Описание
ELSA-2019-0201: systemd security update (LOW)
[219-62.0.4]
- do not create utmp update symlinks for reboot and poweroff [Orabug: 27854896]
- OL7 udev rule for virtio net standby interface [Orabug: 28826743]
- fix _netdev is missing for iscsi entry in /etc/fstab [Orabug: 25897792] (tony.l.lam@oracle.com)
- set 'RemoveIPC=no' in logind.conf as default for OL7.2 [22224874]
- allow dm remove ioctl to co-operate with UEK3 (Vaughan Cao) [Orabug: 18467469]
- add hv dynamic memory support (Jerry Snitselaar) [Orabug: 18621475]
[219-62.3]
- journald: free cmdline buffers owned by iovec (#1666646)
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
libgudev1
219-62.0.4.el7_6.3
libgudev1-devel
219-62.0.4.el7_6.3
systemd
219-62.0.4.el7_6.3
systemd-devel
219-62.0.4.el7_6.3
systemd-journal-gateway
219-62.0.4.el7_6.3
systemd-libs
219-62.0.4.el7_6.3
systemd-networkd
219-62.0.4.el7_6.3
systemd-python
219-62.0.4.el7_6.3
systemd-resolved
219-62.0.4.el7_6.3
systemd-sysv
219-62.0.4.el7_6.3
Oracle Linux x86_64
libgudev1
219-62.0.4.el7_6.3
libgudev1-devel
219-62.0.4.el7_6.3
systemd
219-62.0.4.el7_6.3
systemd-devel
219-62.0.4.el7_6.3
systemd-journal-gateway
219-62.0.4.el7_6.3
systemd-libs
219-62.0.4.el7_6.3
systemd-networkd
219-62.0.4.el7_6.3
systemd-python
219-62.0.4.el7_6.3
systemd-resolved
219-62.0.4.el7_6.3
systemd-sysv
219-62.0.4.el7_6.3
Связанные CVE
Связанные уязвимости
A memory leak was discovered in the backport of fixes for CVE-2018-16864 in Red Hat Enterprise Linux. Function dispatch_message_real() in journald-server.c does not free the memory allocated by set_iovec_field_free() to store the `_CMDLINE=` entry. A local attacker may use this flaw to make systemd-journald crash. This issue only affects versions shipped with Red Hat Enterprise since v219-62.2.
A memory leak was discovered in the backport of fixes for CVE-2018-16864 in Red Hat Enterprise Linux. Function dispatch_message_real() in journald-server.c does not free the memory allocated by set_iovec_field_free() to store the `_CMDLINE=` entry. A local attacker may use this flaw to make systemd-journald crash. This issue only affects versions shipped with Red Hat Enterprise since v219-62.2.
A memory leak was discovered in the backport of fixes for CVE-2018-16864 in Red Hat Enterprise Linux. Function dispatch_message_real() in journald-server.c does not free the memory allocated by set_iovec_field_free() to store the `_CMDLINE=` entry. A local attacker may use this flaw to make systemd-journald crash. This issue only affects versions shipped with Red Hat Enterprise since v219-62.2.
A memory leak was discovered in the backport of fixes for CVE-2018-168 ...
A memory leak was discovered in the backport of fixes for CVE-2018-16864 in Red Hat Enterprise Linux. Function dispatch_message_real() in journald-server.c does not free the memory allocated by set_iovec_field_free() to store the `_CMDLINE=` entry. A local attacker may use this flaw to make systemd-journald crash. This issue only affects versions shipped with Red Hat Enterprise since v219-62.2.