Oval Definition:oval:org.opensuse.security:def:58485
Revision Date:2020-12-01Version:1
Title:Security update for systemd (Moderate)
Description:

This update for systemd fixes the following issues:

Security issue fixed:

- CVE-2017-9217: resolved: Fix null pointer p->question dereferencing that could lead to resolved aborting (bsc#1040614)

The update also fixed several non-security bugs:

- core/mount: Use the '-c' flag to not canonicalize paths when calling /bin/umount - automount: Handle expire_tokens when the mount unit changes its state (bsc#1040942) - automount: Rework propagation between automount and mount units - build: Make sure tmpfiles.d/systemd-remote.conf get installed when necessary - build: Fix systemd-journal-upload installation - basic: Detect XEN Dom0 as no virtualization (bsc#1036873) - virt: Make sure some errors are not ignored - fstab-generator: Do not skip Before= ordering for noauto mountpoints - fstab-gen: Do not convert device timeout into seconds when initializing JobTimeoutSec - core/device: Use JobRunningTimeoutSec= for device units (bsc#1004995) - fstab-generator: Apply the _netdev option also to device units (bsc#1004995) - job: Add JobRunningTimeoutSec for JOB_RUNNING state (bsc#1004995) - job: Ensure JobRunningTimeoutSec= survives serialization (bsc#1004995) - rules: Export NVMe WWID udev attribute (bsc#1038865) - rules: Introduce disk/by-id (model_serial) symbolic links for NVMe drives - rules: Add rules for NVMe devices - sysusers: Make group shadow support configurable (bsc#1029516) - core: When deserializing a unit, fully restore its cgroup state (bsc#1029102) - core: Introduce cg_mask_from_string()/cg_mask_to_string() - core:execute: Fix handling failures of calling fork() in exec_spawn() (bsc#1040258) - Fix systemd-sysv-convert when a package starts shipping service units (bsc#982303) The database might be missing when upgrading a package which was shipping no sysv init scripts nor unit files (at the time --save was called) but the new version start shipping unit files. - Disable group shadow support (bsc#1029516) - Only check signature job error if signature job exists (bsc#1043758)

Family:unixClass:patch
Status:Reference(s):1004995
1014702
1015169
1016779
1017081
1017084
1020491
1020589
1020928
1021129
1021195
1021481
1022541
1023004
1023053
1023073
1023907
1024972
1026583
1027519
1029102
1029516
1036873
1038865
1040258
1040614
1040942
1041216
1043758
1043886
1046853
1046858
1047964
1047965
1049344
1055047
1060653
1061075
1061876
1063123
1063824
1068187
1068191
1082828
1102682
1130721
1137443
1154609
1160467
1160468
1160968
1169511
1171352
1172277
1175664
1175665
1175671
854443
977027
982303
CVE-2013-7038
CVE-2013-7039
CVE-2016-10028
CVE-2016-10029
CVE-2016-10155
CVE-2016-9921
CVE-2016-9922
CVE-2017-1000254
CVE-2017-1000257
CVE-2017-10684
CVE-2017-10685
CVE-2017-11112
CVE-2017-11113
CVE-2017-15130
CVE-2017-15289
CVE-2017-15597
CVE-2017-2615
CVE-2017-2620
CVE-2017-5525
CVE-2017-5526
CVE-2017-5552
CVE-2017-5578
CVE-2017-5667
CVE-2017-5856
CVE-2017-5857
CVE-2017-5898
CVE-2017-9217
CVE-2018-5390
CVE-2019-12735
CVE-2019-14896
CVE-2019-14897
CVE-2019-1787
CVE-2019-1788
CVE-2019-1789
CVE-2019-18197
CVE-2019-2949
CVE-2020-15810
CVE-2020-15811
CVE-2020-24606
CVE-2020-2654
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
SUSE-SU-2017:0625-1
SUSE-SU-2017:1576-1
SUSE-SU-2017:1773-1
SUSE-SU-2017:2075-1
SUSE-SU-2017:2831-1
SUSE-SU-2017:3178-1
SUSE-SU-2018:0510-1
SUSE-SU-2018:2632-1
SUSE-SU-2019:0897-1
SUSE-SU-2019:1456-1
SUSE-SU-2020:0920-2
SUSE-SU-2020:2471-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • kernel-default-4.12.14-lp150.11 is installed
  • OR kernel-vanilla-base-4.12.14-lp150.11 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-config-7-SUSE-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-config-7-upstream-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-devel-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-devel-32bit-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-doc-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-extra-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-7_Q16HDRI4-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-devel-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-devel-32bit-7.0.7.34-lp151.7.3 is installed
  • OR libMagickCore-7_Q16HDRI6-7.0.7.34-lp151.7.3 is installed
  • OR libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.3 is installed
  • OR libMagickWand-7_Q16HDRI6-7.0.7.34-lp151.7.3 is installed
  • OR libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.3 is installed
  • OR perl-PerlMagick-7.0.7.34-lp151.7.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libsystemd0-228-149 is installed
  • OR libsystemd0-32bit-228-149 is installed
  • OR libudev1-228-149 is installed
  • OR libudev1-32bit-228-149 is installed
  • OR systemd-228-149 is installed
  • OR systemd-32bit-228-149 is installed
  • OR systemd-bash-completion-228-149 is installed
  • OR systemd-sysvinit-228-149 is installed
  • OR udev-228-149 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • gvim-7.4.326-17.3 is installed
  • OR vim-7.4.326-17.3 is installed
  • OR vim-data-7.4.326-17.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_117-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_31-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • dovecot22-2.2.31-19.11 is installed
  • OR dovecot22-backend-mysql-2.2.31-19.11 is installed
  • OR dovecot22-backend-pgsql-2.2.31-19.11 is installed
  • OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • gdk-pixbuf-loader-rsvg-2.40.15-4 is installed
  • OR librsvg-2-2-2.40.15-4 is installed
  • OR librsvg-2-2-32bit-2.40.15-4 is installed
  • OR rsvg-view-2.40.15-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • icu-52.1-8.10 is installed
  • OR libicu-doc-52.1-8.10 is installed
  • OR libicu52_1-52.1-8.10 is installed
  • OR libicu52_1-32bit-52.1-8.10 is installed
  • OR libicu52_1-data-52.1-8.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND mailman-2.1.17-3.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.0-2.38 is installed
  • OR libwebkit2gtk-4_0-37-2.24.0-2.38 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.24.0-2.38 is installed
  • OR typelib-1_0-WebKit2-4_0-2.24.0-2.38 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.0-2.38 is installed
  • OR webkit2gtk3-2.24.0-2.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • glibc-2.22-15 is installed
  • OR glibc-32bit-2.22-15 is installed
  • OR glibc-devel-2.22-15 is installed
  • OR glibc-devel-32bit-2.22-15 is installed
  • OR glibc-html-2.22-15 is installed
  • OR glibc-i18ndata-2.22-15 is installed
  • OR glibc-info-2.22-15 is installed
  • OR glibc-locale-2.22-15 is installed
  • OR glibc-locale-32bit-2.22-15 is installed
  • OR glibc-profile-2.22-15 is installed
  • OR glibc-profile-32bit-2.22-15 is installed
  • OR nscd-2.22-15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • bzip2-1.0.6-30.5 is installed
  • OR bzip2-doc-1.0.6-30.5 is installed
  • OR libbz2-1-1.0.6-30.5 is installed
  • OR libbz2-1-32bit-1.0.6-30.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed
  • OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed
  • OR libwebkit2gtk3-lang-2.24.4-2.47 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed
  • OR webkit2gtk3-2.24.4-2.47 is installed
    • BACK