MGASA-2022-0016 - Updated systemd packages fix security vulnerability

Publication date: 15 Jan 2022
URL: https://advisories.mageia.org/MGASA-2022-0016.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2021-3997

A flaw was found in systemd. An uncontrolled recursion in systemd-tmpfiles
may lead to a denial of service at boot time when too many nested
directories are created in /tmp. (CVE-2021-3997)

References:
- https://bugs.mageia.org/show_bug.cgi?id=29864
- https://vulners.com/redhatcve/RH:CVE-2021-3997
- https://www.openwall.com/lists/oss-security/2022/01/10/2
- https://lists.opensuse.org/archives/list/[email protected]/thread/BMN5QRPEKDGOKDHBMC6SXHPA733I43MV/
- https://ubuntu.com/security/notices/USN-5226-1
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3997

SRPMS:
- 8/core/systemd-246.16-2.mga8