The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
CVE-2021-22555: A heap out-of-bounds write was discovered in net/netfilter/x_tables.c (bnc#1188116).
CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges (bsc#1188062).
CVE-2021-3609: Fixed a race condition in the CAN BCM networking protocol which allows for local privilege escalation (bsc#1187215).
CVE-2021-3612: Fixed an out-of-bounds memory write flaw which could allows a local user to crash the system or possibly escalate their privileges on the system. (bsc#1187585)
CVE-2021-35039: Fixed a bug where modules signature verification did not occur if CONFIGMODULESIG is not set, regardless of the value of module.sig_enforce command-line argument. (bnc#1188080)
The following non-security bugs were fixed:
ACPI: APEI: fix synchronous external aborts in user-mode (git-fixes).
ACPI: bus: Call kobjectput() in acpiinit() error path (git-fixes).
ACPICA: Fix memory leak caused by _CID repair function (git-fixes).
ACPI: EC: Make more Asus laptops use ECDT _GPE (git-fixes).
ACPI: processor idle: Fix up C-state latency if not ordered (git-fixes).
ACPI: property: Constify stubs for CONFIG_ACPI=n case (git-fixes).
ACPI: resources: Add checks for ACPI IRQ override (git-fixes).
ACPI: sysfs: Fix a buffer overrun problem with description_show() (git-fixes).
ALSA: hda/realtek: Add another ALC236 variant support (git-fixes).
ALSA: hda/realtek: Fix bass speaker DAC mapping for Asus UM431D (git-fixes).
ALSA: intel8x0: Fix breakage at ac97 clock measurement (git-fixes).
ALSA: isa: Fix error return code in sndcmi8330probe() (git-fixes).
ALSA: usb-audio: fix rate on Ozone Z90 USB headset (git-fixes).