Oval Definition:oval:com.redhat.rhsa:def:20190049
Revision Date:2019-01-14Version:636
Title:RHSA-2019:0049: systemd security update (Important)
Description:The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit.

Security Fix(es):

  • systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling (CVE-2018-15688)

  • systemd: stack overflow when calling syslog from a command with long cmdline (CVE-2018-16864)

  • systemd: stack overflow when receiving many journald entries (CVE-2018-16865)

    For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

    Red Hat would like to thank Ubuntu Security Team for reporting CVE-2018-15688 and Qualys Research Labs for reporting CVE-2018-16864 and CVE-2018-16865. Upstream acknowledges Felix Wilhelm (Google) as the original reporter of CVE-2018-15688.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2018-15688
    CVE-2018-16864
    CVE-2018-16865
    RHSA-2019:0049
    RHSA-2019:0049-01
    Platform(s):Red Hat Enterprise Linux 7
    Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • libgudev1 is earlier than 0:219-62.el7_6.2
  • AND libgudev1 is signed with Red Hat redhatrelease2 key
  • libgudev1-devel is earlier than 0:219-62.el7_6.2
  • AND libgudev1-devel is signed with Red Hat redhatrelease2 key
  • systemd is earlier than 0:219-62.el7_6.2
  • AND systemd is signed with Red Hat redhatrelease2 key
  • systemd-devel is earlier than 0:219-62.el7_6.2
  • AND systemd-devel is signed with Red Hat redhatrelease2 key
  • systemd-journal-gateway is earlier than 0:219-62.el7_6.2
  • AND systemd-journal-gateway is signed with Red Hat redhatrelease2 key
  • systemd-libs is earlier than 0:219-62.el7_6.2
  • AND systemd-libs is signed with Red Hat redhatrelease2 key
  • systemd-networkd is earlier than 0:219-62.el7_6.2
  • AND systemd-networkd is signed with Red Hat redhatrelease2 key
  • systemd-python is earlier than 0:219-62.el7_6.2
  • AND systemd-python is signed with Red Hat redhatrelease2 key
  • systemd-resolved is earlier than 0:219-62.el7_6.2
  • AND systemd-resolved is signed with Red Hat redhatrelease2 key
  • systemd-sysv is earlier than 0:219-62.el7_6.2
  • AND systemd-sysv is signed with Red Hat redhatrelease2 key
  • BACK