Security update for systemd SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2022:0539-1 Final 1 1 2022-02-21T12:48:03Z current 2022-02-21T12:48:03Z 2022-02-21T12:48:03Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for systemd This update for systemd fixes the following issues: - CVE-2021-3997: Fixed an uncontrolled recursion in systemd's systemd-tmpfiles (bsc#1194178). The following non-security bugs were fixed: - udev/net_id: don't generate slot based names if multiple devices might claim the same slot (bsc#1192637) - localectl: don't omit keymaps files that are symlinks (bsc#1191826) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-SLE-15.3-2022-539,openSUSE-SLE-15.4-2022-539 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VLDAI5QR7ALPYFJ4GNL2TIX7IMLOLXUU/ E-Mail link for openSUSE-SU-2022:0539-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1191826 SUSE Bug 1191826 https://bugzilla.suse.com/1192637 SUSE Bug 1192637 https://bugzilla.suse.com/1194178 SUSE Bug 1194178 https://www.suse.com/security/cve/CVE-2021-3997/ SUSE CVE CVE-2021-3997 page openSUSE Leap 15.3 libsystemd0-246.16-150300.7.39.1 libsystemd0-32bit-246.16-150300.7.39.1 libudev-devel-246.16-150300.7.39.1 libudev-devel-32bit-246.16-150300.7.39.1 libudev1-246.16-150300.7.39.1 libudev1-32bit-246.16-150300.7.39.1 nss-myhostname-246.16-150300.7.39.1 nss-myhostname-32bit-246.16-150300.7.39.1 nss-mymachines-246.16-150300.7.39.1 nss-mymachines-32bit-246.16-150300.7.39.1 nss-resolve-246.16-150300.7.39.1 nss-systemd-246.16-150300.7.39.1 systemd-246.16-150300.7.39.1 systemd-32bit-246.16-150300.7.39.1 systemd-container-246.16-150300.7.39.1 systemd-coredump-246.16-150300.7.39.1 systemd-devel-246.16-150300.7.39.1 systemd-doc-246.16-150300.7.39.1 systemd-journal-remote-246.16-150300.7.39.1 systemd-lang-246.16-150300.7.39.1 systemd-logger-246.16-150300.7.39.1 systemd-network-246.16-150300.7.39.1 systemd-sysvinit-246.16-150300.7.39.1 udev-246.16-150300.7.39.1 libsystemd0-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 libsystemd0-32bit-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 libudev-devel-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 libudev-devel-32bit-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 libudev1-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 libudev1-32bit-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 nss-myhostname-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 nss-myhostname-32bit-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 nss-mymachines-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 nss-mymachines-32bit-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 nss-resolve-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 nss-systemd-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 systemd-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 systemd-32bit-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 systemd-container-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 systemd-coredump-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 systemd-devel-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 systemd-doc-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 systemd-journal-remote-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 systemd-lang-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 systemd-logger-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 systemd-network-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 systemd-sysvinit-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 udev-246.16-150300.7.39.1 as a component of openSUSE Leap 15.3 A flaw was found in systemd. An uncontrolled recursion in systemd-tmpfiles may lead to a denial of service at boot time when too many nested directories are created in /tmp. CVE-2021-3997 openSUSE Leap 15.3:libsystemd0-246.16-150300.7.39.1 openSUSE Leap 15.3:libsystemd0-32bit-246.16-150300.7.39.1 openSUSE Leap 15.3:libudev-devel-246.16-150300.7.39.1 openSUSE Leap 15.3:libudev-devel-32bit-246.16-150300.7.39.1 openSUSE Leap 15.3:libudev1-246.16-150300.7.39.1 openSUSE Leap 15.3:libudev1-32bit-246.16-150300.7.39.1 openSUSE Leap 15.3:nss-myhostname-246.16-150300.7.39.1 openSUSE Leap 15.3:nss-myhostname-32bit-246.16-150300.7.39.1 openSUSE Leap 15.3:nss-mymachines-246.16-150300.7.39.1 openSUSE Leap 15.3:nss-mymachines-32bit-246.16-150300.7.39.1 openSUSE Leap 15.3:nss-resolve-246.16-150300.7.39.1 openSUSE Leap 15.3:nss-systemd-246.16-150300.7.39.1 openSUSE Leap 15.3:systemd-246.16-150300.7.39.1 openSUSE Leap 15.3:systemd-32bit-246.16-150300.7.39.1 openSUSE Leap 15.3:systemd-container-246.16-150300.7.39.1 openSUSE Leap 15.3:systemd-coredump-246.16-150300.7.39.1 openSUSE Leap 15.3:systemd-devel-246.16-150300.7.39.1 openSUSE Leap 15.3:systemd-doc-246.16-150300.7.39.1 openSUSE Leap 15.3:systemd-journal-remote-246.16-150300.7.39.1 openSUSE Leap 15.3:systemd-lang-246.16-150300.7.39.1 openSUSE Leap 15.3:systemd-logger-246.16-150300.7.39.1 openSUSE Leap 15.3:systemd-network-246.16-150300.7.39.1 openSUSE Leap 15.3:systemd-sysvinit-246.16-150300.7.39.1 openSUSE Leap 15.3:udev-246.16-150300.7.39.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VLDAI5QR7ALPYFJ4GNL2TIX7IMLOLXUU/ https://www.suse.com/security/cve/CVE-2021-3997.html CVE-2021-3997 https://bugzilla.suse.com/1194178 SUSE Bug 1194178