Bug 49019 – systemd: Multiple issues (4.2)

Bug 49019 - systemd: Multiple issues (4.2)


Summary:	systemd: Multiple issues (4.2)

Status:	CLOSED FIXED

Product:	UCS
Classification:	Unclassified
Component:	Security updates
Version:	UCS 4.2
Hardware:	All Linux

Importance:	P3 normal (vote)
Target Milestone:	UCS 4.2-5-errata
Assigned To:	Quality Assurance
QA Contact:	Philipp Hahn

URL:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2019-03-18 08:38 CET by Quality Assurance
Modified:	2019-03-20 14:03 CET (History)
CC List:	0 users

See Also:
What kind of report is it?:	Security Issue
What type of bug is this?:	---
Who will be affected by this bug?:	---
How will those affected feel about the bug?:	---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:	3.3 (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L)

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Quality Assurance

2019-03-18 08:38:17 CET

New Debian systemd 215-17+deb8u11A~4.2.5.201903180838 fixes:
This update addresses the following issues:
* memory leak in journald-server.c introduced by fix for CVE-2018-16864  (CVE-2019-3815)

Comment 1 Quality Assurance

2019-03-18 10:00:16 CET

--- mirror/ftp/4.2/unmaintained/component/4.2-5-errata/source/systemd_215-17+deb8u9A~4.2.5.201901230934.dsc
+++ apt/ucs_4.2-0-errata4.2-5/source/systemd_215-17+deb8u11A~4.2.5.201903180838.dsc
@@ -1,8 +1,23 @@
-215-17+deb8u9A~4.2.5.201901230934 [Wed, 23 Jan 2019 09:34:31 +0100] Univention builddaemon <buildd@univention.de>:
+215-17+deb8u11A~4.2.5.201903180838 [Mon, 18 Mar 2019 08:38:25 +0100] Univention builddaemon <buildd@univention.de>:
 
   * UCS auto build. The following patches have been applied to the original source package
     10-ignore-ucs-divered
     15-fix-mtd_probe-h
+
+215-17+deb8u11 [Wed, 13 Mar 2019 11:52:10 +0100] Markus Koschany <apo@debian.org>:
+
+  * Non-maintainer upload by the LTS team.
+  * Fix CVE-2019-3815:
+    A memory leak was discovered in the backport of fixes for CVE-2018-16864.
+    Function dispatch_message_real() in journald-server.c does not free
+    allocated memory to store the `_CMDLINE=` entry. A local attacker may use
+    this flaw to make systemd-journald crash. (Closes: #924060)
+
+215-17+deb8u10 [Tue, 19 Feb 2019 16:14:40 +0100] Emilio Pozuelo Monfort <pochu@debian.org>:
+
+  * Non-maintainer upload by the LTS Team.
+  * CVE-2019-6454: DBus messages with a crafted (long) path can crash
+    PID1.
 
 215-17+deb8u9 [Tue, 22 Jan 2019 15:30:45 -0500] Antoine Beaupré <anarcat@debian.org>:
 

<http://10.200.17.11/4.2-5/#3613866863461669748>

Comment 2 Philipp Hahn

2019-03-18 16:12:03 CET

OK: yaml
OK: announce_errata
OK: patch
OK: piuparts

[4.2-5] 236742d5fc Bug #49019: systemd 215-17+deb8u11A~4.2.5.201903180838
 doc/errata/staging/systemd.yaml | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

[4.2-5] 449b67ea9b Bug #49019: systemd 215-17+deb8u11A~4.2.5.201903180838
 doc/errata/staging/systemd.yaml | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

Comment 3 Erik Damrose

2019-03-20 14:03:59 CET

<http://errata.software-univention.de/ucs/4.2/614.html>