[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2020:3272-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":30,"duplicates":31,"related":32,"reserved_at":9,"published_at":41,"modified_at":42,"state":9,"summary":43,"references_raw":45,"kevs":270,"epss":9,"epss_history":271,"metrics":272,"affected":273},"SUSE-SU-2020:3272-1","Security update for the Linux Kernel\n\n\nThe SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bug fixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2020-25656: Fixed a concurrency use-after-free in vt_do_kdgkb_ioctl (bnc#1177766).\n- CVE-2020-25285: Fixed a race condition between hugetlb sysctl handlers in mm/hugetlb.c (bnc#1176485).\n- CVE-2020-0430: Fixed an OOB read in skb_headlen of /include/linux/skbuff.h (bnc#1176723).\n- CVE-2020-14351: Fixed a race in the perf_mmap_close() function (bsc#1177086).\n- CVE-2020-16120: Fixed a permissions issue in ovl_path_open() (bsc#1177470).\n- CVE-2020-8694: Restricted energy meter to root access (bsc#1170415).\n- CVE-2020-27673: Fixed an issue where rogue guests could have caused denial of service of Dom0 via high frequency events (XSA-332 bsc#1177411)\n- CVE-2020-27675: Fixed a race condition in event handler which may crash dom0 (XSA-331 bsc#1177410).\n\nThe following non-security bugs were fixed:\n\n- ALSA: bebob: potential info leak in hwdep_read() (git-fixes).\n- ALSA: compress_offload: remove redundant initialization (git-fixes).\n- ALSA: core: init: use DECLARE_COMPLETION_ONSTACK() macro (git-fixes).\n- ALSA: core: pcm: simplify locking for timers (git-fixes).\n- ALSA: core: timer: clarify operator precedence (git-fixes).\n- ALSA: core: timer: remove redundant assignment (git-fixes).\n- ALSA: ctl: Workaround for lockdep warning wrt card->ctl_files_rwlock (git-fixes).\n- ALSA: hda - Do not register a cb func if it is registered already (git-fixes).\n- ALSA: hda/realtek - Add mute Led support for HP Elitebook 845 G7 (git-fixes).\n- ALSA: hda/realtek - The front Mic on a HP machine does not work (git-fixes).\n- ALSA: hda/realtek: Enable audio jacks of ASUS D700SA with ALC887 (git-fixes).\n- ALSA: hda: auto_parser: remove shadowed variable declaration (git-fixes).\n- ALSA: hda: use semicolons rather than commas to separate statements (git-fixes).\n- ALSA: mixart: Correct comment wrt obsoleted tasklet usage (git-fixes).\n- ALSA: rawmidi: (cosmetic) align function parameters (git-fixes).\n- ALSA: seq: oss: Avoid mutex lock for a long-time ioctl (git-fixes).\n- ALSA: usb-audio: Add mixer support for Pioneer DJ DJM-250MK2 (git-fixes).\n- ALSA: usb-audio: endpoint.c: fix repeated word 'there' (git-fixes).\n- ALSA: usb-audio: fix spelling mistake 'Frequence' -> 'Frequency' (git-fixes).\n- ASoC: qcom: lpass-cpu: fix concurrency issue (git-fixes).\n- ASoC: qcom: lpass-platform: fix memory leak (git-fixes).\n- ath10k: check idx validity in __ath10k_htt_rx_ring_fill_n() (git-fixes).\n- ath10k: Fix the size used in a 'dma_free_coherent()' call in an error handling path (git-fixes).\n- ath10k: provide survey info as accumulated data (git-fixes).\n- ath6kl: prevent potential array overflow in ath6kl_add_new_sta() (git-fixes).\n- ath9k: Fix potential out of bounds in ath9k_htc_txcompletion_cb() (git-fixes).\n- ath9k: hif_usb: fix race condition between usb_get_urb() and usb_kill_anchored_urbs() (git-fixes).\n- backlight: sky81452-backlight: Fix refcount imbalance on error (git-fixes).\n- blk-mq: order adding requests to hctx->dispatch and checking SCHED_RESTART (bsc#1177750).\n- block: ensure bdi->io_pages is always initialized (bsc#1177749).\n- Bluetooth: MGMT: Fix not checking if BT_HS is enabled (git-fixes).\n- Bluetooth: Only mark socket zapped after unlocking (git-fixes).\n- bnxt: do not enable NAPI until rings are ready (networking-stable-20_09_11).\n- bnxt_en: Check for zero dir entries in NVRAM (networking-stable-20_09_11).\n- brcm80211: fix possible memleak in brcmf_proto_msgbuf_attach (git-fixes).\n- brcmfmac: check ndev pointer (git-fixes).\n- brcmsmac: fix memory leak in wlc_phy_attach_lcnphy (git-fixes).\n- btrfs: check the right error variable in btrfs_del_dir_entries_in_log (bsc#1177687).\n- btrfs: do not force read-only after error in drop snapshot (bsc#1176354).\n- btrfs: do not set the full sync flag on the inode during page release (bsc#1177687).\n- btrfs: fix incorrect updating of log root tree (bsc#1177687).\n- btrfs: fix race between page release and a fast fsync (bsc#1177687).\n- btrfs: only commit delayed items at fsync if we are logging a directory (bsc#1177687).\n- btrfs: only commit the delayed inode when doing a full fsync (bsc#1177687).\n- btrfs: qgroup: fix qgroup meta rsv leak for subvolume operations (bsc#1177856).\n- btrfs: qgroup: fix wrong qgroup metadata reserve for delayed inode (bsc#1177855).\n- btrfs: reduce contention on log trees when logging checksums (bsc#1177687).\n- btrfs: release old extent maps during page release (bsc#1177687).\n- btrfs: remove no longer needed use of log_writers for the log root tree (bsc#1177687).\n- btrfs: remove root usage from can_overcommit (bsc#1131277).\n- btrfs: stop incremening log_batch for the log root tree when syncing log (bsc#1177687).\n- btrfs: take overcommit into account in inc_block_group_ro (bsc#1176560).\n- btrfs: tree-checker: fix false alert caused by legacy btrfs root item (bsc#1177861).\n- can: c_can: reg_map_{c,d}_can: mark as __maybe_unused (git-fixes).\n- can: flexcan: flexcan_chip_stop(): add error handling and propagate error value (git-fixes).\n- can: softing: softing_card_shutdown(): add braces around empty body in an 'if' statement (git-fixes).\n- ceph: fix memory leak in ceph_cleanup_snapid_map() (bsc#1178234).\n- ceph: map snapid to anonymous bdev ID (bsc#1178234).\n- ceph: promote to unsigned long long before shifting (bsc#1178187).\n- clk: at91: clk-main: update key before writing AT91_CKGR_MOR (git-fixes).\n- clk: at91: remove the checking of parent_name (git-fixes).\n- clk: bcm2835: add missing release if devm_clk_hw_register fails (git-fixes).\n- clk: imx8mq: Fix usdhc parents order (git-fixes).\n- coredump: fix crash when umh is disabled (bsc#1177753).\n- crypto: algif_skcipher - EBUSY on aio should be an error (git-fixes).\n- crypto: ccp - fix error handling (git-fixes).\n- crypto: ixp4xx - Fix the size used in a 'dma_free_coherent()' call (git-fixes).\n- crypto: mediatek - Fix wrong return value in mtk_desc_ring_alloc() (git-fixes).\n- crypto: omap-sham - fix digcnt register handling with export/import (git-fixes).\n- cxl: Rework error message for incompatible slots (bsc#1055014 git-fixes).\n- cypto: mediatek - fix leaks in mtk_desc_ring_alloc (git-fixes).\n- Disable ipa-clones dump for KMP builds (bsc#1178330) The feature is not really useful for KMP, and rather confusing, so let's disable it at building out-of-tree codes\n- dmaengine: dma-jz4780: Fix race in jz4780_dma_tx_status (git-fixes).\n- drm/amdgpu: prevent double kfree ttm->sg (git-fixes).\n- drm/gma500: fix error check (git-fixes).\n- drm/msm: Drop debug print in _dpu_crtc_setup_lm_bounds() (git-fixes).\n- drm/nouveau/mem: guard against NULL pointer access in mem_del (git-fixes).\n- EDAC/i5100: Fix error handling order in i5100_init_one() (bsc#1112178).\n- eeprom: at25: set minimum read/write access stride to 1 (git-fixes).\n- Fix use after free in get_capset_info callback (git-fixes).\n- gre6: Fix reception with IP6_TNL_F_RCV_DSCP_COPY (networking-stable-20_08_24).\n- gtp: add GTPA_LINK info to msg sent to userspace (networking-stable-20_09_11).\n- HID: roccat: add bounds checking in kone_sysfs_write_settings() (git-fixes).\n- HID: wacom: Avoid entering wacom_wac_pen_report for pad / battery (git-fixes).\n- i2c: imx: Fix external abort on interrupt in exit paths (git-fixes).\n- ibmveth: Identify ingress large send packets (bsc#1178185 ltc#188897).\n- ibmveth: Switch order of ibmveth_helper calls (bsc#1061843 git-fixes).\n- ibmvnic: fix ibmvnic_set_mac (bsc#1066382 ltc#160943 git-fixes).\n- ibmvnic: save changed mac address to adapter->mac_addr (bsc#1134760 ltc#177449 git-fixes).\n- iio:accel:bma180: Fix use of true when should be iio_shared_by enum (git-fixes).\n- iio:adc:max1118 Fix alignment of timestamp and data leak issues (git-fixes).\n- iio:adc:ti-adc0832 Fix alignment issue with timestamp (git-fixes).\n- iio:adc:ti-adc12138 Fix alignment issue with timestamp (git-fixes).\n- iio:dac:ad5592r: Fix use of true for IIO_SHARED_BY_TYPE (git-fixes).\n- iio:gyro:itg3200: Fix timestamp alignment and prevent data leak (git-fixes).\n- iio:light:si1145: Fix timestamp alignment and prevent data leak (git-fixes).\n- iio:magn:hmc5843: Fix passing true where iio_shared_by enum required (git-fixes).\n- ima: Remove semicolon at the end of ima_get_binary_runtime_size() (git-fixes).\n- include/linux/swapops.h: correct guards for non_swap_entry() (git-fixes (mm/swap)).\n- Input: ep93xx_keypad - fix handling of platform_get_irq() error (git-fixes).\n- Input: i8042 - add nopnp quirk for Acer Aspire 5 A515 (git-fixes).\n- Input: imx6ul_tsc - clean up some errors in imx6ul_tsc_resume() (git-fixes).\n- Input: omap4-keypad - fix handling of platform_get_irq() error (git-fixes).\n- Input: sun4i-ps2 - fix handling of platform_get_irq() error (git-fixes).\n- Input: twl4030_keypad - fix handling of platform_get_irq() error (git-fixes).\n- iomap: Make sure iomap_end is called after iomap_begin (bsc#1177754).\n- ip: fix tos reflection in ack and reset packets (networking-stable-20_09_24).\n- ipv4: Restore flowi4_oif update before call to xfrm_lookup_route (git-fixes).\n- iwlwifi: mvm: split a print to avoid a WARNING in ROC (git-fixes).\n- kbuild: enforce -Werror=return-type (bsc#1177281).\n- leds: mt6323: move period calculation (git-fixes).\n- lib/crc32.c: fix trivial typo in preprocessor condition (git-fixes).\n- libceph: clear con->out_msg on Policy::stateful_server faults (bsc#1178188).\n- livepatch: Test if -fdump-ipa-clones is really available As of now we add -fdump-ipa-clones unconditionally. It does not cause a trouble if the kernel is build with the supported toolchain. Otherwise it could fail easily. Do the correct thing and test for the availability.\n- mac80211: handle lack of sband->bitrates in rates (git-fixes).\n- mailbox: avoid timer start from callback (git-fixes).\n- media: ati_remote: sanity check for both endpoints (git-fixes).\n- media: bdisp: Fix runtime PM imbalance on error (git-fixes).\n- media: exynos4-is: Fix a reference count leak (git-fixes).\n- media: exynos4-is: Fix a reference count leak due to pm_runtime_get_sync (git-fixes).\n- media: exynos4-is: Fix several reference count leaks due to pm_runtime_get_sync (git-fixes).\n- media: firewire: fix memory leak (git-fixes).\n- media: m5mols: Check function pointer in m5mols_sensor_power (git-fixes).\n- media: media/pci: prevent memory leak in bttv_probe (git-fixes).\n- media: omap3isp: Fix memleak in isp_probe (git-fixes).\n- media: platform: fcp: Fix a reference count leak (git-fixes).\n- media: platform: s3c-camif: Fix runtime PM imbalance on error (git-fixes).\n- media: platform: sti: hva: Fix runtime PM imbalance on error (git-fixes).\n- media: Revert 'media: exynos4-is: Add missed check for pinctrl_lookup_state()' (git-fixes).\n- media: s5p-mfc: Fix a reference count leak (git-fixes).\n- media: saa7134: avoid a shift overflow (git-fixes).\n- media: st-delta: Fix reference count leak in delta_run_work (git-fixes).\n- media: sti: Fix reference count leaks (git-fixes).\n- media: tc358743: initialize variable (git-fixes).\n- media: ti-vpe: Fix a missing check and reference count leak (git-fixes).\n- media: tuner-simple: fix regression in simple_set_radio_freq (git-fixes).\n- media: usbtv: Fix refcounting mixup (git-fixes).\n- media: uvcvideo: Ensure all probed info is returned to v4l2 (git-fixes).\n- media: vsp1: Fix runtime PM imbalance on error (git-fixes).\n- memory: fsl-corenet-cf: Fix handling of platform_get_irq() error (git-fixes).\n- memory: omap-gpmc: Fix a couple off by ones (git-fixes).\n- mfd: sm501: Fix leaks in probe() (git-fixes).\n- mic: vop: copy data to kernel space then write to io memory (git-fixes).\n- misc: mic: scif: Fix error handling path (git-fixes).\n- misc: rtsx: Fix memory leak in rtsx_pci_probe (git-fixes).\n- misc: vop: add round_up(x,4) for vring_size to avoid kernel panic (git-fixes).\n- mlx5 PPC ringsize workaround (bsc#1173432).\n- mlx5: remove support for ib_get_vector_affinity (bsc#1174748).\n- mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa (git-fixes (mm/numa)).\n- mm/huge_memory.c: use head to check huge zero page (git-fixes (mm/thp)).\n- mm/ksm.c: do not WARN if page is still mapped in remove_stable_node() (git-fixes (mm/hugetlb)).\n- mm/mempolicy.c: fix out of bounds write in mpol_parse_str() (git-fixes (mm/mempolicy)).\n- mm/mempolicy.c: use match_string() helper to simplify the code (git-fixes (mm/mempolicy)).\n- mm/page-writeback.c: avoid potential division by zero in wb_min_max_ratio() (git-fixes (mm/writeback)).\n- mm/page-writeback.c: improve arithmetic divisions (git-fixes (mm/writeback)).\n- mm/page-writeback.c: use div64_ul() for u64-by-unsigned-long divide (git-fixes (mm/writeback)).\n- mm/page_owner.c: remove drain_all_pages from init_early_allocated_pages (git-fixes (mm/debug)).\n- mm/rmap: fixup copying of soft dirty and uffd ptes (git-fixes (mm/rmap)).\n- mm/zsmalloc.c: fix build when CONFIG_COMPACTION=n (git-fixes (mm/zsmalloc)).\n- mm/zsmalloc.c: fix race condition in zs_destroy_pool (git-fixes (mm/zsmalloc)).\n- mm/zsmalloc.c: fix the migrated zspage statistics (git-fixes (mm/zsmalloc)).\n- mm/zsmalloc.c: migration can leave pages in ZS_EMPTY indefinitely (git-fixes (mm/zsmalloc)).\n- mm: hugetlb: switch to css_tryget() in hugetlb_cgroup_charge_cgroup() (git-fixes (mm/hugetlb)).\n- mmc: sdio: Check for CISTPL_VERS_1 buffer size (git-fixes).\n- Move upstreamed patches into sorted section\n- mtd: lpddr: fix excessive stack usage with clang (git-fixes).\n- mtd: mtdoops: Do not write panic data twice (git-fixes).\n- mwifiex: do not call del_timer_sync() on uninitialized timer (git-fixes).\n- mwifiex: Do not use GFP_KERNEL in atomic context (git-fixes).\n- mwifiex: fix double free (git-fixes).\n- mwifiex: remove function pointer check (git-fixes).\n- mwifiex: Remove unnecessary braces from HostCmd_SET_SEQ_NO_BSS_INFO (git-fixes).\n- net/mlx5e: Take common TIR context settings into a function (bsc#1177740).\n- net/mlx5e: Turn on HW tunnel offload in all TIRs (bsc#1177740).\n- net: disable netpoll on fresh napis (networking-stable-20_09_11).\n- net: fec: Fix PHY init after phy_reset_after_clk_enable() (git-fixes).\n- net: fec: Fix phy_device lookup for phy_reset_after_clk_enable() (git-fixes).\n- net: Fix potential wrong skb->protocol in skb_vlan_untag() (networking-stable-20_08_24).\n- net: hns: Fix memleak in hns_nic_dev_probe (networking-stable-20_09_11).\n- net: ipv6: fix kconfig dependency warning for IPV6_SEG6_HMAC (networking-stable-20_09_24).\n- net: phy: Avoid NPD upon phy_detach() when driver is unbound (networking-stable-20_09_24).\n- net: qrtr: fix usage of idr in port assignment to socket (networking-stable-20_08_24).\n- net: systemport: Fix memleak in bcm_sysport_probe (networking-stable-20_09_11).\n- net: usb: dm9601: Add USB ID of Keenetic Plus DSL (networking-stable-20_09_11).\n- net: usb: qmi_wwan: add Cellient MPL200 card (git-fixes).\n- net: usb: rtl8150: set random MAC address when set_ethernet_addr() fails (git-fixes).\n- net: wireless: nl80211: fix out-of-bounds access in nl80211_del_key() (git-fixes).\n- netlabel: fix problems with mapping removal (networking-stable-20_09_11).\n- nfc: Ensure presence of NFC_ATTR_FIRMWARE_NAME attribute in nfc_genl_fw_download() (git-fixes).\n- nl80211: fix non-split wiphy information (git-fixes).\n- NTB: hw: amd: fix an issue about leak system resources (git-fixes).\n- nvme-rdma: fix crash due to incorrect cqe (bsc#1174748).\n- nvme-rdma: fix crash when connect rejected (bsc#1174748).\n- nvme: do not update disk info for multipathed device (bsc#1171558).\n- platform/x86: mlx-platform: Remove PSU EEPROM configuration (git-fixes).\n- powerpc/hwirq: Remove stale forward irq_chip declaration (bsc#1065729).\n- powerpc/icp-hv: Fix missing of_node_put() in success path (bsc#1065729).\n- powerpc/irq: Drop forward declaration of struct irqaction (bsc#1065729).\n- powerpc/perf/hv-gpci: Fix starting index value (bsc#1065729).\n- powerpc/powernv/dump: Fix race while processing OPAL dump (bsc#1065729).\n- powerpc/powernv/elog: Fix race while processing OPAL error log event (bsc#1065729).\n- powerpc/pseries: explicitly reschedule during drmem_lmb list traversal (bsc#1077428 ltc#163882 git-fixes).\n- powerpc/pseries: Fix missing of_node_put() in rng_init() (bsc#1065729).\n- powerpc: Fix undetected data corruption with P9N DD2.1 VSX CI load emulation (bsc#1065729).\n- pty: do tty_flip_buffer_push without port->lock in pty_write (git-fixes).\n- pwm: lpss: Add range limit check for the base_unit register value (git-fixes).\n- pwm: lpss: Fix off by one error in base_unit math in pwm_lpss_prepare() (git-fixes).\n- ring-buffer: Return 0 on success from ring_buffer_resize() (git-fixes).\n- rtl8xxxu: prevent potential memory leak (git-fixes).\n- scsi: ibmvfc: Fix error return in ibmvfc_probe() (bsc#1065729).\n- scsi: ibmvscsi: Fix potential race after loss of transport (bsc#1178166 ltc#188226).\n- sctp: not disable bh in the whole sctp_get_port_local() (networking-stable-20_09_11).\n- spi: fsl-espi: Only process interrupts for expected events (git-fixes).\n- tg3: Fix soft lockup when tg3_reset_task() fails (networking-stable-20_09_11).\n- tipc: fix memory leak caused by tipc_buf_append() (git-fixes).\n- tipc: fix shutdown() of connection oriented socket (networking-stable-20_09_24).\n- tipc: fix shutdown() of connectionless socket (networking-stable-20_09_11).\n- tipc: fix the skb_unshare() in tipc_buf_append() (git-fixes).\n- tipc: fix uninit skb->data in tipc_nl_compat_dumpit() (networking-stable-20_08_24).\n- tipc: use skb_unshare() instead in tipc_buf_append() (networking-stable-20_09_24).\n- tty: ipwireless: fix error handling (git-fixes).\n- tty: serial: earlycon dependency (git-fixes).\n- tty: serial: fsl_lpuart: fix lpuart32_poll_get_char (git-fixes).\n- usb: cdc-acm: add quirk to blacklist ETAS ES58X devices (git-fixes).\n- usb: cdc-acm: handle broken union descriptors (git-fixes).\n- usb: cdc-wdm: Make wdm_flush() interruptible and add wdm_fsync() (git-fixes).\n- usb: core: Solve race condition in anchor cleanup functions (git-fixes).\n- usb: dwc2: Fix INTR OUT transfers in DDMA mode (git-fixes).\n- usb: dwc2: Fix parameter type in function pointer prototype (git-fixes).\n- usb: dwc3: core: add phy cleanup for probe error handling (git-fixes).\n- usb: dwc3: core: do not trigger runtime pm when remove driver (git-fixes).\n- usb: dwc3: ep0: Fix ZLP for OUT ep0 requests (git-fixes).\n- usb: gadget: f_ncm: allow using NCM in SuperSpeed Plus gadgets (git-fixes).\n- usb: gadget: f_ncm: fix ncm_bitrate for SuperSpeed and above (git-fixes).\n- usb: gadget: function: printer: fix use-after-free in __lock_acquire (git-fixes).\n- usb: gadget: u_ether: enable qmult on SuperSpeed Plus as well (git-fixes).\n- usb: ohci: Default to per-port over-current protection (git-fixes).\n- usb: serial: qcserial: fix altsetting probing (git-fixes).\n- vfs: fix FIGETBSZ ioctl on an overlayfs file (bsc#1178202).\n- video: fbdev: sis: fix null ptr dereference (git-fixes).\n- video: fbdev: vga16fb: fix setting of pixclock because a pass-by-value error (git-fixes).\n- VMCI: check return value of get_user_pages_fast() for errors (git-fixes).\n- w1: mxc_w1: Fix timeout resolution problem leading to bus error (git-fixes).\n- watchdog: iTCO_wdt: Export vendorsupport (bsc#1177101).\n- watchdog: iTCO_wdt: Make ICH_RES_IO_SMI optional (bsc#1177101).\n- wcn36xx: Fix reported 802.11n rx_highest rate wcn3660/wcn3680 (git-fixes).\n- writeback: Avoid skipping inode writeback (bsc#1177755).\n- writeback: Fix sync livelock due to b_dirty_time processing (bsc#1177755).\n- writeback: Protect inode->i_io_list with inode->i_lock (bsc#1177755).\n- x86, fakenuma: Fix invalid starting node ID (git-fixes (mm/x86/fakenuma)).\n- x86/apic: Unify duplicated local apic timer clockevent initialization (bsc#1112178).\n- x86/fpu: Allow multiple bits in clearcpuid= parameter (bsc#1112178).\n- x86/xen: disable Firmware First mode for correctable memory errors (bsc#1176713).\n- xen/blkback: use lateeoi irq binding (XSA-332 bsc#1177411).\n- xen/events: add a new 'late EOI' evtchn framework (XSA-332 bsc#1177411).\n- xen/events: add a proper barrier to 2-level uevent unmasking (XSA-332 bsc#1177411).\n- xen/events: avoid removing an event channel while handling it (XSA-331 bsc#1177410).\n- xen/events: block rogue events for some time (XSA-332 bsc#1177411).\n- xen/events: defer eoi in case of excessive number of events (XSA-332 bsc#1177411).\n- xen/events: do not use chip_data for legacy IRQs (XSA-332 bsc#1065600).\n- xen/events: fix race in evtchn_fifo_unmask() (XSA-332 bsc#1177411).\n- xen/events: switch user event channels to lateeoi model (XSA-332 bsc#1177411).\n- xen/events: use a common cpu hotplug hook for event channels (XSA-332 bsc#1177411).\n- xen/gntdev.c: Mark pages as dirty (bsc#1065600).\n- xen/netback: use lateeoi irq binding (XSA-332 bsc#1177411).\n- xen/pciback: use lateeoi irq binding (XSA-332 bsc#1177411).\n- xen/scsiback: use lateeoi irq binding (XSA-332 bsc#1177411).\n- xen: XEN uses irqdesc::irq_data_common::handler_data to store a per interrupt XEN data pointer which contains XEN specific information (XSA-332 bsc#1065600).\n- xfs: avoid infinite loop when cancelling CoW blocks after writeback failure (bsc#1178027).\n- xfs: limit entries returned when counting fsmap records (git-fixes).\n",null,[],[],[],[14,16,18,20,22,24,26,28],{"_key":15},"CVE-2020-0430",{"_key":17},"CVE-2020-14351",{"_key":19},"CVE-2020-16120",{"_key":21},"CVE-2020-25285",{"_key":23},"CVE-2020-25656",{"_key":25},"CVE-2020-27673",{"_key":27},"CVE-2020-27675",{"_key":29},"CVE-2020-8694",[],[],[33,34,35,36,37,38,39,40],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},"2020-11-10T18:39:50Z","2025-05-02T04:09:30.782232Z",{"cisa_kev":44,"cisa_ransomware":44,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[46,52,57,61,65,69,73,77,81,85,89,93,97,101,105,109,113,117,121,125,129,133,137,141,145,149,153,157,161,165,169,173,177,181,185,189,193,197,201,205,209,213,217,221,225,229,233,237,242,246,250,254,258,262,266],{"url":47,"sources":48,"tags":50},"https://www.suse.com/support/update/announcement/2020/suse-su-20203272-1/",[49],"osv_suse",[51],"Advisory",{"url":53,"sources":54,"tags":55},"https://bugzilla.suse.com/1055014",[49],[56],"REPORT",{"url":58,"sources":59,"tags":60},"https://bugzilla.suse.com/1061843",[49],[56],{"url":62,"sources":63,"tags":64},"https://bugzilla.suse.com/1065600",[49],[56],{"url":66,"sources":67,"tags":68},"https://bugzilla.suse.com/1065729",[49],[56],{"url":70,"sources":71,"tags":72},"https://bugzilla.suse.com/1066382",[49],[56],{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1077428",[49],[56],{"url":78,"sources":79,"tags":80},"https://bugzilla.suse.com/1112178",[49],[56],{"url":82,"sources":83,"tags":84},"https://bugzilla.suse.com/1131277",[49],[56],{"url":86,"sources":87,"tags":88},"https://bugzilla.suse.com/1134760",[49],[56],{"url":90,"sources":91,"tags":92},"https://bugzilla.suse.com/1170415",[49],[56],{"url":94,"sources":95,"tags":96},"https://bugzilla.suse.com/1171558",[49],[56],{"url":98,"sources":99,"tags":100},"https://bugzilla.suse.com/1173432",[49],[56],{"url":102,"sources":103,"tags":104},"https://bugzilla.suse.com/1174748",[49],[56],{"url":106,"sources":107,"tags":108},"https://bugzilla.suse.com/1176354",[49],[56],{"url":110,"sources":111,"tags":112},"https://bugzilla.suse.com/1176485",[49],[56],{"url":114,"sources":115,"tags":116},"https://bugzilla.suse.com/1176560",[49],[56],{"url":118,"sources":119,"tags":120},"https://bugzilla.suse.com/1176713",[49],[56],{"url":122,"sources":123,"tags":124},"https://bugzilla.suse.com/1176723",[49],[56],{"url":126,"sources":127,"tags":128},"https://bugzilla.suse.com/1177086",[49],[56],{"url":130,"sources":131,"tags":132},"https://bugzilla.suse.com/1177101",[49],[56],{"url":134,"sources":135,"tags":136},"https://bugzilla.suse.com/1177271",[49],[56],{"url":138,"sources":139,"tags":140},"https://bugzilla.suse.com/1177281",[49],[56],{"url":142,"sources":143,"tags":144},"https://bugzilla.suse.com/1177410",[49],[56],{"url":146,"sources":147,"tags":148},"https://bugzilla.suse.com/1177411",[49],[56],{"url":150,"sources":151,"tags":152},"https://bugzilla.suse.com/1177470",[49],[56],{"url":154,"sources":155,"tags":156},"https://bugzilla.suse.com/1177687",[49],[56],{"url":158,"sources":159,"tags":160},"https://bugzilla.suse.com/1177719",[49],[56],{"url":162,"sources":163,"tags":164},"https://bugzilla.suse.com/1177740",[49],[56],{"url":166,"sources":167,"tags":168},"https://bugzilla.suse.com/1177749",[49],[56],{"url":170,"sources":171,"tags":172},"https://bugzilla.suse.com/1177750",[49],[56],{"url":174,"sources":175,"tags":176},"https://bugzilla.suse.com/1177753",[49],[56],{"url":178,"sources":179,"tags":180},"https://bugzilla.suse.com/1177754",[49],[56],{"url":182,"sources":183,"tags":184},"https://bugzilla.suse.com/1177755",[49],[56],{"url":186,"sources":187,"tags":188},"https://bugzilla.suse.com/1177766",[49],[56],{"url":190,"sources":191,"tags":192},"https://bugzilla.suse.com/1177855",[49],[56],{"url":194,"sources":195,"tags":196},"https://bugzilla.suse.com/1177856",[49],[56],{"url":198,"sources":199,"tags":200},"https://bugzilla.suse.com/1177861",[49],[56],{"url":202,"sources":203,"tags":204},"https://bugzilla.suse.com/1178003",[49],[56],{"url":206,"sources":207,"tags":208},"https://bugzilla.suse.com/1178027",[49],[56],{"url":210,"sources":211,"tags":212},"https://bugzilla.suse.com/1178166",[49],[56],{"url":214,"sources":215,"tags":216},"https://bugzilla.suse.com/1178185",[49],[56],{"url":218,"sources":219,"tags":220},"https://bugzilla.suse.com/1178187",[49],[56],{"url":222,"sources":223,"tags":224},"https://bugzilla.suse.com/1178188",[49],[56],{"url":226,"sources":227,"tags":228},"https://bugzilla.suse.com/1178202",[49],[56],{"url":230,"sources":231,"tags":232},"https://bugzilla.suse.com/1178234",[49],[56],{"url":234,"sources":235,"tags":236},"https://bugzilla.suse.com/1178330",[49],[56],{"url":238,"sources":239,"tags":240},"https://www.suse.com/security/cve/CVE-2020-0430",[49],[241],"WEB",{"url":243,"sources":244,"tags":245},"https://www.suse.com/security/cve/CVE-2020-14351",[49],[241],{"url":247,"sources":248,"tags":249},"https://www.suse.com/security/cve/CVE-2020-16120",[49],[241],{"url":251,"sources":252,"tags":253},"https://www.suse.com/security/cve/CVE-2020-25285",[49],[241],{"url":255,"sources":256,"tags":257},"https://www.suse.com/security/cve/CVE-2020-25656",[49],[241],{"url":259,"sources":260,"tags":261},"https://www.suse.com/security/cve/CVE-2020-27673",[49],[241],{"url":263,"sources":264,"tags":265},"https://www.suse.com/security/cve/CVE-2020-27675",[49],[241],{"url":267,"sources":268,"tags":269},"https://www.suse.com/security/cve/CVE-2020-8694",[49],[241],[],[],[],[274,287,291,295,299,303,308,315,320,325,329,334],{"ecosystem":275,"name":276,"vendor":277,"product":278,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":278,"source":9,"versions":280},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP1","rpm",[281],{"version":282,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":286,"fixed_in":9},"lt4_12_14_197_67_1",true,"ecosystem","4.12.14-197.67.1","excluding",{"ecosystem":275,"name":276,"vendor":277,"product":288,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":288,"source":9,"versions":289},"kernel-default&distro=SUSE Linux Enterprise Live Patching 15 SP1",[290],{"version":282,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":286,"fixed_in":9},{"ecosystem":275,"name":276,"vendor":277,"product":292,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":292,"source":9,"versions":293},"kernel-default&distro=SUSE Linux Enterprise Module for Basesystem 15 SP1",[294],{"version":282,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":286,"fixed_in":9},{"ecosystem":275,"name":276,"vendor":277,"product":296,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":296,"source":9,"versions":297},"kernel-default&distro=SUSE Linux Enterprise Module for Legacy 15 SP1",[298],{"version":282,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":286,"fixed_in":9},{"ecosystem":275,"name":276,"vendor":277,"product":300,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":300,"source":9,"versions":301},"kernel-default&distro=SUSE Linux Enterprise Workstation Extension 15 SP1",[302],{"version":282,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":286,"fixed_in":9},{"ecosystem":275,"name":304,"vendor":277,"product":305,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":305,"source":9,"versions":306},"kernel-docs","kernel-docs&distro=SUSE Linux Enterprise Module for Development Tools 15 SP1",[307],{"version":282,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":286,"fixed_in":9},{"ecosystem":275,"name":309,"vendor":277,"product":310,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":310,"source":9,"versions":311},"kernel-livepatch-SLE15-SP1_Update_18","kernel-livepatch-SLE15-SP1_Update_18&distro=SUSE Linux Enterprise Live Patching 15 SP1",[312],{"version":313,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":314,"version_end_type":286,"fixed_in":9},"lt1_3_3_1","1-3.3.1",{"ecosystem":275,"name":316,"vendor":277,"product":317,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":317,"source":9,"versions":318},"kernel-obs-build","kernel-obs-build&distro=SUSE Linux Enterprise Module for Development Tools 15 SP1",[319],{"version":282,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":286,"fixed_in":9},{"ecosystem":275,"name":321,"vendor":277,"product":322,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":322,"source":9,"versions":323},"kernel-source","kernel-source&distro=SUSE Linux Enterprise Module for Basesystem 15 SP1",[324],{"version":282,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":286,"fixed_in":9},{"ecosystem":275,"name":321,"vendor":277,"product":326,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":326,"source":9,"versions":327},"kernel-source&distro=SUSE Linux Enterprise Module for Development Tools 15 SP1",[328],{"version":282,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":286,"fixed_in":9},{"ecosystem":275,"name":330,"vendor":277,"product":331,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":331,"source":9,"versions":332},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise Module for Development Tools 15 SP1",[333],{"version":282,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":286,"fixed_in":9},{"ecosystem":275,"name":335,"vendor":277,"product":336,"cpe_part":9,"purl_type":279,"purl_namespace":277,"purl_name":336,"source":9,"versions":337},"kernel-zfcpdump","kernel-zfcpdump&distro=SUSE Linux Enterprise Module for Basesystem 15 SP1",[338],{"version":282,"is_range":283,"range_type":284,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":286,"fixed_in":9}]