-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2020-f8e267d6d0 2020-02-21 01:17:34.080801 --------------------------------------------------------------------------------
Name : systemd Product : Fedora 30 Version : 241 Release : 14.git18dd3fb.fc30 URL : https://www.freedesktop.org/wiki/Software/systemd Summary : System and Service Manager Description : systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. systemd supports SysV and LSB init scripts and works as a replacement for sysvinit. Other parts of this package are a logging daemon, utilities to control basic system configuration like the hostname, date, locale, maintain a list of logged-in users, system accounts, runtime directories and settings, and daemons to manage simple network configuration, network time synchronization, log forwarding, and name resolution.
This package was built from the 241-stable branch of systemd, commit https://github.com/systemd/systemd-stable/commit/18dd3fb.
-------------------------------------------------------------------------------- Update Information:
A few bugfixes and hwdb update. No need to log out or reboot. -------------------------------------------------------------------------------- ChangeLog:
* Thu Feb 6 2020 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 241-14.git18dd3fb - Pull in a bunch of bugfixes (#1798414/CVE-2020-1712, #1709547, - The hardware database is updated to v245-rc1 (#1717712) * Thu Oct 10 2019 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 241-13.git323cdf4 - Fix journalctl crash with low stack (#1743230) - Fix one crash in systemd-resolved (#1703598) - Fix operation of relabel-extra.d on directories - Make systemd-networks follow the RFC for DHPCv6 and radv timeouts - Make systemd-binfmt.service easier to work with no autofs (#1731772) - A bunch of smaller documentation fixes and improved log messages * Tue Sep 3 2019 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 241-12.git1e19bcd - hwdb entries for keyboards are updated to the latest version (#1725717) * Tue Sep 3 2019 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 241-11.git1e19bcd - Security issue: unprivileged users were allowed to change DNS servers configured in systemd-resolved. Now proper polkit authorization is required. - Various minor fixes (memory issues, compat with newer kernels, log message improvements, etc.). - Add hwdb entry for HP laptops to fix "inverted screen" (#1717712) * Fri Aug 2 2019 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 241-10.git511646b - Fix systemd-networkd incompatibility with kernel >= 5.2 (#1718192) * Sat Jul 20 2019 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 241-9.gitb67ecf2 - Stop re-enabling systemd units on upgrade (#1706629) - Ignore bad rdrand output on AMD CPUs (#1729268) - A bunch of backported patches from upstream: documentation, memory access fixups, command output tweaks (#1708996) * Fri Apr 26 2019 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 241-8.git9ef65cb - Fix hang in flush_accept (#1702358) - Fix handling of RUN keys in udevd - Some documentation and minor logging fixes - Backport the addition of RestrictSUIDSGID= from systemd-242 and enable RestrictSUIDSGID=yes for systemd services which use DynamicUser=yes (#1703356, CVE-2019-3843).
The defaults in v242 were changed to enable RestrictSUIDSGID=yes if DynamicUser=yes is specified, but this backport doesn't do this and RestrictSUIDSGID=yes has to be requested explicitly. Maintainers of other services packages for Fedora should consider doing this. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1798414 - CVE-2020-1712 systemd: use-after-free when asynchronous polkit queries are performed [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1798414 [ 2 ] Bug #1709547 - Boot fails when password file in crypttab can't be read https://bugzilla.redhat.com/show_bug.cgi?id=1709547 [ 3 ] Bug #1793980 - CVE-2019-20386 systemd: a memory leak was discovered in button_open in login/logind-button.c when executing the udevadm trigger command [fedora-30] https://bugzilla.redhat.com/show_bug.cgi?id=1793980 [ 4 ] Bug #1708213 - Remote/distributed journal broken in systemd 241 (no workaround), backport 242 required https://bugzilla.redhat.com/show_bug.cgi?id=1708213 [ 5 ] Bug #1705522 - resume from hibernation times out on disk unlock screen after 90 seconds (even with systemd.device-timeout=0) https://bugzilla.redhat.com/show_bug.cgi?id=1705522 [ 6 ] Bug #1614871 - systemd-journald.service: Service has no hold-off time, scheduling restart https://bugzilla.redhat.com/show_bug.cgi?id=1614871 [ 7 ] Bug #1717712 - F30 installer screen inverted https://bugzilla.redhat.com/show_bug.cgi?id=1717712 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-f8e267d6d0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------