The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: use after free in the video driver leads to local privilege escalation * kernel: use-after-free in drivers/bluetooth/hci_ldisc.c * kernel: out-of-bounds access in function hclge_tm_schd_mode_vnet_base_cfg * kernel: memory leak in ccp_run_sha_cmd * kernel: Denial Of Service in the __ipmi_bmc_register * kernel: out-of-bounds write in ext4_xattr_set_entry * Kernel: kvm: OOB memory write via kvm_dev_ioctl_get_cpuid * kernel: use-after-free in ext4_put_super * kernel: a malicious USB device in the drivers/input/ff-memless.c leads to use-after-free * kernel: race condition caused by a malicious USB device in the USB character device driver layer * kernel: use-after-free in serial_ir_init_module * kernel: use-after-free in __ext4_expand_extra_isize and ext4_xattr_set_entry * kernel: use-after-free in debugfs_remove * kernel: out-of-bounds write via crafted keycode table * kernel: possible use-after-free due to a race condition in cdev_get * kernel: out-of-bounds read in in vc_do_resize function * kernel: use-after-free in n_tty_receive_buf_common function * kernel: invalid read location in vgacon_invert_region function * kernel: uninitialized kernel data leak in userspace coredumps * kernel: SELinux netlink permission check bypass * kernel: out-of-bounds write in mpol_parse_str * kernel: mishandles invalid descriptors in drivers/media/usb/gspca/xirlink_cit.c * kernel: buffer overflow in mt76_add_fragment function * kernel: xdp_umem_reg in net/xdp/xdp_umem.c has an out-of-bounds write which could result in crash and data coruption * kernel: sg_write function lacks an sg_remove_request call in a certain failure case * kernel: possible to send arbitrary signals to a privileged parent process * kernel: referencing inode of removed superblock in get_futex_key causes UAF * kernel: soft-lockups in iov_iter_copy_from_user_atomic could result in DoS * kernel: kernel pointer leak due to WARN_ON statement in video driver leads to local information disclosure * kernel: null pointer dereference in dlpar_parse_cc_property * kernel: null-pointer dereference in drivers/net/fjes/fjes_main.c * kernel: null pointer dereference in drivers/scsi/qla2xxx/qla_os.c * kernel: memory leak in af9005_identify_state function * kernel: A memory leak in the mwifiex_pcie_alloc_cmdrsp_buf function * kernel: memory leak in the crypto_report function * kernel: Two memory leaks in the rtl_usb_probe function * kernel: A memory leak in the rtl8xxxu_submit_int_urb function * kernel: A memory leak in the predicate_parse function * kernel: information leak bug caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c * kernel: Null pointer dereference in drop_sysctl_table * kernel: kernel stack information leak on s390/s390x * kernel: possibility of memory disclosure when reading the file /proc/sys/kernel/rh_features * kernel: vhost-net: stack overflow in get_raw_socket while checking sk_family field * kernel: sync of excessive duration via an XFS v5 image with crafted metadata