Summary: | <sys-apps/systemd-233-r1: local user DoS | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Kristian Fiskerstrand (RETIRED) <k_f> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | alexander, systemd |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.openwall.com/lists/oss-security/2016/09/28/9 | ||
See Also: | https://github.com/systemd/systemd/issues/4234 | ||
Whiteboard: | B3 [noglsa cve] | ||
Package list: |
=sys-libs/libseccomp-2.3.2 amd64 arm ppc ppc64 x86
=sys-apps/systemd-233-r1
|
Runtime testing required: | Yes |
Bug Depends on: | 598992, 599152, 606422, 622874 | ||
Bug Blocks: | 579506, 605022 |
Description
Kristian Fiskerstrand (RETIRED)
2016-09-28 22:07:53 UTC
There's still some chatter on this upstream. I'm waiting a bit to see if this PR gets merged. https://github.com/systemd/systemd/pull/4242 Backporting the fix(es) to systemd-226 is non-trivial. system-231 has some regressions, the fixes for which are also non-trivial backports. I would prefer to wait for upstream to release systemd-232 to resolve this. The PR was merged and first release containing the fix was =sys-apps/systemd-232 which already landed in the Gentoo repository: https://gitweb.gentoo.org/repo/gentoo.git/commit/sys-apps/systemd?id=1aac346933936be0fca1b24cac3ba2a147b08c6f @ maintainer(s): Please tell us how to proceed. Is systemd-232 ready for stabilization? (In reply to Thomas Deutschmann from comment #4) > @ maintainer(s): Please tell us how to proceed. Is systemd-232 ready for > stabilization? No, systemd-232 introduced additional regressions and is not fit for stabilization. See bug 598992, bug 599152. Maintainer(s), please advise if you are ready for stabilization or call for stabilization yourself. Let's proceed with systemd-233-r1. I have taken the liberty of adding sys-libs/libseccomp to the package list to satisfy a dependency. amd64 stable x86 stable sparc stable ppc stable ppc64 stable Stable on alpha. ia64 stable arm should now stabilize 233-r2 instead (bug 622874). GLSA Vote: No |