USN-5013-1: systemd vulnerabilities
20 July 2021
Several security issues were fixed in systemd.
Releases
Packages
- systemd - system and service manager
Details
It was discovered that systemd incorrectly handled certain mount paths. A
local attacker could possibly use this issue to cause systemd to crash,
resulting in a denial of service. (CVE-2021-33910)
Mitchell Frank discovered that systemd incorrectly handled DHCP FORCERENEW
packets. A remote attacker could possibly use this issue to reconfigure
servers. (CVE-2020-13529)
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 21.04
Ubuntu 20.10
Ubuntu 20.04
Ubuntu 18.04
After a standard system update you need to reboot your computer to make all
the necessary changes.
References
Related notices
- USN-5013-2: libnss-myhostname, udev-udeb, systemd-journal-remote, libsystemd-dev, libnss-resolve, libudev1, systemd-sysv, systemd-container, libudev1-udeb, systemd, systemd-coredump, udev, libnss-mymachines, libudev-dev, libpam-systemd, libsystemd0