ELSA-2019-2091

ULN >
Oracle Linux Errata repository >
ELSA-2019-2091

ELSA-2019-2091 - systemd security, bug fix, and enhancement update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2019-08-13

Description

[219-67.0.1]
- do not create utmp update symlinks for reboot and poweroff [Orabug: 27854896]
- OL7 udev rule for virtio net standby interface [Orabug: 28826743]
- fix _netdev is missing for iscsi entry in /etc/fstab [Orabug: 25897792] (tony.l.lam@oracle.com)
- set 'RemoveIPC=no' in logind.conf as default for OL7.2 [22224874]
- allow dm remove ioctl to co-operate with UEK3 (Vaughan Cao) [Orabug: 18467469]
- add hv dynamic memory support (Jerry Snitselaar) [Orabug: 18621475]

[219-67]
- fix mis-merge (#1714503)
- fs-util: chase_symlinks(): prevent double fre (#1714782)

[219-66]
- sd-bus: unify three code-paths which free struct bus_container (#1643394)
- hashmap: dont use mempool (#1609349)
- man: be more explicit about thread safety of sd_journal (#1609349)
- selinux: dont log SELINUX_INFO and SELINUX_WARNING messages to audit (#1240730)

[219-65]
- backport fd_is_fs_type (#1663143)
- backport chase_symlinks (#1663143)
- fs-util: add new CHASE_SAFE flag to chase_symlinks() (#1663143)
- fs-util: add new chase_symlinks() flag CHASE_OPEN (#1663143)
- sd-dameon: also sent ucred when our UID differs from EUID (#1663143)
- notify: add new --uid= command (#1663143)
- core: be stricter when handling PID files and MAINPID sd_notify() messages (#1663143)
- journald: respect KeepFree= as well as MaxUse= values (#1361893)
- shutdown: in_container was used before its definition (#1693716)
- core: Fix edge case when processing /proc/self/mountinfo (#1691511)
- sd-bus: deal with cookie overruns (#1693559)
- Refuse dbus message paths longer than BUS_PATH_SIZE_MAX limit. (#1667871)
- Allocate temporary strings to hold dbus paths on the heap (#1667871)
- sd-bus: if we receive an invalid dbus message, ignore and proceeed (#1667871)
- udev: check if the spawned PID didnt exit after reaping unexpected PID (#1697909)
- udev: call poll() again after killing the spawned process (#1697909)
- udev: check age against both timeouts to prevent integer wraparound (#1697909)
- avoid possible hang if our child process hangs (#1697909)
- missing: when adding syscall replacements, use different names (#1694605)
- include sys/sysmacros.h in more places (#1694605)

[219-64]
- detect-virt: do not try to read all of /proc/cpuinfo (#1631531)
- core: disable the effect of Restart= if theres a stop job pending for a service (#6581) (#1626382)
- networkd: respect DHCP UseRoutes option (#1663365)
- networkd: fix dhcp4 link without routes not being considered ready (#8728) (#1663365)
- networkd: dont crash when mtu changes (#6594) (#1663365)
- tmpfiles: 'e' takes globs (#1641764)
- tmpfiles: 'e' is supposed to operate on directory only (#1641764)
- tmpfiles: 'e' is supposed to accept shell-style globs (#1641764)
- bus-message: do not crash on message with a string of zero length (#1643396)
- Revert 'bus: when dumping string property values escape the chars we use as end-of-line and end-of-item marks' (#1643172)
- set automount state to waiting when the mount is stopped (#1651257)
- core: when deserializing state always use read_line(, LONG_LINE_MAX, ) (CVE-2018-15686)
- shorten hostname before checking for trailing dot (#1631625)
- journald: fixed assertion failure when system journal rotation fails (#9893) (#1619543)
- local-addresses: handle gracefully if routes lack an RTA_OIF attribute (#1627750)
- rules: fix memory hotplug rule so systemd-detect-virt does not run too often (#1666612)
- 6647 - use path_startswith('/dev') in cryptsetup (#6732) (#1664695)
- core: mount-setup: handle non-existing mountpoints gracefully (#1585411)
- units/rescue.service.in: fix announcement message (#1660422)
- systemctl: Allow 'edit' and 'cat' on unloaded units (#1649518)
- main: improve RLIMIT_NOFILE handling (#5795) (#1585913)
- shared/sleep-config: exclude zram devices from hibernation candidates (#1609816)
- journalctl: allow --file/--directory with --boot or --list-boots (#1463678)
- journalct: allow --boot=0 to DTRT with --file/--directory (#1463678)
- journal-remote: show error message if output file name does not end with .journal (bz#1267552)
- artificially serialize building of .policy files (#1272485)
- cryptsetup: add support for sector-size= option (#9936) (#1571801)
- cryptsetup: do not define arg_sector_size if libgcrypt is v1.x (#9990) (#1571801)
- journal: fix syslog_parse_identifier() (#1657794)
- journal: do not remove multiple spaces after identifier in syslog message (#1657794)
- tmpfiles: change ownership of symlinks too (#1620110)
- tmpfiles: fix check for figuring out whether to call chmod() (#1620110)
- shared/install: allow 'enable' on linked unit files (#1628575)

[219-63]
- dhcp6: make sure we have enough space for the DHCP6 option header (CVE-2018-15688)
- journald: do not store the iovec entry for process commandline on stack (#1657788)
- journald: set a limit on the number of fields (1k) (#1657792)
- journal-remote: set a limit on the number of fields in a message (#1657792)
- journald: free cmdline buffers owned by iovec (#1666646)

Related CVEs

CVE-2018-15686

CVE-2018-16866

CVE-2018-16888

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	systemd-219-67.0.1.el7.src.rpm	87f3f0c1bd94d6a9bc334984161d272fa23879afc40450a4642ce1d6ad1c9680	ELSA-2024-7705	ol7_aarch64_latest
	systemd-219-67.0.1.el7.src.rpm	87f3f0c1bd94d6a9bc334984161d272fa23879afc40450a4642ce1d6ad1c9680	ELSA-2024-7705	ol7_aarch64_u7_base
	libgudev1-219-67.0.1.el7.aarch64.rpm	ecf4a930d00443ea56f0813578a02084f038acb13e003dbe629da1e47e69641e	ELSA-2024-7705	ol7_aarch64_latest
	libgudev1-219-67.0.1.el7.aarch64.rpm	ecf4a930d00443ea56f0813578a02084f038acb13e003dbe629da1e47e69641e	ELSA-2024-7705	ol7_aarch64_u7_base
	libgudev1-devel-219-67.0.1.el7.aarch64.rpm	143b2b3e0728c0370fce5cda43721a90d9546c224c1a1c86542a5ae5ae51ef3d	ELSA-2024-7705	ol7_aarch64_latest
	libgudev1-devel-219-67.0.1.el7.aarch64.rpm	143b2b3e0728c0370fce5cda43721a90d9546c224c1a1c86542a5ae5ae51ef3d	ELSA-2024-7705	ol7_aarch64_u7_base
	systemd-219-67.0.1.el7.aarch64.rpm	ec16a84e38d1ad30e67ecfaaa01334193d1be3a3bd318e6d2653584ba5d1414c	ELSA-2024-7705	ol7_aarch64_latest
	systemd-219-67.0.1.el7.aarch64.rpm	ec16a84e38d1ad30e67ecfaaa01334193d1be3a3bd318e6d2653584ba5d1414c	ELSA-2024-7705	ol7_aarch64_u7_base
	systemd-devel-219-67.0.1.el7.aarch64.rpm	997c794eaa5dce0f7f8b3cc5e8fbea1c70ec735db620176098e4b7c47171dd98	ELSA-2024-7705	ol7_aarch64_latest
	systemd-devel-219-67.0.1.el7.aarch64.rpm	997c794eaa5dce0f7f8b3cc5e8fbea1c70ec735db620176098e4b7c47171dd98	ELSA-2024-7705	ol7_aarch64_u7_base
	systemd-journal-gateway-219-67.0.1.el7.aarch64.rpm	f456277a7f98eec6e38e6e45ec44256c58e2b8165ffb260971ea7a6e69cb7aad	ELSA-2024-7705	ol7_aarch64_optional_latest
	systemd-libs-219-67.0.1.el7.aarch64.rpm	87e9c73244c8ee8f3a526f3111d016a4515572c8ab7027aac31d261d547e3bd9	ELSA-2024-7705	ol7_aarch64_latest
	systemd-libs-219-67.0.1.el7.aarch64.rpm	87e9c73244c8ee8f3a526f3111d016a4515572c8ab7027aac31d261d547e3bd9	ELSA-2024-7705	ol7_aarch64_u7_base
	systemd-networkd-219-67.0.1.el7.aarch64.rpm	fc0d30f6291289fa70ce2767bc39567890f6747831f6f9c270946d16038aab4f	ELSA-2024-7705	ol7_aarch64_optional_latest
	systemd-python-219-67.0.1.el7.aarch64.rpm	9a63916a054c82d61d2d42481f4992e86d429b634df7efc9f150d3c5a259e462	ELSA-2024-7705	ol7_aarch64_latest
	systemd-python-219-67.0.1.el7.aarch64.rpm	9a63916a054c82d61d2d42481f4992e86d429b634df7efc9f150d3c5a259e462	ELSA-2024-7705	ol7_aarch64_u7_base
	systemd-resolved-219-67.0.1.el7.aarch64.rpm	6a0caeb8b85a4f3a85fc44c3ee0f3d455abb4ac9826fa88540f8042325bfa440	ELSA-2024-7705	ol7_aarch64_optional_latest
	systemd-sysv-219-67.0.1.el7.aarch64.rpm	e8a891c6d3ea5886a8b364c25bc9c0b4cf200ba828b40803025e221b01399fd3	ELSA-2024-7705	ol7_aarch64_latest
	systemd-sysv-219-67.0.1.el7.aarch64.rpm	e8a891c6d3ea5886a8b364c25bc9c0b4cf200ba828b40803025e221b01399fd3	ELSA-2024-7705	ol7_aarch64_u7_base

Oracle Linux 7 (x86_64)	systemd-219-67.0.1.el7.src.rpm	87f3f0c1bd94d6a9bc334984161d272fa23879afc40450a4642ce1d6ad1c9680	ELSA-2024-7705	ol7_x86_64_latest
	systemd-219-67.0.1.el7.src.rpm	87f3f0c1bd94d6a9bc334984161d272fa23879afc40450a4642ce1d6ad1c9680	ELSA-2024-7705	ol7_x86_64_u7_base
	libgudev1-219-67.0.1.el7.i686.rpm	42aedf0558f7b0342636902acce2c9d05f786e76eb79a0714b323702dfe9baab	ELSA-2024-7705	ol7_x86_64_latest
	libgudev1-219-67.0.1.el7.i686.rpm	42aedf0558f7b0342636902acce2c9d05f786e76eb79a0714b323702dfe9baab	ELSA-2024-7705	ol7_x86_64_u7_base
	libgudev1-219-67.0.1.el7.x86_64.rpm	d8d1977968b70efbe0ab908cdfa6773f33c770d053fcda201efb25cb32081a3d	ELSA-2024-7705	ol7_x86_64_latest
	libgudev1-219-67.0.1.el7.x86_64.rpm	d8d1977968b70efbe0ab908cdfa6773f33c770d053fcda201efb25cb32081a3d	ELSA-2024-7705	ol7_x86_64_u7_base
	libgudev1-devel-219-67.0.1.el7.i686.rpm	b7d43a972995332210b24b8148bf8d9611d11bdd02faa9aa074e2c135863d1dc	ELSA-2024-7705	ol7_x86_64_latest
	libgudev1-devel-219-67.0.1.el7.i686.rpm	b7d43a972995332210b24b8148bf8d9611d11bdd02faa9aa074e2c135863d1dc	ELSA-2024-7705	ol7_x86_64_u7_base
	libgudev1-devel-219-67.0.1.el7.x86_64.rpm	f03218870b3450ec71506104e11b2441a39e3a3fdd7c1b4671360a6765d82eeb	ELSA-2024-7705	ol7_x86_64_latest
	libgudev1-devel-219-67.0.1.el7.x86_64.rpm	f03218870b3450ec71506104e11b2441a39e3a3fdd7c1b4671360a6765d82eeb	ELSA-2024-7705	ol7_x86_64_u7_base
	systemd-219-67.0.1.el7.x86_64.rpm	f5be5be188b96238ec10cdbac5be6d8c778b8a3403f671e00fd76c965fd4e41d	ELSA-2024-7705	exadata_dbserver_19.3.0.0.0_x86_64_base
	systemd-219-67.0.1.el7.x86_64.rpm	f5be5be188b96238ec10cdbac5be6d8c778b8a3403f671e00fd76c965fd4e41d	ELSA-2024-7705	exadata_dbserver_19.3.1.0.0_x86_64_base
	systemd-219-67.0.1.el7.x86_64.rpm	f5be5be188b96238ec10cdbac5be6d8c778b8a3403f671e00fd76c965fd4e41d	ELSA-2024-7705	ol7_x86_64_latest
	systemd-219-67.0.1.el7.x86_64.rpm	f5be5be188b96238ec10cdbac5be6d8c778b8a3403f671e00fd76c965fd4e41d	ELSA-2024-7705	ol7_x86_64_u7_base
	systemd-devel-219-67.0.1.el7.i686.rpm	b8b09632dcc053591ba01d563a2e806ddabe0b6ebcc4c4c2d7502b377ba3faea	ELSA-2024-7705	ol7_x86_64_latest
	systemd-devel-219-67.0.1.el7.i686.rpm	b8b09632dcc053591ba01d563a2e806ddabe0b6ebcc4c4c2d7502b377ba3faea	ELSA-2024-7705	ol7_x86_64_u7_base
	systemd-devel-219-67.0.1.el7.x86_64.rpm	776a5884b5ddd0bb33f3f2341982d95af63e2e8cab1401e80fb28401f11e9e2f	ELSA-2024-7705	ol7_x86_64_latest
	systemd-devel-219-67.0.1.el7.x86_64.rpm	776a5884b5ddd0bb33f3f2341982d95af63e2e8cab1401e80fb28401f11e9e2f	ELSA-2024-7705	ol7_x86_64_u7_base
	systemd-journal-gateway-219-67.0.1.el7.x86_64.rpm	bdbf741ea101e8220b498a080daab6da2b81618aaebe9c51d5b874d91678a161	ELSA-2024-7705	ol7_x86_64_optional_latest
	systemd-libs-219-67.0.1.el7.i686.rpm	5d27b69f33ed41f496ae97d866d2e3a21659045fa95c26f7aec424a7b22490b7	ELSA-2024-7705	ol7_x86_64_latest
	systemd-libs-219-67.0.1.el7.i686.rpm	5d27b69f33ed41f496ae97d866d2e3a21659045fa95c26f7aec424a7b22490b7	ELSA-2024-7705	ol7_x86_64_u7_base
	systemd-libs-219-67.0.1.el7.x86_64.rpm	dfcb520bcd76d1cf3737bee0ff74f2328255d7f5c63f3a072fd272883000db84	ELSA-2024-7705	exadata_dbserver_19.3.0.0.0_x86_64_base
	systemd-libs-219-67.0.1.el7.x86_64.rpm	dfcb520bcd76d1cf3737bee0ff74f2328255d7f5c63f3a072fd272883000db84	ELSA-2024-7705	exadata_dbserver_19.3.1.0.0_x86_64_base
	systemd-libs-219-67.0.1.el7.x86_64.rpm	dfcb520bcd76d1cf3737bee0ff74f2328255d7f5c63f3a072fd272883000db84	ELSA-2024-7705	ol7_x86_64_latest
	systemd-libs-219-67.0.1.el7.x86_64.rpm	dfcb520bcd76d1cf3737bee0ff74f2328255d7f5c63f3a072fd272883000db84	ELSA-2024-7705	ol7_x86_64_u7_base
	systemd-networkd-219-67.0.1.el7.x86_64.rpm	b0c974802497dbabf4a7a36bda032e17910f76e8d0a0de6eb404b83dea5319dd	ELSA-2024-7705	exadata_dbserver_19.3.0.0.0_x86_64_base
	systemd-networkd-219-67.0.1.el7.x86_64.rpm	b0c974802497dbabf4a7a36bda032e17910f76e8d0a0de6eb404b83dea5319dd	ELSA-2024-7705	exadata_dbserver_19.3.1.0.0_x86_64_base
	systemd-networkd-219-67.0.1.el7.x86_64.rpm	b0c974802497dbabf4a7a36bda032e17910f76e8d0a0de6eb404b83dea5319dd	ELSA-2024-7705	ol7_x86_64_optional_latest
	systemd-python-219-67.0.1.el7.x86_64.rpm	181e481d2852150df612962e72c280ac2a652ac4caa8db5eed85a8e5c8be0bc2	ELSA-2024-7705	ol7_x86_64_latest
	systemd-python-219-67.0.1.el7.x86_64.rpm	181e481d2852150df612962e72c280ac2a652ac4caa8db5eed85a8e5c8be0bc2	ELSA-2024-7705	ol7_x86_64_u7_base
	systemd-resolved-219-67.0.1.el7.i686.rpm	82e04c5cad7cd53d552bc6f8dbac7c3a73ac63249e625b0e79f648d4dff9528a	ELSA-2024-7705	ol7_x86_64_optional_latest
	systemd-resolved-219-67.0.1.el7.x86_64.rpm	0395e7816d26e376fdbe30ad84401caeab4c55d8389a5f215049a9775977f797	ELSA-2024-7705	ol7_x86_64_optional_latest
	systemd-sysv-219-67.0.1.el7.x86_64.rpm	d7caa314a8c2f22e02bdbf8a7822800f2063f88bd20dd3276e9ffd3f3238e60f	ELSA-2024-7705	exadata_dbserver_19.3.0.0.0_x86_64_base
	systemd-sysv-219-67.0.1.el7.x86_64.rpm	d7caa314a8c2f22e02bdbf8a7822800f2063f88bd20dd3276e9ffd3f3238e60f	ELSA-2024-7705	exadata_dbserver_19.3.1.0.0_x86_64_base
	systemd-sysv-219-67.0.1.el7.x86_64.rpm	d7caa314a8c2f22e02bdbf8a7822800f2063f88bd20dd3276e9ffd3f3238e60f	ELSA-2024-7705	ol7_x86_64_latest
	systemd-sysv-219-67.0.1.el7.x86_64.rpm	d7caa314a8c2f22e02bdbf8a7822800f2063f88bd20dd3276e9ffd3f3238e60f	ELSA-2024-7705	ol7_x86_64_u7_base

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691