Details
-
Improvement
-
Resolution: Won't Fix
-
Minor
-
None
-
None
-
None
-
9223372036854775807
Description
The SUSE Linux Enterprise 15 SP1 kernel was updated receive various
security and bugfixes.
The following security bugs were fixed:
- CVE-2021-26930: Fixed an improper error handling in blkback's grant
mapping (XSA-365 bsc#1181843). - CVE-2021-26931: Fixed an issue where Linux kernel was treating grant
mapping errors as bugs (XSA-362 bsc#1181753). - CVE-2021-26932: Fixed improper error handling issues in Linux grant
mapping (XSA-361 bsc#1181747). by remote attackers to read or write
files via directory traversal in an XCOPY request (bsc#178372). - CVE-2020-29368,CVE-2020-29374: Fixed an issue in copy-on-write
implementation which could have granted unintended write access because
of a race condition in a THP mapcount check (bsc#1179660, bsc#1179428).
The following non-security bugs were fixed:
- btrfs: Cleanup try_flush_qgroup (bsc#1182047).
- btrfs: Do not flush from btrfs_delayed_inode_reserve_metadata
(bsc#1182047). - btrfs: fix data bytes_may_use underflow with fallocate due to failed
quota reserve (bsc#1182130) - btrfs: Free correct amount of space in
btrfs_delayed_inode_reserve_metadata (bsc#1182047). - btrfs: Remove btrfs_inode from btrfs_delayed_inode_reserve_metadata
(bsc#1182047). - btrfs: Simplify code flow in btrfs_delayed_inode_reserve_metadata
(bsc#1182047). - btrfs: Unlock extents in btrfs_zero_range in case of errors
(bsc#1182047). - Drivers: hv: vmbus: Avoid use-after-free in vmbus_onoffer_rescind()
(git-fixes). - ibmvnic: fix a race between open and reset (bsc#1176855 ltc#187293).
- kernel-binary.spec: Add back initrd and image symlink ghosts to filelist
(bsc#1182140). Fixes: 76a9256314c3 ("rpm/kernel- {source,binary}.spec: do
not include ghost symlinks (boo#1179082).") - libnvdimm/dimm: Avoid race between probe and available_slots_show()
(bsc#1170442). - net: bcmgenet: add support for ethtool rxnfc flows (git-fixes).
- net: bcmgenet: code movement (git-fixes).
- net: bcmgenet: fix mask check in bcmgenet_validate_flow() (git-fixes).
- net: bcmgenet: Fix WoL with password after deep sleep (git-fixes).
- net: bcmgenet: re-remove bcmgenet_hfb_add_filter (git-fixes).
- net: bcmgenet: set Rx mode before starting netif (git-fixes).
- net: bcmgenet: use __be16 for htons(ETH_P_IP) (git-fixes).
- net: bcmgenet: Use correct I/O accessors (git-fixes).
- net: lpc-enet: fix error return code in lpc_mii_init() (git-fixes).
- net/mlx4_en: Handle TX error CQE (bsc#1181854).
- net: moxa: Fix a potential double 'free_irq()' (git-fixes).
- net: sun: fix missing release regions in cas_init_one() (git-fixes).
- nvme-multipath: Early exit if no path is available (bsc#1180964).
- rpm/post.sh: Avoid purge-kernel for the first installed kernel
(bsc#1180058) - scsi: target: fix unmap_zeroes_data boolean initialisation (bsc#1163617).
- usb: dwc2: Abort transaction after errors with unknown reason
(bsc#1180262). - usb: dwc2: Do not update data length if it is 0 on inbound transfers
(bsc#1180262). - usb: dwc2: Make "trimming xfer length" a debug message (bsc#1180262).
- vmxnet3: Remove buf_info from device accessible structures (bsc#1181671).
- xen/netback: avoid race in xenvif_rx_ring_slots_available()
(bsc#1065600). - xen/netback: fix spurious event detection for common event case
(bsc#1182175).
https://lists.suse.com/pipermail/sle-security-updates/2021-March/008455.html