Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP1)
Details
This update for the Linux Kernel 3.12.74-606482 fixes several issues.
The following security issues were fixed:
CVE-2017-13166: An elevation of privilege vulnerability was fixed in the kernel v4l2 video driver. (bsc#1085447).
CVE-2018-1068: A flaw was found in the Linux kernels implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory (bsc#1085114).
CVE-2018-7566: The Linux kernel had a buffer overflow via an SNDRVSEQIOCTLSETCLIENT_POOL ioctl write operation to /dev/snd/seq by a local user (bsc#1083488).