Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP2)
Details
This update for the Linux Kernel 4.4.74-92_38 fixes several issues.
The following security issue was fixed:
CVE-2017-18075: crypto/pcrypt.c in the Linux kernel mishandled freeing instances, allowing a local user able to access the AFALG-based AEAD interface (CONFIGCRYPTOUSERAPIAEAD) and pcrypt (CONFIGCRYPTO_PCRYPT) to cause a denial of service (kfree of an incorrect pointer) or possibly have unspecified other impact by executing a crafted sequence of system calls (bsc#1077404).
Non security issue fixed:
btrfs: account for pinned bytes in shouldallocchunk (bsc#1077268)