stable

systemd-239-8.gite339eae.fc29

FEDORA-2019-18b3a10c7f created by zbyszek 5 years ago for Fedora 29
  • systemd-journald and systemd-journal-remote reject entries which contain too many fields (CVE-2018-16865, #1664973) and set limits on the process' command line length (CVE-2018-16864, #1664972)
  • Fix out-of-bounds read when parsing a crafted syslog message in systemd-journald (CVE-2018-16866, #1664975)
  • A signal is again used to stop user sessions instead of dbus (#1664491)

No need to log out or reboot.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2019-18b3a10c7f

This update has been submitted for testing by zbyszek.

5 years ago

zbyszek edited this update.

5 years ago

This update has been pushed to testing.

5 years ago
User Icon besser82 commented & provided feedback 5 years ago
karma

Works great! LGTM! =)

User Icon mattf commented & provided feedback 5 years ago
karma

This update has run normally. systemd would frequently take minutes on "Stopping User Manager for UID 1000..." when shutting down with previous systemd builds which appeared to have been the issue in #1664491. I haven't seen that delay occur when shutting down a few times with this update.

BZ#1664491 Shutdown takes a long time to finish
User Icon bojan commented & provided feedback 5 years ago
karma

Works here.

This update has been submitted for batched by bodhi.

5 years ago

This update has been submitted for stable by bodhi.

5 years ago

This update has been pushed to stable.

5 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
5 years ago
in testing
5 years ago
in stable
5 years ago
modified
5 years ago
BZ#1664491 Shutdown takes a long time to finish
0
1
BZ#1664972 CVE-2018-16864 systemd: stack overflow when calling syslog from a command with long cmdline [fedora-all]
0
0
BZ#1664973 CVE-2018-16865 systemd: stack overflow when receiving many journald entries [fedora-all]
0
0
BZ#1664975 CVE-2018-16866 systemd: out-of-bounds read when parsing a crafted syslog message [fedora-all]
0
0

Automated Test Results

Test Cases

0 0 Test Case Services start
0 0 Test Case base service manipulation
0 1 Test Case base services start
0 0 Test Case base shutdown/reboot
0 0 Test Case User:Tablepc/Draft testcase reboot