[ubuntu/kinetic-security] systemd 251.4-1ubuntu7.1 (Accepted)

Nishit Majithia nishit.majithia at canonical.com
Tue Mar 7 06:41:38 UTC 2023


systemd (251.4-1ubuntu7.1) kinetic-security; urgency=medium

  * SECURITY UPDATE: information leak vulnerability in systemd-coredump
    - debian/patches/CVE-2022-4415.patch: do not allow user to access
      coredumps with changed uid/gid/capabilities
    - CVE-2022-4415
  * SECURITY UPDATE: DoS vulnerability in systemd-coredump
    - debian/patches/backport-for-CVE-2022-45873.patch: allow
      json_variant_dump() to return an error
    - debian/patches/CVE-2022-45873.patch: avoid deadlock when passing
      processed backtrace data
    - CVE-2022-45873

Date: 2023-03-03 04:43:09.064987+00:00
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
https://launchpad.net/ubuntu/+source/systemd/251.4-1ubuntu7.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the kinetic-changes mailing list