Описание
Security update for systemd
This update for systemd fixes the following issues:
- CVE-2021-33910: Fixed a denial of service (stack exhaustion) in systemd (PID 1) (bsc#1188063)
Список пакетов
openSUSE Leap 15.3
libsystemd0-246.13-7.8.1
libsystemd0-32bit-246.13-7.8.1
libudev-devel-246.13-7.8.1
libudev-devel-32bit-246.13-7.8.1
libudev1-246.13-7.8.1
libudev1-32bit-246.13-7.8.1
nss-myhostname-246.13-7.8.1
nss-myhostname-32bit-246.13-7.8.1
nss-mymachines-246.13-7.8.1
nss-mymachines-32bit-246.13-7.8.1
nss-resolve-246.13-7.8.1
nss-systemd-246.13-7.8.1
systemd-246.13-7.8.1
systemd-32bit-246.13-7.8.1
systemd-container-246.13-7.8.1
systemd-coredump-246.13-7.8.1
systemd-devel-246.13-7.8.1
systemd-doc-246.13-7.8.1
systemd-journal-remote-246.13-7.8.1
systemd-lang-246.13-7.8.1
systemd-logger-246.13-7.8.1
systemd-network-246.13-7.8.1
systemd-sysvinit-246.13-7.8.1
udev-246.13-7.8.1
Ссылки
- E-Mail link for openSUSE-SU-2021:2410-1
- SUSE Security Ratings
- SUSE Bug 1188063
- SUSE CVE CVE-2021-33910 page
Описание
basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.
Затронутые продукты
openSUSE Leap 15.3:libsystemd0-246.13-7.8.1
openSUSE Leap 15.3:libsystemd0-32bit-246.13-7.8.1
openSUSE Leap 15.3:libudev-devel-246.13-7.8.1
openSUSE Leap 15.3:libudev-devel-32bit-246.13-7.8.1
Ссылки
- CVE-2021-33910
- SUSE Bug 1188062
- SUSE Bug 1188063