ELSA-2020-0575

ELSA-2020-0575 - systemd security and bug fix update

Type:SECURITY
Severity:IMPORTANT
Release Date:2020-02-25

Description


[239-18.0.2.el8_1.4]
- fix to generate systemd-pstore.service file [Orabug: 30230056]
- fix _netdev is missing for iscsi entry in /etc/fstab (tony.l.lam@oracle.com) [Orabug: 25897792]
- set 'RemoveIPC=no' in logind.conf as default for OL7.2 [Orabug: 22224874]
- allow dm remove ioctl to co-operate with UEK3 (Vaughan Cao) [Orabug: 18467469]
- add hv dynamic memory support (Jerry Snitselaar) [Orabug: 18621475]
- Backport upstream patches for the new systemd-pstore tool (Eric DeVolder) [OraBug: 30230056]

[239-18.4]
- sd-bus: use 'queue' message references for managing r/w message queues in connection objects (CVE-2020-1712)

[239-18.3]
- core, job: fix breakage of ordering dependencies by systemctl reload command (#1781712)
- syslog: fix segfault in syslog_parse_priority() (#1781712)
- journald: fixed assertion failure when system journal rotation fails (#9893) (#1781712)
- test: use PBKDF2 instead of Argon2 in cryptsetup... (#1781712)
- test: mask several unnecessary services (#1781712)
- test: bump the second partition's size to 50M (#1781712)
- sd-bus: make rqueue/wqueue sizes of type size_t (#20201712)
- sd-bus: reorder bus ref and bus message ref handling (#20201712)
- sd-bus: make sure dispatch_rqueue() initializes return parameter on all types of success (#20201712)
- sd-bus: drop two inappropriate empty lines (#20201712)
- sd-bus: initialize mutex after we allocated the wqueue (#20201712)
- sd-bus: always go through sd_bus_unref() to free messages (#20201712)
- bus-message: introduce two kinds of references to bus messages (#20201712)
- sd-bus: introduce API for re-enqueuing incoming messages (#20201712)
- sd-event: add sd_event_source_disable_unref() helper (#20201712)
- polkit: when authorizing via PK let's re-resolve callback/userdata instead of caching it (#20201712)

[239-18.2]
- ask-password: prevent buffer overrow when reading from keyring (#1777037)

[239-18.1]
- journal: rely on _cleanup_free_ to free a temporary string used in client_context_read_cgroup (#1767716)

[239-18]
- shared/but-util: drop trusted annotation from bus_open_system_watch_bind_with_description() (#1746857)
- sd-bus: adjust indentation of comments (#1746857)
- resolved: do not run loop twice (#1746857)
- resolved: allow access to Set*Link and Revert methods through polkit (#1746857)
- resolved: query polkit only after parsing the data (#1746857)

[239-17]
- mount: simplify /proc/self/mountinfo handler (#1696178)
- mount: rescan /proc/self/mountinfo before processing waitid() results (#1696178)
- swap: scan /proc/swaps before processing waitid() results (#1696178)
- analyze-security: fix potential division by zero (#1734400)

[239-16]
- sd-bus: deal with cookie overruns (#1694999)
- journal-remote: do not request Content-Length if Transfer-Encoding is chunked (#1708849)
- journal: do not remove multiple spaces after identifier in syslog message (#1691817)
- cryptsetup: Do not fallback to PLAIN mapping if LUKS data device set fails. (#1719153)
- cryptsetup: call crypt_load() for LUKS only once (#1719153)
- cryptsetup: Add LUKS2 token support. (#1719153)
- udev/scsi_id: fix incorrect page length when get device identification VPD page (#1713227)
- Change job mode of manager triggered restarts to JOB_REPLACE (#11456
- bash-completion: analyze: support 'security' (#1733395)
- man: note that journal does not validate syslog fields (#1707175)
- rules: skip memory hotplug on ppc64 (#1713159)


Related CVEs


CVE-2020-1712

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) systemd-239-18.0.2.el8_1.4.src.rpme00572cbb8bba9146c0ae3ea53fdb593-
systemd-239-18.0.2.el8_1.4.aarch64.rpmd8507a3b7f7daef23f044f4675498841-
systemd-container-239-18.0.2.el8_1.4.aarch64.rpm7fb5345893d167e976f8609b747945e9-
systemd-devel-239-18.0.2.el8_1.4.aarch64.rpm3d28f60f6e3797bfb42671b5cb8b84a6-
systemd-journal-remote-239-18.0.2.el8_1.4.aarch64.rpm7b1ed752d22435a848f99b5f06a0ebf9-
systemd-libs-239-18.0.2.el8_1.4.aarch64.rpm00c48d86b628babe85c182bfb01e11df-
systemd-pam-239-18.0.2.el8_1.4.aarch64.rpm4d5da0fa346f96e4450f43b2578b9ec3-
systemd-tests-239-18.0.2.el8_1.4.aarch64.rpm861f9ebaab06c96c69e0cddbbb9353aa-
systemd-udev-239-18.0.2.el8_1.4.aarch64.rpm9a1f607e6b860b8802aa0f8800af0237-
Oracle Linux 8 (x86_64) systemd-239-18.0.2.el8_1.4.src.rpme00572cbb8bba9146c0ae3ea53fdb593-
systemd-239-18.0.2.el8_1.4.i686.rpma096b442b1ec90b5a1d58ec4130f8b58-
systemd-239-18.0.2.el8_1.4.x86_64.rpm2c6e34564f1eb2a2f591032cc4cf85b5-
systemd-container-239-18.0.2.el8_1.4.i686.rpm088d07b6bf490cdb62789c9fdf9afc3b-
systemd-container-239-18.0.2.el8_1.4.x86_64.rpm58230356b6996a17ee90f750942f40fc-
systemd-devel-239-18.0.2.el8_1.4.i686.rpm50692a2b35c4ef6813f32934e5a831a6-
systemd-devel-239-18.0.2.el8_1.4.x86_64.rpmb2ee8d569146f4b6072686a656443bb7-
systemd-journal-remote-239-18.0.2.el8_1.4.x86_64.rpm240e6164bf5038cd9f5e9c68fce7c353-
systemd-libs-239-18.0.2.el8_1.4.i686.rpm43e5c0aa1edc3350e678aff0106991bd-
systemd-libs-239-18.0.2.el8_1.4.x86_64.rpmbe671e1609727f31748b727ca7571acf-
systemd-pam-239-18.0.2.el8_1.4.x86_64.rpmce657b345bbf0ce7e3a5a6e6b768dd24-
systemd-tests-239-18.0.2.el8_1.4.x86_64.rpmcf5552f99454b2b236b781d94eae884b-
systemd-udev-239-18.0.2.el8_1.4.x86_64.rpm998da7703d5bbef2a4d93ff4d4ea8bf2-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete