[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2021:1357-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":26,"duplicates":27,"related":28,"reserved_at":9,"published_at":35,"modified_at":36,"state":9,"summary":37,"references_raw":39,"kevs":268,"epss":9,"epss_history":269,"metrics":270,"affected":271},"OPENSUSE-SU-2021:1357-1","Security update for the Linux Kernel\n\n\n\nThe openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2020-3702: Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic (bnc#1191193).\n- CVE-2021-3669: Fixed a denial of service to replace costly bailout check in sysvipc_find_ipc() (bsc#1159886 bsc#1188986).\n- CVE-2021-3752: Fixed a use-after-free  uaf bug in bluetooth (bsc#1190023).\n- CVE-2021-40490: A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel (bnc#1190159)\n- CVE-2021-3744, CVE-2021-3764: Fixed some resource leaks in the ccp driver ccp_run_aes_gcm_cmd() (bsc#1189884 bsc#1190534).\n\nThe following non-security bugs were fixed:\n\n- ALSA: firewire-motu: fix truncated bytes in message tracepoints (git-fixes).\n- apparmor: remove duplicate macro list_entry_is_head() (git-fixes).\n- ASoC: fsl_micfil: register platform component before registering cpu dai (git-fixes).\n- ASoC: mediatek: common: handle NULL case in suspend/resume function (git-fixes).\n- ASoC: rockchip: i2s: Fix regmap_ops hang (git-fixes).\n- ASoC: rockchip: i2s: Fixup config for DAIFMT_DSP_A/B (git-fixes).\n- ASoC: SOF: Fix DSP oops stack dump output contents (git-fixes).\n- ath9k: fix OOB read ar9300_eeprom_restore_internal (git-fixes).\n- ath9k: fix sleeping in atomic context (git-fixes).\n- blk-mq: do not deactivate hctx if managed irq isn't used (bsc#1185762).\n- blk-mq: kABI fixes for blk_mq_queue_map (bsc#1185762).\n- blk-mq: mark if one queue map uses managed irq (bsc#1185762).\n- Bluetooth: skip invalid hci_sync_conn_complete_evt (git-fixes).\n- bnx2x: fix an error code in bnx2x_nic_load() (git-fixes).\n- bnxt: count Tx drops (git-fixes).\n- bnxt: disable napi before canceling DIM (git-fixes).\n- bnxt: do not lock the tx queue from napi poll (git-fixes).\n- bnxt_en: Add missing DMA memory barriers (git-fixes).\n- bnxt_en: Disable aRFS if running on 212 firmware (git-fixes).\n- bnxt_en: Do not enable legacy TX push on older firmware (git-fixes).\n- bnxt_en: Store the running firmware version code (git-fixes).\n- bnxt: make sure xmit_more + errors does not miss doorbells (git-fixes).\n- btrfs: prevent rename2 from exchanging a subvol with a directory from different parents (bsc#1190626).\n- clk: at91: clk-generated: Limit the requested rate to our range (git-fixes).\n- clk: at91: clk-generated: pass the id of changeable parent at registration (git-fixes).\n- console: consume APC, DM, DCS (git-fixes).\n- cuse: fix broken release (bsc#1190596).\n- cxgb4: dont touch blocked freelist bitmap after free (git-fixes).\n- debugfs: Return error during {full/open}_proxy_open() on rmmod (bsc#1173746).\n- devlink: Break parameter notification sequence to be before/after unload/load driver (bsc#1154353).\n- dmaengine: ioat: depends on !UML (git-fixes).\n- dmaengine: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- dmaengine: xilinx_dma: Set DMA mask for coherent APIs (git-fixes).\n- docs: Fix infiniband uverbs minor number (git-fixes).\n- drivers: gpu: amd: Initialize amdgpu_dm_backlight_caps object to 0 in amdgpu_dm_update_backlight_caps (git-fixes).\n- drm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex (git-fixes).\n- drm/amd/display: Fix timer_per_pixel unit error (git-fixes).\n- drm/amdgpu: Fix BUG_ON assert (git-fixes).\n- drm: avoid blocking in drm_clients_info's rcu section (git-fixes).\n- drm/gma500: Fix end of loop tests for list_for_each_entry (git-fixes).\n- drm/nouveau/nvkm: Replace -ENOSYS with -ENODEV (git-fixes).\n- drm/panfrost: Clamp lock region to Bifrost minimum (git-fixes).\n- e1000e: Do not take care about recovery NVM checksum (jsc#SLE-8100).\n- e1000e: Fix the max snoop/no-snoop latency for 10M (git-fixes).\n- EDAC/i10nm: Fix NVDIMM detection (bsc#1152489).\n- EDAC/synopsys: Fix wrong value type assignment for edac_mode (bsc#1152489).\n- erofs: fix up erofs_lookup tracepoint (git-fixes).\n- fbmem: do not allow too huge resolutions (git-fixes).\n- fpga: machxo2-spi: Fix missing error code in machxo2_write_complete() (git-fixes).\n- fpga: machxo2-spi: Return an error on failure (git-fixes).\n- fuse: flush extending writes (bsc#1190595).\n- fuse: truncate pagecache on atomic_o_trunc (bsc#1190705).\n- genirq: add device_has_managed_msi_irq (bsc#1185762).\n- gpio: uniphier: Fix void functions to remove return value (git-fixes).\n- gpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable access in amdgpu_i2c_router_select_ddc_port() (git-fixes).\n- gve: fix the wrong AdminQ buffer overflow check (bsc#1176940).\n- hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726).\n- hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726).\n- hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs (git-fixes).\n- hwmon: (tmp421) fix rounding for negative values (git-fixes).\n- hwmon: (tmp421) report /PVLD condition as fault (git-fixes).\n- i40e: Add additional info to PHY type error (git-fixes).\n- i40e: Fix firmware LLDP agent related warning (git-fixes).\n- i40e: Fix logic of disabling queues (git-fixes).\n- i40e: Fix log TC creation failure when max num of queues is exceeded (git-fixes).\n- i40e: Fix queue-to-TC mapping on Tx (git-fixes).\n- iavf: Fix ping is lost after untrusted VF had tried to change MAC (jsc#SLE-7940).\n- iavf: Set RSS LUT and key in reset handle path (git-fixes).\n- ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510).\n- ibmvnic: Consolidate code in replenish_rx_pool() (bsc#1190758 ltc#191943).\n- ibmvnic: Fix up some comments and messages (bsc#1190758 ltc#191943).\n- ibmvnic: init_tx_pools move loop-invariant code (bsc#1190758 ltc#191943).\n- ibmvnic: Reuse LTB when possible (bsc#1190758 ltc#191943).\n- ibmvnic: Reuse rx pools when possible (bsc#1190758 ltc#191943).\n- ibmvnic: Reuse tx pools when possible (bsc#1190758 ltc#191943).\n- ibmvnic: Use bitmap for LTB map_ids (bsc#1190758 ltc#191943).\n- ibmvnic: Use/rename local vars in init_rx_pools (bsc#1190758 ltc#191943).\n- ibmvnic: Use/rename local vars in init_tx_pools (bsc#1190758 ltc#191943).\n- ice: Prevent probing virtual functions (git-fixes).\n- iio: dac: ad5624r: Fix incorrect handling of an optional regulator (git-fixes).\n- include/linux/list.h: add a macro to test if entry is pointing to the head (git-fixes).\n- iomap: Fix negative assignment to unsigned sis->pages in iomap_swapfile_activate (bsc#1190784).\n- ionic: cleanly release devlink instance (bsc#1167773).\n- ionic: count csum_none when offload enabled (bsc#1167773).\n- ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115).\n- ipc/util.c: use binary search for max_idx (bsc#1159886).\n- ipvs: allow connection reuse for unconfirmed conntrack (bsc#1190467).\n- ipvs: avoid expiring many connections from timer (bsc#1190467).\n- ipvs: Fix up kabi for expire_nodest_conn_work addition (bsc#1190467).\n- ipvs: queue delayed work to expire no destination connections if expire_nodest_conn=1 (bsc#1190467).\n- iwlwifi: mvm: fix a memory leak in iwl_mvm_mac_ctxt_beacon_changed (git-fixes).\n- kernel-binary.spec: Check for no kernel signing certificates. Also remove unused variable.\n- kernel-binary.spec: Do not fail silently when KMP is empty (bsc#1190358). Copy the code from kernel-module-subpackage that deals with empty KMPs.\n- kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167 bsc#1191240 ltc#194716).\n- kernel-binary.spec.in Stop templating the scriptlets for subpackages (bsc#1190358).\n- libata: fix ata_host_start() (git-fixes).\n- mac80211: Fix ieee80211_amsdu_aggregate frag_tail bug (git-fixes).\n- mac80211: fix use-after-free in CCMP/GCMP RX (git-fixes).\n- mac80211-hwsim: fix late beacon hrtimer handling (git-fixes).\n- mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap (git-fixes).\n- mac80211: mesh: fix potentially unaligned access (git-fixes).\n- media: cedrus: Fix SUNXI tile size calculation (git-fixes).\n- media: coda: fix frame_mem_ctrl for YUV420 and YVU420 formats (git-fixes).\n- media: dib8000: rewrite the init prbs logic (git-fixes).\n- media: imx258: Limit the max analogue gain to 480 (git-fixes).\n- media: imx258: Rectify mismatch of VTS value (git-fixes).\n- media: rc-loopback: return number of emitters rather than error (git-fixes).\n- media: TDA1997x: fix tda1997x_query_dv_timings() return value (git-fixes).\n- media: uvc: do not do DMA on stack (git-fixes).\n- media: v4l2-dv-timings.c: fix wrong condition in two for-loops (git-fixes).\n- mfd: Do not use irq_create_mapping() to resolve a mapping (git-fixes).\n- mlx4: Fix missing error code in mlx4_load_one() (git-fixes).\n- mm: always have io_remap_pfn_range() set pgprot_decrypted() (git-fixes).\n- mmc: core: Return correct emmc response in case of ioctl error (git-fixes).\n- mmc: rtsx_pci: Fix long reads when clock is prescaled (git-fixes).\n- mmc: sdhci-of-arasan: Check return value of non-void funtions (git-fixes).\n- mm/swap: consider max pages in iomap_swapfile_add_extent (bsc#1190785).\n- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (bsc#1190062).\n- net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726).\n- net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726).\n- net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726).\n- net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726).\n- net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726).\n- net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726).\n- net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726).\n- net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726).\n- net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726).\n- net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726).\n- net/mlx5e: Avoid creating tunnel headers for local route (git-fixes).\n- net/mlx5e: Fix nullptr in mlx5e_hairpin_get_mdev() (git-fixes).\n- net/mlx5e: Prohibit inner indir TIRs in IPoIB (git-fixes).\n- net/mlx5: E-Switch, handle devcom events only for ports on the same device (git-fixes).\n- net/mlx5: Fix flow table chaining (git-fixes).\n- net/mlx5: Fix return value from tracer initialization (git-fixes).\n- net/mlx5: Unload device upon firmware fatal error (git-fixes).\n- net: qlcnic: add missed unlock in qlcnic_83xx_flash_read32 (git-fixes).\n- net: sched: sch_teql: fix null-pointer dereference (bsc#1190717).\n- nfp: update ethtool reporting of pauseframe control (git-fixes).\n- NFS: change nfs_access_get_cached to only report the mask (bsc#1190746).\n- NFS: do not store 'struct cred *' in struct nfs_access_entry (bsc#1190746).\n- NFS: pass cred explicitly for access tests (bsc#1190746).\n- nvme: avoid race in shutdown namespace removal (bsc#1188067).\n- nvme: fix refcounting imbalance when all paths are down (bsc#1188067).\n- parport: remove non-zero check on count (git-fixes).\n- PCI: aardvark: Fix checking for PIO status (git-fixes).\n- PCI: aardvark: Fix masking and unmasking legacy INTx interrupts (git-fixes).\n- PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response (git-fixes).\n- PCI: Add ACS quirks for Cavium multi-function devices (git-fixes).\n- PCI: Add ACS quirks for NXP LX2xx0 and LX2xx2 platforms (git-fixes).\n- PCI: Add AMD GPU multi-function power dependencies (git-fixes).\n- PCI: ibmphp: Fix double unmap of io_mem (git-fixes).\n- PCI: pci-bridge-emul: Add PCIe Root Capabilities Register (git-fixes).\n- PCI: pci-bridge-emul: Fix array overruns, improve safety (git-fixes).\n- PCI: pci-bridge-emul: Fix big-endian support (git-fixes).\n- PCI: Restrict ASMedia ASM1062 SATA Max Payload Size Supported (git-fixes).\n- PCI: Use pci_update_current_state() in pci_enable_device_flags() (git-fixes).\n- PM: base: power: do not try to use non-existing RTC for storing data (git-fixes).\n- PM: EM: Increase energy calculation precision (git-fixes).\n- powercap: intel_rapl: add support for Sapphire Rapids (jsc#SLE-15289).\n- powerpc/drmem: Make LMB walk a bit more flexible (bsc#1190543 ltc#194523).\n- powerpc: fix function annotations to avoid section mismatch warnings with gcc-10 (bsc#1148868).\n- powerpc/perf: Drop the case of returning 0 as instruction pointer (bsc#1065729).\n- powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (bsc#1065729).\n- powerpc/perf: Fix the check for SIAR value (bsc#1065729).\n- powerpc/perf/hv-gpci: Fix counter value parsing (bsc#1065729).\n- powerpc/perf: Use regs->nip when SIAR is zero (bsc#1065729).\n- powerpc/perf: Use stack siar instead of mfspr (bsc#1065729).\n- powerpc/perf: Use the address from SIAR register to set cpumode flags (bsc#1065729).\n- powerpc/powernv: Fix machine check reporting of async store errors (bsc#1065729).\n- powerpc/pseries/dlpar: use rtas_get_sensor() (bsc#1065729).\n- powerpc/pseries: Prevent free CPU ids being reused on another node (bsc#1190620 ltc#194498).\n- power: supply: axp288_fuel_gauge: Report register-address on readb / writeb errors (git-fixes).\n- power: supply: max17042_battery: fix typo in MAx17042_TOFF (git-fixes).\n- pseries/drmem: update LMBs after LPM (bsc#1190543 ltc#194523).\n- pwm: img: Do not modify HW state in .remove() callback (git-fixes).\n- pwm: rockchip: Do not modify HW state in .remove() callback (git-fixes).\n- pwm: stm32-lp: Do not modify HW state in .remove() callback (git-fixes).\n- qlcnic: Remove redundant unlock in qlcnic_pinit_from_rom (git-fixes).\n- RDMA/bnxt_re: Remove unpaired rtnl unlock in bnxt_re_dev_init() (bsc#1170774).\n- Re-enable UAS for LaCie Rugged USB3-FW with fk quirk (git-fixes).\n- regmap: fix page selection for noinc reads (git-fixes).\n- regmap: fix page selection for noinc writes (git-fixes).\n- regmap: fix the offset of register error log (git-fixes).\n- Restore kabi after NFS: pass cred explicitly for access tests (bsc#1190746).\n- rpm: Abolish scritplet templating (bsc#1189841).\n- rtc: rx8010: select REGMAP_I2C (git-fixes).\n- rtc: tps65910: Correct driver module alias (git-fixes).\n- s390/unwind: use current_frame_address() to unwind current task (bsc#1185677).\n- sched/fair: Add ancestors of unthrottled undecayed cfs_rq (bsc#1191292).\n- scsi: core: Add helper to return number of logical blocks in a request (bsc#1190576).\n- scsi: core: Introduce the scsi_cmd_to_rq() function (bsc#1190576).\n- scsi: fc: Add EDC ELS definition (bsc#1190576).\n- scsi: fc: Update formal FPIN descriptor definitions (bsc#1190576).\n- scsi: lpfc: Add bsg support for retrieving adapter cmf data (bsc#1190576).\n- scsi: lpfc: Add cmf_info sysfs entry (bsc#1190576).\n- scsi: lpfc: Add cmfsync WQE support (bsc#1190576).\n- scsi: lpfc: Add cm statistics buffer support (bsc#1190576).\n- scsi: lpfc: Add debugfs support for cm framework buffers (bsc#1190576).\n- scsi: lpfc: Add EDC ELS support (bsc#1190576).\n- scsi: lpfc: Add MIB feature enablement support (bsc#1190576).\n- scsi: lpfc: Add rx monitoring statistics (bsc#1190576).\n- scsi: lpfc: Add SET_HOST_DATA mbox cmd to pass date/time info to firmware (bsc#1190576).\n- scsi: lpfc: Add support for cm enablement buffer (bsc#1190576).\n- scsi: lpfc: Add support for maintaining the cm statistics buffer (bsc#1190576).\n- scsi: lpfc: Add support for the CM framework (bsc#1190576).\n- scsi: lpfc: Adjust bytes received vales during cmf timer interval (bsc#1190576).\n- scsi: lpfc: Copyright updates for 14.0.0.1 patches (bsc#1190576).\n- scsi: lpfc: Do not release final kref on Fport node while ABTS outstanding (bsc#1190576).\n- scsi: lpfc: Do not remove ndlp on PRLI errors in P2P mode (bsc#1190576).\n- scsi: lpfc: Expand FPIN and RDF receive logging (bsc#1190576).\n- scsi: lpfc: Fix compilation errors on kernels with no CONFIG_DEBUG_FS (bsc#1190576).\n- scsi: lpfc: Fix CPU to/from endian warnings introduced by ELS processing (bsc#1190576).\n- scsi: lpfc: Fix EEH support for NVMe I/O (bsc#1190576).\n- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (bsc#1190576).\n- scsi: lpfc: Fix gcc -Wstringop-overread warning, again (bsc#1190576).\n- scsi: lpfc: Fix hang on unload due to stuck fport node (bsc#1190576).\n- scsi: lpfc: Fix I/O block after enabling managed congestion mode (bsc#1190576).\n- scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() (bsc#1190576).\n- scsi: lpfc: Fix NVMe I/O failover to non-optimized path (bsc#1190576).\n- scsi: lpfc: Fix premature rpi release for unsolicited TPLS and LS_RJT (bsc#1190576).\n- scsi: lpfc: Fix rediscovery of tape device after LIP (bsc#1190576).\n- scsi: lpfc: Fix sprintf() overflow in lpfc_display_fpin_wwpn() (bsc#1190576).\n- scsi: lpfc: Improve PBDE checks during SGL processing (bsc#1190576).\n- scsi: lpfc: Remove unneeded variable (bsc#1190576).\n- scsi: lpfc: Update lpfc version to 14.0.0.1 (bsc#1190576).\n- scsi: lpfc: Update lpfc version to 14.0.0.2 (bsc#1190576).\n- scsi: lpfc: Use correct scnprintf() limit (bsc#1190576).\n- scsi: lpfc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190576).\n- scsi: lpfc: Use the proper SCSI midlayer interfaces for PI (bsc#1190576).\n- scsi: lpfc: Zero CGN stats only during initial driver load and stat reset (bsc#1190576).\n- scsi: scsi_devinfo: Add blacklist entry for HPE OPEN-V (bsc#1189297).\n- serial: 8250: Define RX trigger levels for OxSemi 950 devices (git-fixes).\n- serial: 8250_pci: make setup_port() parameters explicitly unsigned (git-fixes).\n- serial: mvebu-uart: fix driver's tx_empty callback (git-fixes).\n- serial: sh-sci: fix break handling for sysrq (git-fixes).\n- spi: Fix tegra20 build with CONFIG_PM=n (git-fixes).\n- staging: board: Fix uninitialized spinlock when attaching genpd (git-fixes).\n- staging: ks7010: Fix the initialization of the 'sleep_status' structure (git-fixes).\n- staging: rts5208: Fix get_ms_information() heap buffer size (git-fixes).\n- thermal/core: Potential buffer overflow in thermal_build_list_of_policies() (git-fixes).\n- time: Handle negative seconds correctly in timespec64_to_ns() (git-fixes).\n- tty: Fix data race between tiocsti() and flush_to_ldisc() (git-fixes).\n- tty: serial: jsm: hold port lock when reporting modem line changes (git-fixes).\n- tty: synclink_gt, drop unneeded forward declarations (git-fixes).\n- usb: core: hcd: Add support for deferring roothub registration (git-fixes).\n- usb: dwc2: Add missing cleanups when usb_add_gadget_udc() fails (git-fixes).\n- usb: dwc2: Avoid leaving the error_debugfs label unused (git-fixes).\n- usb: dwc2: gadget: Fix ISOC flow for BDMA and Slave (git-fixes).\n- usb: dwc2: gadget: Fix ISOC transfer complete handling for DDMA (git-fixes).\n- USB: EHCI: ehci-mv: improve error handling in mv_ehci_enable() (git-fixes).\n- usb: gadget: r8a66597: fix a loop in set_feature() (git-fixes).\n- usb: gadget: u_ether: fix a potential null pointer dereference (git-fixes).\n- usb: host: fotg210: fix the actual_length of an iso packet (git-fixes).\n- usb: host: fotg210: fix the endpoint's transactional opportunities calculation (git-fixes).\n- usbip: give back URBs for unsent unlink requests during cleanup (git-fixes).\n- usbip:vhci_hcd USB port can get stuck in the disabled state (git-fixes).\n- usb: musb: musb_dsps: request_irq() after initializing musb (git-fixes).\n- usb: musb: tusb6010: uninitialized data in tusb_fifo_write_unaligned() (git-fixes).\n- USB: serial: cp210x: add ID for GW Instek GDM-834x Digital Multimeter (git-fixes).\n- USB: serial: option: add device id for Foxconn T99W265 (git-fixes).\n- USB: serial: option: add Telit LN920 compositions (git-fixes).\n- USB: serial: option: remove duplicate USB device ID (git-fixes).\n- usb-storage: Add quirk for ScanLogic SL11R-IDE older than 2.6c (git-fixes).\n- video: fbdev: asiliantfb: Error out if 'pixclock' equals zero (git-fixes).\n- video: fbdev: kyro: Error out if 'pixclock' equals zero (git-fixes).\n- video: fbdev: kyro: fix a DoS bug by restricting user input (git-fixes).\n- video: fbdev: riva: Error out if 'pixclock' equals zero (git-fixes).\n- vmxnet3: add support for 32 Tx/Rx queues (bsc#1190406).\n- vmxnet3: add support for ESP IPv6 RSS (bsc#1190406).\n- vmxnet3: increase maximum configurable mtu to 9190 (bsc#1190406).\n- vmxnet3: prepare for version 6 changes (bsc#1190406).\n- vmxnet3: remove power of 2 limitation on the queues (bsc#1190406).\n- vmxnet3: set correct hash type based on rss information (bsc#1190406).\n- vmxnet3: update to version 6 (bsc#1190406).\n- watchdog/sb_watchdog: fix compilation problem due to COMPILE_TEST (git-fixes).\n- x86/alternatives: Teach text_poke_bp() to emulate instructions (bsc#1185302).\n- x86/apic/msi: Plug non-maskable MSI affinity race (bsc#1184439).\n- x86/cpu: Fix core name for Sapphire Rapids (jsc#SLE-15289).\n- x86/mm: Fix kern_addr_valid() to cope with existing but not present entries (bsc#1152489).\n- x86/resctrl: Fix a maybe-uninitialized build warning treated as error (bsc#1152489).\n- x86/resctrl: Fix default monitoring groups reporting (bsc#1152489).\n- xfs: allow mount/remount when stripe width alignment is zero (bsc#1188651).\n- xfs: sync lazy sb accounting on quiesce of read-only mounts (bsc#1190679).\n- xgene-v2: Fix a resource leak in the error handling path of 'xge_probe()' (git-fixes).\n- xhci: Set HCD flag to defer primary roothub registration (git-fixes).\n",null,[],[],[],[14,16,18,20,22,24],{"_key":15},"CVE-2020-3702",{"_key":17},"CVE-2021-3669",{"_key":19},"CVE-2021-3744",{"_key":21},"CVE-2021-3752",{"_key":23},"CVE-2021-3764",{"_key":25},"CVE-2021-40490",[],[],[29,30,31,32,33,34],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},"2021-10-15T12:13:03Z","2026-02-04T02:16:16.704358Z",{"cisa_kev":38,"cisa_ransomware":38,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[40,46,51,55,59,63,67,71,75,79,83,87,91,95,99,103,107,111,115,119,123,127,131,135,139,143,147,151,155,159,163,167,171,175,179,183,187,191,195,199,203,207,211,215,219,223,227,231,235,239,243,248,252,256,260,264],{"url":41,"sources":42,"tags":44},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/SS5B6JL55TTUNHHOGTFHK5JQ6EZOF7ZV/",[43],"osv_opensuse",[45],"Advisory",{"url":47,"sources":48,"tags":49},"https://bugzilla.suse.com/1065729",[43],[50],"REPORT",{"url":52,"sources":53,"tags":54},"https://bugzilla.suse.com/1148868",[43],[50],{"url":56,"sources":57,"tags":58},"https://bugzilla.suse.com/1152489",[43],[50],{"url":60,"sources":61,"tags":62},"https://bugzilla.suse.com/1154353",[43],[50],{"url":64,"sources":65,"tags":66},"https://bugzilla.suse.com/1159886",[43],[50],{"url":68,"sources":69,"tags":70},"https://bugzilla.suse.com/1167773",[43],[50],{"url":72,"sources":73,"tags":74},"https://bugzilla.suse.com/1170774",[43],[50],{"url":76,"sources":77,"tags":78},"https://bugzilla.suse.com/1173746",[43],[50],{"url":80,"sources":81,"tags":82},"https://bugzilla.suse.com/1176940",[43],[50],{"url":84,"sources":85,"tags":86},"https://bugzilla.suse.com/1184439",[43],[50],{"url":88,"sources":89,"tags":90},"https://bugzilla.suse.com/1184804",[43],[50],{"url":92,"sources":93,"tags":94},"https://bugzilla.suse.com/1185302",[43],[50],{"url":96,"sources":97,"tags":98},"https://bugzilla.suse.com/1185677",[43],[50],{"url":100,"sources":101,"tags":102},"https://bugzilla.suse.com/1185726",[43],[50],{"url":104,"sources":105,"tags":106},"https://bugzilla.suse.com/1185762",[43],[50],{"url":108,"sources":109,"tags":110},"https://bugzilla.suse.com/1187167",[43],[50],{"url":112,"sources":113,"tags":114},"https://bugzilla.suse.com/1188067",[43],[50],{"url":116,"sources":117,"tags":118},"https://bugzilla.suse.com/1188651",[43],[50],{"url":120,"sources":121,"tags":122},"https://bugzilla.suse.com/1188986",[43],[50],{"url":124,"sources":125,"tags":126},"https://bugzilla.suse.com/1189297",[43],[50],{"url":128,"sources":129,"tags":130},"https://bugzilla.suse.com/1189841",[43],[50],{"url":132,"sources":133,"tags":134},"https://bugzilla.suse.com/1189884",[43],[50],{"url":136,"sources":137,"tags":138},"https://bugzilla.suse.com/1190023",[43],[50],{"url":140,"sources":141,"tags":142},"https://bugzilla.suse.com/1190062",[43],[50],{"url":144,"sources":145,"tags":146},"https://bugzilla.suse.com/1190115",[43],[50],{"url":148,"sources":149,"tags":150},"https://bugzilla.suse.com/1190159",[43],[50],{"url":152,"sources":153,"tags":154},"https://bugzilla.suse.com/1190358",[43],[50],{"url":156,"sources":157,"tags":158},"https://bugzilla.suse.com/1190406",[43],[50],{"url":160,"sources":161,"tags":162},"https://bugzilla.suse.com/1190467",[43],[50],{"url":164,"sources":165,"tags":166},"https://bugzilla.suse.com/1190523",[43],[50],{"url":168,"sources":169,"tags":170},"https://bugzilla.suse.com/1190534",[43],[50],{"url":172,"sources":173,"tags":174},"https://bugzilla.suse.com/1190543",[43],[50],{"url":176,"sources":177,"tags":178},"https://bugzilla.suse.com/1190576",[43],[50],{"url":180,"sources":181,"tags":182},"https://bugzilla.suse.com/1190595",[43],[50],{"url":184,"sources":185,"tags":186},"https://bugzilla.suse.com/1190596",[43],[50],{"url":188,"sources":189,"tags":190},"https://bugzilla.suse.com/1190598",[43],[50],{"url":192,"sources":193,"tags":194},"https://bugzilla.suse.com/1190620",[43],[50],{"url":196,"sources":197,"tags":198},"https://bugzilla.suse.com/1190626",[43],[50],{"url":200,"sources":201,"tags":202},"https://bugzilla.suse.com/1190679",[43],[50],{"url":204,"sources":205,"tags":206},"https://bugzilla.suse.com/1190705",[43],[50],{"url":208,"sources":209,"tags":210},"https://bugzilla.suse.com/1190717",[43],[50],{"url":212,"sources":213,"tags":214},"https://bugzilla.suse.com/1190746",[43],[50],{"url":216,"sources":217,"tags":218},"https://bugzilla.suse.com/1190758",[43],[50],{"url":220,"sources":221,"tags":222},"https://bugzilla.suse.com/1190784",[43],[50],{"url":224,"sources":225,"tags":226},"https://bugzilla.suse.com/1190785",[43],[50],{"url":228,"sources":229,"tags":230},"https://bugzilla.suse.com/1191172",[43],[50],{"url":232,"sources":233,"tags":234},"https://bugzilla.suse.com/1191193",[43],[50],{"url":236,"sources":237,"tags":238},"https://bugzilla.suse.com/1191240",[43],[50],{"url":240,"sources":241,"tags":242},"https://bugzilla.suse.com/1191292",[43],[50],{"url":244,"sources":245,"tags":246},"https://www.suse.com/security/cve/CVE-2020-3702",[43],[247],"WEB",{"url":249,"sources":250,"tags":251},"https://www.suse.com/security/cve/CVE-2021-3669",[43],[247],{"url":253,"sources":254,"tags":255},"https://www.suse.com/security/cve/CVE-2021-3744",[43],[247],{"url":257,"sources":258,"tags":259},"https://www.suse.com/security/cve/CVE-2021-3752",[43],[247],{"url":261,"sources":262,"tags":263},"https://www.suse.com/security/cve/CVE-2021-3764",[43],[247],{"url":265,"sources":266,"tags":267},"https://www.suse.com/security/cve/CVE-2021-40490",[43],[247],[],[],[],[272,285,292,297,302,307,312,317,322,327],{"ecosystem":273,"name":274,"vendor":275,"product":276,"cpe_part":9,"purl_type":277,"purl_namespace":275,"purl_name":276,"source":9,"versions":278},"openSUSE","kernel-debug","opensuse","kernel-debug&distro=openSUSE Leap 15.2","rpm",[279],{"version":280,"is_range":281,"range_type":282,"version_start":9,"version_start_type":9,"version_end":283,"version_end_type":284,"fixed_in":9},"lt5_3_18_lp152_95_1",true,"ecosystem","5.3.18-lp152.95.1","excluding",{"ecosystem":273,"name":286,"vendor":275,"product":287,"cpe_part":9,"purl_type":277,"purl_namespace":275,"purl_name":287,"source":9,"versions":288},"kernel-default-base","kernel-default-base&distro=openSUSE Leap 15.2",[289],{"version":290,"is_range":281,"range_type":282,"version_start":9,"version_start_type":9,"version_end":291,"version_end_type":284,"fixed_in":9},"lt5_3_18_lp152_95_1_lp152_8_44_1","5.3.18-lp152.95.1.lp152.8.44.1",{"ecosystem":273,"name":293,"vendor":275,"product":294,"cpe_part":9,"purl_type":277,"purl_namespace":275,"purl_name":294,"source":9,"versions":295},"kernel-default","kernel-default&distro=openSUSE Leap 15.2",[296],{"version":280,"is_range":281,"range_type":282,"version_start":9,"version_start_type":9,"version_end":283,"version_end_type":284,"fixed_in":9},{"ecosystem":273,"name":298,"vendor":275,"product":299,"cpe_part":9,"purl_type":277,"purl_namespace":275,"purl_name":299,"source":9,"versions":300},"kernel-docs","kernel-docs&distro=openSUSE Leap 15.2",[301],{"version":280,"is_range":281,"range_type":282,"version_start":9,"version_start_type":9,"version_end":283,"version_end_type":284,"fixed_in":9},{"ecosystem":273,"name":303,"vendor":275,"product":304,"cpe_part":9,"purl_type":277,"purl_namespace":275,"purl_name":304,"source":9,"versions":305},"kernel-kvmsmall","kernel-kvmsmall&distro=openSUSE Leap 15.2",[306],{"version":280,"is_range":281,"range_type":282,"version_start":9,"version_start_type":9,"version_end":283,"version_end_type":284,"fixed_in":9},{"ecosystem":273,"name":308,"vendor":275,"product":309,"cpe_part":9,"purl_type":277,"purl_namespace":275,"purl_name":309,"source":9,"versions":310},"kernel-obs-build","kernel-obs-build&distro=openSUSE Leap 15.2",[311],{"version":280,"is_range":281,"range_type":282,"version_start":9,"version_start_type":9,"version_end":283,"version_end_type":284,"fixed_in":9},{"ecosystem":273,"name":313,"vendor":275,"product":314,"cpe_part":9,"purl_type":277,"purl_namespace":275,"purl_name":314,"source":9,"versions":315},"kernel-obs-qa","kernel-obs-qa&distro=openSUSE Leap 15.2",[316],{"version":280,"is_range":281,"range_type":282,"version_start":9,"version_start_type":9,"version_end":283,"version_end_type":284,"fixed_in":9},{"ecosystem":273,"name":318,"vendor":275,"product":319,"cpe_part":9,"purl_type":277,"purl_namespace":275,"purl_name":319,"source":9,"versions":320},"kernel-preempt","kernel-preempt&distro=openSUSE Leap 15.2",[321],{"version":280,"is_range":281,"range_type":282,"version_start":9,"version_start_type":9,"version_end":283,"version_end_type":284,"fixed_in":9},{"ecosystem":273,"name":323,"vendor":275,"product":324,"cpe_part":9,"purl_type":277,"purl_namespace":275,"purl_name":324,"source":9,"versions":325},"kernel-source","kernel-source&distro=openSUSE Leap 15.2",[326],{"version":280,"is_range":281,"range_type":282,"version_start":9,"version_start_type":9,"version_end":283,"version_end_type":284,"fixed_in":9},{"ecosystem":273,"name":328,"vendor":275,"product":329,"cpe_part":9,"purl_type":277,"purl_namespace":275,"purl_name":329,"source":9,"versions":330},"kernel-syms","kernel-syms&distro=openSUSE Leap 15.2",[331],{"version":280,"is_range":281,"range_type":282,"version_start":9,"version_start_type":9,"version_end":283,"version_end_type":284,"fixed_in":9}]