Issued:: 2019-08-07
Updated:: 2019-08-07

RHSA-2019:2402 - Security Advisory

Overview
Updated Packages

Synopsis

Important: systemd security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for systemd is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support, Red Hat Enterprise Linux 7.3 Telco Extended Update Support, and Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit.

Security Fix(es):

systemd: stack overflow when calling syslog from a command with long cmdline (CVE-2018-16864)
systemd: stack overflow when receiving many journald entries (CVE-2018-16865)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server - AUS 7.3 x86_64
Red Hat Enterprise Linux Server - TUS 7.3 x86_64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 7.3 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.3 x86_64

Fixes

BZ - 1653855 - CVE-2018-16864 systemd: stack overflow when calling syslog from a command with long cmdline
BZ - 1653861 - CVE-2018-16865 systemd: stack overflow when receiving many journald entries

CVEs

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 7.3

SRPM
systemd-219-30.el7_3.13.src.rpm	SHA-256: d7f92299567d390753a29a8bbed3c476410a36985de9e6d38aef3e376ebdd5b9
x86_64
libgudev1-219-30.el7_3.13.i686.rpm	SHA-256: 315c6c765aed5379b42c43078421e6bffbcba84b660f1fa963317499b542710a
libgudev1-219-30.el7_3.13.x86_64.rpm	SHA-256: dbfa73bf1241d57406d167e224f375a3e95d3e82917765e23ebba6415cd534d2
libgudev1-devel-219-30.el7_3.13.i686.rpm	SHA-256: 68289ce2e2007e59be6f794a0a0300774783ced79509e3b173a84b09c258a1a5
libgudev1-devel-219-30.el7_3.13.x86_64.rpm	SHA-256: 37ce3c466a069845188d0d848f4f29b0772c051c192dea876c8d67507e94c6b7
systemd-219-30.el7_3.13.x86_64.rpm	SHA-256: 3ef21229bae6815ef6668b23a86814b2a68560abf02dec00e875d01ba8b4254a
systemd-debuginfo-219-30.el7_3.13.i686.rpm	SHA-256: fde7d537260dae1d25f4ef655e347b939364df57f77eb142669415bca6792bdf
systemd-debuginfo-219-30.el7_3.13.i686.rpm	SHA-256: fde7d537260dae1d25f4ef655e347b939364df57f77eb142669415bca6792bdf
systemd-debuginfo-219-30.el7_3.13.x86_64.rpm	SHA-256: 6509cf3ea8e45740202bfc644d216546d91c6220fddb22f087f2b05a563f02da
systemd-debuginfo-219-30.el7_3.13.x86_64.rpm	SHA-256: 6509cf3ea8e45740202bfc644d216546d91c6220fddb22f087f2b05a563f02da
systemd-devel-219-30.el7_3.13.i686.rpm	SHA-256: d8e4d96003d236c0845eeb0f0968840e4e10f3adb4d3e465b677a44c5319051e
systemd-devel-219-30.el7_3.13.x86_64.rpm	SHA-256: 73e0cc8c49e1567dff2f5576e00175bf232fabf4a36af2bdb5ad08d299008af2
systemd-journal-gateway-219-30.el7_3.13.x86_64.rpm	SHA-256: 270581d6b0b51fa98a03a565c25cc073bbe8922d676dc6012ffec1c4a4001970
systemd-libs-219-30.el7_3.13.i686.rpm	SHA-256: 8884a52696b66c767391884a13362ba509b3400810baba12369a80711607a0d6
systemd-libs-219-30.el7_3.13.x86_64.rpm	SHA-256: 9621f89b65bd4f15fd484d87bcf3a3eb79827b835ae769d16a142ede5783e2ce
systemd-networkd-219-30.el7_3.13.x86_64.rpm	SHA-256: f156396a7a563b7b4af7ecc425dcd2b6046edd6b502c400481564475bae4578e
systemd-python-219-30.el7_3.13.x86_64.rpm	SHA-256: 4074cc5f8a693691a8d706facb5da83a1bf76fb76b0f23ae48893c15c1d8c09f
systemd-resolved-219-30.el7_3.13.i686.rpm	SHA-256: aacd69c87e57215e0cc55c4945665394dcade086821b1b6408b6b60eb3752d31
systemd-resolved-219-30.el7_3.13.x86_64.rpm	SHA-256: e5e03c1e45a68fac6c5d2fa1c94cdc535e90b8e843a57cd704c84bd56136792c
systemd-sysv-219-30.el7_3.13.x86_64.rpm	SHA-256: 9597356f7bd8ce6a172872e0b659640c33d228c2c6bcff5cbb1ea48eb8d83752

Red Hat Enterprise Linux Server - TUS 7.3

SRPM
systemd-219-30.el7_3.13.src.rpm	SHA-256: d7f92299567d390753a29a8bbed3c476410a36985de9e6d38aef3e376ebdd5b9
x86_64
libgudev1-219-30.el7_3.13.i686.rpm	SHA-256: 315c6c765aed5379b42c43078421e6bffbcba84b660f1fa963317499b542710a
libgudev1-219-30.el7_3.13.x86_64.rpm	SHA-256: dbfa73bf1241d57406d167e224f375a3e95d3e82917765e23ebba6415cd534d2
libgudev1-devel-219-30.el7_3.13.i686.rpm	SHA-256: 68289ce2e2007e59be6f794a0a0300774783ced79509e3b173a84b09c258a1a5
libgudev1-devel-219-30.el7_3.13.x86_64.rpm	SHA-256: 37ce3c466a069845188d0d848f4f29b0772c051c192dea876c8d67507e94c6b7
systemd-219-30.el7_3.13.x86_64.rpm	SHA-256: 3ef21229bae6815ef6668b23a86814b2a68560abf02dec00e875d01ba8b4254a
systemd-debuginfo-219-30.el7_3.13.i686.rpm	SHA-256: fde7d537260dae1d25f4ef655e347b939364df57f77eb142669415bca6792bdf
systemd-debuginfo-219-30.el7_3.13.i686.rpm	SHA-256: fde7d537260dae1d25f4ef655e347b939364df57f77eb142669415bca6792bdf
systemd-debuginfo-219-30.el7_3.13.x86_64.rpm	SHA-256: 6509cf3ea8e45740202bfc644d216546d91c6220fddb22f087f2b05a563f02da
systemd-debuginfo-219-30.el7_3.13.x86_64.rpm	SHA-256: 6509cf3ea8e45740202bfc644d216546d91c6220fddb22f087f2b05a563f02da
systemd-devel-219-30.el7_3.13.i686.rpm	SHA-256: d8e4d96003d236c0845eeb0f0968840e4e10f3adb4d3e465b677a44c5319051e
systemd-devel-219-30.el7_3.13.x86_64.rpm	SHA-256: 73e0cc8c49e1567dff2f5576e00175bf232fabf4a36af2bdb5ad08d299008af2
systemd-journal-gateway-219-30.el7_3.13.x86_64.rpm	SHA-256: 270581d6b0b51fa98a03a565c25cc073bbe8922d676dc6012ffec1c4a4001970
systemd-libs-219-30.el7_3.13.i686.rpm	SHA-256: 8884a52696b66c767391884a13362ba509b3400810baba12369a80711607a0d6
systemd-libs-219-30.el7_3.13.x86_64.rpm	SHA-256: 9621f89b65bd4f15fd484d87bcf3a3eb79827b835ae769d16a142ede5783e2ce
systemd-networkd-219-30.el7_3.13.x86_64.rpm	SHA-256: f156396a7a563b7b4af7ecc425dcd2b6046edd6b502c400481564475bae4578e
systemd-python-219-30.el7_3.13.x86_64.rpm	SHA-256: 4074cc5f8a693691a8d706facb5da83a1bf76fb76b0f23ae48893c15c1d8c09f
systemd-resolved-219-30.el7_3.13.i686.rpm	SHA-256: aacd69c87e57215e0cc55c4945665394dcade086821b1b6408b6b60eb3752d31
systemd-resolved-219-30.el7_3.13.x86_64.rpm	SHA-256: e5e03c1e45a68fac6c5d2fa1c94cdc535e90b8e843a57cd704c84bd56136792c
systemd-sysv-219-30.el7_3.13.x86_64.rpm	SHA-256: 9597356f7bd8ce6a172872e0b659640c33d228c2c6bcff5cbb1ea48eb8d83752

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 7.3

SRPM
systemd-219-30.el7_3.13.src.rpm	SHA-256: d7f92299567d390753a29a8bbed3c476410a36985de9e6d38aef3e376ebdd5b9
ppc64le
libgudev1-219-30.el7_3.13.ppc64le.rpm	SHA-256: ab50f13acc21467183a7ea8f159a3bd94449e779e5b4a19e561cf7894eb2ebd8
libgudev1-devel-219-30.el7_3.13.ppc64le.rpm	SHA-256: d586a78420b9c888eb925af7fdb9e65011079c93b5c55badb335b31e2f0eb3ee
systemd-219-30.el7_3.13.ppc64le.rpm	SHA-256: 1b98186732e315ce012cfd594cc7342b41b12db2fb916845b4fecd9e95ac406c
systemd-debuginfo-219-30.el7_3.13.ppc64le.rpm	SHA-256: b0e3fc33464ea28d328a5c2ee0b1e016950d418de2ff5adbd705cd8b092ab234
systemd-debuginfo-219-30.el7_3.13.ppc64le.rpm	SHA-256: b0e3fc33464ea28d328a5c2ee0b1e016950d418de2ff5adbd705cd8b092ab234
systemd-devel-219-30.el7_3.13.ppc64le.rpm	SHA-256: 9e3bdb36ab4be30063c29120d30fd5f05e7e2e872c5ed8d069c1ff4d5b7d775b
systemd-journal-gateway-219-30.el7_3.13.ppc64le.rpm	SHA-256: 6956cff2836f4851bf7c5c81f5381badc272bc2c6d00205c3772f01b64ec14b4
systemd-libs-219-30.el7_3.13.ppc64le.rpm	SHA-256: 5337d47907819510a3564ef977458c98a9234e82c54a79a94bac789193d0b6e8
systemd-networkd-219-30.el7_3.13.ppc64le.rpm	SHA-256: 013bebac88442473e3bafa6bfa0af189227a6a439c0072e9704b46eebe816405
systemd-python-219-30.el7_3.13.ppc64le.rpm	SHA-256: 0605057245b8203dd4de9200f9962bfc62d13a8f6f90518f5773d6ccd9d0d018
systemd-resolved-219-30.el7_3.13.ppc64le.rpm	SHA-256: 9cef6ec8717acfe40374b5634fd6601b73dfd172f0ed931b73e4ab0317df4b8e
systemd-sysv-219-30.el7_3.13.ppc64le.rpm	SHA-256: e6f70db40f42dc58057ce2c74b70fa76a85fa414c7fd7dd96ffc0d6d71366849

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.3

SRPM
systemd-219-30.el7_3.13.src.rpm	SHA-256: d7f92299567d390753a29a8bbed3c476410a36985de9e6d38aef3e376ebdd5b9
x86_64
libgudev1-219-30.el7_3.13.i686.rpm	SHA-256: 315c6c765aed5379b42c43078421e6bffbcba84b660f1fa963317499b542710a
libgudev1-219-30.el7_3.13.x86_64.rpm	SHA-256: dbfa73bf1241d57406d167e224f375a3e95d3e82917765e23ebba6415cd534d2
libgudev1-devel-219-30.el7_3.13.i686.rpm	SHA-256: 68289ce2e2007e59be6f794a0a0300774783ced79509e3b173a84b09c258a1a5
libgudev1-devel-219-30.el7_3.13.x86_64.rpm	SHA-256: 37ce3c466a069845188d0d848f4f29b0772c051c192dea876c8d67507e94c6b7
systemd-219-30.el7_3.13.x86_64.rpm	SHA-256: 3ef21229bae6815ef6668b23a86814b2a68560abf02dec00e875d01ba8b4254a
systemd-debuginfo-219-30.el7_3.13.i686.rpm	SHA-256: fde7d537260dae1d25f4ef655e347b939364df57f77eb142669415bca6792bdf
systemd-debuginfo-219-30.el7_3.13.i686.rpm	SHA-256: fde7d537260dae1d25f4ef655e347b939364df57f77eb142669415bca6792bdf
systemd-debuginfo-219-30.el7_3.13.x86_64.rpm	SHA-256: 6509cf3ea8e45740202bfc644d216546d91c6220fddb22f087f2b05a563f02da
systemd-debuginfo-219-30.el7_3.13.x86_64.rpm	SHA-256: 6509cf3ea8e45740202bfc644d216546d91c6220fddb22f087f2b05a563f02da
systemd-devel-219-30.el7_3.13.i686.rpm	SHA-256: d8e4d96003d236c0845eeb0f0968840e4e10f3adb4d3e465b677a44c5319051e
systemd-devel-219-30.el7_3.13.x86_64.rpm	SHA-256: 73e0cc8c49e1567dff2f5576e00175bf232fabf4a36af2bdb5ad08d299008af2
systemd-journal-gateway-219-30.el7_3.13.x86_64.rpm	SHA-256: 270581d6b0b51fa98a03a565c25cc073bbe8922d676dc6012ffec1c4a4001970
systemd-libs-219-30.el7_3.13.i686.rpm	SHA-256: 8884a52696b66c767391884a13362ba509b3400810baba12369a80711607a0d6
systemd-libs-219-30.el7_3.13.x86_64.rpm	SHA-256: 9621f89b65bd4f15fd484d87bcf3a3eb79827b835ae769d16a142ede5783e2ce
systemd-networkd-219-30.el7_3.13.x86_64.rpm	SHA-256: f156396a7a563b7b4af7ecc425dcd2b6046edd6b502c400481564475bae4578e
systemd-python-219-30.el7_3.13.x86_64.rpm	SHA-256: 4074cc5f8a693691a8d706facb5da83a1bf76fb76b0f23ae48893c15c1d8c09f
systemd-resolved-219-30.el7_3.13.i686.rpm	SHA-256: aacd69c87e57215e0cc55c4945665394dcade086821b1b6408b6b60eb3752d31
systemd-resolved-219-30.el7_3.13.x86_64.rpm	SHA-256: e5e03c1e45a68fac6c5d2fa1c94cdc535e90b8e843a57cd704c84bd56136792c
systemd-sysv-219-30.el7_3.13.x86_64.rpm	SHA-256: 9597356f7bd8ce6a172872e0b659640c33d228c2c6bcff5cbb1ea48eb8d83752

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation