Two security vulnerabilities were patched, a flaw discovered in Linux kernel’s user space memory copying for pipe iovecs, which could allow a local, unprivileged user to crash the host system by causing a denial of service or to gain root access, and a crash in Linux kernel’s Berkeley Packet Filter (BPF) filter JIT optimization, which could allow a local attacker to crash the system by causing a denial of service.