The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
CVE-2021-3659: Fixed a NULL pointer dereference in llseckeyalloc() in net/mac802154/llsec.c (bsc#1188876).
CVE-2021-21781: Fixed a information disclosure vulnerability in the ARM SIGPAGE (bsc#1188445).
CVE-2021-22543: Fixed improper handling of VMIO|VMPFNMAP vmas in KVM, which could bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allowed users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation (bsc#1186482).
CVE-2021-37576: Fixed an issue on the powerpc platform, where a KVM guest OS user could cause host OS memory corruption via rtas_args.nargs (bsc#1188838).
The following non-security bugs were fixed:
ACPI: AMBA: Fix resource name in /proc/iomem (git-fixes).
ACPI: video: Add quirk for the Dell Vostro 3350 (git-fixes).
ALSA: ac97: fix PM reference leak in ac97busremove() (git-fixes).
ALSA: bebob: add support for ToneWeal FW66 (git-fixes).
ALSA: hda: Add IRQ check for platformgetirq() (git-fixes).
ALSA: hdmi: Expose all pins on MSI MS-7C94 board (git-fixes).
ALSA: ppc: fix error return code in sndpmacprobe() (git-fixes).
ALSA: sb: Fix potential ABBA deadlock in CSP driver (git-fixes).
ALSA: sb: Fix potential double-free of CSP mixer elements (git-fixes).
ALSA: usb-audio: Add registration quirk for JBL Quantum headsets (git-fixes).