The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
CVE-2022-36946: Fixed an incorrect packet trucation operation which could lead to denial of service (bnc#1201940).
CVE-2022-20166: Fixed several possible memory safety issues due to unsafe operations (bsc#1200598).
CVE-2020-36558: Fixed a race condition involving VT_RESIZEX which could lead to a NULL pointer dereference and general protection fault (bnc#1200910).
CVE-2020-36557: Fixed a race condition between the VT_DISALLOCATE ioctl and closing/opening of TTYs could lead to a use-after-free (bnc#1201429).
CVE-2021-33656: Fixed memory out of bounds write related to ioctl cmd PIO_FONT (bnc#1201636).
CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO (bnc#1201635).
CVE-2022-1462: Fixed an out-of-bounds read flaw in the TTY subsystem (bnc#1198829).
The following non-security bugs were fixed:
Add missing recommends of kernel-install-tools (bsc#1200442)
qla2xxx: drop patch which prevented nvme port discovery (bsc#1200651 bsc#1200644 bsc#1201954 bsc#1201958).
kvm: emulate: do not adjust size of fastop and setcc subroutines (bsc#1201930).
nfs: avoid NULL pointer dereference when there is unflushed data (bsc#1201196).
kvm: emulate: Fix SETcc emulation function offsets with SLS (bsc#1201930).
lkdtm: Disable return thunks in rodata.c (bsc#1114648).
powerpc/64: Move paca allocation later in boot (bsc#1190812).
powerpc/fadump: fix PT_LOAD segment for boot memory area (bsc#1103269 ltc#169948).
powerpc/fadump: make crash memory ranges array allocation generic (bsc#1103269 ltc#169948).
powerpc: Set crashkernel offset to mid of RMA region (bsc#1190812).
rpm/kernel-obs-build.spec.in: Also depend on dracut-systemd (bsc#1195775)
rpm/kernel-obs-build.spec.in: add systemd-initrd and terminfo dracut module (bsc#1195775)
rpm/kernel-obs-build.spec.in: use default dracut modules (bsc#1195926, bsc#1198484) Let's iron out the reduced initrd optimisation in Tumbleweed. Build full blown dracut initrd with systemd for SLE15 SP4.
scsi: qla2xxx: Add a new v2 dport diagnostic feature (bsc#1201958).
scsi: qla2xxx: Add debug prints in the device remove path (bsc#1201958).
scsi: qla2xxx: Check correct variable in qla24xxasyncgffid() (bsc#1201958).
scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (bsc#1201958).
scsi: qla2xxx: Fix discovery issues in FC-AL topology (bsc#1201651).