{"affected":[{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-extra":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Desktop 12 SP1","name":"kernel-default","purl":"pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-extra":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Desktop 12 SP1","name":"kernel-source","purl":"pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-extra":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Desktop 12 SP1","name":"kernel-syms","purl":"pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-extra":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Desktop 12 SP1","name":"kernel-xen","purl":"pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kgraft-patch-3_12_59-60_41-default":"1-2.1","kgraft-patch-3_12_59-60_41-xen":"1-2.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Live Patching 12","name":"kgraft-patch-SLE12-SP1_Update_5","purl":"pkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_5&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1-2.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-ec2":"3.12.59-60.41.2","kernel-ec2-devel":"3.12.59-60.41.2","kernel-ec2-extra":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Public Cloud 12","name":"kernel-ec2","purl":"pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-docs":"3.12.59-60.41.8","kernel-obs-build":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Software Development Kit 12 SP1","name":"kernel-docs","purl":"pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.8"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-docs":"3.12.59-60.41.8","kernel-obs-build":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Software Development Kit 12 SP1","name":"kernel-obs-build","purl":"pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-base":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-man":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-base":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP1","name":"kernel-default","purl":"pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-base":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-man":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-base":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP1","name":"kernel-source","purl":"pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-base":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-man":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-base":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP1","name":"kernel-syms","purl":"pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-base":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-man":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-base":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP1","name":"kernel-xen","purl":"pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-base":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-man":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-base":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP1","name":"kernel-default","purl":"pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-base":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-man":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-base":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP1","name":"kernel-source","purl":"pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-base":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-man":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-base":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP1","name":"kernel-syms","purl":"pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default":"3.12.59-60.41.2","kernel-default-base":"3.12.59-60.41.2","kernel-default-devel":"3.12.59-60.41.2","kernel-default-man":"3.12.59-60.41.2","kernel-devel":"3.12.59-60.41.2","kernel-macros":"3.12.59-60.41.2","kernel-source":"3.12.59-60.41.2","kernel-syms":"3.12.59-60.41.1","kernel-xen":"3.12.59-60.41.2","kernel-xen-base":"3.12.59-60.41.2","kernel-xen-devel":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP1","name":"kernel-xen","purl":"pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-default-extra":"3.12.59-60.41.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 12 SP1","name":"kernel-default","purl":"pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.59-60.41.2"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"The SUSE Linux Enterprise 12 SP1 kernel was updated to 3.12.59 to receive various security and bugfixes.\n\nMain feature additions:\n- Improved support for Clustered File System (CephFS, fate#318586).\n- Addition of kGraft patches now produces logging messages to simplify auditing (fate#317827).\n\nThe following security bugs were fixed:\n- CVE-2016-1583: Prevent the usage of mmap when the lower file system does not allow it. This could have lead to local privilege escalation when ecryptfs-utils was installed and /sbin/mount.ecryptfs_private was setuid (bsc#983143).\n- CVE-2014-9717: fs/namespace.c in the Linux kernel processes MNT_DETACH umount2 system calls without verifying that the MNT_LOCKED flag is unset, which allowed local users to bypass intended access restrictions and navigate to filesystem locations beneath a mount by calling umount2 within a user namespace (bnc#928547).\n- CVE-2016-2185: The ati_remote2_probe function in drivers/input/misc/ati_remote2.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor (bnc#971124).\n- CVE-2016-2186: The powermate_probe function in drivers/input/misc/powermate.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor (bnc#970958).\n- CVE-2016-2188: The iowarrior_probe function in drivers/usb/misc/iowarrior.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor (bnc#970956).\n- CVE-2016-2847: fs/pipe.c in the Linux kernel did not limit the amount of unread data in pipes, which allowed local users to cause a denial of service (memory consumption) by creating many pipes with non-default sizes (bsc#970948).\n- CVE-2016-3134: The netfilter subsystem in the Linux kernel did not validate certain offset fields, which allowed local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call (bnc#971126 971793).\n- CVE-2016-3136: The mct_u232_msr_to_state function in drivers/usb/serial/mct_u232.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted USB device without two interrupt-in endpoint descriptors (bnc#970955).\n- CVE-2016-3137: drivers/usb/serial/cypress_m8.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a USB device without both an interrupt-in and an interrupt-out endpoint descriptor, related to the cypress_generic_port_probe and cypress_open functions (bnc#970970).\n- CVE-2016-3138: The acm_probe function in drivers/usb/class/cdc-acm.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a USB device without both a control and a data endpoint descriptor (bnc#970911 970970).\n- CVE-2016-3140: The digi_port_init function in drivers/usb/serial/digi_acceleport.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor (bnc#970892).\n- CVE-2016-3689: The ims_pcu_parse_cdc_data function in drivers/input/misc/ims-pcu.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (system crash) via a USB device without both a master and a slave interface (bnc#971628).\n- CVE-2016-3951: Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (system crash) or possibly have unspecified other impact by inserting a USB device with an invalid USB descriptor (bnc#974418).\n- CVE-2016-4482: Fixed information leak in devio (bnc#978401).\n- CVE-2016-4486: Fixed information leak in rtnetlink ( bsc#978822).\n- CVE-2016-4569: Fixed information leak in events via snd_timer_user_tinterrupt (bsc#979213).\n\nThe following non-security bugs were fixed:\n- ALSA: timer: Call notifier in the same spinlock (bsc#973378).\n- ALSA: timer: Protect the whole snd_timer_close() with open race (bsc#973378).\n- ALSA: timer: Sync timer deletion at closing the system timer (bsc#973378).\n- ALSA: timer: Use mod_timer() for rearming the system timer (bsc#973378).\n- Btrfs: do not collect ordered extents when logging that inode exists (bsc#977685).\n- Btrfs: do not return EBUSY on concurrent subvolume mounts (bsc#951844).\n- Btrfs: fix deadlock between direct IO reads and buffered writes (bsc#973855).\n- Btrfs: fix empty symlink after creating symlink and fsync parent dir (bsc#977685).\n- Btrfs: fix file loss on log replay after renaming a file and fsync (bsc#977685).\n- Btrfs: fix file/data loss caused by fsync after rename and new inode (bsc#977685).\n- Btrfs: fix for incorrect directory entries after fsync log replay (bsc#957805, bsc#977685).\n- Btrfs: fix loading of orphan roots leading to BUG_ON (bsc#972844).\n- Btrfs: fix race between fsync and lockless direct IO writes (bsc#977685).\n- Btrfs: fix unreplayable log after snapshot delete + parent dir fsync (bsc#977685).\n- Btrfs: handle non-fatal errors in btrfs_qgroup_inherit() (bsc#972951).\n- Btrfs: qgroup: return EINVAL if level of parent is not higher than child's (bsc#972951).\n- Btrfs: teach backref walking about backrefs with underflowed offset values (bsc#975371).\n- CacheFiles: Fix incorrect test for in-memory object collision (bsc#971049).\n- CacheFiles: Handle object being killed before being set up (bsc#971049).\n- Driver: Vmxnet3: set CHECKSUM_UNNECESSARY for IPv6 packets (bsc#976739).\n- Drivers: hv: util: Pass the channel information during the init call (bnc#978527).\n- Drivers: hv: utils: Invoke the poll function after handshake (bnc#978527).\n- Drivers: hv: vmbus: Fix signaling logic in hv_need_to_signal_on_read().\n- Export helper function to set irq affinity in pci-hyperv.\n- FS-Cache: Add missing initialization of ret in cachefiles_write_page() (bsc#971049).\n- FS-Cache: Count culled objects and objects rejected due to lack of space (bsc#971049).\n- FS-Cache: Fix cancellation of in-progress operation (bsc#971049).\n- FS-Cache: Handle a new operation submitted against a killed object (bsc#971049).\n- FS-Cache: Move fscache_report_unexpected_submission() to make it more available (bsc#971049).\n- FS-Cache: Out of line fscache_operation_init() (bsc#971049).\n- FS-Cache: Permit fscache_cancel_op() to cancel in-progress operations too (bsc#971049).\n- FS-Cache: Put an aborted initialised op so that it is accounted correctly (bsc#971049).\n- FS-Cache: Reduce cookie ref count if submit fails (bsc#971049).\n- FS-Cache: Synchronise object death state change vs operation submission (bsc#971049).\n- FS-Cache: The operation cancellation method needs calling in more places (bsc#971049).\n- FS-Cache: Timeout for releasepage() (bsc#971049).\n- FS-Cache: When submitting an op, cancel it if the target object is dying (bsc#971049).\n- FS-Cache: fscache_object_is_dead() has wrong logic, kill it (bsc#971049).\n- Fix cifs_uniqueid_to_ino_t() function for s390x (bsc#944309)\n- Fix kabi issue (bsc#971049).\n- Input: i8042 - lower log level for 'no controller' message (bsc#945345).\n- NFSv4.1: do not use machine credentials for CLOSE when using 'sec=sys' (bsc#972003).\n- NVMe: Unify controller probe and resume (bsc#979347).\n- NVMe: init nvme queue before enabling irq (bsc#662458).\n- PCI/AER: Fix aer_inject error codes (bsc#931448).\n- PCI/AER: Log actual error causes in aer_inject (bsc#931448).\n- PCI/AER: Log aer_inject error injections (bsc#931448).\n- PCI/AER: Use dev_warn() in aer_inject (bsc#931448).\n- RDMA/ocrdma: Avoid reporting wrong completions in case of error CQEs (bsc#908151).\n- Revert 'scsi: fix soft lockup in scsi_remove_target() on module removal' (bsc#970609).\n- SUNRPC: Fix large reads on NFS/RDMA (bsc#908151).\n- SUNRPC: remove KERN_INFO from dprintk() call sites (bsc#908151).\n- USB: usbip: fix potential out-of-bounds write (bnc#975945).\n- Use mainline variant of hyperv KVP IP failover patch (bnc#978527)\n- acpi: Disable ACPI table override when UEFI Secure Boot is enabled (bsc#970604).\n- acpi: Disable APEI error injection if securelevel is set (bsc#972891).\n- apparmor: Skip proc ns files (bsc#959514).\n- cachefiles: perform test on s_blocksize when opening cache file (bsc#971049).\n- ceph fscache: Introduce a routine for uncaching single no data page from fscache ().\n- ceph fscache: Uncaching no data page from fscache in readpage().\n- ceph: Add fs/ceph as a supported module.\n- ceph: Asynchronous IO support.\n- ceph: Avoid to propagate the invalid page point.\n- ceph: Clean up if error occurred in finish_read().\n- ceph: EIO all operations after forced umount.\n- ceph: Implement writev/pwritev for sync operation.\n- ceph: Remove racey watch/notify event infrastructure (bsc#964727)\n- ceph: Remove racey watch/notify event infrastructure (bsc#964727)\n- ceph: add acl for cephfs.\n- ceph: add acl, noacl options for cephfs mount.\n- ceph: add get_name() NFS export callback.\n- ceph: add get_parent() NFS export callback.\n- ceph: add imported caps when handling cap export message.\n- ceph: add inline data to pagecache.\n- ceph: add missing init_acl() for mkdir() and atomic_open().\n- ceph: add open export target session helper.\n- ceph: add request to i_unsafe_dirops when getting unsafe reply.\n- ceph: additional debugfs output.\n- ceph: always re-send cap flushes when MDS recovers.\n- ceph: avoid block operation when !TASK_RUNNING (ceph_get_caps).\n- ceph: avoid block operation when !TASK_RUNNING (ceph_mdsc_close_sessions).\n- ceph: avoid block operation when !TASK_RUNNING (ceph_mdsc_sync).\n- ceph: avoid releasing caps that are being used.\n- ceph: avoid sending unnessesary FLUSHSNAP message.\n- ceph: avoid useless ceph_get_dentry_parent_inode() in ceph_rename().\n- ceph: cast PAGE_SIZE to size_t in ceph_sync_write().\n- ceph: ceph_frag_contains_value can be boolean.\n- ceph: ceph_get_parent() can be static.\n- ceph: check OSD caps before read/write.\n- ceph: check buffer size in ceph_vxattrcb_layout().\n- ceph: check caps in filemap_fault and page_mkwrite.\n- ceph: check directory's completeness before emitting directory entry.\n- ceph: check inode caps in ceph_d_revalidate.\n- ceph: check unsupported fallocate mode.\n- ceph: check zero length in ceph_sync_read().\n- ceph: checking for IS_ERR instead of NULL.\n- ceph: cleanup unsafe requests when reconnecting is denied.\n- ceph: cleanup use of ceph_msg_get.\n- ceph: clear directory's completeness when creating file.\n- ceph: convert inline data to normal data before data write.\n- ceph: do not assume r_old_dentry[_dir] always set together.\n- ceph: do not chain inode updates to parent fsync.\n- ceph: do not grabs open file reference for aborted request.\n- ceph: do not include ceph.{file,dir}.layout vxattr in listxattr().\n- ceph: do not include used caps in cap_wanted.\n- ceph: do not invalidate page cache when inode is no longer used.\n- ceph: do not mark dirty caps when there is no auth cap.\n- ceph: do not pre-allocate space for cap release messages.\n- ceph: do not set r_old_dentry_dir on link().\n- ceph: do not trim auth cap when there are cap snaps.\n- ceph: do not zero i_wrbuffer_ref when reconnecting is denied.\n- ceph: drop cap releases in requests composed before cap reconnect.\n- ceph: drop extra open file reference in ceph_atomic_open().\n- ceph: drop unconnected inodes.\n- ceph: exclude setfilelock requests when calculating oldest tid.\n- ceph: export ceph_session_state_name function.\n- ceph: fetch inline data when getting Fcr cap refs.\n- ceph: fix __dcache_readdir().\n- ceph: fix a comment typo.\n- ceph: fix append mode write.\n- ceph: fix atomic_open snapdir.\n- ceph: fix bool assignments.\n- ceph: fix cache revoke race.\n- ceph: fix ceph_dir_llseek().\n- ceph: fix ceph_fh_to_parent().\n- ceph: fix ceph_removexattr().\n- ceph: fix ceph_set_acl().\n- ceph: fix ceph_writepages_start().\n- ceph: fix dcache/nocache mount option.\n- ceph: fix dentry leaks.\n- ceph: fix directory fsync.\n- ceph: fix divide-by-zero in __validate_layout().\n- ceph: fix double page_unlock() in page_mkwrite().\n- ceph: fix dout() compile warnings in ceph_filemap_fault().\n- ceph: fix file lock interruption.\n- ceph: fix flush tid comparision.\n- ceph: fix flushing caps.\n- ceph: fix llistxattr on symlink.\n- ceph: fix message length computation.\n- ceph: fix mksnap crash.\n- ceph: fix null pointer dereference in send_mds_reconnect().\n- ceph: fix pr_fmt() redefinition.\n- ceph: fix queuing inode to mdsdir's snaprealm.\n- ceph: fix reading inline data when i_size > PAGE_SIZE.\n- ceph: fix request time stamp encoding.\n- ceph: fix reset_readdir().\n- ceph: fix setting empty extended attribute.\n- ceph: fix sizeof(struct tYpO *) typo.\n- ceph: fix snap context leak in error path.\n- ceph: fix trim caps.\n- ceph: fix uninline data function.\n- ceph: flush cap release queue when trimming session caps.\n- ceph: flush inline version.\n- ceph: forbid mandatory file lock.\n- ceph: fscache: Update object store limit after file writing.\n- ceph: fscache: Wait for completion of object initialization.\n- ceph: fscache: add an interface to synchronize object store limit.\n- ceph: get inode size for each append write.\n- ceph: handle -ESTALE reply.\n- ceph: handle SESSION_FORCE_RO message.\n- ceph: handle cap export race in try_flush_caps().\n- ceph: handle cap import atomically.\n- ceph: handle frag mismatch between readdir request and reply.\n- ceph: handle race between cap reconnect and cap release.\n- ceph: handle session flush message.\n- ceph: hold on to exclusive caps on complete directories.\n- ceph: implement readv/preadv for sync operation.\n- ceph: improve readahead for file holes.\n- ceph: improve reference tracking for snaprealm.\n- ceph: include time stamp in every MDS request.\n- ceph: include time stamp in replayed MDS requests.\n- ceph: initial CEPH_FEATURE_FS_FILE_LAYOUT_V2 support.\n- ceph: initialize inode before instantiating dentry.\n- ceph: introduce a new inode flag indicating if cached dentries are ordered.\n- ceph: introduce ceph_fill_fragtree().\n- ceph: introduce global empty snap context.\n- ceph: invalidate dirty pages after forced umount.\n- ceph: keep i_snap_realm while there are writers.\n- ceph: kstrdup() memory handling.\n- ceph: let MDS adjust readdir 'frag'.\n- ceph: make ceph_forget_all_cached_acls() static inline.\n- ceph: make fsync() wait unsafe requests that created/modified inode.\n- ceph: make sure syncfs flushes all cap snaps.\n- ceph: make sure write caps are registered with auth MDS.\n- ceph: match wait_for_completion_timeout return type.\n- ceph: message versioning fixes.\n- ceph: move ceph_find_inode() outside the s_mutex.\n- ceph: move spinlocking into ceph_encode_locks_to_buffer and ceph_count_locks.\n- ceph: no need to get parent inode in ceph_open.\n- ceph: parse inline data in MClientReply and MClientCaps.\n- ceph: pre-allocate ceph_cap struct for ceph_add_cap().\n- ceph: pre-allocate data structure that tracks caps flushing.\n- ceph: preallocate buffer for readdir reply.\n- ceph: print inode number for LOOKUPINO request.\n- ceph: properly apply umask when ACL is enabled.\n- ceph: properly handle XATTR_CREATE and XATTR_REPLACE.\n- ceph: properly mark empty directory as complete.\n- ceph: properly release page upon error.\n- ceph: properly zero data pages for file holes.\n- ceph: provide seperate {inode,file}_operations for snapdir.\n- ceph: queue cap release in __ceph_remove_cap().\n- ceph: queue vmtruncate if necessary when handing cap grant/revoke.\n- ceph: ratelimit warn messages for MDS closes session.\n- ceph: re-send AIO write request when getting -EOLDSNAP error.\n- ceph: re-send flushing caps (which are revoked) in reconnect stage.\n- ceph: re-send requests when MDS enters reconnecting stage.\n- ceph: refactor readpage_nounlock() to make the logic clearer.\n- ceph: remember subtree root dirfrag's auth MDS.\n- ceph: remove exported caps when handling cap import message.\n- ceph: remove outdated frag information.\n- ceph: remove redundant code for max file size verification.\n- ceph: remove redundant declaration.\n- ceph: remove redundant memset(0).\n- ceph: remove redundant test of head->safe and silence static analysis warnings.\n- ceph: remove the useless judgement.\n- ceph: remove unused functions in ceph_frag.h.\n- ceph: remove unused stringification macros.\n- ceph: remove useless ACL check.\n- ceph: remove xattr when null value is given to setxattr().\n- ceph: rename snapshot support.\n- ceph: replace comma with a semicolon.\n- ceph: request xattrs if xattr_version is zero.\n- ceph: reserve caps for file layout/lock MDS requests.\n- ceph: reset r_resend_mds after receiving -ESTALE.\n- ceph: return error for traceless reply race.\n- ceph: rework dcache readdir.\n- ceph: send TID of the oldest pending caps flush to MDS.\n- ceph: send client metadata to MDS.\n- ceph: set caps count after composing cap reconnect message.\n- ceph: set i_head_snapc when getting CEPH_CAP_FILE_WR reference.\n- ceph: set mds_wanted when MDS reply changes a cap to auth cap.\n- ceph: show nocephx_require_signatures and notcp_nodelay options.\n- ceph: show non-default options only.\n- ceph: simplify ceph_fh_to_dentry().\n- ceph: simplify two mount_timeout sites.\n- ceph: skip invalid dentry during dcache readdir.\n- ceph: support inline data feature.\n- ceph: switch some GFP_NOFS memory allocation to GFP_KERNEL.\n- ceph: sync read inline data.\n- ceph: take snap_rwsem when accessing snap realm's cached_context.\n- ceph: track pending caps flushing accurately.\n- ceph: track pending caps flushing globally.\n- ceph: trim unused inodes before reconnecting to recovering MDS.\n- ceph: trivial comment fix.\n- ceph: update i_max_size even if inode version does not change.\n- ceph: update inode fields according to issued caps.\n- ceph: use %zu for len in ceph_fill_inline_data().\n- ceph: use ceph_seq_cmp() to compare migrate_seq.\n- ceph: use empty snap context for uninline_data and get_pool_perm.\n- ceph: use fl->fl_file as owner identifier of flock and posix lock.\n- ceph: use fl->fl_type to decide flock operation.\n- ceph: use fpos_cmp() to compare dentry positions.\n- ceph: use getattr request to fetch inline data.\n- ceph: use i_size_{read,write} to get/set i_size.\n- ceph: use msecs_to_jiffies for time conversion.\n- ceph: use pagelist to present MDS request data.\n- ceph: use truncate_pagecache() instead of truncate_inode_pages().\n- ceph_sync_{,direct_}write: fix an oops on ceph_osdc_new_request() failure.\n- client: include kernel version in client metadata.\n- cpuset: Fix potential deadlock w/ set_mems_allowed (bsc#960857, bsc#974646).\n- crush: add chooseleaf_stable tunable.\n- crush: decode and initialize chooseleaf_stable.\n- crush: ensure bucket id is valid before indexing buckets array.\n- crush: ensure take bucket value is valid.\n- crush: fix crash from invalid 'take' argument.\n- crush: sync up with userspace.\n- crypto: testmgr - allow rfc3686 aes-ctr variants in fips mode (bsc#958390).\n- crypto: testmgr - mark authenticated ctr(aes) also as FIPS able (bsc#958390).\n- dasd: fix hanging system after LCU changes (bnc#968497, LTC#136671).\n- drm/core: Preserve the framebuffer after removing it (bsc#968812).\n- drm/i915: do not warn if backlight unexpectedly enabled (boo#972068).\n- drm/i915: set backlight duty cycle after backlight enable for gen4 (boo#972780).\n- drm/radeon: fix-up some float to fixed conversion thinkos (bsc#968813).\n- drm/radeon: use HDP_MEM_COHERENCY_FLUSH_CNTL for sdma as well (bsc#968813).\n- ext4: Fix softlockups in SEEK_HOLE and SEEK_DATA implementations (bsc#942262).\n- ext4: fix races between page faults and hole punching (bsc#972174).\n- ext4: fix races of writeback with punch hole and zero range (bsc#972174).\n- fs, seq_file: fallback to vmalloc instead of oom kill processes (bnc#968687).\n- fs, seqfile: always allow oom killer (bnc#968687).\n- fs/ceph/debugfs.c: replace seq_printf by seq_puts.\n- fs/ceph: replace pr_warning by pr_warn.\n- fs/pipe.c: skip file_update_time on frozen fs (bsc#975488).\n- ibmvscsi: Remove unsupported host config MAD (bsc#973556).\n- iommu/vt-d: Improve fault handler error messages (bsc#975772).\n- iommu/vt-d: Ratelimit fault handler (bsc#975772).\n- ipv6: make fib6 serial number per namespace (bsc#965319).\n- ipv6: per netns FIB garbage collection (bsc#965319).\n- ipv6: per netns fib6 walkers (bsc#965319).\n- ipv6: replace global gc_args with local variable (bsc#965319).\n- kABI: kgr: fix subtle race with kgr_module_init(), going notifier and kgr_modify_kernel().\n- kABI: protect function file_open_root.\n- kABI: protect include in evm.\n- kABI: protect struct user_struct.\n- kabi fix for patches.fixes/reduce-m_start-cost (bsc#966573).\n- kabi/severities: Allow changes in zpci_* symbols (bsc#974692)\n- kabi/severities: Whitelist libceph and rbd (bsc#964727).\n- kabi: kgr, add reserved fields.\n- kabi: protect struct fc_rport_priv (bsc#953233, bsc#962846).\n- kabi: protect struct netns_ipv6 after FIB6 GC series (bsc#965319).\n- kgr: add TAINT_KGRAFT.\n- kgr: add kgraft annotation to hwrng kthread.\n- kgr: add kgraft annotations to kthreads' wait_event_freezable() API calls.\n- kgr: add objname to kgr_patch_fun struct.\n- kgr: add sympos and objname to error and debug messages.\n- kgr: add sympos as disambiguator field to kgr_patch_fun structure.\n- kgr: add sympos to sysfs.\n- kgr: call kgr_init_ftrace_ops() only for loaded objects.\n- kgr: change to kallsyms_on_each_symbol iterator.\n- kgr: define pr_fmt and modify all pr_* messages.\n- kgr: do not print error for !abort_if_missing symbols (bnc#943989).\n- kgr: do not return and print an error only if the object is not loaded.\n- kgr: do not use WQ_MEM_RECLAIM workqueue (bnc#963572).\n- kgr: fix an asymmetric dealing with delayed module loading.\n- kgr: fix redirection on s390x arch (bsc#903279).\n- kgr: fix subtle race with kgr_module_init(), going notifier and kgr_modify_kernel().\n- kgr: handle btrfs kthreads (bnc#889207).\n- kgr: kmemleak, really mark the kthread safe after an interrupt.\n- kgr: kmemleak, really mark the kthread safe after an interrupt.\n- kgr: log when modifying kernel.\n- kgr: mark kernel unsupported upon patch revert.\n- kgr: mark some more missed kthreads (bnc#962336).\n- kgr: remove abort_if_missing flag.\n- kgr: usb/storage: do not emit thread awakened (bnc#899908).\n- kgraft/gfs2: Do not block livepatching in the log daemon for too long.\n- kgraft/xen: Do not block livepatching in the XEN blkif kthread.\n- libceph: Avoid holding the zero page on ceph_msgr_slab_init errors.\n- libceph: Fix ceph_tcp_sendpage()'s more boolean usage.\n- libceph: MOSDOpReply v7 encoding.\n- libceph: Remove spurious kunmap() of the zero page.\n- libceph: a couple tweaks for wait loops.\n- libceph: add nocephx_sign_messages option.\n- libceph: advertise support for TUNABLES5.\n- libceph: advertise support for keepalive2.\n- libceph: allow setting osd_req_op's flags.\n- libceph: check data_len in ->alloc_msg().\n- libceph: clear messenger auth_retry flag if we fault.\n- libceph: clear msg->con in ceph_msg_release() only.\n- libceph: do not access invalid memory in keepalive2 path.\n- libceph: do not spam dmesg with stray reply warnings.\n- libceph: drop authorizer check from cephx msg signing routines.\n- libceph: evaluate osd_req_op_data() arguments only once.\n- libceph: fix authorizer invalidation, take 2.\n- libceph: fix ceph_msg_revoke().\n- libceph: fix wrong name 'Ceph filesystem for Linux'.\n- libceph: introduce ceph_x_authorizer_cleanup().\n- libceph: invalidate AUTH in addition to a service ticket.\n- libceph: kill off ceph_x_ticket_handler::validity.\n- libceph: move ceph_file_layout helpers to ceph_fs.h.\n- libceph: msg signing callouts do not need con argument.\n- libceph: nuke time_sub().\n- libceph: properly release STAT request's raw_data_in.\n- libceph: remove con argument in handle_reply().\n- libceph: remove outdated comment.\n- libceph: remove the unused macro AES_KEY_SIZE.\n- libceph: rename con_work() to ceph_con_workfn().\n- libceph: set 'exists' flag for newly up osd.\n- libceph: stop duplicating client fields in messenger.\n- libceph: store timeouts in jiffies, verify user input.\n- libceph: treat sockaddr_storage with uninitialized family as blank.\n- libceph: use keepalive2 to verify the mon session is alive.\n- libceph: use list_for_each_entry_safe.\n- libceph: use list_next_entry instead of list_entry_next.\n- libceph: use local variable cursor instead of &msg->cursor.\n- libceph: use the right footer size when skipping a message.\n- libfc: replace 'rp_mutex' with 'rp_lock' (bsc#953233, bsc#962846).\n- mds: check cap ID when handling cap export message.\n- mmc: Allow forward compatibility for eMMC (bnc#966054).\n- mmc: sdhci: Allow for irq being shared (bnc#977582).\n- mpt3sas: Fix use sas_is_tlr_enabled API before enabling MPI2_SCSIIO_CONTROL_TLR_ON flag (bsc#967640).\n- nfs-rdma: Fix for FMR leaks (bsc#908151).\n- nfs: fix high load average due to callback thread sleeping (bsc#971170).\n- nvme: fix max_segments integer truncation (bsc#676471).\n- ocfs2: do not set fs read-only if rec[0] is empty while committing truncate (bnc#971947).\n- ocfs2: extend enough credits for freeing one truncate record while replaying truncate records (bnc#971947).\n- ocfs2: extend transaction for ocfs2_remove_rightmost_path() and ocfs2_update_edge_lengths() before to avoid inconsistency between inode and et (bnc#971947).\n- pipe: limit the per-user amount of pages allocated in pipes (bsc#970948).\n- powerpc/book3s64: Fix branching to OOL handlers in relocatable kernel (bsc@976821).\n- powerpc/book3s64: Remove __end_handlers marker (bsc#976821).\n- rbd: bump queue_max_segments.\n- rbd: delete an unnecessary check before rbd_dev_destroy().\n- rbd: do not free rbd_dev outside of the release callback.\n- rbd: do not put snap_context twice in rbd_queue_workfn().\n- rbd: drop null test before destroy functions.\n- rbd: plug rbd_dev->header.object_prefix memory leak.\n- rbd: rbd_wq comment is obsolete.\n- rbd: remove duplicate calls to rbd_dev_mapping_clear().\n- rbd: return -ENOMEM instead of pool id if rbd_dev_create() fails.\n- rbd: set device_type::release instead of device::release.\n- rbd: set max_sectors explicitly.\n- rbd: store rbd_options in rbd_device.\n- rbd: terminate rbd_opts_tokens with Opt_err.\n- rbd: timeout watch teardown on unmap with mount_timeout.\n- rbd: use GFP_NOIO consistently for request allocations (bsc#971159).\n- rbd: use writefull op for object size writes.\n- reduce m_start() cost.. (bsc#966573).\n- s390/compat: correct restore of high gprs on signal return (bnc#968497, LTC#137571).\n- s390/pageattr: do a single TLB flush for change_page_attr (bsc#940413).\n- s390/pci: add extra padding to function measurement block (bnc#974692, LTC#139445).\n- s390/pci: enforce fmb page boundary rule (bnc#974692, LTC#139445).\n- s390/pci: extract software counters from fmb (bnc#974692, LTC#139445).\n- s390/pci: remove pdev pointer from arch data (bnc#974692, LTC#139444).\n- s390/pci_dma: fix DMA table corruption with > 4 TB main memory (bnc#974692, LTC#139401).\n- s390/pci_dma: handle dma table failures (bnc#974692, LTC#139442).\n- s390/pci_dma: improve debugging of errors during dma map (bnc#974692, LTC#139442).\n- s390/pci_dma: unify label of invalid translation table entries (bnc#974692, LTC#139442).\n- s390/zcrypt: HWRNG registration cause kernel panic on CEX hotplug (bnc#968497, LTC#138409).\n- scsi-bnx2fc-handle_scsi_retry_delay\n- scsi-bnx2fc-soft_lockup_when_rmmod\n- scsi: Add intermediate STARGET_REMOVE state to scsi_target_state (bsc#970609).\n- scsi: Avoid crashing if device uses DIX but adapter does not support it (bsc#969016).\n- sd: get disk reference in sd_check_events() (bnc#897662).\n- supported.conf: Add bridge.ko for OpenStack (bsc#971600)\n- supported.conf: add pci-hyperv\n- supported.conf:Add drivers/infiniband/hw/ocrdma/ocrdma.ko to supported.conf (bsc#964461)\n- svcrdma: Fence LOCAL_INV work requests (bsc#908151).\n- svcrdma: advertise the correct max payload (bsc#908151).\n- svcrdma: fix offset calculation for non-page aligned sge entries (bsc#908151).\n- svcrdma: fix printk when memory allocation fails (bsc#908151).\n- svcrdma: refactor marshalling logic (bsc#908151).\n- svcrdma: send_write() must not overflow the device's max sge (bsc#908151).\n- target: Drop incorrect ABORT_TASK put for completed commands (bsc#962872).\n- target: Fix LUN_RESET active I/O handling for ACK_KREF (bsc#962872).\n- target: Fix LUN_RESET active TMR descriptor handling (bsc#962872).\n- target: Fix TAS handling for multi-session se_node_acls (bsc#962872).\n- target: Fix race with SCF_SEND_DELAYED_TAS handling (bsc#962872).\n- target: Fix remote-port TMR ABORT + se_cmd fabric stop (bsc#962872).\n- tcp: convert cached rtt from usec to jiffies when feeding initial rto (bsc#937086).\n- vgaarb: Add more context to error messages (bsc#976868).\n- xen/acpi: Disable ACPI table override when UEFI Secure Boot is enabled (bsc#970604).\n- xprtrdma: Allocate missing pagelist (bsc#908151).\n- xprtrdma: Avoid deadlock when credit window is reset (bsc#908151).\n- xprtrdma: Disconnect on registration failure (bsc#908151).\n- xprtrdma: Ensure ia->ri_id->qp is not NULL when reconnecting (bsc#908151).\n- xprtrdma: Fall back to MTHCAFMR when FRMR is not supported (bsc#908151).\n- xprtrdma: Limit work done by completion handler (bsc#908151).\n- xprtrdma: Make rpcrdma_ep_destroy() return void (bsc#908151).\n- xprtrdma: RPC/RDMA must invoke xprt_wake_pending_tasks() in process context (bsc#908151).\n- xprtrdma: Reduce the number of hardway buffer allocations (bsc#908151).\n- xprtrdma: Remove BOUNCEBUFFERS memory registration mode (bsc#908151).\n- xprtrdma: Remove BUG_ON() call sites (bsc#908151).\n- xprtrdma: Remove MEMWINDOWS registration modes (bsc#908151).\n- xprtrdma: Remove REGISTER memory registration mode (bsc#908151).\n- xprtrdma: Remove Tavor MTU setting (bsc#908151).\n- xprtrdma: Reset connection timeout after successful reconnect (bsc#908151).\n- xprtrdma: Simplify rpcrdma_deregister_external() synopsis (bsc#908151).\n- xprtrdma: Split the completion queue (bsc#908151).\n- xprtrdma: Use macros for reconnection timeout constants (bsc#908151).\n- xprtrdma: mind the device's max fast register page list depth (bsc#908151).\n- xprtrdma: mount reports 'Invalid mount option' if memreg mode not supported (bsc#908151).\n- xprtrmda: Reduce calls to ib_poll_cq() in completion handlers (bsc#908151).\n- xprtrmda: Reduce lock contention in completion handlers (bsc#908151).\n","id":"SUSE-SU-2016:1696-1","modified":"2016-06-28T11:02:10Z","published":"2016-06-28T11:02:10Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2016/suse-su-20161696-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/662458"},{"type":"REPORT","url":"https://bugzilla.suse.com/676471"},{"type":"REPORT","url":"https://bugzilla.suse.com/889207"},{"type":"REPORT","url":"https://bugzilla.suse.com/897662"},{"type":"REPORT","url":"https://bugzilla.suse.com/899908"},{"type":"REPORT","url":"https://bugzilla.suse.com/903279"},{"type":"REPORT","url":"https://bugzilla.suse.com/908151"},{"type":"REPORT","url":"https://bugzilla.suse.com/928547"},{"type":"REPORT","url":"https://bugzilla.suse.com/931448"},{"type":"REPORT","url":"https://bugzilla.suse.com/937086"},{"type":"REPORT","url":"https://bugzilla.suse.com/940413"},{"type":"REPORT","url":"https://bugzilla.suse.com/942262"},{"type":"REPORT","url":"https://bugzilla.suse.com/943989"},{"type":"REPORT","url":"https://bugzilla.suse.com/944309"},{"type":"REPORT","url":"https://bugzilla.suse.com/945345"},{"type":"REPORT","url":"https://bugzilla.suse.com/951844"},{"type":"REPORT","url":"https://bugzilla.suse.com/953233"},{"type":"REPORT","url":"https://bugzilla.suse.com/957805"},{"type":"REPORT","url":"https://bugzilla.suse.com/958390"},{"type":"REPORT","url":"https://bugzilla.suse.com/959514"},{"type":"REPORT","url":"https://bugzilla.suse.com/960857"},{"type":"REPORT","url":"https://bugzilla.suse.com/962336"},{"type":"REPORT","url":"https://bugzilla.suse.com/962846"},{"type":"REPORT","url":"https://bugzilla.suse.com/962872"},{"type":"REPORT","url":"https://bugzilla.suse.com/963572"},{"type":"REPORT","url":"https://bugzilla.suse.com/964461"},{"type":"REPORT","url":"https://bugzilla.suse.com/964727"},{"type":"REPORT","url":"https://bugzilla.suse.com/965319"},{"type":"REPORT","url":"https://bugzilla.suse.com/966054"},{"type":"REPORT","url":"https://bugzilla.suse.com/966573"},{"type":"REPORT","url":"https://bugzilla.suse.com/967640"},{"type":"REPORT","url":"https://bugzilla.suse.com/968497"},{"type":"REPORT","url":"https://bugzilla.suse.com/968687"},{"type":"REPORT","url":"https://bugzilla.suse.com/968812"},{"type":"REPORT","url":"https://bugzilla.suse.com/968813"},{"type":"REPORT","url":"https://bugzilla.suse.com/969016"},{"type":"REPORT","url":"https://bugzilla.suse.com/970604"},{"type":"REPORT","url":"https://bugzilla.suse.com/970609"},{"type":"REPORT","url":"https://bugzilla.suse.com/970892"},{"type":"REPORT","url":"https://bugzilla.suse.com/970911"},{"type":"REPORT","url":"https://bugzilla.suse.com/970948"},{"type":"REPORT","url":"https://bugzilla.suse.com/970955"},{"type":"REPORT","url":"https://bugzilla.suse.com/970956"},{"type":"REPORT","url":"https://bugzilla.suse.com/970958"},{"type":"REPORT","url":"https://bugzilla.suse.com/970970"},{"type":"REPORT","url":"https://bugzilla.suse.com/971049"},{"type":"REPORT","url":"https://bugzilla.suse.com/971124"},{"type":"REPORT","url":"https://bugzilla.suse.com/971126"},{"type":"REPORT","url":"https://bugzilla.suse.com/971159"},{"type":"REPORT","url":"https://bugzilla.suse.com/971170"},{"type":"REPORT","url":"https://bugzilla.suse.com/971600"},{"type":"REPORT","url":"https://bugzilla.suse.com/971628"},{"type":"REPORT","url":"https://bugzilla.suse.com/971793"},{"type":"REPORT","url":"https://bugzilla.suse.com/971947"},{"type":"REPORT","url":"https://bugzilla.suse.com/972003"},{"type":"REPORT","url":"https://bugzilla.suse.com/972068"},{"type":"REPORT","url":"https://bugzilla.suse.com/972174"},{"type":"REPORT","url":"https://bugzilla.suse.com/972780"},{"type":"REPORT","url":"https://bugzilla.suse.com/972844"},{"type":"REPORT","url":"https://bugzilla.suse.com/972891"},{"type":"REPORT","url":"https://bugzilla.suse.com/972951"},{"type":"REPORT","url":"https://bugzilla.suse.com/973378"},{"type":"REPORT","url":"https://bugzilla.suse.com/973556"},{"type":"REPORT","url":"https://bugzilla.suse.com/973855"},{"type":"REPORT","url":"https://bugzilla.suse.com/974418"},{"type":"REPORT","url":"https://bugzilla.suse.com/974646"},{"type":"REPORT","url":"https://bugzilla.suse.com/974692"},{"type":"REPORT","url":"https://bugzilla.suse.com/975371"},{"type":"REPORT","url":"https://bugzilla.suse.com/975488"},{"type":"REPORT","url":"https://bugzilla.suse.com/975772"},{"type":"REPORT","url":"https://bugzilla.suse.com/975945"},{"type":"REPORT","url":"https://bugzilla.suse.com/976739"},{"type":"REPORT","url":"https://bugzilla.suse.com/976821"},{"type":"REPORT","url":"https://bugzilla.suse.com/976868"},{"type":"REPORT","url":"https://bugzilla.suse.com/977582"},{"type":"REPORT","url":"https://bugzilla.suse.com/977685"},{"type":"REPORT","url":"https://bugzilla.suse.com/978401"},{"type":"REPORT","url":"https://bugzilla.suse.com/978527"},{"type":"REPORT","url":"https://bugzilla.suse.com/978822"},{"type":"REPORT","url":"https://bugzilla.suse.com/979213"},{"type":"REPORT","url":"https://bugzilla.suse.com/979347"},{"type":"REPORT","url":"https://bugzilla.suse.com/983143"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2014-9717"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-1583"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-2185"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-2186"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-2188"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-2847"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-3134"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-3136"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-3137"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-3138"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-3140"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-3689"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-3951"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-4482"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-4486"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-4569"}],"related":["CVE-2014-9717","CVE-2016-1583","CVE-2016-2185","CVE-2016-2186","CVE-2016-2188","CVE-2016-2847","CVE-2016-3134","CVE-2016-3136","CVE-2016-3137","CVE-2016-3138","CVE-2016-3140","CVE-2016-3689","CVE-2016-3951","CVE-2016-4482","CVE-2016-4486","CVE-2016-4569"],"summary":"Security update for the Linux Kernel","upstream":["CVE-2014-9717","CVE-2016-1583","CVE-2016-2185","CVE-2016-2186","CVE-2016-2188","CVE-2016-2847","CVE-2016-3134","CVE-2016-3136","CVE-2016-3137","CVE-2016-3138","CVE-2016-3140","CVE-2016-3689","CVE-2016-3951","CVE-2016-4482","CVE-2016-4486","CVE-2016-4569"]}