Security update for systemd

Announcement ID:	SUSE-SU-2020:0335-1
Rating:	important
References:	bsc#1084671 bsc#1092920 bsc#1106383 bsc#1133495 bsc#1151377 bsc#1154256 bsc#1155207 bsc#1155574 bsc#1156213 bsc#1156482 bsc#1158485 bsc#1159814 bsc#1161436 bsc#1162108 jsc#SLE-7683 jsc#SLE-7689
Cross-References:	CVE-2019-20386 CVE-2020-1712
CVSS scores:	CVE-2019-20386 ( SUSE ): 2.4 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2019-20386 ( NVD ): 2.4 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-1712 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2020-1712 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products:	Basesystem Module 15-SP1 Basesystem Module 15 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise Desktop 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 LTSS 15 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Real Time 15 SP1 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 LTSS 15 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server 15 SP1 Business Critical Linux 15-SP1 SUSE Linux Enterprise Server ESPOS 15 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Manager Proxy 4.0 SUSE Manager Retail Branch Server 4.0 SUSE Manager Server 4.0

An update that solves two vulnerabilities, contains two features and has 12 security fixes can now be installed.

Description:

This update for systemd fixes the following issues:

• CVE-2020-1712 (bsc#bsc#1162108) Fix a heap use-after-free vulnerability, when asynchronous Polkit queries were performed while handling Dbus messages. A local unprivileged attacker could have abused this flaw to crash systemd services or potentially execute code and elevate their privileges, by sending specially crafted Dbus messages.

• Use suse.pool.ntp.org server pool on SLE distros (jsc#SLE-7683)

• libblkid: open device in nonblock mode. (bsc#1084671)

• udev/cdrom_id: Do not open CD-rom in exclusive mode. (bsc#1154256)
• bus_open leak sd_event_source when udevadm trigger。 (bsc#1161436 CVE-2019-20386)
• fileio: introduce read_full_virtual_file() for reading virtual files in sysfs, procfs (bsc#1133495 bsc#1159814)
• fileio: initialize errno to zero before we do fread()
• fileio: try to read one byte too much in read_full_stream()
• logind: consider "greeter" sessions suitable as "display" sessions of a user (bsc#1158485)

• logind: never elect a session that is stopping as display

• journal: include kmsg lines from the systemd process which exec()d us (#8078)

• udevd: don't use monitor after manager_exit()
• udevd: capitalize log messages in on_sigchld()
• udevd: merge conditions to decrease indentation
• Revert "udevd: fix crash when workers time out after exit is signal caught"
• core: fragments of masked units ought not be considered for NeedDaemonReload (#7060) (bsc#1156482)
• udevd: fix crash when workers time out after exit is signal caught

• udevd: wait for workers to finish when exiting (bsc#1106383)

• Improve bash completion support (bsc#1155207)

• shell-completion: systemctl: do not list template units in {re,}start
• shell-completion: systemctl: pass current word to all list_unit*
• bash-completion: systemctl: pass current partial unit to list-unit* (bsc#1155207)
• bash-completion: systemctl: use systemctl --no-pager
• bash-completion: also suggest template unit files
• bash-completion: systemctl: add missing options and verbs

• bash-completion: use the first argument instead of the global variable (#6457)

• networkd: VXLan Make group and remote variable separate (bsc#1156213)

• networkd: vxlan require Remote= to be a non multicast address (#8117) (bsc#1156213)
• fs-util: let's avoid unnecessary strerror()
• fs-util: introduce inotify_add_watch_and_warn() helper
• ask-password: improve log message when inotify limit is reached (bsc#1155574)
• shared/install: failing with -ELOOP can be due to the use of an alias in install_error() (bsc#1151377)

• man: alias names can't be used with enable command (bsc#1151377)

• Add boot option to not use swap at system start (jsc#SLE-7689)

• Allow YaST to select Iranian (Persian, Farsi) keyboard layout (bsc#1092920)

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• Basesystem Module 15
  zypper in -t patch SUSE-SLE-Module-Basesystem-15-2020-335=1
• Basesystem Module 15-SP1
  zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2020-335=1
• SUSE Linux Enterprise Server ESPOS 15
  zypper in -t patch SUSE-SLE-Product-HPC-15-2020-335=1
• SUSE Linux Enterprise High Performance Computing 15 LTSS 15
  zypper in -t patch SUSE-SLE-Product-HPC-15-2020-335=1
• SUSE Linux Enterprise Server 15 LTSS 15
  zypper in -t patch SUSE-SLE-Product-SLES-15-2020-335=1
• SUSE Linux Enterprise Server for SAP Applications 15
  zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2020-335=1

Package List:

• Basesystem Module 15 (aarch64 ppc64le s390x x86_64)
  • systemd-234-24.39.1
  • systemd-container-234-24.39.1
  • systemd-sysvinit-234-24.39.1
  • udev-234-24.39.1
  • libudev1-debuginfo-234-24.39.1
  • libudev-devel-234-24.39.1
  • udev-debuginfo-234-24.39.1
  • libsystemd0-234-24.39.1
  • systemd-debuginfo-234-24.39.1
  • systemd-coredump-debuginfo-234-24.39.1
  • systemd-devel-234-24.39.1
  • systemd-coredump-234-24.39.1
  • libudev1-234-24.39.1
  • systemd-container-debuginfo-234-24.39.1
  • systemd-debugsource-234-24.39.1
  • libsystemd0-debuginfo-234-24.39.1
• Basesystem Module 15 (noarch)
  • systemd-bash-completion-234-24.39.1
• Basesystem Module 15 (x86_64)
  • libudev1-32bit-debuginfo-234-24.39.1
  • systemd-32bit-234-24.39.1
  • systemd-32bit-debuginfo-234-24.39.1
  • libsystemd0-32bit-debuginfo-234-24.39.1
  • libudev1-32bit-234-24.39.1
  • libsystemd0-32bit-234-24.39.1
• Basesystem Module 15-SP1 (aarch64 ppc64le s390x x86_64)
  • systemd-234-24.39.1
  • systemd-container-234-24.39.1
  • systemd-sysvinit-234-24.39.1
  • udev-234-24.39.1
  • libudev1-debuginfo-234-24.39.1
  • libudev-devel-234-24.39.1
  • udev-debuginfo-234-24.39.1
  • libsystemd0-234-24.39.1
  • systemd-debuginfo-234-24.39.1
  • systemd-coredump-debuginfo-234-24.39.1
  • systemd-devel-234-24.39.1
  • systemd-coredump-234-24.39.1
  • libudev1-234-24.39.1
  • systemd-container-debuginfo-234-24.39.1
  • systemd-debugsource-234-24.39.1
  • libsystemd0-debuginfo-234-24.39.1
• Basesystem Module 15-SP1 (noarch)
  • systemd-bash-completion-234-24.39.1
• Basesystem Module 15-SP1 (x86_64)
  • libudev1-32bit-debuginfo-234-24.39.1
  • systemd-32bit-234-24.39.1
  • systemd-32bit-debuginfo-234-24.39.1
  • libsystemd0-32bit-debuginfo-234-24.39.1
  • libudev1-32bit-234-24.39.1
  • libsystemd0-32bit-234-24.39.1
• SUSE Linux Enterprise Server ESPOS 15 (aarch64 x86_64)
  • systemd-234-24.39.1
  • systemd-container-234-24.39.1
  • systemd-sysvinit-234-24.39.1
  • udev-234-24.39.1
  • libudev1-debuginfo-234-24.39.1
  • libudev-devel-234-24.39.1
  • udev-debuginfo-234-24.39.1
  • libsystemd0-234-24.39.1
  • systemd-debuginfo-234-24.39.1
  • systemd-coredump-debuginfo-234-24.39.1
  • systemd-devel-234-24.39.1
  • systemd-coredump-234-24.39.1
  • libudev1-234-24.39.1
  • systemd-container-debuginfo-234-24.39.1
  • systemd-debugsource-234-24.39.1
  • libsystemd0-debuginfo-234-24.39.1
• SUSE Linux Enterprise Server ESPOS 15 (noarch)
  • systemd-bash-completion-234-24.39.1
• SUSE Linux Enterprise Server ESPOS 15 (x86_64)
  • libudev1-32bit-debuginfo-234-24.39.1
  • systemd-32bit-234-24.39.1
  • systemd-32bit-debuginfo-234-24.39.1
  • libsystemd0-32bit-debuginfo-234-24.39.1
  • libudev1-32bit-234-24.39.1
  • libsystemd0-32bit-234-24.39.1
• SUSE Linux Enterprise High Performance Computing 15 LTSS 15 (aarch64 x86_64)
  • systemd-234-24.39.1
  • systemd-container-234-24.39.1
  • systemd-sysvinit-234-24.39.1
  • udev-234-24.39.1
  • libudev1-debuginfo-234-24.39.1
  • libudev-devel-234-24.39.1
  • udev-debuginfo-234-24.39.1
  • libsystemd0-234-24.39.1
  • systemd-debuginfo-234-24.39.1
  • systemd-coredump-debuginfo-234-24.39.1
  • systemd-devel-234-24.39.1
  • systemd-coredump-234-24.39.1
  • libudev1-234-24.39.1
  • systemd-container-debuginfo-234-24.39.1
  • systemd-debugsource-234-24.39.1
  • libsystemd0-debuginfo-234-24.39.1
• SUSE Linux Enterprise High Performance Computing 15 LTSS 15 (noarch)
  • systemd-bash-completion-234-24.39.1
• SUSE Linux Enterprise High Performance Computing 15 LTSS 15 (x86_64)
  • libudev1-32bit-debuginfo-234-24.39.1
  • systemd-32bit-234-24.39.1
  • systemd-32bit-debuginfo-234-24.39.1
  • libsystemd0-32bit-debuginfo-234-24.39.1
  • libudev1-32bit-234-24.39.1
  • libsystemd0-32bit-234-24.39.1
• SUSE Linux Enterprise Server 15 LTSS 15 (aarch64 ppc64le s390x x86_64)
  • systemd-234-24.39.1
  • systemd-container-234-24.39.1
  • systemd-sysvinit-234-24.39.1
  • udev-234-24.39.1
  • libudev1-debuginfo-234-24.39.1
  • libudev-devel-234-24.39.1
  • udev-debuginfo-234-24.39.1
  • libsystemd0-234-24.39.1
  • systemd-debuginfo-234-24.39.1
  • systemd-coredump-debuginfo-234-24.39.1
  • systemd-devel-234-24.39.1
  • systemd-coredump-234-24.39.1
  • libudev1-234-24.39.1
  • systemd-container-debuginfo-234-24.39.1
  • systemd-debugsource-234-24.39.1
  • libsystemd0-debuginfo-234-24.39.1
• SUSE Linux Enterprise Server 15 LTSS 15 (noarch)
  • systemd-bash-completion-234-24.39.1
• SUSE Linux Enterprise Server 15 LTSS 15 (x86_64)
  • libudev1-32bit-debuginfo-234-24.39.1
  • systemd-32bit-234-24.39.1
  • systemd-32bit-debuginfo-234-24.39.1
  • libsystemd0-32bit-debuginfo-234-24.39.1
  • libudev1-32bit-234-24.39.1
  • libsystemd0-32bit-234-24.39.1
• SUSE Linux Enterprise Server for SAP Applications 15 (ppc64le x86_64)
  • systemd-234-24.39.1
  • systemd-container-234-24.39.1
  • systemd-sysvinit-234-24.39.1
  • udev-234-24.39.1
  • libudev1-debuginfo-234-24.39.1
  • libudev-devel-234-24.39.1
  • udev-debuginfo-234-24.39.1
  • libsystemd0-234-24.39.1
  • systemd-debuginfo-234-24.39.1
  • systemd-coredump-debuginfo-234-24.39.1
  • systemd-devel-234-24.39.1
  • systemd-coredump-234-24.39.1
  • libudev1-234-24.39.1
  • systemd-container-debuginfo-234-24.39.1
  • systemd-debugsource-234-24.39.1
  • libsystemd0-debuginfo-234-24.39.1
• SUSE Linux Enterprise Server for SAP Applications 15 (noarch)
  • systemd-bash-completion-234-24.39.1
• SUSE Linux Enterprise Server for SAP Applications 15 (x86_64)
  • libudev1-32bit-debuginfo-234-24.39.1
  • systemd-32bit-234-24.39.1
  • systemd-32bit-debuginfo-234-24.39.1
  • libsystemd0-32bit-debuginfo-234-24.39.1
  • libudev1-32bit-234-24.39.1
  • libsystemd0-32bit-234-24.39.1

References:

• https://www.suse.com/security/cve/CVE-2019-20386.html
• https://www.suse.com/security/cve/CVE-2020-1712.html
• https://bugzilla.suse.com/show_bug.cgi?id=1084671
• https://bugzilla.suse.com/show_bug.cgi?id=1092920
• https://bugzilla.suse.com/show_bug.cgi?id=1106383
• https://bugzilla.suse.com/show_bug.cgi?id=1133495
• https://bugzilla.suse.com/show_bug.cgi?id=1151377
• https://bugzilla.suse.com/show_bug.cgi?id=1154256
• https://bugzilla.suse.com/show_bug.cgi?id=1155207
• https://bugzilla.suse.com/show_bug.cgi?id=1155574
• https://bugzilla.suse.com/show_bug.cgi?id=1156213
• https://bugzilla.suse.com/show_bug.cgi?id=1156482
• https://bugzilla.suse.com/show_bug.cgi?id=1158485
• https://bugzilla.suse.com/show_bug.cgi?id=1159814
• https://bugzilla.suse.com/show_bug.cgi?id=1161436
• https://bugzilla.suse.com/show_bug.cgi?id=1162108
• https://jira.suse.com/browse/SLE-7683
• https://jira.suse.com/browse/SLE-7689