SUSE-SU-2018:0299-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2018:0299-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2018:0299-1
Related
Published
2018-01-30T13:37:19Z
Modified
2018-01-30T13:37:19Z
Summary
Security update for systemd
Details

This update for systemd fixes several issues.

This security issue was fixed:

  • CVE-2018-1049: Prevent race that can lead to DoS when using automounts (bsc#1076308).

These non-security issues were fixed:

  • core: don't choke if a unit another unit triggers vanishes during reload
  • delta: don't ignore PREFIX when the given argument is PREFIX/SUFFIX
  • delta: extend skip logic to work on full directory paths (prefix+suffix) (bsc#1070428)
  • delta: check if a prefix needs to be skipped only once
  • delta: skip symlink paths when split-usr is enabled (#4591)
  • sysctl: use raw file descriptor in sysctl_write (#7753)
  • sd-netlink: don't take possesion of netlink fd from caller on failure (bsc#1074254)
  • Fix the regexp used to detect broken by-id symlinks in /etc/crypttab It was missing the following case: '/dev/disk/by-id/cr_-xxx'.
  • sysctl: disable buffer while writing to /proc (bsc#1071558)
  • Use readline() and LONGLINE_MAX to read values configuration files. (bsc#1071558)
  • sysctl: no need to check for eof twice
  • def: add new constant LONGLINEMAX
  • fileio: add new helper call read_line() as bounded getline() replacement
  • service: Don't stop unneeded units needed by restarted service (#7526) (bsc#1066156)
  • gpt-auto-generator: fix the handling of the value returned by fstabhasfstype() in add_swap() (#6280)
  • gpt-auto-generator: disable gpt auto logic for swaps if at least one is defined in fstab (bsc#897422)
  • fstab-util: introduce fstabhasfstype() helper
  • fstab-generator: ignore root=/dev/nfs (#3591)
  • fstab-generator: don't process root= if it happens to be 'gpt-auto' (#3452)
  • virt: use XENFEAT_dom0 to detect the hardware domain (#6442, #6662) (#7581) (bsc#1048510)
  • analyze: replace --no-man with --man=no in the man page (bsc#1068251)
  • udev: netsetuplink: don't error out when we couldn't apply link config (#7328)
  • Add missing /etc/systemd/network directory
  • Fix parsing of features in detectvmxen_dom0 (#7890) (bsc#1048510)
  • sd-bus: use -- when passing arguments to ssh (#6706)
  • systemctl: make sure we terminate the bus connection first, and then close the pager (#3550)
  • sd-bus: bump message queue size (bsc#1075724)
  • tmpfiles: downgrade warning about duplicate line
References

Affected packages

SUSE:Linux Enterprise Desktop 12 SP2 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
228-150.29.1

Ecosystem specific 

{
    "binaries": [
        {
            "libudev1-32bit": "228-150.29.1",
            "libsystemd0": "228-150.29.1",
            "udev": "228-150.29.1",
            "libudev1": "228-150.29.1",
            "systemd-32bit": "228-150.29.1",
            "systemd-bash-completion": "228-150.29.1",
            "libsystemd0-32bit": "228-150.29.1",
            "systemd": "228-150.29.1",
            "systemd-sysvinit": "228-150.29.1"
        }
    ]
}

SUSE:Linux Enterprise Desktop 12 SP3 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
228-150.29.1

Ecosystem specific 

{
    "binaries": [
        {
            "libudev1-32bit": "228-150.29.1",
            "libsystemd0": "228-150.29.1",
            "udev": "228-150.29.1",
            "libudev1": "228-150.29.1",
            "systemd-32bit": "228-150.29.1",
            "systemd-bash-completion": "228-150.29.1",
            "libsystemd0-32bit": "228-150.29.1",
            "systemd": "228-150.29.1",
            "systemd-sysvinit": "228-150.29.1"
        }
    ]
}

SUSE:Linux Enterprise Server for Raspberry Pi 12 SP2 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
228-150.29.1

Ecosystem specific 

{
    "binaries": [
        {
            "libsystemd0": "228-150.29.1",
            "systemd-bash-completion": "228-150.29.1",
            "udev": "228-150.29.1",
            "libudev1": "228-150.29.1",
            "systemd": "228-150.29.1",
            "systemd-sysvinit": "228-150.29.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP2 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
228-150.29.1

Ecosystem specific 

{
    "binaries": [
        {
            "systemd-devel": "228-150.29.1",
            "libudev-devel": "228-150.29.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP3 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
228-150.29.1

Ecosystem specific 

{
    "binaries": [
        {
            "systemd-devel": "228-150.29.1",
            "libudev-devel": "228-150.29.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP2 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
228-150.29.1

Ecosystem specific 

{
    "binaries": [
        {
            "libudev1-32bit": "228-150.29.1",
            "libsystemd0": "228-150.29.1",
            "udev": "228-150.29.1",
            "libudev1": "228-150.29.1",
            "systemd-32bit": "228-150.29.1",
            "systemd-bash-completion": "228-150.29.1",
            "libsystemd0-32bit": "228-150.29.1",
            "systemd": "228-150.29.1",
            "systemd-sysvinit": "228-150.29.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP2 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
228-150.29.1

Ecosystem specific 

{
    "binaries": [
        {
            "libudev1-32bit": "228-150.29.1",
            "libsystemd0": "228-150.29.1",
            "udev": "228-150.29.1",
            "libudev1": "228-150.29.1",
            "systemd-32bit": "228-150.29.1",
            "systemd-bash-completion": "228-150.29.1",
            "libsystemd0-32bit": "228-150.29.1",
            "systemd": "228-150.29.1",
            "systemd-sysvinit": "228-150.29.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP3 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
228-150.29.1

Ecosystem specific 

{
    "binaries": [
        {
            "libudev1-32bit": "228-150.29.1",
            "libsystemd0": "228-150.29.1",
            "udev": "228-150.29.1",
            "libudev1": "228-150.29.1",
            "systemd-32bit": "228-150.29.1",
            "systemd-bash-completion": "228-150.29.1",
            "libsystemd0-32bit": "228-150.29.1",
            "systemd": "228-150.29.1",
            "systemd-sysvinit": "228-150.29.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP3 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
228-150.29.1

Ecosystem specific 

{
    "binaries": [
        {
            "libudev1-32bit": "228-150.29.1",
            "libsystemd0": "228-150.29.1",
            "udev": "228-150.29.1",
            "libudev1": "228-150.29.1",
            "systemd-32bit": "228-150.29.1",
            "systemd-bash-completion": "228-150.29.1",
            "libsystemd0-32bit": "228-150.29.1",
            "systemd": "228-150.29.1",
            "systemd-sysvinit": "228-150.29.1"
        }
    ]
}