Fedora 26: 2017-956e27bdd6 Critical: Systemd Out-Of-Bounds Issue

systemd is a system and service manager that runs as PID 1 and starts

the rest of the system. It provides aggressive parallelization

capabilities, uses socket and D-Bus activation for starting services,

offers on-demand starting of daemons, keeps track of processes using

Linux control groups, maintains mount and automount points, and

implements an elaborate transactional dependency-based service control

logic. systemd supports SysV and LSB init scripts and works as a

replacement for sysvinit. Other parts of this package are a logging daemon,

utilities to control basic system configuration like the hostname,

date, locale, maintain a list of logged-in users and running

containers and virtual machines, system accounts, runtime directories

and settings, and daemons to manage simple network configuration,

network time synchronization, log forwarding, and name resolution.

A fix for an out-of-bounds write in systemd-resolved after a crafted DNS packet

(CVE-2017-9445). No need to reboot or log out.

[ 1 ] Bug #1465610 - resolved: an out-of-bounds write

https://bugzilla.redhat.com/show_bug.cgi?id=1465610

su -c 'dnf upgrade systemd' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org