ELSA-2020-4007

ELSA-2020-4007 - systemd security and bug fix update

Type:SECURITY
Severity:LOW
Release Date:2020-10-06

Description


[219-78.0.1]
- Backport upstream patches related to private-tmp (Sushmita Bhattacharya) [Orabug: 31561883]
- backport upstream pstore tmpfiles patch (Eric DeVolder) [Orabug: 31414539]
- udev rules: fix memory hot add and remove [Orabug: 31309730]
- enable and start the pstore service [Orabug: 30950903]
- fix to generate the systemd-pstore.service file [Orabug: 30235241]
- Backport upstream patches for the new systemd-pstore tool [Orabug: 30235241]
- do not create utmp update symlinks for reboot and poweroff [Orabug: 27854896]
- OL7 udev rule for virtio net standby interface [Orabug: 28826743]
- fix _netdev is missing for iscsi entry in /etc/fstab [Orabug: 25897792] (tony.l.lam@oracle.com)
- set 'RemoveIPC=no' in logind.conf as default for OL7.2 [22224874]
- allow dm remove ioctl to co-operate with UEK3 (Vaughan Cao) [Orabug: 18467469]
- add hv dynamic memory support (Jerry Snitselaar) [Orabug: 18621475]

[219-78]
- avoid double free (#1832816)

[219-77]
- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)

[219-76]
- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)

[219-75]
- journal: break recursion (#1778744)

[219-74]
- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, dont close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#1757704)
- tests: add regression test for 'systemctl restart systemd-journald' (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: dont propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: dont add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before weve setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add '-G' as shortcut for '--property=CollectMode=inactive-or-failed' (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: dont use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)

[219-73.3]
- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)

[219-73.2]
- core: when restarting services, dont close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for 'systemctl restart systemd-journald' (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)

[219-73.1]
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)


Related CVEs


CVE-2019-20386

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) systemd-219-78.0.1.el7.src.rpm4d5025c315515556af8e04b3227e084dELBA-2021-9263
libgudev1-219-78.0.1.el7.aarch64.rpm6ae495ac57d58ec6ac541e180b6dba19ELBA-2021-9263
libgudev1-devel-219-78.0.1.el7.aarch64.rpm2cad6a2f84c4f89fc605d61bbec91f7aELBA-2021-9263
systemd-219-78.0.1.el7.aarch64.rpme1797032e19bf2e7e57d029122da09bbELBA-2021-9263
systemd-devel-219-78.0.1.el7.aarch64.rpm883459c8f42d2f5a49d0e12c9d344440ELBA-2021-9263
systemd-journal-gateway-219-78.0.1.el7.aarch64.rpm21aae89f66d4e95ef067f479c46fca60ELBA-2021-9263
systemd-libs-219-78.0.1.el7.aarch64.rpm4bd622bad8b7298cfd29bf11f1077e3cELBA-2021-9263
systemd-networkd-219-78.0.1.el7.aarch64.rpmbf3830d482733f2fa69e6c9fcd688c59ELBA-2021-9263
systemd-python-219-78.0.1.el7.aarch64.rpmcb79fb23756dfd17177bda4e248c1456ELBA-2021-9263
systemd-resolved-219-78.0.1.el7.aarch64.rpmea7098cd17d5aef9358224fcf88b2748ELBA-2021-9263
systemd-sysv-219-78.0.1.el7.aarch64.rpma4648c75d052951b4fa37b2bf2547198ELBA-2021-9263
Oracle Linux 7 (x86_64) systemd-219-78.0.1.el7.src.rpm4d5025c315515556af8e04b3227e084dELBA-2021-9263
libgudev1-219-78.0.1.el7.i686.rpm551dfd62b0e3b849feb2340946eb1f65ELBA-2021-9263
libgudev1-219-78.0.1.el7.x86_64.rpm93345dc1613af2ab9c71b7bbd9029294ELBA-2021-9263
libgudev1-devel-219-78.0.1.el7.i686.rpm11e0a097659a80b71812feb3bad6042eELBA-2021-9263
libgudev1-devel-219-78.0.1.el7.x86_64.rpm8d53ac3e116d8181be28d7d93a7906dbELBA-2021-9263
systemd-219-78.0.1.el7.x86_64.rpm315317cd334394952ddd95aaf324a2d4ELBA-2021-9263
systemd-devel-219-78.0.1.el7.i686.rpme6bfe9c21e4c7510af5d284f74a44e0cELBA-2021-9263
systemd-devel-219-78.0.1.el7.x86_64.rpmbcda0fa81396340e74be6e37da60bcbdELBA-2021-9263
systemd-journal-gateway-219-78.0.1.el7.x86_64.rpmca2e497e4bb6248994e790a4f622b787ELBA-2021-9263
systemd-libs-219-78.0.1.el7.i686.rpmb18646aedc2af667079b4e10ac0b7e93ELBA-2021-9263
systemd-libs-219-78.0.1.el7.x86_64.rpma92fb8b180d16537bbb76c4dd528cba7ELBA-2021-9263
systemd-networkd-219-78.0.1.el7.x86_64.rpma4d9e8d95a70d35b7757d2f18627ab10ELBA-2021-9263
systemd-python-219-78.0.1.el7.x86_64.rpm1ad78b9d4e5da3bd04f51fa30d91050fELBA-2021-9263
systemd-resolved-219-78.0.1.el7.i686.rpmda6ddb5b30f7ca9131e5cee3b8ee9333ELBA-2021-9263
systemd-resolved-219-78.0.1.el7.x86_64.rpmc8cedf645dd2762e8f41b957d5c18a3eELBA-2021-9263
systemd-sysv-219-78.0.1.el7.x86_64.rpmdffc0e71fbab2f3e889db799d1cab38eELBA-2021-9263



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete