Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 14 articles for you...
219
security advisorymoderatesecurity issueRocky Linux 9 RLSA-2023:0336 Moderate: Systemd Buffer Overrun Threat
Moderate: systemd security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2023:0336", "synopsis": "Moderate: systemd security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for systemd.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit.\n\nSecurity Fix(es):\n\n* systemd: buffer overrun in format_timespan() function (CVE-2022-3821)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2139327", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2139327", "description": ""}], "cves": [{"name": "CVE-2022-3821", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2022-3821", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "5.5", "cwe": "CWE-193"}], "references": [], "publishedAt": "2023-01-23T14:30:26Z", "rpms": {"Rocky Linux 9": {"nvras": ["systemd-0:250-12.el9_1.1.aarch64.rpm", "systemd-0:250-12.el9_1.1.i686.rpm", "systemd-0:250-12.el9_1.1.ppc64le.rpm", "systemd-0:250-12.el9_1.1.s390x.rpm", "systemd-0:250-12.el9_1.1.src.rpm","systemd-0:250-12.el9_1.1.x86_64.rpm", "systemd-container-0:250-12.el9_1.1.aarch64.rpm", "systemd-container-0:250-12.el9_1.1.i686.rpm", "systemd-container-0:250-12.el9_1.1.ppc64le.rpm", "systemd-container-0:250-12.el9_1.1.s390x.rpm", "systemd-container-0:250-12.el9_1.1.x86_64.rpm", "systemd-container-debuginfo-0:250-12.el9_1.1.aarch64.rpm", "systemd-container-debuginfo-0:250-12.el9_1.1.ppc64le.rpm", "systemd-container-debuginfo-0:250-12.el9_1.1.s390x.rpm", "systemd-container-debuginfo-0:250-12.el9_1.1.x86_64.rpm", "systemd-debuginfo-0:250-12.el9_1.1.aarch64.rpm", "systemd-debuginfo-0:250-12.el9_1.1.ppc64le.rpm", "systemd-debuginfo-0:250-12.el9_1.1.s390x.rpm", "systemd-debuginfo-0:250-12.el9_1.1.x86_64.rpm", "systemd-debugsource-0:250-12.el9_1.1.aarch64.rpm", "systemd-debugsource-0:250-12.el9_1.1.ppc64le.rpm", "systemd-debugsource-0:250-12.el9_1.1.s390x.rpm", "systemd-debugsource-0:250-12.el9_1.1.x86_64.rpm", "systemd-devel-0:250-12.el9_1.1.aarch64.rpm", "systemd-devel-0:250-12.el9_1.1.i686.rpm", "systemd-devel-0:250-12.el9_1.1.ppc64le.rpm", "systemd-devel-0:250-12.el9_1.1.s390x.rpm", "systemd-devel-0:250-12.el9_1.1.x86_64.rpm", "systemd-devel-debuginfo-0:250-12.el9_1.1.aarch64.rpm", "systemd-devel-debuginfo-0:250-12.el9_1.1.ppc64le.rpm", "systemd-devel-debuginfo-0:250-12.el9_1.1.s390x.rpm", "systemd-devel-debuginfo-0:250-12.el9_1.1.x86_64.rpm", "systemd-journal-remote-0:250-12.el9_1.1.aarch64.rpm", "systemd-journal-remote-0:250-12.el9_1.1.ppc64le.rpm", "systemd-journal-remote-0:250-12.el9_1.1.s390x.rpm", "systemd-journal-remote-0:250-12.el9_1.1.x86_64.rpm", "systemd-journal-remote-debuginfo-0:250-12.el9_1.1.aarch64.rpm", "systemd-journal-remote-debuginfo-0:250-12.el9_1.1.ppc64le.rpm", "systemd-journal-remote-debuginfo-0:250-12.el9_1.1.s390x.rpm", "systemd-journal-remote-debuginfo-0:250-12.el9_1.1.x86_64.rpm", "systemd-libs-0:250-12.el9_1.1.aarch64.rpm", "systemd-libs-0:250-12.el9_1.1.i686.rpm", "systemd-libs-0:250-12.el9_1.1.ppc64le.rpm", "systemd-libs-0:250-12.el9_1.1.s390x.rpm","systemd-libs-0:250-12.el9_1.1.x86_64.rpm", "systemd-libs-debuginfo-0:250-12.el9_1.1.aarch64.rpm", "systemd-libs-debuginfo-0:250-12.el9_1.1.ppc64le.rpm", "systemd-libs-debuginfo-0:250-12.el9_1.1.s390x.rpm", "systemd-libs-debuginfo-0:250-12.el9_1.1.x86_64.rpm", "systemd-oomd-0:250-12.el9_1.1.aarch64.rpm", "systemd-oomd-0:250-12.el9_1.1.ppc64le.rpm", "systemd-oomd-0:250-12.el9_1.1.s390x.rpm", "systemd-oomd-0:250-12.el9_1.1.x86_64.rpm", "systemd-oomd-debuginfo-0:250-12.el9_1.1.aarch64.rpm", "systemd-oomd-debuginfo-0:250-12.el9_1.1.ppc64le.rpm", "systemd-oomd-debuginfo-0:250-12.el9_1.1.s390x.rpm", "systemd-oomd-debuginfo-0:250-12.el9_1.1.x86_64.rpm", "systemd-pam-0:250-12.el9_1.1.aarch64.rpm", "systemd-pam-0:250-12.el9_1.1.ppc64le.rpm", "systemd-pam-0:250-12.el9_1.1.s390x.rpm", "systemd-pam-0:250-12.el9_1.1.x86_64.rpm", "systemd-pam-debuginfo-0:250-12.el9_1.1.aarch64.rpm", "systemd-pam-debuginfo-0:250-12.el9_1.1.ppc64le.rpm", "systemd-pam-debuginfo-0:250-12.el9_1.1.s390x.rpm", "systemd-pam-debuginfo-0:250-12.el9_1.1.x86_64.rpm", "systemd-resolved-0:250-12.el9_1.1.aarch64.rpm", "systemd-resolved-0:250-12.el9_1.1.ppc64le.rpm", "systemd-resolved-0:250-12.el9_1.1.s390x.rpm", "systemd-resolved-0:250-12.el9_1.1.x86_64.rpm", "systemd-resolved-debuginfo-0:250-12.el9_1.1.aarch64.rpm", "systemd-resolved-debuginfo-0:250-12.el9_1.1.ppc64le.rpm", "systemd-resolved-debuginfo-0:250-12.el9_1.1.s390x.rpm", "systemd-resolved-debuginfo-0:250-12.el9_1.1.x86_64.rpm", "systemd-rpm-macros-0:250-12.el9_1.1.noarch.rpm", "systemd-udev-0:250-12.el9_1.1.aarch64.rpm", "systemd-udev-0:250-12.el9_1.1.ppc64le.rpm", "systemd-udev-0:250-12.el9_1.1.s390x.rpm", "systemd-udev-0:250-12.el9_1.1.x86_64.rpm", "systemd-udev-debuginfo-0:250-12.el9_1.1.aarch64.rpm", "systemd-udev-debuginfo-0:250-12.el9_1.1.ppc64le.rpm", "systemd-udev-debuginfo-0:250-12.el9_1.1.s390x.rpm", "systemd-udev-debuginfo-0:250-12.el9_1.1.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Ubuntu 22.04 receives a timely patch for OpenSSL, resolving a high-priorityvulnerability involving key exposure risks.. systemd Security Update, Rocky Linux Update, Buffer Overrun, Linux Management, Vulnerability Protection. . LinuxSecurity.com Team
Jan 23, 2023
Rocky Linux
219
security advisorybug fixenhancementRocky Linux 8: RLBA-2021:2572 Unknown Severity: Systemd Bug Fix
systemd bug fix and enhancement update. \{'type': 'BugFix', 'shortCode': 'RL', 'name': 'RLBA-2021:2572', 'synopsis': 'systemd bug fix and enhancement update', 'severity': 'UnknownSeverity', 'topic': 'An update for systemd is now available for Rocky Linux 8.4Extended Update Support.', 'description': 'The systemd packages contain systemd, a system and service manager for\nLinux, compatible with the SysV and LSB init scripts. It provides\naggressive parallelism capabilities, uses socket and D-Bus activation for\nstarting services, offers on-demand starting of daemons, and keeps track of\nprocesses using Linux cgroups. In addition, it supports snapshotting and\nrestoring of the system state, maintains mount and automount points, and\nimplements an elaborate transactional dependency-based service control\nlogic. It can also work as a drop-in replacement for sysvinit.\n(BZ#1963980)', 'solution': None, 'affectedProducts': ['Rocky Linux 8'], 'fixes': [], 'cves': ['Red Hat:::https://access.redhat.com/errata/RHBA-2021:2572:::RHBA-2021:2572'], 'references': [], 'publishedAt': '2021-07-22T18:24:56.040088Z', 'rpms': ['systemd-239-45.el8_4.1.aarch64.rpm', 'systemd-239-45.el8_4.1.i686.rpm', 'systemd-239-45.el8_4.1.src.rpm', 'systemd-239-45.el8_4.1.x86_64.rpm', 'systemd-container-239-45.el8_4.1.aarch64.rpm', 'systemd-container-239-45.el8_4.1.i686.rpm', 'systemd-container-239-45.el8_4.1.x86_64.rpm', 'systemd-container-debuginfo-239-45.el8_4.1.aarch64.rpm', 'systemd-container-debuginfo-239-45.el8_4.1.i686.rpm', 'systemd-container-debuginfo-239-45.el8_4.1.x86_64.rpm', 'systemd-debuginfo-239-45.el8_4.1.aarch64.rpm', 'systemd-debuginfo-239-45.el8_4.1.i686.rpm', 'systemd-debuginfo-239-45.el8_4.1.x86_64.rpm', 'systemd-debugsource-239-45.el8_4.1.aarch64.rpm', 'systemd-debugsource-239-45.el8_4.1.i686.rpm', 'systemd-debugsource-239-45.el8_4.1.x86_64.rpm', 'systemd-devel-239-45.el8_4.1.aarch64.rpm', 'systemd-devel-239-45.el8_4.1.i686.rpm', 'systemd-devel-239-45.el8_4.1.x86_64.rpm', 'systemd-journal-remote-239-45.el8_4.1.aarch64.rpm','systemd-journal-remote-239-45.el8_4.1.x86_64.rpm', 'systemd-journal-remote-debuginfo-239-45.el8_4.1.aarch64.rpm', 'systemd-journal-remote-debuginfo-239-45.el8_4.1.x86_64.rpm', 'systemd-libs-239-45.el8_4.1.aarch64.rpm', 'systemd-libs-239-45.el8_4.1.i686.rpm', 'systemd-libs-239-45.el8_4.1.x86_64.rpm', 'systemd-libs-debuginfo-239-45.el8_4.1.aarch64.rpm', 'systemd-libs-debuginfo-239-45.el8_4.1.i686.rpm', 'systemd-libs-debuginfo-239-45.el8_4.1.x86_64.rpm', 'systemd-pam-239-45.el8_4.1.aarch64.rpm', 'systemd-pam-239-45.el8_4.1.x86_64.rpm', 'systemd-pam-debuginfo-239-45.el8_4.1.aarch64.rpm', 'systemd-pam-debuginfo-239-45.el8_4.1.x86_64.rpm', 'systemd-tests-239-45.el8_4.1.aarch64.rpm', 'systemd-tests-239-45.el8_4.1.x86_64.rpm', 'systemd-tests-debuginfo-239-45.el8_4.1.aarch64.rpm', 'systemd-tests-debuginfo-239-45.el8_4.1.x86_64.rpm', 'systemd-udev-239-45.el8_4.1.aarch64.rpm', 'systemd-udev-239-45.el8_4.1.x86_64.rpm', 'systemd-udev-debuginfo-239-45.el8_4.1.aarch64.rpm', 'systemd-udev-debuginfo-239-45.el8_4.1.x86_64.rpm']}\. Systemd patch release and performance improvement update for Rocky Linux 8. Maintain security with this newest installation.. Rocky Linux, Systemd Bug Fix, Linux Security, Service Management. . LinuxSecurity.com Team
Sep 02, 2022
Rocky Linux
219
security advisorysecurity issuecritical updateRocky Linux 8 RLSA-2022:6206 Important: systemd Critical Update
Important: systemd security update. \{'type': 'Security', 'shortCode': 'RL', 'name': 'RLSA-2022:6206', 'synopsis': 'Important: systemd security update', 'severity': 'Important', 'topic': 'An update for systemd is now available for Rocky Linux 8.\nRocky Linux Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.', 'description': 'The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit.\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.', 'solution': None, 'affectedProducts': ['Rocky Linux 8'], 'fixes': ['2109926'], 'cves': ['Red Hat:::https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2526.json:::CVE-2022-2526'], 'references': [], 'publishedAt': '2022-09-01T23:53:06.943968Z', 'rpms': ['systemd-239-58.el8_6.4.aarch64.rpm', 'systemd-239-58.el8_6.4.i686.rpm', 'systemd-239-58.el8_6.4.src.rpm', 'systemd-239-58.el8_6.4.x86_64.rpm', 'systemd-container-239-58.el8_6.4.aarch64.rpm', 'systemd-container-239-58.el8_6.4.i686.rpm', 'systemd-container-239-58.el8_6.4.x86_64.rpm', 'systemd-container-debuginfo-239-58.el8_6.4.aarch64.rpm', 'systemd-container-debuginfo-239-58.el8_6.4.i686.rpm', 'systemd-container-debuginfo-239-58.el8_6.4.x86_64.rpm','systemd-debuginfo-239-58.el8_6.4.aarch64.rpm', 'systemd-debuginfo-239-58.el8_6.4.i686.rpm', 'systemd-debuginfo-239-58.el8_6.4.x86_64.rpm', 'systemd-debugsource-239-58.el8_6.4.aarch64.rpm', 'systemd-debugsource-239-58.el8_6.4.i686.rpm', 'systemd-debugsource-239-58.el8_6.4.x86_64.rpm', 'systemd-devel-239-58.el8_6.4.aarch64.rpm', 'systemd-devel-239-58.el8_6.4.i686.rpm', 'systemd-devel-239-58.el8_6.4.x86_64.rpm', 'systemd-journal-remote-239-58.el8_6.4.aarch64.rpm', 'systemd-journal-remote-239-58.el8_6.4.x86_64.rpm', 'systemd-journal-remote-debuginfo-239-58.el8_6.4.aarch64.rpm', 'systemd-journal-remote-debuginfo-239-58.el8_6.4.x86_64.rpm', 'systemd-libs-239-58.el8_6.4.aarch64.rpm', 'systemd-libs-239-58.el8_6.4.i686.rpm', 'systemd-libs-239-58.el8_6.4.x86_64.rpm', 'systemd-libs-debuginfo-239-58.el8_6.4.aarch64.rpm', 'systemd-libs-debuginfo-239-58.el8_6.4.i686.rpm', 'systemd-libs-debuginfo-239-58.el8_6.4.x86_64.rpm', 'systemd-pam-239-58.el8_6.4.aarch64.rpm', 'systemd-pam-239-58.el8_6.4.x86_64.rpm', 'systemd-pam-debuginfo-239-58.el8_6.4.aarch64.rpm', 'systemd-pam-debuginfo-239-58.el8_6.4.x86_64.rpm', 'systemd-tests-239-58.el8_6.4.aarch64.rpm', 'systemd-tests-239-58.el8_6.4.x86_64.rpm', 'systemd-tests-debuginfo-239-58.el8_6.4.aarch64.rpm', 'systemd-tests-debuginfo-239-58.el8_6.4.x86_64.rpm', 'systemd-udev-239-58.el8_6.4.aarch64.rpm', 'systemd-udev-239-58.el8_6.4.x86_64.rpm', 'systemd-udev-debuginfo-239-58.el8_6.4.aarch64.rpm', 'systemd-udev-debuginfo-239-58.el8_6.4.x86_64.rpm']}\. Ubuntu 20.04 introduces a crucial kernel patch to address existing vulnerabilities, significantly improving performance.. Rocky Linux Security, systemd Update, Important Advisory, Service Management, Linux System Management. . Severity: Important. LinuxSecurity.com Team
Sep 02, 2022
•Important
Rocky Linux
98
security advisoryimportantred hat enterpriseRedHat 8: RHSA-2022-6207 Major Vulnerability Found in Glibc Memory Handling
An update for systemd is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: systemd security update Advisory ID: RHSA-2022:6206-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:6206 Issue date: 2022-08-29 CVE Names: CVE-2022-2526 ==================================================================== 1. Summary: An update for systemd is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fix(es): * systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c (CVE-2022-2526) For more details about the security issue(s), including the impact, aCVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2109926 - CVE-2022-2526 systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 6. Package List: Red Hat Enterprise Linux BaseOS (v.8): Source: systemd-239-58.el8_6.4.src.rpm aarch64: systemd-239-58.el8_6.4.aarch64.rpm systemd-container-239-58.el8_6.4.aarch64.rpm systemd-container-debuginfo-239-58.el8_6.4.aarch64.rpm systemd-debuginfo-239-58.el8_6.4.aarch64.rpm systemd-debugsource-239-58.el8_6.4.aarch64.rpm systemd-devel-239-58.el8_6.4.aarch64.rpm systemd-journal-remote-239-58.el8_6.4.aarch64.rpm systemd-journal-remote-debuginfo-239-58.el8_6.4.aarch64.rpm systemd-libs-239-58.el8_6.4.aarch64.rpm systemd-libs-debuginfo-239-58.el8_6.4.aarch64.rpm systemd-pam-239-58.el8_6.4.aarch64.rpm systemd-pam-debuginfo-239-58.el8_6.4.aarch64.rpm systemd-tests-239-58.el8_6.4.aarch64.rpm systemd-tests-debuginfo-239-58.el8_6.4.aarch64.rpm systemd-udev-239-58.el8_6.4.aarch64.rpm systemd-udev-debuginfo-239-58.el8_6.4.aarch64.rpm ppc64le: systemd-239-58.el8_6.4.ppc64le.rpm systemd-container-239-58.el8_6.4.ppc64le.rpm systemd-container-debuginfo-239-58.el8_6.4.ppc64le.rpm systemd-debuginfo-239-58.el8_6.4.ppc64le.rpm systemd-debugsource-239-58.el8_6.4.ppc64le.rpm systemd-devel-239-58.el8_6.4.ppc64le.rpm systemd-journal-remote-239-58.el8_6.4.ppc64le.rpm systemd-journal-remote-debuginfo-239-58.el8_6.4.ppc64le.rpm systemd-libs-239-58.el8_6.4.ppc64le.rpm systemd-libs-debuginfo-239-58.el8_6.4.ppc64le.rpm systemd-pam-239-58.el8_6.4.ppc64le.rpm systemd-pam-debuginfo-239-58.el8_6.4.ppc64le.rpm systemd-tests-239-58.el8_6.4.ppc64le.rpm systemd-tests-debuginfo-239-58.el8_6.4.ppc64le.rpm systemd-udev-239-58.el8_6.4.ppc64le.rpm systemd-udev-debuginfo-239-58.el8_6.4.ppc64le.rpm s390x: systemd-239-58.el8_6.4.s390x.rpm systemd-container-239-58.el8_6.4.s390x.rpm systemd-container-debuginfo-239-58.el8_6.4.s390x.rpm systemd-debuginfo-239-58.el8_6.4.s390x.rpm systemd-debugsource-239-58.el8_6.4.s390x.rpm systemd-devel-239-58.el8_6.4.s390x.rpm systemd-journal-remote-239-58.el8_6.4.s390x.rpm systemd-journal-remote-debuginfo-239-58.el8_6.4.s390x.rpm systemd-libs-239-58.el8_6.4.s390x.rpm systemd-libs-debuginfo-239-58.el8_6.4.s390x.rpm systemd-pam-239-58.el8_6.4.s390x.rpm systemd-pam-debuginfo-239-58.el8_6.4.s390x.rpm systemd-tests-239-58.el8_6.4.s390x.rpm systemd-tests-debuginfo-239-58.el8_6.4.s390x.rpm systemd-udev-239-58.el8_6.4.s390x.rpm systemd-udev-debuginfo-239-58.el8_6.4.s390x.rpm x86_64: systemd-239-58.el8_6.4.i686.rpm systemd-239-58.el8_6.4.x86_64.rpm systemd-container-239-58.el8_6.4.i686.rpm systemd-container-239-58.el8_6.4.x86_64.rpm systemd-container-debuginfo-239-58.el8_6.4.i686.rpm systemd-container-debuginfo-239-58.el8_6.4.x86_64.rpm systemd-debuginfo-239-58.el8_6.4.i686.rpm systemd-debuginfo-239-58.el8_6.4.x86_64.rpm systemd-debugsource-239-58.el8_6.4.i686.rpm systemd-debugsource-239-58.el8_6.4.x86_64.rpm systemd-devel-239-58.el8_6.4.i686.rpm systemd-devel-239-58.el8_6.4.x86_64.rpm systemd-journal-remote-239-58.el8_6.4.x86_64.rpm systemd-journal-remote-debuginfo-239-58.el8_6.4.i686.rpm systemd-journal-remote-debuginfo-239-58.el8_6.4.x86_64.rpm systemd-libs-239-58.el8_6.4.i686.rpm systemd-libs-239-58.el8_6.4.x86_64.rpm systemd-libs-debuginfo-239-58.el8_6.4.i686.rpm systemd-libs-debuginfo-239-58.el8_6.4.x86_64.rpm systemd-pam-239-58.el8_6.4.x86_64.rpm systemd-pam-debuginfo-239-58.el8_6.4.i686.rpm systemd-pam-debuginfo-239-58.el8_6.4.x86_64.rpm systemd-tests-239-58.el8_6.4.x86_64.rpm systemd-tests-debuginfo-239-58.el8_6.4.i686.rpm systemd-tests-debuginfo-239-58.el8_6.4.x86_64.rpm systemd-udev-239-58.el8_6.4.x86_64.rpm systemd-udev-debuginfo-239-58.el8_6.4.i686.rpm systemd-udev-debuginfo-239-58.el8_6.4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2022-2526 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYw2otNzjgjWX9erEAQiR9A/+Lcc82rk+SP5y1uBqdkgGV6AFPEREgraF I8Q8ntGLFQTHZpzIfg9J9FMxfxGhXs/8rrhzD76IvEc1cFbooqNipNBPH0rLYxpA DZUcKsenqbF8Uql0s/N0UkWXA/lum4vxb82gcw20GGSB+l9FuFEBYs/d0KKEN4ZD PPWs2BYJhsqkOXgaDCx4bCfGW4giXdSHOOO0R/bJ0wr1rOqXOmW8rdpovVby5VYA oYvMnW8KO8zfVunpDV1mCt60jMm9jZgS9DYv5SjY1K/3PB7BjOkPRM8syhVpFGOD ca1yeICR9qEcCpTlZ1tRnCH3EtEjUYVCaq+RzvWrbfpIZaDS+qOINIFf5zWnzhY/ /NK71n9ZWXYsZ6ZFWtDuneGookFGKqqm1dBn+d/qIsgBu1x59xNaG0odupAjq+wQ s8FHtD6DxZY/ZzyUFqy8LjR3xlf4wPrYpUvZpopGbxULRGX0Gr2FsGDHrUDRGydq tsLJZvdPwebt7R+BKQ60A7Fx1lqRb/HqjSrsOekD6ALxVdiY8ENDldVv6V90cyxj 7F3CUfGgaA1BtUOpAg8f4jBdR8tG0ofPatmQ25shzdNYbXsVxyHV7RJ2bjL1r3BX LX9jvJkUJZOxYBnWG1BaNbmplCMJbHNq6PZgTA2tr0oQ2fepOKxGp7D327z0XV5/ U49f88Zz8rE=E+LL -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 30, 2022
•Important
Red Hat
98
security advisoryRed Hat Enterprise Linuxsecurity impactRed Hat Enterprise Linux 7: RHSA-2022-6160-01 Important Systemd Update
An update for systemd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: systemd security update Advisory ID: RHSA-2022:6160-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:6160 Issue date: 2022-08-24 CVE Names: CVE-2022-2526 ==================================================================== 1. Summary: An update for systemd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshottingand restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fix(es): * systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c (CVE-2022-2526) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2109926 - CVE-2022-2526 systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: systemd-219-78.el7_9.7.src.rpm x86_64: libgudev1-219-78.el7_9.7.i686.rpm libgudev1-219-78.el7_9.7.x86_64.rpm systemd-219-78.el7_9.7.x86_64.rpm systemd-debuginfo-219-78.el7_9.7.i686.rpm systemd-debuginfo-219-78.el7_9.7.x86_64.rpm systemd-libs-219-78.el7_9.7.i686.rpm systemd-libs-219-78.el7_9.7.x86_64.rpm systemd-python-219-78.el7_9.7.x86_64.rpm systemd-sysv-219-78.el7_9.7.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: libgudev1-devel-219-78.el7_9.7.i686.rpm libgudev1-devel-219-78.el7_9.7.x86_64.rpm systemd-debuginfo-219-78.el7_9.7.i686.rpm systemd-debuginfo-219-78.el7_9.7.x86_64.rpm systemd-devel-219-78.el7_9.7.i686.rpm systemd-devel-219-78.el7_9.7.x86_64.rpm systemd-journal-gateway-219-78.el7_9.7.x86_64.rpm systemd-networkd-219-78.el7_9.7.x86_64.rpm systemd-resolved-219-78.el7_9.7.i686.rpm systemd-resolved-219-78.el7_9.7.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v.7): Source: systemd-219-78.el7_9.7.src.rpm x86_64: libgudev1-219-78.el7_9.7.i686.rpm libgudev1-219-78.el7_9.7.x86_64.rpm systemd-219-78.el7_9.7.x86_64.rpm systemd-debuginfo-219-78.el7_9.7.i686.rpm systemd-debuginfo-219-78.el7_9.7.x86_64.rpm systemd-libs-219-78.el7_9.7.i686.rpm systemd-libs-219-78.el7_9.7.x86_64.rpm systemd-python-219-78.el7_9.7.x86_64.rpm systemd-sysv-219-78.el7_9.7.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v. 7): x86_64: libgudev1-devel-219-78.el7_9.7.i686.rpm libgudev1-devel-219-78.el7_9.7.x86_64.rpm systemd-debuginfo-219-78.el7_9.7.i686.rpm systemd-debuginfo-219-78.el7_9.7.x86_64.rpm systemd-devel-219-78.el7_9.7.i686.rpm systemd-devel-219-78.el7_9.7.x86_64.rpm systemd-journal-gateway-219-78.el7_9.7.x86_64.rpm systemd-networkd-219-78.el7_9.7.x86_64.rpm systemd-resolved-219-78.el7_9.7.i686.rpm systemd-resolved-219-78.el7_9.7.x86_64.rpm Red Hat Enterprise Linux Server (v.7): Source: systemd-219-78.el7_9.7.src.rpm ppc64: libgudev1-219-78.el7_9.7.ppc.rpm libgudev1-219-78.el7_9.7.ppc64.rpm libgudev1-devel-219-78.el7_9.7.ppc.rpm libgudev1-devel-219-78.el7_9.7.ppc64.rpm systemd-219-78.el7_9.7.ppc64.rpm systemd-debuginfo-219-78.el7_9.7.ppc.rpm systemd-debuginfo-219-78.el7_9.7.ppc64.rpm systemd-devel-219-78.el7_9.7.ppc.rpm systemd-devel-219-78.el7_9.7.ppc64.rpm systemd-libs-219-78.el7_9.7.ppc.rpm systemd-libs-219-78.el7_9.7.ppc64.rpm systemd-python-219-78.el7_9.7.ppc64.rpm systemd-sysv-219-78.el7_9.7.ppc64.rpm ppc64le: libgudev1-219-78.el7_9.7.ppc64le.rpm libgudev1-devel-219-78.el7_9.7.ppc64le.rpm systemd-219-78.el7_9.7.ppc64le.rpm systemd-debuginfo-219-78.el7_9.7.ppc64le.rpm systemd-devel-219-78.el7_9.7.ppc64le.rpm systemd-libs-219-78.el7_9.7.ppc64le.rpm systemd-python-219-78.el7_9.7.ppc64le.rpm systemd-sysv-219-78.el7_9.7.ppc64le.rpm s390x: libgudev1-219-78.el7_9.7.s390.rpm libgudev1-219-78.el7_9.7.s390x.rpm libgudev1-devel-219-78.el7_9.7.s390.rpm libgudev1-devel-219-78.el7_9.7.s390x.rpm systemd-219-78.el7_9.7.s390x.rpm systemd-debuginfo-219-78.el7_9.7.s390.rpm systemd-debuginfo-219-78.el7_9.7.s390x.rpm systemd-devel-219-78.el7_9.7.s390.rpm systemd-devel-219-78.el7_9.7.s390x.rpm systemd-libs-219-78.el7_9.7.s390.rpm systemd-libs-219-78.el7_9.7.s390x.rpm systemd-python-219-78.el7_9.7.s390x.rpm systemd-sysv-219-78.el7_9.7.s390x.rpm x86_64: libgudev1-219-78.el7_9.7.i686.rpm libgudev1-219-78.el7_9.7.x86_64.rpm libgudev1-devel-219-78.el7_9.7.i686.rpm libgudev1-devel-219-78.el7_9.7.x86_64.rpm systemd-219-78.el7_9.7.x86_64.rpm systemd-debuginfo-219-78.el7_9.7.i686.rpm systemd-debuginfo-219-78.el7_9.7.x86_64.rpm systemd-devel-219-78.el7_9.7.i686.rpm systemd-devel-219-78.el7_9.7.x86_64.rpm systemd-libs-219-78.el7_9.7.i686.rpm systemd-libs-219-78.el7_9.7.x86_64.rpm systemd-python-219-78.el7_9.7.x86_64.rpm systemd-sysv-219-78.el7_9.7.x86_64.rpm Red Hat Enterprise Linux Server Optional (v.7): ppc64: systemd-debuginfo-219-78.el7_9.7.ppc.rpm systemd-debuginfo-219-78.el7_9.7.ppc64.rpm systemd-journal-gateway-219-78.el7_9.7.ppc64.rpm systemd-networkd-219-78.el7_9.7.ppc64.rpm systemd-resolved-219-78.el7_9.7.ppc.rpm systemd-resolved-219-78.el7_9.7.ppc64.rpm ppc64le: systemd-debuginfo-219-78.el7_9.7.ppc64le.rpm systemd-journal-gateway-219-78.el7_9.7.ppc64le.rpm systemd-networkd-219-78.el7_9.7.ppc64le.rpm systemd-resolved-219-78.el7_9.7.ppc64le.rpm s390x: systemd-debuginfo-219-78.el7_9.7.s390.rpm systemd-debuginfo-219-78.el7_9.7.s390x.rpm systemd-journal-gateway-219-78.el7_9.7.s390x.rpm systemd-networkd-219-78.el7_9.7.s390x.rpm systemd-resolved-219-78.el7_9.7.s390.rpm systemd-resolved-219-78.el7_9.7.s390x.rpm x86_64: systemd-debuginfo-219-78.el7_9.7.i686.rpm systemd-debuginfo-219-78.el7_9.7.x86_64.rpm systemd-journal-gateway-219-78.el7_9.7.x86_64.rpm systemd-networkd-219-78.el7_9.7.x86_64.rpm systemd-resolved-219-78.el7_9.7.i686.rpm systemd-resolved-219-78.el7_9.7.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: systemd-219-78.el7_9.7.src.rpm x86_64: libgudev1-219-78.el7_9.7.i686.rpm libgudev1-219-78.el7_9.7.x86_64.rpm libgudev1-devel-219-78.el7_9.7.i686.rpm libgudev1-devel-219-78.el7_9.7.x86_64.rpm systemd-219-78.el7_9.7.x86_64.rpm systemd-debuginfo-219-78.el7_9.7.i686.rpm systemd-debuginfo-219-78.el7_9.7.x86_64.rpm systemd-devel-219-78.el7_9.7.i686.rpm systemd-devel-219-78.el7_9.7.x86_64.rpm systemd-libs-219-78.el7_9.7.i686.rpm systemd-libs-219-78.el7_9.7.x86_64.rpm systemd-python-219-78.el7_9.7.x86_64.rpm systemd-sysv-219-78.el7_9.7.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: systemd-debuginfo-219-78.el7_9.7.i686.rpm systemd-debuginfo-219-78.el7_9.7.x86_64.rpm systemd-journal-gateway-219-78.el7_9.7.x86_64.rpm systemd-networkd-219-78.el7_9.7.x86_64.rpm systemd-resolved-219-78.el7_9.7.i686.rpm systemd-resolved-219-78.el7_9.7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature areavailable from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-2526 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYwa9n9zjgjWX9erEAQhhwA/9EUC3y6Q2mEhbUZd4f9p2Yzo8K07y9vY2 n7XWvDfLgsSNH1WHvcDhtsIwWuM4Of+c3pdy5B+uStQArX9AFAZXoUjyGYkOmw/h WTUj5E4EonWXEN1nz9OsbkJ+cibTKX/lM1uUInPHj9GHJv1SnRDuvTFF6AJcdTl2 t9MKPzW69jPwfuyLxPE1tWm+CMEjZdA5pRH5Ldh3A/TNF2dd49haMRD1sYiQwb7S PhYWkQVZQeA4wETsmQE5JvKBOMUBiLNOczn+QfJtlLYx+FlzmTnRRkwjwvRx/GIg EcjgvcskUhykKCT1Uge1kFq0/ebxK2jOW14RZ48BsA7Ey7Sbc+e1kzv0JwJwbfwU 3/TyOibMu5VkjHAdlP6OZ+xtzqLHMFpqFTDR488GimId9EQCEFl2pmgbakjLG7tX T2qn6TmHVrpQ88rGpnkxrVgMMvfPdOZuHS7QoonxLlv9USIvhD1lPnWONRhVhYMM da2D3CmNr5vWpeeHLow9LjOlgt7UfBQ1VyJqjzoInCzZiB1vqelsWS7NyhEik0hK O6BGMLzUD544AL+7EhiBeZz1cd5CnZckonUbIr5uvrbCfaleRMLsCXxZLNhWabOC MRUO8Kiy/s/qoc/VZ2FPCfQHsNnPyOk5NRruuNKZKogm31vnCR4/nmHG/+lBh1Fr Tgm3GVMbNXI=068X -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 24, 2022
•Important
Red Hat
98
security advisorysecurity updateRed Hat Enterprise LinuxRed Hat 8.2: RHSA-2022-6162 Important: Systemd Use-After-Free Issue
An update for systemd is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: systemd security update Advisory ID: RHSA-2022:6162-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:6162 Issue date: 2022-08-24 CVE Names: CVE-2022-2526 ==================================================================== 1. Summary: An update for systemd is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS EUS (v. 8.2) - aarch64, ppc64le, s390x, x86_64 3. Description: The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fix(es): * systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c (CVE-2022-2526) For more details about the security issue(s), including the impact, a CVSS score,acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2109926 - CVE-2022-2526 systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 6. Package List: Red Hat Enterprise Linux BaseOS EUS (v.8.2): Source: systemd-239-31.el8_2.9.src.rpm aarch64: systemd-239-31.el8_2.9.aarch64.rpm systemd-container-239-31.el8_2.9.aarch64.rpm systemd-container-debuginfo-239-31.el8_2.9.aarch64.rpm systemd-debuginfo-239-31.el8_2.9.aarch64.rpm systemd-debugsource-239-31.el8_2.9.aarch64.rpm systemd-devel-239-31.el8_2.9.aarch64.rpm systemd-journal-remote-239-31.el8_2.9.aarch64.rpm systemd-journal-remote-debuginfo-239-31.el8_2.9.aarch64.rpm systemd-libs-239-31.el8_2.9.aarch64.rpm systemd-libs-debuginfo-239-31.el8_2.9.aarch64.rpm systemd-pam-239-31.el8_2.9.aarch64.rpm systemd-pam-debuginfo-239-31.el8_2.9.aarch64.rpm systemd-tests-239-31.el8_2.9.aarch64.rpm systemd-tests-debuginfo-239-31.el8_2.9.aarch64.rpm systemd-udev-239-31.el8_2.9.aarch64.rpm systemd-udev-debuginfo-239-31.el8_2.9.aarch64.rpm ppc64le: systemd-239-31.el8_2.9.ppc64le.rpm systemd-container-239-31.el8_2.9.ppc64le.rpm systemd-container-debuginfo-239-31.el8_2.9.ppc64le.rpm systemd-debuginfo-239-31.el8_2.9.ppc64le.rpm systemd-debugsource-239-31.el8_2.9.ppc64le.rpm systemd-devel-239-31.el8_2.9.ppc64le.rpm systemd-journal-remote-239-31.el8_2.9.ppc64le.rpm systemd-journal-remote-debuginfo-239-31.el8_2.9.ppc64le.rpm systemd-libs-239-31.el8_2.9.ppc64le.rpm systemd-libs-debuginfo-239-31.el8_2.9.ppc64le.rpm systemd-pam-239-31.el8_2.9.ppc64le.rpm systemd-pam-debuginfo-239-31.el8_2.9.ppc64le.rpm systemd-tests-239-31.el8_2.9.ppc64le.rpm systemd-tests-debuginfo-239-31.el8_2.9.ppc64le.rpm systemd-udev-239-31.el8_2.9.ppc64le.rpm systemd-udev-debuginfo-239-31.el8_2.9.ppc64le.rpm s390x: systemd-239-31.el8_2.9.s390x.rpm systemd-container-239-31.el8_2.9.s390x.rpm systemd-container-debuginfo-239-31.el8_2.9.s390x.rpm systemd-debuginfo-239-31.el8_2.9.s390x.rpm systemd-debugsource-239-31.el8_2.9.s390x.rpm systemd-devel-239-31.el8_2.9.s390x.rpm systemd-journal-remote-239-31.el8_2.9.s390x.rpm systemd-journal-remote-debuginfo-239-31.el8_2.9.s390x.rpm systemd-libs-239-31.el8_2.9.s390x.rpm systemd-libs-debuginfo-239-31.el8_2.9.s390x.rpm systemd-pam-239-31.el8_2.9.s390x.rpm systemd-pam-debuginfo-239-31.el8_2.9.s390x.rpm systemd-tests-239-31.el8_2.9.s390x.rpm systemd-tests-debuginfo-239-31.el8_2.9.s390x.rpm systemd-udev-239-31.el8_2.9.s390x.rpm systemd-udev-debuginfo-239-31.el8_2.9.s390x.rpm x86_64: systemd-239-31.el8_2.9.i686.rpm systemd-239-31.el8_2.9.x86_64.rpm systemd-container-239-31.el8_2.9.i686.rpm systemd-container-239-31.el8_2.9.x86_64.rpm systemd-container-debuginfo-239-31.el8_2.9.i686.rpm systemd-container-debuginfo-239-31.el8_2.9.x86_64.rpm systemd-debuginfo-239-31.el8_2.9.i686.rpm systemd-debuginfo-239-31.el8_2.9.x86_64.rpm systemd-debugsource-239-31.el8_2.9.i686.rpm systemd-debugsource-239-31.el8_2.9.x86_64.rpm systemd-devel-239-31.el8_2.9.i686.rpm systemd-devel-239-31.el8_2.9.x86_64.rpm systemd-journal-remote-239-31.el8_2.9.x86_64.rpm systemd-journal-remote-debuginfo-239-31.el8_2.9.i686.rpm systemd-journal-remote-debuginfo-239-31.el8_2.9.x86_64.rpm systemd-libs-239-31.el8_2.9.i686.rpm systemd-libs-239-31.el8_2.9.x86_64.rpm systemd-libs-debuginfo-239-31.el8_2.9.i686.rpm systemd-libs-debuginfo-239-31.el8_2.9.x86_64.rpm systemd-pam-239-31.el8_2.9.x86_64.rpm systemd-pam-debuginfo-239-31.el8_2.9.i686.rpm systemd-pam-debuginfo-239-31.el8_2.9.x86_64.rpm systemd-tests-239-31.el8_2.9.x86_64.rpm systemd-tests-debuginfo-239-31.el8_2.9.i686.rpm systemd-tests-debuginfo-239-31.el8_2.9.x86_64.rpm systemd-udev-239-31.el8_2.9.x86_64.rpm systemd-udev-debuginfo-239-31.el8_2.9.i686.rpm systemd-udev-debuginfo-239-31.el8_2.9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-2526 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYwa9atzjgjWX9erEAQjb0Q//T9n/+pRGDs9srLBepzCi7EqYjmq/bQuQ QDOAjvoOHwMRDq4t/xy0kSdTj+BqIRV91azrbB9gPeDxk0fA0GVTktUPMq98pCdp eoKx12y/7gm5TkeGi7nZ/18FRs3IDZ9gNm2U3JkqNtQo5jzcBsY4X0vjljadeHTo E9Ca05seiYpw2a9iJ1ZNTYJOQvwm5OOwHOAqSH/irh6KNkAOqHPoeZUpiVdZkizX lJSvPcOeXA8pnqyi0TDeSM2kDYrpQFx14rL2cIRy3SPiPjt9tAhJIkVfWcP2isYf iDqcyhm4WSfOqJMLj16qSST711Jkj/yjW090f3JLksTbvkTAHYWPjyWNqukIctW/ uUsuZZwzUlh02wzVIl7tpgVujQE40r5oxLu2eSnWE3al0T3CE787faaElUmDDJqn MGFKGvz/MAz7c1CNUahNZr56XSU/IrmsBdPzcdty7Bkkj0VjU1YbbWe2a7aJwWW0 x4VnASMzYEk6xJEyuUxR3XsuUL1m7sPyZcnM/lhbCiEpmMZYi0QwGFAO+EZ3G0h5 dm6ZsIV+ZA1LMaA4ueoyBGVSa6jSiZdTfST8oNF8/L76hRyLi3KbzpleIU8/Guga jDKeeySIqIzMEuv2jVTK86HwWeydG6Beb638M5D7P51Gv/1j5/djCYKKes07pvgr Dukg/6QuD9E=di0s -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 24, 2022
•Important
Red Hat
98
security advisorysecurity updateRed Hat Enterprise LinuxRed Hat: RHSA-2022:6163-01 Important: Systemd Use-After-Free Threat
An update for systemd is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: systemd security update Advisory ID: RHSA-2022:6163-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:6163 Issue date: 2022-08-24 CVE Names: CVE-2022-2526 ==================================================================== 1. Summary: An update for systemd is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS E4S (v. 8.1) - aarch64, ppc64le, s390x, x86_64 3. Description: The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fix(es): * systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c (CVE-2022-2526) For more details about the security issue(s), including the impact, aCVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2109926 - CVE-2022-2526 systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 6. Package List: Red Hat Enterprise Linux BaseOS E4S (v.8.1): Source: systemd-239-18.el8_1.11.src.rpm aarch64: systemd-239-18.el8_1.11.aarch64.rpm systemd-container-239-18.el8_1.11.aarch64.rpm systemd-container-debuginfo-239-18.el8_1.11.aarch64.rpm systemd-debuginfo-239-18.el8_1.11.aarch64.rpm systemd-debugsource-239-18.el8_1.11.aarch64.rpm systemd-devel-239-18.el8_1.11.aarch64.rpm systemd-journal-remote-239-18.el8_1.11.aarch64.rpm systemd-journal-remote-debuginfo-239-18.el8_1.11.aarch64.rpm systemd-libs-239-18.el8_1.11.aarch64.rpm systemd-libs-debuginfo-239-18.el8_1.11.aarch64.rpm systemd-pam-239-18.el8_1.11.aarch64.rpm systemd-pam-debuginfo-239-18.el8_1.11.aarch64.rpm systemd-tests-239-18.el8_1.11.aarch64.rpm systemd-tests-debuginfo-239-18.el8_1.11.aarch64.rpm systemd-udev-239-18.el8_1.11.aarch64.rpm systemd-udev-debuginfo-239-18.el8_1.11.aarch64.rpm ppc64le: systemd-239-18.el8_1.11.ppc64le.rpm systemd-container-239-18.el8_1.11.ppc64le.rpm systemd-container-debuginfo-239-18.el8_1.11.ppc64le.rpm systemd-debuginfo-239-18.el8_1.11.ppc64le.rpm systemd-debugsource-239-18.el8_1.11.ppc64le.rpm systemd-devel-239-18.el8_1.11.ppc64le.rpm systemd-journal-remote-239-18.el8_1.11.ppc64le.rpm systemd-journal-remote-debuginfo-239-18.el8_1.11.ppc64le.rpm systemd-libs-239-18.el8_1.11.ppc64le.rpm systemd-libs-debuginfo-239-18.el8_1.11.ppc64le.rpm systemd-pam-239-18.el8_1.11.ppc64le.rpm systemd-pam-debuginfo-239-18.el8_1.11.ppc64le.rpm systemd-tests-239-18.el8_1.11.ppc64le.rpm systemd-tests-debuginfo-239-18.el8_1.11.ppc64le.rpm systemd-udev-239-18.el8_1.11.ppc64le.rpm systemd-udev-debuginfo-239-18.el8_1.11.ppc64le.rpm s390x: systemd-239-18.el8_1.11.s390x.rpm systemd-container-239-18.el8_1.11.s390x.rpm systemd-container-debuginfo-239-18.el8_1.11.s390x.rpm systemd-debuginfo-239-18.el8_1.11.s390x.rpm systemd-debugsource-239-18.el8_1.11.s390x.rpm systemd-devel-239-18.el8_1.11.s390x.rpm systemd-journal-remote-239-18.el8_1.11.s390x.rpm systemd-journal-remote-debuginfo-239-18.el8_1.11.s390x.rpm systemd-libs-239-18.el8_1.11.s390x.rpm systemd-libs-debuginfo-239-18.el8_1.11.s390x.rpm systemd-pam-239-18.el8_1.11.s390x.rpm systemd-pam-debuginfo-239-18.el8_1.11.s390x.rpm systemd-tests-239-18.el8_1.11.s390x.rpm systemd-tests-debuginfo-239-18.el8_1.11.s390x.rpm systemd-udev-239-18.el8_1.11.s390x.rpm systemd-udev-debuginfo-239-18.el8_1.11.s390x.rpm x86_64: systemd-239-18.el8_1.11.i686.rpm systemd-239-18.el8_1.11.x86_64.rpm systemd-container-239-18.el8_1.11.i686.rpm systemd-container-239-18.el8_1.11.x86_64.rpm systemd-container-debuginfo-239-18.el8_1.11.i686.rpm systemd-container-debuginfo-239-18.el8_1.11.x86_64.rpm systemd-debuginfo-239-18.el8_1.11.i686.rpm systemd-debuginfo-239-18.el8_1.11.x86_64.rpm systemd-debugsource-239-18.el8_1.11.i686.rpm systemd-debugsource-239-18.el8_1.11.x86_64.rpm systemd-devel-239-18.el8_1.11.i686.rpm systemd-devel-239-18.el8_1.11.x86_64.rpm systemd-journal-remote-239-18.el8_1.11.x86_64.rpm systemd-journal-remote-debuginfo-239-18.el8_1.11.i686.rpm systemd-journal-remote-debuginfo-239-18.el8_1.11.x86_64.rpm systemd-libs-239-18.el8_1.11.i686.rpm systemd-libs-239-18.el8_1.11.x86_64.rpm systemd-libs-debuginfo-239-18.el8_1.11.i686.rpm systemd-libs-debuginfo-239-18.el8_1.11.x86_64.rpm systemd-pam-239-18.el8_1.11.x86_64.rpm systemd-pam-debuginfo-239-18.el8_1.11.i686.rpm systemd-pam-debuginfo-239-18.el8_1.11.x86_64.rpm systemd-tests-239-18.el8_1.11.x86_64.rpm systemd-tests-debuginfo-239-18.el8_1.11.i686.rpm systemd-tests-debuginfo-239-18.el8_1.11.x86_64.rpm systemd-udev-239-18.el8_1.11.x86_64.rpm systemd-udev-debuginfo-239-18.el8_1.11.i686.rpm systemd-udev-debuginfo-239-18.el8_1.11.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-2526 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGPSIGNATURE----- Version: GnuPG v1 iQIVAwUBYwZpCNzjgjWX9erEAQhfVxAAqJdjcKG4q0djNOsMQx2/fN4uVEcmhctu rp7NAR4OOIy1ftp72vF8p4kSmStuIId/Hr/9OH7/z25HAfpkC4citSnXDve7cysv QzZ01JFIieUkf4qiyLDnARBlG+1FYG3MJPzyGy2dcFPuQ743msJaTcipgYWyVxK+ a6Z2gzZcxNc2AfQKTeYX/7dzI2SukNovPsfHB5jqNAa6xyns9TMWNwVFrov06IrD zV84OQJUMl1iAtIlfx0/oN5VckGoMvy2jhiOFE+edojyMOFGpq5kOCkii/jn8xSe qKD9Rug1fJbmvEo1xb9cmYNDdratTj882BBeNtiao2uSvSqJDUCwkG7ui2Lv8pn4 T+rMgqqETrIW/M+XFHF3RNKz1uctee77A1A6h1R82M13RcYa4lwG7MpdUE2f1cVi /STuEi3QSI8rZT9iptgdR5HGJclVNVoAuW2w/PnFjACOMtIAamnoeLrAB1n8gPa5 26U97SeLUfw+ii4bpzdkSoKewY0rqMbE63ifBQXkYVDWIqpe6ojNyPlGkoRUyhGR /lzes/oMZi6RGARixlVxk27woDvoDKsWpzLXkNYMRLijZZ/48GThjaPsKbSHF3um Gi8Y9xCRD82GSPBUIs7yJrXcpt2EuQmPsBJqTNTtoV+XugZEJcrTiReKaQjR4Rfi Oo3EpXcCqvM=rqED -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 24, 2022
•Important
Red Hat
172
security advisoryUbuntusystemUbuntu 5226-1: Systemd Crash Advisory and Fix Instructions
systemd-tmpfiles could be made to crash or have other unspecified impacts.. =========================================================================Ubuntu Security Notice USN-5226-1 January 13, 2022 systemd vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 21.10 - Ubuntu 21.04 - Ubuntu 20.04 LTS Summary: systemd-tmpfiles could be made to crash or have other unspecified impacts. Software Description: - systemd: system and service manager Details: It was discovered that systemd-tmpfiles employed uncontrolled recursion when removing deeply nested directory hierarchies. A local attacker could exploit this to cause systemd-tmpfiles to crash or have other unspecified impacts. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 21.10: systemd 248.3-1ubuntu8.2 Ubuntu 21.04: systemd 247.3-3ubuntu3.7 Ubuntu 20.04 LTS: systemd 245.4-4ubuntu3.15 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-5226-1 CVE-2021-3997 Package Information: https://launchpad.net/ubuntu/+source/systemd/248.3-1ubuntu8.2 https://launchpad.net/ubuntu/+source/systemd/247.3-3ubuntu3.7 https://launchpad.net/ubuntu/+source/systemd/245.4-4ubuntu3.15 . Ubuntu Security Alert USN-5226-1 tackles a systemd flaw that can cause failures. Ensure your systems are updated immediately!. systemd-tmpfiles, Ubuntu security patch, system update. . Severity: Critical. LinuxSecurity.com Team
Jan 13, 2022
•Critical
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!