Описание
Security update for systemd
This update for systemd fixes the following issues:
This security issue was fixed:
- CVE-2016-10156: Fix permissions set on permanent timer timestamp files, preventing local unprivileged users from escalating privileges (bsc#1020601).
These non-security issues were fixed:
- Fix permission set on /var/lib/systemd/linger/*
- install: follow config_path symlink (#3362)
- install: fix disable when /etc/systemd/system is a symlink (bsc#1014560)
- run: make --slice= work in conjunction with --scope (bsc#1014566)
- core: don't dispatch load queue when setting Slice= for transient units
- systemctl: remove duplicate entries showed by list-dependencies (#5049) (bsc#1012266)
- rule: don't automatically online standby memory on s390x (bsc#997682)
This update was imported from the SUSE:SLE-12-SP2:Update update project.
Список пакетов
openSUSE Leap 42.2
libsystemd0-228-22.1
libsystemd0-32bit-228-22.1
libsystemd0-mini-228-22.1
libudev-devel-228-22.1
libudev-mini-devel-228-22.1
libudev-mini1-228-22.1
libudev1-228-22.1
libudev1-32bit-228-22.1
nss-myhostname-228-22.1
nss-myhostname-32bit-228-22.1
nss-mymachines-228-22.1
systemd-228-22.1
systemd-32bit-228-22.1
systemd-bash-completion-228-22.1
systemd-devel-228-22.1
systemd-logger-228-22.1
systemd-mini-228-22.1
systemd-mini-bash-completion-228-22.1
systemd-mini-devel-228-22.1
systemd-mini-sysvinit-228-22.1
systemd-sysvinit-228-22.1
udev-228-22.1
udev-mini-228-22.1
Ссылки
- E-Mail link for openSUSE-SU-2017:0287-1
- SUSE Security Ratings
Описание
A flaw in systemd v228 in /src/basic/fs-util.c caused world writable suid files to be created when using the systemd timers features, allowing local attackers to escalate their privileges to root. This is fixed in v229.
Затронутые продукты
openSUSE Leap 42.2:libsystemd0-228-22.1
openSUSE Leap 42.2:libsystemd0-32bit-228-22.1
openSUSE Leap 42.2:libsystemd0-mini-228-22.1
openSUSE Leap 42.2:libudev-devel-228-22.1
Ссылки
- CVE-2016-10156
- SUSE Bug 1020601
- SUSE Bug 1021969
- SUSE Bug 1086936