Alerts This Week
Warning Icon 1 609
Alerts This Week
Warning Icon 1 609

openSUSE Leap 42.1 Security Advisory: 2016:2539-1 Important DoS Issue

opensuse
Calendar Grey October 14, 2016
Dist Opensuse Esm H88
The latest patch addresses a critical flaw in openSUSE systemd, delivering 10 essential corrections along with a remedy for a denial-of-service vulnerability.
An update that solves one vulnerability and has 10 fixes is An update that solves one vulnerability and has 10 fixes is An update that solves one vulnerability and has 10 fixes is ...

Description

This update for systemd fixes the following security issue:

- CVE-2016-7796: A zero-length message received over systemd's

notification socket could make manager_dispatch_notify_fd() return an

error and, as a side effect, disable the notification handler

completely. As the notification socket is world-writable, this could

have allowed a local user to perform a denial-of-service attack against

systemd. (bsc#1001765)

Additionally, the following non-security fixes are included:

- Fix HMAC calculation when appending a data object to journal.

(bsc#1000435)

- Never accept file descriptors from file systems with mandatory locking

enabled. (bsc#954374)

- Do not warn about missing install info with "preset". (bsc#970293)

- Save /run/systemd/users/UID before starting user@.service. (bsc#996269)

- Make sure that /var/lib/systemd/sysv-convert/database is always

initialized. (bsc#982211)

- Remove daylight saving time handling...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory update critical DoS patch openSUSE systemd

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.1:

zypper in -t patch openSUSE-2016-1194=1

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE Leap 42.1 (i586 x86_64):

libgudev-1_0-0-210-98.1

libgudev-1_0-0-debuginfo-210-98.1

libgudev-1_0-devel-210-98.1

libudev-devel-210-98.1

libudev-mini-devel-210-98.1

libudev-mini1-210-98.1

libudev-mini1-debuginfo-210-98.1

libudev1-210-98.1

libudev1-debuginfo-210-98.1

nss-myhostname-210-98.1

nss-myhostname-debuginfo-210-98.1

systemd-210-98.1

systemd-debuginfo-210-98.1

systemd-debugsource-210-98.1

systemd-devel-210-98.1

systemd-journal-gateway-210-98.1

systemd-journal-gateway-debuginfo-210-98.1

systemd-logger-210-98.1

systemd-mini-210-98.1

systemd-mini-debuginfo-210-98.1

systemd-mini-debugsource-210-98.1

systemd-mini-devel-210-98.1

systemd-mini-sysvinit-210-98.1

systemd-sysvinit-210-98.1

typelib-1_0-GUdev-1_0-210-98.1

udev-210-98.1

udev-debuginfo-210-98.1

udev-mini-210-98.1

udev-mini-debuginfo-210-98.1

- openSUSE Leap 42.1 (noarch):

systemd-bash-completion-210-98.1

- openSUSE Leap 42.1 (x86_64):

libgudev-1_0-0-32bit-210-98.1

libgudev-1_0-0-debuginfo-32bit-210-98.1

libudev1-32bit-210-98.1

libudev1-debuginfo-32bit-210...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2016-7796.html

https://bugzilla.suse.com/1000435

https://bugzilla.suse.com/1001765

https://bugzilla.suse.com/954374

https://bugzilla.suse.com/970293

https://bugzilla.suse.com/982210

https://bugzilla.suse.com/982211

https://bugzilla.suse.com/982251

https://bugzilla.suse.com/987173

https://bugzilla.suse.com/987857

https://bugzilla.suse.com/990074

https://bugzilla.suse.com/996269

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2016:2539-1
Rating: important
Affected Products: openSUSE Leap 42.1

Topics%20covered

Topics Covered

security advisory update critical DoS patch openSUSE systemd

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here