Oracle Linux 6277 Published by

A systemd security update has been released for Oracle Linux 8.



El-errata: ELSA-2021-2717 Important: Oracle Linux 8 systemd security update


Oracle Linux Security Advisory ELSA-2021-2717

  http://linux.oracle.com/errata/ELSA-2021-2717.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
systemd-239-45.0.2.el8_4.2.i686.rpm
systemd-239-45.0.2.el8_4.2.x86_64.rpm
systemd-container-239-45.0.2.el8_4.2.i686.rpm
systemd-container-239-45.0.2.el8_4.2.x86_64.rpm
systemd-devel-239-45.0.2.el8_4.2.i686.rpm
systemd-devel-239-45.0.2.el8_4.2.x86_64.rpm
systemd-journal-remote-239-45.0.2.el8_4.2.x86_64.rpm
systemd-libs-239-45.0.2.el8_4.2.i686.rpm
systemd-libs-239-45.0.2.el8_4.2.x86_64.rpm
systemd-pam-239-45.0.2.el8_4.2.x86_64.rpm
systemd-tests-239-45.0.2.el8_4.2.x86_64.rpm
systemd-udev-239-45.0.2.el8_4.2.x86_64.rpm

aarch64:
systemd-239-45.0.2.el8_4.2.aarch64.rpm
systemd-container-239-45.0.2.el8_4.2.aarch64.rpm
systemd-devel-239-45.0.2.el8_4.2.aarch64.rpm
systemd-journal-remote-239-45.0.2.el8_4.2.aarch64.rpm
systemd-libs-239-45.0.2.el8_4.2.aarch64.rpm
systemd-pam-239-45.0.2.el8_4.2.aarch64.rpm
systemd-tests-239-45.0.2.el8_4.2.aarch64.rpm
systemd-udev-239-45.0.2.el8_4.2.aarch64.rpm

SRPMS:
  http://oss.oracle.com/ol8/SRPMS-updates/systemd-239-45.0.2.el8_4.2.src.rpm

Related CVEs:

CVE-2021-33910



Description of changes:

[239-45.0.2]
- Disable unprivileged BPF by default [Orabug: 32870980]
- backport upstream pstore tmpfiles patch [Orabug: 31420486]
- udev rules: fix memory hot add and remove [Orabug: 31310273]
- fix to enable systemd-pstore.service [Orabug: 30951066]
- journal: change support URL shown in the catalog entries [Orabug: 30853009]
- fix to generate systemd-pstore.service file [Orabug: 30230056]
- fix _netdev is missing for iscsi entry in /etc/fstab (tony.l.lam@oracle.com) [Orabug: 25897792]
- set "RemoveIPC=no" in logind.conf as default for OL7.2 [Orabug: 22224874]
- allow dm remove ioctl to co-operate with UEK3 (Vaughan Cao) [Orabug: 18467469]
- add hv dynamic memory support (Jerry Snitselaar) [Orabug: 18621475]
- Backport upstream patches for the new systemd-pstore tool (Eric DeVolder) [OraBug: 30230056]

[239-45.2]
- basic/unit-name: do not use strdupa() on a path (CVE-2021-33910, #1974699)