openSUSE: Security Advisory for the (openSUSE-SU-2021:2409-1)

The remote host is missing an update for the 'the' package(s) announced via the openSUSE-SU-2021:2409-1 advisory.

The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-22555: A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c (bnc#1188116 ). - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to obtain full root privileges (bsc#1188062). The following non-security bugs were fixed: - ceph: must hold snap_rwsem when filling inode for async create (bsc#1187927). - cgroup1: do not allow &#x27 \n&#x27 in renaming (bsc#1187972). - qla2xxx: synchronize rport dev_loss_tmo setting (bsc#1182470 bsc#1185486). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1187980). - usb: dwc3: Fix debugfs creation flow (git-fixes). - x86/pkru: Write hardware init value to PKRU when xstate is init (bsc#1152489). - x86/process: Check PF_KTHREAD and not current- mm for kernel threads (bsc#1152489). Special Instructions and Notes: Please reboot the system after installing this update.

'the' package(s) on openSUSE Leap 15.3.

Checks if a vulnerable package version is present on the target host.

Please install the updated package(s).