Описание
ELSA-2021-2717: systemd security update (IMPORTANT)
[239-45.0.2]
- Disable unprivileged BPF by default [Orabug: 32870980]
- backport upstream pstore tmpfiles patch [Orabug: 31420486]
- udev rules: fix memory hot add and remove [Orabug: 31310273]
- fix to enable systemd-pstore.service [Orabug: 30951066]
- journal: change support URL shown in the catalog entries [Orabug: 30853009]
- fix to generate systemd-pstore.service file [Orabug: 30230056]
- fix _netdev is missing for iscsi entry in /etc/fstab (tony.l.lam@oracle.com) [Orabug: 25897792]
- set 'RemoveIPC=no' in logind.conf as default for OL7.2 [Orabug: 22224874]
- allow dm remove ioctl to co-operate with UEK3 (Vaughan Cao) [Orabug: 18467469]
- add hv dynamic memory support (Jerry Snitselaar) [Orabug: 18621475]
- Backport upstream patches for the new systemd-pstore tool (Eric DeVolder) [OraBug: 30230056]
[239-45.2]
- basic/unit-name: do not use strdupa() on a path (CVE-2021-33910, #1974699)
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
systemd
239-45.0.2.el8_4.2
systemd-container
239-45.0.2.el8_4.2
systemd-devel
239-45.0.2.el8_4.2
systemd-journal-remote
239-45.0.2.el8_4.2
systemd-libs
239-45.0.2.el8_4.2
systemd-pam
239-45.0.2.el8_4.2
systemd-tests
239-45.0.2.el8_4.2
systemd-udev
239-45.0.2.el8_4.2
Oracle Linux x86_64
systemd
239-45.0.2.el8_4.2
systemd-container
239-45.0.2.el8_4.2
systemd-devel
239-45.0.2.el8_4.2
systemd-journal-remote
239-45.0.2.el8_4.2
systemd-libs
239-45.0.2.el8_4.2
systemd-pam
239-45.0.2.el8_4.2
systemd-tests
239-45.0.2.el8_4.2
systemd-udev
239-45.0.2.el8_4.2
Связанные CVE
Связанные уязвимости
basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.
basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.
basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.
basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 ...