~halves/ubuntu/+source/systemd:lp1876600-xenial

Branch merges

Propose for merging

Ready for review for merging into ubuntu/+source/systemd:ubuntu/xenial-devel

git-ubuntu developers: Pending requested 2020-05-05

Diff: 123 lines (+101/-0)

3 files modified

debian/changelog (+7/-0)
debian/patches/lp1876600-sd-bus-deal-with-cookie-overruns.patch (+93/-0)
debian/patches/series (+1/-0)

api

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

99d6a9c... by Heitor Alves de Siqueira on 2020-05-05

Update debian/changelog

5d8f4a0... by Heitor Alves de Siqueira on 2020-05-03

LP: #1876600

083b9a8... by Dan Streetman on 2020-04-20

Import patches-unapplied version 229-4ubuntu21.28 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 91016422ce2d3c0496359e2349910da8c7d08197

New changelog entries:
  * d/t/logind: skip if nonexistent /sys/power/state (LP: #1862657)
  * d/p/lp1839290-Change-job-mode-of-manager-triggered-restarts-to-JOB.patch:
    - when restarting service after failure, replace existing queued jobs
      (LP: #1839290)
  * d/t/storage:
    - fix buggy test (LP: #1831459)
    - without scsi_debug, skip test (LP: #1847816)
  * d/p/lp1867421-70-mouse.hwdb-Set-DPI-for-MS-Classic-IntelliMouse.patch:
    - fix resolution of IntelliMouse (LP: #1867421)
  * d/p/lp1858412-journalctl-allow-running-vacuum-on-remote-journals-t.patch:
    - allow vacuuming journal 'root' dir (LP: #1858412)
  * d/p/lp1862232-network-DHCP-ignore-error-in-setting-hostname-when-i.patch:
    - do not let invalid hostname break dhcpv4 (LP: #1862232)
  * d/t/systemd-fsckd: Skip test on arm64 (LP: #1870194)
  * d/p/lp1837914-journal-do-not-trigger-assertion-when-journal_file_c.patch:
    - do not crash if NULL passted to journal destructor (LP: #1837914)
  * d/e/initramfs-tools/hooks/udev:
    - Follow symlinks when finding link files to copy into initramfs
      (LP: #1868892)

9101642... by Marc Deslauriers on 2020-02-04

Import patches-unapplied version 229-4ubuntu21.27 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 451eb0e3f0938df74d11779e31a9866075cce4bc

New changelog entries:
  * SECURITY UPDATE: incorrect PIDFile verification
    - debian/patches/CVE-2018-16888.patch: be stricter when handling PID
      files and MAINPID sd_notify() messages in man/systemd.service.xml,
      src/core/manager.c, src/core/service.c, src/core/unit.h,
      test/TEST-20-MAINPIDGAMES/Makefile,
      test/TEST-20-MAINPIDGAMES/test.sh,
      test/TEST-20-MAINPIDGAMES/testsuite.sh, test/test-functions.
    - debian/patches/CVE-2018-16888-2.patch: relax PID file symlink chain
      checks a bit in src/core/service.c.
    - CVE-2018-16888
  * SECURITY UPDATE: memory leak in button_open
    - debian/patches/CVE-2019-20386.patch: fix event in
      src/login/logind-button.c.
    - CVE-2019-20386
  * SECURITY UPDATE: heap use-after-free with async polkit queries
    - debian/patches/CVE-2020-1712-1.patch: on async pk requests,
      re-validate action/details in src/shared/bus-util.c.
    - debian/patches/CVE-2020-1712-2.patch: introduce API for re-enqueuing
      incoming messages in src/libsystemd/libsystemd.sym,
      src/libsystemd/sd-bus/sd-bus.c, src/systemd/sd-bus.h.
    - debian/patches/CVE-2020-1712-3.patch: when authorizing via PK
      re-resolve callback/userdata instead of caching it in
      src/shared/bus-util.c.
    - debian/patches/CVE-2020-1712-4.patch: fix typo in function name in
      src/libsystemd/libsystemd.sym, src/libsystemd/sd-bus/sd-bus.c,
      src/systemd/sd-bus.h, src/shared/bus-util.c.
    - debian/libsystemd0.symbols: added new symbols.
    - CVE-2020-1712

451eb0e... by Heitor Alves de Siqueira on 2019-10-07

Import patches-unapplied version 229-4ubuntu21.23 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 5013344ccfdf8057f159c39952ad00e8958f24d0

New changelog entries:
  * d/p/core-use-an-AF_UNIX-SOCK_DGRAM-socket-for-cgroup-age.patch:
    - prevent logind from leaking session files (LP: #1846787)

5013344... by Dan Streetman on 2019-04-24

Import patches-unapplied version 229-4ubuntu21.22 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 5f3bdd14a699874136e47a40a11a97b8bbdf6916

New changelog entries:
  [ Dan Streetman ]
  * d/t/systemd-fsckd, d/t/cmdline-upstart-boot:
    - skip on s390x; requires grub (LP: #1830477)
  * d/p/ask-password-prevent-buffer-overrow-when-reading-fro.patch:
    - prevent buffer overflow when reading keyring (LP: #1814373)
  [ Dimitri John Ledkov ]
  * Specify Ubuntu's Vcs-Git
  [ Balint Reczey ]
  * Append /snap/bin to default PATH.
    Snapd ships snapd-env-generator, but systemd does not not support
    environment generators. Hard-coding /snap/bin is less risky than
    backporting environment generator support and since snaps are considered
    to be first class packages on Ubuntu /snap/bin can safely added to
    the default PATH. (LP: #1771858)
  [ Ioanna Alifieraki ]
  * d/p/systemctl-Replace-check_one_unit-by-get_state_one_un.patch
    - Backport upstream PR#2768 needed for next patch
  * d/p/systemctl-load-unit-if-needed-in-systemctl-is-active.patch
    - Backport upstream PR#7997 to fix alias service reports inactive while
      aliased is active (LP: #1828892)

5f3bdd1... by Chris Coulson on 2019-03-29

Import patches-unapplied version 229-4ubuntu21.21 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 383721c2eb82cc811fece13266f5a8167e022441

New changelog entries:
  * SECURITY UDPATE: Unsafe environment usage in pam_systemd.so leads to
    incorrect Policykit authorization
    - debian/patches/CVE-2019-3842.patch: Use secure_getenv() rather than
      getenv() in pam_systemd.c
    - CVE-2019-3842

383721c... by Michael Vogt on 2019-03-25

Import patches-unapplied version 229-4ubuntu21.19 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: f9563868e937e2417cafc3338d8020f07009c827

New changelog entries:
  [ Michael Vogt ]
  * d/p/fix-race-daemon-reload-11121.patch:
    - backport systemd upstream PR#8803 and PR#11121 to fix race
      when doing systemctl and systemctl daemon-reload at the
      same time LP: #1819728
  [ Balint Reczey ]
  * d/p/virt-detect-WSL-environment-as-a-container.patch:
    - virt: detect WSL environment as a container (LP: #1816753)

f956386... by Michael Vogt on 2019-03-13

Import patches-unapplied version 229-4ubuntu21.18 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 3a318b024df96498c00dcfa0a26f78be7472fabf

New changelog entries:
  * d/p/fix-race-daemon-reload-8803.patch:
    - backport systemd upstream PR#8803 to fix race when doing
      systemctl and systemctl daemon-reload at the same time
      LP: #1819728

3a318b0... by Dan Streetman on 2019-02-28

Import patches-unapplied version 229-4ubuntu21.17 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 8ab24848a3836b66bb6323fdf70f765496d6e4cb

New changelog entries:
  [ Victor Tapia ]
  * d/p/stop-mount-error-propagation.patch:
    keep mount errors local to the failing mount point instead of blocking
    the processing of all mounts (LP: #1755863)
  [ Eric Desrochers ]
  * d/p/fix-egde-case-when-processing-proc-self-mountinfo.patch:
    Mounting any file system to a mount point in a directory
    that is bind mounted to itself will create an inactive
    mount unit. (LP: #1795764)