Red Hat Product Errata RHSA-2019:1322 - Security Advisory

Issued:: 2019-06-04
Updated:: 2019-06-04

RHSA-2019:1322 - Security Advisory

Overview
Updated Packages

Synopsis

Important: systemd security and bug fix update

Type/Severity

Security Advisory: Important

Topic

An update for systemd is now available for Red Hat Enterprise Linux 7.5 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit.

Security Fix(es):

systemd: Insufficient input validation in bus_process_object() resulting in PID 1 crash (CVE-2019-6454)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

systemd segfaults running test case https://github.com/systemd/systemd-fedora-ci/tree/master/issue-1981 (BZ#1711872)
Race between systemctl start (and likely others) vs systemctl daemon-reload (BZ#1711875)
systemd doesn't delete stub unit files created for session scopes (BZ#1711876)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.5 x86_64
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.5 s390x
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.5 ppc64
Red Hat Enterprise Linux EUS Compute Node 7.5 x86_64
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.5 ppc64le

Fixes

BZ - 1667032 - CVE-2019-6454 systemd: Insufficient input validation in bus_process_object() resulting in PID 1 crash
BZ - 1711872 - systemd segfaults running test case https://github.com/systemd/systemd-fedora-ci/tree/master/issue-1981 [rhel-7.5.z]
BZ - 1711875 - Race between systemctl start (and likely others) vs systemctl daemon-reload [rhel-7.5.z]
BZ - 1711876 - systemd doesn't delete stub unit files created for session scopes [rhel-7.5.z]

CVEs

CVE-2019-6454

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.5

SRPM
systemd-219-57.el7_5.6.src.rpm	SHA-256: 62d4a73f0340042c131307bb031e258f3828ec0e3b723ca9b9cdeac51952c0c1
x86_64
libgudev1-219-57.el7_5.6.i686.rpm	SHA-256: aad5553c10372896450e0f58528f7f9434b426ad218e2d13ec08f25d868ba976
libgudev1-219-57.el7_5.6.x86_64.rpm	SHA-256: df85318beff688c7ebfdc92a101b401906e2be22bc44c0b89ef0f6fe9147791c
libgudev1-devel-219-57.el7_5.6.i686.rpm	SHA-256: 80c32f6fd1c680e3ec1c46e85d51351102ba3d247bbfcafd32eef2e1ed8bcb5a
libgudev1-devel-219-57.el7_5.6.x86_64.rpm	SHA-256: d8ce2d3b0092362150da3c87fa5f92568c00aad811b98b8f4b696d52f92d0dcb
systemd-219-57.el7_5.6.x86_64.rpm	SHA-256: f12a396f2ac7c0f960b9668513da1158eaa96b149771242c60e7f562967e00ad
systemd-debuginfo-219-57.el7_5.6.i686.rpm	SHA-256: ae74118563d70323a48cc447916c6b5631884356b82698414790d4df6b94195e
systemd-debuginfo-219-57.el7_5.6.i686.rpm	SHA-256: ae74118563d70323a48cc447916c6b5631884356b82698414790d4df6b94195e
systemd-debuginfo-219-57.el7_5.6.x86_64.rpm	SHA-256: 541a6d44cffa304bb96570fa0ee338b955ae22b3c8d379d350d369f98d9d2b78
systemd-debuginfo-219-57.el7_5.6.x86_64.rpm	SHA-256: 541a6d44cffa304bb96570fa0ee338b955ae22b3c8d379d350d369f98d9d2b78
systemd-devel-219-57.el7_5.6.i686.rpm	SHA-256: f709f6884d44e1901d67333178d4a1b305878775bab59470f78f805676b24327
systemd-devel-219-57.el7_5.6.x86_64.rpm	SHA-256: 88d3f895628438fce8796c81bcc271bfb51853f7705340510c7c2ddbcd78d959
systemd-journal-gateway-219-57.el7_5.6.x86_64.rpm	SHA-256: 66db13edd6f0e8960b9100e887cef94fffb5bcdcc9ec5fb08055b795a81f1f71
systemd-libs-219-57.el7_5.6.i686.rpm	SHA-256: 4d548a2709761ccf01a62be6f3eac5d4f7a4b203c9732b344de06b9cc27d4d32
systemd-libs-219-57.el7_5.6.x86_64.rpm	SHA-256: e672470a2bec71ea65f5e0048430f917c6634c86a50bc9c35cb7455646138a1d
systemd-networkd-219-57.el7_5.6.x86_64.rpm	SHA-256: dbb721f0f8211c6133b3874486559dc19e55de9a09983269836db3f461815a44
systemd-python-219-57.el7_5.6.x86_64.rpm	SHA-256: 5c724a810b46674504c8f09199b34a0fb399e82d312df87ce9a222dcd2b54dbc
systemd-resolved-219-57.el7_5.6.i686.rpm	SHA-256: abec5b985ff14484f0afd15c0b508dd884507a010fa9b4b27a5fda38154ab802
systemd-resolved-219-57.el7_5.6.x86_64.rpm	SHA-256: 2b9513dd472c58a0f2721e8db28a07a34c1993c6164627a909aa66d56cf771c3
systemd-sysv-219-57.el7_5.6.x86_64.rpm	SHA-256: 1d4155c0be00d25c98aebd6d2ec56bc0ba39431047d4c8576be6058e5d7f8cc9

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.5

SRPM
systemd-219-57.el7_5.6.src.rpm	SHA-256: 62d4a73f0340042c131307bb031e258f3828ec0e3b723ca9b9cdeac51952c0c1
s390x
libgudev1-219-57.el7_5.6.s390.rpm	SHA-256: 80a506082106600d4f3688b6ce3a574c6c34a44d86ad7da4c4acff8c6f7c3440
libgudev1-219-57.el7_5.6.s390x.rpm	SHA-256: 82402a8b04a408aa2ac1357e53c47134709528c392231441870af2f9d3026849
libgudev1-devel-219-57.el7_5.6.s390.rpm	SHA-256: a5e29e9a28703336e2b4a09987b1f983875507b1db3e18e8ccf41f107f77e663
libgudev1-devel-219-57.el7_5.6.s390x.rpm	SHA-256: c0df7a7f9e39d9360e117983404b58fee65abbe4257ea95460157f3113b4366d
systemd-219-57.el7_5.6.s390x.rpm	SHA-256: ceb16444750037fdcb7f0f0f47828909fe37ac68333bdb5db8938a09c768d08f
systemd-debuginfo-219-57.el7_5.6.s390.rpm	SHA-256: efc8f53caba81143129e4589bb724febbc0d4e809e34a61a94dd3bfd84b2c393
systemd-debuginfo-219-57.el7_5.6.s390.rpm	SHA-256: efc8f53caba81143129e4589bb724febbc0d4e809e34a61a94dd3bfd84b2c393
systemd-debuginfo-219-57.el7_5.6.s390x.rpm	SHA-256: 9895ee2fc1ce15ef1fac6bf2c8d02f9fe03079f76218d33c598e02400e22a5be
systemd-debuginfo-219-57.el7_5.6.s390x.rpm	SHA-256: 9895ee2fc1ce15ef1fac6bf2c8d02f9fe03079f76218d33c598e02400e22a5be
systemd-devel-219-57.el7_5.6.s390.rpm	SHA-256: e4264a74ec510938cf3e0ba6bcbe6778cbee7b10c6ef7822c5218eddbf3e442e
systemd-devel-219-57.el7_5.6.s390x.rpm	SHA-256: 3cfd29e4f69df841e5a2001448e4469caa9b3dd5a0b923670086f3a77604c2e2
systemd-journal-gateway-219-57.el7_5.6.s390x.rpm	SHA-256: 792d32d43bc25bac6d508afa3063940ff91d9b021b29b0de5dfe4c4fa11aa253
systemd-libs-219-57.el7_5.6.s390.rpm	SHA-256: 8fbf4e77c3be426f64401aabc9354038dd151418f28b0276d67fc269034f3714
systemd-libs-219-57.el7_5.6.s390x.rpm	SHA-256: f1b01b63c1ddbb31c3a2e7763724f8716e0bb68a335b9e1142cdc78aa1fdf941
systemd-networkd-219-57.el7_5.6.s390x.rpm	SHA-256: e684e1f0fe86a3f89a32d0ed96fb70148c5e237d2090febe5cb844c281a90cf5
systemd-python-219-57.el7_5.6.s390x.rpm	SHA-256: 50b3030b9effab4a55c70ca22fbf4961e19fd7d2ffa6cbe943e8b628b3619d80
systemd-resolved-219-57.el7_5.6.s390.rpm	SHA-256: ecf777bfd0f1262b589d3c5aed16bfbc220f5490411273454469c60213a13ae4
systemd-resolved-219-57.el7_5.6.s390x.rpm	SHA-256: d2150c62d0a2844e8de0172c2ec45ad9fe203a097573a432d65ce70b2a6b7c87
systemd-sysv-219-57.el7_5.6.s390x.rpm	SHA-256: 8806f996bb1bc57a4d0261c41ae84275a67930cc692d4392770eb7a00cd6b1b7

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.5

SRPM
systemd-219-57.el7_5.6.src.rpm	SHA-256: 62d4a73f0340042c131307bb031e258f3828ec0e3b723ca9b9cdeac51952c0c1
ppc64
libgudev1-219-57.el7_5.6.ppc.rpm	SHA-256: 1cf79cce84f4d62cff637f1d804a07062d224b664f3bf2289766d65143fb6a0d
libgudev1-219-57.el7_5.6.ppc64.rpm	SHA-256: b2d049a1668ecd5d071297eda461206161c37b2feb388488f1e62e9f365124fd
libgudev1-devel-219-57.el7_5.6.ppc.rpm	SHA-256: 233053a96b8ded4cbf21ec6380015748b3c71c70f2ba4bd99250d05ffc9da9ff
libgudev1-devel-219-57.el7_5.6.ppc64.rpm	SHA-256: 70e998d5f420c87d8b8a521e19200e7cf4ea78fda12cb2c57cfcc826cf4f8a94
systemd-219-57.el7_5.6.ppc64.rpm	SHA-256: 013316394bdb74dfe83fd43f4d66bccd5178d73083a7e4bc26607da42f7740e4
systemd-debuginfo-219-57.el7_5.6.ppc.rpm	SHA-256: 6f316fc607dc6cf0136dd3cff5c375c31071f02870177dfa0be6b366c23898d5
systemd-debuginfo-219-57.el7_5.6.ppc.rpm	SHA-256: 6f316fc607dc6cf0136dd3cff5c375c31071f02870177dfa0be6b366c23898d5
systemd-debuginfo-219-57.el7_5.6.ppc64.rpm	SHA-256: 8c3a7625ba1b48e49e478e9ac81b89216172165519d127903477d4ff65c10f2f
systemd-debuginfo-219-57.el7_5.6.ppc64.rpm	SHA-256: 8c3a7625ba1b48e49e478e9ac81b89216172165519d127903477d4ff65c10f2f
systemd-devel-219-57.el7_5.6.ppc.rpm	SHA-256: 520fb80180907e4265d50b4b35e737a6c618343a9cdd863e07fc020d86ca010f
systemd-devel-219-57.el7_5.6.ppc64.rpm	SHA-256: 596343588210f9d3c8999194f73b8bc366a28a3fc169804e84caa0f63340e68c
systemd-journal-gateway-219-57.el7_5.6.ppc64.rpm	SHA-256: c2307c5651365cf27794af8ba33fe57f2e1b2cecccbc763d1c53b172bb58783c
systemd-libs-219-57.el7_5.6.ppc.rpm	SHA-256: 3fcd353d62959c990d44df92352dd02a3193d4bd9045babc53b83c12a08dfe49
systemd-libs-219-57.el7_5.6.ppc64.rpm	SHA-256: a511ce743756298d4d0978e78c1c7cce71cd4fed0c837912ca652f40545b4c4f
systemd-networkd-219-57.el7_5.6.ppc64.rpm	SHA-256: 5ebebe828b009768242333ba369f728d3f1cf7e324b6aae46d46ea206a538891
systemd-python-219-57.el7_5.6.ppc64.rpm	SHA-256: b475709cb1fd3d4bba75487facbc8ffee71ce4e5c6c5a95b691c93eb80fd69cb
systemd-resolved-219-57.el7_5.6.ppc.rpm	SHA-256: 007ff81c65b881c3a2f7d2376c6c44ec8a5be7a1a264c65912dda760c222ba4e
systemd-resolved-219-57.el7_5.6.ppc64.rpm	SHA-256: be5d1707dfb181875afacbe841408ebcd9228d80d0fa06bd423fc6146b1ca787
systemd-sysv-219-57.el7_5.6.ppc64.rpm	SHA-256: 7ff9e761e48029ec8b692be49dc659c031186324408850bba80e999872ac5e5f

Red Hat Enterprise Linux EUS Compute Node 7.5

SRPM
systemd-219-57.el7_5.6.src.rpm	SHA-256: 62d4a73f0340042c131307bb031e258f3828ec0e3b723ca9b9cdeac51952c0c1
x86_64
libgudev1-219-57.el7_5.6.i686.rpm	SHA-256: aad5553c10372896450e0f58528f7f9434b426ad218e2d13ec08f25d868ba976
libgudev1-219-57.el7_5.6.x86_64.rpm	SHA-256: df85318beff688c7ebfdc92a101b401906e2be22bc44c0b89ef0f6fe9147791c
libgudev1-devel-219-57.el7_5.6.i686.rpm	SHA-256: 80c32f6fd1c680e3ec1c46e85d51351102ba3d247bbfcafd32eef2e1ed8bcb5a
libgudev1-devel-219-57.el7_5.6.x86_64.rpm	SHA-256: d8ce2d3b0092362150da3c87fa5f92568c00aad811b98b8f4b696d52f92d0dcb
systemd-219-57.el7_5.6.x86_64.rpm	SHA-256: f12a396f2ac7c0f960b9668513da1158eaa96b149771242c60e7f562967e00ad
systemd-debuginfo-219-57.el7_5.6.i686.rpm	SHA-256: ae74118563d70323a48cc447916c6b5631884356b82698414790d4df6b94195e
systemd-debuginfo-219-57.el7_5.6.i686.rpm	SHA-256: ae74118563d70323a48cc447916c6b5631884356b82698414790d4df6b94195e
systemd-debuginfo-219-57.el7_5.6.x86_64.rpm	SHA-256: 541a6d44cffa304bb96570fa0ee338b955ae22b3c8d379d350d369f98d9d2b78
systemd-debuginfo-219-57.el7_5.6.x86_64.rpm	SHA-256: 541a6d44cffa304bb96570fa0ee338b955ae22b3c8d379d350d369f98d9d2b78
systemd-devel-219-57.el7_5.6.i686.rpm	SHA-256: f709f6884d44e1901d67333178d4a1b305878775bab59470f78f805676b24327
systemd-devel-219-57.el7_5.6.x86_64.rpm	SHA-256: 88d3f895628438fce8796c81bcc271bfb51853f7705340510c7c2ddbcd78d959
systemd-journal-gateway-219-57.el7_5.6.x86_64.rpm	SHA-256: 66db13edd6f0e8960b9100e887cef94fffb5bcdcc9ec5fb08055b795a81f1f71
systemd-libs-219-57.el7_5.6.i686.rpm	SHA-256: 4d548a2709761ccf01a62be6f3eac5d4f7a4b203c9732b344de06b9cc27d4d32
systemd-libs-219-57.el7_5.6.x86_64.rpm	SHA-256: e672470a2bec71ea65f5e0048430f917c6634c86a50bc9c35cb7455646138a1d
systemd-networkd-219-57.el7_5.6.x86_64.rpm	SHA-256: dbb721f0f8211c6133b3874486559dc19e55de9a09983269836db3f461815a44
systemd-python-219-57.el7_5.6.x86_64.rpm	SHA-256: 5c724a810b46674504c8f09199b34a0fb399e82d312df87ce9a222dcd2b54dbc
systemd-resolved-219-57.el7_5.6.i686.rpm	SHA-256: abec5b985ff14484f0afd15c0b508dd884507a010fa9b4b27a5fda38154ab802
systemd-resolved-219-57.el7_5.6.x86_64.rpm	SHA-256: 2b9513dd472c58a0f2721e8db28a07a34c1993c6164627a909aa66d56cf771c3
systemd-sysv-219-57.el7_5.6.x86_64.rpm	SHA-256: 1d4155c0be00d25c98aebd6d2ec56bc0ba39431047d4c8576be6058e5d7f8cc9

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.5

SRPM
systemd-219-57.el7_5.6.src.rpm	SHA-256: 62d4a73f0340042c131307bb031e258f3828ec0e3b723ca9b9cdeac51952c0c1
ppc64le
libgudev1-219-57.el7_5.6.ppc64le.rpm	SHA-256: ad725c0d04263310b5c4f87f8bda6dc575d189c5b641cdb33fb26dd1ac671367
libgudev1-devel-219-57.el7_5.6.ppc64le.rpm	SHA-256: 1e3460f66cdaf18ce20e67b995ecf8b8b7d08056df00c743217d910a3f0a9332
systemd-219-57.el7_5.6.ppc64le.rpm	SHA-256: 4b78fa9b321f1daffe3e32fb363bd56f36093e3eb5b086a812f240dbe39b7c0f
systemd-debuginfo-219-57.el7_5.6.ppc64le.rpm	SHA-256: 55b8b8cdef9fb4e7052fd2dacc84132bdc4c42383d3cb82b642fe202f4cad3a2
systemd-debuginfo-219-57.el7_5.6.ppc64le.rpm	SHA-256: 55b8b8cdef9fb4e7052fd2dacc84132bdc4c42383d3cb82b642fe202f4cad3a2
systemd-devel-219-57.el7_5.6.ppc64le.rpm	SHA-256: 0e5c3b06f57185231828cbc061b0cacea5f95949d285f7b0f371fcc18743f1c6
systemd-journal-gateway-219-57.el7_5.6.ppc64le.rpm	SHA-256: 1ba01cf1decde579aebd43955205bc30810fd4f78dc922a84e5010400dc9a25f
systemd-libs-219-57.el7_5.6.ppc64le.rpm	SHA-256: 063b433f7337d14f8fad83a9702d08a4fdbf272ae5203362e828bee27457b82a
systemd-networkd-219-57.el7_5.6.ppc64le.rpm	SHA-256: da1ed0230ba8022e1503074e3a89429d9794b047835c72c18af0620305bdfb1b
systemd-python-219-57.el7_5.6.ppc64le.rpm	SHA-256: 569ff1908da74a62053a14137e0000a9b6bb0d409188523c5c72a0efc861fc56
systemd-resolved-219-57.el7_5.6.ppc64le.rpm	SHA-256: 403f4f055a500571d00c6332c0dcd2f27694aa437b924e412c5b0e2b1d214cea
systemd-sysv-219-57.el7_5.6.ppc64le.rpm	SHA-256: 99efbd3d7a2e388f3ad3f7c76241eb096bee4c9f4e0e82a12b499b27299a7dda

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation

Services

Tools

Red Hat Insights

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories