libsystemd0-228-17.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10356-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libsystemd0-228-17.1 on GA media These are all security issues fixed in the libsystemd0-228-17.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10356 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2012-1174/ SUSE CVE CVE-2012-1174 page https://www.suse.com/security/cve/CVE-2013-4288/ SUSE CVE CVE-2013-4288 page https://www.suse.com/security/cve/CVE-2015-7510/ SUSE CVE CVE-2015-7510 page openSUSE Tumbleweed libsystemd0-228-17.1 libsystemd0-32bit-228-17.1 libsystemd0-mini-228-17.1 libudev-devel-228-17.1 libudev-devel-32bit-228-17.1 libudev1-228-17.1 libudev1-32bit-228-17.1 nss-myhostname-228-17.1 nss-myhostname-32bit-228-17.1 nss-mymachines-228-17.1 nss-mymachines-32bit-228-17.1 systemd-228-17.1 systemd-32bit-228-17.1 systemd-bash-completion-228-17.1 systemd-devel-228-17.1 systemd-journal-remote-228-17.1 systemd-logger-228-17.1 systemd-mini-bash-completion-228-17.1 systemd-sysvinit-228-17.1 udev-228-17.1 libsystemd0-228-17.1 as a component of openSUSE Tumbleweed libsystemd0-32bit-228-17.1 as a component of openSUSE Tumbleweed libsystemd0-mini-228-17.1 as a component of openSUSE Tumbleweed libudev-devel-228-17.1 as a component of openSUSE Tumbleweed libudev-devel-32bit-228-17.1 as a component of openSUSE Tumbleweed libudev1-228-17.1 as a component of openSUSE Tumbleweed libudev1-32bit-228-17.1 as a component of openSUSE Tumbleweed nss-myhostname-228-17.1 as a component of openSUSE Tumbleweed nss-myhostname-32bit-228-17.1 as a component of openSUSE Tumbleweed nss-mymachines-228-17.1 as a component of openSUSE Tumbleweed nss-mymachines-32bit-228-17.1 as a component of openSUSE Tumbleweed systemd-228-17.1 as a component of openSUSE Tumbleweed systemd-32bit-228-17.1 as a component of openSUSE Tumbleweed systemd-bash-completion-228-17.1 as a component of openSUSE Tumbleweed systemd-devel-228-17.1 as a component of openSUSE Tumbleweed systemd-journal-remote-228-17.1 as a component of openSUSE Tumbleweed systemd-logger-228-17.1 as a component of openSUSE Tumbleweed systemd-mini-bash-completion-228-17.1 as a component of openSUSE Tumbleweed systemd-sysvinit-228-17.1 as a component of openSUSE Tumbleweed udev-228-17.1 as a component of openSUSE Tumbleweed The rm_rf_children function in util.c in the systemd-logind login manager in systemd before 44, when logging out, allows local users to delete arbitrary files via a symlink attack on unspecified files, related to "particular records related with user session." CVE-2012-1174 openSUSE Tumbleweed:libsystemd0-228-17.1 openSUSE Tumbleweed:libsystemd0-32bit-228-17.1 openSUSE Tumbleweed:libsystemd0-mini-228-17.1 openSUSE Tumbleweed:libudev-devel-228-17.1 openSUSE Tumbleweed:libudev-devel-32bit-228-17.1 openSUSE Tumbleweed:libudev1-228-17.1 openSUSE Tumbleweed:libudev1-32bit-228-17.1 openSUSE Tumbleweed:nss-myhostname-228-17.1 openSUSE Tumbleweed:nss-myhostname-32bit-228-17.1 openSUSE Tumbleweed:nss-mymachines-228-17.1 openSUSE Tumbleweed:nss-mymachines-32bit-228-17.1 openSUSE Tumbleweed:systemd-228-17.1 openSUSE Tumbleweed:systemd-32bit-228-17.1 openSUSE Tumbleweed:systemd-bash-completion-228-17.1 openSUSE Tumbleweed:systemd-devel-228-17.1 openSUSE Tumbleweed:systemd-journal-remote-228-17.1 openSUSE Tumbleweed:systemd-logger-228-17.1 openSUSE Tumbleweed:systemd-mini-bash-completion-228-17.1 openSUSE Tumbleweed:systemd-sysvinit-228-17.1 openSUSE Tumbleweed:udev-228-17.1 moderate 3.3 AV:L/AC:M/Au:N/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-1174.html CVE-2012-1174 https://bugzilla.suse.com/752281 SUSE Bug 752281 Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is performed, related to (1) the polkit_unix_process_new API function, (2) the dbus API, or (3) the --process (unix-process) option for authorization to pkcheck. CVE-2013-4288 openSUSE Tumbleweed:libsystemd0-228-17.1 openSUSE Tumbleweed:libsystemd0-32bit-228-17.1 openSUSE Tumbleweed:libsystemd0-mini-228-17.1 openSUSE Tumbleweed:libudev-devel-228-17.1 openSUSE Tumbleweed:libudev-devel-32bit-228-17.1 openSUSE Tumbleweed:libudev1-228-17.1 openSUSE Tumbleweed:libudev1-32bit-228-17.1 openSUSE Tumbleweed:nss-myhostname-228-17.1 openSUSE Tumbleweed:nss-myhostname-32bit-228-17.1 openSUSE Tumbleweed:nss-mymachines-228-17.1 openSUSE Tumbleweed:nss-mymachines-32bit-228-17.1 openSUSE Tumbleweed:systemd-228-17.1 openSUSE Tumbleweed:systemd-32bit-228-17.1 openSUSE Tumbleweed:systemd-bash-completion-228-17.1 openSUSE Tumbleweed:systemd-devel-228-17.1 openSUSE Tumbleweed:systemd-journal-remote-228-17.1 openSUSE Tumbleweed:systemd-logger-228-17.1 openSUSE Tumbleweed:systemd-mini-bash-completion-228-17.1 openSUSE Tumbleweed:systemd-sysvinit-228-17.1 openSUSE Tumbleweed:udev-228-17.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-4288.html CVE-2013-4288 https://bugzilla.suse.com/1070943 SUSE Bug 1070943 https://bugzilla.suse.com/1099031 SUSE Bug 1099031 https://bugzilla.suse.com/835827 SUSE Bug 835827 https://bugzilla.suse.com/836931 SUSE Bug 836931 https://bugzilla.suse.com/836932 SUSE Bug 836932 https://bugzilla.suse.com/836937 SUSE Bug 836937 https://bugzilla.suse.com/836939 SUSE Bug 836939 https://bugzilla.suse.com/844967 SUSE Bug 844967 https://bugzilla.suse.com/852368 SUSE Bug 852368 https://bugzilla.suse.com/854144 SUSE Bug 854144 https://bugzilla.suse.com/864716 SUSE Bug 864716 Stack-based buffer overflow in the getpwnam and getgrnam functions of the NSS module nss-mymachines in systemd. CVE-2015-7510 openSUSE Tumbleweed:libsystemd0-228-17.1 openSUSE Tumbleweed:libsystemd0-32bit-228-17.1 openSUSE Tumbleweed:libsystemd0-mini-228-17.1 openSUSE Tumbleweed:libudev-devel-228-17.1 openSUSE Tumbleweed:libudev-devel-32bit-228-17.1 openSUSE Tumbleweed:libudev1-228-17.1 openSUSE Tumbleweed:libudev1-32bit-228-17.1 openSUSE Tumbleweed:nss-myhostname-228-17.1 openSUSE Tumbleweed:nss-myhostname-32bit-228-17.1 openSUSE Tumbleweed:nss-mymachines-228-17.1 openSUSE Tumbleweed:nss-mymachines-32bit-228-17.1 openSUSE Tumbleweed:systemd-228-17.1 openSUSE Tumbleweed:systemd-32bit-228-17.1 openSUSE Tumbleweed:systemd-bash-completion-228-17.1 openSUSE Tumbleweed:systemd-devel-228-17.1 openSUSE Tumbleweed:systemd-journal-remote-228-17.1 openSUSE Tumbleweed:systemd-logger-228-17.1 openSUSE Tumbleweed:systemd-mini-bash-completion-228-17.1 openSUSE Tumbleweed:systemd-sysvinit-228-17.1 openSUSE Tumbleweed:udev-228-17.1 moderate 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-7510.html CVE-2015-7510 https://bugzilla.suse.com/956712 SUSE Bug 956712