SUSE-SU-2018:0546-1

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2017-18078
Published: 26 Feb 2018, 15:35
Last modified:04 Feb 2026, 04:19

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

26 Feb 2018, 15:35
Published
Vulnerability first disclosed
04 Feb 2026, 04:19
Last Modified
Vulnerability information updated

Description

Security update for systemd This update for systemd fixes the following issues: Security issue fixed: - CVE-2017-18078: tmpfiles: refuse to chown()/chmod() files which are hardlinked, unless protected_hardlinks sysctl is on. This could be used by local attackers to gain privileges (bsc#1077925) Non Security issues fixed: - core: use id unit when retrieving unit file state (#8038) (bsc#1075801) - cryptsetup-generator: run cryptsetup service before swap unit (#5480) - udev-rules: all values can contain escaped double quotes now (#6890) - strv: fix buffer size calculation in strv_join_quoted() - tmpfiles: change ownership of symlinks too - stdio-bridge: Correctly propagate error - stdio-bridge: remove dead code - remove bus-proxyd (bsc#1057974) - core/timer: Prevent timer looping when unit cannot start (bsc#1068588) - Make systemd-timesyncd use the openSUSE NTP servers by default Previously systemd-timesyncd used the Google Public NTP servers time{1..4}.google.com - Don't ship /usr/lib/systemd/system/tmp.mnt at all (bsc#1071224) But we still ship a copy in /var. Users who want to use tmpfs on /tmp are supposed to add a symlink in /etc/ pointing to the copy shipped in /var. To support the update path we automatically create the symlink if tmp.mount in use is located in /usr. - Enable systemd-networkd on Leap distros only (bsc#1071311)

Affected Systems

  • susesystemd&distro=SUSE Linux Enterprise Desktop 12 SP2

    < 228-150.32.1

  • susesystemd&distro=SUSE Linux Enterprise Desktop 12 SP3

    < 228-150.32.1

  • susesystemd&distro=SUSE Linux Enterprise Server 12 SP2

    < 228-150.32.1

  • susesystemd&distro=SUSE Linux Enterprise Server 12 SP3

    < 228-150.32.1

  • susesystemd&distro=SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

    < 228-150.32.1

  • susesystemd&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2

    < 228-150.32.1

  • susesystemd&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3

    < 228-150.32.1

  • susesystemd&distro=SUSE Linux Enterprise Software Development Kit 12 SP2

    < 228-150.32.1

  • susesystemd&distro=SUSE Linux Enterprise Software Development Kit 12 SP3

    < 228-150.32.1

References (8)