openSUSE Recommended Update: Recommended update for systemd ______________________________________________________________________________ Announcement ID: openSUSE-RU-2020:0415-1 Rating: moderate References: #1139459 #1161262 #1162108 #1164717 #1165579 Affected Products: openSUSE Leap 15.1 ______________________________________________________________________________ An update that solves one vulnerability and has four fixes is now available. Description: This update for systemd fixes the following issues: - manager: fix job mode when signalled to shutdown etc (bsc#1161262) - remove fallback for user/exit.target - dbus method Manager.Exit() does not start exit.target - do not install rescue.target for alt-↑ - %j/%J unit specifiers Added support for I/O scheduler selection with blk-mq (bsc#1165579, bsc#1164717). Added the udev 60-ssd-scheduler.rules: - This rules file which select the default IO scheduler for SSDs is being moved out from the git repo since this is not related to systemd or udev at all and is maintained by the kernel team. - core: coldplug possible nop_job (bsc#1139459) - Revert "udev: use 'deadline' IO scheduler for SSD disks" - Fix typo in function name - polkit: when authorizing via PK let's re-resolve callback/userdata instead of caching it (bsc#1162108 CVE-2020-1712) - sd-bus: introduce API for re-enqueuing incoming messages - polkit: on async pk requests, re-validate action/details This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Recommended Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2020-415=1 Package List: - openSUSE Leap 15.1 (i586 x86_64): libsystemd0-234-lp151.26.13.1 libsystemd0-debuginfo-234-lp151.26.13.1 libsystemd0-mini-234-lp151.26.13.1 libsystemd0-mini-debuginfo-234-lp151.26.13.1 libudev-devel-234-lp151.26.13.1 libudev-mini-devel-234-lp151.26.13.1 libudev-mini1-234-lp151.26.13.1 libudev-mini1-debuginfo-234-lp151.26.13.1 libudev1-234-lp151.26.13.1 libudev1-debuginfo-234-lp151.26.13.1 nss-myhostname-234-lp151.26.13.1 nss-myhostname-debuginfo-234-lp151.26.13.1 nss-mymachines-234-lp151.26.13.1 nss-mymachines-debuginfo-234-lp151.26.13.1 nss-systemd-234-lp151.26.13.1 nss-systemd-debuginfo-234-lp151.26.13.1 systemd-234-lp151.26.13.1 systemd-container-234-lp151.26.13.1 systemd-container-debuginfo-234-lp151.26.13.1 systemd-coredump-234-lp151.26.13.1 systemd-coredump-debuginfo-234-lp151.26.13.1 systemd-debuginfo-234-lp151.26.13.1 systemd-debugsource-234-lp151.26.13.1 systemd-devel-234-lp151.26.13.1 systemd-logger-234-lp151.26.13.1 systemd-mini-234-lp151.26.13.1 systemd-mini-container-mini-234-lp151.26.13.1 systemd-mini-container-mini-debuginfo-234-lp151.26.13.1 systemd-mini-coredump-mini-234-lp151.26.13.1 systemd-mini-coredump-mini-debuginfo-234-lp151.26.13.1 systemd-mini-debuginfo-234-lp151.26.13.1 systemd-mini-debugsource-234-lp151.26.13.1 systemd-mini-devel-234-lp151.26.13.1 systemd-mini-sysvinit-234-lp151.26.13.1 systemd-sysvinit-234-lp151.26.13.1 udev-234-lp151.26.13.1 udev-debuginfo-234-lp151.26.13.1 udev-mini-234-lp151.26.13.1 udev-mini-debuginfo-234-lp151.26.13.1 - openSUSE Leap 15.1 (noarch): systemd-bash-completion-234-lp151.26.13.1 systemd-mini-bash-completion-234-lp151.26.13.1 - openSUSE Leap 15.1 (x86_64): libsystemd0-32bit-234-lp151.26.13.1 libsystemd0-32bit-debuginfo-234-lp151.26.13.1 libudev-devel-32bit-234-lp151.26.13.1 libudev1-32bit-234-lp151.26.13.1 libudev1-32bit-debuginfo-234-lp151.26.13.1 nss-myhostname-32bit-234-lp151.26.13.1 nss-myhostname-32bit-debuginfo-234-lp151.26.13.1 nss-mymachines-32bit-234-lp151.26.13.1 nss-mymachines-32bit-debuginfo-234-lp151.26.13.1 systemd-32bit-234-lp151.26.13.1 systemd-32bit-debuginfo-234-lp151.26.13.1 References: https://www.suse.com/security/cve/CVE-2020-1712.html https://bugzilla.suse.com/1139459 https://bugzilla.suse.com/1161262 https://bugzilla.suse.com/1162108 https://bugzilla.suse.com/1164717 https://bugzilla.suse.com/1165579