Описание
ELSA-2022-6160: systemd security update (IMPORTANT)
[219-78.0.9.el7_9.7]
- Core: explicitly trigger changing udev systemd_wants property [Orabug: 31858125]
- Disable unprivileged BPF by default [Orabug: 32871008]
- Resolve missing installation files for systemd-pstore [Orabug 32497787]
- Change to have file tmpfiles.d/systemd-pstore.conf installed on upon initial installation, not on rpm update. [Orabug 31414539]
- Backport upstream patches related to private-tmp (Sushmita Bhattacharya) [Orabug: 31561883]
- backport upstream pstore tmpfiles patch (Eric DeVolder) [Orabug: 31414539]
- udev rules: fix memory hot add and remove [Orabug: 31309730]
- enable and start the pstore service [Orabug: 30950903]
- fix to generate the systemd-pstore.service file [Orabug: 30235241]
- Backport upstream patches for the new systemd-pstore tool [Orabug: 30235241]
- do not create utmp update symlinks for reboot and poweroff [Orabug: 27854896]
- OL7 udev rule for virtio net standby interface [Orabug: 28826743]
- fix _netdev is missing for iscsi entry in /etc/fstab [Orabug: 25897792] (tony.l.lam@oracle.com)
- set 'RemoveIPC=no' in logind.conf as default for OL7.2 [22224874]
- allow dm remove ioctl to co-operate with UEK3 (Vaughan Cao) [Orabug: 18467469]
- add hv dynamic memory support (Jerry Snitselaar) [Orabug: 18621475]
- daemon reload race fix [Orabug: 34205619]
[219-78.7]
- resolve: introduce reference counting on DnsStream (#2110544)
[219-78.6]
- resolved: pin stream while calling callbacks for it (#2110544)
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
libgudev1
219-78.0.9.el7_9.7
libgudev1-devel
219-78.0.9.el7_9.7
systemd
219-78.0.9.el7_9.7
systemd-devel
219-78.0.9.el7_9.7
systemd-journal-gateway
219-78.0.9.el7_9.7
systemd-libs
219-78.0.9.el7_9.7
systemd-networkd
219-78.0.9.el7_9.7
systemd-python
219-78.0.9.el7_9.7
systemd-resolved
219-78.0.9.el7_9.7
systemd-sysv
219-78.0.9.el7_9.7
Oracle Linux x86_64
libgudev1
219-78.0.9.el7_9.7
libgudev1-devel
219-78.0.9.el7_9.7
systemd
219-78.0.9.el7_9.7
systemd-devel
219-78.0.9.el7_9.7
systemd-journal-gateway
219-78.0.9.el7_9.7
systemd-libs
219-78.0.9.el7_9.7
systemd-networkd
219-78.0.9.el7_9.7
systemd-python
219-78.0.9.el7_9.7
systemd-resolved
219-78.0.9.el7_9.7
systemd-sysv
219-78.0.9.el7_9.7
Связанные CVE
Связанные уязвимости
A use-after-free vulnerability was found in systemd. This issue occurs due to the on_stream_io() function and dns_stream_complete() function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other functions and callbacks called can dereference the DNSStream object, causing the use-after-free when the reference is still used later.
A use-after-free vulnerability was found in systemd. This issue occurs due to the on_stream_io() function and dns_stream_complete() function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other functions and callbacks called can dereference the DNSStream object, causing the use-after-free when the reference is still used later.
A use-after-free vulnerability was found in systemd. This issue occurs due to the on_stream_io() function and dns_stream_complete() function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other functions and callbacks called can dereference the DNSStream object, causing the use-after-free when the reference is still used later.
A use-after-free vulnerability was found in systemd. This issue occurs ...
