link_info for ethtool (bsc#1202984 LTC#199607). - s390/qeth: clean up default cases for ethtool link mode (bsc#1202984 LTC#199607). - s390/qeth: improve QUERY CARD INFO processing (bsc#1202984 LTC#199607). - s390/qeth: improve selection of ethtool link modes (bsc#1202984 LTC#199607). - s390/qeth: set static link info during initialization (bsc#1202984 LTC#199607). - s390/qeth: tolerate error when querying card info (bsc#1202984 LTC#199607). - s390/qeth: use QUERY OAT for initial link info (bsc#1202984 LTC#199607). - scsi: core: Fix bad pointer dereference when ehandler kthread is invalid (git-fixes). - scsi: lpfc: Add missing destroy_workqueue() in error path (bsc#1203939). - scsi: lpfc: Add missing free iocb and nlp kref put for early return VMID cases (bsc#1203939). - scsi: lpfc: Add reporting capability for Link Degrade Signaling (bsc#1203939). - scsi: lpfc: Fix FLOGI ACC with wrong SID in PT2PT topology (bsc#1203939). - scsi: lpfc: Fix mbuf pool resource detected as busy at driver unload (bsc#1203939). - scsi: lpfc: Fix multiple NVMe remoteport registration calls for the same NPort ID (bsc#1203939). - scsi: lpfc: Fix prli_fc4_req checks in PRLI handling (bsc#1203939). - scsi: lpfc: Fix various issues reported by tools (bsc#1203939). - scsi: lpfc: Move scsi_host_template outside dynamically allocated/freed phba (bsc#1185032 bsc#1203939). - scsi: lpfc: Remove the unneeded result variable (bsc#1203939). - scsi: lpfc: Remove unneeded result variable (bsc#1203939). - scsi: lpfc: Rename mp/bmp dma buffers to rq/rsp in lpfc_fdmi_cmd (bsc#1203939). - scsi: lpfc: Return DID_TRANSPORT_DISRUPTED instead of DID_REQUEUE (bsc#1203939). - scsi: lpfc: Rework FDMI attribute registration for unintential padding (bsc#1203939). - scsi: lpfc: Rework lpfc_fdmi_cmd() routine for cleanup and consistency (bsc#1203939). - scsi: lpfc: Update congestion mode logging for Emulex SAN Manager application (bsc#1203939). - scsi: lpfc: Update lpfc version to 14.2.0.7 (bsc#1203939). - scsi: mpt3sas: Fix use-after-free warning (git-fixes). - scsi: qla2xxx: Add debugfs create/delete helpers (bsc#1203935). - scsi: qla2xxx: Add NVMe parameters support in Auxiliary Image Status (bsc#1203935). - scsi: qla2xxx: Always wait for qlt_sess_work_fn() from qlt_stop_phase1() (bsc#1203935). - scsi: qla2xxx: Avoid flush_scheduled_work() usage (bsc#1203935). - scsi: qla2xxx: Disable ATIO interrupt coalesce for quad port ISP27XX (bsc#1203935). - scsi: qla2xxx: Drop DID_TARGET_FAILURE use (bsc#1203935). - scsi: qla2xxx: Fix memory leak in __qlt_24xx_handle_abts() (bsc#1203935). - scsi: qla2xxx: Fix response queue handler reading stale packets (bsc#1203935). - scsi: qla2xxx: Log message "skipping scsi_scan_host()" as informational (bsc#1203935). - scsi: qla2xxx: Remove unused declarations for qla2xxx (bsc#1203935). - scsi: qla2xxx: Remove unused del_sess_list field (bsc#1203935). - scsi: qla2xxx: Remove unused qlt_tmr_work() (bsc#1203935). - scsi: qla2xxx: Revert "scsi: qla2xxx: Fix response queue handler reading stale packets" (bsc#1203935). - scsi: qla2xxx: Update version to 10.02.07.900-k (bsc#1203935). - scsi: sg: Allow waiting for commands to complete on removed device (git-fixes). - scsi: smartpqi: Fix DMA direction for RAID requests (git-fixes). - scsi: smartpqi: Shorten drive visibility after removal (bsc#1200622). - scsi: smartpqi: Update LUN reset handler (bsc#1200622). - soc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs (git-fixes). - squashfs: fix divide error in calculate_skip() (git-fixes). - struct ehci_hcd: hide new member (git-fixes). - struct otg_fsm: hide new boolean member in gap (git-fixes). - SUNRPC: Do not call connect() more than once on a TCP socket (git-fixes). - SUNRPC: Do not leak sockets in xs_local_connect() (git-fixes). - SUNRPC: fix expiry of auth creds (git-fixes). - SUNRPC: Fix misplaced barrier in call_decode (git-fixes). - SUNRPC: Partial revert of commit 6f9f17287e78 (git-fixes). - SUNRPC: Reinitialise the backchannel request buffers before reuse (git-fixes). - SUNRPC: RPC level errors should set task->tk_rpc_status (git-fixes). - svcrdma: Hold private mutex while invoking rdma_accept() (git-fixes). - tracing: hold caller_addr to hardirq_{enable,disable}_ip (git-fixes). - USB: Add ignore-residue quirk for NXP PN7462AU (git-fixes). - USB: cdc-acm: Add Icom PMR F3400 support (0c26:0020) (git-fixes). - USB: core: Fix RST error in hub.c (git-fixes). - USB: core: Prevent nested device-reset calls (git-fixes). - USB: dwc3: disable USB core PHY management (git-fixes). - USB: ehci: handshake CMD_RUN instead of STS_HALT (git-fixes). - USB: otg-fsm: Fix hrtimer list corruption (git-fixes). - USB: serial: ch341: fix disabled rx timer on older devices (git-fixes). - USB: serial: ch341: fix lost character on LCR updates (git-fixes). - USB: serial: ch341: name prescaler, divisor registers (git-fixes). - USB: serial: cp210x: add Decagon UCA device id (git-fixes). - USB: serial: ftdi_sio: add Omron CS1W-CIF31 device id (git-fixes). - USB: serial: option: add Quectel EM060K modem (git-fixes). - USB: serial: option: add support for Cinterion MV32-WA/WB RmNet mode (git-fixes). - USB: serial: option: add support for OPPO R11 diag port (git-fixes). - USB: storage: Add ASUS &lt;0x0b05:0x1932> to IGNORE_UAS (git-fixes). - USB: struct usb_device: hide new member (git-fixes). - usbnet: Fix memory leak in usbnet_disconnect() (git-fixes). - vt: Clear selection before changing the font (git-fixes). - vt: selection, introduce vc_is_sel (git-fixes). - watchdog: wdat_wdt: Set the min and max timeout values properly (bsc#1194023). - wifi: iwlegacy: 4965: corrected fix for potential off-by-one overflow in il4965_rs_fill_link_cmd() (git-fixes). - x86/bugs: Reenable retbleed=off While for older kernels the return thunks are statically built in and cannot be dynamically patched out, retbleed=off should still work so that it can be disabled. - x86/kexec: fix memory leak of elf header buffer (bsc#1196444). - x86/xen: Remove undefined behavior in setup_features() (git-fixes). - xen/xenbus: fix return type in xenbus_file_read() (git-fixes). - xprtrdma: Fix cwnd update ordering (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.98.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.98.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.98.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.98.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.98.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.98.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.98.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.98.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.98.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.98.1.x86_64.rpm True kernel-default-5.3.18-150300.59.98.1.nosrc.rpm True kernel-default-5.3.18-150300.59.98.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.98.1.150300.18.56.3.src.rpm True kernel-default-base-5.3.18-150300.59.98.1.150300.18.56.3.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.98.1.150300.18.56.3.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.98.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.98.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.98.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.98.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.98.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.98.1.noarch.rpm True kernel-docs-5.3.18-150300.59.98.1.noarch.rpm True kernel-docs-5.3.18-150300.59.98.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.98.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.98.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.98.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.98.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.98.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.98.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.98.1.src.rpm True kernel-obs-build-5.3.18-150300.59.98.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.98.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.98.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.98.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.98.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.98.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.98.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.98.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.98.1.x86_64.rpm True kernel-source-5.3.18-150300.59.98.1.noarch.rpm True kernel-source-5.3.18-150300.59.98.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.98.1.noarch.rpm True kernel-syms-5.3.18-150300.59.98.1.src.rpm True kernel-syms-5.3.18-150300.59.98.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.98.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.98.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.98.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.98.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.98.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.98.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.98.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.98.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.98.1.s390x.rpm True kernel-default-5.3.18-150300.59.98.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.98.1.150300.18.56.3.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.98.1.150300.18.56.3.s390x.rpm True kernel-default-devel-5.3.18-150300.59.98.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.98.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.98.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.98.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.98.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.98.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.98.1.s390x.rpm True kernel-syms-5.3.18-150300.59.98.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.98.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.98.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.98.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.98.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.98.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.98.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.98.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.98.1.150300.18.56.3.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.98.1.150300.18.56.3.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.98.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.98.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.98.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.98.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.98.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.98.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.98.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.98.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.98.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.98.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.98.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.98.1.nosrc.rpm True dtb-al-5.3.18-150300.59.98.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.98.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.98.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.98.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.98.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.98.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.98.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.98.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.98.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.98.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.98.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.98.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.98.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.98.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.98.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.98.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.98.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.98.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.98.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.98.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.98.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.98.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.98.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.98.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.98.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.98.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.98.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.98.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.98.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.98.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.98.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.98.1.aarch64.rpm True kernel-default-5.3.18-150300.59.98.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.98.1.150300.18.56.3.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.98.1.150300.18.56.3.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.98.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.98.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.98.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.98.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.98.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.98.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.98.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.98.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.98.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.98.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.98.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.98.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.98.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.98.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.98.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.98.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.98.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.98.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.98.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.98.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.98.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.98.1.aarch64.rpm True openSUSE-SLE-15.3-2022-3922 important SUSE Updates openSUSE-SLE 15.3 This update for protobuf fixes the following issues: - CVE-2021-22569: Fixed Denial of Service in protobuf-java in the parsing procedure for binary data (bsc#1194530). - CVE-2022-1941: Fix a potential DoS issue in protobuf-cpp and protobuf-python (bsc#1203681) - CVE-2022-3171: Fix a potential DoS issue when parsing with binary data in protobuf-java (bsc#1204256) libprotobuf-lite20-3.9.2-150200.4.19.2.x86_64.rpm libprotobuf-lite20-32bit-3.9.2-150200.4.19.2.x86_64.rpm libprotobuf20-3.9.2-150200.4.19.2.x86_64.rpm libprotobuf20-32bit-3.9.2-150200.4.19.2.x86_64.rpm libprotoc20-3.9.2-150200.4.19.2.x86_64.rpm libprotoc20-32bit-3.9.2-150200.4.19.2.x86_64.rpm protobuf-3.9.2-150200.4.19.2.src.rpm protobuf-devel-3.9.2-150200.4.19.2.x86_64.rpm protobuf-java-3.9.2-150200.4.19.2.x86_64.rpm protobuf-source-3.9.2-150200.4.19.2.noarch.rpm python2-protobuf-3.9.2-150200.4.19.2.x86_64.rpm python3-protobuf-3.9.2-150200.4.19.2.x86_64.rpm libprotobuf-lite20-3.9.2-150200.4.19.2.s390x.rpm libprotobuf20-3.9.2-150200.4.19.2.s390x.rpm libprotoc20-3.9.2-150200.4.19.2.s390x.rpm protobuf-devel-3.9.2-150200.4.19.2.s390x.rpm protobuf-java-3.9.2-150200.4.19.2.s390x.rpm python2-protobuf-3.9.2-150200.4.19.2.s390x.rpm python3-protobuf-3.9.2-150200.4.19.2.s390x.rpm libprotobuf-lite20-3.9.2-150200.4.19.2.ppc64le.rpm libprotobuf20-3.9.2-150200.4.19.2.ppc64le.rpm libprotoc20-3.9.2-150200.4.19.2.ppc64le.rpm protobuf-devel-3.9.2-150200.4.19.2.ppc64le.rpm protobuf-java-3.9.2-150200.4.19.2.ppc64le.rpm python2-protobuf-3.9.2-150200.4.19.2.ppc64le.rpm python3-protobuf-3.9.2-150200.4.19.2.ppc64le.rpm libprotobuf-lite20-3.9.2-150200.4.19.2.aarch64.rpm libprotobuf20-3.9.2-150200.4.19.2.aarch64.rpm libprotoc20-3.9.2-150200.4.19.2.aarch64.rpm protobuf-devel-3.9.2-150200.4.19.2.aarch64.rpm protobuf-java-3.9.2-150200.4.19.2.aarch64.rpm python2-protobuf-3.9.2-150200.4.19.2.aarch64.rpm python3-protobuf-3.9.2-150200.4.19.2.aarch64.rpm openSUSE-SLE-15.3-2022-3650 important SUSE Updates openSUSE-SLE 15.3 This update for libreoffice fixes the following issues: Updated to version 7.3.6.2 (jsc#SLE-23447): - CVE-2022-3140: Fixed macro URL arbitrary script execution (bsc#1203209). - CVE-2022-26305: Fixed execution of untrusted Macros due to improper certificate validation (bsc#1201868). - CVE-2022-26307: Fixed weak Master Keys in password storage (bsc#1201872). libreoffice-7.3.6.2-150300.14.22.24.2.src.rpm libreoffice-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-base-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-base-drivers-postgresql-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-branding-upstream-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-calc-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-calc-extensions-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-draw-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-filters-optional-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-gdb-pretty-printers-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-glade-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-gnome-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-gtk3-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-icon-themes-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-impress-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-l10n-af-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-am-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ar-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-as-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ast-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-be-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-bg-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-bn-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-bn_IN-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-bo-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-br-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-brx-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-bs-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ca-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ca_valencia-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ckb-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-cs-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-cy-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-da-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-de-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-dgo-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-dsb-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-dz-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-el-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-en-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-en_GB-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-en_ZA-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-eo-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-es-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-et-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-eu-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-fa-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-fi-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-fr-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-fur-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-fy-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ga-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-gd-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-gl-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-gu-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-gug-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-he-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-hi-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-hr-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-hsb-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-hu-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-id-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-is-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-it-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ja-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ka-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-kab-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-kk-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-km-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-kmr_Latn-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-kn-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ko-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-kok-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ks-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-lb-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-lo-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-lt-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-lv-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-mai-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-mk-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ml-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-mn-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-mni-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-mr-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-my-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-nb-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ne-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-nl-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-nn-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-nr-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-nso-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-oc-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-om-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-or-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-pa-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-pl-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-pt_BR-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-pt_PT-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ro-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ru-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-rw-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-sa_IN-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-sat-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-sd-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-si-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-sid-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-sk-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-sl-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-sq-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-sr-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ss-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-st-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-sv-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-sw_TZ-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-szl-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ta-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-te-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-tg-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-th-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-tn-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-tr-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ts-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-tt-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ug-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-uk-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-uz-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-ve-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-vec-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-vi-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-xh-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-zh_CN-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-zh_TW-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-l10n-zu-7.3.6.2-150300.14.22.24.2.noarch.rpm libreoffice-librelogo-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-mailmerge-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-math-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-officebean-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-pyuno-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-qt5-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-sdk-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-sdk-doc-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-writer-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-writer-extensions-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreofficekit-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreofficekit-devel-7.3.6.2-150300.14.22.24.2.x86_64.rpm libreoffice-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-base-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-base-drivers-postgresql-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-calc-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-calc-extensions-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-draw-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-filters-optional-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-gnome-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-gtk3-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-impress-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-librelogo-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-mailmerge-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-math-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-officebean-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-pyuno-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-qt5-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-sdk-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-sdk-doc-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-writer-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-writer-extensions-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreofficekit-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreofficekit-devel-7.3.6.2-150300.14.22.24.2.ppc64le.rpm libreoffice-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-base-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-base-drivers-postgresql-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-calc-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-calc-extensions-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-draw-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-filters-optional-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-gnome-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-gtk3-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-impress-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-librelogo-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-mailmerge-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-math-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-officebean-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-pyuno-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-qt5-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-sdk-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-sdk-doc-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-writer-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreoffice-writer-extensions-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreofficekit-7.3.6.2-150300.14.22.24.2.aarch64.rpm libreofficekit-devel-7.3.6.2-150300.14.22.24.2.aarch64.rpm openSUSE-SLE-15.3-2022-3565 critical SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: libzypp: - Enable 'zck' support for SUSE Linux Enterprise 15 Service Pack 4 and newer (bsc#1189282) - Fix regression leading to `-allow-vendor-change` and `no-allow-vendor-change` options being ignored (bsc#1201972) - Remove migration code that is no longer needed (bsc#1203649) - Store logrotate files in vendor specif directory '/usr/etc/logrotate.d' if so defined zypper: - Fix contradiction in the man page: `--download-in-advance` option is the default behavior - Fix regression leading to `-allow-vendor-change` and `no-allow-vendor-change` options being ignored (bsc#1201972) - Fix tests to use locale "C.UTF-8" rather than "en_US" - Make sure 'up' respects solver related CLI options (bsc#1201972) - Remove unneeded code to compute the PPP status because it is now auto established - Store logrotate files in vendor specif directory '/usr/etc/logrotate.d' if so defined libzypp-17.31.2-150200.45.1.src.rpm True libzypp-17.31.2-150200.45.1.x86_64.rpm True libzypp-devel-17.31.2-150200.45.1.x86_64.rpm True libzypp-devel-doc-17.31.2-150200.45.1.x86_64.rpm True zypper-1.14.57-150200.39.1.src.rpm True zypper-1.14.57-150200.39.1.x86_64.rpm True zypper-aptitude-1.14.57-150200.39.1.noarch.rpm True zypper-log-1.14.57-150200.39.1.noarch.rpm True zypper-needs-restarting-1.14.57-150200.39.1.noarch.rpm True libzypp-17.31.2-150200.45.1.s390x.rpm True libzypp-devel-17.31.2-150200.45.1.s390x.rpm True libzypp-devel-doc-17.31.2-150200.45.1.s390x.rpm True zypper-1.14.57-150200.39.1.s390x.rpm True libzypp-17.31.2-150200.45.1.ppc64le.rpm True libzypp-devel-17.31.2-150200.45.1.ppc64le.rpm True libzypp-devel-doc-17.31.2-150200.45.1.ppc64le.rpm True zypper-1.14.57-150200.39.1.ppc64le.rpm True libzypp-17.31.2-150200.45.1.aarch64.rpm True libzypp-devel-17.31.2-150200.45.1.aarch64.rpm True libzypp-devel-doc-17.31.2-150200.45.1.aarch64.rpm True zypper-1.14.57-150200.39.1.aarch64.rpm True openSUSE-SLE-15.3-2022-3836 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-lxml fixes the following issues: - CVE-2021-28957: Fixed XSS due to missing input sanitization for HTML5 attributes (bsc#1184177). - CVE-2020-27783: Fixed XSS due to the use of improper parser (bsc#1179534). python-lxml-4.0.0-150000.4.3.1.src.rpm python2-lxml-doc-4.0.0-150000.4.3.1.noarch.rpm python3-lxml-doc-4.0.0-150000.4.3.1.noarch.rpm openSUSE-SLE-15.3-2022-4205 moderate SUSE Updates openSUSE-SLE 15.3 This update for net-snmp fixes the following issues: Updated to version 5.9.3 (bsc#1201103, jsc#SLE-11203): - CVE-2022-24805: Fixed a buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB that can cause an out-of-bounds memory access. - CVE-2022-24809: Fixed a malformed OID in a GET-NEXT to the nsVacmAccessTable that can cause a NULL pointer dereference. - CVE-2022-24806: Fixed an improper Input Validation when SETing malformed OIDs in master agent and subagent simultaneously. - CVE-2022-24807: Fixed a malformed OID in a SET request to SNMP-VIEW-BASED-ACM-MIB::vacmAccessTable can cause an out-of-bounds memory access. - CVE-2022-24808: Fixed a malformed OID in a SET request to NET-SNMP-AGENT-MIB::nsLogTable can cause a NULL pointer dereference. - CVE-2022-24810: Fixed a malformed OID in a SET to the nsVacmAccessTable can cause a NULL pointer dereference. libsnmp40-32bit-5.9.3-150300.15.3.1.x86_64.rpm libsnmp40-5.9.3-150300.15.3.1.x86_64.rpm net-snmp-5.9.3-150300.15.3.1.src.rpm net-snmp-5.9.3-150300.15.3.1.x86_64.rpm net-snmp-devel-32bit-5.9.3-150300.15.3.1.x86_64.rpm net-snmp-devel-5.9.3-150300.15.3.1.x86_64.rpm perl-SNMP-5.9.3-150300.15.3.1.x86_64.rpm python2-net-snmp-5.9.3-150300.15.3.1.x86_64.rpm python3-net-snmp-5.9.3-150300.15.3.1.x86_64.rpm snmp-mibs-5.9.3-150300.15.3.1.x86_64.rpm libsnmp40-5.9.3-150300.15.3.1.s390x.rpm net-snmp-5.9.3-150300.15.3.1.s390x.rpm net-snmp-devel-5.9.3-150300.15.3.1.s390x.rpm perl-SNMP-5.9.3-150300.15.3.1.s390x.rpm python2-net-snmp-5.9.3-150300.15.3.1.s390x.rpm python3-net-snmp-5.9.3-150300.15.3.1.s390x.rpm snmp-mibs-5.9.3-150300.15.3.1.s390x.rpm libsnmp40-5.9.3-150300.15.3.1.ppc64le.rpm net-snmp-5.9.3-150300.15.3.1.ppc64le.rpm net-snmp-devel-5.9.3-150300.15.3.1.ppc64le.rpm perl-SNMP-5.9.3-150300.15.3.1.ppc64le.rpm python2-net-snmp-5.9.3-150300.15.3.1.ppc64le.rpm python3-net-snmp-5.9.3-150300.15.3.1.ppc64le.rpm snmp-mibs-5.9.3-150300.15.3.1.ppc64le.rpm libsnmp40-5.9.3-150300.15.3.1.aarch64.rpm net-snmp-5.9.3-150300.15.3.1.aarch64.rpm net-snmp-devel-5.9.3-150300.15.3.1.aarch64.rpm perl-SNMP-5.9.3-150300.15.3.1.aarch64.rpm python2-net-snmp-5.9.3-150300.15.3.1.aarch64.rpm python3-net-snmp-5.9.3-150300.15.3.1.aarch64.rpm snmp-mibs-5.9.3-150300.15.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3979 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-Mako fixes the following issues: - CVE-2022-40023: Fixed regular expression Denial of Service when using the Lexer class to parse (bsc#1203246). python-Mako-1.0.7-150000.3.3.1.src.rpm python2-Mako-1.0.7-150000.3.3.1.noarch.rpm python3-Mako-1.0.7-150000.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-3881 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: - Ship Ubuntu 2204 profiles. - ComplianceAsCode was updated to 0.1.64 (jsc#ECO-3319): - Introduce OL9 stig and anssi profiles - Update RHEL8 STIG to V1R7 - Introduce e8 profile for OL9 - Update RHEL7 STIG to V3R8 - some SUSE profile fixes - Added several RPM requires that are needed by the SUSE remediation scripts. scap-security-guide-0.1.64-150000.1.50.1.noarch.rpm scap-security-guide-0.1.64-150000.1.50.1.src.rpm scap-security-guide-debian-0.1.64-150000.1.50.1.noarch.rpm scap-security-guide-redhat-0.1.64-150000.1.50.1.noarch.rpm scap-security-guide-ubuntu-0.1.64-150000.1.50.1.noarch.rpm openSUSE-SLE-15.3-2022-3665 important SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing (bsc#1203806). - CVE-2022-33748: Fixed DoS due to race in locking (bsc#1203807). - CVE-2022-26365: Fixed issue where Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (bsc#1200762). - CVE-2022-33740: Fixed issue where Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (bsc#1200762). - CVE-2022-33741: Fixed issue where data residing in the same 4K page as data shared with a backend was being accessible by such backend (bsc#1200762). - CVE-2022-33742: Fixed issue where data residing in the same 4K page as data shared with a backend was being accessible by such backend (bsc#1200762). - CVE-2022-33745: Fixed an insufficient TLB flush for x86 PV guests in shadow mode (bsc#1201394). - CVE-2021-28689: Fixed speculative vulnerabilities with bare (non-shim) 32-bit PV guests (bsc#1185104). Bugfixes: - Fixed logic error in built-in default of max_event_channels (bsc#1167608, bsc#1201631). - Fixed issue where dom0 fails to boot with constrained vcpus and nodes (bsc#1197081). - Included upstream bugfixes (bsc#1027519). xen-4.14.5_06-150300.3.35.1.src.rpm xen-4.14.5_06-150300.3.35.1.x86_64.rpm xen-devel-4.14.5_06-150300.3.35.1.x86_64.rpm xen-doc-html-4.14.5_06-150300.3.35.1.x86_64.rpm xen-libs-32bit-4.14.5_06-150300.3.35.1.x86_64.rpm xen-libs-4.14.5_06-150300.3.35.1.x86_64.rpm xen-tools-4.14.5_06-150300.3.35.1.x86_64.rpm xen-tools-domU-4.14.5_06-150300.3.35.1.x86_64.rpm xen-tools-xendomains-wait-disk-4.14.5_06-150300.3.35.1.noarch.rpm xen-4.14.5_06-150300.3.35.1.aarch64.rpm xen-devel-4.14.5_06-150300.3.35.1.aarch64.rpm xen-doc-html-4.14.5_06-150300.3.35.1.aarch64.rpm xen-libs-4.14.5_06-150300.3.35.1.aarch64.rpm xen-tools-4.14.5_06-150300.3.35.1.aarch64.rpm xen-tools-domU-4.14.5_06-150300.3.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-3913 moderate SUSE Updates openSUSE-SLE 15.3 This update for vsftpd fixes the following issues: Bugfixes: - Removed unsupported systemd hardening options (bsc#1196918). vsftpd-3.0.5-150200.12.12.1.src.rpm vsftpd-3.0.5-150200.12.12.1.x86_64.rpm vsftpd-3.0.5-150200.12.12.1.s390x.rpm vsftpd-3.0.5-150200.12.12.1.ppc64le.rpm vsftpd-3.0.5-150200.12.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-4073 moderate SUSE Updates openSUSE-SLE 15.3 This update for sccache fixes the following issues: Updated to version 0.3.0: - CVE-2022-24713: Fixed Regex denial of service (bsc#1196972). - CVE-2021-45710: Fixed tokio data race with memory corruption (bsc#1194119). - Added hardening to systemd service(s) (bsc#1181400). sccache-0.3.0~git5.14a4b8b-150300.7.9.1.src.rpm sccache-0.3.0~git5.14a4b8b-150300.7.9.1.x86_64.rpm sccache-0.3.0~git5.14a4b8b-150300.7.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3805 important SUSE Updates openSUSE-SLE 15.3 This update for dbus-1 fixes the following issues: - CVE-2022-42010: Fixed potential crash that could be triggered by an invalid signature (bsc#1204111). - CVE-2022-42011: Fixed an out of bounds read caused by a fixed length array (bsc#1204112). - CVE-2022-42012: Fixed a use-after-free that could be trigged by a message in non-native endianness with out-of-band Unix file descriptor (bsc#1204113). Bugfixes: - Disable asserts (bsc#1087072). dbus-1-1.12.2-150100.8.14.1.src.rpm True dbus-1-1.12.2-150100.8.14.1.x86_64.rpm True dbus-1-devel-1.12.2-150100.8.14.1.x86_64.rpm True dbus-1-devel-32bit-1.12.2-150100.8.14.1.x86_64.rpm True dbus-1-devel-doc-1.12.2-150100.8.14.1.noarch.rpm True dbus-1-x11-1.12.2-150100.8.14.1.src.rpm True dbus-1-x11-1.12.2-150100.8.14.1.x86_64.rpm True libdbus-1-3-1.12.2-150100.8.14.1.x86_64.rpm True libdbus-1-3-32bit-1.12.2-150100.8.14.1.x86_64.rpm True dbus-1-1.12.2-150100.8.14.1.s390x.rpm True dbus-1-devel-1.12.2-150100.8.14.1.s390x.rpm True dbus-1-x11-1.12.2-150100.8.14.1.s390x.rpm True libdbus-1-3-1.12.2-150100.8.14.1.s390x.rpm True dbus-1-1.12.2-150100.8.14.1.ppc64le.rpm True dbus-1-devel-1.12.2-150100.8.14.1.ppc64le.rpm True dbus-1-x11-1.12.2-150100.8.14.1.ppc64le.rpm True libdbus-1-3-1.12.2-150100.8.14.1.ppc64le.rpm True dbus-1-1.12.2-150100.8.14.1.aarch64.rpm True dbus-1-devel-1.12.2-150100.8.14.1.aarch64.rpm True dbus-1-x11-1.12.2-150100.8.14.1.aarch64.rpm True libdbus-1-3-1.12.2-150100.8.14.1.aarch64.rpm True openSUSE-SLE-15.3-2022-3690 important SUSE Updates openSUSE-SLE 15.3 This update for tiff fixes the following issues: - CVE-2022-2519: Fixed a double free in rotateImage() (bsc#1202968). - CVE-2022-2520: Fixed a assertion failure in rotateImage() (bsc#1202973). - CVE-2022-2521: Fixed invalid free in TIFFClose() (bsc#1202971). - CVE-2022-2867: Fixed out of bounds read and write in tiffcrop.c (bsc#1202466). - CVE-2022-2868: Fixed out of bounds read in reverseSamples16bits() (bsc#1202467). - CVE-2022-2869: Fixed out of bounds read and write in extractContigSamples8bits() (bsc#1202468). - CVE-2022-34526: Fixed stack overflow in the _TIFFVGetField function of Tiffsplit (bsc#1202026). libtiff-devel-32bit-4.0.9-150000.45.16.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.16.1.x86_64.rpm libtiff5-32bit-4.0.9-150000.45.16.1.x86_64.rpm libtiff5-4.0.9-150000.45.16.1.x86_64.rpm tiff-4.0.9-150000.45.16.1.src.rpm tiff-4.0.9-150000.45.16.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.16.1.s390x.rpm libtiff5-4.0.9-150000.45.16.1.s390x.rpm tiff-4.0.9-150000.45.16.1.s390x.rpm libtiff-devel-4.0.9-150000.45.16.1.ppc64le.rpm libtiff5-4.0.9-150000.45.16.1.ppc64le.rpm tiff-4.0.9-150000.45.16.1.ppc64le.rpm libtiff-devel-4.0.9-150000.45.16.1.aarch64.rpm libtiff5-4.0.9-150000.45.16.1.aarch64.rpm tiff-4.0.9-150000.45.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-4044 important SUSE Updates openSUSE-SLE 15.3 This update for python-cryptography, python-cryptography-vectors fixes the following issues: - Update in SLE-15 (bsc#1177083, jsc#PM-2730, jsc#SLE-18312) - Refresh patches for new version - Update in SLE-15 (bsc#1176785, jsc#ECO-3105, jsc#PM-2352) - update to 2.9.2 * 2.9.2 - 2020-04-22 - Updated the macOS wheel to fix an issue where it would not run on macOS versions older than 10.15. * 2.9.1 - 2020-04-21 - Updated Windows, macOS, and manylinux wheels to be compiled with OpenSSL 1.1.1g. * 2.9 - 2020-04-02 - BACKWARDS INCOMPATIBLE: Support for Python 3.4 has been removed due to low usage and maintenance burden. - BACKWARDS INCOMPATIBLE: Support for OpenSSL 1.0.1 has been removed. Users on older version of OpenSSL will need to upgrade. - BACKWARDS INCOMPATIBLE: Support for LibreSSL 2.6.x has been removed. - Removed support for calling public_bytes() with no arguments, as per our deprecation policy. You must now pass encoding and format. - BACKWARDS INCOMPATIBLE: Reversed the order in which rfc4514_string() returns the RDNs as required by RFC 4514. - Updated Windows, macOS, and manylinux wheels to be compiled with OpenSSL 1.1.1f. - Added support for parsing single_extensions in an OCSP response. - NameAttribute values can now be empty strings. - Add openSSL_111d.patch to make this version of the package compatible with OpenSSL 1.1.1d, thus fixing bsc#1149792. - bsc#1101820 CVE-2018-10903 GCM tag forgery via truncated tag in finalize_with_tag API - Update in SLE-15 (bsc#1177083, jsc#PM-2730, jsc#SLE-18312) - Include in SLE-15 (bsc#1176785, jsc#ECO-3105, jsc#PM-2352) - update to 2.9.2: * updated vectors for the cryptography 2.9.2 testing python-cryptography-2.9.2-150200.13.1.src.rpm python-cryptography-vectors-2.9.2-150200.3.3.1.src.rpm python2-cryptography-2.9.2-150200.13.1.x86_64.rpm python2-cryptography-vectors-2.9.2-150200.3.3.1.noarch.rpm python3-cryptography-2.9.2-150200.13.1.x86_64.rpm python3-cryptography-vectors-2.9.2-150200.3.3.1.noarch.rpm python2-cryptography-2.9.2-150200.13.1.s390x.rpm python3-cryptography-2.9.2-150200.13.1.s390x.rpm python2-cryptography-2.9.2-150200.13.1.ppc64le.rpm python3-cryptography-2.9.2-150200.13.1.ppc64le.rpm python2-cryptography-2.9.2-150200.13.1.aarch64.rpm python3-cryptography-2.9.2-150200.13.1.aarch64.rpm openSUSE-SLE-15.3-2022-4256 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc12 fixes the following issues: This update ship the GCC 12 compiler suite and its base libraries. The compiler baselibraries are provided for all SUSE Linux Enterprise 15 versions and replace the same named GCC 11 ones. The new compilers for C, C++, and Fortran are provided for SUSE Linux Enterprise 15 SP3 and SP4, and provided in the "Development Tools" module. The Go, D and Ada language compiler parts are available unsupported via the PackageHub repositories. To use gcc12 compilers use: - install "gcc12" or "gcc12-c++" or one of the other "gcc12-COMPILER" frontend packages. - override your Makefile to use CC=gcc12, CXX=g++12 and similar overrides for the other languages. For a full changelog with all new GCC12 features, check out https://gcc.gnu.org/gcc-12/changes.html cpp12-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-12.2.1+git416-150000.1.5.1.src.rpm gcc12-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-PIE-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-ada-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-ada-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-c++-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-c++-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-d-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-d-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-fortran-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-fortran-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-go-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-go-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-info-12.2.1+git416-150000.1.5.1.noarch.rpm gcc12-locale-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-obj-c++-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-obj-c++-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-objc-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-objc-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm gcc12-testresults-12.2.1+git416-150000.1.5.3.src.rpm gcc12-testresults-12.2.1+git416-150000.1.5.3.x86_64.rpm libada12-12.2.1+git416-150000.1.5.1.x86_64.rpm libada12-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libasan8-12.2.1+git416-150000.1.5.1.x86_64.rpm libasan8-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libatomic1-12.2.1+git416-150000.1.5.1.x86_64.rpm libatomic1-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libgcc_s1-12.2.1+git416-150000.1.5.1.x86_64.rpm libgcc_s1-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libgdruntime3-12.2.1+git416-150000.1.5.1.x86_64.rpm libgdruntime3-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libgfortran5-12.2.1+git416-150000.1.5.1.x86_64.rpm libgfortran5-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libgo21-12.2.1+git416-150000.1.5.1.x86_64.rpm libgo21-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libgomp1-12.2.1+git416-150000.1.5.1.x86_64.rpm libgomp1-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libgphobos3-12.2.1+git416-150000.1.5.1.x86_64.rpm libgphobos3-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libitm1-12.2.1+git416-150000.1.5.1.x86_64.rpm libitm1-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm liblsan0-12.2.1+git416-150000.1.5.1.x86_64.rpm libobjc4-12.2.1+git416-150000.1.5.1.x86_64.rpm libobjc4-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libquadmath0-12.2.1+git416-150000.1.5.1.x86_64.rpm libquadmath0-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libstdc++6-12.2.1+git416-150000.1.5.1.x86_64.rpm libstdc++6-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libstdc++6-devel-gcc12-12.2.1+git416-150000.1.5.1.x86_64.rpm libstdc++6-devel-gcc12-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libstdc++6-locale-12.2.1+git416-150000.1.5.1.x86_64.rpm libstdc++6-pp-12.2.1+git416-150000.1.5.1.x86_64.rpm libstdc++6-pp-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm libtsan2-12.2.1+git416-150000.1.5.1.x86_64.rpm libubsan1-12.2.1+git416-150000.1.5.1.x86_64.rpm libubsan1-32bit-12.2.1+git416-150000.1.5.1.x86_64.rpm cpp12-12.2.1+git416-150000.1.5.1.s390x.rpm gcc12-12.2.1+git416-150000.1.5.1.s390x.rpm gcc12-PIE-12.2.1+git416-150000.1.5.1.s390x.rpm gcc12-ada-12.2.1+git416-150000.1.5.1.s390x.rpm gcc12-c++-12.2.1+git416-150000.1.5.1.s390x.rpm gcc12-d-12.2.1+git416-150000.1.5.1.s390x.rpm gcc12-fortran-12.2.1+git416-150000.1.5.1.s390x.rpm gcc12-go-12.2.1+git416-150000.1.5.1.s390x.rpm gcc12-locale-12.2.1+git416-150000.1.5.1.s390x.rpm gcc12-obj-c++-12.2.1+git416-150000.1.5.1.s390x.rpm gcc12-objc-12.2.1+git416-150000.1.5.1.s390x.rpm gcc12-testresults-12.2.1+git416-150000.1.5.3.s390x.rpm libada12-12.2.1+git416-150000.1.5.1.s390x.rpm libasan8-12.2.1+git416-150000.1.5.1.s390x.rpm libatomic1-12.2.1+git416-150000.1.5.1.s390x.rpm libatomic1-32bit-12.2.1+git416-150000.1.5.1.s390x.rpm libgcc_s1-12.2.1+git416-150000.1.5.1.s390x.rpm libgcc_s1-32bit-12.2.1+git416-150000.1.5.1.s390x.rpm libgdruntime3-12.2.1+git416-150000.1.5.1.s390x.rpm libgfortran5-12.2.1+git416-150000.1.5.1.s390x.rpm libgfortran5-32bit-12.2.1+git416-150000.1.5.1.s390x.rpm libgo21-12.2.1+git416-150000.1.5.1.s390x.rpm libgomp1-12.2.1+git416-150000.1.5.1.s390x.rpm libgomp1-32bit-12.2.1+git416-150000.1.5.1.s390x.rpm libgphobos3-12.2.1+git416-150000.1.5.1.s390x.rpm libitm1-12.2.1+git416-150000.1.5.1.s390x.rpm libitm1-32bit-12.2.1+git416-150000.1.5.1.s390x.rpm liblsan0-12.2.1+git416-150000.1.5.1.s390x.rpm libobjc4-12.2.1+git416-150000.1.5.1.s390x.rpm libobjc4-32bit-12.2.1+git416-150000.1.5.1.s390x.rpm libstdc++6-12.2.1+git416-150000.1.5.1.s390x.rpm libstdc++6-32bit-12.2.1+git416-150000.1.5.1.s390x.rpm libstdc++6-devel-gcc12-12.2.1+git416-150000.1.5.1.s390x.rpm libstdc++6-locale-12.2.1+git416-150000.1.5.1.s390x.rpm libstdc++6-pp-12.2.1+git416-150000.1.5.1.s390x.rpm libtsan2-12.2.1+git416-150000.1.5.1.s390x.rpm libubsan1-12.2.1+git416-150000.1.5.1.s390x.rpm libubsan1-32bit-12.2.1+git416-150000.1.5.1.s390x.rpm cpp12-12.2.1+git416-150000.1.5.1.ppc64le.rpm gcc12-12.2.1+git416-150000.1.5.1.ppc64le.rpm gcc12-PIE-12.2.1+git416-150000.1.5.1.ppc64le.rpm gcc12-ada-12.2.1+git416-150000.1.5.1.ppc64le.rpm gcc12-c++-12.2.1+git416-150000.1.5.1.ppc64le.rpm gcc12-fortran-12.2.1+git416-150000.1.5.1.ppc64le.rpm gcc12-go-12.2.1+git416-150000.1.5.1.ppc64le.rpm gcc12-locale-12.2.1+git416-150000.1.5.1.ppc64le.rpm gcc12-obj-c++-12.2.1+git416-150000.1.5.1.ppc64le.rpm gcc12-objc-12.2.1+git416-150000.1.5.1.ppc64le.rpm gcc12-testresults-12.2.1+git416-150000.1.5.3.ppc64le.rpm libada12-12.2.1+git416-150000.1.5.1.ppc64le.rpm libasan8-12.2.1+git416-150000.1.5.1.ppc64le.rpm libatomic1-12.2.1+git416-150000.1.5.1.ppc64le.rpm libgcc_s1-12.2.1+git416-150000.1.5.1.ppc64le.rpm libgfortran5-12.2.1+git416-150000.1.5.1.ppc64le.rpm libgo21-12.2.1+git416-150000.1.5.1.ppc64le.rpm libgomp1-12.2.1+git416-150000.1.5.1.ppc64le.rpm libitm1-12.2.1+git416-150000.1.5.1.ppc64le.rpm liblsan0-12.2.1+git416-150000.1.5.1.ppc64le.rpm libobjc4-12.2.1+git416-150000.1.5.1.ppc64le.rpm libquadmath0-12.2.1+git416-150000.1.5.1.ppc64le.rpm libstdc++6-12.2.1+git416-150000.1.5.1.ppc64le.rpm libstdc++6-devel-gcc12-12.2.1+git416-150000.1.5.1.ppc64le.rpm libstdc++6-locale-12.2.1+git416-150000.1.5.1.ppc64le.rpm libstdc++6-pp-12.2.1+git416-150000.1.5.1.ppc64le.rpm libtsan2-12.2.1+git416-150000.1.5.1.ppc64le.rpm libubsan1-12.2.1+git416-150000.1.5.1.ppc64le.rpm cpp12-12.2.1+git416-150000.1.5.1.aarch64.rpm gcc12-12.2.1+git416-150000.1.5.1.aarch64.rpm gcc12-PIE-12.2.1+git416-150000.1.5.1.aarch64.rpm gcc12-ada-12.2.1+git416-150000.1.5.1.aarch64.rpm gcc12-c++-12.2.1+git416-150000.1.5.1.aarch64.rpm gcc12-d-12.2.1+git416-150000.1.5.1.aarch64.rpm gcc12-fortran-12.2.1+git416-150000.1.5.1.aarch64.rpm gcc12-go-12.2.1+git416-150000.1.5.1.aarch64.rpm gcc12-locale-12.2.1+git416-150000.1.5.1.aarch64.rpm gcc12-obj-c++-12.2.1+git416-150000.1.5.1.aarch64.rpm gcc12-objc-12.2.1+git416-150000.1.5.1.aarch64.rpm gcc12-testresults-12.2.1+git416-150000.1.5.3.aarch64.rpm libada12-12.2.1+git416-150000.1.5.1.aarch64.rpm libasan8-12.2.1+git416-150000.1.5.1.aarch64.rpm libatomic1-12.2.1+git416-150000.1.5.1.aarch64.rpm libgcc_s1-12.2.1+git416-150000.1.5.1.aarch64.rpm libgdruntime3-12.2.1+git416-150000.1.5.1.aarch64.rpm libgfortran5-12.2.1+git416-150000.1.5.1.aarch64.rpm libgo21-12.2.1+git416-150000.1.5.1.aarch64.rpm libgomp1-12.2.1+git416-150000.1.5.1.aarch64.rpm libgphobos3-12.2.1+git416-150000.1.5.1.aarch64.rpm libhwasan0-12.2.1+git416-150000.1.5.1.aarch64.rpm libitm1-12.2.1+git416-150000.1.5.1.aarch64.rpm liblsan0-12.2.1+git416-150000.1.5.1.aarch64.rpm libobjc4-12.2.1+git416-150000.1.5.1.aarch64.rpm libstdc++6-12.2.1+git416-150000.1.5.1.aarch64.rpm libstdc++6-devel-gcc12-12.2.1+git416-150000.1.5.1.aarch64.rpm libstdc++6-locale-12.2.1+git416-150000.1.5.1.aarch64.rpm libstdc++6-pp-12.2.1+git416-150000.1.5.1.aarch64.rpm libtsan2-12.2.1+git416-150000.1.5.1.aarch64.rpm libubsan1-12.2.1+git416-150000.1.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-3818 important SUSE Updates openSUSE-SLE 15.3 This update for rabbitmq-server fixes the following issues: - Ensure maintenance mode state table exists after node [re]boot (bsc#1199431) erlang-rabbitmq-client-3.8.11-150300.3.6.1.x86_64.rpm rabbitmq-server-3.8.11-150300.3.6.1.src.rpm rabbitmq-server-3.8.11-150300.3.6.1.x86_64.rpm rabbitmq-server-plugins-3.8.11-150300.3.6.1.x86_64.rpm erlang-rabbitmq-client-3.8.11-150300.3.6.1.s390x.rpm rabbitmq-server-3.8.11-150300.3.6.1.s390x.rpm rabbitmq-server-plugins-3.8.11-150300.3.6.1.s390x.rpm erlang-rabbitmq-client-3.8.11-150300.3.6.1.ppc64le.rpm rabbitmq-server-3.8.11-150300.3.6.1.ppc64le.rpm rabbitmq-server-plugins-3.8.11-150300.3.6.1.ppc64le.rpm erlang-rabbitmq-client-3.8.11-150300.3.6.1.aarch64.rpm rabbitmq-server-3.8.11-150300.3.6.1.aarch64.rpm rabbitmq-server-plugins-3.8.11-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4011 moderate SUSE Updates openSUSE-SLE 15.3 This update for jsoup fixes the following issues: Updated to version 1.15.3: - CVE-2022-36033: Fixed incorrect sanitization of user input in SafeList.preserveRelativeLinks (bsc#1203459). jsoup-1.15.3-150200.3.6.1.noarch.rpm jsoup-1.15.3-150200.3.6.1.src.rpm jsoup-javadoc-1.15.3-150200.3.6.1.noarch.rpm openSUSE-SLE-15.3-2022-3995 important SUSE Updates openSUSE-SLE 15.3 This update for jackson-databind fixes the following issues: Update to version 2.13.4.2: - CVE-2022-42003: Fixed missing check in primitive value deserializers to avoid deep wrapper array nesting wrt 'UNWRAP_SINGLE_VALUE_ARRAYS' (bsc#1204370). - CVE-2022-42004: Fixed missing check in 'BeanDeserializer._deserializeFromArray()' to prevent use of deeply nested arrays (bsc#1204369). jackson-databind-2.13.4.2-150200.3.12.1.noarch.rpm jackson-databind-2.13.4.2-150200.3.12.1.src.rpm jackson-databind-javadoc-2.13.4.2-150200.3.12.1.noarch.rpm openSUSE-SLE-15.3-2022-3683 critical SUSE Updates openSUSE-SLE 15.3 This update for libksba fixes the following issues: - CVE-2022-3515: Fixed a possible overflow in the TLV parser (bsc#1204357). libksba-1.3.5-150000.4.3.1.src.rpm libksba-devel-1.3.5-150000.4.3.1.x86_64.rpm libksba8-1.3.5-150000.4.3.1.x86_64.rpm libksba-devel-1.3.5-150000.4.3.1.s390x.rpm libksba8-1.3.5-150000.4.3.1.s390x.rpm libksba-devel-1.3.5-150000.4.3.1.ppc64le.rpm libksba8-1.3.5-150000.4.3.1.ppc64le.rpm libksba-devel-1.3.5-150000.4.3.1.aarch64.rpm libksba8-1.3.5-150000.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3781 moderate SUSE Updates openSUSE-SLE 15.3 This update of container-suseconnect is a rebuilt of the previous sources against the current security updated go compiler. container-suseconnect-2.3.0-150000.4.19.2.src.rpm container-suseconnect-2.3.0-150000.4.19.2.x86_64.rpm container-suseconnect-2.3.0-150000.4.19.2.s390x.rpm container-suseconnect-2.3.0-150000.4.19.2.ppc64le.rpm container-suseconnect-2.3.0-150000.4.19.2.aarch64.rpm openSUSE-SLE-15.3-2022-4066 important SUSE Updates openSUSE-SLE 15.3 This update for timezone fixes the following issues: Update timezone version from 2022a to 2022f (bsc#1177460, bsc#1204649, bsc#1205156): - Mexico will no longer observe DST except near the US border - Chihuahua moves to year-round -06 on 2022-10-30 - Fiji no longer observes DST - In vanguard form, GMT is now a Zone and Etc/GMT a link - zic now supports links to links, and vanguard form uses this - Simplify four Ontario zones - Fix a Y2438 bug when reading TZif data - Enable 64-bit time_t on 32-bit glibc platforms - Omit large-file support when no longer needed - Jordan and Syria switch from +02/+03 with DST to year-round +03 - Palestine transitions are now Saturdays at 02:00 - Simplify three Ukraine zones into one - Improve tzselect on intercontinental Zones - Chile's DST is delayed by a week in September 2022 (bsc#1202324) - Iran no longer observes DST after 2022 - Rename Europe/Kiev to Europe/Kyiv - New `zic -R` command option - Vanguard form now uses %z timezone-2022f-150000.75.15.1.src.rpm timezone-2022f-150000.75.15.1.x86_64.rpm timezone-java-2022f-150000.75.15.1.noarch.rpm timezone-java-2022f-150000.75.15.1.src.rpm timezone-2022f-150000.75.15.1.s390x.rpm timezone-2022f-150000.75.15.1.ppc64le.rpm timezone-2022f-150000.75.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-3852 important SUSE Updates openSUSE-SLE 15.3 This update for rsync fixes the following issues: - Add support for `--trust-sender` parameter (bsc#1202970) rsync-3.1.3-150000.4.18.1.src.rpm rsync-3.1.3-150000.4.18.1.x86_64.rpm rsync-3.1.3-150000.4.18.1.s390x.rpm rsync-3.1.3-150000.4.18.1.ppc64le.rpm rsync-3.1.3-150000.4.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-4181 moderate SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: Update release notes from version 15.3.20220407 to version 15.3.20220930 (bsc#933411): - Added note about SUSEConnect tracking (jsc#SLE-23312) - Added note about BCI minimal container (jsc#SLE-22133) - Added note about BCI containers (jsc#SLE-22144) - Added note about XFS V4 filesystem (bsc#1200646) - Updated Java lifecycle (jsc#PED-1590) - Added note about schedutil (bsc#1176440) - Added note about insserv-compat migration failure (bsc#1194837) - Added note about Samba 4.15 (jsc#SLE-23330) release-notes-sles-15.3.20220930-150300.3.29.1.noarch.rpm release-notes-sles-15.3.20220930-150300.3.29.1.src.rpm openSUSE-SLE-15.3-2022-3847 important SUSE Updates openSUSE-SLE 15.3 This feature update for powerpc-utils fixes the following issues: Version update from 1.3.9 to 1.3.10 (jsc#PED-1946): - Fix `lsslot -c mem` output when LMB size is set to 4GB (bsc#1202777) - ppc64_cpu: Add support to parse PAPR information for energy and frequency (bsc#1200465, jsc#SLE-18129, jsc#PED-519) - powerpc-utils: Enhance error message when `lparstat -E` fails on max config systems (bsc#1198956) - drmgr: Add support for 'acc' command (jsc#SLE-18644) - hcn-init.service: Add 'RemainAfterExit=yes' - man/drmgr: fix multiple typos - hcnmgr: Add new feature "wicked" in HNV FEATURE list - hcnmgr: Update Makefile and powerpc-utils spec file to support HNV and wicked - hcnmgr: Fix NM HNV setting primary slave - hcnmgr: Add hcn-init.service.suse - hcnmgr: Maintain hcnid state for later cleanup - hcnmgr: Support wicked HNV using new wicked functions for bonding - hcnmgr: Add new wicked functions for SUSE to manage bonding - hcnmgr: Factor out NetworkManager `nmcli` code - hcnmgr: Validate connection manager and add tracing option - bootlist: Fix invalid hex number message - bootlist: Fix passing `-l` flag to `kpartx` as `-p` delimiter value - lsslot: Fix memory leak when listing IO slots - lsslot: Add new DRC type description strings for latest PCIe slot types - lparstat: Report LPAR name from lparcfg - errinjct: Sanitize devspec output of a newline if one is present - lparstat: Fix reported online memory in legacy format - ofpathname: Add support for NVMf devices - ofpathname: Fix nvme support in ANA mode - hcnmgr: Support vNIC as backup device - hcnmgr: Avoid hexdump squeezing consecutive identical bytes - lsdevinfo: Optimize criteria filtering powerpc-utils-1.3.10-150300.9.26.1.ppc64le.rpm powerpc-utils-1.3.10-150300.9.26.1.src.rpm openSUSE-SLE-15.3-2022-4491 important SUSE Updates openSUSE-SLE 15.3 This update for libsodium, python-Django, python-PyNaCl, python-cffi, python-hypothesis, python-packaging, python-readthedocs-sphinx-ext, python-semver, python-sphinx_rtd_theme fixes the following issues: libsodium: - Version update from 1.0.16 to 1.0.18 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629) * Enterprise versions of Visual Studio are now supported * Visual Studio 2019 is now supported * 32-bit binaries for Visual Studio 2010 are now provided * Emscripten: print and printErr functions are overridden to send errors to the console, if there is one * Emscripten: UTF8ToString() is now exported since Pointer_stringify() has been deprecated * Libsodium version detection has been fixed in the CMake recipe * Generic hashing got a 10% speedup on AVX2. * New target: WebAssembly/WASI (compile with dist-builds/wasm32-wasi.sh) * New functions to map a hash to an edwards25519 point or get a random point: core_ed25519_from_hash() and core_ed25519_random() * crypto_core_ed25519_scalar_mul() has been implemented for scalar*scalar (mod L) multiplication * Support for the Ristretto group has been implemented for interoperability with wasm-crypto * Improvements have been made to the test suite * Portability improvements have been made * 'randombytes_salsa20' has been 'renamed to randombytes_internal' * Support for NativeClient has been removed * Most ((nonnull)) attributes have been relaxed to allow 0-length inputs to be NULL. * The -ftree-vectorize and -ftree-slp-vectorize compiler switches are now used, if available, for optimized builds * For the full list of changes please consult the packaged ChangeLog - Disable LTO to bypass build failures on Power PC architecture (bsc#1148184) python-cffi: - Version update from 1.11.2 to 1.15.0 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629) * Fixed MANIFEST.in to include missing file for Windows arm64 support * Fixed Linux wheel build to use gcc default ISA for libffi * Updated setup.py Python trove specifiers to currently-tested Python versions * CPython 3.10 support (including wheels) * MacOS arm64 support (including wheels) * Initial Windows arm64 support * Misc. doc and test updates - Fix for using to proper void returning function not to corrupt memory in tests. (bsc#1111657) python-Django: - New package at version 2.0.7 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629) python-hypothesis: - Version update from 3.40.1 to 3.76.0 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629) * This release deprecates using floats for min_size and max_size * The type hint for average_size arguments has been changed from Optional[int] to None, because non-None values are always ignored and deprecated. * Fix a broken link in a docstring * Deprecate the use of 'min_size=None', setting the mdefault min_size to 0 * Strategies are now fully constructed and validated before the timer is started * Fix some broken formatting and links in the documentation * Check that the value of the print_blob setting is a PrintSettings instance * Being able to specify a boolean value was not intended, and is now deprecated. In addition, specifying True will now cause the blob to always be printed, instead of causing it to be suppressed. * Specifying any value that is not a PrintSettings or a boolean is now an error * Changes the documentation for hypothesis.strategies.datetimes, hypothesis.strategies.dates, hypothesis.strategies.times to use the new parameter names min_value and max_value instead of the deprecated names * Ensure that Hypothesis deprecation warnings display the code that emitted them when you’re not running in -Werror mode * For the full list of changes please consult the changelog at https://hypothesis.readthedocs.io/en/latest/changes.html#v3-76-0 python-packaging: - Version update from 16.8 to 21.3 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629) * Fix testsuite on big-endian targets * Ignore python3.6.2 since the test doesn't support it * Replace the blank pyparsing 3 exclusion with a 3.0.5 exclusion * Fix a spelling mistake * Work around dependency generator issues (bsc#1186870) * Remove dependency on attrs (bsc#1144506) * Update documentation entry for 21.1. * Update pin to pyparsing to exclude 3.0.0. * PEP 656: musllinux support * Drop support for Python 2.7, Python 3.4 and Python 3.5. * Replace distutils usage with sysconfig * Add support for zip files in `parse_sdist_filename` * Use cached `_hash` attribute to short-circuit tag equality comparisons * Specify the default value for the `specifier` argument to `SpecifierSet` * Proper keyword-only "warn" argument in packaging.tags * Correctly remove prerelease suffixes from ~= check * Fix type hints for `Version.post`` and `Version.dev` * Use typing alias `UnparsedVersion`` * Improve type inference for `packaging.specifiers.filter()` * Tighten the return type of `canonicalize_version()` * For the full list of changes please consult the packaged CHANGELOG file python-PyNaCl: - Version update from 1.2.1 to 1.4.0 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629) * Add dependency requirement to python-six, needed by the testsuite * Update `libsodium` to 1.0.18. * **BACKWARDS INCOMPATIBLE:** We no longer distribute 32-bit `manylinux1` wheels. Continuing to produce them was a maintenance burden. * Added support for Python 3.8, and removed support for Python 3.4. * Add low level bindings for extracting the seed and the public key from crypto_sign_ed25519 secret key * Add low level bindings for deterministic random generation. * Add `wheel` and `setuptools` setup_requirements in `setup.py` * Fix checks on very slow builders (#481, #495) * Add low-level bindings to ed25519 arithmetic functions * Update low-level blake2b state implementation * Fix wrong short-input behavior of SealedBox.decrypt() * Raise CryptPrefixError exception instead of InvalidkeyError when trying to check a password against a verifier stored in a unknown format * Add support for minimal builds of libsodium. Trying to call functions not available in a minimal build will raise an UnavailableError exception. To compile a minimal build of the bundled libsodium, set the SODIUM_INSTALL_MINIMAL environment variable to any non-empty string (e.g. `SODIUM_INSTALL_MINIMAL=1`) for setup. python-semver: - New package at version 2.13.0 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629) python-sphinx_rtd_theme: - Version update from 0.2.4 to 0.5.1 (bsc#1199282, jsc#PM-3243, jsc#SLE-24629) * Add github, gitlab, bitbucket page arguments option * Add html language attribute * Add language to the JS output variable * Add open list spacing * Add option to style external links * Add pygments support * Add setuptools entry point allowing to use sphinx_rtd_theme as Sphinx html_theme directly. * Add Sphinx as a dependency * Allow setting 'rel' and 'title' attributes for stylesheets * Changed code and literals to use a native font stack * Color accessibility improvements on the left navigation * Compress our Javascript files * Do not rely on readthedocs.org for CSS/JS * Fix line height adjustments for Liberation Mono * Fix line number spacing to align with the code lines * Fix many sidebar glitches * Fix many styling issues * Fix mkdocs version selector * Fix small styling issues * Fix some HTML warnings and errors * Fix table centering * Hide Edit links on auto created pages * Include missing font files with the theme * Updated dependencies * Write theme version and build date at top of JavaScript and CSS libsodium-1.0.18-150000.4.6.1.src.rpm libsodium-devel-1.0.18-150000.4.6.1.x86_64.rpm libsodium23-1.0.18-150000.4.6.1.x86_64.rpm libsodium23-32bit-1.0.18-150000.4.6.1.x86_64.rpm python-PyNaCl-1.4.0-150000.3.6.6.src.rpm python-hypothesis-3.76.0-150000.3.3.1.src.rpm python-sphinx_rtd_theme-0.5.1-150000.3.5.1.src.rpm python2-PyNaCl-1.4.0-150000.3.6.6.x86_64.rpm python2-hypothesis-3.76.0-150000.3.3.1.noarch.rpm python2-sphinx_rtd_theme-0.5.1-150000.3.5.1.noarch.rpm python3-PyNaCl-1.4.0-150000.3.6.6.x86_64.rpm python3-hypothesis-3.76.0-150000.3.3.1.noarch.rpm python3-sphinx_rtd_theme-0.5.1-150000.3.5.1.noarch.rpm libsodium-devel-1.0.18-150000.4.6.1.s390x.rpm libsodium23-1.0.18-150000.4.6.1.s390x.rpm python2-PyNaCl-1.4.0-150000.3.6.6.s390x.rpm python3-PyNaCl-1.4.0-150000.3.6.6.s390x.rpm libsodium-devel-1.0.18-150000.4.6.1.ppc64le.rpm libsodium23-1.0.18-150000.4.6.1.ppc64le.rpm python2-PyNaCl-1.4.0-150000.3.6.6.ppc64le.rpm python3-PyNaCl-1.4.0-150000.3.6.6.ppc64le.rpm libsodium-devel-1.0.18-150000.4.6.1.aarch64.rpm libsodium23-1.0.18-150000.4.6.1.aarch64.rpm python2-PyNaCl-1.4.0-150000.3.6.6.aarch64.rpm python3-PyNaCl-1.4.0-150000.3.6.6.aarch64.rpm openSUSE-SLE-15.3-2022-3932 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-rsa fixes the following issues: - CVE-2020-25658: Fixed bleichenbacher timing oracle attack against RSA decryption (bsc#1178676). python-rsa-3.4.2-150000.3.7.1.src.rpm python2-rsa-3.4.2-150000.3.7.1.noarch.rpm python3-rsa-3.4.2-150000.3.7.1.noarch.rpm openSUSE-SLE-15.3-2022-3981 moderate SUSE Updates openSUSE-SLE 15.3 This update for bluez fixes the following issues: - CVE-2021-43400: Fixed use-after-free in gatt-database.c (bsc#1192394). - CVE-2021-3658: Fixed adapter incorrectly restoring discoverable state after powered down (bsc#1188859). bluez-5.55-150300.3.14.1.src.rpm bluez-5.55-150300.3.14.1.x86_64.rpm bluez-auto-enable-devices-5.55-150300.3.14.1.noarch.rpm bluez-cups-5.55-150300.3.14.1.x86_64.rpm bluez-deprecated-5.55-150300.3.14.1.x86_64.rpm bluez-devel-32bit-5.55-150300.3.14.1.x86_64.rpm bluez-devel-5.55-150300.3.14.1.x86_64.rpm bluez-test-5.55-150300.3.14.1.x86_64.rpm libbluetooth3-32bit-5.55-150300.3.14.1.x86_64.rpm libbluetooth3-5.55-150300.3.14.1.x86_64.rpm bluez-5.55-150300.3.14.1.s390x.rpm bluez-cups-5.55-150300.3.14.1.s390x.rpm bluez-deprecated-5.55-150300.3.14.1.s390x.rpm bluez-devel-5.55-150300.3.14.1.s390x.rpm bluez-test-5.55-150300.3.14.1.s390x.rpm libbluetooth3-5.55-150300.3.14.1.s390x.rpm bluez-5.55-150300.3.14.1.ppc64le.rpm bluez-cups-5.55-150300.3.14.1.ppc64le.rpm bluez-deprecated-5.55-150300.3.14.1.ppc64le.rpm bluez-devel-5.55-150300.3.14.1.ppc64le.rpm bluez-test-5.55-150300.3.14.1.ppc64le.rpm libbluetooth3-5.55-150300.3.14.1.ppc64le.rpm bluez-5.55-150300.3.14.1.aarch64.rpm bluez-cups-5.55-150300.3.14.1.aarch64.rpm bluez-deprecated-5.55-150300.3.14.1.aarch64.rpm bluez-devel-5.55-150300.3.14.1.aarch64.rpm bluez-test-5.55-150300.3.14.1.aarch64.rpm libbluetooth3-5.55-150300.3.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-3982 moderate SUSE Updates openSUSE-SLE 15.3 This update for freerdp fixes the following issues: - CVE-2022-39282: Fix to init data read by `/parallel` command line switch. (bsc#1204258) - CVE-2022-39283: Fix to prevent video channel from reading uninitialized data. (bsc#1204257) freerdp-2.1.2-150200.15.21.1.src.rpm freerdp-2.1.2-150200.15.21.1.x86_64.rpm freerdp-devel-2.1.2-150200.15.21.1.x86_64.rpm freerdp-proxy-2.1.2-150200.15.21.1.x86_64.rpm freerdp-server-2.1.2-150200.15.21.1.x86_64.rpm freerdp-wayland-2.1.2-150200.15.21.1.x86_64.rpm libfreerdp2-2.1.2-150200.15.21.1.x86_64.rpm libuwac0-0-2.1.2-150200.15.21.1.x86_64.rpm libwinpr2-2.1.2-150200.15.21.1.x86_64.rpm uwac0-0-devel-2.1.2-150200.15.21.1.x86_64.rpm winpr2-devel-2.1.2-150200.15.21.1.x86_64.rpm freerdp-2.1.2-150200.15.21.1.s390x.rpm freerdp-devel-2.1.2-150200.15.21.1.s390x.rpm freerdp-proxy-2.1.2-150200.15.21.1.s390x.rpm freerdp-server-2.1.2-150200.15.21.1.s390x.rpm freerdp-wayland-2.1.2-150200.15.21.1.s390x.rpm libfreerdp2-2.1.2-150200.15.21.1.s390x.rpm libuwac0-0-2.1.2-150200.15.21.1.s390x.rpm libwinpr2-2.1.2-150200.15.21.1.s390x.rpm uwac0-0-devel-2.1.2-150200.15.21.1.s390x.rpm winpr2-devel-2.1.2-150200.15.21.1.s390x.rpm freerdp-2.1.2-150200.15.21.1.ppc64le.rpm freerdp-devel-2.1.2-150200.15.21.1.ppc64le.rpm freerdp-proxy-2.1.2-150200.15.21.1.ppc64le.rpm freerdp-server-2.1.2-150200.15.21.1.ppc64le.rpm freerdp-wayland-2.1.2-150200.15.21.1.ppc64le.rpm libfreerdp2-2.1.2-150200.15.21.1.ppc64le.rpm libuwac0-0-2.1.2-150200.15.21.1.ppc64le.rpm libwinpr2-2.1.2-150200.15.21.1.ppc64le.rpm uwac0-0-devel-2.1.2-150200.15.21.1.ppc64le.rpm winpr2-devel-2.1.2-150200.15.21.1.ppc64le.rpm freerdp-2.1.2-150200.15.21.1.aarch64.rpm freerdp-devel-2.1.2-150200.15.21.1.aarch64.rpm freerdp-proxy-2.1.2-150200.15.21.1.aarch64.rpm freerdp-server-2.1.2-150200.15.21.1.aarch64.rpm freerdp-wayland-2.1.2-150200.15.21.1.aarch64.rpm libfreerdp2-2.1.2-150200.15.21.1.aarch64.rpm libuwac0-0-2.1.2-150200.15.21.1.aarch64.rpm libwinpr2-2.1.2-150200.15.21.1.aarch64.rpm uwac0-0-devel-2.1.2-150200.15.21.1.aarch64.rpm winpr2-devel-2.1.2-150200.15.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-4233 low SUSE Updates openSUSE-SLE 15.3 This update for publicsuffix fixes the following issues: - Update to version 20220903 publicsuffix-20220903-150000.3.12.1.noarch.rpm publicsuffix-20220903-150000.3.12.1.src.rpm openSUSE-SLE-15.3-2022-4232 low SUSE Updates openSUSE-SLE 15.3 This update for llvm11 fixes the following issues: - The LLVM test suite expects specific compressed binary payload but with IBM z HW compression that payload can vary and not match the software implementation, fixes testsuite errors (bsc#1189602) clang-tools-11.0.1-150300.3.3.1.x86_64.rpm clang11-11.0.1-150300.3.3.1.x86_64.rpm clang11-devel-11.0.1-150300.3.3.1.x86_64.rpm clang11-devel-32bit-11.0.1-150300.3.3.1.x86_64.rpm clang11-doc-11.0.1-150300.3.3.1.noarch.rpm libLLVM11-11.0.1-150300.3.3.1.x86_64.rpm libLLVM11-32bit-11.0.1-150300.3.3.1.x86_64.rpm libLTO11-11.0.1-150300.3.3.1.x86_64.rpm libLTO11-32bit-11.0.1-150300.3.3.1.x86_64.rpm libc++-devel-11.0.1-150300.3.3.1.x86_64.rpm libc++1-11.0.1-150300.3.3.1.x86_64.rpm libc++abi-devel-11.0.1-150300.3.3.1.x86_64.rpm libc++abi1-11.0.1-150300.3.3.1.x86_64.rpm libclang11-11.0.1-150300.3.3.1.x86_64.rpm libclang11-32bit-11.0.1-150300.3.3.1.x86_64.rpm liblldb11-11.0.1-150300.3.3.1.x86_64.rpm libomp11-devel-11.0.1-150300.3.3.1.x86_64.rpm lld11-11.0.1-150300.3.3.1.x86_64.rpm lldb11-11.0.1-150300.3.3.1.x86_64.rpm lldb11-devel-11.0.1-150300.3.3.1.x86_64.rpm llvm11-11.0.1-150300.3.3.1.src.rpm llvm11-11.0.1-150300.3.3.1.x86_64.rpm llvm11-LTO-devel-11.0.1-150300.3.3.1.x86_64.rpm llvm11-LTO-devel-32bit-11.0.1-150300.3.3.1.x86_64.rpm llvm11-devel-11.0.1-150300.3.3.1.x86_64.rpm llvm11-devel-32bit-11.0.1-150300.3.3.1.x86_64.rpm llvm11-doc-11.0.1-150300.3.3.1.noarch.rpm llvm11-gold-11.0.1-150300.3.3.1.x86_64.rpm llvm11-opt-viewer-11.0.1-150300.3.3.1.noarch.rpm llvm11-polly-11.0.1-150300.3.3.1.x86_64.rpm llvm11-polly-devel-11.0.1-150300.3.3.1.x86_64.rpm llvm11-vim-plugins-11.0.1-150300.3.3.1.noarch.rpm python3-clang-11.0.1-150300.3.3.1.noarch.rpm python3-lldb11-11.0.1-150300.3.3.1.x86_64.rpm clang-tools-11.0.1-150300.3.3.1.s390x.rpm clang11-11.0.1-150300.3.3.1.s390x.rpm clang11-devel-11.0.1-150300.3.3.1.s390x.rpm libLLVM11-11.0.1-150300.3.3.1.s390x.rpm libLTO11-11.0.1-150300.3.3.1.s390x.rpm libclang11-11.0.1-150300.3.3.1.s390x.rpm lld11-11.0.1-150300.3.3.1.s390x.rpm llvm11-11.0.1-150300.3.3.1.s390x.rpm llvm11-LTO-devel-11.0.1-150300.3.3.1.s390x.rpm llvm11-devel-11.0.1-150300.3.3.1.s390x.rpm llvm11-gold-11.0.1-150300.3.3.1.s390x.rpm llvm11-polly-11.0.1-150300.3.3.1.s390x.rpm llvm11-polly-devel-11.0.1-150300.3.3.1.s390x.rpm clang-tools-11.0.1-150300.3.3.1.ppc64le.rpm clang11-11.0.1-150300.3.3.1.ppc64le.rpm clang11-devel-11.0.1-150300.3.3.1.ppc64le.rpm libLLVM11-11.0.1-150300.3.3.1.ppc64le.rpm libLTO11-11.0.1-150300.3.3.1.ppc64le.rpm libclang11-11.0.1-150300.3.3.1.ppc64le.rpm libomp11-devel-11.0.1-150300.3.3.1.ppc64le.rpm lld11-11.0.1-150300.3.3.1.ppc64le.rpm llvm11-11.0.1-150300.3.3.1.ppc64le.rpm llvm11-LTO-devel-11.0.1-150300.3.3.1.ppc64le.rpm llvm11-devel-11.0.1-150300.3.3.1.ppc64le.rpm llvm11-gold-11.0.1-150300.3.3.1.ppc64le.rpm llvm11-polly-11.0.1-150300.3.3.1.ppc64le.rpm llvm11-polly-devel-11.0.1-150300.3.3.1.ppc64le.rpm clang-tools-11.0.1-150300.3.3.1.aarch64.rpm clang11-11.0.1-150300.3.3.1.aarch64.rpm clang11-devel-11.0.1-150300.3.3.1.aarch64.rpm libLLVM11-11.0.1-150300.3.3.1.aarch64.rpm libLTO11-11.0.1-150300.3.3.1.aarch64.rpm libc++-devel-11.0.1-150300.3.3.1.aarch64.rpm libc++1-11.0.1-150300.3.3.1.aarch64.rpm libc++abi-devel-11.0.1-150300.3.3.1.aarch64.rpm libc++abi1-11.0.1-150300.3.3.1.aarch64.rpm libclang11-11.0.1-150300.3.3.1.aarch64.rpm libomp11-devel-11.0.1-150300.3.3.1.aarch64.rpm lld11-11.0.1-150300.3.3.1.aarch64.rpm llvm11-11.0.1-150300.3.3.1.aarch64.rpm llvm11-LTO-devel-11.0.1-150300.3.3.1.aarch64.rpm llvm11-devel-11.0.1-150300.3.3.1.aarch64.rpm llvm11-gold-11.0.1-150300.3.3.1.aarch64.rpm llvm11-polly-11.0.1-150300.3.3.1.aarch64.rpm llvm11-polly-devel-11.0.1-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-4133 low SUSE Updates openSUSE-SLE 15.3 This update for python-webencodings fixes the following issue: - Loose the filelist for the package info to avoid build failure (bsc#1203743) python-webencodings-0.5.1-150000.3.3.1.src.rpm python2-webencodings-0.5.1-150000.3.3.1.noarch.rpm python3-webencodings-0.5.1-150000.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-4018 low SUSE Updates openSUSE-SLE 15.3 This update for python-service_identity fixes the following issues: - Loose the filelist for the package info to avoid build failure (bsc#1203743) python-service_identity-18.1.0-150200.3.5.1.src.rpm python2-service_identity-18.1.0-150200.3.5.1.noarch.rpm python3-service_identity-18.1.0-150200.3.5.1.noarch.rpm openSUSE-SLE-15.3-2022-4134 low SUSE Updates openSUSE-SLE 15.3 This update for python-crcmod fixes the following issues: - Replace python-base with python-devel in BuildRequires (bsc#1203453) python-crcmod-1.7-150200.5.6.1.src.rpm python2-crcmod-1.7-150200.5.6.1.x86_64.rpm python3-crcmod-1.7-150200.5.6.1.x86_64.rpm python2-crcmod-1.7-150200.5.6.1.s390x.rpm python3-crcmod-1.7-150200.5.6.1.s390x.rpm python2-crcmod-1.7-150200.5.6.1.ppc64le.rpm python3-crcmod-1.7-150200.5.6.1.ppc64le.rpm python2-crcmod-1.7-150200.5.6.1.aarch64.rpm python3-crcmod-1.7-150200.5.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4200 low SUSE Updates openSUSE-SLE 15.3 This update for perl-DBD-SQLite fixes the following issues: - Fixed a failing test when comparing lowercase data (bsc#1203742) perl-DBD-SQLite-1.66-150300.3.6.1.src.rpm perl-DBD-SQLite-1.66-150300.3.6.1.x86_64.rpm perl-DBD-SQLite-1.66-150300.3.6.1.s390x.rpm perl-DBD-SQLite-1.66-150300.3.6.1.ppc64le.rpm perl-DBD-SQLite-1.66-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3773 important SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2022-32221: Fixed POST following PUT confusion (bsc#1204383). curl-7.66.0-150200.4.42.1.src.rpm curl-7.66.0-150200.4.42.1.x86_64.rpm libcurl-devel-32bit-7.66.0-150200.4.42.1.x86_64.rpm libcurl-devel-7.66.0-150200.4.42.1.x86_64.rpm libcurl4-32bit-7.66.0-150200.4.42.1.x86_64.rpm libcurl4-7.66.0-150200.4.42.1.x86_64.rpm curl-7.66.0-150200.4.42.1.s390x.rpm libcurl-devel-7.66.0-150200.4.42.1.s390x.rpm libcurl4-7.66.0-150200.4.42.1.s390x.rpm curl-7.66.0-150200.4.42.1.ppc64le.rpm libcurl-devel-7.66.0-150200.4.42.1.ppc64le.rpm libcurl4-7.66.0-150200.4.42.1.ppc64le.rpm curl-7.66.0-150200.4.42.1.aarch64.rpm libcurl-devel-7.66.0-150200.4.42.1.aarch64.rpm libcurl4-7.66.0-150200.4.42.1.aarch64.rpm openSUSE-SLE-15.3-2022-4172 moderate SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sled fixes the following issues: Version update of release notes from 15.3.20220831 to 15.3.20220930 (bsc#933411): - Added note about SUSEConnect tracking (jsc#SLE-23312) release-notes-sled-15.3.20220930-150300.3.9.1.noarch.rpm release-notes-sled-15.3.20220930-150300.3.9.1.src.rpm openSUSE-SLE-15.3-2022-3776 important SUSE Updates openSUSE-SLE 15.3 This update for permissions fixes the following issues: - Revert changes that replaced ping capabilities with ICMP_PROTO sockets. Older SUSE Linux Enterprise versions don't properly support ICMP_PROTO sockets feature yet (bsc#1204137) - Fix regression introduced by backport of security fix (bsc#1203911) permissions-20181225-150200.23.20.1.src.rpm permissions-20181225-150200.23.20.1.x86_64.rpm permissions-zypp-plugin-20181225-150200.23.20.1.noarch.rpm permissions-20181225-150200.23.20.1.s390x.rpm permissions-20181225-150200.23.20.1.ppc64le.rpm permissions-20181225-150200.23.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-3726 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: - Updated to version 102.4.0 ESR (bsc#1204421) - CVE-2022-42927: Fixed same-origin policy violation that could have leaked cross-origin URLs. - CVE-2022-42928: Fixed memory Corruption in JS Engine. - CVE-2022-42929: Fixed denial of Service via window.print. - CVE-2022-42932: Fixed memory safety bugs. MozillaFirefox-102.4.0-150200.152.64.1.src.rpm MozillaFirefox-102.4.0-150200.152.64.1.x86_64.rpm MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.x86_64.rpm MozillaFirefox-devel-102.4.0-150200.152.64.1.x86_64.rpm MozillaFirefox-translations-common-102.4.0-150200.152.64.1.x86_64.rpm MozillaFirefox-translations-other-102.4.0-150200.152.64.1.x86_64.rpm MozillaFirefox-102.4.0-150200.152.64.1.s390x.rpm MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.s390x.rpm MozillaFirefox-devel-102.4.0-150200.152.64.1.s390x.rpm MozillaFirefox-translations-common-102.4.0-150200.152.64.1.s390x.rpm MozillaFirefox-translations-other-102.4.0-150200.152.64.1.s390x.rpm MozillaFirefox-102.4.0-150200.152.64.1.ppc64le.rpm MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.ppc64le.rpm MozillaFirefox-devel-102.4.0-150200.152.64.1.ppc64le.rpm MozillaFirefox-translations-common-102.4.0-150200.152.64.1.ppc64le.rpm MozillaFirefox-translations-other-102.4.0-150200.152.64.1.ppc64le.rpm MozillaFirefox-102.4.0-150200.152.64.1.aarch64.rpm MozillaFirefox-branding-upstream-102.4.0-150200.152.64.1.aarch64.rpm MozillaFirefox-devel-102.4.0-150200.152.64.1.aarch64.rpm MozillaFirefox-translations-common-102.4.0-150200.152.64.1.aarch64.rpm MozillaFirefox-translations-other-102.4.0-150200.152.64.1.aarch64.rpm openSUSE-SLE-15.3-2022-3800 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 102.4.0 (bsc#1204421) * changed: Thunderbird will automatically detect and repair OpenPGP key storage corruption caused by using the profile import tool in Thunderbird 102 * fixed: POP message download into a large folder (~13000 messages) caused Thunderbird to temporarily freeze * fixed: Forwarding messages with special characters in Subject failed on Windows * fixed: Links for FileLink attachments were not added when attachment filename contained Unicode characters * fixed: Address Book display pane continued to show contacts after deletion * fixed: Printing address book did not include all contact details * fixed: CardDAV contacts without a Name property did not save to Google Contacts * fixed: "Publish Calendar" did not work * fixed: Calendar database storage improvements * fixed: Incorrectly handled error responses from CalDAV servers sometimes caused events to disappear from calendar * fixed: Various visual and UX improvements - Mozilla Thunderbird 102.3.3 * new: Option added to show containing address book for a contact when using `All Address Books` in vertical mode (bmo#1778871) * changed: Thunderbird will try to use POP NTLM authentication even if not advertised by server (bmo#1793349) * changed: Task List and Today Pane sidebars will no longer load when not visible (bmo#1788549) * fixed: Sending a message while a recipient pill was being modified did not save changes (bmo#1779785) * fixed: Nickname column was not available in horizontal view of Address Book (bmo#1778000) * fixed: Multiline organization values were displayed across two columns in horizontal view of Address Book (bmo#1777780) * fixed: Contact vCard fields with multiple values such as Categories were truncated when saved (bmo#1792399) * fixed: ICS calendar files with a `FREEBUSY` property could not be imported (bmo#1783441) * fixed: Thunderbird would hang if calendar event exceeded the year 2035 (bmo#1789999) - Mozilla Thunderbird 102.3.2 * changed: Thunderbird will try to use POP CRAM-MD5 authentication even if not advertised by server (bmo#1789975) * fixed: Checking messages on POP3 accounts caused POP folder to lock if mail server was slow or non-responsive (bmo#1792451) * fixed: Newsgroups named with consecutive dots would not appear when refreshing list of newsgroups (bmo#1787789) * fixed: Sending news articles containing lines starting with dot were sometimes clipped (bmo#1787955) * fixed: CardDAV server sync silently failed if sync token expired (bmo#1791183) * fixed: Contacts from LDAP on macOS address books were not displayed (bmo#1791347) * fixed: Chat account input now accepts URIs for supported chat protocols (bmo#1776706) * fixed: Chat ScreenName field was not migrated to new address book (bmo#1789990) * fixed: Creating a New Event from the Today Pane used the currently selected day from the main calendar instead of from the Today Pane (bmo#1791203) * fixed: `New Event` button in Today Pane was incorrectly disabled sometimes (bmo#1792058) * fixed: Event reminder windows did not close after being dismissed or snoozed (bmo#1791228) * fixed: Improved performance of recurring event date calculation (bmo#1787677) * fixed: Quarterly calendar events on the last day of the month repeated one month early (bmo#1789362) * fixed: Thunderbird would hang if calendar event exceeded the year 2035 (bmo#1789999) * fixed: Whitespace in calendar events was incorrectly handled when upgrading from Thunderbird 91 to 102 (bmo#1790339) * fixed: Various visual and UX improvements (bmo#1755623,bmo#17 83903,bmo#1785851,bmo#1786434,bmo#1787286,bmo#1788151,bmo#178 9728,bmo#1790499) - Mozilla Thunderbird 102.3.1 * changed: Compose window encryption options now only appear for encryption technologies that have already been configured (bmo#1788988) * changed: Number of contacts in currently selected address book now displayed at bottom of Address Book list column (bmo#1745571) * fixed: Password prompt did not include server hostname for POP servers (bmo#1786920) * fixed: `Edit Contact` was missing from Contacts sidebar context menus (bmo#1771795) * fixed: Address Book contact lists cut off display of some characters, the result being unreadable (bmo#1780909) * fixed: Menu items for dark-themed alarm dialog were invisible on Windows 7 (bmo#1791738) * fixed: Various security fixes MFSA 2022-43 (bsc#1204411) * CVE-2022-39249 (bmo#1791765) Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators * CVE-2022-39250 (bmo#1791765) Matrix SDK bundled with Thunderbird vulnerable to a device verification attack * CVE-2022-39251 (bmo#1791765) Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack * CVE-2022-39236 (bmo#1791765) Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue - Mozilla Thunderbird 102.3 * changed: Thunderbird will no longer attempt to import account passwords when importing from another Thunderbird profile in order to prevent profile corruption and permanent data loss. (bmo#1790605) * changed: Devtools performance profile will use Thunderbird presets instead of Web Developer presets (bmo#1785954) * fixed: Thunderbird startup performance improvements (bmo#1785967) * fixed: Saving email source and images failed (bmo#1777323,bmo#1778804) * fixed: Error message was shown repeatedly when temporary disk space was full (bmo#1788580) * fixed: Attaching OpenPGP keys without a set size to non- encrypted messages briefly displayed a size of zero bytes (bmo#1788952) * fixed: Global Search entry box initially contained "undefined" (bmo#1780963) * fixed: Delete from POP Server mail filter rule intermittently failed to trigger (bmo#1789418) * fixed: Connections to POP3 servers without UIDL support failed (bmo#1789314) * fixed: Pop accounts with "Fetch headers only" set downloaded complete messages if server did not advertise TOP capability (bmo#1789356) * fixed: "File -> New -> Address Book Contact" from Compose window did not work (bmo#1782418) * fixed: Attach "My vCard" option in compose window was not available (bmo#1787614) * fixed: Improved performance of matching a contact to an email address (bmo#1782725) * fixed: Address book only recognized a contact's first two email addresses (bmo#1777156) * fixed: Address book search and autocomplete failed if a contact vCard could not be parsed (bmo#1789793) * fixed: Downloading NNTP messages for offline use failed (bmo#1785773) * fixed: NNTP client became stuck when connecting to Public- Inbox servers (bmo#1786203) * fixed: Various visual and UX improvements (bmo#1782235,bmo#1787448,bmo#1788725,bmo#1790324) * fixed: Various security fixes * unresolved: No dedicated "Department" field in address book (bmo#1777780) MFSA 2022-42 (bsc#1203477) * CVE-2022-3266 (bmo#1767360) Out of bounds read when decoding H264 * CVE-2022-40959 (bmo#1782211) Bypassing FeaturePolicy restrictions on transient pages * CVE-2022-40960 (bmo#1787633) Data-race when parsing non-UTF-8 URLs in threads * CVE-2022-40958 (bmo#1779993) Bypassing Secure Context restriction for cookies with __Host and __Secure prefix * CVE-2022-40956 (bmo#1770094) Content-Security-Policy base-uri bypass * CVE-2022-40957 (bmo#1777604) Incoherent instruction cache when building WASM on ARM64 * CVE-2022-3155 (bmo#1789061) Attachment files saved to disk on macOS could be executed without warning * CVE-2022-40962 (bmo#1776655, bmo#1777574, bmo#1784835, bmo#1785109, bmo#1786502, bmo#1789440) Memory safety bugs fixed in Thunderbird 102.3 MozillaThunderbird-102.4.0-150200.8.85.1.src.rpm MozillaThunderbird-102.4.0-150200.8.85.1.x86_64.rpm MozillaThunderbird-translations-common-102.4.0-150200.8.85.1.x86_64.rpm MozillaThunderbird-translations-other-102.4.0-150200.8.85.1.x86_64.rpm MozillaThunderbird-102.4.0-150200.8.85.1.s390x.rpm MozillaThunderbird-translations-common-102.4.0-150200.8.85.1.s390x.rpm MozillaThunderbird-translations-other-102.4.0-150200.8.85.1.s390x.rpm MozillaThunderbird-102.4.0-150200.8.85.1.ppc64le.rpm MozillaThunderbird-translations-common-102.4.0-150200.8.85.1.ppc64le.rpm MozillaThunderbird-translations-other-102.4.0-150200.8.85.1.ppc64le.rpm MozillaThunderbird-102.4.0-150200.8.85.1.aarch64.rpm MozillaThunderbird-translations-common-102.4.0-150200.8.85.1.aarch64.rpm MozillaThunderbird-translations-other-102.4.0-150200.8.85.1.aarch64.rpm openSUSE-SLE-15.3-2022-3986 moderate SUSE Updates openSUSE-SLE 15.3 This update for libX11 fixes the following issues: - CVE-2022-3554: Fixed memory leak in XRegisterIMInstantiateCallback() (bsc#1204422). - CVE-2022-3555: Fixed memory leak in _XFreeX11XCBStructure() (bsc#1204425). libX11-1.6.5-150000.3.24.1.src.rpm libX11-6-1.6.5-150000.3.24.1.x86_64.rpm libX11-6-32bit-1.6.5-150000.3.24.1.x86_64.rpm libX11-data-1.6.5-150000.3.24.1.noarch.rpm libX11-devel-1.6.5-150000.3.24.1.x86_64.rpm libX11-devel-32bit-1.6.5-150000.3.24.1.x86_64.rpm libX11-xcb1-1.6.5-150000.3.24.1.x86_64.rpm libX11-xcb1-32bit-1.6.5-150000.3.24.1.x86_64.rpm libX11-6-1.6.5-150000.3.24.1.s390x.rpm libX11-devel-1.6.5-150000.3.24.1.s390x.rpm libX11-xcb1-1.6.5-150000.3.24.1.s390x.rpm libX11-6-1.6.5-150000.3.24.1.ppc64le.rpm libX11-devel-1.6.5-150000.3.24.1.ppc64le.rpm libX11-xcb1-1.6.5-150000.3.24.1.ppc64le.rpm libX11-6-1.6.5-150000.3.24.1.aarch64.rpm libX11-devel-1.6.5-150000.3.24.1.aarch64.rpm libX11-xcb1-1.6.5-150000.3.24.1.aarch64.rpm openSUSE-SLE-15.3-2022-4493 moderate SUSE Updates openSUSE-SLE 15.3 This update for libsass fixes the following issues: - Update libsass to fix Greybird Geeko theme build failures (bsc#1201074) - Update version to 3.6.5 (bsc#1201074): * Fix extend edge case going endlessly * Fix source-maps and how we count unicode characters * Fix seed generator if std::random_device fails * Fix url() containing exclamation mark causing an error * Fix Offset initialization when end was not given * Fix obvious backporting error in pseudo extend * Fix obvious identical subexpressions in op_color_number * Fix edge case regarding unit-less number equality as object keys * Revert compound re-ordering for non extended selectors * Prevent compiler warning about unnecessary copy - Update version to 3.6.4 * Fix parenthesization for selector schema and real parents * Add deprecation warning for global variable creation * Ensure correct output order of compound selectors * Handle loaded source code as shared objects * New custom memory allocator - disabled for now * Add back C-API getters for plugin paths * Fix abspath handling on windows without directory * Fix various edge case crashes * Fix segfault on directive ruleset * Fix heap-buffer-overflow in lexer * Fix stack-overflow in parser * Fix memory leak in parser * Fix memory leak in evaluation * Fix memory handling edge case * Fix some null pointer access crashes * Preparations for ongoing refactoring - from v3.6.3 * Fix compound extend warning * Fix extend being stuck in endless loop * Fix various edge-case segfault crashes * Extend error_src lifetime on c-api context * Fix memory leak in permutation function * Preserve indentation in nested mode - from v3.6.2 * Improve pseudo selector handling * Code improvements * Fix various functions arguments * Fix "call" for $function * Check weight argument on invert call * Improve makefile to use dylib extension on MacOS * Fix bug in scale-color with positive saturation * Minor API documentation improvements * Fix selector isInvisible logic * Fix evaluation of unary expressions in loops * Fix attribute selector equality with modifiers libsass-3.6.5-150200.4.3.1.src.rpm libsass-devel-3.6.5-150200.4.3.1.x86_64.rpm libsass-devel-3.6.5-150200.4.3.1.s390x.rpm libsass-devel-3.6.5-150200.4.3.1.ppc64le.rpm libsass-devel-3.6.5-150200.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-3857 important SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - CVE-2022-3550: Fixed out of bounds read/write in _GetCountedString() (bsc#1204412). - CVE-2022-3551: Fixed various leaks of the return value of GetComponentSpec() (bsc#1204416). xorg-x11-server-1.20.3-150200.22.5.58.1.src.rpm xorg-x11-server-1.20.3-150200.22.5.58.1.x86_64.rpm xorg-x11-server-extra-1.20.3-150200.22.5.58.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.58.1.x86_64.rpm xorg-x11-server-source-1.20.3-150200.22.5.58.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.58.1.x86_64.rpm xorg-x11-server-1.20.3-150200.22.5.58.1.s390x.rpm xorg-x11-server-extra-1.20.3-150200.22.5.58.1.s390x.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.58.1.s390x.rpm xorg-x11-server-source-1.20.3-150200.22.5.58.1.s390x.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.58.1.s390x.rpm xorg-x11-server-1.20.3-150200.22.5.58.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-150200.22.5.58.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.58.1.ppc64le.rpm xorg-x11-server-source-1.20.3-150200.22.5.58.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.58.1.ppc64le.rpm xorg-x11-server-1.20.3-150200.22.5.58.1.aarch64.rpm xorg-x11-server-extra-1.20.3-150200.22.5.58.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.58.1.aarch64.rpm xorg-x11-server-source-1.20.3-150200.22.5.58.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.58.1.aarch64.rpm openSUSE-SLE-15.3-2022-3917 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-azure-agent fixes the following issues: - Properly set OS.EnableRDMA flag (bsc#1203181) - Update to version 2.8.0.11 (bsc#1203164) python-azure-agent-2.8.0.11-150100.3.26.1.noarch.rpm python-azure-agent-2.8.0.11-150100.3.26.1.src.rpm python-azure-agent-test-2.8.0.11-150100.3.26.1.noarch.rpm openSUSE-SLE-15.3-2022-4077 important SUSE Updates openSUSE-SLE 15.3 This update for sudo fixes the following issues: - CVE-2022-43995: Fixed a potential heap-based buffer over-read when entering a passwor dof seven characters or fewer and using the crypt() password backend (bsc#1204986). - Fix wrong information output in the error message (bsc#1190818). - Make sure SIGCHLD is not ignored when sudo is executed; fixes race condition (bsc#1203201). sudo-1.9.5p2-150300.3.13.1.src.rpm sudo-1.9.5p2-150300.3.13.1.x86_64.rpm sudo-devel-1.9.5p2-150300.3.13.1.x86_64.rpm sudo-plugin-python-1.9.5p2-150300.3.13.1.x86_64.rpm sudo-test-1.9.5p2-150300.3.13.1.x86_64.rpm sudo-1.9.5p2-150300.3.13.1.s390x.rpm sudo-devel-1.9.5p2-150300.3.13.1.s390x.rpm sudo-plugin-python-1.9.5p2-150300.3.13.1.s390x.rpm sudo-test-1.9.5p2-150300.3.13.1.s390x.rpm sudo-1.9.5p2-150300.3.13.1.ppc64le.rpm sudo-devel-1.9.5p2-150300.3.13.1.ppc64le.rpm sudo-plugin-python-1.9.5p2-150300.3.13.1.ppc64le.rpm sudo-test-1.9.5p2-150300.3.13.1.ppc64le.rpm sudo-1.9.5p2-150300.3.13.1.aarch64.rpm sudo-devel-1.9.5p2-150300.3.13.1.aarch64.rpm sudo-plugin-python-1.9.5p2-150300.3.13.1.aarch64.rpm sudo-test-1.9.5p2-150300.3.13.1.aarch64.rpm openSUSE-SLE-15.3-2022-4315 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-bootloader fixes the following issues: - Prevent leak of grub2 password to logs (bsc#1201962) yast2-bootloader-4.3.32-150300.3.11.1.src.rpm yast2-bootloader-4.3.32-150300.3.11.1.x86_64.rpm yast2-bootloader-4.3.32-150300.3.11.1.s390x.rpm yast2-bootloader-4.3.32-150300.3.11.1.ppc64le.rpm yast2-bootloader-4.3.32-150300.3.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-4163 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - systemd: add missing modprobe@.service (bsc#1203749) - i18n: do not fail if FONT in /etc/vconsole.conf has the file extension (bsc#1203267) - drm: consider also drm_dev_register when looking for gpu driver (bsc#1195618) - integrity: do not display any error if there is no IMA certificate (bsc#1187654) dracut-049.1+suse.247.gfb7df05c-150200.3.63.1.src.rpm dracut-049.1+suse.247.gfb7df05c-150200.3.63.1.x86_64.rpm dracut-extra-049.1+suse.247.gfb7df05c-150200.3.63.1.x86_64.rpm dracut-fips-049.1+suse.247.gfb7df05c-150200.3.63.1.x86_64.rpm dracut-ima-049.1+suse.247.gfb7df05c-150200.3.63.1.x86_64.rpm dracut-tools-049.1+suse.247.gfb7df05c-150200.3.63.1.x86_64.rpm dracut-049.1+suse.247.gfb7df05c-150200.3.63.1.s390x.rpm dracut-extra-049.1+suse.247.gfb7df05c-150200.3.63.1.s390x.rpm dracut-fips-049.1+suse.247.gfb7df05c-150200.3.63.1.s390x.rpm dracut-ima-049.1+suse.247.gfb7df05c-150200.3.63.1.s390x.rpm dracut-tools-049.1+suse.247.gfb7df05c-150200.3.63.1.s390x.rpm dracut-049.1+suse.247.gfb7df05c-150200.3.63.1.ppc64le.rpm dracut-extra-049.1+suse.247.gfb7df05c-150200.3.63.1.ppc64le.rpm dracut-fips-049.1+suse.247.gfb7df05c-150200.3.63.1.ppc64le.rpm dracut-ima-049.1+suse.247.gfb7df05c-150200.3.63.1.ppc64le.rpm dracut-tools-049.1+suse.247.gfb7df05c-150200.3.63.1.ppc64le.rpm dracut-049.1+suse.247.gfb7df05c-150200.3.63.1.aarch64.rpm dracut-extra-049.1+suse.247.gfb7df05c-150200.3.63.1.aarch64.rpm dracut-fips-049.1+suse.247.gfb7df05c-150200.3.63.1.aarch64.rpm dracut-ima-049.1+suse.247.gfb7df05c-150200.3.63.1.aarch64.rpm dracut-tools-049.1+suse.247.gfb7df05c-150200.3.63.1.aarch64.rpm openSUSE-SLE-15.3-2022-3961 important SUSE Updates openSUSE-SLE 15.3 This update for zlib fixes the following issues: - Fix updating strm.adler with inflate() if DFLTCC is used (bsc#1203652) libminizip1-1.2.11-150000.3.36.1.x86_64.rpm libminizip1-32bit-1.2.11-150000.3.36.1.x86_64.rpm libz1-1.2.11-150000.3.36.1.x86_64.rpm libz1-32bit-1.2.11-150000.3.36.1.x86_64.rpm minizip-devel-1.2.11-150000.3.36.1.x86_64.rpm zlib-1.2.11-150000.3.36.1.src.rpm zlib-devel-1.2.11-150000.3.36.1.x86_64.rpm zlib-devel-32bit-1.2.11-150000.3.36.1.x86_64.rpm zlib-devel-static-1.2.11-150000.3.36.1.x86_64.rpm zlib-devel-static-32bit-1.2.11-150000.3.36.1.x86_64.rpm libminizip1-1.2.11-150000.3.36.1.s390x.rpm libz1-1.2.11-150000.3.36.1.s390x.rpm minizip-devel-1.2.11-150000.3.36.1.s390x.rpm zlib-devel-1.2.11-150000.3.36.1.s390x.rpm zlib-devel-static-1.2.11-150000.3.36.1.s390x.rpm libminizip1-1.2.11-150000.3.36.1.ppc64le.rpm libz1-1.2.11-150000.3.36.1.ppc64le.rpm minizip-devel-1.2.11-150000.3.36.1.ppc64le.rpm zlib-devel-1.2.11-150000.3.36.1.ppc64le.rpm zlib-devel-static-1.2.11-150000.3.36.1.ppc64le.rpm libminizip1-1.2.11-150000.3.36.1.aarch64.rpm libz1-1.2.11-150000.3.36.1.aarch64.rpm minizip-devel-1.2.11-150000.3.36.1.aarch64.rpm zlib-devel-1.2.11-150000.3.36.1.aarch64.rpm zlib-devel-static-1.2.11-150000.3.36.1.aarch64.rpm openSUSE-SLE-15.3-2022-4213 moderate SUSE Updates openSUSE-SLE 15.3 This update for libnvidia-container, nvidia-container-toolkit fixes the following issues: Both nvidia-container-toolkit and libnvidia-container were updated to version 1.11.0 (jsc#SLE-18750): 1.11.0: - Added support for injection of GPUDirect Storage and MOFED devices into containerized environments. 1.10.0: - Improving support for Tegra-based systems 1.9.0: - Added multi-arch support for the container-toolkit images. - Enhancements for use on Tegra-systems and some notable bugfixes. 1.8.1: - This release is a bugfix release that fixes issues around cgroups found in NVIDIA Container Toolkit 1.8.0. 1.8.0: - It adds cgroupv2 support to the NVIDIA Container Toolkit and removes packaging support for Amazonlinux1. libnvidia-container-1.11.0-150200.5.6.1.src.rpm libnvidia-container-devel-1.11.0-150200.5.6.1.x86_64.rpm libnvidia-container-static-1.11.0-150200.5.6.1.x86_64.rpm libnvidia-container-tools-1.11.0-150200.5.6.1.x86_64.rpm libnvidia-container1-1.11.0-150200.5.6.1.x86_64.rpm nvidia-container-toolkit-1.11.0-150200.5.6.1.src.rpm nvidia-container-toolkit-1.11.0-150200.5.6.1.x86_64.rpm nvidia-container-toolkit-1.11.0-150200.5.6.1.s390x.rpm libnvidia-container-devel-1.11.0-150200.5.6.1.ppc64le.rpm libnvidia-container-static-1.11.0-150200.5.6.1.ppc64le.rpm libnvidia-container-tools-1.11.0-150200.5.6.1.ppc64le.rpm libnvidia-container1-1.11.0-150200.5.6.1.ppc64le.rpm nvidia-container-toolkit-1.11.0-150200.5.6.1.ppc64le.rpm libnvidia-container-devel-1.11.0-150200.5.6.1.aarch64.rpm libnvidia-container-static-1.11.0-150200.5.6.1.aarch64.rpm libnvidia-container-tools-1.11.0-150200.5.6.1.aarch64.rpm libnvidia-container1-1.11.0-150200.5.6.1.aarch64.rpm nvidia-container-toolkit-1.11.0-150200.5.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3782 important SUSE Updates openSUSE-SLE 15.3 This update for libmad fixes the following issues: - CVE-2017-8373: Fixed heap-based buffer overflow in mad_layer_III (bsc#1036968). - CVE-2017-8372: Fixed assertion failure in layer3.c (bsc#1036969). libmad-0.15.1b-150000.5.3.1.src.rpm libmad-devel-0.15.1b-150000.5.3.1.x86_64.rpm libmad0-0.15.1b-150000.5.3.1.x86_64.rpm libmad0-32bit-0.15.1b-150000.5.3.1.x86_64.rpm libmad-devel-0.15.1b-150000.5.3.1.s390x.rpm libmad0-0.15.1b-150000.5.3.1.s390x.rpm libmad-devel-0.15.1b-150000.5.3.1.ppc64le.rpm libmad0-0.15.1b-150000.5.3.1.ppc64le.rpm libmad-devel-0.15.1b-150000.5.3.1.aarch64.rpm libmad0-0.15.1b-150000.5.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-4159 moderate SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: - CVE-2022-40617: Fixed that using untrusted URIs for revocation checking could lead to denial of service (bsc#1203556) strongswan-5.8.2-150200.11.30.1.src.rpm strongswan-5.8.2-150200.11.30.1.x86_64.rpm strongswan-doc-5.8.2-150200.11.30.1.noarch.rpm strongswan-hmac-5.8.2-150200.11.30.1.x86_64.rpm strongswan-ipsec-5.8.2-150200.11.30.1.x86_64.rpm strongswan-libs0-5.8.2-150200.11.30.1.x86_64.rpm strongswan-mysql-5.8.2-150200.11.30.1.x86_64.rpm strongswan-nm-5.8.2-150200.11.30.1.x86_64.rpm strongswan-sqlite-5.8.2-150200.11.30.1.x86_64.rpm strongswan-5.8.2-150200.11.30.1.s390x.rpm strongswan-hmac-5.8.2-150200.11.30.1.s390x.rpm strongswan-ipsec-5.8.2-150200.11.30.1.s390x.rpm strongswan-libs0-5.8.2-150200.11.30.1.s390x.rpm strongswan-mysql-5.8.2-150200.11.30.1.s390x.rpm strongswan-nm-5.8.2-150200.11.30.1.s390x.rpm strongswan-sqlite-5.8.2-150200.11.30.1.s390x.rpm strongswan-5.8.2-150200.11.30.1.ppc64le.rpm strongswan-hmac-5.8.2-150200.11.30.1.ppc64le.rpm strongswan-ipsec-5.8.2-150200.11.30.1.ppc64le.rpm strongswan-libs0-5.8.2-150200.11.30.1.ppc64le.rpm strongswan-mysql-5.8.2-150200.11.30.1.ppc64le.rpm strongswan-nm-5.8.2-150200.11.30.1.ppc64le.rpm strongswan-sqlite-5.8.2-150200.11.30.1.ppc64le.rpm strongswan-5.8.2-150200.11.30.1.aarch64.rpm strongswan-hmac-5.8.2-150200.11.30.1.aarch64.rpm strongswan-ipsec-5.8.2-150200.11.30.1.aarch64.rpm strongswan-libs0-5.8.2-150200.11.30.1.aarch64.rpm strongswan-mysql-5.8.2-150200.11.30.1.aarch64.rpm strongswan-nm-5.8.2-150200.11.30.1.aarch64.rpm strongswan-sqlite-5.8.2-150200.11.30.1.aarch64.rpm openSUSE-SLE-15.3-2022-3953 moderate SUSE Updates openSUSE-SLE 15.3 This update for xterm fixes the following issues: - CVE-2022-24130: Fixed buffer overflow in set_sixel when Sixel support is enabled (bsc#1195387). xterm-330-150200.11.6.1.src.rpm xterm-330-150200.11.6.1.x86_64.rpm xterm-bin-330-150200.11.6.1.x86_64.rpm xterm-330-150200.11.6.1.s390x.rpm xterm-bin-330-150200.11.6.1.s390x.rpm xterm-330-150200.11.6.1.ppc64le.rpm xterm-bin-330-150200.11.6.1.ppc64le.rpm xterm-330-150200.11.6.1.aarch64.rpm xterm-bin-330-150200.11.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4078 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - Update to jdk-11.0.17+8 (October 2022 CPU) - CVE-2022-39399: Improve HTTP/2 client usage(bsc#1204480) - CVE-2022-21628: Better HttpServer service (bsc#1204472) - CVE-2022-21624: Enhance icon presentations (bsc#1204475) - CVE-2022-21619: Improve NTLM support (bsc#1204473) - CVE-2022-21626: Key X509 usages (bsc#1204471) - CVE-2022-21618: Wider MultiByte (bsc#1204468) java-11-openjdk-11.0.17.0-150000.3.86.2.src.rpm java-11-openjdk-11.0.17.0-150000.3.86.2.x86_64.rpm java-11-openjdk-accessibility-11.0.17.0-150000.3.86.2.x86_64.rpm java-11-openjdk-demo-11.0.17.0-150000.3.86.2.x86_64.rpm java-11-openjdk-devel-11.0.17.0-150000.3.86.2.x86_64.rpm java-11-openjdk-headless-11.0.17.0-150000.3.86.2.x86_64.rpm java-11-openjdk-javadoc-11.0.17.0-150000.3.86.2.noarch.rpm java-11-openjdk-jmods-11.0.17.0-150000.3.86.2.x86_64.rpm java-11-openjdk-src-11.0.17.0-150000.3.86.2.x86_64.rpm java-11-openjdk-11.0.17.0-150000.3.86.2.s390x.rpm java-11-openjdk-accessibility-11.0.17.0-150000.3.86.2.s390x.rpm java-11-openjdk-demo-11.0.17.0-150000.3.86.2.s390x.rpm java-11-openjdk-devel-11.0.17.0-150000.3.86.2.s390x.rpm java-11-openjdk-headless-11.0.17.0-150000.3.86.2.s390x.rpm java-11-openjdk-jmods-11.0.17.0-150000.3.86.2.s390x.rpm java-11-openjdk-src-11.0.17.0-150000.3.86.2.s390x.rpm java-11-openjdk-11.0.17.0-150000.3.86.2.ppc64le.rpm java-11-openjdk-accessibility-11.0.17.0-150000.3.86.2.ppc64le.rpm java-11-openjdk-demo-11.0.17.0-150000.3.86.2.ppc64le.rpm java-11-openjdk-devel-11.0.17.0-150000.3.86.2.ppc64le.rpm java-11-openjdk-headless-11.0.17.0-150000.3.86.2.ppc64le.rpm java-11-openjdk-jmods-11.0.17.0-150000.3.86.2.ppc64le.rpm java-11-openjdk-src-11.0.17.0-150000.3.86.2.ppc64le.rpm java-11-openjdk-11.0.17.0-150000.3.86.2.aarch64.rpm java-11-openjdk-accessibility-11.0.17.0-150000.3.86.2.aarch64.rpm java-11-openjdk-demo-11.0.17.0-150000.3.86.2.aarch64.rpm java-11-openjdk-devel-11.0.17.0-150000.3.86.2.aarch64.rpm java-11-openjdk-headless-11.0.17.0-150000.3.86.2.aarch64.rpm java-11-openjdk-jmods-11.0.17.0-150000.3.86.2.aarch64.rpm java-11-openjdk-src-11.0.17.0-150000.3.86.2.aarch64.rpm openSUSE-SLE-15.3-2022-3935 moderate SUSE Updates openSUSE-SLE 15.3 This update for libarchive fixes the following issues: - CVE-2021-31566: Fixed incorrect usage of file flags (bsc#1192426). - Fixed issues where postprocessing alters symlink targets instead of actual file (bsc#1192427). bsdtar-3.4.2-150200.4.12.1.x86_64.rpm libarchive-3.4.2-150200.4.12.1.src.rpm libarchive-devel-3.4.2-150200.4.12.1.x86_64.rpm libarchive13-3.4.2-150200.4.12.1.x86_64.rpm libarchive13-32bit-3.4.2-150200.4.12.1.x86_64.rpm bsdtar-3.4.2-150200.4.12.1.s390x.rpm libarchive-devel-3.4.2-150200.4.12.1.s390x.rpm libarchive13-3.4.2-150200.4.12.1.s390x.rpm bsdtar-3.4.2-150200.4.12.1.ppc64le.rpm libarchive-devel-3.4.2-150200.4.12.1.ppc64le.rpm libarchive13-3.4.2-150200.4.12.1.ppc64le.rpm bsdtar-3.4.2-150200.4.12.1.aarch64.rpm libarchive-devel-3.4.2-150200.4.12.1.aarch64.rpm libarchive13-3.4.2-150200.4.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-3829 important SUSE Updates openSUSE-SLE 15.3 This update for hdf5 fixes the following issues: - CVE-2021-46244: Fixed division by zero leading to DoS (bsc#1195215). - CVE-2018-13867: Fixed out of bounds read in the function H5F__accum_read in H5Faccum.c (bsc#1101906). - CVE-2018-16438: Fixed out of bounds read in H5L_extern_query at H5Lexternal.c (bsc#1107069). - CVE-2020-10812: Fixed NULL pointer dereference (bsc#1167400). - CVE-2021-45830: Fixed heap buffer overflow vulnerability in H5F_addr_decode_len in /hdf5/src/H5Fint.c (bsc#1194375). - CVE-2019-8396: Fixed buffer overflow in function H5O__layout_encode in H5Olayout.c (bsc#1125882). - CVE-2018-11205: Fixed out of bounds read was discovered in H5VM_memcpyvv in H5VM.c (bsc#1093663). - CVE-2021-46242: Fixed heap-use-after free via the component H5AC_unpin_entry (bsc#1195212). - CVE-2021-45833: Fixed stack buffer overflow vulnerability (bsc#1194366). - CVE-2018-14031: Fixed heap-based buffer over-read in the function H5T_copy in H5T.c (bsc#1101475). - CVE-2018-17439: Fixed out of bounds read in the function H5F__accum_read in H5Faccum.c (bsc#1111598). hdf5-gnu-hpc-1.10.8-150300.4.6.1.noarch.rpm hdf5-gnu-hpc-devel-1.10.8-150300.4.6.1.noarch.rpm hdf5-gnu-mpich-hpc-1.10.8-150300.4.6.1.noarch.rpm hdf5-gnu-mpich-hpc-devel-1.10.8-150300.4.6.1.noarch.rpm hdf5-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.noarch.rpm hdf5-gnu-mvapich2-hpc-devel-1.10.8-150300.4.6.1.noarch.rpm hdf5-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.noarch.rpm hdf5-gnu-openmpi3-hpc-devel-1.10.8-150300.4.6.1.noarch.rpm hdf5-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.noarch.rpm hdf5-gnu-openmpi4-hpc-devel-1.10.8-150300.4.6.1.noarch.rpm hdf5-hpc-examples-1.10.8-150300.4.6.1.noarch.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.src.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.src.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.src.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.src.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.src.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.6.1.x86_64.rpm libhdf5-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.x86_64.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.6.1.s390x.rpm libhdf5-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.s390x.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.ppc64le.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.6.1.aarch64.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.6.1.aarch64.rpm libhdf5-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.6.1.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3783 important SUSE Updates openSUSE-SLE 15.3 This update for telnet fixes the following issues: - CVE-2022-39028: Fixed NULL pointer dereference in telnetd (bsc#1203759). telnet-1.2-150000.3.6.1.src.rpm telnet-1.2-150000.3.6.1.x86_64.rpm telnet-server-1.2-150000.3.6.1.x86_64.rpm telnet-1.2-150000.3.6.1.s390x.rpm telnet-server-1.2-150000.3.6.1.s390x.rpm telnet-1.2-150000.3.6.1.ppc64le.rpm telnet-server-1.2-150000.3.6.1.ppc64le.rpm telnet-1.2-150000.3.6.1.aarch64.rpm telnet-server-1.2-150000.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-3931 moderate SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - CVE-2022-39260: Fixed overflow in split_cmdline() (bsc#1204456). - CVE-2022-39253: Fixed dereference issue with symbolic links via the `--local` clone mechanism (bsc#1204455). git-2.35.3-150300.10.18.1.src.rpm git-2.35.3-150300.10.18.1.x86_64.rpm git-arch-2.35.3-150300.10.18.1.x86_64.rpm git-core-2.35.3-150300.10.18.1.x86_64.rpm git-credential-gnome-keyring-2.35.3-150300.10.18.1.x86_64.rpm git-credential-libsecret-2.35.3-150300.10.18.1.x86_64.rpm git-cvs-2.35.3-150300.10.18.1.x86_64.rpm git-daemon-2.35.3-150300.10.18.1.x86_64.rpm git-doc-2.35.3-150300.10.18.1.noarch.rpm git-email-2.35.3-150300.10.18.1.x86_64.rpm git-gui-2.35.3-150300.10.18.1.x86_64.rpm git-p4-2.35.3-150300.10.18.1.x86_64.rpm git-svn-2.35.3-150300.10.18.1.x86_64.rpm git-web-2.35.3-150300.10.18.1.x86_64.rpm gitk-2.35.3-150300.10.18.1.x86_64.rpm perl-Git-2.35.3-150300.10.18.1.x86_64.rpm git-2.35.3-150300.10.18.1.s390x.rpm git-arch-2.35.3-150300.10.18.1.s390x.rpm git-core-2.35.3-150300.10.18.1.s390x.rpm git-credential-gnome-keyring-2.35.3-150300.10.18.1.s390x.rpm git-credential-libsecret-2.35.3-150300.10.18.1.s390x.rpm git-cvs-2.35.3-150300.10.18.1.s390x.rpm git-daemon-2.35.3-150300.10.18.1.s390x.rpm git-email-2.35.3-150300.10.18.1.s390x.rpm git-gui-2.35.3-150300.10.18.1.s390x.rpm git-p4-2.35.3-150300.10.18.1.s390x.rpm git-svn-2.35.3-150300.10.18.1.s390x.rpm git-web-2.35.3-150300.10.18.1.s390x.rpm gitk-2.35.3-150300.10.18.1.s390x.rpm perl-Git-2.35.3-150300.10.18.1.s390x.rpm git-2.35.3-150300.10.18.1.ppc64le.rpm git-arch-2.35.3-150300.10.18.1.ppc64le.rpm git-core-2.35.3-150300.10.18.1.ppc64le.rpm git-credential-gnome-keyring-2.35.3-150300.10.18.1.ppc64le.rpm git-credential-libsecret-2.35.3-150300.10.18.1.ppc64le.rpm git-cvs-2.35.3-150300.10.18.1.ppc64le.rpm git-daemon-2.35.3-150300.10.18.1.ppc64le.rpm git-email-2.35.3-150300.10.18.1.ppc64le.rpm git-gui-2.35.3-150300.10.18.1.ppc64le.rpm git-p4-2.35.3-150300.10.18.1.ppc64le.rpm git-svn-2.35.3-150300.10.18.1.ppc64le.rpm git-web-2.35.3-150300.10.18.1.ppc64le.rpm gitk-2.35.3-150300.10.18.1.ppc64le.rpm perl-Git-2.35.3-150300.10.18.1.ppc64le.rpm git-2.35.3-150300.10.18.1.aarch64.rpm git-arch-2.35.3-150300.10.18.1.aarch64.rpm git-core-2.35.3-150300.10.18.1.aarch64.rpm git-credential-gnome-keyring-2.35.3-150300.10.18.1.aarch64.rpm git-credential-libsecret-2.35.3-150300.10.18.1.aarch64.rpm git-cvs-2.35.3-150300.10.18.1.aarch64.rpm git-daemon-2.35.3-150300.10.18.1.aarch64.rpm git-email-2.35.3-150300.10.18.1.aarch64.rpm git-gui-2.35.3-150300.10.18.1.aarch64.rpm git-p4-2.35.3-150300.10.18.1.aarch64.rpm git-svn-2.35.3-150300.10.18.1.aarch64.rpm git-web-2.35.3-150300.10.18.1.aarch64.rpm gitk-2.35.3-150300.10.18.1.aarch64.rpm perl-Git-2.35.3-150300.10.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-3802 important SUSE Updates openSUSE-SLE 15.3 This update for openjpeg2 fixes the following issues: - CVE-2018-20846: Fixed OOB read in pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi.c (bsc#1140205). - CVE-2018-21010: Fixed heap buffer overflow in color_apply_icc_profile in bin/common/color.c (bsc#1149789). - CVE-2020-27814: Fixed heap buffer overflow in lib/openjp2/mqc.c (bsc#1179594), - CVE-2020-27824: Fixed OOB read in opj_dwt_calc_explicit_stepsizes() (bsc#1179821). - CVE-2020-27841: Fixed buffer over-read in lib/openjp2/pi.c (bsc#1180042). - CVE-2020-27842: Fixed null pointer dereference in opj_tgt_reset function in lib/openjp2/tgt.c (bsc#1180043). - CVE-2020-27843: Fixed OOB read in opj_t2_encode_packet function in openjp2/t2.c (bsc#1180044). - CVE-2020-27845: Fixed heap-based buffer over-read in functions opj_pi_next_rlcp, opj_pi_next_rpcl and opj_pi_next_lrcp in openjp2/pi.c (bsc#1180046). libopenjp2-7-2.3.0-150000.3.8.1.x86_64.rpm libopenjp2-7-32bit-2.3.0-150000.3.8.1.x86_64.rpm openjpeg2-2.3.0-150000.3.8.1.src.rpm openjpeg2-2.3.0-150000.3.8.1.x86_64.rpm openjpeg2-devel-2.3.0-150000.3.8.1.x86_64.rpm libopenjp2-7-2.3.0-150000.3.8.1.s390x.rpm openjpeg2-2.3.0-150000.3.8.1.s390x.rpm openjpeg2-devel-2.3.0-150000.3.8.1.s390x.rpm libopenjp2-7-2.3.0-150000.3.8.1.ppc64le.rpm openjpeg2-2.3.0-150000.3.8.1.ppc64le.rpm openjpeg2-devel-2.3.0-150000.3.8.1.ppc64le.rpm libopenjp2-7-2.3.0-150000.3.8.1.aarch64.rpm openjpeg2-2.3.0-150000.3.8.1.aarch64.rpm openjpeg2-devel-2.3.0-150000.3.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-4169 low SUSE Updates openSUSE-SLE 15.3 This update for redis fixes the following issues: - CVE-2022-3647: Fixed crash in sigsegvHandler debug function (bsc#1204633). redis-6.0.14-150200.6.14.1.src.rpm redis-6.0.14-150200.6.14.1.x86_64.rpm redis-6.0.14-150200.6.14.1.s390x.rpm redis-6.0.14-150200.6.14.1.ppc64le.rpm redis-6.0.14-150200.6.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-3823 important SUSE Updates openSUSE-SLE 15.3 This update for hsqldb fixes the following issues: - CVE-2022-41853: Fixed insufficient input sanitization (bsc#1204521). hsqldb-2.3.3-150000.7.3.1.noarch.rpm hsqldb-2.3.3-150000.7.3.1.src.rpm hsqldb-demo-2.3.3-150000.7.3.1.noarch.rpm hsqldb-javadoc-2.3.3-150000.7.3.1.noarch.rpm hsqldb-manual-2.3.3-150000.7.3.1.noarch.rpm openSUSE-SLE-15.3-2022-3985 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes for python3-apipkg the following issues: python-apipkg-1.4-150000.3.4.1.src.rpm python-iniconfig-1.1.1-150000.1.9.1.src.rpm python2-apipkg-1.4-150000.3.4.1.noarch.rpm python2-iniconfig-1.1.1-150000.1.9.1.noarch.rpm python3-apipkg-1.4-150000.3.4.1.noarch.rpm python3-iniconfig-1.1.1-150000.1.9.1.noarch.rpm openSUSE-SLE-15.3-2022-3875 important SUSE Updates openSUSE-SLE 15.3 This update for xmlbeans fixes the following issues: - CVE-2021-23926: Fixed XML parsers not protecting from malicious XML input (bsc#1180915). xmlbeans-2.6.0-150000.5.3.1.noarch.rpm xmlbeans-2.6.0-150000.5.3.1.src.rpm xmlbeans-scripts-2.6.0-150000.5.3.1.noarch.rpm openSUSE-SLE-15.3-2022-3784 critical SUSE Updates openSUSE-SLE 15.3 This update for libtasn1 fixes the following issues: - CVE-2021-46848: Fixed off-by-one array size check that affects asn1_encode_simple_der (bsc#1204690) libtasn1-4.13-150000.4.8.1.src.rpm libtasn1-4.13-150000.4.8.1.x86_64.rpm libtasn1-6-32bit-4.13-150000.4.8.1.x86_64.rpm libtasn1-6-4.13-150000.4.8.1.x86_64.rpm libtasn1-devel-32bit-4.13-150000.4.8.1.x86_64.rpm libtasn1-devel-4.13-150000.4.8.1.x86_64.rpm libtasn1-4.13-150000.4.8.1.s390x.rpm libtasn1-6-4.13-150000.4.8.1.s390x.rpm libtasn1-devel-4.13-150000.4.8.1.s390x.rpm libtasn1-4.13-150000.4.8.1.ppc64le.rpm libtasn1-6-4.13-150000.4.8.1.ppc64le.rpm libtasn1-devel-4.13-150000.4.8.1.ppc64le.rpm libtasn1-4.13-150000.4.8.1.aarch64.rpm libtasn1-6-4.13-150000.4.8.1.aarch64.rpm libtasn1-devel-4.13-150000.4.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-3868 moderate SUSE Updates openSUSE-SLE 15.3 This update for rubygem-loofah fixes the following issues: - CVE-2019-15587: Fixed issue in sanitization of crafted SVG elements (bsc#1154751). ruby2.5-rubygem-loofah-2.2.2-150000.4.6.1.x86_64.rpm ruby2.5-rubygem-loofah-doc-2.2.2-150000.4.6.1.x86_64.rpm ruby2.5-rubygem-loofah-testsuite-2.2.2-150000.4.6.1.x86_64.rpm rubygem-loofah-2.2.2-150000.4.6.1.src.rpm ruby2.5-rubygem-loofah-2.2.2-150000.4.6.1.s390x.rpm ruby2.5-rubygem-loofah-doc-2.2.2-150000.4.6.1.s390x.rpm ruby2.5-rubygem-loofah-testsuite-2.2.2-150000.4.6.1.s390x.rpm ruby2.5-rubygem-loofah-2.2.2-150000.4.6.1.ppc64le.rpm ruby2.5-rubygem-loofah-doc-2.2.2-150000.4.6.1.ppc64le.rpm ruby2.5-rubygem-loofah-testsuite-2.2.2-150000.4.6.1.ppc64le.rpm ruby2.5-rubygem-loofah-2.2.2-150000.4.6.1.aarch64.rpm ruby2.5-rubygem-loofah-doc-2.2.2-150000.4.6.1.aarch64.rpm ruby2.5-rubygem-loofah-testsuite-2.2.2-150000.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4386 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pylint fixes the following issues: - Remove an unnecessary requirement to /usr/bin/python (bsc#1199219) python-pylint-1.8.2-150000.3.3.1.src.rpm python2-pylint-1.8.2-150000.3.3.1.noarch.rpm python3-pylint-1.8.2-150000.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-3873 moderate SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nspr was updated to version 4.34.1: * add file descriptor sanity checks in the NSPR poll function. mozilla-nss was updated to NSS 3.79.2 (bsc#1204729): * Bump minimum NSPR version to 4.34.1. * Gracefully handle null nickname in CERT_GetCertNicknameWithValidity. Other fixes that were applied: - FIPS: Allow the use of DSA keys (verification only) (bsc#1201298). - FIPS: Add sftk_FIPSRepeatIntegrityCheck() to softoken's .def file (bsc#1198980). - FIPS: Allow the use of longer symmetric keys via the service level indicator (bsc#1191546). - FIPS: Prevent TLS sessions from getting flagged as non-FIPS (bsc#1191546). - FIPS: Mark DSA keygen unapproved (bsc#1191546, bsc#1201298). - FIPS: Use libjitterentropy for entropy (bsc#1202870). - FIPS: Fixed an abort() when both NSS_FIPS and /proc FIPS mode are enabled. libfreebl3-3.79.2-150000.3.82.1.x86_64.rpm libfreebl3-32bit-3.79.2-150000.3.82.1.x86_64.rpm libfreebl3-hmac-3.79.2-150000.3.82.1.x86_64.rpm libfreebl3-hmac-32bit-3.79.2-150000.3.82.1.x86_64.rpm libsoftokn3-3.79.2-150000.3.82.1.x86_64.rpm libsoftokn3-32bit-3.79.2-150000.3.82.1.x86_64.rpm libsoftokn3-hmac-3.79.2-150000.3.82.1.x86_64.rpm libsoftokn3-hmac-32bit-3.79.2-150000.3.82.1.x86_64.rpm mozilla-nspr-32bit-4.34.1-150000.3.26.1.x86_64.rpm mozilla-nspr-4.34.1-150000.3.26.1.src.rpm mozilla-nspr-4.34.1-150000.3.26.1.x86_64.rpm mozilla-nspr-devel-4.34.1-150000.3.26.1.x86_64.rpm mozilla-nss-3.79.2-150000.3.82.1.src.rpm mozilla-nss-3.79.2-150000.3.82.1.x86_64.rpm mozilla-nss-32bit-3.79.2-150000.3.82.1.x86_64.rpm mozilla-nss-certs-3.79.2-150000.3.82.1.x86_64.rpm mozilla-nss-certs-32bit-3.79.2-150000.3.82.1.x86_64.rpm mozilla-nss-devel-3.79.2-150000.3.82.1.x86_64.rpm mozilla-nss-sysinit-3.79.2-150000.3.82.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.79.2-150000.3.82.1.x86_64.rpm mozilla-nss-tools-3.79.2-150000.3.82.1.x86_64.rpm libfreebl3-3.79.2-150000.3.82.1.s390x.rpm libfreebl3-hmac-3.79.2-150000.3.82.1.s390x.rpm libsoftokn3-3.79.2-150000.3.82.1.s390x.rpm libsoftokn3-hmac-3.79.2-150000.3.82.1.s390x.rpm mozilla-nspr-4.34.1-150000.3.26.1.s390x.rpm mozilla-nspr-devel-4.34.1-150000.3.26.1.s390x.rpm mozilla-nss-3.79.2-150000.3.82.1.s390x.rpm mozilla-nss-certs-3.79.2-150000.3.82.1.s390x.rpm mozilla-nss-devel-3.79.2-150000.3.82.1.s390x.rpm mozilla-nss-sysinit-3.79.2-150000.3.82.1.s390x.rpm mozilla-nss-tools-3.79.2-150000.3.82.1.s390x.rpm libfreebl3-3.79.2-150000.3.82.1.ppc64le.rpm libfreebl3-hmac-3.79.2-150000.3.82.1.ppc64le.rpm libsoftokn3-3.79.2-150000.3.82.1.ppc64le.rpm libsoftokn3-hmac-3.79.2-150000.3.82.1.ppc64le.rpm mozilla-nspr-4.34.1-150000.3.26.1.ppc64le.rpm mozilla-nspr-devel-4.34.1-150000.3.26.1.ppc64le.rpm mozilla-nss-3.79.2-150000.3.82.1.ppc64le.rpm mozilla-nss-certs-3.79.2-150000.3.82.1.ppc64le.rpm mozilla-nss-devel-3.79.2-150000.3.82.1.ppc64le.rpm mozilla-nss-sysinit-3.79.2-150000.3.82.1.ppc64le.rpm mozilla-nss-tools-3.79.2-150000.3.82.1.ppc64le.rpm libfreebl3-3.79.2-150000.3.82.1.aarch64.rpm libfreebl3-hmac-3.79.2-150000.3.82.1.aarch64.rpm libsoftokn3-3.79.2-150000.3.82.1.aarch64.rpm libsoftokn3-hmac-3.79.2-150000.3.82.1.aarch64.rpm mozilla-nspr-4.34.1-150000.3.26.1.aarch64.rpm mozilla-nspr-devel-4.34.1-150000.3.26.1.aarch64.rpm mozilla-nss-3.79.2-150000.3.82.1.aarch64.rpm mozilla-nss-certs-3.79.2-150000.3.82.1.aarch64.rpm mozilla-nss-devel-3.79.2-150000.3.82.1.aarch64.rpm mozilla-nss-sysinit-3.79.2-150000.3.82.1.aarch64.rpm mozilla-nss-tools-3.79.2-150000.3.82.1.aarch64.rpm openSUSE-SLE-15.3-2022-4412 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-build-key fixes the following issues: - added /usr/share/pki/containers directory for container pem keys (cosign/sigstore style), put the SUSE Container signing PEM key there too (bsc#1204706) suse-build-key-12.0-150000.8.28.1.noarch.rpm suse-build-key-12.0-150000.8.28.1.src.rpm openSUSE-SLE-15.3-2022-3899 important SUSE Updates openSUSE-SLE 15.3 This update for sendmail fixes the following issues: - CVE-2022-31256: Fixed mail to root privilege escalation via sm-client.pre script (bsc#1204696, bsc#1202937). libmilter-doc-8.15.2-150000.8.9.1.noarch.rpm libmilter1_0-8.15.2-150000.8.9.1.x86_64.rpm rmail-8.15.2-150000.8.9.1.x86_64.rpm sendmail-8.15.2-150000.8.9.1.src.rpm sendmail-8.15.2-150000.8.9.1.x86_64.rpm sendmail-devel-8.15.2-150000.8.9.1.x86_64.rpm sendmail-starttls-8.15.2-150000.8.9.1.noarch.rpm libmilter1_0-8.15.2-150000.8.9.1.s390x.rpm rmail-8.15.2-150000.8.9.1.s390x.rpm sendmail-8.15.2-150000.8.9.1.s390x.rpm sendmail-devel-8.15.2-150000.8.9.1.s390x.rpm libmilter1_0-8.15.2-150000.8.9.1.ppc64le.rpm rmail-8.15.2-150000.8.9.1.ppc64le.rpm sendmail-8.15.2-150000.8.9.1.ppc64le.rpm sendmail-devel-8.15.2-150000.8.9.1.ppc64le.rpm libmilter1_0-8.15.2-150000.8.9.1.aarch64.rpm rmail-8.15.2-150000.8.9.1.aarch64.rpm sendmail-8.15.2-150000.8.9.1.aarch64.rpm sendmail-devel-8.15.2-150000.8.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-3912 important SUSE Updates openSUSE-SLE 15.3 This update for expat fixes the following issues: - CVE-2022-43680: Fixed use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate (bsc#1204708). expat-2.2.5-150000.3.25.1.src.rpm expat-2.2.5-150000.3.25.1.x86_64.rpm libexpat-devel-2.2.5-150000.3.25.1.x86_64.rpm libexpat-devel-32bit-2.2.5-150000.3.25.1.x86_64.rpm libexpat1-2.2.5-150000.3.25.1.x86_64.rpm libexpat1-32bit-2.2.5-150000.3.25.1.x86_64.rpm expat-2.2.5-150000.3.25.1.s390x.rpm libexpat-devel-2.2.5-150000.3.25.1.s390x.rpm libexpat1-2.2.5-150000.3.25.1.s390x.rpm expat-2.2.5-150000.3.25.1.ppc64le.rpm libexpat-devel-2.2.5-150000.3.25.1.ppc64le.rpm libexpat1-2.2.5-150000.3.25.1.ppc64le.rpm expat-2.2.5-150000.3.25.1.aarch64.rpm libexpat-devel-2.2.5-150000.3.25.1.aarch64.rpm libexpat1-2.2.5-150000.3.25.1.aarch64.rpm openSUSE-SLE-15.3-2022-4043 moderate SUSE Updates openSUSE-SLE 15.3 This update for python3-ec2metadata fixes the following issues: - Update to version 4.0.0 (bsc#1204066) - Disambiguate cli options for duplicate endpoints. This is an incompatible change for some API versions of IMDS. When a duplicate endpoint is detected the cli option for both endpoints is expanded to a unique name. python3-ec2metadata-4.0.0-150000.3.9.1.noarch.rpm python3-ec2metadata-4.0.0-150000.3.9.1.src.rpm openSUSE-SLE-15.3-2022-4048 moderate SUSE Updates openSUSE-SLE 15.3 This update for nvme-cli fixes the following issues: - Fix infinite loop on invalid parameters (bsc#1200644) - Support auto discovery, add %systemd_ordering to spec file (bsc#1186399) nvme-cli-1.13-150300.3.20.1.src.rpm nvme-cli-1.13-150300.3.20.1.x86_64.rpm nvme-cli-regress-script-1.13-150300.3.20.1.x86_64.rpm nvme-cli-1.13-150300.3.20.1.s390x.rpm nvme-cli-regress-script-1.13-150300.3.20.1.s390x.rpm nvme-cli-1.13-150300.3.20.1.ppc64le.rpm nvme-cli-regress-script-1.13-150300.3.20.1.ppc64le.rpm nvme-cli-1.13-150300.3.20.1.aarch64.rpm nvme-cli-regress-script-1.13-150300.3.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-4160 moderate SUSE Updates openSUSE-SLE 15.3 This update for nfsidmap fixes the following issues: - Various bugfixes and improvemes from upstream In particular, fixed a crash that can happen when a 'static' mapping is configured. (bsc#1200901) nfsidmap-0.26-150000.3.7.1.src.rpm nfsidmap-0.26-150000.3.7.1.x86_64.rpm nfsidmap-devel-0.26-150000.3.7.1.x86_64.rpm nfsidmap-0.26-150000.3.7.1.s390x.rpm nfsidmap-devel-0.26-150000.3.7.1.s390x.rpm nfsidmap-0.26-150000.3.7.1.ppc64le.rpm nfsidmap-devel-0.26-150000.3.7.1.ppc64le.rpm nfsidmap-0.26-150000.3.7.1.aarch64.rpm nfsidmap-devel-0.26-150000.3.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-3866 important SUSE Updates openSUSE-SLE 15.3 This update for ntfs-3g_ntfsprogs fixes the following issues: - CVE-2022-40284: Fixed incorrect validation of some of the NTFS metadata that could cause buffer overflow (bsc#1204734). libntfs-3g-devel-2022.5.17-150000.3.16.1.x86_64.rpm libntfs-3g87-2022.5.17-150000.3.16.1.x86_64.rpm ntfs-3g-2022.5.17-150000.3.16.1.x86_64.rpm ntfs-3g_ntfsprogs-2022.5.17-150000.3.16.1.src.rpm ntfsprogs-2022.5.17-150000.3.16.1.x86_64.rpm ntfsprogs-extra-2022.5.17-150000.3.16.1.x86_64.rpm libntfs-3g-devel-2022.5.17-150000.3.16.1.s390x.rpm libntfs-3g87-2022.5.17-150000.3.16.1.s390x.rpm ntfs-3g-2022.5.17-150000.3.16.1.s390x.rpm ntfsprogs-2022.5.17-150000.3.16.1.s390x.rpm ntfsprogs-extra-2022.5.17-150000.3.16.1.s390x.rpm libntfs-3g-devel-2022.5.17-150000.3.16.1.ppc64le.rpm libntfs-3g87-2022.5.17-150000.3.16.1.ppc64le.rpm ntfs-3g-2022.5.17-150000.3.16.1.ppc64le.rpm ntfsprogs-2022.5.17-150000.3.16.1.ppc64le.rpm ntfsprogs-extra-2022.5.17-150000.3.16.1.ppc64le.rpm libntfs-3g-devel-2022.5.17-150000.3.16.1.aarch64.rpm libntfs-3g87-2022.5.17-150000.3.16.1.aarch64.rpm ntfs-3g-2022.5.17-150000.3.16.1.aarch64.rpm ntfsprogs-2022.5.17-150000.3.16.1.aarch64.rpm ntfsprogs-extra-2022.5.17-150000.3.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-3892 moderate SUSE Updates openSUSE-SLE 15.3 This update for exiv2 fixes the following issues: - CVE-2019-13111: Fixed nteger overflow in WebPImage:decodeChunks (bsc#1142679). - CVE-2021-29463: Fixed out-of-bounds read (bsc#1185913). - CVE-2021-34334: Fixed a DoS due to integer overflow in loop counter bug (bsc#1189338). exiv2-0.26-150000.6.21.1.src.rpm exiv2-0.26-150000.6.21.1.x86_64.rpm exiv2-lang-0.26-150000.6.21.1.noarch.rpm libexiv2-26-0.26-150000.6.21.1.x86_64.rpm libexiv2-26-32bit-0.26-150000.6.21.1.x86_64.rpm libexiv2-devel-0.26-150000.6.21.1.x86_64.rpm libexiv2-doc-0.26-150000.6.21.1.x86_64.rpm exiv2-0.26-150000.6.21.1.s390x.rpm libexiv2-26-0.26-150000.6.21.1.s390x.rpm libexiv2-devel-0.26-150000.6.21.1.s390x.rpm libexiv2-doc-0.26-150000.6.21.1.s390x.rpm exiv2-0.26-150000.6.21.1.ppc64le.rpm libexiv2-26-0.26-150000.6.21.1.ppc64le.rpm libexiv2-devel-0.26-150000.6.21.1.ppc64le.rpm libexiv2-doc-0.26-150000.6.21.1.ppc64le.rpm exiv2-0.26-150000.6.21.1.aarch64.rpm libexiv2-26-0.26-150000.6.21.1.aarch64.rpm libexiv2-devel-0.26-150000.6.21.1.aarch64.rpm libexiv2-doc-0.26-150000.6.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-3837 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnome-desktop fixes the following issues: - CVE-2019-11460: Fixed sandbox issue that allowed bypassing from a compromised thumbnailer (bsc#1133043). gnome-desktop-3.26.2-150000.4.3.1.src.rpm libgnome-desktop-3-12-3.26.2-150000.4.3.1.x86_64.rpm libgnome-desktop-3-12-32bit-3.26.2-150000.4.3.1.x86_64.rpm libgnome-desktop-3-12-3.26.2-150000.4.3.1.s390x.rpm libgnome-desktop-3-12-3.26.2-150000.4.3.1.ppc64le.rpm libgnome-desktop-3-12-3.26.2-150000.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-4341 moderate SUSE Updates openSUSE-SLE 15.3 This update for wicked fixes the following issues: - auto6: Fix to apply DNS from RA rdnss after ifdown/ifup (bsc#1181429) - build: Ensure binaries are Position Independent Executable (PIE) (bsc#1184124) - client: Add release options to ifdown/ifreload (jsc#SLE-25048, jsc#SLE-10249) - client: Fix memory access violation (SEGV) on empty xpath results - compat-suse: Match read order of sysctl.d '/etc' vs. '/run' with systemd-sysctl and remove obsolete (sle11/sysconfig) lines about ifup-sysctl from ifsysctl.5. - compat-suse: Fix reading of sysctl variable 'addr_gen_mode' - dbus: Clear string array before append - dhcp4: Fix issues in reuse of last lease (bsc#1187655) - dhcp6: Add option to refresh lease (jsc#SLE-24310, jsc#SLE-9492, jsc#SLE-24307) - dhcp6: Consider ppp interfaces supported - dhcp6: Ignore lease release status - dhcp6: Remove address before release - firewall-ext: No config change on ifdown (bsc#1201053, bsc#1189560) - redfish: Add initial support to decode the SMBIOS Management Controller Host Interface (Type 42) (jsc#SLE-24286, jsc#SLE-17762) - Removed obsolete patch included in the main sources (bsc#1194392) - socket: Fix memory access violation (SEGV) on heavy socket restart errors (bsc#1192508) - systemd: Remove systemd-udev-settle dependency (bsc#1186787) - team: Fix to configure port priority in teamd (bsc#1200505) - wireless: Add support for WPA3 and PMF (bsc#1198894) - wireless: Fix memory access violation (SEGV) on supplicant restart - wireless: Fix to not expect colons in 64byte long wpa-psk hex hash string - wireless: Remove libiw dependencies - xml-schema: Reference counting fix to not crash at exit on schema errors wicked-0.6.70-150300.4.8.1.src.rpm wicked-0.6.70-150300.4.8.1.x86_64.rpm wicked-service-0.6.70-150300.4.8.1.x86_64.rpm wicked-0.6.70-150300.4.8.1.s390x.rpm wicked-service-0.6.70-150300.4.8.1.s390x.rpm wicked-0.6.70-150300.4.8.1.ppc64le.rpm wicked-service-0.6.70-150300.4.8.1.ppc64le.rpm wicked-0.6.70-150300.4.8.1.aarch64.rpm wicked-service-0.6.70-150300.4.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-4061 important SUSE Updates openSUSE-SLE 15.3 This update for sapconf fixes the following issues: - Adapt check of an active saptune service during the initial package installation to work in a chroot environment and fix the missing enablement of sapconf (bsc#1190736, bsc#1190787) sapconf-5.0.5-150000.7.24.1.noarch.rpm sapconf-5.0.5-150000.7.24.1.src.rpm openSUSE-SLE-15.3-2022-4063 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issues: - Updated pci, usb and vendor ids hwdata-0.363-150000.3.51.1.noarch.rpm hwdata-0.363-150000.3.51.1.src.rpm openSUSE-SLE-15.3-2022-4313 important SUSE Updates openSUSE-SLE 15.3 This update for python-cached-property, python-osc-tiny, python-responses fixes the following issues: python-cached-property: - New package at version 1.5.2 (jsc#PED-1872, jsc#PED-1964) python-responses: - Version update from 0.10.12 to 0.21.0 (jsc#PED-1872, jsc#PED-1964) - Dropped support of Python 2.7, 3.5, 3.6 - For the full list of changes please read the packaged CHANGES file or https://github.com/getsentry/responses/releases python-osc-tiny: - New package at version 0.7.5 (jsc#PED-1872, jsc#PED-1964) python-cached-property-1.5.2-150300.7.3.1.src.rpm python-osc-tiny-0.7.5-150300.7.3.1.src.rpm python-responses-0.21.0-150300.3.3.1.src.rpm python3-cached-property-1.5.2-150300.7.3.1.noarch.rpm python3-osc-tiny-0.7.5-150300.7.3.1.noarch.rpm python3-responses-0.21.0-150300.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-4260 important SUSE Updates openSUSE-SLE 15.3 This update for busybox fixes the following issues: - CVE-2014-9645: Fixed loading of unwanted module with / in module names (bsc#914660). - Enable switch_root With this change virtme --force-initramfs works as expected. - Enable udhcpc Update to 1.35.0: - awk: fix printf %%, fix read beyond end of buffer - Adjust busybox.config for new features in find, date and cpio - chrt: silence analyzer warning - libarchive: remove duplicate forward declaration - mount: "mount -o rw ...." should not fall back to RO mount - ps: fix -o pid=PID,args interpreting entire "PID,args" as header - tar: prevent malicious archives with long name sizes causing OOM - udhcpc6: fix udhcp_find_option to actually find DHCP6 options - xxd: fix -p -r - support for new optoins added to basename, cpio, date, find, mktemp, wget and others - Adjust busybox.config for new features in find, date and cpio busybox-1.35.0-150000.4.14.1.src.rpm busybox-1.35.0-150000.4.14.1.x86_64.rpm busybox-static-1.35.0-150000.4.14.1.x86_64.rpm busybox-1.35.0-150000.4.14.1.s390x.rpm busybox-static-1.35.0-150000.4.14.1.s390x.rpm busybox-1.35.0-150000.4.14.1.ppc64le.rpm busybox-static-1.35.0-150000.4.14.1.ppc64le.rpm busybox-1.35.0-150000.4.14.1.aarch64.rpm busybox-static-1.35.0-150000.4.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-4015 important SUSE Updates openSUSE-SLE 15.3 This update for rubygem-nokogiri fixes the following issues: - CVE-2022-24836: Fixes possibility to DoS because of inefficient RE in HTML encoding. (bsc#1198408) - CVE-2022-29181: Fixes Improper Handling of Unexpected Data Typesi. (bsc#1199782) ruby2.5-rubygem-nokogiri-1.8.5-150000.3.9.1.x86_64.rpm ruby2.5-rubygem-nokogiri-doc-1.8.5-150000.3.9.1.x86_64.rpm ruby2.5-rubygem-nokogiri-testsuite-1.8.5-150000.3.9.1.x86_64.rpm rubygem-nokogiri-1.8.5-150000.3.9.1.src.rpm ruby2.5-rubygem-nokogiri-1.8.5-150000.3.9.1.s390x.rpm ruby2.5-rubygem-nokogiri-doc-1.8.5-150000.3.9.1.s390x.rpm ruby2.5-rubygem-nokogiri-testsuite-1.8.5-150000.3.9.1.s390x.rpm ruby2.5-rubygem-nokogiri-1.8.5-150000.3.9.1.ppc64le.rpm ruby2.5-rubygem-nokogiri-doc-1.8.5-150000.3.9.1.ppc64le.rpm ruby2.5-rubygem-nokogiri-testsuite-1.8.5-150000.3.9.1.ppc64le.rpm ruby2.5-rubygem-nokogiri-1.8.5-150000.3.9.1.aarch64.rpm ruby2.5-rubygem-nokogiri-doc-1.8.5-150000.3.9.1.aarch64.rpm ruby2.5-rubygem-nokogiri-testsuite-1.8.5-150000.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-4230 moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-configs fixes the following issues: - Add nvme-cli to Requires (bsc#1204068, bsc#1204091) google-guest-configs-20220211.00-150000.1.22.1.noarch.rpm google-guest-configs-20220211.00-150000.1.22.1.src.rpm openSUSE-SLE-15.3-2022-3919 important SUSE Updates openSUSE-SLE 15.3 This update rebuilds the kubevirt stack to include recent security updates in its basecontainers. kubevirt-0.49.0-150300.8.15.1.src.rpm kubevirt-container-disk-0.49.0-150300.8.15.1.x86_64.rpm kubevirt-manifests-0.49.0-150300.8.15.1.x86_64.rpm kubevirt-tests-0.49.0-150300.8.15.1.x86_64.rpm kubevirt-virt-api-0.49.0-150300.8.15.1.x86_64.rpm kubevirt-virt-controller-0.49.0-150300.8.15.1.x86_64.rpm kubevirt-virt-handler-0.49.0-150300.8.15.1.x86_64.rpm kubevirt-virt-launcher-0.49.0-150300.8.15.1.x86_64.rpm kubevirt-virt-operator-0.49.0-150300.8.15.1.x86_64.rpm kubevirt-virtctl-0.49.0-150300.8.15.1.x86_64.rpm obs-service-kubevirt_containers_meta-0.49.0-150300.8.15.1.x86_64.rpm openSUSE-SLE-15.3-2022-3920 important SUSE Updates openSUSE-SLE 15.3 This update of containerized data importer images rebases the containers against the current base images to resolve security issues. containerized-data-importer-1.43.2-150300.8.11.1.src.rpm containerized-data-importer-api-1.43.2-150300.8.11.1.x86_64.rpm containerized-data-importer-cloner-1.43.2-150300.8.11.1.x86_64.rpm containerized-data-importer-controller-1.43.2-150300.8.11.1.x86_64.rpm containerized-data-importer-importer-1.43.2-150300.8.11.1.x86_64.rpm containerized-data-importer-manifests-1.43.2-150300.8.11.1.x86_64.rpm containerized-data-importer-operator-1.43.2-150300.8.11.1.x86_64.rpm containerized-data-importer-uploadproxy-1.43.2-150300.8.11.1.x86_64.rpm containerized-data-importer-uploadserver-1.43.2-150300.8.11.1.x86_64.rpm obs-service-cdi_containers_meta-1.43.2-150300.8.11.1.x86_64.rpm openSUSE-SLE-15.3-2022-4281 important SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - CVE-2022-37454: Fixed a buffer overflow in hashlib.sha3_* implementations. (bsc#1204577) - CVE-2020-10735: Fixed a bug to limit amount of digits converting text to int and vice vera. (bsc#1203125) The following non-security bug was fixed: - Fixed a crash in the garbage collection (bsc#1188607). libpython3_6m1_0-3.6.15-150300.10.37.2.x86_64.rpm libpython3_6m1_0-32bit-3.6.15-150300.10.37.2.x86_64.rpm python3-3.6.15-150300.10.37.2.src.rpm python3-3.6.15-150300.10.37.2.x86_64.rpm python3-base-3.6.15-150300.10.37.2.x86_64.rpm python3-core-3.6.15-150300.10.37.2.src.rpm python3-curses-3.6.15-150300.10.37.2.x86_64.rpm python3-dbm-3.6.15-150300.10.37.2.x86_64.rpm python3-devel-3.6.15-150300.10.37.2.x86_64.rpm python3-doc-3.6.15-150300.10.37.1.x86_64.rpm python3-doc-devhelp-3.6.15-150300.10.37.1.x86_64.rpm python3-documentation-3.6.15-150300.10.37.1.src.rpm python3-idle-3.6.15-150300.10.37.2.x86_64.rpm python3-testsuite-3.6.15-150300.10.37.2.x86_64.rpm python3-tk-3.6.15-150300.10.37.2.x86_64.rpm python3-tools-3.6.15-150300.10.37.2.x86_64.rpm libpython3_6m1_0-3.6.15-150300.10.37.2.s390x.rpm python3-3.6.15-150300.10.37.2.s390x.rpm python3-base-3.6.15-150300.10.37.2.s390x.rpm python3-curses-3.6.15-150300.10.37.2.s390x.rpm python3-dbm-3.6.15-150300.10.37.2.s390x.rpm python3-devel-3.6.15-150300.10.37.2.s390x.rpm python3-doc-3.6.15-150300.10.37.1.s390x.rpm python3-doc-devhelp-3.6.15-150300.10.37.1.s390x.rpm python3-idle-3.6.15-150300.10.37.2.s390x.rpm python3-testsuite-3.6.15-150300.10.37.2.s390x.rpm python3-tk-3.6.15-150300.10.37.2.s390x.rpm python3-tools-3.6.15-150300.10.37.2.s390x.rpm libpython3_6m1_0-3.6.15-150300.10.37.2.ppc64le.rpm python3-3.6.15-150300.10.37.2.ppc64le.rpm python3-base-3.6.15-150300.10.37.2.ppc64le.rpm python3-curses-3.6.15-150300.10.37.2.ppc64le.rpm python3-dbm-3.6.15-150300.10.37.2.ppc64le.rpm python3-devel-3.6.15-150300.10.37.2.ppc64le.rpm python3-doc-3.6.15-150300.10.37.1.ppc64le.rpm python3-doc-devhelp-3.6.15-150300.10.37.1.ppc64le.rpm python3-idle-3.6.15-150300.10.37.2.ppc64le.rpm python3-testsuite-3.6.15-150300.10.37.2.ppc64le.rpm python3-tk-3.6.15-150300.10.37.2.ppc64le.rpm python3-tools-3.6.15-150300.10.37.2.ppc64le.rpm libpython3_6m1_0-3.6.15-150300.10.37.2.aarch64.rpm python3-3.6.15-150300.10.37.2.aarch64.rpm python3-base-3.6.15-150300.10.37.2.aarch64.rpm python3-curses-3.6.15-150300.10.37.2.aarch64.rpm python3-dbm-3.6.15-150300.10.37.2.aarch64.rpm python3-devel-3.6.15-150300.10.37.2.aarch64.rpm python3-doc-3.6.15-150300.10.37.1.aarch64.rpm python3-doc-devhelp-3.6.15-150300.10.37.1.aarch64.rpm python3-idle-3.6.15-150300.10.37.2.aarch64.rpm python3-testsuite-3.6.15-150300.10.37.2.aarch64.rpm python3-tk-3.6.15-150300.10.37.2.aarch64.rpm python3-tools-3.6.15-150300.10.37.2.aarch64.rpm openSUSE-SLE-15.3-2022-3947 important SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing (bsc#1203806) - CVE-2022-33748: Fixed DoS due to race in locking (bsc#1203807) - CVE-2022-42311, CVE-2022-42312, CVE-2022-42313, CVE-2022-42314, CVE-2022-42315, CVE-2022-42316, CVE-2022-42317, CVE-2022-42318: xen: Xenstore: Guests can let xenstored run out of memory (bsc#1204482) - CVE-2022-42309: xen: Xenstore: Guests can crash xenstored (bsc#1204485) - CVE-2022-42310: xen: Xenstore: Guests can create orphaned Xenstore nodes (bsc#1204487) - CVE-2022-42319: xen: Xenstore: Guests can cause Xenstore to not free temporary memory (bsc#1204488) - CVE-2022-42320: xen: Xenstore: Guests can get access to Xenstore nodes of deleted domains (bsc#1204489) - CVE-2022-42321: xen: Xenstore: Guests can crash xenstored via exhausting the stack (bsc#1204490) - CVE-2022-42322,CVE-2022-42323: xen: Xenstore: cooperating guests can create arbitrary numbers of nodes (bsc#1204494) - CVE-2022-42325,CVE-2022-42326: xen: Xenstore: Guests can create arbitrary number of nodes via transactions (bsc#1204496) - xen: Frontends vulnerable to backends (bsc#1193923) xen-4.14.5_08-150300.3.40.1.src.rpm True xen-4.14.5_08-150300.3.40.1.x86_64.rpm True xen-devel-4.14.5_08-150300.3.40.1.x86_64.rpm True xen-doc-html-4.14.5_08-150300.3.40.1.x86_64.rpm True xen-libs-32bit-4.14.5_08-150300.3.40.1.x86_64.rpm True xen-libs-4.14.5_08-150300.3.40.1.x86_64.rpm True xen-tools-4.14.5_08-150300.3.40.1.x86_64.rpm True xen-tools-domU-4.14.5_08-150300.3.40.1.x86_64.rpm True xen-tools-xendomains-wait-disk-4.14.5_08-150300.3.40.1.noarch.rpm True xen-4.14.5_08-150300.3.40.1.aarch64.rpm True xen-devel-4.14.5_08-150300.3.40.1.aarch64.rpm True xen-doc-html-4.14.5_08-150300.3.40.1.aarch64.rpm True xen-libs-4.14.5_08-150300.3.40.1.aarch64.rpm True xen-tools-4.14.5_08-150300.3.40.1.aarch64.rpm True xen-tools-domU-4.14.5_08-150300.3.40.1.aarch64.rpm True openSUSE-SLE-15.3-2022-4082 important SUSE Updates openSUSE-SLE 15.3 This update for openjpeg fixes the following issues: - CVE-2018-20846: Fixed an Out-of-bounds accesses in pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi. (bsc#1140205) - CVE-2018-21010: Fixed a heap buffer overflow in color_apply_icc_profile in bin/common/color.c (bsc#1149789) - CVE-2020-27824: Fixed an OOB read in opj_dwt_calc_explicit_stepsizes() (bsc#1179821) - CVE-2020-27842: Fixed null pointer dereference in opj_tgt_reset function in lib/openjp2/tgt.c (bsc#1180043) - CVE-2020-27843: Fixed an out-of-bounds read in opj_t2_encode_packet function in openjp2/t2.c (bsc#1180044) - CVE-2020-27845: Fixed a heap-based buffer over-read in functions opj_pi_next_rlcp, opj_pi_next_rpcl and opj_pi_next_lrcp in openjp2/pi.c (bsc#1180046) libopenjpeg1-1.5.2-150000.4.10.1.x86_64.rpm libopenjpeg1-32bit-1.5.2-150000.4.10.1.x86_64.rpm openjpeg-1.5.2-150000.4.10.1.src.rpm openjpeg-1.5.2-150000.4.10.1.x86_64.rpm openjpeg-devel-1.5.2-150000.4.10.1.x86_64.rpm openjpeg-devel-32bit-1.5.2-150000.4.10.1.x86_64.rpm libopenjpeg1-1.5.2-150000.4.10.1.s390x.rpm openjpeg-1.5.2-150000.4.10.1.s390x.rpm openjpeg-devel-1.5.2-150000.4.10.1.s390x.rpm libopenjpeg1-1.5.2-150000.4.10.1.ppc64le.rpm openjpeg-1.5.2-150000.4.10.1.ppc64le.rpm openjpeg-devel-1.5.2-150000.4.10.1.ppc64le.rpm libopenjpeg1-1.5.2-150000.4.10.1.aarch64.rpm openjpeg-1.5.2-150000.4.10.1.aarch64.rpm openjpeg-devel-1.5.2-150000.4.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-4601 moderate SUSE Updates openSUSE-SLE 15.3 This update for GNOME 41 fixes the following issues: atkmm1_6: - Version update from 2.28.1 to 2.28.3 (jsc#PED-2235): * Meson build: Avoid unnecessary configuration warnings * Meson build: Perl is not required by new versions of mm-common * Meson build: Require meson >= 0.55.0 * Meson build: Specify 'check' option in run_command(). Will be necessary with future versions of Meson. * Require atk >= 2.12.0 Not a new requirement, but previously it was not specified in configure.ac and meson.build * Support building with Visual Studio 2022 eog: - Version update from 41.1 to 41.2 (jsc#PED-2235): * eog-window: use correct type for display_profile * Fix discovery of Evince for multi-page images evince: - Version update 41.3 to 41.4 (jsc#PED-2235): * shell: Fix failures when thumbnail extraction takes too long * Fix build with meson 0.60.0 and newer evolution: - Ensure evolution-devel is forward compatible with evolution-data-server-devel in a same major version (jsc#PED-2235) evolution-data-center: - Version update from 3.42.4 to 3.42.5 (jsc#PED-2235): * Google OAuth out-of-band (oob) flow will be deprecated folks: - Version update 0.15.3 to 0.15.5 (jsc#PED-2235): * vapi: Add missing generic type argument * Fix docs build against newer eds version * Fix build against newer eds version * Remove volatile keyword from tests gcr: - Version update 3.41.0 to 3.41.1 (jsc#PED-2235): * Add G_SPAWN_CLOEXEC_PIPES flag to all the g_spawn commands * Add gi-docgen dependency which is needed by the docs * Fix build with meson 0.60.0 and newer * Fix build without systemd * Several CI fixes geocode-glib: - Version update from 3.26.2 to 3.26.4 (jsc#PED-2235): * Fix to a test data file not being installed, and a bug fix for a bug in the libsoup3 port * Add support for libsoup 3.x gjs: - Version update from 1.70.1 to 1.70.2 (jsc#PED-2235): * Build and compatibility fixes backported from the development branch * Reverse order of running-from-source checks - Require xorg-x11-Xvfb for proper package build (bsc#1203274) glib2: - Version update from 2.70.4 to 2.70.5 (jsc#PED-2235): * Bugs fixed: glgo#GNOME/GLib#2620, glgo#GNOME/GLib!2537, glgo#GNOME/GLib!2555 * Split gtk-docs from -devel package, these are not needed during building projects using glib2 gnome-control-center: - Fix the size of logo icon in About system (bsc#1200581) - Version update from 41.4 to 41.7 (jsc#PED-2235): * Cellular: Remove duplicate line from .desktop * Info: Allow changing "Device Name" by pressing "Enter" * Info: Remove trailing space after CPU name * Keyboard: Fix crash resetting all keyboard shortcuts * Keyboard: Fix leaks * Network: Fix saving passwords for non-wifi connections * Network: Fix critical when opening VPN details page * Wacom: Fix leaks gnome-desktop: - Version update from 41.2 to 41.8 (jsc#PED-2235): * Version increase but no actual changes gnome-music: - Version update from 41.0 to 41.1 (jsc#PED-2235): * Ensure the correct album is played * Fix build with meson 0.61.0 and newer * Fix crash on empty selection * Fix incorrect playlist import * Fix time displayed in RTL languages * Improve async queue work * Make random shuffle actually random * Make shuffle random * Speed increase on first startup on larger collections * Time is reversed in RTL gnome-remote-desktop: - Version update from 41.2 to 41.3 (jsc#PED-2235): * Add Icelandic translation gnome-session: - Clear error messages that can be ignored because expected to happen for GDM sessions (bsc#1204867) - Add fix for gnome-session to exit immediately when lost name on bus (bsc#1175622, bsc#1188882) gnome-shell: - Disable offline update suggestion before shutdown/reboot in SLE and openSUSE Leap (bsc#944832) - Version update from 41.4 to 41.9 (jsc#PED-2235): * Allow extension updates with only Extension Manager installed * Allow more intermediate icon sizes in app grid * Disable workspace switching while in search. * Do not create systemd scope for D-Bus activated apps * Fix calendar to correctly align world clocks header in RTL * Fix drag placeholder position in dash in RTL locales * Fix edge case where windows stay dimmed after a modal is closed * Fix feedback when turning on a11y features by keyboard * Fix focus tracking in magnifier on wayland * Fix fractional timezone offsets in world clock * Fix glitches in overview transition * Fix logging in with realmd * Fix memory leak * Fix opening device settings for enterprise WPA networks * Fix programatically set scrollview fade * Fix regression in ibus support * Fix unresponsive top bar in overview when in fullscreen * Handle monitor changes during startup animation * Hide overview after 'Show Details' from app context menu * Improve Belgian on-screen keyboard layout * Improve CSS shadow appearance * Make sure startup animation completes * Misc. bug fixes and cleanups * Only close messages via delete key if they can be closed * Respect IM hint for candidates list in on-screen keyboard gnome-software: - Disable offline update feature in SUSE Linux Enterprise and openSUSE Leap (bsc#944832) - Version update from 41.4 to 41.5 (jsc#PED-2235): * Added several appstream-related fixed * Disable scroll-by-mouse-wheel on featured carousel * Ensure details page shows app provided on command line gnome-terminal: - Version update from 3.42.2 to 3.42.3 (jsc#PED-2235): * Fix build with meson 0.61.0 and newer * window: Use a normal menu for the popup menu gnome-user-docs: - Version update from 41.1 to 41.5 (jsc#PED-2235): * Added missing icon for network-wired-symbolic gspell: - Version update from 1.8.4 to 1.10.0 (jsc#PED-2235): * Build: distribute more files in tarballs * Documentation improvements gtkmm3: - Version update from 3.24.5 to 3.24.6 (jsc#PED-2235): * Build with Meson: MSVC build: Support Visual Studio 2022 * Check if Perl is required for building documentation * Don't use deprecated python3.path() and execute (..., gui_app...) * GTK: TreeValueProxy: Declare copy constructor = default, avoiding warnings from the claing++ compiler * Object::_release_c_instance(): Unref orphan managed widgets * SizeGroup demo: Set active items in the combo boxs, so something is shown * Specify 'check' option in run_command() gtk-vnc: - Version update from 1.3.0 to 1.3.1 (jsc#PED-2235): * Add 'check' arg to meson run_command() * Fix invalid use of subprojects with meson * Support ZRLE encoding for zero size alpha cursors gupnp-av: - Version update from 0.12.11 to 0.14.1 (jsc#PED-2235): * Add utility function to format GDateTime to the iso variant DIDL expects * Allow to be used as a subproject * Drop autotools * Fix stripping @refID * Fix unsetting subtitleFileType * Make Feature derivable again * Obsolete code removal. * Port to modern GObject * Remove hand-written ref-counting, use RcBox/AtomicRcBox instead. * Switch to meson build system, following upstream - Rename libgupnp-av-1_0-2 subpackage to libgupnp-av-1_0-3, correcting the package name to match the provided library - Conflict with the wrongly provided libgupnp-av-1_0-2 gvfs: - Version update from 1.48.1 to 1.48.2 (jsc#PED-2235): * sftp: Adapt on new OpenSSH password prompts * smb: Rework anonymous handling to avoid EINVAL * smb: Ignore EINVAL for kerberos/ccache login libgsf: - Version update from 1.14.48 to 1.14.50 (jsc#PED-2235): * Fix error handling problem when writing ole files * Fix problems with non-western text in OLE properties * Use g_date_time_new_from_iso8601 and g_date_time_format_iso8601 when available libmediaart: - Version update from 1.9.5 to 1.9.6 (jsc#PED-2235): * build: Add introspection/vapi/tests options * build: Use library() to optionally build a static library libnma: - Version update from 1.8.32 to 1.8.40 (jsc#PED-2235): * Ad-Hoc networks now default to using WPA2 instead of WEP * Add possibility of building libnma-gtk4 library with Gtk4 support * Do not allow setting empty 802.1x domain for EAP TLS * Fixed keyboard accelerator for certificate chooser * Fixed libnma-gtk4 version of mobile-wizard * Include OWE wireless security option * The GtkBuilder files for Gtk4 are now included in the release tarball * WEP is no longer provided as an option for connecting to hidden networks due to its deprecated status - New sub-packages libnma-gtk4-0, typelib-1_0-NMA4-1_0 and libnma-gtk4-devel - Split out documentation files in own docs sub-package libnotify: - Version update from 0.7.10 to 0.7.12 (jsc#PED-2235): * Delete unused notifynotification.xml * Fix potential build errors with old glib version we require * docs/notify-send: Add --transient option to manpage * notification: Bookend calling NotifyActionCallback with temporary reference * notification: Include sender-pid hint by default if not provided * notify-send: Add debug message about server not supporting persistence * notify-send: Add explicit option to create transient notifications * notify-send: Add support for boolean hints * notify-send: Move server capabilities check to a separate function * notify-send: Support passing any hint value, by parsing variant strings libpeas: - Version update from 1.30.0 to 1.32.0 (jsc#PED-2235): * Icon licenses have been corrected * Parallel build system operation fixes * Use gi-docgen for documentation * Various build warnings squashed * Various GIR data that should not have been exported was removed - Stop packaging the demo files/sub-package librsvg: - Version update from 2.52.6 to 2.52.9 (jsc#PED-2235): * Catch circular references when rendering patterns * Fix regressions when computing element geometries * Fix regression outputting all text as paths libsecret: - Version update from 0.20.4 to 0.20.5 (jsc#PED-2235): * Add bash-completion for secret-tool * Add locking capabilities to secret tool * Add support for TPM2 based secret storage * Create default collection after DBus.Error.UnknownObject * Detect local storage in snaps in the same way as flatpaks * Drop autotools-based build * GI annotation and documentation fixes * Port documentation to gi-docgen * Use G_GNUC_NULL_TERMINATED where appropriate collection, methods, prompt: Port to GTask * secret-file-backend: Avoid closing the same file descriptor twice mutter: - Version update from 41.5 to 41.9 (jsc#PED-2235): * Fix '--replace option' * Fix missing root window properties after XWayland start * Fix night light without GAMMA_LUT property * KMS: Survive missing GAMMA_LUT property * wayland: Fix rotation transform * Misc. bug fixes nautilus: - Version update from 41.2 to 41.5(jsc#PED-2235): * Drag-and-drop bugfixes * HighContrast style fixes orca: - Version update from 41.1 to 41.3 (jsc#PED-2235): * Add more event-flood detection and handling for improved performance * Fix bug causing accessing preferences to fail for Esperanto * Web: Fix bug causing widgets descending from off-screen label elements to be skipped over * Web: Fix presentation of the FluentUI react dialog (and any other dialog which has an ARIA document-role descendant) * WebKitGtk: Fail gracefully when structural navigation commands are used in WebKitGtk 2.36.x python-cairo: - Add python3-cairo to SUSE Linux Enterprise Micro 5.3 as it is now required by python3-gobject-cairo python-gobject: - Add dependency on python-cairo to python-gobject-cairo: The introspection wrapper needs pycairo (bsc#1179584) - Version update from 3.42.0 to 3.42.2 (jsc#PED-2235): * Add a workaround for a PyPy 3.9+ bug when threads are used * Do not error out for unknown scopes * Prompt an error instead of crashing when marshaling unsupported fundamental types in some cases * Fix a crash/refcounting error in case marshaling a hash table fails * Fix crashes when marshaling zero terminated arrays for certain item types * Implement DynamicImporter.find_spec() to silence deprecation warning * Make the test suite pass again with PyPy * Some test/CI fixes * gtk overrides: Do not override Treeview.enable_model_drag_xx for GTK4 * gtk overrides: restore Gtk.ListStore.insert_with_valuesv with newer GTK4 * interface: Fix leak when overriding GInterfaceInfo * setup.py: look up pycairo headers without importing the module trackers-python: - Allow system calls used by gstreamer (bsc#1196205) - Version update from 3.2.2 to 3.2.1 (jsc#PED-2235): * Backport seccomp rules for rseq and mbind syscalls vala: - Version update from 0.54.6 to 0.54.8 (jsc#PED-2235): * Add missing TraverseVisitor.visit_data_type() * Add support for "copy_/free_function" metadata for compact classes * Catch and throw possible inner error of lock statements * Clear SemanticAnalyzer.current_{symbol,source_file} when not needed anymore * Don't count instance-parameter when checking for backwards closure reference * Fix a few binding errors * Free empty stack list for code contexts * Handle duplicated and unnamed symbols. * Improve UI parsing and handling of nested objects and properties * Make sure to drop our "trap" jump target in case of an error * Move dynamic property errors to semantic analyzer pass * Require lvalue access of delegate target/destroy "fields" * Show source location when reporting deprecations * Transform assignment of an array element as needed * manual: Update from wiki.gnome.org * parser: Improve handling of nullable VarType in with-statement * parser: Reduce the source reference of main block method to its beginning xdg-desktop-portal-gnome: - Version update from 0.54.6 to 0.54.8 (jsc#PED-2235): * Properly bind property in Lockdown portal python-cairo-1.15.1-150000.3.6.1.src.rpm python-cairo-common-devel-1.15.1-150000.3.6.1.x86_64.rpm python2-cairo-1.15.1-150000.3.6.1.x86_64.rpm python2-cairo-devel-1.15.1-150000.3.6.1.x86_64.rpm python3-cairo-1.15.1-150000.3.6.1.x86_64.rpm python3-cairo-devel-1.15.1-150000.3.6.1.x86_64.rpm python-cairo-common-devel-1.15.1-150000.3.6.1.s390x.rpm python2-cairo-1.15.1-150000.3.6.1.s390x.rpm python2-cairo-devel-1.15.1-150000.3.6.1.s390x.rpm python3-cairo-1.15.1-150000.3.6.1.s390x.rpm python3-cairo-devel-1.15.1-150000.3.6.1.s390x.rpm python-cairo-common-devel-1.15.1-150000.3.6.1.ppc64le.rpm python2-cairo-1.15.1-150000.3.6.1.ppc64le.rpm python2-cairo-devel-1.15.1-150000.3.6.1.ppc64le.rpm python3-cairo-1.15.1-150000.3.6.1.ppc64le.rpm python3-cairo-devel-1.15.1-150000.3.6.1.ppc64le.rpm python-cairo-common-devel-1.15.1-150000.3.6.1.aarch64.rpm python2-cairo-1.15.1-150000.3.6.1.aarch64.rpm python2-cairo-devel-1.15.1-150000.3.6.1.aarch64.rpm python3-cairo-1.15.1-150000.3.6.1.aarch64.rpm python3-cairo-devel-1.15.1-150000.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4053 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-4037: Fixed function logic vulnerability that allowed local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set (bnc#1198702). - CVE-2022-2153: Fixed vulnerability in KVM that could allow an unprivileged local attacker on the host to cause DoS (bnc#1200788). - CVE-2022-2964: Fixed memory corruption issues in ax88179_178a devices (bnc#1202686). - CVE-2022-2978: Fixed use-after-free in the NILFS file system that could lead to local privilege escalation or DoS (bnc#1202700). - CVE-2022-3176: Fixed use-after-free in io_uring when using POLLFREE (bnc#1203391). - CVE-2022-3424: Fixed use-after-free in gru_set_context_option(), gru_fault() and gru_handle_user_call_os() that could lead to kernel panic (bsc#1204166). - CVE-2022-3521: Fixed race condition in kcm_tx_work() in net/kcm/kcmsock.c (bnc#1204355). - CVE-2022-3524: Fixed memory leak in ipv6_renew_options() in the IPv6 handler (bnc#1204354). - CVE-2022-3535: Fixed memory leak in mvpp2_dbgfs_port_init() in drivers/net/ethernet/marvell/mvpp2/mvpp2_debugfs.c (bnc#1204417). - CVE-2022-3542: Fixed memory leak in bnx2x_tpa_stop() in drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c (bnc#1204402). - CVE-2022-3545: Fixed use-after-free in area_cache_get() in drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c (bnc#1204415). - CVE-2022-3565: Fixed use-after-free in del_timer() in drivers/isdn/mISDN/l1oip_core.c (bnc#1204431). - CVE-2022-3577: Fixed out-of-bounds memory write flaw in bigben device driver that could lead to local privilege escalation or DoS (bnc#1204470). - CVE-2022-3586: Fixed use-after-free in socket buffer (SKB) that could allow a local unprivileged user to cause a denial of service (bnc#1204439). - CVE-2022-3594: Fixed excessive data logging in intr_callback() in drivers/net/usb/r8152.c (bnc#1204479). - CVE-2022-3621: Fixed null pointer dereference in nilfs_bmap_lookup_at_level() in fs/nilfs2/inode.c (bnc#1204574). - CVE-2022-3625: Fixed use-after-free in devlink_param_set()/devlink_param_get() in net/core/devlink.c (bnc#1204637). - CVE-2022-3629: Fixed memory leak in vsock_connect() in net/vmw_vsock/af_vsock.c (bnc#1204635). - CVE-2022-3640: Fixed use-after-free in l2cap_conn_del() in net/bluetooth/l2cap_core.c (bnc#1204619). - CVE-2022-3646: Fixed memory leak in nilfs_attach_log_writer() in fs/nilfs2/segment.c (bnc#1204646). - CVE-2022-3649: Fixed use-after-free in nilfs_new_inode() in fs/nilfs2/inode.c (bnc#1204647). - CVE-2022-39189: Fixed a flaw in the x86 KVM subsystem that could allow unprivileged guest users to compromise the guest kernel via TLB flush operations on preempted vCPU (bnc#1203066). - CVE-2022-42703: Fixed use-after-free in mm/rmap.c related to leaf anon_vma double reuse (bnc#1204168). - CVE-2022-43750: Fixed vulnerability in usbmon that allowed a user-space client to corrupt the monitor's internal memory (bnc#1204653). The following non-security bugs were fixed: - ACPI: APEI: do not add task_work to kernel thread to avoid memory leak (git-fixes). - ACPI: HMAT: Release platform device in case of platform_device_add_data() fails (git-fixes). - ACPI: extlog: Handle multiple records (git-fixes). - ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel systems (bnc#1203802). - ACPI: video: Add Toshiba Satellite/Portege Z830 quirk (git-fixes). - ALSA: Use del_timer_sync() before freeing timer (git-fixes). - ALSA: ac97: fix possible memory leak in snd_ac97_dev_register() (git-fixes). - ALSA: aoa: Fix I2S device accounting (git-fixes). - ALSA: aoa: i2sbus: fix possible memory leak in i2sbus_add_dev() (git-fixes). - ALSA: asihpi - Remove useless code in hpi_meter_get_peak() (git-fixes). - ALSA: au88x0: use explicitly signed char (git-fixes). - ALSA: dmaengine: increment buffer pointer atomically (git-fixes). - ALSA: hda/hdmi: Do not skip notification handling during PM operation (git-fixes). - ALSA: hda/realtek: Add Intel Reference SSID to support headset keys (git-fixes). - ALSA: hda/realtek: Add pincfg for ASUS G513 HP jack (git-fixes). - ALSA: hda/realtek: Add pincfg for ASUS G533Z HP jack (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GA503R laptop (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GV601R laptop (git-fixes). - ALSA: hda/realtek: Add quirk for Huawei WRT-WX9 (git-fixes). - ALSA: hda/realtek: Correct pin configs for ASUS G533Z (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output Dell Precision 5530 laptop (git-fixes). - ALSA: hda/realtek: remove ALC289_FIXUP_DUAL_SPK for Dell 5530 (git-fixes). - ALSA: hda/sigmatel: Fix unused variable warning for beep power change (git-fixes). - ALSA: hda/sigmatel: Keep power up while beep is enabled (git-fixes). - ALSA: hda/tegra: Align BDL entry to 4KB boundary (git-fixes). - ALSA: hda: Fix position reporting on Poulsbo (git-fixes). - ALSA: hda: add Intel 5 Series / 3400 PCI DID (git-fixes). - ALSA: oss: Fix potential deadlock at unregistration (git-fixes). - ALSA: rawmidi: Drop register_mutex in snd_rawmidi_free() (git-fixes). - ALSA: rme9652: use explicitly signed char (git-fixes). - ALSA: usb-audio: Fix NULL dererence at error path (git-fixes). - ALSA: usb-audio: Fix potential memory leaks (git-fixes). - ASoC: eureka-tlv320: Hold reference returned from of_find_xxx API (git-fixes). - ASoC: fsl_sai: Remove unnecessary FIFO reset in ISR (git-fixes). - ASoC: mt6660: Fix PM disable depth imbalance in mt6660_i2c_probe (git-fixes). - ASoC: nau8824: Fix semaphore unbalance at error paths (git-fixes). - ASoC: rsnd: Add check for rsnd_mod_power_on (git-fixes). - ASoC: tas2770: Reinit regcache on reset (git-fixes). - ASoC: wcd9335: fix order of Slimbus unprepare/disable (git-fixes). - ASoC: wcd934x: fix order of Slimbus unprepare/disable (git-fixes). - ASoC: wm5102: Fix PM disable depth imbalance in wm5102_probe (git-fixes). - ASoC: wm5110: Fix PM disable depth imbalance in wm5110_probe (git-fixes). - ASoC: wm8997: Fix PM disable depth imbalance in wm8997_probe (git-fixes). - Bluetooth: L2CAP: Fix user-after-free (git-fixes). - Bluetooth: L2CAP: initialize delayed works at l2cap_chan_create() (git-fixes). - Bluetooth: hci_core: Fix not handling link timeouts propertly (git-fixes). - Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times (git-fixes). - HID: hidraw: fix memory leak in hidraw_release() (git-fixes). - HID: magicmouse: Do not set BTN_MOUSE on double report (git-fixes). - HID: multitouch: Add memory barriers (git-fixes). - HID: roccat: Fix use-after-free in roccat_read() (git-fixes). - HSI: omap_ssi: Fix refcount leak in ssi_probe (git-fixes). - HSI: omap_ssi_port: Fix dma_map_sg error check (git-fixes). - IB/cm: Cancel mad on the DREQ event when the state is MRA_REP_RCVD (git-fixes) - IB/cma: Allow XRC INI QPs to set their local ACK timeout (git-fixes) - IB/core: Only update PKEY and GID caches on respective events (git-fixes) - IB/hfi1: Adjust pkey entry in index 0 (git-fixes) - IB/hfi1: Fix abba locking issue with sc_disable() (git-fixes) - IB/hfi1: Fix possible null-pointer dereference in _extend_sdma_tx_descs() (git-fixes) - IB/mlx4: Add support for REJ due to timeout (git-fixes) - IB/mlx4: Use port iterator and validation APIs (git-fixes) - IB/qib: Protect from buffer overflow in struct qib_user_sdma_pkt fields (git-fixes) - IB/rdmavt: Add __init/__exit annotations to module init/exit funcs (git-fixes) - IB/srpt: Remove redundant assignment to ret (git-fixes) - Input: i8042 - fix refount leak on sparc (git-fixes). - Input: xpad - add supported devices as contributed on github (git-fixes). - Input: xpad - fix wireless 360 controller breaking after suspend (git-fixes). - KVM: nVMX: Unconditionally purge queued/injected events on nested "exit" (git-fixes). - KVM: s390: Clarify SIGP orders versus STOP/RESTART (git-fixes). - KVM: s390: VSIE: fix MVPG handling for prefixing and MSO (git-fixes). - KVM: s390: clear kicked_mask before sleeping again (git-fixes). - KVM: s390: preserve deliverable_mask in __airqs_kick_single_vcpu (git-fixes). - KVM: s390: pv: do not present the ecall interrupt twice (git-fixes). - KVM: s390: split kvm_s390_real_to_abs (git-fixes). - KVM: s390x: fix SCK locking (git-fixes). - KVM: x86/emulator: Fix handing of POP SS to correctly set interruptibility (git-fixes). - PCI: Dynamically map ECAM regions (bsc#1204382). - PCI: Fix used_buses calculation in pci_scan_child_bus_extend() (git-fixes). - PCI: Sanitise firmware BAR assignments behind a PCI-PCI bridge (git-fixes). - PM: domains: Fix handling of unavailable/disabled idle states (git-fixes). - PM: hibernate: Allow hybrid sleep to work with s2idle (git-fixes). - RDMA/bnxt_re: Add missing spin lock initialization (git-fixes) - RDMA/bnxt_re: Fix query SRQ failure (git-fixes) - RDMA/cm: Fix memory leak in ib_cm_insert_listen (git-fixes) - RDMA/cma: Ensure rdma_addr_cancel() happens before issuing more requests (git-fixes) - RDMA/cma: Fix arguments order in net device validation (git-fixes) - RDMA/core: Sanitize WQ state received from the userspace (git-fixes) - RDMA/cxgb4: Remove MW support (git-fixes) - RDMA/efa: Free IRQ vectors on error flow (git-fixes) - RDMA/efa: Remove double QP type assignment (git-fixes) - RDMA/efa: Use ib_umem_num_dma_pages() (git-fixes) - RDMA/hfi1: Fix potential integer multiplication overflow errors (git-fixes) - RDMA/hns: Remove unnecessary check for the sgid_attr when modifying QP (git-fixes) - RDMA/i40iw: Use ib_umem_num_dma_pages() (git-fixes) - RDMA/iwcm: Release resources if iw_cm module initialization fails (git-fixes) - RDMA/mlx4: Return missed an error if device does not support steering (git-fixes) - RDMA/mlx5: Add missing check for return value in get namespace flow (git-fixes) - RDMA/mlx5: Block FDB rules when not in switchdev mode (git-fixes) - RDMA/mlx5: Fix memory leak in error flow for subscribe event routine (git-fixes) - RDMA/mlx5: Make mkeys always owned by the kernel's PD when not enabled (git-fixes) - RDMA/mlx5: Set user priority for DCT (git-fixes) - RDMA/mlx5: Use set_mkc_access_pd_addr_fields() in reg_create() (git-fixes) - RDMA/qedr: Fix NULL deref for query_qp on the GSI QP (git-fixes) - RDMA/qedr: Fix potential memory leak in __qedr_alloc_mr() (git-fixes) - RDMA/qedr: Fix reporting QP timeout attribute (git-fixes) - RDMA/qib: Remove superfluous fallthrough statements (git-fixes) - RDMA/rtrs-srv: Pass the correct number of entries for dma mapped SGL (git-fixes) - RDMA/rxe: Do not overwrite errno from ib_umem_get() (git-fixes) - RDMA/rxe: Fix "kernel NULL pointer dereference" error (git-fixes) - RDMA/rxe: Fix error unwind in rxe_create_qp() (git-fixes) - RDMA/rxe: Fix extra copies in build_rdma_network_hdr (git-fixes) - RDMA/rxe: Fix extra copy in prepare_ack_packet (git-fixes) - RDMA/rxe: Fix failure during driver load (git-fixes) - RDMA/rxe: Fix over copying in get_srq_wqe (git-fixes) - RDMA/rxe: Fix redundant call to ip_send_check (git-fixes) - RDMA/rxe: Fix redundant skb_put_zero (git-fixes) - RDMA/rxe: Fix rnr retry behavior (git-fixes) - RDMA/rxe: Fix the error caused by qp->sk (git-fixes) - RDMA/rxe: Fix wrong port_cap_flags (git-fixes) - RDMA/rxe: Generate a completion for unsupported/invalid opcode (git-fixes) - RDMA/rxe: Remove unused pkt->offset (git-fixes) - RDMA/rxe: Return CQE error if invalid lkey was supplied (git-fixes) - RDMA/sa_query: Use strscpy_pad instead of memcpy to copy a string (git-fixes) - RDMA/siw: Always consume all skbuf data in sk_data_ready() upcall. (git-fixes) - RDMA/siw: Fix a condition race issue in MPA request processing (git-fixes) - RDMA/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event (git-fixes) - RDMA/siw: Pass a pointer to virt_to_page() (git-fixes) - RDMA/usnic: fix set-but-not-unused variable 'flags' warning (git-fixes) - RDMA: Verify port when creating flow rule (git-fixes) - RDMA: remove useless condition in siw_create_cq() (git-fixes) - RDMa/mthca: Work around -Wenum-conversion warning (git-fixes) - Revert "drivers/video/backlight/platform_lcd.c: add support for (bsc#1152489) - Revert "drm: bridge: analogix/dp: add panel prepare/unprepare in suspend/resume time" (git-fixes). - Revert "usb: add quirks for Lenovo OneLink+ Dock" (git-fixes). - Revert "usb: storage: Add quirk for Samsung Fit flash" (git-fixes). - Revert "usb: storage: Add quirk for Samsung Fit flash" (git-fixes). - USB: serial: console: move mutex_unlock() before usb_serial_put() (git-fixes). - USB: serial: ftdi_sio: fix 300 bps rate for SIO (git-fixes). - USB: serial: option: add Quectel BG95 0x0203 composition (git-fixes). - USB: serial: option: add Quectel BG95 0x0203 composition (git-fixes). - USB: serial: option: add Quectel RM520N (git-fixes). - USB: serial: option: add Quectel RM520N (git-fixes). - USB: serial: qcserial: add new usb-id for Dell branded EM7455 (git-fixes). - USB: serial: qcserial: add new usb-id for Dell branded EM7455 (git-fixes). - arm64: assembler: add cond_yield macro (git-fixes) - ata: fix ata_id_has_devslp() (git-fixes). - ata: fix ata_id_has_dipm() (git-fixes). - ata: fix ata_id_has_ncq_autosense() (git-fixes). - ata: fix ata_id_sense_reporting_enabled() and ata_id_has_sense_reporting() (git-fixes). - ata: libahci_platform: Sanity check the DT child nodes number (git-fixes). - can: bcm: check the result of can_send() in bcm_can_tx() (git-fixes). - can: gs_usb: gs_can_open(): fix race dev->can.state condition (git-fixes). - can: kvaser_usb: Fix possible completions during init_completion (git-fixes). - can: kvaser_usb: Fix use of uninitialized completion (git-fixes). - can: kvaser_usb_leaf: Fix CAN state after restart (git-fixes). - can: kvaser_usb_leaf: Fix TX queue out of sync after restart (git-fixes). - can: mscan: mpc5xxx: mpc5xxx_can_probe(): add missing put_clock() in error path (git-fixes). - cgroup/cpuset: Enable update_tasks_cpumask() on top_cpuset (bsc#1204753). - clk: bcm2835: Make peripheral PLLC critical (git-fixes). - clk: bcm2835: fix bcm2835_clock_rate_from_divisor declaration (git-fixes). - clk: berlin: Add of_node_put() for of_get_parent() (git-fixes). - clk: imx: imx6sx: remove the SET_RATE_PARENT flag for QSPI clocks (git-fixes). - clk: iproc: Do not rely on node name for correct PLL setup (git-fixes). - clk: mediatek: mt8183: mfgcfg: Propagate rate changes to parent (git-fixes). - clk: oxnas: Hold reference returned by of_get_parent() (git-fixes). - clk: qcom: gcc-msm8916: use ARRAY_SIZE instead of specifying num_parents (git-fixes). - clk: qoriq: Hold reference returned by of_get_parent() (git-fixes). - clk: tegra20: Fix refcount leak in tegra20_clock_init (git-fixes). - clk: tegra: Fix refcount leak in tegra114_clock_init (git-fixes). - clk: tegra: Fix refcount leak in tegra210_clock_init (git-fixes). - clk: ti: dra7-atl: Fix reference leak in of_dra7_atl_clk_probe (git-fixes). - clk: zynqmp: Fix stack-out-of-bounds in strncpy` (git-fixes). - clk: zynqmp: pll: rectify rate rounding in zynqmp_pll_round_rate (git-fixes). - crypto: akcipher - default implementation for setting a private key (git-fixes). - crypto: arm64/sha - fix function types (git-fixes) - crypto: arm64/sha1-ce - simplify NEON yield (git-fixes) - crypto: arm64/sha2-ce - simplify NEON yield (git-fixes) - crypto: arm64/sha3-ce - simplify NEON yield (git-fixes) - crypto: arm64/sha512-ce - simplify NEON yield (git-fixes) - crypto: cavium - prevent integer overflow loading firmware (git-fixes). - crypto: ccp - Release dma channels before dmaengine unrgister (git-fixes). - crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr (git-fixes). - device property: Fix documentation for *_match_string() APIs (git-fixes). - dmaengine: ioat: stop mod_timer from resurrecting deleted timer in __cleanup() (git-fixes). - dmaengine: xilinx_dma: Report error in case of dma_set_mask_and_coherent API failure (git-fixes). - dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores property (git-fixes). - docs: update mediator information in CoC docs (git-fixes). - drivers: serial: jsm: fix some leaks in probe (git-fixes). - drm/amd/display: Limit user regamma to a valid value (git-fixes). - drm/amdgpu: do not register a dirty callback for non-atomic (git-fixes). - drm/amdgpu: fix initial connector audio value (git-fixes). - drm/amdgpu: use dirty framebuffer helper (git-fixes). - drm/bridge: Avoid uninitialized variable warning (git-fixes). - drm/bridge: megachips: Fix a null pointer dereference bug (git-fixes). - drm/bridge: parade-ps8640: Fix regulator supply order (git-fixes). - drm/i915/gvt: fix a memory leak in intel_gvt_init_vgpu_types (git-fixes). - drm/mipi-dsi: Detach devices when removing the host (git-fixes). - drm/msm/dpu: Fix comment typo (git-fixes). - drm/msm/dpu: index dpu_kms->hw_vbif using vbif_idx (git-fixes). - drm/msm/dsi: fix memory corruption with too many bridges (git-fixes). - drm/msm/hdmi: fix memory corruption with too many bridges (git-fixes). - drm/msm: Fix return type of mdp4_lvds_connector_mode_valid (git-fixes). - drm/msm: Make .remove and .shutdown HW shutdown consistent (git-fixes). - drm/nouveau/nouveau_bo: fix potential memory leak in nouveau_bo_alloc() (git-fixes). - drm/nouveau: fix a use-after-free in nouveau_gem_prime_import_sg_table() (git-fixes). - drm/omap: dss: Fix refcount leak bugs (git-fixes). - drm/rockchip: Fix return type of cdn_dp_connector_mode_valid (git-fixes). - drm/scheduler: quieten kernel-doc warnings (git-fixes). - drm/udl: Restore display mode on resume (git-fixes). - drm: Prevent drm_copy_field() to attempt copying a NULL pointer (git-fixes). - drm: Use size_t type for len variable in drm_copy_field() (git-fixes). - drm: bridge: adv7511: fix CEC power down control register offset (git-fixes). - drm: fix drm_mipi_dbi build errors (git-fixes). - drm: panel-orientation-quirks: Add quirk for Anbernic Win600 (git-fixes). - drm:pl111: Add of_node_put() when breaking out of for_each_available_child_of_node() (git-fixes). - dyndbg: fix module.dyndbg handling (git-fixes). - dyndbg: let query-modname override actual module name (git-fixes). - efi: Correct Macmini DMI match in uefi cert quirk (git-fixes). - efi: libstub: drop pointless get_memory_map() call (git-fixes). - exfat: Return ENAMETOOLONG consistently for oversized paths (bsc#1204053 bsc#1201725). - fbdev: cyber2000fb: fix missing pci_disable_device() (git-fixes). - fbdev: da8xx-fb: Fix error handling in .remove() (git-fixes). - firmware: arm_scmi: Add SCMI PM driver remove routine (git-fixes). - firmware: google: Test spinlock on panic path to avoid lockups (git-fixes). - fpga: prevent integer overflow in dfl_feature_ioctl_set_irq() (git-fixes). - gpio: rockchip: request GPIO mux to pinctrl when setting direction (git-fixes). - hid: hid-logitech-hidpp: avoid unnecessary assignments in hidpp_connect_event (git-fixes). - hwmon/coretemp: Handle large core ID value (git-fixes). - iio: ABI: Fix wrong format of differential capacitance channel ABI (git-fixes). - iio: adc: ad7923: fix channel readings for some variants (git-fixes). - iio: adc: at91-sama5d2_adc: check return status for pressure and touch (git-fixes). - iio: adc: at91-sama5d2_adc: fix AT91_SAMA5D2_MR_TRACKTIM_MAX (git-fixes). - iio: adc: at91-sama5d2_adc: lock around oversampling and sample freq (git-fixes). - iio: adc: mcp3911: use correct id bits (git-fixes). - iio: dac: ad5593r: Fix i2c read protocol requirements (git-fixes). - iio: inkern: only release the device node when done with it (git-fixes). - iio: light: tsl2583: Fix module unloading (git-fixes). - iio: pressure: dps310: Refactor startup procedure (git-fixes). - iio: pressure: dps310: Reset chip after timeout (git-fixes). - irqchip/ls-extirq: Fix invalid wait context by avoiding to use regmap (git-fixes). - kABI: arm64/crypto/sha512 Preserve function signature (git-fixes). - kbuild: Add skip_encoding_btf_enum64 option to pahole (git-fixes). - kbuild: remove the target in signal traps when interrupted (git-fixes). - kbuild: sink stdout from cmd for silent build (git-fixes). - kbuild: skip per-CPU BTF generation for pahole v1.18-v1.21 (jsc#SLE-24559). - kthread: Extract KTHREAD_IS_PER_CPU (bsc#1204753). - lib/sg_pool: change module_init(sg_pool_init) to subsys_initcall (git-fixes). - libata: add ATA_HORKAGE_NOLPM for Pioneer BDR-207M and BDR-205 (git-fixes). - locking/csd_lock: Change csdlock_debug from early_param to __setup (git-fixes). - mISDN: fix use-after-free bugs in l1oip timer handlers (git-fixes). - mISDN: hfcpci: Fix use-after-free bug in hfcpci_softirq (git-fixes). - mac802154: Fix LQI recording (git-fixes). - mailbox: bcm-ferxrm-mailbox: Fix error check for dma_map_sg (git-fixes). - media: aspeed-video: ignore interrupts that are not enabled (git-fixes). - media: cedrus: Set the platform driver data earlier (git-fixes). - media: coda: Add more H264 levels for CODA960 (git-fixes). - media: coda: Fix reported H264 profile (git-fixes). - media: cx88: Fix a null-ptr-deref bug in buffer_prepare() (git-fixes). - media: dvb_vb2: fix possible out of bound access (git-fixes). - media: v4l2-dv-timings: add sanity checks for blanking values (git-fixes). - media: videodev2.h: V4L2_DV_BT_BLANKING_HEIGHT should check 'interlaced' (git-fixes). - media: xilinx: vipp: Fix refcount leak in xvip_graph_dma_init (git-fixes). - memory: of: Fix refcount leak bug in of_get_ddr_timings() (git-fixes). - memory: pl353-smc: Fix refcount leak bug in pl353_smc_probe() (git-fixes). - mfd: fsl-imx25: Fix an error handling path in mx25_tsadc_setup_irq() (git-fixes). - mfd: intel_soc_pmic: Fix an error handling path in intel_soc_pmic_i2c_probe() (git-fixes). - mfd: lp8788: Fix an error handling path in lp8788_irq_init() and lp8788_irq_init() (git-fixes). - mfd: lp8788: Fix an error handling path in lp8788_probe() (git-fixes). - mfd: sm501: Add check for platform_driver_register() (git-fixes). - misc: ocxl: fix possible refcount leak in afu_ioctl() (git-fixes). - mm, memcg: avoid stale protection values when cgroup is above protection (bsc#1204754). - mm/hugetlb: fix races when looking up a CONT-PTE/PMD size hugetlb page (bsc#1204575). - mm: memcontrol: fix occasional OOMs due to proportional memory.low reclaim (bsc#1204754). - mmc: au1xmmc: Fix an error handling path in au1xmmc_probe() (git-fixes). - mmc: core: Fix kernel panic when remove non-standard SDIO card (git-fixes). - mmc: core: Replace with already defined values for readability (git-fixes). - mmc: core: Terminate infinite loop in SD-UHS voltage switch (git-fixes). - mmc: moxart: fix 4-bit bus width and remove 8-bit bus width (git-fixes). - mmc: sdhci-msm: add compatible string check for sdm670 (git-fixes). - mmc: sdhci-sprd: Fix minimum clock limit (git-fixes). - mmc: wmt-sdmmc: Fix an error handling path in wmt_mci_probe() (git-fixes). - mtd: devices: docg3: check the return value of devm_ioremap() in the probe (git-fixes). - mtd: rawnand: atmel: Unmap streaming DMA mappings (git-fixes). - mtd: rawnand: marvell: Use correct logic for nand-keep-config (git-fixes). - mtd: rawnand: meson: fix bit map use in meson_nfc_ecc_correct() (git-fixes). - net/ieee802154: fix uninit value bug in dgram_sendmsg (git-fixes). - net: ieee802154: return -EINVAL for unknown addr type (git-fixes). - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455 (git-fixes). - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455 (git-fixes). - net: usb: qmi_wwan: add Quectel RM520N (git-fixes). - openvswitch: Fix double reporting of drops in dropwatch (git-fixes). - openvswitch: Fix overreporting of drops in dropwatch (git-fixes). - openvswitch: switch from WARN to pr_warn (git-fixes). - padata: introduce internal padata_get/put_pd() helpers (bsc#1202638). - padata: make padata_free_shell() to respect pd's ->refcnt (bsc#1202638). - parisc/sticon: fix reverse colors (bsc#1152489) Backporting notes: * context changes - parisc: parisc-agp requires SBA IOMMU driver (bsc#1152489) - phy: qualcomm: call clk_disable_unprepare in the error handling (git-fixes). - pinctrl: armada-37xx: Add missing GPIO-only pins (git-fixes). - pinctrl: armada-37xx: Checks for errors in gpio_request_enable callback (git-fixes). - pinctrl: armada-37xx: Fix definitions for MPP pins 20-22 (git-fixes). - pinctrl: rockchip: add pinmux_ops.gpio_set_direction callback (git-fixes). - platform/x86: msi-laptop: Change DMI match / alias strings to fix module autoloading (git-fixes). - platform/x86: msi-laptop: Fix old-ec check for backlight registering (git-fixes). - platform/x86: msi-laptop: Fix resource cleanup (git-fixes). - power: supply: adp5061: fix out-of-bounds read in adp5061_get_chg_type() (git-fixes). - powerpc/64: Remove unused SYS_CALL_TABLE symbol (jsc#SLE-9246 git-fixes). - powerpc/fadump: align destination address to pagesize (bsc#1204728 ltc#200074). - powerpc/kprobes: Fix null pointer reference in arch_prepare_kprobe() (jsc#SLE-13847 git-fixes). - powerpc/mm/64s: Drop pgd_huge() (bsc#1065729). - powerpc/mm: remove pmd_huge/pud_huge stubs and include hugetlb.h (bsc#1065729). - powerpc/pci_dn: Add missing of_node_put() (bsc#1065729). - powerpc/powernv: add missing of_node_put() in opal_export_attrs() (bsc#1065729). - powerpc/pseries: Interface to represent PAPR firmware attributes (bsc#1200465 ltc#197256 jsc#PED-1931). - quota: widen timestamps for the fs_disk_quota structure (bsc#1203387). - regulator: pfuze100: Fix the global-out-of-bounds access in pfuze100_regulator_probe() (git-fixes). - regulator: qcom_rpm: Fix circular deferral regression (git-fixes). - reset: imx7: Fix the iMX8MP PCIe PHY PERST support (git-fixes). - rpmsg: qcom: glink: replace strncpy() with strscpy_pad() (git-fixes). - rtc: stmp3xxx: Add failure handling for stmp3xxx_wdt_register() (git-fixes). - s390/hypfs: avoid error message under KVM (bsc#1032323). - sbitmap: Avoid leaving waitqueue in invalid state in __sbq_wake_up() (git-fixes). - sbitmap: fix possible io hung due to lost wakeup (git-fixes). - scsi: libsas: Fix use-after-free bug in smp_execute_task_sg() (git-fixes). - scsi: mpt3sas: Fix return value check of dma_get_required_mask() (git-fixes). - scsi: qla2xxx: Fix disk failure to rediscover (git-fixes). - selftest/powerpc: Add PAPR sysfs attributes sniff test (bsc#1200465 ltc#197256 jsc#PED-1931). - selftests/powerpc: Skip energy_scale_info test on older firmware (git-fixes). - serial: Create uart_xmit_advance() (git-fixes). - serial: tegra-tcu: Use uart_xmit_advance(), fixes icount.tx accounting (git-fixes). - serial: tegra: Use uart_xmit_advance(), fixes icount.tx accounting (git-fixes). - soc: qcom: smem_state: Add refcounting for the 'state->of_node' (git-fixes). - soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe() (git-fixes). - soc: sunxi: sram: Actually claim SRAM regions (git-fixes). - soc: sunxi: sram: Fix debugfs info for A64 SRAM C (git-fixes). - soc: sunxi: sram: Prevent the driver from being unbound (git-fixes). - soc: sunxi_sram: Make use of the helper function devm_platform_ioremap_resource() (git-fixes). - spi/omap100k:Fix PM disable depth imbalance in omap1_spi100k_probe (git-fixes). - spi: mt7621: Fix an error message in mt7621_spi_probe() (git-fixes). - spi: qup: add missing clk_disable_unprepare on error in spi_qup_pm_resume_runtime() (git-fixes). - spi: qup: add missing clk_disable_unprepare on error in spi_qup_resume() (git-fixes). - spi: s3c64xx: Fix large transfers with DMA (git-fixes). - staging: rtl8723bs: fix a potential memory leak in rtw_init_cmd_priv() (git-fixes). - staging: vt6655: fix potential memory leak (git-fixes). - staging: vt6655: fix some erroneous memory clean-up loops (git-fixes). - struct pci_config_window kABI workaround (bsc#1204382). - thermal: intel_powerclamp: Use first online CPU as control_cpu (git-fixes). - thermal: intel_powerclamp: Use get_cpu() instead of smp_processor_id() to avoid crash (git-fixes). - tty/serial: atmel: RS485 & ISO7816: wait for TXRDY before sending data (git-fixes). - tty: serial: fsl_lpuart: disable dma rx/tx use flags in lpuart_dma_shutdown (git-fixes). - tty: xilinx_uartps: Fix the ignore_status (git-fixes). - uas: add no-uas quirk for Hiksemi usb_disk (git-fixes). - uas: ignore UAS for Thinkplus chips (git-fixes). - usb-storage: Add Hiksemi USB3-FW to IGNORE_UAS (git-fixes). - usb: add quirks for Lenovo OneLink+ Dock (git-fixes). - usb: add quirks for Lenovo OneLink+ Dock (git-fixes). - usb: bdc: change state when port disconnected (git-fixes). - usb: dwc3: gadget: Avoid starting DWC3 gadget during UDC unbind (git-fixes). - usb: dwc3: gadget: Do not set IMI for no_interrupt (git-fixes). - usb: dwc3: gadget: Prevent repeat pullup() (git-fixes). - usb: dwc3: gadget: Stop processing more requests on IMI (git-fixes). - usb: gadget: function: fix dangling pnp_string in f_printer.c (git-fixes). - usb: host: xhci: Fix potential memory leak in xhci_alloc_stream_info() (git-fixes). - usb: idmouse: fix an uninit-value in idmouse_open (git-fixes). - usb: mon: make mmapped memory read only (git-fixes). - usb: musb: Fix musb_gadget.c rxstate overflow bug (git-fixes). - usb: typec: ucsi: Remove incorrect warning (git-fixes). - usb: xhci-mtk: add a function to (un)load bandwidth info (git-fixes). - usb: xhci-mtk: add only one extra CS for FS/LS INTR (git-fixes). - usb: xhci-mtk: add some schedule error number (git-fixes). - usb: xhci-mtk: fix issue of out-of-bounds array access (git-fixes). - usb: xhci-mtk: get the microframe boundary for ESIT (git-fixes). - usb: xhci-mtk: use @sch_tt to check whether need do TT schedule (git-fixes). - vhost/vsock: Use kvmalloc/kvfree for larger packets (git-fixes). - video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write (git-fixes). - watchdog: armada_37xx_wdt: Fix .set_timeout callback (git-fixes). - watchdog: ftwdt010_wdt: fix test for platform_get_irq() failure (git-fixes). - wifi: ath10k: add peer map clean up for peer delete in ath10k_sta_state() (git-fixes). - wifi: ath9k: avoid uninit memory read in ath9k_htc_rx_msg() (git-fixes). - wifi: brcmfmac: fix invalid address access when enabling SCAN log level (git-fixes). - wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() (git-fixes). - wifi: cfg80211: update hidden BSSes to avoid WARN_ON (git-fixes). - wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue (other cases) (git-fixes). - wifi: mac80211: Fix UAF in ieee80211_scan_rx() (git-fixes). - wifi: mac80211: allow bw change during channel switch in mesh (git-fixes). - wifi: mac80211: do not drop packets smaller than the LLC-SNAP header on fast-rx (git-fixes). - wifi: mac80211_hwsim: avoid mac80211 warning on bad rate (git-fixes). - wifi: rt2x00: correctly set BBP register 86 for MT7620 (git-fixes). - wifi: rt2x00: do not run Rt5592 IQ calibration on MT7620 (git-fixes). - wifi: rt2x00: set SoC wmac clock register (git-fixes). - wifi: rt2x00: set VGC gain for both chains of MT7620 (git-fixes). - wifi: rt2x00: set correct TX_SW_CFG1 MAC register for MT7620 (git-fixes). - wifi: rtl8xxxu: Fix AIFS written to REG_EDCA_*_PARAM (git-fixes). - wifi: rtl8xxxu: Fix skb misuse in TX queue selection (git-fixes). - wifi: rtl8xxxu: Improve rtl8xxxu_queue_select (git-fixes). - wifi: rtl8xxxu: Remove copy-paste leftover in gen2_update_rate_mask (git-fixes). - wifi: rtl8xxxu: gen2: Fix mistake in path B IQ calibration (git-fixes). - wifi: rtl8xxxu: tighten bounds checking in rtl8xxxu_read_efuse() (git-fixes). - xfs: add missing assert in xfs_fsmap_owner_from_rmap (git-fixes). - xfs: enable big timestamps (bsc#1203387). - xfs: enable new inode btree counters feature (bsc#1203387). - xfs: explicitly define inode timestamp range (bsc#1203387). - xfs: fix memory corruption during remote attr value buffer invalidation (git-fixes). - xfs: fix s_maxbytes computation on 32-bit kernels (git-fixes). - xfs: hoist out xfs_resizefs_init_new_ags() (git-fixes). - xfs: move incore structures out of xfs_da_format.h (git-fixes). - xfs: quota: move to time64_t interfaces (bsc#1203387). - xfs: redefine xfs_ictimestamp_t (bsc#1203387). - xfs: redefine xfs_timestamp_t (bsc#1203387). - xfs: refactor remote attr value buffer invalidation (git-fixes). - xfs: remove obsolete AGF counter debugging (git-fixes). - xfs: rename `new' to `delta' in xfs_growfs_data_private() (git-fixes). - xfs: reserve data and rt quota at the same time (bsc#1203496). - xfs: slightly tweak an assert in xfs_fs_map_blocks (git-fixes). - xfs: store inode btree block counts in AGI header (bsc#1203387). - xfs: streamline xfs_attr3_leaf_inactive (git-fixes). - xfs: use a struct timespec64 for the in-core crtime (bsc#1203387). - xfs: use the finobt block counts to speed up mount times (bsc#1203387). - xfs: widen ondisk inode timestamps to deal with y2038+ (bsc#1203387). - xfs: widen ondisk quota expiration timestamps to handle y2038+ (bsc#1203387). - xhci: Do not show warning for reinit on known broken suspend (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.101.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.101.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.101.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.101.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.101.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.101.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.101.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.101.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.101.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.101.1.x86_64.rpm True kernel-default-5.3.18-150300.59.101.1.nosrc.rpm True kernel-default-5.3.18-150300.59.101.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.101.1.150300.18.58.1.src.rpm True kernel-default-base-5.3.18-150300.59.101.1.150300.18.58.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.101.1.150300.18.58.1.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.101.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.101.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.101.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.101.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.101.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.101.1.noarch.rpm True kernel-docs-5.3.18-150300.59.101.1.noarch.rpm True kernel-docs-5.3.18-150300.59.101.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.101.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.101.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.101.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.101.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.101.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.101.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.101.1.src.rpm True kernel-obs-build-5.3.18-150300.59.101.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.101.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.101.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.101.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.101.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.101.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.101.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.101.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.101.1.x86_64.rpm True kernel-source-5.3.18-150300.59.101.1.noarch.rpm True kernel-source-5.3.18-150300.59.101.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.101.1.noarch.rpm True kernel-syms-5.3.18-150300.59.101.1.src.rpm True kernel-syms-5.3.18-150300.59.101.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.101.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.101.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.101.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.101.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.101.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.101.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.101.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.101.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.101.1.s390x.rpm True kernel-default-5.3.18-150300.59.101.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.101.1.150300.18.58.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.101.1.150300.18.58.1.s390x.rpm True kernel-default-devel-5.3.18-150300.59.101.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.101.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.101.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.101.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.101.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.101.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.101.1.s390x.rpm True kernel-syms-5.3.18-150300.59.101.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.101.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.101.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.101.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.101.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.101.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.101.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.101.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.101.1.150300.18.58.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.101.1.150300.18.58.1.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.101.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.101.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.101.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.101.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.101.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.101.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.101.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.101.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.101.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.101.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.101.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.101.1.nosrc.rpm True dtb-al-5.3.18-150300.59.101.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.101.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.101.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.101.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.101.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.101.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.101.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.101.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.101.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.101.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.101.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.101.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.101.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.101.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.101.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.101.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.101.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.101.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.101.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.101.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.101.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.101.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.101.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.101.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.101.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.101.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.101.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.101.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.101.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.101.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.101.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.101.1.aarch64.rpm True kernel-default-5.3.18-150300.59.101.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.101.1.150300.18.58.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.101.1.150300.18.58.1.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.101.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.101.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.101.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.101.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.101.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.101.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.101.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.101.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.101.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.101.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.101.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.101.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.101.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.101.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.101.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.101.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.101.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.101.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.101.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.101.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.101.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.101.1.aarch64.rpm True openSUSE-SLE-15.3-2022-3897 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-4037: Fixed function logic vulnerability that allowed local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set (bnc#1198702). - CVE-2022-2153: Fixed vulnerability in KVM that could allow an unprivileged local attacker on the host to cause DoS (bnc#1200788). - CVE-2022-2964, CVE-2022-28748: Fixed memory corruption issues in ax88179_178a devices (bnc#1202686 bsc#1196018). - CVE-2022-2978: Fixed use-after-free in the NILFS file system that could lead to local privilege escalation or DoS (bnc#1202700). - CVE-2022-3169: Fixed a denial of service flaw which occurs when consecutive requests to NVME_IOCTL_RESET and the NVME_IOCTL_SUBSYS_RESET are sent (bnc#1203290). - CVE-2022-3176: Fixed use-after-free in io_uring when using POLLFREE (bnc#1203391). - CVE-2022-3424: Fixed use-after-free in gru_set_context_option(), gru_fault() and gru_handle_user_call_os() that could lead to kernel panic (bsc#1204166). - CVE-2022-3521: Fixed race condition in kcm_tx_work() in net/kcm/kcmsock.c (bnc#1204355). - CVE-2022-3524: Fixed memory leak in ipv6_renew_options() in the IPv6 handler (bnc#1204354). - CVE-2022-3535: Fixed memory leak in mvpp2_dbgfs_port_init() in drivers/net/ethernet/marvell/mvpp2/mvpp2_debugfs.c (bnc#1204417). - CVE-2022-3542: Fixed memory leak in bnx2x_tpa_stop() in drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c (bnc#1204402). - CVE-2022-3545: Fixed use-after-free in area_cache_get() in drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c (bnc#1204415). - CVE-2022-3565: Fixed use-after-free in del_timer() in drivers/isdn/mISDN/l1oip_core.c (bnc#1204431). - CVE-2022-3577: Fixed out-of-bounds memory write flaw in bigben device driver that could lead to local privilege escalation or DoS (bnc#1204470). - CVE-2022-3586: Fixed use-after-free in socket buffer (SKB) that could allow a local unprivileged user to cause a denial of service (bnc#1204439). - CVE-2022-3594: Fixed excessive data logging in intr_callback() in drivers/net/usb/r8152.c (bnc#1204479). - CVE-2022-3621: Fixed null pointer dereference in nilfs_bmap_lookup_at_level() in fs/nilfs2/inode.c (bnc#1204574). - CVE-2022-3623: Fixed race condition in follow_page_pte() (mm/gup.c) (bsc#1204575). - CVE-2022-3625: Fixed use-after-free in devlink_param_set()/devlink_param_get() in net/core/devlink.c (bnc#1204637). - CVE-2022-3629: Fixed memory leak in vsock_connect() in net/vmw_vsock/af_vsock.c (bnc#1204635). - CVE-2022-3640: Fixed use-after-free in l2cap_conn_del() in net/bluetooth/l2cap_core.c (bnc#1204619). - CVE-2022-3646: Fixed memory leak in nilfs_attach_log_writer() in fs/nilfs2/segment.c (bnc#1204646). - CVE-2022-3649: Fixed use-after-free in nilfs_new_inode() in fs/nilfs2/inode.c (bnc#1204647). - CVE-2022-39189: Fixed a flaw in the x86 KVM subsystem that could allow unprivileged guest users to compromise the guest kernel via TLB flush operations on preempted vCPU (bnc#1203066). - CVE-2022-40768: Fixed information disclosure in stex_queuecommand_lck (bnc#1203514). - CVE-2022-41674: Fixed a DoS issue where kernel can crash on the reception of specific WiFi Frames (bsc#1203770). - CVE-2022-42703: Fixed use-after-free in mm/rmap.c related to leaf anon_vma double reuse (bnc#1204168). - CVE-2022-42719: Fixed MBSSID parsing use-after-free. (bsc#1204051) - CVE-2022-42720: Fixed BSS refcounting bugs. (bsc#1204059) - CVE-2022-42721: Avoid nontransmitted BSS list corruption. (bsc#1204060) - CVE-2022-42722: Fixed crash in beacon protection for P2P-device. (bsc#1204125) - CVE-2022-43750: Fixed vulnerability in usbmon that allowed a user-space client to corrupt the monitor's internal memory (bnc#1204653). The following non-security bugs were fixed: - acpi: APEI: do not add task_work to kernel thread to avoid memory leak (git-fixes). - acpi: HMAT: Release platform device in case of platform_device_add_data() fails (git-fixes). - acpi: extlog: Handle multiple records (git-fixes). - acpi: processor idle: Practically limit "Dummy wait" workaround to old Intel systems (bnc#1203802). - acpi: video: Add Toshiba Satellite/Portege Z830 quirk (git-fixes). - alsa: Use del_timer_sync( before freeing timer (git-fixes). - alsa: ac97: fix possible memory leak in snd_ac97_dev_register() (git-fixes). - alsa: aoa: Fix I2S device accounting (git-fixes). - alsa: aoa: i2sbus: fix possible memory leak in i2sbus_add_dev() (git-fixes). - alsa: asihpi - Remove useless code in hpi_meter_get_peak() (git-fixes). - alsa: au88x0: use explicitly signed char (git-fixes). - alsa: dmaengine: increment buffer pointer atomically (git-fixes). - alsa: hda/hdmi: Do not skip notification handling during PM operation (git-fixes). - alsa: hda/realtek: Add Intel Reference SSID to support headset keys (git-fixes). - alsa: hda/realtek: Add pincfg for ASUS G513 HP jack (git-fixes). - alsa: hda/realtek: Add pincfg for ASUS G533Z HP jack (git-fixes). - alsa: hda/realtek: Add quirk for ASUS GA503R laptop (git-fixes). - alsa: hda/realtek: Add quirk for ASUS GV601R laptop (git-fixes). - alsa: hda/realtek: Add quirk for Huawei WRT-WX9 (git-fixes). - alsa: hda/realtek: Correct pin configs for ASUS G533Z (git-fixes). - alsa: hda/realtek: Enable 4-speaker output Dell Precision 5530 laptop (git-fixes). - alsa: hda/realtek: remove ALC289_FIXUP_DUAL_SPK for Dell 5530 (git-fixes). - alsa: hda/sigmatel: Fix unused variable warning for beep power change (git-fixes). - alsa: hda/sigmatel: Keep power up while beep is enabled (git-fixes). - alsa: hda/tegra: Align BDL entry to 4KB boundary (git-fixes). - alsa: hda: Fix position reporting on Poulsbo (git-fixes). - alsa: hda: add Intel 5 Series / 3400 PCI DID (git-fixes). - alsa: oss: Fix potential deadlock at unregistration (git-fixes). - alsa: rawmidi: Drop register_mutex in snd_rawmidi_free() (git-fixes). - alsa: rme9652: use explicitly signed char (git-fixes). - alsa: usb-audio: Fix NULL dererence at error path (git-fixes). - alsa: usb-audio: Fix potential memory leaks (git-fixes). - arm64: assembler: add cond_yield macro (git-fixes) - asoc: eureka-tlv320: Hold reference returned from of_find_xxx API (git-fixes). - asoc: fsl_sai: Remove unnecessary FIFO reset in ISR (git-fixes). - asoc: mt6660: Fix PM disable depth imbalance in mt6660_i2c_probe (git-fixes). - asoc: nau8824: Fix semaphore unbalance at error paths (git-fixes). - asoc: rsnd: Add check for rsnd_mod_power_on (git-fixes). - asoc: tas2770: Reinit regcache on reset (git-fixes). - asoc: wcd9335: fix order of Slimbus unprepare/disable (git-fixes). - asoc: wcd934x: fix order of Slimbus unprepare/disable (git-fixes). - asoc: wm5102: Fix PM disable depth imbalance in wm5102_probe (git-fixes). - asoc: wm5110: Fix PM disable depth imbalance in wm5110_probe (git-fixes). - asoc: wm8997: Fix PM disable depth imbalance in wm8997_probe (git-fixes). - ata: fix ata_id_has_devslp() (git-fixes). - ata: fix ata_id_has_dipm() (git-fixes). - ata: fix ata_id_has_ncq_autosense() (git-fixes). - ata: fix ata_id_sense_reporting_enabled() and ata_id_has_sense_reporting() (git-fixes). - ata: libahci_platform: Sanity check the DT child nodes number (git-fixes). - bluetooth: L2CAP: Fix user-after-free (git-fixes). - bluetooth: L2CAP: initialize delayed works at l2cap_chan_create() (git-fixes). - bluetooth: hci_core: Fix not handling link timeouts propertly (git-fixes). - bluetooth: hci_sysfs: Fix attempting to call device_add multiple times (git-fixes). - can: bcm: check the result of can_send() in bcm_can_tx() (git-fixes). - can: gs_usb: gs_can_open(): fix race dev->can.state condition (git-fixes). - can: kvaser_usb: Fix possible completions during init_completion (git-fixes). - can: kvaser_usb: Fix use of uninitialized completion (git-fixes). - can: kvaser_usb_leaf: Fix CAN state after restart (git-fixes). - can: kvaser_usb_leaf: Fix TX queue out of sync after restart (git-fixes). - can: mscan: mpc5xxx: mpc5xxx_can_probe(): add missing put_clock() in error path (git-fixes). - cgroup/cpuset: Enable update_tasks_cpumask() on top_cpuset (bsc#1204753). - clk: bcm2835: Make peripheral PLLC critical (git-fixes). - clk: bcm2835: fix bcm2835_clock_rate_from_divisor declaration (git-fixes). - clk: berlin: Add of_node_put() for of_get_parent() (git-fixes). - clk: imx: imx6sx: remove the SET_RATE_PARENT flag for QSPI clocks (git-fixes). - clk: iproc: Do not rely on node name for correct PLL setup (git-fixes). - clk: mediatek: mt8183: mfgcfg: Propagate rate changes to parent (git-fixes). - clk: oxnas: Hold reference returned by of_get_parent() (git-fixes). - clk: qcom: gcc-msm8916: use ARRAY_SIZE instead of specifying num_parents (git-fixes). - clk: qoriq: Hold reference returned by of_get_parent() (git-fixes). - clk: tegra20: Fix refcount leak in tegra20_clock_init (git-fixes). - clk: tegra: Fix refcount leak in tegra114_clock_init (git-fixes). - clk: tegra: Fix refcount leak in tegra210_clock_init (git-fixes). - clk: ti: dra7-atl: Fix reference leak in of_dra7_atl_clk_probe (git-fixes). - clk: zynqmp: Fix stack-out-of-bounds in strncpy` (git-fixes). - clk: zynqmp: pll: rectify rate rounding in zynqmp_pll_round_rate (git-fixes). - crypto: akcipher - default implementation for setting a private key (git-fixes). - crypto: arm64/sha - fix function types (git-fixes) - crypto: arm64/sha1-ce - simplify NEON yield (git-fixes) - crypto: arm64/sha2-ce - simplify NEON yield (git-fixes) - crypto: arm64/sha3-ce - simplify NEON yield (git-fixes) - crypto: arm64/sha512-ce - simplify NEON yield (git-fixes) - crypto: cavium - prevent integer overflow loading firmware (git-fixes). - crypto: ccp - Release dma channels before dmaengine unrgister (git-fixes). - crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr (git-fixes). - device property: Fix documentation for *_match_string() APIs (git-fixes). - dmaengine: ioat: stop mod_timer from resurrecting deleted timer in __cleanup() (git-fixes). - dmaengine: xilinx_dma: Report error in case of dma_set_mask_and_coherent API failure (git-fixes). - dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores property (git-fixes). - docs: update mediator information in CoC docs (git-fixes). - drivers: serial: jsm: fix some leaks in probe (git-fixes). - drm/amd/display: Limit user regamma to a valid value (git-fixes). - drm/amdgpu: do not register a dirty callback for non-atomic (git-fixes). - drm/amdgpu: fix initial connector audio value (git-fixes). - drm/amdgpu: use dirty framebuffer helper (git-fixes). - drm/bridge: Avoid uninitialized variable warning (git-fixes). - drm/bridge: megachips: Fix a null pointer dereference bug (git-fixes). - drm/bridge: parade-ps8640: Fix regulator supply order (git-fixes). - drm/i915/gvt: fix a memory leak in intel_gvt_init_vgpu_types (git-fixes). - drm/mipi-dsi: Detach devices when removing the host (git-fixes). - drm/msm/dpu: Fix comment typo (git-fixes). - drm/msm/dpu: index dpu_kms->hw_vbif using vbif_idx (git-fixes). - drm/msm/dsi: fix memory corruption with too many bridges (git-fixes). - drm/msm/hdmi: fix memory corruption with too many bridges (git-fixes). - drm/msm: Fix return type of mdp4_lvds_connector_mode_valid (git-fixes). - drm/msm: Make .remove and .shutdown HW shutdown consistent (git-fixes). - drm/nouveau/nouveau_bo: fix potential memory leak in nouveau_bo_alloc() (git-fixes). - drm/nouveau: fix a use-after-free in nouveau_gem_prime_import_sg_table() (git-fixes). - drm/omap: dss: Fix refcount leak bugs (git-fixes). - drm/rockchip: Fix return type of cdn_dp_connector_mode_valid (git-fixes). - drm/scheduler: quieten kernel-doc warnings (git-fixes). - drm/udl: Restore display mode on resume (git-fixes). - drm: Prevent drm_copy_field() to attempt copying a NULL pointer (git-fixes). - drm: Use size_t type for len variable in drm_copy_field() (git-fixes). - drm: bridge: adv7511: fix CEC power down control register offset (git-fixes). - drm: fix drm_mipi_dbi build errors (git-fixes). - drm: panel-orientation-quirks: Add quirk for Anbernic Win600 (git-fixes). - drm:pl111: Add of_node_put() when breaking out of for_each_available_child_of_node() (git-fixes). - dyndbg: fix module.dyndbg handling (git-fixes). - dyndbg: let query-modname override actual module name (git-fixes). - efi: Correct Macmini DMI match in uefi cert quirk (git-fixes). - efi: libstub: drop pointless get_memory_map() call (git-fixes). - exfat: Return ENAMETOOLONG consistently for oversized paths (bsc#1204053 bsc#1201725). - fbdev: cyber2000fb: fix missing pci_disable_device() (git-fixes). - fbdev: da8xx-fb: Fix error handling in .remove() (git-fixes). - firmware: arm_scmi: Add SCMI PM driver remove routine (git-fixes). - firmware: google: Test spinlock on panic path to avoid lockups (git-fixes). - fpga: prevent integer overflow in dfl_feature_ioctl_set_irq() (git-fixes). - gpio: rockchip: request GPIO mux to pinctrl when setting direction (git-fixes). - hid: hid-logitech-hidpp: avoid unnecessary assignments in hidpp_connect_event (git-fixes). - hid: hidraw: fix memory leak in hidraw_release() (git-fixes). - hid: magicmouse: Do not set BTN_MOUSE on double report (git-fixes). - hid: multitouch: Add memory barriers (git-fixes). - hid: roccat: Fix use-after-free in roccat_read() (git-fixes). - hsi: omap_ssi: Fix refcount leak in ssi_probe (git-fixes). - hsi: omap_ssi_port: Fix dma_map_sg error check (git-fixes). - hwmon/coretemp: Handle large core ID value (git-fixes). - ib/cm: Cancel mad on the DREQ event when the state is MRA_REP_RCVD (git-fixes) - ib/cma: Allow XRC INI QPs to set their local ACK timeout (git-fixes) - ib/core: Only update PKEY and GID caches on respective events (git-fixes) - ib/hfi1: Adjust pkey entry in index 0 (git-fixes) - ib/hfi1: Fix abba locking issue with sc_disable() (git-fixes) - ib/hfi1: Fix possible null-pointer dereference in _extend_sdma_tx_descs() (git-fixes) - ib/mlx4: Add support for REJ due to timeout (git-fixes) - ib/mlx4: Use port iterator and validation APIs (git-fixes) - ib/qib: Protect from buffer overflow in struct qib_user_sdma_pkt fields (git-fixes) - ib/rdmavt: Add __init/__exit annotations to module init/exit funcs (git-fixes) - ib/srpt: Remove redundant assignment to ret (git-fixes) - iio: ABI: Fix wrong format of differential capacitance channel ABI (git-fixes). - iio: adc: ad7923: fix channel readings for some variants (git-fixes). - iio: adc: at91-sama5d2_adc: check return status for pressure and touch (git-fixes). - iio: adc: at91-sama5d2_adc: fix AT91_SAMA5D2_MR_TRACKTIM_MAX (git-fixes). - iio: adc: at91-sama5d2_adc: lock around oversampling and sample freq (git-fixes). - iio: adc: mcp3911: use correct id bits (git-fixes). - iio: dac: ad5593r: Fix i2c read protocol requirements (git-fixes). - iio: inkern: only release the device node when done with it (git-fixes). - iio: light: tsl2583: Fix module unloading (git-fixes). - iio: pressure: dps310: Refactor startup procedure (git-fixes). - iio: pressure: dps310: Reset chip after timeout (git-fixes). - input: i8042 - fix refount leak on sparc (git-fixes). - input: xpad - add supported devices as contributed on github (git-fixes). - input: xpad - fix wireless 360 controller breaking after suspend (git-fixes). - irqchip/ls-extirq: Fix invalid wait context by avoiding to use regmap (git-fixes). - kABI: arm64/crypto/sha512 Preserve function signature (git-fixes). - kbuild: Add skip_encoding_btf_enum64 option to pahole (git-fixes). - kbuild: remove the target in signal traps when interrupted (git-fixes). - kbuild: sink stdout from cmd for silent build (git-fixes). - kbuild: skip per-CPU BTF generation for pahole v1.18-v1.21 (jsc#SLE-24559). - kthread: Extract KTHREAD_IS_PER_CPU (bsc#1204753). - kvm: nVMX: Unconditionally purge queued/injected events on nested "exit" (git-fixes). - kvm: s390: Clarify SIGP orders versus STOP/RESTART (git-fixes). - kvm: s390: VSIE: fix MVPG handling for prefixing and MSO (git-fixes). - kvm: s390: clear kicked_mask before sleeping again (git-fixes). - kvm: s390: preserve deliverable_mask in __airqs_kick_single_vcpu (git-fixes). - kvm: s390: pv: do not present the ecall interrupt twice (git-fixes). - kvm: s390: split kvm_s390_real_to_abs (git-fixes). - kvm: s390x: fix SCK locking (git-fixes) - kvm: x86/emulator: Fix handing of POP SS to correctly set interruptibility (git-fixes). - lib/sg_pool: change module_init(sg_pool_init) to subsys_initcall (git-fixes). - libata: add ATA_HORKAGE_NOLPM for Pioneer BDR-207M and BDR-205 (git-fixes). - locking/csd_lock: Change csdlock_debug from early_param to __setup (git-fixes). - mISDN: fix use-after-free bugs in l1oip timer handlers (git-fixes). - mISDN: hfcpci: Fix use-after-free bug in hfcpci_softirq (git-fixes). - mac802154: Fix LQI recording (git-fixes). - mailbox: bcm-ferxrm-mailbox: Fix error check for dma_map_sg (git-fixes). - media: aspeed-video: ignore interrupts that are not enabled (git-fixes). - media: cedrus: Set the platform driver data earlier (git-fixes). - media: coda: Add more H264 levels for CODA960 (git-fixes). - media: coda: Fix reported H264 profile (git-fixes). - media: cx88: Fix a null-ptr-deref bug in buffer_prepare() (git-fixes). - media: dvb_vb2: fix possible out of bound access (git-fixes). - media: v4l2-dv-timings: add sanity checks for blanking values (git-fixes). - media: videodev2.h: V4L2_DV_BT_BLANKING_HEIGHT should check 'interlaced' (git-fixes). - media: xilinx: vipp: Fix refcount leak in xvip_graph_dma_init (git-fixes). - memory: of: Fix refcount leak bug in of_get_ddr_timings() (git-fixes). - memory: pl353-smc: Fix refcount leak bug in pl353_smc_probe() (git-fixes). - mfd: fsl-imx25: Fix an error handling path in mx25_tsadc_setup_irq() (git-fixes). - mfd: intel_soc_pmic: Fix an error handling path in intel_soc_pmic_i2c_probe() (git-fixes). - mfd: lp8788: Fix an error handling path in lp8788_irq_init() and lp8788_irq_init() (git-fixes). - mfd: lp8788: Fix an error handling path in lp8788_probe() (git-fixes). - mfd: sm501: Add check for platform_driver_register() (git-fixes). - misc: ocxl: fix possible refcount leak in afu_ioctl() (git-fixes). - mm, memcg: avoid stale protection values when cgroup is above protection (bsc#1204754). - mm/hugetlb: fix races when looking up a CONT-PTE/PMD size hugetlb page (bsc#1204575). - mm: memcontrol: fix occasional OOMs due to proportional memory.low reclaim (bsc#1204754). - mmc: au1xmmc: Fix an error handling path in au1xmmc_probe() (git-fixes). - mmc: core: Fix kernel panic when remove non-standard SDIO card (git-fixes). - mmc: core: Replace with already defined values for readability (git-fixes). - mmc: core: Terminate infinite loop in SD-UHS voltage switch (git-fixes). - mmc: moxart: fix 4-bit bus width and remove 8-bit bus width (git-fixes). - mmc: sdhci-msm: add compatible string check for sdm670 (git-fixes). - mmc: sdhci-sprd: Fix minimum clock limit (git-fixes). - mmc: wmt-sdmmc: Fix an error handling path in wmt_mci_probe() (git-fixes). - mtd: devices: docg3: check the return value of devm_ioremap() in the probe (git-fixes). - mtd: rawnand: atmel: Unmap streaming DMA mappings (git-fixes). - mtd: rawnand: marvell: Use correct logic for nand-keep-config (git-fixes). - mtd: rawnand: meson: fix bit map use in meson_nfc_ecc_correct() (git-fixes). - net/ieee802154: fix uninit value bug in dgram_sendmsg (git-fixes). - net: ieee802154: return -EINVAL for unknown addr type (git-fixes). - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455 (git-fixes). - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455 (git-fixes). - net: usb: qmi_wwan: add Quectel RM520N (git-fixes). - openvswitch: Fix double reporting of drops in dropwatch (git-fixes). - openvswitch: Fix overreporting of drops in dropwatch (git-fixes). - openvswitch: switch from WARN to pr_warn (git-fixes). - padata: introduce internal padata_get/put_pd() helpers (bsc#1202638). - padata: make padata_free_shell() to respect pd's ->refcnt (bsc#1202638). - parisc/sticon: fix reverse colors (bsc#1152489) Backporting notes: * context changes - parisc: parisc-agp requires SBA IOMMU driver (bsc#1152489) - pci: Dynamically map ECAM regions (bsc#1204382). - pci: Fix used_buses calculation in pci_scan_child_bus_extend() (git-fixes). - pci: Sanitise firmware BAR assignments behind a PCI-PCI bridge (git-fixes). - phy: qualcomm: call clk_disable_unprepare in the error handling (git-fixes). - pinctrl: armada-37xx: Add missing GPIO-only pins (git-fixes). - pinctrl: armada-37xx: Checks for errors in gpio_request_enable callback (git-fixes). - pinctrl: armada-37xx: Fix definitions for MPP pins 20-22 (git-fixes). - pinctrl: rockchip: add pinmux_ops.gpio_set_direction callback (git-fixes). - platform/x86: msi-laptop: Change DMI match / alias strings to fix module autoloading (git-fixes). - platform/x86: msi-laptop: Fix old-ec check for backlight registering (git-fixes). - platform/x86: msi-laptop: Fix resource cleanup (git-fixes). - pm: domains: Fix handling of unavailable/disabled idle states (git-fixes). - pm: hibernate: Allow hybrid sleep to work with s2idle (git-fixes). - power: supply: adp5061: fix out-of-bounds read in adp5061_get_chg_type() (git-fixes). - powerpc/64: Remove unused SYS_CALL_TABLE symbol (jsc#SLE-9246 git-fixes). - powerpc/fadump: align destination address to pagesize (bsc#1204728 ltc#200074). - powerpc/kprobes: Fix null pointer reference in arch_prepare_kprobe() (jsc#SLE-13847 git-fixes). - powerpc/mm/64s: Drop pgd_huge() (bsc#1065729). - powerpc/mm: remove pmd_huge/pud_huge stubs and include hugetlb.h (bsc#1065729). - powerpc/pci_dn: Add missing of_node_put() (bsc#1065729). - powerpc/powernv: add missing of_node_put() in opal_export_attrs() (bsc#1065729). - powerpc/pseries: Interface to represent PAPR firmware attributes (bsc#1200465 ltc#197256 jsc#PED-1931). - quota: widen timestamps for the fs_disk_quota structure (bsc#1203387). - rdma/bnxt_re: Add missing spin lock initialization (git-fixes) - rdma/bnxt_re: Fix query SRQ failure (git-fixes) - rdma/cm: Fix memory leak in ib_cm_insert_listen (git-fixes) - rdma/cma: Ensure rdma_addr_cancel() happens before issuing more requests (git-fixes) - rdma/cma: Fix arguments order in net device validation (git-fixes) - rdma/core: Sanitize WQ state received from the userspace (git-fixes) - rdma/cxgb4: Remove MW support (git-fixes) - rdma/efa: Free IRQ vectors on error flow (git-fixes) - rdma/efa: Remove double QP type assignment (git-fixes) - rdma/efa: Use ib_umem_num_dma_pages() (git-fixes) - rdma/hfi1: Fix potential integer multiplication overflow errors (git-fixes) - rdma/hns: Remove unnecessary check for the sgid_attr when modifying QP (git-fixes) - rdma/i40iw: Use ib_umem_num_dma_pages() (git-fixes) - rdma/iwcm: Release resources if iw_cm module initialization fails (git-fixes) - rdma/mlx4: Return missed an error if device does not support steering (git-fixes) - rdma/mlx5: Add missing check for return value in get namespace flow (git-fixes) - rdma/mlx5: Block FDB rules when not in switchdev mode (git-fixes) - rdma/mlx5: Fix memory leak in error flow for subscribe event routine (git-fixes) - rdma/mlx5: Make mkeys always owned by the kernel's PD when not enabled (git-fixes) - rdma/mlx5: Set user priority for DCT (git-fixes) - rdma/mlx5: Use set_mkc_access_pd_addr_fields() in reg_create() (git-fixes) - rdma/mthca: Work around -Wenum-conversion warning (git-fixes) - rdma/qedr: Fix NULL deref for query_qp on the GSI QP (git-fixes) - rdma/qedr: Fix potential memory leak in __qedr_alloc_mr() (git-fixes) - rdma/qedr: Fix reporting QP timeout attribute (git-fixes) - rdma/qib: Remove superfluous fallthrough statements (git-fixes) - rdma/rtrs-srv: Pass the correct number of entries for dma mapped SGL (git-fixes) - rdma/rxe: Do not overwrite errno from ib_umem_get() (git-fixes) - rdma/rxe: Fix "kernel NULL pointer dereference" error (git-fixes) - rdma/rxe: Fix error unwind in rxe_create_qp() (git-fixes) - rdma/rxe: Fix extra copies in build_rdma_network_hdr (git-fixes) - rdma/rxe: Fix extra copy in prepare_ack_packet (git-fixes) - rdma/rxe: Fix failure during driver load (git-fixes) - rdma/rxe: Fix over copying in get_srq_wqe (git-fixes) - rdma/rxe: Fix redundant call to ip_send_check (git-fixes) - rdma/rxe: Fix redundant skb_put_zero (git-fixes) - rdma/rxe: Fix rnr retry behavior (git-fixes) - rdma/rxe: Fix the error caused by qp->sk (git-fixes) - rdma/rxe: Fix wrong port_cap_flags (git-fixes) - rdma/rxe: Generate a completion for unsupported/invalid opcode (git-fixes) - rdma/rxe: Remove unused pkt->offset (git-fixes) - rdma/rxe: Return CQE error if invalid lkey was supplied (git-fixes) - rdma/sa_query: Use strscpy_pad instead of memcpy to copy a string (git-fixes) - rdma/siw: Always consume all skbuf data in sk_data_ready() upcall. (git-fixes) - rdma/siw: Fix a condition race issue in MPA request processing (git-fixes) - rdma/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event (git-fixes) - rdma/siw: Pass a pointer to virt_to_page() (git-fixes) - rdma/usnic: fix set-but-not-unused variable 'flags' warning (git-fixes) - rdma: Verify port when creating flow rule (git-fixes) - rdma: remove useless condition in siw_create_cq() (git-fixes) - regulator: pfuze100: Fix the global-out-of-bounds access in pfuze100_regulator_probe() (git-fixes). - regulator: qcom_rpm: Fix circular deferral regression (git-fixes). - reset: imx7: Fix the iMX8MP PCIe PHY PERST support (git-fixes). - revert "drivers/video/backlight/platform_lcd.c: add support for (bsc#1152489) - revert "drm: bridge: analogix/dp: add panel prepare/unprepare in suspend/resume time" (git-fixes). - revert "usb: add quirks for Lenovo OneLink+ Dock" (git-fixes). - revert "usb: storage: Add quirk for Samsung Fit flash" (git-fixes). - revert "usb: storage: Add quirk for Samsung Fit flash" (git-fixes). - rpmsg: qcom: glink: replace strncpy() with strscpy_pad() (git-fixes). - rtc: stmp3xxx: Add failure handling for stmp3xxx_wdt_register() (git-fixes). - s390/hypfs: avoid error message under KVM (bsc#1032323). - sbitmap: Avoid leaving waitqueue in invalid state in __sbq_wake_up() (git-fixes). - sbitmap: fix possible io hung due to lost wakeup (git-fixes). - scsi: libsas: Fix use-after-free bug in smp_execute_task_sg() (git-fixes). - scsi: mpt3sas: Fix return value check of dma_get_required_mask() (git-fixes). - scsi: qla2xxx: Fix disk failure to rediscover (git-fixes). - selftest/powerpc: Add PAPR sysfs attributes sniff test (bsc#1200465 ltc#197256 jsc#PED-1931). - selftests/powerpc: Skip energy_scale_info test on older firmware (git-fixes). - serial: Create uart_xmit_advance() (git-fixes). - serial: tegra-tcu: Use uart_xmit_advance(), fixes icount.tx accounting (git-fixes). - serial: tegra: Use uart_xmit_advance(), fixes icount.tx accounting (git-fixes). - soc: qcom: smem_state: Add refcounting for the 'state->of_node' (git-fixes). - soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe() (git-fixes). - soc: sunxi: sram: Actually claim SRAM regions (git-fixes). - soc: sunxi: sram: Fix debugfs info for A64 SRAM C (git-fixes). - soc: sunxi: sram: Prevent the driver from being unbound (git-fixes). - soc: sunxi_sram: Make use of the helper function devm_platform_ioremap_resource() (git-fixes). - spi/omap100k:Fix PM disable depth imbalance in omap1_spi100k_probe (git-fixes). - spi: mt7621: Fix an error message in mt7621_spi_probe() (git-fixes). - spi: qup: add missing clk_disable_unprepare on error in spi_qup_pm_resume_runtime() (git-fixes). - spi: qup: add missing clk_disable_unprepare on error in spi_qup_resume() (git-fixes). - spi: s3c64xx: Fix large transfers with DMA (git-fixes). - staging: rtl8723bs: fix a potential memory leak in rtw_init_cmd_priv() (git-fixes). - staging: vt6655: fix potential memory leak (git-fixes). - staging: vt6655: fix some erroneous memory clean-up loops (git-fixes). - struct pci_config_window kABI workaround (bsc#1204382). - thermal: intel_powerclamp: Use first online CPU as control_cpu (git-fixes). - thermal: intel_powerclamp: Use get_cpu() instead of smp_processor_id() to avoid crash (git-fixes). - tty/serial: atmel: RS485 & ISO7816: wait for TXRDY before sending data (git-fixes). - tty: serial: fsl_lpuart: disable dma rx/tx use flags in lpuart_dma_shutdown (git-fixes). - tty: xilinx_uartps: Fix the ignore_status (git-fixes). - uas: add no-uas quirk for Hiksemi usb_disk (git-fixes). - uas: ignore UAS for Thinkplus chips (git-fixes). - usb-storage: Add Hiksemi USB3-FW to IGNORE_UAS (git-fixes). - usb: add quirks for Lenovo OneLink+ Dock (git-fixes). - usb: add quirks for Lenovo OneLink+ Dock (git-fixes). - usb: bdc: change state when port disconnected (git-fixes). - usb: dwc3: gadget: Avoid starting DWC3 gadget during UDC unbind (git-fixes). - usb: dwc3: gadget: Do not set IMI for no_interrupt (git-fixes). - usb: dwc3: gadget: Prevent repeat pullup() (git-fixes). - usb: dwc3: gadget: Stop processing more requests on IMI (git-fixes). - usb: gadget: function: fix dangling pnp_string in f_printer.c (git-fixes). - usb: host: xhci: Fix potential memory leak in xhci_alloc_stream_info() (git-fixes). - usb: idmouse: fix an uninit-value in idmouse_open (git-fixes). - usb: mon: make mmapped memory read only (git-fixes). - usb: musb: Fix musb_gadget.c rxstate overflow bug (git-fixes). - usb: serial: console: move mutex_unlock() before usb_serial_put() (git-fixes). - usb: serial: ftdi_sio: fix 300 bps rate for SIO (git-fixes). - usb: serial: option: add Quectel BG95 0x0203 composition (git-fixes). - usb: serial: option: add Quectel BG95 0x0203 composition (git-fixes). - usb: serial: option: add Quectel RM520N (git-fixes). - usb: serial: option: add Quectel RM520N (git-fixes). - usb: serial: qcserial: add new usb-id for Dell branded EM7455 (git-fixes). - usb: serial: qcserial: add new usb-id for Dell branded EM7455 (git-fixes). - usb: typec: ucsi: Remove incorrect warning (git-fixes). - usb: xhci-mtk: add a function to (un)load bandwidth info (git-fixes). - usb: xhci-mtk: add only one extra CS for FS/LS INTR (git-fixes). - usb: xhci-mtk: add some schedule error number (git-fixes). - usb: xhci-mtk: fix issue of out-of-bounds array access (git-fixes). - usb: xhci-mtk: get the microframe boundary for ESIT (git-fixes). - usb: xhci-mtk: use @sch_tt to check whether need do TT schedule (git-fixes). - vhost/vsock: Use kvmalloc/kvfree for larger packets (git-fixes). - video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write (git-fixes). - watchdog: armada_37xx_wdt: Fix .set_timeout callback (git-fixes). - watchdog: ftwdt010_wdt: fix test for platform_get_irq() failure (git-fixes). - wifi: ath10k: add peer map clean up for peer delete in ath10k_sta_state() (git-fixes). - wifi: ath9k: avoid uninit memory read in ath9k_htc_rx_msg() (git-fixes). - wifi: brcmfmac: fix invalid address access when enabling SCAN log level (git-fixes). - wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() (git-fixes). - wifi: cfg80211: update hidden BSSes to avoid WARN_ON (git-fixes). - wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue (other cases) (git-fixes). - wifi: mac80211: Fix UAF in ieee80211_scan_rx() (git-fixes). - wifi: mac80211: allow bw change during channel switch in mesh (git-fixes). - wifi: mac80211: do not drop packets smaller than the LLC-SNAP header on fast-rx (git-fixes). - wifi: mac80211_hwsim: avoid mac80211 warning on bad rate (git-fixes). - wifi: rt2x00: correctly set BBP register 86 for MT7620 (git-fixes). - wifi: rt2x00: do not run Rt5592 IQ calibration on MT7620 (git-fixes). - wifi: rt2x00: set SoC wmac clock register (git-fixes). - wifi: rt2x00: set VGC gain for both chains of MT7620 (git-fixes). - wifi: rt2x00: set correct TX_SW_CFG1 MAC register for MT7620 (git-fixes). - wifi: rtl8xxxu: Fix AIFS written to REG_EDCA_*_PARAM (git-fixes). - wifi: rtl8xxxu: Fix skb misuse in TX queue selection (git-fixes). - wifi: rtl8xxxu: Improve rtl8xxxu_queue_select (git-fixes). - wifi: rtl8xxxu: Remove copy-paste leftover in gen2_update_rate_mask (git-fixes). - wifi: rtl8xxxu: gen2: Fix mistake in path B IQ calibration (git-fixes). - wifi: rtl8xxxu: tighten bounds checking in rtl8xxxu_read_efuse() (git-fixes). - xfs: add missing assert in xfs_fsmap_owner_from_rmap (git-fixes). - xfs: enable big timestamps (bsc#1203387). - xfs: enable new inode btree counters feature (bsc#1203387). - xfs: explicitly define inode timestamp range (bsc#1203387). - xfs: fix memory corruption during remote attr value buffer invalidation (git-fixes). - xfs: fix s_maxbytes computation on 32-bit kernels (git-fixes). - xfs: hoist out xfs_resizefs_init_new_ags() (git-fixes). - xfs: move incore structures out of xfs_da_format.h (git-fixes). - xfs: quota: move to time64_t interfaces (bsc#1203387). - xfs: redefine xfs_ictimestamp_t (bsc#1203387). Refresh patches.suse/xfs-repair-malformed-inode-items-during-log-recovery.patch. - xfs: redefine xfs_timestamp_t (bsc#1203387). - xfs: refactor remote attr value buffer invalidation (git-fixes). - xfs: remove obsolete AGF counter debugging (git-fixes). - xfs: rename `new' to `delta' in xfs_growfs_data_private() (git-fixes). - xfs: reserve data and rt quota at the same time (bsc#1203496). - xfs: slightly tweak an assert in xfs_fs_map_blocks (git-fixes). - xfs: store inode btree block counts in AGI header (bsc#1203387). - xfs: streamline xfs_attr3_leaf_inactive (git-fixes). - xfs: use a struct timespec64 for the in-core crtime (bsc#1203387). - xfs: use the finobt block counts to speed up mount times (bsc#1203387). - xfs: widen ondisk inode timestamps to deal with y2038+ (bsc#1203387). - xfs: widen ondisk quota expiration timestamps to handle y2038+ (bsc#1203387). - xhci: Do not show warning for reinit on known broken suspend (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.83.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.83.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.83.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.83.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.83.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.83.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.83.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.83.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.83.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.83.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.83.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.83.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.83.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.83.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.83.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.83.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.83.1.x86_64.rpm True openSUSE-SLE-15.3-2022-4054 low SUSE Updates openSUSE-SLE 15.3 This update for go1.19 fixes the following issues: Update to go 1.19.3 (released 2022-11-01) (bsc#1200441): Security fixes: - CVE-2022-41716: Fixed unsanitized NUL in environment variables in syscalls, os/exec (go#56327) (bsc#1204941). Bugfixes: - runtime: lock count" fatal error when cgo is enabled (go#56308). - cmd/compile: libFuzzer instrumentation fakePC overflow on 386 arch (go#56168). - internal/fuzz: array literal initialization causes ICE "unhandled stmt ASOP" while fuzzing (go#56106). go1.19-1.19.3-150000.1.15.1.src.rpm go1.19-1.19.3-150000.1.15.1.x86_64.rpm go1.19-doc-1.19.3-150000.1.15.1.x86_64.rpm go1.19-race-1.19.3-150000.1.15.1.x86_64.rpm go1.19-1.19.3-150000.1.15.1.s390x.rpm go1.19-doc-1.19.3-150000.1.15.1.s390x.rpm go1.19-1.19.3-150000.1.15.1.ppc64le.rpm go1.19-doc-1.19.3-150000.1.15.1.ppc64le.rpm go1.19-1.19.3-150000.1.15.1.aarch64.rpm go1.19-doc-1.19.3-150000.1.15.1.aarch64.rpm go1.19-race-1.19.3-150000.1.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-4055 low SUSE Updates openSUSE-SLE 15.3 This update for go1.18 fixes the following issues: Update to go 1.18.8 (released 2022-11-01) (bsc#1193742): Security fixes: - CVE-2022-41716: Fixed unsanitized NUL in environment variables in syscalls, os/exec (go#56327) (bsc#1204941). Bugfixes: - runtime: lock count" fatal error when cgo is enabled (go#56308). go1.18-1.18.8-150000.1.37.1.src.rpm go1.18-1.18.8-150000.1.37.1.x86_64.rpm go1.18-doc-1.18.8-150000.1.37.1.x86_64.rpm go1.18-race-1.18.8-150000.1.37.1.x86_64.rpm go1.18-1.18.8-150000.1.37.1.s390x.rpm go1.18-doc-1.18.8-150000.1.37.1.s390x.rpm go1.18-1.18.8-150000.1.37.1.ppc64le.rpm go1.18-doc-1.18.8-150000.1.37.1.ppc64le.rpm go1.18-1.18.8-150000.1.37.1.aarch64.rpm go1.18-doc-1.18.8-150000.1.37.1.aarch64.rpm go1.18-race-1.18.8-150000.1.37.1.aarch64.rpm openSUSE-SLE-15.3-2022-4297 important SUSE Updates openSUSE-SLE 15.3 This update for pdsh, slurm_22_05 fixes the following issues: Slurm was updated to 22.05.5 - Fixes a number of moderate severity issues, noteable are: * Load hash plugin at slurmstepd launch time to prevent issues loading the plugin at step completion if the Slurm installation is upgraded. * Update nvml plugin to match the unique id format for MIG devices in new Nvidia drivers. * Fix multi-node step launch failure when nodes in the controller aren't in natural order. This can happen with inconsistent node naming (such as node15 and node052) or with dynamic nodes which can register in any order. * job_container/tmpfs - cleanup containers even when the .ns file isn't mounted anymore. * Wait up to PrologEpilogTimeout before shutting down slurmd to allow prolog and epilog scripts to complete or timeout. Previously, slurmd waited 120 seconds before timing out and killing prolog and epilog scripts. - Do not deduplicate files of testsuite Slurm configuration. This directory is supposed to be mounted over /etc/slurm therefore it must not contain softlinks to the files in this directory. - Fix a potential security vulnerability in the test package (bsc#1201674, CVE-2022-31251). - update to 22.05.2 with following fixes: * Fix regression which allowed the oversubscription of licenses. * Fix a segfault in slurmctld when requesting gres in job arrays. - Allow log in as user 'slurm'. This allows admins to run certain priviledged commands more easily without becoming root. update to 22.05.0 with following changes: - Support for dynamic node addition and removal - Support for native Linux cgroup v2 operation - Newly added plugins to support HPE Slingshot 11 networks (switch/hpe_slingshot), and Intel Xe GPUs (gpu/oneapi) - Added new acct_gather_interconnect/sysfs plugin to collect statistics from arbitrary network interfaces. - Expanded and synced set of environment variables available in the Prolog/Epilog/PrologSlurmctld/EpilogSlurmctld scripts. - New "--prefer" option to job submissions to allow for a "soft constraint" request to influence node selection. - Optional support for license planning in the backfill scheduler with "bf_licenses" option in SchedulerParameters. - Add a comment about the CommunicationParameters=block_null_hash option warning users who migrate - just in case. - Update to 21.08.8 which fixes CVE-2022-29500 (bsc#1199278), CVE-2022-29501 (bsc#1199279), and CVE-2022-29502 (bsc#1199281). - Added 'CommunicationParameters=block_null_hash' to slurm.conf, please add this parameter to existing configurations. - Update to 21.08.7 with following changes: * openapi/v0.0.37 - correct calculation for bf_queue_len_mean in /diag. * Avoid shrinking a reservation when overlapping with downed nodes. * Only check TRES limits against current usage for TRES requested by the job. * Do not allocate shared gres (MPS) in whole-node allocations * Constrain slurmstepd to job/step cgroup like in previous versions of Slurm. * Fix warnings on 32-bit compilers related to printf() formats. * Fix reconfigure issues after disabling/reenabling the GANG PreemptMode. * Fix race condition where a cgroup was being deleted while another step was creating it. * Set the slurmd port correctly if multi-slurmd * Fix FAIL mail not being sent if a job was cancelled due to preemption. * slurmrestd - move debug logs for HTTP handling to be gated by debugflag NETWORK to avoid unnecessary logging of communication contents. * Fix issue with bad memory access when shrinking running steps. * Fix various issues with internal job accounting with GRES when jobs are shrunk. * Fix ipmi polling on slurmd reconfig or restart. * Fix srun crash when reserved ports are being used and het step fails to launch. * openapi/dbv0.0.37 - fix DELETE execution path on /user/{user_name}. * slurmctld - Properly requeue all components of a het job if PrologSlurmctld fails. * rlimits - remove final calls to limit nofiles to 4096 but to instead use the max possible nofiles in slurmd and slurmdbd. * Allow the DBD agent to load large messages (up to MAX_BUF_SIZE) from state. * Fix potential deadlock during slurmctld restart when there is a completing job. * slurmstepd - reduce user requested soft rlimits when they are above max hard rlimits to avoid rlimit request being completely ignored and processes using default limits. * Fix Slurm user commands displaying available features as active features when no features were active. * Don't power down nodes that are rebooting. * Clear pending node reboot on power down request. * Ignore node registrations while node is powering down. * Don't reboot any node that is power<ing|ed> down. * Don't allow a node to reboot if it's marked for power down. * Fix issuing reboot and downing when rebooting a powering up node. * Clear DRAIN on node after failing to resume before ResumeTimeout. * Prevent repeating power down if node fails to resume before ResumeTimeout. * Fix federated cloud node communication with srun and cloud_dns. * Fix jobs being scheduled on nodes marked to be powered_down when idle. * Fix problem where a privileged user could not view array tasks specified by <array_job_id>_<task_id> when PrivateData had the jobs value set. - Changes in Slurm 21.08.6 * Fix plugin_name definitions in a number of plugins to improve logging. * Close sbcast file transfers when job is cancelled. * scrontab - fix handling of --gpus and --ntasks-per-gpu options. * sched/backfill - fix job_queue_rec_t memory leak. * Fix magnetic reservation logic in both main and backfill schedulers. * job_container/tmpfs - fix memory leak when using InitScript. * slurmrestd / openapi - fix memory leaks. * Fix slurmctld segfault due to job array resv_list double free. * Fix multi-reservation job testing logic. * Fix slurmctld segfault due to insufficient job reservation parse validation. * Fix main and backfill schedulers handling for already rejected job array. * sched/backfill - restore resv_ptr after yielding locks. * acct_gather_energy/xcc - appropriately close and destroy the IPMI context. * Protect slurmstepd from making multiple calls to the cleanup logic. * Prevent slurmstepd segfault at cleanup time in mpi_fini(). * Fix slurmctld sometimes hanging if shutdown while PrologSlurmctld or EpilogSlurmctld were running and PrologEpilogTimeout is set in slurm.conf. * Fix affinity of the batch step if batch host is different than the first node in the allocation. * slurmdbd - fix segfault after multiple failover/failback operations. * Fix jobcomp filetxt job selection condition. * Fix -f flag of sacct not being used. * Select cores for job steps according to the socket distribution. Previously, sockets were always filled before selecting cores from the next socket. * Keep node in Future state if epilog completes while in Future state. * Fix erroneous --constraint behavior by preventing multiple sets of brackets. * Make ResetAccrueTime update the job's accrue_time to now. * Fix sattach initialization with configless mode. * Revert packing limit checks affecting pmi2. * sacct - fixed assertion failure when using -c option and a federation display * Fix issue that allowed steps to overallocate the job's memory. * Fix the sanity check mode of AutoDetect so that it actually works. * Fix deallocated nodes that didn't actually launch a job from waiting for Epilogslurmctld to complete before clearing completing node's state. * Job should be in a completing state if EpilogSlurmctld when being requeued. * Fix job not being requeued properly if all node epilog's completed before EpilogSlurmctld finished. * Keep job completing until EpilogSlurmctld is completed even when "downing" a node. * Fix handling reboot with multiple job features. * Fix nodes getting powered down when creating new partitions. * Fix bad bit_realloc which potentially could lead to bad memory access. * slurmctld - remove limit on the number of open files. * Fix bug where job_state file of size above 2GB wasn't saved without any error message. * Fix various issues with no_consume gres. * Fix regression in 21.08.0rc1 where job steps failed to launch on systems that reserved a CPU in a cgroup outside of Slurm (for example, on systems with WekaIO). * Fix OverTimeLimit not being reset on scontrol reconfigure when it is removed from slurm.conf. * serializer/yaml - use dynamic buffer to allow creation of YAML outputs larger than 1MiB. * Fix minor memory leak affecting openapi users at process termination. * Fix batch jobs not resolving the username when nss_slurm is enabled. * slurmrestd - Avoid slurmrestd ignoring invalid HTTP method if the response serialized without error. * openapi/dbv0.0.37 - Correct conditional that caused the diag output to give an internal server error status on success. * Make --mem-bind=sort work with task_affinity * Fix sacctmgr to set MaxJobsAccruePer{User|Account} and MinPrioThres in sacctmgr add qos, modify already worked correctly. * job_container/tmpfs - avoid printing extraneous error messages in Prolog and Epilog, and when the job completes. * Fix step CPU memory allocation with --threads-per-core without --exact. * Remove implicit --exact when --threads-per-core or --hint=nomultithread is used. * Do not allow a step to request more threads per core than the allocation did. * Remove implicit --exact when --cpus-per-task is used. - update to 21.08.5 with following changes: * Fix issue where typeless GRES node updates were not immediately reflected. * Fix setting the default scrontab job working directory so that it's the home of the different user (*u <user>) and not that of root or SlurmUser editor. * Fix stepd not respecting SlurmdSyslogDebug. * Fix concurrency issue with squeue. * Fix job start time not being reset after launch when job is packed onto already booting node. * Fix updating SLURM_NODE_ALIASES for jobs packed onto powering up nodes. * Cray - Fix issues with starting hetjobs. * auth/jwks - Print fatal() message when jwks is configured but file could not be opened. * If sacctmgr has an association with an unknown qos as the default qos print 'UNKN*###' instead of leaving a blank name. * Correctly determine task count when giving --cpus-per-gpu, --gpus and *-ntasks-per-node without task count. * slurmctld - Fix places where the global last_job_update was not being set to the time of update when a job's reason and description were updated. * slurmctld - Fix case where a job submitted with more than one partition would not have its reason updated while waiting to start. * Fix memory leak in node feature rebooting. * Fix time limit permanetly set to 1 minute by backfill for job array tasks higher than the first with QOS NoReserve flag and PreemptMode configured. * Fix sacct -N to show jobs that started in the current second * Fix issue on running steps where both SLURM_NTASKS_PER_TRES and SLURM_NTASKS_PER_GPU are set. * Handle oversubscription request correctly when also requesting *-ntasks-per-tres. * Correctly detect when a step requests bad gres inside an allocation. * slurmstepd - Correct possible deadlock when UnkillableStepTimeout triggers. * srun - use maximum number of open files while handling job I/O. * Fix writing to Xauthority files on root_squash NFS exports, which was preventing X11 forwarding from completing setup. * Fix regression in 21.08.0rc1 that broke --gres=none. * Fix srun --cpus-per-task and --threads-per-core not implicitly setting *-exact. It was meant to work this way in 21.08. * Fix regression in 21.08.0 that broke dynamic future nodes. * Fix dynamic future nodes remembering active state on restart. * Fix powered down nodes getting stuck in COMPLETING+POWERED_DOWN when job is cancelled before nodes are powering up. updated to 21.08.4 which fixes (CVE-2021-43337) which is only present in 21.08 tree. * CVE-2021-43337: For sites using the new AccountingStoreFlags=job_script and/or job_env options, an issue was reported with the access control rules in SlurmDBD that will permit users to request job scripts and environment files that they should not have access to. (Scripts/environments are meant to only be accessible by user accounts with administrator privileges, by account coordinators for jobs submitted under their account, and by the user themselves.) changes from 21.08.3: * This includes a number of fixes since the last release a month ago, including one critical fix to prevent a communication issue between slurmctld and slurmdbd for sites that have started using the new AccountingStoreFlags=job_script functionality. - Utilize sysuser infrastructure to set user/group slurm. For munge authentication slurm should have a fixed UID across all nodes including the management server. Set it to 120 - Limit firewalld service definitions to SUSE versions >= 15. - added service definitions for firewalld (JSC#SLE-22741) update to 21.08.2 - major change: * removed of support of the TaskAffinity=yes option in cgroup.conf. Please consider using "TaskPlugins=cgroup,affinity" in slurm.conf as an option. - minor changes and bugfixes: * slurmctld - fix how the max number of cores on a node in a partition are calculated when the partition contains multi*socket nodes. This in turn corrects certain jobs node count estimations displayed client*side. * job_submit/cray_aries - fix "craynetwork" GRES specification after changes introduced in 21.08.0rc1 that made TRES always have a type prefix. * Ignore nonsensical check in the slurmd for [Pro|Epi]logSlurmctld. * Fix writing to stderr/syslog when systemd runs slurmctld in the foreground. * Fix issue with updating job started with node range. * Fix issue with nodes not clearing state in the database when the slurmctld is started with clean*start. * Fix hetjob components > 1 timing out due to InactiveLimit. * Fix sprio printing -nan for normalized association priority if PriorityWeightAssoc was not defined. * Disallow FirstJobId=0. * Preserve job start info in the database for a requeued job that hadn't registered the first time in the database yet. * Only send one message on prolog failure from the slurmd. * Remove support for TaskAffinity=yes in cgroup.conf. * accounting_storage/mysql - fix issue where querying jobs via sacct *-whole-hetjob=yes or slurmrestd (which automatically includes this flag) could in some cases return more records than expected. * Fix issue for preemption of job array task that makes afterok dependency fail. Additionally, send emails when requeueing happens due to preemption. * Fix sending requeue mail type. * Properly resize a job's GRES bitmaps and counts when resizing the job. * Fix node being able to transition to CLOUD state from non-cloud state. * Fix regression introduced in 21.08.0rc1 which broke a step's ability to inherit GRES from the job when the step didn't request GRES but the job did. * Fix errors in logic when picking nodes based on bracketed anded constraints. This also enforces the requirement to have a count when using such constraints. * Handle job resize better in the database. * Exclude currently running, resized jobs from the runaway jobs list. * Make it possible to shrink a job more than once. - moved pam module from /lib64 to /usr/lib64 which fixes bsc#1191095 via the macro %_pam_moduledir updated to 21.08.1 with following bug fixes: * Fix potential memory leak if a problem happens while allocating GRES for a job. * If an overallocation of GRES happens terminate the creation of a job. * AutoDetect=nvml: Fatal if no devices found in MIG mode. * Print federation and cluster sacctmgr error messages to stderr. * Fix off by one error in --gpu-bind=mask_gpu. * Add --gpu-bind=none to disable gpu binding when using --gpus-per-task. * Handle the burst buffer state "alloc-revoke" which previously would not display in the job correctly. * Fix issue in the slurmstepd SPANK prolog/epilog handler where configuration values were used before being initialized. * Restore a step's ability to utilize all of an allocations memory if --mem=0. * Fix --cpu-bind=verbose garbage taskid. * Fix cgroup task affinity issues from garbage taskid info. * Make gres_job_state_validate() client logging behavior as before 44466a4641. * Fix steps with --hint overriding an allocation with --threads-per-core. * Require requesting a GPU if --mem-per-gpu is requested. * Return error early if a job is requesting --ntasks-per-gpu and no gpus or task count. * Properly clear out pending step if unavailable to run with available resources. * Kill all processes spawned by burst_buffer.lua including decendents. * openapi/v0.0.{35,36,37} - Avoid setting default values of min_cpus, job name, cwd, mail_type, and contiguous on job update. * openapi/v0.0.{35,36,37} - Clear user hold on job update if hold=false. * Prevent CRON_JOB flag from being cleared when loading job state. * sacctmgr - Fix deleting WCKeys when not specifying a cluster. * Fix getting memory for a step when the first node in the step isn't the first node in the allocation. * Make SelectTypeParameters=CR_Core_Memory default for cons_tres and cons_res. * Correctly handle mutex unlocks in the gres code if failures happen. * Give better error message if -m plane is given with no size. * Fix --distribution=arbitrary for salloc. * Fix jobcomp/script regression introduced in 21.08.0rc1 0c75b9ac9d. * Only send the batch node in the step_hostlist in the job credential. * When setting affinity for the batch step don't assume the batch host is node 0. * In task/affinity better checking for node existence when laying out affinity. * slurmrestd - fix job submission with auth/jwt. - Make configure arg '--with-pmix' conditional. - Move openapi plugins to package slurm-restd. updated to 21.08.0, major changes: * A new "AccountingStoreFlags=job_script" option to store the job scripts directly in SlurmDBD. * Added "sacct -o SubmitLine" format option to get the submit line of a job/step. * Changes to the node state management so that nodes are marked as PLANNED instead of IDLE if the scheduler is still accumulating resources while waiting to launch a job on them. * RS256 token support in auth/jwt. * Overhaul of the cgroup subsystems to simplify operation, mitigate a number of inherent race conditions, and prepare for future cgroup v2 support. * Further improvements to cloud node power state management. * A new child process of the Slurm controller called "slurmscriptd" responsible for executing PrologSlurmctld and EpilogSlurmctld scripts, which significantly reduces performance issues associated with enabling those options. * A new burst_buffer/lua plugin allowing for site-specific asynchronous job data management. * Fixes to the job_container/tmpfs plugin to allow the slurmd process to be restarted while the job is running without issue. * Added json/yaml output to sacct, squeue, and sinfo commands. * Added a new node_features/helpers plugin to provide a generic way to change settings on a compute node across a reboot. * Added support for automatically detecting and broadcasting shared libraries for an executable launched with "srun --bcast". * Added initial OCI container execution support with a new --container option to sbatch and srun. * Improved "configless" support by allowing multiple control servers to be specified through the slurmd --conf-server option, and send additional configuration files at startup including cli_filter.lua. Changes in pdsh: - Preparing pdsh for Slurm 22.05. * No later version of Slurm builds on 32 bit. pdsh-slurm_20_02-2.34-150100.10.14.1.x86_64.rpm pdsh_slurm_20_02-2.34-150100.10.14.1.src.rpm pdsh-slurm_20_02-2.34-150100.10.14.1.s390x.rpm pdsh-slurm_20_02-2.34-150100.10.14.1.ppc64le.rpm pdsh-slurm_20_02-2.34-150100.10.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-4362 important SUSE Updates openSUSE-SLE 15.3 This update for pdsh, slurm_22_05 fixes the following issues: Slurm was updated to 22.05.5 - Fixes a number of moderate severity issues, noteable are: * Load hash plugin at slurmstepd launch time to prevent issues loading the plugin at step completion if the Slurm installation is upgraded. * Update nvml plugin to match the unique id format for MIG devices in new Nvidia drivers. * Fix multi-node step launch failure when nodes in the controller aren't in natural order. This can happen with inconsistent node naming (such as node15 and node052) or with dynamic nodes which can register in any order. * job_container/tmpfs - cleanup containers even when the .ns file isn't mounted anymore. * Wait up to PrologEpilogTimeout before shutting down slurmd to allow prolog and epilog scripts to complete or timeout. Previously, slurmd waited 120 seconds before timing out and killing prolog and epilog scripts. - Do not deduplicate files of testsuite Slurm configuration. This directory is supposed to be mounted over /etc/slurm therefore it must not contain softlinks to the files in this directory. - Fix a potential security vulnerability in the test package (bsc#1201674, CVE-2022-31251). - update to 22.05.2 with following fixes: * Fix regression which allowed the oversubscription of licenses. * Fix a segfault in slurmctld when requesting gres in job arrays. - Allow log in as user 'slurm'. This allows admins to run certain priviledged commands more easily without becoming root. update to 22.05.0 with following changes: - Support for dynamic node addition and removal - Support for native Linux cgroup v2 operation - Newly added plugins to support HPE Slingshot 11 networks (switch/hpe_slingshot), and Intel Xe GPUs (gpu/oneapi) - Added new acct_gather_interconnect/sysfs plugin to collect statistics from arbitrary network interfaces. - Expanded and synced set of environment variables available in the Prolog/Epilog/PrologSlurmctld/EpilogSlurmctld scripts. - New "--prefer" option to job submissions to allow for a "soft constraint" request to influence node selection. - Optional support for license planning in the backfill scheduler with "bf_licenses" option in SchedulerParameters. - Add a comment about the CommunicationParameters=block_null_hash option warning users who migrate - just in case. - Update to 21.08.8 which fixes CVE-2022-29500 (bsc#1199278), CVE-2022-29501 (bsc#1199279), and CVE-2022-29502 (bsc#1199281). - Added 'CommunicationParameters=block_null_hash' to slurm.conf, please add this parameter to existing configurations. - Update to 21.08.7 with following changes: * openapi/v0.0.37 - correct calculation for bf_queue_len_mean in /diag. * Avoid shrinking a reservation when overlapping with downed nodes. * Only check TRES limits against current usage for TRES requested by the job. * Do not allocate shared gres (MPS) in whole-node allocations * Constrain slurmstepd to job/step cgroup like in previous versions of Slurm. * Fix warnings on 32-bit compilers related to printf() formats. * Fix reconfigure issues after disabling/reenabling the GANG PreemptMode. * Fix race condition where a cgroup was being deleted while another step was creating it. * Set the slurmd port correctly if multi-slurmd * Fix FAIL mail not being sent if a job was cancelled due to preemption. * slurmrestd - move debug logs for HTTP handling to be gated by debugflag NETWORK to avoid unnecessary logging of communication contents. * Fix issue with bad memory access when shrinking running steps. * Fix various issues with internal job accounting with GRES when jobs are shrunk. * Fix ipmi polling on slurmd reconfig or restart. * Fix srun crash when reserved ports are being used and het step fails to launch. * openapi/dbv0.0.37 - fix DELETE execution path on /user/{user_name}. * slurmctld - Properly requeue all components of a het job if PrologSlurmctld fails. * rlimits - remove final calls to limit nofiles to 4096 but to instead use the max possible nofiles in slurmd and slurmdbd. * Allow the DBD agent to load large messages (up to MAX_BUF_SIZE) from state. * Fix potential deadlock during slurmctld restart when there is a completing job. * slurmstepd - reduce user requested soft rlimits when they are above max hard rlimits to avoid rlimit request being completely ignored and processes using default limits. * Fix Slurm user commands displaying available features as active features when no features were active. * Don't power down nodes that are rebooting. * Clear pending node reboot on power down request. * Ignore node registrations while node is powering down. * Don't reboot any node that is power<ing|ed> down. * Don't allow a node to reboot if it's marked for power down. * Fix issuing reboot and downing when rebooting a powering up node. * Clear DRAIN on node after failing to resume before ResumeTimeout. * Prevent repeating power down if node fails to resume before ResumeTimeout. * Fix federated cloud node communication with srun and cloud_dns. * Fix jobs being scheduled on nodes marked to be powered_down when idle. * Fix problem where a privileged user could not view array tasks specified by <array_job_id>_<task_id> when PrivateData had the jobs value set. - Changes in Slurm 21.08.6 * Fix plugin_name definitions in a number of plugins to improve logging. * Close sbcast file transfers when job is cancelled. * scrontab - fix handling of --gpus and --ntasks-per-gpu options. * sched/backfill - fix job_queue_rec_t memory leak. * Fix magnetic reservation logic in both main and backfill schedulers. * job_container/tmpfs - fix memory leak when using InitScript. * slurmrestd / openapi - fix memory leaks. * Fix slurmctld segfault due to job array resv_list double free. * Fix multi-reservation job testing logic. * Fix slurmctld segfault due to insufficient job reservation parse validation. * Fix main and backfill schedulers handling for already rejected job array. * sched/backfill - restore resv_ptr after yielding locks. * acct_gather_energy/xcc - appropriately close and destroy the IPMI context. * Protect slurmstepd from making multiple calls to the cleanup logic. * Prevent slurmstepd segfault at cleanup time in mpi_fini(). * Fix slurmctld sometimes hanging if shutdown while PrologSlurmctld or EpilogSlurmctld were running and PrologEpilogTimeout is set in slurm.conf. * Fix affinity of the batch step if batch host is different than the first node in the allocation. * slurmdbd - fix segfault after multiple failover/failback operations. * Fix jobcomp filetxt job selection condition. * Fix -f flag of sacct not being used. * Select cores for job steps according to the socket distribution. Previously, sockets were always filled before selecting cores from the next socket. * Keep node in Future state if epilog completes while in Future state. * Fix erroneous --constraint behavior by preventing multiple sets of brackets. * Make ResetAccrueTime update the job's accrue_time to now. * Fix sattach initialization with configless mode. * Revert packing limit checks affecting pmi2. * sacct - fixed assertion failure when using -c option and a federation display * Fix issue that allowed steps to overallocate the job's memory. * Fix the sanity check mode of AutoDetect so that it actually works. * Fix deallocated nodes that didn't actually launch a job from waiting for Epilogslurmctld to complete before clearing completing node's state. * Job should be in a completing state if EpilogSlurmctld when being requeued. * Fix job not being requeued properly if all node epilog's completed before EpilogSlurmctld finished. * Keep job completing until EpilogSlurmctld is completed even when "downing" a node. * Fix handling reboot with multiple job features. * Fix nodes getting powered down when creating new partitions. * Fix bad bit_realloc which potentially could lead to bad memory access. * slurmctld - remove limit on the number of open files. * Fix bug where job_state file of size above 2GB wasn't saved without any error message. * Fix various issues with no_consume gres. * Fix regression in 21.08.0rc1 where job steps failed to launch on systems that reserved a CPU in a cgroup outside of Slurm (for example, on systems with WekaIO). * Fix OverTimeLimit not being reset on scontrol reconfigure when it is removed from slurm.conf. * serializer/yaml - use dynamic buffer to allow creation of YAML outputs larger than 1MiB. * Fix minor memory leak affecting openapi users at process termination. * Fix batch jobs not resolving the username when nss_slurm is enabled. * slurmrestd - Avoid slurmrestd ignoring invalid HTTP method if the response serialized without error. * openapi/dbv0.0.37 - Correct conditional that caused the diag output to give an internal server error status on success. * Make --mem-bind=sort work with task_affinity * Fix sacctmgr to set MaxJobsAccruePer{User|Account} and MinPrioThres in sacctmgr add qos, modify already worked correctly. * job_container/tmpfs - avoid printing extraneous error messages in Prolog and Epilog, and when the job completes. * Fix step CPU memory allocation with --threads-per-core without --exact. * Remove implicit --exact when --threads-per-core or --hint=nomultithread is used. * Do not allow a step to request more threads per core than the allocation did. * Remove implicit --exact when --cpus-per-task is used. - update to 21.08.5 with following changes: * Fix issue where typeless GRES node updates were not immediately reflected. * Fix setting the default scrontab job working directory so that it's the home of the different user (*u <user>) and not that of root or SlurmUser editor. * Fix stepd not respecting SlurmdSyslogDebug. * Fix concurrency issue with squeue. * Fix job start time not being reset after launch when job is packed onto already booting node. * Fix updating SLURM_NODE_ALIASES for jobs packed onto powering up nodes. * Cray - Fix issues with starting hetjobs. * auth/jwks - Print fatal() message when jwks is configured but file could not be opened. * If sacctmgr has an association with an unknown qos as the default qos print 'UNKN*###' instead of leaving a blank name. * Correctly determine task count when giving --cpus-per-gpu, --gpus and *-ntasks-per-node without task count. * slurmctld - Fix places where the global last_job_update was not being set to the time of update when a job's reason and description were updated. * slurmctld - Fix case where a job submitted with more than one partition would not have its reason updated while waiting to start. * Fix memory leak in node feature rebooting. * Fix time limit permanetly set to 1 minute by backfill for job array tasks higher than the first with QOS NoReserve flag and PreemptMode configured. * Fix sacct -N to show jobs that started in the current second * Fix issue on running steps where both SLURM_NTASKS_PER_TRES and SLURM_NTASKS_PER_GPU are set. * Handle oversubscription request correctly when also requesting *-ntasks-per-tres. * Correctly detect when a step requests bad gres inside an allocation. * slurmstepd - Correct possible deadlock when UnkillableStepTimeout triggers. * srun - use maximum number of open files while handling job I/O. * Fix writing to Xauthority files on root_squash NFS exports, which was preventing X11 forwarding from completing setup. * Fix regression in 21.08.0rc1 that broke --gres=none. * Fix srun --cpus-per-task and --threads-per-core not implicitly setting *-exact. It was meant to work this way in 21.08. * Fix regression in 21.08.0 that broke dynamic future nodes. * Fix dynamic future nodes remembering active state on restart. * Fix powered down nodes getting stuck in COMPLETING+POWERED_DOWN when job is cancelled before nodes are powering up. updated to 21.08.4 which fixes (CVE-2021-43337) which is only present in 21.08 tree. * CVE-2021-43337: For sites using the new AccountingStoreFlags=job_script and/or job_env options, an issue was reported with the access control rules in SlurmDBD that will permit users to request job scripts and environment files that they should not have access to. (Scripts/environments are meant to only be accessible by user accounts with administrator privileges, by account coordinators for jobs submitted under their account, and by the user themselves.) changes from 21.08.3: * This includes a number of fixes since the last release a month ago, including one critical fix to prevent a communication issue between slurmctld and slurmdbd for sites that have started using the new AccountingStoreFlags=job_script functionality. - Utilize sysuser infrastructure to set user/group slurm. For munge authentication slurm should have a fixed UID across all nodes including the management server. Set it to 120 - Limit firewalld service definitions to SUSE versions >= 15. - added service definitions for firewalld (JSC#SLE-22741) update to 21.08.2 - major change: * removed of support of the TaskAffinity=yes option in cgroup.conf. Please consider using "TaskPlugins=cgroup,affinity" in slurm.conf as an option. - minor changes and bugfixes: * slurmctld - fix how the max number of cores on a node in a partition are calculated when the partition contains multi*socket nodes. This in turn corrects certain jobs node count estimations displayed client*side. * job_submit/cray_aries - fix "craynetwork" GRES specification after changes introduced in 21.08.0rc1 that made TRES always have a type prefix. * Ignore nonsensical check in the slurmd for [Pro|Epi]logSlurmctld. * Fix writing to stderr/syslog when systemd runs slurmctld in the foreground. * Fix issue with updating job started with node range. * Fix issue with nodes not clearing state in the database when the slurmctld is started with clean*start. * Fix hetjob components > 1 timing out due to InactiveLimit. * Fix sprio printing -nan for normalized association priority if PriorityWeightAssoc was not defined. * Disallow FirstJobId=0. * Preserve job start info in the database for a requeued job that hadn't registered the first time in the database yet. * Only send one message on prolog failure from the slurmd. * Remove support for TaskAffinity=yes in cgroup.conf. * accounting_storage/mysql - fix issue where querying jobs via sacct *-whole-hetjob=yes or slurmrestd (which automatically includes this flag) could in some cases return more records than expected. * Fix issue for preemption of job array task that makes afterok dependency fail. Additionally, send emails when requeueing happens due to preemption. * Fix sending requeue mail type. * Properly resize a job's GRES bitmaps and counts when resizing the job. * Fix node being able to transition to CLOUD state from non-cloud state. * Fix regression introduced in 21.08.0rc1 which broke a step's ability to inherit GRES from the job when the step didn't request GRES but the job did. * Fix errors in logic when picking nodes based on bracketed anded constraints. This also enforces the requirement to have a count when using such constraints. * Handle job resize better in the database. * Exclude currently running, resized jobs from the runaway jobs list. * Make it possible to shrink a job more than once. - moved pam module from /lib64 to /usr/lib64 which fixes bsc#1191095 via the macro %_pam_moduledir updated to 21.08.1 with following bug fixes: * Fix potential memory leak if a problem happens while allocating GRES for a job. * If an overallocation of GRES happens terminate the creation of a job. * AutoDetect=nvml: Fatal if no devices found in MIG mode. * Print federation and cluster sacctmgr error messages to stderr. * Fix off by one error in --gpu-bind=mask_gpu. * Add --gpu-bind=none to disable gpu binding when using --gpus-per-task. * Handle the burst buffer state "alloc-revoke" which previously would not display in the job correctly. * Fix issue in the slurmstepd SPANK prolog/epilog handler where configuration values were used before being initialized. * Restore a step's ability to utilize all of an allocations memory if --mem=0. * Fix --cpu-bind=verbose garbage taskid. * Fix cgroup task affinity issues from garbage taskid info. * Make gres_job_state_validate() client logging behavior as before 44466a4641. * Fix steps with --hint overriding an allocation with --threads-per-core. * Require requesting a GPU if --mem-per-gpu is requested. * Return error early if a job is requesting --ntasks-per-gpu and no gpus or task count. * Properly clear out pending step if unavailable to run with available resources. * Kill all processes spawned by burst_buffer.lua including decendents. * openapi/v0.0.{35,36,37} - Avoid setting default values of min_cpus, job name, cwd, mail_type, and contiguous on job update. * openapi/v0.0.{35,36,37} - Clear user hold on job update if hold=false. * Prevent CRON_JOB flag from being cleared when loading job state. * sacctmgr - Fix deleting WCKeys when not specifying a cluster. * Fix getting memory for a step when the first node in the step isn't the first node in the allocation. * Make SelectTypeParameters=CR_Core_Memory default for cons_tres and cons_res. * Correctly handle mutex unlocks in the gres code if failures happen. * Give better error message if -m plane is given with no size. * Fix --distribution=arbitrary for salloc. * Fix jobcomp/script regression introduced in 21.08.0rc1 0c75b9ac9d. * Only send the batch node in the step_hostlist in the job credential. * When setting affinity for the batch step don't assume the batch host is node 0. * In task/affinity better checking for node existence when laying out affinity. * slurmrestd - fix job submission with auth/jwt. - Make configure arg '--with-pmix' conditional. - Move openapi plugins to package slurm-restd. updated to 21.08.0, major changes: * A new "AccountingStoreFlags=job_script" option to store the job scripts directly in SlurmDBD. * Added "sacct -o SubmitLine" format option to get the submit line of a job/step. * Changes to the node state management so that nodes are marked as PLANNED instead of IDLE if the scheduler is still accumulating resources while waiting to launch a job on them. * RS256 token support in auth/jwt. * Overhaul of the cgroup subsystems to simplify operation, mitigate a number of inherent race conditions, and prepare for future cgroup v2 support. * Further improvements to cloud node power state management. * A new child process of the Slurm controller called "slurmscriptd" responsible for executing PrologSlurmctld and EpilogSlurmctld scripts, which significantly reduces performance issues associated with enabling those options. * A new burst_buffer/lua plugin allowing for site-specific asynchronous job data management. * Fixes to the job_container/tmpfs plugin to allow the slurmd process to be restarted while the job is running without issue. * Added json/yaml output to sacct, squeue, and sinfo commands. * Added a new node_features/helpers plugin to provide a generic way to change settings on a compute node across a reboot. * Added support for automatically detecting and broadcasting shared libraries for an executable launched with "srun --bcast". * Added initial OCI container execution support with a new --container option to sbatch and srun. * Improved "configless" support by allowing multiple control servers to be specified through the slurmd --conf-server option, and send additional configuration files at startup including cli_filter.lua. Changes in pdsh: - Preparing pdsh for Slurm 22.05. * No later version of Slurm builds on 32 bit. pdsh-slurm_20_11-2.34-150200.4.6.2.x86_64.rpm pdsh_slurm_20_11-2.34-150200.4.6.2.src.rpm pdsh-slurm_20_11-2.34-150200.4.6.2.s390x.rpm pdsh-slurm_20_11-2.34-150200.4.6.2.ppc64le.rpm pdsh-slurm_20_11-2.34-150200.4.6.2.aarch64.rpm openSUSE-SLE-15.3-2022-4361 important SUSE Updates openSUSE-SLE 15.3 This update for pdsh, slurm_22_05 fixes the following issues: Slurm was updated to 22.05.5 - Fixes a number of moderate severity issues, noteable are: * Load hash plugin at slurmstepd launch time to prevent issues loading the plugin at step completion if the Slurm installation is upgraded. * Update nvml plugin to match the unique id format for MIG devices in new Nvidia drivers. * Fix multi-node step launch failure when nodes in the controller aren't in natural order. This can happen with inconsistent node naming (such as node15 and node052) or with dynamic nodes which can register in any order. * job_container/tmpfs - cleanup containers even when the .ns file isn't mounted anymore. * Wait up to PrologEpilogTimeout before shutting down slurmd to allow prolog and epilog scripts to complete or timeout. Previously, slurmd waited 120 seconds before timing out and killing prolog and epilog scripts. - Do not deduplicate files of testsuite Slurm configuration. This directory is supposed to be mounted over /etc/slurm therefore it must not contain softlinks to the files in this directory. - Fix a potential security vulnerability in the test package (bsc#1201674, CVE-2022-31251). - update to 22.05.2 with following fixes: * Fix regression which allowed the oversubscription of licenses. * Fix a segfault in slurmctld when requesting gres in job arrays. - Allow log in as user 'slurm'. This allows admins to run certain priviledged commands more easily without becoming root. update to 22.05.0 with following changes: - Support for dynamic node addition and removal - Support for native Linux cgroup v2 operation - Newly added plugins to support HPE Slingshot 11 networks (switch/hpe_slingshot), and Intel Xe GPUs (gpu/oneapi) - Added new acct_gather_interconnect/sysfs plugin to collect statistics from arbitrary network interfaces. - Expanded and synced set of environment variables available in the Prolog/Epilog/PrologSlurmctld/EpilogSlurmctld scripts. - New "--prefer" option to job submissions to allow for a "soft constraint" request to influence node selection. - Optional support for license planning in the backfill scheduler with "bf_licenses" option in SchedulerParameters. - Add a comment about the CommunicationParameters=block_null_hash option warning users who migrate - just in case. - Update to 21.08.8 which fixes CVE-2022-29500 (bsc#1199278), CVE-2022-29501 (bsc#1199279), and CVE-2022-29502 (bsc#1199281). - Added 'CommunicationParameters=block_null_hash' to slurm.conf, please add this parameter to existing configurations. - Update to 21.08.7 with following changes: * openapi/v0.0.37 - correct calculation for bf_queue_len_mean in /diag. * Avoid shrinking a reservation when overlapping with downed nodes. * Only check TRES limits against current usage for TRES requested by the job. * Do not allocate shared gres (MPS) in whole-node allocations * Constrain slurmstepd to job/step cgroup like in previous versions of Slurm. * Fix warnings on 32-bit compilers related to printf() formats. * Fix reconfigure issues after disabling/reenabling the GANG PreemptMode. * Fix race condition where a cgroup was being deleted while another step was creating it. * Set the slurmd port correctly if multi-slurmd * Fix FAIL mail not being sent if a job was cancelled due to preemption. * slurmrestd - move debug logs for HTTP handling to be gated by debugflag NETWORK to avoid unnecessary logging of communication contents. * Fix issue with bad memory access when shrinking running steps. * Fix various issues with internal job accounting with GRES when jobs are shrunk. * Fix ipmi polling on slurmd reconfig or restart. * Fix srun crash when reserved ports are being used and het step fails to launch. * openapi/dbv0.0.37 - fix DELETE execution path on /user/{user_name}. * slurmctld - Properly requeue all components of a het job if PrologSlurmctld fails. * rlimits - remove final calls to limit nofiles to 4096 but to instead use the max possible nofiles in slurmd and slurmdbd. * Allow the DBD agent to load large messages (up to MAX_BUF_SIZE) from state. * Fix potential deadlock during slurmctld restart when there is a completing job. * slurmstepd - reduce user requested soft rlimits when they are above max hard rlimits to avoid rlimit request being completely ignored and processes using default limits. * Fix Slurm user commands displaying available features as active features when no features were active. * Don't power down nodes that are rebooting. * Clear pending node reboot on power down request. * Ignore node registrations while node is powering down. * Don't reboot any node that is power<ing|ed> down. * Don't allow a node to reboot if it's marked for power down. * Fix issuing reboot and downing when rebooting a powering up node. * Clear DRAIN on node after failing to resume before ResumeTimeout. * Prevent repeating power down if node fails to resume before ResumeTimeout. * Fix federated cloud node communication with srun and cloud_dns. * Fix jobs being scheduled on nodes marked to be powered_down when idle. * Fix problem where a privileged user could not view array tasks specified by <array_job_id>_<task_id> when PrivateData had the jobs value set. - Changes in Slurm 21.08.6 * Fix plugin_name definitions in a number of plugins to improve logging. * Close sbcast file transfers when job is cancelled. * scrontab - fix handling of --gpus and --ntasks-per-gpu options. * sched/backfill - fix job_queue_rec_t memory leak. * Fix magnetic reservation logic in both main and backfill schedulers. * job_container/tmpfs - fix memory leak when using InitScript. * slurmrestd / openapi - fix memory leaks. * Fix slurmctld segfault due to job array resv_list double free. * Fix multi-reservation job testing logic. * Fix slurmctld segfault due to insufficient job reservation parse validation. * Fix main and backfill schedulers handling for already rejected job array. * sched/backfill - restore resv_ptr after yielding locks. * acct_gather_energy/xcc - appropriately close and destroy the IPMI context. * Protect slurmstepd from making multiple calls to the cleanup logic. * Prevent slurmstepd segfault at cleanup time in mpi_fini(). * Fix slurmctld sometimes hanging if shutdown while PrologSlurmctld or EpilogSlurmctld were running and PrologEpilogTimeout is set in slurm.conf. * Fix affinity of the batch step if batch host is different than the first node in the allocation. * slurmdbd - fix segfault after multiple failover/failback operations. * Fix jobcomp filetxt job selection condition. * Fix -f flag of sacct not being used. * Select cores for job steps according to the socket distribution. Previously, sockets were always filled before selecting cores from the next socket. * Keep node in Future state if epilog completes while in Future state. * Fix erroneous --constraint behavior by preventing multiple sets of brackets. * Make ResetAccrueTime update the job's accrue_time to now. * Fix sattach initialization with configless mode. * Revert packing limit checks affecting pmi2. * sacct - fixed assertion failure when using -c option and a federation display * Fix issue that allowed steps to overallocate the job's memory. * Fix the sanity check mode of AutoDetect so that it actually works. * Fix deallocated nodes that didn't actually launch a job from waiting for Epilogslurmctld to complete before clearing completing node's state. * Job should be in a completing state if EpilogSlurmctld when being requeued. * Fix job not being requeued properly if all node epilog's completed before EpilogSlurmctld finished. * Keep job completing until EpilogSlurmctld is completed even when "downing" a node. * Fix handling reboot with multiple job features. * Fix nodes getting powered down when creating new partitions. * Fix bad bit_realloc which potentially could lead to bad memory access. * slurmctld - remove limit on the number of open files. * Fix bug where job_state file of size above 2GB wasn't saved without any error message. * Fix various issues with no_consume gres. * Fix regression in 21.08.0rc1 where job steps failed to launch on systems that reserved a CPU in a cgroup outside of Slurm (for example, on systems with WekaIO). * Fix OverTimeLimit not being reset on scontrol reconfigure when it is removed from slurm.conf. * serializer/yaml - use dynamic buffer to allow creation of YAML outputs larger than 1MiB. * Fix minor memory leak affecting openapi users at process termination. * Fix batch jobs not resolving the username when nss_slurm is enabled. * slurmrestd - Avoid slurmrestd ignoring invalid HTTP method if the response serialized without error. * openapi/dbv0.0.37 - Correct conditional that caused the diag output to give an internal server error status on success. * Make --mem-bind=sort work with task_affinity * Fix sacctmgr to set MaxJobsAccruePer{User|Account} and MinPrioThres in sacctmgr add qos, modify already worked correctly. * job_container/tmpfs - avoid printing extraneous error messages in Prolog and Epilog, and when the job completes. * Fix step CPU memory allocation with --threads-per-core without --exact. * Remove implicit --exact when --threads-per-core or --hint=nomultithread is used. * Do not allow a step to request more threads per core than the allocation did. * Remove implicit --exact when --cpus-per-task is used. - update to 21.08.5 with following changes: * Fix issue where typeless GRES node updates were not immediately reflected. * Fix setting the default scrontab job working directory so that it's the home of the different user (*u <user>) and not that of root or SlurmUser editor. * Fix stepd not respecting SlurmdSyslogDebug. * Fix concurrency issue with squeue. * Fix job start time not being reset after launch when job is packed onto already booting node. * Fix updating SLURM_NODE_ALIASES for jobs packed onto powering up nodes. * Cray - Fix issues with starting hetjobs. * auth/jwks - Print fatal() message when jwks is configured but file could not be opened. * If sacctmgr has an association with an unknown qos as the default qos print 'UNKN*###' instead of leaving a blank name. * Correctly determine task count when giving --cpus-per-gpu, --gpus and *-ntasks-per-node without task count. * slurmctld - Fix places where the global last_job_update was not being set to the time of update when a job's reason and description were updated. * slurmctld - Fix case where a job submitted with more than one partition would not have its reason updated while waiting to start. * Fix memory leak in node feature rebooting. * Fix time limit permanetly set to 1 minute by backfill for job array tasks higher than the first with QOS NoReserve flag and PreemptMode configured. * Fix sacct -N to show jobs that started in the current second * Fix issue on running steps where both SLURM_NTASKS_PER_TRES and SLURM_NTASKS_PER_GPU are set. * Handle oversubscription request correctly when also requesting *-ntasks-per-tres. * Correctly detect when a step requests bad gres inside an allocation. * slurmstepd - Correct possible deadlock when UnkillableStepTimeout triggers. * srun - use maximum number of open files while handling job I/O. * Fix writing to Xauthority files on root_squash NFS exports, which was preventing X11 forwarding from completing setup. * Fix regression in 21.08.0rc1 that broke --gres=none. * Fix srun --cpus-per-task and --threads-per-core not implicitly setting *-exact. It was meant to work this way in 21.08. * Fix regression in 21.08.0 that broke dynamic future nodes. * Fix dynamic future nodes remembering active state on restart. * Fix powered down nodes getting stuck in COMPLETING+POWERED_DOWN when job is cancelled before nodes are powering up. updated to 21.08.4 which fixes (CVE-2021-43337) which is only present in 21.08 tree. * CVE-2021-43337: For sites using the new AccountingStoreFlags=job_script and/or job_env options, an issue was reported with the access control rules in SlurmDBD that will permit users to request job scripts and environment files that they should not have access to. (Scripts/environments are meant to only be accessible by user accounts with administrator privileges, by account coordinators for jobs submitted under their account, and by the user themselves.) changes from 21.08.3: * This includes a number of fixes since the last release a month ago, including one critical fix to prevent a communication issue between slurmctld and slurmdbd for sites that have started using the new AccountingStoreFlags=job_script functionality. - Utilize sysuser infrastructure to set user/group slurm. For munge authentication slurm should have a fixed UID across all nodes including the management server. Set it to 120 - Limit firewalld service definitions to SUSE versions >= 15. - added service definitions for firewalld (JSC#SLE-22741) update to 21.08.2 - major change: * removed of support of the TaskAffinity=yes option in cgroup.conf. Please consider using "TaskPlugins=cgroup,affinity" in slurm.conf as an option. - minor changes and bugfixes: * slurmctld - fix how the max number of cores on a node in a partition are calculated when the partition contains multi*socket nodes. This in turn corrects certain jobs node count estimations displayed client*side. * job_submit/cray_aries - fix "craynetwork" GRES specification after changes introduced in 21.08.0rc1 that made TRES always have a type prefix. * Ignore nonsensical check in the slurmd for [Pro|Epi]logSlurmctld. * Fix writing to stderr/syslog when systemd runs slurmctld in the foreground. * Fix issue with updating job started with node range. * Fix issue with nodes not clearing state in the database when the slurmctld is started with clean*start. * Fix hetjob components > 1 timing out due to InactiveLimit. * Fix sprio printing -nan for normalized association priority if PriorityWeightAssoc was not defined. * Disallow FirstJobId=0. * Preserve job start info in the database for a requeued job that hadn't registered the first time in the database yet. * Only send one message on prolog failure from the slurmd. * Remove support for TaskAffinity=yes in cgroup.conf. * accounting_storage/mysql - fix issue where querying jobs via sacct *-whole-hetjob=yes or slurmrestd (which automatically includes this flag) could in some cases return more records than expected. * Fix issue for preemption of job array task that makes afterok dependency fail. Additionally, send emails when requeueing happens due to preemption. * Fix sending requeue mail type. * Properly resize a job's GRES bitmaps and counts when resizing the job. * Fix node being able to transition to CLOUD state from non-cloud state. * Fix regression introduced in 21.08.0rc1 which broke a step's ability to inherit GRES from the job when the step didn't request GRES but the job did. * Fix errors in logic when picking nodes based on bracketed anded constraints. This also enforces the requirement to have a count when using such constraints. * Handle job resize better in the database. * Exclude currently running, resized jobs from the runaway jobs list. * Make it possible to shrink a job more than once. - moved pam module from /lib64 to /usr/lib64 which fixes bsc#1191095 via the macro %_pam_moduledir updated to 21.08.1 with following bug fixes: * Fix potential memory leak if a problem happens while allocating GRES for a job. * If an overallocation of GRES happens terminate the creation of a job. * AutoDetect=nvml: Fatal if no devices found in MIG mode. * Print federation and cluster sacctmgr error messages to stderr. * Fix off by one error in --gpu-bind=mask_gpu. * Add --gpu-bind=none to disable gpu binding when using --gpus-per-task. * Handle the burst buffer state "alloc-revoke" which previously would not display in the job correctly. * Fix issue in the slurmstepd SPANK prolog/epilog handler where configuration values were used before being initialized. * Restore a step's ability to utilize all of an allocations memory if --mem=0. * Fix --cpu-bind=verbose garbage taskid. * Fix cgroup task affinity issues from garbage taskid info. * Make gres_job_state_validate() client logging behavior as before 44466a4641. * Fix steps with --hint overriding an allocation with --threads-per-core. * Require requesting a GPU if --mem-per-gpu is requested. * Return error early if a job is requesting --ntasks-per-gpu and no gpus or task count. * Properly clear out pending step if unavailable to run with available resources. * Kill all processes spawned by burst_buffer.lua including decendents. * openapi/v0.0.{35,36,37} - Avoid setting default values of min_cpus, job name, cwd, mail_type, and contiguous on job update. * openapi/v0.0.{35,36,37} - Clear user hold on job update if hold=false. * Prevent CRON_JOB flag from being cleared when loading job state. * sacctmgr - Fix deleting WCKeys when not specifying a cluster. * Fix getting memory for a step when the first node in the step isn't the first node in the allocation. * Make SelectTypeParameters=CR_Core_Memory default for cons_tres and cons_res. * Correctly handle mutex unlocks in the gres code if failures happen. * Give better error message if -m plane is given with no size. * Fix --distribution=arbitrary for salloc. * Fix jobcomp/script regression introduced in 21.08.0rc1 0c75b9ac9d. * Only send the batch node in the step_hostlist in the job credential. * When setting affinity for the batch step don't assume the batch host is node 0. * In task/affinity better checking for node existence when laying out affinity. * slurmrestd - fix job submission with auth/jwt. - Make configure arg '--with-pmix' conditional. - Move openapi plugins to package slurm-restd. updated to 21.08.0, major changes: * A new "AccountingStoreFlags=job_script" option to store the job scripts directly in SlurmDBD. * Added "sacct -o SubmitLine" format option to get the submit line of a job/step. * Changes to the node state management so that nodes are marked as PLANNED instead of IDLE if the scheduler is still accumulating resources while waiting to launch a job on them. * RS256 token support in auth/jwt. * Overhaul of the cgroup subsystems to simplify operation, mitigate a number of inherent race conditions, and prepare for future cgroup v2 support. * Further improvements to cloud node power state management. * A new child process of the Slurm controller called "slurmscriptd" responsible for executing PrologSlurmctld and EpilogSlurmctld scripts, which significantly reduces performance issues associated with enabling those options. * A new burst_buffer/lua plugin allowing for site-specific asynchronous job data management. * Fixes to the job_container/tmpfs plugin to allow the slurmd process to be restarted while the job is running without issue. * Added json/yaml output to sacct, squeue, and sinfo commands. * Added a new node_features/helpers plugin to provide a generic way to change settings on a compute node across a reboot. * Added support for automatically detecting and broadcasting shared libraries for an executable launched with "srun --bcast". * Added initial OCI container execution support with a new --container option to sbatch and srun. * Improved "configless" support by allowing multiple control servers to be specified through the slurmd --conf-server option, and send additional configuration files at startup including cli_filter.lua. Changes in pdsh: - Preparing pdsh for Slurm 22.05. * No later version of Slurm builds on 32 bit. libnss_slurm2_22_05-22.05.5-150300.7.3.2.x86_64.rpm libpmi0_22_05-22.05.5-150300.7.3.2.x86_64.rpm libslurm38-22.05.5-150300.7.3.2.x86_64.rpm pdsh-2.34-150300.35.2.src.rpm pdsh-2.34-150300.35.2.x86_64.rpm pdsh-dshgroup-2.34-150300.35.2.x86_64.rpm pdsh-genders-2.34-150300.35.2.x86_64.rpm pdsh-machines-2.34-150300.35.2.x86_64.rpm pdsh-netgroup-2.34-150300.35.2.x86_64.rpm pdsh-slurm-2.34-150300.35.2.x86_64.rpm pdsh-slurm_22_05-2.34-150300.35.2.x86_64.rpm pdsh_slurm_22_05-2.34-150300.35.2.src.rpm perl-slurm_22_05-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-22.05.5-150300.7.3.2.src.rpm slurm_22_05-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-auth-none-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-config-22.05.5-150300.7.3.2.noarch.rpm slurm_22_05-config-man-22.05.5-150300.7.3.2.noarch.rpm slurm_22_05-cray-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-devel-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-doc-22.05.5-150300.7.3.2.noarch.rpm slurm_22_05-hdf5-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-lua-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-munge-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-node-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-openlava-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-pam_slurm-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-plugins-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-rest-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-seff-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-sjstat-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-slurmdbd-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-sql-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-sview-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-testsuite-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-torque-22.05.5-150300.7.3.2.x86_64.rpm slurm_22_05-webdoc-22.05.5-150300.7.3.2.noarch.rpm libnss_slurm2_22_05-22.05.5-150300.7.3.2.s390x.rpm libpmi0_22_05-22.05.5-150300.7.3.2.s390x.rpm libslurm38-22.05.5-150300.7.3.2.s390x.rpm pdsh-2.34-150300.35.2.s390x.rpm pdsh-dshgroup-2.34-150300.35.2.s390x.rpm pdsh-genders-2.34-150300.35.2.s390x.rpm pdsh-machines-2.34-150300.35.2.s390x.rpm pdsh-netgroup-2.34-150300.35.2.s390x.rpm pdsh-slurm-2.34-150300.35.2.s390x.rpm pdsh-slurm_22_05-2.34-150300.35.2.s390x.rpm perl-slurm_22_05-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-auth-none-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-cray-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-devel-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-hdf5-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-lua-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-munge-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-node-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-openlava-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-pam_slurm-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-plugins-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-rest-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-seff-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-sjstat-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-slurmdbd-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-sql-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-sview-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-testsuite-22.05.5-150300.7.3.2.s390x.rpm slurm_22_05-torque-22.05.5-150300.7.3.2.s390x.rpm libnss_slurm2_22_05-22.05.5-150300.7.3.2.ppc64le.rpm libpmi0_22_05-22.05.5-150300.7.3.2.ppc64le.rpm libslurm38-22.05.5-150300.7.3.2.ppc64le.rpm pdsh-2.34-150300.35.2.ppc64le.rpm pdsh-dshgroup-2.34-150300.35.2.ppc64le.rpm pdsh-genders-2.34-150300.35.2.ppc64le.rpm pdsh-machines-2.34-150300.35.2.ppc64le.rpm pdsh-netgroup-2.34-150300.35.2.ppc64le.rpm pdsh-slurm-2.34-150300.35.2.ppc64le.rpm pdsh-slurm_22_05-2.34-150300.35.2.ppc64le.rpm perl-slurm_22_05-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-auth-none-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-cray-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-devel-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-hdf5-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-lua-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-munge-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-node-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-openlava-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-pam_slurm-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-plugins-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-rest-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-seff-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-sjstat-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-slurmdbd-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-sql-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-sview-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-testsuite-22.05.5-150300.7.3.2.ppc64le.rpm slurm_22_05-torque-22.05.5-150300.7.3.2.ppc64le.rpm libnss_slurm2_22_05-22.05.5-150300.7.3.2.aarch64.rpm libpmi0_22_05-22.05.5-150300.7.3.2.aarch64.rpm libslurm38-22.05.5-150300.7.3.2.aarch64.rpm pdsh-2.34-150300.35.2.aarch64.rpm pdsh-dshgroup-2.34-150300.35.2.aarch64.rpm pdsh-genders-2.34-150300.35.2.aarch64.rpm pdsh-machines-2.34-150300.35.2.aarch64.rpm pdsh-netgroup-2.34-150300.35.2.aarch64.rpm pdsh-slurm-2.34-150300.35.2.aarch64.rpm pdsh-slurm_22_05-2.34-150300.35.2.aarch64.rpm perl-slurm_22_05-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-auth-none-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-cray-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-devel-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-hdf5-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-lua-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-munge-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-node-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-openlava-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-pam_slurm-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-plugins-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-rest-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-seff-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-sjstat-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-slurmdbd-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-sql-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-sview-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-testsuite-22.05.5-150300.7.3.2.aarch64.rpm slurm_22_05-torque-22.05.5-150300.7.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-4198 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpm fixes the following issues: - Strip critical bit in signature subpackage parsing - No longer deadlock DNF after pubkey import (bsc#1202750) python-rpm-4.14.3-150300.52.1.src.rpm python2-rpm-4.14.3-150300.52.1.x86_64.rpm python3-rpm-4.14.3-150300.52.1.x86_64.rpm rpm-32bit-4.14.3-150300.52.1.x86_64.rpm rpm-4.14.3-150300.52.1.src.rpm rpm-4.14.3-150300.52.1.x86_64.rpm rpm-build-4.14.3-150300.52.1.x86_64.rpm rpm-devel-4.14.3-150300.52.1.x86_64.rpm rpm-ndb-32bit-4.14.3-150300.52.1.x86_64.rpm rpm-ndb-4.14.3-150300.52.1.src.rpm rpm-ndb-4.14.3-150300.52.1.x86_64.rpm python2-rpm-4.14.3-150300.52.1.s390x.rpm python3-rpm-4.14.3-150300.52.1.s390x.rpm rpm-4.14.3-150300.52.1.s390x.rpm rpm-build-4.14.3-150300.52.1.s390x.rpm rpm-devel-4.14.3-150300.52.1.s390x.rpm rpm-ndb-4.14.3-150300.52.1.s390x.rpm python2-rpm-4.14.3-150300.52.1.ppc64le.rpm python3-rpm-4.14.3-150300.52.1.ppc64le.rpm rpm-4.14.3-150300.52.1.ppc64le.rpm rpm-build-4.14.3-150300.52.1.ppc64le.rpm rpm-devel-4.14.3-150300.52.1.ppc64le.rpm rpm-ndb-4.14.3-150300.52.1.ppc64le.rpm python2-rpm-4.14.3-150300.52.1.aarch64.rpm python3-rpm-4.14.3-150300.52.1.aarch64.rpm rpm-4.14.3-150300.52.1.aarch64.rpm rpm-build-4.14.3-150300.52.1.aarch64.rpm rpm-devel-4.14.3-150300.52.1.aarch64.rpm rpm-ndb-4.14.3-150300.52.1.aarch64.rpm openSUSE-SLE-15.3-2022-4146 moderate SUSE Updates openSUSE-SLE 15.3 This update for binutils fixes the following issues: The following security bugs were fixed: - CVE-2019-1010204: Fixed out-of-bounds read in elfcpp/elfcpp_file.h (bsc#1142579). - CVE-2021-3530: Fixed stack-based buffer overflow in demangle_path() in rust-demangle.c (bsc#1185597). - CVE-2021-3648: Fixed infinite loop while demangling rust symbols (bsc#1188374). - CVE-2021-3826: Fixed heap/stack buffer overflow in the dlang_lname function in d-demangle.c (bsc#1202969). - CVE-2021-45078: Fixed out-of-bounds write in stab_xcoff_builtin_type() in stabs.c (bsc#1193929). - CVE-2021-46195: Fixed uncontrolled recursion in libiberty/rust-demangle.c (bsc#1194783). - CVE-2022-27943: Fixed stack exhaustion in demangle_const in (bsc#1197592). - CVE-2022-38126: Fixed assertion fail in the display_debug_names() function in binutils/dwarf.c (bsc#1202966). - CVE-2022-38127: Fixed NULL pointer dereference in the read_and_display_attr_value() function in binutils/dwarf.c (bsc#1202967). - CVE-2022-38533: Fixed heap out-of-bounds read in bfd_getl32 (bsc#1202816). The following non-security bugs were fixed: - SLE toolchain update of binutils, update to 2.39 from 2.37. - Update to 2.39: * The ELF linker will now generate a warning message if the stack is made executable. Similarly it will warn if the output binary contains a segment with all three of the read, write and execute permission bits set. These warnings are intended to help developers identify programs which might be vulnerable to attack via these executable memory regions. The warnings are enabled by default but can be disabled via a command line option. It is also possible to build a linker with the warnings disabled, should that be necessary. * The ELF linker now supports a --package-metadata option that allows embedding a JSON payload in accordance to the Package Metadata specification. * In linker scripts it is now possible to use TYPE=<type> in an output section description to set the section type value. * The objdump program now supports coloured/colored syntax highlighting of its disassembler output for some architectures. (Currently: AVR, RiscV, s390, x86, x86_64). * The nm program now supports a --no-weak/-W option to make it ignore weak symbols. * The readelf and objdump programs now support a -wE option to prevent them from attempting to access debuginfod servers when following links. * The objcopy program's --weaken, --weaken-symbol, and --weaken-symbols options now works with unique symbols as well. - Update to 2.38: * elfedit: Add --output-abiversion option to update ABIVERSION. * Add support for the LoongArch instruction set. * Tools which display symbols or strings (readelf, strings, nm, objdump) have a new command line option which controls how unicode characters are handled. By default they are treated as normal for the tool. Using --unicode=locale will display them according to the current locale. Using --unicode=hex will display them as hex byte values, whilst --unicode=escape will display them as escape sequences. In addition using --unicode=highlight will display them as unicode escape sequences highlighted in red (if supported by the output device). * readelf -r dumps RELR relative relocations now. * Support for efi-app-aarch64, efi-rtdrv-aarch64 and efi-bsdrv-aarch64 has been added to objcopy in order to enable UEFI development using binutils. * ar: Add --thin for creating thin archives. -T is a deprecated alias without diagnostics. In many ar implementations -T has a different meaning, as specified by X/Open System Interface. * Add support for AArch64 system registers that were missing in previous releases. * Add support for the LoongArch instruction set. * Add a command-line option, -muse-unaligned-vector-move, for x86 target to encode aligned vector move as unaligned vector move. * Add support for Cortex-R52+ for Arm. * Add support for Cortex-A510, Cortex-A710, Cortex-X2 for AArch64. * Add support for Cortex-A710 for Arm. * Add support for Scalable Matrix Extension (SME) for AArch64. * The --multibyte-handling=[allow|warn|warn-sym-only] option tells the assembler what to when it encoutners multibyte characters in the input. The default is to allow them. Setting the option to "warn" will generate a warning message whenever any multibyte character is encountered. Using the option to "warn-sym-only" will make the assembler generate a warning whenever a symbol is defined containing multibyte characters. (References to undefined symbols will not generate warnings). * Outputs of .ds.x directive and .tfloat directive with hex input from x86 assembler have been reduced from 12 bytes to 10 bytes to match the output of .tfloat directive. * Add support for 'armv8.8-a', 'armv9-a', 'armv9.1-a', 'armv9.2-a' and 'armv9.3-a' for -march in AArch64 GAS. * Add support for 'armv8.7-a', 'armv8.8-a', 'armv9-a', 'armv9.1-a', 'armv9.2-a' and 'armv9.3-a' for -march in Arm GAS. * Add support for Intel AVX512_FP16 instructions. * Add -z pack-relative-relocs/-z no pack-relative-relocs to x86 ELF linker to pack relative relocations in the DT_RELR section. * Add support for the LoongArch architecture. * Add -z indirect-extern-access/-z noindirect-extern-access to x86 ELF linker to control canonical function pointers and copy relocation. * Add --max-cache-size=SIZE to set the the maximum cache size to SIZE bytes. - Explicitly enable --enable-warn-execstack=yes and --enable-warn-rwx-segments=yes. - Add gprofng subpackage. - Include recognition of 'z16' name for 'arch14' on s390. (bsc#1198237). - Add back fix for bsc#1191473, which got lost in the update to 2.38. - Install symlinks for all target specific tools on arm-eabi-none (bsc#1185712). - Enable PRU architecture for AM335x CPU (Beagle Bone Black board) binutils-2.39-150100.7.40.1.src.rpm binutils-2.39-150100.7.40.1.x86_64.rpm binutils-devel-2.39-150100.7.40.1.x86_64.rpm binutils-devel-32bit-2.39-150100.7.40.1.x86_64.rpm binutils-gold-2.39-150100.7.40.1.x86_64.rpm cross-aarch64-binutils-2.39-150100.7.40.1.src.rpm cross-aarch64-binutils-2.39-150100.7.40.1.x86_64.rpm cross-arm-binutils-2.39-150100.7.40.1.src.rpm cross-arm-binutils-2.39-150100.7.40.1.x86_64.rpm cross-avr-binutils-2.39-150100.7.40.1.src.rpm cross-avr-binutils-2.39-150100.7.40.1.x86_64.rpm cross-epiphany-binutils-2.39-150100.7.40.1.src.rpm cross-epiphany-binutils-2.39-150100.7.40.1.x86_64.rpm cross-hppa-binutils-2.39-150100.7.40.1.src.rpm cross-hppa-binutils-2.39-150100.7.40.1.x86_64.rpm cross-hppa64-binutils-2.39-150100.7.40.1.src.rpm cross-hppa64-binutils-2.39-150100.7.40.1.x86_64.rpm cross-i386-binutils-2.39-150100.7.40.1.src.rpm cross-i386-binutils-2.39-150100.7.40.1.x86_64.rpm cross-ia64-binutils-2.39-150100.7.40.1.src.rpm cross-ia64-binutils-2.39-150100.7.40.1.x86_64.rpm cross-m68k-binutils-2.39-150100.7.40.1.src.rpm cross-m68k-binutils-2.39-150100.7.40.1.x86_64.rpm cross-mips-binutils-2.39-150100.7.40.1.src.rpm cross-mips-binutils-2.39-150100.7.40.1.x86_64.rpm cross-ppc-binutils-2.39-150100.7.40.1.src.rpm cross-ppc-binutils-2.39-150100.7.40.1.x86_64.rpm cross-ppc64-binutils-2.39-150100.7.40.1.src.rpm cross-ppc64-binutils-2.39-150100.7.40.1.x86_64.rpm cross-ppc64le-binutils-2.39-150100.7.40.1.src.rpm cross-ppc64le-binutils-2.39-150100.7.40.1.x86_64.rpm cross-riscv64-binutils-2.39-150100.7.40.1.src.rpm cross-riscv64-binutils-2.39-150100.7.40.1.x86_64.rpm cross-rx-binutils-2.39-150100.7.40.1.src.rpm cross-rx-binutils-2.39-150100.7.40.1.x86_64.rpm cross-s390-binutils-2.39-150100.7.40.1.src.rpm cross-s390-binutils-2.39-150100.7.40.1.x86_64.rpm cross-s390x-binutils-2.39-150100.7.40.1.src.rpm cross-s390x-binutils-2.39-150100.7.40.1.x86_64.rpm cross-sparc-binutils-2.39-150100.7.40.1.src.rpm cross-sparc-binutils-2.39-150100.7.40.1.x86_64.rpm cross-sparc64-binutils-2.39-150100.7.40.1.src.rpm cross-sparc64-binutils-2.39-150100.7.40.1.x86_64.rpm cross-spu-binutils-2.39-150100.7.40.1.src.rpm cross-spu-binutils-2.39-150100.7.40.1.x86_64.rpm libctf-nobfd0-2.39-150100.7.40.1.x86_64.rpm libctf0-2.39-150100.7.40.1.x86_64.rpm binutils-2.39-150100.7.40.1.s390x.rpm binutils-devel-2.39-150100.7.40.1.s390x.rpm binutils-gold-2.39-150100.7.40.1.s390x.rpm cross-aarch64-binutils-2.39-150100.7.40.1.s390x.rpm cross-arm-binutils-2.39-150100.7.40.1.s390x.rpm cross-avr-binutils-2.39-150100.7.40.1.s390x.rpm cross-epiphany-binutils-2.39-150100.7.40.1.s390x.rpm cross-hppa-binutils-2.39-150100.7.40.1.s390x.rpm cross-hppa64-binutils-2.39-150100.7.40.1.s390x.rpm cross-i386-binutils-2.39-150100.7.40.1.s390x.rpm cross-ia64-binutils-2.39-150100.7.40.1.s390x.rpm cross-m68k-binutils-2.39-150100.7.40.1.s390x.rpm cross-mips-binutils-2.39-150100.7.40.1.s390x.rpm cross-ppc-binutils-2.39-150100.7.40.1.s390x.rpm cross-ppc64-binutils-2.39-150100.7.40.1.s390x.rpm cross-ppc64le-binutils-2.39-150100.7.40.1.s390x.rpm cross-riscv64-binutils-2.39-150100.7.40.1.s390x.rpm cross-rx-binutils-2.39-150100.7.40.1.s390x.rpm cross-s390-binutils-2.39-150100.7.40.1.s390x.rpm cross-sparc-binutils-2.39-150100.7.40.1.s390x.rpm cross-sparc64-binutils-2.39-150100.7.40.1.s390x.rpm cross-spu-binutils-2.39-150100.7.40.1.s390x.rpm cross-x86_64-binutils-2.39-150100.7.40.1.s390x.rpm cross-x86_64-binutils-2.39-150100.7.40.1.src.rpm libctf-nobfd0-2.39-150100.7.40.1.s390x.rpm libctf0-2.39-150100.7.40.1.s390x.rpm binutils-2.39-150100.7.40.1.ppc64le.rpm binutils-devel-2.39-150100.7.40.1.ppc64le.rpm binutils-gold-2.39-150100.7.40.1.ppc64le.rpm cross-aarch64-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-arm-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-avr-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-epiphany-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-hppa-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-hppa64-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-i386-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-ia64-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-m68k-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-mips-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-ppc-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-ppc64-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-riscv64-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-rx-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-s390-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-s390x-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-sparc-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-sparc64-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-spu-binutils-2.39-150100.7.40.1.ppc64le.rpm cross-x86_64-binutils-2.39-150100.7.40.1.ppc64le.rpm libctf-nobfd0-2.39-150100.7.40.1.ppc64le.rpm libctf0-2.39-150100.7.40.1.ppc64le.rpm binutils-2.39-150100.7.40.1.aarch64.rpm binutils-devel-2.39-150100.7.40.1.aarch64.rpm binutils-gold-2.39-150100.7.40.1.aarch64.rpm cross-arm-binutils-2.39-150100.7.40.1.aarch64.rpm cross-avr-binutils-2.39-150100.7.40.1.aarch64.rpm cross-epiphany-binutils-2.39-150100.7.40.1.aarch64.rpm cross-hppa-binutils-2.39-150100.7.40.1.aarch64.rpm cross-hppa64-binutils-2.39-150100.7.40.1.aarch64.rpm cross-i386-binutils-2.39-150100.7.40.1.aarch64.rpm cross-ia64-binutils-2.39-150100.7.40.1.aarch64.rpm cross-m68k-binutils-2.39-150100.7.40.1.aarch64.rpm cross-mips-binutils-2.39-150100.7.40.1.aarch64.rpm cross-ppc-binutils-2.39-150100.7.40.1.aarch64.rpm cross-ppc64-binutils-2.39-150100.7.40.1.aarch64.rpm cross-ppc64le-binutils-2.39-150100.7.40.1.aarch64.rpm cross-riscv64-binutils-2.39-150100.7.40.1.aarch64.rpm cross-rx-binutils-2.39-150100.7.40.1.aarch64.rpm cross-s390-binutils-2.39-150100.7.40.1.aarch64.rpm cross-s390x-binutils-2.39-150100.7.40.1.aarch64.rpm cross-sparc-binutils-2.39-150100.7.40.1.aarch64.rpm cross-sparc64-binutils-2.39-150100.7.40.1.aarch64.rpm cross-spu-binutils-2.39-150100.7.40.1.aarch64.rpm cross-x86_64-binutils-2.39-150100.7.40.1.aarch64.rpm libctf-nobfd0-2.39-150100.7.40.1.aarch64.rpm libctf0-2.39-150100.7.40.1.aarch64.rpm openSUSE-SLE-15.3-2022-4312 moderate SUSE Updates openSUSE-SLE 15.3 This update for tar fixes the following issues: - Fix unexpected inconsistency when making directory (bsc#1203600) - Update race condition fix (bsc#1200657) tar-1.34-150000.3.22.3.src.rpm tar-1.34-150000.3.22.3.x86_64.rpm tar-backup-scripts-1.34-150000.3.22.3.noarch.rpm tar-doc-1.34-150000.3.22.3.noarch.rpm tar-lang-1.34-150000.3.22.3.noarch.rpm tar-rmt-1.34-150000.3.22.3.x86_64.rpm tar-tests-1.34-150000.3.22.3.x86_64.rpm tar-1.34-150000.3.22.3.s390x.rpm tar-rmt-1.34-150000.3.22.3.s390x.rpm tar-tests-1.34-150000.3.22.3.s390x.rpm tar-1.34-150000.3.22.3.ppc64le.rpm tar-rmt-1.34-150000.3.22.3.ppc64le.rpm tar-tests-1.34-150000.3.22.3.ppc64le.rpm tar-1.34-150000.3.22.3.aarch64.rpm tar-rmt-1.34-150000.3.22.3.aarch64.rpm tar-tests-1.34-150000.3.22.3.aarch64.rpm openSUSE-SLE-15.3-2022-4056 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2022-3821: Fixed buffer overrun in format_timespan() function (bsc#1204968). - Import commit 56bee38fd0da18dad5fc5c5d12c02238a22b50e2 * 8a70235d8a core: Add trigger limit for path units * 93e544f3a0 core/mount: also add default before dependency for automount mount units * 5916a7748c logind: fix crash in logind on user-specified message string - Document udev naming scheme (bsc#1204179). libsystemd0-246.16-150300.7.54.1.x86_64.rpm True libsystemd0-32bit-246.16-150300.7.54.1.x86_64.rpm True libudev-devel-246.16-150300.7.54.1.x86_64.rpm True libudev-devel-32bit-246.16-150300.7.54.1.x86_64.rpm True libudev1-246.16-150300.7.54.1.x86_64.rpm True libudev1-32bit-246.16-150300.7.54.1.x86_64.rpm True nss-myhostname-246.16-150300.7.54.1.x86_64.rpm True nss-myhostname-32bit-246.16-150300.7.54.1.x86_64.rpm True nss-mymachines-246.16-150300.7.54.1.x86_64.rpm True nss-mymachines-32bit-246.16-150300.7.54.1.x86_64.rpm True nss-resolve-246.16-150300.7.54.1.x86_64.rpm True nss-systemd-246.16-150300.7.54.1.x86_64.rpm True systemd-246.16-150300.7.54.1.src.rpm True systemd-246.16-150300.7.54.1.x86_64.rpm True systemd-32bit-246.16-150300.7.54.1.x86_64.rpm True systemd-container-246.16-150300.7.54.1.x86_64.rpm True systemd-coredump-246.16-150300.7.54.1.x86_64.rpm True systemd-devel-246.16-150300.7.54.1.x86_64.rpm True systemd-doc-246.16-150300.7.54.1.x86_64.rpm True systemd-journal-remote-246.16-150300.7.54.1.x86_64.rpm True systemd-lang-246.16-150300.7.54.1.noarch.rpm True systemd-logger-246.16-150300.7.54.1.x86_64.rpm True systemd-network-246.16-150300.7.54.1.x86_64.rpm True systemd-sysvinit-246.16-150300.7.54.1.x86_64.rpm True udev-246.16-150300.7.54.1.x86_64.rpm True libsystemd0-246.16-150300.7.54.1.s390x.rpm True libudev-devel-246.16-150300.7.54.1.s390x.rpm True libudev1-246.16-150300.7.54.1.s390x.rpm True nss-myhostname-246.16-150300.7.54.1.s390x.rpm True nss-mymachines-246.16-150300.7.54.1.s390x.rpm True nss-resolve-246.16-150300.7.54.1.s390x.rpm True nss-systemd-246.16-150300.7.54.1.s390x.rpm True systemd-246.16-150300.7.54.1.s390x.rpm True systemd-container-246.16-150300.7.54.1.s390x.rpm True systemd-coredump-246.16-150300.7.54.1.s390x.rpm True systemd-devel-246.16-150300.7.54.1.s390x.rpm True systemd-doc-246.16-150300.7.54.1.s390x.rpm True systemd-journal-remote-246.16-150300.7.54.1.s390x.rpm True systemd-logger-246.16-150300.7.54.1.s390x.rpm True systemd-network-246.16-150300.7.54.1.s390x.rpm True systemd-sysvinit-246.16-150300.7.54.1.s390x.rpm True udev-246.16-150300.7.54.1.s390x.rpm True libsystemd0-246.16-150300.7.54.1.ppc64le.rpm True libudev-devel-246.16-150300.7.54.1.ppc64le.rpm True libudev1-246.16-150300.7.54.1.ppc64le.rpm True nss-myhostname-246.16-150300.7.54.1.ppc64le.rpm True nss-mymachines-246.16-150300.7.54.1.ppc64le.rpm True nss-resolve-246.16-150300.7.54.1.ppc64le.rpm True nss-systemd-246.16-150300.7.54.1.ppc64le.rpm True systemd-246.16-150300.7.54.1.ppc64le.rpm True systemd-container-246.16-150300.7.54.1.ppc64le.rpm True systemd-coredump-246.16-150300.7.54.1.ppc64le.rpm True systemd-devel-246.16-150300.7.54.1.ppc64le.rpm True systemd-doc-246.16-150300.7.54.1.ppc64le.rpm True systemd-journal-remote-246.16-150300.7.54.1.ppc64le.rpm True systemd-logger-246.16-150300.7.54.1.ppc64le.rpm True systemd-network-246.16-150300.7.54.1.ppc64le.rpm True systemd-sysvinit-246.16-150300.7.54.1.ppc64le.rpm True udev-246.16-150300.7.54.1.ppc64le.rpm True libsystemd0-246.16-150300.7.54.1.aarch64.rpm True libudev-devel-246.16-150300.7.54.1.aarch64.rpm True libudev1-246.16-150300.7.54.1.aarch64.rpm True nss-myhostname-246.16-150300.7.54.1.aarch64.rpm True nss-mymachines-246.16-150300.7.54.1.aarch64.rpm True nss-resolve-246.16-150300.7.54.1.aarch64.rpm True nss-systemd-246.16-150300.7.54.1.aarch64.rpm True systemd-246.16-150300.7.54.1.aarch64.rpm True systemd-container-246.16-150300.7.54.1.aarch64.rpm True systemd-coredump-246.16-150300.7.54.1.aarch64.rpm True systemd-devel-246.16-150300.7.54.1.aarch64.rpm True systemd-doc-246.16-150300.7.54.1.aarch64.rpm True systemd-journal-remote-246.16-150300.7.54.1.aarch64.rpm True systemd-logger-246.16-150300.7.54.1.aarch64.rpm True systemd-network-246.16-150300.7.54.1.aarch64.rpm True systemd-sysvinit-246.16-150300.7.54.1.aarch64.rpm True udev-246.16-150300.7.54.1.aarch64.rpm True openSUSE-SLE-15.3-2022-4057 low SUSE Updates openSUSE-SLE 15.3 This update for python-Twisted fixes the following issues: - CVE-2022-39348: Fixed NameVirtualHost Host header injection (bsc#1204781). python-Twisted-19.10.0-150200.3.18.1.src.rpm python-Twisted-doc-19.10.0-150200.3.18.1.x86_64.rpm python2-Twisted-19.10.0-150200.3.18.1.x86_64.rpm python3-Twisted-19.10.0-150200.3.18.1.x86_64.rpm python-Twisted-doc-19.10.0-150200.3.18.1.s390x.rpm python2-Twisted-19.10.0-150200.3.18.1.s390x.rpm python3-Twisted-19.10.0-150200.3.18.1.s390x.rpm python-Twisted-doc-19.10.0-150200.3.18.1.ppc64le.rpm python2-Twisted-19.10.0-150200.3.18.1.ppc64le.rpm python3-Twisted-19.10.0-150200.3.18.1.ppc64le.rpm python-Twisted-doc-19.10.0-150200.3.18.1.aarch64.rpm python2-Twisted-19.10.0-150200.3.18.1.aarch64.rpm python3-Twisted-19.10.0-150200.3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-4085 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Fixed various security issues (MFSA 2022-49, bsc#1205270): * CVE-2022-45403 (bmo#1762078) Service Workers might have learned size of cross-origin media files * CVE-2022-45404 (bmo#1790815) Fullscreen notification bypass * CVE-2022-45405 (bmo#1791314) Use-after-free in InputStream implementation * CVE-2022-45406 (bmo#1791975) Use-after-free of a JavaScript Realm * CVE-2022-45408 (bmo#1793829) Fullscreen notification bypass via windowName * CVE-2022-45409 (bmo#1796901) Use-after-free in Garbage Collection * CVE-2022-45410 (bmo#1658869) ServiceWorker-intercepted requests bypassed SameSite cookie policy * CVE-2022-45411 (bmo#1790311) Cross-Site Tracing was possible via non-standard override headers * CVE-2022-45412 (bmo#1791029) Symlinks may resolve to partially uninitialized buffers * CVE-2022-45416 (bmo#1793676) Keystroke Side-Channel Leakage * CVE-2022-45418 (bmo#1795815) Custom mouse cursor could have been drawn over browser UI * CVE-2022-45420 (bmo#1792643) Iframe contents could be rendered outside the iframe * CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061) Memory safety bugs fixed in Thunderbird 102.5 - Fixed various security issues: (MFSA 2022-46, bsc#1204421): * CVE-2022-42927 (bmo#1789128) Same-origin policy violation could have leaked cross-origin URLs * CVE-2022-42928 (bmo#1791520) Memory Corruption in JS Engine * CVE-2022-42929 (bmo#1789439) Denial of Service via window.print * CVE-2022-42932 (bmo#1789729, bmo#1791363, bmo#1792041) Memory safety bugs fixed in Thunderbird 102.4 - Mozilla Thunderbird 102.5 * changed: `Ctrl+N` shortcut to create new contacts from address book restored (bmo#1751288) * fixed: Account Settings UI did not update to reflect default identity changes (bmo#1782646) * fixed: New POP mail notifications were incorrectly shown for messages marked by filters as read or junk (bmo#1787531) * fixed: Connecting to an IMAP server configured to use `PREAUTH` caused Thunderbird to hang (bmo#1798161) * fixed: Error responses received in greeting header from NNTP servers did not display error message (bmo#1792281) * fixed: News messages sent using "Send Later" failed to send after going back online (bmo#1794997) * fixed: "Download/Sync Now..." did not completely sync all newsgroups before going offline (bmo#1795547) * fixed: Username was missing from error dialog on failed login to news server (bmo#1796964) * fixed: Thunderbird can now fetch RSS channel feeds with incomplete channel URL (bmo#1794775) * fixed: Add-on "Contribute" button in Add-ons Manager did not work (bmo#1795751) * fixed: Help text for `/part` Matrix command was incorrect (bmo#1795578) * fixed: Invite Attendees dialog did not fetch free/busy info for attendees with encoded characters in their name (bmo#1797927) - Mozilla Thunderbird 102.4.2 * changed: "Address Book" button in Account Central will now create a CardDAV address book instead of a local address book (bmo#1793903) * fixed: Messages fetched from POP server in `Fetch headers only` mode disappeared when moved to different folder by filter action (bmo#1793374) * fixed: Thunderbird re-downloaded locally deleted messages from a POP server when "Leave messages on server" and "Until I delete them" were enabled (bmo#1796903) * fixed: Multiple password prompts for the same POP account could be displayed (bmo#1786920) * fixed: IMAP authentication failed on next startup if ImapMail folder was deleted by user (bmo#1793599) * fixed: Retrieving passwords for authenticated NNTP accounts could fail due to obsolete preferences in a users profile on every startup (bmo#1770594) * fixed: `Get Next n Messages` did not consistently fetch all messages requested from NNTP server (bmo#1794185) * fixed: `Get Messages` button unable to fetch messages from NNTP server if root folder not selected (bmo#1792362) * fixed: Thunderbird text branding did not always match locale of localized build (bmo#1786199) * fixed: Thunderbird installer and Thunderbird updater created Windows shortcuts with different names (bmo#1787264) * fixed: LDAP search filters unable to work with non-ASCII characters (bmo#1794306) * fixed: "Today" highlighting in Calendar Month view did not update after date change at midnight (bmo#1795176) - Mozilla Thunderbird 102.4.1 * new: Thunderbird will now catch and report errors parsing vCards that contain incorrectly formatted dates (bmo#1793415) * fixed: Dynamic language switching did not update interface when switched to right-to-left languages (bmo#1794289) * fixed: Custom header data was discarded after messages were saved as draft and reopened (bmo#195716) * fixed: `-remote` command line argument did not work, affecting integration with various applications such as LibreOffice (bmo#1793323) * fixed: Messages received via some SMS-to-email services could not display images (bmo#1774805) * fixed: VCards with nickname field set could not be edited (bmo#1793877) * fixed: Some recurring events were missing from Agenda on first load (bmo#1771168) * fixed: Download requests for remote ICS calendars incorrectly set "Accept" header to text/xml (bmo#1793757) * fixed: Monthly events created on the 31st of a month with <30 days placed first occurrence 1-2 days after the beginning of the following month (bmo#1266797) * fixed: Various visual and UX improvements (bmo#1781437,bmo#1785314,bmo#1794139,bmo#1794155,bmo#1794399) * changed: Thunderbird will automatically detect and repair OpenPGP key storage corruption caused by using the profile import tool in Thunderbird 102 (bmo#1790610) * fixed: POP message download into a large folder (~13000 messages) caused Thunderbird to temporarily freeze (bmo#1792675) * fixed: Forwarding messages with special characters in Subject failed on Windows (bmo#1782173) * fixed: Links for FileLink attachments were not added when attachment filename contained Unicode characters (bmo#1789589) * fixed: Address Book display pane continued to show contacts after deletion (bmo#1777808) * fixed: Printing address book did not include all contact details (bmo#1782076) * fixed: CardDAV contacts without a Name property did not save to Google Contacts (bmo#1792101) * fixed: "Publish Calendar" did not work (bmo#1794471) * fixed: Calendar database storage improvements (bmo#1792124) * fixed: Incorrectly handled error responses from CalDAV servers sometimes caused events to disappear from calendar (bmo#1792923) * fixed: Various visual and UX improvements (bmo#1776093,bmo#17 80040,bmo#1780425,bmo#1792876,bmo#1792872,bmo#1793466,bmo#179 3543) MozillaThunderbird-102.5.0-150200.8.90.1.src.rpm MozillaThunderbird-102.5.0-150200.8.90.1.x86_64.rpm MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64.rpm MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64.rpm MozillaThunderbird-102.5.0-150200.8.90.1.s390x.rpm MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x.rpm MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x.rpm MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le.rpm MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le.rpm MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le.rpm MozillaThunderbird-102.5.0-150200.8.90.1.aarch64.rpm MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64.rpm MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64.rpm openSUSE-SLE-15.3-2022-4130 important SUSE Updates openSUSE-SLE 15.3 This update for frr fixes the following issues: - CVE-2022-37035: Fixed a possible use-after-free due to a race condition related to bgp_notify_send_with_data() and bgp_process_packet() (bsc#1202085). - CVE-2022-42917: Fixed a privilege escalation from frr to root in frr config creation (bsc#1204124). frr-7.4-150300.4.10.1.src.rpm frr-7.4-150300.4.10.1.x86_64.rpm frr-devel-7.4-150300.4.10.1.x86_64.rpm libfrr0-7.4-150300.4.10.1.x86_64.rpm libfrr_pb0-7.4-150300.4.10.1.x86_64.rpm libfrrcares0-7.4-150300.4.10.1.x86_64.rpm libfrrfpm_pb0-7.4-150300.4.10.1.x86_64.rpm libfrrgrpc_pb0-7.4-150300.4.10.1.x86_64.rpm libfrrospfapiclient0-7.4-150300.4.10.1.x86_64.rpm libfrrsnmp0-7.4-150300.4.10.1.x86_64.rpm libfrrzmq0-7.4-150300.4.10.1.x86_64.rpm libmlag_pb0-7.4-150300.4.10.1.x86_64.rpm frr-7.4-150300.4.10.1.s390x.rpm frr-devel-7.4-150300.4.10.1.s390x.rpm libfrr0-7.4-150300.4.10.1.s390x.rpm libfrr_pb0-7.4-150300.4.10.1.s390x.rpm libfrrcares0-7.4-150300.4.10.1.s390x.rpm libfrrfpm_pb0-7.4-150300.4.10.1.s390x.rpm libfrrgrpc_pb0-7.4-150300.4.10.1.s390x.rpm libfrrospfapiclient0-7.4-150300.4.10.1.s390x.rpm libfrrsnmp0-7.4-150300.4.10.1.s390x.rpm libfrrzmq0-7.4-150300.4.10.1.s390x.rpm libmlag_pb0-7.4-150300.4.10.1.s390x.rpm frr-7.4-150300.4.10.1.ppc64le.rpm frr-devel-7.4-150300.4.10.1.ppc64le.rpm libfrr0-7.4-150300.4.10.1.ppc64le.rpm libfrr_pb0-7.4-150300.4.10.1.ppc64le.rpm libfrrcares0-7.4-150300.4.10.1.ppc64le.rpm libfrrfpm_pb0-7.4-150300.4.10.1.ppc64le.rpm libfrrgrpc_pb0-7.4-150300.4.10.1.ppc64le.rpm libfrrospfapiclient0-7.4-150300.4.10.1.ppc64le.rpm libfrrsnmp0-7.4-150300.4.10.1.ppc64le.rpm libfrrzmq0-7.4-150300.4.10.1.ppc64le.rpm libmlag_pb0-7.4-150300.4.10.1.ppc64le.rpm frr-7.4-150300.4.10.1.aarch64.rpm frr-devel-7.4-150300.4.10.1.aarch64.rpm libfrr0-7.4-150300.4.10.1.aarch64.rpm libfrr_pb0-7.4-150300.4.10.1.aarch64.rpm libfrrcares0-7.4-150300.4.10.1.aarch64.rpm libfrrfpm_pb0-7.4-150300.4.10.1.aarch64.rpm libfrrgrpc_pb0-7.4-150300.4.10.1.aarch64.rpm libfrrospfapiclient0-7.4-150300.4.10.1.aarch64.rpm libfrrsnmp0-7.4-150300.4.10.1.aarch64.rpm libfrrzmq0-7.4-150300.4.10.1.aarch64.rpm libmlag_pb0-7.4-150300.4.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-4167 important SUSE Updates openSUSE-SLE 15.3 This update for krb5 fixes the following issues: - CVE-2022-42898: Fixed integer overflow in PAC parsing (bsc#1205126). krb5-1.19.2-150300.7.7.1.src.rpm krb5-1.19.2-150300.7.7.1.x86_64.rpm krb5-32bit-1.19.2-150300.7.7.1.x86_64.rpm krb5-client-1.19.2-150300.7.7.1.x86_64.rpm krb5-devel-1.19.2-150300.7.7.1.x86_64.rpm krb5-devel-32bit-1.19.2-150300.7.7.1.x86_64.rpm krb5-mini-1.19.2-150300.7.7.1.src.rpm krb5-mini-1.19.2-150300.7.7.1.x86_64.rpm krb5-mini-devel-1.19.2-150300.7.7.1.x86_64.rpm krb5-plugin-kdb-ldap-1.19.2-150300.7.7.1.x86_64.rpm krb5-plugin-preauth-otp-1.19.2-150300.7.7.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.7.7.1.x86_64.rpm krb5-plugin-preauth-spake-1.19.2-150300.7.7.1.x86_64.rpm krb5-server-1.19.2-150300.7.7.1.x86_64.rpm krb5-1.19.2-150300.7.7.1.s390x.rpm krb5-client-1.19.2-150300.7.7.1.s390x.rpm krb5-devel-1.19.2-150300.7.7.1.s390x.rpm krb5-mini-1.19.2-150300.7.7.1.s390x.rpm krb5-mini-devel-1.19.2-150300.7.7.1.s390x.rpm krb5-plugin-kdb-ldap-1.19.2-150300.7.7.1.s390x.rpm krb5-plugin-preauth-otp-1.19.2-150300.7.7.1.s390x.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.7.7.1.s390x.rpm krb5-plugin-preauth-spake-1.19.2-150300.7.7.1.s390x.rpm krb5-server-1.19.2-150300.7.7.1.s390x.rpm krb5-1.19.2-150300.7.7.1.ppc64le.rpm krb5-client-1.19.2-150300.7.7.1.ppc64le.rpm krb5-devel-1.19.2-150300.7.7.1.ppc64le.rpm krb5-mini-1.19.2-150300.7.7.1.ppc64le.rpm krb5-mini-devel-1.19.2-150300.7.7.1.ppc64le.rpm krb5-plugin-kdb-ldap-1.19.2-150300.7.7.1.ppc64le.rpm krb5-plugin-preauth-otp-1.19.2-150300.7.7.1.ppc64le.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.7.7.1.ppc64le.rpm krb5-plugin-preauth-spake-1.19.2-150300.7.7.1.ppc64le.rpm krb5-server-1.19.2-150300.7.7.1.ppc64le.rpm krb5-1.19.2-150300.7.7.1.aarch64.rpm krb5-client-1.19.2-150300.7.7.1.aarch64.rpm krb5-devel-1.19.2-150300.7.7.1.aarch64.rpm krb5-mini-1.19.2-150300.7.7.1.aarch64.rpm krb5-mini-devel-1.19.2-150300.7.7.1.aarch64.rpm krb5-plugin-kdb-ldap-1.19.2-150300.7.7.1.aarch64.rpm krb5-plugin-preauth-otp-1.19.2-150300.7.7.1.aarch64.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.7.7.1.aarch64.rpm krb5-plugin-preauth-spake-1.19.2-150300.7.7.1.aarch64.rpm krb5-server-1.19.2-150300.7.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-4084 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs16 fixes the following issues: - Update to LTS versino 16.18.1. - CVE-2022-43548: Fixed DNS rebinding in --inspect via invalid octal IP address (bsc#1205119). - Update to LTS version 16.18.0: * http: throw error on content-length mismatch * stream: add ReadableByteStream.tee() * deps: npm updated to 8.19.2 nodejs16-16.18.1-150300.7.15.1.src.rpm nodejs16-16.18.1-150300.7.15.1.x86_64.rpm nodejs16-devel-16.18.1-150300.7.15.1.x86_64.rpm nodejs16-docs-16.18.1-150300.7.15.1.noarch.rpm npm16-16.18.1-150300.7.15.1.x86_64.rpm nodejs16-16.18.1-150300.7.15.1.s390x.rpm nodejs16-devel-16.18.1-150300.7.15.1.s390x.rpm npm16-16.18.1-150300.7.15.1.s390x.rpm nodejs16-16.18.1-150300.7.15.1.ppc64le.rpm nodejs16-devel-16.18.1-150300.7.15.1.ppc64le.rpm npm16-16.18.1-150300.7.15.1.ppc64le.rpm nodejs16-16.18.1-150300.7.15.1.aarch64.rpm nodejs16-devel-16.18.1-150300.7.15.1.aarch64.rpm npm16-16.18.1-150300.7.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-4255 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: - Update to 14.21.1: - CVE-2022-43548: Fixed DNS rebinding in --inspect via invalid octal IP address (bsc#1205119). - Update to 14.21.0: - src: add --openssl-shared-config option nodejs14-14.21.1-150200.15.40.2.src.rpm nodejs14-14.21.1-150200.15.40.2.x86_64.rpm nodejs14-devel-14.21.1-150200.15.40.2.x86_64.rpm nodejs14-docs-14.21.1-150200.15.40.2.noarch.rpm npm14-14.21.1-150200.15.40.2.x86_64.rpm nodejs14-14.21.1-150200.15.40.2.s390x.rpm nodejs14-devel-14.21.1-150200.15.40.2.s390x.rpm npm14-14.21.1-150200.15.40.2.s390x.rpm nodejs14-14.21.1-150200.15.40.2.ppc64le.rpm nodejs14-devel-14.21.1-150200.15.40.2.ppc64le.rpm npm14-14.21.1-150200.15.40.2.ppc64le.rpm nodejs14-14.21.1-150200.15.40.2.aarch64.rpm nodejs14-devel-14.21.1-150200.15.40.2.aarch64.rpm npm14-14.21.1-150200.15.40.2.aarch64.rpm openSUSE-SLE-15.3-2022-4254 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - CVE-2022-43548: Fixed DNS rebinding in --inspect via invalid octal IP address (bsc#1205119). nodejs12-12.22.12-150200.4.41.2.src.rpm nodejs12-12.22.12-150200.4.41.2.x86_64.rpm nodejs12-devel-12.22.12-150200.4.41.2.x86_64.rpm nodejs12-docs-12.22.12-150200.4.41.2.noarch.rpm npm12-12.22.12-150200.4.41.2.x86_64.rpm nodejs12-12.22.12-150200.4.41.2.s390x.rpm nodejs12-devel-12.22.12-150200.4.41.2.s390x.rpm npm12-12.22.12-150200.4.41.2.s390x.rpm nodejs12-12.22.12-150200.4.41.2.ppc64le.rpm nodejs12-devel-12.22.12-150200.4.41.2.ppc64le.rpm npm12-12.22.12-150200.4.41.2.ppc64le.rpm nodejs12-12.22.12-150200.4.41.2.aarch64.rpm nodejs12-devel-12.22.12-150200.4.41.2.aarch64.rpm npm12-12.22.12-150200.4.41.2.aarch64.rpm openSUSE-SLE-15.3-2022-4301 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs10 fixes the following issues: - CVE-2022-43548: Fixed DNS rebinding in --inspect via invalid octal IP address (bsc#1205119). nodejs10-10.24.1-150000.1.53.1.src.rpm nodejs10-10.24.1-150000.1.53.1.x86_64.rpm nodejs10-devel-10.24.1-150000.1.53.1.x86_64.rpm nodejs10-docs-10.24.1-150000.1.53.1.noarch.rpm npm10-10.24.1-150000.1.53.1.x86_64.rpm nodejs10-10.24.1-150000.1.53.1.s390x.rpm nodejs10-devel-10.24.1-150000.1.53.1.s390x.rpm npm10-10.24.1-150000.1.53.1.s390x.rpm nodejs10-10.24.1-150000.1.53.1.ppc64le.rpm nodejs10-devel-10.24.1-150000.1.53.1.ppc64le.rpm npm10-10.24.1-150000.1.53.1.ppc64le.rpm nodejs10-10.24.1-150000.1.53.1.aarch64.rpm nodejs10-devel-10.24.1-150000.1.53.1.aarch64.rpm npm10-10.24.1-150000.1.53.1.aarch64.rpm openSUSE-SLE-15.3-2022-4071 important SUSE Updates openSUSE-SLE 15.3 This update for python39 fixes the following issues: Security fixes: - CVE-2022-42919: Fixed local privilege escalation via the multiprocessing forkserver start method (bsc#1204886). - CVE-2022-45061: Fixed a quadratic IDNA decoding time (bsc#1205244). Other fixes: - Allow building of documentation with the latest Sphinx 5.3.0 (gh#python/cpython#98366). - Update to 3.9.15: - Fix multiplying a list by an integer (list *= int): detect the integer overflow when the new allocated length is close to the maximum size. - Fix a shell code injection vulnerability in the get-remote-certificate.py example script. The script no longer uses a shell to run openssl commands. (originally filed as CVE-2022-37460, later withdrawn) - Fix command line parsing: reject -X int_max_str_digits option with no value (invalid) when the PYTHONINTMAXSTRDIGITS environment variable is set to a valid limit. - When ValueError is raised if an integer is larger than the limit, mention the sys.set_int_max_str_digits() function in the error message. - Update bundled libexpat to 2.4.9 libpython3_9-1_0-3.9.15-150300.4.21.1.x86_64.rpm libpython3_9-1_0-32bit-3.9.15-150300.4.21.1.x86_64.rpm python39-3.9.15-150300.4.21.1.src.rpm python39-3.9.15-150300.4.21.1.x86_64.rpm python39-32bit-3.9.15-150300.4.21.1.x86_64.rpm python39-base-3.9.15-150300.4.21.1.x86_64.rpm python39-base-32bit-3.9.15-150300.4.21.1.x86_64.rpm python39-core-3.9.15-150300.4.21.1.src.rpm python39-curses-3.9.15-150300.4.21.1.x86_64.rpm python39-dbm-3.9.15-150300.4.21.1.x86_64.rpm python39-devel-3.9.15-150300.4.21.1.x86_64.rpm python39-doc-3.9.15-150300.4.21.1.x86_64.rpm python39-doc-devhelp-3.9.15-150300.4.21.1.x86_64.rpm python39-documentation-3.9.15-150300.4.21.1.src.rpm python39-idle-3.9.15-150300.4.21.1.x86_64.rpm python39-testsuite-3.9.15-150300.4.21.1.x86_64.rpm python39-tk-3.9.15-150300.4.21.1.x86_64.rpm python39-tools-3.9.15-150300.4.21.1.x86_64.rpm libpython3_9-1_0-3.9.15-150300.4.21.1.s390x.rpm python39-3.9.15-150300.4.21.1.s390x.rpm python39-base-3.9.15-150300.4.21.1.s390x.rpm python39-curses-3.9.15-150300.4.21.1.s390x.rpm python39-dbm-3.9.15-150300.4.21.1.s390x.rpm python39-devel-3.9.15-150300.4.21.1.s390x.rpm python39-doc-3.9.15-150300.4.21.1.s390x.rpm python39-doc-devhelp-3.9.15-150300.4.21.1.s390x.rpm python39-idle-3.9.15-150300.4.21.1.s390x.rpm python39-testsuite-3.9.15-150300.4.21.1.s390x.rpm python39-tk-3.9.15-150300.4.21.1.s390x.rpm python39-tools-3.9.15-150300.4.21.1.s390x.rpm libpython3_9-1_0-3.9.15-150300.4.21.1.ppc64le.rpm python39-3.9.15-150300.4.21.1.ppc64le.rpm python39-base-3.9.15-150300.4.21.1.ppc64le.rpm python39-curses-3.9.15-150300.4.21.1.ppc64le.rpm python39-dbm-3.9.15-150300.4.21.1.ppc64le.rpm python39-devel-3.9.15-150300.4.21.1.ppc64le.rpm python39-doc-3.9.15-150300.4.21.1.ppc64le.rpm python39-doc-devhelp-3.9.15-150300.4.21.1.ppc64le.rpm python39-idle-3.9.15-150300.4.21.1.ppc64le.rpm python39-testsuite-3.9.15-150300.4.21.1.ppc64le.rpm python39-tk-3.9.15-150300.4.21.1.ppc64le.rpm python39-tools-3.9.15-150300.4.21.1.ppc64le.rpm libpython3_9-1_0-3.9.15-150300.4.21.1.aarch64.rpm python39-3.9.15-150300.4.21.1.aarch64.rpm python39-base-3.9.15-150300.4.21.1.aarch64.rpm python39-curses-3.9.15-150300.4.21.1.aarch64.rpm python39-dbm-3.9.15-150300.4.21.1.aarch64.rpm python39-devel-3.9.15-150300.4.21.1.aarch64.rpm python39-doc-3.9.15-150300.4.21.1.aarch64.rpm python39-doc-devhelp-3.9.15-150300.4.21.1.aarch64.rpm python39-idle-3.9.15-150300.4.21.1.aarch64.rpm python39-testsuite-3.9.15-150300.4.21.1.aarch64.rpm python39-tk-3.9.15-150300.4.21.1.aarch64.rpm python39-tools-3.9.15-150300.4.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-4131 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust, rust1.65 fixes the following issues: This update provides rust1.65 (jsc#SLE-18626) Version 1.65.0 (2022-11-03) ========================== Language -------- - Error on `as` casts of enums with `#[non_exhaustive]` variants - Stabilize `let else` - Stabilize generic associated types (GATs) - Add lints `let_underscore_drop`, `let_underscore_lock`, and `let_underscore_must_use` from Clippy - Stabilize `break`ing from arbitrary labeled blocks ("label-break-value") - Uninitialized integers, floats, and raw pointers are now considered immediate UB sage of `MaybeUninit` is the correct way to work with uninitialized memory. - Stabilize raw-dylib for Windows x86_64, aarch64, and thumbv7a - Do not allow `Drop` impl on foreign ADTs Compiler -------- - Stabilize -Csplit-debuginfo on Linux - Use niche-filling optimization even when multiple variants have data - Associated type projections are now verified to be well-formed prior to resolving the underlying type - Stringify non-shorthand visibility correctly - Normalize struct field types when unsizing - Update to LLVM 15 - Fix aarch64 call abi to correctly zeroext when needed - debuginfo: Generalize C++-like encoding for enums - Add `special_module_name` lint - Add support for generating unique profraw files by default when using `-C instrument-coverage` - Allow dynamic linking for iOS/tvOS targets Libraries --------- - Don't generate `PartialEq::ne` in derive(PartialEq) - Windows RNG: Use `BCRYPT_RNG_ALG_HANDLE` by default - Forbid mixing `System` with direct system allocator calls - Document no support for writing to non-blocking stdio/stderr - `std::layout::Layout` size must not overflow `isize::MAX` when rounded up to `align` This also changes the safety conditions on `Layout::from_size_align_unchecked`. Stabilized APIs --------------- - `std::backtrace::Backtrace` - `Bound::as_ref` - `std::io::read_to_string` - `<*const T>::cast_mut` - `<*mut T>::cast_const` Thse APIs are now stable in const contexts: - `<*const T>::offset_from` - `<*mut T>::offset_from` Cargo ----- - Apply GitHub fast path even for partial hashes - Do not add home bin path to PATH if it's already there - Take priority into account within the pending queue This slightly optimizes job scheduling by Cargo, with typically small improvements on larger crate graph builds. Compatibility Notes ------------------- - `std::layout::Layout` size must not overflow `isize::MAX` when rounded up to `align` This also changes the safety conditions on `Layout::from_size_align_unchecked`. - `PollFn` now only implements `Unpin` if the closure is `Unpin` This is a possible breaking change if users were relying on the blanket unpin implementation. See discussion on the PR for details of why this change was made. - Drop ExactSizeIterator impl from std::char::EscapeAscii This is a backwards-incompatible change to the standard library's surface area, but is unlikely to affect real world usage. - Do not consider a single repeated lifetime eligible for elision in the return type This behavior was unintentionally changed in 1.64.0, and this release reverts that change by making this an error again. - Reenable disabled early syntax gates as future-incompatibility lints - Update the minimum external LLVM to 13 - Don't duplicate file descriptors into stdio fds - Sunset RLS - Deny usage of `#![cfg_attr(..., crate_type = ...)]` to set the crate type This strengthens the forward compatibility lint deprecated_cfg_attr_crate_type_name to deny. - `llvm-has-rust-patches` allows setting the build system to treat the LLVM as having Rust-specific patches This option may need to be set for distributions that are building Rust with a patched LLVM via `llvm-config`, not the built-in LLVM. Changes in rust: - Update to version 1.65.0 - for details see the rust1.65 package - Enable armv6 again - bsc#1196328 This update also ships "cargo-auditable", a tool to embed crate information into ELF binaries. cargo-1.65.0-150300.21.38.1.x86_64.rpm cargo-auditable-0.5.2~0-150300.7.3.1.src.rpm cargo-auditable-0.5.2~0-150300.7.3.1.x86_64.rpm cargo1.65-1.65.0-150300.7.3.1.x86_64.rpm rust-1.65.0-150300.21.38.1.src.rpm rust-1.65.0-150300.21.38.1.x86_64.rpm rust1.65-1.65.0-150300.7.3.1.src.rpm rust1.65-1.65.0-150300.7.3.1.x86_64.rpm cargo-1.65.0-150300.21.38.1.s390x.rpm cargo-auditable-0.5.2~0-150300.7.3.1.s390x.rpm cargo1.65-1.65.0-150300.7.3.1.s390x.rpm rust-1.65.0-150300.21.38.1.s390x.rpm rust1.65-1.65.0-150300.7.3.1.s390x.rpm cargo-1.65.0-150300.21.38.1.ppc64le.rpm cargo-auditable-0.5.2~0-150300.7.3.1.ppc64le.rpm cargo1.65-1.65.0-150300.7.3.1.ppc64le.rpm rust-1.65.0-150300.21.38.1.ppc64le.rpm rust1.65-1.65.0-150300.7.3.1.ppc64le.rpm cargo-1.65.0-150300.21.38.1.aarch64.rpm cargo-auditable-0.5.2~0-150300.7.3.1.aarch64.rpm cargo1.65-1.65.0-150300.7.3.1.aarch64.rpm rust-1.65.0-150300.21.38.1.aarch64.rpm rust1.65-1.65.0-150300.7.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-4148 important SUSE Updates openSUSE-SLE 15.3 This update for pixman fixes the following issues: - CVE-2022-44638: Fixed an integer overflow in pixman_sample_floor_y leading to heap out-of-bounds write (bsc#1205033). libpixman-1-0-0.34.0-150000.7.5.1.x86_64.rpm libpixman-1-0-32bit-0.34.0-150000.7.5.1.x86_64.rpm libpixman-1-0-devel-0.34.0-150000.7.5.1.x86_64.rpm pixman-0.34.0-150000.7.5.1.src.rpm libpixman-1-0-0.34.0-150000.7.5.1.s390x.rpm libpixman-1-0-devel-0.34.0-150000.7.5.1.s390x.rpm libpixman-1-0-0.34.0-150000.7.5.1.ppc64le.rpm libpixman-1-0-devel-0.34.0-150000.7.5.1.ppc64le.rpm libpixman-1-0-0.34.0-150000.7.5.1.aarch64.rpm libpixman-1-0-devel-0.34.0-150000.7.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-4250 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openj9 fixes the following issues: - Update to OpenJDK 8u352 build 08 with OpenJ9 0.35.0 virtual machine, including Oracle October 2022 CPU changes. - CVE-2022-21619: An unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE (bsc#1204473). - CVE-2022-21626: An unauthenticated attacker with network access via HTTPS can compromise Oracle Java SE, Oracle GraalVM Enterprise Edition (bsc#1204471). - CVE-2022-21624: An unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise (bsc#1204475). - CVE-2022-21628: An unauthenticated attacker with network access via HTTP can compromise Oracle Java SE, Oracle GraalVM Enterprise Edition (bsc#1204472). - CVE-2022-3676: Fixed interface than calls can be inlined without a runtime type check (bsc#1204703). java-1_8_0-openj9-1.8.0.352-150200.3.27.1.src.rpm java-1_8_0-openj9-1.8.0.352-150200.3.27.1.x86_64.rpm java-1_8_0-openj9-accessibility-1.8.0.352-150200.3.27.1.x86_64.rpm java-1_8_0-openj9-demo-1.8.0.352-150200.3.27.1.x86_64.rpm java-1_8_0-openj9-devel-1.8.0.352-150200.3.27.1.x86_64.rpm java-1_8_0-openj9-headless-1.8.0.352-150200.3.27.1.x86_64.rpm java-1_8_0-openj9-javadoc-1.8.0.352-150200.3.27.1.noarch.rpm java-1_8_0-openj9-src-1.8.0.352-150200.3.27.1.x86_64.rpm java-1_8_0-openj9-1.8.0.352-150200.3.27.1.s390x.rpm java-1_8_0-openj9-accessibility-1.8.0.352-150200.3.27.1.s390x.rpm java-1_8_0-openj9-demo-1.8.0.352-150200.3.27.1.s390x.rpm java-1_8_0-openj9-devel-1.8.0.352-150200.3.27.1.s390x.rpm java-1_8_0-openj9-headless-1.8.0.352-150200.3.27.1.s390x.rpm java-1_8_0-openj9-src-1.8.0.352-150200.3.27.1.s390x.rpm java-1_8_0-openj9-1.8.0.352-150200.3.27.1.ppc64le.rpm java-1_8_0-openj9-accessibility-1.8.0.352-150200.3.27.1.ppc64le.rpm java-1_8_0-openj9-demo-1.8.0.352-150200.3.27.1.ppc64le.rpm java-1_8_0-openj9-devel-1.8.0.352-150200.3.27.1.ppc64le.rpm java-1_8_0-openj9-headless-1.8.0.352-150200.3.27.1.ppc64le.rpm java-1_8_0-openj9-src-1.8.0.352-150200.3.27.1.ppc64le.rpm openSUSE-SLE-15.3-2022-4058 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 102.5.0 ESR (MFSA 2022-48, bsc#1205270): - CVE-2022-45403: Service Workers might have learned size of cross-origin media files - CVE-2022-45404: Fullscreen notification bypass - CVE-2022-45405: Use-after-free in InputStream implementation - CVE-2022-45406: Use-after-free of a JavaScript Realm - CVE-2022-45408: Fullscreen notification bypass via windowName - CVE-2022-45409: Use-after-free in Garbage Collection - CVE-2022-45410: ServiceWorker-intercepted requests bypassed SameSite cookie policy - CVE-2022-45411: Cross-Site Tracing was possible via non-standard override headers - CVE-2022-45412: Symlinks may resolve to partially uninitialized buffers - CVE-2022-45416: Keystroke Side-Channel Leakage - CVE-2022-45418: Custom mouse cursor could have been drawn over browser UI - CVE-2022-45420: Iframe contents could be rendered outside the iframe - CVE-2022-45421: Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5 MozillaFirefox-102.5.0-150200.152.67.3.src.rpm MozillaFirefox-102.5.0-150200.152.67.3.x86_64.rpm MozillaFirefox-branding-upstream-102.5.0-150200.152.67.3.x86_64.rpm MozillaFirefox-devel-102.5.0-150200.152.67.3.x86_64.rpm MozillaFirefox-translations-common-102.5.0-150200.152.67.3.x86_64.rpm MozillaFirefox-translations-other-102.5.0-150200.152.67.3.x86_64.rpm MozillaFirefox-102.5.0-150200.152.67.3.s390x.rpm MozillaFirefox-branding-upstream-102.5.0-150200.152.67.3.s390x.rpm MozillaFirefox-devel-102.5.0-150200.152.67.3.s390x.rpm MozillaFirefox-translations-common-102.5.0-150200.152.67.3.s390x.rpm MozillaFirefox-translations-other-102.5.0-150200.152.67.3.s390x.rpm MozillaFirefox-102.5.0-150200.152.67.3.ppc64le.rpm MozillaFirefox-branding-upstream-102.5.0-150200.152.67.3.ppc64le.rpm MozillaFirefox-devel-102.5.0-150200.152.67.3.ppc64le.rpm MozillaFirefox-translations-common-102.5.0-150200.152.67.3.ppc64le.rpm MozillaFirefox-translations-other-102.5.0-150200.152.67.3.ppc64le.rpm MozillaFirefox-102.5.0-150200.152.67.3.aarch64.rpm MozillaFirefox-branding-upstream-102.5.0-150200.152.67.3.aarch64.rpm MozillaFirefox-devel-102.5.0-150200.152.67.3.aarch64.rpm MozillaFirefox-translations-common-102.5.0-150200.152.67.3.aarch64.rpm MozillaFirefox-translations-other-102.5.0-150200.152.67.3.aarch64.rpm openSUSE-SLE-15.3-2022-4306 moderate SUSE Updates openSUSE-SLE 15.3 This update for bcel fixes the following issues: - CVE-2022-42920: Fixed producing arbitrary bytecode via out-of-bounds writing (bsc#1205125). bcel-5.2-150200.11.3.1.noarch.rpm bcel-5.2-150200.11.3.1.src.rpm openSUSE-SLE-15.3-2022-4219 important SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: - CVE-2022-2601: Fixed buffer overflow in grub_font_construct_glyph (bsc#1205178). - CVE-2022-3775: Fixed integer underflow in blit_comb() (bsc#1205182). Other: - Bump upstream SBAT generation to 3 grub2-2.04-150300.22.25.1.src.rpm grub2-2.04-150300.22.25.1.x86_64.rpm grub2-arm64-efi-2.04-150300.22.25.1.noarch.rpm grub2-arm64-efi-debug-2.04-150300.22.25.1.noarch.rpm grub2-branding-upstream-2.04-150300.22.25.1.x86_64.rpm grub2-i386-pc-2.04-150300.22.25.1.noarch.rpm grub2-i386-pc-debug-2.04-150300.22.25.1.noarch.rpm grub2-powerpc-ieee1275-2.04-150300.22.25.1.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-150300.22.25.1.noarch.rpm grub2-snapper-plugin-2.04-150300.22.25.1.noarch.rpm grub2-systemd-sleep-plugin-2.04-150300.22.25.1.noarch.rpm grub2-x86_64-efi-2.04-150300.22.25.1.noarch.rpm grub2-x86_64-efi-debug-2.04-150300.22.25.1.noarch.rpm grub2-x86_64-xen-2.04-150300.22.25.1.noarch.rpm grub2-2.04-150300.22.25.1.s390x.rpm grub2-branding-upstream-2.04-150300.22.25.1.s390x.rpm grub2-s390x-emu-2.04-150300.22.25.1.s390x.rpm grub2-s390x-emu-debug-2.04-150300.22.25.1.s390x.rpm grub2-2.04-150300.22.25.1.ppc64le.rpm grub2-branding-upstream-2.04-150300.22.25.1.ppc64le.rpm grub2-2.04-150300.22.25.1.aarch64.rpm grub2-branding-upstream-2.04-150300.22.25.1.aarch64.rpm openSUSE-SLE-15.3-2022-4278 moderate SUSE Updates openSUSE-SLE 15.3 This update for supportutils fixes the following issues: Security issues fixed: - Passwords correctly removed from email.txt, updates.txt and fs-iscsi.txt (bsc#1203818) Bug fixes: - Added lifecycle information - Fixed KVM virtualization detection on bare metal (bsc#1184689) - Added logging using journalctl (bsc#1200330) - Get current sar data before collecting files (bsc#1192648) - Collects everything in /etc/multipath/ (bsc#1192252) - Collects power management information in hardware.txt (bsc#1197428) - Checks for suseconnect-ng or SUSEConnect packages (bsc#1202337) - Fixed conf_files and conf_text_files so y2log is gathered (bsc#1202269) - Update to nvme_info and block_info (bsc#1202417) - Added includedir directories from /etc/sudoers (bsc#1188086) supportutils-3.1.21-150300.7.35.15.1.noarch.rpm supportutils-3.1.21-150300.7.35.15.1.src.rpm openSUSE-SLE-15.3-2022-4276 important SUSE Updates openSUSE-SLE 15.3 This update for exiv2 fixes the following issues: - CVE-2019-13110: Fixed an integer-overflow and out-of-bounds read in CiffDirectory:readDirectory leads to denail of service (bsc#1142678). - CVE-2019-13109: Fixed a denial of service in PngImage:readMetadata (bsc#1142677). - CVE-2018-17581: Fixed an excessive stack consumption CiffDirectory:readDirectory() at crwimage_int.cpp (bsc#1110282). - CVE-2017-11591: Fixed a floating point exception in Exiv2::ValueType (bsc#1050257). - CVE-2019-17402: Fixed an improper validation of the total size to the offset and size leads to a crash in Exiv2::getULong in types.cpp (bsc#1153577). - CVE-2021-32815: Fixed a deny-of-service due to assertion failure in crwimage_int.cpp (bsc#1189337). - CVE-2018-20097: Fixed SEGV in Exiv2::Internal::TiffParserWorker::findPrimaryGroupsu (bsc#1119562). - CVE-2021-29473: Fixed out-of-bounds read in Exiv2::Jp2Image:doWriteMetadata (bsc#1186231). - CVE-2018-20098: Fixed a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header (bsc#1119560). - CVE-2018-11531: Fixed a heap-based buffer overflow in getData in preview.cpp (bsc#1095070). - CVE-2018-20099: exiv2: infinite loop in Exiv2::Jp2Image::encodeJp2Header (bsc#1119559). exiv2-0.26-150000.6.26.1.src.rpm exiv2-0.26-150000.6.26.1.x86_64.rpm exiv2-lang-0.26-150000.6.26.1.noarch.rpm libexiv2-26-0.26-150000.6.26.1.x86_64.rpm libexiv2-26-32bit-0.26-150000.6.26.1.x86_64.rpm libexiv2-devel-0.26-150000.6.26.1.x86_64.rpm libexiv2-doc-0.26-150000.6.26.1.x86_64.rpm exiv2-0.26-150000.6.26.1.s390x.rpm libexiv2-26-0.26-150000.6.26.1.s390x.rpm libexiv2-devel-0.26-150000.6.26.1.s390x.rpm libexiv2-doc-0.26-150000.6.26.1.s390x.rpm exiv2-0.26-150000.6.26.1.ppc64le.rpm libexiv2-26-0.26-150000.6.26.1.ppc64le.rpm libexiv2-devel-0.26-150000.6.26.1.ppc64le.rpm libexiv2-doc-0.26-150000.6.26.1.ppc64le.rpm exiv2-0.26-150000.6.26.1.aarch64.rpm libexiv2-26-0.26-150000.6.26.1.aarch64.rpm libexiv2-devel-0.26-150000.6.26.1.aarch64.rpm libexiv2-doc-0.26-150000.6.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-4138 important SUSE Updates openSUSE-SLE 15.3 This update for python-msgpack fixes the following issues: - Fix build failures on SUSE Linux Enterprise 15 Service Pack 5 (bsc#1203743) python-msgpack-0.5.6-150100.3.3.1.src.rpm python2-msgpack-0.5.6-150100.3.3.1.x86_64.rpm python3-msgpack-0.5.6-150100.3.3.1.x86_64.rpm python2-msgpack-0.5.6-150100.3.3.1.s390x.rpm python3-msgpack-0.5.6-150100.3.3.1.s390x.rpm python2-msgpack-0.5.6-150100.3.3.1.ppc64le.rpm python3-msgpack-0.5.6-150100.3.3.1.ppc64le.rpm python2-msgpack-0.5.6-150100.3.3.1.aarch64.rpm python3-msgpack-0.5.6-150100.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-4263 important SUSE Updates openSUSE-SLE 15.3 This update for python-pyperclip fixes the following issues: - Fix build failures on SUSE Linux Enterprise 15 Service Pack 5 (bsc#1203743) python-pyperclip-1.6.0-150000.3.3.1.src.rpm python2-pyperclip-1.6.0-150000.3.3.1.noarch.rpm python3-pyperclip-1.6.0-150000.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-4466 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-kiwi fixes the following issues: Version update from 9.24.36 to 9.24.43: - Add example aarch64 integration test for Ubuntu - Add option '--target-arch' for image info to allow cross architecture dependency solving - Add support for group id in users setting - Fix error handling for setfiles policy lookup and ensure the path to run scandir is properly created - Fix handling of signing_keys in cmdline options - Fix helper method to detect dracut outfile format - Fix 'kexec' options setup in kiwi-dump-reboot - Fix issues with the setfiles SELinux relabel command - Prefer file based syscall in kexec when possible, needed to support boot on a secure boot enabled system (bsc#1203896) - Setup SELinux on every system prepare / build dracut-kiwi-lib-9.24.43-150100.3.56.3.x86_64.rpm dracut-kiwi-live-9.24.43-150100.3.56.3.x86_64.rpm dracut-kiwi-oem-dump-9.24.43-150100.3.56.3.x86_64.rpm dracut-kiwi-oem-repart-9.24.43-150100.3.56.3.x86_64.rpm dracut-kiwi-overlay-9.24.43-150100.3.56.3.x86_64.rpm kiwi-man-pages-9.24.43-150100.3.56.3.x86_64.rpm kiwi-pxeboot-9.24.43-150100.3.56.3.x86_64.rpm kiwi-systemdeps-9.24.43-150100.3.56.3.x86_64.rpm kiwi-systemdeps-bootloaders-9.24.43-150100.3.56.3.x86_64.rpm kiwi-systemdeps-containers-9.24.43-150100.3.56.3.x86_64.rpm kiwi-systemdeps-core-9.24.43-150100.3.56.3.x86_64.rpm kiwi-systemdeps-disk-images-9.24.43-150100.3.56.3.x86_64.rpm kiwi-systemdeps-filesystems-9.24.43-150100.3.56.3.x86_64.rpm kiwi-systemdeps-image-validation-9.24.43-150100.3.56.3.x86_64.rpm kiwi-systemdeps-iso-media-9.24.43-150100.3.56.3.x86_64.rpm kiwi-tools-9.24.43-150100.3.56.3.x86_64.rpm python-kiwi-9.24.43-150100.3.56.3.src.rpm python3-kiwi-9.24.43-150100.3.56.3.x86_64.rpm dracut-kiwi-lib-9.24.43-150100.3.56.3.s390x.rpm dracut-kiwi-live-9.24.43-150100.3.56.3.s390x.rpm dracut-kiwi-oem-dump-9.24.43-150100.3.56.3.s390x.rpm dracut-kiwi-oem-repart-9.24.43-150100.3.56.3.s390x.rpm dracut-kiwi-overlay-9.24.43-150100.3.56.3.s390x.rpm kiwi-man-pages-9.24.43-150100.3.56.3.s390x.rpm kiwi-systemdeps-9.24.43-150100.3.56.3.s390x.rpm kiwi-systemdeps-bootloaders-9.24.43-150100.3.56.3.s390x.rpm kiwi-systemdeps-containers-9.24.43-150100.3.56.3.s390x.rpm kiwi-systemdeps-core-9.24.43-150100.3.56.3.s390x.rpm kiwi-systemdeps-disk-images-9.24.43-150100.3.56.3.s390x.rpm kiwi-systemdeps-filesystems-9.24.43-150100.3.56.3.s390x.rpm kiwi-systemdeps-image-validation-9.24.43-150100.3.56.3.s390x.rpm kiwi-systemdeps-iso-media-9.24.43-150100.3.56.3.s390x.rpm kiwi-tools-9.24.43-150100.3.56.3.s390x.rpm python3-kiwi-9.24.43-150100.3.56.3.s390x.rpm dracut-kiwi-lib-9.24.43-150100.3.56.3.ppc64le.rpm dracut-kiwi-live-9.24.43-150100.3.56.3.ppc64le.rpm dracut-kiwi-oem-dump-9.24.43-150100.3.56.3.ppc64le.rpm dracut-kiwi-oem-repart-9.24.43-150100.3.56.3.ppc64le.rpm dracut-kiwi-overlay-9.24.43-150100.3.56.3.ppc64le.rpm kiwi-man-pages-9.24.43-150100.3.56.3.ppc64le.rpm kiwi-systemdeps-9.24.43-150100.3.56.3.ppc64le.rpm kiwi-systemdeps-bootloaders-9.24.43-150100.3.56.3.ppc64le.rpm kiwi-systemdeps-containers-9.24.43-150100.3.56.3.ppc64le.rpm kiwi-systemdeps-core-9.24.43-150100.3.56.3.ppc64le.rpm kiwi-systemdeps-disk-images-9.24.43-150100.3.56.3.ppc64le.rpm kiwi-systemdeps-filesystems-9.24.43-150100.3.56.3.ppc64le.rpm kiwi-systemdeps-image-validation-9.24.43-150100.3.56.3.ppc64le.rpm kiwi-systemdeps-iso-media-9.24.43-150100.3.56.3.ppc64le.rpm kiwi-tools-9.24.43-150100.3.56.3.ppc64le.rpm python3-kiwi-9.24.43-150100.3.56.3.ppc64le.rpm dracut-kiwi-lib-9.24.43-150100.3.56.3.aarch64.rpm dracut-kiwi-live-9.24.43-150100.3.56.3.aarch64.rpm dracut-kiwi-oem-dump-9.24.43-150100.3.56.3.aarch64.rpm dracut-kiwi-oem-repart-9.24.43-150100.3.56.3.aarch64.rpm dracut-kiwi-overlay-9.24.43-150100.3.56.3.aarch64.rpm kiwi-man-pages-9.24.43-150100.3.56.3.aarch64.rpm kiwi-systemdeps-9.24.43-150100.3.56.3.aarch64.rpm kiwi-systemdeps-bootloaders-9.24.43-150100.3.56.3.aarch64.rpm kiwi-systemdeps-containers-9.24.43-150100.3.56.3.aarch64.rpm kiwi-systemdeps-core-9.24.43-150100.3.56.3.aarch64.rpm kiwi-systemdeps-disk-images-9.24.43-150100.3.56.3.aarch64.rpm kiwi-systemdeps-filesystems-9.24.43-150100.3.56.3.aarch64.rpm kiwi-systemdeps-image-validation-9.24.43-150100.3.56.3.aarch64.rpm kiwi-systemdeps-iso-media-9.24.43-150100.3.56.3.aarch64.rpm kiwi-tools-9.24.43-150100.3.56.3.aarch64.rpm python3-kiwi-9.24.43-150100.3.56.3.aarch64.rpm openSUSE-SLE-15.3-2022-4498 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-cluster fixes the following issues: - Set crypto_hash as "sha1" and set crypto_cipher as "aes256" (bsc#1204530) - Set transport as "udpu" when detect in cloud - Set default values for mcastaddr/mcastport/bindnedaddr when cluster firstly configured - Set focus on "Generate Auth Key File" when secauth is true - Implement ValidateSecurity method - Set focus on 'memberaddr add' when using udpu yast2-cluster-4.3.7-150300.3.3.1.noarch.rpm yast2-cluster-4.3.7-150300.3.3.1.src.rpm openSUSE-SLE-15.3-2022-4214 low SUSE Updates openSUSE-SLE 15.3 This update for libdb-4_8 fixes the following issues: - CVE-2019-2708: Fixed partial DoS due to data store execution (bsc#1174414). db48-doc-4.8.30-150000.7.6.1.noarch.rpm db48-utils-4.8.30-150000.7.6.1.x86_64.rpm libdb-4_8-32bit-4.8.30-150000.7.6.1.x86_64.rpm libdb-4_8-4.8.30-150000.7.6.1.src.rpm libdb-4_8-4.8.30-150000.7.6.1.x86_64.rpm libdb-4_8-devel-32bit-4.8.30-150000.7.6.1.x86_64.rpm libdb-4_8-devel-4.8.30-150000.7.6.1.x86_64.rpm libdb_java-4_8-4.8.30-150000.7.6.1.src.rpm libdb_java-4_8-4.8.30-150000.7.6.1.x86_64.rpm libdb_java-4_8-devel-4.8.30-150000.7.6.1.x86_64.rpm db48-utils-4.8.30-150000.7.6.1.s390x.rpm libdb-4_8-4.8.30-150000.7.6.1.s390x.rpm libdb-4_8-devel-4.8.30-150000.7.6.1.s390x.rpm libdb_java-4_8-4.8.30-150000.7.6.1.s390x.rpm libdb_java-4_8-devel-4.8.30-150000.7.6.1.s390x.rpm db48-utils-4.8.30-150000.7.6.1.ppc64le.rpm libdb-4_8-4.8.30-150000.7.6.1.ppc64le.rpm libdb-4_8-devel-4.8.30-150000.7.6.1.ppc64le.rpm libdb_java-4_8-4.8.30-150000.7.6.1.ppc64le.rpm libdb_java-4_8-devel-4.8.30-150000.7.6.1.ppc64le.rpm db48-utils-4.8.30-150000.7.6.1.aarch64.rpm libdb-4_8-4.8.30-150000.7.6.1.aarch64.rpm libdb-4_8-devel-4.8.30-150000.7.6.1.aarch64.rpm libdb_java-4_8-4.8.30-150000.7.6.1.aarch64.rpm libdb_java-4_8-devel-4.8.30-150000.7.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4166 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-ibm fixes the following issues: - CVE-2022-21626: An unauthenticated attacker with network access via HTTPS can compromise Oracle Java SE, Oracle GraalVM Enterprise Edition (bsc#1204471). - CVE-2022-21618: An unauthenticated attacker with network access via Kerberos can compromise Oracle Java SE, Oracle GraalVM Enterprise Edition (bsc#1204468). - CVE-2022-21619: An unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE (bsc#1204473). - CVE-2022-21628: An unauthenticated attacker with network access via HTTP can compromise Oracle Java SE, Oracle GraalVM Enterprise Edition (bsc#1204472). - CVE-2022-21624: An unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise (bsc#1204475). - CVE-2022-39399: An unauthenticated attacker with network access via HTTP can compromise Oracle Java SE, Oracle GraalVM Enterprise Edition (bsc#1204480). - CVE-2022-21549: Fixed exponentials issue (bsc#1201685). - CVE-2022-21541: Fixed an improper restriction of MethodHandle.invokeBasic() (bsc#1201692). - CVE-2022-34169; Fixed an integer truncation issue in Xalan (bsc#1201684). - CVE-2022-21540: Fixed a class compilation issue (bsc#1201694). - Update to Java 8.0 Service Refresh 7 Fix Pack 20. * Security: - The IBM ORB Does Not Support Object-Serialisation Data Filtering - Large Allocation In CipherSuite - Avoid Evaluating Sslalgorithmconstraints Twice - Cache The Results Of Constraint Checks - An incorrect ShortBufferException is thrown by IBMJCEPlus, IBMJCEPlusFIPS during cipher update operation - Disable SHA-1 Signed Jars For Ea - JSSE Performance Improvement - Oracle Road Map Kerberos Deprecation Of 3DES And RC4 Encryption * Java 8/Orb: - Upgrade ibmcfw.jar To Version o2228.02 * Class Libraries: - Crash In Libjsor.So During An Rdma Failover - High CPU Consumption Observed In ZosEventPort$EventHandlerTask.run - Update Timezone Information To The Latest tzdata2022c * Jit Compiler: - Crash During JIT Compilation - Incorrect JIT Optimization Of Java Code - Incorrect Return From Class.isArray() - Unexpected ClassCastException - Performance Regression When Calling VM Helper Code On X86 * X/Os Extentions: - Add RSA-OAEP Cipher Function To IBMJCECCA - Update to Java 8.0 Service Refresh 7 Fix Pack 16 * Java Virtual Machine - Assertion failure at ClassLoaderRememberedSet.cpp - Assertion failure at StandardAccessBarrier.cpp when -Xgc:concurrentScavenge is set. - GC can have unflushed ownable synchronizer objects which can eventually lead to heap corruption and failure when -Xgc:concurrentScavenge is set. * JIT Compiler: - Incorrect JIT optimization of Java code - JAVA JIT Power: JIT compile time assert on AIX or LINUXPPC * Reliability and Serviceability: - javacore with "kill -3" SIGQUIT signal freezes Java process java-1_8_0-ibm-1.8.0_sr7.20-150000.3.65.1.nosrc.rpm java-1_8_0-ibm-1.8.0_sr7.20-150000.3.65.1.x86_64.rpm java-1_8_0-ibm-32bit-1.8.0_sr7.20-150000.3.65.1.x86_64.rpm java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.65.1.x86_64.rpm java-1_8_0-ibm-demo-1.8.0_sr7.20-150000.3.65.1.x86_64.rpm java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.65.1.x86_64.rpm java-1_8_0-ibm-devel-32bit-1.8.0_sr7.20-150000.3.65.1.x86_64.rpm java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.65.1.x86_64.rpm java-1_8_0-ibm-src-1.8.0_sr7.20-150000.3.65.1.x86_64.rpm java-1_8_0-ibm-1.8.0_sr7.20-150000.3.65.1.s390x.rpm java-1_8_0-ibm-demo-1.8.0_sr7.20-150000.3.65.1.s390x.rpm java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.65.1.s390x.rpm java-1_8_0-ibm-src-1.8.0_sr7.20-150000.3.65.1.s390x.rpm java-1_8_0-ibm-1.8.0_sr7.20-150000.3.65.1.ppc64le.rpm java-1_8_0-ibm-demo-1.8.0_sr7.20-150000.3.65.1.ppc64le.rpm java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.65.1.ppc64le.rpm java-1_8_0-ibm-src-1.8.0_sr7.20-150000.3.65.1.ppc64le.rpm openSUSE-SLE-15.3-2022-4259 important SUSE Updates openSUSE-SLE 15.3 This update for tiff fixes the following issues: - CVE-2022-3597: Fixed out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c (bnc#1204641). - CVE-2022-3599: Fixed out-of-bounds read in writeSingleSection in tools/tiffcrop.c (bnc#1204643). - CVE-2022-3626: Fixed out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c (bnc#1204644) - CVE-2022-3627: Fixed out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c (bnc#1204645). - CVE-2022-3970: Fixed unsigned integer overflow in TIFFReadRGBATileExt() (bnc#1205392). libtiff-devel-32bit-4.0.9-150000.45.19.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.19.1.x86_64.rpm libtiff5-32bit-4.0.9-150000.45.19.1.x86_64.rpm libtiff5-4.0.9-150000.45.19.1.x86_64.rpm tiff-4.0.9-150000.45.19.1.src.rpm tiff-4.0.9-150000.45.19.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.19.1.s390x.rpm libtiff5-4.0.9-150000.45.19.1.s390x.rpm tiff-4.0.9-150000.45.19.1.s390x.rpm libtiff-devel-4.0.9-150000.45.19.1.ppc64le.rpm libtiff5-4.0.9-150000.45.19.1.ppc64le.rpm tiff-4.0.9-150000.45.19.1.ppc64le.rpm libtiff-devel-4.0.9-150000.45.19.1.aarch64.rpm libtiff5-4.0.9-150000.45.19.1.aarch64.rpm tiff-4.0.9-150000.45.19.1.aarch64.rpm openSUSE-SLE-15.3-2022-4632 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issues: - Added data for 4_12_14-150000_150_101, 4_12_14-150000_150_104, 4_12_14-150100_197_123, 4_12_14-150100_197_126, 5_14_21-150400_24_21, 5_14_21-150400_24_28, 5_3_18-150200_24_129, 5_3_18-150200_24_134, 5_3_18-150300_59_93, 5_3_18-150300_59_98. (bsc#1020320) lifecycle-data-sle-module-live-patching-15-150000.4.84.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-150000.4.84.1.src.rpm openSUSE-SLE-15.3-2022-4076 moderate SUSE Updates openSUSE-SLE 15.3 This update for jsoup fixes the following issues: - Fix typo in the ant *-build.xml file that caused errors while building eclipse. jsoup-1.15.3-150200.3.9.1.noarch.rpm jsoup-1.15.3-150200.3.9.1.src.rpm jsoup-javadoc-1.15.3-150200.3.9.1.noarch.rpm openSUSE-SLE-15.3-2022-4645 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql14, postgresql15 fixes the following issues: postgresql15 is shipped in version 15.1. * https://www.postgresql.org/about/news/2543/ * https://www.postgresql.org/docs/15/release-15-1.html Update to 15.0: * https://www.postgresql.org/about/news/p-2526/ * https://www.postgresql.org/docs/15/release-15.html postgresql14 was updated to 14.6. (bsc#1205300) * https://www.postgresql.org/about/news/2543/ * https://www.postgresql.org/docs/14/release-14-6.html The libpq5 and libecpg6 libraries are now provided by postgresql15. libecpg6-15.1-150200.5.3.2.x86_64.rpm libecpg6-32bit-15.1-150200.5.3.2.x86_64.rpm libpq5-15.1-150200.5.3.2.x86_64.rpm libpq5-32bit-15.1-150200.5.3.2.x86_64.rpm postgresql-15-150300.10.12.2.noarch.rpm postgresql-15-150300.10.12.2.src.rpm postgresql-contrib-15-150300.10.12.2.noarch.rpm postgresql-devel-15-150300.10.12.2.noarch.rpm postgresql-docs-15-150300.10.12.2.noarch.rpm postgresql-llvmjit-15-150300.10.12.2.noarch.rpm postgresql-plperl-15-150300.10.12.2.noarch.rpm postgresql-plpython-15-150300.10.12.2.noarch.rpm postgresql-pltcl-15-150300.10.12.2.noarch.rpm postgresql-server-15-150300.10.12.2.noarch.rpm postgresql-server-devel-15-150300.10.12.2.noarch.rpm postgresql-test-15-150300.10.12.2.noarch.rpm postgresql14-14.6-150200.5.20.2.src.rpm postgresql14-14.6-150200.5.20.2.x86_64.rpm postgresql14-contrib-14.6-150200.5.20.2.x86_64.rpm postgresql14-devel-14.6-150200.5.20.2.x86_64.rpm postgresql14-docs-14.6-150200.5.20.2.noarch.rpm postgresql14-llvmjit-14.6-150200.5.20.2.x86_64.rpm postgresql14-plperl-14.6-150200.5.20.2.x86_64.rpm postgresql14-plpython-14.6-150200.5.20.2.x86_64.rpm postgresql14-pltcl-14.6-150200.5.20.2.x86_64.rpm postgresql14-server-14.6-150200.5.20.2.x86_64.rpm postgresql14-server-devel-14.6-150200.5.20.2.x86_64.rpm postgresql14-test-14.6-150200.5.20.2.x86_64.rpm postgresql15-15.1-150200.5.3.2.src.rpm postgresql15-15.1-150200.5.3.2.x86_64.rpm postgresql15-contrib-15.1-150200.5.3.2.x86_64.rpm postgresql15-devel-15.1-150200.5.3.2.x86_64.rpm postgresql15-docs-15.1-150200.5.3.2.noarch.rpm postgresql15-llvmjit-15.1-150200.5.3.2.x86_64.rpm postgresql15-llvmjit-devel-15.1-150200.5.3.2.x86_64.rpm postgresql15-plperl-15.1-150200.5.3.2.x86_64.rpm postgresql15-plpython-15.1-150200.5.3.2.x86_64.rpm postgresql15-pltcl-15.1-150200.5.3.2.x86_64.rpm postgresql15-server-15.1-150200.5.3.2.x86_64.rpm postgresql15-server-devel-15.1-150200.5.3.2.x86_64.rpm postgresql15-test-15.1-150200.5.3.2.x86_64.rpm libecpg6-15.1-150200.5.3.2.s390x.rpm libpq5-15.1-150200.5.3.2.s390x.rpm postgresql14-14.6-150200.5.20.2.s390x.rpm postgresql14-contrib-14.6-150200.5.20.2.s390x.rpm postgresql14-devel-14.6-150200.5.20.2.s390x.rpm postgresql14-llvmjit-14.6-150200.5.20.2.s390x.rpm postgresql14-plperl-14.6-150200.5.20.2.s390x.rpm postgresql14-plpython-14.6-150200.5.20.2.s390x.rpm postgresql14-pltcl-14.6-150200.5.20.2.s390x.rpm postgresql14-server-14.6-150200.5.20.2.s390x.rpm postgresql14-server-devel-14.6-150200.5.20.2.s390x.rpm postgresql14-test-14.6-150200.5.20.2.s390x.rpm postgresql15-15.1-150200.5.3.2.s390x.rpm postgresql15-contrib-15.1-150200.5.3.2.s390x.rpm postgresql15-devel-15.1-150200.5.3.2.s390x.rpm postgresql15-llvmjit-15.1-150200.5.3.2.s390x.rpm postgresql15-llvmjit-devel-15.1-150200.5.3.2.s390x.rpm postgresql15-plperl-15.1-150200.5.3.2.s390x.rpm postgresql15-plpython-15.1-150200.5.3.2.s390x.rpm postgresql15-pltcl-15.1-150200.5.3.2.s390x.rpm postgresql15-server-15.1-150200.5.3.2.s390x.rpm postgresql15-server-devel-15.1-150200.5.3.2.s390x.rpm postgresql15-test-15.1-150200.5.3.2.s390x.rpm libecpg6-15.1-150200.5.3.2.ppc64le.rpm libpq5-15.1-150200.5.3.2.ppc64le.rpm postgresql14-14.6-150200.5.20.2.ppc64le.rpm postgresql14-contrib-14.6-150200.5.20.2.ppc64le.rpm postgresql14-devel-14.6-150200.5.20.2.ppc64le.rpm postgresql14-llvmjit-14.6-150200.5.20.2.ppc64le.rpm postgresql14-plperl-14.6-150200.5.20.2.ppc64le.rpm postgresql14-plpython-14.6-150200.5.20.2.ppc64le.rpm postgresql14-pltcl-14.6-150200.5.20.2.ppc64le.rpm postgresql14-server-14.6-150200.5.20.2.ppc64le.rpm postgresql14-server-devel-14.6-150200.5.20.2.ppc64le.rpm postgresql14-test-14.6-150200.5.20.2.ppc64le.rpm postgresql15-15.1-150200.5.3.2.ppc64le.rpm postgresql15-contrib-15.1-150200.5.3.2.ppc64le.rpm postgresql15-devel-15.1-150200.5.3.2.ppc64le.rpm postgresql15-llvmjit-15.1-150200.5.3.2.ppc64le.rpm postgresql15-llvmjit-devel-15.1-150200.5.3.2.ppc64le.rpm postgresql15-plperl-15.1-150200.5.3.2.ppc64le.rpm postgresql15-plpython-15.1-150200.5.3.2.ppc64le.rpm postgresql15-pltcl-15.1-150200.5.3.2.ppc64le.rpm postgresql15-server-15.1-150200.5.3.2.ppc64le.rpm postgresql15-server-devel-15.1-150200.5.3.2.ppc64le.rpm postgresql15-test-15.1-150200.5.3.2.ppc64le.rpm libecpg6-15.1-150200.5.3.2.aarch64.rpm libpq5-15.1-150200.5.3.2.aarch64.rpm postgresql14-14.6-150200.5.20.2.aarch64.rpm postgresql14-contrib-14.6-150200.5.20.2.aarch64.rpm postgresql14-devel-14.6-150200.5.20.2.aarch64.rpm postgresql14-llvmjit-14.6-150200.5.20.2.aarch64.rpm postgresql14-plperl-14.6-150200.5.20.2.aarch64.rpm postgresql14-plpython-14.6-150200.5.20.2.aarch64.rpm postgresql14-pltcl-14.6-150200.5.20.2.aarch64.rpm postgresql14-server-14.6-150200.5.20.2.aarch64.rpm postgresql14-server-devel-14.6-150200.5.20.2.aarch64.rpm postgresql14-test-14.6-150200.5.20.2.aarch64.rpm postgresql15-15.1-150200.5.3.2.aarch64.rpm postgresql15-contrib-15.1-150200.5.3.2.aarch64.rpm postgresql15-devel-15.1-150200.5.3.2.aarch64.rpm postgresql15-llvmjit-15.1-150200.5.3.2.aarch64.rpm postgresql15-llvmjit-devel-15.1-150200.5.3.2.aarch64.rpm postgresql15-plperl-15.1-150200.5.3.2.aarch64.rpm postgresql15-plpython-15.1-150200.5.3.2.aarch64.rpm postgresql15-pltcl-15.1-150200.5.3.2.aarch64.rpm postgresql15-server-15.1-150200.5.3.2.aarch64.rpm postgresql15-server-devel-15.1-150200.5.3.2.aarch64.rpm postgresql15-test-15.1-150200.5.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-4431 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Pass the context to pillar ext modules - Align Amazon EC2 (Nitro) grains with upstream (bsc#1203685) - Detect module run syntax version - Implement automated patches alignment for the Salt Bundle - Ignore extend declarations from excluded SLS files (bsc#1203886) - Clarify pkg.installed pkg_verify documentation - Enhance capture of error messages for Zypper calls in zypperpkg module - Make pass renderer configurable and fix detected issues - Workaround fopen line buffering for binary mode (bsc#1203834) python3-salt-3004-150300.53.33.6.x86_64.rpm True salt-3004-150300.53.33.6.src.rpm True salt-3004-150300.53.33.6.x86_64.rpm True salt-api-3004-150300.53.33.6.x86_64.rpm True salt-bash-completion-3004-150300.53.33.6.noarch.rpm True salt-cloud-3004-150300.53.33.6.x86_64.rpm True salt-doc-3004-150300.53.33.6.x86_64.rpm True salt-fish-completion-3004-150300.53.33.6.noarch.rpm True salt-master-3004-150300.53.33.6.x86_64.rpm True salt-minion-3004-150300.53.33.6.x86_64.rpm True salt-proxy-3004-150300.53.33.6.x86_64.rpm True salt-ssh-3004-150300.53.33.6.x86_64.rpm True salt-standalone-formulas-configuration-3004-150300.53.33.6.x86_64.rpm True salt-syndic-3004-150300.53.33.6.x86_64.rpm True salt-transactional-update-3004-150300.53.33.6.x86_64.rpm True salt-zsh-completion-3004-150300.53.33.6.noarch.rpm True python3-salt-3004-150300.53.33.6.s390x.rpm True salt-3004-150300.53.33.6.s390x.rpm True salt-api-3004-150300.53.33.6.s390x.rpm True salt-cloud-3004-150300.53.33.6.s390x.rpm True salt-doc-3004-150300.53.33.6.s390x.rpm True salt-master-3004-150300.53.33.6.s390x.rpm True salt-minion-3004-150300.53.33.6.s390x.rpm True salt-proxy-3004-150300.53.33.6.s390x.rpm True salt-ssh-3004-150300.53.33.6.s390x.rpm True salt-standalone-formulas-configuration-3004-150300.53.33.6.s390x.rpm True salt-syndic-3004-150300.53.33.6.s390x.rpm True salt-transactional-update-3004-150300.53.33.6.s390x.rpm True python3-salt-3004-150300.53.33.6.ppc64le.rpm True salt-3004-150300.53.33.6.ppc64le.rpm True salt-api-3004-150300.53.33.6.ppc64le.rpm True salt-cloud-3004-150300.53.33.6.ppc64le.rpm True salt-doc-3004-150300.53.33.6.ppc64le.rpm True salt-master-3004-150300.53.33.6.ppc64le.rpm True salt-minion-3004-150300.53.33.6.ppc64le.rpm True salt-proxy-3004-150300.53.33.6.ppc64le.rpm True salt-ssh-3004-150300.53.33.6.ppc64le.rpm True salt-standalone-formulas-configuration-3004-150300.53.33.6.ppc64le.rpm True salt-syndic-3004-150300.53.33.6.ppc64le.rpm True salt-transactional-update-3004-150300.53.33.6.ppc64le.rpm True python3-salt-3004-150300.53.33.6.aarch64.rpm True salt-3004-150300.53.33.6.aarch64.rpm True salt-api-3004-150300.53.33.6.aarch64.rpm True salt-cloud-3004-150300.53.33.6.aarch64.rpm True salt-doc-3004-150300.53.33.6.aarch64.rpm True salt-master-3004-150300.53.33.6.aarch64.rpm True salt-minion-3004-150300.53.33.6.aarch64.rpm True salt-proxy-3004-150300.53.33.6.aarch64.rpm True salt-ssh-3004-150300.53.33.6.aarch64.rpm True salt-standalone-formulas-configuration-3004-150300.53.33.6.aarch64.rpm True salt-syndic-3004-150300.53.33.6.aarch64.rpm True salt-transactional-update-3004-150300.53.33.6.aarch64.rpm True openSUSE-SLE-15.3-2022-4285 important SUSE Updates openSUSE-SLE 15.3 Security fixes: - CVE-2022-32888: Fixed possible arbitrary code execution via maliciously crafted web content (bsc#1205121). - CVE-2022-32923: Fixed possible information leak via maliciously crafted web content (bsc#1205122). - CVE-2022-42799: Fixed user interface spoofing when visiting a malicious website (bsc#1205123). - CVE-2022-42823: Fixed possible arbitrary code execution via maliciously crafted web content (bsc#1205120). - CVE-2022-42824: Fixed possible sensitive user information leak via maliciously crafted web content (bsc#1205124). Update to version 2.38.2: - Fix scrolling issues in some sites having fixed background. - Fix prolonged buffering during progressive live playback. - Fix the build with accessibility disabled. - Fix several crashes and rendering issues. Update to version 2.38.1: - Make xdg-dbus-proxy work if host session bus address is an abstract socket. - Use a single xdg-dbus-proxy process when sandbox is enabled. - Fix high resolution video playback due to unimplemented changeType operation. - Ensure GSubprocess uses posix_spawn() again and inherit file descriptors. - Fix player stucking in buffering (paused) state for progressive streaming. - Do not try to preconnect on link click when link preconnect setting is disabled. - Fix close status code returned when the client closes a WebSocket in some cases. - Fix media player duration calculation. - Fix several crashes and rendering issues. Update to version 2.38.0: - New media controls UI style. - Add new API to set WebView's Content-Security-Policy for web extensions support. - Make it possible to use the remote inspector from other browsers using WEBKIT_INSPECTOR_HTTP_SERVER env var. - MediaSession is enabled by default, allowing remote media control using MPRIS. - Add support for PDF documents using PDF.js. libjavascriptcoregtk-4_0-18-2.38.2-150200.54.2.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.38.2-150200.54.2.x86_64.rpm libwebkit2gtk-4_0-37-2.38.2-150200.54.2.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.38.2-150200.54.2.x86_64.rpm libwebkit2gtk3-lang-2.38.2-150200.54.2.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.38.2-150200.54.2.x86_64.rpm typelib-1_0-WebKit2-4_0-2.38.2-150200.54.2.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.38.2-150200.54.2.x86_64.rpm webkit-jsc-4-2.38.2-150200.54.2.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.38.2-150200.54.2.x86_64.rpm webkit2gtk3-2.38.2-150200.54.2.src.rpm webkit2gtk3-devel-2.38.2-150200.54.2.x86_64.rpm webkit2gtk3-minibrowser-2.38.2-150200.54.2.x86_64.rpm libjavascriptcoregtk-4_0-18-2.38.2-150200.54.2.s390x.rpm libwebkit2gtk-4_0-37-2.38.2-150200.54.2.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.38.2-150200.54.2.s390x.rpm typelib-1_0-WebKit2-4_0-2.38.2-150200.54.2.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.38.2-150200.54.2.s390x.rpm webkit-jsc-4-2.38.2-150200.54.2.s390x.rpm webkit2gtk-4_0-injected-bundles-2.38.2-150200.54.2.s390x.rpm webkit2gtk3-devel-2.38.2-150200.54.2.s390x.rpm webkit2gtk3-minibrowser-2.38.2-150200.54.2.s390x.rpm libjavascriptcoregtk-4_0-18-2.38.2-150200.54.2.ppc64le.rpm libwebkit2gtk-4_0-37-2.38.2-150200.54.2.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.38.2-150200.54.2.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.38.2-150200.54.2.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.38.2-150200.54.2.ppc64le.rpm webkit-jsc-4-2.38.2-150200.54.2.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.38.2-150200.54.2.ppc64le.rpm webkit2gtk3-devel-2.38.2-150200.54.2.ppc64le.rpm webkit2gtk3-minibrowser-2.38.2-150200.54.2.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.38.2-150200.54.2.aarch64.rpm libwebkit2gtk-4_0-37-2.38.2-150200.54.2.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.38.2-150200.54.2.aarch64.rpm typelib-1_0-WebKit2-4_0-2.38.2-150200.54.2.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.38.2-150200.54.2.aarch64.rpm webkit-jsc-4-2.38.2-150200.54.2.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.38.2-150200.54.2.aarch64.rpm webkit2gtk3-devel-2.38.2-150200.54.2.aarch64.rpm webkit2gtk3-minibrowser-2.38.2-150200.54.2.aarch64.rpm openSUSE-SLE-15.3-2022-4592 important SUSE Updates openSUSE-SLE 15.3 This update for cni fixes the following issues: - CVE-2021-20206: Fixed arbitrary path injection via type field in CNI configuration (bsc#1181961). cni-0.7.1-150100.3.8.1.src.rpm cni-0.7.1-150100.3.8.1.x86_64.rpm cni-0.7.1-150100.3.8.1.s390x.rpm cni-0.7.1-150100.3.8.1.ppc64le.rpm cni-0.7.1-150100.3.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-4593 important SUSE Updates openSUSE-SLE 15.3 This update for cni-plugins fixes the following issues: - CVE-2021-20206: Fixed arbitrary path injection via type field in CNI configuration (bsc#1181961). cni-plugins-0.8.6-150100.3.11.1.src.rpm cni-plugins-0.8.6-150100.3.11.1.x86_64.rpm cni-plugins-0.8.6-150100.3.11.1.s390x.rpm cni-plugins-0.8.6-150100.3.11.1.ppc64le.rpm cni-plugins-0.8.6-150100.3.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-4437 important SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: dracut-saltboot: - Update to version 0.1.1665997480.587fa10 * Add dependencies on xz and gzip to support compressed images golang-github-boynux-squid_exporter: - Exclude s390 architecture - Enhanced to build on Enterprise Linux 8. grafana: - Version update from 8.3.10 to 8.5.13 (jsc#PED-2145) - Security fixes: * CVE-2022-36062: (bsc#1203596) * CVE-2022-35957: (bsc#1203597) * CVE-2022-31107: (bsc#1201539) * CVE-2022-31097: (bsc#1201535) * CVE-2022-29170: (bsc#1199810) * CVE-2021-43813, CVE-2021-43815: (bsc#1193686) * CVE-2021-43798: (bsc#1193492) * CVE-2021-41244: (bsc#1192763) * CVE-2021-41174: (bsc#1192383) * CVE-2021-3711: (bsc#1189520) * CVE-2021-36222: (bsc#1188571) - Features and enhancements: * AccessControl: Disable user remove and user update roles when they do not have the permissions * AccessControl: Provisioning for teams * Alerting: Add custom grouping to Alert Panel * Alerting: Add safeguard for migrations that might cause dataloss * Alerting: AlertingProxy to elevate permissions for request forwarded to data proxy when RBAC enabled * Alerting: Grafana uses > instead of >= when checking the For duration * Alerting: Move slow queries in the scheduler to another goroutine * Alerting: Remove disabled flag for data source when migrating alerts * Alerting: Show notification tab of legacy alerting only to editor * Alerting: Update migration to migrate only alerts that belon to existing org\dashboard * Alerting: Use expanded labels in dashboard annotations * Alerting: Use time.Ticker instead of alerting.Ticker in ngalert * Analytics: Add user id tracking to google analytics * Angular: Add AngularJS plugin support deprecation plan to docs site * API: Add usage stats preview endpoint * API: Extract OpenAPI specification from source code using go-swagger * Auth: implement auto_sign_up for auth.jwt * Azure monitor Logs: Optimize data fetching in resource picker * Azure Monitor Logs: Order subscriptions in resource picker by name * Azure Monitor: Include datasource ref when interpolating variables. * AzureMonitor: Add support for not equals and startsWith operators when creating Azure Metrics dimension filters. * AzureMonitor: Do not quote variables when a custom "All" variable option is used * AzureMonitor: Filter list of resources by resourceType * AzureMonitor: Update allowed namespaces * BarChart: color by field, x time field, bar radius, label skipping * Chore: Implement OpenTelemetry in Grafana * Cloud Monitoring: Adds metric type to Metric drop down options * CloudMonitor: Correctly encode default project response * CloudWatch: Add all ElastiCache Redis Metrics * CloudWatch: Add Data Lifecycle Manager metrics and dimension * CloudWatch: Add Missing Elasticache Host-level metrics * CloudWatch: Add multi-value template variable support for log group names in logs query builder * CloudWatch: Add new AWS/ES metrics. #43034, @sunker * Cloudwatch: Add support for AWS/PrivateLink* metrics and dimensions * Cloudwatch: Add support for new AWS/RDS EBS* metrics * Cloudwatch: Add syntax highlighting and autocomplete for "Metric Search" * Cloudwatch: Add template variable query function for listing log groups * Configuration: Add ability to customize okta login button name and icon * Elasticsearch: Add deprecation notice for < 7.10 versions. * Explore: Support custom display label for exemplar links for Prometheus datasource * Hotkeys: Make time range absolute/permanent * InfluxDB: Use backend for influxDB by default via feature toggle * Legend: Use correct unit for percent and count calculations * Logs: Escape windows newline into single newline * Loki: Add unpack to autocomplete suggestions * Loki: Use millisecond steps in Grafana 8.5.x. * Playlists: Enable sharing direct links to playlists * Plugins: Allow using both Function and Class components for app plugins * Plugins: Expose emotion/react to plugins to prevent load failures * Plugins: Introduce HTTP 207 Multi Status response to api/ds/query * Rendering: Add support for renderer token * Setting: Support configuring feature toggles with bools instead of just passing an array * SQLStore: Prevent concurrent migrations * SSE: Add Mode to drop NaN/Inf/Null in Reduction operations * Tempo: Switch out Select with AsyncSelect component to get loading state in Tempo Search * TimeSeries: Add migration for Graph panel's transform series override * TimeSeries: Add support for negative Y and constant transform * TimeSeries: Preserve null/undefined values when performing negative y transform * Traces: Filter by service/span name and operation in Tempo and Jaeger * Transformations: Add 'JSON' field type to ConvertFieldTypeTransformer * Transformations: Add an All Unique Values Reducer * Transformers: avoid error when the ExtractFields source field is missing - Breaking changes: * For a data source query made via /api/ds/query: + If the DatasourceQueryMultiStatus feature is enabled and the data source response has an error set as part of the DataResponse, the resulting HTTP status code is now '207 Multi Status' instead of '400 Bad gateway' + If the DatasourceQueryMultiStatus feature is not enabled and the data source response has an error set as part of the DataResponse, the resulting HTTP status code is '400 BadRequest' (no breaking change) * For a proxied request, e.g. Grafana's datasource or plugin proxy: + If the request is cancelled, e.g. from the browser/by the client, the HTTP status code is now '499 Client closed' request instead of 502 Bad gateway If the request times out, e.g. takes longer time than allowed, the HTTP status code is now '504 Gateway timeout' instead of '502 Bad gateway'. + The change in behavior is that negative-valued series are now stacked downwards from 0 (in their own stacks), rather than downwards from the top of the positive stacks. We now automatically group stacks by Draw style, Line interpolation, and Bar alignment, making it impossible to stack bars on top of lines, or smooth lines on top of stepped lines + The meaning of the default data source has now changed from being a persisted property in a panel. Before when you selected the default data source for a panel and later changed the default data source to another data source it would change all panels who were configured to use the default data source. From now on the default data source is just the default for new panels and changing the default will not impact any currently saved dashboards + The Tooltip component provided by @grafana/ui is no longer automatically interactive (that is you can hover onto it and click a link or select text). It will from now on by default close automatically when you mouse out from the trigger element. To make tooltips behave like before set the new interactive property to true. - Deprecations: * /api/tsdb/query API has been deprecated, please use /api/ds/query instead * AngularJS plugin support is now in a deprecated state. The documentation site has an article with more details on why, when, and how - Bug fixes: * Alerting: Add contact points provisioning API * Alerting: add field for custom slack endpoint * Alerting: Add resolved count to notification title when both firing and resolved present * Alerting: Alert rule should wait For duration when execution error state is Alerting * Alerting: Allow disabling override timings for notification policies * Alerting: Allow serving images from custom url path * Alerting: Apply Custom Headers to datasource queries * Alerting: Classic conditions can now display multiple values * Alerting: correctly show all alerts in a folder * Alerting: Display query from grafana-managed alert rules on /api/v1/rules * Alerting: Do not overwrite existing alert rule condition * Alerting: Enhance support for arbitrary group names in managed alerts * Alerting: Fix access to alerts for viewer with editor permissions when RBAC is disabled * Alerting: Fix anonymous access to alerting * Alerting: Fix migrations by making send_alerts_to field nullable * Alerting: Fix RBAC actions for notification policies * Alerting: Fix use of > instead of >= when checking the For duration * Alerting: Remove double quotes from matchers * API: Include userId, orgId, uname in request logging middleware * Auth: Guarantee consistency of signed SigV4 headers * Azure Monitor : Adding json formatting of error messages in Panel Header Corner and Inspect Error Tab * Azure Monitor: Add 2 more Curated Dashboards for VM Insights * Azure Monitor: Bug Fix for incorrect variable cascading for template variables * Azure Monitor: Fix space character encoding for metrics query link to Azure Portal * Azure Monitor: Fixes broken log queries that use workspace * Azure Monitor: Small bug fixes for Resource Picker * AzureAd Oauth: Fix strictMode to reject users without an assigned role * AzureMonitor: Fixes metric definition for Azure Storage queue/file/blob/table resources * Cloudwatch : Fixed reseting metric name when changing namespace in Metric Query * CloudWatch: Added missing MemoryDB Namespace metrics * CloudWatch: Fix MetricName resetting on Namespace change. * Cloudwatch: Fix template variables in variable queries. * CloudWatch: Fix variable query tag migration * CloudWatch: Handle new error codes for MetricInsights * CloudWatch: List all metrics properly in SQL autocomplete * CloudWatch: Prevent log groups from being removed on query change * CloudWatch: Remove error message when using multi-valued template vars in region field * CloudWatch: Run query on blur in logs query field * CloudWatch: Use default http client from aws-sdk-go * Dashboard: Fix dashboard update permission check * Dashboard: Fixes random scrolling on time range change * Dashboard: Template variables are now correctly persisted when clicking breadcrumb links * DashboardExport: Fix exporting and importing dashboards where query data source ended up as incorrect * DashboardPage: Remember scroll position when coming back panel edit / view panel * Dashboards: Fixes repeating by row and no refresh * Dashboards: Show changes in save dialog * DataSource: Default data source is no longer a persisted state but just the default data source for new panels * DataSourcePlugin API: Allow queries import when changing data source type * Elasticsearch: Respect maxConcurrentShardRequests datasource setting * Explore: Allow users to save Explore state to a new panel in a new dashboard * Explore: Avoid locking timepicker when range is inverted. * Explore: Fix closing split pane when logs panel is used * Explore: Prevent direct access to explore if disabled via feature toggle * Explore: Remove return to panel button * FileUpload: clicking the Upload file button now opens their modal correctly * Gauge: Fixes blank viz when data link exists and orientation was horizontal * GrafanaUI: Fix color of links in error Tooltips in light theme * Histogram Panel: Take decimal into consideration * InfluxDB: Fixes invalid no data alerts. #48295, @yesoreyeram * Instrumentation: Fix HTTP request instrumentation of authentication failures * Instrumentation: Make backend plugin metrics endpoints available with optional authentication * Instrumentation: Proxy status code correction and various improvements * LibraryPanels: Fix library panels not connecting properly in imported dashboards * LibraryPanels: Prevent long descriptions and names from obscuring the delete button * Logger: Use specified format for file logger * Logging: Introduce feature toggle to activate gokit/log format * Logs: Handle missing fields in dataframes better * Loki: Improve unpack parser handling * ManageDashboards: Fix error when deleting all dashboards from folder view * Middleware: Fix IPv6 host parsing in CSRF check * Navigation: Prevent navbar briefly showing on login * NewsPanel: Add support for Atom feeds. #45390, @kaydelaney * OAuth: Fix parsing of ID token if header contains non-string value * Panel Edit: Options search now works correctly when a logarithmic scale option is set * Panel Edit: Visualization search now works correctly with special characters * Plugins Catalog: Fix styling of hyperlinks * Plugins: Add deprecation notice for /api/tsdb/query endpoint * Plugins: Adding support for traceID field to accept variables * Plugins: Ensure catching all appropriate 4xx api/ds/query scenarios * Postgres: Return tables with hyphenated schemes * PostgreSQL: __unixEpochGroup to support arithmetic expression as argument * Profile/Help: Expose option to disable profile section and help menu * Prometheus: Enable new visual query builder by default * Provisioning: Fix duplicate validation when multiple organizations have been configured inserted * RBAC: Fix Anonymous Editors missing dashboard controls * RolePicker: Fix menu position on smaller screens * SAML: Allow disabling of SAML signups * Search: Sort results correctly when using postgres * Security: Fixes minor code scanning security warnings in old vendored javascript libs * Table panel: Fix horizontal scrolling when pagination is enabled * Table panel: Show datalinks for cell display modes JSON View and Gauge derivates * Table: Fix filter crashes table * Table: New pagination option * TablePanel: Add cell inspect option * TablePanel: Do not prefix columns with frame name if multipleframes and override active * TagsInput: Fix tags remove button accessibility issues * Tempo / Trace Viewer: Support Span Links in Trace Viewer * Tempo: Download span references in data inspector * Tempo: Separate trace to logs and loki search datasource config * TextPanel: Sanitize after markdown has been rendered to html * TimeRange: Fixes updating time range from url and browser history * TimeSeries: Fix detection & rendering of sparse datapoints * Timeseries: Fix outside range stale state * TimeSeries: Properly stack series with missing datapoints * TimeSeries: Sort tooltip values based on raw values * Tooltip: Fix links not legible in Tooltips when using light theme * Tooltip: Sort decimals using standard numeric compare * Trace View: Show number of child spans * Transformations: Support escaped characters in key-value pair parsing * Transforms: Labels to fields, fix label picker layout * Variables: Ensure variables in query params are correctly recognised * Variables: Fix crash when changing query variable datasource * Variables: Fixes issue with data source variables not updating queries with variable * Visualizations: Stack negative-valued series downwards - Plugin development fixes: * Card: Increase clickable area when meta items are present. * ClipboardButton: Use a fallback when the Clipboard API is unavailable * Loki: Fix operator description propup from being shortened. * OAuth: Add setting to skip org assignment for external users * Tooltips: Make tooltips non interactive by default * Tracing: Add option to map tag names to log label names in trace to logs settings prometheus-blackbox_exporter: - Add requirement for go1.18 (bsc#1203599) spacecmd: - Version 4.3.16-1 * Fix dict_keys not supporting indexing in systems_setconfigchannelorger * Improve Proxy FQDN hint message * Added a warning message for traditional stack deprecation * Stop always showing help for valid proxy_container_config calls * Remove "Undefined return code" from debug messages (bsc#1203283) spacewalk-client-tools: - Version 4.3.13-1 * Update translation strings uyuni-proxy-systemd-services: - Version 4.3.7-1 * Expose /etc/sysconfig/proxy variables to container services (bsc#1202945) dracut-saltboot-0.1.1665997480.587fa10-150000.1.41.1.noarch.rpm dracut-saltboot-0.1.1665997480.587fa10-150000.1.41.1.src.rpm golang-github-boynux-squid_exporter-1.6-150000.1.9.1.src.rpm golang-github-boynux-squid_exporter-1.6-150000.1.9.1.x86_64.rpm golang-github-prometheus-promu-0.13.0-150000.3.9.1.src.rpm golang-github-prometheus-promu-0.13.0-150000.3.9.1.x86_64.rpm spacecmd-4.3.16-150000.3.89.1.noarch.rpm spacecmd-4.3.16-150000.3.89.1.src.rpm golang-github-boynux-squid_exporter-1.6-150000.1.9.1.s390x.rpm golang-github-prometheus-promu-0.13.0-150000.3.9.1.s390x.rpm golang-github-boynux-squid_exporter-1.6-150000.1.9.1.ppc64le.rpm golang-github-prometheus-promu-0.13.0-150000.3.9.1.ppc64le.rpm golang-github-boynux-squid_exporter-1.6-150000.1.9.1.aarch64.rpm golang-github-prometheus-promu-0.13.0-150000.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-4428 important SUSE Updates openSUSE-SLE 15.3 This update for grafana fixes the following issues: Version update from 8.3.10 to 8.5.13 (jsc#PED-2145): - Security fixes: * CVE-2022-36062: (bsc#1203596) * CVE-2022-35957: (bsc#1203597) * CVE-2022-31107: (bsc#1201539) * CVE-2022-31097: (bsc#1201535) * CVE-2022-29170: (bsc#1199810) * CVE-2021-43813, CVE-2021-43815: (bsc#1193686) * CVE-2021-43798: (bsc#1193492) * CVE-2021-41244: (bsc#1192763) * CVE-2021-41174: (bsc#1192383) * CVE-2021-3711: (bsc#1189520) * CVE-2021-36222: (bsc#1188571) - Features and enhancements: * AccessControl: Disable user remove and user update roles when they do not have the permissions * AccessControl: Provisioning for teams * Alerting: Add custom grouping to Alert Panel * Alerting: Add safeguard for migrations that might cause dataloss * Alerting: AlertingProxy to elevate permissions for request forwarded to data proxy when RBAC enabled * Alerting: Grafana uses > instead of >= when checking the For duration * Alerting: Move slow queries in the scheduler to another goroutine * Alerting: Remove disabled flag for data source when migrating alerts * Alerting: Show notification tab of legacy alerting only to editor * Alerting: Update migration to migrate only alerts that belon to existing org\dashboard * Alerting: Use expanded labels in dashboard annotations * Alerting: Use time.Ticker instead of alerting.Ticker in ngalert * Analytics: Add user id tracking to google analytics * Angular: Add AngularJS plugin support deprecation plan to docs site * API: Add usage stats preview endpoint * API: Extract OpenAPI specification from source code using go-swagger * Auth: implement auto_sign_up for auth.jwt * Azure monitor Logs: Optimize data fetching in resource picker * Azure Monitor Logs: Order subscriptions in resource picker by name * Azure Monitor: Include datasource ref when interpolating variables. * AzureMonitor: Add support for not equals and startsWith operators when creating Azure Metrics dimension filters. * AzureMonitor: Do not quote variables when a custom "All" variable option is used * AzureMonitor: Filter list of resources by resourceType * AzureMonitor: Update allowed namespaces * BarChart: color by field, x time field, bar radius, label skipping * Chore: Implement OpenTelemetry in Grafana * Cloud Monitoring: Adds metric type to Metric drop down options * CloudMonitor: Correctly encode default project response * CloudWatch: Add all ElastiCache Redis Metrics * CloudWatch: Add Data Lifecycle Manager metrics and dimension * CloudWatch: Add Missing Elasticache Host-level metrics * CloudWatch: Add multi-value template variable support for log group names in logs query builder * CloudWatch: Add new AWS/ES metrics. #43034, @sunker * Cloudwatch: Add support for AWS/PrivateLink* metrics and dimensions * Cloudwatch: Add support for new AWS/RDS EBS* metrics * Cloudwatch: Add syntax highlighting and autocomplete for "Metric Search" * Cloudwatch: Add template variable query function for listing log groups * Configuration: Add ability to customize okta login button name and icon * Elasticsearch: Add deprecation notice for < 7.10 versions. * Explore: Support custom display label for exemplar links for Prometheus datasource * Hotkeys: Make time range absolute/permanent * InfluxDB: Use backend for influxDB by default via feature toggle * Legend: Use correct unit for percent and count calculations * Logs: Escape windows newline into single newline * Loki: Add unpack to autocomplete suggestions * Loki: Use millisecond steps in Grafana 8.5.x. * Playlists: Enable sharing direct links to playlists * Plugins: Allow using both Function and Class components for app plugins * Plugins: Expose emotion/react to plugins to prevent load failures * Plugins: Introduce HTTP 207 Multi Status response to api/ds/query * Rendering: Add support for renderer token * Setting: Support configuring feature toggles with bools instead of just passing an array * SQLStore: Prevent concurrent migrations * SSE: Add Mode to drop NaN/Inf/Null in Reduction operations * Tempo: Switch out Select with AsyncSelect component to get loading state in Tempo Search * TimeSeries: Add migration for Graph panel's transform series override * TimeSeries: Add support for negative Y and constant transform * TimeSeries: Preserve null/undefined values when performing negative y transform * Traces: Filter by service/span name and operation in Tempo and Jaeger * Transformations: Add 'JSON' field type to ConvertFieldTypeTransformer * Transformations: Add an All Unique Values Reducer * Transformers: avoid error when the ExtractFields source field is missing - Breaking changes: * For a data source query made via /api/ds/query: + If the DatasourceQueryMultiStatus feature is enabled and the data source response has an error set as part of the DataResponse, the resulting HTTP status code is now '207 Multi Status' instead of '400 Bad gateway' + If the DatasourceQueryMultiStatus feature is not enabled and the data source response has an error set as part of the DataResponse, the resulting HTTP status code is '400 BadRequest' (no breaking change) * For a proxied request, e.g. Grafana's datasource or plugin proxy: + If the request is cancelled, e.g. from the browser/by the client, the HTTP status code is now '499 Client closed' request instead of 502 Bad gateway If the request times out, e.g. takes longer time than allowed, the HTTP status code is now '504 Gateway timeout' instead of '502 Bad gateway'. + The change in behavior is that negative-valued series are now stacked downwards from 0 (in their own stacks), rather than downwards from the top of the positive stacks. We now automatically group stacks by Draw style, Line interpolation, and Bar alignment, making it impossible to stack bars on top of lines, or smooth lines on top of stepped lines + The meaning of the default data source has now changed from being a persisted property in a panel. Before when you selected the default data source for a panel and later changed the default data source to another data source it would change all panels who were configured to use the default data source. From now on the default data source is just the default for new panels and changing the default will not impact any currently saved dashboards + The Tooltip component provided by @grafana/ui is no longer automatically interactive (that is you can hover onto it and click a link or select text). It will from now on by default close automatically when you mouse out from the trigger element. To make tooltips behave like before set the new interactive property to true. - Deprecations: * /api/tsdb/query API has been deprecated, please use /api/ds/query instead * AngularJS plugin support is now in a deprecated state. The documentation site has an article with more details on why, when, and how - Bug fixes: * Alerting: Add contact points provisioning API * Alerting: add field for custom slack endpoint * Alerting: Add resolved count to notification title when both firing and resolved present * Alerting: Alert rule should wait For duration when execution error state is Alerting * Alerting: Allow disabling override timings for notification policies * Alerting: Allow serving images from custom url path * Alerting: Apply Custom Headers to datasource queries * Alerting: Classic conditions can now display multiple values * Alerting: correctly show all alerts in a folder * Alerting: Display query from grafana-managed alert rules on /api/v1/rules * Alerting: Do not overwrite existing alert rule condition * Alerting: Enhance support for arbitrary group names in managed alerts * Alerting: Fix access to alerts for viewer with editor permissions when RBAC is disabled * Alerting: Fix anonymous access to alerting * Alerting: Fix migrations by making send_alerts_to field nullable * Alerting: Fix RBAC actions for notification policies * Alerting: Fix use of > instead of >= when checking the For duration * Alerting: Remove double quotes from matchers * API: Include userId, orgId, uname in request logging middleware * Auth: Guarantee consistency of signed SigV4 headers * Azure Monitor : Adding json formatting of error messages in Panel Header Corner and Inspect Error Tab * Azure Monitor: Add 2 more Curated Dashboards for VM Insights * Azure Monitor: Bug Fix for incorrect variable cascading for template variables * Azure Monitor: Fix space character encoding for metrics query link to Azure Portal * Azure Monitor: Fixes broken log queries that use workspace * Azure Monitor: Small bug fixes for Resource Picker * AzureAd Oauth: Fix strictMode to reject users without an assigned role * AzureMonitor: Fixes metric definition for Azure Storage queue/file/blob/table resources * Cloudwatch : Fixed reseting metric name when changing namespace in Metric Query * CloudWatch: Added missing MemoryDB Namespace metrics * CloudWatch: Fix MetricName resetting on Namespace change. * Cloudwatch: Fix template variables in variable queries. * CloudWatch: Fix variable query tag migration * CloudWatch: Handle new error codes for MetricInsights * CloudWatch: List all metrics properly in SQL autocomplete * CloudWatch: Prevent log groups from being removed on query change * CloudWatch: Remove error message when using multi-valued template vars in region field * CloudWatch: Run query on blur in logs query field * CloudWatch: Use default http client from aws-sdk-go * Dashboard: Fix dashboard update permission check * Dashboard: Fixes random scrolling on time range change * Dashboard: Template variables are now correctly persisted when clicking breadcrumb links * DashboardExport: Fix exporting and importing dashboards where query data source ended up as incorrect * DashboardPage: Remember scroll position when coming back panel edit / view panel * Dashboards: Fixes repeating by row and no refresh * Dashboards: Show changes in save dialog * DataSource: Default data source is no longer a persisted state but just the default data source for new panels * DataSourcePlugin API: Allow queries import when changing data source type * Elasticsearch: Respect maxConcurrentShardRequests datasource setting * Explore: Allow users to save Explore state to a new panel in a new dashboard * Explore: Avoid locking timepicker when range is inverted. * Explore: Fix closing split pane when logs panel is used * Explore: Prevent direct access to explore if disabled via feature toggle * Explore: Remove return to panel button * FileUpload: clicking the Upload file button now opens their modal correctly * Gauge: Fixes blank viz when data link exists and orientation was horizontal * GrafanaUI: Fix color of links in error Tooltips in light theme * Histogram Panel: Take decimal into consideration * InfluxDB: Fixes invalid no data alerts. #48295, @yesoreyeram * Instrumentation: Fix HTTP request instrumentation of authentication failures * Instrumentation: Make backend plugin metrics endpoints available with optional authentication * Instrumentation: Proxy status code correction and various improvements * LibraryPanels: Fix library panels not connecting properly in imported dashboards * LibraryPanels: Prevent long descriptions and names from obscuring the delete button * Logger: Use specified format for file logger * Logging: Introduce feature toggle to activate gokit/log format * Logs: Handle missing fields in dataframes better * Loki: Improve unpack parser handling * ManageDashboards: Fix error when deleting all dashboards from folder view * Middleware: Fix IPv6 host parsing in CSRF check * Navigation: Prevent navbar briefly showing on login * NewsPanel: Add support for Atom feeds. #45390, @kaydelaney * OAuth: Fix parsing of ID token if header contains non-string value * Panel Edit: Options search now works correctly when a logarithmic scale option is set * Panel Edit: Visualization search now works correctly with special characters * Plugins Catalog: Fix styling of hyperlinks * Plugins: Add deprecation notice for /api/tsdb/query endpoint * Plugins: Adding support for traceID field to accept variables * Plugins: Ensure catching all appropriate 4xx api/ds/query scenarios * Postgres: Return tables with hyphenated schemes * PostgreSQL: __unixEpochGroup to support arithmetic expression as argument * Profile/Help: Expose option to disable profile section and help menu * Prometheus: Enable new visual query builder by default * Provisioning: Fix duplicate validation when multiple organizations have been configured inserted * RBAC: Fix Anonymous Editors missing dashboard controls * RolePicker: Fix menu position on smaller screens * SAML: Allow disabling of SAML signups * Search: Sort results correctly when using postgres * Security: Fixes minor code scanning security warnings in old vendored javascript libs * Table panel: Fix horizontal scrolling when pagination is enabled * Table panel: Show datalinks for cell display modes JSON View and Gauge derivates * Table: Fix filter crashes table * Table: New pagination option * TablePanel: Add cell inspect option * TablePanel: Do not prefix columns with frame name if multipleframes and override active * TagsInput: Fix tags remove button accessibility issues * Tempo / Trace Viewer: Support Span Links in Trace Viewer * Tempo: Download span references in data inspector * Tempo: Separate trace to logs and loki search datasource config * TextPanel: Sanitize after markdown has been rendered to html * TimeRange: Fixes updating time range from url and browser history * TimeSeries: Fix detection & rendering of sparse datapoints * Timeseries: Fix outside range stale state * TimeSeries: Properly stack series with missing datapoints * TimeSeries: Sort tooltip values based on raw values * Tooltip: Fix links not legible in Tooltips when using light theme * Tooltip: Sort decimals using standard numeric compare * Trace View: Show number of child spans * Transformations: Support escaped characters in key-value pair parsing * Transforms: Labels to fields, fix label picker layout * Variables: Ensure variables in query params are correctly recognised * Variables: Fix crash when changing query variable datasource * Variables: Fixes issue with data source variables not updating queries with variable * Visualizations: Stack negative-valued series downwards - Plugin development fixes: * Card: Increase clickable area when meta items are present. * ClipboardButton: Use a fallback when the Clipboard API is unavailable * Loki: Fix operator description propup from being shortened. * OAuth: Add setting to skip org assignment for external users * Tooltips: Make tooltips non interactive by default * Tracing: Add option to map tag names to log label names in trace to logs settings grafana-8.5.13-150200.3.29.5.src.rpm grafana-8.5.13-150200.3.29.5.x86_64.rpm grafana-8.5.13-150200.3.29.5.s390x.rpm grafana-8.5.13-150200.3.29.5.ppc64le.rpm grafana-8.5.13-150200.3.29.5.aarch64.rpm openSUSE-SLE-15.3-2022-4201 important SUSE Updates openSUSE-SLE 15.3 This update for nginx fixes the following issues: - CVE-2021-3618: Fixed the ALPACA attack limiting the number of errors after which the connection is closed (bsc#1187685). nginx-1.19.8-150300.3.9.1.src.rpm nginx-1.19.8-150300.3.9.1.x86_64.rpm nginx-source-1.19.8-150300.3.9.1.noarch.rpm vim-plugin-nginx-1.19.8-150300.3.9.1.noarch.rpm nginx-1.19.8-150300.3.9.1.s390x.rpm nginx-1.19.8-150300.3.9.1.ppc64le.rpm nginx-1.19.8-150300.3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-4381 important SUSE Updates openSUSE-SLE 15.3 This update for nvme-cli fixes the following issues: - Drop support for unique discovery subsystem NQN (bsc#1199865 bsc#1192761 bsc#1204827) nvme-cli-1.13-150300.3.23.2.src.rpm nvme-cli-1.13-150300.3.23.2.x86_64.rpm nvme-cli-regress-script-1.13-150300.3.23.2.x86_64.rpm nvme-cli-1.13-150300.3.23.2.s390x.rpm nvme-cli-regress-script-1.13-150300.3.23.2.s390x.rpm nvme-cli-1.13-150300.3.23.2.ppc64le.rpm nvme-cli-regress-script-1.13-150300.3.23.2.ppc64le.rpm nvme-cli-1.13-150300.3.23.2.aarch64.rpm nvme-cli-regress-script-1.13-150300.3.23.2.aarch64.rpm openSUSE-SLE-15.3-2022-4499 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssh fixes the following issues: - Make ssh connections update their dbus environment (bsc#1179465): * Add openssh-dbus.sh, openssh-dbus.csh, openssh-dbus.fish openssh-8.4p1-150300.3.15.4.src.rpm openssh-8.4p1-150300.3.15.4.x86_64.rpm openssh-askpass-gnome-8.4p1-150300.3.15.2.src.rpm openssh-askpass-gnome-8.4p1-150300.3.15.2.x86_64.rpm openssh-cavs-8.4p1-150300.3.15.4.x86_64.rpm openssh-clients-8.4p1-150300.3.15.4.x86_64.rpm openssh-common-8.4p1-150300.3.15.4.x86_64.rpm openssh-fips-8.4p1-150300.3.15.4.x86_64.rpm openssh-helpers-8.4p1-150300.3.15.4.x86_64.rpm openssh-server-8.4p1-150300.3.15.4.x86_64.rpm openssh-8.4p1-150300.3.15.4.s390x.rpm openssh-askpass-gnome-8.4p1-150300.3.15.2.s390x.rpm openssh-cavs-8.4p1-150300.3.15.4.s390x.rpm openssh-clients-8.4p1-150300.3.15.4.s390x.rpm openssh-common-8.4p1-150300.3.15.4.s390x.rpm openssh-fips-8.4p1-150300.3.15.4.s390x.rpm openssh-helpers-8.4p1-150300.3.15.4.s390x.rpm openssh-server-8.4p1-150300.3.15.4.s390x.rpm openssh-8.4p1-150300.3.15.4.ppc64le.rpm openssh-askpass-gnome-8.4p1-150300.3.15.2.ppc64le.rpm openssh-cavs-8.4p1-150300.3.15.4.ppc64le.rpm openssh-clients-8.4p1-150300.3.15.4.ppc64le.rpm openssh-common-8.4p1-150300.3.15.4.ppc64le.rpm openssh-fips-8.4p1-150300.3.15.4.ppc64le.rpm openssh-helpers-8.4p1-150300.3.15.4.ppc64le.rpm openssh-server-8.4p1-150300.3.15.4.ppc64le.rpm openssh-8.4p1-150300.3.15.4.aarch64.rpm openssh-askpass-gnome-8.4p1-150300.3.15.2.aarch64.rpm openssh-cavs-8.4p1-150300.3.15.4.aarch64.rpm openssh-clients-8.4p1-150300.3.15.4.aarch64.rpm openssh-common-8.4p1-150300.3.15.4.aarch64.rpm openssh-fips-8.4p1-150300.3.15.4.aarch64.rpm openssh-helpers-8.4p1-150300.3.15.4.aarch64.rpm openssh-server-8.4p1-150300.3.15.4.aarch64.rpm openSUSE-SLE-15.3-2022-4217 moderate SUSE Updates openSUSE-SLE 15.3 This update for wget fixes the following issues: - Truncate long file names to prevent wget failures (bsc#1204720) wget-1.20.3-150000.3.15.1.src.rpm wget-1.20.3-150000.3.15.1.x86_64.rpm wget-lang-1.20.3-150000.3.15.1.noarch.rpm wget-1.20.3-150000.3.15.1.s390x.rpm wget-1.20.3-150000.3.15.1.ppc64le.rpm wget-1.20.3-150000.3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-4326 important SUSE Updates openSUSE-SLE 15.3 This update for hawk2 fixes the following issues: - Fix detection of partial upgrade (bsc#1196673,bsc#1203367) - Improve handling of unmatched paths (bsc#1199258) - Allow configuration of cookies to HttpOnly by the use of the environment variable HAWK_COOKIE_HTTP_ONLY=true (bsc#1198647) hawk2-2.6.4+git.1667244108.7a0cffe-150000.3.33.2.src.rpm hawk2-2.6.4+git.1667244108.7a0cffe-150000.3.33.2.x86_64.rpm hawk2-2.6.4+git.1667244108.7a0cffe-150000.3.33.2.s390x.rpm hawk2-2.6.4+git.1667244108.7a0cffe-150000.3.33.2.ppc64le.rpm hawk2-2.6.4+git.1667244108.7a0cffe-150000.3.33.2.aarch64.rpm openSUSE-SLE-15.3-2022-4325 important SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - tools: fix syntax on resetting options in crm_resource (bsc#1198409) - controller: log an info instead of a warning for a stonith/shutdown that is unknown to the new DC (bsc#1198715) - controller: record CRM feature set as a transient attribute (bsc#1196673, bsc#1203367, fate#320759) libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.27.2.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.27.2.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.27.2.src.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.27.2.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.27.2.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-150300.4.27.2.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.27.2.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.27.2.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.27.2.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.27.2.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.27.2.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.27.2.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.27.2.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.27.2.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.27.2.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.27.2.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.27.2.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.27.2.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.27.2.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.27.2.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.27.2.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.27.2.aarch64.rpm openSUSE-SLE-15.3-2022-4494 important SUSE Updates openSUSE-SLE 15.3 This update for lsvpd fixes the following issues: Version update from 1.7.13 to 1.7.14 (jsc#SLE-25107, jsc#SLE-24497): - Prevent corruption of database file when running vpdupdate (bsc#1187665) lsvpd-1.7.14-150200.3.15.2.ppc64le.rpm lsvpd-1.7.14-150200.3.15.2.src.rpm openSUSE-SLE-15.3-2023-24 low SUSE Updates openSUSE-SLE 15.3 This update for freeipmi fixes the following issue: - Normalize package list shipped to aarch64 to match x86_64 (bsc#1205531) freeipmi-1.6.2-150100.9.2.2.src.rpm freeipmi-1.6.2-150100.9.2.2.x86_64.rpm freeipmi-bmc-watchdog-1.6.2-150100.9.2.2.x86_64.rpm freeipmi-devel-1.6.2-150100.9.2.2.x86_64.rpm freeipmi-ipmidetectd-1.6.2-150100.9.2.2.x86_64.rpm freeipmi-ipmiseld-1.6.2-150100.9.2.2.x86_64.rpm libfreeipmi17-1.6.2-150100.9.2.2.x86_64.rpm libipmiconsole2-1.6.2-150100.9.2.2.x86_64.rpm libipmidetect0-1.6.2-150100.9.2.2.x86_64.rpm libipmimonitoring6-1.6.2-150100.9.2.2.x86_64.rpm freeipmi-1.6.2-150100.9.2.2.aarch64.rpm freeipmi-bmc-watchdog-1.6.2-150100.9.2.2.aarch64.rpm freeipmi-devel-1.6.2-150100.9.2.2.aarch64.rpm freeipmi-ipmidetectd-1.6.2-150100.9.2.2.aarch64.rpm freeipmi-ipmiseld-1.6.2-150100.9.2.2.aarch64.rpm libfreeipmi17-1.6.2-150100.9.2.2.aarch64.rpm libipmiconsole2-1.6.2-150100.9.2.2.aarch64.rpm libipmidetect0-1.6.2-150100.9.2.2.aarch64.rpm libipmimonitoring6-1.6.2-150100.9.2.2.aarch64.rpm openSUSE-SLE-15.3-2022-4385 moderate SUSE Updates openSUSE-SLE 15.3 This update for clone-master-clean-up fixes the following issues: Version update from 1.8 to 1.10: - Fix failure if postfix is not installed by adding a check for the directory's existance (bsc#1204835) - Clean up initiatorname.iscsi (bsc#1203024) clone-master-clean-up-1.10-150100.3.17.1.noarch.rpm clone-master-clean-up-1.10-150100.3.17.1.src.rpm openSUSE-SLE-15.3-2022-4202 low SUSE Updates openSUSE-SLE 15.3 This update for libarchive fixes the following issues: - CVE-2022-36227: Fixed potential NULL pointer dereference in __archive_write_allocate_filter() (bsc#1205629). bsdtar-3.4.2-150200.4.15.1.x86_64.rpm libarchive-3.4.2-150200.4.15.1.src.rpm libarchive-devel-3.4.2-150200.4.15.1.x86_64.rpm libarchive13-3.4.2-150200.4.15.1.x86_64.rpm libarchive13-32bit-3.4.2-150200.4.15.1.x86_64.rpm bsdtar-3.4.2-150200.4.15.1.s390x.rpm libarchive-devel-3.4.2-150200.4.15.1.s390x.rpm libarchive13-3.4.2-150200.4.15.1.s390x.rpm bsdtar-3.4.2-150200.4.15.1.ppc64le.rpm libarchive-devel-3.4.2-150200.4.15.1.ppc64le.rpm libarchive13-3.4.2-150200.4.15.1.ppc64le.rpm bsdtar-3.4.2-150200.4.15.1.aarch64.rpm libarchive-devel-3.4.2-150200.4.15.1.aarch64.rpm libarchive13-3.4.2-150200.4.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-4215 important SUSE Updates openSUSE-SLE 15.3 This update for erlang fixes the following issues: - CVE-2022-37026: fixed a client authorization bypass vulnerability for SSL, TLS, and DTLS in Erlang/OTP. [bsc#1205318] erlang-22.3-150300.3.3.1.src.rpm erlang-22.3-150300.3.3.1.x86_64.rpm erlang-debugger-22.3-150300.3.3.1.x86_64.rpm erlang-debugger-src-22.3-150300.3.3.1.x86_64.rpm erlang-dialyzer-22.3-150300.3.3.1.x86_64.rpm erlang-dialyzer-src-22.3-150300.3.3.1.x86_64.rpm erlang-diameter-22.3-150300.3.3.1.x86_64.rpm erlang-diameter-src-22.3-150300.3.3.1.x86_64.rpm erlang-doc-22.3-150300.3.3.1.x86_64.rpm erlang-epmd-22.3-150300.3.3.1.x86_64.rpm erlang-et-22.3-150300.3.3.1.x86_64.rpm erlang-et-src-22.3-150300.3.3.1.x86_64.rpm erlang-jinterface-22.3-150300.3.3.1.x86_64.rpm erlang-jinterface-src-22.3-150300.3.3.1.x86_64.rpm erlang-observer-22.3-150300.3.3.1.x86_64.rpm erlang-observer-src-22.3-150300.3.3.1.x86_64.rpm erlang-reltool-22.3-150300.3.3.1.x86_64.rpm erlang-reltool-src-22.3-150300.3.3.1.x86_64.rpm erlang-src-22.3-150300.3.3.1.x86_64.rpm erlang-wx-22.3-150300.3.3.1.x86_64.rpm erlang-wx-src-22.3-150300.3.3.1.x86_64.rpm erlang-22.3-150300.3.3.1.s390x.rpm erlang-debugger-22.3-150300.3.3.1.s390x.rpm erlang-debugger-src-22.3-150300.3.3.1.s390x.rpm erlang-dialyzer-22.3-150300.3.3.1.s390x.rpm erlang-dialyzer-src-22.3-150300.3.3.1.s390x.rpm erlang-diameter-22.3-150300.3.3.1.s390x.rpm erlang-diameter-src-22.3-150300.3.3.1.s390x.rpm erlang-doc-22.3-150300.3.3.1.s390x.rpm erlang-epmd-22.3-150300.3.3.1.s390x.rpm erlang-et-22.3-150300.3.3.1.s390x.rpm erlang-et-src-22.3-150300.3.3.1.s390x.rpm erlang-jinterface-22.3-150300.3.3.1.s390x.rpm erlang-jinterface-src-22.3-150300.3.3.1.s390x.rpm erlang-observer-22.3-150300.3.3.1.s390x.rpm erlang-observer-src-22.3-150300.3.3.1.s390x.rpm erlang-reltool-22.3-150300.3.3.1.s390x.rpm erlang-reltool-src-22.3-150300.3.3.1.s390x.rpm erlang-src-22.3-150300.3.3.1.s390x.rpm erlang-wx-22.3-150300.3.3.1.s390x.rpm erlang-wx-src-22.3-150300.3.3.1.s390x.rpm erlang-22.3-150300.3.3.1.ppc64le.rpm erlang-debugger-22.3-150300.3.3.1.ppc64le.rpm erlang-debugger-src-22.3-150300.3.3.1.ppc64le.rpm erlang-dialyzer-22.3-150300.3.3.1.ppc64le.rpm erlang-dialyzer-src-22.3-150300.3.3.1.ppc64le.rpm erlang-diameter-22.3-150300.3.3.1.ppc64le.rpm erlang-diameter-src-22.3-150300.3.3.1.ppc64le.rpm erlang-doc-22.3-150300.3.3.1.ppc64le.rpm erlang-epmd-22.3-150300.3.3.1.ppc64le.rpm erlang-et-22.3-150300.3.3.1.ppc64le.rpm erlang-et-src-22.3-150300.3.3.1.ppc64le.rpm erlang-jinterface-22.3-150300.3.3.1.ppc64le.rpm erlang-jinterface-src-22.3-150300.3.3.1.ppc64le.rpm erlang-observer-22.3-150300.3.3.1.ppc64le.rpm erlang-observer-src-22.3-150300.3.3.1.ppc64le.rpm erlang-reltool-22.3-150300.3.3.1.ppc64le.rpm erlang-reltool-src-22.3-150300.3.3.1.ppc64le.rpm erlang-src-22.3-150300.3.3.1.ppc64le.rpm erlang-wx-22.3-150300.3.3.1.ppc64le.rpm erlang-wx-src-22.3-150300.3.3.1.ppc64le.rpm erlang-22.3-150300.3.3.1.aarch64.rpm erlang-debugger-22.3-150300.3.3.1.aarch64.rpm erlang-debugger-src-22.3-150300.3.3.1.aarch64.rpm erlang-dialyzer-22.3-150300.3.3.1.aarch64.rpm erlang-dialyzer-src-22.3-150300.3.3.1.aarch64.rpm erlang-diameter-22.3-150300.3.3.1.aarch64.rpm erlang-diameter-src-22.3-150300.3.3.1.aarch64.rpm erlang-doc-22.3-150300.3.3.1.aarch64.rpm erlang-epmd-22.3-150300.3.3.1.aarch64.rpm erlang-et-22.3-150300.3.3.1.aarch64.rpm erlang-et-src-22.3-150300.3.3.1.aarch64.rpm erlang-jinterface-22.3-150300.3.3.1.aarch64.rpm erlang-jinterface-src-22.3-150300.3.3.1.aarch64.rpm erlang-observer-22.3-150300.3.3.1.aarch64.rpm erlang-observer-src-22.3-150300.3.3.1.aarch64.rpm erlang-reltool-22.3-150300.3.3.1.aarch64.rpm erlang-reltool-src-22.3-150300.3.3.1.aarch64.rpm erlang-src-22.3-150300.3.3.1.aarch64.rpm erlang-wx-22.3-150300.3.3.1.aarch64.rpm erlang-wx-src-22.3-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-4389 moderate SUSE Updates openSUSE-SLE 15.3 This update for avahi fixes the following issues: - Do not cache responses generated locally (bsc#1163683) avahi-0.7-150100.3.21.4.src.rpm avahi-0.7-150100.3.21.4.x86_64.rpm avahi-autoipd-0.7-150100.3.21.4.x86_64.rpm avahi-compat-howl-devel-0.7-150100.3.21.4.x86_64.rpm avahi-compat-mDNSResponder-devel-0.7-150100.3.21.4.x86_64.rpm avahi-glib2-0.7-150100.3.21.4.src.rpm avahi-lang-0.7-150100.3.21.4.noarch.rpm avahi-utils-0.7-150100.3.21.4.x86_64.rpm avahi-utils-gtk-0.7-150100.3.21.4.x86_64.rpm libavahi-client3-0.7-150100.3.21.4.x86_64.rpm libavahi-client3-32bit-0.7-150100.3.21.4.x86_64.rpm libavahi-common3-0.7-150100.3.21.4.x86_64.rpm libavahi-common3-32bit-0.7-150100.3.21.4.x86_64.rpm libavahi-core7-0.7-150100.3.21.4.x86_64.rpm libavahi-devel-0.7-150100.3.21.4.x86_64.rpm libavahi-glib-devel-0.7-150100.3.21.4.x86_64.rpm libavahi-glib1-0.7-150100.3.21.4.x86_64.rpm libavahi-glib1-32bit-0.7-150100.3.21.4.x86_64.rpm libavahi-gobject-devel-0.7-150100.3.21.4.x86_64.rpm libavahi-gobject0-0.7-150100.3.21.4.x86_64.rpm libavahi-ui-gtk3-0-0.7-150100.3.21.4.x86_64.rpm libavahi-ui0-0.7-150100.3.21.4.x86_64.rpm libdns_sd-0.7-150100.3.21.4.x86_64.rpm libdns_sd-32bit-0.7-150100.3.21.4.x86_64.rpm libhowl0-0.7-150100.3.21.4.x86_64.rpm python3-avahi-0.7-150100.3.21.4.x86_64.rpm python3-avahi-gtk-0.7-150100.3.21.4.x86_64.rpm typelib-1_0-Avahi-0_6-0.7-150100.3.21.4.x86_64.rpm avahi-0.7-150100.3.21.4.s390x.rpm avahi-autoipd-0.7-150100.3.21.4.s390x.rpm avahi-compat-howl-devel-0.7-150100.3.21.4.s390x.rpm avahi-compat-mDNSResponder-devel-0.7-150100.3.21.4.s390x.rpm avahi-utils-0.7-150100.3.21.4.s390x.rpm avahi-utils-gtk-0.7-150100.3.21.4.s390x.rpm libavahi-client3-0.7-150100.3.21.4.s390x.rpm libavahi-common3-0.7-150100.3.21.4.s390x.rpm libavahi-core7-0.7-150100.3.21.4.s390x.rpm libavahi-devel-0.7-150100.3.21.4.s390x.rpm libavahi-glib-devel-0.7-150100.3.21.4.s390x.rpm libavahi-glib1-0.7-150100.3.21.4.s390x.rpm libavahi-gobject-devel-0.7-150100.3.21.4.s390x.rpm libavahi-gobject0-0.7-150100.3.21.4.s390x.rpm libavahi-ui-gtk3-0-0.7-150100.3.21.4.s390x.rpm libavahi-ui0-0.7-150100.3.21.4.s390x.rpm libdns_sd-0.7-150100.3.21.4.s390x.rpm libhowl0-0.7-150100.3.21.4.s390x.rpm python3-avahi-0.7-150100.3.21.4.s390x.rpm python3-avahi-gtk-0.7-150100.3.21.4.s390x.rpm typelib-1_0-Avahi-0_6-0.7-150100.3.21.4.s390x.rpm avahi-0.7-150100.3.21.4.ppc64le.rpm avahi-autoipd-0.7-150100.3.21.4.ppc64le.rpm avahi-compat-howl-devel-0.7-150100.3.21.4.ppc64le.rpm avahi-compat-mDNSResponder-devel-0.7-150100.3.21.4.ppc64le.rpm avahi-utils-0.7-150100.3.21.4.ppc64le.rpm avahi-utils-gtk-0.7-150100.3.21.4.ppc64le.rpm libavahi-client3-0.7-150100.3.21.4.ppc64le.rpm libavahi-common3-0.7-150100.3.21.4.ppc64le.rpm libavahi-core7-0.7-150100.3.21.4.ppc64le.rpm libavahi-devel-0.7-150100.3.21.4.ppc64le.rpm libavahi-glib-devel-0.7-150100.3.21.4.ppc64le.rpm libavahi-glib1-0.7-150100.3.21.4.ppc64le.rpm libavahi-gobject-devel-0.7-150100.3.21.4.ppc64le.rpm libavahi-gobject0-0.7-150100.3.21.4.ppc64le.rpm libavahi-ui-gtk3-0-0.7-150100.3.21.4.ppc64le.rpm libavahi-ui0-0.7-150100.3.21.4.ppc64le.rpm libdns_sd-0.7-150100.3.21.4.ppc64le.rpm libhowl0-0.7-150100.3.21.4.ppc64le.rpm python3-avahi-0.7-150100.3.21.4.ppc64le.rpm python3-avahi-gtk-0.7-150100.3.21.4.ppc64le.rpm typelib-1_0-Avahi-0_6-0.7-150100.3.21.4.ppc64le.rpm avahi-0.7-150100.3.21.4.aarch64.rpm avahi-autoipd-0.7-150100.3.21.4.aarch64.rpm avahi-compat-howl-devel-0.7-150100.3.21.4.aarch64.rpm avahi-compat-mDNSResponder-devel-0.7-150100.3.21.4.aarch64.rpm avahi-utils-0.7-150100.3.21.4.aarch64.rpm avahi-utils-gtk-0.7-150100.3.21.4.aarch64.rpm libavahi-client3-0.7-150100.3.21.4.aarch64.rpm libavahi-common3-0.7-150100.3.21.4.aarch64.rpm libavahi-core7-0.7-150100.3.21.4.aarch64.rpm libavahi-devel-0.7-150100.3.21.4.aarch64.rpm libavahi-glib-devel-0.7-150100.3.21.4.aarch64.rpm libavahi-glib1-0.7-150100.3.21.4.aarch64.rpm libavahi-gobject-devel-0.7-150100.3.21.4.aarch64.rpm libavahi-gobject0-0.7-150100.3.21.4.aarch64.rpm libavahi-ui-gtk3-0-0.7-150100.3.21.4.aarch64.rpm libavahi-ui0-0.7-150100.3.21.4.aarch64.rpm libdns_sd-0.7-150100.3.21.4.aarch64.rpm libhowl0-0.7-150100.3.21.4.aarch64.rpm python3-avahi-0.7-150100.3.21.4.aarch64.rpm python3-avahi-gtk-0.7-150100.3.21.4.aarch64.rpm typelib-1_0-Avahi-0_6-0.7-150100.3.21.4.aarch64.rpm openSUSE-SLE-15.3-2022-4391 low SUSE Updates openSUSE-SLE 15.3 This update for libxslt fixes the following issues: - Fix broken license symlink for libxslt-tools (bsc#1203669) libxslt-1.1.32-150000.3.11.1.src.rpm libxslt-devel-1.1.32-150000.3.11.1.x86_64.rpm libxslt-devel-32bit-1.1.32-150000.3.11.1.x86_64.rpm libxslt-python-1.1.32-150000.3.11.1.src.rpm libxslt-python-1.1.32-150000.3.11.1.x86_64.rpm libxslt-tools-1.1.32-150000.3.11.1.x86_64.rpm libxslt1-1.1.32-150000.3.11.1.x86_64.rpm libxslt1-32bit-1.1.32-150000.3.11.1.x86_64.rpm libxslt-devel-1.1.32-150000.3.11.1.s390x.rpm libxslt-python-1.1.32-150000.3.11.1.s390x.rpm libxslt-tools-1.1.32-150000.3.11.1.s390x.rpm libxslt1-1.1.32-150000.3.11.1.s390x.rpm libxslt-devel-1.1.32-150000.3.11.1.ppc64le.rpm libxslt-python-1.1.32-150000.3.11.1.ppc64le.rpm libxslt-tools-1.1.32-150000.3.11.1.ppc64le.rpm libxslt1-1.1.32-150000.3.11.1.ppc64le.rpm libxslt-devel-1.1.32-150000.3.11.1.aarch64.rpm libxslt-python-1.1.32-150000.3.11.1.aarch64.rpm libxslt-tools-1.1.32-150000.3.11.1.aarch64.rpm libxslt1-1.1.32-150000.3.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-4292 moderate SUSE Updates openSUSE-SLE 15.3 This update for freerdp fixes the following issues: - CVE-2022-39318: Fixed division by zero in urbdrc (bsc#1205563). - CVE-2022-39319: Fixed missing input buffer length check in urbdrc (bsc#1205564). freerdp-2.1.2-150200.15.24.1.src.rpm freerdp-2.1.2-150200.15.24.1.x86_64.rpm freerdp-devel-2.1.2-150200.15.24.1.x86_64.rpm freerdp-proxy-2.1.2-150200.15.24.1.x86_64.rpm freerdp-server-2.1.2-150200.15.24.1.x86_64.rpm freerdp-wayland-2.1.2-150200.15.24.1.x86_64.rpm libfreerdp2-2.1.2-150200.15.24.1.x86_64.rpm libuwac0-0-2.1.2-150200.15.24.1.x86_64.rpm libwinpr2-2.1.2-150200.15.24.1.x86_64.rpm uwac0-0-devel-2.1.2-150200.15.24.1.x86_64.rpm winpr2-devel-2.1.2-150200.15.24.1.x86_64.rpm freerdp-2.1.2-150200.15.24.1.s390x.rpm freerdp-devel-2.1.2-150200.15.24.1.s390x.rpm freerdp-proxy-2.1.2-150200.15.24.1.s390x.rpm freerdp-server-2.1.2-150200.15.24.1.s390x.rpm freerdp-wayland-2.1.2-150200.15.24.1.s390x.rpm libfreerdp2-2.1.2-150200.15.24.1.s390x.rpm libuwac0-0-2.1.2-150200.15.24.1.s390x.rpm libwinpr2-2.1.2-150200.15.24.1.s390x.rpm uwac0-0-devel-2.1.2-150200.15.24.1.s390x.rpm winpr2-devel-2.1.2-150200.15.24.1.s390x.rpm freerdp-2.1.2-150200.15.24.1.ppc64le.rpm freerdp-devel-2.1.2-150200.15.24.1.ppc64le.rpm freerdp-proxy-2.1.2-150200.15.24.1.ppc64le.rpm freerdp-server-2.1.2-150200.15.24.1.ppc64le.rpm freerdp-wayland-2.1.2-150200.15.24.1.ppc64le.rpm libfreerdp2-2.1.2-150200.15.24.1.ppc64le.rpm libuwac0-0-2.1.2-150200.15.24.1.ppc64le.rpm libwinpr2-2.1.2-150200.15.24.1.ppc64le.rpm uwac0-0-devel-2.1.2-150200.15.24.1.ppc64le.rpm winpr2-devel-2.1.2-150200.15.24.1.ppc64le.rpm freerdp-2.1.2-150200.15.24.1.aarch64.rpm freerdp-devel-2.1.2-150200.15.24.1.aarch64.rpm freerdp-proxy-2.1.2-150200.15.24.1.aarch64.rpm freerdp-server-2.1.2-150200.15.24.1.aarch64.rpm freerdp-wayland-2.1.2-150200.15.24.1.aarch64.rpm libfreerdp2-2.1.2-150200.15.24.1.aarch64.rpm libuwac0-0-2.1.2-150200.15.24.1.aarch64.rpm libwinpr2-2.1.2-150200.15.24.1.aarch64.rpm uwac0-0-devel-2.1.2-150200.15.24.1.aarch64.rpm winpr2-devel-2.1.2-150200.15.24.1.aarch64.rpm openSUSE-SLE-15.3-2022-4396 moderate SUSE Updates openSUSE-SLE 15.3 This update of frr fixes the following issues: - rebuild against the new net-snmp (jsc#SLE-11203). frr-7.4-150300.4.12.1.src.rpm frr-7.4-150300.4.12.1.x86_64.rpm frr-devel-7.4-150300.4.12.1.x86_64.rpm libfrr0-7.4-150300.4.12.1.x86_64.rpm libfrr_pb0-7.4-150300.4.12.1.x86_64.rpm libfrrcares0-7.4-150300.4.12.1.x86_64.rpm libfrrfpm_pb0-7.4-150300.4.12.1.x86_64.rpm libfrrgrpc_pb0-7.4-150300.4.12.1.x86_64.rpm libfrrospfapiclient0-7.4-150300.4.12.1.x86_64.rpm libfrrsnmp0-7.4-150300.4.12.1.x86_64.rpm libfrrzmq0-7.4-150300.4.12.1.x86_64.rpm libmlag_pb0-7.4-150300.4.12.1.x86_64.rpm frr-7.4-150300.4.12.1.s390x.rpm frr-devel-7.4-150300.4.12.1.s390x.rpm libfrr0-7.4-150300.4.12.1.s390x.rpm libfrr_pb0-7.4-150300.4.12.1.s390x.rpm libfrrcares0-7.4-150300.4.12.1.s390x.rpm libfrrfpm_pb0-7.4-150300.4.12.1.s390x.rpm libfrrgrpc_pb0-7.4-150300.4.12.1.s390x.rpm libfrrospfapiclient0-7.4-150300.4.12.1.s390x.rpm libfrrsnmp0-7.4-150300.4.12.1.s390x.rpm libfrrzmq0-7.4-150300.4.12.1.s390x.rpm libmlag_pb0-7.4-150300.4.12.1.s390x.rpm frr-7.4-150300.4.12.1.ppc64le.rpm frr-devel-7.4-150300.4.12.1.ppc64le.rpm libfrr0-7.4-150300.4.12.1.ppc64le.rpm libfrr_pb0-7.4-150300.4.12.1.ppc64le.rpm libfrrcares0-7.4-150300.4.12.1.ppc64le.rpm libfrrfpm_pb0-7.4-150300.4.12.1.ppc64le.rpm libfrrgrpc_pb0-7.4-150300.4.12.1.ppc64le.rpm libfrrospfapiclient0-7.4-150300.4.12.1.ppc64le.rpm libfrrsnmp0-7.4-150300.4.12.1.ppc64le.rpm libfrrzmq0-7.4-150300.4.12.1.ppc64le.rpm libmlag_pb0-7.4-150300.4.12.1.ppc64le.rpm frr-7.4-150300.4.12.1.aarch64.rpm frr-devel-7.4-150300.4.12.1.aarch64.rpm libfrr0-7.4-150300.4.12.1.aarch64.rpm libfrr_pb0-7.4-150300.4.12.1.aarch64.rpm libfrrcares0-7.4-150300.4.12.1.aarch64.rpm libfrrfpm_pb0-7.4-150300.4.12.1.aarch64.rpm libfrrgrpc_pb0-7.4-150300.4.12.1.aarch64.rpm libfrrospfapiclient0-7.4-150300.4.12.1.aarch64.rpm libfrrsnmp0-7.4-150300.4.12.1.aarch64.rpm libfrrzmq0-7.4-150300.4.12.1.aarch64.rpm libmlag_pb0-7.4-150300.4.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-4282 important SUSE Updates openSUSE-SLE 15.3 This update for vim fixes the following issues: Updated to version 9.0 with patch level 0814: - CVE-2021-3928: Fixed stack-based buffer overflow (bsc#1192478). - CVE-2022-3234: Fixed heap-based buffer overflow (bsc#1203508). - CVE-2022-3235: Fixed use-after-free (bsc#1203509). - CVE-2022-3324: Fixed stack-based buffer overflow (bsc#1203820). - CVE-2022-3705: Fixed use-after-free in function qf_update_buffer of the file quickfix.c (bsc#1204779). - CVE-2022-2982: Fixed use-after-free in qf_fill_buffer() (bsc#1203152). - CVE-2022-3296: Fixed stack out of bounds read in ex_finally() in ex_eval.c (bsc#1203796). - CVE-2022-3297: Fixed use-after-free in process_next_cpt_value() at insexpand.c (bsc#1203797). - CVE-2022-3099: Fixed use-after-free in ex_docmd.c (bsc#1203110). - CVE-2022-3134: Fixed use-after-free in do_tag() (bsc#1203194). - CVE-2022-3153: Fixed NULL pointer dereference (bsc#1203272). - CVE-2022-3278: Fixed NULL pointer dereference in eval_next_non_blank() in eval.c (bsc#1203799). - CVE-2022-3352: Fixed use-after-free (bsc#1203924). - CVE-2022-2980: Fixed NULL pointer dereference in do_mouse() (bsc#1203155). - CVE-2022-3037: Fixed use-after-free (bsc#1202962). gvim-9.0.0814-150000.5.28.1.x86_64.rpm vim-9.0.0814-150000.5.28.1.src.rpm vim-9.0.0814-150000.5.28.1.x86_64.rpm vim-data-9.0.0814-150000.5.28.1.noarch.rpm vim-data-common-9.0.0814-150000.5.28.1.noarch.rpm vim-small-9.0.0814-150000.5.28.1.x86_64.rpm gvim-9.0.0814-150000.5.28.1.s390x.rpm vim-9.0.0814-150000.5.28.1.s390x.rpm vim-small-9.0.0814-150000.5.28.1.s390x.rpm gvim-9.0.0814-150000.5.28.1.ppc64le.rpm vim-9.0.0814-150000.5.28.1.ppc64le.rpm vim-small-9.0.0814-150000.5.28.1.ppc64le.rpm gvim-9.0.0814-150000.5.28.1.aarch64.rpm vim-9.0.0814-150000.5.28.1.aarch64.rpm vim-small-9.0.0814-150000.5.28.1.aarch64.rpm openSUSE-SLE-15.3-2022-4366 moderate SUSE Updates openSUSE-SLE 15.3 This update of hplip fixes the following issues: - rebuild against the new net-snmp (jsc#SLE-11203). hplip-3.21.10-150300.4.8.1.src.rpm hplip-3.21.10-150300.4.8.1.x86_64.rpm hplip-devel-3.21.10-150300.4.8.1.x86_64.rpm hplip-hpijs-3.21.10-150300.4.8.1.x86_64.rpm hplip-sane-3.21.10-150300.4.8.1.x86_64.rpm hplip-scan-utils-3.21.10-150300.4.8.1.x86_64.rpm hplip-3.21.10-150300.4.8.1.s390x.rpm hplip-devel-3.21.10-150300.4.8.1.s390x.rpm hplip-hpijs-3.21.10-150300.4.8.1.s390x.rpm hplip-sane-3.21.10-150300.4.8.1.s390x.rpm hplip-scan-utils-3.21.10-150300.4.8.1.s390x.rpm hplip-3.21.10-150300.4.8.1.ppc64le.rpm hplip-devel-3.21.10-150300.4.8.1.ppc64le.rpm hplip-hpijs-3.21.10-150300.4.8.1.ppc64le.rpm hplip-sane-3.21.10-150300.4.8.1.ppc64le.rpm hplip-scan-utils-3.21.10-150300.4.8.1.ppc64le.rpm hplip-3.21.10-150300.4.8.1.aarch64.rpm hplip-devel-3.21.10-150300.4.8.1.aarch64.rpm hplip-hpijs-3.21.10-150300.4.8.1.aarch64.rpm hplip-sane-3.21.10-150300.4.8.1.aarch64.rpm hplip-scan-utils-3.21.10-150300.4.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-4311 critical SUSE Updates openSUSE-SLE 15.3 This update for open-vm-tools fixes the following issues: - Include binaries of open-vm-tools for ARM architecture aarch64 in SUSE Linux Enterprise 15 Service Pack 4 (jsc#SLE-22385) libvmtools-devel-12.1.0-150300.21.2.x86_64.rpm libvmtools0-12.1.0-150300.21.2.x86_64.rpm open-vm-tools-12.1.0-150300.21.2.src.rpm open-vm-tools-12.1.0-150300.21.2.x86_64.rpm open-vm-tools-desktop-12.1.0-150300.21.2.x86_64.rpm open-vm-tools-sdmp-12.1.0-150300.21.2.x86_64.rpm libvmtools-devel-12.1.0-150300.21.2.aarch64.rpm libvmtools0-12.1.0-150300.21.2.aarch64.rpm open-vm-tools-12.1.0-150300.21.2.aarch64.rpm open-vm-tools-desktop-12.1.0-150300.21.2.aarch64.rpm open-vm-tools-sdmp-12.1.0-150300.21.2.aarch64.rpm openSUSE-SLE-15.3-2022-4457 moderate SUSE Updates openSUSE-SLE 15.3 This update for libtpms fixes the following issues: - CVE-2021-3623: Fixed out-of-bounds access when trying to resume the state of the vTPM (bsc#1187767) libtpms-0.8.2-150300.3.6.1.src.rpm libtpms-devel-0.8.2-150300.3.6.1.x86_64.rpm libtpms0-0.8.2-150300.3.6.1.x86_64.rpm libtpms-devel-0.8.2-150300.3.6.1.s390x.rpm libtpms0-0.8.2-150300.3.6.1.s390x.rpm libtpms-devel-0.8.2-150300.3.6.1.ppc64le.rpm libtpms0-0.8.2-150300.3.6.1.ppc64le.rpm libtpms-devel-0.8.2-150300.3.6.1.aarch64.rpm libtpms0-0.8.2-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4496 moderate SUSE Updates openSUSE-SLE 15.3 This update for SCA patterns fixes the following issues: sca-patterns-base: - Version update from 1.3.1 to 1.5.0 to implement the conversion of SCA Tool to Python3 (jsc#SLE-25064, jsc#SLE-24335): * Convert SCA Tool from Python2 to Python3 (bsc#1191005, SLE-21579) * Added Core.loadFullFile for sectionless parsing (bsc#1187194) * Added SUSE.getNetworkInterfaces (bsc#1144162) * Changed required dependencies from python to python3-base (bsc#1191199) * Fix SUSE.getFileSystems invalid index error (bsc#1185594) * Fix SUSE.getFileSystems unbound local SWAP variable (bsc#1185593) * Removed Novell/OES references from libraries (bsc#1186034) * Updated documentation for SUSE.compareKernel * Updated kernel version constants for all SUSE libraries (bsc#1189483) sca-patterns-hae: - Version update from 1.3.1 to 1.5.1 to implement the conversion of SCA Tool to Python3 (jsc#SLE-25064, jsc#SLE-24335): * Convert SCA Tool from Python2 to Python3 (bsc#1191005, SLE-21579) * Added distribution and service pack subdirectories (bsc#1193878) * False positive hit from /usr/lib/sca/patterns/HAE/stonith-00002.pl (bsc#1124793) * HAE Policies Quorum 2 node cluster requires ignore policy (bsc#1167689) * supportconfig indicates IPv6 required by HAE, is already enabled (bsc#1045605) sca-patterns-suma: - Version update from 1.0 to 1.5.1 to implement the conversion of SCA Tool to Python3 (jsc#SLE-25064, jsc#SLE-24335): * Convert SCA Tool from Python2 to Python3 (bsc#1191005, SLE-21579) sca-server-report: - Version update from 1.0.1 to 1.5.1 to implement the conversion of SCA Tool to Python3 (jsc#SLE-25064, jsc#SLE-24335): * Convert SCA Tool from Python2 to Python3 (bsc#1191005, SLE-21579) * Changed absolute paths to relative ones (bsc#1186316) * Changed required dependencies from python to python3-base (bsc#1191199) * Ensure that the legacy SuSE-release file works (bsc#1196730) * Fix sca report header supportconfig file (bsc#1186442) * Fix the report file output path (bsc#1180894) * Removed preprocessor elements for OES Filr eDir (bsc#1186420) sca-patterns-sle15: - Version update from 1.0.1 to 1.5.1 to implement the conversion of SCA Tool to Python3 (jsc#SLE-25064, jsc#SLE-24335): * Convert SCA Tool from Python2 to Python3 (bsc#1191005, SLE-21579) * Added Video link to coredumpctl-000018634.py * Added video links to patterns (bsc#1190460): * bhc-scc-expired.py, bhc-scc-registered.py, bhc-diskused-00001.pl, bhc-memused-00001.pl * Fixed crosstalk message strings (bsc#1186312) * Fixed field reference in sle15all/lvm-00003.pl * Fixed metadata tags in scc-registered.py * Fixed percent used calculation for bhc-memused-00001.pl (bsc#1189889) * Removed outdated TID2 link in bhc-diskused-00001.pl (bsc#1190260) * Requires Core library 1.3.3 which contains Core.logFullFile function * Updated registration link in bhc-scc-registered.py * Updated renewal link in bhc-scc-expired.py - New security announcement patterns: * Apr 2022 (13) for SUSE-SU-2022:1293-1 SUSE-SU-2022:1313-1 SUSE-SU-2022:1250-1 SUSE-SU-2022:1108-1 SUSE-SU-2022:1292-1 SUSE-SU-2022:1313-1 SUSE-SU-2022:1448-1 SUSE-SU-2022:1250-1 SUSE-SU-2022:1255-1 SUSE-SU-2022:1255-1 SUSE-SU-2022:1288-1 SUSE-SU-2022:1427-1 SUSE-SU-2022:1139-1 * Mar 2022 (48) for SUSE-SU-2022:1293-1 SUSE-SU-2022:1313-1 SUSE-SU-2022:1250-1 SUSE-SU-2022:1108-1 SUSE-SU-2022:1292-1 SUSE-SU-2022:1313-1 SUSE-SU-2022:1448-1 SUSE-SU-2022:1250-1 SUSE-SU-2022:1255-1 SUSE-SU-2022:1255-1 SUSE-SU-2022:1288-1 SUSE-SU-2022:1427-1 SUSE-SU-2022:1139-1 SUSE-SU-2022:0931-1 SUSE-SU-2022:0703-1 SUSE-SU-2022:0779-1 SUSE-SU-2022:0695-1 SUSE-SU-2022:0826-1 SUSE-SU-2022:0825-1 SUSE-SU-2022:1058-1 SUSE-SU-2022:0679-1 SUSE-SU-2022:0853-1 SUSE-SU-2022:0819-1 SUSE-SU-2022:0778-1 SUSE-SU-2022:0676-1 SUSE-SU-2022:0725-1 SUSE-SU-2022:0754-1 SUSE-SU-2022:0929-1 SUSE-SU-2022:0732-1 SUSE-SU-2022:0703-1 SUSE-SU-2022:0810-1 SUSE-SU-2022:0694-1 SUSE-SU-2022:0826-1 SUSE-SU-2022:0825-1 SUSE-SU-2022:1057-1 SUSE-SU-2022:0679-1 SUSE-SU-2022:0851-1 SUSE-SU-2022:1041-1 SUSE-SU-2022:0819-1 SUSE-SU-2022:0778-1 SUSE-SU-2022:0676-1 SUSE-SU-2022:0725-1 SUSE-SU-2022:0754-1 SUSE-SU-2022:0766-1 SUSE-SU-2022:0766-1 SUSE-SU-2022:0933-1 SUSE-SU-2022:0934-1 SUSE-SU-2022:0929-1 * Feb 2022 (60) for SUSE-SU-2022:1293-1 SUSE-SU-2022:1313-1 SUSE-SU-2022:1250-1 SUSE-SU-2022:1108-1 SUSE-SU-2022:1292-1 SUSE-SU-2022:1313-1 SUSE-SU-2022:1448-1 SUSE-SU-2022:1250-1 SUSE-SU-2022:1255-1 SUSE-SU-2022:1255-1 SUSE-SU-2022:1288-1 SUSE-SU-2022:1427-1 SUSE-SU-2022:1139-1 SUSE-SU-2022:0931-1 SUSE-SU-2022:0703-1 SUSE-SU-2022:0779-1 SUSE-SU-2022:0695-1 SUSE-SU-2022:0826-1 SUSE-SU-2022:0825-1 SUSE-SU-2022:1058-1 SUSE-SU-2022:0679-1 SUSE-SU-2022:0853-1 SUSE-SU-2022:0819-1 SUSE-SU-2022:0778-1 SUSE-SU-2022:0676-1 SUSE-SU-2022:0725-1 SUSE-SU-2022:0754-1 SUSE-SU-2022:0929-1 SUSE-SU-2022:0732-1 SUSE-SU-2022:0703-1 SUSE-SU-2022:0810-1 SUSE-SU-2022:0694-1 SUSE-SU-2022:0826-1 SUSE-SU-2022:0825-1 SUSE-SU-2022:1057-1 SUSE-SU-2022:0679-1 SUSE-SU-2022:0851-1 SUSE-SU-2022:1041-1 SUSE-SU-2022:0819-1 SUSE-SU-2022:0778-1 SUSE-SU-2022:0676-1 SUSE-SU-2022:0725-1 SUSE-SU-2022:0754-1 SUSE-SU-2022:0766-1 SUSE-SU-2022:0766-1 SUSE-SU-2022:0933-1 SUSE-SU-2022:0934-1 SUSE-SU-2022:0929-1 SUSE-SU-2022:0277-1 SUSE-SU-2022:0283-1 SUSE-SU-2022:0500-1 SUSE-SU-2022:0468-1 SUSE-SU-2022:0541-1 SUSE-SU-2022:0284-1 SUSE-SU-2022:0563-1 SUSE-SU-2022:0500-1 SUSE-SU-2022:0563-1 SUSE-SU-2022:0301-1 SUSE-SU-2022:0367-1 SUSE-SU-2022:0367-1 * Jan 2022 (92) for SUSE-SU-2022:1293-1 SUSE-SU-2022:1313-1 SUSE-SU-2022:1250-1 SUSE-SU-2022:1108-1 SUSE-SU-2022:1292-1 SUSE-SU-2022:1313-1 SUSE-SU-2022:1448-1 SUSE-SU-2022:1250-1 SUSE-SU-2022:1255-1 SUSE-SU-2022:1255-1 SUSE-SU-2022:1288-1 SUSE-SU-2022:1427-1 SUSE-SU-2022:1139-1 SUSE-SU-2022:0931-1 SUSE-SU-2022:0703-1 SUSE-SU-2022:0779-1 SUSE-SU-2022:0695-1 SUSE-SU-2022:0826-1 SUSE-SU-2022:0825-1 SUSE-SU-2022:1058-1 SUSE-SU-2022:0679-1 SUSE-SU-2022:0853-1 SUSE-SU-2022:0819-1 SUSE-SU-2022:0778-1 SUSE-SU-2022:0676-1 SUSE-SU-2022:0725-1 SUSE-SU-2022:0754-1 SUSE-SU-2022:0929-1 SUSE-SU-2022:0732-1 SUSE-SU-2022:0703-1 SUSE-SU-2022:0810-1 SUSE-SU-2022:0694-1 SUSE-SU-2022:0826-1 SUSE-SU-2022:0825-1 SUSE-SU-2022:1057-1 SUSE-SU-2022:0679-1 SUSE-SU-2022:0851-1 SUSE-SU-2022:1041-1 SUSE-SU-2022:0819-1 SUSE-SU-2022:0778-1 SUSE-SU-2022:0676-1 SUSE-SU-2022:0725-1 SUSE-SU-2022:0754-1 SUSE-SU-2022:0766-1 SUSE-SU-2022:0766-1 SUSE-SU-2022:0933-1 SUSE-SU-2022:0934-1 SUSE-SU-2022:0929-1 SUSE-SU-2022:0277-1 SUSE-SU-2022:0283-1 SUSE-SU-2022:0500-1 SUSE-SU-2022:0468-1 SUSE-SU-2022:0541-1 SUSE-SU-2022:0284-1 SUSE-SU-2022:0563-1 SUSE-SU-2022:0500-1 SUSE-SU-2022:0563-1 SUSE-SU-2022:0301-1 SUSE-SU-2022:0367-1 SUSE-SU-2022:0367-1 SUSE-SU-2022:0043-1 SUSE-SU-2022:0177-1 SUSE-SU-2022:0064-1 SUSE-SU-2022:0134-1 SUSE-SU-2022:0141-1 SUSE-SU-2022:0050-1 SUSE-SU-2022:0021-1 SUSE-SU-2022:0069-1 SUSE-SU-2022:0198-1 SUSE-SU-2022:0131-1 SUSE-SU-2022:0088-1 SUSE-SU-2022:0144-1 SUSE-SU-2022:0151-1 SUSE-SU-2022:0091-1 SUSE-SU-2022:0091-1 SUSE-SU-2022:0183-1 SUSE-SU-2022:0211-1 SUSE-SU-2022:0191-1 SUSE-SU-2022:0050-1 SUSE-SU-2022:0137-1 SUSE-SU-2022:0214-1 SUSE-SU-2022:0128-1 SUSE-SU-2022:0119-1 SUSE-SU-2022:0183-1 SUSE-SU-2022:0211-1 SUSE-SU-2022:0251-1 SUSE-SU-2022:0200-1 SUSE-SU-2022:0191-1 SUSE-SU-2022:0137-1 SUSE-SU-2022:0214-1 SUSE-SU-2022:0031-1 SUSE-SU-2022:0119-1 * Jul 2021 (20) for SUSE-SU-2021:2457-1 SUSE-SU-2021:2410-1 SUSE-SU-2021:2442-1 SUSE-SU-2021:2352-1 SUSE-SU-2021:1863-2 SUSE-SU-2021:2415-1 SUSE-SU-2021:2555-1 SUSE-SU-2021:2439-1 SUSE-SU-2021:2459-1 SUSE-SU-2021:2291-1 SUSE-SU-2021:2457-1 SUSE-SU-2021:2404-1 SUSE-SU-2021:2474-1 SUSE-SU-2021:2471-1 SUSE-SU-2021:2438-1 SUSE-SU-2021:2325-1 SUSE-SU-2021:2439-1 SUSE-SU-2021:2461-1 SUSE-SU-2021:2421-1 SUSE-SU-2021:2470-1 * Jun 2021 (46) for SUSE-SU-2021:2011-1 SUSE-SU-2021:1933-1 SUSE-SU-2021:1998-1 SUSE-SU-2021:2106-1 SUSE-SU-2021:1951-1 SUSE-SU-2021:2213-1 SUSE-SU-2021:1942-1 SUSE-SU-2021:2012-1 SUSE-SU-2021:1859-1 SUSE-SU-2021:1843-1 SUSE-SU-2021:1825-1 SUSE-SU-2021:2196-1 SUSE-SU-2021:1917-1 SUSE-SU-2021:1958-1 SUSE-SU-2021:2184-1 SUSE-SU-2021:1977-1 SUSE-SU-2021:1819-1 SUSE-SU-2021:1944-1 SUSE-SU-2021:1834-1 SUSE-SU-2021:1826-1 SUSE-SU-2021:2127-1 SUSE-SU-2021:2011-1 SUSE-SU-2021:1933-1 SUSE-SU-2021:1999-1 SUSE-SU-2021:2106-1 SUSE-SU-2021:2212-1 SUSE-SU-2021:1893-1 SUSE-SU-2021:1859-1 SUSE-SU-2021:1994-1 SUSE-SU-2021:1970-1 SUSE-SU-2021:1843-1 SUSE-SU-2021:2196-1 SUSE-SU-2021:1917-1 SUSE-SU-2021:1958-1 SUSE-SU-2021:1890-1 SUSE-SU-2021:1819-1 SUSE-SU-2021:1834-1 SUSE-SU-2021:2127-1 SUSE-SU-2021:1901-1 SUSE-SU-2021:1911-1 SUSE-SU-2021:2104-1 SUSE-SU-2021:1895-1 SUSE-SU-2021:2155-1 SUSE-SU-2021:2122-1 SUSE-SU-2021:2211-1 SUSE-SU-2021:1845-1 * May 2021 (39) for SUSE-SU-2021:1557-1 SUSE-SU-2021:1806-1 SUSE-SU-2021:1785-1 SUSE-SU-2021:1466-1 SUSE-SU-2021:1491-1 SUSE-SU-2021:1577-1 SUSE-SU-2021:1654-1 SUSE-SU-2021:1523-1 SUSE-SU-2021:1765-1 SUSE-SU-2021:1755-1 SUSE-SU-2021:1599-1 SUSE-SU-2021:1761-1 SUSE-SU-2021:1655-1 SUSE-SU-2021:1598-1 SUSE-SU-2021:1762-1 SUSE-SU-2021:1474-1 SUSE-SU-2021:1493-1 SUSE-SU-2021:1557-1 SUSE-SU-2021:1806-1 SUSE-SU-2021:1785-1 SUSE-SU-2021:1466-1 SUSE-SU-2021:1491-1 SUSE-SU-2021:1577-1 SUSE-SU-2021:1654-1 SUSE-SU-2021:1523-1 SUSE-SU-2021:1765-1 SUSE-SU-2021:1755-1 SUSE-SU-2021:1574-1 SUSE-SU-2021:1599-1 SUSE-SU-2021:1761-1 SUSE-SU-2021:1636-1 SUSE-SU-2021:1655-1 SUSE-SU-2021:1598-1 SUSE-SU-2021:1762-1 SUSE-SU-2021:1474-1 SUSE-SU-2021:1493-1 SUSE-SU-2021:1500-1 SUSE-SU-2021:1792-1 SUSE-SU-2021:1573-1 * May 2021 (30) for SUSE-SU-2021:1182-1 SUSE-SU-2021:1430-1 SUSE-SU-2021:1168-1 SUSE-SU-2021:1408-1 SUSE-SU-2021:1409-1 SUSE-SU-2021:1182-1 SUSE-SU-2021:1028-1 SUSE-SU-2021:1166-1 SUSE-SU-2021:1430-1 SUSE-SU-2021:1113-1 SUSE-SU-2021:1444-1 SUSE-SU-2021:1280-1 SUSE-SU-2021:1243-1 SUSE-SU-2021:1168-1 SUSE-SU-2021:1408-1 SUSE-SU-2021:1094-1 SUSE-SU-2021:1029-1 SUSE-SU-2021:1238-1 SUSE-SU-2021:1409-1 SUSE-SU-2021:1006-1 SUSE-SU-2021:1161-1 SUSE-SU-2021:1108-1 SUSE-SU-2021:1282-1 SUSE-SU-2021:1179-1 SUSE-SU-2021:1153-1 SUSE-SU-2021:1445-1 SUSE-SU-2021:1244-1 SUSE-SU-2021:1292-1 SUSE-SU-2021:1103-1 SUSE-SU-2021:1455-1 - New regular patterns: * sle15sp3/oldlvm-000019878.py, sle15sp2/oldlvm-000019878.py: Physical Volume is using an old PV header (bsc#1179170) * sle15sp3/intelpstate_153-000020273.py: Frequency scaling driver intel_pstate not loading on some Intel Xeon Scalable processors (bsc#1185758) * sle15sp3/dasdkvm-000020295.py: DASD partitions not recognized on SUSE Linux Enterprise 15 Service Pack 3 KVM guest * sle15sp2/rpmnfs-000020364.py, sle15sp3/rpmnfs-000020364.py: Upgrading an RPM reports cpio chmod failed (bsc#1189394) * sle15sp2/nfstimeout_152-000019943.py: Delayed outgoing packets causing NFS timeouts (bsc#1183405) * sle15sp2/mpiopmem-000019884.py: Executing multipath -ll on Optane memory based pmem devices returns HDIO_GETGEO failed with 25 (bsc#1182917) * sle15sp2/ipmitool-000020250.py: hanging on getting cipher suites (bsc#1185684) * sle15sp2/intelpstate_152-000020273.py: Frequency scaling driver intel_pstate not loading on some Intel Xeon Scalable processors (bsc#1185758) * sle15sp2/ghostcat_152-000019606.py: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (bsc#1164692) * sle15sp2/fcoe-000019889.py: System with FCoE connected devices fails to boot randomly due to wicked ordering cycle problems (bsc#1176140) * sle15sp1/qlogic-000019630.py: System crashes when the system is rebooted with SR-IOV enabled QLogic cards (bsc#1155990) * sle15sp1/passthrough-000019579.py: Passthrough of Raid Controller to KVM guest results in NMI and unresponsiveness on host (bsc#1152800) * sle15sp1/nfsperf-151-000019615.py: Performance loss when writing large files over NFS (bsc#1163403) * sle15sp1/nfsipv6_151-000019618.py: Timeout when attempting NFS mount over IPv6 (bsc#1144162) * sle15sp1/nfit-000019688.py: dmesg shows NFIT related messages after updating the kernel (bsc#1159356) * sle15sp1/namespace-000019571.py: Activation of multiple namespaces simultaneously may lead to an activation failure (bsc#1157778) * sle15sp1/ipmi-000019602.py: IPMI driver can be unloaded when being accessed by user space (bsc#1154768) * sle15sp1/ghostcat_151-000019606.py: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (bsc#1164692) * sle15sp1/edac-000019537.py: A kernel message shows EDAC amd64 Error F0 not found, device 0x1460 broken BIOS (bsc#1131489) * sle15sp1/docore_151-000019881.py: System crash in do_coredump() when a process is restarted (bsc#1177753) * sle15sp0/mpiofindpaths-000019511.py: Using the find_multipaths yes option in multipath.conf (bsc#1138452) * sle15sp0/ghostcat_150-000019606.py: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (bsc#1164692) * sle15all/zypproxy-000020275.py: zypper commands return Error code HTTP response 0 * sle15all/vmcore-00002.pl: Detects the need for a kernel core analysis * sle15all/vmcore-00001.pl: Identifies kernel core dumps for review * sle15all/udevmac-000020260.py: systemd-udevd Could not generate persistent MAC address for br0 No such file or directory (bsc#1185357) * sle15all/systemd-current-failed-7017137.py: Check for failed systemd services * sle15all/sysdjobs-000020261.py: Troubleshooting systemd jobs that are hung or stuck * sle15all/softlock-000018705.py: soft lockup messages about * sle15all/slapd-000019711.py: slapd.service not enabled/failed after upgrade from SUSE Linux Enterprise 11 Service Pack 4 to SUSE Linux Enterprise 15 (bsc#1156353) * sle15all/sizingbtrfs-000018798.py: How to resize/extend a btrfs formatted root partition * sle15all/sdagentconfig-000020301.py: SCA Appliance configuration reports ERROR 2002 HY000 Cannot connect to MySQL server (bsc#1183464) * sle15all/scc-registered.py: Check system registration status * sle15all/scc-expired.py: Identify if SCC registrations have expired * sle15all/scatool-000020253.py: scatool fails to analyze supportconfigs with xz compression (bsc#1155181) * sle15all/scatool-000004685.py: scatool fails with traceback * sle15all/proxy-00003.pl: Checks for proxy environment variables * sle15all/postfix-000020356.py: Postfix fails to start with IPv6 disabled * sle15all/oomvsftpd-000020252.py: vsftpd and other processes terminated due to OOM scenario (bsc#1182905) * sle15all/nobarrier-000020240.py: XFS nobarrier option has been completely deprecated starting from SUSE Linux Enterprise 15 Service Pack 2 (bsc#1176375) * sle15all/mysqlperf-000020354.py: mysqld segfault when the system is under stress (bsc#1186792) * sle15all/lvmsnapshot-000019858.py: LVM snapshot changed state to Invalid and should be removed (bsc#1179170) * sle15all/lvm-00005.pl: Duplicate volume groups are usually a configuration issue * sle15all/lvm-00004.pl: LMV Check sum errors may indicate corrupted LVM metadata * sle15all/lvm-00003.pl: Physical volumes can be removed or damaged and appear missing. This pattern looks for missing physical volumes. * sle15all/iscsimnts-000019648.py: Proper mount options for iSCSI drives * sle15all/cronlimit-000020338.py: crontab - More than 1000 entries in crontab file, can't install (bsc#1187508) * sle15all/coredumpctl-000018634.py: How to obtain systemd service core dumps * sle15all/btrfsmaster-000018779.py: BTRFS Master TID * sle15all/blacklist-000019607.py: System exit to emergency shell at boot with multipath enabled * sle15all/bhc-scc.sh: Pattern removed (bsc#1184594, bsc#1186317) * sle15all/acpid-000019708.py: acpid.service failed to start after upgrade (bsc#1158890) * CVE-2020-0543: Special Register Buffer Data Sampling aka CrossTalk (bsc#1154824) + sle15sp2/crosstalk_152-000019643.py + sle15sp1/crosstalk_151-000019643.py * CVE-2020-0548, CVE-2020-0549: L1D data cache eviction and Vector Register sampling (bsc#1156353) + sle15sp2/ucodeintel_152-000019635.py + sle15sp1/ucodeintel_151-000019635.py + sle15sp0/ucodeintel_150-000019635.py - Renamed pattern files for filename standard * Renamed patterns/SLE/sle15all/scc-expired.py to patterns/SLE/sle15all/bhc-scc-expired.py * Renamed /SLE/sle15all/scc-registered.py to patterns/SLE/sle15all/bhc-scc-registered.py - Updated regular patterns: * sle15all/lvm-00003.pl: Physical volumes can be removed or damaged and appear missing. This pattern looks for missing physical volumes sca-patterns-sle12: - Version update from 1.0.2 to 1.5.1 to implement the conversion of SCA Tool to Python3 (jsc#SLE-25064, jsc#SLE-24335): * Convert SCA Tool from Python2 to Python3 (bsc#1191005, SLE-21579) * Added Video link to coredumpctl-000018634.py * Added video links to patterns (bsc#1190460): + bhc-scc-expired.py, bhc-scc-registered.py, bhc-diskused-00001.pl, bhc-memused-00001.pl * Fixed crosstalk message strings (bsc#1186312) * Fixed metadata tags for scc-registered.py * Removed outdated TID2 link in bhc-diskused-00001.pl (bsc#1190260) * Requires Core library 1.3.3 which contains Core.logFullFile function * Updated registration link in bhc-scc-registered.py * Updated renewal link in bhc-scc-expired.py * Updated scc-registered.py pattern to fix registration detection - New security announcement patterns: * Apr 2022 (53) for SUSE-SU-2022:1254-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1151-1 SUSE-SU-2022:1094-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1478-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1272-1 SUSE-SU-2022:1217-1 SUSE-SU-2022:1266-1 SUSE-SU-2022:1474-1 SUSE-SU-2022:1475-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1429-1 SUSE-SU-2022:1417-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1285-1 SUSE-SU-2022:1105-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1258-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1217-1 SUSE-SU-2022:1267-1 SUSE-SU-2022:1267-1 SUSE-SU-2022:1275-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1429-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1408-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1440-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1270-1 SUSE-SU-2022:1270-1 SUSE-SU-2022:1275-1 SUSE-SU-2022:1123-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1428-1 * Mar 2022 (127) for SUSE-SU-2022:1254-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1151-1 SUSE-SU-2022:1094-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1478-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1272-1 SUSE-SU-2022:1217-1 SUSE-SU-2022:1266-1 SUSE-SU-2022:1474-1 SUSE-SU-2022:1475-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1429-1 SUSE-SU-2022:1417-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1285-1 SUSE-SU-2022:1105-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1258-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1217-1 SUSE-SU-2022:1267-1 SUSE-SU-2022:1267-1 SUSE-SU-2022:1275-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1429-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1408-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1440-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1270-1 SUSE-SU-2022:1270-1 SUSE-SU-2022:1275-1 SUSE-SU-2022:1123-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1428-1 SUSE-SU-2022:0733-1 SUSE-SU-2022:1023-1 SUSE-SU-2022:0939-1 SUSE-SU-2022:0811-1 SUSE-SU-2022:0690-1 SUSE-SU-2022:0784-1 SUSE-SU-2022:0895-1 SUSE-SU-2022:0860-1 SUSE-SU-2022:0857-1 SUSE-SU-2022:0822-1 SUSE-SU-2022:0777-1 SUSE-SU-2022:0782-1 SUSE-SU-2022:0820-1 SUSE-SU-2022:0913-1 SUSE-SU-2022:1026-1 SUSE-SU-2022:1025-1 SUSE-SU-2022:1024-1 SUSE-SU-2022:0765-1 SUSE-SU-2022:0910-1 SUSE-SU-2022:0871-1 SUSE-SU-2022:0730-1 SUSE-SU-2022:0678-1 SUSE-SU-2022:0677-1 SUSE-SU-2022:0842-1 SUSE-SU-2022:0698-1 SUSE-SU-2022:0908-1 SUSE-SU-2022:0881-1 SUSE-SU-2022:0928-1 SUSE-SU-2022:0733-1 SUSE-SU-2022:1062-1 SUSE-SU-2022:0811-1 SUSE-SU-2022:0690-1 SUSE-SU-2022:0784-1 SUSE-SU-2022:0860-1 SUSE-SU-2022:0857-1 SUSE-SU-2022:0822-1 SUSE-SU-2022:0777-1 SUSE-SU-2022:0782-1 SUSE-SU-2022:0820-1 SUSE-SU-2022:1026-1 SUSE-SU-2022:1025-1 SUSE-SU-2022:1024-1 SUSE-SU-2022:0910-1 SUSE-SU-2022:0871-1 SUSE-SU-2022:0842-1 SUSE-SU-2022:0698-1 SUSE-SU-2022:0908-1 SUSE-SU-2022:0918-1 SUSE-SU-2022:0733-1 SUSE-SU-2022:1043-1 SUSE-SU-2022:0811-1 SUSE-SU-2022:0690-1 SUSE-SU-2022:0854-1 SUSE-SU-2022:0822-1 SUSE-SU-2022:0777-1 SUSE-SU-2022:0820-1 SUSE-SU-2022:1036-1 SUSE-SU-2022:1026-1 SUSE-SU-2022:1025-1 SUSE-SU-2022:1024-1 SUSE-SU-2022:1012-1 SUSE-SU-2022:1003-1 SUSE-SU-2022:0668-1 SUSE-SU-2022:0667-1 SUSE-SU-2022:0653-1 SUSE-SU-2022:0762-1 SUSE-SU-2022:0762-1 SUSE-SU-2022:0871-1 SUSE-SU-2022:0909-1 SUSE-SU-2022:0842-1 SUSE-SU-2022:0698-1 SUSE-SU-2022:0918-1 SUSE-SU-2022:1044-1 SUSE-SU-2022:0882-1 * Feb 2022 (169) for SUSE-SU-2022:1254-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1151-1 SUSE-SU-2022:1094-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1478-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1272-1 SUSE-SU-2022:1217-1 SUSE-SU-2022:1266-1 SUSE-SU-2022:1474-1 SUSE-SU-2022:1475-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1429-1 SUSE-SU-2022:1417-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1285-1 SUSE-SU-2022:1105-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1258-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1217-1 SUSE-SU-2022:1267-1 SUSE-SU-2022:1267-1 SUSE-SU-2022:1275-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1429-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1408-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1440-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1270-1 SUSE-SU-2022:1270-1 SUSE-SU-2022:1275-1 SUSE-SU-2022:1123-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1428-1 SUSE-SU-2022:0733-1 SUSE-SU-2022:1023-1 SUSE-SU-2022:0939-1 SUSE-SU-2022:0811-1 SUSE-SU-2022:0690-1 SUSE-SU-2022:0784-1 SUSE-SU-2022:0895-1 SUSE-SU-2022:0860-1 SUSE-SU-2022:0857-1 SUSE-SU-2022:0822-1 SUSE-SU-2022:0777-1 SUSE-SU-2022:0782-1 SUSE-SU-2022:0820-1 SUSE-SU-2022:0913-1 SUSE-SU-2022:1026-1 SUSE-SU-2022:1025-1 SUSE-SU-2022:1024-1 SUSE-SU-2022:0765-1 SUSE-SU-2022:0910-1 SUSE-SU-2022:0871-1 SUSE-SU-2022:0730-1 SUSE-SU-2022:0678-1 SUSE-SU-2022:0677-1 SUSE-SU-2022:0842-1 SUSE-SU-2022:0698-1 SUSE-SU-2022:0908-1 SUSE-SU-2022:0881-1 SUSE-SU-2022:0928-1 SUSE-SU-2022:0733-1 SUSE-SU-2022:1062-1 SUSE-SU-2022:0811-1 SUSE-SU-2022:0690-1 SUSE-SU-2022:0784-1 SUSE-SU-2022:0860-1 SUSE-SU-2022:0857-1 SUSE-SU-2022:0822-1 SUSE-SU-2022:0777-1 SUSE-SU-2022:0782-1 SUSE-SU-2022:0820-1 SUSE-SU-2022:1026-1 SUSE-SU-2022:1025-1 SUSE-SU-2022:1024-1 SUSE-SU-2022:0910-1 SUSE-SU-2022:0871-1 SUSE-SU-2022:0842-1 SUSE-SU-2022:0698-1 SUSE-SU-2022:0908-1 SUSE-SU-2022:0918-1 SUSE-SU-2022:0733-1 SUSE-SU-2022:1043-1 SUSE-SU-2022:0811-1 SUSE-SU-2022:0690-1 SUSE-SU-2022:0854-1 SUSE-SU-2022:0822-1 SUSE-SU-2022:0777-1 SUSE-SU-2022:0820-1 SUSE-SU-2022:1036-1 SUSE-SU-2022:1026-1 SUSE-SU-2022:1025-1 SUSE-SU-2022:1024-1 SUSE-SU-2022:1012-1 SUSE-SU-2022:1003-1 SUSE-SU-2022:0668-1 SUSE-SU-2022:0667-1 SUSE-SU-2022:0653-1 SUSE-SU-2022:0762-1 SUSE-SU-2022:0762-1 SUSE-SU-2022:0871-1 SUSE-SU-2022:0909-1 SUSE-SU-2022:0842-1 SUSE-SU-2022:0698-1 SUSE-SU-2022:0918-1 SUSE-SU-2022:1044-1 SUSE-SU-2022:0882-1 SUSE-SU-2022:0542-1 SUSE-SU-2022:0469-1 SUSE-SU-2022:0504-1 SUSE-SU-2022:0478-1 SUSE-SU-2022:0576-1 SUSE-SU-2022:0496-1 SUSE-SU-2022:0505-1 SUSE-SU-2022:0323-1 SUSE-SU-2022:0565-1 SUSE-SU-2022:0441-1 SUSE-SU-2022:0372-1 SUSE-SU-2022:0561-1 SUSE-SU-2022:0495-1 SUSE-SU-2022:0440-1 SUSE-SU-2022:0542-1 SUSE-SU-2022:0331-1 SUSE-SU-2022:0478-1 SUSE-SU-2022:0575-1 SUSE-SU-2022:0496-1 SUSE-SU-2022:0505-1 SUSE-SU-2022:0565-1 SUSE-SU-2022:0441-1 SUSE-SU-2022:0271-1 SUSE-SU-2022:0495-1 SUSE-SU-2022:0358-1 SUSE-SU-2022:0542-1 SUSE-SU-2022:0359-1 SUSE-SU-2022:0478-1 SUSE-SU-2022:0575-1 SUSE-SU-2022:0496-1 SUSE-SU-2022:0505-1 SUSE-SU-2022:0565-1 SUSE-SU-2022:0552-1 SUSE-SU-2022:0329-1 SUSE-SU-2022:0328-1 SUSE-SU-2022:0327-1 SUSE-SU-2022:0325-1 SUSE-SU-2022:0271-1 SUSE-SU-2022:0362-1 SUSE-SU-2022:0362-1 SUSE-SU-2022:0495-1 SUSE-SU-2022:0358-1 * Jan 2022 (218) for SUSE-SU-2022:1254-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1151-1 SUSE-SU-2022:1094-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1478-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1272-1 SUSE-SU-2022:1217-1 SUSE-SU-2022:1266-1 SUSE-SU-2022:1474-1 SUSE-SU-2022:1475-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1429-1 SUSE-SU-2022:1417-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1285-1 SUSE-SU-2022:1105-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1258-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1217-1 SUSE-SU-2022:1267-1 SUSE-SU-2022:1267-1 SUSE-SU-2022:1275-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1429-1 SUSE-SU-2022:1160-1 SUSE-SU-2022:1408-1 SUSE-SU-2022:1294-1 SUSE-SU-2022:1129-1 SUSE-SU-2022:1113-1 SUSE-SU-2022:1308-1 SUSE-SU-2022:1168-1 SUSE-SU-2022:1440-1 SUSE-SU-2022:1312-1 SUSE-SU-2022:1270-1 SUSE-SU-2022:1270-1 SUSE-SU-2022:1275-1 SUSE-SU-2022:1123-1 SUSE-SU-2022:1306-1 SUSE-SU-2022:1289-1 SUSE-SU-2022:1428-1 SUSE-SU-2022:0733-1 SUSE-SU-2022:1023-1 SUSE-SU-2022:0939-1 SUSE-SU-2022:0811-1 SUSE-SU-2022:0690-1 SUSE-SU-2022:0784-1 SUSE-SU-2022:0895-1 SUSE-SU-2022:0860-1 SUSE-SU-2022:0857-1 SUSE-SU-2022:0822-1 SUSE-SU-2022:0777-1 SUSE-SU-2022:0782-1 SUSE-SU-2022:0820-1 SUSE-SU-2022:0913-1 SUSE-SU-2022:1026-1 SUSE-SU-2022:1025-1 SUSE-SU-2022:1024-1 SUSE-SU-2022:0765-1 SUSE-SU-2022:0910-1 SUSE-SU-2022:0871-1 SUSE-SU-2022:0730-1 SUSE-SU-2022:0678-1 SUSE-SU-2022:0677-1 SUSE-SU-2022:0842-1 SUSE-SU-2022:0698-1 SUSE-SU-2022:0908-1 SUSE-SU-2022:0881-1 SUSE-SU-2022:0928-1 SUSE-SU-2022:0733-1 SUSE-SU-2022:1062-1 SUSE-SU-2022:0811-1 SUSE-SU-2022:0690-1 SUSE-SU-2022:0784-1 SUSE-SU-2022:0860-1 SUSE-SU-2022:0857-1 SUSE-SU-2022:0822-1 SUSE-SU-2022:0777-1 SUSE-SU-2022:0782-1 SUSE-SU-2022:0820-1 SUSE-SU-2022:1026-1 SUSE-SU-2022:1025-1 SUSE-SU-2022:1024-1 SUSE-SU-2022:0910-1 SUSE-SU-2022:0871-1 SUSE-SU-2022:0842-1 SUSE-SU-2022:0698-1 SUSE-SU-2022:0908-1 SUSE-SU-2022:0918-1 SUSE-SU-2022:0733-1 SUSE-SU-2022:1043-1 SUSE-SU-2022:0811-1 SUSE-SU-2022:0690-1 SUSE-SU-2022:0854-1 SUSE-SU-2022:0822-1 SUSE-SU-2022:0777-1 SUSE-SU-2022:0820-1 SUSE-SU-2022:1036-1 SUSE-SU-2022:1026-1 SUSE-SU-2022:1025-1 SUSE-SU-2022:1024-1 SUSE-SU-2022:1012-1 SUSE-SU-2022:1003-1 SUSE-SU-2022:0668-1 SUSE-SU-2022:0667-1 SUSE-SU-2022:0653-1 SUSE-SU-2022:0762-1 SUSE-SU-2022:0762-1 SUSE-SU-2022:0871-1 SUSE-SU-2022:0909-1 SUSE-SU-2022:0842-1 SUSE-SU-2022:0698-1 SUSE-SU-2022:0918-1 SUSE-SU-2022:1044-1 SUSE-SU-2022:0882-1 SUSE-SU-2022:0542-1 SUSE-SU-2022:0469-1 SUSE-SU-2022:0504-1 SUSE-SU-2022:0478-1 SUSE-SU-2022:0576-1 SUSE-SU-2022:0496-1 SUSE-SU-2022:0505-1 SUSE-SU-2022:0323-1 SUSE-SU-2022:0565-1 SUSE-SU-2022:0441-1 SUSE-SU-2022:0372-1 SUSE-SU-2022:0561-1 SUSE-SU-2022:0495-1 SUSE-SU-2022:0440-1 SUSE-SU-2022:0542-1 SUSE-SU-2022:0331-1 SUSE-SU-2022:0478-1 SUSE-SU-2022:0575-1 SUSE-SU-2022:0496-1 SUSE-SU-2022:0505-1 SUSE-SU-2022:0565-1 SUSE-SU-2022:0441-1 SUSE-SU-2022:0271-1 SUSE-SU-2022:0495-1 SUSE-SU-2022:0358-1 SUSE-SU-2022:0542-1 SUSE-SU-2022:0359-1 SUSE-SU-2022:0478-1 SUSE-SU-2022:0575-1 SUSE-SU-2022:0496-1 SUSE-SU-2022:0505-1 SUSE-SU-2022:0565-1 SUSE-SU-2022:0552-1 SUSE-SU-2022:0329-1 SUSE-SU-2022:0328-1 SUSE-SU-2022:0327-1 SUSE-SU-2022:0325-1 SUSE-SU-2022:0271-1 SUSE-SU-2022:0362-1 SUSE-SU-2022:0362-1 SUSE-SU-2022:0495-1 SUSE-SU-2022:0358-1 SUSE-SU-2022:0161-1 SUSE-SU-2022:0142-1 SUSE-SU-2022:0110-1 SUSE-SU-2022:0202-1 SUSE-SU-2022:0060-1 SUSE-SU-2022:0118-1 SUSE-SU-2022:0189-1 SUSE-SU-2022:0061-1 SUSE-SU-2022:0030-1 SUSE-SU-2022:0115-1 SUSE-SU-2022:0212-1 SUSE-SU-2022:0032-1 SUSE-SU-2022:0034-1 SUSE-SU-2022:0080-1 SUSE-SU-2022:0068-1 SUSE-SU-2022:0166-1 SUSE-SU-2022:0107-1 SUSE-SU-2022:0081-1 SUSE-SU-2022:0179-1 SUSE-SU-2022:0160-1 SUSE-SU-2022:0145-1 SUSE-SU-2022:0161-1 SUSE-SU-2022:0142-1 SUSE-SU-2022:0202-1 SUSE-SU-2022:0189-1 SUSE-SU-2022:0030-1 SUSE-SU-2022:0115-1 SUSE-SU-2022:0212-1 SUSE-SU-2022:0042-1 SUSE-SU-2022:0034-1 SUSE-SU-2022:0166-1 SUSE-SU-2022:0107-1 SUSE-SU-2022:0179-1 SUSE-SU-2022:0065-1 SUSE-SU-2022:0145-1 SUSE-SU-2022:0161-1 SUSE-SU-2022:0142-1 SUSE-SU-2022:0202-1 SUSE-SU-2022:0189-1 SUSE-SU-2022:0030-1 SUSE-SU-2022:0115-1 SUSE-SU-2022:0212-1 SUSE-SU-2022:0041-1 SUSE-SU-2022:0034-1 SUSE-SU-2022:0166-1 SUSE-SU-2022:0107-1 SUSE-SU-2022:0179-1 SUSE-SU-2022:0065-1 SUSE-SU-2022:0145-1 * Jun 2021 (80) for SUSE-SU-2021:2014-1 SUSE-SU-2021:1990-1 SUSE-SU-2021:1929-1 SUSE-SU-2021:1838-1 SUSE-SU-2021:1906-1 SUSE-SU-2021:1880-1 SUSE-SU-2021:1837-1 SUSE-SU-2021:1842-1 SUSE-SU-2021:2152-1 SUSE-SU-2021:2159-1 SUSE-SU-2021:1886-1 SUSE-SU-2021:1892-1 SUSE-SU-2021:1830-1 SUSE-SU-2021:2180-1 SUSE-SU-2021:2135-1 SUSE-SU-2021:1957-1 SUSE-SU-2021:2156-1 SUSE-SU-2021:2016-1 SUSE-SU-2021:1913-1 SUSE-SU-2021:1887-1 SUSE-SU-2021:1980-1 SUSE-SU-2021:1875-1 SUSE-SU-2021:1959-1 SUSE-SU-2021:1822-1 SUSE-SU-2021:2137-1 SUSE-SU-2021:1943-1 SUSE-SU-2021:2175-1 SUSE-SU-2021:2006-1 SUSE-SU-2021:1900-1 SUSE-SU-2021:2014-1 SUSE-SU-2021:1990-1 SUSE-SU-2021:1930-1 SUSE-SU-2021:1906-1 SUSE-SU-2021:1947-1 SUSE-SU-2021:1842-1 SUSE-SU-2021:2152-1 SUSE-SU-2021:2159-1 SUSE-SU-2021:1886-1 SUSE-SU-2021:1892-1 SUSE-SU-2021:1830-1 SUSE-SU-2021:2180-1 SUSE-SU-2021:2135-1 SUSE-SU-2021:2156-1 SUSE-SU-2021:1891-1 SUSE-SU-2021:1980-1 SUSE-SU-2021:1875-1 SUSE-SU-2021:1960-1 SUSE-SU-2021:1822-1 SUSE-SU-2021:1943-1 SUSE-SU-2021:1494-2 SUSE-SU-2021:2175-1 SUSE-SU-2021:2006-1 SUSE-SU-2021:1900-1 SUSE-SU-2021:2014-1 SUSE-SU-2021:1990-1 SUSE-SU-2021:1930-1 SUSE-SU-2021:1906-1 SUSE-SU-2021:1894-1 SUSE-SU-2021:1842-1 SUSE-SU-2021:2119-1 SUSE-SU-2021:2159-1 SUSE-SU-2021:1886-1 SUSE-SU-2021:1892-1 SUSE-SU-2021:1830-1 SUSE-SU-2021:2180-1 SUSE-SU-2021:2135-1 SUSE-SU-2021:2156-1 SUSE-SU-2021:2060-1 SUSE-SU-2021:2042-1 SUSE-SU-2021:2026-1 SUSE-SU-2021:1870-1 SUSE-SU-2021:1865-1 SUSE-SU-2021:1980-1 SUSE-SU-2021:1875-1 SUSE-SU-2021:1960-1 SUSE-SU-2021:1822-1 SUSE-SU-2021:1943-1 SUSE-SU-2021:1494-2 SUSE-SU-2021:2175-1 SUSE-SU-2021:2006-1 * May 2021 (39) for SUSE-SU-2021:1580-1 SUSE-SU-2021:1621-1 SUSE-SU-2021:1490-1 SUSE-SU-2021:1783-1 SUSE-SU-2021:1782-1 SUSE-SU-2021:1576-1 SUSE-SU-2021:1658-1 SUSE-SU-2021:1524-1 SUSE-SU-2021:1766-1 SUSE-SU-2021:1595-1 SUSE-SU-2021:1572-1 SUSE-SU-2021:1760-1 SUSE-SU-2021:1646-1 SUSE-SU-2021:1813-1 SUSE-SU-2021:1645-1 SUSE-SU-2021:1763-1 SUSE-SU-2021:1468-1 SUSE-SU-2021:1494-1 SUSE-SU-2021:1648-1 SUSE-SU-2021:1492-1 SUSE-SU-2021:1621-1 SUSE-SU-2021:1658-1 SUSE-SU-2021:1596-1 SUSE-SU-2021:1646-1 SUSE-SU-2021:1813-1 SUSE-SU-2021:1645-1 SUSE-SU-2021:1786-1 SUSE-SU-2021:1468-1 SUSE-SU-2021:1492-1 SUSE-SU-2021:1621-1 SUSE-SU-2021:1658-1 SUSE-SU-2021:1623-1 SUSE-SU-2021:1646-1 SUSE-SU-2021:1813-1 SUSE-SU-2021:1645-1 SUSE-SU-2021:1469-1 SUSE-SU-2021:1621-1 SUSE-SU-2021:1617-1 SUSE-SU-2021:1469-1 * Apr 2021 (69) for SUSE-SU-2021:1181-1 SUSE-SU-2021:1023-1 SUSE-SU-2021:1274-1 SUSE-SU-2021:1438-1 SUSE-SU-2021:1242-1 SUSE-SU-2021:1401-1 SUSE-SU-2021:1399-1 SUSE-SU-2021:1396-1 SUSE-SU-2021:1325-1 SUSE-SU-2021:1152-1 SUSE-SU-2021:1125-1 SUSE-SU-2021:1248-1 SUSE-SU-2021:1210-1 SUSE-SU-2021:1175-1 SUSE-SU-2021:1435-1 SUSE-SU-2021:1314-1 SUSE-SU-2021:1277-1 SUSE-SU-2021:1030-1 SUSE-SU-2021:1165-1 SUSE-SU-2021:1111-1 SUSE-SU-2021:1453-1 SUSE-SU-2021:1174-1 SUSE-SU-2021:1159-1 SUSE-SU-2021:1315-1 SUSE-SU-2021:1180-1 SUSE-SU-2021:1251-1 SUSE-SU-2021:1273-1 SUSE-SU-2021:1241-1 SUSE-SU-2021:1429-1 SUSE-SU-2021:1401-1 SUSE-SU-2021:1399-1 SUSE-SU-2021:1325-1 SUSE-SU-2021:1152-1 SUSE-SU-2021:1435-1 SUSE-SU-2021:1165-1 SUSE-SU-2021:1111-1 SUSE-SU-2021:1453-1 SUSE-SU-2021:1189-1 SUSE-SU-2021:1187-1 SUSE-SU-2021:1252-1 SUSE-SU-2021:1431-1 SUSE-SU-2021:1273-1 SUSE-SU-2021:1240-1 SUSE-SU-2021:1401-1 SUSE-SU-2021:1399-1 SUSE-SU-2021:1373-1 SUSE-SU-2021:1341-1 SUSE-SU-2021:1325-1 SUSE-SU-2021:1152-1 SUSE-SU-2021:1075-1 SUSE-SU-2021:1074-1 SUSE-SU-2021:1435-1 SUSE-SU-2021:1111-1 SUSE-SU-2021:1453-1 SUSE-SU-2021:1189-1 SUSE-SU-2021:1187-1 SUSE-SU-2021:1431-1 SUSE-SU-2021:1267-1 SUSE-SU-2021:1442-1 SUSE-SU-2021:1439-1 SUSE-SU-2021:1305-1 SUSE-SU-2021:1401-1 SUSE-SU-2021:1399-1 SUSE-SU-2021:1325-1 SUSE-SU-2021:1152-1 SUSE-SU-2021:1148-1 SUSE-SU-2021:1145-1 SUSE-SU-2021:1453-1 SUSE-SU-2021:1189-1 * Mar 2021 New Security Announcement Patterns (79) for SUSE-SU-2021:0990-1 SUSE-SU-2021:0720-1 SUSE-SU-2021:0929-1 SUSE-SU-2021:0988-1 SUSE-SU-2021:0975-1 SUSE-SU-2021:0776-1 SUSE-SU-2021:0794-1 SUSE-SU-2021:0886-1 SUSE-SU-2021:0887-1 SUSE-SU-2021:0675-1 SUSE-SU-2021:0987-1 SUSE-SU-2021:0954-1 SUSE-SU-2021:0752-1 SUSE-SU-2021:0725-1 SUSE-SU-2021:0998-1 SUSE-SU-2021:0693-1 SUSE-SU-2021:0663-1 SUSE-SU-2021:0932-1 SUSE-SU-2021:0999-1 SUSE-SU-2021:0667-1 SUSE-SU-2021:0742-1 SUSE-SU-2021:0739-1 SUSE-SU-2021:0681-1 SUSE-SU-2021:0801-1 SUSE-SU-2021:0756-1 SUSE-SU-2021:0713-1 SUSE-SU-2021:0779-1 SUSE-SU-2021:0745-1 SUSE-SU-2021:0929-1 SUSE-SU-2021:0988-1 SUSE-SU-2021:0794-1 SUSE-SU-2021:0675-1 SUSE-SU-2020:2173-2 SUSE-SU-2021:0954-1 SUSE-SU-2021:0752-1 SUSE-SU-2021:0725-1 SUSE-SU-2021:0693-1 SUSE-SU-2021:0663-1 SUSE-SU-2021:0932-1 SUSE-SU-2021:0999-1 SUSE-SU-2021:0667-1 SUSE-SU-2021:0736-1 SUSE-SU-2021:0681-1 SUSE-SU-2021:0801-1 SUSE-SU-2021:0756-1 SUSE-SU-2021:0745-1 SUSE-SU-2021:0929-1 SUSE-SU-2021:0794-1 SUSE-SU-2021:0675-1 SUSE-SU-2020:2173-2 SUSE-SU-2021:0939-1 SUSE-SU-2021:0693-1 SUSE-SU-2021:0932-1 SUSE-SU-2021:0999-1 SUSE-SU-2021:0667-1 SUSE-SU-2021:0870-1 SUSE-SU-2021:0835-1 SUSE-SU-2021:0743-1 SUSE-SU-2021:0682-1 SUSE-SU-2021:0801-1 SUSE-SU-2021:0756-1 SUSE-SU-2021:0745-1 SUSE-SU-2021:0929-1 SUSE-SU-2021:0928-1 SUSE-SU-2021:0794-1 SUSE-SU-2021:0675-1 SUSE-SU-2020:2173-2 SUSE-SU-2021:0939-1 SUSE-SU-2021:0693-1 SUSE-SU-2021:0932-1 SUSE-SU-2021:0999-1 SUSE-SU-2021:0999-1 SUSE-SU-2021:0667-1 SUSE-SU-2021:0870-1 SUSE-SU-2021:0835-1 SUSE-SU-2021:0744-1 SUSE-SU-2021:0679-1 SUSE-SU-2021:0801-1 SUSE-SU-2021:0756-1 - New regular patterns: * sle12sp5/vmtools-000004682.py: Extensive logging in vmware-vmsvc-root.log with open-vm-tools (bsc#1162119) * sle12sp5/tailf-000019885.py: Aborting tailf causes bash session to be corrupted (bsc#1177369) * sle12sp5/systemd-current-failed-7017137.py: Check for failed systemd services * sle12sp5/systemd_SUSE-SU-2021_2405-1_12.5.py: Security fixes for SUSE Linux Enterprise 12 SP5 * sle12sp5/sdagentconfig-000020301.py: SCA Appliance configuration reports ERROR 2002 HY000 Cannot connect to MySQL server (bsc#1183464) * sle12sp5/qemu_SUSE-SU-2021_2448-1_12.5.py: Security fixes for SUSE Linux Enterprise 12 Service Pack 5 * sle12sp5/python-py_SUSE-SU-2021_2236-1_12.5.py: Security fixes for SUSE Linux Enterprise 12 Service Pack 5 * sle12sp5/permissions_SUSE-SU-2021_2280-1_12.5.py: Security fixes for SUSE Linux Enterprise 12 Service Pack 5 * sle12sp5/nobarrier-000020240.py: XFS nobarrier option has been completely deprecated starting from SUSE Linux Enterprise 15 Service Pack 2 (bsc#1176375) * sle12sp5/nfstimeout_125-000019943.py: Delayed outgoing packets causing NFS timeouts (bsc#1183405) * sle12sp5/nfsperf-125-000019615.py: Performance loss when writing large files over NFS (bsc#1163403) * sle12sp5/nfsipv6_125-000019618.py: Timeout when attempting NFS mount over IPv6 (bsc#1144162) * sle12sp5/lscpu-000019784-12.py: lscpu segfaults on IBM Power8 - Assertion failed (bsc#1175623) * sle12sp5/linuxptp_SUSE-SU-2021_2545-1_12.5.py: Security fixes for SUSE Linux Enterprise 12 SP5 * sle12sp5/kgraft-patch_SUSE-SU-2021_2462-1_12.5.py: Security fixes for SUSE Linux Kernel Live Patch 12 SP5 * sle12sp5/kgraft-patch_SUSE-SU-2021_2389-1_12.5.py: Security fixes for SUSE Linux Kernel Live Patch 12 SP5 * sle12sp5/kgraft-patch_SUSE-SU-2021_2324-1_12.5.py: Security fixes for SUSE Linux Kernel Live Patch 12 SP5 * sle12sp5/kernel_SUSE-SU-2021_2416-1_12.5.py: Security fixes for SUSE Linux Enterprise 12 SP5 * sle12sp5/kernel_SUSE-SU-2021_2407-1_12.5.py: Security fixes for SUSE Linux Enterprise 12 SP5 * sle12sp5/kernel_SUSE-SU-2021_2321-1_12.5.py: Security fixes for SUSE Linux Enterprise 12 SP5 * sle12sp5/intelpstate_125-000020273.py: Frequency scaling driver intel_pstate not loading on some Intel Xeon Scalable processors (bsc#1185758) * sle12sp5/glibc_SUSE-SU-2021_2480-1_12.5.py: Security fixes for SUSE Linux Enterprise 12 SP5 * sle12sp5/ghostcat_125-000019606.py: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (bsc#1164692) * sle12sp5/docore_125-000019881.py: System crash in do_coredump() when a process is restarted (bsc#1182194) * sle12sp5/dbus-1_SUSE-SU-2021_2424-1_12.5.py: Security fixes for SUSE Linux Enterprise 12 SP5 * sle12sp5/cronlimit-000020338.py: crontab - More than 1000 entries in crontab file, can't install (bsc#1187508) * sle12sp5/btrfscrash-125-000019638.py: System crash during a BTRFS maintenance task (bsc#1163508) * sle12sp5/btrfscrash-125-000019638.py: System crash during a BTRFS maintenance task (bsc#1163508) * sle12sp4/vmtools-000004682.py: Extensive logging in vmware-vmsvc-root.log with open-vm-tools (bsc#1162119) * sle12sp4/tcpdumpcore-000019666.py: Running tcpdump on a SUSE Linux Enterprise 12 Service Pack 4 System with Kernel 4.12.14-95.48-default may crash the system (bsc#1176579) * sle12sp4/tailf-000019885.py: Aborting tailf causes bash session to be corrupted (bsc#1177369) * sle12sp4/systemd-current-failed-7017137.py: Check for failed systemd services * sle12sp4/systemd_SUSE-SU-2021_2423-1_12.4.ltss.py: Security fixes for SUSE Linux Enterprise 12 SP4 LTSS * sle12sp4/sdagentconfig-000020301.py: SCA Appliance configuration reports ERROR 2002 HY000 Cannot connect to MySQL server (bsc#1183464) * sle12sp4/plymouth-000019595.py: plymouth hang - login to console not possible * sle12sp4/nobarrier-000020240.py: XFS nobarrier option has been completely deprecated starting from SUSE Linux Enterprise 15 Service Pack 2 (bsc#1176375) * sle12sp4/nfsperf-124-000019615.py: Performance loss when writing large files over NFS (bsc#1163403) * sle12sp4/mpiofindpaths-000019511.py: Using the find_multipaths yes option in multipath.conf (bsc#1138452) * sle12sp4/linuxptp_SUSE-SU-2021_2443-1_12.4.ltss.py: Security fixes for SUSE Linux Enterprise 12 SP4 LTSS * sle12sp4/kgraft-patch_SUSE-SU-2021_2546-1_12.4.ltss.py: Security fixes for SUSE Linux Kernel Live Patch 12 SP4 LTSS * sle12sp4/kgraft-patch_SUSE-SU-2021_2389-1_12.4.ltss.py: Security fixes for SUSE Linux Kernel Live Patch 12 SP4 LTSS * sle12sp4/kernel_SUSE-SU-2021_2422-1_12.4.ltss.py: Security fixes for SUSE Linux Enterprise 12 SP4 LTSS * sle12sp4/ghostcat_124-000019606.py: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (bsc#1164692) * sle12sp4/docore_124-000019881.py: System crash in do_coredump() when a process is restarted (bsc#1182194) * sle12sp4/curl_SUSE-SU-2021_2425-1_12.4.ltss.py: Security fixes for SUSE Linux Enterprise 12 SP4 LTSS * sle12sp4/cronlimit-000020338.py: crontab - More than 1000 entries in crontab file, can't install (bsc#1187508) * sle12sp4/btrfscrash-124-000019638.py: System crash during a BTRFS maintenance task (bsc#1163508) * sle12sp4/btrfscrash-124-000019638.py: System crash during a BTRFS maintenance task (bsc#1163508) * sle12sp3/systemd-current-failed-7017137.py: Check for failed systemd services * sle12sp3/systemd_SUSE-SU-2021_2423-1_12.3.ltss.py: Security fixes for SUSE Linux Enterprise 12 SP3 LTSS * sle12sp3/mpiofindpaths-000019511.py: Using the find_multipaths yes option in multipath.conf (bsc#1138452) * sle12sp3/linuxptp_SUSE-SU-2021_2443-1_12.3.ltss.py: Security fixes for SUSE Linux Enterprise 12 SP3 LTSS * sle12sp3/kgraft-patch_SUSE-SU-2021_2563-1_12.3.ltss.py: Security fixes for SUSE Linux Kernel Live Patch 12 SP3 LTSS * sle12sp3/kgraft-patch_SUSE-SU-2021_2538-1_12.3.ltss.py: Security fixes for SUSE Linux Kernel Live Patch 12 SP3 LTSS * sle12sp3/kgraft-patch_SUSE-SU-2021_2451-1_12.3.ltss.py: Security fixes for SUSE Linux Kernel Live Patch 12 SP3 LTSS * sle12sp3/kgraft-patch_SUSE-SU-2021_2433-1_12.3.ltss.py: Security fixes for SUSE Linux Kernel Live Patch 12 SP3 LTSS * sle12sp3/kgraft-patch_SUSE-SU-2021_2389-1_12.3.ltss.py: Security fixes for SUSE Linux Kernel Live Patch 12 SP3 LTSS * sle12sp3/ghostcat_123-000019606.py: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (bsc#1164692) * sle12sp2/systemd-current-failed-7017137.py: Check for failed systemd services * sle12sp2/ghostcat_122-000019606.py: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (bsc#1164692) * sle12sp1/systemd-current-failed-7017137.py: Check for failed systemd services * sle12sp1/ghostcat_121-000019606.py: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (bsc#1164692) * sle12sp0/systemd-current-failed-7017137.py: Check for failed systemd services * sle12all/zypproxy-000020275.py: zypper commands return Error code HTTP response 0 * sle12all/zerologon-000019713.py: Zerologon aka CVE-2020-1472 (bsc#1176579) * sle12all/sysdjobs-000020261.py: Troubleshooting systemd jobs that are hung or stuck * sle12all/softlock-000018705.py: soft lockup messages about * sle12all/sizingbtrfs-000018798.py: How to resize/extend a btrfs formatted root partition * sle12all/scatool-000020253.py: scatool fails to analyze supportconfigs with xz compression (bsc#1186316) * sle12all/postfix-000020356.py: Postfix fails to start with IPv6 disabled * sle12all/lvmsnapshot-000019858.py: LVM snapshot changed state to Invalid and should be removed * sle12all/lvm-volume-list-7016683.py: Fixed execution error * sle12all/iscsimnts-000019648.py: Proper mount options for iSCSI drives * sle12all/coredumpctl-000018634.py: How to obtain systemd service core dumps * sle12all/btrfsmaster-000018779.py: BTRFS Master TID * sle12all/btrfscron-000019583.py: After upgrading BTRFS cron jobs are not working anymore (bsc#1159891) * sle12all/blacklist-000019607.py: System exit to emergency shell at boot with multipath enabled * CVE-2020-12351, CVE-2020-12352, CVE-2020-24490: BleedingTooth + sle12sp5/bleedingtooth_125-000019735.py + sle12sp4/bleedingtooth_124-000019735.py + sle12sp3/bleedingtooth_123-000019735.py + sle12sp2/bleedingtooth_122-000019735.py * CVE-2020-0548, CVE-2020-0549: L1D data cache eviction and Vector Register sampling (bsc#1156353) + sle12sp5/ucodeintel_125-000019635.py + sle12sp4/ucodeintel_124-000019635.py + sle12sp3/ucodeintel_123-000019635.py + sle12sp2/ucodeintel_122-000019635.py * CVE-2020-0543: Special Register Buffer Data Sampling aka CrossTalk (bsc#1154824) + sle12sp5/crosstalk_125-000019643.py + sle12sp4/crosstalk_124-000019643.py + sle12sp3/crosstalk_123-000019643.py + sle12sp2/crosstalk_122-000019643.py - Updated patterns: * sle12all/scc-expired.py: Identify if SCC registrations have expired * sle12all/lvm-00003.pl: Physical volumes can be removed or damaged and appear missing. This pattern looks for missing physical volumes * sle12all/lvm-00004.pl: LMV Check sum errors may indicate corrupted LVM metadata * sle12all/lvm-00005.pl: Duplicate volume groups are usually a configuration issue - Renamed patterns for file standard: * Renamed patterns/SLE/sle12all/scc-expired.py to patterns/SLE/sle12all/bhc-scc-expired.py * Renamed patterns/SLE/sle12all/scc-registered.py to patterns/SLE/sle12all/bhc-scc-registered.py - Deleted regular patterns (1) * sle12all/systemd-current-failed-7017137.py: Moved to service packs with fixes (bsc#1187983) * sle12all/bhc-scc.sh: Pattern removed (bsc#1184594) * sle12all/pdc-00001.pl: Pattern removed OES Dependent * sle12all/pdc-00002.pl: Pattern removed OES Dependent * sle12all/lvm-00001.pl: Pattern removed * sle12all/lvm-00002.pl: Pattern removed sca-patterns-sle11: - Version update from 1.3.1 to 1.5.1 to implement the conversion of SCA Tool to Python3 (jsc#SLE-25064, jsc#SLE-24335): * Convert SCA Tool from Python2 to Python3 (bsc#1191005, SLE-21579) * Removed OES dependent patterns (bsc#1196873) - New security announcement patterns: * Apr 2022 (5) for SUSE-SU-2022:14938-1 SUSE-SU-2022:14943-1 SUSE-SU-2022:14936-1 SUSE-SU-2022:14941-1 SUSE-SU-2022:14951-1 * Mar 2022 (19) for SUSE-SU-2022:14938-1 SUSE-SU-2022:14943-1 SUSE-SU-2022:14936-1 SUSE-SU-2022:14941-1 SUSE-SU-2022:14951-1 SUSE-SU-2022:14910-1 SUSE-SU-2022:14929-1 SUSE-SU-2022:14908-1 SUSE-SU-2022:14914-1 SUSE-SU-2022:14915-1 SUSE-SU-2022:14906-1 SUSE-SU-2022:14904-1 SUSE-SU-2022:14909-1 SUSE-SU-2022:14905-1 SUSE-SU-2022:14927-1 SUSE-SU-2022:14923-1 SUSE-SU-2022:14934-1 SUSE-SU-2022:14903-1 SUSE-SU-2022:14924-1 * Feb 2022 (27) for SUSE-SU-2022:14938-1 SUSE-SU-2022:14943-1 SUSE-SU-2022:14936-1 SUSE-SU-2022:14941-1 SUSE-SU-2022:14951-1 SUSE-SU-2022:14910-1 SUSE-SU-2022:14929-1 SUSE-SU-2022:14908-1 SUSE-SU-2022:14914-1 SUSE-SU-2022:14915-1 SUSE-SU-2022:14906-1 SUSE-SU-2022:14904-1 SUSE-SU-2022:14909-1 SUSE-SU-2022:14905-1 SUSE-SU-2022:14927-1 SUSE-SU-2022:14923-1 SUSE-SU-2022:14934-1 SUSE-SU-2022:14903-1 SUSE-SU-2022:14924-1 SUSE-SU-2022:14889-1 SUSE-SU-2022:14886-1 SUSE-SU-2022:14888-1 SUSE-SU-2022:14890-1 SUSE-SU-2022:14887-1 SUSE-SU-2022:14896-1 SUSE-SU-2022:14884-1 SUSE-SU-2022:14894-1 * Jan 2022 (34) for SUSE-SU-2022:14938-1 SUSE-SU-2022:14943-1 SUSE-SU-2022:14936-1 SUSE-SU-2022:14941-1 SUSE-SU-2022:14951-1 SUSE-SU-2022:14910-1 SUSE-SU-2022:14929-1 SUSE-SU-2022:14908-1 SUSE-SU-2022:14914-1 SUSE-SU-2022:14915-1 SUSE-SU-2022:14906-1 SUSE-SU-2022:14904-1 SUSE-SU-2022:14909-1 SUSE-SU-2022:14905-1 SUSE-SU-2022:14927-1 SUSE-SU-2022:14923-1 SUSE-SU-2022:14934-1 SUSE-SU-2022:14903-1 SUSE-SU-2022:14924-1 SUSE-SU-2022:14889-1 SUSE-SU-2022:14886-1 SUSE-SU-2022:14888-1 SUSE-SU-2022:14890-1 SUSE-SU-2022:14887-1 SUSE-SU-2022:14896-1 SUSE-SU-2022:14884-1 SUSE-SU-2022:14894-1 SUSE-SU-2022:14880-1 SUSE-SU-2022:14881-1 SUSE-SU-2022:14872-1 SUSE-SU-2022:14875-1 SUSE-SU-2022:14878-1 SUSE-SU-2022:14882-1 SUSE-SU-2022:14879-1 * Jul 2021 (5) for SUSE-SU-2021:14769-1 SUSE-SU-2021:14771-1 SUSE-SU-2021:14766-1 SUSE-SU-2021:14764-1 SUSE-SU-2021:14761-1 * Jun 2021 (12) for SUSE-SU-2021:14747-1 SUSE-SU-2021:14748-1 SUSE-SU-2021:14744-1 SUSE-SU-2021:14757-1 SUSE-SU-2021:14743-1 SUSE-SU-2021:14758-1 SUSE-SU-2021:14751-1 SUSE-SU-2021:14750-1 SUSE-SU-2021:14740-1 SUSE-SU-2021:14760-1 SUSE-SU-2021:14759-1 SUSE-SU-2021:14749-1 * May 2021 (5) for SUSE-SU-2021:14729-1 SUSE-SU-2021:14724-1 SUSE-SU-2021:14738-1 SUSE-SU-2021:14728-1 SUSE-SU-2021:14714-1 * Apr 2021 (10) for SUSE-SU-2021:14690-1 SUSE-SU-2021:14702-1 SUSE-SU-2021:14705-1 SUSE-SU-2021:14709-1 SUSE-SU-2021:14700-1 SUSE-SU-2021:14708-1 SUSE-SU-2021:14684-1 SUSE-SU-2021:14704-1 SUSE-SU-2021:14712-1 SUSE-SU-2021:14692-1 - New regular patterns: * sle11sp4/ghostcat_114-000019606.py: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (bsc#1164692) * sle11sp3/ghostcat_113-000019606.py: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (bsc#1164692) * sle11all/softlock-000018705.py: soft lockup messages about * sle11all/sizingbtrfs-000018798.py: How to resize/extend a btrfs formatted root partition * sle11all/btrfsmaster-000018779.py: BTRFS Master TID * CVE-2020-0543: sle11sp4/crosstalk_114-000019643.py: Special Register Buffer Data Sampling aka CrossTalk (bsc#1154824) - Deleted regular patterns: * sle11all/bhc-scc.sh: Pattern removed (bsc#1184594) sca-patterns-base-1.5.0-150300.10.3.1.noarch.rpm sca-patterns-base-1.5.0-150300.10.3.1.src.rpm sca-patterns-hae-1.5.1-150300.10.3.1.noarch.rpm sca-patterns-hae-1.5.1-150300.10.3.1.src.rpm sca-patterns-sle11-1.5.1-150300.18.3.1.noarch.rpm sca-patterns-sle11-1.5.1-150300.18.3.1.src.rpm sca-patterns-sle12-1.5.1-150300.3.3.1.noarch.rpm sca-patterns-sle12-1.5.1-150300.3.3.1.src.rpm sca-patterns-sle15-1.5.1-150300.14.3.1.noarch.rpm sca-patterns-sle15-1.5.1-150300.14.3.1.src.rpm sca-patterns-suma-1.5.0-150300.9.3.1.noarch.rpm sca-patterns-suma-1.5.0-150300.9.3.1.src.rpm sca-server-report-1.5.1-150300.11.3.1.noarch.rpm sca-server-report-1.5.1-150300.11.3.1.src.rpm openSUSE-SLE-15.3-2022-4411 important SUSE Updates openSUSE-SLE 15.3 This update for tiff fixes the following issues: - CVE-2022-3570: Fixed heap buffer overflows in tiffcrop.c (bsc#1205422). - CVE-2022-3598: Fixed out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c [bsc#1204642] libtiff-devel-32bit-4.0.9-150000.45.22.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.22.1.x86_64.rpm libtiff5-32bit-4.0.9-150000.45.22.1.x86_64.rpm libtiff5-4.0.9-150000.45.22.1.x86_64.rpm tiff-4.0.9-150000.45.22.1.src.rpm tiff-4.0.9-150000.45.22.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.22.1.s390x.rpm libtiff5-4.0.9-150000.45.22.1.s390x.rpm tiff-4.0.9-150000.45.22.1.s390x.rpm libtiff-devel-4.0.9-150000.45.22.1.ppc64le.rpm libtiff5-4.0.9-150000.45.22.1.ppc64le.rpm tiff-4.0.9-150000.45.22.1.ppc64le.rpm libtiff-devel-4.0.9-150000.45.22.1.aarch64.rpm libtiff5-4.0.9-150000.45.22.1.aarch64.rpm tiff-4.0.9-150000.45.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-4309 moderate SUSE Updates openSUSE-SLE 15.3 This update for busybox fixes the following issues: - CVE-2022-30065: Fixed use-after-free in the AWK applet (bsc#1199744). busybox-1.35.0-150000.4.17.1.src.rpm busybox-1.35.0-150000.4.17.1.x86_64.rpm busybox-static-1.35.0-150000.4.17.1.x86_64.rpm busybox-1.35.0-150000.4.17.1.s390x.rpm busybox-static-1.35.0-150000.4.17.1.s390x.rpm busybox-1.35.0-150000.4.17.1.ppc64le.rpm busybox-static-1.35.0-150000.4.17.1.ppc64le.rpm busybox-1.35.0-150000.4.17.1.aarch64.rpm busybox-static-1.35.0-150000.4.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-4378 moderate SUSE Updates openSUSE-SLE 15.3 This update for rabbitmq-server fixes the following issues: - CVE-2022-31008: Fixed predictable secret seed in URI encryption (bsc#1205267). erlang-rabbitmq-client-3.8.11-150300.3.11.1.x86_64.rpm rabbitmq-server-3.8.11-150300.3.11.1.src.rpm rabbitmq-server-3.8.11-150300.3.11.1.x86_64.rpm rabbitmq-server-plugins-3.8.11-150300.3.11.1.x86_64.rpm erlang-rabbitmq-client-3.8.11-150300.3.11.1.s390x.rpm rabbitmq-server-3.8.11-150300.3.11.1.s390x.rpm rabbitmq-server-plugins-3.8.11-150300.3.11.1.s390x.rpm erlang-rabbitmq-client-3.8.11-150300.3.11.1.ppc64le.rpm rabbitmq-server-3.8.11-150300.3.11.1.ppc64le.rpm rabbitmq-server-plugins-3.8.11-150300.3.11.1.ppc64le.rpm erlang-rabbitmq-client-3.8.11-150300.3.11.1.aarch64.rpm rabbitmq-server-3.8.11-150300.3.11.1.aarch64.rpm rabbitmq-server-plugins-3.8.11-150300.3.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-4447 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: postgresql13 was updated to 13.9: (bsc#1205300) * https://www.postgresql.org/about/news/2543/ * https://www.postgresql.org/docs/13/release-13-9.html postgresql13-13.9-150200.5.34.1.src.rpm postgresql13-13.9-150200.5.34.1.x86_64.rpm postgresql13-contrib-13.9-150200.5.34.1.x86_64.rpm postgresql13-devel-13.9-150200.5.34.1.x86_64.rpm postgresql13-docs-13.9-150200.5.34.1.noarch.rpm postgresql13-llvmjit-13.9-150200.5.34.1.x86_64.rpm postgresql13-plperl-13.9-150200.5.34.1.x86_64.rpm postgresql13-plpython-13.9-150200.5.34.1.x86_64.rpm postgresql13-pltcl-13.9-150200.5.34.1.x86_64.rpm postgresql13-server-13.9-150200.5.34.1.x86_64.rpm postgresql13-server-devel-13.9-150200.5.34.1.x86_64.rpm postgresql13-test-13.9-150200.5.34.1.x86_64.rpm postgresql13-13.9-150200.5.34.1.s390x.rpm postgresql13-contrib-13.9-150200.5.34.1.s390x.rpm postgresql13-devel-13.9-150200.5.34.1.s390x.rpm postgresql13-llvmjit-13.9-150200.5.34.1.s390x.rpm postgresql13-plperl-13.9-150200.5.34.1.s390x.rpm postgresql13-plpython-13.9-150200.5.34.1.s390x.rpm postgresql13-pltcl-13.9-150200.5.34.1.s390x.rpm postgresql13-server-13.9-150200.5.34.1.s390x.rpm postgresql13-server-devel-13.9-150200.5.34.1.s390x.rpm postgresql13-test-13.9-150200.5.34.1.s390x.rpm postgresql13-13.9-150200.5.34.1.ppc64le.rpm postgresql13-contrib-13.9-150200.5.34.1.ppc64le.rpm postgresql13-devel-13.9-150200.5.34.1.ppc64le.rpm postgresql13-llvmjit-13.9-150200.5.34.1.ppc64le.rpm postgresql13-plperl-13.9-150200.5.34.1.ppc64le.rpm postgresql13-plpython-13.9-150200.5.34.1.ppc64le.rpm postgresql13-pltcl-13.9-150200.5.34.1.ppc64le.rpm postgresql13-server-13.9-150200.5.34.1.ppc64le.rpm postgresql13-server-devel-13.9-150200.5.34.1.ppc64le.rpm postgresql13-test-13.9-150200.5.34.1.ppc64le.rpm postgresql13-13.9-150200.5.34.1.aarch64.rpm postgresql13-contrib-13.9-150200.5.34.1.aarch64.rpm postgresql13-devel-13.9-150200.5.34.1.aarch64.rpm postgresql13-llvmjit-13.9-150200.5.34.1.aarch64.rpm postgresql13-plperl-13.9-150200.5.34.1.aarch64.rpm postgresql13-plpython-13.9-150200.5.34.1.aarch64.rpm postgresql13-pltcl-13.9-150200.5.34.1.aarch64.rpm postgresql13-server-13.9-150200.5.34.1.aarch64.rpm postgresql13-server-devel-13.9-150200.5.34.1.aarch64.rpm postgresql13-test-13.9-150200.5.34.1.aarch64.rpm openSUSE-SLE-15.3-2022-4446 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: postgresql12 was updated to 12.13 (bsc#1205300) * https://www.postgresql.org/about/news/2543/ * https://www.postgresql.org/docs/12/release-12-13.html postgresql12-12.13-150200.8.38.1.src.rpm postgresql12-12.13-150200.8.38.1.x86_64.rpm postgresql12-contrib-12.13-150200.8.38.1.x86_64.rpm postgresql12-devel-12.13-150200.8.38.1.x86_64.rpm postgresql12-docs-12.13-150200.8.38.1.noarch.rpm postgresql12-llvmjit-12.13-150200.8.38.1.x86_64.rpm postgresql12-plperl-12.13-150200.8.38.1.x86_64.rpm postgresql12-plpython-12.13-150200.8.38.1.x86_64.rpm postgresql12-pltcl-12.13-150200.8.38.1.x86_64.rpm postgresql12-server-12.13-150200.8.38.1.x86_64.rpm postgresql12-server-devel-12.13-150200.8.38.1.x86_64.rpm postgresql12-test-12.13-150200.8.38.1.x86_64.rpm postgresql12-12.13-150200.8.38.1.s390x.rpm postgresql12-contrib-12.13-150200.8.38.1.s390x.rpm postgresql12-devel-12.13-150200.8.38.1.s390x.rpm postgresql12-llvmjit-12.13-150200.8.38.1.s390x.rpm postgresql12-plperl-12.13-150200.8.38.1.s390x.rpm postgresql12-plpython-12.13-150200.8.38.1.s390x.rpm postgresql12-pltcl-12.13-150200.8.38.1.s390x.rpm postgresql12-server-12.13-150200.8.38.1.s390x.rpm postgresql12-server-devel-12.13-150200.8.38.1.s390x.rpm postgresql12-test-12.13-150200.8.38.1.s390x.rpm postgresql12-12.13-150200.8.38.1.ppc64le.rpm postgresql12-contrib-12.13-150200.8.38.1.ppc64le.rpm postgresql12-devel-12.13-150200.8.38.1.ppc64le.rpm postgresql12-llvmjit-12.13-150200.8.38.1.ppc64le.rpm postgresql12-plperl-12.13-150200.8.38.1.ppc64le.rpm postgresql12-plpython-12.13-150200.8.38.1.ppc64le.rpm postgresql12-pltcl-12.13-150200.8.38.1.ppc64le.rpm postgresql12-server-12.13-150200.8.38.1.ppc64le.rpm postgresql12-server-devel-12.13-150200.8.38.1.ppc64le.rpm postgresql12-test-12.13-150200.8.38.1.ppc64le.rpm postgresql12-12.13-150200.8.38.1.aarch64.rpm postgresql12-contrib-12.13-150200.8.38.1.aarch64.rpm postgresql12-devel-12.13-150200.8.38.1.aarch64.rpm postgresql12-llvmjit-12.13-150200.8.38.1.aarch64.rpm postgresql12-plperl-12.13-150200.8.38.1.aarch64.rpm postgresql12-plpython-12.13-150200.8.38.1.aarch64.rpm postgresql12-pltcl-12.13-150200.8.38.1.aarch64.rpm postgresql12-server-12.13-150200.8.38.1.aarch64.rpm postgresql12-server-devel-12.13-150200.8.38.1.aarch64.rpm postgresql12-test-12.13-150200.8.38.1.aarch64.rpm openSUSE-SLE-15.3-2022-4310 important SUSE Updates openSUSE-SLE 15.3 This update for emacs fixes the following issues: - CVE-2022-45939: Fixed shell command injection via source code files when using ctags (bsc#1205822). emacs-25.3-150000.3.12.1.src.rpm emacs-25.3-150000.3.12.1.x86_64.rpm emacs-el-25.3-150000.3.12.1.noarch.rpm emacs-info-25.3-150000.3.12.1.noarch.rpm emacs-nox-25.3-150000.3.12.1.x86_64.rpm emacs-x11-25.3-150000.3.12.1.x86_64.rpm etags-25.3-150000.3.12.1.x86_64.rpm emacs-25.3-150000.3.12.1.s390x.rpm emacs-nox-25.3-150000.3.12.1.s390x.rpm emacs-x11-25.3-150000.3.12.1.s390x.rpm etags-25.3-150000.3.12.1.s390x.rpm emacs-25.3-150000.3.12.1.ppc64le.rpm emacs-nox-25.3-150000.3.12.1.ppc64le.rpm emacs-x11-25.3-150000.3.12.1.ppc64le.rpm etags-25.3-150000.3.12.1.ppc64le.rpm emacs-25.3-150000.3.12.1.aarch64.rpm emacs-nox-25.3-150000.3.12.1.aarch64.rpm emacs-x11-25.3-150000.3.12.1.aarch64.rpm etags-25.3-150000.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-4336 moderate SUSE Updates openSUSE-SLE 15.3 gdb was updated to version 12.1: * DBX mode is deprecated, and will be removed in GDB 13. * GDB 12 is the last release of GDB that will support building against Python 2. From GDB 13, it will only be possible to build GDB itself with Python 3 support. * Improved C++ template support: GDB now treats functions/types involving C++ templates like it does function overloads. Users may omit parameter lists to set breakpoints on families of template functions, including types/functions composed of multiple template types: (gdb) break template_func(template_1, int) The above will set breakpoints at every function `template_func' where the first function parameter is any template type named `template_1' and the second function parameter is `int'. TAB completion also gains similar improvements. * New commands: - maint set backtrace-on-fatal-signal on|off - maint show backtrace-on-fatal-signal This setting is 'on' by default. When 'on' GDB will print a limited backtrace to stderr in the situation where GDB terminates with a fatal signal. This only supported on some platforms where the backtrace and backtrace_symbols_fd functions are available. - set source open on|off - show source open This setting, which is on by default, controls whether GDB will try to open source code files. Switching this off will stop GDB trying to open and read source code files, which can be useful if the files are located over a slow network connection. - set varsize-limit - show varsize-limit These are now deprecated aliases for "set max-value-size" and "show max-value-size". - task apply [all | TASK-IDS...] [FLAG]... COMMAND Like "thread apply", but applies COMMAND to Ada tasks. - watch [...] task ID Watchpoints can now be restricted to a specific Ada task. - maint set internal-error backtrace on|off - maint show internal-error backtrace - maint set internal-warning backtrace on|off - maint show internal-warning backtrace GDB can now print a backtrace of itself when it encounters either an internal-error, or an internal-warning. This is on by default for internal-error and off by default for internal-warning. - set logging on|off Deprecated and replaced by "set logging enabled on|off". - set logging enabled on|off - show logging enabled These commands set or show whether logging is enabled or disabled. - exit You can now exit GDB by using the new command "exit", in addition to the existing "quit" command. - set debug threads on|off - show debug threads Print additional debug messages about thread creation and deletion. - set debug linux-nat on|off - show debug linux-nat These new commands replaced the old 'set debug lin-lwp' and 'show debug lin-lwp' respectively. Turning this setting on prints debug messages relating to GDB's handling of native Linux inferiors. - maint flush source-cache Flush the contents of the source code cache. - maint set gnu-source-highlight enabled on|off - maint show gnu-source-highlight enabled Whether GDB should use the GNU Source Highlight library for adding styling to source code. When off, the library will not be used, even when available. When GNU Source Highlight isn't used, or can't add styling to a particular source file, then the Python Pygments library will be used instead. - set suppress-cli-notifications (on|off) - show suppress-cli-notifications This controls whether printing the notifications is suppressed for CLI. CLI notifications occur when you change the selected context (i.e., the current inferior, thread and/or the frame), or when the program being debugged stops (e.g., because of hitting a breakpoint, completing source-stepping, an interrupt, etc.). - set style disassembler enabled on|off - show style disassembler enabled If GDB is compiled with Python support, and the Python Pygments package is available, then, when this setting is on, disassembler output will have styling applied. - set ada source-charset - show ada source-charset Set the character set encoding that is assumed for Ada symbols. Valid values for this follow the values that can be passed to the GNAT compiler via the '-gnati' option. The default is ISO-8859-1. * Changed commands: - print Printing of floating-point values with base-modifying formats like /x has been changed to display the underlying bytes of the value in the desired base. This was GDB's documented behavior, but was never implemented correctly. - maint packet This command can now print a reply, if the reply includes non-printable characters. Any non-printable characters are printed as escaped hex, e.g. \x?? where '??' is replaces with the value of the non-printable character. - clone-inferior The clone-inferior command now ensures that the TTY, CMD and ARGS settings are copied from the original inferior to the new one. All modifications to the environment variables done using the 'set environment' or 'unset environment' commands are also copied to the new inferior. - set debug lin-lwp on|off - show debug lin-lwp These commands have been removed from GDB. The new command 'set debug linux-nat' and 'show debug linux-nat' should be used instead. - info win This command now includes information about the width of the tui windows in its output. * GDB's Ada parser now supports an extension for specifying the exact byte contents of a floating-point literal. This can be useful for setting floating-point registers to a precise value without loss of precision. The syntax is an extension of the based literal syntax. Use, e.g., "16lf#0123abcd#" -- the number of "l"s controls the width of the floating-point type, and the "f" is the marker for floating point. * MI changes: ** The '-add-inferior' with no option flags now inherits the connection of the current inferior, this restores the behaviour of GDB as it was prior to GDB 10. ** The '-add-inferior' command now accepts a '--no-connection' option, which causes the new inferior to start without a connection. * Python API: ** New function gdb.add_history(), which takes a gdb.Value object and adds the value it represents to GDB's history list. An integer, the index of the new item in the history list, is returned. ** New function gdb.history_count(), which returns the number of values in GDB's value history. ** New gdb.events.gdb_exiting event. This event is called with a gdb.GdbExitingEvent object which has the read-only attribute 'exit_code', which contains the value of the GDB exit code. This event is triggered once GDB decides it is going to exit, but before GDB starts to clean up its internal state. ** New function gdb.architecture_names(), which returns a list containing all of the possible Architecture.name() values. Each entry is a string. ** New function gdb.Architecture.integer_type(), which returns an integer type given a size and a signed-ness. ** New gdb.TargetConnection object type that represents a connection (as displayed by the 'info connections' command). A sub-class, gdb.RemoteTargetConnection, is used to represent 'remote' and 'extended-remote' connections. ** The gdb.Inferior type now has a 'connection' property which is an instance of gdb.TargetConnection, the connection used by this inferior. This can be None if the inferior has no connection. ** New 'gdb.events.connection_removed' event registry, which emits a 'gdb.ConnectionEvent' when a connection is removed from GDB. This event has a 'connection' property, a gdb.TargetConnection object for the connection being removed. ** New gdb.connections() function that returns a list of all currently active connections. ** New gdb.RemoteTargetConnection.send_packet(PACKET) method. This is equivalent to the existing 'maint packet' CLI command; it allows a user specified packet to be sent to the remote target. ** New function gdb.host_charset(), returns a string, which is the name of the current host charset. ** New gdb.set_parameter(NAME, VALUE). This sets the gdb parameter NAME to VALUE. ** New gdb.with_parameter(NAME, VALUE). This returns a context manager that temporarily sets the gdb parameter NAME to VALUE, then resets it when the context is exited. ** The gdb.Value.format_string method now takes a 'styling' argument, which is a boolean. When true, the returned string can include escape sequences to apply styling. The styling will only be present if styling is otherwise turned on in GDB (see 'help set styling'). When false, which is the default if the argument is not given, then no styling is applied to the returned string. ** New read-only attribute gdb.InferiorThread.details, which is either a string, containing additional, target specific thread state information, or None, if there is no such additional information. ** New read-only attribute gdb.Type.is_scalar, which is True for scalar types, and False for all other types. ** New read-only attribute gdb.Type.is_signed. This attribute should only be read when Type.is_scalar is True, and will be True for signed types, and False for all other types. Attempting to read this attribute for non-scalar types will raise a ValueError. ** It is now possible to add GDB/MI commands implemented in Python. Update libipt to v2.0.5. libsource-highlight-devel-3.1.8-150000.3.2.1.x86_64.rpm libsource-highlight4-3.1.8-150000.3.2.1.x86_64.rpm libsource-highlight4-32bit-3.1.8-150000.3.2.1.x86_64.rpm source-highlight-3.1.8-150000.3.2.1.src.rpm source-highlight-3.1.8-150000.3.2.1.x86_64.rpm source-highlight-cgi-3.1.8-150000.3.2.1.x86_64.rpm libsource-highlight-devel-3.1.8-150000.3.2.1.s390x.rpm libsource-highlight4-3.1.8-150000.3.2.1.s390x.rpm source-highlight-3.1.8-150000.3.2.1.s390x.rpm source-highlight-cgi-3.1.8-150000.3.2.1.s390x.rpm libsource-highlight-devel-3.1.8-150000.3.2.1.ppc64le.rpm libsource-highlight4-3.1.8-150000.3.2.1.ppc64le.rpm source-highlight-3.1.8-150000.3.2.1.ppc64le.rpm source-highlight-cgi-3.1.8-150000.3.2.1.ppc64le.rpm libsource-highlight-devel-3.1.8-150000.3.2.1.aarch64.rpm libsource-highlight4-3.1.8-150000.3.2.1.aarch64.rpm source-highlight-3.1.8-150000.3.2.1.aarch64.rpm source-highlight-cgi-3.1.8-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-4467 important SUSE Updates openSUSE-SLE 15.3 This update for python-parallax fixes the following issues: - Fix parallax file descriptor leakage (bsc#1205116) python-parallax-1.0.8-150200.4.9.2.src.rpm python2-parallax-1.0.8-150200.4.9.2.noarch.rpm python3-parallax-1.0.8-150200.4.9.2.noarch.rpm openSUSE-SLE-15.3-2022-4474 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-paramiko fixes the following issues: - Fix loading of RSA key (bsc#1205132) python-paramiko-2.4.3-150100.6.18.1.src.rpm python-paramiko-doc-2.4.3-150100.6.18.1.noarch.rpm python2-paramiko-2.4.3-150100.6.18.1.noarch.rpm python3-paramiko-2.4.3-150100.6.18.1.noarch.rpm openSUSE-SLE-15.3-2022-4480 important SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - CVE-2022-46340: Server XTestSwapFakeInput stack overflow (bsc#1205874) - CVE-2022-46341: Server XIPassiveUngrabDevice out-of-bounds access (bsc#1205877) - CVE-2022-46342: Server XvdiSelectVideoNotify use-after-free (bsc#1205879) - CVE-2022-46343: Server ScreenSaverSetAttributes use-after-free (bsc#1205878) - CVE-2022-46344: Server XIChangeProperty out-of-bounds access (bsc#1205876) - CVE-2022-4283: Reset the radio_groups pointer to NULL after freeing it (bsc#1206017) - Xi: return an error from XI property changes if verification failed (bsc#1205875) xorg-x11-server-1.20.3-150200.22.5.63.1.src.rpm xorg-x11-server-1.20.3-150200.22.5.63.1.x86_64.rpm xorg-x11-server-extra-1.20.3-150200.22.5.63.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.63.1.x86_64.rpm xorg-x11-server-source-1.20.3-150200.22.5.63.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.63.1.x86_64.rpm xorg-x11-server-1.20.3-150200.22.5.63.1.s390x.rpm xorg-x11-server-extra-1.20.3-150200.22.5.63.1.s390x.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.63.1.s390x.rpm xorg-x11-server-source-1.20.3-150200.22.5.63.1.s390x.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.63.1.s390x.rpm xorg-x11-server-1.20.3-150200.22.5.63.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-150200.22.5.63.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.63.1.ppc64le.rpm xorg-x11-server-source-1.20.3-150200.22.5.63.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.63.1.ppc64le.rpm xorg-x11-server-1.20.3-150200.22.5.63.1.aarch64.rpm xorg-x11-server-extra-1.20.3-150200.22.5.63.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-150200.22.5.63.1.aarch64.rpm xorg-x11-server-source-1.20.3-150200.22.5.63.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.63.1.aarch64.rpm openSUSE-SLE-15.3-2022-4367 critical SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Update to version 10.0.7 (bsc#1191880, bsc#1195925, bsc#1195924) - Implement functionality to detect if an update server has a new cert. Import the new cert when it is detected. - From 10.0.6 (bsc#1205089) - Credentials are equal when username and password are the same ignore other entries in the credentials file - Handle multiple zypper names in process table, zypper and Zypp-main to properly detect the running process - Require dmidecode only on supported archs (bsc#1206082) cloud-regionsrv-client-10.0.7-150000.6.83.2.noarch.rpm cloud-regionsrv-client-10.0.7-150000.6.83.2.src.rpm cloud-regionsrv-client-generic-config-1.0.0-150000.6.83.2.noarch.rpm cloud-regionsrv-client-plugin-azure-2.0.0-150000.6.83.2.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-150000.6.83.2.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-150000.6.83.2.noarch.rpm openSUSE-SLE-15.3-2022-4472 moderate SUSE Updates openSUSE-SLE 15.3 This update for pesign fixes the following issues: - Fix OID array indices (bsc#1205323) pesign-0.112-150000.4.12.1.src.rpm pesign-0.112-150000.4.12.1.x86_64.rpm pesign-0.112-150000.4.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-4388 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnutls fixes the following issues: - Fix potential to free an invalid pointer (bsc#1204511) gnutls-3.6.7-150200.14.22.1.src.rpm gnutls-3.6.7-150200.14.22.1.x86_64.rpm gnutls-guile-3.6.7-150200.14.22.1.x86_64.rpm libgnutls-devel-3.6.7-150200.14.22.1.x86_64.rpm libgnutls-devel-32bit-3.6.7-150200.14.22.1.x86_64.rpm libgnutls30-3.6.7-150200.14.22.1.x86_64.rpm libgnutls30-32bit-3.6.7-150200.14.22.1.x86_64.rpm libgnutls30-hmac-3.6.7-150200.14.22.1.x86_64.rpm libgnutls30-hmac-32bit-3.6.7-150200.14.22.1.x86_64.rpm libgnutlsxx-devel-3.6.7-150200.14.22.1.x86_64.rpm libgnutlsxx28-3.6.7-150200.14.22.1.x86_64.rpm gnutls-3.6.7-150200.14.22.1.s390x.rpm gnutls-guile-3.6.7-150200.14.22.1.s390x.rpm libgnutls-devel-3.6.7-150200.14.22.1.s390x.rpm libgnutls30-3.6.7-150200.14.22.1.s390x.rpm libgnutls30-hmac-3.6.7-150200.14.22.1.s390x.rpm libgnutlsxx-devel-3.6.7-150200.14.22.1.s390x.rpm libgnutlsxx28-3.6.7-150200.14.22.1.s390x.rpm gnutls-3.6.7-150200.14.22.1.ppc64le.rpm gnutls-guile-3.6.7-150200.14.22.1.ppc64le.rpm libgnutls-devel-3.6.7-150200.14.22.1.ppc64le.rpm libgnutls30-3.6.7-150200.14.22.1.ppc64le.rpm libgnutls30-hmac-3.6.7-150200.14.22.1.ppc64le.rpm libgnutlsxx-devel-3.6.7-150200.14.22.1.ppc64le.rpm libgnutlsxx28-3.6.7-150200.14.22.1.ppc64le.rpm gnutls-3.6.7-150200.14.22.1.aarch64.rpm gnutls-guile-3.6.7-150200.14.22.1.aarch64.rpm libgnutls-devel-3.6.7-150200.14.22.1.aarch64.rpm libgnutls30-3.6.7-150200.14.22.1.aarch64.rpm libgnutls30-hmac-3.6.7-150200.14.22.1.aarch64.rpm libgnutlsxx-devel-3.6.7-150200.14.22.1.aarch64.rpm libgnutlsxx28-3.6.7-150200.14.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-4465 important SUSE Updates openSUSE-SLE 15.3 This update for motif fixes the following issues: - Fix to prevent third party application crash (bsc#1205253) libMrm4-2.3.4-150000.3.8.1.x86_64.rpm libMrm4-32bit-2.3.4-150000.3.8.1.x86_64.rpm libUil4-2.3.4-150000.3.8.1.x86_64.rpm libUil4-32bit-2.3.4-150000.3.8.1.x86_64.rpm libXm4-2.3.4-150000.3.8.1.x86_64.rpm libXm4-32bit-2.3.4-150000.3.8.1.x86_64.rpm motif-2.3.4-150000.3.8.1.src.rpm motif-2.3.4-150000.3.8.1.x86_64.rpm motif-devel-2.3.4-150000.3.8.1.x86_64.rpm motif-devel-32bit-2.3.4-150000.3.8.1.x86_64.rpm libMrm4-2.3.4-150000.3.8.1.s390x.rpm libUil4-2.3.4-150000.3.8.1.s390x.rpm libXm4-2.3.4-150000.3.8.1.s390x.rpm motif-2.3.4-150000.3.8.1.s390x.rpm motif-devel-2.3.4-150000.3.8.1.s390x.rpm libMrm4-2.3.4-150000.3.8.1.ppc64le.rpm libUil4-2.3.4-150000.3.8.1.ppc64le.rpm libXm4-2.3.4-150000.3.8.1.ppc64le.rpm motif-2.3.4-150000.3.8.1.ppc64le.rpm motif-devel-2.3.4-150000.3.8.1.ppc64le.rpm libMrm4-2.3.4-150000.3.8.1.aarch64.rpm libUil4-2.3.4-150000.3.8.1.aarch64.rpm libXm4-2.3.4-150000.3.8.1.aarch64.rpm motif-2.3.4-150000.3.8.1.aarch64.rpm motif-devel-2.3.4-150000.3.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-4470 important SUSE Updates openSUSE-SLE 15.3 This update for sudo fixes the following issues: - Change sudo-ldap schema from ASCII to UTF8 to fix a regression introduced in a previous maintenance update (bsc#1197998) sudo-1.9.5p2-150300.3.16.1.src.rpm sudo-1.9.5p2-150300.3.16.1.x86_64.rpm sudo-devel-1.9.5p2-150300.3.16.1.x86_64.rpm sudo-plugin-python-1.9.5p2-150300.3.16.1.x86_64.rpm sudo-test-1.9.5p2-150300.3.16.1.x86_64.rpm sudo-1.9.5p2-150300.3.16.1.s390x.rpm sudo-devel-1.9.5p2-150300.3.16.1.s390x.rpm sudo-plugin-python-1.9.5p2-150300.3.16.1.s390x.rpm sudo-test-1.9.5p2-150300.3.16.1.s390x.rpm sudo-1.9.5p2-150300.3.16.1.ppc64le.rpm sudo-devel-1.9.5p2-150300.3.16.1.ppc64le.rpm sudo-plugin-python-1.9.5p2-150300.3.16.1.ppc64le.rpm sudo-test-1.9.5p2-150300.3.16.1.ppc64le.rpm sudo-1.9.5p2-150300.3.16.1.aarch64.rpm sudo-devel-1.9.5p2-150300.3.16.1.aarch64.rpm sudo-plugin-python-1.9.5p2-150300.3.16.1.aarch64.rpm sudo-test-1.9.5p2-150300.3.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-4350 important SUSE Updates openSUSE-SLE 15.3 This update for buildah fixes the following issues: Version update to 1.28.2. - CVE-2022-2990: Fixed a possible information disclosure and modification vulnerability (bsc#1202812). - CVE-2020-10696: Fixed an issue with a crafted input tar file that may lead to a local file overwriting during image build process (bsc#1167864). buildah-1.28.2-150300.8.14.1.src.rpm buildah-1.28.2-150300.8.14.1.x86_64.rpm buildah-1.28.2-150300.8.14.1.s390x.rpm buildah-1.28.2-150300.8.14.1.ppc64le.rpm buildah-1.28.2-150300.8.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-4395 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: Version update to 4.15.12. Security issues fixed: - CVE-2022-2031: Fixed AD users that could have bypassed certain restrictions associated with changing passwords (bsc#1201495). - CVE-2022-32742: Fixed SMB1 code that does not correctly verify SMB1write, SMB1write_and_close, SMB1write_and_unlock lengths (bsc#1201496). - CVE-2022-32744: Fixed AD users that could have forged password change requests for any user (bsc#1201493). - CVE-2022-32745: Fixed AD users that could have crashed the server process with an LDAP add or modify request (bsc#1201492). - CVE-2022-32746: Fixed a use-after-free occurring in database audit logging (bsc#1201490). - CVE-2022-3437: Fixed buffer overflow in Heimdal unwrap_des3() (bsc#1204254). - CVE-2022-42898: Fixed Samba buffer overflow vulnerabilities on 32-bit systems (bsc#1205126). Bug fixes: - Install a systemd drop-in file for named service to allow read/write access to the DLZ directory (bsc#1201689). - Possible use after free of connection_struct when iterating smbd_server_connection->connections (bsc#1200102). ctdb-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm ctdb-pcp-pmda-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm libsamba-policy-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm libsamba-policy-python3-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm libsamba-policy0-python3-32bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm libsamba-policy0-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-4.15.12+git.535.7750e5c95ef-150300.3.43.1.src.rpm samba-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-ad-dc-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-ad-dc-libs-32bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-ad-dc-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-ceph-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-client-32bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-client-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-client-libs-32bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-client-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-devel-32bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-doc-4.15.12+git.535.7750e5c95ef-150300.3.43.1.noarch.rpm samba-dsdb-modules-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-gpupdate-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-ldb-ldap-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-libs-32bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-libs-python3-32bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-libs-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-test-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-tool-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-winbind-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-winbind-libs-32bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm samba-winbind-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.x86_64.rpm ctdb-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm ctdb-pcp-pmda-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm libsamba-policy-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm libsamba-policy-python3-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm libsamba-policy0-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-ad-dc-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-ad-dc-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-client-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-client-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-dsdb-modules-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-gpupdate-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-ldb-ldap-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-libs-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-test-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-tool-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-winbind-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm samba-winbind-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.s390x.rpm ctdb-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm ctdb-pcp-pmda-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm libsamba-policy-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm libsamba-policy-python3-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm libsamba-policy0-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-ad-dc-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-ad-dc-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-client-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-client-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-dsdb-modules-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-gpupdate-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-ldb-ldap-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-libs-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-test-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-tool-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-winbind-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm samba-winbind-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.ppc64le.rpm ctdb-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm ctdb-pcp-pmda-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm libsamba-policy-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm libsamba-policy-python3-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm libsamba-policy0-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm libsamba-policy0-python3-64bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64_ilp32.rpm samba-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-ad-dc-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-ad-dc-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-ceph-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-client-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-client-64bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64_ilp32.rpm samba-client-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-devel-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-dsdb-modules-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-gpupdate-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-ldb-ldap-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-libs-64bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64_ilp32.rpm samba-libs-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-libs-python3-64bit-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64_ilp32.rpm samba-python3-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-test-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-tool-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-winbind-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm samba-winbind-libs-4.15.12+git.535.7750e5c95ef-150300.3.43.1.aarch64.rpm openSUSE-SLE-15.3-2022-4452 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: Update to version jdk8u352 (icedtea-3.25.0): - CVE-2022-21619,CVE-2022-21624: Fixed difficult to exploit vulnerability allows unauthenticated attacker with network access and can cause unauthorized update, insert or delete access via multiple protocols (bsc#1204473,bsc#1204475). - CVE-2022-21626: Fixed easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to cause partial denial of service (bsc#1204471). - CVE-2022-21628: Fixed easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to cause partial denial of service (bsc#1204472). java-1_8_0-openjdk-1.8.0.352-150000.3.73.1.src.rpm java-1_8_0-openjdk-1.8.0.352-150000.3.73.1.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.352-150000.3.73.1.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.352-150000.3.73.1.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.352-150000.3.73.1.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.352-150000.3.73.1.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.352-150000.3.73.1.noarch.rpm java-1_8_0-openjdk-src-1.8.0.352-150000.3.73.1.x86_64.rpm java-1_8_0-openjdk-1.8.0.352-150000.3.73.1.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.352-150000.3.73.1.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.352-150000.3.73.1.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.352-150000.3.73.1.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.352-150000.3.73.1.s390x.rpm java-1_8_0-openjdk-src-1.8.0.352-150000.3.73.1.s390x.rpm java-1_8_0-openjdk-1.8.0.352-150000.3.73.1.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.352-150000.3.73.1.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.352-150000.3.73.1.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.352-150000.3.73.1.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.352-150000.3.73.1.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.352-150000.3.73.1.ppc64le.rpm java-1_8_0-openjdk-1.8.0.352-150000.3.73.1.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.352-150000.3.73.1.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.352-150000.3.73.1.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.352-150000.3.73.1.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.352-150000.3.73.1.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.352-150000.3.73.1.aarch64.rpm openSUSE-SLE-15.3-2022-4334 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Update to version 102.5.1: - CVE-2022-45414: Quoting from an HTML email with certain tags will trigger network requests and load remote content, regardless of a configuration to block remote content (bsc#1205941). MozillaThunderbird-102.5.1-150200.8.93.1.src.rpm MozillaThunderbird-102.5.1-150200.8.93.1.x86_64.rpm MozillaThunderbird-translations-common-102.5.1-150200.8.93.1.x86_64.rpm MozillaThunderbird-translations-other-102.5.1-150200.8.93.1.x86_64.rpm MozillaThunderbird-102.5.1-150200.8.93.1.s390x.rpm MozillaThunderbird-translations-common-102.5.1-150200.8.93.1.s390x.rpm MozillaThunderbird-translations-other-102.5.1-150200.8.93.1.s390x.rpm MozillaThunderbird-102.5.1-150200.8.93.1.ppc64le.rpm MozillaThunderbird-translations-common-102.5.1-150200.8.93.1.ppc64le.rpm MozillaThunderbird-translations-other-102.5.1-150200.8.93.1.ppc64le.rpm MozillaThunderbird-102.5.1-150200.8.93.1.aarch64.rpm MozillaThunderbird-translations-common-102.5.1-150200.8.93.1.aarch64.rpm MozillaThunderbird-translations-other-102.5.1-150200.8.93.1.aarch64.rpm openSUSE-SLE-15.3-2022-4363 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: postgresql10 was updated to 10.23: (bsc#1205300) * https://www.postgresql.org/about/news/2543/ * https://www.postgresql.org/docs/10/release-10-23.html postgresql10-10.23-150100.8.53.1.src.rpm postgresql10-10.23-150100.8.53.1.x86_64.rpm postgresql10-contrib-10.23-150100.8.53.1.x86_64.rpm postgresql10-docs-10.23-150100.8.53.1.noarch.rpm postgresql10-plperl-10.23-150100.8.53.1.x86_64.rpm postgresql10-plpython-10.23-150100.8.53.1.x86_64.rpm postgresql10-pltcl-10.23-150100.8.53.1.x86_64.rpm postgresql10-server-10.23-150100.8.53.1.x86_64.rpm postgresql10-test-10.23-150100.8.53.1.x86_64.rpm postgresql10-10.23-150100.8.53.1.s390x.rpm postgresql10-contrib-10.23-150100.8.53.1.s390x.rpm postgresql10-plperl-10.23-150100.8.53.1.s390x.rpm postgresql10-plpython-10.23-150100.8.53.1.s390x.rpm postgresql10-pltcl-10.23-150100.8.53.1.s390x.rpm postgresql10-server-10.23-150100.8.53.1.s390x.rpm postgresql10-test-10.23-150100.8.53.1.s390x.rpm postgresql10-10.23-150100.8.53.1.ppc64le.rpm postgresql10-contrib-10.23-150100.8.53.1.ppc64le.rpm postgresql10-plperl-10.23-150100.8.53.1.ppc64le.rpm postgresql10-plpython-10.23-150100.8.53.1.ppc64le.rpm postgresql10-pltcl-10.23-150100.8.53.1.ppc64le.rpm postgresql10-server-10.23-150100.8.53.1.ppc64le.rpm postgresql10-test-10.23-150100.8.53.1.ppc64le.rpm postgresql10-10.23-150100.8.53.1.aarch64.rpm postgresql10-contrib-10.23-150100.8.53.1.aarch64.rpm postgresql10-plperl-10.23-150100.8.53.1.aarch64.rpm postgresql10-plpython-10.23-150100.8.53.1.aarch64.rpm postgresql10-pltcl-10.23-150100.8.53.1.aarch64.rpm postgresql10-server-10.23-150100.8.53.1.aarch64.rpm postgresql10-test-10.23-150100.8.53.1.aarch64.rpm openSUSE-SLE-15.3-2022-4393 moderate SUSE Updates openSUSE-SLE 15.3 This update for nautilus fixes the following issues: - CVE-2022-37290: Fixed a denial of service caused by pasted ZIP archives (bsc#1205418). gnome-shell-search-provider-nautilus-3.34.3-150200.4.6.1.x86_64.rpm libnautilus-extension1-3.34.3-150200.4.6.1.x86_64.rpm libnautilus-extension1-32bit-3.34.3-150200.4.6.1.x86_64.rpm nautilus-3.34.3-150200.4.6.1.src.rpm nautilus-3.34.3-150200.4.6.1.x86_64.rpm nautilus-devel-3.34.3-150200.4.6.1.x86_64.rpm nautilus-lang-3.34.3-150200.4.6.1.noarch.rpm typelib-1_0-Nautilus-3_0-3.34.3-150200.4.6.1.x86_64.rpm gnome-shell-search-provider-nautilus-3.34.3-150200.4.6.1.s390x.rpm libnautilus-extension1-3.34.3-150200.4.6.1.s390x.rpm nautilus-3.34.3-150200.4.6.1.s390x.rpm nautilus-devel-3.34.3-150200.4.6.1.s390x.rpm typelib-1_0-Nautilus-3_0-3.34.3-150200.4.6.1.s390x.rpm gnome-shell-search-provider-nautilus-3.34.3-150200.4.6.1.ppc64le.rpm libnautilus-extension1-3.34.3-150200.4.6.1.ppc64le.rpm nautilus-3.34.3-150200.4.6.1.ppc64le.rpm nautilus-devel-3.34.3-150200.4.6.1.ppc64le.rpm typelib-1_0-Nautilus-3_0-3.34.3-150200.4.6.1.ppc64le.rpm gnome-shell-search-provider-nautilus-3.34.3-150200.4.6.1.aarch64.rpm libnautilus-extension1-3.34.3-150200.4.6.1.aarch64.rpm nautilus-3.34.3-150200.4.6.1.aarch64.rpm nautilus-devel-3.34.3-150200.4.6.1.aarch64.rpm typelib-1_0-Nautilus-3_0-3.34.3-150200.4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4358 moderate SUSE Updates openSUSE-SLE 15.3 This update for rsyslog fixes the following issue: - Parsing of legacy config syntax (bsc#1205275) rsyslog-8.2106.0-150200.4.35.1.src.rpm rsyslog-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-diag-tools-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-doc-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-dbi-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-gssapi-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-gtls-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-mysql-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-omtcl-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-ossl-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-pgsql-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-relp-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-snmp-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.35.1.x86_64.rpm rsyslog-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-diag-tools-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-doc-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-dbi-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-gssapi-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-gtls-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-mysql-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-omtcl-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-ossl-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-pgsql-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-relp-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-snmp-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.35.1.s390x.rpm rsyslog-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-diag-tools-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-doc-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-dbi-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-gssapi-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-gtls-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-mysql-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-omtcl-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-ossl-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-pgsql-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-relp-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-snmp-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.35.1.ppc64le.rpm rsyslog-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-diag-tools-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-doc-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-dbi-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-elasticsearch-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-gcrypt-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-gssapi-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-gtls-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-mmnormalize-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-mysql-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-omamqp1-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-omhttpfs-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-omtcl-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-ossl-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-pgsql-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-relp-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-snmp-8.2106.0-150200.4.35.1.aarch64.rpm rsyslog-module-udpspoof-8.2106.0-150200.4.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-4444 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issue: - Pacemaker should provide a dynamic option to specify a logfile. ldirectord-4.8.0+git30.d0077df0-150300.8.34.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-150300.8.34.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.34.1.src.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.34.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.34.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.34.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.34.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.34.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.34.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.34.1.aarch64.rpm openSUSE-SLE-15.3-2022-4503 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-4378: Fixed stack overflow in __do_proc_dointvec (bsc#1206207). - CVE-2022-3635: Fixed a use-after-free in the tst_timer() of the file drivers/atm/idt77252.c of the component IPsec (bsc#1204631). - CVE-2022-41850: Fixed a race condition in roccat_report_event() in drivers/hid/hid-roccat.c (bsc#1203960). - CVE-2022-45934: Fixed a integer wraparound via L2CAP_CONF_REQ packets in l2cap_config_req in net/bluetooth/l2cap_core.c (bsc#1205796). - CVE-2022-3628: Fixed potential buffer overflow in brcmf_fweh_event_worker() in wifi/brcmfmac (bsc#1204868). - CVE-2022-3567: Fixed a to race condition in inet6_stream_ops()/inet6_dgram_ops() of the component IPv6 Handler (bsc#1204414). - CVE-2022-41858: Fixed a denial of service in sl_tx_timeout() in drivers/net/slip (bsc#1205671). - CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation (bsc#1205128). - CVE-2022-4095: Fixed a use-after-free in rtl8712 driver (bsc#1205514). - CVE-2022-3903: Fixed a denial of service with the Infrared Transceiver USB driver (bsc#1205220). - CVE-2022-2602: Fixed a local privilege escalation vulnerability involving Unix socket Garbage Collection and io_uring (bsc#1204228). - CVE-2022-4139: Fixed an issue with the i915 driver that allowed the GPU to access any physical memory (bsc#1205700). - CVE-2022-4129: Fixed a denial of service with the Layer 2 Tunneling Protocol (L2TP). A missing lock when clearing sk_user_data can lead to a race condition and NULL pointer dereference. (bsc#1205711) - CVE-2022-42895: Fixed an information leak in the net/bluetooth/l2cap_core.c's l2cap_parse_conf_req() which can be used to leak kernel pointers remotely (bsc#1205705). - CVE-2022-42896: Fixed a use-after-free vulnerability in the net/bluetooth/l2cap_core.c's l2cap_connect() and l2cap_le_connect_req() which may have allowed code execution and leaking kernel memory (respectively) remotely via Bluetooth (bsc#1205709). - CVE-2022-3707: Fixed a double free in the Intel GVT-g graphics driver (bsc#1204780). The following non-security bugs were fixed: - ALSA: hda/ca0132: add quirk for EVGA Z390 DARK (git-fixes). - ALSA: hda: fix potential memleak in 'add_widget_node' (git-fixes). - ALSA: usb-audio: Add DSD support for Accuphase DAC-60 (git-fixes). - ALSA: usb-audio: Add quirk entry for M-Audio Micro (git-fixes). - ALSA: usb-audio: Drop snd_BUG_ON() from snd_usbmidi_output_open() (git-fixes). - ASoC: codecs: jz4725b: Fix spelling mistake "Sourc" -> "Source", "Routee" -> "Route" (git-fixes). - ASoC: codecs: jz4725b: add missed Line In power control bit (git-fixes). - ASoC: codecs: jz4725b: fix capture selector naming (git-fixes). - ASoC: codecs: jz4725b: fix reported volume for Master ctl (git-fixes). - ASoC: codecs: jz4725b: use right control for Capture Volume (git-fixes). - ASoC: core: Fix use-after-free in snd_soc_exit() (git-fixes). - ASoC: max98373: Add checks for devm_kcalloc (git-fixes). - ASoC: soc-utils: Remove __exit for snd_soc_util_exit() (git-fixes). - ASoC: wm5102: Revert "ASoC: wm5102: Fix PM disable depth imbalance in wm5102_probe" (git-fixes). - ASoC: wm5110: Revert "ASoC: wm5110: Fix PM disable depth imbalance in wm5110_probe" (git-fixes). - ASoC: wm8962: Add an event handler for TEMP_HP and TEMP_SPK (git-fixes). - ASoC: wm8997: Revert "ASoC: wm8997: Fix PM disable depth imbalance in wm8997_probe" (git-fixes). - Bluetooth: L2CAP: Fix attempting to access uninitialized memory (git-fixes). - Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (git-fixes). - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (git-fixes). - Do not enable CONFIG_ATARI_PARTITION (jsc#PED-1573) - Drivers: hv: vmbus: Add /sys/bus/vmbus/hibernation (git-fixes). - Drivers: hv: vmbus: Add VMbus IMC device to unsupported list (git-fixes). - Drivers: hv: vmbus: Add vmbus_requestor data structure for VMBus hardening (bsc#1204017). - Drivers: hv: vmbus: Drop error message when 'No request id available' (bsc#1204017). - Drivers: hv: vmbus: Fix duplicate CPU assignments within a device (git-fixes). - Drivers: hv: vmbus: Fix handling of messages with transaction ID of zero (bsc#1204017). - Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj (git-fixes). - Drivers: hv: vmbus: Fix potential crash on module unload (git-fixes). - Drivers: hv: vmbus: Introduce vmbus_request_addr_match() (bsc#1204017). - Drivers: hv: vmbus: Introduce vmbus_sendpacket_getid() (bsc#1204017). - Drivers: hv: vmbus: Introduce {lock,unlock}_requestor() (bsc#1204017). - Drivers: hv: vmbus: Prevent load re-ordering when reading ring buffer (git-fixes). - Drivers: hv: vmbus: Remove unused linux/version.h header (git-fixes). - Drivers: hv: vmbus: Replace smp_store_mb() with virt_store_mb() (git-fixes). - Drivers: hv: vmbus: fix double free in the error path of vmbus_add_channel_work() (git-fixes). - Drivers: hv: vmbus: fix possible memory leak in vmbus_device_register() (git-fixes). - Drivers: hv: vmbus: remove unused function (git-fixes). - HID: saitek: add madcatz variant of MMO7 mouse device ID (git-fixes). - Input: i8042 - fix leaking of platform device on module removal (git-fixes). - Input: iforce - invert valid length check when fetching device IDs (git-fixes). - KVM: VMX: Always VMCLEAR in-use VMCSes during crash with kexec support (git-fixes). - KVM: nVMX: Invalidate all EPTP contexts when emulating INVEPT for L1 (git-fixes). - KVM: nVMX: Validate the EPTP when emulating INVEPT(EXTENT_CONTEXT) (git-fixes). - KVM: nVMX: clear PIN_BASED_POSTED_INTR from nested pinbased_ctls only when apicv is globally disabled (git-fixes). - KVM: s390: Add a routine for setting userspace CPU state (git-fixes). - KVM: s390: Fix handle_sske page fault handling (git-fixes). - KVM: s390: Simplify SIGP Set Arch handling (git-fixes). - KVM: s390: get rid of register asm usage (git-fixes). - KVM: s390: pv: avoid stalls when making pages secure (git-fixes). - KVM: s390: pv: do not allow userspace to set the clock under PV (git-fixes). - KVM: s390: pv: leak the topmost page table when destroy fails (git-fixes). - KVM: s390: reduce number of IO pins to 1 (git-fixes). - NFC: nci: fix memory leak in nci_rx_data_packet() (git-fixes). - NFS: Refactor nfs_instantiate() for dentry referencing callers (bsc#1204215). - NFSv3: use nfs_add_or_obtain() to create and reference inodes (bsc#1204215). - PCI: hv: Add check for hyperv_initialized in init_hv_pci_drv() (bsc#1204446). - PCI: hv: Add validation for untrusted Hyper-V values (git-fixes). - PCI: hv: Drop msi_controller structure (bsc#1204446). - PCI: hv: Fix a race condition when removing the device (bsc#1204446). - PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (bsc#1204446). - PCI: hv: Fix synchronization between channel callback and hv_compose_msi_msg() (bsc#1204017). - PCI: hv: Fix synchronization between channel callback and hv_pci_bus_exit() (bsc#1204017). - PCI: hv: Fix the definition of vector in hv_compose_msi_msg() (bsc#1200845). - PCI: hv: Fix typo (bsc#1204446). - PCI: hv: Remove bus device removal unused refcount/functions (bsc#1204446). - PCI: hv: Remove unnecessary use of %hx (bsc#1204446). - PCI: hv: Support for create interrupt v3 (bsc#1204446). - PCI: hv: Use PCI_ERROR_RESPONSE to identify config read errors (bsc#1204446). - PCI: hv: Use vmbus_requestor to generate transaction IDs for VMbus hardening (bsc#1204017). - RDMA/core/sa_query: Remove unused argument (git-fixes) - RDMA/hns: Fix spelling mistakes of original (git-fixes) - RDMA/qedr: Add support for user mode XRC-SRQ's (git-fixes) - RDMA/qedr: Fix reporting max_{send/recv}_wr attrs (git-fixes) - RDMA/qedr: Remove unsupported qedr_resize_cq callback (git-fixes) - RDMA/rxe: Fix memory leak in error path code (git-fixes) - SCSI: scsi_probe_lun: retry INQUIRY after timeout (bsc#1189297). - USB: add RESET_RESUME quirk for NVIDIA Jetson devices in RCM (git-fixes). - USB: serial: option: add Fibocom FM160 0x0111 composition (git-fixes). - USB: serial: option: add Sierra Wireless EM9191 (git-fixes). - USB: serial: option: add u-blox LARA-L6 modem (git-fixes). - USB: serial: option: add u-blox LARA-R6 00B modem (git-fixes). - USB: serial: option: remove old LARA-R6 PID (git-fixes). - USB: serial: option: remove old LARA-R6 PID. - Xen/gntdev: do not ignore kernel unmapping error (git-fixes). - add another bug reference to some hyperv changes (bsc#1205617). - arm/xen: Do not probe xenbus as part of an early initcall (git-fixes). - arm64: dts: imx8mm: Fix NAND controller size-cells (git-fixes) - arm64: dts: juno: Add thermal critical trip points (git-fixes) - ata: libata-transport: fix double ata_host_put() in ata_tport_add() (git-fixes). - ata: libata-transport: fix error handling in ata_tdev_add() (git-fixes). - ata: libata-transport: fix error handling in ata_tlink_add() (git-fixes). - ata: libata-transport: fix error handling in ata_tport_add() (git-fixes). - ata: pata_legacy: fix pdc20230_set_piomode() (git-fixes). - blk-crypto: fix check for too-large dun_bytes (git-fixes). - blk-mq: Properly init requests from blk_mq_alloc_request_hctx() (git-fixes). - blk-mq: do not create hctx debugfs dir until q->debugfs_dir is created (git-fixes). - blk-wbt: call rq_qos_add() after wb_normal is initialized (git-fixes). - blktrace: Trace remapped requests correctly (git-fixes). - block-map: add __GFP_ZERO flag for alloc_page in function bio_copy_kern (git-fixes). - block: Add a helper to validate the block size (git-fixes). - block: assign bi_bdev for cloned bios in blk_rq_prep_clone (bsc#1204328). - block: ataflop: fix breakage introduced at blk-mq refactoring (git-fixes). - block: ataflop: more blk-mq refactoring fixes (git-fixes). - block: fix infinite loop for invalid zone append (git-fixes). - block: limit request dispatch loop duration (git-fixes). - block: nbd: add sanity check for first_minor (git-fixes). - block: use "unsigned long" for blk_validate_block_size() (git-fixes). - bus: sunxi-rsb: Support atomic transfers (git-fixes). - can: cc770: cc770_isa_probe(): add missing free_cc770dev() (git-fixes). - can: sja1000_isa: sja1000_isa_probe(): add missing free_sja1000dev() (git-fixes). - capabilities: fix undefined behavior in bit shift for CAP_TO_MASK (git-fixes). - ceph: allow ceph.dir.rctime xattr to be updatable (bsc#1205989). - ceph: do not access the kiocb after aio requests (bsc#1205984). - ceph: fix fscache invalidation (bsc#1205985). - ceph: lockdep annotations for try_nonblocking_invalidate (bsc#1205988). - ceph: remove bogus checks and WARN_ONs from ceph_set_page_dirty (bsc#1205986). - ceph: request Fw caps before updating the mtime in ceph_write_iter (bsc#1205987). - cifs: skip extra NULL byte in filenames (bsc#1204791). - dm era: commit metadata in postsuspend after worker stops (git-fixes). - dm integrity: set journal entry unused when shrinking device (git-fixes). - dm mirror log: clear log bits up to BITS_PER_LONG boundary (git-fixes). - dm mpath: only use ktime_get_ns() in historical selector (git-fixes). - dm raid: fix accesses beyond end of raid member array (git-fixes). - dm raid: fix address sanitizer warning in raid_resume (git-fixes). - dm raid: fix address sanitizer warning in raid_status (git-fixes). - dm thin: fix use-after-free crash in dm_sm_register_threshold_callback (git-fixes). - dm verity fec: fix misaligned RS roots IO (git-fixes). - dm writecache: fix writing beyond end of underlying device when shrinking (git-fixes). - dm writecache: return the exact table values that were set (git-fixes). - dm writecache: set a default MAX_WRITEBACK_JOBS (git-fixes). - dm: fix request-based DM to not bounce through indirect dm_submit_bio (git-fixes). - dm: remove special-casing of bio-based immutable singleton target on NVMe (git-fixes). - dm: return early from dm_pr_call() if DM device is suspended (git-fixes). - dma-buf: fix racing conflict of dma_heap_add() (git-fixes). - dmaengine: at_hdmac: Check return code of dma_async_device_register (git-fixes). - dmaengine: at_hdmac: Do not allow CPU to reorder channel enable (git-fixes). - dmaengine: at_hdmac: Do not start transactions at tx_submit level (git-fixes). - dmaengine: at_hdmac: Fix at_lli struct definition (git-fixes). - dmaengine: at_hdmac: Fix completion of unissued descriptor in case of errors (git-fixes). - dmaengine: at_hdmac: Fix impossible condition (git-fixes). - dmaengine: mv_xor_v2: Fix a resource leak in mv_xor_v2_remove() (git-fixes). - dmaengine: pxa_dma: use platform_get_irq_optional (git-fixes). - drivers/hv: remove obsolete TODO and fix misleading typo in comment (git-fixes). - drivers: hv: Fix EXPORT_SYMBOL and tab spaces issue (git-fixes). - drivers: hv: Fix hyperv_record_panic_msg path on comment (git-fixes). - drivers: hv: Fix missing error code in vmbus_connect() (git-fixes). - drivers: hv: vmbus: Fix call msleep using &lt; 20ms (git-fixes). - drivers: hv: vmbus: Fix checkpatch LINE_SPACING (git-fixes). - drivers: hv: vmbus: Fix checkpatch SPLIT_STRING (git-fixes). - drivers: hv: vmbus: Replace symbolic permissions by octal permissions (git-fixes). - drivers: net: slip: fix NPD bug in sl_tx_timeout() (git-fixes). - drm/drv: Fix potential memory leak in drm_dev_init() (git-fixes). - drm/i915/dmabuf: fix sg_table handling in map_dma_buf (git-fixes). - drm/i915/sdvo: Filter out invalid outputs more sensibly (git-fixes). - drm/i915/sdvo: Setup DDC fully before output init (git-fixes). - drm/imx: imx-tve: Fix return type of imx_tve_connector_mode_valid (git-fixes). - drm/panel: simple: set bpc field for logic technologies displays (git-fixes). - drm/rockchip: dsi: Force synchronous probe (git-fixes). - drm/vc4: Fix missing platform_unregister_drivers() call in vc4_drm_register() (git-fixes). - drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker() (git-fixes). - fbdev: smscufx: Fix several use-after-free bugs (git-fixes). - firmware: arm_scmi: Suppress the driver's bind attributes (git-fixes). - ftrace: Fix char print issue in print_ip_ins() (git-fixes). - ftrace: Fix null pointer dereference in ftrace_add_mod() (git-fixes). - ftrace: Fix the possible incorrect kernel message (git-fixes). - ftrace: Fix use-after-free for dynamic ftrace_ops (git-fixes). - ftrace: Optimize the allocation for mcount entries (git-fixes). - ftrace: Properly unset FTRACE_HASH_FL_MOD (git-fixes). - fuse: add file_modified() to fallocate (bsc#1205330). - fuse: fix readdir cache race (bsc#1205329). - hamradio: fix issue of dev reference count leakage in bpq_device_event() (git-fixes). - hv: hyperv.h: Remove unused inline functions (git-fixes). - hv_netvsc: Add a comment clarifying batching logic (git-fixes). - hv_netvsc: Add check for kvmalloc_array (git-fixes). - hv_netvsc: Add error handling while switching data path (bsc#1204850). - hv_netvsc: Allocate the recv_buf buffers after NVSP_MSG1_TYPE_SEND_RECV_BUF (git-fixes). - hv_netvsc: Check VF datapath when sending traffic to VF (git-fixes). - hv_netvsc: Fix potential dereference of NULL pointer (git-fixes). - hv_netvsc: Fix race between VF offering and VF association message from host (bsc#1204850). - hv_netvsc: Print value of invalid ID in netvsc_send_{completion,tx_complete}() (git-fixes). - hv_netvsc: Process NETDEV_GOING_DOWN on VF hot remove (bsc#1204850). - hv_netvsc: Use bitmap_zalloc() when applicable (git-fixes). - hv_netvsc: Use vmbus_requestor to generate transaction IDs for VMBus hardening (bsc#1204017). - hv_netvsc: Validate number of allocated sub-channels (git-fixes). - hv_netvsc: Wait for completion on request SWITCH_DATA_PATH (bsc#1204017). - hv_netvsc: use netif_is_bond_master() instead of open code (git-fixes). - hv_utils: Fix passing zero to 'PTR_ERR' warning (git-fixes). - hwmon: (coretemp) Check for null before removing sysfs attrs (git-fixes). - hwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new() (git-fixes). - hwmon: (i5500_temp) fix missing pci_disable_device() (git-fixes). - hwmon: (ibmpex) Fix possible UAF when ibmpex_register_bmc() fails (git-fixes). - i2c: i801: add lis3lv02d's I2C address for Vostro 5568 (git-fixes). - ibmvnic: Free rwi on reset success (bsc#1184350 ltc#191533 git-fixes). - iio: adc: at91_adc: fix possible memory leak in at91_adc_allocate_trigger() (git-fixes). - iio: core: Fix entry not deleted when iio_register_sw_trigger_type() fails (git-fixes). - iio: health: afe4403: Fix oob read in afe4403_read_raw (git-fixes). - iio: health: afe4404: Fix oob read in afe4404_[read|write]_raw (git-fixes). - iio: light: apds9960: fix wrong register for gesture gain (git-fixes). - iio: light: rpr0521: add missing Kconfig dependencies (git-fixes). - iio: pressure: ms5611: changed hardcoded SPI speed to value limited (git-fixes). - iio: trigger: sysfs: fix possible memory leak in iio_sysfs_trig_init() (git-fixes). - isdn: mISDN: netjet: fix wrong check of device registration (git-fixes). - iwlwifi: dbg: disable ini debug in 9000 family and below (git-fixes). - kABI: Fix after adding trace_iterator.wait_index (git-fixes). - kABI: remove new member of usbip_device (git-fixes). - kabi: fix transport_add_device change (git-fixes). - kexec: turn all kexec_mutex acquisitions into trylocks (git-fixes). - kvm: nVMX: reflect MTF VM-exits if injected by L1 (git-fixes). - loop: Check for overflow while configuring loop (git-fixes). - mISDN: fix misuse of put_device() in mISDN_register_device() (git-fixes). - mISDN: fix possible memory leak in mISDN_dsp_element_register() (git-fixes). - mISDN: fix possible memory leak in mISDN_register_device() (git-fixes). - md/raid5: Ensure stripe_fill happens on non-read IO with journal (git-fixes). - md: Replace snprintf with scnprintf (git-fixes). - media: dvb-frontends/drxk: initialize err to 0 (git-fixes). - media: meson: vdec: fix possible refcount leak in vdec_probe() (git-fixes). - media: v4l2: Fix v4l2_i2c_subdev_set_name function documentation (git-fixes). - media: venus: dec: Handle the case where find_format fails (git-fixes). - media: vim2m: initialize the media device earlier (git-fixes). - media: vivid: fix assignment of dev->fbuf_out_flags (git-fixes). - misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram() (git-fixes). - mmc: core: properly select voltage range without power cycle (git-fixes). - mmc: cqhci: Provide helper for resetting both SDHCI and CQHCI (git-fixes). - mmc: sdhci-of-arasan: Fix SDHCI_RESET_ALL for CQHCI (git-fixes). - mmc: sdhci-pci-o2micro: fix card detect fail issue caused by CD# debounce timeout (git-fixes). - mmc: sdhci-pci: Fix possible memory leak caused by missing pci_dev_put() (git-fixes). - nbd: Fix use-after-free in pid_show (git-fixes). - nbd: fix possible overflow for 'first_minor' in nbd_dev_add() (git-fixes). - nbd: fix possible overflow on 'first_minor' in nbd_dev_add() (git-fixes). - nbd: handle device refs for DESTROY_ON_DISCONNECT properly (git-fixes). - net/x25: Fix skb leak in x25_lapb_receive_frame() (git-fixes). - net: ethernet: nixge: fix NULL dereference (git-fixes). - net: ethernet: renesas: ravb: Fix promiscuous mode after system resumed (git-fixes). - net: hyperv: remove use of bpf_op_t (git-fixes). - net: netvsc: remove break after return (git-fixes). - net: phy: fix null-ptr-deref while probe() failed (git-fixes). - net: thunderbolt: Fix error handling in tbnet_init() (git-fixes). - net: usb: qmi_wwan: Set DTR quirk for MR400 (git-fixes). - net: usb: qmi_wwan: restore mtu min/max values after raw_ip switch (git-fixes). - nfc/nci: fix race with opening and closing (git-fixes). - nfc: nfcmrvl: Fix potential memory leak in nfcmrvl_i2c_nci_send() (git-fixes). - nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send() (git-fixes). - nfc: st-nci: fix incorrect validating logic in EVT_TRANSACTION (git-fixes). - nfc: st-nci: fix memory leaks in EVT_TRANSACTION (git-fixes). - nfsd: set the server_scope during service startup (bsc#1203746). - null_blk: Fail zone append to conventional zones (git-fixes). - null_blk: synchronization fix for zoned device (git-fixes). - nvmem: core: Check input parameter for NULL in nvmem_unregister() (bsc#1204241). - panic, kexec: make __crash_kexec() NMI safe (git-fixes). - parport_pc: Avoid FIFO port location truncation (git-fixes). - phy: stm32: fix an error code in probe (git-fixes). - pinctrl: devicetree: fix null pointer dereferencing in pinctrl_dt_to_map (git-fixes). - platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi (git-fixes). - powerpc/boot: Explicitly disable usage of SPE instructions (bsc#1156395). - powerpc/kvm: Fix kvm_use_magic_page (bsc#1156395). - printk: add missing memory barrier to wake_up_klogd() (bsc#1204934). - printk: use atomic updates for klogd work (bsc#1204934). - printk: wake waiters for safe and NMI contexts (bsc#1204934). - r8152: Add MAC passthrough support to new device (git-fixes). - r8152: add PID for the Lenovo OneLink+ Dock (git-fixes). - r8152: use new helper tcp_v6_gso_csum_prep (git-fixes). - rbd: fix possible memory leak in rbd_sysfs_init() (git-fixes). - regulator: core: fix UAF in destroy_regulator() (git-fixes). - regulator: core: fix kobject release warning and memory leak in regulator_register() (git-fixes). - regulator: twl6030: re-add TWL6032_SUBCLASS (git-fixes). - ring-buffer: Add ring_buffer_wake_waiters() (git-fixes). - ring-buffer: Allow splice to read previous partially read pages (git-fixes). - ring-buffer: Check for NULL cpu_buffer in ring_buffer_wake_waiters() (git-fixes). - ring-buffer: Check pending waiters when doing wake ups as well (git-fixes). - ring-buffer: Fix race between reset page and reading page (git-fixes). - ring-buffer: Have the shortest_full queue be the shortest not longest (git-fixes). - ring-buffer: Include dropped pages in counting dirty patches (git-fixes). - ring_buffer: Do not deactivate non-existant pages (git-fixes). - rndis_host: increase sleep time in the query-response loop (git-fixes). - rtc: mt6397: fix alarm register overwrite (git-fixes). - s390/boot: fix absolute zero lowcore corruption on boot (git-fixes). - s390/cpcmd: fix inline assembly register clobbering (git-fixes). - s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup (git-fixes). - s390/disassembler: increase ebpf disasm buffer size (git-fixes). - s390/futex: add missing EX_TABLE entry to __futex_atomic_op() (bsc#1205428 LTC#200501). - s390/hugetlb: fix prepare_hugepage_range() check for 2 GB hugepages (bsc#1203144 LTC#199881). - s390/mm: use non-quiescing sske for KVM switch to keyed guest (git-fixes). - s390/pci: add missing EX_TABLE entries to __pcistg_mio_inuser()/__pcilg_mio_inuser() (git-fixes). - s390/ptrace: return -ENOSYS when invalid syscall is supplied (git-fixes). - s390/uaccess: add missing EX_TABLE entries to __clear_user(), copy_in_user_mvcos(), copy_in_user_mvc(), clear_user_xc() and __strnlen_user() (bsc#1205428 LTC#200501). - s390/vtime: fix inline assembly clobber list (git-fixes). - s390/zcore: fix race when reading from hardware system area (git-fixes). - s390/zcrypt: fix zcard and zqueue hot-unplug memleak (git-fixes). - s390: Remove arch_has_random, arch_has_random_seed (git-fixes). - s390: fix double free of GS and RI CBs on fork() failure (git-fixes). - s390: fix nospec table alignments (git-fixes). - s390: mark __cpacf_query() as __always_inline (git-fixes). - scsi: bsg: Remove support for SCSI_IOCTL_SEND_COMMAND (git-fixes). - scsi: drivers: base: Propagate errors through the transport component (git-fixes). - scsi: drivers: base: Support atomic version of attribute_container_device_trigger (git-fixes). - scsi: ibmvfc: Avoid path failures during live migration (bsc#1065729 bsc#1204810 ltc#200162). - scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024 (bsc#1156395). - scsi: lpfc: Create a sysfs entry called lpfc_xcvr_data for transceiver info (bsc#1204957). - scsi: lpfc: Fix hard lockup when reading the rx_monitor from debugfs (bsc#1204957). - scsi: lpfc: Fix memory leak in lpfc_create_port() (bsc#1204957). - scsi: lpfc: Fix spelling mistake "unsolicted" -> "unsolicited" (bsc#1204957). - scsi: lpfc: Log when congestion management limits are in effect (bsc#1204957). - scsi: lpfc: Set sli4_param's cmf option to zero when CMF is turned off (bsc#1204957). - scsi: lpfc: Update lpfc version to 14.2.0.8 (bsc#1204957). - scsi: lpfc: Update the obsolete adapter list (bsc#1204142). - scsi: qla2xxx: Fix serialization of DCBX TLV data request (bsc#1204963). - scsi: qla2xxx: Use transport-defined speed mask for supported_speeds (bsc#1204963). - scsi: scsi_transport_sas: Fix error handling in sas_phy_add() (git-fixes). - scsi: storvsc: Correctly handle multiple flags in srb_status (git-fixes). - scsi: storvsc: Drop DID_TARGET_FAILURE use (git-fixes). - scsi: storvsc: Fix handling of srb_status and capacity change events (git-fixes). - scsi: storvsc: Fix max_outstanding_req_per_channel for Win8 and newer (bsc#1204017). - scsi: storvsc: Fix validation for unsolicited incoming packets (bsc#1204017). - scsi: storvsc: Log TEST_UNIT_READY errors as warnings (git-fixes). - scsi: storvsc: Miscellaneous code cleanups (git-fixes). - scsi: storvsc: Parameterize number hardware queues (git-fixes). - scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq (git-fixes). - scsi: storvsc: Resolve data race in storvsc_probe() (bsc#1204017). - scsi: storvsc: Return DID_ERROR for invalid commands (git-fixes). - scsi: storvsc: Update error logging (git-fixes). - scsi: storvsc: Use blk_mq_unique_tag() to generate requestIDs (bsc#1204017). - scsi: storvsc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (git-fixes). - scsi: storvsc: Use vmbus_requestor to generate transaction IDs for VMBus hardening (bsc#1204017). - scsi: storvsc: Validate length of incoming packet in storvsc_on_channel_callback() (bsc#1204017). - scsi: zfcp: Fix double free of FSF request when qdio send fails (git-fixes). - scsi: zfcp: Fix missing auto port scan and thus missing target ports (git-fixes). - serial: 8250: Fall back to non-DMA Rx if IIR_RDI occurs (git-fixes). - serial: 8250: omap: Fix unpaired pm_runtime_put_sync() in omap8250_remove() (git-fixes). - serial: 8250: omap: Flush PM QOS work on remove (git-fixes). - serial: 8250_lpss: Configure DMA also w/o DMA filter (git-fixes). - serial: 8250_omap: remove wait loop from Errata i202 workaround (git-fixes). - serial: imx: Add missing .thaw_noirq hook (git-fixes). - siox: fix possible memory leak in siox_device_add() (git-fixes). - slimbus: stream: correct presence rate frequencies (git-fixes). - spi: spi-imx: Fix spi_bus_clk if requested clock is higher than input clock (git-fixes). - spi: stm32: Print summary 'callbacks suppressed' message (git-fixes). - staging: greybus: light: fix a couple double frees (git-fixes). - swiotlb-xen: use vmalloc_to_page on vmalloc virt addresses (git-fixes). - tracing/ring-buffer: Have polling block on watermark (git-fixes). - tracing: Add ioctl() to force ring buffer waiters to wake up (git-fixes). - tracing: Disable interrupt or preemption before acquiring arch_spinlock_t (git-fixes). - tracing: Do not free snapshot if tracer is on cmdline (git-fixes). - tracing: Fix wild-memory-access in register_synth_event() (git-fixes). - tracing: Simplify conditional compilation code in tracing_set_tracer() (git-fixes). - tracing: Wake up ring buffer waiters on closing of the file (git-fixes). - tracing: Wake up waiters when tracing is disabled (git-fixes). - usb: add NO_LPM quirk for Realforce 87U Keyboard (git-fixes). - usb: chipidea: fix deadlock in ci_otg_del_timer (git-fixes). - usb: dwc3: exynos: Fix remove() function (git-fixes). - usb: dwc3: fix PHY disable sequence (git-fixes). - usb: dwc3: gadget: Clear ep descriptor last (git-fixes). - usb: dwc3: gadget: Fix null pointer exception (git-fixes). - usb: dwc3: qcom: fix runtime PM wakeup. - usb: dwc3: qcom: fix use-after-free on runtime-PM wakeup (git-fixes). - usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being a V0.96 controller (git-fixes). - usbip: add sysfs_lock to synchronize sysfs code paths (git-fixes). - usbip: stub-dev synchronize sysfs code paths (git-fixes). - usbip: stub_dev: remake locking for kABI (git-fixes). - usbip: synchronize event handler with sysfs code paths (git-fixes). - usbip: usbip_event: use global lock (git-fixes). - usbip: vudc synchronize sysfs code paths (git-fixes). - usbip: vudc_sysfs: use global lock (git-fixes). - use __netdev_notify_peers in hyperv (git-fixes). - v3 of "PCI: hv: Only reuse existing IRTE allocation for Multi-MSI" - v3 of "PCI: hv: Only reuse existing IRTE allocation for Multi-MSI" (bsc#1200845) - vfio/ccw: Do not change FSM state in subchannel event (git-fixes). - virtio-blk: Do not use MAX_DISCARD_SEGMENTS if max_discard_seg is zero (git-fixes). - virtio-blk: Use blk_validate_block_size() to validate block size (git-fixes). - virtio_blk: eliminate anonymous module_init & module_exit (git-fixes). - virtio_blk: fix the discard_granularity and discard_alignment queue limits (git-fixes). - vmlinux.lds.h: Fix placement of '.data..decrypted' section (git-fixes). - wifi: cfg80211: fix buffer overflow in elem comparison (git-fixes). - wifi: cfg80211: fix memory leak in query_regdb_file() (git-fixes). - wifi: cfg80211: silence a sparse RCU warning (git-fixes). - wifi: mac8021: fix possible oob access in ieee80211_get_rate_duration (git-fixes). - workqueue: do not skip lockdep work dependency in cancel_work_sync() (bsc#1204967). - x86/cpu: Restore AMD's DE_CFG MSR after resume (bsc#1205473). - x86/hyperv: Output host build info as normal Windows version number (git-fixes). - x86/hyperv: check cpu mask after interrupt has been disabled (git-fixes). - x86/kexec: Fix double-free of elf header buffer (bsc#1205567). - x86/microcode/AMD: Apply the patch early on every logical thread (bsc#1205264). - x86/xen: Add xen_no_vector_callback option to test PCI INTX delivery (git-fixes). - x86/xen: Distribute switch variables for initialization (git-fixes). - x86/xen: do not unbind uninitialized lock_kicker_irq (git-fixes). - xen-blkback: prevent premature module unload (git-fixes). - xen-netback: correct success/error reporting for the SKB-with-fraglist case (git-fixes). - xen/balloon: fix balloon kthread freezing (git-fixes). - xen/balloon: fix ballooned page accounting without hotplug enabled (git-fixes). - xen/balloon: fix cancelled balloon action (git-fixes). - xen/balloon: use a kernel thread instead a workqueue (git-fixes). - xen/gntdev: Avoid blocking in unmap_grant_pages() (git-fixes). - xen/gntdev: Ignore failure to unmap INVALID_GRANT_HANDLE (git-fixes). - xen/gntdev: Prevent leaking grants (git-fixes). - xen/pcpu: fix possible memory leak in register_pcpu() (git-fixes). - xen/privcmd: Corrected error handling path (git-fixes). - xen/privcmd: fix error exit of privcmd_ioctl_dm_op() (git-fixes). - xen/xenbus: Fix granting of vmalloc'd memory (git-fixes). - xen/xenbus: ensure xenbus_map_ring_valloc() returns proper grant status (git-fixes). - xen: Fix XenStore initialisation for XS_LOCAL (git-fixes). - xen: Fix event channel callback via INTX/GSI (git-fixes). - xen: delay xen_hvm_init_time_ops() if kdump is boot on vcpu>=32 (git-fixes). - xenbus: req->body should be updated before req->state (git-fixes). - xenbus: req->err should be updated before req->state (git-fixes). - xfs: Lower CIL flush limit for large logs (git-fixes). - xfs: Throttle commits on delayed background CIL push (git-fixes). - xfs: Use scnprintf() for avoiding potential buffer overflow (git-fixes). - xfs: check owner of dir3 blocks (git-fixes). - xfs: factor common AIL item deletion code (git-fixes). - xfs: open code insert range extent split helper (git-fixes). - xfs: rework collapse range into an atomic operation (git-fixes). - xfs: rework insert range into an atomic operation (git-fixes). - xfs: tail updates only need to occur when LSN changes (git-fixes). - xfs: trylock underlying buffer on dquot flush (git-fixes). - xfs: xfs_buf_corruption_error should take __this_address (git-fixes). - xhci: Remove device endpoints from bandwidth list when freeing the device (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.88.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.88.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.88.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.88.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.88.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.88.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.88.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.88.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.88.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.88.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.88.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.88.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.88.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.88.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.88.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.88.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.88.1.x86_64.rpm True openSUSE-SLE-15.3-2022-4574 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-4378: Fixed stack overflow in __do_proc_dointvec (bsc#1206207). - CVE-2022-42328: Guests could trigger denial of service via the netback driver (bsc#1206114). - CVE-2022-42329: Guests could trigger denial of service via the netback driver (bsc#1206113). - CVE-2022-3643: Guests could trigger NIC interface reset/abort/crash via netback driver (bsc#1206113). - CVE-2022-3635: Fixed a use-after-free in the tst_timer() of the file drivers/atm/idt77252.c (bsc#1204631). - CVE-2022-3424: Fixed use-after-free in gru_set_context_option(), gru_fault() and gru_handle_user_call_os() that could lead to kernel panic (bsc#1204166). - CVE-2022-41850: Fixed a race condition in roccat_report_event() in drivers/hid/hid-roccat.c (bsc#1203960). - CVE-2022-45934: Fixed a integer wraparound via L2CAP_CONF_REQ packets in l2cap_config_req in net/bluetooth/l2cap_core.c (bsc#1205796). - CVE-2022-3628: Fixed potential buffer overflow in brcmf_fweh_event_worker() in wifi/brcmfmac (bsc#1204868). - CVE-2022-3567: Fixed a to race condition in inet6_stream_ops()/inet6_dgram_ops() (bsc#1204414). - CVE-2022-41858: Fixed a denial of service in sl_tx_timeout() in drivers/net/slip (bsc#1205671). - CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation (bsc#1205128). - CVE-2022-4095: Fixed a use-after-free in rtl8712 driver (bsc#1205514). - CVE-2022-3903: Fixed a denial of service with the Infrared Transceiver USB driver (bsc#1205220). - CVE-2022-2964: Fixed memory corruption issues in ax88179_178a devices (bsc#1202686). - CVE-2021-4037: Fixed function logic vulnerability that allowed local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set (bsc#1198702). - CVE-2022-43750: Fixed vulnerability in usbmon that allowed a user-space client to corrupt the monitor's internal memory (bsc#1204653). - CVE-2022-3542: Fixed memory leak in bnx2x_tpa_stop() in drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c (bsc#1204402). - CVE-2022-3629: Fixed memory leak in vsock_connect() in net/vmw_vsock/af_vsock.c (bsc#1204635). - CVE-2022-3646: Fixed memory leak in nilfs_attach_log_writer() in fs/nilfs2/segment.c (bsc#1204646). - CVE-2022-3649: Fixed use-after-free in nilfs_new_inode() in fs/nilfs2/inode.c (bsc#1204647). - CVE-2022-3621: Fixed null pointer dereference in nilfs_bmap_lookup_at_level() in fs/nilfs2/inode.c (bsc#1204574). - CVE-2022-3594: Fixed excessive data logging in intr_callback() in drivers/net/usb/r8152.c (bsc#1204479). - CVE-2022-3586: Fixed use-after-free in socket buffer (SKB) that could allow a local unprivileged user to cause a denial of service (bsc#1204439). - CVE-2022-3565: Fixed use-after-free in del_timer() in drivers/isdn/mISDN/l1oip_core.c (bsc#1204431). - CVE-2022-3524: Fixed memory leak in ipv6_renew_options() in the IPv6 handler (bsc#1204354). - CVE-2022-40768: Fixed information leak in the scsi driver which allowed local users to obtain sensitive information from kernel memory (bsc#1203514). - CVE-2022-42703: Fixed use-after-free in mm/rmap.c related to leaf anon_vma double reuse (bsc#1204168). - CVE-2022-3169: Fixed an denial of service though request to NVME_IOCTL_RESET and NVME_IOCTL_SUBSYS_RESET (bsc#1203290). - CVE-2022-40307: Fixed a race condition that could had been exploited to trigger a use-after-free in the efi firmware capsule-loader.c (bsc#1203322). - CVE-2022-42895: Fixed an information leak in the net/bluetooth/l2cap_core.c's l2cap_parse_conf_req() which can be used to leak kernel pointers remotely (bsc#1205705). - CVE-2022-42896: Fixed a use-after-free vulnerability in the net/bluetooth/l2cap_core.c's l2cap_connect() and l2cap_le_connect_req() which may have allowed code execution and leaking kernel memory (respectively) remotely via Bluetooth (bsc#1205709). - CVE-2022-3545: Fixed a use-after-free vulnerability is area_cache_get() of the file drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c (bsc#1204415). - CVE-2022-3521: Fixed a race condition in kcm_tx_work() of the file net/kcm/kcmsock.c (bsc#1204355). - CVE-2022-2153: Fixed a NULL pointer dereference in KVM when attempting to set a SynIC IRQ (bsc#1200788). The following non-security bugs were fixed: - Drivers: hv: vmbus: Add VMbus IMC device to unsupported list (git-fixes). - Drivers: hv: vmbus: Add vmbus_requestor data structure for VMBus hardening (bsc#1204017, bsc#1205617). - Drivers: hv: vmbus: Drop error message when 'No request id available' (bsc#1204017). - Drivers: hv: vmbus: fix double free in the error path of vmbus_add_channel_work() (git-fixes). - Drivers: hv: vmbus: Fix handling of messages with transaction ID of zero (bsc#1204017). - Drivers: hv: vmbus: fix possible memory leak in vmbus_device_register() (git-fixes). - Drivers: hv: vmbus: Fix potential crash on module unload (git-fixes). - Drivers: hv: vmbus: Introduce {lock,unlock}_requestor() (bsc#1204017, bsc#1205617). - Drivers: hv: vmbus: Introduce vmbus_request_addr_match() (bsc#1204017, bsc#1205617). - Drivers: hv: vmbus: Introduce vmbus_sendpacket_getid() (bsc#1204017, bsc#1205617). - Drivers: hv: vmbus: Move __vmbus_open() (bsc#1204017). - Drivers: hv: vmbus: Prevent load re-ordering when reading ring buffer (git-fixes). - hv_netvsc: Add check for kvmalloc_array (git-fixes). - hv_netvsc: Add error handling while switching data path (bsc#1204850). - hv_netvsc: Add validation for untrusted Hyper-V values (bsc#1204017). - hv_netvsc: Cache the current data path to avoid duplicate call and message (bsc#1204017). - hv_netvsc: Check VF datapath when sending traffic to VF (bsc#1204017). - hv_netvsc: Fix error handling in netvsc_set_features() (git-fixes). - hv_netvsc: Fix race between VF offering and VF association message from host (bsc#1204850). - hv_netvsc: Print value of invalid ID in netvsc_send_{completion,tx_complete}() (bsc#1204017). - hv_netvsc: Process NETDEV_GOING_DOWN on VF hot remove (bsc#1204850). - hv_netvsc: Remove unnecessary round_up for recv_completion_cnt (bsc#1204017). - hv_netvsc: Reset the RSC count if NVSP_STAT_FAIL in netvsc_receive() (bsc#1204017). - hv_netvsc: Sync offloading features to VF NIC (git-fixes). - hv_netvsc: use netif_is_bond_master() instead of open code (git-fixes). - hv_netvsc: Use vmbus_requestor to generate transaction IDs for VMBus hardening (bsc#1204017). - hv_netvsc: Wait for completion on request SWITCH_DATA_PATH (bsc#1204017). - ipv6: ping: fix wrong checksum for large frames (bsc#1203183). - net: hyperv: remove use of bpf_op_t (git-fixes). - net: netvsc: remove break after return (git-fixes). - PCI: hv: Add check for hyperv_initialized in init_hv_pci_drv() (bsc#1204446). - PCI: hv: Add validation for untrusted Hyper-V values (bsc#1204017). - PCI: hv: Drop msi_controller structure (bsc#1204446). - PCI: hv: Fix a race condition when removing the device (bsc#1204446). - PCI: hv: Fix hv_arch_irq_unmask() for multi-MSI (bsc#1200845). - PCI: hv: Fix interrupt mapping for multi-MSI (bsc#1200845). - PCI: hv: Fix multi-MSI to allow more than one MSI vector (bsc#1200845). - PCI: hv: Fix NUMA node assignment when kernel boots with custom NUMA topology (bsc#1199365). - PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (bsc#1204446). - PCI: hv: Fix synchronization between channel callback and hv_compose_msi_msg() (bsc#1204017, bsc#1203860, bsc#1205617). - PCI: hv: Fix synchronization between channel callback and hv_pci_bus_exit() (bsc#1204017, bsc#1205617). - PCI: hv: Fix the definition of vector in hv_compose_msi_msg() (bsc#1200845). - PCI: hv: Make the code arch neutral by adding arch specific interfaces (bsc#1200845). - PCI: hv: Only reuse existing IRTE allocation for Multi-MSI (bsc#1200845). - PCI: hv: Remove bus device removal unused refcount/functions (bsc#1204446). - PCI: hv: Remove unnecessary use of %hx (bsc#1204446). - PCI: hv: Reuse existing IRTE allocation in compose_msi_msg() (bsc#1200845). - PCI: hv: Support for create interrupt v3 (git-fixes). - PCI: hv: Use struct_size() helper (bsc#1204446). - PCI: hv: Use vmbus_requestor to generate transaction IDs for VMbus hardening (bsc#1204017). - Revert "scsi: storvsc: Validate length of incoming packet in storvsc_on_channel_callback()" (bsc#1204017). - scsi: storvsc: Drop DID_TARGET_FAILURE use (git-fixes). - scsi: storvsc: Fix max_outstanding_req_per_channel for Win8 and newer (bsc#1204017). - scsi: storvsc: Fix validation for unsolicited incoming packets (bsc#1204017). - scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq (git-fixes). - scsi: storvsc: Resolve data race in storvsc_probe() (bsc#1204017). - scsi: storvsc: Use blk_mq_unique_tag() to generate requestIDs (bsc#1204017). - scsi: storvsc: Use vmbus_requestor to generate transaction IDs for VMBus hardening (bsc#1204017). - scsi: storvsc: Validate length of incoming packet in storvsc_on_channel_callback() (bsc#1204017). - sunrpc: Re-purpose trace_svc_process (bsc#1205006). - x86/cpu: Restore AMD's DE_CFG MSR after resume (bsc#1205473). - x86/hyperv: Output host build info as normal Windows version number (git-fixes). - x86/hyperv: Set pv_info.name to "Hyper-V" (git-fixes). kernel-debug-4.12.14-150100.197.131.1.nosrc.rpm True kernel-debug-base-4.12.14-150100.197.131.1.x86_64.rpm True kernel-default-4.12.14-150100.197.131.1.nosrc.rpm True kernel-kvmsmall-4.12.14-150100.197.131.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-150100.197.131.1.x86_64.rpm True kernel-vanilla-4.12.14-150100.197.131.1.nosrc.rpm True kernel-vanilla-4.12.14-150100.197.131.1.x86_64.rpm True kernel-vanilla-base-4.12.14-150100.197.131.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-150100.197.131.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.131.1.x86_64.rpm True kernel-default-man-4.12.14-150100.197.131.1.s390x.rpm True kernel-vanilla-4.12.14-150100.197.131.1.s390x.rpm True kernel-vanilla-base-4.12.14-150100.197.131.1.s390x.rpm True kernel-vanilla-devel-4.12.14-150100.197.131.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.131.1.s390x.rpm True kernel-zfcpdump-4.12.14-150100.197.131.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-150100.197.131.1.s390x.rpm True kernel-debug-base-4.12.14-150100.197.131.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.131.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-150100.197.131.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-150100.197.131.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.131.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.131.1.aarch64.rpm True kernel-vanilla-base-4.12.14-150100.197.131.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-150100.197.131.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.131.1.aarch64.rpm True openSUSE-SLE-15.3-2022-4458 moderate SUSE Updates openSUSE-SLE 15.3 This update for container-suseconnect fixes the following issues: container-suseconnect was updated to 2.4.0 (jsc#PED-1710): * Fix docker build example for non-SLE hosts * Minor fixes to --help and README * Improve documentation when building with podman on non-SLE host * Add flag --log-credentials-errors * Update capture to the 1.0.0 release * Use URL.Redacted() to avoid security scanner warning * Regcode fix - strip binaries (removes 4MB/25% of the uncompressed size) (bsc#1186827) container-suseconnect-2.4.0-150000.4.22.1.src.rpm container-suseconnect-2.4.0-150000.4.22.1.x86_64.rpm container-suseconnect-2.4.0-150000.4.22.1.s390x.rpm container-suseconnect-2.4.0-150000.4.22.1.ppc64le.rpm container-suseconnect-2.4.0-150000.4.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-4463 important SUSE Updates openSUSE-SLE 15.3 This update for containerd fixes the following issues: Update to containerd v1.6.12 including Docker v20.10.21-ce (bsc#1206065). Also includes the following fix: - CVE-2022-23471: host memory exhaustion through Terminal resize goroutine leak (bsc#1206235). - CVE-2022-27191: crash in a golang.org/x/crypto/ssh server (bsc#1197284). containerd-1.6.12-150000.79.1.src.rpm containerd-1.6.12-150000.79.1.x86_64.rpm containerd-ctr-1.6.12-150000.79.1.x86_64.rpm containerd-1.6.12-150000.79.1.s390x.rpm containerd-ctr-1.6.12-150000.79.1.s390x.rpm containerd-1.6.12-150000.79.1.ppc64le.rpm containerd-ctr-1.6.12-150000.79.1.ppc64le.rpm containerd-1.6.12-150000.79.1.aarch64.rpm containerd-ctr-1.6.12-150000.79.1.aarch64.rpm openSUSE-SLE-15.3-2022-4453 important SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: Update to version 3.6.10: - CVE-2022-3725: OPUS dissector crash (bsc#1204822). - Multiple dissector infinite loops (bsc#1206189). - Kafka dissector memory exhaustion (bsc#1206190). libwireshark15-3.6.10-150000.3.78.1.x86_64.rpm libwiretap12-3.6.10-150000.3.78.1.x86_64.rpm libwsutil13-3.6.10-150000.3.78.1.x86_64.rpm wireshark-3.6.10-150000.3.78.1.src.rpm wireshark-3.6.10-150000.3.78.1.x86_64.rpm wireshark-devel-3.6.10-150000.3.78.1.x86_64.rpm wireshark-ui-qt-3.6.10-150000.3.78.1.x86_64.rpm libwireshark15-3.6.10-150000.3.78.1.s390x.rpm libwiretap12-3.6.10-150000.3.78.1.s390x.rpm libwsutil13-3.6.10-150000.3.78.1.s390x.rpm wireshark-3.6.10-150000.3.78.1.s390x.rpm wireshark-devel-3.6.10-150000.3.78.1.s390x.rpm wireshark-ui-qt-3.6.10-150000.3.78.1.s390x.rpm libwireshark15-3.6.10-150000.3.78.1.ppc64le.rpm libwiretap12-3.6.10-150000.3.78.1.ppc64le.rpm libwsutil13-3.6.10-150000.3.78.1.ppc64le.rpm wireshark-3.6.10-150000.3.78.1.ppc64le.rpm wireshark-devel-3.6.10-150000.3.78.1.ppc64le.rpm wireshark-ui-qt-3.6.10-150000.3.78.1.ppc64le.rpm libwireshark15-3.6.10-150000.3.78.1.aarch64.rpm libwiretap12-3.6.10-150000.3.78.1.aarch64.rpm libwsutil13-3.6.10-150000.3.78.1.aarch64.rpm wireshark-3.6.10-150000.3.78.1.aarch64.rpm wireshark-devel-3.6.10-150000.3.78.1.aarch64.rpm wireshark-ui-qt-3.6.10-150000.3.78.1.aarch64.rpm openSUSE-SLE-15.3-2022-4398 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.18 fixes the following issues: Update to version 1.18.9, includes the following security fixes: - CVE-2022-41717: net/http: limit canonical header cache by bytes, not entries (bsc#1206135) - CVE-2022-41720: os, net/http: avoid escapes from os.DirFS and http.Dir on Windows (bsc#1206134) go1.18-1.18.9-150000.1.40.1.src.rpm go1.18-1.18.9-150000.1.40.1.x86_64.rpm go1.18-doc-1.18.9-150000.1.40.1.x86_64.rpm go1.18-race-1.18.9-150000.1.40.1.x86_64.rpm go1.18-1.18.9-150000.1.40.1.s390x.rpm go1.18-doc-1.18.9-150000.1.40.1.s390x.rpm go1.18-1.18.9-150000.1.40.1.ppc64le.rpm go1.18-doc-1.18.9-150000.1.40.1.ppc64le.rpm go1.18-1.18.9-150000.1.40.1.aarch64.rpm go1.18-doc-1.18.9-150000.1.40.1.aarch64.rpm go1.18-race-1.18.9-150000.1.40.1.aarch64.rpm openSUSE-SLE-15.3-2022-4397 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.19 fixes the following issues: Update to version 1.19.4, includes the following security fixes: - CVE-2022-41717: net/http: limit canonical header cache by bytes, not entries (bsc#1206135). - CVE-2022-41720: os, net/http: avoid escapes from os.DirFS and http.Dir on Windows (bsc#1206134). go1.19-1.19.4-150000.1.18.1.src.rpm go1.19-1.19.4-150000.1.18.1.x86_64.rpm go1.19-doc-1.19.4-150000.1.18.1.x86_64.rpm go1.19-race-1.19.4-150000.1.18.1.x86_64.rpm go1.19-1.19.4-150000.1.18.1.s390x.rpm go1.19-doc-1.19.4-150000.1.18.1.s390x.rpm go1.19-1.19.4-150000.1.18.1.ppc64le.rpm go1.19-doc-1.19.4-150000.1.18.1.ppc64le.rpm go1.19-1.19.4-150000.1.18.1.aarch64.rpm go1.19-doc-1.19.4-150000.1.18.1.aarch64.rpm go1.19-race-1.19.4-150000.1.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-4616 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-4378: Fixed stack overflow in __do_proc_dointvec (bsc#1206207). - CVE-2022-3635: Fixed a use-after-free in the tst_timer() of the file drivers/atm/idt77252.c (bsc#1204631). - CVE-2022-41850: Fixed a race condition in roccat_report_event() in drivers/hid/hid-roccat.c (bsc#1203960). - CVE-2022-45934: Fixed a integer wraparound via L2CAP_CONF_REQ packets in l2cap_config_req in net/bluetooth/l2cap_core.c (bsc#1205796). - CVE-2022-3628: Fixed potential buffer overflow in brcmf_fweh_event_worker() in wifi/brcmfmac (bsc#1204868). - CVE-2022-3567: Fixed a to race condition in inet6_stream_ops()/inet6_dgram_ops() (bsc#1204414). - CVE-2022-41858: Fixed a denial of service in sl_tx_timeout() in drivers/net/slip (bsc#1205671). - CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation (bsc#1205128). - CVE-2022-4095: Fixed a use-after-free in rtl8712 driver (bsc#1205514). - CVE-2022-3903: Fixed a denial of service with the Infrared Transceiver USB driver (bsc#1205220). - CVE-2022-2602: Fixed a local privilege escalation vulnerability involving Unix socket Garbage Collection and io_uring (bsc#1204228). - CVE-2022-4139: Fixed an issue with the i915 driver that allowed the GPU to access any physical memory (bsc#1205700). - CVE-2022-4129: Fixed a denial of service with the Layer 2 Tunneling Protocol (L2TP). A missing lock when clearing sk_user_data can lead to a race condition and NULL pointer dereference. (bsc#1205711) - CVE-2022-42895: Fixed an information leak in the net/bluetooth/l2cap_core.c's l2cap_parse_conf_req() which can be used to leak kernel pointers remotely (bsc#1205705). - CVE-2022-42896: Fixed a use-after-free vulnerability in the net/bluetooth/l2cap_core.c's l2cap_connect() and l2cap_le_connect_req() which may have allowed code execution and leaking kernel memory (respectively) remotely via Bluetooth (bsc#1205709). - CVE-2022-3707: Fixed a double free in the Intel GVT-g graphics driver (bsc#1204780). The following non-security bugs were fixed: - ALSA: hda/ca0132: add quirk for EVGA Z390 DARK (git-fixes). - ALSA: hda: fix potential memleak in 'add_widget_node' (git-fixes). - ALSA: usb-audio: Add DSD support for Accuphase DAC-60 (git-fixes). - ALSA: usb-audio: Add quirk entry for M-Audio Micro (git-fixes). - ALSA: usb-audio: Drop snd_BUG_ON() from snd_usbmidi_output_open() (git-fixes). - ASoC: codecs: jz4725b: Fix spelling mistake "Sourc" -> "Source", "Routee" -> "Route" (git-fixes). - ASoC: codecs: jz4725b: add missed Line In power control bit (git-fixes). - ASoC: codecs: jz4725b: fix capture selector naming (git-fixes). - ASoC: codecs: jz4725b: fix reported volume for Master ctl (git-fixes). - ASoC: codecs: jz4725b: use right control for Capture Volume (git-fixes). - ASoC: core: Fix use-after-free in snd_soc_exit() (git-fixes). - ASoC: max98373: Add checks for devm_kcalloc (git-fixes). - ASoC: soc-utils: Remove __exit for snd_soc_util_exit() (git-fixes). - ASoC: wm5102: Revert "ASoC: wm5102: Fix PM disable depth imbalance in wm5102_probe" (git-fixes). - ASoC: wm5110: Revert "ASoC: wm5110: Fix PM disable depth imbalance in wm5110_probe" (git-fixes). - ASoC: wm8962: Add an event handler for TEMP_HP and TEMP_SPK (git-fixes). - ASoC: wm8997: Revert "ASoC: wm8997: Fix PM disable depth imbalance in wm8997_probe" (git-fixes). - Bluetooth: L2CAP: Fix attempting to access uninitialized memory (git-fixes). - Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (git-fixes). - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (git-fixes). - Do not enable CONFIG_ATARI_PARTITION (jsc#PED-1573) - Drivers: hv: vmbus: Add /sys/bus/vmbus/hibernation (git-fixes). - Drivers: hv: vmbus: Add VMbus IMC device to unsupported list (git-fixes). - Drivers: hv: vmbus: Add vmbus_requestor data structure for VMBus hardening (bsc#1204017). - Drivers: hv: vmbus: Drop error message when 'No request id available' (bsc#1204017). - Drivers: hv: vmbus: Fix duplicate CPU assignments within a device (git-fixes). - Drivers: hv: vmbus: Fix handling of messages with transaction ID of zero (bsc#1204017). - Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj (git-fixes). - Drivers: hv: vmbus: Fix potential crash on module unload (git-fixes). - Drivers: hv: vmbus: Introduce vmbus_request_addr_match() (bsc#1204017). - Drivers: hv: vmbus: Introduce vmbus_sendpacket_getid() (bsc#1204017). - Drivers: hv: vmbus: Introduce {lock,unlock}_requestor() (bsc#1204017). - Drivers: hv: vmbus: Prevent load re-ordering when reading ring buffer (git-fixes). - Drivers: hv: vmbus: Remove unused linux/version.h header (git-fixes). - Drivers: hv: vmbus: Replace smp_store_mb() with virt_store_mb() (git-fixes). - Drivers: hv: vmbus: fix double free in the error path of vmbus_add_channel_work() (git-fixes). - Drivers: hv: vmbus: fix possible memory leak in vmbus_device_register() (git-fixes). - Drivers: hv: vmbus: remove unused function (git-fixes). - HID: saitek: add madcatz variant of MMO7 mouse device ID (git-fixes). - Input: i8042 - fix leaking of platform device on module removal (git-fixes). - Input: iforce - invert valid length check when fetching device IDs (git-fixes). - KVM: VMX: Always VMCLEAR in-use VMCSes during crash with kexec support (git-fixes). - KVM: nVMX: Invalidate all EPTP contexts when emulating INVEPT for L1 (git-fixes). - KVM: nVMX: Validate the EPTP when emulating INVEPT(EXTENT_CONTEXT) (git-fixes). - KVM: nVMX: clear PIN_BASED_POSTED_INTR from nested pinbased_ctls only when apicv is globally disabled (git-fixes). - KVM: s390: Add a routine for setting userspace CPU state (git-fixes). - KVM: s390: Fix handle_sske page fault handling (git-fixes). - KVM: s390: Simplify SIGP Set Arch handling (git-fixes). - KVM: s390: get rid of register asm usage (git-fixes). - KVM: s390: pv: avoid stalls when making pages secure (git-fixes). - KVM: s390: pv: do not allow userspace to set the clock under PV (git-fixes). - KVM: s390: pv: leak the topmost page table when destroy fails (git-fixes). - KVM: s390: reduce number of IO pins to 1 (git-fixes). - NFC: nci: fix memory leak in nci_rx_data_packet() (git-fixes). - NFS: Refactor nfs_instantiate() for dentry referencing callers (bsc#1204215). - NFSv3: use nfs_add_or_obtain() to create and reference inodes (bsc#1204215). - PCI: hv: Add check for hyperv_initialized in init_hv_pci_drv() (bsc#1204446). - PCI: hv: Add validation for untrusted Hyper-V values (git-fixes). - PCI: hv: Drop msi_controller structure (bsc#1204446). - PCI: hv: Fix a race condition when removing the device (bsc#1204446). - PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (bsc#1204446). - PCI: hv: Fix synchronization between channel callback and hv_compose_msi_msg() (bsc#1204017). - PCI: hv: Fix synchronization between channel callback and hv_pci_bus_exit() (bsc#1204017). - PCI: hv: Fix the definition of vector in hv_compose_msi_msg() (bsc#1200845). - PCI: hv: Fix typo (bsc#1204446). - PCI: hv: Remove bus device removal unused refcount/functions (bsc#1204446). - PCI: hv: Remove unnecessary use of %hx (bsc#1204446). - PCI: hv: Support for create interrupt v3 (bsc#1204446). - PCI: hv: Use PCI_ERROR_RESPONSE to identify config read errors (bsc#1204446). - PCI: hv: Use vmbus_requestor to generate transaction IDs for VMbus hardening (bsc#1204017). - RDMA/core/sa_query: Remove unused argument (git-fixes) - RDMA/hns: Fix spelling mistakes of original (git-fixes) - RDMA/qedr: Add support for user mode XRC-SRQ's (git-fixes) - RDMA/qedr: Fix reporting max_{send/recv}_wr attrs (git-fixes) - RDMA/qedr: Remove unsupported qedr_resize_cq callback (git-fixes) - RDMA/rxe: Fix memory leak in error path code (git-fixes) - SCSI: scsi_probe_lun: retry INQUIRY after timeout (bsc#1189297). - USB: add RESET_RESUME quirk for NVIDIA Jetson devices in RCM (git-fixes). - USB: serial: option: add Fibocom FM160 0x0111 composition (git-fixes). - USB: serial: option: add Sierra Wireless EM9191 (git-fixes). - USB: serial: option: add u-blox LARA-L6 modem (git-fixes). - USB: serial: option: add u-blox LARA-R6 00B modem (git-fixes). - USB: serial: option: remove old LARA-R6 PID (git-fixes). - USB: serial: option: remove old LARA-R6 PID. - Xen/gntdev: do not ignore kernel unmapping error (git-fixes). - add another bug reference to some hyperv changes (bsc#1205617). - arm/xen: Do not probe xenbus as part of an early initcall (git-fixes). - arm64: dts: imx8mm: Fix NAND controller size-cells (git-fixes) - arm64: dts: juno: Add thermal critical trip points (git-fixes) - ata: libata-transport: fix double ata_host_put() in ata_tport_add() (git-fixes). - ata: libata-transport: fix error handling in ata_tdev_add() (git-fixes). - ata: libata-transport: fix error handling in ata_tlink_add() (git-fixes). - ata: libata-transport: fix error handling in ata_tport_add() (git-fixes). - ata: pata_legacy: fix pdc20230_set_piomode() (git-fixes). - blk-crypto: fix check for too-large dun_bytes (git-fixes). - blk-mq: Properly init requests from blk_mq_alloc_request_hctx() (git-fixes). - blk-mq: do not create hctx debugfs dir until q->debugfs_dir is created (git-fixes). - blk-wbt: call rq_qos_add() after wb_normal is initialized (git-fixes). - blktrace: Trace remapped requests correctly (git-fixes). - block-map: add __GFP_ZERO flag for alloc_page in function bio_copy_kern (git-fixes). - block: Add a helper to validate the block size (git-fixes). - block: assign bi_bdev for cloned bios in blk_rq_prep_clone (bsc#1204328). - block: ataflop: fix breakage introduced at blk-mq refactoring (git-fixes). - block: ataflop: more blk-mq refactoring fixes (git-fixes). - block: fix infinite loop for invalid zone append (git-fixes). - block: limit request dispatch loop duration (git-fixes). - block: nbd: add sanity check for first_minor (git-fixes). - block: use "unsigned long" for blk_validate_block_size() (git-fixes). - bus: sunxi-rsb: Support atomic transfers (git-fixes). - can: cc770: cc770_isa_probe(): add missing free_cc770dev() (git-fixes). - can: sja1000_isa: sja1000_isa_probe(): add missing free_sja1000dev() (git-fixes). - capabilities: fix undefined behavior in bit shift for CAP_TO_MASK (git-fixes). - ceph: allow ceph.dir.rctime xattr to be updatable (bsc#1205989). - ceph: do not access the kiocb after aio requests (bsc#1205984). - ceph: fix fscache invalidation (bsc#1205985). - ceph: lockdep annotations for try_nonblocking_invalidate (bsc#1205988). - ceph: remove bogus checks and WARN_ONs from ceph_set_page_dirty (bsc#1205986). - ceph: request Fw caps before updating the mtime in ceph_write_iter (bsc#1205987). - cifs: skip extra NULL byte in filenames (bsc#1204791). - dm era: commit metadata in postsuspend after worker stops (git-fixes). - dm integrity: set journal entry unused when shrinking device (git-fixes). - dm mirror log: clear log bits up to BITS_PER_LONG boundary (git-fixes). - dm mpath: only use ktime_get_ns() in historical selector (git-fixes). - dm raid: fix accesses beyond end of raid member array (git-fixes). - dm raid: fix address sanitizer warning in raid_resume (git-fixes). - dm raid: fix address sanitizer warning in raid_status (git-fixes). - dm thin: fix use-after-free crash in dm_sm_register_threshold_callback (git-fixes). - dm verity fec: fix misaligned RS roots IO (git-fixes). - dm writecache: fix writing beyond end of underlying device when shrinking (git-fixes). - dm writecache: return the exact table values that were set (git-fixes). - dm writecache: set a default MAX_WRITEBACK_JOBS (git-fixes). - dm: fix request-based DM to not bounce through indirect dm_submit_bio (git-fixes). - dm: remove special-casing of bio-based immutable singleton target on NVMe (git-fixes). - dm: return early from dm_pr_call() if DM device is suspended (git-fixes). - dma-buf: fix racing conflict of dma_heap_add() (git-fixes). - dmaengine: at_hdmac: Check return code of dma_async_device_register (git-fixes). - dmaengine: at_hdmac: Do not allow CPU to reorder channel enable (git-fixes). - dmaengine: at_hdmac: Do not start transactions at tx_submit level (git-fixes). - dmaengine: at_hdmac: Fix at_lli struct definition (git-fixes). - dmaengine: at_hdmac: Fix completion of unissued descriptor in case of errors (git-fixes). - dmaengine: at_hdmac: Fix impossible condition (git-fixes). - dmaengine: mv_xor_v2: Fix a resource leak in mv_xor_v2_remove() (git-fixes). - dmaengine: pxa_dma: use platform_get_irq_optional (git-fixes). - drivers/hv: remove obsolete TODO and fix misleading typo in comment (git-fixes). - drivers: hv: Fix EXPORT_SYMBOL and tab spaces issue (git-fixes). - drivers: hv: Fix hyperv_record_panic_msg path on comment (git-fixes). - drivers: hv: Fix missing error code in vmbus_connect() (git-fixes). - drivers: hv: vmbus: Fix call msleep using &lt; 20ms (git-fixes). - drivers: hv: vmbus: Fix checkpatch LINE_SPACING (git-fixes). - drivers: hv: vmbus: Fix checkpatch SPLIT_STRING (git-fixes). - drivers: hv: vmbus: Replace symbolic permissions by octal permissions (git-fixes). - drivers: net: slip: fix NPD bug in sl_tx_timeout() (git-fixes). - drm/drv: Fix potential memory leak in drm_dev_init() (git-fixes). - drm/i915/dmabuf: fix sg_table handling in map_dma_buf (git-fixes). - drm/i915/sdvo: Filter out invalid outputs more sensibly (git-fixes). - drm/i915/sdvo: Setup DDC fully before output init (git-fixes). - drm/imx: imx-tve: Fix return type of imx_tve_connector_mode_valid (git-fixes). - drm/panel: simple: set bpc field for logic technologies displays (git-fixes). - drm/rockchip: dsi: Force synchronous probe (git-fixes). - drm/vc4: Fix missing platform_unregister_drivers() call in vc4_drm_register() (git-fixes). - drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker() (git-fixes). - fbdev: smscufx: Fix several use-after-free bugs (git-fixes). - firmware: arm_scmi: Suppress the driver's bind attributes (git-fixes). - ftrace: Fix char print issue in print_ip_ins() (git-fixes). - ftrace: Fix null pointer dereference in ftrace_add_mod() (git-fixes). - ftrace: Fix the possible incorrect kernel message (git-fixes). - ftrace: Fix use-after-free for dynamic ftrace_ops (git-fixes). - ftrace: Optimize the allocation for mcount entries (git-fixes). - ftrace: Properly unset FTRACE_HASH_FL_MOD (git-fixes). - fuse: add file_modified() to fallocate (bsc#1205330). - fuse: fix readdir cache race (bsc#1205329). - hamradio: fix issue of dev reference count leakage in bpq_device_event() (git-fixes). - hv: hyperv.h: Remove unused inline functions (git-fixes). - hv_netvsc: Add a comment clarifying batching logic (git-fixes). - hv_netvsc: Add check for kvmalloc_array (git-fixes). - hv_netvsc: Add error handling while switching data path (bsc#1204850). - hv_netvsc: Allocate the recv_buf buffers after NVSP_MSG1_TYPE_SEND_RECV_BUF (git-fixes). - hv_netvsc: Check VF datapath when sending traffic to VF (git-fixes). - hv_netvsc: Fix potential dereference of NULL pointer (git-fixes). - hv_netvsc: Fix race between VF offering and VF association message from host (bsc#1204850). - hv_netvsc: Print value of invalid ID in netvsc_send_{completion,tx_complete}() (git-fixes). - hv_netvsc: Process NETDEV_GOING_DOWN on VF hot remove (bsc#1204850). - hv_netvsc: Use bitmap_zalloc() when applicable (git-fixes). - hv_netvsc: Use vmbus_requestor to generate transaction IDs for VMBus hardening (bsc#1204017). - hv_netvsc: Validate number of allocated sub-channels (git-fixes). - hv_netvsc: Wait for completion on request SWITCH_DATA_PATH (bsc#1204017). - hv_netvsc: use netif_is_bond_master() instead of open code (git-fixes). - hv_utils: Fix passing zero to 'PTR_ERR' warning (git-fixes). - hwmon: (coretemp) Check for null before removing sysfs attrs (git-fixes). - hwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new() (git-fixes). - hwmon: (i5500_temp) fix missing pci_disable_device() (git-fixes). - hwmon: (ibmpex) Fix possible UAF when ibmpex_register_bmc() fails (git-fixes). - i2c: i801: add lis3lv02d's I2C address for Vostro 5568 (git-fixes). - ibmvnic: Free rwi on reset success (bsc#1184350 ltc#191533 git-fixes). - iio: adc: at91_adc: fix possible memory leak in at91_adc_allocate_trigger() (git-fixes). - iio: core: Fix entry not deleted when iio_register_sw_trigger_type() fails (git-fixes). - iio: health: afe4403: Fix oob read in afe4403_read_raw (git-fixes). - iio: health: afe4404: Fix oob read in afe4404_[read|write]_raw (git-fixes). - iio: light: apds9960: fix wrong register for gesture gain (git-fixes). - iio: light: rpr0521: add missing Kconfig dependencies (git-fixes). - iio: pressure: ms5611: changed hardcoded SPI speed to value limited (git-fixes). - iio: trigger: sysfs: fix possible memory leak in iio_sysfs_trig_init() (git-fixes). - isdn: mISDN: netjet: fix wrong check of device registration (git-fixes). - iwlwifi: dbg: disable ini debug in 9000 family and below (git-fixes). - kABI: Fix after adding trace_iterator.wait_index (git-fixes). - kABI: remove new member of usbip_device (git-fixes). - kabi: fix transport_add_device change (git-fixes). - kexec: turn all kexec_mutex acquisitions into trylocks (git-fixes). - kvm: nVMX: reflect MTF VM-exits if injected by L1 (git-fixes). - livepatch: Add a missing newline character in klp_module_coming() (bsc#1071995). - livepatch: fix race between fork and KLP transition (bsc#1071995). - loop: Check for overflow while configuring loop (git-fixes). - mISDN: fix misuse of put_device() in mISDN_register_device() (git-fixes). - mISDN: fix possible memory leak in mISDN_dsp_element_register() (git-fixes). - mISDN: fix possible memory leak in mISDN_register_device() (git-fixes). - md/raid5: Ensure stripe_fill happens on non-read IO with journal (git-fixes). - md: Replace snprintf with scnprintf (git-fixes). - media: dvb-frontends/drxk: initialize err to 0 (git-fixes). - media: meson: vdec: fix possible refcount leak in vdec_probe() (git-fixes). - media: v4l2: Fix v4l2_i2c_subdev_set_name function documentation (git-fixes). - media: venus: dec: Handle the case where find_format fails (git-fixes). - media: vim2m: initialize the media device earlier (git-fixes). - media: vivid: fix assignment of dev->fbuf_out_flags (git-fixes). - misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram() (git-fixes). - mmc: core: properly select voltage range without power cycle (git-fixes). - mmc: cqhci: Provide helper for resetting both SDHCI and CQHCI (git-fixes). - mmc: sdhci-of-arasan: Fix SDHCI_RESET_ALL for CQHCI (git-fixes). - mmc: sdhci-pci-o2micro: fix card detect fail issue caused by CD# debounce timeout (git-fixes). - mmc: sdhci-pci: Fix possible memory leak caused by missing pci_dev_put() (git-fixes). - nbd: Fix use-after-free in pid_show (git-fixes). - nbd: fix possible overflow for 'first_minor' in nbd_dev_add() (git-fixes). - nbd: fix possible overflow on 'first_minor' in nbd_dev_add() (git-fixes). - nbd: handle device refs for DESTROY_ON_DISCONNECT properly (git-fixes). - net/x25: Fix skb leak in x25_lapb_receive_frame() (git-fixes). - net: ethernet: nixge: fix NULL dereference (git-fixes). - net: ethernet: renesas: ravb: Fix promiscuous mode after system resumed (git-fixes). - net: hyperv: remove use of bpf_op_t (git-fixes). - net: netvsc: remove break after return (git-fixes). - net: phy: fix null-ptr-deref while probe() failed (git-fixes). - net: thunderbolt: Fix error handling in tbnet_init() (git-fixes). - net: usb: qmi_wwan: Set DTR quirk for MR400 (git-fixes). - net: usb: qmi_wwan: restore mtu min/max values after raw_ip switch (git-fixes). - nfc/nci: fix race with opening and closing (git-fixes). - nfc: nfcmrvl: Fix potential memory leak in nfcmrvl_i2c_nci_send() (git-fixes). - nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send() (git-fixes). - nfc: st-nci: fix incorrect validating logic in EVT_TRANSACTION (git-fixes). - nfc: st-nci: fix memory leaks in EVT_TRANSACTION (git-fixes). - nfsd: set the server_scope during service startup (bsc#1203746). - null_blk: Fail zone append to conventional zones (git-fixes). - null_blk: synchronization fix for zoned device (git-fixes). - nvmem: core: Check input parameter for NULL in nvmem_unregister() (bsc#1204241). - panic, kexec: make __crash_kexec() NMI safe (git-fixes). - parport_pc: Avoid FIFO port location truncation (git-fixes). - phy: stm32: fix an error code in probe (git-fixes). - pinctrl: devicetree: fix null pointer dereferencing in pinctrl_dt_to_map (git-fixes). - platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi (git-fixes). - powerpc/boot: Explicitly disable usage of SPE instructions (bsc#1156395). - powerpc/kvm: Fix kvm_use_magic_page (bsc#1156395). - printk: add missing memory barrier to wake_up_klogd() (bsc#1204934). - printk: use atomic updates for klogd work (bsc#1204934). - printk: wake waiters for safe and NMI contexts (bsc#1204934). - r8152: Add MAC passthrough support to new device (git-fixes). - r8152: add PID for the Lenovo OneLink+ Dock (git-fixes). - r8152: use new helper tcp_v6_gso_csum_prep (git-fixes). - rbd: fix possible memory leak in rbd_sysfs_init() (git-fixes). - regulator: core: fix UAF in destroy_regulator() (git-fixes). - regulator: core: fix kobject release warning and memory leak in regulator_register() (git-fixes). - regulator: twl6030: re-add TWL6032_SUBCLASS (git-fixes). - ring-buffer: Add ring_buffer_wake_waiters() (git-fixes). - ring-buffer: Allow splice to read previous partially read pages (git-fixes). - ring-buffer: Check for NULL cpu_buffer in ring_buffer_wake_waiters() (git-fixes). - ring-buffer: Check pending waiters when doing wake ups as well (git-fixes). - ring-buffer: Fix race between reset page and reading page (git-fixes). - ring-buffer: Have the shortest_full queue be the shortest not longest (git-fixes). - ring-buffer: Include dropped pages in counting dirty patches (git-fixes). - ring_buffer: Do not deactivate non-existant pages (git-fixes). - rndis_host: increase sleep time in the query-response loop (git-fixes). - rtc: mt6397: fix alarm register overwrite (git-fixes). - s390/boot: fix absolute zero lowcore corruption on boot (git-fixes). - s390/cpcmd: fix inline assembly register clobbering (git-fixes). - s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup (git-fixes). - s390/disassembler: increase ebpf disasm buffer size (git-fixes). - s390/futex: add missing EX_TABLE entry to __futex_atomic_op() (bsc#1205428 LTC#200501). - s390/hugetlb: fix prepare_hugepage_range() check for 2 GB hugepages (bsc#1203144 LTC#199881). - s390/mm: use non-quiescing sske for KVM switch to keyed guest (git-fixes). - s390/pci: add missing EX_TABLE entries to __pcistg_mio_inuser()/__pcilg_mio_inuser() (git-fixes). - s390/ptrace: return -ENOSYS when invalid syscall is supplied (git-fixes). - s390/uaccess: add missing EX_TABLE entries to __clear_user(), copy_in_user_mvcos(), copy_in_user_mvc(), clear_user_xc() and __strnlen_user() (bsc#1205428 LTC#200501). - s390/vtime: fix inline assembly clobber list (git-fixes). - s390/zcore: fix race when reading from hardware system area (git-fixes). - s390/zcrypt: fix zcard and zqueue hot-unplug memleak (git-fixes). - s390: Remove arch_has_random, arch_has_random_seed (git-fixes). - s390: fix double free of GS and RI CBs on fork() failure (git-fixes). - s390: fix nospec table alignments (git-fixes). - s390: mark __cpacf_query() as __always_inline (git-fixes). - scsi: bsg: Remove support for SCSI_IOCTL_SEND_COMMAND (git-fixes). - scsi: drivers: base: Propagate errors through the transport component (git-fixes). - scsi: drivers: base: Support atomic version of attribute_container_device_trigger (git-fixes). - scsi: ibmvfc: Avoid path failures during live migration (bsc#1065729 bsc#1204810 ltc#200162). - scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024 (bsc#1156395). - scsi: lpfc: Create a sysfs entry called lpfc_xcvr_data for transceiver info (bsc#1204957). - scsi: lpfc: Fix hard lockup when reading the rx_monitor from debugfs (bsc#1204957). - scsi: lpfc: Fix memory leak in lpfc_create_port() (bsc#1204957). - scsi: lpfc: Fix spelling mistake "unsolicted" -> "unsolicited" (bsc#1204957). - scsi: lpfc: Log when congestion management limits are in effect (bsc#1204957). - scsi: lpfc: Set sli4_param's cmf option to zero when CMF is turned off (bsc#1204957). - scsi: lpfc: Update lpfc version to 14.2.0.8 (bsc#1204957). - scsi: lpfc: Update the obsolete adapter list (bsc#1204142). - scsi: qla2xxx: Fix serialization of DCBX TLV data request (bsc#1204963). - scsi: qla2xxx: Use transport-defined speed mask for supported_speeds (bsc#1204963). - scsi: scsi_transport_sas: Fix error handling in sas_phy_add() (git-fixes). - scsi: storvsc: Correctly handle multiple flags in srb_status (git-fixes). - scsi: storvsc: Drop DID_TARGET_FAILURE use (git-fixes). - scsi: storvsc: Fix handling of srb_status and capacity change events (git-fixes). - scsi: storvsc: Fix max_outstanding_req_per_channel for Win8 and newer (bsc#1204017). - scsi: storvsc: Fix validation for unsolicited incoming packets (bsc#1204017). - scsi: storvsc: Log TEST_UNIT_READY errors as warnings (git-fixes). - scsi: storvsc: Miscellaneous code cleanups (git-fixes). - scsi: storvsc: Parameterize number hardware queues (git-fixes). - scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq (git-fixes). - scsi: storvsc: Resolve data race in storvsc_probe() (bsc#1204017). - scsi: storvsc: Return DID_ERROR for invalid commands (git-fixes). - scsi: storvsc: Update error logging (git-fixes). - scsi: storvsc: Use blk_mq_unique_tag() to generate requestIDs (bsc#1204017). - scsi: storvsc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (git-fixes). - scsi: storvsc: Use vmbus_requestor to generate transaction IDs for VMBus hardening (bsc#1204017). - scsi: storvsc: Validate length of incoming packet in storvsc_on_channel_callback() (bsc#1204017). - scsi: zfcp: Fix double free of FSF request when qdio send fails (git-fixes). - scsi: zfcp: Fix missing auto port scan and thus missing target ports (git-fixes). - selftests/livepatch: better synchronize test_klp_callbacks_busy (bsc#1071995). - serial: 8250: Fall back to non-DMA Rx if IIR_RDI occurs (git-fixes). - serial: 8250: omap: Fix unpaired pm_runtime_put_sync() in omap8250_remove() (git-fixes). - serial: 8250: omap: Flush PM QOS work on remove (git-fixes). - serial: 8250_lpss: Configure DMA also w/o DMA filter (git-fixes). - serial: 8250_omap: remove wait loop from Errata i202 workaround (git-fixes). - serial: imx: Add missing .thaw_noirq hook (git-fixes). - siox: fix possible memory leak in siox_device_add() (git-fixes). - slimbus: stream: correct presence rate frequencies (git-fixes). - spi: spi-imx: Fix spi_bus_clk if requested clock is higher than input clock (git-fixes). - spi: stm32: Print summary 'callbacks suppressed' message (git-fixes). - staging: greybus: light: fix a couple double frees (git-fixes). - swiotlb-xen: use vmalloc_to_page on vmalloc virt addresses (git-fixes). - tracing/ring-buffer: Have polling block on watermark (git-fixes). - tracing: Add ioctl() to force ring buffer waiters to wake up (git-fixes). - tracing: Disable interrupt or preemption before acquiring arch_spinlock_t (git-fixes). - tracing: Do not free snapshot if tracer is on cmdline (git-fixes). - tracing: Fix wild-memory-access in register_synth_event() (git-fixes). - tracing: Simplify conditional compilation code in tracing_set_tracer() (git-fixes). - tracing: Wake up ring buffer waiters on closing of the file (git-fixes). - tracing: Wake up waiters when tracing is disabled (git-fixes). - usb: add NO_LPM quirk for Realforce 87U Keyboard (git-fixes). - usb: chipidea: fix deadlock in ci_otg_del_timer (git-fixes). - usb: dwc3: exynos: Fix remove() function (git-fixes). - usb: dwc3: fix PHY disable sequence (git-fixes). - usb: dwc3: gadget: Clear ep descriptor last (git-fixes). - usb: dwc3: gadget: Fix null pointer exception (git-fixes). - usb: dwc3: qcom: fix runtime PM wakeup. - usb: dwc3: qcom: fix use-after-free on runtime-PM wakeup (git-fixes). - usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being a V0.96 controller (git-fixes). - usbip: add sysfs_lock to synchronize sysfs code paths (git-fixes). - usbip: stub-dev synchronize sysfs code paths (git-fixes). - usbip: stub_dev: remake locking for kABI (git-fixes). - usbip: synchronize event handler with sysfs code paths (git-fixes). - usbip: usbip_event: use global lock (git-fixes). - usbip: vudc synchronize sysfs code paths (git-fixes). - usbip: vudc_sysfs: use global lock (git-fixes). - use __netdev_notify_peers in hyperv (git-fixes). - v3 of "PCI: hv: Only reuse existing IRTE allocation for Multi-MSI" - v3 of "PCI: hv: Only reuse existing IRTE allocation for Multi-MSI" (bsc#1200845) - vfio/ccw: Do not change FSM state in subchannel event (git-fixes). - virtio-blk: Do not use MAX_DISCARD_SEGMENTS if max_discard_seg is zero (git-fixes). - virtio-blk: Use blk_validate_block_size() to validate block size (git-fixes). - virtio_blk: eliminate anonymous module_init & module_exit (git-fixes). - virtio_blk: fix the discard_granularity and discard_alignment queue limits (git-fixes). - vmlinux.lds.h: Fix placement of '.data..decrypted' section (git-fixes). - wifi: cfg80211: fix buffer overflow in elem comparison (git-fixes). - wifi: cfg80211: fix memory leak in query_regdb_file() (git-fixes). - wifi: cfg80211: silence a sparse RCU warning (git-fixes). - wifi: mac8021: fix possible oob access in ieee80211_get_rate_duration (git-fixes). - workqueue: do not skip lockdep work dependency in cancel_work_sync() (bsc#1204967). - x86/bugs: Make sure MSR_SPEC_CTRL is updated properly upon resume from S3 (bsc#1206037). - x86/cpu: Restore AMD's DE_CFG MSR after resume (bsc#1205473). - x86/hyperv: Output host build info as normal Windows version number (git-fixes). - x86/hyperv: check cpu mask after interrupt has been disabled (git-fixes). - x86/kexec: Fix double-free of elf header buffer (bsc#1205567). - x86/microcode/AMD: Apply the patch early on every logical thread (bsc#1205264). - x86/xen: Add xen_no_vector_callback option to test PCI INTX delivery (git-fixes). - x86/xen: Distribute switch variables for initialization (git-fixes). - x86/xen: do not unbind uninitialized lock_kicker_irq (git-fixes). - xen-blkback: prevent premature module unload (git-fixes). - xen-netback: correct success/error reporting for the SKB-with-fraglist case (git-fixes). - xen/balloon: fix balloon kthread freezing (git-fixes). - xen/balloon: fix ballooned page accounting without hotplug enabled (git-fixes). - xen/balloon: fix cancelled balloon action (git-fixes). - xen/balloon: use a kernel thread instead a workqueue (git-fixes). - xen/gntdev: Avoid blocking in unmap_grant_pages() (git-fixes). - xen/gntdev: Ignore failure to unmap INVALID_GRANT_HANDLE (git-fixes). - xen/gntdev: Prevent leaking grants (git-fixes). - xen/pcpu: fix possible memory leak in register_pcpu() (git-fixes). - xen/privcmd: Corrected error handling path (git-fixes). - xen/privcmd: fix error exit of privcmd_ioctl_dm_op() (git-fixes). - xen/xenbus: Fix granting of vmalloc'd memory (git-fixes). - xen/xenbus: ensure xenbus_map_ring_valloc() returns proper grant status (git-fixes). - xen: Fix XenStore initialisation for XS_LOCAL (git-fixes). - xen: Fix event channel callback via INTX/GSI (git-fixes). - xen: delay xen_hvm_init_time_ops() if kdump is boot on vcpu>=32 (git-fixes). - xenbus: req->body should be updated before req->state (git-fixes). - xenbus: req->err should be updated before req->state (git-fixes). - xfs: Lower CIL flush limit for large logs (git-fixes). - xfs: Throttle commits on delayed background CIL push (git-fixes). - xfs: Use scnprintf() for avoiding potential buffer overflow (git-fixes). - xfs: check owner of dir3 blocks (git-fixes). - xfs: factor common AIL item deletion code (git-fixes). - xfs: open code insert range extent split helper (git-fixes). - xfs: rework collapse range into an atomic operation (git-fixes). - xfs: rework insert range into an atomic operation (git-fixes). - xfs: tail updates only need to occur when LSN changes (git-fixes). - xfs: trylock underlying buffer on dquot flush (git-fixes). - xfs: xfs_buf_corruption_error should take __this_address (git-fixes). - xhci: Remove device endpoints from bandwidth list when freeing the device (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.106.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.106.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.106.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.106.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.106.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.106.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.106.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.106.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.106.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.106.1.x86_64.rpm True kernel-default-5.3.18-150300.59.106.1.nosrc.rpm True kernel-default-5.3.18-150300.59.106.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.106.1.150300.18.60.2.src.rpm True kernel-default-base-5.3.18-150300.59.106.1.150300.18.60.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.106.1.150300.18.60.2.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.106.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.106.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.106.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.106.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.106.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.106.1.noarch.rpm True kernel-docs-5.3.18-150300.59.106.1.noarch.rpm True kernel-docs-5.3.18-150300.59.106.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.106.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.106.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.106.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.106.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.106.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.106.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.106.1.src.rpm True kernel-obs-build-5.3.18-150300.59.106.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.106.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.106.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.106.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.106.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.106.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.106.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.106.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.106.1.x86_64.rpm True kernel-source-5.3.18-150300.59.106.1.noarch.rpm True kernel-source-5.3.18-150300.59.106.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.106.1.noarch.rpm True kernel-syms-5.3.18-150300.59.106.1.src.rpm True kernel-syms-5.3.18-150300.59.106.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.106.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.106.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.106.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.106.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.106.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.106.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.106.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.106.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.106.1.s390x.rpm True kernel-default-5.3.18-150300.59.106.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.106.1.150300.18.60.2.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.106.1.150300.18.60.2.s390x.rpm True kernel-default-devel-5.3.18-150300.59.106.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.106.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.106.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.106.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.106.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.106.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.106.1.s390x.rpm True kernel-syms-5.3.18-150300.59.106.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.106.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.106.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.106.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.106.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.106.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.106.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.106.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.106.1.150300.18.60.2.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.106.1.150300.18.60.2.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.106.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.106.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.106.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.106.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.106.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.106.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.106.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.106.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.106.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.106.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.106.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.106.1.nosrc.rpm True dtb-al-5.3.18-150300.59.106.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.106.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.106.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.106.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.106.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.106.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.106.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.106.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.106.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.106.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.106.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.106.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.106.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.106.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.106.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.106.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.106.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.106.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.106.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.106.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.106.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.106.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.106.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.106.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.106.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.106.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.106.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.106.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.106.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.106.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.106.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.106.1.aarch64.rpm True kernel-default-5.3.18-150300.59.106.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.106.1.150300.18.60.2.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.106.1.150300.18.60.2.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.106.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.106.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.106.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.106.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.106.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.106.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.106.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.106.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.106.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.106.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.106.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.106.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.106.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.106.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.106.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.106.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.106.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.106.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.106.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.106.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.106.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.106.1.aarch64.rpm True openSUSE-SLE-15.3-2023-25 moderate SUSE Updates openSUSE-SLE 15.3 This update for timezone fixes the following issues: Version update from 2022f to 2022g (bsc#1177460): - In the Mexican state of Chihuahua: * The border strip near the US will change to agree with nearby US locations on 2022-11-30. * The strip's western part, represented by Ciudad Juarez, switches from -06 all year to -07/-06 with US DST rules, like El Paso, TX. * The eastern part, represented by Ojinaga, will observe US DST next year, like Presidio, TX. * A new Zone America/Ciudad_Juarez splits from America/Ojinaga. - Much of Greenland, represented by America/Nuuk, stops observing winter time after March 2023, so its daylight saving time becomes standard time. - Changes for pre-1996 northern Canada - Update to past DST transition in Colombia (1993), Singapore (1981) - 'timegm' is now supported by default timezone-2022g-150000.75.18.1.src.rpm timezone-2022g-150000.75.18.1.x86_64.rpm timezone-java-2022g-150000.75.18.1.noarch.rpm timezone-java-2022g-150000.75.18.1.src.rpm timezone-2022g-150000.75.18.1.s390x.rpm timezone-2022g-150000.75.18.1.ppc64le.rpm timezone-2022g-150000.75.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-4462 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 102.6.0 ESR (bsc#1206242): - CVE-2022-46880: Use-after-free in WebGL - CVE-2022-46872: Arbitrary file read from a compromised content process - CVE-2022-46881: Memory corruption in WebGL - CVE-2022-46874: Drag and Dropped Filenames could have been truncated to malicious extensions - CVE-2022-46875: Download Protections were bypassed by .atloc and .ftploc files on Mac OS - CVE-2022-46882: Use-after-free in WebGL - CVE-2022-46878: Memory safety bugs fixed in Firefox 108 and Firefox ESR 102.6 MozillaFirefox-102.6.0-150200.152.70.1.src.rpm MozillaFirefox-102.6.0-150200.152.70.1.x86_64.rpm MozillaFirefox-branding-upstream-102.6.0-150200.152.70.1.x86_64.rpm MozillaFirefox-devel-102.6.0-150200.152.70.1.x86_64.rpm MozillaFirefox-translations-common-102.6.0-150200.152.70.1.x86_64.rpm MozillaFirefox-translations-other-102.6.0-150200.152.70.1.x86_64.rpm MozillaFirefox-102.6.0-150200.152.70.1.s390x.rpm MozillaFirefox-branding-upstream-102.6.0-150200.152.70.1.s390x.rpm MozillaFirefox-devel-102.6.0-150200.152.70.1.s390x.rpm MozillaFirefox-translations-common-102.6.0-150200.152.70.1.s390x.rpm MozillaFirefox-translations-other-102.6.0-150200.152.70.1.s390x.rpm MozillaFirefox-102.6.0-150200.152.70.1.ppc64le.rpm MozillaFirefox-branding-upstream-102.6.0-150200.152.70.1.ppc64le.rpm MozillaFirefox-devel-102.6.0-150200.152.70.1.ppc64le.rpm MozillaFirefox-translations-common-102.6.0-150200.152.70.1.ppc64le.rpm MozillaFirefox-translations-other-102.6.0-150200.152.70.1.ppc64le.rpm MozillaFirefox-102.6.0-150200.152.70.1.aarch64.rpm MozillaFirefox-branding-upstream-102.6.0-150200.152.70.1.aarch64.rpm MozillaFirefox-devel-102.6.0-150200.152.70.1.aarch64.rpm MozillaFirefox-translations-common-102.6.0-150200.152.70.1.aarch64.rpm MozillaFirefox-translations-other-102.6.0-150200.152.70.1.aarch64.rpm openSUSE-SLE-15.3-2022-4607 moderate SUSE Updates openSUSE-SLE 15.3 This update for conmon fixes the following issues: conmon was updated to version 2.1.5: * don't leak syslog_identifier * logging: do not read more that the buf size * logging: fix error handling * Makefile: Fix install for FreeBSD * signal: Track changes to get_signal_descriptor in the FreeBSD version * Packit: initial enablement Update to version 2.1.4: * Fix a bug where conmon crashed when it got a SIGCHLD update to 2.1.3: * Stop using g_unix_signal_add() to avoid threads * Rename CLI optionlog-size-global-max to log-global-size-max Update to version 2.1.2: * add log-global-size-max option to limit the total output conmon processes (CVE-2022-1708 bsc#1200285) * journald: print tag and name if both are specified * drop some logs to debug level Update to version 2.1.0 * logging: buffer partial messages to journald * exit: close all fds >= 3 * fix: cgroup: Free memory_cgroup_file_path if open fails. Update to version 2.0.32 * Fix: Avoid mainfd_std{in,out} sharing the same file descriptor. * exit_command: Fix: unset subreaper attribute before running exit command Update to version 2.0.31 * logging: new mode -l passthrough * ctr_logs: use container name or ID as SYSLOG_IDENTIFIER for journald * conmon: Fix: free userdata files before exec cleanup conmon-2.1.5-150300.8.6.1.src.rpm conmon-2.1.5-150300.8.6.1.x86_64.rpm conmon-2.1.5-150300.8.6.1.s390x.rpm conmon-2.1.5-150300.8.6.1.ppc64le.rpm conmon-2.1.5-150300.8.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4622 important SUSE Updates openSUSE-SLE 15.3 This update for freeradius-server fixes the following issues: - CVE-2022-41859: Fixes an information leakage in EAP-PWD (bsc#1206204). - CVE-2022-41860: Fixes a crash on unknown option in EAP-SIM (bsc#1206205). - CVE-2022-41861: Fixes a crash on invalid abinary data (bsc#1206206). freeradius-server-3.0.21-150200.3.12.1.src.rpm freeradius-server-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-devel-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-doc-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-krb5-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-ldap-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-libs-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-mysql-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-perl-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-postgresql-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-python3-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-sqlite-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-utils-3.0.21-150200.3.12.1.x86_64.rpm freeradius-server-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-devel-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-doc-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-krb5-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-ldap-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-libs-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-mysql-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-perl-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-postgresql-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-python3-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-sqlite-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-utils-3.0.21-150200.3.12.1.s390x.rpm freeradius-server-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-devel-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-doc-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-krb5-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-ldap-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-libs-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-mysql-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-perl-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-postgresql-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-python3-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-sqlite-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-utils-3.0.21-150200.3.12.1.ppc64le.rpm freeradius-server-3.0.21-150200.3.12.1.aarch64.rpm freeradius-server-devel-3.0.21-150200.3.12.1.aarch64.rpm freeradius-server-doc-3.0.21-150200.3.12.1.aarch64.rpm freeradius-server-krb5-3.0.21-150200.3.12.1.aarch64.rpm freeradius-server-ldap-3.0.21-150200.3.12.1.aarch64.rpm freeradius-server-libs-3.0.21-150200.3.12.1.aarch64.rpm freeradius-server-mysql-3.0.21-150200.3.12.1.aarch64.rpm freeradius-server-perl-3.0.21-150200.3.12.1.aarch64.rpm freeradius-server-postgresql-3.0.21-150200.3.12.1.aarch64.rpm freeradius-server-python3-3.0.21-150200.3.12.1.aarch64.rpm freeradius-server-sqlite-3.0.21-150200.3.12.1.aarch64.rpm freeradius-server-utils-3.0.21-150200.3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-4633 moderate SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2022-43552: HTTP Proxy deny use-after-free (bsc#1206309). curl-7.66.0-150200.4.45.1.src.rpm curl-7.66.0-150200.4.45.1.x86_64.rpm libcurl-devel-32bit-7.66.0-150200.4.45.1.x86_64.rpm libcurl-devel-7.66.0-150200.4.45.1.x86_64.rpm libcurl4-32bit-7.66.0-150200.4.45.1.x86_64.rpm libcurl4-7.66.0-150200.4.45.1.x86_64.rpm curl-7.66.0-150200.4.45.1.s390x.rpm libcurl-devel-7.66.0-150200.4.45.1.s390x.rpm libcurl4-7.66.0-150200.4.45.1.s390x.rpm curl-7.66.0-150200.4.45.1.ppc64le.rpm libcurl-devel-7.66.0-150200.4.45.1.ppc64le.rpm libcurl4-7.66.0-150200.4.45.1.ppc64le.rpm curl-7.66.0-150200.4.45.1.aarch64.rpm libcurl-devel-7.66.0-150200.4.45.1.aarch64.rpm libcurl4-7.66.0-150200.4.45.1.aarch64.rpm openSUSE-SLE-15.3-2023-13 moderate SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nss fixes the following issues: - FIPS: Disapprove the creation of DSA keys, i.e. mark them as not-fips (bsc#1201298) - FIPS: Allow the use SHA keygen mechs (bsc#1191546). - FIPS: Ensure abort() is called when the repeat integrity check fails (bsc#1198980). libfreebl3-3.79.2-150000.3.85.1.x86_64.rpm libfreebl3-32bit-3.79.2-150000.3.85.1.x86_64.rpm libfreebl3-hmac-3.79.2-150000.3.85.1.x86_64.rpm libfreebl3-hmac-32bit-3.79.2-150000.3.85.1.x86_64.rpm libsoftokn3-3.79.2-150000.3.85.1.x86_64.rpm libsoftokn3-32bit-3.79.2-150000.3.85.1.x86_64.rpm libsoftokn3-hmac-3.79.2-150000.3.85.1.x86_64.rpm libsoftokn3-hmac-32bit-3.79.2-150000.3.85.1.x86_64.rpm mozilla-nss-3.79.2-150000.3.85.1.src.rpm mozilla-nss-3.79.2-150000.3.85.1.x86_64.rpm mozilla-nss-32bit-3.79.2-150000.3.85.1.x86_64.rpm mozilla-nss-certs-3.79.2-150000.3.85.1.x86_64.rpm mozilla-nss-certs-32bit-3.79.2-150000.3.85.1.x86_64.rpm mozilla-nss-devel-3.79.2-150000.3.85.1.x86_64.rpm mozilla-nss-sysinit-3.79.2-150000.3.85.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.79.2-150000.3.85.1.x86_64.rpm mozilla-nss-tools-3.79.2-150000.3.85.1.x86_64.rpm libfreebl3-3.79.2-150000.3.85.1.s390x.rpm libfreebl3-hmac-3.79.2-150000.3.85.1.s390x.rpm libsoftokn3-3.79.2-150000.3.85.1.s390x.rpm libsoftokn3-hmac-3.79.2-150000.3.85.1.s390x.rpm mozilla-nss-3.79.2-150000.3.85.1.s390x.rpm mozilla-nss-certs-3.79.2-150000.3.85.1.s390x.rpm mozilla-nss-devel-3.79.2-150000.3.85.1.s390x.rpm mozilla-nss-sysinit-3.79.2-150000.3.85.1.s390x.rpm mozilla-nss-tools-3.79.2-150000.3.85.1.s390x.rpm libfreebl3-3.79.2-150000.3.85.1.ppc64le.rpm libfreebl3-hmac-3.79.2-150000.3.85.1.ppc64le.rpm libsoftokn3-3.79.2-150000.3.85.1.ppc64le.rpm libsoftokn3-hmac-3.79.2-150000.3.85.1.ppc64le.rpm mozilla-nss-3.79.2-150000.3.85.1.ppc64le.rpm mozilla-nss-certs-3.79.2-150000.3.85.1.ppc64le.rpm mozilla-nss-devel-3.79.2-150000.3.85.1.ppc64le.rpm mozilla-nss-sysinit-3.79.2-150000.3.85.1.ppc64le.rpm mozilla-nss-tools-3.79.2-150000.3.85.1.ppc64le.rpm libfreebl3-3.79.2-150000.3.85.1.aarch64.rpm libfreebl3-hmac-3.79.2-150000.3.85.1.aarch64.rpm libsoftokn3-3.79.2-150000.3.85.1.aarch64.rpm libsoftokn3-hmac-3.79.2-150000.3.85.1.aarch64.rpm mozilla-nss-3.79.2-150000.3.85.1.aarch64.rpm mozilla-nss-certs-3.79.2-150000.3.85.1.aarch64.rpm mozilla-nss-devel-3.79.2-150000.3.85.1.aarch64.rpm mozilla-nss-sysinit-3.79.2-150000.3.85.1.aarch64.rpm mozilla-nss-tools-3.79.2-150000.3.85.1.aarch64.rpm openSUSE-SLE-15.3-2022-4630 important SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2022-4415: Fixed systemd-coredump that did not respect the fs.suid_dumpable kernel setting (bsc#1205000). Bug fixes: - Support by-path devlink for multipath nvme block devices (bsc#1200723). - Set SYSTEMD_NSS_DYNAMIC_BYPASS=1 env var for dbus-daemon (bsc#1203857). - Restrict cpu rule to x86_64, and also update the rule files to make use of the "CONST{arch}" syntax (bsc#1204423). libsystemd0-246.16-150300.7.57.1.x86_64.rpm libsystemd0-32bit-246.16-150300.7.57.1.x86_64.rpm libudev-devel-246.16-150300.7.57.1.x86_64.rpm libudev-devel-32bit-246.16-150300.7.57.1.x86_64.rpm libudev1-246.16-150300.7.57.1.x86_64.rpm libudev1-32bit-246.16-150300.7.57.1.x86_64.rpm nss-myhostname-246.16-150300.7.57.1.x86_64.rpm nss-myhostname-32bit-246.16-150300.7.57.1.x86_64.rpm nss-mymachines-246.16-150300.7.57.1.x86_64.rpm nss-mymachines-32bit-246.16-150300.7.57.1.x86_64.rpm nss-resolve-246.16-150300.7.57.1.x86_64.rpm nss-systemd-246.16-150300.7.57.1.x86_64.rpm systemd-246.16-150300.7.57.1.src.rpm systemd-246.16-150300.7.57.1.x86_64.rpm systemd-32bit-246.16-150300.7.57.1.x86_64.rpm systemd-container-246.16-150300.7.57.1.x86_64.rpm systemd-coredump-246.16-150300.7.57.1.x86_64.rpm systemd-devel-246.16-150300.7.57.1.x86_64.rpm systemd-doc-246.16-150300.7.57.1.x86_64.rpm systemd-journal-remote-246.16-150300.7.57.1.x86_64.rpm systemd-lang-246.16-150300.7.57.1.noarch.rpm systemd-logger-246.16-150300.7.57.1.x86_64.rpm systemd-network-246.16-150300.7.57.1.x86_64.rpm systemd-sysvinit-246.16-150300.7.57.1.x86_64.rpm udev-246.16-150300.7.57.1.x86_64.rpm libsystemd0-246.16-150300.7.57.1.s390x.rpm libudev-devel-246.16-150300.7.57.1.s390x.rpm libudev1-246.16-150300.7.57.1.s390x.rpm nss-myhostname-246.16-150300.7.57.1.s390x.rpm nss-mymachines-246.16-150300.7.57.1.s390x.rpm nss-resolve-246.16-150300.7.57.1.s390x.rpm nss-systemd-246.16-150300.7.57.1.s390x.rpm systemd-246.16-150300.7.57.1.s390x.rpm systemd-container-246.16-150300.7.57.1.s390x.rpm systemd-coredump-246.16-150300.7.57.1.s390x.rpm systemd-devel-246.16-150300.7.57.1.s390x.rpm systemd-doc-246.16-150300.7.57.1.s390x.rpm systemd-journal-remote-246.16-150300.7.57.1.s390x.rpm systemd-logger-246.16-150300.7.57.1.s390x.rpm systemd-network-246.16-150300.7.57.1.s390x.rpm systemd-sysvinit-246.16-150300.7.57.1.s390x.rpm udev-246.16-150300.7.57.1.s390x.rpm libsystemd0-246.16-150300.7.57.1.ppc64le.rpm libudev-devel-246.16-150300.7.57.1.ppc64le.rpm libudev1-246.16-150300.7.57.1.ppc64le.rpm nss-myhostname-246.16-150300.7.57.1.ppc64le.rpm nss-mymachines-246.16-150300.7.57.1.ppc64le.rpm nss-resolve-246.16-150300.7.57.1.ppc64le.rpm nss-systemd-246.16-150300.7.57.1.ppc64le.rpm systemd-246.16-150300.7.57.1.ppc64le.rpm systemd-container-246.16-150300.7.57.1.ppc64le.rpm systemd-coredump-246.16-150300.7.57.1.ppc64le.rpm systemd-devel-246.16-150300.7.57.1.ppc64le.rpm systemd-doc-246.16-150300.7.57.1.ppc64le.rpm systemd-journal-remote-246.16-150300.7.57.1.ppc64le.rpm systemd-logger-246.16-150300.7.57.1.ppc64le.rpm systemd-network-246.16-150300.7.57.1.ppc64le.rpm systemd-sysvinit-246.16-150300.7.57.1.ppc64le.rpm udev-246.16-150300.7.57.1.ppc64le.rpm libsystemd0-246.16-150300.7.57.1.aarch64.rpm libudev-devel-246.16-150300.7.57.1.aarch64.rpm libudev1-246.16-150300.7.57.1.aarch64.rpm nss-myhostname-246.16-150300.7.57.1.aarch64.rpm nss-mymachines-246.16-150300.7.57.1.aarch64.rpm nss-resolve-246.16-150300.7.57.1.aarch64.rpm nss-systemd-246.16-150300.7.57.1.aarch64.rpm systemd-246.16-150300.7.57.1.aarch64.rpm systemd-container-246.16-150300.7.57.1.aarch64.rpm systemd-coredump-246.16-150300.7.57.1.aarch64.rpm systemd-devel-246.16-150300.7.57.1.aarch64.rpm systemd-doc-246.16-150300.7.57.1.aarch64.rpm systemd-journal-remote-246.16-150300.7.57.1.aarch64.rpm systemd-logger-246.16-150300.7.57.1.aarch64.rpm systemd-network-246.16-150300.7.57.1.aarch64.rpm systemd-sysvinit-246.16-150300.7.57.1.aarch64.rpm udev-246.16-150300.7.57.1.aarch64.rpm openSUSE-SLE-15.3-2023-82 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: scap-security-guide was updated to 0.1.65 (jsc#ECO-3319) - Introduce cui profile for OL9 - Remove Support for OVAL 5.10 - Rename account_passwords_pam_faillock_audit - CI ansible hardening and rename of existing Bash hardening - Update contributors list for v0.1.65 release - various SUSE profile specific fixes - require sudo, as remediations touch sudo config or use sudo. (bsc#1203602) scap-security-guide-0.1.65-150000.1.53.1.noarch.rpm scap-security-guide-0.1.65-150000.1.53.1.src.rpm scap-security-guide-debian-0.1.65-150000.1.53.1.noarch.rpm scap-security-guide-redhat-0.1.65-150000.1.53.1.noarch.rpm scap-security-guide-ubuntu-0.1.65-150000.1.53.1.noarch.rpm openSUSE-SLE-15.3-2022-4579 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Update to version 102.6 (bsc#1206242): - CVE-2022-46880: Use-after-free in WebGL - CVE-2022-46872: Arbitrary file read from a compromised content process - CVE-2022-46881: Memory corruption in WebGL - CVE-2022-46874: Drag and Dropped Filenames could have been truncated to malicious extensions - CVE-2022-46875: Download Protections were bypassed by .atloc and .ftploc files on Mac OS - CVE-2022-46882: Use-after-free in WebGL - CVE-2022-46878: Memory safety bugs fixed in Thunderbird 102.6 MozillaThunderbird-102.6.0-150200.8.96.1.src.rpm MozillaThunderbird-102.6.0-150200.8.96.1.x86_64.rpm MozillaThunderbird-translations-common-102.6.0-150200.8.96.1.x86_64.rpm MozillaThunderbird-translations-other-102.6.0-150200.8.96.1.x86_64.rpm MozillaThunderbird-102.6.0-150200.8.96.1.s390x.rpm MozillaThunderbird-translations-common-102.6.0-150200.8.96.1.s390x.rpm MozillaThunderbird-translations-other-102.6.0-150200.8.96.1.s390x.rpm MozillaThunderbird-102.6.0-150200.8.96.1.ppc64le.rpm MozillaThunderbird-translations-common-102.6.0-150200.8.96.1.ppc64le.rpm MozillaThunderbird-translations-other-102.6.0-150200.8.96.1.ppc64le.rpm MozillaThunderbird-102.6.0-150200.8.96.1.aarch64.rpm MozillaThunderbird-translations-common-102.6.0-150200.8.96.1.aarch64.rpm MozillaThunderbird-translations-other-102.6.0-150200.8.96.1.aarch64.rpm openSUSE-SLE-15.3-2022-4618 moderate SUSE Updates openSUSE-SLE 15.3 This update for catatonit fixes the following issues: Update to catatonit v0.1.7: - This release adds the ability for catatonit to be used as the only process in a pause container, by passing the -P flag (in this mode no subprocess is spawned and thus no signal forwarding is done). Update to catatonit v0.1.6: - which fixes a few bugs -- mainly ones related to socket activation or features somewhat adjacent to socket activation (such as passing file descriptors). catatonit-0.1.7-150300.10.3.1.src.rpm catatonit-0.1.7-150300.10.3.1.x86_64.rpm catatonit-0.1.7-150300.10.3.1.s390x.rpm catatonit-0.1.7-150300.10.3.1.ppc64le.rpm catatonit-0.1.7-150300.10.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-4613 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-4378: Fixed stack overflow in __do_proc_dointvec (bsc#1206207). - CVE-2022-3635: Fixed a use-after-free in the tst_timer() of the file drivers/atm/idt77252.c (bsc#1204631). - CVE-2022-41850: Fixed a race condition in roccat_report_event() in drivers/hid/hid-roccat.c (bsc#1203960). - CVE-2022-45934: Fixed a integer wraparound via L2CAP_CONF_REQ packets in l2cap_config_req in net/bluetooth/l2cap_core.c (bsc#1205796). - CVE-2022-3628: Fixed potential buffer overflow in brcmf_fweh_event_worker() in wifi/brcmfmac (bsc#1204868). - CVE-2022-3567: Fixed a to race condition in inet6_stream_ops()/inet6_dgram_ops() (bsc#1204414). - CVE-2022-41858: Fixed a denial of service in sl_tx_timeout() in drivers/net/slip (bsc#1205671). - CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation (bsc#1205128). - CVE-2022-4095: Fixed a use-after-free in rtl8712 driver (bsc#1205514). - CVE-2022-3903: Fixed a denial of service with the Infrared Transceiver USB driver (bsc#1205220). - CVE-2022-2602: Fixed a local privilege escalation vulnerability involving Unix socket Garbage Collection and io_uring (bsc#1204228). - CVE-2022-4139: Fixed an issue with the i915 driver that allowed the GPU to access any physical memory (bsc#1205700). - CVE-2022-4129: Fixed a denial of service with the Layer 2 Tunneling Protocol (L2TP). A missing lock when clearing sk_user_data can lead to a race condition and NULL pointer dereference. (bsc#1205711) - CVE-2022-42895: Fixed an information leak in the net/bluetooth/l2cap_core.c's l2cap_parse_conf_req() which can be used to leak kernel pointers remotely (bsc#1205705). - CVE-2022-42896: Fixed a use-after-free vulnerability in the net/bluetooth/l2cap_core.c's l2cap_connect() and l2cap_le_connect_req() which may have allowed code execution and leaking kernel memory (respectively) remotely via Bluetooth (bsc#1205709). - CVE-2022-3707: Fixed a double free in the Intel GVT-g graphics driver (bsc#1204780). The following non-security bugs were fixed: - ALSA: hda/ca0132: add quirk for EVGA Z390 DARK (git-fixes). - ALSA: hda: fix potential memleak in 'add_widget_node' (git-fixes). - ALSA: usb-audio: Add DSD support for Accuphase DAC-60 (git-fixes). - ALSA: usb-audio: Add quirk entry for M-Audio Micro (git-fixes). - ALSA: usb-audio: Drop snd_BUG_ON() from snd_usbmidi_output_open() (git-fixes). - ASoC: codecs: jz4725b: Fix spelling mistake "Sourc" -> "Source", "Routee" -> "Route" (git-fixes). - ASoC: codecs: jz4725b: add missed Line In power control bit (git-fixes). - ASoC: codecs: jz4725b: fix capture selector naming (git-fixes). - ASoC: codecs: jz4725b: fix reported volume for Master ctl (git-fixes). - ASoC: codecs: jz4725b: use right control for Capture Volume (git-fixes). - ASoC: core: Fix use-after-free in snd_soc_exit() (git-fixes). - ASoC: max98373: Add checks for devm_kcalloc (git-fixes). - ASoC: soc-utils: Remove __exit for snd_soc_util_exit() (git-fixes). - ASoC: wm5102: Revert "ASoC: wm5102: Fix PM disable depth imbalance in wm5102_probe" (git-fixes). - ASoC: wm5110: Revert "ASoC: wm5110: Fix PM disable depth imbalance in wm5110_probe" (git-fixes). - ASoC: wm8962: Add an event handler for TEMP_HP and TEMP_SPK (git-fixes). - ASoC: wm8997: Revert "ASoC: wm8997: Fix PM disable depth imbalance in wm8997_probe" (git-fixes). - Bluetooth: L2CAP: Fix attempting to access uninitialized memory (git-fixes). - Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (git-fixes). - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (git-fixes). - Do not enable CONFIG_ATARI_PARTITION (jsc#PED-1573) - Drivers: hv: vmbus: Add /sys/bus/vmbus/hibernation (git-fixes). - Drivers: hv: vmbus: Add VMbus IMC device to unsupported list (git-fixes). - Drivers: hv: vmbus: Add vmbus_requestor data structure for VMBus hardening (bsc#1204017). - Drivers: hv: vmbus: Drop error message when 'No request id available' (bsc#1204017). - Drivers: hv: vmbus: Fix duplicate CPU assignments within a device (git-fixes). - Drivers: hv: vmbus: Fix handling of messages with transaction ID of zero (bsc#1204017). - Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj (git-fixes). - Drivers: hv: vmbus: Fix potential crash on module unload (git-fixes). - Drivers: hv: vmbus: Introduce vmbus_request_addr_match() (bsc#1204017). - Drivers: hv: vmbus: Introduce vmbus_sendpacket_getid() (bsc#1204017). - Drivers: hv: vmbus: Introduce {lock,unlock}_requestor() (bsc#1204017). - Drivers: hv: vmbus: Prevent load re-ordering when reading ring buffer (git-fixes). - Drivers: hv: vmbus: Remove unused linux/version.h header (git-fixes). - Drivers: hv: vmbus: Replace smp_store_mb() with virt_store_mb() (git-fixes). - Drivers: hv: vmbus: fix double free in the error path of vmbus_add_channel_work() (git-fixes). - Drivers: hv: vmbus: fix possible memory leak in vmbus_device_register() (git-fixes). - Drivers: hv: vmbus: remove unused function (git-fixes). - HID: saitek: add madcatz variant of MMO7 mouse device ID (git-fixes). - Input: i8042 - fix leaking of platform device on module removal (git-fixes). - Input: iforce - invert valid length check when fetching device IDs (git-fixes). - KVM: VMX: Always VMCLEAR in-use VMCSes during crash with kexec support (git-fixes). - KVM: nVMX: Invalidate all EPTP contexts when emulating INVEPT for L1 (git-fixes). - KVM: nVMX: Validate the EPTP when emulating INVEPT(EXTENT_CONTEXT) (git-fixes). - KVM: nVMX: clear PIN_BASED_POSTED_INTR from nested pinbased_ctls only when apicv is globally disabled (git-fixes). - KVM: s390: Add a routine for setting userspace CPU state (git-fixes). - KVM: s390: Fix handle_sske page fault handling (git-fixes). - KVM: s390: Simplify SIGP Set Arch handling (git-fixes). - KVM: s390: get rid of register asm usage (git-fixes). - KVM: s390: pv: avoid stalls when making pages secure (git-fixes). - KVM: s390: pv: do not allow userspace to set the clock under PV (git-fixes). - KVM: s390: pv: leak the topmost page table when destroy fails (git-fixes). - KVM: s390: reduce number of IO pins to 1 (git-fixes). - NFC: nci: fix memory leak in nci_rx_data_packet() (git-fixes). - NFS: Refactor nfs_instantiate() for dentry referencing callers (bsc#1204215). - NFSv3: use nfs_add_or_obtain() to create and reference inodes (bsc#1204215). - PCI: hv: Add check for hyperv_initialized in init_hv_pci_drv() (bsc#1204446). - PCI: hv: Add validation for untrusted Hyper-V values (git-fixes). - PCI: hv: Drop msi_controller structure (bsc#1204446). - PCI: hv: Fix a race condition when removing the device (bsc#1204446). - PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (bsc#1204446). - PCI: hv: Fix synchronization between channel callback and hv_compose_msi_msg() (bsc#1204017). - PCI: hv: Fix synchronization between channel callback and hv_pci_bus_exit() (bsc#1204017). - PCI: hv: Fix the definition of vector in hv_compose_msi_msg() (bsc#1200845). - PCI: hv: Fix typo (bsc#1204446). - PCI: hv: Remove bus device removal unused refcount/functions (bsc#1204446). - PCI: hv: Remove unnecessary use of %hx (bsc#1204446). - PCI: hv: Support for create interrupt v3 (bsc#1204446). - PCI: hv: Use PCI_ERROR_RESPONSE to identify config read errors (bsc#1204446). - PCI: hv: Use vmbus_requestor to generate transaction IDs for VMbus hardening (bsc#1204017). - RDMA/core/sa_query: Remove unused argument (git-fixes) - RDMA/hns: Fix spelling mistakes of original (git-fixes) - RDMA/qedr: Add support for user mode XRC-SRQ's (git-fixes) - RDMA/qedr: Fix reporting max_{send/recv}_wr attrs (git-fixes) - RDMA/qedr: Remove unsupported qedr_resize_cq callback (git-fixes) - RDMA/rxe: Fix memory leak in error path code (git-fixes) - SCSI: scsi_probe_lun: retry INQUIRY after timeout (bsc#1189297). - USB: add RESET_RESUME quirk for NVIDIA Jetson devices in RCM (git-fixes). - USB: serial: option: add Fibocom FM160 0x0111 composition (git-fixes). - USB: serial: option: add Sierra Wireless EM9191 (git-fixes). - USB: serial: option: add u-blox LARA-L6 modem (git-fixes). - USB: serial: option: add u-blox LARA-R6 00B modem (git-fixes). - USB: serial: option: remove old LARA-R6 PID (git-fixes). - USB: serial: option: remove old LARA-R6 PID. - Xen/gntdev: do not ignore kernel unmapping error (git-fixes). - add another bug reference to some hyperv changes (bsc#1205617). - arm/xen: Do not probe xenbus as part of an early initcall (git-fixes). - arm64: dts: imx8mm: Fix NAND controller size-cells (git-fixes) - arm64: dts: juno: Add thermal critical trip points (git-fixes) - arm64: errata: Remove AES hwcap for COMPAT tasks (git-fixes) - ata: libata-transport: fix double ata_host_put() in ata_tport_add() (git-fixes). - ata: libata-transport: fix error handling in ata_tdev_add() (git-fixes). - ata: libata-transport: fix error handling in ata_tlink_add() (git-fixes). - ata: libata-transport: fix error handling in ata_tport_add() (git-fixes). - ata: pata_legacy: fix pdc20230_set_piomode() (git-fixes). - blk-crypto: fix check for too-large dun_bytes (git-fixes). - blk-mq: Properly init requests from blk_mq_alloc_request_hctx() (git-fixes). - blk-mq: do not create hctx debugfs dir until q->debugfs_dir is created (git-fixes). - blk-wbt: call rq_qos_add() after wb_normal is initialized (git-fixes). - blktrace: Trace remapped requests correctly (git-fixes). - block-map: add __GFP_ZERO flag for alloc_page in function bio_copy_kern (git-fixes). - block: Add a helper to validate the block size (git-fixes). - block: assign bi_bdev for cloned bios in blk_rq_prep_clone (bsc#1204328). - block: ataflop: fix breakage introduced at blk-mq refactoring (git-fixes). - block: ataflop: more blk-mq refactoring fixes (git-fixes). - block: fix infinite loop for invalid zone append (git-fixes). - block: limit request dispatch loop duration (git-fixes). - block: nbd: add sanity check for first_minor (git-fixes). - block: use "unsigned long" for blk_validate_block_size() (git-fixes). - bus: sunxi-rsb: Support atomic transfers (git-fixes). - can: cc770: cc770_isa_probe(): add missing free_cc770dev() (git-fixes). - can: sja1000_isa: sja1000_isa_probe(): add missing free_sja1000dev() (git-fixes). - capabilities: fix undefined behavior in bit shift for CAP_TO_MASK (git-fixes). - ceph: allow ceph.dir.rctime xattr to be updatable (bsc#1205989). - ceph: do not access the kiocb after aio requests (bsc#1205984). - ceph: fix fscache invalidation (bsc#1205985). - ceph: lockdep annotations for try_nonblocking_invalidate (bsc#1205988). - ceph: remove bogus checks and WARN_ONs from ceph_set_page_dirty (bsc#1205986). - ceph: request Fw caps before updating the mtime in ceph_write_iter (bsc#1205987). - cifs: skip extra NULL byte in filenames (bsc#1204791). - dm era: commit metadata in postsuspend after worker stops (git-fixes). - dm integrity: set journal entry unused when shrinking device (git-fixes). - dm mirror log: clear log bits up to BITS_PER_LONG boundary (git-fixes). - dm mpath: only use ktime_get_ns() in historical selector (git-fixes). - dm raid: fix accesses beyond end of raid member array (git-fixes). - dm raid: fix address sanitizer warning in raid_resume (git-fixes). - dm raid: fix address sanitizer warning in raid_status (git-fixes). - dm thin: fix use-after-free crash in dm_sm_register_threshold_callback (git-fixes). - dm verity fec: fix misaligned RS roots IO (git-fixes). - dm writecache: fix writing beyond end of underlying device when shrinking (git-fixes). - dm writecache: return the exact table values that were set (git-fixes). - dm writecache: set a default MAX_WRITEBACK_JOBS (git-fixes). - dm: fix request-based DM to not bounce through indirect dm_submit_bio (git-fixes). - dm: remove special-casing of bio-based immutable singleton target on NVMe (git-fixes). - dm: return early from dm_pr_call() if DM device is suspended (git-fixes). - dma-buf: fix racing conflict of dma_heap_add() (git-fixes). - dmaengine: at_hdmac: Check return code of dma_async_device_register (git-fixes). - dmaengine: at_hdmac: Do not allow CPU to reorder channel enable (git-fixes). - dmaengine: at_hdmac: Do not start transactions at tx_submit level (git-fixes). - dmaengine: at_hdmac: Fix at_lli struct definition (git-fixes). - dmaengine: at_hdmac: Fix completion of unissued descriptor in case of errors (git-fixes). - dmaengine: at_hdmac: Fix impossible condition (git-fixes). - dmaengine: mv_xor_v2: Fix a resource leak in mv_xor_v2_remove() (git-fixes). - dmaengine: pxa_dma: use platform_get_irq_optional (git-fixes). - drivers/hv: remove obsolete TODO and fix misleading typo in comment (git-fixes). - drivers: hv: Fix EXPORT_SYMBOL and tab spaces issue (git-fixes). - drivers: hv: Fix hyperv_record_panic_msg path on comment (git-fixes). - drivers: hv: Fix missing error code in vmbus_connect() (git-fixes). - drivers: hv: vmbus: Fix call msleep using &lt; 20ms (git-fixes). - drivers: hv: vmbus: Fix checkpatch LINE_SPACING (git-fixes). - drivers: hv: vmbus: Fix checkpatch SPLIT_STRING (git-fixes). - drivers: hv: vmbus: Replace symbolic permissions by octal permissions (git-fixes). - drivers: net: slip: fix NPD bug in sl_tx_timeout() (git-fixes). - drm/drv: Fix potential memory leak in drm_dev_init() (git-fixes). - drm/i915/dmabuf: fix sg_table handling in map_dma_buf (git-fixes). - drm/i915/sdvo: Filter out invalid outputs more sensibly (git-fixes). - drm/i915/sdvo: Setup DDC fully before output init (git-fixes). - drm/imx: imx-tve: Fix return type of imx_tve_connector_mode_valid (git-fixes). - drm/panel: simple: set bpc field for logic technologies displays (git-fixes). - drm/rockchip: dsi: Force synchronous probe (git-fixes). - drm/vc4: Fix missing platform_unregister_drivers() call in vc4_drm_register() (git-fixes). - drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker() (git-fixes). - fbdev: smscufx: Fix several use-after-free bugs (git-fixes). - firmware: arm_scmi: Suppress the driver's bind attributes (git-fixes). - ftrace: Fix char print issue in print_ip_ins() (git-fixes). - ftrace: Fix null pointer dereference in ftrace_add_mod() (git-fixes). - ftrace: Fix the possible incorrect kernel message (git-fixes). - ftrace: Fix use-after-free for dynamic ftrace_ops (git-fixes). - ftrace: Optimize the allocation for mcount entries (git-fixes). - ftrace: Properly unset FTRACE_HASH_FL_MOD (git-fixes). - fuse: add file_modified() to fallocate (bsc#1205330). - fuse: fix readdir cache race (bsc#1205329). - hamradio: fix issue of dev reference count leakage in bpq_device_event() (git-fixes). - hv: hyperv.h: Remove unused inline functions (git-fixes). - hv_netvsc: Add a comment clarifying batching logic (git-fixes). - hv_netvsc: Add check for kvmalloc_array (git-fixes). - hv_netvsc: Add error handling while switching data path (bsc#1204850). - hv_netvsc: Allocate the recv_buf buffers after NVSP_MSG1_TYPE_SEND_RECV_BUF (git-fixes). - hv_netvsc: Check VF datapath when sending traffic to VF (git-fixes). - hv_netvsc: Fix potential dereference of NULL pointer (git-fixes). - hv_netvsc: Fix race between VF offering and VF association message from host (bsc#1204850). - hv_netvsc: Print value of invalid ID in netvsc_send_{completion,tx_complete}() (git-fixes). - hv_netvsc: Process NETDEV_GOING_DOWN on VF hot remove (bsc#1204850). - hv_netvsc: Use bitmap_zalloc() when applicable (git-fixes). - hv_netvsc: Use vmbus_requestor to generate transaction IDs for VMBus hardening (bsc#1204017). - hv_netvsc: Validate number of allocated sub-channels (git-fixes). - hv_netvsc: Wait for completion on request SWITCH_DATA_PATH (bsc#1204017). - hv_netvsc: use netif_is_bond_master() instead of open code (git-fixes). - hv_utils: Fix passing zero to 'PTR_ERR' warning (git-fixes). - hwmon: (coretemp) Check for null before removing sysfs attrs (git-fixes). - hwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new() (git-fixes). - hwmon: (i5500_temp) fix missing pci_disable_device() (git-fixes). - hwmon: (ibmpex) Fix possible UAF when ibmpex_register_bmc() fails (git-fixes). - i2c: i801: add lis3lv02d's I2C address for Vostro 5568 (git-fixes). - ibmvnic: Free rwi on reset success (bsc#1184350 ltc#191533 git-fixes). - iio: adc: at91_adc: fix possible memory leak in at91_adc_allocate_trigger() (git-fixes). - iio: core: Fix entry not deleted when iio_register_sw_trigger_type() fails (git-fixes). - iio: health: afe4403: Fix oob read in afe4403_read_raw (git-fixes). - iio: health: afe4404: Fix oob read in afe4404_[read|write]_raw (git-fixes). - iio: light: apds9960: fix wrong register for gesture gain (git-fixes). - iio: light: rpr0521: add missing Kconfig dependencies (git-fixes). - iio: pressure: ms5611: changed hardcoded SPI speed to value limited (git-fixes). - iio: trigger: sysfs: fix possible memory leak in iio_sysfs_trig_init() (git-fixes). - isdn: mISDN: netjet: fix wrong check of device registration (git-fixes). - iwlwifi: dbg: disable ini debug in 9000 family and below (git-fixes). - kABI: Fix after adding trace_iterator.wait_index (git-fixes). - kABI: remove new member of usbip_device (git-fixes). - kabi: fix transport_add_device change (git-fixes). - kexec: turn all kexec_mutex acquisitions into trylocks (git-fixes). - kvm: nVMX: reflect MTF VM-exits if injected by L1 (git-fixes). - loop: Check for overflow while configuring loop (git-fixes). - mISDN: fix misuse of put_device() in mISDN_register_device() (git-fixes). - mISDN: fix possible memory leak in mISDN_dsp_element_register() (git-fixes). - mISDN: fix possible memory leak in mISDN_register_device() (git-fixes). - md/raid5: Ensure stripe_fill happens on non-read IO with journal (git-fixes). - md: Replace snprintf with scnprintf (git-fixes). - media: dvb-frontends/drxk: initialize err to 0 (git-fixes). - media: meson: vdec: fix possible refcount leak in vdec_probe() (git-fixes). - media: v4l2: Fix v4l2_i2c_subdev_set_name function documentation (git-fixes). - media: venus: dec: Handle the case where find_format fails (git-fixes). - media: vim2m: initialize the media device earlier (git-fixes). - media: vivid: fix assignment of dev->fbuf_out_flags (git-fixes). - misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram() (git-fixes). - mmc: core: properly select voltage range without power cycle (git-fixes). - mmc: cqhci: Provide helper for resetting both SDHCI and CQHCI (git-fixes). - mmc: sdhci-of-arasan: Fix SDHCI_RESET_ALL for CQHCI (git-fixes). - mmc: sdhci-pci-o2micro: fix card detect fail issue caused by CD# debounce timeout (git-fixes). - mmc: sdhci-pci: Fix possible memory leak caused by missing pci_dev_put() (git-fixes). - nbd: Fix use-after-free in pid_show (git-fixes). - nbd: fix possible overflow for 'first_minor' in nbd_dev_add() (git-fixes). - nbd: fix possible overflow on 'first_minor' in nbd_dev_add() (git-fixes). - nbd: handle device refs for DESTROY_ON_DISCONNECT properly (git-fixes). - net/x25: Fix skb leak in x25_lapb_receive_frame() (git-fixes). - net: ethernet: nixge: fix NULL dereference (git-fixes). - net: ethernet: renesas: ravb: Fix promiscuous mode after system resumed (git-fixes). - net: hyperv: remove use of bpf_op_t (git-fixes). - net: netvsc: remove break after return (git-fixes). - net: phy: fix null-ptr-deref while probe() failed (git-fixes). - net: thunderbolt: Fix error handling in tbnet_init() (git-fixes). - net: usb: qmi_wwan: Set DTR quirk for MR400 (git-fixes). - net: usb: qmi_wwan: restore mtu min/max values after raw_ip switch (git-fixes). - nfc/nci: fix race with opening and closing (git-fixes). - nfc: nfcmrvl: Fix potential memory leak in nfcmrvl_i2c_nci_send() (git-fixes). - nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send() (git-fixes). - nfc: st-nci: fix incorrect validating logic in EVT_TRANSACTION (git-fixes). - nfc: st-nci: fix memory leaks in EVT_TRANSACTION (git-fixes). - nfsd: set the server_scope during service startup (bsc#1203746). - null_blk: Fail zone append to conventional zones (git-fixes). - null_blk: synchronization fix for zoned device (git-fixes). - nvmem: core: Check input parameter for NULL in nvmem_unregister() (bsc#1204241). - panic, kexec: make __crash_kexec() NMI safe (git-fixes). - parport_pc: Avoid FIFO port location truncation (git-fixes). - phy: stm32: fix an error code in probe (git-fixes). - pinctrl: devicetree: fix null pointer dereferencing in pinctrl_dt_to_map (git-fixes). - platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi (git-fixes). - powerpc/boot: Explicitly disable usage of SPE instructions (bsc#1156395). - powerpc/kvm: Fix kvm_use_magic_page (bsc#1156395). - printk: add missing memory barrier to wake_up_klogd() (bsc#1204934). - printk: use atomic updates for klogd work (bsc#1204934). - printk: wake waiters for safe and NMI contexts (bsc#1204934). - r8152: Add MAC passthrough support to new device (git-fixes). - r8152: add PID for the Lenovo OneLink+ Dock (git-fixes). - r8152: use new helper tcp_v6_gso_csum_prep (git-fixes). - rbd: fix possible memory leak in rbd_sysfs_init() (git-fixes). - regulator: core: fix UAF in destroy_regulator() (git-fixes). - regulator: core: fix kobject release warning and memory leak in regulator_register() (git-fixes). - regulator: twl6030: re-add TWL6032_SUBCLASS (git-fixes). - ring-buffer: Add ring_buffer_wake_waiters() (git-fixes). - ring-buffer: Allow splice to read previous partially read pages (git-fixes). - ring-buffer: Check for NULL cpu_buffer in ring_buffer_wake_waiters() (git-fixes). - ring-buffer: Check pending waiters when doing wake ups as well (git-fixes). - ring-buffer: Fix race between reset page and reading page (git-fixes). - ring-buffer: Have the shortest_full queue be the shortest not longest (git-fixes). - ring-buffer: Include dropped pages in counting dirty patches (git-fixes). - ring_buffer: Do not deactivate non-existant pages (git-fixes). - rndis_host: increase sleep time in the query-response loop (git-fixes). - rtc: mt6397: fix alarm register overwrite (git-fixes). - s390/boot: fix absolute zero lowcore corruption on boot (git-fixes). - s390/cpcmd: fix inline assembly register clobbering (git-fixes). - s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup (git-fixes). - s390/disassembler: increase ebpf disasm buffer size (git-fixes). - s390/futex: add missing EX_TABLE entry to __futex_atomic_op() (bsc#1205428 LTC#200501). - s390/hugetlb: fix prepare_hugepage_range() check for 2 GB hugepages (bsc#1203144 LTC#199881). - s390/mm: use non-quiescing sske for KVM switch to keyed guest (git-fixes). - s390/pci: add missing EX_TABLE entries to __pcistg_mio_inuser()/__pcilg_mio_inuser() (git-fixes). - s390/ptrace: return -ENOSYS when invalid syscall is supplied (git-fixes). - s390/uaccess: add missing EX_TABLE entries to __clear_user(), copy_in_user_mvcos(), copy_in_user_mvc(), clear_user_xc() and __strnlen_user() (bsc#1205428 LTC#200501). - s390/vtime: fix inline assembly clobber list (git-fixes). - s390/zcore: fix race when reading from hardware system area (git-fixes). - s390/zcrypt: fix zcard and zqueue hot-unplug memleak (git-fixes). - s390: Remove arch_has_random, arch_has_random_seed (git-fixes). - s390: fix double free of GS and RI CBs on fork() failure (git-fixes). - s390: fix nospec table alignments (git-fixes). - s390: mark __cpacf_query() as __always_inline (git-fixes). - scsi: bsg: Remove support for SCSI_IOCTL_SEND_COMMAND (git-fixes). - scsi: drivers: base: Propagate errors through the transport component (git-fixes). - scsi: drivers: base: Support atomic version of attribute_container_device_trigger (git-fixes). - scsi: ibmvfc: Avoid path failures during live migration (bsc#1065729 bsc#1204810 ltc#200162). - scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024 (bsc#1156395). - scsi: lpfc: Create a sysfs entry called lpfc_xcvr_data for transceiver info (bsc#1204957). - scsi: lpfc: Fix hard lockup when reading the rx_monitor from debugfs (bsc#1204957). - scsi: lpfc: Fix memory leak in lpfc_create_port() (bsc#1204957). - scsi: lpfc: Fix spelling mistake "unsolicted" -> "unsolicited" (bsc#1204957). - scsi: lpfc: Log when congestion management limits are in effect (bsc#1204957). - scsi: lpfc: Set sli4_param's cmf option to zero when CMF is turned off (bsc#1204957). - scsi: lpfc: Update lpfc version to 14.2.0.8 (bsc#1204957). - scsi: lpfc: Update the obsolete adapter list (bsc#1204142). - scsi: qla2xxx: Fix serialization of DCBX TLV data request (bsc#1204963). - scsi: qla2xxx: Use transport-defined speed mask for supported_speeds (bsc#1204963). - scsi: scsi_transport_sas: Fix error handling in sas_phy_add() (git-fixes). - scsi: storvsc: Correctly handle multiple flags in srb_status (git-fixes). - scsi: storvsc: Drop DID_TARGET_FAILURE use (git-fixes). - scsi: storvsc: Fix handling of srb_status and capacity change events (git-fixes). - scsi: storvsc: Fix max_outstanding_req_per_channel for Win8 and newer (bsc#1204017). - scsi: storvsc: Fix validation for unsolicited incoming packets (bsc#1204017). - scsi: storvsc: Log TEST_UNIT_READY errors as warnings (git-fixes). - scsi: storvsc: Miscellaneous code cleanups (git-fixes). - scsi: storvsc: Parameterize number hardware queues (git-fixes). - scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq (git-fixes). - scsi: storvsc: Resolve data race in storvsc_probe() (bsc#1204017). - scsi: storvsc: Return DID_ERROR for invalid commands (git-fixes). - scsi: storvsc: Update error logging (git-fixes). - scsi: storvsc: Use blk_mq_unique_tag() to generate requestIDs (bsc#1204017). - scsi: storvsc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (git-fixes). - scsi: storvsc: Use vmbus_requestor to generate transaction IDs for VMBus hardening (bsc#1204017). - scsi: storvsc: Validate length of incoming packet in storvsc_on_channel_callback() (bsc#1204017). - scsi: zfcp: Fix double free of FSF request when qdio send fails (git-fixes). - scsi: zfcp: Fix missing auto port scan and thus missing target ports (git-fixes). - serial: 8250: Fall back to non-DMA Rx if IIR_RDI occurs (git-fixes). - serial: 8250: omap: Fix unpaired pm_runtime_put_sync() in omap8250_remove() (git-fixes). - serial: 8250: omap: Flush PM QOS work on remove (git-fixes). - serial: 8250_lpss: Configure DMA also w/o DMA filter (git-fixes). - serial: 8250_omap: remove wait loop from Errata i202 workaround (git-fixes). - serial: imx: Add missing .thaw_noirq hook (git-fixes). - siox: fix possible memory leak in siox_device_add() (git-fixes). - slimbus: stream: correct presence rate frequencies (git-fixes). - spi: spi-imx: Fix spi_bus_clk if requested clock is higher than input clock (git-fixes). - spi: stm32: Print summary 'callbacks suppressed' message (git-fixes). - staging: greybus: light: fix a couple double frees (git-fixes). - swiotlb-xen: use vmalloc_to_page on vmalloc virt addresses (git-fixes). - tracing/ring-buffer: Have polling block on watermark (git-fixes). - tracing: Add ioctl() to force ring buffer waiters to wake up (git-fixes). - tracing: Disable interrupt or preemption before acquiring arch_spinlock_t (git-fixes). - tracing: Do not free snapshot if tracer is on cmdline (git-fixes). - tracing: Fix wild-memory-access in register_synth_event() (git-fixes). - tracing: Simplify conditional compilation code in tracing_set_tracer() (git-fixes). - tracing: Wake up ring buffer waiters on closing of the file (git-fixes). - tracing: Wake up waiters when tracing is disabled (git-fixes). - usb: add NO_LPM quirk for Realforce 87U Keyboard (git-fixes). - usb: chipidea: fix deadlock in ci_otg_del_timer (git-fixes). - usb: dwc3: exynos: Fix remove() function (git-fixes). - usb: dwc3: fix PHY disable sequence (git-fixes). - usb: dwc3: gadget: Clear ep descriptor last (git-fixes). - usb: dwc3: gadget: Fix null pointer exception (git-fixes). - usb: dwc3: qcom: fix runtime PM wakeup. - usb: dwc3: qcom: fix use-after-free on runtime-PM wakeup (git-fixes). - usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being a V0.96 controller (git-fixes). - usbip: add sysfs_lock to synchronize sysfs code paths (git-fixes). - usbip: stub-dev synchronize sysfs code paths (git-fixes). - usbip: stub_dev: remake locking for kABI (git-fixes). - usbip: synchronize event handler with sysfs code paths (git-fixes). - usbip: usbip_event: use global lock (git-fixes). - usbip: vudc synchronize sysfs code paths (git-fixes). - usbip: vudc_sysfs: use global lock (git-fixes). - use __netdev_notify_peers in hyperv (git-fixes). - v3 of "PCI: hv: Only reuse existing IRTE allocation for Multi-MSI" - v3 of "PCI: hv: Only reuse existing IRTE allocation for Multi-MSI" (bsc#1200845) - vfio/ccw: Do not change FSM state in subchannel event (git-fixes). - virtio-blk: Do not use MAX_DISCARD_SEGMENTS if max_discard_seg is zero (git-fixes). - virtio-blk: Use blk_validate_block_size() to validate block size (git-fixes). - virtio_blk: eliminate anonymous module_init & module_exit (git-fixes). - virtio_blk: fix the discard_granularity and discard_alignment queue limits (git-fixes). - vmlinux.lds.h: Fix placement of '.data..decrypted' section (git-fixes). - wifi: cfg80211: fix buffer overflow in elem comparison (git-fixes). - wifi: cfg80211: fix memory leak in query_regdb_file() (git-fixes). - wifi: cfg80211: silence a sparse RCU warning (git-fixes). - wifi: mac8021: fix possible oob access in ieee80211_get_rate_duration (git-fixes). - workqueue: do not skip lockdep work dependency in cancel_work_sync() (bsc#1204967). - x86/bugs: Make sure MSR_SPEC_CTRL is updated properly upon resume from S3 (bsc#1206037). - x86/cpu: Restore AMD's DE_CFG MSR after resume (bsc#1205473). - x86/hyperv: Output host build info as normal Windows version number (git-fixes). - x86/hyperv: check cpu mask after interrupt has been disabled (git-fixes). - x86/kexec: Fix double-free of elf header buffer (bsc#1205567). - x86/microcode/AMD: Apply the patch early on every logical thread (bsc#1205264). - x86/xen: Add xen_no_vector_callback option to test PCI INTX delivery (git-fixes). - x86/xen: Distribute switch variables for initialization (git-fixes). - x86/xen: do not unbind uninitialized lock_kicker_irq (git-fixes). - xen-blkback: prevent premature module unload (git-fixes). - xen-netback: correct success/error reporting for the SKB-with-fraglist case (git-fixes). - xen/balloon: fix balloon kthread freezing (git-fixes). - xen/balloon: fix ballooned page accounting without hotplug enabled (git-fixes). - xen/balloon: fix cancelled balloon action (git-fixes). - xen/balloon: use a kernel thread instead a workqueue (git-fixes). - xen/gntdev: Avoid blocking in unmap_grant_pages() (git-fixes). - xen/gntdev: Ignore failure to unmap INVALID_GRANT_HANDLE (git-fixes). - xen/gntdev: Prevent leaking grants (git-fixes). - xen/pcpu: fix possible memory leak in register_pcpu() (git-fixes). - xen/privcmd: Corrected error handling path (git-fixes). - xen/privcmd: fix error exit of privcmd_ioctl_dm_op() (git-fixes). - xen/xenbus: Fix granting of vmalloc'd memory (git-fixes). - xen/xenbus: ensure xenbus_map_ring_valloc() returns proper grant status (git-fixes). - xen: Fix XenStore initialisation for XS_LOCAL (git-fixes). - xen: Fix event channel callback via INTX/GSI (git-fixes). - xen: delay xen_hvm_init_time_ops() if kdump is boot on vcpu>=32 (git-fixes). - xenbus: req->body should be updated before req->state (git-fixes). - xenbus: req->err should be updated before req->state (git-fixes). - xfs: Lower CIL flush limit for large logs (git-fixes). - xfs: Throttle commits on delayed background CIL push (git-fixes). - xfs: Use scnprintf() for avoiding potential buffer overflow (git-fixes). - xfs: check owner of dir3 blocks (git-fixes). - xfs: factor common AIL item deletion code (git-fixes). - xfs: open code insert range extent split helper (git-fixes). - xfs: rework collapse range into an atomic operation (git-fixes). - xfs: rework insert range into an atomic operation (git-fixes). - xfs: tail updates only need to occur when LSN changes (git-fixes). - xfs: trylock underlying buffer on dquot flush (git-fixes). - xfs: xfs_buf_corruption_error should take __this_address (git-fixes). - xhci: Remove device endpoints from bandwidth list when freeing the device (git-fixes). cluster-md-kmp-rt-5.3.18-150300.112.1.x86_64.rpm True dlm-kmp-rt-5.3.18-150300.112.1.x86_64.rpm True gfs2-kmp-rt-5.3.18-150300.112.1.x86_64.rpm True kernel-devel-rt-5.3.18-150300.112.1.noarch.rpm True kernel-rt-5.3.18-150300.112.1.nosrc.rpm True kernel-rt-5.3.18-150300.112.1.x86_64.rpm True kernel-rt-devel-5.3.18-150300.112.1.x86_64.rpm True kernel-rt_debug-5.3.18-150300.112.1.nosrc.rpm True kernel-rt_debug-devel-5.3.18-150300.112.1.x86_64.rpm True kernel-source-rt-5.3.18-150300.112.1.noarch.rpm True kernel-source-rt-5.3.18-150300.112.1.src.rpm True kernel-syms-rt-5.3.18-150300.112.1.src.rpm True kernel-syms-rt-5.3.18-150300.112.1.x86_64.rpm True ocfs2-kmp-rt-5.3.18-150300.112.1.x86_64.rpm True openSUSE-SLE-15.3-2023-20 important SUSE Updates openSUSE-SLE 15.3 This update for rmt-server fixes the following issues: Update to version 2.10: - Add option to turn off system token support (bsc#1205089) - Update the `last_seen_at` column on zypper service refresh - Do not retry to import non-existing files in air-gapped mode (bsc#1204769) - CVE-2022-31254: Fixed a local privilege escalation related to the packaging of rmt-server (bsc#1204285). rmt-server-2.10-150300.3.21.1.src.rpm rmt-server-2.10-150300.3.21.1.x86_64.rpm rmt-server-config-2.10-150300.3.21.1.x86_64.rpm rmt-server-pubcloud-2.10-150300.3.21.1.x86_64.rpm rmt-server-2.10-150300.3.21.1.s390x.rpm rmt-server-config-2.10-150300.3.21.1.s390x.rpm rmt-server-pubcloud-2.10-150300.3.21.1.s390x.rpm rmt-server-2.10-150300.3.21.1.ppc64le.rpm rmt-server-config-2.10-150300.3.21.1.ppc64le.rpm rmt-server-pubcloud-2.10-150300.3.21.1.ppc64le.rpm rmt-server-2.10-150300.3.21.1.aarch64.rpm rmt-server-config-2.10-150300.3.21.1.aarch64.rpm rmt-server-pubcloud-2.10-150300.3.21.1.aarch64.rpm openSUSE-SLE-15.3-2023-16 moderate SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - Fix for qemu for broken emulation in SLES15 SP3. (bsc#1202364) cloud-regionsrv-8.1.3-150300.11.9.1.noarch.rpm cloud-regionsrv-8.1.3-150300.11.9.1.src.rpm cloud-regionsrv-generic-config-1.0.0-150300.11.9.1.noarch.rpm openSUSE-SLE-15.3-2022-4584 critical SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Update to version 10.0.8 (bsc#1206428) - Fix regression introduced by 10.0.7. When the hosts file was modified such that there is no empty line at the end of the file the content after removing the registration data does not match the content prior to registration. The update fixes the issue triggered by an index logic error. cloud-regionsrv-client-10.0.8-150000.6.86.1.noarch.rpm cloud-regionsrv-client-10.0.8-150000.6.86.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-150000.6.86.1.noarch.rpm cloud-regionsrv-client-plugin-azure-2.0.0-150000.6.86.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-150000.6.86.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-150000.6.86.1.noarch.rpm openSUSE-SLE-15.3-2023-27 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-hana-update fixes the following issues: - Fix wrong information in YaST2 module yast2-hana-update Step 4 of 7 (bsc#1185229) yast2-hana-update-1.2.2-150200.3.3.1.src.rpm yast2-hana-update-1.2.2-150200.3.3.1.x86_64.rpm yast2-hana-update-1.2.2-150200.3.3.1.ppc64le.rpm openSUSE-SLE-15.3-2023-28 moderate SUSE Updates openSUSE-SLE 15.3 This update for SAPHanaSR fixes the following issues: - Add improvements from SAP to the RA scripts regarding the handling of the SAP tools 'HDB version', 'HDBSettings.sh' and 'pycd' and the SAPHana log filter handling (jsc#PED-1738, jsc#PED-1739) - Fix for SAPHanaSR-monitor reporting "LPA status of one node is missing" (bsc#1192963, bsc#1203973) SAPHanaSR-0.162.0-150000.4.28.1.noarch.rpm SAPHanaSR-0.162.0-150000.4.28.1.src.rpm SAPHanaSR-doc-0.162.0-150000.4.28.1.noarch.rpm openSUSE-SLE-15.3-2023-49 moderate SUSE Updates openSUSE-SLE 15.3 This update for llvm9 fixes the following issues: - Keep DFLTCC environment during testing so we can disable the compression facility on s390x which causes testsuite issues (bsc#1189602) - Drop RUNPATH from packaged binaries, instead set LD_LIBRARY_PATH for building and testing to simulate behavior of actual package (bsc#1197776) clang9-9.0.1-150200.3.6.1.x86_64.rpm clang9-checker-9.0.1-150200.3.6.1.x86_64.rpm clang9-devel-32bit-9.0.1-150200.3.6.1.x86_64.rpm clang9-devel-9.0.1-150200.3.6.1.x86_64.rpm clang9-doc-9.0.1-150200.3.6.1.noarch.rpm libLLVM9-32bit-9.0.1-150200.3.6.1.x86_64.rpm libLLVM9-9.0.1-150200.3.6.1.x86_64.rpm libLTO9-32bit-9.0.1-150200.3.6.1.x86_64.rpm libLTO9-9.0.1-150200.3.6.1.x86_64.rpm libclang9-32bit-9.0.1-150200.3.6.1.x86_64.rpm libclang9-9.0.1-150200.3.6.1.x86_64.rpm liblldb9-9.0.1-150200.3.6.1.x86_64.rpm libomp9-devel-9.0.1-150200.3.6.1.x86_64.rpm lld9-9.0.1-150200.3.6.1.x86_64.rpm lldb9-9.0.1-150200.3.6.1.x86_64.rpm lldb9-devel-9.0.1-150200.3.6.1.x86_64.rpm llvm9-9.0.1-150200.3.6.1.src.rpm llvm9-9.0.1-150200.3.6.1.x86_64.rpm llvm9-LTO-devel-32bit-9.0.1-150200.3.6.1.x86_64.rpm llvm9-LTO-devel-9.0.1-150200.3.6.1.x86_64.rpm llvm9-devel-32bit-9.0.1-150200.3.6.1.x86_64.rpm llvm9-devel-9.0.1-150200.3.6.1.x86_64.rpm llvm9-doc-9.0.1-150200.3.6.1.noarch.rpm llvm9-gold-9.0.1-150200.3.6.1.x86_64.rpm llvm9-opt-viewer-9.0.1-150200.3.6.1.noarch.rpm llvm9-polly-9.0.1-150200.3.6.1.x86_64.rpm llvm9-polly-devel-9.0.1-150200.3.6.1.x86_64.rpm llvm9-vim-plugins-9.0.1-150200.3.6.1.noarch.rpm python3-lldb9-9.0.1-150200.3.6.1.x86_64.rpm clang9-9.0.1-150200.3.6.1.s390x.rpm clang9-checker-9.0.1-150200.3.6.1.s390x.rpm clang9-devel-9.0.1-150200.3.6.1.s390x.rpm libLLVM9-9.0.1-150200.3.6.1.s390x.rpm libLTO9-9.0.1-150200.3.6.1.s390x.rpm libclang9-9.0.1-150200.3.6.1.s390x.rpm lld9-9.0.1-150200.3.6.1.s390x.rpm llvm9-9.0.1-150200.3.6.1.s390x.rpm llvm9-LTO-devel-9.0.1-150200.3.6.1.s390x.rpm llvm9-devel-9.0.1-150200.3.6.1.s390x.rpm llvm9-gold-9.0.1-150200.3.6.1.s390x.rpm llvm9-polly-9.0.1-150200.3.6.1.s390x.rpm llvm9-polly-devel-9.0.1-150200.3.6.1.s390x.rpm clang9-9.0.1-150200.3.6.1.ppc64le.rpm clang9-checker-9.0.1-150200.3.6.1.ppc64le.rpm clang9-devel-9.0.1-150200.3.6.1.ppc64le.rpm libLLVM9-9.0.1-150200.3.6.1.ppc64le.rpm libLTO9-9.0.1-150200.3.6.1.ppc64le.rpm libclang9-9.0.1-150200.3.6.1.ppc64le.rpm libomp9-devel-9.0.1-150200.3.6.1.ppc64le.rpm lld9-9.0.1-150200.3.6.1.ppc64le.rpm llvm9-9.0.1-150200.3.6.1.ppc64le.rpm llvm9-LTO-devel-9.0.1-150200.3.6.1.ppc64le.rpm llvm9-devel-9.0.1-150200.3.6.1.ppc64le.rpm llvm9-gold-9.0.1-150200.3.6.1.ppc64le.rpm llvm9-polly-9.0.1-150200.3.6.1.ppc64le.rpm llvm9-polly-devel-9.0.1-150200.3.6.1.ppc64le.rpm clang9-9.0.1-150200.3.6.1.aarch64.rpm clang9-checker-9.0.1-150200.3.6.1.aarch64.rpm clang9-devel-9.0.1-150200.3.6.1.aarch64.rpm libLLVM9-9.0.1-150200.3.6.1.aarch64.rpm libLTO9-9.0.1-150200.3.6.1.aarch64.rpm libclang9-9.0.1-150200.3.6.1.aarch64.rpm libomp9-devel-9.0.1-150200.3.6.1.aarch64.rpm lld9-9.0.1-150200.3.6.1.aarch64.rpm llvm9-9.0.1-150200.3.6.1.aarch64.rpm llvm9-LTO-devel-9.0.1-150200.3.6.1.aarch64.rpm llvm9-devel-9.0.1-150200.3.6.1.aarch64.rpm llvm9-gold-9.0.1-150200.3.6.1.aarch64.rpm llvm9-polly-9.0.1-150200.3.6.1.aarch64.rpm llvm9-polly-devel-9.0.1-150200.3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-4631 important SUSE Updates openSUSE-SLE 15.3 This update for vim fixes the following issues: Updated to version 9.0.1040: - CVE-2022-3491: vim: Heap-based Buffer Overflow prior to 9.0.0742 (bsc#1206028). - CVE-2022-3520: vim: Heap-based Buffer Overflow (bsc#1206071). - CVE-2022-3591: vim: Use After Free (bsc#1206072). - CVE-2022-4292: vim: Use After Free in GitHub repository vim/vim prior to 9.0.0882 (bsc#1206075). - CVE-2022-4293: vim: Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804 (bsc#1206077). - CVE-2022-4141: vim: heap-buffer-overflow in alloc.c 246:11 (bsc#1205797). - CVE-2022-3705: vim: use after free in function qf_update_buffer of the file quickfix.c (bsc#1204779). gvim-9.0.1040-150000.5.31.1.x86_64.rpm vim-9.0.1040-150000.5.31.1.src.rpm vim-9.0.1040-150000.5.31.1.x86_64.rpm vim-data-9.0.1040-150000.5.31.1.noarch.rpm vim-data-common-9.0.1040-150000.5.31.1.noarch.rpm vim-small-9.0.1040-150000.5.31.1.x86_64.rpm gvim-9.0.1040-150000.5.31.1.s390x.rpm vim-9.0.1040-150000.5.31.1.s390x.rpm vim-small-9.0.1040-150000.5.31.1.s390x.rpm gvim-9.0.1040-150000.5.31.1.ppc64le.rpm vim-9.0.1040-150000.5.31.1.ppc64le.rpm vim-small-9.0.1040-150000.5.31.1.ppc64le.rpm gvim-9.0.1040-150000.5.31.1.aarch64.rpm vim-9.0.1040-150000.5.31.1.aarch64.rpm vim-small-9.0.1040-150000.5.31.1.aarch64.rpm openSUSE-SLE-15.3-2022-4628 moderate SUSE Updates openSUSE-SLE 15.3 This update for sqlite3 fixes the following issues: - CVE-2022-46908: Properly implement the azProhibitedFunctions protection mechanism, when relying on --safe for execution of an untrusted CLI script (bsc#1206337). libsqlite3-0-3.39.3-150000.3.20.1.x86_64.rpm libsqlite3-0-32bit-3.39.3-150000.3.20.1.x86_64.rpm sqlite3-3.39.3-150000.3.20.1.src.rpm sqlite3-3.39.3-150000.3.20.1.x86_64.rpm sqlite3-devel-3.39.3-150000.3.20.1.x86_64.rpm sqlite3-doc-3.39.3-150000.3.20.1.noarch.rpm sqlite3-tcl-3.39.3-150000.3.20.1.x86_64.rpm libsqlite3-0-3.39.3-150000.3.20.1.s390x.rpm sqlite3-3.39.3-150000.3.20.1.s390x.rpm sqlite3-devel-3.39.3-150000.3.20.1.s390x.rpm sqlite3-tcl-3.39.3-150000.3.20.1.s390x.rpm libsqlite3-0-3.39.3-150000.3.20.1.ppc64le.rpm sqlite3-3.39.3-150000.3.20.1.ppc64le.rpm sqlite3-devel-3.39.3-150000.3.20.1.ppc64le.rpm sqlite3-tcl-3.39.3-150000.3.20.1.ppc64le.rpm libsqlite3-0-3.39.3-150000.3.20.1.aarch64.rpm sqlite3-3.39.3-150000.3.20.1.aarch64.rpm sqlite3-devel-3.39.3-150000.3.20.1.aarch64.rpm sqlite3-tcl-3.39.3-150000.3.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-4606 moderate SUSE Updates openSUSE-SLE 15.3 This update for helm fixes the following issues: Update to version 3.10.3: - CVE-2022-23524: Fixed a denial of service in the string value parsing (bsc#1206467). - CVE-2022-23525: Fixed a denial of service with the repository index file (bsc#1206469). - CVE-2022-23526: Fixed a denial of service in the schema file handling (bsc#1206471). helm-3.10.3-150000.1.13.1.src.rpm helm-3.10.3-150000.1.13.1.x86_64.rpm helm-bash-completion-3.10.3-150000.1.13.1.noarch.rpm helm-fish-completion-3.10.3-150000.1.13.1.noarch.rpm helm-zsh-completion-3.10.3-150000.1.13.1.noarch.rpm helm-3.10.3-150000.1.13.1.s390x.rpm helm-3.10.3-150000.1.13.1.ppc64le.rpm helm-3.10.3-150000.1.13.1.aarch64.rpm openSUSE-SLE-15.3-2023-9 important SUSE Updates openSUSE-SLE 15.3 This update for saphanabootstrap-formula fixes the following issues: - Version bump 0.13.1 * revert changes to spec file to re-enable SLES RPM builds * CVE-2022-45153: Fixed privilege escalation for arbitrary users in hana/ha_cluster.sls (bsc#1205990) - Version bump 0.13.0 * pass sid to sudoers in a SLES12 compatible way * add location constraint to gcp_stonith - Version bump 0.12.1 * moved templates dir into hana dir in repository to be gitfs compatible - Version bump 0.12.0 * add SAPHanaSR takeover blocker - Version bump 0.11.0 * use check_cmd instead of tmp sudoers file * make sudoers rules more secure * migrate sudoers to template file - Version bump 0.10.1 * fix hook removal conditions * fix majority_maker code on case grain is empty - Version bump 0.10.0 * allow to disable shared HANA basepath and rework add_hosts code (enables HANA scale-out on AWS) * do not edit global.ini directly (if not needed) - Version bump 0.9.1 * fix majority_maker code on case grain is empty - Version bump 0.9.0 * define vip_mechanism for every provider and reorder resources (same schema for all SAP related formulas) - Version bump 0.8.1 * use multi-target Hook on HANA scale-out - Version bump 0.8.0 * add HANA scale-out support * add idempotence to not affect a running HANA and cluster - Version bump 0.7.2 * add native fencing for microsoft-azure - fixes a not working import of dbapi in SUSE/ha-sap-terraform-deployments#703 - removes the installation and extraction of all hdbcli files in the /hana/shared/srHook directory - fixes execution order of srTakeover/srCostOptMemConfig hook - renames and updates hook srTakeover to srCostOptMemConfig - Changing exporter stickiness to => 0 and adjusting the colocation score from +inf to -inf and changing the colocation from Master to Slave. This change fix the impact of a failed exporter in regards to the HANA DB. - Document extra_parameters in pillar.example (bsc#1185643) - Change hanadb_exporter default timeout value to 30 seconds - Set correct stickiness for the azure-lb resource The azure-lb resource receives an stickiness=0 to not influence on transitions calculations as the HANA resources have more priority saphanabootstrap-formula-0.13.1+git.1667812208.4db963e-150200.3.15.1.noarch.rpm saphanabootstrap-formula-0.13.1+git.1667812208.4db963e-150200.3.15.1.src.rpm openSUSE-SLE-15.3-2023-29 important SUSE Updates openSUSE-SLE 15.3 This update for LibVNCServer fixes the following issues: - Turn on reliable tests and turn off unreliable ones (bsc#1203106, bsc#1204127, bsc#1204129, bsc#1173477, bsc#1170916) LibVNCServer-0.9.10-150000.4.32.3.src.rpm LibVNCServer-devel-0.9.10-150000.4.32.3.x86_64.rpm libvncclient0-0.9.10-150000.4.32.3.x86_64.rpm libvncserver0-0.9.10-150000.4.32.3.x86_64.rpm LibVNCServer-devel-0.9.10-150000.4.32.3.s390x.rpm libvncclient0-0.9.10-150000.4.32.3.s390x.rpm libvncserver0-0.9.10-150000.4.32.3.s390x.rpm LibVNCServer-devel-0.9.10-150000.4.32.3.ppc64le.rpm libvncclient0-0.9.10-150000.4.32.3.ppc64le.rpm libvncserver0-0.9.10-150000.4.32.3.ppc64le.rpm LibVNCServer-devel-0.9.10-150000.4.32.3.aarch64.rpm libvncclient0-0.9.10-150000.4.32.3.aarch64.rpm libvncserver0-0.9.10-150000.4.32.3.aarch64.rpm openSUSE-SLE-15.3-2021-2764 critical SUSE Updates openSUSE-SLE 15.3 This update for libsndfile fixes the following issues: - CVE-2018-13139: Fixed a stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. (bsc#1100167) - CVE-2018-19432: Fixed a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service. (bsc#1116993) - CVE-2021-3246: Fixed a heap buffer overflow vulnerability in msadpcm_decode_block. (bsc#1188540) - CVE-2018-19758: Fixed a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service. (bsc#1117954) libsndfile-1.0.28-5.12.1.src.rpm libsndfile-devel-1.0.28-5.12.1.x86_64.rpm libsndfile-progs-1.0.28-5.12.1.src.rpm libsndfile-progs-1.0.28-5.12.1.x86_64.rpm libsndfile1-1.0.28-5.12.1.x86_64.rpm libsndfile1-32bit-1.0.28-5.12.1.x86_64.rpm libsndfile-devel-1.0.28-5.12.1.s390x.rpm libsndfile-progs-1.0.28-5.12.1.s390x.rpm libsndfile1-1.0.28-5.12.1.s390x.rpm libsndfile-devel-1.0.28-5.12.1.ppc64le.rpm libsndfile-progs-1.0.28-5.12.1.ppc64le.rpm libsndfile1-1.0.28-5.12.1.ppc64le.rpm libsndfile-devel-1.0.28-5.12.1.aarch64.rpm libsndfile-progs-1.0.28-5.12.1.aarch64.rpm libsndfile1-1.0.28-5.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-3750 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-magic provides the following fix: - Ship the correct versions of python-magic on SUSE Manager repositories (no source changes). python-magic-5.32-150000.7.16.1.src.rpm python2-magic-5.32-150000.7.16.1.x86_64.rpm python3-magic-5.32-150000.7.16.1.x86_64.rpm python2-magic-5.32-150000.7.16.1.s390x.rpm python3-magic-5.32-150000.7.16.1.s390x.rpm python2-magic-5.32-150000.7.16.1.ppc64le.rpm python3-magic-5.32-150000.7.16.1.ppc64le.rpm python2-magic-5.32-150000.7.16.1.aarch64.rpm python3-magic-5.32-150000.7.16.1.aarch64.rpm