SUSE-SU-2016:1351-1

Source
https://www.suse.com/support/update/announcement/2016/suse-su-20161351-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2016:1351-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2016:1351-1
Related
Published
2016-05-18T13:21:09Z
Modified
2016-05-18T13:21:09Z
Summary
Security update for systemd
Details

This update for SystemD provides fixes and enhancements.

The following security issue has been fixed:

  • Don't allow read access to journal files to users. (bsc#972612, CVE-2014-9770, CVE-2015-8842)

The following non-security issues have been fixed:

  • Restore initrd-udevadm-cleanup-db.service. (bsc#978275, bsc#976766)
  • Incorrect permissions set after boot on journal files. (bsc#973848)
  • Exclude device-mapper from block device ownership event locking. (bsc#972727)
  • Explicitly set mode for /run/log.
  • Don't apply sgid and executable bit to journal files, only the directories they are contained in.
  • Add ability to mask access mode by pre-existing access mode on files/directories.
  • No need to pass --all if inactive is explicitly requested in list-units. (bsc#967122)
  • Fix automount option and don't start associated mount unit at boot. (bsc#970423)
  • Support more than just power-gpio-key. (fate#318444, bsc#970860)
  • Add standard gpio power button support. (fate#318444, bsc#970860)
  • Downgrade warnings about wanted unit which are not found. (bsc#960158)
  • Shorten hostname before checking for trailing dot. (bsc#965897)
  • Remove WorkingDirectory parameter from emergency, rescue and console-shell.service. (bsc#959886)
  • Don't ship boot.udev and systemd-journald.init anymore.
  • Revert 'log: honour the kernel's quiet cmdline argument'. (bsc#963230)
References

Affected packages

SUSE:Linux Enterprise Desktop 12 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Desktop%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
210-70.48.1

Ecosystem specific

{
    "binaries": [
        {
            "libgudev-1_0-0-32bit": "210-70.48.1",
            "udev": "210-70.48.1",
            "libudev1-32bit": "210-70.48.1",
            "libudev1": "210-70.48.1",
            "libgudev-1_0-0": "210-70.48.1",
            "systemd-32bit": "210-70.48.1",
            "systemd-bash-completion": "210-70.48.1",
            "systemd": "210-70.48.1",
            "systemd-sysvinit": "210-70.48.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
210-70.48.1

Ecosystem specific

{
    "binaries": [
        {
            "libgudev-1_0-devel": "210-70.48.1",
            "systemd-devel": "210-70.48.1",
            "libudev-devel": "210-70.48.1",
            "typelib-1_0-GUdev-1_0": "210-70.48.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Server%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
210-70.48.1

Ecosystem specific

{
    "binaries": [
        {
            "libgudev-1_0-0-32bit": "210-70.48.1",
            "udev": "210-70.48.1",
            "libudev1-32bit": "210-70.48.1",
            "libudev1": "210-70.48.1",
            "libgudev-1_0-0": "210-70.48.1",
            "systemd-32bit": "210-70.48.1",
            "systemd-bash-completion": "210-70.48.1",
            "systemd": "210-70.48.1",
            "systemd-sysvinit": "210-70.48.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 / systemd

Package

Name
systemd
Purl
purl:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
210-70.48.1

Ecosystem specific

{
    "binaries": [
        {
            "libgudev-1_0-0-32bit": "210-70.48.1",
            "udev": "210-70.48.1",
            "libudev1-32bit": "210-70.48.1",
            "libudev1": "210-70.48.1",
            "libgudev-1_0-0": "210-70.48.1",
            "systemd-32bit": "210-70.48.1",
            "systemd-bash-completion": "210-70.48.1",
            "systemd": "210-70.48.1",
            "systemd-sysvinit": "210-70.48.1"
        }
    ]
}