Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP3)
Details
This update for the Linux Kernel 5.3.18-57 fixes several issues.
The following issues were fixed:
CVE-2021-3489: Fixed an issue where the eBPF RINGBUF bpfringbufreserve did not check that the allocated size was smaller than the ringbuf size (bsc#1185640).
CVE-2021-3490: Fixed an issue where the eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) did not update the 32-bit bounds (bsc#1185641).
CVE-2021-33034: Fixed a use-after-free when destroying an hci_chan. This could lead to writing an arbitrary values (bsc#1186111).
CVE-2021-32399: Fixed a race condition when removing the HCI controller (bsc#1184611).
CVE-2020-36322: Fixed an issue was discovered in FUSE filesystem implementation which could have caused a system crash (bsc#1184211).