The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bnc#1188116)
CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges (bsc#1188062).
CVE-2021-3609: Fixed a race condition in the CAN BCM networking protocol which allows for local privilege escalation (bsc#1187215).
CVE-2021-3612: Fixed an out-of-bounds memory write flaw which could allows a local user to crash the system or possibly escalate their privileges on the system. (bsc#1187585)
CVE-2020-36385: Fixed a use-after-free flaw in ucma.c which allows for local privilege escalation (bsc#1187050).
The following non-security bugs were fixed:
ACPI: property: Constify stubs for CONFIG_ACPI=n case (git-fixes).
ACPI: sysfs: Fix a buffer overrun problem with description_show() (git-fixes).
ALSA: isa: Fix error return code in sndcmi8330probe() (git-fixes).
arm_pmu: Fix write counter incorrect in ARMv7 big-endian mode (git-fixes).
arm64/mm: Fix ttbr0 values stored in struct thread_info for software-pan (git-fixes).
ASoC: cs42l42: Correct definition of CS42L42ADCPDN_MASK (git-fixes).
ASoC: hisilicon: fix missing clkdisableunprepare() on error in hi6210i2sstartup() (git-fixes).
ata: ahci_sunxi: Disable DIPM (git-fixes).
ath10k: Fix an error code in ath10kaddinterface() (git-fixes).
Bluetooth: mgmt: Fix slab-out-of-bounds in tlvdatais_valid (git-fixes).
brcmfmac: correctly report average RSSI in station info (git-fixes).
brcmfmac: fix setting of station info chains bitmask (git-fixes).
brcmsmac: mac80211_if: Fix a resource leak in an error handling path (git-fixes).
can: flexcan: disable completely the ECC mechanism (git-fixes).