Explore top 10 tips to secure your open-source projects now. Read More
×
Advisory ID: SUSE-SU-2022:1160-1 Released: Tue Apr 12 14:49:18 2022 Summary: Security update for xz Type: security Severity: important Advisory ID: SUSE-RU-2022:1169-1 Released: Tue Apr 12 18:19:42 2022 Summary: Recommended update for systemd Type: recommended Severity: moderate
References : 1180225 1190984 1191502 1193841 1195529 1195899 1198062 CVE-2022-1271
1198062,CVE-2022-1271
This update for xz fixes the following issues:
- CVE-2022-1271: Fixed an incorrect escaping of malicious filenames (ZDI-CAN-16587). (bsc#1198062)
1180225,1190984,1191502,1193841,1195529,1195899
This update for systemd fixes the following issues:
- Core: make sure we always free the list of changes
- Install: correctly report symlink creations
- Core: make sure we generate a nicer error when a linked unit is attempted to be enabled
- Install: unify checking whether operations may be applied to a unit file in a new function
- Install: fix errno handling
- Allow 'edit' and 'cat' on unloaded units
- Don't open /var journals in volatile mode when runtime_journal==NULL
Get the latest Linux and open source security news straight to your inbox.