Univention Bugzilla – Bug 53605
systemd: Multiple issues (5.0)
Last modified: 2021-07-28 19:10:13 CEST
New Debian systemd 241-7~deb10u8A~5.0.0.202107221216 fixes: This update addresses the following issue: * uncontrolled allocation on the stack in function unit_name_path_escape leads to crash (CVE-2021-33910)
--- mirror/ftp/pool/main/s/systemd/systemd_241-7~deb10u7A~5.0.0.202104091504.dsc +++ apt/ucs_5.0-0-errata5.0-0/source/systemd_241-7~deb10u8A~5.0.0.202107221216.dsc @@ -1,7 +1,12 @@ -241-7~deb10u7A~5.0.0.202104091504 [Fri, 09 Apr 2021 15:08:24 +0200] Univention builddaemon <buildd@univention.de>: +241-7~deb10u8A~5.0.0.202107221216 [Thu, 22 Jul 2021 12:17:02 +0200] Univention builddaemon <buildd@univention.de>: * UCS auto build. The following patches have been applied to the original source package 10-ignore-ucs-divered + +241-7~deb10u8 [Thu, 08 Jul 2021 15:03:45 +0200] Salvatore Bonaccorso <carnil@debian.org>: + + * Non-maintainer upload by the Security Team. + * basic/unit-name: do not use strdupa() on a path (CVE-2021-33910) 241-7~deb10u7 [Thu, 18 Mar 2021 20:59:14 +0100] Michael Biebl <biebl@debian.org>: <http://piuparts.knut.univention.de/5.0-0/#7434144374850487332>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-0] e2d22e3645 Bug #53605: systemd 241-7~deb10u8A~5.0.0.202107221216 doc/errata/staging/systemd.yaml | 13 +++++++++++++ 1 file changed, 13 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x56>