The SUSE Linux Enterprise 12 SP3 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-15393: CVE-2020-15393: Fixed a memory leak in usbtest_disconnect . - CVE-2020-36557: Fixed race condition between the VT_DISALLOCATE ioctl and closing/opening of ttys that could lead to a use-after-free . - CVE-2020-36558: Fixed race condition involving VT_RESIZEX that could lead to a NULL pointer dereference and general protection fault . - CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO . - CVE-2021-33656: Fixed out of bounds write with ioctl PIO_FONT . - CVE-2021-39713: Fixed a race condition in the network scheduling subsystem which could lead to a use-after-free. - CVE-2022-1462: Fixed an out-of-bounds read flaw in the TeleTYpe subsystem . - CVE-2022-20166: Fixed possible out of bounds write due to sprintf unsafety that could cause local escalation of privilege . - CVE-2022-2318: Fixed a use-after-free vulnerabilities in the timer handler in net/rose/rose_timer.c that allow attackers to crash the system without any privileges . - CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends . - CVE-2022-36946: Fixed incorrect packet truncation in nfqnl_mangle that could lead to remote DoS . The following non-security bugs were fixed: - kvm: emulate: do not adjust size of fastop and setcc subroutines . - kvm: emulate: Fix SETcc emulation function offsets with SLS . Special Instructions and Notes: Please reboot the system after installing this update.