Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP3)
Details
This update for the Linux Kernel 4.4.180-94_121 fixes several issues.
The following security issues were fixed:
Fix a kernel warning during sysfs read (bsc#1186235)
CVE-2020-36322: An issue was discovered in the FUSE filesystem implementation in the Linux kernel aka CID-5d069dbe8aaf. fusedogetattr() calls makebadinode() in inappropriate situations, causing a system crash. NOTE: the original fix for this vulnerability was incomplete, and its incompleteness is tracked as CVE-2021-28950 (bsc#1184952).
CVE-2021-29154: BPF JIT compilers in the Linux kernel have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/bpfjitcomp.c and arch/x86/net/bpfjitcomp32.c (bsc#1184710)