{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThe SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2018-19824: A local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_probe in sound/usb/card.c (bnc#1118152).\n- CVE-2018-18281: The mremap() syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate() removed entries from the pagetables of a task that is in the middle of mremap(), a stale TLB entry could remain for a short time that permits access to a physical page after it has been released back to the page allocator and reused. (bnc#1113769).\n- CVE-2018-18710: An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940 and CVE-2018-16658 (bnc#1113751).\n- CVE-2018-18445: Faulty computation of numeric bounds in the BPF verifier permitted out-of-bounds memory accesses because adjust_scalar_min_max_vals in kernel/bpf/verifier.c mishandled 32-bit right shifts (bnc#1112372).\n- CVE-2018-18386: drivers/tty/n_tty.c allowed local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ (bnc#1094825).\n- CVE-2017-18224: fs/ocfs2/aops.c omitted use of a semaphore and consequently had a race condition for access to the extent tree during read operations in DIRECT mode, which allowed local users to cause a denial of service (BUG) by modifying a certain e_cpos field (bnc#1084831).\n- CVE-2017-16533: The usbhid_parse function in drivers/hid/usbhid/hid-core.c allowed local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device (bnc#1066674).\n\nThe following non-security bugs were fixed:\n\n- ACPI/APEI: Handle GSIV and GPIO notification types (bsc#1115567).\n- ACPICA: Tables: Add WSMT support (bsc#1089350).\n- ACPI/IORT: Fix iort_get_platform_device_domain() uninitialized pointer value (bsc#1051510).\n- ACPI / LPSS: Add alternative ACPI HIDs for Cherry Trail DMA controllers (bsc#1051510).\n- ACPI, nfit: Fix ARS overflow continuation (bsc#1116895).\n- ACPI, nfit: Prefer _DSM over _LSR for namespace label reads (bsc#1112128).\n- ACPI/nfit, x86/mce: Handle only uncorrectable machine checks (bsc#1114279).\n- ACPI/nfit, x86/mce: Validate a MCE\u0027s address before using it (bsc#1114279).\n- ACPI / platform: Add SMB0001 HID to forbidden_id_list (bsc#1051510).\n- ACPI / processor: Fix the return value of acpi_processor_ids_walk() (bsc#1051510).\n- ACPI / watchdog: Prefer iTCO_wdt always when WDAT table uses RTC SRAM (bsc#1051510).\n- act_ife: fix a potential use-after-free (networking-stable-18_09_11).\n- Add the cherry-picked dup id for PCI dwc fix\n- Add version information to KLP_SYMBOLS file\n- ALSA: ac97: Fix incorrect bit shift at AC97-SPSA control write (bsc#1051510).\n- ALSA: ca0106: Disable IZD on SB0570 DAC to fix audio pops (bsc#1051510).\n- ALSA: control: Fix race between adding and removing a user element (bsc#1051510).\n- ALSA: hda: Add 2 more models to the power_save blacklist (bsc#1051510).\n- ALSA: hda: Add ASRock N68C-S UCC the power_save blacklist (bsc#1051510).\n- ALSA: hda - Add mic quirk for the Lenovo G50-30 (17aa:3905) (bsc#1051510).\n- ALSA: hda - Add quirk for ASUS G751 laptop (bsc#1051510).\n- ALSA: hda/ca0132 - Call pci_iounmap() instead of iounmap() (bsc#1051510).\n- ALSA: hda - Fix headphone pin config for ASUS G751 (bsc#1051510).\n- ALSA: hda: fix unused variable warning (bsc#1051510).\n- ALSA: hda/realtek - Add auto-mute quirk for HP Spectre x360 laptop (bsc#1051510).\n- ALSA: hda/realtek - Add GPIO data update helper (bsc#1051510).\n- ALSA: hda/realtek - Allow skipping spec-\u003einit_amp detection (bsc#1051510).\n- ALSA: hda/realtek - fix headset mic detection for MSI MS-B171 (bsc#1051510).\n- ALSA: hda/realtek - Fix HP Headset Mic can\u0027t record (bsc#1051510).\n- ALSA: hda/realtek - fix the pop noise on headphone for lenovo laptops (bsc#1051510).\n- ALSA: hda/realtek - Fix the problem of the front MIC on the Lenovo M715 (bsc#1051510).\n- ALSA: hda/realtek - Manage GPIO bits commonly (bsc#1051510).\n- ALSA: hda/realtek - Simplify Dell XPS13 GPIO handling (bsc#1051510).\n- ALSA: hda/realtek - Support ALC300 (bsc#1051510).\n- ALSA: oss: Use kvzalloc() for local buffer allocations (bsc#1051510).\n- ALSA: sparc: Fix invalid snd_free_pages() at error path (bsc#1051510).\n- ALSA: usb-audio: Add vendor and product name for Dell WD19 Dock (bsc#1051510).\n- ALSA: usb-audio: update quirk for B\u0026W PX to remove microphone (bsc#1051510).\n- ALSA: wss: Fix invalid snd_free_pages() at error path (bsc#1051510).\n- amd/iommu: Fix Guest Virtual APIC Log Tail Address Register (bsc#1106105).\n- arm64: KVM: Move CPU ID reg trap setup off the world switch path (bsc#1110998).\n- arm64: KVM: Sanitize PSTATE.M when being set from userspace (bsc#1110998).\n- arm64: KVM: Tighten guest core register access from userspace (bsc#1110998).\n- ARM: dts: at91: add new compatibility string for macb on sama5d3 (bsc#1051510).\n- ASoC: dwc: Added a quirk DW_I2S_QUIRK_16BIT_IDX_OVERRIDE to dwc (bsc#1085535)\n- ASoC: Intel: cht_bsw_max98090: add support for Baytrail (bsc#1051510).\n- ASoC: intel: cht_bsw_max98090_ti: Add quirk for boards using pmc_plt_clk_0 (bsc#1051510).\n- ASoC: intel: skylake: Add missing break in skl_tplg_get_token() (bsc#1051510).\n- ASoC: Intel: Skylake: Reset the controller in probe (bsc#1051510).\n- ASoC: rsnd: adg: care clock-frequency size (bsc#1051510).\n- ASoC: rsnd: do not fallback to PIO mode when -EPROBE_DEFER (bsc#1051510).\n- ASoC: rt5514: Fix the issue of the delay volume applied again (bsc#1051510).\n- ASoC: sigmadsp: safeload should not have lower byte limit (bsc#1051510).\n- ASoC: sun8i-codec: fix crash on module removal (bsc#1051510).\n- ASoC: wm8804: Add ACPI support (bsc#1051510).\n- ata: Fix racy link clearance (bsc#1107866).\n- ataflop: fix error handling during setup (bsc#1051510).\n- ath10k: fix kernel panic issue during pci probe (bsc#1051510).\n- ath10k: fix scan crash due to incorrect length calculation (bsc#1051510).\n- ath10k: fix use-after-free in ath10k_wmi_cmd_send_nowait (bsc#1051510).\n- ath10k: schedule hardware restart if WMI command times out (bsc#1051510).\n- autofs: fix autofs_sbi() does not check super block type (git-fixes).\n- autofs: fix slab out of bounds read in getname_kernel() (git-fixes).\n- autofs: mount point create should honour passed in mode (git-fixes).\n- badblocks: fix wrong return value in badblocks_set if badblocks are disabled (git-fixes).\n- batman-adv: Avoid probe ELP information leak (bsc#1051510).\n- batman-adv: Expand merged fragment buffer for full packet (bsc#1051510).\n- batman-adv: fix backbone_gw refcount on queue_work() failure (bsc#1051510).\n- batman-adv: fix hardif_neigh refcount on queue_work() failure (bsc#1051510).\n- batman-adv: Use explicit tvlv padding for ELP packets (bsc#1051510).\n- bdi: Fix another oops in wb_workfn() (bsc#1112746).\n- bdi: Preserve kabi when adding cgwb_release_mutex (bsc#1112746).\n- bitops: protect variables in bit_clear_unless() macro (bsc#1051510).\n- bitops: protect variables in set_mask_bits() macro (bsc#1051510).\n- Blacklist commit that modifies Scsi_Host/kabi (bsc#1114579)\n- Blacklist sd_zbc patch that is too invasive (bsc#1114583)\n- Blacklist virtio patch that uses bio_integrity_bytes() (bsc#1114585)\n- blk-mq: I/O and timer unplugs are inverted in blktrace (bsc#1112713).\n- block, bfq: fix wrong init of saved start time for weight raising (bsc#1112708).\n- block: bfq: swap puts in bfqg_and_blkg_put (bsc#1112712).\n- block: copy ioprio in __bio_clone_fast() (bsc#1082653).\n- block: respect virtual boundary mask in bvecs (bsc#1113412).\n- Bluetooth: btbcm: Add entry for BCM4335C0 UART bluetooth (bsc#1051510).\n- Bluetooth: SMP: fix crash in unpairing (bsc#1051510).\n- bnxt_en: Fix TX timeout during netpoll (networking-stable-18_10_16).\n- bnxt_en: free hwrm resources, if driver probe fails (networking-stable-18_10_16).\n- bonding: avoid possible dead-lock (networking-stable-18_10_16).\n- bonding: fix length of actor system (networking-stable-18_11_02).\n- bonding: fix warning message (networking-stable-18_10_16).\n- bonding: pass link-local packets to bonding master also (networking-stable-18_10_16).\n- bpf: fix partial copy of map_ptr when dst is scalar (bsc#1083647).\n- bpf, net: add skb_mac_header_len helper (networking-stable-18_09_24).\n- bpf/verifier: disallow pointer subtraction (bsc#1083647).\n- bpf: wait for running BPF programs when updating map-in-map (bsc#1083647).\n- brcmfmac: fix for proper support of 160MHz bandwidth (bsc#1051510).\n- brcmfmac: fix reporting support for 160 MHz channels (bsc#1051510).\n- brcmutil: really fix decoding channel info for 160 MHz bandwidth (bsc#1051510).\n- bridge: do not add port to router list when receives query with source 0.0.0.0 (networking-stable-18_11_02).\n- Btrfs: Enhance btrfs_trim_fs function to handle error better (Dependency for bsc#1113667).\n- Btrfs: Ensure btrfs_trim_fs can trim the whole filesystem (bsc#1113667).\n- Btrfs: fix assertion failure during fsync in no-holes mode (bsc#1118136).\n- Btrfs: fix assertion on fsync of regular file when using no-holes feature (bsc#1118137).\n- Btrfs: fix cur_offset in the error case for nocow (bsc#1118140).\n- Btrfs: fix data corruption due to cloning of eof block (bsc#1116878).\n- Btrfs: fix deadlock on tree root leaf when finding free extent (bsc#1116876).\n- Btrfs: fix deadlock when writing out free space caches (bsc#1116700).\n- Btrfs: fix infinite loop on inode eviction after deduplication of eof block (bsc#1116877).\n- Btrfs: fix missing error return in btrfs_drop_snapshot (Git-fixes bsc#1109919).\n- Btrfs: fix null pointer dereference on compressed write path error (bsc#1116698).\n- Btrfs: fix use-after-free during inode eviction (bsc#1116701).\n- Btrfs: fix use-after-free when dumping free space (bsc#1116862).\n- Btrfs: fix warning when replaying log after fsync of a tmpfile (bsc#1116692).\n- Btrfs: fix wrong dentries after fsync of file that got its parent replaced (bsc#1116693).\n- Btrfs: handle errors while updating refcounts in update_ref_for_cow (Git-fixes bsc#1109915).\n- Btrfs: make sure we create all new block groups (bsc#1116699).\n- Btrfs: protect space cache inode alloc with GFP_NOFS (bsc#1116863).\n- Btrfs: send, fix infinite loop due to directory rename dependencies (bsc#1118138).\n- cachefiles: fix the race between cachefiles_bury_object() and rmdir(2) (bsc#1051510).\n- can: dev: __can_get_echo_skb(): Do not crash the kernel if can_priv::echo_skb is accessed out of bounds (bsc#1051510).\n- can: dev: can_get_echo_skb(): factor out non sending code to __can_get_echo_skb() (bsc#1051510).\n- can: dev: __can_get_echo_skb(): print error message, if trying to echo non existing skb (bsc#1051510).\n- can: dev: __can_get_echo_skb(): replace struct can_frame by canfd_frame to access frame length (bsc#1051510).\n- can: hi311x: Use level-triggered interrupt (bsc#1051510).\n- can: raw: check for CAN FD capable netdev in raw_sendmsg() (bsc#1051510).\n- can: rcar_can: Fix erroneous registration (bsc#1051510).\n- can: rx-offload: introduce can_rx_offload_get_echo_skb() and can_rx_offload_queue_sorted() functions (bsc#1051510).\n- cdc-acm: correct counting of UART states in serial state notification (bsc#1051510).\n- cdc-acm: do not reset notification buffer index upon urb unlinking (bsc#1051510).\n- cdc-acm: fix race between reset and control messaging (bsc#1051510).\n- ceph: avoid a use-after-free in ceph_destroy_options() (bsc#1111983).\n- ceph: fix dentry leak in ceph_readdir_prepopulate (bsc#1114839).\n- ceph: quota: fix null pointer dereference in quota check (bsc#1114839).\n- cfg80211: Address some corner cases in scan result channel updating (bsc#1051510).\n- cfg80211: fix use-after-free in reg_process_hint() (bsc#1051510).\n- cifs: check for STATUS_USER_SESSION_DELETED (bsc#1112902).\n- cifs: fix memory leak in SMB2_open() (bsc#1112894).\n- cifs: Fix use after free of a mid_q_entry (bsc#1112903).\n- clk: at91: Fix division by zero in PLL recalc_rate() (bsc#1051510).\n- clk: fixed-factor: fix of_node_get-put imbalance (bsc#1051510).\n- clk: fixed-rate: fix of_node_get-put imbalance (bsc#1051510).\n- clk: mmp2: fix the clock id for sdh2_clk and sdh3_clk (bsc#1051510).\n- clk: rockchip: Fix static checker warning in rockchip_ddrclk_get_parent call (bsc#1051510).\n- clk: s2mps11: Add used attribute to s2mps11_dt_match (bsc#1051510).\n- clk: s2mps11: Fix matching when built as module and DT node contains compatible (bsc#1051510).\n- clk: samsung: exynos5420: Enable PERIS clocks for suspend (bsc#1051510).\n- clk: x86: add \u0027ether_clk\u0027 alias for Bay Trail / Cherry Trail (bsc#1051510).\n- clk: x86: Stop marking clocks as CLK_IS_CRITICAL (bsc#1051510).\n- clockevents/drivers/i8253: Add support for PIT shutdown quirk (bsc#1051510).\n- clocksource/drivers/ti-32k: Add CLOCK_SOURCE_SUSPEND_NONSTOP flag for non-am43 SoCs (bsc#1051510).\n- clocksource/drivers/timer-atmel-pit: Properly handle error cases (bsc#1051510).\n- coda: fix \u0027kernel memory exposure attempt\u0027 in fsync (bsc#1051510).\n- configfs: replace strncpy with memcpy (bsc#1051510).\n- crypto: caam - fix implicit casts in endianness helpers (bsc#1051510).\n- crypto: chelsio - Fix memory corruption in DMA Mapped buffers (bsc#1051510).\n- crypto: lrw - Fix out-of bounds access on counter overflow (bsc#1051510).\n- crypto: simd - correctly take reqsize of wrapped skcipher into account (bsc#1051510).\n- crypto: tcrypt - fix ghash-generic speed test (bsc#1051510).\n- dax: Fix deadlock in dax_lock_mapping_entry() (bsc#1109951).\n- debugobjects: Make stack check warning more informative (bsc#1051510).\n- Documentation/l1tf: Fix small spelling typo (bsc#1051510).\n- Documentation/l1tf: Fix typos (bsc#1051510).\n- Documentation/l1tf: Remove Yonah processors from not vulnerable list (bsc#1051510).\n- do d_instantiate/unlock_new_inode combinations safely (git-fixes).\n- Do not leak MNT_INTERNAL away from internal mounts (git-fixes).\n- driver/dma/ioat: Call del_timer_sync() without holding prep_lock (bsc#1051510).\n- drm/amdgpu: add missing CHIP_HAINAN in amdgpu_ucode_get_load_type (bsc#1051510).\n- drm/amdgpu: Fix SDMA HQD destroy error on gfx_v7 (bsc#1051510).\n- drm/amdgpu: Fix vce work queue was not cancelled when suspend (bsc#1106110)\n- drm/amdgpu/powerplay: fix missing break in switch statements (bsc#1113722)\n- drm/ast: change resolution may cause screen blurred (boo#1112963).\n- drm/ast: fixed cursor may disappear sometimes (bsc#1051510).\n- drm/ast: Fix incorrect free on ioregs (bsc#1051510).\n- drm/ast: Remove existing framebuffers before loading driver (boo#1112963)\n- drm/dp_mst: Check if primary mstb is null (bsc#1051510).\n- drm/dp_mst: Skip validating ports during destruction, just ref (bsc#1051510).\n- drm/edid: Add 6 bpc quirk for BOE panel (bsc#1051510).\n- drm/edid: Add 6 bpc quirk for BOE panel in HP Pavilion 15-n233sl (bsc#1113722)\n- drm/edid: VSDB yCBCr420 Deep Color mode bit definitions (bsc#1051510).\n- drm: fb-helper: Reject all pixel format changing requests (bsc#1113722)\n- drm/hisilicon: hibmc: Do not carry error code in HiBMC framebuffer (bsc#1113722)\n- drm/hisilicon: hibmc: Do not overwrite fb helper surface depth (bsc#1113722)\n- drm/i915/audio: Hook up component bindings even if displays are (bsc#1113722)\n- drm/i915: Do not oops during modeset shutdown after lpe audio deinit (bsc#1051510).\n- drm/i915: Do not unset intel_connector-\u003emst_port (bsc#1051510).\n- drm/i915/dp: Link train Fallback on eDP only if fallback link BW can fit panel\u0027s native mode (bsc#1051510).\n- drm/i915/execlists: Force write serialisation into context image vs execution (bsc#1051510).\n- drm/i915: Fix ilk+ watermarks when disabling pipes (bsc#1051510).\n- drm/i915/gen9+: Fix initial readout for Y tiled framebuffers (bsc#1113722)\n- drm/i915/glk: Add Quirk for GLK NUC HDMI port issues (bsc#1051510).\n- drm/i915/glk: Remove 99% limitation (bsc#1051510).\n- drm/i915/hdmi: Add HDMI 2.0 audio clock recovery N values (bsc#1051510).\n- drm/i915: Large page offsets for pread/pwrite (bsc#1051510).\n- drm/i915: Mark pin flags as u64 (bsc#1051510).\n- drm/i915: Restore vblank interrupts earlier (bsc#1051510).\n- drm/i915: Skip vcpi allocation for MSTB ports that are gone (bsc#1051510).\n- drm/i915: Write GPU relocs harder with gen3 (bsc#1051510).\n- drm: mali-dp: Call drm_crtc_vblank_reset on device init (bsc#1051510).\n- drm/mediatek: fix OF sibling-node lookup (bsc#1106110)\n- drm/meson: add support for 1080p25 mode (bsc#1051510).\n- drm/meson: Enable fast_io in meson_dw_hdmi_regmap_config (bsc#1051510).\n- drm/meson: Fix OOB memory accesses in meson_viu_set_osd_lut() (bsc#1051510).\n- drm/msm: fix OF child-node lookup (bsc#1106110)\n- drm/nouveau: Check backlight IDs are \u003e= 0, not \u003e 0 (bsc#1051510).\n- drm/nouveau: Do not disable polling in fallback mode (bsc#1103356).\n- drm/omap: fix memory barrier bug in DMM driver (bsc#1051510).\n- drm/rockchip: Allow driver to be shutdown on reboot/kexec (bsc#1051510).\n- drm/sti: do not remove the drm_bridge that was never added (bsc#1100132)\n- drm/sun4i: Fix an ulong overflow in the dotclock driver (bsc#1106110)\n- drm/virtio: fix bounds check in virtio_gpu_cmd_get_capset() (bsc#1113722)\n- e1000: check on netif_running() before calling e1000_up() (bsc#1051510).\n- e1000: ensure to free old tx/rx rings in set_ringparam() (bsc#1051510).\n- EDAC, {i7core,sb,skx}_edac: Fix uncorrected error counting (bsc#1114279).\n- EDAC: Raise the maximum number of memory controllers (bsc#1113780).\n- EDAC, skx_edac: Fix logical channel intermediate decoding (bsc#1114279).\n- EDAC, thunderx: Fix memory leak in thunderx_l2c_threaded_isr() (bsc#1114279).\n- eeprom: at24: change nvmem stride to 1 (bsc#1051510).\n- eeprom: at24: check at24_read/write arguments (bsc#1051510).\n- eeprom: at24: correctly set the size for at24mac402 (bsc#1051510).\n- Enable LSPCON instead of blindly disabling HDMI\n- enic: do not call enic_change_mtu in enic_probe (bsc#1051510).\n- enic: handle mtu change for vf properly (bsc#1051510).\n- enic: initialize enic-\u003erfs_h.lock in enic_probe (bsc#1051510).\n- ethtool: fix a privilege escalation bug (bsc#1076830).\n- ext2, dax: set ext2_dax_aops for dax files (bsc#1112554).\n- ext4: add missing brelse() add_new_gdb_meta_bg()\u0027s error path (bsc#1117795).\n- ext4: add missing brelse() in set_flexbg_block_bitmap()\u0027s error path (bsc#1117794).\n- ext4: add missing brelse() update_backups()\u0027s error path (bsc#1117796).\n- ext4: avoid arithemetic overflow that can trigger a BUG (bsc#1112736).\n- ext4: avoid buffer leak in ext4_orphan_add() after prior errors (bsc#1117802).\n- ext4: avoid buffer leak on shutdown in ext4_mark_iloc_dirty() (bsc#1117801).\n- ext4: avoid divide by zero fault when deleting corrupted inline directories (bsc#1112735).\n- ext4: avoid potential extra brelse in setup_new_flex_group_blocks() (bsc#1117792).\n- ext4: check for NUL characters in extended attribute\u0027s name (bsc#1112732).\n- ext4: check to make sure the rename(2)\u0027s destination is not freed (bsc#1112734).\n- ext4: do not mark mmp buffer head dirty (bsc#1112743).\n- ext4: fix buffer leak in __ext4_read_dirblock() on error path (bsc#1117807).\n- ext4: fix buffer leak in ext4_xattr_move_to_block() on error path (bsc#1117806).\n- ext4: fix missing cleanup if ext4_alloc_flex_bg_array() fails while resizing (bsc#1117798).\n- ext4: fix online resize\u0027s handling of a too-small final block group (bsc#1112739).\n- ext4: fix online resizing for bigalloc file systems with a 1k block size (bsc#1112740).\n- ext4: fix possible inode leak in the retry loop of ext4_resize_fs() (bsc#1117799).\n- ext4: fix possible leak of sbi-\u003es_group_desc_leak in error path (bsc#1117803).\n- ext4: fix possible leak of s_journal_flag_rwsem in error path (bsc#1117804).\n- ext4: fix setattr project check in fssetxattr ioctl (bsc#1117789).\n- ext4: fix spectre gadget in ext4_mb_regular_allocator() (bsc#1112733).\n- ext4: fix use-after-free race in ext4_remount()\u0027s error path (bsc#1117791).\n- ext4: initialize retries variable in ext4_da_write_inline_data_begin() (bsc#1117788).\n- ext4: propagate error from dquot_initialize() in EXT4_IOC_FSSETXATTR (bsc#1117790).\n- ext4: recalucate superblock checksum after updating free blocks/inodes (bsc#1112738).\n- ext4: release bs.bh before re-using in ext4_xattr_block_find() (bsc#1117805).\n- ext4: reset error code in ext4_find_entry in fallback (bsc#1112731).\n- ext4: show test_dummy_encryption mount option in /proc/mounts (bsc#1112741).\n- fbdev: fix broken menu dependencies (bsc#1113722)\n- fbdev/omapfb: fix omapfb_memory_read infoleak (bsc#1051510).\n- firmware: dcdbas: Add support for WSMT ACPI table (bsc#1089350 ).\n- firmware: dcdbas: include linux/io.h (bsc#1089350).\n- Fix kABI for \u0027Ensure we commit after writeback is complete\u0027 (bsc#1111809).\n- floppy: fix race condition in __floppy_read_block_0() (bsc#1051510).\n- flow_dissector: do not dissect l4 ports for fragments (networking-stable-18_11_21).\n- fscache: fix race between enablement and dropping of object (bsc#1107385).\n- fs: dcache: Avoid livelock between d_alloc_parallel and __d_add (git-fixes).\n- fs/dcache.c: fix kmemcheck splat at take_dentry_name_snapshot() (git-fixes).\n- fs: dcache: Use READ_ONCE when accessing i_dir_seq (git-fixes).\n- fs: Make extension of struct super_block transparent (bsc#1117822).\n- fsnotify: Fix busy inodes during unmount (bsc#1117822).\n- fsnotify: fix ignore mask logic in fsnotify() (bsc#1115074).\n- fs/quota: Fix spectre gadget in do_quotactl (bsc#1112745).\n- ftrace: Fix debug preempt config name in stack_tracer_{en,dis}able (bsc#1117172).\n- ftrace: Fix kmemleak in unregister_ftrace_graph (bsc#1117181).\n- ftrace: Fix memleak when unregistering dynamic ops when tracing disabled (bsc#1117174).\n- ftrace: Remove incorrect setting of glob search field (bsc#1117184).\n- genirq: Fix race on spurious interrupt detection (bsc#1051510).\n- getname_kernel() needs to make sure that -\u003ename != -\u003einame in long case (git-fixes).\n- gpio: do not free unallocated ida on gpiochip_add_data_with_key() error path (bsc#1051510).\n- grace: replace BUG_ON by WARN_ONCE in exit_net hook (git-fixes).\n- gso_segment: Reset skb-\u003emac_len after modifying network header (networking-stable-18_09_24).\n- hfsplus: do not return 0 when fill_super() failed (bsc#1051510).\n- hfsplus: stop workqueue when fill_super() failed (bsc#1051510).\n- hfs: prevent crash on exit from failed search (bsc#1051510).\n- HID: hiddev: fix potential Spectre v1 (bsc#1051510).\n- HID: hid-sensor-hub: Force logical minimum to 1 for power and report state (bsc#1051510).\n- HID: quirks: fix support for Apple Magic Keyboards (bsc#1051510).\n- HID: sensor-hub: Restore fixup for Lenovo ThinkPad Helix 2 sensor hub report (bsc#1051510).\n- HID: uhid: forbid UHID_CREATE under KERNEL_DS or elevated privileges (bsc#1051510).\n- hv: avoid crash in vmbus sysfs files (bnc#1108377).\n- hv_netvsc: fix schedule in RCU context ().\n- hv_netvsc: ignore devices that are not PCI (networking-stable-18_09_11).\n- hwmon: (core) Fix double-free in __hwmon_device_register() (bsc#1051510).\n- hwmon: (ibmpowernv) Remove bogus __init annotations (bsc#1051510).\n- hwmon: (ina2xx) Fix current value calculation (bsc#1051510).\n- hwmon (ina2xx) Fix NULL id pointer in probe() (bsc#1051510).\n- hwmon: (nct6775) Fix potential Spectre v1 (bsc#1051510).\n- hwmon: (pmbus) Fix page count auto-detection (bsc#1051510).\n- hwmon: (pwm-fan) Set fan speed to 0 on suspend (bsc#1051510).\n- hwmon: (raspberrypi) Fix initial notify (bsc#1051510).\n- hwmon: (w83795) temp4_type has writable permission (bsc#1051510).\n- hwrng: core - document the quality field (bsc#1051510).\n- hypfs_kill_super(): deal with failed allocations (bsc#1051510).\n- i2c: i2c-scmi: fix for i2c_smbus_write_block_data (bsc#1051510).\n- i2c: rcar: cleanup DMA for all kinds of failure (bsc#1051510).\n- ibmvnic: fix accelerated VLAN handling ().\n- ibmvnic: fix index in release_rx_pools (bsc#1115440, bsc#1115433).\n- ibmvnic: remove ndo_poll_controller ().\n- ibmvnic: Update driver queues after change in ring size support ().\n- iio: accel: adxl345: convert address field usage in iio_chan_spec (bsc#1051510).\n- iio: ad5064: Fix regulator handling (bsc#1051510).\n- iio: adc: at91: fix acking DRDY irq on simple conversions (bsc#1051510).\n- iio: adc: at91: fix wrong channel number in triggered buffer mode (bsc#1051510).\n- iio: adc: imx25-gcq: Fix leak of device_node in mx25_gcq_setup_cfgs() (bsc#1051510).\n- iio:st_magn: Fix enable device after trigger (bsc#1051510).\n- ima: fix showing large \u0027violations\u0027 or \u0027runtime_measurements_count\u0027 (bsc#1051510).\n- include/linux/pfn_t.h: force \u0027~\u0027 to be parsed as an unary operator (bsc#1051510).\n- inet: make sure to grab rcu_read_lock before using ireq-\u003eireq_opt (networking-stable-18_10_16).\n- Input: atakbd - fix Atari CapsLock behaviour (bsc#1051510).\n- Input: atakbd - fix Atari keymap (bsc#1051510).\n- Input: elan_i2c - add ACPI ID for Lenovo IdeaPad 330-15IGM (bsc#1051510).\n- Input: synaptics - avoid using uninitialized variable when probing (bsc#1051510).\n- Input: xpad - add PDP device id 0x02a4 (bsc#1051510).\n- Input: xpad - add support for Xbox1 PDP Camo series gamepad (bsc#1051510).\n- Input: xpad - avoid using __set_bit() for capabilities (bsc#1051510).\n- Input: xpad - fix some coding style issues (bsc#1051510).\n- intel_th: pci: Add Ice Lake PCH support (bsc#1051510).\n- iommu/arm-smmu: Ensure that page-table updates are visible before TLBI (bsc#1106237).\n- iommu/arm-smmu: Error out only if not enough context interrupts (bsc#1106237).\n- iommu/ipmmu-vmsa: Fix crash on early domain free (bsc#1106105).\n- iommu/vt-d: Add definitions for PFSID (bsc#1106237).\n- iommu/vt-d: Fix dev iotlb pfsid use (bsc#1106237).\n- iommu/vt-d: Fix NULL pointer dereference in prq_event_thread() (bsc#1106105).\n- iommu/vt-d: Fix scatterlist offset handling (bsc#1106237).\n- iommu/vt-d: Use memunmap to free memremap (bsc#1106105).\n- ip6_tunnel: be careful when accessing the inner header (networking-stable-18_10_16).\n- ip6_tunnel: Fix encapsulation layout (networking-stable-18_11_02).\n- ip6_vti: fix a null pointer deference when destroy vti6 tunnel (networking-stable-18_09_11).\n- ipmi: Fix timer race with module unload (bsc#1051510).\n- ip_tunnel: be careful when accessing the inner header (networking-stable-18_10_16).\n- ip_tunnel: do not force DF when MTU is locked (networking-stable-18_11_21).\n- ipv4: lock mtu in fnhe when received PMTU \u003c net.ipv4.route.min_pmtu (networking-stable-18_11_21).\n- ipv4: tcp: send zero IPID for RST and ACK sent in SYN-RECV and TIME-WAIT state (networking-stable-18_09_11).\n- ipv6: Fix PMTU updates for UDP/raw sockets in presence of VRF (networking-stable-18_11_21).\n- ipv6: fix possible use-after-free in ip6_xmit() (networking-stable-18_09_24).\n- ipv6: mcast: fix a use-after-free in inet6_mc_check (networking-stable-18_11_02).\n- ipv6/ndisc: Preserve IPv6 control buffer if protocol error handlers are called (networking-stable-18_11_02).\n- ipv6: take rcu lock in rawv6_send_hdrinc() (networking-stable-18_10_16).\n- iwlwifi: dbg: allow wrt collection before ALIVE (bsc#1051510).\n- iwlwifi: dbg: do not crash if the firmware crashes in the middle of a debug dump (bsc#1051510).\n- iwlwifi: do not WARN on trying to dump dead firmware (bsc#1051510).\n- iwlwifi: mvm: Allow TKIP for AP mode (bsc#1051510).\n- iwlwifi: mvm: check for n_profiles validity in EWRD ACPI (bsc#1051510).\n- iwlwifi: mvm: check for short GI only for OFDM (bsc#1051510).\n- iwlwifi: mvm: check return value of rs_rate_from_ucode_rate() (bsc#1051510).\n- iwlwifi: mvm: clear HW_RESTART_REQUESTED when stopping the interface (bsc#1051510).\n- iwlwifi: mvm: do not use SAR Geo if basic SAR is not used (bsc#1051510).\n- iwlwifi: mvm: fix BAR seq ctrl reporting (bsc#1051510).\n- iwlwifi: mvm: fix regulatory domain update when the firmware starts (bsc#1051510).\n- iwlwifi: mvm: open BA session only when sta is authorized (bsc#1051510).\n- iwlwifi: mvm: send BCAST management frames to the right station (bsc#1051510).\n- iwlwifi: mvm: support sta_statistics() even on older firmware (bsc#1051510).\n- iwlwifi: pcie: avoid empty free RB queue (bsc#1051510).\n- iwlwifi: pcie: gen2: build A-MSDU only for GSO (bsc#1051510).\n- iwlwifi: pcie gen2: check iwl_pcie_gen2_set_tb() return value (bsc#1051510).\n- jbd2: fix use after free in jbd2_log_do_checkpoint() (bsc#1113257).\n- KABI fix for \u0027NFSv4.1: Fix up replays of interrupted requests\u0027 (git-fixes).\n- kABI: Hide get_msr_feature() in kvm_x86_ops (bsc#1106240).\n- KABI: hide new member in struct iommu_table from genksyms (bsc#1061840).\n- KABI: mask raw in struct bpf_reg_state (bsc#1083647).\n- KABI: powerpc: export __find_linux_pte as __find_linux_pte_or_hugepte (bsc#1061840).\n- KABI: powerpc: Revert npu callback signature change (bsc#1055120).\n- KABI: protect struct fib_nh_exception (kabi).\n- KABI: protect struct rtable (kabi).\n- KABI/severities: ignore __xive_vm_h_* KVM internal symbols.\n- Kbuild: fix # escaping in .cmd files for future Make (git-fixes).\n- kbuild: fix kernel/bounds.c \u0027W=1\u0027 warning (bsc#1051510).\n- kbuild: move \u0027_all\u0027 target out of $(KBUILD_SRC) conditional (bsc#1114279).\n- kernfs: update comment about kernfs_path() return value (bsc#1051510).\n- kgdboc: Passing ekgdboc to command line causes panic (bsc#1051510).\n- kprobes/x86: Fix %p uses in error messages (bsc#1110006).\n- KVM: arm/arm64: Introduce vcpu_el1_is_32bit (bsc#1110998).\n- KVM: Make VM ioctl do valloc for some archs (bsc#1111506).\n- KVM: nVMX: Always reflect #NM VM-exits to L1 (bsc#1106240).\n- KVM: nVMX: move check_vmentry_postreqs() call to nested_vmx_enter_non_root_mode() (bsc#1106240).\n- KVM: PPC: Add pt_regs into kvm_vcpu_arch and move vcpu-\u003earch.gpr[] into it (bsc#1061840).\n- KVM: PPC: Avoid marking DMA-mapped pages dirty in real mode (bsc#1061840).\n- KVM: PPC: Book3S: Add MMIO emulation for VMX instructions (bsc#1061840).\n- KVM: PPC: Book3S: Allow backing bigger guest IOMMU pages with smaller physical pages (bsc#1061840).\n- KVM: PPC: Book3S: Check KVM_CREATE_SPAPR_TCE_64 parameters (bsc#1061840).\n- KVM: PPC: Book3S: Eliminate some unnecessary checks (bsc#1061840).\n- KVM: PPC: Book3S: Fix compile error that occurs with some gcc versions (bsc#1061840).\n- KVM: PPC: Book3S: Fix matching of hardware and emulated TCE tables (bsc#1061840).\n- KVM: PPC: Book3S HV: Add of_node_put() in success path (bsc#1061840).\n- KVM: PPC: Book3S HV: Add \u0027online\u0027 register to ONE_REG interface (bsc#1061840).\n- KVM: PPC: Book3S HV: Allow creating max number of VCPUs on POWER9 (bsc#1061840).\n- KVM: PPC: Book3S HV: Allow HPT and radix on the same core for POWER9 v2.2 (bsc#1061840).\n- KVM: PPC: Book3S HV: Avoid crash from THP collapse during radix page fault (bsc#1061840).\n- KVM: PPC: Book3S HV: Avoid shifts by negative amounts (bsc#1061840).\n- KVM: PPC: Book3S HV: Check DR not IR to chose real vs virt mode MMIOs (bsc#1061840).\n- KVM: PPC: Book3S HV: Do not truncate HPTE index in xlate function (bsc#1061840).\n- KVM: PPC: Book3S HV: Do not use compound_order to determine host mapping size (bsc#1061840).\n- KVM: PPC: Book3S HV: Do not use existing \u0027prodded\u0027 flag for XIVE escalations (bsc#1061840).\n- KVM: PPC: Book 3S HV: Do ptesync in radix guest exit path (bsc#1061840).\n- KVM: PPC: Book3S HV: Do SLB load/unload with guest LPCR value loaded (bsc#1061840).\n- KVM: PPC: Book3S HV: Enable migration of decrementer register (bsc#1061840).\n- KVM: PPC: Book3S HV: Factor fake-suspend handling out of kvmppc_save/restore_tm (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix conditions for starting vcpu (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix constant size warning (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix duplication of host SLB entries (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix guest r11 corruption with POWER9 TM workarounds (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix handling of large pages in radix page fault handler (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix handling of secondary HPTEG in HPT resizing code (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix inaccurate comment (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix kvmppc_bad_host_intr for real mode interrupts (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix trap number return from __kvmppc_vcore_entry (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix typo in kvmppc_hv_get_dirty_log_radix() (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix VRMA initialization with 2MB or 1GB memory backing (bsc#1061840).\n- KVM: PPC: Book3S HV: Handle 1GB pages in radix page fault handler (bsc#1061840).\n- KVM: PPC: Book3S HV: Improve handling of debug-trigger HMIs on POWER9 (bsc#1061840).\n- KVM: PPC: Book3S HV: Keep XIVE escalation interrupt masked unless ceded (bsc#1061840).\n- KVM: PPC: Book3S HV: Lockless tlbie for HPT hcalls (bsc#1061840).\n- KVM: PPC: Book3S HV: Make HPT resizing work on POWER9 (bsc#1061840).\n- KVM: PPC: Book3S HV: Make radix clear pte when unmapping (bsc#1061840).\n- KVM: PPC: Book3S HV: Make radix use correct tlbie sequence in kvmppc_radix_tlbie_page (bsc#1061840).\n- KVM: PPC: Book3S HV: Make xive_pushed a byte, not a word (bsc#1061840).\n- KVM: PPC: Book3S HV: Pack VCORE IDs to access full VCPU ID space (bsc#1061840).\n- KVM: PPC: Book3S HV: radix: Do not clear partition PTE when RC or write bits do not match (bsc#1061840).\n- KVM: PPC: Book3S HV: Radix page fault handler optimizations (bsc#1061840).\n- KVM: PPC: Book3S HV: radix: Refine IO region partition scope attributes (bsc#1061840).\n- KVM: PPC: Book3S HV: Read kvm-\u003earch.emul_smt_mode under kvm-\u003elock (bsc#1061840).\n- KVM: PPC: Book3S HV: Recursively unmap all page table entries when unmapping (bsc#1061840).\n- KVM: PPC: Book3S HV: Remove useless statement (bsc#1061840).\n- KVM: PPC: Book3S HV: Remove vcpu-\u003earch.dec usage (bsc#1061840).\n- KVM: PPC: Book3S HV: Send kvmppc_bad_interrupt NMIs to Linux handlers (bsc#1061840).\n- KVM: PPC: Book3S HV: Set RWMR on POWER8 so PURR/SPURR count correctly (bsc#1061840).\n- KVM: PPC: Book3S HV: Snapshot timebase offset on guest entry (bsc#1061840).\n- KVM: PPC: Book3S HV: Streamline setting of reference and change bits (bsc#1061840).\n- KVM: PPC: Book3S HV: Use a helper to unmap ptes in the radix fault path (bsc#1061840).\n- KVM: PPC: Book3S HV: Use __gfn_to_pfn_memslot() in page fault handler (bsc#1061840).\n- KVM: PPC: Book3S HV: XIVE: Resend re-routed interrupts on CPU priority change (bsc#1061840).\n- KVM: PPC: Book3S PR: Add guest MSR parameter for kvmppc_save_tm()/kvmppc_restore_tm() (bsc#1061840).\n- KVM: PPC: Book3S PR: Move kvmppc_save_tm/kvmppc_restore_tm to separate file (bsc#1061840).\n- KVM: PPC: Book3S: Use correct page shift in H_STUFF_TCE (bsc#1061840).\n- KVM: PPC: Fix a mmio_host_swabbed uninitialized usage issue (bsc#1061840).\n- KVM: PPC: Make iommu_table::it_userspace big endian (bsc#1061840).\n- KVM: PPC: Move nip/ctr/lr/xer registers to pt_regs in kvm_vcpu_arch (bsc#1061840).\n- KVM: PPC: Use seq_puts() in kvmppc_exit_timing_show() (bsc#1061840).\n- KVM: s390: vsie: copy wrapping keys to right place (git-fixes).\n- KVM: SVM: Add MSR-based feature support for serializing LFENCE (bsc#1106240).\n- KVM: svm: Ensure an IBPB on all affected CPUs when freeing a vmcb (bsc#1114279).\n- KVM: VMX: re-add ple_gap module parameter (bsc#1106240).\n- KVM: VMX: support MSR_IA32_ARCH_CAPABILITIES as a feature MSR (bsc#1106240).\n- KVM: VMX: Tell the nested hypervisor to skip L1D flush on vmentry (bsc#1106240).\n- KVM: x86: Add a framework for supporting MSR-based features (bsc#1106240).\n- KVM: x86: define SVM/VMX specific kvm_arch_[alloc|free]_vm (bsc#1111506).\n- KVM: x86: Fix kernel info-leak in KVM_HC_CLOCK_PAIRING hypercall (bsc#1106240).\n- KVM: X86: Introduce kvm_get_msr_feature() (bsc#1106240).\n- KVM/x86: kABI fix for vm_alloc/vm_free changes (bsc#1111506).\n- KVM: x86: Set highest physical address bits in non-present/reserved SPTEs (bsc#1106240).\n- libceph: bump CEPH_MSG_MAX_DATA_LEN (bsc#1114839).\n- libceph: fall back to sendmsg for slab pages (bsc#1118316).\n- libertas: call into generic suspend code before turning off power (bsc#1051510).\n- libertas: do not set URB_ZERO_PACKET on IN USB transfer (bsc#1051510).\n- libnvdimm, badrange: remove a WARN for list_empty (bsc#1112128).\n- libnvdimm, dimm: Maximize label transfer size (bsc#1111921, bsc#1113408, bsc#1113972).\n- libnvdimm: Hold reference on parent while scheduling async init (bsc#1116891).\n- libnvdimm: Introduce locked DIMM capacity support (bsc#1112128).\n- libnvdimm, label: change nvdimm_num_label_slots per UEFI 2.7 (bsc#1111921, bsc#1113408, bsc#1113972).\n- libnvdimm, label: Fix sparse warning (bsc#1111921, bsc#1113408, bsc#1113972).\n- libnvdimm: move poison list functions to a new \u0027badrange\u0027 file (bsc#1112128).\n- libnvdimm/nfit_test: add firmware download emulation (bsc#1112128).\n- libnvdimm/nfit_test: adding support for unit testing enable LSS status (bsc#1112128).\n- libnvdimm, region: Fail badblocks listing for inactive regions (bsc#1116899).\n- libnvdimm, testing: Add emulation for smart injection commands (bsc#1112128).\n- libnvdimm, testing: update the default smart ctrl_temperature (bsc#1112128).\n- lib/ubsan: add type mismatch handler for new GCC/Clang (bsc#1051510).\n- lib/ubsan.c: s/missaligned/misaligned/ (bsc#1051510).\n- livepatch: create and include UAPI headers ().\n- llc: set SOCK_RCU_FREE in llc_sap_add_socket() (networking-stable-18_11_02).\n- lockd: fix \u0027list_add double add\u0027 caused by legacy signal interface (git-fixes).\n- loop: add recursion validation to LOOP_CHANGE_FD (bsc#1112711).\n- loop: do not call into filesystem while holding lo_ctl_mutex (bsc#1112710).\n- loop: fix LOOP_GET_STATUS lock imbalance (bsc#1113284).\n- mac80211: Always report TX status (bsc#1051510).\n- mac80211: fix TX status reporting for ieee80211s (bsc#1051510).\n- mac80211_hwsim: do not omit multicast announce of first added radio (bsc#1051510).\n- mac80211: minstrel: fix using short preamble CCK rates on HT clients (bsc#1051510).\n- mac80211: TDLS: fix skb queue/priority assignment (bsc#1051510).\n- mach64: detect the dot clock divider correctly on sparc (bsc#1051510).\n- mach64: fix display corruption on big endian machines (bsc#1113722)\n- mach64: fix image corruption due to reading accelerator registers (bsc#1113722)\n- mailbox: PCC: handle parse error (bsc#1051510).\n- make sure that __dentry_kill() always invalidates d_seq, unhashed or not (git-fixes).\n- md: allow metadata updates while suspending an array - fix (git-fixes).\n- MD: fix invalid stored role for a disk - try2 (git-fixes).\n- md: fix NULL dereference of mddev-\u003epers in remove_and_add_spares() (git-fixes).\n- md/raid10: fix that replacement cannot complete recovery after reassemble (git-fixes).\n- md/raid1: add error handling of read error from FailFast device (git-fixes).\n- md/raid5-cache: disable reshape completely (git-fixes).\n- md/raid5: fix data corruption of replacements after originals dropped (git-fixes).\n- media: af9035: prevent buffer overflow on write (bsc#1051510).\n- media: cx231xx: fix potential sign-extension overflow on large shift (bsc#1051510).\n- media: dvb: fix compat ioctl translation (bsc#1051510).\n- media: em28xx: fix input name for Terratec AV 350 (bsc#1051510).\n- media: em28xx: use a default format if TRY_FMT fails (bsc#1051510).\n- media: pci: cx23885: handle adding to list failure (bsc#1051510).\n- media: tvp5150: avoid going past array on v4l2_querymenu() (bsc#1051510).\n- media: tvp5150: fix switch exit in set control handler (bsc#1051510).\n- media: tvp5150: fix width alignment during set_selection() (bsc#1051510).\n- media: uvcvideo: Fix uvc_alloc_entity() allocation alignment (bsc#1051510).\n- media: v4l2-tpg: fix kernel oops when enabling HFLIP and OSD (bsc#1051510).\n- media: vsp1: Fix YCbCr planar formats pitch calculation (bsc#1051510).\n- memory_hotplug: cond_resched in __remove_pages (bnc#1114178).\n- mfd: arizona: Correct calling of runtime_put_sync (bsc#1051510).\n- mfd: menelaus: Fix possible race condition and leak (bsc#1051510).\n- mfd: omap-usb-host: Fix dts probe of children (bsc#1051510).\n- mlxsw: spectrum: Fix IP2ME CPU policer configuration (networking-stable-18_11_21).\n- mmc: block: avoid multiblock reads for the last sector in SPI mode (bsc#1051510).\n- mmc: dw_mmc-rockchip: correct property names in debug (bsc#1051510).\n- mmc: sdhci-pci-o2micro: Add quirk for O2 Micro dev 0x8620 rev 0x01 (bsc#1051510).\n- mm: handle no memcg case in memcg_kmem_charge() properly (bnc#1113677).\n- mm/migrate: Use spin_trylock() while resetting rate limit ().\n- mm: /proc/pid/pagemap: hide swap entries from unprivileged users (Git-fixes bsc#1109907).\n- mm: rework memcg kernel stack accounting (bnc#1113677).\n- modpost: ignore livepatch unresolved relocations ().\n- mount: Do not allow copying MNT_UNBINDABLE|MNT_LOCKED mounts (bsc#1117819).\n- mount: Prevent MNT_DETACH from disconnecting locked mounts (bsc#1117820).\n- mount: Retest MNT_LOCKED in do_umount (bsc#1117818).\n- move changes without Git-commit out of sorted section\n- neighbour: confirm neigh entries when ARP packet is received (networking-stable-18_09_24).\n- net/af_iucv: drop inbound packets with invalid flags (bnc#1113501, LTC#172679).\n- net/af_iucv: fix skb handling on HiperTransport xmit error (bnc#1113501, LTC#172679).\n- net/appletalk: fix minor pointer leak to userspace in SIOCFINDIPDDPRT (networking-stable-18_09_24).\n- net: aquantia: memory corruption on jumbo frames (networking-stable-18_10_16).\n- net: bcmgenet: Poll internal PHY for GENETv5 (networking-stable-18_11_02).\n- net: bcmgenet: protect stop from timeout (networking-stable-18_11_21).\n- net: bcmgenet: use MAC link status for fixed phy (networking-stable-18_09_11).\n- net: bridge: remove ipv6 zero address check in mcast queries (git-fixes).\n- net: dsa: bcm_sf2: Call setup during switch resume (networking-stable-18_10_16).\n- net: dsa: bcm_sf2: Fix unbind ordering (networking-stable-18_10_16).\n- net: ena: add functions for handling Low Latency Queues in ena_com (bsc#1111696 bsc#1117561).\n- net: ena: add functions for handling Low Latency Queues in ena_netdev (bsc#1111696 bsc#1117561).\n- net: ena: change rx copybreak default to reduce kernel memory pressure (bsc#1111696 bsc#1117561).\n- net: ena: complete host info to match latest ENA spec (bsc#1111696 bsc#1117561).\n- net: ena: enable Low Latency Queues (bsc#1111696 bsc#1117561).\n- net: ena: explicit casting and initialization, and clearer error handling (bsc#1111696 bsc#1117561).\n- net: ena: fix auto casting to boolean (bsc#1111696 bsc#1117561).\n- net: ena: fix compilation error in xtensa architecture (bsc#1111696 bsc#1117561).\n- net: ena: fix crash during failed resume from hibernation (bsc#1111696 bsc#1117561).\n- net: ena: fix indentations in ena_defs for better readability (bsc#1111696 bsc#1117561).\n- net: ena: Fix Kconfig dependency on X86 (bsc#1111696 bsc#1117561).\n- net: ena: fix NULL dereference due to untimely napi initialization (bsc#1111696 bsc#1117561).\n- net: ena: fix rare bug when failed restart/resume is followed by driver removal (bsc#1111696 bsc#1117561).\n- net: ena: fix warning in rmmod caused by double iounmap (bsc#1111696 bsc#1117561).\n- net: ena: introduce Low Latency Queues data structures according to ENA spec (bsc#1111696 bsc#1117561).\n- net: ena: limit refill Rx threshold to 256 to avoid latency issues (bsc#1111696 bsc#1117561).\n- net: ena: minor performance improvement (bsc#1111696 bsc#1117561).\n- net: ena: remove ndo_poll_controller (bsc#1111696 bsc#1117561).\n- net: ena: remove redundant parameter in ena_com_admin_init() (bsc#1111696 bsc#1117561).\n- net: ena: update driver version to 2.0.1 (bsc#1111696 bsc#1117561).\n- net: ena: use CSUM_CHECKED device indication to report skb\u0027s checksum status (bsc#1111696 bsc#1117561).\n- net: fec: do not dump RX FIFO register when not available (networking-stable-18_11_02).\n- net-gro: reset skb-\u003epkt_type in napi_reuse_skb() (networking-stable-18_11_21).\n- net: hns: fix for unmapping problem when SMMU is on (networking-stable-18_10_16).\n- net: hp100: fix always-true check for link up state (networking-stable-18_09_24).\n- net: ibm: fix return type of ndo_start_xmit function ().\n- net/ibmnvic: Fix deadlock problem in reset ().\n- net/ibmvnic: Fix RTNL deadlock during device reset (bnc#1115431).\n- net: ipmr: fix unresolved entry dumps (networking-stable-18_11_02).\n- net: ipv4: do not let PMTU updates increase route MTU (git-fixes).\n- net/ipv6: Display all addresses in output of /proc/net/if_inet6 (networking-stable-18_10_16).\n- net/ipv6: Fix index counter for unicast addresses in in6_dump_addrs (networking-stable-18_11_02).\n- netlabel: check for IPV4MASK in addrinfo_get (networking-stable-18_10_16).\n- net: macb: do not disable MDIO bus at open/close time (networking-stable-18_09_11).\n- net/mlx5: Check for error in mlx5_attach_interface (networking-stable-18_09_18).\n- net/mlx5e: Fix selftest for small MTUs (networking-stable-18_11_21).\n- net/mlx5e: Set vlan masks for all offloaded TC rules (networking-stable-18_10_16).\n- net/mlx5: E-Switch, Fix memory leak when creating switchdev mode FDB tables (networking-stable-18_09_18).\n- net/mlx5: E-Switch, Fix out of bound access when setting vport rate (networking-stable-18_10_16).\n- net/mlx5: Fix debugfs cleanup in the device init/remove flow (networking-stable-18_09_18).\n- net/mlx5: Fix use-after-free in self-healing flow (networking-stable-18_09_18).\n- net/mlx5: Take only bit 24-26 of wqe.pftype_wq for page fault type (networking-stable-18_11_02).\n- net: mvpp2: Extract the correct ethtype from the skb for tx csum offload (networking-stable-18_10_16).\n- net: mvpp2: fix a txq_done race condition (networking-stable-18_10_16).\n- net/packet: fix packet drop as of virtio gso (networking-stable-18_10_16).\n- net: phy: mdio-gpio: Fix working over slow can_sleep GPIOs (networking-stable-18_11_21).\n- net: qca_spi: Fix race condition in spi transfers (networking-stable-18_09_18).\n- net: qmi_wwan: add Wistron Neweb D19Q1 (bsc#1051510).\n- net: sched: action_ife: take reference to meta module (networking-stable-18_09_11).\n- net/sched: act_pedit: fix dump of extended layered op (networking-stable-18_09_11).\n- net/sched: act_sample: fix NULL dereference in the data path (networking-stable-18_09_24).\n- net: sched: Fix for duplicate class dump (networking-stable-18_11_02).\n- net: sched: Fix memory exposure from short TCA_U32_SEL (networking-stable-18_09_11).\n- net: sched: gred: pass the right attribute to gred_change_table_def() (networking-stable-18_11_02).\n- net: smsc95xx: Fix MTU range (networking-stable-18_11_21).\n- net: socket: fix a missing-check bug (networking-stable-18_11_02).\n- net: stmmac: Fix stmmac_mdio_reset() when building stmmac as modules (networking-stable-18_11_02).\n- net: stmmac: Fixup the tail addr setting in xmit path (networking-stable-18_10_16).\n- net: systemport: Fix wake-up interrupt race during resume (networking-stable-18_10_16).\n- net: systemport: Protect stop from timeout (networking-stable-18_11_21).\n- net: udp: fix handling of CHECKSUM_COMPLETE packets (networking-stable-18_11_02).\n- net/usb: cancel pending work when unbinding smsc75xx (networking-stable-18_10_16).\n- NFC: nfcmrvl_uart: fix OF child-node lookup (bsc#1051510).\n- nfit_test: add error injection DSMs (bsc#1112128).\n- nfit_test: fix buffer overrun, add sanity check (bsc#1112128).\n- nfit_test: improve structure offset handling (bsc#1112128).\n- nfit_test: prevent parsing error of nfit_test.0 (bsc#1112128).\n- nfit_test: when clearing poison, also remove badrange entries (bsc#1112128).\n- nfp: wait for posted reconfigs when disabling the device (networking-stable-18_09_11).\n- NFS: Avoid quadratic search when freeing delegations (bsc#1084760).\n- NFS: Avoid RCU usage in tracepoints (git-fixes).\n- NFS: commit direct writes even if they fail partially (git-fixes).\n- nfsd4: permit layoutget of executable-only files (git-fixes).\n- nfsd: check for use of the closed special stateid (git-fixes).\n- nfsd: CLOSE SHOULD return the invalid special stateid for NFSv4.x (x\u003e0) (git-fixes).\n- nfsd: deal with revoked delegations appropriately (git-fixes).\n- nfsd: Ensure we check stateid validity in the seqid operation checks (git-fixes).\n- nfsd: Fix another OPEN stateid race (git-fixes).\n- nfsd: fix corrupted reply to badly ordered compound (git-fixes).\n- nfsd: fix potential use-after-free in nfsd4_decode_getdeviceinfo (git-fixes).\n- nfsd: Fix stateid races between OPEN and CLOSE (git-fixes).\n- NFS: do not wait on commit in nfs_commit_inode() if there were no commit requests (git-fixes).\n- nfsd: restrict rd_maxcount to svc_max_payload in nfsd_encode_readdir (git-fixes).\n- NFS: Ensure we commit after writeback is complete (bsc#1111809).\n- NFS: Fix an incorrect type in struct nfs_direct_req (git-fixes).\n- NFS: Fix a typo in nfs_rename() (git-fixes).\n- NFS: Fix typo in nomigration mount option (git-fixes).\n- NFS: Fix unstable write completion (git-fixes).\n- NFSv4.0 fix client reference leak in callback (git-fixes).\n- NFSv4.1: Fix a potential layoutget/layoutrecall deadlock (git-fixes).\n- NFSv4.1 fix infinite loop on I/O (git-fixes).\n- NFSv4.1: Fix the client behaviour on NFS4ERR_SEQ_FALSE_RETRY (git-fixes).\n- NFSv4.1: Fix up replays of interrupted requests (git-fixes).\n- NFSv4: Fix a typo in nfs41_sequence_process (git-fixes).\n- nl80211: Fix possible Spectre-v1 for CQM RSSI thresholds (bsc#1051510).\n- nl80211: Fix possible Spectre-v1 for NL80211_TXRATE_HT (bsc#1051510).\n- nospec: Include \u003casm/barrier.h\u003e dependency (bsc#1114279).\n- nvdimm: Clarify comment in sizeof_namespace_index (bsc#1111921, bsc#1113408, bsc#1113972).\n- nvdimm: Remove empty if statement (bsc#1111921, bsc#1113408, bsc#1113972).\n- nvdimm: Sanity check labeloff (bsc#1111921, bsc#1113408, bsc#1113972).\n- nvdimm: Split label init out from the logic for getting config data (bsc#1111921, bsc#1113408, bsc#1113972).\n- nvdimm: Use namespace index data to reduce number of label reads needed (bsc#1111921, bsc#1113408, bsc#1113972).\n- nvme: Free ctrl device name on init failure ().\n- ocfs2: fix a misuse a of brelse after failing ocfs2_check_dir_entry (bsc#1117817).\n- ocfs2: fix locking for res-\u003etracking and dlm-\u003etracking_list (bsc#1117816).\n- ocfs2: fix ocfs2 read block panic (bsc#1117815).\n- ocfs2: free up write context when direct IO failed (bsc#1117821).\n- ocfs2: subsystem.su_mutex is required while accessing the item-\u003eci_parent (bsc#1117808).\n- of: add helper to lookup compatible child node (bsc#1106110)\n- openvswitch: Fix push/pop ethernet validation (networking-stable-18_11_02).\n- orangefs: fix deadlock; do not write i_size in read_iter (bsc#1051510).\n- orangefs: initialize op on loop restart in orangefs_devreq_read (bsc#1051510).\n- orangefs_kill_sb(): deal with allocation failures (bsc#1051510).\n- orangefs: use list_for_each_entry_safe in purge_waiting_ops (bsc#1051510).\n- PCI: Add Device IDs for Intel GPU \u0027spurious interrupt\u0027 quirk (bsc#1051510).\n- PCI/ASPM: Do not initialize link state when aspm_disabled is set (bsc#1051510).\n- PCI/ASPM: Fix link_state teardown on device removal (bsc#1051510).\n- PCI: dwc: remove duplicate fix References: bsc#1115269 Patch has been already applied by the following commit: 9f73db8b7c PCI: dwc: Fix enumeration end when reaching root subordinate (bsc#1051510)\n- PCI: hv: Do not wait forever on a device that has disappeared (bsc#1109806).\n- PCI: hv: Use effective affinity mask (bsc#1109772).\n- PCI: imx6: Fix link training status detection in link up check (bsc#1109806).\n- PCI: iproc: Remove PAXC slot check to allow VF support (bsc#1109806).\n- PCI/MSI: Warn and return error if driver enables MSI/MSI-X twice (bsc#1051510).\n- PCI: Reprogram bridge prefetch registers on resume (bsc#1051510).\n- PCI: vmd: Assign vector zero to all bridges (bsc#1109806).\n- PCI: vmd: Detach resources after stopping root bus (bsc#1109806).\n- PCI: vmd: White list for fast interrupt handlers (bsc#1109806).\n- pcmcia: Implement CLKRUN protocol disabling for Ricoh bridges (bsc#1051510).\n- percpu: make this_cpu_generic_read() atomic w.r.t. interrupts (bsc#1114279).\n- perf: fix invalid bit in diagnostic entry (git-fixes).\n- pinctrl: at91-pio4: fix has_config check in atmel_pctl_dt_subnode_to_map() (bsc#1051510).\n- pinctrl: meson: fix pinconf bias disable (bsc#1051510).\n- pinctrl: qcom: spmi-mpp: Fix drive strength setting (bsc#1051510).\n- pinctrl: qcom: spmi-mpp: Fix err handling of pmic_mpp_set_mux (bsc#1051510).\n- pinctrl: spmi-mpp: Fix pmic_mpp_config_get() to be compliant (bsc#1051510).\n- pinctrl: ssbi-gpio: Fix pm8xxx_pin_config_get() to be compliant (bsc#1051510).\n- pipe: match pipe_max_size data type with procfs (git-fixes).\n- platform/x86: acerhdf: Add BIOS entry for Gateway LT31 v1.3307 (bsc#1051510).\n- platform/x86: intel_telemetry: report debugfs failure (bsc#1051510).\n- pNFS: Always free the session slot on error in nfs4_layoutget_handle_exception (git-fixes).\n- pNFS: Do not release the sequence slot until we\u0027ve processed layoutget on open (git-fixes).\n- pNFS: Prevent the layout header refcount going to zero in pnfs_roc() (git-fixes).\n- powerpc/64s/hash: Do not use PPC_INVALIDATE_ERAT on CPUs before POWER9 (bsc#1065729).\n- powerpc/boot: Fix opal console in boot wrapper (bsc#1065729).\n- powerpc/kvm/booke: Fix altivec related build break (bsc#1061840).\n- powerpc/kvm: Switch kvm pmd allocator to custom allocator (bsc#1061840).\n- powerpc/mm: Fix typo in comments (bsc#1065729).\n- powerpc/mm/hugetlb: initialize the pagetable cache correctly for hugetlb (bsc#1091800).\n- powerpc/mm/keys: Move pte bits to correct headers (bsc#1078248).\n- powerpc/mm: Rename find_linux_pte_or_hugepte() (bsc#1061840).\n- powerpc/npu-dma.c: Fix crash after __mmu_notifier_register failure (bsc#1055120).\n- powerpc/perf: Update raw-event code encoding comment for power8 (bsc#1065729).\n- powerpc/powernv: Add indirect levels to it_userspace (bsc#1061840).\n- powerpc/powernv: Do not select the cpufreq governors (bsc#1065729).\n- powerpc/powernv: Fix concurrency issue with npu-\u003emmio_atsd_usage (bsc#1055120).\n- powerpc/powernv: Fix opal_event_shutdown() called with interrupts disabled (bsc#1065729).\n- powerpc/powernv/ioda2: Reduce upper limit for DMA window size (bsc#1055120).\n- powerpc/powernv/ioda: Allocate indirect TCE levels on demand (bsc#1061840).\n- powerpc/powernv/ioda: Finish removing explicit max window size check (bsc#1061840).\n- powerpc/powernv/ioda: Remove explicit max window size check (bsc#1061840).\n- powerpc/powernv: Move TCE manupulation code to its own file (bsc#1061840).\n- powerpc/powernv/npu: Add lock to prevent race in concurrent context init/destroy (bsc#1055120).\n- powerpc/powernv/npu: Do not explicitly flush nmmu tlb (bsc#1055120).\n- powerpc/powernv/npu: Fix deadlock in mmio_invalidate() (bsc#1055120).\n- powerpc/powernv/npu: Prevent overwriting of pnv_npu2_init_contex() callback parameters (bsc#1055120).\n- powerpc/powernv/npu: Use flush_all_mm() instead of flush_tlb_mm() (bsc#1055120).\n- powerpc/powernv/pci: Work around races in PCI bridge enabling (bsc#1055120).\n- powerpc/powernv: Rework TCE level allocation (bsc#1061840).\n- powerpc/pseries: Fix build break for SPLPAR=n and CPU hotplug (bsc#1079524, git-fixes).\n- powerpc/pseries: Fix CONFIG_NUMA=n build (bsc#1067906, git-fixes).\n- powerpc/pseries: Fix DTL buffer registration (bsc#1065729).\n- powerpc/pseries: Fix how we iterate over the DTL entries (bsc#1065729).\n- powerpc/pseries: Fix \u0027OF: ERROR: Bad of_node_put() on /cpus\u0027 during DLPAR (bsc#1113295).\n- powerpc/pseries/mobility: Extend start/stop topology update scope (bsc#1116950, bsc#1115709).\n- powerpc: pseries: remove dlpar_attach_node dependency on full path (bsc#1113295).\n- powerpc/xive: Move definition of ESB bits (bsc#1061840).\n- powerpc/xmon: Add ISA v3.0 SPRs to SPR dump (bsc#1061840).\n- power: supply: max8998-charger: Fix platform data retrieval (bsc#1051510).\n- pppoe: fix reception of frames with no mac header (networking-stable-18_09_24).\n- printk: drop in_nmi check from printk_safe_flush_on_panic() (bsc#1112170).\n- printk: Fix panic caused by passing log_buf_len to command line (bsc#1117168).\n- printk/tracing: Do not trace printk_nmi_enter() (bsc#1112208).\n- provide linux/set_memory.h (bsc#1113295).\n- ptp: fix Spectre v1 vulnerability (bsc#1051510).\n- pwm: lpss: Release runtime-pm reference from the driver\u0027s remove callback (bsc#1051510).\n- pxa168fb: prepare the clock (bsc#1051510).\n- qmi_wwan: Added support for Gemalto\u0027s Cinterion ALASxx WWAN interface (bsc#1051510).\n- qmi_wwan: apply SET_DTR quirk to the SIMCOM shared device ID (bsc#1051510).\n- qmi_wwan: Support dynamic config on Quectel EP06 (bsc#1051510).\n- qrtr: add MODULE_ALIAS macro to smd (bsc#1051510).\n- r8169: Clear RTL_FLAG_TASK_*_PENDING when clearing RTL_FLAG_TASK_ENABLED (bsc#1051510).\n- r8169: fix NAPI handling under high load (networking-stable-18_11_02).\n- race of lockd inetaddr notifiers vs nlmsvc_rqst change (git-fixes).\n- RAID10 BUG_ON in raise_barrier when force is true and conf-\u003ebarrier is 0 (git-fixes).\n- random: rate limit unseeded randomness warnings (git-fixes).\n- rculist: add list_for_each_entry_from_rcu() (bsc#1084760).\n- rculist: Improve documentation for list_for_each_entry_from_rcu() (bsc#1084760).\n- rds: fix two RCU related problems (networking-stable-18_09_18).\n- README: Clean-up trailing whitespace\n- reiserfs: add check to detect corrupted directory entry (bsc#1109818).\n- reiserfs: do not panic on bad directory entries (bsc#1109818).\n- remoteproc: qcom: Fix potential device node leaks (bsc#1051510).\n- rename a hv patch to reduce conflicts in -AZURE\n- reset: hisilicon: fix potential NULL pointer dereference (bsc#1051510).\n- reset: imx7: Fix always writing bits as 0 (bsc#1051510).\n- resource: Include resource end in walk_*() interfaces (bsc#1114279).\n- Revert \u0027ceph: fix dentry leak in splice_dentry()\u0027 (bsc#1114839).\n- Revert \u0027powerpc/64: Fix checksum folding in csum_add()\u0027 (bsc#1065729).\n- Revert \u0027rpm/kernel-binary.spec.in: allow unsupported modules for -extra\u0027\n- Revert \u0027usb: dwc3: gadget: skip Set/Clear Halt when invalid\u0027 (bsc#1051510).\n- rpmsg: Correct support for MODULE_DEVICE_TABLE() (git-fixes).\n- rtnetlink: Disallow FDB configuration for non-Ethernet device (networking-stable-18_11_02).\n- rtnetlink: fix rtnl_fdb_dump() for ndmsg header (networking-stable-18_10_16).\n- rtnl: limit IFLA_NUM_TX_QUEUES and IFLA_NUM_RX_QUEUES to 4096 (networking-stable-18_10_16).\n- s390/cpum_sf: Add data entry sizes to sampling trailer entry (git-fixes).\n- s390/kvm: fix deadlock when killed by oom (bnc#1113501, LTC#172235).\n- s390/mm: Check for valid vma before zapping in gmap_discard (git-fixes).\n- s390/mm: correct allocate_pgste proc_handler callback (git-fixes).\n- s390: qeth_core_mpc: Use ARRAY_SIZE instead of reimplementing its function (bnc#1113501, LTC#172682).\n- s390/qeth: fix HiperSockets sniffer (bnc#1113501, LTC#172953).\n- s390: qeth: Fix potential array overrun in cmd/rc lookup (bnc#1113501, LTC#172682).\n- s390/qeth: handle failure on workqueue creation (git-fixes).\n- s390/qeth: report 25Gbit link speed (bnc#1113501, LTC#172959).\n- s390: revert ELF_ET_DYN_BASE base changes (git-fixes).\n- s390/sclp_tty: enable line mode tty even if there is an ascii console (git-fixes).\n- s390/sthyi: add cache to store hypervisor info (LTC#160415, bsc#1068273).\n- s390/sthyi: add s390_sthyi system call (LTC#160415, bsc#1068273).\n- s390/sthyi: reorganize sthyi implementation (LTC#160415, bsc#1068273).\n- sched/numa: Limit the conditions where scan period is reset ().\n- scsi: core: Allow state transitions from OFFLINE to BLOCKED (bsc#1112246).\n- scsi: core: Allow state transitions from OFFLINE to BLOCKED (bsc#1112246).\n- scsi: core: Avoid that SCSI device removal through sysfs triggers a deadlock (bsc#1114578).\n- scsi: libfc: check fc_frame_payload_get() return value for null (bsc#1104731).\n- scsi: libfc: check fc_frame_payload_get() return value for null (bsc#1104731).\n- scsi: libfc: retry PRLI if we cannot analyse the payload (bsc#1104731).\n- scsi: libfc: retry PRLI if we cannot analyse the payload (bsc#1104731).\n- scsi: libsas: remove irq save in sas_ata_qc_issue() (bsc#1114580).\n- scsi: lpfc: add support to retrieve firmware logs (bsc#1114015).\n- scsi: lpfc: add Trunking support (bsc#1114015).\n- scsi: lpfc: Correct errors accessing fw log (bsc#1114015).\n- scsi: lpfc: Correct invalid EQ doorbell write on if_type=6 (bsc#1114015).\n- scsi: lpfc: Correct irq handling via locks when taking adapter offline (bsc#1114015).\n- scsi: lpfc: Correct LCB RJT handling (bsc#1114015).\n- scsi: lpfc: Correct loss of fc4 type on remote port address change (bsc#1114015).\n- scsi: lpfc: Correct race with abort on completion path (bsc#1114015).\n- scsi: lpfc: Correct soft lockup when running mds diagnostics (bsc#1114015).\n- scsi: lpfc: Correct speeds on SFP swap (bsc#1114015).\n- scsi: lpfc: fcoe: Fix link down issue after 1000+ link bounces (bsc#1114015).\n- scsi: lpfc: Fix errors in log messages (bsc#1114015).\n- scsi: lpfc: Fix GFT_ID and PRLI logic for RSCN (bsc#1114015).\n- scsi: lpfc: Fix LOGO/PLOGI handling when triggerd by ABTS Timeout event (bsc#1114015).\n- scsi: lpfc: Fix lpfc_sli4_read_config return value check (bsc#1114015).\n- scsi: lpfc: Fix odd recovery in duplicate FLOGIs in point-to-point (bsc#1114015).\n- scsi: lpfc: Implement GID_PT on Nameserver query to support faster failover (bsc#1114015).\n- scsi: lpfc: Raise nvme defaults to support a larger io and more connectivity (bsc#1114015).\n- scsi: lpfc: raise sg count for nvme to use available sg resources (bsc#1114015).\n- scsi: lpfc: reduce locking when updating statistics (bsc#1114015).\n- scsi: lpfc: Remove set but not used variable \u0027sgl_size\u0027 (bsc#1114015).\n- scsi: lpfc: Reset link or adapter instead of doing infinite nameserver PLOGI retry (bsc#1114015).\n- scsi: lpfc: Synchronize access to remoteport via rport (bsc#1114015).\n- scsi: lpfc: update driver version to 12.0.0.7 (bsc#1114015).\n- scsi: lpfc: update driver version to 12.0.0.8 (bsc#1114015).\n- scsi: qlogicpti: Fix an error handling path in \u0027qpti_sbus_probe()\u0027 (bsc#1114581).\n- scsi: scsi_transport_srp: Fix shost to rport translation (bsc#1114582).\n- scsi: sg: fix minor memory leak in error path (bsc#1114584).\n- scsi: sysfs: Introduce sysfs_{un,}break_active_protection() (bsc#1114578).\n- scsi: target: Fix fortify_panic kernel exception (bsc#1114576).\n- scsi: target/tcm_loop: Avoid that static checkers warn about dead code (bsc#1114577).\n- scsi: target: tcmu: add read length support (bsc#1097755).\n- sctp: fix race on sctp_id2asoc (networking-stable-18_11_02).\n- sctp: fix strchange_flags name for Stream Change Event (networking-stable-18_11_21).\n- sctp: hold transport before accessing its asoc in sctp_transport_get_next (networking-stable-18_09_11).\n- sctp: not allow to set asoc prsctp_enable by sockopt (networking-stable-18_11_21).\n- sctp: not increase stream\u0027s incnt before sending addstrm_in request (networking-stable-18_11_21).\n- sctp: update dst pmtu with the correct daddr (networking-stable-18_10_16).\n- serial: 8250: Fix clearing FIFOs in RS485 mode again (bsc#1051510).\n- signal: Properly deliver SIGSEGV from x86 uprobes (bsc#1110006).\n- skip LAYOUTRETURN if layout is invalid (git-fixes).\n- smb2: fix missing files in root share directory listing (bsc#1112907).\n- smb2: fix missing files in root share directory listing (bsc#1112907).\n- smb3: fill in statfs fsid and correct namelen (bsc#1112905).\n- smb3: fill in statfs fsid and correct namelen (bsc#1112905).\n- smb3: fix reset of bytes read and written stats (bsc#1112906).\n- smb3: fix reset of bytes read and written stats (bsc#1112906).\n- smb3: on reconnect set PreviousSessionId field (bsc#1112899).\n- smb3: on reconnect set PreviousSessionId field (bsc#1112899).\n- soc: fsl: qbman: qman: avoid allocating from non existing gen_pool (bsc#1051510).\n- soc/tegra: pmc: Fix child-node lookup (bsc#1051510).\n- soc: ti: QMSS: Fix usage of irq_set_affinity_hint (bsc#1051510).\n- sound: do not call skl_init_chip() to reset intel skl soc (bsc#1051510).\n- sound: enable interrupt after dma buffer initialization (bsc#1051510).\n- spi/bcm63xx-hsspi: keep pll clk enabled (bsc#1051510).\n- spi: bcm-qspi: switch back to reading flash using smaller chunks (bsc#1051510).\n- spi: sh-msiof: fix deferred probing (bsc#1051510).\n- staging: comedi: ni_mio_common: protect register write overflow (bsc#1051510).\n- staging:iio:ad7606: fix voltage scales (bsc#1051510).\n- staging: rtl8723bs: Fix the return value in case of error in \u0027rtw_wx_read32()\u0027 (bsc#1051510).\n- staging: vchiq_arm: fix compat VCHIQ_IOC_AWAIT_COMPLETION (bsc#1051510).\n- sunrpc: Allow connect to return EHOSTUNREACH (git-fixes).\n- sunrpc: Do not use stack buffer with scatterlist (git-fixes).\n- sunrpc: Fix rpc_task_begin trace point (git-fixes).\n- sunrpc: Fix tracepoint storage issues with svc_recv and svc_rqst_status (git-fixes).\n- target: fix buffer offset in core_scsi3_pri_read_full_status (bsc1117349).\n- target: log Data-Out timeouts as errors (bsc#1095805).\n- target: log NOP ping timeouts as errors (bsc#1095805).\n- target: split out helper for cxn timeout error stashing (bsc#1095805).\n- target: stash sess_err_stats on Data-Out timeout (bsc#1095805).\n- target: use ISCSI_IQN_LEN in iscsi_target_stat (bsc#1095805).\n- tcp: do not restart timewait timer on rst reception (networking-stable-18_09_11).\n- test_firmware: fix error return getting clobbered (bsc#1051510).\n- tg3: Add PHY reset for 5717/5719/5720 in change ring and flow control paths (networking-stable-18_11_21).\n- thermal: bcm2835: enable hwmon explicitly (bsc#1108468).\n- thermal: da9062/61: Prevent hardware access during system suspend (bsc#1051510).\n- thermal: rcar_thermal: Prevent hardware access during system suspend (bsc#1051510).\n- tipc: do not assume linear buffer when reading ancillary data (networking-stable-18_11_21).\n- tipc: fix a missing rhashtable_walk_exit() (networking-stable-18_09_11).\n- tipc: fix flow control accounting for implicit connect (networking-stable-18_10_16).\n- tools build: fix # escaping in .cmd files for future Make (git-fixes).\n- tools/testing/nvdimm: advertise a write cache for nfit_test (bsc#1112128).\n- tools/testing/nvdimm: allow custom error code injection (bsc#1112128).\n- tools/testing/nvdimm: disable labels for nfit_test.1 (bsc#1112128).\n- tools/testing/nvdimm: enable labels for nfit_test.1 dimms (bsc#1112128).\n- tools/testing/nvdimm: fix missing newline in nfit_test_dimm \u0027handle\u0027 attribute (bsc#1112128).\n- tools/testing/nvdimm: Fix support for emulating controller temperature (bsc#1112128).\n- tools/testing/nvdimm: force nfit_test to depend on instrumented modules (bsc#1112128).\n- tools/testing/nvdimm: improve emulation of smart injection (bsc#1112128).\n- tools/testing/nvdimm: kaddr and pfn can be NULL to -\u003edirect_access() (bsc#1112128).\n- tools/testing/nvdimm: Make DSM failure code injection an override (bsc#1112128).\n- tools/testing/nvdimm: smart alarm/threshold control (bsc#1112128).\n- tools/testing/nvdimm: stricter bounds checking for error injection commands (bsc#1112128).\n- tools/testing/nvdimm: support nfit_test_dimm attributes under nfit_test.1 (bsc#1112128).\n- tools/testing/nvdimm: unit test clear-error commands (bsc#1112128).\n- tools/vm/page-types.c: fix \u0027defined but not used\u0027 warning (bsc#1051510).\n- tools/vm/slabinfo.c: fix sign-compare warning (bsc#1051510).\n- tpm2-cmd: allow more attempts for selftest execution (bsc#1082555).\n- tpm: add retry logic (bsc#1082555).\n- tpm: consolidate the TPM startup code (bsc#1082555).\n- tpm: do not suspend/resume if power stays on (bsc#1082555).\n- tpm: fix intermittent failure with self tests (bsc#1082555).\n- tpm: fix response size validation in tpm_get_random() (bsc#1082555).\n- tpm: move endianness conversion of ordinals to tpm_input_header (bsc#1082555).\n- tpm: move endianness conversion of TPM_TAG_RQU_COMMAND to tpm_input_header (bsc#1082555).\n- tpm: move the delay_msec increment after sleep in tpm_transmit() (bsc#1082555).\n- tpm: React correctly to RC_TESTING from TPM 2.0 self tests (bsc#1082555).\n- tpm: replace msleep() with usleep_range() in TPM 1.2/2.0 generic drivers (bsc#1082555).\n- tpm: Restore functionality to xen vtpm driver (bsc#1082555).\n- tpm: self test failure should not cause suspend to fail (bsc#1082555).\n- tpm: tpm-interface: fix tpm_transmit/_cmd kdoc (bsc#1082555).\n- tpm: Trigger only missing TPM 2.0 self tests (bsc#1082555).\n- tpm: Use dynamic delay to wait for TPM 2.0 self test result (bsc#1082555).\n- tpm: use tpm2_pcr_read() in tpm2_do_selftest() (bsc#1082555).\n- tpm: use tpm_buf functions in tpm2_pcr_read() (bsc#1082555).\n- tracing: Add barrier to trace_printk() buffer nesting modification (bsc#1112219).\n- tracing: Apply trace_clock changes to instance max buffer (bsc#1117188).\n- tracing: Erase irqsoff trace with empty write (bsc#1117189).\n- tty: check name length in tty_find_polling_driver() (bsc#1051510).\n- tty: Do not block on IO when ldisc change is pending (bnc#1105428).\n- tty: fix data race between tty_init_dev and flush of buf (bnc#1105428).\n- tty: Hold tty_ldisc_lock() during tty_reopen() (bnc#1105428).\n- tty/ldsem: Add lockdep asserts for ldisc_sem (bnc#1105428).\n- tty/ldsem: Convert to regular lockdep annotations (bnc#1105428).\n- tty/ldsem: Decrement wait_readers on timeouted down_read() (bnc#1105428).\n- tty/ldsem: Wake up readers after timed out down_write() (bnc#1105428).\n- tty: Simplify tty-\u003ecount math in tty_reopen() (bnc#1105428).\n- tty: wipe buffer (bsc#1051510).\n- tty: wipe buffer if not echoing data (bsc#1051510).\n- tun: Consistently configure generic netdev params via rtnetlink (bsc#1051510).\n- tuntap: fix multiqueue rx (networking-stable-18_11_21).\n- udp4: fix IP_CMSG_CHECKSUM for connected sockets (networking-stable-18_09_24).\n- udp6: add missing checks on edumux packet processing (networking-stable-18_09_24).\n- udp6: fix encap return code for resubmitting (git-fixes).\n- uio: ensure class is registered before devices (bsc#1051510).\n- uio: Fix an Oops on load (bsc#1051510).\n- uio: make symbol \u0027uio_class_registered\u0027 static (bsc#1051510).\n- Update config files. Enabled ENA (Amazon network driver) for arm64.\n- usb: cdc-acm: add entry for Hiro (Conexant) modem (bsc#1051510).\n- usb: chipidea: Prevent unbalanced IRQ disable (bsc#1051510).\n- usb: core: Fix hub port connection events lost (bsc#1051510).\n- usb: dwc2: host: do not delay retries for CONTROL IN transfers (bsc#1114385).\n- usb: dwc2: host: Do not retry NAKed transactions right away (bsc#1114385).\n- usb: dwc3: core: Clean up ULPI device (bsc#1051510).\n- usb: dwc3: gadget: fix ISOC TRB type on unaligned transfers (bsc#1051510).\n- usb: dwc3: gadget: Properly check last unaligned/zero chain TRB (bsc#1051510).\n- usb: gadget: fsl_udc_core: check allocation return value and cleanup on failure (bsc#1051510).\n- usb: gadget: fsl_udc_core: fixup struct_udc_setup documentation (bsc#1051510).\n- usb: gadget: storage: Fix Spectre v1 vulnerability (bsc#1051510).\n- usb: gadget: udc: atmel: handle at91sam9rl PMC (bsc#1051510).\n- usb: gadget: u_ether: fix unsafe list iteration (bsc#1051510).\n- usb: host: ohci-at91: fix request of irq for optional gpio (bsc#1051510).\n- usbip: tools: fix atoi() on non-null terminated string (bsc#1051510).\n- usbip:vudc: BUG kmalloc-2048 (Not tainted): Poison overwritten (bsc#1051510).\n- usb: misc: appledisplay: add 20\u0027 Apple Cinema Display (bsc#1051510).\n- usbnet: smsc95xx: disable carrier check while suspending (bsc#1051510).\n- usb: omap_udc: fix rejection of out transfers when DMA is used (bsc#1051510).\n- usb: quirks: Add delay-init quirk for Corsair K70 LUX RGB (bsc#1051510).\n- usb: quirks: Add no-lpm quirk for Raydium touchscreens (bsc#1051510).\n- usb: remove LPM management from usb_driver_claim_interface() (bsc#1051510).\n- usb: serial: cypress_m8: fix interrupt-out transfer length (bsc#1051510).\n- usb: serial: option: add two-endpoints device-id flag (bsc#1051510).\n- usb: serial: option: drop redundant interface-class test (bsc#1051510).\n- usb: serial: option: improve Quectel EP06 detection (bsc#1051510).\n- usb: xhci: fix timeout for transition from RExit to U0 (bsc#1051510).\n- userfaultfd: hugetlbfs: fix userfaultfd_huge_must_wait() pte access (bsc#1109739).\n- Use upstream version of pci-hyperv patch (35a88a1)\n- VFS: close race between getcwd() and d_move() (git-fixes).\n- VFS: fix freeze protection in mnt_want_write_file() for overlayfs (git-fixes).\n- vhost: Fix Spectre V1 vulnerability (bsc#1051510).\n- vhost/scsi: truncate T10 PI iov_iter to prot_bytes (bsc#1051510).\n- virtio_net: avoid using netif_tx_disable() for serializing tx routine (networking-stable-18_11_02).\n- VMCI: Resource wildcard match fixed (bsc#1051510).\n- w1: omap-hdq: fix missing bus unregister at removal (bsc#1051510).\n- Workaround for mysterious NVMe breakage with i915 CFL (bsc#1111040).\n- x86/acpi: Prevent X2APIC id 0xffffffff from being accounted (bsc#1110006).\n- x86/boot/KASLR: Work around firmware bugs by excluding EFI_BOOT_SERVICES_* and EFI_LOADER_* from KASLR\u0027s choice (bnc#1112878).\n- x86/boot: Move EISA setup to a separate file (bsc#1110006).\n- x86/corruption-check: Fix panic in memory_corruption_check() when boot option without value is provided (bsc#1110006).\n- x86/cpufeature: Add User-Mode Instruction Prevention definitions (bsc#1110006).\n- x86/cpufeatures: Add Intel Total Memory Encryption cpufeature (bsc#1110006).\n- x86/cpu/vmware: Do not trace vmware_sched_clock() (bsc#1114279).\n- x86/eisa: Add missing include (bsc#1110006).\n- x86/EISA: Do not probe EISA bus for Xen PV guests (bsc#1110006).\n- x86/fpu: Remove second definition of fpu in __fpu__restore_sig() (bsc#1110006).\n- x86, hibernate: Fix nosave_regions setup for hibernation (bsc#1110006).\n- x86/irq: implement irq_data_get_effective_affinity_mask() for v4.12 (bsc#1109772).\n- x86/kasan: Panic if there is not enough memory to boot (bsc#1110006).\n- x86/kexec: Correct KEXEC_BACKUP_SRC_END off-by-one error (bsc#1114279).\n- x86/ldt: Remove unused variable in map_ldt_struct() (bsc#1114279).\n- x86/ldt: Split out sanity check in map_ldt_struct() (bsc#1114279).\n- x86/ldt: Unmap PTEs for the slot before freeing LDT pages (bsc#1114279).\n- x86/MCE/AMD: Fix the thresholding machinery initialization order (bsc#1114279).\n- x86/MCE: Fix stack out-of-bounds write in mce-inject.c: Flags_read() (bsc#1110006).\n- x86/MCE: Make correctable error detection look at the Deferred bit (bsc#1114279).\n- x86/mm/pat: Disable preemption around __flush_tlb_all() (bsc#1114279).\n- x86, nfit_test: Add unit test for memcpy_mcsafe() (bsc#1112128).\n- x86/paravirt: Fix some warning messages (bnc#1065600).\n- x86/percpu: Fix this_cpu_read() (bsc#1110006).\n- x86/speculation: Support Enhanced IBRS on future CPUs ().\n- x86/time: Correct the attribute on jiffies\u0027 definition (bsc#1110006).\n- x86/xen: Fix boot loader version reported for PVH guests (bnc#1065600).\n- xen/balloon: Support xend-based toolstack (bnc#1065600).\n- xen/blkfront: avoid NULL blkfront_info dereference on device removal (bsc#1111062).\n- xen: fix race in xen_qlock_wait() (bnc#1107256).\n- xen: fix xen_qlock_wait() (bnc#1107256).\n- xen/gntdev: avoid out of bounds access in case of partial gntdev_mmap() (bnc#1065600).\n- xen: make xen_qlock_wait() nestable (bnc#1107256).\n- xen/netfront: do not bug in case of too many frags (bnc#1104824).\n- xen/pvh: do not try to unplug emulated devices (bnc#1065600).\n- xen/pvh: increase early stack size (bnc#1065600).\n- xen: Remove unnecessary BUG_ON from __unbind_from_irq() (bnc#1065600).\n- xen-swiotlb: fix the check condition for xen_swiotlb_free_coherent (bnc#1065600).\n- xen-swiotlb: use actually allocated size on check physical continuous (bnc#1065600).\n- xen/x86: add diagnostic printout to xen_mc_flush() in case of error (bnc#1116183).\n- xfrm: use complete IPv6 addresses for hash (bsc#1109330).\n- xfs: do not fail when converting shortform attr to long form during ATTR_REPLACE (bsc#1105025).\n- xfs: Fix error code in \u0027xfs_ioc_getbmap()\u0027 (git-fixes).\n- xfs: Properly detect when DAX won\u0027t be used on any device (bsc#1115976).\n- xhci: Add check for invalid byte size error when UAS devices are connected (bsc#1051510).\n- xhci: Do not print a warning when setting link state for disabled ports (bsc#1051510).\n- xhci: Fix leaking USB3 shared_hcd at xhci removal (bsc#1051510).\n- xprtrdma: Do not defer fencing an async RPC\u0027s chunks (git-fixes).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-DESKTOP-12-SP4-2018-2894,SUSE-SLE-HA-12-SP4-2018-2894,SUSE-SLE-SDK-12-SP4-2018-2894,SUSE-SLE-SERVER-12-SP4-2018-2894,SUSE-SLE-WE-12-SP4-2018-2894",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_4069-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:4069-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20184069-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:4069-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-December/004951.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1051510",
        "url": "https://bugzilla.suse.com/1051510"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1055120",
        "url": "https://bugzilla.suse.com/1055120"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1061840",
        "url": "https://bugzilla.suse.com/1061840"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1065600",
        "url": "https://bugzilla.suse.com/1065600"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1065729",
        "url": "https://bugzilla.suse.com/1065729"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1066674",
        "url": "https://bugzilla.suse.com/1066674"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1067906",
        "url": "https://bugzilla.suse.com/1067906"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068273",
        "url": "https://bugzilla.suse.com/1068273"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076830",
        "url": "https://bugzilla.suse.com/1076830"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1078248",
        "url": "https://bugzilla.suse.com/1078248"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1079524",
        "url": "https://bugzilla.suse.com/1079524"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082555",
        "url": "https://bugzilla.suse.com/1082555"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082653",
        "url": "https://bugzilla.suse.com/1082653"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1083647",
        "url": "https://bugzilla.suse.com/1083647"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1084760",
        "url": "https://bugzilla.suse.com/1084760"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1084831",
        "url": "https://bugzilla.suse.com/1084831"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1085535",
        "url": "https://bugzilla.suse.com/1085535"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1086196",
        "url": "https://bugzilla.suse.com/1086196"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1089350",
        "url": "https://bugzilla.suse.com/1089350"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1091800",
        "url": "https://bugzilla.suse.com/1091800"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1094825",
        "url": "https://bugzilla.suse.com/1094825"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1095805",
        "url": "https://bugzilla.suse.com/1095805"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1097755",
        "url": "https://bugzilla.suse.com/1097755"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1100132",
        "url": "https://bugzilla.suse.com/1100132"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1103356",
        "url": "https://bugzilla.suse.com/1103356"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1103925",
        "url": "https://bugzilla.suse.com/1103925"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1104124",
        "url": "https://bugzilla.suse.com/1104124"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1104731",
        "url": "https://bugzilla.suse.com/1104731"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1104824",
        "url": "https://bugzilla.suse.com/1104824"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1105025",
        "url": "https://bugzilla.suse.com/1105025"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1105428",
        "url": "https://bugzilla.suse.com/1105428"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1106105",
        "url": "https://bugzilla.suse.com/1106105"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1106110",
        "url": "https://bugzilla.suse.com/1106110"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1106237",
        "url": "https://bugzilla.suse.com/1106237"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1106240",
        "url": "https://bugzilla.suse.com/1106240"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1107256",
        "url": "https://bugzilla.suse.com/1107256"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1107385",
        "url": "https://bugzilla.suse.com/1107385"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1107866",
        "url": "https://bugzilla.suse.com/1107866"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1108377",
        "url": "https://bugzilla.suse.com/1108377"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1108468",
        "url": "https://bugzilla.suse.com/1108468"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109330",
        "url": "https://bugzilla.suse.com/1109330"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109739",
        "url": "https://bugzilla.suse.com/1109739"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109772",
        "url": "https://bugzilla.suse.com/1109772"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109806",
        "url": "https://bugzilla.suse.com/1109806"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109818",
        "url": "https://bugzilla.suse.com/1109818"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109907",
        "url": "https://bugzilla.suse.com/1109907"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109911",
        "url": "https://bugzilla.suse.com/1109911"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109915",
        "url": "https://bugzilla.suse.com/1109915"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109919",
        "url": "https://bugzilla.suse.com/1109919"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109951",
        "url": "https://bugzilla.suse.com/1109951"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1110006",
        "url": "https://bugzilla.suse.com/1110006"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1110998",
        "url": "https://bugzilla.suse.com/1110998"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111040",
        "url": "https://bugzilla.suse.com/1111040"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111062",
        "url": "https://bugzilla.suse.com/1111062"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111174",
        "url": "https://bugzilla.suse.com/1111174"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111506",
        "url": "https://bugzilla.suse.com/1111506"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111696",
        "url": "https://bugzilla.suse.com/1111696"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111809",
        "url": "https://bugzilla.suse.com/1111809"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111921",
        "url": "https://bugzilla.suse.com/1111921"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111983",
        "url": "https://bugzilla.suse.com/1111983"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112128",
        "url": "https://bugzilla.suse.com/1112128"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112170",
        "url": "https://bugzilla.suse.com/1112170"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112173",
        "url": "https://bugzilla.suse.com/1112173"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112208",
        "url": "https://bugzilla.suse.com/1112208"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112219",
        "url": "https://bugzilla.suse.com/1112219"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112221",
        "url": "https://bugzilla.suse.com/1112221"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112246",
        "url": "https://bugzilla.suse.com/1112246"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112372",
        "url": "https://bugzilla.suse.com/1112372"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112514",
        "url": "https://bugzilla.suse.com/1112514"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112554",
        "url": "https://bugzilla.suse.com/1112554"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112708",
        "url": "https://bugzilla.suse.com/1112708"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112710",
        "url": "https://bugzilla.suse.com/1112710"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112711",
        "url": "https://bugzilla.suse.com/1112711"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112712",
        "url": "https://bugzilla.suse.com/1112712"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112713",
        "url": "https://bugzilla.suse.com/1112713"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112731",
        "url": "https://bugzilla.suse.com/1112731"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112732",
        "url": "https://bugzilla.suse.com/1112732"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112733",
        "url": "https://bugzilla.suse.com/1112733"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112734",
        "url": "https://bugzilla.suse.com/1112734"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112735",
        "url": "https://bugzilla.suse.com/1112735"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112736",
        "url": "https://bugzilla.suse.com/1112736"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112738",
        "url": "https://bugzilla.suse.com/1112738"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112739",
        "url": "https://bugzilla.suse.com/1112739"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112740",
        "url": "https://bugzilla.suse.com/1112740"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112741",
        "url": "https://bugzilla.suse.com/1112741"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112743",
        "url": "https://bugzilla.suse.com/1112743"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112745",
        "url": "https://bugzilla.suse.com/1112745"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112746",
        "url": "https://bugzilla.suse.com/1112746"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112878",
        "url": "https://bugzilla.suse.com/1112878"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112894",
        "url": "https://bugzilla.suse.com/1112894"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112899",
        "url": "https://bugzilla.suse.com/1112899"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112902",
        "url": "https://bugzilla.suse.com/1112902"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112903",
        "url": "https://bugzilla.suse.com/1112903"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112905",
        "url": "https://bugzilla.suse.com/1112905"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112906",
        "url": "https://bugzilla.suse.com/1112906"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112907",
        "url": "https://bugzilla.suse.com/1112907"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112963",
        "url": "https://bugzilla.suse.com/1112963"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113257",
        "url": "https://bugzilla.suse.com/1113257"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113284",
        "url": "https://bugzilla.suse.com/1113284"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113295",
        "url": "https://bugzilla.suse.com/1113295"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113408",
        "url": "https://bugzilla.suse.com/1113408"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113412",
        "url": "https://bugzilla.suse.com/1113412"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113501",
        "url": "https://bugzilla.suse.com/1113501"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113667",
        "url": "https://bugzilla.suse.com/1113667"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113677",
        "url": "https://bugzilla.suse.com/1113677"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113722",
        "url": "https://bugzilla.suse.com/1113722"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113751",
        "url": "https://bugzilla.suse.com/1113751"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113769",
        "url": "https://bugzilla.suse.com/1113769"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113780",
        "url": "https://bugzilla.suse.com/1113780"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113972",
        "url": "https://bugzilla.suse.com/1113972"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114015",
        "url": "https://bugzilla.suse.com/1114015"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114178",
        "url": "https://bugzilla.suse.com/1114178"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114279",
        "url": "https://bugzilla.suse.com/1114279"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114385",
        "url": "https://bugzilla.suse.com/1114385"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114576",
        "url": "https://bugzilla.suse.com/1114576"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114577",
        "url": "https://bugzilla.suse.com/1114577"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114578",
        "url": "https://bugzilla.suse.com/1114578"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114579",
        "url": "https://bugzilla.suse.com/1114579"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114580",
        "url": "https://bugzilla.suse.com/1114580"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114581",
        "url": "https://bugzilla.suse.com/1114581"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114582",
        "url": "https://bugzilla.suse.com/1114582"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114583",
        "url": "https://bugzilla.suse.com/1114583"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114584",
        "url": "https://bugzilla.suse.com/1114584"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114585",
        "url": "https://bugzilla.suse.com/1114585"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114839",
        "url": "https://bugzilla.suse.com/1114839"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115074",
        "url": "https://bugzilla.suse.com/1115074"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115269",
        "url": "https://bugzilla.suse.com/1115269"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115431",
        "url": "https://bugzilla.suse.com/1115431"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115433",
        "url": "https://bugzilla.suse.com/1115433"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115440",
        "url": "https://bugzilla.suse.com/1115440"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115567",
        "url": "https://bugzilla.suse.com/1115567"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115709",
        "url": "https://bugzilla.suse.com/1115709"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115976",
        "url": "https://bugzilla.suse.com/1115976"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116183",
        "url": "https://bugzilla.suse.com/1116183"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116692",
        "url": "https://bugzilla.suse.com/1116692"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116693",
        "url": "https://bugzilla.suse.com/1116693"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116698",
        "url": "https://bugzilla.suse.com/1116698"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116699",
        "url": "https://bugzilla.suse.com/1116699"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116700",
        "url": "https://bugzilla.suse.com/1116700"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116701",
        "url": "https://bugzilla.suse.com/1116701"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116862",
        "url": "https://bugzilla.suse.com/1116862"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116863",
        "url": "https://bugzilla.suse.com/1116863"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116876",
        "url": "https://bugzilla.suse.com/1116876"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116877",
        "url": "https://bugzilla.suse.com/1116877"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116878",
        "url": "https://bugzilla.suse.com/1116878"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116891",
        "url": "https://bugzilla.suse.com/1116891"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116895",
        "url": "https://bugzilla.suse.com/1116895"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116899",
        "url": "https://bugzilla.suse.com/1116899"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116950",
        "url": "https://bugzilla.suse.com/1116950"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117168",
        "url": "https://bugzilla.suse.com/1117168"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117172",
        "url": "https://bugzilla.suse.com/1117172"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117174",
        "url": "https://bugzilla.suse.com/1117174"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117181",
        "url": "https://bugzilla.suse.com/1117181"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117184",
        "url": "https://bugzilla.suse.com/1117184"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117188",
        "url": "https://bugzilla.suse.com/1117188"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117189",
        "url": "https://bugzilla.suse.com/1117189"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117349",
        "url": "https://bugzilla.suse.com/1117349"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117561",
        "url": "https://bugzilla.suse.com/1117561"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117788",
        "url": "https://bugzilla.suse.com/1117788"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117789",
        "url": "https://bugzilla.suse.com/1117789"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117790",
        "url": "https://bugzilla.suse.com/1117790"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117791",
        "url": "https://bugzilla.suse.com/1117791"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117792",
        "url": "https://bugzilla.suse.com/1117792"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117794",
        "url": "https://bugzilla.suse.com/1117794"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117795",
        "url": "https://bugzilla.suse.com/1117795"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117796",
        "url": "https://bugzilla.suse.com/1117796"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117798",
        "url": "https://bugzilla.suse.com/1117798"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117799",
        "url": "https://bugzilla.suse.com/1117799"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117801",
        "url": "https://bugzilla.suse.com/1117801"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117802",
        "url": "https://bugzilla.suse.com/1117802"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117803",
        "url": "https://bugzilla.suse.com/1117803"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117804",
        "url": "https://bugzilla.suse.com/1117804"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117805",
        "url": "https://bugzilla.suse.com/1117805"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117806",
        "url": "https://bugzilla.suse.com/1117806"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117807",
        "url": "https://bugzilla.suse.com/1117807"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117808",
        "url": "https://bugzilla.suse.com/1117808"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117815",
        "url": "https://bugzilla.suse.com/1117815"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117816",
        "url": "https://bugzilla.suse.com/1117816"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117817",
        "url": "https://bugzilla.suse.com/1117817"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117818",
        "url": "https://bugzilla.suse.com/1117818"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117819",
        "url": "https://bugzilla.suse.com/1117819"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117820",
        "url": "https://bugzilla.suse.com/1117820"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117821",
        "url": "https://bugzilla.suse.com/1117821"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117822",
        "url": "https://bugzilla.suse.com/1117822"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118102",
        "url": "https://bugzilla.suse.com/1118102"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118136",
        "url": "https://bugzilla.suse.com/1118136"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118137",
        "url": "https://bugzilla.suse.com/1118137"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118138",
        "url": "https://bugzilla.suse.com/1118138"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118140",
        "url": "https://bugzilla.suse.com/1118140"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118152",
        "url": "https://bugzilla.suse.com/1118152"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118316",
        "url": "https://bugzilla.suse.com/1118316"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16533 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16533/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-18224 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-18224/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18281 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18281/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18386 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18386/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18445 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18445/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18710 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18710/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-19824 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-19824/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2018-12-11T08:24:31Z",
      "generator": {
        "date": "2018-12-11T08:24:31Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:4069-1",
      "initial_release_date": "2018-12-11T08:24:31Z",
      "revision_history": [
        {
          "date": "2018-12-11T08:24:31Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.12.14-95.3.2.aarch64",
                "product": {
                  "name": "kernel-obs-build-4.12.14-95.3.2.aarch64",
                  "product_id": "kernel-obs-build-4.12.14-95.3.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-4.12.14-95.3.1.aarch64",
                "product": {
                  "name": "kernel-default-4.12.14-95.3.1.aarch64",
                  "product_id": "kernel-default-4.12.14-95.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.12.14-95.3.1.aarch64",
                "product": {
                  "name": "kernel-default-base-4.12.14-95.3.1.aarch64",
                  "product_id": "kernel-default-base-4.12.14-95.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.12.14-95.3.1.aarch64",
                "product": {
                  "name": "kernel-default-devel-4.12.14-95.3.1.aarch64",
                  "product_id": "kernel-default-devel-4.12.14-95.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.12.14-95.3.1.aarch64",
                "product": {
                  "name": "kernel-syms-4.12.14-95.3.1.aarch64",
                  "product_id": "kernel-syms-4.12.14-95.3.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-4.12.14-95.3.1.noarch",
                "product": {
                  "name": "kernel-devel-4.12.14-95.3.1.noarch",
                  "product_id": "kernel-devel-4.12.14-95.3.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-4.12.14-95.3.1.noarch",
                "product": {
                  "name": "kernel-macros-4.12.14-95.3.1.noarch",
                  "product_id": "kernel-macros-4.12.14-95.3.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-4.12.14-95.3.1.noarch",
                "product": {
                  "name": "kernel-source-4.12.14-95.3.1.noarch",
                  "product_id": "kernel-source-4.12.14-95.3.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-docs-4.12.14-95.3.1.noarch",
                "product": {
                  "name": "kernel-docs-4.12.14-95.3.1.noarch",
                  "product_id": "kernel-docs-4.12.14-95.3.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
                "product": {
                  "name": "cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
                  "product_id": "cluster-md-kmp-default-4.12.14-95.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.12.14-95.3.1.ppc64le",
                "product": {
                  "name": "dlm-kmp-default-4.12.14-95.3.1.ppc64le",
                  "product_id": "dlm-kmp-default-4.12.14-95.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
                "product": {
                  "name": "gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
                  "product_id": "gfs2-kmp-default-4.12.14-95.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
                "product": {
                  "name": "ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
                  "product_id": "ocfs2-kmp-default-4.12.14-95.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.12.14-95.3.2.ppc64le",
                "product": {
                  "name": "kernel-obs-build-4.12.14-95.3.2.ppc64le",
                  "product_id": "kernel-obs-build-4.12.14-95.3.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-4.12.14-95.3.1.ppc64le",
                "product": {
                  "name": "kernel-default-4.12.14-95.3.1.ppc64le",
                  "product_id": "kernel-default-4.12.14-95.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.12.14-95.3.1.ppc64le",
                "product": {
                  "name": "kernel-default-base-4.12.14-95.3.1.ppc64le",
                  "product_id": "kernel-default-base-4.12.14-95.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.12.14-95.3.1.ppc64le",
                "product": {
                  "name": "kernel-default-devel-4.12.14-95.3.1.ppc64le",
                  "product_id": "kernel-default-devel-4.12.14-95.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.12.14-95.3.1.ppc64le",
                "product": {
                  "name": "kernel-syms-4.12.14-95.3.1.ppc64le",
                  "product_id": "kernel-syms-4.12.14-95.3.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.12.14-95.3.1.s390x",
                "product": {
                  "name": "cluster-md-kmp-default-4.12.14-95.3.1.s390x",
                  "product_id": "cluster-md-kmp-default-4.12.14-95.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.12.14-95.3.1.s390x",
                "product": {
                  "name": "dlm-kmp-default-4.12.14-95.3.1.s390x",
                  "product_id": "dlm-kmp-default-4.12.14-95.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.12.14-95.3.1.s390x",
                "product": {
                  "name": "gfs2-kmp-default-4.12.14-95.3.1.s390x",
                  "product_id": "gfs2-kmp-default-4.12.14-95.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.12.14-95.3.1.s390x",
                "product": {
                  "name": "ocfs2-kmp-default-4.12.14-95.3.1.s390x",
                  "product_id": "ocfs2-kmp-default-4.12.14-95.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.12.14-95.3.2.s390x",
                "product": {
                  "name": "kernel-obs-build-4.12.14-95.3.2.s390x",
                  "product_id": "kernel-obs-build-4.12.14-95.3.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-4.12.14-95.3.1.s390x",
                "product": {
                  "name": "kernel-default-4.12.14-95.3.1.s390x",
                  "product_id": "kernel-default-4.12.14-95.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.12.14-95.3.1.s390x",
                "product": {
                  "name": "kernel-default-base-4.12.14-95.3.1.s390x",
                  "product_id": "kernel-default-base-4.12.14-95.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.12.14-95.3.1.s390x",
                "product": {
                  "name": "kernel-default-devel-4.12.14-95.3.1.s390x",
                  "product_id": "kernel-default-devel-4.12.14-95.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-man-4.12.14-95.3.1.s390x",
                "product": {
                  "name": "kernel-default-man-4.12.14-95.3.1.s390x",
                  "product_id": "kernel-default-man-4.12.14-95.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.12.14-95.3.1.s390x",
                "product": {
                  "name": "kernel-syms-4.12.14-95.3.1.s390x",
                  "product_id": "kernel-syms-4.12.14-95.3.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-4.12.14-95.3.1.x86_64",
                "product": {
                  "name": "kernel-default-4.12.14-95.3.1.x86_64",
                  "product_id": "kernel-default-4.12.14-95.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.12.14-95.3.1.x86_64",
                "product": {
                  "name": "kernel-default-devel-4.12.14-95.3.1.x86_64",
                  "product_id": "kernel-default-devel-4.12.14-95.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-extra-4.12.14-95.3.1.x86_64",
                "product": {
                  "name": "kernel-default-extra-4.12.14-95.3.1.x86_64",
                  "product_id": "kernel-default-extra-4.12.14-95.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.12.14-95.3.1.x86_64",
                "product": {
                  "name": "kernel-syms-4.12.14-95.3.1.x86_64",
                  "product_id": "kernel-syms-4.12.14-95.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
                "product": {
                  "name": "cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
                  "product_id": "cluster-md-kmp-default-4.12.14-95.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.12.14-95.3.1.x86_64",
                "product": {
                  "name": "dlm-kmp-default-4.12.14-95.3.1.x86_64",
                  "product_id": "dlm-kmp-default-4.12.14-95.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.12.14-95.3.1.x86_64",
                "product": {
                  "name": "gfs2-kmp-default-4.12.14-95.3.1.x86_64",
                  "product_id": "gfs2-kmp-default-4.12.14-95.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
                "product": {
                  "name": "ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
                  "product_id": "ocfs2-kmp-default-4.12.14-95.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.12.14-95.3.2.x86_64",
                "product": {
                  "name": "kernel-obs-build-4.12.14-95.3.2.x86_64",
                  "product_id": "kernel-obs-build-4.12.14-95.3.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.12.14-95.3.1.x86_64",
                "product": {
                  "name": "kernel-default-base-4.12.14-95.3.1.x86_64",
                  "product_id": "kernel-default-base-4.12.14-95.3.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Desktop 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Desktop 12 SP4",
                  "product_id": "SUSE Linux Enterprise Desktop 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sled:12:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Availability Extension 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise High Availability Extension 12 SP4",
                  "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-ha:12:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
                  "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-sdk:12:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP4",
                  "product_id": "SUSE Linux Enterprise Server 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:12:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Workstation Extension 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Workstation Extension 12 SP4",
                  "product_id": "SUSE Linux Enterprise Workstation Extension 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-we:12:sp4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-default-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-default-devel-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-extra-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-default-extra-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.12.14-95.3.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP4",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch"
        },
        "product_reference": "kernel-devel-4.12.14-95.3.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.12.14-95.3.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP4",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch"
        },
        "product_reference": "kernel-macros-4.12.14-95.3.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.12.14-95.3.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP4",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch"
        },
        "product_reference": "kernel-source-4.12.14-95.3.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-syms-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x"
        },
        "product_reference": "cluster-md-kmp-default-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "dlm-kmp-default-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x"
        },
        "product_reference": "dlm-kmp-default-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "dlm-kmp-default-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x"
        },
        "product_reference": "gfs2-kmp-default-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "gfs2-kmp-default-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x"
        },
        "product_reference": "ocfs2-kmp-default-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-docs-4.12.14-95.3.1.noarch as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch"
        },
        "product_reference": "kernel-docs-4.12.14-95.3.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.12.14-95.3.2.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64"
        },
        "product_reference": "kernel-obs-build-4.12.14-95.3.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.12.14-95.3.2.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le"
        },
        "product_reference": "kernel-obs-build-4.12.14-95.3.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.12.14-95.3.2.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x"
        },
        "product_reference": "kernel-obs-build-4.12.14-95.3.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.12.14-95.3.2.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64"
        },
        "product_reference": "kernel-obs-build-4.12.14-95.3.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.12.14-95.3.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64"
        },
        "product_reference": "kernel-default-4.12.14-95.3.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "kernel-default-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x"
        },
        "product_reference": "kernel-default-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-default-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.12.14-95.3.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64"
        },
        "product_reference": "kernel-default-base-4.12.14-95.3.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "kernel-default-base-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x"
        },
        "product_reference": "kernel-default-base-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-default-base-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.12.14-95.3.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64"
        },
        "product_reference": "kernel-default-devel-4.12.14-95.3.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "kernel-default-devel-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x"
        },
        "product_reference": "kernel-default-devel-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-default-devel-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-man-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x"
        },
        "product_reference": "kernel-default-man-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.12.14-95.3.1.noarch as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch"
        },
        "product_reference": "kernel-devel-4.12.14-95.3.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.12.14-95.3.1.noarch as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch"
        },
        "product_reference": "kernel-macros-4.12.14-95.3.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.12.14-95.3.1.noarch as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch"
        },
        "product_reference": "kernel-source-4.12.14-95.3.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.12.14-95.3.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64"
        },
        "product_reference": "kernel-syms-4.12.14-95.3.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "kernel-syms-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x"
        },
        "product_reference": "kernel-syms-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
          "product_id": "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-syms-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.12.14-95.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64"
        },
        "product_reference": "kernel-default-4.12.14-95.3.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "kernel-default-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x"
        },
        "product_reference": "kernel-default-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-default-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.12.14-95.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64"
        },
        "product_reference": "kernel-default-base-4.12.14-95.3.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "kernel-default-base-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x"
        },
        "product_reference": "kernel-default-base-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-default-base-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.12.14-95.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64"
        },
        "product_reference": "kernel-default-devel-4.12.14-95.3.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "kernel-default-devel-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x"
        },
        "product_reference": "kernel-default-devel-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-default-devel-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-man-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x"
        },
        "product_reference": "kernel-default-man-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.12.14-95.3.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch"
        },
        "product_reference": "kernel-devel-4.12.14-95.3.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.12.14-95.3.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch"
        },
        "product_reference": "kernel-macros-4.12.14-95.3.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.12.14-95.3.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch"
        },
        "product_reference": "kernel-source-4.12.14-95.3.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.12.14-95.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64"
        },
        "product_reference": "kernel-syms-4.12.14-95.3.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.12.14-95.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le"
        },
        "product_reference": "kernel-syms-4.12.14-95.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.12.14-95.3.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x"
        },
        "product_reference": "kernel-syms-4.12.14-95.3.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-syms-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-extra-4.12.14-95.3.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
        },
        "product_reference": "kernel-default-extra-4.12.14-95.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-16533",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16533"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The usbhid_parse function in drivers/hid/usbhid/hid-core.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16533",
          "url": "https://www.suse.com/security/cve/CVE-2017-16533"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066674 for CVE-2017-16533",
          "url": "https://bugzilla.suse.com/1066674"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16533",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16533",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:31Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16533"
    },
    {
      "cve": "CVE-2017-18224",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-18224"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 4.15, fs/ocfs2/aops.c omits use of a semaphore and consequently has a race condition for access to the extent tree during read operations in DIRECT mode, which allows local users to cause a denial of service (BUG) by modifying a certain e_cpos field.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-18224",
          "url": "https://www.suse.com/security/cve/CVE-2017-18224"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1084831 for CVE-2017-18224",
          "url": "https://bugzilla.suse.com/1084831"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:31Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-18224"
    },
    {
      "cve": "CVE-2018-18281",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18281"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Since Linux kernel version 3.2, the mremap() syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate() removes entries from the pagetables of a task that is in the middle of mremap(), a stale TLB entry can remain for a short time that permits access to a physical page after it has been released back to the page allocator and reused. This is fixed in the following kernel versions: 4.9.135, 4.14.78, 4.18.16, 4.19.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18281",
          "url": "https://www.suse.com/security/cve/CVE-2018-18281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1113769 for CVE-2018-18281",
          "url": "https://bugzilla.suse.com/1113769"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:31Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-18281"
    },
    {
      "cve": "CVE-2018-18386",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18386"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18386",
          "url": "https://www.suse.com/security/cve/CVE-2018-18386"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1094825 for CVE-2018-18386",
          "url": "https://bugzilla.suse.com/1094825"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1112039 for CVE-2018-18386",
          "url": "https://bugzilla.suse.com/1112039"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:31Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-18386"
    },
    {
      "cve": "CVE-2018-18445",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18445"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 4.14.x, 4.15.x, 4.16.x, 4.17.x, and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because adjust_scalar_min_max_vals in kernel/bpf/verifier.c mishandles 32-bit right shifts.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18445",
          "url": "https://www.suse.com/security/cve/CVE-2018-18445"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1112372 for CVE-2018-18445",
          "url": "https://bugzilla.suse.com/1112372"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:31Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-18445"
    },
    {
      "cve": "CVE-2018-18710",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18710"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 4.19. An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940 and CVE-2018-16658.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18710",
          "url": "https://www.suse.com/security/cve/CVE-2018-18710"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1113751 for CVE-2018-18710",
          "url": "https://bugzilla.suse.com/1113751"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:31Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-18710"
    },
    {
      "cve": "CVE-2018-19824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-19824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.19.6, a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_probe in sound/usb/card.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-19824",
          "url": "https://www.suse.com/security/cve/CVE-2018-19824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118152 for CVE-2018-19824",
          "url": "https://bugzilla.suse.com/1118152"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-man-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.3.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-docs-4.12.14-95.3.1.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:kernel-obs-build-4.12.14-95.3.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP4:kernel-default-extra-4.12.14-95.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:31Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-19824"
    }
  ]
}

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThe SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2018-19824: A local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_probe in sound/usb/card.c (bnc#1118152).\n- CVE-2018-18281: The mremap() syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate() removed entries from the pagetables of a task that is in the middle of mremap(), a stale TLB entry could remain for a short time that permits access to a physical page after it has been released back to the page allocator and reused. (bnc#1113769).\n- CVE-2018-18710: An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940 and CVE-2018-16658 (bnc#1113751).\n- CVE-2018-18445: Faulty computation of numeric bounds in the BPF verifier permitted out-of-bounds memory accesses because adjust_scalar_min_max_vals in kernel/bpf/verifier.c mishandled 32-bit right shifts (bnc#1112372).\n- CVE-2018-18386: drivers/tty/n_tty.c allowed local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ (bnc#1094825).\n- CVE-2017-18224: fs/ocfs2/aops.c omitted use of a semaphore and consequently had a race condition for access to the extent tree during read operations in DIRECT mode, which allowed local users to cause a denial of service (BUG) by modifying a certain e_cpos field (bnc#1084831).\n- CVE-2017-16533: The usbhid_parse function in drivers/hid/usbhid/hid-core.c allowed local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device (bnc#1066674).\n\nThe following non-security bugs were fixed:\n\n- ACPI/APEI: Handle GSIV and GPIO notification types (bsc#1115567).\n- ACPICA: Tables: Add WSMT support (bsc#1089350).\n- ACPI/IORT: Fix iort_get_platform_device_domain() uninitialized pointer value (bsc#1051510).\n- ACPI / LPSS: Add alternative ACPI HIDs for Cherry Trail DMA controllers (bsc#1051510).\n- ACPI, nfit: Fix ARS overflow continuation (bsc#1116895).\n- ACPI, nfit: Prefer _DSM over _LSR for namespace label reads (bsc#1112128).\n- ACPI/nfit, x86/mce: Handle only uncorrectable machine checks (bsc#1114279).\n- ACPI/nfit, x86/mce: Validate a MCE\u0027s address before using it (bsc#1114279).\n- ACPI / platform: Add SMB0001 HID to forbidden_id_list (bsc#1051510).\n- ACPI / processor: Fix the return value of acpi_processor_ids_walk() (bsc#1051510).\n- ACPI / watchdog: Prefer iTCO_wdt always when WDAT table uses RTC SRAM (bsc#1051510).\n- act_ife: fix a potential use-after-free (networking-stable-18_09_11).\n- Add the cherry-picked dup id for PCI dwc fix\n- Add version information to KLP_SYMBOLS file\n- ALSA: ac97: Fix incorrect bit shift at AC97-SPSA control write (bsc#1051510).\n- ALSA: ca0106: Disable IZD on SB0570 DAC to fix audio pops (bsc#1051510).\n- ALSA: control: Fix race between adding and removing a user element (bsc#1051510).\n- ALSA: hda: Add 2 more models to the power_save blacklist (bsc#1051510).\n- ALSA: hda: Add ASRock N68C-S UCC the power_save blacklist (bsc#1051510).\n- ALSA: hda - Add mic quirk for the Lenovo G50-30 (17aa:3905) (bsc#1051510).\n- ALSA: hda - Add quirk for ASUS G751 laptop (bsc#1051510).\n- ALSA: hda/ca0132 - Call pci_iounmap() instead of iounmap() (bsc#1051510).\n- ALSA: hda - Fix headphone pin config for ASUS G751 (bsc#1051510).\n- ALSA: hda: fix unused variable warning (bsc#1051510).\n- ALSA: hda/realtek - Add auto-mute quirk for HP Spectre x360 laptop (bsc#1051510).\n- ALSA: hda/realtek - Add GPIO data update helper (bsc#1051510).\n- ALSA: hda/realtek - Allow skipping spec-\u003einit_amp detection (bsc#1051510).\n- ALSA: hda/realtek - fix headset mic detection for MSI MS-B171 (bsc#1051510).\n- ALSA: hda/realtek - Fix HP Headset Mic can\u0027t record (bsc#1051510).\n- ALSA: hda/realtek - fix the pop noise on headphone for lenovo laptops (bsc#1051510).\n- ALSA: hda/realtek - Fix the problem of the front MIC on the Lenovo M715 (bsc#1051510).\n- ALSA: hda/realtek - Manage GPIO bits commonly (bsc#1051510).\n- ALSA: hda/realtek - Simplify Dell XPS13 GPIO handling (bsc#1051510).\n- ALSA: hda/realtek - Support ALC300 (bsc#1051510).\n- ALSA: oss: Use kvzalloc() for local buffer allocations (bsc#1051510).\n- ALSA: sparc: Fix invalid snd_free_pages() at error path (bsc#1051510).\n- ALSA: usb-audio: Add vendor and product name for Dell WD19 Dock (bsc#1051510).\n- ALSA: usb-audio: update quirk for B\u0026W PX to remove microphone (bsc#1051510).\n- ALSA: wss: Fix invalid snd_free_pages() at error path (bsc#1051510).\n- amd/iommu: Fix Guest Virtual APIC Log Tail Address Register (bsc#1106105).\n- arm64: KVM: Move CPU ID reg trap setup off the world switch path (bsc#1110998).\n- arm64: KVM: Sanitize PSTATE.M when being set from userspace (bsc#1110998).\n- arm64: KVM: Tighten guest core register access from userspace (bsc#1110998).\n- ARM: dts: at91: add new compatibility string for macb on sama5d3 (bsc#1051510).\n- ASoC: dwc: Added a quirk DW_I2S_QUIRK_16BIT_IDX_OVERRIDE to dwc (bsc#1085535)\n- ASoC: Intel: cht_bsw_max98090: add support for Baytrail (bsc#1051510).\n- ASoC: intel: cht_bsw_max98090_ti: Add quirk for boards using pmc_plt_clk_0 (bsc#1051510).\n- ASoC: intel: skylake: Add missing break in skl_tplg_get_token() (bsc#1051510).\n- ASoC: Intel: Skylake: Reset the controller in probe (bsc#1051510).\n- ASoC: rsnd: adg: care clock-frequency size (bsc#1051510).\n- ASoC: rsnd: do not fallback to PIO mode when -EPROBE_DEFER (bsc#1051510).\n- ASoC: rt5514: Fix the issue of the delay volume applied again (bsc#1051510).\n- ASoC: sigmadsp: safeload should not have lower byte limit (bsc#1051510).\n- ASoC: sun8i-codec: fix crash on module removal (bsc#1051510).\n- ASoC: wm8804: Add ACPI support (bsc#1051510).\n- ata: Fix racy link clearance (bsc#1107866).\n- ataflop: fix error handling during setup (bsc#1051510).\n- ath10k: fix kernel panic issue during pci probe (bsc#1051510).\n- ath10k: fix scan crash due to incorrect length calculation (bsc#1051510).\n- ath10k: fix use-after-free in ath10k_wmi_cmd_send_nowait (bsc#1051510).\n- ath10k: schedule hardware restart if WMI command times out (bsc#1051510).\n- autofs: fix autofs_sbi() does not check super block type (git-fixes).\n- autofs: fix slab out of bounds read in getname_kernel() (git-fixes).\n- autofs: mount point create should honour passed in mode (git-fixes).\n- badblocks: fix wrong return value in badblocks_set if badblocks are disabled (git-fixes).\n- batman-adv: Avoid probe ELP information leak (bsc#1051510).\n- batman-adv: Expand merged fragment buffer for full packet (bsc#1051510).\n- batman-adv: fix backbone_gw refcount on queue_work() failure (bsc#1051510).\n- batman-adv: fix hardif_neigh refcount on queue_work() failure (bsc#1051510).\n- batman-adv: Use explicit tvlv padding for ELP packets (bsc#1051510).\n- bdi: Fix another oops in wb_workfn() (bsc#1112746).\n- bdi: Preserve kabi when adding cgwb_release_mutex (bsc#1112746).\n- bitops: protect variables in bit_clear_unless() macro (bsc#1051510).\n- bitops: protect variables in set_mask_bits() macro (bsc#1051510).\n- Blacklist commit that modifies Scsi_Host/kabi (bsc#1114579)\n- Blacklist sd_zbc patch that is too invasive (bsc#1114583)\n- Blacklist virtio patch that uses bio_integrity_bytes() (bsc#1114585)\n- blk-mq: I/O and timer unplugs are inverted in blktrace (bsc#1112713).\n- block, bfq: fix wrong init of saved start time for weight raising (bsc#1112708).\n- block: bfq: swap puts in bfqg_and_blkg_put (bsc#1112712).\n- block: copy ioprio in __bio_clone_fast() (bsc#1082653).\n- block: respect virtual boundary mask in bvecs (bsc#1113412).\n- Bluetooth: btbcm: Add entry for BCM4335C0 UART bluetooth (bsc#1051510).\n- Bluetooth: SMP: fix crash in unpairing (bsc#1051510).\n- bnxt_en: Fix TX timeout during netpoll (networking-stable-18_10_16).\n- bnxt_en: free hwrm resources, if driver probe fails (networking-stable-18_10_16).\n- bonding: avoid possible dead-lock (networking-stable-18_10_16).\n- bonding: fix length of actor system (networking-stable-18_11_02).\n- bonding: fix warning message (networking-stable-18_10_16).\n- bonding: pass link-local packets to bonding master also (networking-stable-18_10_16).\n- bpf: fix partial copy of map_ptr when dst is scalar (bsc#1083647).\n- bpf, net: add skb_mac_header_len helper (networking-stable-18_09_24).\n- bpf/verifier: disallow pointer subtraction (bsc#1083647).\n- bpf: wait for running BPF programs when updating map-in-map (bsc#1083647).\n- brcmfmac: fix for proper support of 160MHz bandwidth (bsc#1051510).\n- brcmfmac: fix reporting support for 160 MHz channels (bsc#1051510).\n- brcmutil: really fix decoding channel info for 160 MHz bandwidth (bsc#1051510).\n- bridge: do not add port to router list when receives query with source 0.0.0.0 (networking-stable-18_11_02).\n- Btrfs: Enhance btrfs_trim_fs function to handle error better (Dependency for bsc#1113667).\n- Btrfs: Ensure btrfs_trim_fs can trim the whole filesystem (bsc#1113667).\n- Btrfs: fix assertion failure during fsync in no-holes mode (bsc#1118136).\n- Btrfs: fix assertion on fsync of regular file when using no-holes feature (bsc#1118137).\n- Btrfs: fix cur_offset in the error case for nocow (bsc#1118140).\n- Btrfs: fix data corruption due to cloning of eof block (bsc#1116878).\n- Btrfs: fix deadlock on tree root leaf when finding free extent (bsc#1116876).\n- Btrfs: fix deadlock when writing out free space caches (bsc#1116700).\n- Btrfs: fix infinite loop on inode eviction after deduplication of eof block (bsc#1116877).\n- Btrfs: fix missing error return in btrfs_drop_snapshot (Git-fixes bsc#1109919).\n- Btrfs: fix null pointer dereference on compressed write path error (bsc#1116698).\n- Btrfs: fix use-after-free during inode eviction (bsc#1116701).\n- Btrfs: fix use-after-free when dumping free space (bsc#1116862).\n- Btrfs: fix warning when replaying log after fsync of a tmpfile (bsc#1116692).\n- Btrfs: fix wrong dentries after fsync of file that got its parent replaced (bsc#1116693).\n- Btrfs: handle errors while updating refcounts in update_ref_for_cow (Git-fixes bsc#1109915).\n- Btrfs: make sure we create all new block groups (bsc#1116699).\n- Btrfs: protect space cache inode alloc with GFP_NOFS (bsc#1116863).\n- Btrfs: send, fix infinite loop due to directory rename dependencies (bsc#1118138).\n- cachefiles: fix the race between cachefiles_bury_object() and rmdir(2) (bsc#1051510).\n- can: dev: __can_get_echo_skb(): Do not crash the kernel if can_priv::echo_skb is accessed out of bounds (bsc#1051510).\n- can: dev: can_get_echo_skb(): factor out non sending code to __can_get_echo_skb() (bsc#1051510).\n- can: dev: __can_get_echo_skb(): print error message, if trying to echo non existing skb (bsc#1051510).\n- can: dev: __can_get_echo_skb(): replace struct can_frame by canfd_frame to access frame length (bsc#1051510).\n- can: hi311x: Use level-triggered interrupt (bsc#1051510).\n- can: raw: check for CAN FD capable netdev in raw_sendmsg() (bsc#1051510).\n- can: rcar_can: Fix erroneous registration (bsc#1051510).\n- can: rx-offload: introduce can_rx_offload_get_echo_skb() and can_rx_offload_queue_sorted() functions (bsc#1051510).\n- cdc-acm: correct counting of UART states in serial state notification (bsc#1051510).\n- cdc-acm: do not reset notification buffer index upon urb unlinking (bsc#1051510).\n- cdc-acm: fix race between reset and control messaging (bsc#1051510).\n- ceph: avoid a use-after-free in ceph_destroy_options() (bsc#1111983).\n- ceph: fix dentry leak in ceph_readdir_prepopulate (bsc#1114839).\n- ceph: quota: fix null pointer dereference in quota check (bsc#1114839).\n- cfg80211: Address some corner cases in scan result channel updating (bsc#1051510).\n- cfg80211: fix use-after-free in reg_process_hint() (bsc#1051510).\n- cifs: check for STATUS_USER_SESSION_DELETED (bsc#1112902).\n- cifs: fix memory leak in SMB2_open() (bsc#1112894).\n- cifs: Fix use after free of a mid_q_entry (bsc#1112903).\n- clk: at91: Fix division by zero in PLL recalc_rate() (bsc#1051510).\n- clk: fixed-factor: fix of_node_get-put imbalance (bsc#1051510).\n- clk: fixed-rate: fix of_node_get-put imbalance (bsc#1051510).\n- clk: mmp2: fix the clock id for sdh2_clk and sdh3_clk (bsc#1051510).\n- clk: rockchip: Fix static checker warning in rockchip_ddrclk_get_parent call (bsc#1051510).\n- clk: s2mps11: Add used attribute to s2mps11_dt_match (bsc#1051510).\n- clk: s2mps11: Fix matching when built as module and DT node contains compatible (bsc#1051510).\n- clk: samsung: exynos5420: Enable PERIS clocks for suspend (bsc#1051510).\n- clk: x86: add \u0027ether_clk\u0027 alias for Bay Trail / Cherry Trail (bsc#1051510).\n- clk: x86: Stop marking clocks as CLK_IS_CRITICAL (bsc#1051510).\n- clockevents/drivers/i8253: Add support for PIT shutdown quirk (bsc#1051510).\n- clocksource/drivers/ti-32k: Add CLOCK_SOURCE_SUSPEND_NONSTOP flag for non-am43 SoCs (bsc#1051510).\n- clocksource/drivers/timer-atmel-pit: Properly handle error cases (bsc#1051510).\n- coda: fix \u0027kernel memory exposure attempt\u0027 in fsync (bsc#1051510).\n- configfs: replace strncpy with memcpy (bsc#1051510).\n- crypto: caam - fix implicit casts in endianness helpers (bsc#1051510).\n- crypto: chelsio - Fix memory corruption in DMA Mapped buffers (bsc#1051510).\n- crypto: lrw - Fix out-of bounds access on counter overflow (bsc#1051510).\n- crypto: simd - correctly take reqsize of wrapped skcipher into account (bsc#1051510).\n- crypto: tcrypt - fix ghash-generic speed test (bsc#1051510).\n- dax: Fix deadlock in dax_lock_mapping_entry() (bsc#1109951).\n- debugobjects: Make stack check warning more informative (bsc#1051510).\n- Documentation/l1tf: Fix small spelling typo (bsc#1051510).\n- Documentation/l1tf: Fix typos (bsc#1051510).\n- Documentation/l1tf: Remove Yonah processors from not vulnerable list (bsc#1051510).\n- do d_instantiate/unlock_new_inode combinations safely (git-fixes).\n- Do not leak MNT_INTERNAL away from internal mounts (git-fixes).\n- driver/dma/ioat: Call del_timer_sync() without holding prep_lock (bsc#1051510).\n- drm/amdgpu: add missing CHIP_HAINAN in amdgpu_ucode_get_load_type (bsc#1051510).\n- drm/amdgpu: Fix SDMA HQD destroy error on gfx_v7 (bsc#1051510).\n- drm/amdgpu: Fix vce work queue was not cancelled when suspend (bsc#1106110)\n- drm/amdgpu/powerplay: fix missing break in switch statements (bsc#1113722)\n- drm/ast: change resolution may cause screen blurred (boo#1112963).\n- drm/ast: fixed cursor may disappear sometimes (bsc#1051510).\n- drm/ast: Fix incorrect free on ioregs (bsc#1051510).\n- drm/ast: Remove existing framebuffers before loading driver (boo#1112963)\n- drm/dp_mst: Check if primary mstb is null (bsc#1051510).\n- drm/dp_mst: Skip validating ports during destruction, just ref (bsc#1051510).\n- drm/edid: Add 6 bpc quirk for BOE panel (bsc#1051510).\n- drm/edid: Add 6 bpc quirk for BOE panel in HP Pavilion 15-n233sl (bsc#1113722)\n- drm/edid: VSDB yCBCr420 Deep Color mode bit definitions (bsc#1051510).\n- drm: fb-helper: Reject all pixel format changing requests (bsc#1113722)\n- drm/hisilicon: hibmc: Do not carry error code in HiBMC framebuffer (bsc#1113722)\n- drm/hisilicon: hibmc: Do not overwrite fb helper surface depth (bsc#1113722)\n- drm/i915/audio: Hook up component bindings even if displays are (bsc#1113722)\n- drm/i915: Do not oops during modeset shutdown after lpe audio deinit (bsc#1051510).\n- drm/i915: Do not unset intel_connector-\u003emst_port (bsc#1051510).\n- drm/i915/dp: Link train Fallback on eDP only if fallback link BW can fit panel\u0027s native mode (bsc#1051510).\n- drm/i915/execlists: Force write serialisation into context image vs execution (bsc#1051510).\n- drm/i915: Fix ilk+ watermarks when disabling pipes (bsc#1051510).\n- drm/i915/gen9+: Fix initial readout for Y tiled framebuffers (bsc#1113722)\n- drm/i915/glk: Add Quirk for GLK NUC HDMI port issues (bsc#1051510).\n- drm/i915/glk: Remove 99% limitation (bsc#1051510).\n- drm/i915/hdmi: Add HDMI 2.0 audio clock recovery N values (bsc#1051510).\n- drm/i915: Large page offsets for pread/pwrite (bsc#1051510).\n- drm/i915: Mark pin flags as u64 (bsc#1051510).\n- drm/i915: Restore vblank interrupts earlier (bsc#1051510).\n- drm/i915: Skip vcpi allocation for MSTB ports that are gone (bsc#1051510).\n- drm/i915: Write GPU relocs harder with gen3 (bsc#1051510).\n- drm: mali-dp: Call drm_crtc_vblank_reset on device init (bsc#1051510).\n- drm/mediatek: fix OF sibling-node lookup (bsc#1106110)\n- drm/meson: add support for 1080p25 mode (bsc#1051510).\n- drm/meson: Enable fast_io in meson_dw_hdmi_regmap_config (bsc#1051510).\n- drm/meson: Fix OOB memory accesses in meson_viu_set_osd_lut() (bsc#1051510).\n- drm/msm: fix OF child-node lookup (bsc#1106110)\n- drm/nouveau: Check backlight IDs are \u003e= 0, not \u003e 0 (bsc#1051510).\n- drm/nouveau: Do not disable polling in fallback mode (bsc#1103356).\n- drm/omap: fix memory barrier bug in DMM driver (bsc#1051510).\n- drm/rockchip: Allow driver to be shutdown on reboot/kexec (bsc#1051510).\n- drm/sti: do not remove the drm_bridge that was never added (bsc#1100132)\n- drm/sun4i: Fix an ulong overflow in the dotclock driver (bsc#1106110)\n- drm/virtio: fix bounds check in virtio_gpu_cmd_get_capset() (bsc#1113722)\n- e1000: check on netif_running() before calling e1000_up() (bsc#1051510).\n- e1000: ensure to free old tx/rx rings in set_ringparam() (bsc#1051510).\n- EDAC, {i7core,sb,skx}_edac: Fix uncorrected error counting (bsc#1114279).\n- EDAC: Raise the maximum number of memory controllers (bsc#1113780).\n- EDAC, skx_edac: Fix logical channel intermediate decoding (bsc#1114279).\n- EDAC, thunderx: Fix memory leak in thunderx_l2c_threaded_isr() (bsc#1114279).\n- eeprom: at24: change nvmem stride to 1 (bsc#1051510).\n- eeprom: at24: check at24_read/write arguments (bsc#1051510).\n- eeprom: at24: correctly set the size for at24mac402 (bsc#1051510).\n- Enable LSPCON instead of blindly disabling HDMI\n- enic: do not call enic_change_mtu in enic_probe (bsc#1051510).\n- enic: handle mtu change for vf properly (bsc#1051510).\n- enic: initialize enic-\u003erfs_h.lock in enic_probe (bsc#1051510).\n- ethtool: fix a privilege escalation bug (bsc#1076830).\n- ext2, dax: set ext2_dax_aops for dax files (bsc#1112554).\n- ext4: add missing brelse() add_new_gdb_meta_bg()\u0027s error path (bsc#1117795).\n- ext4: add missing brelse() in set_flexbg_block_bitmap()\u0027s error path (bsc#1117794).\n- ext4: add missing brelse() update_backups()\u0027s error path (bsc#1117796).\n- ext4: avoid arithemetic overflow that can trigger a BUG (bsc#1112736).\n- ext4: avoid buffer leak in ext4_orphan_add() after prior errors (bsc#1117802).\n- ext4: avoid buffer leak on shutdown in ext4_mark_iloc_dirty() (bsc#1117801).\n- ext4: avoid divide by zero fault when deleting corrupted inline directories (bsc#1112735).\n- ext4: avoid potential extra brelse in setup_new_flex_group_blocks() (bsc#1117792).\n- ext4: check for NUL characters in extended attribute\u0027s name (bsc#1112732).\n- ext4: check to make sure the rename(2)\u0027s destination is not freed (bsc#1112734).\n- ext4: do not mark mmp buffer head dirty (bsc#1112743).\n- ext4: fix buffer leak in __ext4_read_dirblock() on error path (bsc#1117807).\n- ext4: fix buffer leak in ext4_xattr_move_to_block() on error path (bsc#1117806).\n- ext4: fix missing cleanup if ext4_alloc_flex_bg_array() fails while resizing (bsc#1117798).\n- ext4: fix online resize\u0027s handling of a too-small final block group (bsc#1112739).\n- ext4: fix online resizing for bigalloc file systems with a 1k block size (bsc#1112740).\n- ext4: fix possible inode leak in the retry loop of ext4_resize_fs() (bsc#1117799).\n- ext4: fix possible leak of sbi-\u003es_group_desc_leak in error path (bsc#1117803).\n- ext4: fix possible leak of s_journal_flag_rwsem in error path (bsc#1117804).\n- ext4: fix setattr project check in fssetxattr ioctl (bsc#1117789).\n- ext4: fix spectre gadget in ext4_mb_regular_allocator() (bsc#1112733).\n- ext4: fix use-after-free race in ext4_remount()\u0027s error path (bsc#1117791).\n- ext4: initialize retries variable in ext4_da_write_inline_data_begin() (bsc#1117788).\n- ext4: propagate error from dquot_initialize() in EXT4_IOC_FSSETXATTR (bsc#1117790).\n- ext4: recalucate superblock checksum after updating free blocks/inodes (bsc#1112738).\n- ext4: release bs.bh before re-using in ext4_xattr_block_find() (bsc#1117805).\n- ext4: reset error code in ext4_find_entry in fallback (bsc#1112731).\n- ext4: show test_dummy_encryption mount option in /proc/mounts (bsc#1112741).\n- fbdev: fix broken menu dependencies (bsc#1113722)\n- fbdev/omapfb: fix omapfb_memory_read infoleak (bsc#1051510).\n- firmware: dcdbas: Add support for WSMT ACPI table (bsc#1089350 ).\n- firmware: dcdbas: include linux/io.h (bsc#1089350).\n- Fix kABI for \u0027Ensure we commit after writeback is complete\u0027 (bsc#1111809).\n- floppy: fix race condition in __floppy_read_block_0() (bsc#1051510).\n- flow_dissector: do not dissect l4 ports for fragments (networking-stable-18_11_21).\n- fscache: fix race between enablement and dropping of object (bsc#1107385).\n- fs: dcache: Avoid livelock between d_alloc_parallel and __d_add (git-fixes).\n- fs/dcache.c: fix kmemcheck splat at take_dentry_name_snapshot() (git-fixes).\n- fs: dcache: Use READ_ONCE when accessing i_dir_seq (git-fixes).\n- fs: Make extension of struct super_block transparent (bsc#1117822).\n- fsnotify: Fix busy inodes during unmount (bsc#1117822).\n- fsnotify: fix ignore mask logic in fsnotify() (bsc#1115074).\n- fs/quota: Fix spectre gadget in do_quotactl (bsc#1112745).\n- ftrace: Fix debug preempt config name in stack_tracer_{en,dis}able (bsc#1117172).\n- ftrace: Fix kmemleak in unregister_ftrace_graph (bsc#1117181).\n- ftrace: Fix memleak when unregistering dynamic ops when tracing disabled (bsc#1117174).\n- ftrace: Remove incorrect setting of glob search field (bsc#1117184).\n- genirq: Fix race on spurious interrupt detection (bsc#1051510).\n- getname_kernel() needs to make sure that -\u003ename != -\u003einame in long case (git-fixes).\n- gpio: do not free unallocated ida on gpiochip_add_data_with_key() error path (bsc#1051510).\n- grace: replace BUG_ON by WARN_ONCE in exit_net hook (git-fixes).\n- gso_segment: Reset skb-\u003emac_len after modifying network header (networking-stable-18_09_24).\n- hfsplus: do not return 0 when fill_super() failed (bsc#1051510).\n- hfsplus: stop workqueue when fill_super() failed (bsc#1051510).\n- hfs: prevent crash on exit from failed search (bsc#1051510).\n- HID: hiddev: fix potential Spectre v1 (bsc#1051510).\n- HID: hid-sensor-hub: Force logical minimum to 1 for power and report state (bsc#1051510).\n- HID: quirks: fix support for Apple Magic Keyboards (bsc#1051510).\n- HID: sensor-hub: Restore fixup for Lenovo ThinkPad Helix 2 sensor hub report (bsc#1051510).\n- HID: uhid: forbid UHID_CREATE under KERNEL_DS or elevated privileges (bsc#1051510).\n- hv: avoid crash in vmbus sysfs files (bnc#1108377).\n- hv_netvsc: fix schedule in RCU context ().\n- hv_netvsc: ignore devices that are not PCI (networking-stable-18_09_11).\n- hwmon: (core) Fix double-free in __hwmon_device_register() (bsc#1051510).\n- hwmon: (ibmpowernv) Remove bogus __init annotations (bsc#1051510).\n- hwmon: (ina2xx) Fix current value calculation (bsc#1051510).\n- hwmon (ina2xx) Fix NULL id pointer in probe() (bsc#1051510).\n- hwmon: (nct6775) Fix potential Spectre v1 (bsc#1051510).\n- hwmon: (pmbus) Fix page count auto-detection (bsc#1051510).\n- hwmon: (pwm-fan) Set fan speed to 0 on suspend (bsc#1051510).\n- hwmon: (raspberrypi) Fix initial notify (bsc#1051510).\n- hwmon: (w83795) temp4_type has writable permission (bsc#1051510).\n- hwrng: core - document the quality field (bsc#1051510).\n- hypfs_kill_super(): deal with failed allocations (bsc#1051510).\n- i2c: i2c-scmi: fix for i2c_smbus_write_block_data (bsc#1051510).\n- i2c: rcar: cleanup DMA for all kinds of failure (bsc#1051510).\n- ibmvnic: fix accelerated VLAN handling ().\n- ibmvnic: fix index in release_rx_pools (bsc#1115440, bsc#1115433).\n- ibmvnic: remove ndo_poll_controller ().\n- ibmvnic: Update driver queues after change in ring size support ().\n- iio: accel: adxl345: convert address field usage in iio_chan_spec (bsc#1051510).\n- iio: ad5064: Fix regulator handling (bsc#1051510).\n- iio: adc: at91: fix acking DRDY irq on simple conversions (bsc#1051510).\n- iio: adc: at91: fix wrong channel number in triggered buffer mode (bsc#1051510).\n- iio: adc: imx25-gcq: Fix leak of device_node in mx25_gcq_setup_cfgs() (bsc#1051510).\n- iio:st_magn: Fix enable device after trigger (bsc#1051510).\n- ima: fix showing large \u0027violations\u0027 or \u0027runtime_measurements_count\u0027 (bsc#1051510).\n- include/linux/pfn_t.h: force \u0027~\u0027 to be parsed as an unary operator (bsc#1051510).\n- inet: make sure to grab rcu_read_lock before using ireq-\u003eireq_opt (networking-stable-18_10_16).\n- Input: atakbd - fix Atari CapsLock behaviour (bsc#1051510).\n- Input: atakbd - fix Atari keymap (bsc#1051510).\n- Input: elan_i2c - add ACPI ID for Lenovo IdeaPad 330-15IGM (bsc#1051510).\n- Input: synaptics - avoid using uninitialized variable when probing (bsc#1051510).\n- Input: xpad - add PDP device id 0x02a4 (bsc#1051510).\n- Input: xpad - add support for Xbox1 PDP Camo series gamepad (bsc#1051510).\n- Input: xpad - avoid using __set_bit() for capabilities (bsc#1051510).\n- Input: xpad - fix some coding style issues (bsc#1051510).\n- intel_th: pci: Add Ice Lake PCH support (bsc#1051510).\n- iommu/arm-smmu: Ensure that page-table updates are visible before TLBI (bsc#1106237).\n- iommu/arm-smmu: Error out only if not enough context interrupts (bsc#1106237).\n- iommu/ipmmu-vmsa: Fix crash on early domain free (bsc#1106105).\n- iommu/vt-d: Add definitions for PFSID (bsc#1106237).\n- iommu/vt-d: Fix dev iotlb pfsid use (bsc#1106237).\n- iommu/vt-d: Fix NULL pointer dereference in prq_event_thread() (bsc#1106105).\n- iommu/vt-d: Fix scatterlist offset handling (bsc#1106237).\n- iommu/vt-d: Use memunmap to free memremap (bsc#1106105).\n- ip6_tunnel: be careful when accessing the inner header (networking-stable-18_10_16).\n- ip6_tunnel: Fix encapsulation layout (networking-stable-18_11_02).\n- ip6_vti: fix a null pointer deference when destroy vti6 tunnel (networking-stable-18_09_11).\n- ipmi: Fix timer race with module unload (bsc#1051510).\n- ip_tunnel: be careful when accessing the inner header (networking-stable-18_10_16).\n- ip_tunnel: do not force DF when MTU is locked (networking-stable-18_11_21).\n- ipv4: lock mtu in fnhe when received PMTU \u003c net.ipv4.route.min_pmtu (networking-stable-18_11_21).\n- ipv4: tcp: send zero IPID for RST and ACK sent in SYN-RECV and TIME-WAIT state (networking-stable-18_09_11).\n- ipv6: Fix PMTU updates for UDP/raw sockets in presence of VRF (networking-stable-18_11_21).\n- ipv6: fix possible use-after-free in ip6_xmit() (networking-stable-18_09_24).\n- ipv6: mcast: fix a use-after-free in inet6_mc_check (networking-stable-18_11_02).\n- ipv6/ndisc: Preserve IPv6 control buffer if protocol error handlers are called (networking-stable-18_11_02).\n- ipv6: take rcu lock in rawv6_send_hdrinc() (networking-stable-18_10_16).\n- iwlwifi: dbg: allow wrt collection before ALIVE (bsc#1051510).\n- iwlwifi: dbg: do not crash if the firmware crashes in the middle of a debug dump (bsc#1051510).\n- iwlwifi: do not WARN on trying to dump dead firmware (bsc#1051510).\n- iwlwifi: mvm: Allow TKIP for AP mode (bsc#1051510).\n- iwlwifi: mvm: check for n_profiles validity in EWRD ACPI (bsc#1051510).\n- iwlwifi: mvm: check for short GI only for OFDM (bsc#1051510).\n- iwlwifi: mvm: check return value of rs_rate_from_ucode_rate() (bsc#1051510).\n- iwlwifi: mvm: clear HW_RESTART_REQUESTED when stopping the interface (bsc#1051510).\n- iwlwifi: mvm: do not use SAR Geo if basic SAR is not used (bsc#1051510).\n- iwlwifi: mvm: fix BAR seq ctrl reporting (bsc#1051510).\n- iwlwifi: mvm: fix regulatory domain update when the firmware starts (bsc#1051510).\n- iwlwifi: mvm: open BA session only when sta is authorized (bsc#1051510).\n- iwlwifi: mvm: send BCAST management frames to the right station (bsc#1051510).\n- iwlwifi: mvm: support sta_statistics() even on older firmware (bsc#1051510).\n- iwlwifi: pcie: avoid empty free RB queue (bsc#1051510).\n- iwlwifi: pcie: gen2: build A-MSDU only for GSO (bsc#1051510).\n- iwlwifi: pcie gen2: check iwl_pcie_gen2_set_tb() return value (bsc#1051510).\n- jbd2: fix use after free in jbd2_log_do_checkpoint() (bsc#1113257).\n- KABI fix for \u0027NFSv4.1: Fix up replays of interrupted requests\u0027 (git-fixes).\n- kABI: Hide get_msr_feature() in kvm_x86_ops (bsc#1106240).\n- KABI: hide new member in struct iommu_table from genksyms (bsc#1061840).\n- KABI: mask raw in struct bpf_reg_state (bsc#1083647).\n- KABI: powerpc: export __find_linux_pte as __find_linux_pte_or_hugepte (bsc#1061840).\n- KABI: powerpc: Revert npu callback signature change (bsc#1055120).\n- KABI: protect struct fib_nh_exception (kabi).\n- KABI: protect struct rtable (kabi).\n- KABI/severities: ignore __xive_vm_h_* KVM internal symbols.\n- Kbuild: fix # escaping in .cmd files for future Make (git-fixes).\n- kbuild: fix kernel/bounds.c \u0027W=1\u0027 warning (bsc#1051510).\n- kbuild: move \u0027_all\u0027 target out of $(KBUILD_SRC) conditional (bsc#1114279).\n- kernfs: update comment about kernfs_path() return value (bsc#1051510).\n- kgdboc: Passing ekgdboc to command line causes panic (bsc#1051510).\n- kprobes/x86: Fix %p uses in error messages (bsc#1110006).\n- KVM: arm/arm64: Introduce vcpu_el1_is_32bit (bsc#1110998).\n- KVM: Make VM ioctl do valloc for some archs (bsc#1111506).\n- KVM: nVMX: Always reflect #NM VM-exits to L1 (bsc#1106240).\n- KVM: nVMX: move check_vmentry_postreqs() call to nested_vmx_enter_non_root_mode() (bsc#1106240).\n- KVM: PPC: Add pt_regs into kvm_vcpu_arch and move vcpu-\u003earch.gpr[] into it (bsc#1061840).\n- KVM: PPC: Avoid marking DMA-mapped pages dirty in real mode (bsc#1061840).\n- KVM: PPC: Book3S: Add MMIO emulation for VMX instructions (bsc#1061840).\n- KVM: PPC: Book3S: Allow backing bigger guest IOMMU pages with smaller physical pages (bsc#1061840).\n- KVM: PPC: Book3S: Check KVM_CREATE_SPAPR_TCE_64 parameters (bsc#1061840).\n- KVM: PPC: Book3S: Eliminate some unnecessary checks (bsc#1061840).\n- KVM: PPC: Book3S: Fix compile error that occurs with some gcc versions (bsc#1061840).\n- KVM: PPC: Book3S: Fix matching of hardware and emulated TCE tables (bsc#1061840).\n- KVM: PPC: Book3S HV: Add of_node_put() in success path (bsc#1061840).\n- KVM: PPC: Book3S HV: Add \u0027online\u0027 register to ONE_REG interface (bsc#1061840).\n- KVM: PPC: Book3S HV: Allow creating max number of VCPUs on POWER9 (bsc#1061840).\n- KVM: PPC: Book3S HV: Allow HPT and radix on the same core for POWER9 v2.2 (bsc#1061840).\n- KVM: PPC: Book3S HV: Avoid crash from THP collapse during radix page fault (bsc#1061840).\n- KVM: PPC: Book3S HV: Avoid shifts by negative amounts (bsc#1061840).\n- KVM: PPC: Book3S HV: Check DR not IR to chose real vs virt mode MMIOs (bsc#1061840).\n- KVM: PPC: Book3S HV: Do not truncate HPTE index in xlate function (bsc#1061840).\n- KVM: PPC: Book3S HV: Do not use compound_order to determine host mapping size (bsc#1061840).\n- KVM: PPC: Book3S HV: Do not use existing \u0027prodded\u0027 flag for XIVE escalations (bsc#1061840).\n- KVM: PPC: Book 3S HV: Do ptesync in radix guest exit path (bsc#1061840).\n- KVM: PPC: Book3S HV: Do SLB load/unload with guest LPCR value loaded (bsc#1061840).\n- KVM: PPC: Book3S HV: Enable migration of decrementer register (bsc#1061840).\n- KVM: PPC: Book3S HV: Factor fake-suspend handling out of kvmppc_save/restore_tm (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix conditions for starting vcpu (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix constant size warning (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix duplication of host SLB entries (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix guest r11 corruption with POWER9 TM workarounds (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix handling of large pages in radix page fault handler (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix handling of secondary HPTEG in HPT resizing code (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix inaccurate comment (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix kvmppc_bad_host_intr for real mode interrupts (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix trap number return from __kvmppc_vcore_entry (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix typo in kvmppc_hv_get_dirty_log_radix() (bsc#1061840).\n- KVM: PPC: Book3S HV: Fix VRMA initialization with 2MB or 1GB memory backing (bsc#1061840).\n- KVM: PPC: Book3S HV: Handle 1GB pages in radix page fault handler (bsc#1061840).\n- KVM: PPC: Book3S HV: Improve handling of debug-trigger HMIs on POWER9 (bsc#1061840).\n- KVM: PPC: Book3S HV: Keep XIVE escalation interrupt masked unless ceded (bsc#1061840).\n- KVM: PPC: Book3S HV: Lockless tlbie for HPT hcalls (bsc#1061840).\n- KVM: PPC: Book3S HV: Make HPT resizing work on POWER9 (bsc#1061840).\n- KVM: PPC: Book3S HV: Make radix clear pte when unmapping (bsc#1061840).\n- KVM: PPC: Book3S HV: Make radix use correct tlbie sequence in kvmppc_radix_tlbie_page (bsc#1061840).\n- KVM: PPC: Book3S HV: Make xive_pushed a byte, not a word (bsc#1061840).\n- KVM: PPC: Book3S HV: Pack VCORE IDs to access full VCPU ID space (bsc#1061840).\n- KVM: PPC: Book3S HV: radix: Do not clear partition PTE when RC or write bits do not match (bsc#1061840).\n- KVM: PPC: Book3S HV: Radix page fault handler optimizations (bsc#1061840).\n- KVM: PPC: Book3S HV: radix: Refine IO region partition scope attributes (bsc#1061840).\n- KVM: PPC: Book3S HV: Read kvm-\u003earch.emul_smt_mode under kvm-\u003elock (bsc#1061840).\n- KVM: PPC: Book3S HV: Recursively unmap all page table entries when unmapping (bsc#1061840).\n- KVM: PPC: Book3S HV: Remove useless statement (bsc#1061840).\n- KVM: PPC: Book3S HV: Remove vcpu-\u003earch.dec usage (bsc#1061840).\n- KVM: PPC: Book3S HV: Send kvmppc_bad_interrupt NMIs to Linux handlers (bsc#1061840).\n- KVM: PPC: Book3S HV: Set RWMR on POWER8 so PURR/SPURR count correctly (bsc#1061840).\n- KVM: PPC: Book3S HV: Snapshot timebase offset on guest entry (bsc#1061840).\n- KVM: PPC: Book3S HV: Streamline setting of reference and change bits (bsc#1061840).\n- KVM: PPC: Book3S HV: Use a helper to unmap ptes in the radix fault path (bsc#1061840).\n- KVM: PPC: Book3S HV: Use __gfn_to_pfn_memslot() in page fault handler (bsc#1061840).\n- KVM: PPC: Book3S HV: XIVE: Resend re-routed interrupts on CPU priority change (bsc#1061840).\n- KVM: PPC: Book3S PR: Add guest MSR parameter for kvmppc_save_tm()/kvmppc_restore_tm() (bsc#1061840).\n- KVM: PPC: Book3S PR: Move kvmppc_save_tm/kvmppc_restore_tm to separate file (bsc#1061840).\n- KVM: PPC: Book3S: Use correct page shift in H_STUFF_TCE (bsc#1061840).\n- KVM: PPC: Fix a mmio_host_swabbed uninitialized usage issue (bsc#1061840).\n- KVM: PPC: Make iommu_table::it_userspace big endian (bsc#1061840).\n- KVM: PPC: Move nip/ctr/lr/xer registers to pt_regs in kvm_vcpu_arch (bsc#1061840).\n- KVM: PPC: Use seq_puts() in kvmppc_exit_timing_show() (bsc#1061840).\n- KVM: s390: vsie: copy wrapping keys to right place (git-fixes).\n- KVM: SVM: Add MSR-based feature support for serializing LFENCE (bsc#1106240).\n- KVM: svm: Ensure an IBPB on all affected CPUs when freeing a vmcb (bsc#1114279).\n- KVM: VMX: re-add ple_gap module parameter (bsc#1106240).\n- KVM: VMX: support MSR_IA32_ARCH_CAPABILITIES as a feature MSR (bsc#1106240).\n- KVM: VMX: Tell the nested hypervisor to skip L1D flush on vmentry (bsc#1106240).\n- KVM: x86: Add a framework for supporting MSR-based features (bsc#1106240).\n- KVM: x86: define SVM/VMX specific kvm_arch_[alloc|free]_vm (bsc#1111506).\n- KVM: x86: Fix kernel info-leak in KVM_HC_CLOCK_PAIRING hypercall (bsc#1106240).\n- KVM: X86: Introduce kvm_get_msr_feature() (bsc#1106240).\n- KVM/x86: kABI fix for vm_alloc/vm_free changes (bsc#1111506).\n- KVM: x86: Set highest physical address bits in non-present/reserved SPTEs (bsc#1106240).\n- libceph: bump CEPH_MSG_MAX_DATA_LEN (bsc#1114839).\n- libceph: fall back to sendmsg for slab pages (bsc#1118316).\n- libertas: call into generic suspend code before turning off power (bsc#1051510).\n- libertas: do not set URB_ZERO_PACKET on IN USB transfer (bsc#1051510).\n- libnvdimm, badrange: remove a WARN for list_empty (bsc#1112128).\n- libnvdimm, dimm: Maximize label transfer size (bsc#1111921, bsc#1113408, bsc#1113972).\n- libnvdimm: Hold reference on parent while scheduling async init (bsc#1116891).\n- libnvdimm: Introduce locked DIMM capacity support (bsc#1112128).\n- libnvdimm, label: change nvdimm_num_label_slots per UEFI 2.7 (bsc#1111921, bsc#1113408, bsc#1113972).\n- libnvdimm, label: Fix sparse warning (bsc#1111921, bsc#1113408, bsc#1113972).\n- libnvdimm: move poison list functions to a new \u0027badrange\u0027 file (bsc#1112128).\n- libnvdimm/nfit_test: add firmware download emulation (bsc#1112128).\n- libnvdimm/nfit_test: adding support for unit testing enable LSS status (bsc#1112128).\n- libnvdimm, region: Fail badblocks listing for inactive regions (bsc#1116899).\n- libnvdimm, testing: Add emulation for smart injection commands (bsc#1112128).\n- libnvdimm, testing: update the default smart ctrl_temperature (bsc#1112128).\n- lib/ubsan: add type mismatch handler for new GCC/Clang (bsc#1051510).\n- lib/ubsan.c: s/missaligned/misaligned/ (bsc#1051510).\n- livepatch: create and include UAPI headers ().\n- llc: set SOCK_RCU_FREE in llc_sap_add_socket() (networking-stable-18_11_02).\n- lockd: fix \u0027list_add double add\u0027 caused by legacy signal interface (git-fixes).\n- loop: add recursion validation to LOOP_CHANGE_FD (bsc#1112711).\n- loop: do not call into filesystem while holding lo_ctl_mutex (bsc#1112710).\n- loop: fix LOOP_GET_STATUS lock imbalance (bsc#1113284).\n- mac80211: Always report TX status (bsc#1051510).\n- mac80211: fix TX status reporting for ieee80211s (bsc#1051510).\n- mac80211_hwsim: do not omit multicast announce of first added radio (bsc#1051510).\n- mac80211: minstrel: fix using short preamble CCK rates on HT clients (bsc#1051510).\n- mac80211: TDLS: fix skb queue/priority assignment (bsc#1051510).\n- mach64: detect the dot clock divider correctly on sparc (bsc#1051510).\n- mach64: fix display corruption on big endian machines (bsc#1113722)\n- mach64: fix image corruption due to reading accelerator registers (bsc#1113722)\n- mailbox: PCC: handle parse error (bsc#1051510).\n- make sure that __dentry_kill() always invalidates d_seq, unhashed or not (git-fixes).\n- md: allow metadata updates while suspending an array - fix (git-fixes).\n- MD: fix invalid stored role for a disk - try2 (git-fixes).\n- md: fix NULL dereference of mddev-\u003epers in remove_and_add_spares() (git-fixes).\n- md/raid10: fix that replacement cannot complete recovery after reassemble (git-fixes).\n- md/raid1: add error handling of read error from FailFast device (git-fixes).\n- md/raid5-cache: disable reshape completely (git-fixes).\n- md/raid5: fix data corruption of replacements after originals dropped (git-fixes).\n- media: af9035: prevent buffer overflow on write (bsc#1051510).\n- media: cx231xx: fix potential sign-extension overflow on large shift (bsc#1051510).\n- media: dvb: fix compat ioctl translation (bsc#1051510).\n- media: em28xx: fix input name for Terratec AV 350 (bsc#1051510).\n- media: em28xx: use a default format if TRY_FMT fails (bsc#1051510).\n- media: pci: cx23885: handle adding to list failure (bsc#1051510).\n- media: tvp5150: avoid going past array on v4l2_querymenu() (bsc#1051510).\n- media: tvp5150: fix switch exit in set control handler (bsc#1051510).\n- media: tvp5150: fix width alignment during set_selection() (bsc#1051510).\n- media: uvcvideo: Fix uvc_alloc_entity() allocation alignment (bsc#1051510).\n- media: v4l2-tpg: fix kernel oops when enabling HFLIP and OSD (bsc#1051510).\n- media: vsp1: Fix YCbCr planar formats pitch calculation (bsc#1051510).\n- memory_hotplug: cond_resched in __remove_pages (bnc#1114178).\n- mfd: arizona: Correct calling of runtime_put_sync (bsc#1051510).\n- mfd: menelaus: Fix possible race condition and leak (bsc#1051510).\n- mfd: omap-usb-host: Fix dts probe of children (bsc#1051510).\n- mlxsw: spectrum: Fix IP2ME CPU policer configuration (networking-stable-18_11_21).\n- mmc: block: avoid multiblock reads for the last sector in SPI mode (bsc#1051510).\n- mmc: dw_mmc-rockchip: correct property names in debug (bsc#1051510).\n- mmc: sdhci-pci-o2micro: Add quirk for O2 Micro dev 0x8620 rev 0x01 (bsc#1051510).\n- mm: handle no memcg case in memcg_kmem_charge() properly (bnc#1113677).\n- mm/migrate: Use spin_trylock() while resetting rate limit ().\n- mm: /proc/pid/pagemap: hide swap entries from unprivileged users (Git-fixes bsc#1109907).\n- mm: rework memcg kernel stack accounting (bnc#1113677).\n- modpost: ignore livepatch unresolved relocations ().\n- mount: Do not allow copying MNT_UNBINDABLE|MNT_LOCKED mounts (bsc#1117819).\n- mount: Prevent MNT_DETACH from disconnecting locked mounts (bsc#1117820).\n- mount: Retest MNT_LOCKED in do_umount (bsc#1117818).\n- move changes without Git-commit out of sorted section\n- neighbour: confirm neigh entries when ARP packet is received (networking-stable-18_09_24).\n- net/af_iucv: drop inbound packets with invalid flags (bnc#1113501, LTC#172679).\n- net/af_iucv: fix skb handling on HiperTransport xmit error (bnc#1113501, LTC#172679).\n- net/appletalk: fix minor pointer leak to userspace in SIOCFINDIPDDPRT (networking-stable-18_09_24).\n- net: aquantia: memory corruption on jumbo frames (networking-stable-18_10_16).\n- net: bcmgenet: Poll internal PHY for GENETv5 (networking-stable-18_11_02).\n- net: bcmgenet: protect stop from timeout (networking-stable-18_11_21).\n- net: bcmgenet: use MAC link status for fixed phy (networking-stable-18_09_11).\n- net: bridge: remove ipv6 zero address check in mcast queries (git-fixes).\n- net: dsa: bcm_sf2: Call setup during switch resume (networking-stable-18_10_16).\n- net: dsa: bcm_sf2: Fix unbind ordering (networking-stable-18_10_16).\n- net: ena: add functions for handling Low Latency Queues in ena_com (bsc#1111696 bsc#1117561).\n- net: ena: add functions for handling Low Latency Queues in ena_netdev (bsc#1111696 bsc#1117561).\n- net: ena: change rx copybreak default to reduce kernel memory pressure (bsc#1111696 bsc#1117561).\n- net: ena: complete host info to match latest ENA spec (bsc#1111696 bsc#1117561).\n- net: ena: enable Low Latency Queues (bsc#1111696 bsc#1117561).\n- net: ena: explicit casting and initialization, and clearer error handling (bsc#1111696 bsc#1117561).\n- net: ena: fix auto casting to boolean (bsc#1111696 bsc#1117561).\n- net: ena: fix compilation error in xtensa architecture (bsc#1111696 bsc#1117561).\n- net: ena: fix crash during failed resume from hibernation (bsc#1111696 bsc#1117561).\n- net: ena: fix indentations in ena_defs for better readability (bsc#1111696 bsc#1117561).\n- net: ena: Fix Kconfig dependency on X86 (bsc#1111696 bsc#1117561).\n- net: ena: fix NULL dereference due to untimely napi initialization (bsc#1111696 bsc#1117561).\n- net: ena: fix rare bug when failed restart/resume is followed by driver removal (bsc#1111696 bsc#1117561).\n- net: ena: fix warning in rmmod caused by double iounmap (bsc#1111696 bsc#1117561).\n- net: ena: introduce Low Latency Queues data structures according to ENA spec (bsc#1111696 bsc#1117561).\n- net: ena: limit refill Rx threshold to 256 to avoid latency issues (bsc#1111696 bsc#1117561).\n- net: ena: minor performance improvement (bsc#1111696 bsc#1117561).\n- net: ena: remove ndo_poll_controller (bsc#1111696 bsc#1117561).\n- net: ena: remove redundant parameter in ena_com_admin_init() (bsc#1111696 bsc#1117561).\n- net: ena: update driver version to 2.0.1 (bsc#1111696 bsc#1117561).\n- net: ena: use CSUM_CHECKED device indication to report skb\u0027s checksum status (bsc#1111696 bsc#1117561).\n- net: fec: do not dump RX FIFO register when not available (networking-stable-18_11_02).\n- net-gro: reset skb-\u003epkt_type in napi_reuse_skb() (networking-stable-18_11_21).\n- net: hns: fix for unmapping problem when SMMU is on (networking-stable-18_10_16).\n- net: hp100: fix always-true check for link up state (networking-stable-18_09_24).\n- net: ibm: fix return type of ndo_start_xmit function ().\n- net/ibmnvic: Fix deadlock problem in reset ().\n- net/ibmvnic: Fix RTNL deadlock during device reset (bnc#1115431).\n- net: ipmr: fix unresolved entry dumps (networking-stable-18_11_02).\n- net: ipv4: do not let PMTU updates increase route MTU (git-fixes).\n- net/ipv6: Display all addresses in output of /proc/net/if_inet6 (networking-stable-18_10_16).\n- net/ipv6: Fix index counter for unicast addresses in in6_dump_addrs (networking-stable-18_11_02).\n- netlabel: check for IPV4MASK in addrinfo_get (networking-stable-18_10_16).\n- net: macb: do not disable MDIO bus at open/close time (networking-stable-18_09_11).\n- net/mlx5: Check for error in mlx5_attach_interface (networking-stable-18_09_18).\n- net/mlx5e: Fix selftest for small MTUs (networking-stable-18_11_21).\n- net/mlx5e: Set vlan masks for all offloaded TC rules (networking-stable-18_10_16).\n- net/mlx5: E-Switch, Fix memory leak when creating switchdev mode FDB tables (networking-stable-18_09_18).\n- net/mlx5: E-Switch, Fix out of bound access when setting vport rate (networking-stable-18_10_16).\n- net/mlx5: Fix debugfs cleanup in the device init/remove flow (networking-stable-18_09_18).\n- net/mlx5: Fix use-after-free in self-healing flow (networking-stable-18_09_18).\n- net/mlx5: Take only bit 24-26 of wqe.pftype_wq for page fault type (networking-stable-18_11_02).\n- net: mvpp2: Extract the correct ethtype from the skb for tx csum offload (networking-stable-18_10_16).\n- net: mvpp2: fix a txq_done race condition (networking-stable-18_10_16).\n- net/packet: fix packet drop as of virtio gso (networking-stable-18_10_16).\n- net: phy: mdio-gpio: Fix working over slow can_sleep GPIOs (networking-stable-18_11_21).\n- net: qca_spi: Fix race condition in spi transfers (networking-stable-18_09_18).\n- net: qmi_wwan: add Wistron Neweb D19Q1 (bsc#1051510).\n- net: sched: action_ife: take reference to meta module (networking-stable-18_09_11).\n- net/sched: act_pedit: fix dump of extended layered op (networking-stable-18_09_11).\n- net/sched: act_sample: fix NULL dereference in the data path (networking-stable-18_09_24).\n- net: sched: Fix for duplicate class dump (networking-stable-18_11_02).\n- net: sched: Fix memory exposure from short TCA_U32_SEL (networking-stable-18_09_11).\n- net: sched: gred: pass the right attribute to gred_change_table_def() (networking-stable-18_11_02).\n- net: smsc95xx: Fix MTU range (networking-stable-18_11_21).\n- net: socket: fix a missing-check bug (networking-stable-18_11_02).\n- net: stmmac: Fix stmmac_mdio_reset() when building stmmac as modules (networking-stable-18_11_02).\n- net: stmmac: Fixup the tail addr setting in xmit path (networking-stable-18_10_16).\n- net: systemport: Fix wake-up interrupt race during resume (networking-stable-18_10_16).\n- net: systemport: Protect stop from timeout (networking-stable-18_11_21).\n- net: udp: fix handling of CHECKSUM_COMPLETE packets (networking-stable-18_11_02).\n- net/usb: cancel pending work when unbinding smsc75xx (networking-stable-18_10_16).\n- NFC: nfcmrvl_uart: fix OF child-node lookup (bsc#1051510).\n- nfit_test: add error injection DSMs (bsc#1112128).\n- nfit_test: fix buffer overrun, add sanity check (bsc#1112128).\n- nfit_test: improve structure offset handling (bsc#1112128).\n- nfit_test: prevent parsing error of nfit_test.0 (bsc#1112128).\n- nfit_test: when clearing poison, also remove badrange entries (bsc#1112128).\n- nfp: wait for posted reconfigs when disabling the device (networking-stable-18_09_11).\n- NFS: Avoid quadratic search when freeing delegations (bsc#1084760).\n- NFS: Avoid RCU usage in tracepoints (git-fixes).\n- NFS: commit direct writes even if they fail partially (git-fixes).\n- nfsd4: permit layoutget of executable-only files (git-fixes).\n- nfsd: check for use of the closed special stateid (git-fixes).\n- nfsd: CLOSE SHOULD return the invalid special stateid for NFSv4.x (x\u003e0) (git-fixes).\n- nfsd: deal with revoked delegations appropriately (git-fixes).\n- nfsd: Ensure we check stateid validity in the seqid operation checks (git-fixes).\n- nfsd: Fix another OPEN stateid race (git-fixes).\n- nfsd: fix corrupted reply to badly ordered compound (git-fixes).\n- nfsd: fix potential use-after-free in nfsd4_decode_getdeviceinfo (git-fixes).\n- nfsd: Fix stateid races between OPEN and CLOSE (git-fixes).\n- NFS: do not wait on commit in nfs_commit_inode() if there were no commit requests (git-fixes).\n- nfsd: restrict rd_maxcount to svc_max_payload in nfsd_encode_readdir (git-fixes).\n- NFS: Ensure we commit after writeback is complete (bsc#1111809).\n- NFS: Fix an incorrect type in struct nfs_direct_req (git-fixes).\n- NFS: Fix a typo in nfs_rename() (git-fixes).\n- NFS: Fix typo in nomigration mount option (git-fixes).\n- NFS: Fix unstable write completion (git-fixes).\n- NFSv4.0 fix client reference leak in callback (git-fixes).\n- NFSv4.1: Fix a potential layoutget/layoutrecall deadlock (git-fixes).\n- NFSv4.1 fix infinite loop on I/O (git-fixes).\n- NFSv4.1: Fix the client behaviour on NFS4ERR_SEQ_FALSE_RETRY (git-fixes).\n- NFSv4.1: Fix up replays of interrupted requests (git-fixes).\n- NFSv4: Fix a typo in nfs41_sequence_process (git-fixes).\n- nl80211: Fix possible Spectre-v1 for CQM RSSI thresholds (bsc#1051510).\n- nl80211: Fix possible Spectre-v1 for NL80211_TXRATE_HT (bsc#1051510).\n- nospec: Include \u003casm/barrier.h\u003e dependency (bsc#1114279).\n- nvdimm: Clarify comment in sizeof_namespace_index (bsc#1111921, bsc#1113408, bsc#1113972).\n- nvdimm: Remove empty if statement (bsc#1111921, bsc#1113408, bsc#1113972).\n- nvdimm: Sanity check labeloff (bsc#1111921, bsc#1113408, bsc#1113972).\n- nvdimm: Split label init out from the logic for getting config data (bsc#1111921, bsc#1113408, bsc#1113972).\n- nvdimm: Use namespace index data to reduce number of label reads needed (bsc#1111921, bsc#1113408, bsc#1113972).\n- nvme: Free ctrl device name on init failure ().\n- ocfs2: fix a misuse a of brelse after failing ocfs2_check_dir_entry (bsc#1117817).\n- ocfs2: fix locking for res-\u003etracking and dlm-\u003etracking_list (bsc#1117816).\n- ocfs2: fix ocfs2 read block panic (bsc#1117815).\n- ocfs2: free up write context when direct IO failed (bsc#1117821).\n- ocfs2: subsystem.su_mutex is required while accessing the item-\u003eci_parent (bsc#1117808).\n- of: add helper to lookup compatible child node (bsc#1106110)\n- openvswitch: Fix push/pop ethernet validation (networking-stable-18_11_02).\n- orangefs: fix deadlock; do not write i_size in read_iter (bsc#1051510).\n- orangefs: initialize op on loop restart in orangefs_devreq_read (bsc#1051510).\n- orangefs_kill_sb(): deal with allocation failures (bsc#1051510).\n- orangefs: use list_for_each_entry_safe in purge_waiting_ops (bsc#1051510).\n- PCI: Add Device IDs for Intel GPU \u0027spurious interrupt\u0027 quirk (bsc#1051510).\n- PCI/ASPM: Do not initialize link state when aspm_disabled is set (bsc#1051510).\n- PCI/ASPM: Fix link_state teardown on device removal (bsc#1051510).\n- PCI: dwc: remove duplicate fix References: bsc#1115269 Patch has been already applied by the following commit: 9f73db8b7c PCI: dwc: Fix enumeration end when reaching root subordinate (bsc#1051510)\n- PCI: hv: Do not wait forever on a device that has disappeared (bsc#1109806).\n- PCI: hv: Use effective affinity mask (bsc#1109772).\n- PCI: imx6: Fix link training status detection in link up check (bsc#1109806).\n- PCI: iproc: Remove PAXC slot check to allow VF support (bsc#1109806).\n- PCI/MSI: Warn and return error if driver enables MSI/MSI-X twice (bsc#1051510).\n- PCI: Reprogram bridge prefetch registers on resume (bsc#1051510).\n- PCI: vmd: Assign vector zero to all bridges (bsc#1109806).\n- PCI: vmd: Detach resources after stopping root bus (bsc#1109806).\n- PCI: vmd: White list for fast interrupt handlers (bsc#1109806).\n- pcmcia: Implement CLKRUN protocol disabling for Ricoh bridges (bsc#1051510).\n- percpu: make this_cpu_generic_read() atomic w.r.t. interrupts (bsc#1114279).\n- perf: fix invalid bit in diagnostic entry (git-fixes).\n- pinctrl: at91-pio4: fix has_config check in atmel_pctl_dt_subnode_to_map() (bsc#1051510).\n- pinctrl: meson: fix pinconf bias disable (bsc#1051510).\n- pinctrl: qcom: spmi-mpp: Fix drive strength setting (bsc#1051510).\n- pinctrl: qcom: spmi-mpp: Fix err handling of pmic_mpp_set_mux (bsc#1051510).\n- pinctrl: spmi-mpp: Fix pmic_mpp_config_get() to be compliant (bsc#1051510).\n- pinctrl: ssbi-gpio: Fix pm8xxx_pin_config_get() to be compliant (bsc#1051510).\n- pipe: match pipe_max_size data type with procfs (git-fixes).\n- platform/x86: acerhdf: Add BIOS entry for Gateway LT31 v1.3307 (bsc#1051510).\n- platform/x86: intel_telemetry: report debugfs failure (bsc#1051510).\n- pNFS: Always free the session slot on error in nfs4_layoutget_handle_exception (git-fixes).\n- pNFS: Do not release the sequence slot until we\u0027ve processed layoutget on open (git-fixes).\n- pNFS: Prevent the layout header refcount going to zero in pnfs_roc() (git-fixes).\n- powerpc/64s/hash: Do not use PPC_INVALIDATE_ERAT on CPUs before POWER9 (bsc#1065729).\n- powerpc/boot: Fix opal console in boot wrapper (bsc#1065729).\n- powerpc/kvm/booke: Fix altivec related build break (bsc#1061840).\n- powerpc/kvm: Switch kvm pmd allocator to custom allocator (bsc#1061840).\n- powerpc/mm: Fix typo in comments (bsc#1065729).\n- powerpc/mm/hugetlb: initialize the pagetable cache correctly for hugetlb (bsc#1091800).\n- powerpc/mm/keys: Move pte bits to correct headers (bsc#1078248).\n- powerpc/mm: Rename find_linux_pte_or_hugepte() (bsc#1061840).\n- powerpc/npu-dma.c: Fix crash after __mmu_notifier_register failure (bsc#1055120).\n- powerpc/perf: Update raw-event code encoding comment for power8 (bsc#1065729).\n- powerpc/powernv: Add indirect levels to it_userspace (bsc#1061840).\n- powerpc/powernv: Do not select the cpufreq governors (bsc#1065729).\n- powerpc/powernv: Fix concurrency issue with npu-\u003emmio_atsd_usage (bsc#1055120).\n- powerpc/powernv: Fix opal_event_shutdown() called with interrupts disabled (bsc#1065729).\n- powerpc/powernv/ioda2: Reduce upper limit for DMA window size (bsc#1055120).\n- powerpc/powernv/ioda: Allocate indirect TCE levels on demand (bsc#1061840).\n- powerpc/powernv/ioda: Finish removing explicit max window size check (bsc#1061840).\n- powerpc/powernv/ioda: Remove explicit max window size check (bsc#1061840).\n- powerpc/powernv: Move TCE manupulation code to its own file (bsc#1061840).\n- powerpc/powernv/npu: Add lock to prevent race in concurrent context init/destroy (bsc#1055120).\n- powerpc/powernv/npu: Do not explicitly flush nmmu tlb (bsc#1055120).\n- powerpc/powernv/npu: Fix deadlock in mmio_invalidate() (bsc#1055120).\n- powerpc/powernv/npu: Prevent overwriting of pnv_npu2_init_contex() callback parameters (bsc#1055120).\n- powerpc/powernv/npu: Use flush_all_mm() instead of flush_tlb_mm() (bsc#1055120).\n- powerpc/powernv/pci: Work around races in PCI bridge enabling (bsc#1055120).\n- powerpc/powernv: Rework TCE level allocation (bsc#1061840).\n- powerpc/pseries: Fix build break for SPLPAR=n and CPU hotplug (bsc#1079524, git-fixes).\n- powerpc/pseries: Fix CONFIG_NUMA=n build (bsc#1067906, git-fixes).\n- powerpc/pseries: Fix DTL buffer registration (bsc#1065729).\n- powerpc/pseries: Fix how we iterate over the DTL entries (bsc#1065729).\n- powerpc/pseries: Fix \u0027OF: ERROR: Bad of_node_put() on /cpus\u0027 during DLPAR (bsc#1113295).\n- powerpc/pseries/mobility: Extend start/stop topology update scope (bsc#1116950, bsc#1115709).\n- powerpc: pseries: remove dlpar_attach_node dependency on full path (bsc#1113295).\n- powerpc/xive: Move definition of ESB bits (bsc#1061840).\n- powerpc/xmon: Add ISA v3.0 SPRs to SPR dump (bsc#1061840).\n- power: supply: max8998-charger: Fix platform data retrieval (bsc#1051510).\n- pppoe: fix reception of frames with no mac header (networking-stable-18_09_24).\n- printk: drop in_nmi check from printk_safe_flush_on_panic() (bsc#1112170).\n- printk: Fix panic caused by passing log_buf_len to command line (bsc#1117168).\n- printk/tracing: Do not trace printk_nmi_enter() (bsc#1112208).\n- provide linux/set_memory.h (bsc#1113295).\n- ptp: fix Spectre v1 vulnerability (bsc#1051510).\n- pwm: lpss: Release runtime-pm reference from the driver\u0027s remove callback (bsc#1051510).\n- pxa168fb: prepare the clock (bsc#1051510).\n- qmi_wwan: Added support for Gemalto\u0027s Cinterion ALASxx WWAN interface (bsc#1051510).\n- qmi_wwan: apply SET_DTR quirk to the SIMCOM shared device ID (bsc#1051510).\n- qmi_wwan: Support dynamic config on Quectel EP06 (bsc#1051510).\n- qrtr: add MODULE_ALIAS macro to smd (bsc#1051510).\n- r8169: Clear RTL_FLAG_TASK_*_PENDING when clearing RTL_FLAG_TASK_ENABLED (bsc#1051510).\n- r8169: fix NAPI handling under high load (networking-stable-18_11_02).\n- race of lockd inetaddr notifiers vs nlmsvc_rqst change (git-fixes).\n- RAID10 BUG_ON in raise_barrier when force is true and conf-\u003ebarrier is 0 (git-fixes).\n- random: rate limit unseeded randomness warnings (git-fixes).\n- rculist: add list_for_each_entry_from_rcu() (bsc#1084760).\n- rculist: Improve documentation for list_for_each_entry_from_rcu() (bsc#1084760).\n- rds: fix two RCU related problems (networking-stable-18_09_18).\n- README: Clean-up trailing whitespace\n- reiserfs: add check to detect corrupted directory entry (bsc#1109818).\n- reiserfs: do not panic on bad directory entries (bsc#1109818).\n- remoteproc: qcom: Fix potential device node leaks (bsc#1051510).\n- rename a hv patch to reduce conflicts in -AZURE\n- reset: hisilicon: fix potential NULL pointer dereference (bsc#1051510).\n- reset: imx7: Fix always writing bits as 0 (bsc#1051510).\n- resource: Include resource end in walk_*() interfaces (bsc#1114279).\n- Revert \u0027ceph: fix dentry leak in splice_dentry()\u0027 (bsc#1114839).\n- Revert \u0027powerpc/64: Fix checksum folding in csum_add()\u0027 (bsc#1065729).\n- Revert \u0027rpm/kernel-binary.spec.in: allow unsupported modules for -extra\u0027\n- Revert \u0027usb: dwc3: gadget: skip Set/Clear Halt when invalid\u0027 (bsc#1051510).\n- rpmsg: Correct support for MODULE_DEVICE_TABLE() (git-fixes).\n- rtnetlink: Disallow FDB configuration for non-Ethernet device (networking-stable-18_11_02).\n- rtnetlink: fix rtnl_fdb_dump() for ndmsg header (networking-stable-18_10_16).\n- rtnl: limit IFLA_NUM_TX_QUEUES and IFLA_NUM_RX_QUEUES to 4096 (networking-stable-18_10_16).\n- s390/cpum_sf: Add data entry sizes to sampling trailer entry (git-fixes).\n- s390/kvm: fix deadlock when killed by oom (bnc#1113501, LTC#172235).\n- s390/mm: Check for valid vma before zapping in gmap_discard (git-fixes).\n- s390/mm: correct allocate_pgste proc_handler callback (git-fixes).\n- s390: qeth_core_mpc: Use ARRAY_SIZE instead of reimplementing its function (bnc#1113501, LTC#172682).\n- s390/qeth: fix HiperSockets sniffer (bnc#1113501, LTC#172953).\n- s390: qeth: Fix potential array overrun in cmd/rc lookup (bnc#1113501, LTC#172682).\n- s390/qeth: handle failure on workqueue creation (git-fixes).\n- s390/qeth: report 25Gbit link speed (bnc#1113501, LTC#172959).\n- s390: revert ELF_ET_DYN_BASE base changes (git-fixes).\n- s390/sclp_tty: enable line mode tty even if there is an ascii console (git-fixes).\n- s390/sthyi: add cache to store hypervisor info (LTC#160415, bsc#1068273).\n- s390/sthyi: add s390_sthyi system call (LTC#160415, bsc#1068273).\n- s390/sthyi: reorganize sthyi implementation (LTC#160415, bsc#1068273).\n- sched/numa: Limit the conditions where scan period is reset ().\n- scsi: core: Allow state transitions from OFFLINE to BLOCKED (bsc#1112246).\n- scsi: core: Allow state transitions from OFFLINE to BLOCKED (bsc#1112246).\n- scsi: core: Avoid that SCSI device removal through sysfs triggers a deadlock (bsc#1114578).\n- scsi: libfc: check fc_frame_payload_get() return value for null (bsc#1104731).\n- scsi: libfc: check fc_frame_payload_get() return value for null (bsc#1104731).\n- scsi: libfc: retry PRLI if we cannot analyse the payload (bsc#1104731).\n- scsi: libfc: retry PRLI if we cannot analyse the payload (bsc#1104731).\n- scsi: libsas: remove irq save in sas_ata_qc_issue() (bsc#1114580).\n- scsi: lpfc: add support to retrieve firmware logs (bsc#1114015).\n- scsi: lpfc: add Trunking support (bsc#1114015).\n- scsi: lpfc: Correct errors accessing fw log (bsc#1114015).\n- scsi: lpfc: Correct invalid EQ doorbell write on if_type=6 (bsc#1114015).\n- scsi: lpfc: Correct irq handling via locks when taking adapter offline (bsc#1114015).\n- scsi: lpfc: Correct LCB RJT handling (bsc#1114015).\n- scsi: lpfc: Correct loss of fc4 type on remote port address change (bsc#1114015).\n- scsi: lpfc: Correct race with abort on completion path (bsc#1114015).\n- scsi: lpfc: Correct soft lockup when running mds diagnostics (bsc#1114015).\n- scsi: lpfc: Correct speeds on SFP swap (bsc#1114015).\n- scsi: lpfc: fcoe: Fix link down issue after 1000+ link bounces (bsc#1114015).\n- scsi: lpfc: Fix errors in log messages (bsc#1114015).\n- scsi: lpfc: Fix GFT_ID and PRLI logic for RSCN (bsc#1114015).\n- scsi: lpfc: Fix LOGO/PLOGI handling when triggerd by ABTS Timeout event (bsc#1114015).\n- scsi: lpfc: Fix lpfc_sli4_read_config return value check (bsc#1114015).\n- scsi: lpfc: Fix odd recovery in duplicate FLOGIs in point-to-point (bsc#1114015).\n- scsi: lpfc: Implement GID_PT on Nameserver query to support faster failover (bsc#1114015).\n- scsi: lpfc: Raise nvme defaults to support a larger io and more connectivity (bsc#1114015).\n- scsi: lpfc: raise sg count for nvme to use available sg resources (bsc#1114015).\n- scsi: lpfc: reduce locking when updating statistics (bsc#1114015).\n- scsi: lpfc: Remove set but not used variable \u0027sgl_size\u0027 (bsc#1114015).\n- scsi: lpfc: Reset link or adapter instead of doing infinite nameserver PLOGI retry (bsc#1114015).\n- scsi: lpfc: Synchronize access to remoteport via rport (bsc#1114015).\n- scsi: lpfc: update driver version to 12.0.0.7 (bsc#1114015).\n- scsi: lpfc: update driver version to 12.0.0.8 (bsc#1114015).\n- scsi: qlogicpti: Fix an error handling path in \u0027qpti_sbus_probe()\u0027 (bsc#1114581).\n- scsi: scsi_transport_srp: Fix shost to rport translation (bsc#1114582).\n- scsi: sg: fix minor memory leak in error path (bsc#1114584).\n- scsi: sysfs: Introduce sysfs_{un,}break_active_protection() (bsc#1114578).\n- scsi: target: Fix fortify_panic kernel exception (bsc#1114576).\n- scsi: target/tcm_loop: Avoid that static checkers warn about dead code (bsc#1114577).\n- scsi: target: tcmu: add read length support (bsc#1097755).\n- sctp: fix race on sctp_id2asoc (networking-stable-18_11_02).\n- sctp: fix strchange_flags name for Stream Change Event (networking-stable-18_11_21).\n- sctp: hold transport before accessing its asoc in sctp_transport_get_next (networking-stable-18_09_11).\n- sctp: not allow to set asoc prsctp_enable by sockopt (networking-stable-18_11_21).\n- sctp: not increase stream\u0027s incnt before sending addstrm_in request (networking-stable-18_11_21).\n- sctp: update dst pmtu with the correct daddr (networking-stable-18_10_16).\n- serial: 8250: Fix clearing FIFOs in RS485 mode again (bsc#1051510).\n- signal: Properly deliver SIGSEGV from x86 uprobes (bsc#1110006).\n- skip LAYOUTRETURN if layout is invalid (git-fixes).\n- smb2: fix missing files in root share directory listing (bsc#1112907).\n- smb2: fix missing files in root share directory listing (bsc#1112907).\n- smb3: fill in statfs fsid and correct namelen (bsc#1112905).\n- smb3: fill in statfs fsid and correct namelen (bsc#1112905).\n- smb3: fix reset of bytes read and written stats (bsc#1112906).\n- smb3: fix reset of bytes read and written stats (bsc#1112906).\n- smb3: on reconnect set PreviousSessionId field (bsc#1112899).\n- smb3: on reconnect set PreviousSessionId field (bsc#1112899).\n- soc: fsl: qbman: qman: avoid allocating from non existing gen_pool (bsc#1051510).\n- soc/tegra: pmc: Fix child-node lookup (bsc#1051510).\n- soc: ti: QMSS: Fix usage of irq_set_affinity_hint (bsc#1051510).\n- sound: do not call skl_init_chip() to reset intel skl soc (bsc#1051510).\n- sound: enable interrupt after dma buffer initialization (bsc#1051510).\n- spi/bcm63xx-hsspi: keep pll clk enabled (bsc#1051510).\n- spi: bcm-qspi: switch back to reading flash using smaller chunks (bsc#1051510).\n- spi: sh-msiof: fix deferred probing (bsc#1051510).\n- staging: comedi: ni_mio_common: protect register write overflow (bsc#1051510).\n- staging:iio:ad7606: fix voltage scales (bsc#1051510).\n- staging: rtl8723bs: Fix the return value in case of error in \u0027rtw_wx_read32()\u0027 (bsc#1051510).\n- staging: vchiq_arm: fix compat VCHIQ_IOC_AWAIT_COMPLETION (bsc#1051510).\n- sunrpc: Allow connect to return EHOSTUNREACH (git-fixes).\n- sunrpc: Do not use stack buffer with scatterlist (git-fixes).\n- sunrpc: Fix rpc_task_begin trace point (git-fixes).\n- sunrpc: Fix tracepoint storage issues with svc_recv and svc_rqst_status (git-fixes).\n- target: fix buffer offset in core_scsi3_pri_read_full_status (bsc1117349).\n- target: log Data-Out timeouts as errors (bsc#1095805).\n- target: log NOP ping timeouts as errors (bsc#1095805).\n- target: split out helper for cxn timeout error stashing (bsc#1095805).\n- target: stash sess_err_stats on Data-Out timeout (bsc#1095805).\n- target: use ISCSI_IQN_LEN in iscsi_target_stat (bsc#1095805).\n- tcp: do not restart timewait timer on rst reception (networking-stable-18_09_11).\n- test_firmware: fix error return getting clobbered (bsc#1051510).\n- tg3: Add PHY reset for 5717/5719/5720 in change ring and flow control paths (networking-stable-18_11_21).\n- thermal: bcm2835: enable hwmon explicitly (bsc#1108468).\n- thermal: da9062/61: Prevent hardware access during system suspend (bsc#1051510).\n- thermal: rcar_thermal: Prevent hardware access during system suspend (bsc#1051510).\n- tipc: do not assume linear buffer when reading ancillary data (networking-stable-18_11_21).\n- tipc: fix a missing rhashtable_walk_exit() (networking-stable-18_09_11).\n- tipc: fix flow control accounting for implicit connect (networking-stable-18_10_16).\n- tools build: fix # escaping in .cmd files for future Make (git-fixes).\n- tools/testing/nvdimm: advertise a write cache for nfit_test (bsc#1112128).\n- tools/testing/nvdimm: allow custom error code injection (bsc#1112128).\n- tools/testing/nvdimm: disable labels for nfit_test.1 (bsc#1112128).\n- tools/testing/nvdimm: enable labels for nfit_test.1 dimms (bsc#1112128).\n- tools/testing/nvdimm: fix missing newline in nfit_test_dimm \u0027handle\u0027 attribute (bsc#1112128).\n- tools/testing/nvdimm: Fix support for emulating controller temperature (bsc#1112128).\n- tools/testing/nvdimm: force nfit_test to depend on instrumented modules (bsc#1112128).\n- tools/testing/nvdimm: improve emulation of smart injection (bsc#1112128).\n- tools/testing/nvdimm: kaddr and pfn can be NULL to -\u003edirect_access() (bsc#1112128).\n- tools/testing/nvdimm: Make DSM failure code injection an override (bsc#1112128).\n- tools/testing/nvdimm: smart alarm/threshold control (bsc#1112128).\n- tools/testing/nvdimm: stricter bounds checking for error injection commands (bsc#1112128).\n- tools/testing/nvdimm: support nfit_test_dimm attributes under nfit_test.1 (bsc#1112128).\n- tools/testing/nvdimm: unit test clear-error commands (bsc#1112128).\n- tools/vm/page-types.c: fix \u0027defined but not used\u0027 warning (bsc#1051510).\n- tools/vm/slabinfo.c: fix sign-compare warning (bsc#1051510).\n- tpm2-cmd: allow more attempts for selftest execution (bsc#1082555).\n- tpm: add retry logic (bsc#1082555).\n- tpm: consolidate the TPM startup code (bsc#1082555).\n- tpm: do not suspend/resume if power stays on (bsc#1082555).\n- tpm: fix intermittent failure with self tests (bsc#1082555).\n- tpm: fix response size validation in tpm_get_random() (bsc#1082555).\n- tpm: move endianness conversion of ordinals to tpm_input_header (bsc#1082555).\n- tpm: move endianness conversion of TPM_TAG_RQU_COMMAND to tpm_input_header (bsc#1082555).\n- tpm: move the delay_msec increment after sleep in tpm_transmit() (bsc#1082555).\n- tpm: React correctly to RC_TESTING from TPM 2.0 self tests (bsc#1082555).\n- tpm: replace msleep() with usleep_range() in TPM 1.2/2.0 generic drivers (bsc#1082555).\n- tpm: Restore functionality to xen vtpm driver (bsc#1082555).\n- tpm: self test failure should not cause suspend to fail (bsc#1082555).\n- tpm: tpm-interface: fix tpm_transmit/_cmd kdoc (bsc#1082555).\n- tpm: Trigger only missing TPM 2.0 self tests (bsc#1082555).\n- tpm: Use dynamic delay to wait for TPM 2.0 self test result (bsc#1082555).\n- tpm: use tpm2_pcr_read() in tpm2_do_selftest() (bsc#1082555).\n- tpm: use tpm_buf functions in tpm2_pcr_read() (bsc#1082555).\n- tracing: Add barrier to trace_printk() buffer nesting modification (bsc#1112219).\n- tracing: Apply trace_clock changes to instance max buffer (bsc#1117188).\n- tracing: Erase irqsoff trace with empty write (bsc#1117189).\n- tty: check name length in tty_find_polling_driver() (bsc#1051510).\n- tty: Do not block on IO when ldisc change is pending (bnc#1105428).\n- tty: fix data race between tty_init_dev and flush of buf (bnc#1105428).\n- tty: Hold tty_ldisc_lock() during tty_reopen() (bnc#1105428).\n- tty/ldsem: Add lockdep asserts for ldisc_sem (bnc#1105428).\n- tty/ldsem: Convert to regular lockdep annotations (bnc#1105428).\n- tty/ldsem: Decrement wait_readers on timeouted down_read() (bnc#1105428).\n- tty/ldsem: Wake up readers after timed out down_write() (bnc#1105428).\n- tty: Simplify tty-\u003ecount math in tty_reopen() (bnc#1105428).\n- tty: wipe buffer (bsc#1051510).\n- tty: wipe buffer if not echoing data (bsc#1051510).\n- tun: Consistently configure generic netdev params via rtnetlink (bsc#1051510).\n- tuntap: fix multiqueue rx (networking-stable-18_11_21).\n- udp4: fix IP_CMSG_CHECKSUM for connected sockets (networking-stable-18_09_24).\n- udp6: add missing checks on edumux packet processing (networking-stable-18_09_24).\n- udp6: fix encap return code for resubmitting (git-fixes).\n- uio: ensure class is registered before devices (bsc#1051510).\n- uio: Fix an Oops on load (bsc#1051510).\n- uio: make symbol \u0027uio_class_registered\u0027 static (bsc#1051510).\n- Update config files. Enabled ENA (Amazon network driver) for arm64.\n- usb: cdc-acm: add entry for Hiro (Conexant) modem (bsc#1051510).\n- usb: chipidea: Prevent unbalanced IRQ disable (bsc#1051510).\n- usb: core: Fix hub port connection events lost (bsc#1051510).\n- usb: dwc2: host: do not delay retries for CONTROL IN transfers (bsc#1114385).\n- usb: dwc2: host: Do not retry NAKed transactions right away (bsc#1114385).\n- usb: dwc3: core: Clean up ULPI device (bsc#1051510).\n- usb: dwc3: gadget: fix ISOC TRB type on unaligned transfers (bsc#1051510).\n- usb: dwc3: gadget: Properly check last unaligned/zero chain TRB (bsc#1051510).\n- usb: gadget: fsl_udc_core: check allocation return value and cleanup on failure (bsc#1051510).\n- usb: gadget: fsl_udc_core: fixup struct_udc_setup documentation (bsc#1051510).\n- usb: gadget: storage: Fix Spectre v1 vulnerability (bsc#1051510).\n- usb: gadget: udc: atmel: handle at91sam9rl PMC (bsc#1051510).\n- usb: gadget: u_ether: fix unsafe list iteration (bsc#1051510).\n- usb: host: ohci-at91: fix request of irq for optional gpio (bsc#1051510).\n- usbip: tools: fix atoi() on non-null terminated string (bsc#1051510).\n- usbip:vudc: BUG kmalloc-2048 (Not tainted): Poison overwritten (bsc#1051510).\n- usb: misc: appledisplay: add 20\u0027 Apple Cinema Display (bsc#1051510).\n- usbnet: smsc95xx: disable carrier check while suspending (bsc#1051510).\n- usb: omap_udc: fix rejection of out transfers when DMA is used (bsc#1051510).\n- usb: quirks: Add delay-init quirk for Corsair K70 LUX RGB (bsc#1051510).\n- usb: quirks: Add no-lpm quirk for Raydium touchscreens (bsc#1051510).\n- usb: remove LPM management from usb_driver_claim_interface() (bsc#1051510).\n- usb: serial: cypress_m8: fix interrupt-out transfer length (bsc#1051510).\n- usb: serial: option: add two-endpoints device-id flag (bsc#1051510).\n- usb: serial: option: drop redundant interface-class test (bsc#1051510).\n- usb: serial: option: improve Quectel EP06 detection (bsc#1051510).\n- usb: xhci: fix timeout for transition from RExit to U0 (bsc#1051510).\n- userfaultfd: hugetlbfs: fix userfaultfd_huge_must_wait() pte access (bsc#1109739).\n- Use upstream version of pci-hyperv patch (35a88a1)\n- VFS: close race between getcwd() and d_move() (git-fixes).\n- VFS: fix freeze protection in mnt_want_write_file() for overlayfs (git-fixes).\n- vhost: Fix Spectre V1 vulnerability (bsc#1051510).\n- vhost/scsi: truncate T10 PI iov_iter to prot_bytes (bsc#1051510).\n- virtio_net: avoid using netif_tx_disable() for serializing tx routine (networking-stable-18_11_02).\n- VMCI: Resource wildcard match fixed (bsc#1051510).\n- w1: omap-hdq: fix missing bus unregister at removal (bsc#1051510).\n- Workaround for mysterious NVMe breakage with i915 CFL (bsc#1111040).\n- x86/acpi: Prevent X2APIC id 0xffffffff from being accounted (bsc#1110006).\n- x86/boot/KASLR: Work around firmware bugs by excluding EFI_BOOT_SERVICES_* and EFI_LOADER_* from KASLR\u0027s choice (bnc#1112878).\n- x86/boot: Move EISA setup to a separate file (bsc#1110006).\n- x86/corruption-check: Fix panic in memory_corruption_check() when boot option without value is provided (bsc#1110006).\n- x86/cpufeature: Add User-Mode Instruction Prevention definitions (bsc#1110006).\n- x86/cpufeatures: Add Intel Total Memory Encryption cpufeature (bsc#1110006).\n- x86/cpu/vmware: Do not trace vmware_sched_clock() (bsc#1114279).\n- x86/eisa: Add missing include (bsc#1110006).\n- x86/EISA: Do not probe EISA bus for Xen PV guests (bsc#1110006).\n- x86/fpu: Remove second definition of fpu in __fpu__restore_sig() (bsc#1110006).\n- x86, hibernate: Fix nosave_regions setup for hibernation (bsc#1110006).\n- x86/irq: implement irq_data_get_effective_affinity_mask() for v4.12 (bsc#1109772).\n- x86/kasan: Panic if there is not enough memory to boot (bsc#1110006).\n- x86/kexec: Correct KEXEC_BACKUP_SRC_END off-by-one error (bsc#1114279).\n- x86/ldt: Remove unused variable in map_ldt_struct() (bsc#1114279).\n- x86/ldt: Split out sanity check in map_ldt_struct() (bsc#1114279).\n- x86/ldt: Unmap PTEs for the slot before freeing LDT pages (bsc#1114279).\n- x86/MCE/AMD: Fix the thresholding machinery initialization order (bsc#1114279).\n- x86/MCE: Fix stack out-of-bounds write in mce-inject.c: Flags_read() (bsc#1110006).\n- x86/MCE: Make correctable error detection look at the Deferred bit (bsc#1114279).\n- x86/mm/pat: Disable preemption around __flush_tlb_all() (bsc#1114279).\n- x86, nfit_test: Add unit test for memcpy_mcsafe() (bsc#1112128).\n- x86/paravirt: Fix some warning messages (bnc#1065600).\n- x86/percpu: Fix this_cpu_read() (bsc#1110006).\n- x86/speculation: Support Enhanced IBRS on future CPUs ().\n- x86/time: Correct the attribute on jiffies\u0027 definition (bsc#1110006).\n- x86/xen: Fix boot loader version reported for PVH guests (bnc#1065600).\n- xen/balloon: Support xend-based toolstack (bnc#1065600).\n- xen/blkfront: avoid NULL blkfront_info dereference on device removal (bsc#1111062).\n- xen: fix race in xen_qlock_wait() (bnc#1107256).\n- xen: fix xen_qlock_wait() (bnc#1107256).\n- xen/gntdev: avoid out of bounds access in case of partial gntdev_mmap() (bnc#1065600).\n- xen: make xen_qlock_wait() nestable (bnc#1107256).\n- xen/netfront: do not bug in case of too many frags (bnc#1104824).\n- xen/pvh: do not try to unplug emulated devices (bnc#1065600).\n- xen/pvh: increase early stack size (bnc#1065600).\n- xen: Remove unnecessary BUG_ON from __unbind_from_irq() (bnc#1065600).\n- xen-swiotlb: fix the check condition for xen_swiotlb_free_coherent (bnc#1065600).\n- xen-swiotlb: use actually allocated size on check physical continuous (bnc#1065600).\n- xen/x86: add diagnostic printout to xen_mc_flush() in case of error (bnc#1116183).\n- xfrm: use complete IPv6 addresses for hash (bsc#1109330).\n- xfs: do not fail when converting shortform attr to long form during ATTR_REPLACE (bsc#1105025).\n- xfs: Fix error code in \u0027xfs_ioc_getbmap()\u0027 (git-fixes).\n- xfs: Properly detect when DAX won\u0027t be used on any device (bsc#1115976).\n- xhci: Add check for invalid byte size error when UAS devices are connected (bsc#1051510).\n- xhci: Do not print a warning when setting link state for disabled ports (bsc#1051510).\n- xhci: Fix leaking USB3 shared_hcd at xhci removal (bsc#1051510).\n- xprtrdma: Do not defer fencing an async RPC\u0027s chunks (git-fixes).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Live-Patching-12-SP4-2018-2894",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_4072-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:4072-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20184072-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:4072-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-December/004953.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1051510",
        "url": "https://bugzilla.suse.com/1051510"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1055120",
        "url": "https://bugzilla.suse.com/1055120"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1061840",
        "url": "https://bugzilla.suse.com/1061840"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1065600",
        "url": "https://bugzilla.suse.com/1065600"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1065729",
        "url": "https://bugzilla.suse.com/1065729"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1066674",
        "url": "https://bugzilla.suse.com/1066674"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1067906",
        "url": "https://bugzilla.suse.com/1067906"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068273",
        "url": "https://bugzilla.suse.com/1068273"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076830",
        "url": "https://bugzilla.suse.com/1076830"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1078248",
        "url": "https://bugzilla.suse.com/1078248"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1079524",
        "url": "https://bugzilla.suse.com/1079524"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082555",
        "url": "https://bugzilla.suse.com/1082555"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082653",
        "url": "https://bugzilla.suse.com/1082653"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1083647",
        "url": "https://bugzilla.suse.com/1083647"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1084760",
        "url": "https://bugzilla.suse.com/1084760"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1084831",
        "url": "https://bugzilla.suse.com/1084831"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1085535",
        "url": "https://bugzilla.suse.com/1085535"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1086196",
        "url": "https://bugzilla.suse.com/1086196"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1089350",
        "url": "https://bugzilla.suse.com/1089350"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1091800",
        "url": "https://bugzilla.suse.com/1091800"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1094825",
        "url": "https://bugzilla.suse.com/1094825"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1095805",
        "url": "https://bugzilla.suse.com/1095805"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1097755",
        "url": "https://bugzilla.suse.com/1097755"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1100132",
        "url": "https://bugzilla.suse.com/1100132"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1103356",
        "url": "https://bugzilla.suse.com/1103356"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1103925",
        "url": "https://bugzilla.suse.com/1103925"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1104124",
        "url": "https://bugzilla.suse.com/1104124"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1104731",
        "url": "https://bugzilla.suse.com/1104731"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1104824",
        "url": "https://bugzilla.suse.com/1104824"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1105025",
        "url": "https://bugzilla.suse.com/1105025"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1105428",
        "url": "https://bugzilla.suse.com/1105428"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1106105",
        "url": "https://bugzilla.suse.com/1106105"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1106110",
        "url": "https://bugzilla.suse.com/1106110"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1106237",
        "url": "https://bugzilla.suse.com/1106237"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1106240",
        "url": "https://bugzilla.suse.com/1106240"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1107256",
        "url": "https://bugzilla.suse.com/1107256"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1107385",
        "url": "https://bugzilla.suse.com/1107385"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1107866",
        "url": "https://bugzilla.suse.com/1107866"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1108377",
        "url": "https://bugzilla.suse.com/1108377"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1108468",
        "url": "https://bugzilla.suse.com/1108468"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109330",
        "url": "https://bugzilla.suse.com/1109330"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109739",
        "url": "https://bugzilla.suse.com/1109739"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109772",
        "url": "https://bugzilla.suse.com/1109772"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109806",
        "url": "https://bugzilla.suse.com/1109806"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109818",
        "url": "https://bugzilla.suse.com/1109818"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109907",
        "url": "https://bugzilla.suse.com/1109907"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109911",
        "url": "https://bugzilla.suse.com/1109911"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109915",
        "url": "https://bugzilla.suse.com/1109915"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109919",
        "url": "https://bugzilla.suse.com/1109919"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109951",
        "url": "https://bugzilla.suse.com/1109951"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1110006",
        "url": "https://bugzilla.suse.com/1110006"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1110998",
        "url": "https://bugzilla.suse.com/1110998"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111040",
        "url": "https://bugzilla.suse.com/1111040"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111062",
        "url": "https://bugzilla.suse.com/1111062"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111174",
        "url": "https://bugzilla.suse.com/1111174"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111506",
        "url": "https://bugzilla.suse.com/1111506"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111696",
        "url": "https://bugzilla.suse.com/1111696"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111809",
        "url": "https://bugzilla.suse.com/1111809"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111921",
        "url": "https://bugzilla.suse.com/1111921"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111983",
        "url": "https://bugzilla.suse.com/1111983"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112128",
        "url": "https://bugzilla.suse.com/1112128"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112170",
        "url": "https://bugzilla.suse.com/1112170"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112173",
        "url": "https://bugzilla.suse.com/1112173"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112208",
        "url": "https://bugzilla.suse.com/1112208"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112219",
        "url": "https://bugzilla.suse.com/1112219"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112221",
        "url": "https://bugzilla.suse.com/1112221"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112246",
        "url": "https://bugzilla.suse.com/1112246"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112372",
        "url": "https://bugzilla.suse.com/1112372"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112514",
        "url": "https://bugzilla.suse.com/1112514"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112554",
        "url": "https://bugzilla.suse.com/1112554"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112708",
        "url": "https://bugzilla.suse.com/1112708"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112710",
        "url": "https://bugzilla.suse.com/1112710"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112711",
        "url": "https://bugzilla.suse.com/1112711"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112712",
        "url": "https://bugzilla.suse.com/1112712"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112713",
        "url": "https://bugzilla.suse.com/1112713"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112731",
        "url": "https://bugzilla.suse.com/1112731"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112732",
        "url": "https://bugzilla.suse.com/1112732"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112733",
        "url": "https://bugzilla.suse.com/1112733"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112734",
        "url": "https://bugzilla.suse.com/1112734"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112735",
        "url": "https://bugzilla.suse.com/1112735"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112736",
        "url": "https://bugzilla.suse.com/1112736"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112738",
        "url": "https://bugzilla.suse.com/1112738"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112739",
        "url": "https://bugzilla.suse.com/1112739"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112740",
        "url": "https://bugzilla.suse.com/1112740"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112741",
        "url": "https://bugzilla.suse.com/1112741"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112743",
        "url": "https://bugzilla.suse.com/1112743"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112745",
        "url": "https://bugzilla.suse.com/1112745"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112746",
        "url": "https://bugzilla.suse.com/1112746"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112878",
        "url": "https://bugzilla.suse.com/1112878"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112894",
        "url": "https://bugzilla.suse.com/1112894"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112899",
        "url": "https://bugzilla.suse.com/1112899"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112902",
        "url": "https://bugzilla.suse.com/1112902"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112903",
        "url": "https://bugzilla.suse.com/1112903"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112905",
        "url": "https://bugzilla.suse.com/1112905"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112906",
        "url": "https://bugzilla.suse.com/1112906"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112907",
        "url": "https://bugzilla.suse.com/1112907"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112963",
        "url": "https://bugzilla.suse.com/1112963"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113257",
        "url": "https://bugzilla.suse.com/1113257"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113284",
        "url": "https://bugzilla.suse.com/1113284"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113295",
        "url": "https://bugzilla.suse.com/1113295"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113408",
        "url": "https://bugzilla.suse.com/1113408"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113412",
        "url": "https://bugzilla.suse.com/1113412"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113501",
        "url": "https://bugzilla.suse.com/1113501"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113667",
        "url": "https://bugzilla.suse.com/1113667"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113677",
        "url": "https://bugzilla.suse.com/1113677"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113722",
        "url": "https://bugzilla.suse.com/1113722"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113751",
        "url": "https://bugzilla.suse.com/1113751"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113769",
        "url": "https://bugzilla.suse.com/1113769"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113780",
        "url": "https://bugzilla.suse.com/1113780"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113972",
        "url": "https://bugzilla.suse.com/1113972"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114015",
        "url": "https://bugzilla.suse.com/1114015"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114178",
        "url": "https://bugzilla.suse.com/1114178"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114279",
        "url": "https://bugzilla.suse.com/1114279"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114385",
        "url": "https://bugzilla.suse.com/1114385"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114576",
        "url": "https://bugzilla.suse.com/1114576"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114577",
        "url": "https://bugzilla.suse.com/1114577"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114578",
        "url": "https://bugzilla.suse.com/1114578"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114579",
        "url": "https://bugzilla.suse.com/1114579"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114580",
        "url": "https://bugzilla.suse.com/1114580"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114581",
        "url": "https://bugzilla.suse.com/1114581"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114582",
        "url": "https://bugzilla.suse.com/1114582"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114583",
        "url": "https://bugzilla.suse.com/1114583"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114584",
        "url": "https://bugzilla.suse.com/1114584"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114585",
        "url": "https://bugzilla.suse.com/1114585"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114839",
        "url": "https://bugzilla.suse.com/1114839"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115074",
        "url": "https://bugzilla.suse.com/1115074"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115269",
        "url": "https://bugzilla.suse.com/1115269"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115431",
        "url": "https://bugzilla.suse.com/1115431"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115433",
        "url": "https://bugzilla.suse.com/1115433"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115440",
        "url": "https://bugzilla.suse.com/1115440"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115567",
        "url": "https://bugzilla.suse.com/1115567"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115709",
        "url": "https://bugzilla.suse.com/1115709"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115976",
        "url": "https://bugzilla.suse.com/1115976"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116183",
        "url": "https://bugzilla.suse.com/1116183"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116692",
        "url": "https://bugzilla.suse.com/1116692"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116693",
        "url": "https://bugzilla.suse.com/1116693"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116698",
        "url": "https://bugzilla.suse.com/1116698"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116699",
        "url": "https://bugzilla.suse.com/1116699"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116700",
        "url": "https://bugzilla.suse.com/1116700"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116701",
        "url": "https://bugzilla.suse.com/1116701"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116862",
        "url": "https://bugzilla.suse.com/1116862"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116863",
        "url": "https://bugzilla.suse.com/1116863"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116876",
        "url": "https://bugzilla.suse.com/1116876"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116877",
        "url": "https://bugzilla.suse.com/1116877"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116878",
        "url": "https://bugzilla.suse.com/1116878"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116891",
        "url": "https://bugzilla.suse.com/1116891"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116895",
        "url": "https://bugzilla.suse.com/1116895"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116899",
        "url": "https://bugzilla.suse.com/1116899"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116950",
        "url": "https://bugzilla.suse.com/1116950"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117168",
        "url": "https://bugzilla.suse.com/1117168"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117172",
        "url": "https://bugzilla.suse.com/1117172"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117174",
        "url": "https://bugzilla.suse.com/1117174"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117181",
        "url": "https://bugzilla.suse.com/1117181"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117184",
        "url": "https://bugzilla.suse.com/1117184"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117188",
        "url": "https://bugzilla.suse.com/1117188"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117189",
        "url": "https://bugzilla.suse.com/1117189"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117349",
        "url": "https://bugzilla.suse.com/1117349"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117561",
        "url": "https://bugzilla.suse.com/1117561"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117788",
        "url": "https://bugzilla.suse.com/1117788"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117789",
        "url": "https://bugzilla.suse.com/1117789"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117790",
        "url": "https://bugzilla.suse.com/1117790"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117791",
        "url": "https://bugzilla.suse.com/1117791"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117792",
        "url": "https://bugzilla.suse.com/1117792"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117794",
        "url": "https://bugzilla.suse.com/1117794"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117795",
        "url": "https://bugzilla.suse.com/1117795"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117796",
        "url": "https://bugzilla.suse.com/1117796"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117798",
        "url": "https://bugzilla.suse.com/1117798"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117799",
        "url": "https://bugzilla.suse.com/1117799"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117801",
        "url": "https://bugzilla.suse.com/1117801"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117802",
        "url": "https://bugzilla.suse.com/1117802"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117803",
        "url": "https://bugzilla.suse.com/1117803"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117804",
        "url": "https://bugzilla.suse.com/1117804"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117805",
        "url": "https://bugzilla.suse.com/1117805"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117806",
        "url": "https://bugzilla.suse.com/1117806"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117807",
        "url": "https://bugzilla.suse.com/1117807"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117808",
        "url": "https://bugzilla.suse.com/1117808"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117815",
        "url": "https://bugzilla.suse.com/1117815"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117816",
        "url": "https://bugzilla.suse.com/1117816"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117817",
        "url": "https://bugzilla.suse.com/1117817"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117818",
        "url": "https://bugzilla.suse.com/1117818"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117819",
        "url": "https://bugzilla.suse.com/1117819"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117820",
        "url": "https://bugzilla.suse.com/1117820"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117821",
        "url": "https://bugzilla.suse.com/1117821"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117822",
        "url": "https://bugzilla.suse.com/1117822"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118102",
        "url": "https://bugzilla.suse.com/1118102"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118136",
        "url": "https://bugzilla.suse.com/1118136"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118137",
        "url": "https://bugzilla.suse.com/1118137"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118138",
        "url": "https://bugzilla.suse.com/1118138"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118140",
        "url": "https://bugzilla.suse.com/1118140"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118152",
        "url": "https://bugzilla.suse.com/1118152"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118316",
        "url": "https://bugzilla.suse.com/1118316"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16533 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16533/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-18224 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-18224/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18281 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18281/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18386 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18386/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18445 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18445/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18710 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18710/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-19824 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-19824/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2018-12-11T08:24:24Z",
      "generator": {
        "date": "2018-12-11T08:24:24Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:4072-1",
      "initial_release_date": "2018-12-11T08:24:24Z",
      "revision_history": [
        {
          "date": "2018-12-11T08:24:24Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
                "product": {
                  "name": "kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
                  "product_id": "kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64",
                "product": {
                  "name": "kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64",
                  "product_id": "kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Live Patching 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Live Patching 12 SP4",
                  "product_id": "SUSE Linux Enterprise Live Patching 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-live-patching:12:sp4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP4",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP4",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-16533",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16533"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The usbhid_parse function in drivers/hid/usbhid/hid-core.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16533",
          "url": "https://www.suse.com/security/cve/CVE-2017-16533"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066674 for CVE-2017-16533",
          "url": "https://bugzilla.suse.com/1066674"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16533",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16533",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:24Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16533"
    },
    {
      "cve": "CVE-2017-18224",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-18224"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 4.15, fs/ocfs2/aops.c omits use of a semaphore and consequently has a race condition for access to the extent tree during read operations in DIRECT mode, which allows local users to cause a denial of service (BUG) by modifying a certain e_cpos field.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-18224",
          "url": "https://www.suse.com/security/cve/CVE-2017-18224"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1084831 for CVE-2017-18224",
          "url": "https://bugzilla.suse.com/1084831"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:24Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-18224"
    },
    {
      "cve": "CVE-2018-18281",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18281"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Since Linux kernel version 3.2, the mremap() syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate() removes entries from the pagetables of a task that is in the middle of mremap(), a stale TLB entry can remain for a short time that permits access to a physical page after it has been released back to the page allocator and reused. This is fixed in the following kernel versions: 4.9.135, 4.14.78, 4.18.16, 4.19.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18281",
          "url": "https://www.suse.com/security/cve/CVE-2018-18281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1113769 for CVE-2018-18281",
          "url": "https://bugzilla.suse.com/1113769"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:24Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-18281"
    },
    {
      "cve": "CVE-2018-18386",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18386"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18386",
          "url": "https://www.suse.com/security/cve/CVE-2018-18386"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1094825 for CVE-2018-18386",
          "url": "https://bugzilla.suse.com/1094825"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1112039 for CVE-2018-18386",
          "url": "https://bugzilla.suse.com/1112039"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:24Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-18386"
    },
    {
      "cve": "CVE-2018-18445",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18445"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 4.14.x, 4.15.x, 4.16.x, 4.17.x, and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because adjust_scalar_min_max_vals in kernel/bpf/verifier.c mishandles 32-bit right shifts.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18445",
          "url": "https://www.suse.com/security/cve/CVE-2018-18445"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1112372 for CVE-2018-18445",
          "url": "https://bugzilla.suse.com/1112372"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:24Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-18445"
    },
    {
      "cve": "CVE-2018-18710",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18710"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 4.19. An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940 and CVE-2018-16658.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18710",
          "url": "https://www.suse.com/security/cve/CVE-2018-18710"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1113751 for CVE-2018-18710",
          "url": "https://bugzilla.suse.com/1113751"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:24Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-18710"
    },
    {
      "cve": "CVE-2018-19824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-19824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.19.6, a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_probe in sound/usb/card.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-19824",
          "url": "https://www.suse.com/security/cve/CVE-2018-19824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118152 for CVE-2018-19824",
          "url": "https://bugzilla.suse.com/1118152"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_3-default-1-7.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-11T08:24:24Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-19824"
    }
  ]
}