Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP1)
Details
This update for the Linux Kernel 4.12.14-197_75 fixes several issues.
The following security issues were fixed:
CVE-2021-0941: In bpfskbchange_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045).
CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)