Fedora 30: systemd Security Update
Summary
systemd is a system and service manager that runs as PID 1 and starts
the rest of the system. It provides aggressive parallelization
capabilities, uses socket and D-Bus activation for starting services,
offers on-demand starting of daemons, keeps track of processes using
Linux control groups, maintains mount and automount points, and
implements an elaborate transactional dependency-based service control
logic. systemd supports SysV and LSB init scripts and works as a
replacement for sysvinit. Other parts of this package are a logging daemon,
utilities to control basic system configuration like the hostname,
date, locale, maintain a list of logged-in users, system accounts,
runtime directories and settings, and daemons to manage simple network
configuration, network time synchronization, log forwarding, and name
resolution.
Backport more patches: - shared/install: Preserve escape characters for
escaped unit names (https://github.com/coreos/bugs/issues/2569) -timedate: fix emitted value when ntp client is enabled/disabled (#1696586) -udev: run programs in the specified order (#1696784) - core: add
Manager::honor_device_enumeration flag (https://pagure.io/fedora-silverblue/issue/8) - Various fixes for systemd-networkd, systemd-portabled
- Dbus policy fixes - Crash on systax error in sysusers (#1670679) - Do not
unescape mount paths received from libmount - Some minor build fixes No need
to log out or reboot.
[ 1 ] Bug #1698045 - CVE-2019-3842 systemd: Spoofing of XDG_SEAT allows for actions to be checked against "allow_active" instead of "allow_any" [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1698045
[ 2 ] Bug #1670679 - [abrt] systemd: freep(): systemd-sysusers killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1670679
[ 3 ] Bug #1696784 - systemd 241 does not register bcache caching device
https://bugzilla.redhat.com/show_bug.cgi?id=1696784
[ 4 ] Bug #1696586 - timedatectl fails to update /etc/localtime
https://bugzilla.redhat.com/show_bug.cgi?id=1696586
su -c 'dnf upgrade --advisory FEDORA-2019-3fa5db9e19' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
FEDORA-2019-3fa5db9e19 2019-04-11 02:13:48.368885 Product : Fedora 30 Version : 241 Release : 5.git3d835d0.fc30 URL : https://www.freedesktop.org/wiki/Software/systemd/ Summary : System and Service Manager Description : systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. systemd supports SysV and LSB init scripts and works as a replacement for sysvinit. Other parts of this package are a logging daemon, utilities to control basic system configuration like the hostname, date, locale, maintain a list of logged-in users, system accounts, runtime directories and settings, and daemons to manage simple network configuration, network time synchronization, log forwarding, and name resolution. Backport more patches: - shared/install: Preserve escape characters for escaped unit names (https://github.com/coreos/bugs/issues/2569) -timedate: fix emitted value when ntp client is enabled/disabled (#1696586) -udev: run programs in the specified order (#1696784) - core: add Manager::honor_device_enumeration flag (https://pagure.io/fedora-silverblue/issue/8) - Various fixes for systemd-networkd, systemd-portabled - Dbus policy fixes - Crash on systax error in sysusers (#1670679) - Do not unescape mount paths received from libmount - Some minor build fixes No need to log out or reboot. [ 1 ] Bug #1698045 - CVE-2019-3842 systemd: Spoofing of XDG_SEAT allows for actions to be checked against "allow_active" instead of "allow_any" [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1698045 [ 2 ] Bug #1670679 - [abrt] systemd: freep(): systemd-sysusers killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1670679 [ 3 ] Bug #1696784 - systemd 241 does not register bcache caching device https://bugzilla.redhat.com/show_bug.cgi?id=1696784 [ 4 ] Bug #1696586 - timedatectl fails to update /etc/localtime https://bugzilla.redhat.com/show_bug.cgi?id=1696586 su -c 'dnf upgrade --advisory FEDORA-2019-3fa5db9e19' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Change Log
References
Update Instructions
