ELSA-2020-0575

ULN >
Oracle Linux Errata repository >
ELSA-2020-0575

ELSA-2020-0575 - systemd security and bug fix update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2020-02-25

Description

[239-18.0.2.el8_1.4]
- fix to generate systemd-pstore.service file [Orabug: 30230056]
- fix _netdev is missing for iscsi entry in /etc/fstab (tony.l.lam@oracle.com) [Orabug: 25897792]
- set 'RemoveIPC=no' in logind.conf as default for OL7.2 [Orabug: 22224874]
- allow dm remove ioctl to co-operate with UEK3 (Vaughan Cao) [Orabug: 18467469]
- add hv dynamic memory support (Jerry Snitselaar) [Orabug: 18621475]
- Backport upstream patches for the new systemd-pstore tool (Eric DeVolder) [OraBug: 30230056]

[239-18.4]
- sd-bus: use 'queue' message references for managing r/w message queues in connection objects (CVE-2020-1712)

[239-18.3]
- core, job: fix breakage of ordering dependencies by systemctl reload command (#1781712)
- syslog: fix segfault in syslog_parse_priority() (#1781712)
- journald: fixed assertion failure when system journal rotation fails (#9893) (#1781712)
- test: use PBKDF2 instead of Argon2 in cryptsetup... (#1781712)
- test: mask several unnecessary services (#1781712)
- test: bump the second partition's size to 50M (#1781712)
- sd-bus: make rqueue/wqueue sizes of type size_t (#20201712)
- sd-bus: reorder bus ref and bus message ref handling (#20201712)
- sd-bus: make sure dispatch_rqueue() initializes return parameter on all types of success (#20201712)
- sd-bus: drop two inappropriate empty lines (#20201712)
- sd-bus: initialize mutex after we allocated the wqueue (#20201712)
- sd-bus: always go through sd_bus_unref() to free messages (#20201712)
- bus-message: introduce two kinds of references to bus messages (#20201712)
- sd-bus: introduce API for re-enqueuing incoming messages (#20201712)
- sd-event: add sd_event_source_disable_unref() helper (#20201712)
- polkit: when authorizing via PK let's re-resolve callback/userdata instead of caching it (#20201712)

[239-18.2]
- ask-password: prevent buffer overrow when reading from keyring (#1777037)

[239-18.1]
- journal: rely on _cleanup_free_ to free a temporary string used in client_context_read_cgroup (#1767716)

[239-18]
- shared/but-util: drop trusted annotation from bus_open_system_watch_bind_with_description() (#1746857)
- sd-bus: adjust indentation of comments (#1746857)
- resolved: do not run loop twice (#1746857)
- resolved: allow access to Set*Link and Revert methods through polkit (#1746857)
- resolved: query polkit only after parsing the data (#1746857)

[239-17]
- mount: simplify /proc/self/mountinfo handler (#1696178)
- mount: rescan /proc/self/mountinfo before processing waitid() results (#1696178)
- swap: scan /proc/swaps before processing waitid() results (#1696178)
- analyze-security: fix potential division by zero (#1734400)

[239-16]
- sd-bus: deal with cookie overruns (#1694999)
- journal-remote: do not request Content-Length if Transfer-Encoding is chunked (#1708849)
- journal: do not remove multiple spaces after identifier in syslog message (#1691817)
- cryptsetup: Do not fallback to PLAIN mapping if LUKS data device set fails. (#1719153)
- cryptsetup: call crypt_load() for LUKS only once (#1719153)
- cryptsetup: Add LUKS2 token support. (#1719153)
- udev/scsi_id: fix incorrect page length when get device identification VPD page (#1713227)
- Change job mode of manager triggered restarts to JOB_REPLACE (#11456
- bash-completion: analyze: support 'security' (#1733395)
- man: note that journal does not validate syslog fields (#1707175)
- rules: skip memory hotplug on ppc64 (#1713159)

Related CVEs

CVE-2020-1712

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	systemd-239-18.0.2.el8_1.4.src.rpm	e7ad05f196cfb79e4ed93bf1a2c86d68856d410487e9880a5bd6b4d6263f21ff	-	ol8_aarch64_baseos_latest
	systemd-239-18.0.2.el8_1.4.aarch64.rpm	33a2295b4132b6b19ce6dbf4550b714696d3ad747fb8c08ab6c1123a7bc285d0	-	ol8_aarch64_baseos_latest
	systemd-container-239-18.0.2.el8_1.4.aarch64.rpm	5f617dba616a35964120b92a8b2c9e37afddd25bc063879852a7b7185d6279f4	-	ol8_aarch64_baseos_latest
	systemd-devel-239-18.0.2.el8_1.4.aarch64.rpm	1b8bf26a1b7abc5a95912248de92108ab365f2b2015b30b4ac405790f286fc6f	-	ol8_aarch64_baseos_latest
	systemd-journal-remote-239-18.0.2.el8_1.4.aarch64.rpm	87335236e13f0f989b41bc2595f9e0a0d4c3e0fc9977a4364da49aaabd6ea58f	-	ol8_aarch64_baseos_latest
	systemd-libs-239-18.0.2.el8_1.4.aarch64.rpm	b256ccb46d537ee8d075f7a937170e9d081d390ee135307ce82e7c1ac7b43c2c	-	ol8_aarch64_baseos_latest
	systemd-pam-239-18.0.2.el8_1.4.aarch64.rpm	e9331feea095ef64cfd3d9904c83bd67cc483bacea931b92d49a51781acec7aa	-	ol8_aarch64_baseos_latest
	systemd-tests-239-18.0.2.el8_1.4.aarch64.rpm	cb631d1da9d8f856a10e8602a45e8d1fa287cb249a15ff890720844c5385d634	-	ol8_aarch64_baseos_latest
	systemd-udev-239-18.0.2.el8_1.4.aarch64.rpm	67f33d4f4bd817632213f97e320d8c150a489c878c30867eecf5ccd946b961ab	-	ol8_aarch64_baseos_latest

Oracle Linux 8 (x86_64)	systemd-239-18.0.2.el8_1.4.src.rpm	e7ad05f196cfb79e4ed93bf1a2c86d68856d410487e9880a5bd6b4d6263f21ff	-	ol8_x86_64_baseos_latest
	systemd-239-18.0.2.el8_1.4.src.rpm	e7ad05f196cfb79e4ed93bf1a2c86d68856d410487e9880a5bd6b4d6263f21ff	-	ol8_x86_64_u1_baseos_patch
	systemd-239-18.0.2.el8_1.4.i686.rpm	dba4ce5c233885de2956986edbda818d695f2cdea72b3844152dc913bd0ce572	-	ol8_x86_64_baseos_latest
	systemd-239-18.0.2.el8_1.4.i686.rpm	dba4ce5c233885de2956986edbda818d695f2cdea72b3844152dc913bd0ce572	-	ol8_x86_64_u1_baseos_patch
	systemd-239-18.0.2.el8_1.4.x86_64.rpm	9ac63ea0360be12f960ca822614e52a9f639709952488810c5e0ead95dae20b4	-	ol8_x86_64_baseos_latest
	systemd-239-18.0.2.el8_1.4.x86_64.rpm	9ac63ea0360be12f960ca822614e52a9f639709952488810c5e0ead95dae20b4	-	ol8_x86_64_u1_baseos_patch
	systemd-container-239-18.0.2.el8_1.4.i686.rpm	23933dcdf563c49eda78bed4489b07a51cd8a70f12df7c4638e10f7e1a3bc782	-	ol8_x86_64_baseos_latest
	systemd-container-239-18.0.2.el8_1.4.i686.rpm	23933dcdf563c49eda78bed4489b07a51cd8a70f12df7c4638e10f7e1a3bc782	-	ol8_x86_64_u1_baseos_patch
	systemd-container-239-18.0.2.el8_1.4.x86_64.rpm	b2664a6f681227c1c6eba7f57cec54f85d051c958122c8419d103f2d090e0b16	-	ol8_x86_64_baseos_latest
	systemd-container-239-18.0.2.el8_1.4.x86_64.rpm	b2664a6f681227c1c6eba7f57cec54f85d051c958122c8419d103f2d090e0b16	-	ol8_x86_64_u1_baseos_patch
	systemd-devel-239-18.0.2.el8_1.4.i686.rpm	0f8c3682c2b2fd171aa37392e11ab35cc300c10a5b74bd940ea95803d56c3a32	-	ol8_x86_64_baseos_latest
	systemd-devel-239-18.0.2.el8_1.4.i686.rpm	0f8c3682c2b2fd171aa37392e11ab35cc300c10a5b74bd940ea95803d56c3a32	-	ol8_x86_64_u1_baseos_patch
	systemd-devel-239-18.0.2.el8_1.4.x86_64.rpm	9a3cca6ff2903f869ea298616f3c7c2f9858279760ba946dd722523b338d8f67	-	ol8_x86_64_baseos_latest
	systemd-devel-239-18.0.2.el8_1.4.x86_64.rpm	9a3cca6ff2903f869ea298616f3c7c2f9858279760ba946dd722523b338d8f67	-	ol8_x86_64_u1_baseos_patch
	systemd-journal-remote-239-18.0.2.el8_1.4.x86_64.rpm	6d8cc632e1b622f5af64e868eccfd21bcbbef6a72e565df6c768b01efa5aa8be	-	ol8_x86_64_baseos_latest
	systemd-journal-remote-239-18.0.2.el8_1.4.x86_64.rpm	6d8cc632e1b622f5af64e868eccfd21bcbbef6a72e565df6c768b01efa5aa8be	-	ol8_x86_64_u1_baseos_patch
	systemd-libs-239-18.0.2.el8_1.4.i686.rpm	680cfa8ad483c9349c34a9c06db67dfde4f22636f475af2885e94b1eb2b234fa	-	ol8_x86_64_baseos_latest
	systemd-libs-239-18.0.2.el8_1.4.i686.rpm	680cfa8ad483c9349c34a9c06db67dfde4f22636f475af2885e94b1eb2b234fa	-	ol8_x86_64_u1_baseos_patch
	systemd-libs-239-18.0.2.el8_1.4.x86_64.rpm	c7a363e1aa9b52dc8b538d393a32db3951af910fc148692b683227d0da2838e0	-	ol8_x86_64_baseos_latest
	systemd-libs-239-18.0.2.el8_1.4.x86_64.rpm	c7a363e1aa9b52dc8b538d393a32db3951af910fc148692b683227d0da2838e0	-	ol8_x86_64_u1_baseos_patch
	systemd-pam-239-18.0.2.el8_1.4.x86_64.rpm	72ca6639c8d3c48c98d38f5f975ff870b130470c4b22fdfcc191701b82822997	-	ol8_x86_64_baseos_latest
	systemd-pam-239-18.0.2.el8_1.4.x86_64.rpm	72ca6639c8d3c48c98d38f5f975ff870b130470c4b22fdfcc191701b82822997	-	ol8_x86_64_u1_baseos_patch
	systemd-tests-239-18.0.2.el8_1.4.x86_64.rpm	08bfe75ef8e1bf9939e18f615d3eb728a33f6ecbe727b7b5141a9ada8210a460	-	ol8_x86_64_baseos_latest
	systemd-tests-239-18.0.2.el8_1.4.x86_64.rpm	08bfe75ef8e1bf9939e18f615d3eb728a33f6ecbe727b7b5141a9ada8210a460	-	ol8_x86_64_u1_baseos_patch
	systemd-udev-239-18.0.2.el8_1.4.x86_64.rpm	317ab930e01e19a8b47f4f7ab4ec582bfdb0d573ae29629578aa5cc8a0545428	-	ol8_x86_64_baseos_latest
	systemd-udev-239-18.0.2.el8_1.4.x86_64.rpm	317ab930e01e19a8b47f4f7ab4ec582bfdb0d573ae29629578aa5cc8a0545428	-	ol8_x86_64_u1_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691