The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various
security and bugfixes.
The following security bugs were fixed:
- CVE-2017-1000405: A bug in the THP CoW support could be used by local
attackers to corrupt memory of other processes and cause them to crash
(bnc#1069496).
- CVE-2017-16939: The XFRM dump policy implementation in
net/xfrm/xfrm_user.c in the Linux kernel allowed local users to gain
privileges or cause a denial of service (use-after-free) via a crafted
SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY
Netlink messages (bnc#1069702).
The following non-security bugs were fixed:
Fix a build issue on ppc64le systems (bsc#1070805)