Important: systemd

2019-02-16T00:44:00
ID ALAS2-2019-1164
Type amazon
Reporter Amazon
Modified 2019-02-16T00:44:00

Description

Issue Overview:

It was found that bus_process_object() in bus-objects.c allocates a buffer on the stack large enough to temporarily store the object path specified in the incoming message. A malicious unprivileged local user to send a message which results in the stack pointer moving outside of the bounds of the currently mapped stack region, jumping over the stack guard pages. A specifically crafted DBUS nessage could crash PID 1 and result in a subsequent kernel panic.(CVE-2019-6454 __)

Affected Packages:

systemd

Issue Correction:
Run yum update systemd to update your system.

New Packages:

aarch64:  
    systemd-219-57.amzn2.0.9.aarch64  
    systemd-libs-219-57.amzn2.0.9.aarch64  
    systemd-devel-219-57.amzn2.0.9.aarch64  
    systemd-sysv-219-57.amzn2.0.9.aarch64  
    systemd-python-219-57.amzn2.0.9.aarch64  
    libgudev1-219-57.amzn2.0.9.aarch64  
    libgudev1-devel-219-57.amzn2.0.9.aarch64  
    systemd-journal-gateway-219-57.amzn2.0.9.aarch64  
    systemd-networkd-219-57.amzn2.0.9.aarch64  
    systemd-resolved-219-57.amzn2.0.9.aarch64  
    systemd-debuginfo-219-57.amzn2.0.9.aarch64

i686:  
    systemd-219-57.amzn2.0.9.i686  
    systemd-libs-219-57.amzn2.0.9.i686  
    systemd-devel-219-57.amzn2.0.9.i686  
    systemd-sysv-219-57.amzn2.0.9.i686  
    systemd-python-219-57.amzn2.0.9.i686  
    libgudev1-219-57.amzn2.0.9.i686  
    libgudev1-devel-219-57.amzn2.0.9.i686  
    systemd-journal-gateway-219-57.amzn2.0.9.i686  
    systemd-networkd-219-57.amzn2.0.9.i686  
    systemd-resolved-219-57.amzn2.0.9.i686  
    systemd-debuginfo-219-57.amzn2.0.9.i686

src:  
    systemd-219-57.amzn2.0.9.src

x86_64:  
    systemd-219-57.amzn2.0.9.x86_64  
    systemd-libs-219-57.amzn2.0.9.x86_64  
    systemd-devel-219-57.amzn2.0.9.x86_64  
    systemd-sysv-219-57.amzn2.0.9.x86_64  
    systemd-python-219-57.amzn2.0.9.x86_64  
    libgudev1-219-57.amzn2.0.9.x86_64  
    libgudev1-devel-219-57.amzn2.0.9.x86_64  
    systemd-journal-gateway-219-57.amzn2.0.9.x86_64  
    systemd-networkd-219-57.amzn2.0.9.x86_64  
    systemd-resolved-219-57.amzn2.0.9.x86_64  
    systemd-debuginfo-219-57.amzn2.0.9.x86_64