The SUSE Linux Enterprise 15 SP2 Azure kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
CVE-2021-3573: Fixed an UAF vulnerability in function that can allow attackers to corrupt kernel heaps and adopt further exploitations. (bsc#1186666)
CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601)
CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595)
CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554)
CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452)
CVE-2021-0129: Fixed improper access control in BlueZ that may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bnc#1186463).
CVE-2020-36385: Fixed a use-after-free via the ctxlist in some ucmamigrateid situations where ucmaclose is called (bnc#1187050).
CVE-2020-26558: Fixed Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 (bnc#1179610, bnc#1186463).
CVE-2020-36386: Fixed an out-of-bounds read issue in hciextendedinquiryresultevt (bnc#1187038).
The following non-security bugs were fixed:
acpica: Clean up context mutex during object deletion (git-fixes).
alsa: hda/cirrus: Set Initial DMIC volume to -26 dB (git-fixes).
alsa: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes).
HID: hid-input: add mapping for emoji picker key (git-fixes).
HID: hid-sensor-hub: Return error for hidsetfield() failure (git-fixes).
HID: i2c-hid: fix format string mismatch (git-fixes).
HID: i2c-hid: Skip ELAN power-on command after reset (git-fixes).
HID: magicmouse: fix NULL-deref on disconnect (git-fixes).
HID: multitouch: require Finger field to mark Win8 reports as MT (git-fixes).
HID: pidff: fix error return code in hidpidffinit() (git-fixes).
HID: quirks: Set INCREMENTUSAGEON_DUPLICATE for Saitek X65 (git-fixes).
HID: usbhid: fix info leak in hidsubmitctrl (git-fixes).
HID: usbhid: Fix race between usbhidclose() and usbhidstop() (git-fixes).
hwmon: (dell-smm-hwmon) Fix index values (git-fixes).
hwmon: (scpi-hwmon) shows the negative temperature properly (git-fixes).
i2c: mpc: Make use of i2crecoverbus() (git-fixes).
i2c: qcom-geni: Suspend and resume the bus during SYSTEMSLEEPPM ops (git-fixes).
ice: add ndo_bpf callback for safe mode netdev ops (jsc#SLE-7926).
ice: Allow all LLDP packets from PF to Tx (jsc#SLE-7926).
ice: Fix VFR issues for AVF drivers that expect ATQLEN cleared (git-fixes).
isdn: mISDN: correctly handle phinfo allocation failure in hfcsusbph_info (git-fixes).
isdn: mISDN: netjet: Fix crash in nj_probe: (git-fixes).
isdn: mISDNinfineon: check/cleanup ioremap failure correctly in setup_io (git-fixes).
ixgbe: fix large MTU request from VF (git-fixes).
kABI workaround for struct lis3lv02d change (git-fixes).
kernel-binary.spec.in: Add Supplements: for -extra package on Leap kernel-$flavor-extra should supplement kernel-$flavor on Leap, like it does on SLED, and like the kernel-$flavor-optional package does.