Re: systemd CVE-2016-7796
Brian May <bam@debian.org> writes:
> Ben Hutchings <ben@decadent.org.uk> writes:
>> That looks about right.
>
> I have a version available for testing:
>
> https://people.debian.org/~bam/debian/pool/main/s/systemd/
Just tested this on a wheezy VM. Using
NOTIFY_SOCKET=/run/systemd/notify systemd-notify ""
Without the patch:
Oct 13 07:58:00 debian systemd[1]: Failed to run mainloop: Input/output error
Oct 13 07:58:00 debian systemd-cgroups[1890]: Failed to get D-Bus connection: Failed to connect to socket /org/freedesktop/systemd1/private: Connection refused
Oct 13 08:00:23 debian systemd-logind[689]: Removed session c2.
Oct 13 08:00:27 debian [1920]: Failed to get D-Bus connection: Failed to connect to socket /org/freedesktop/systemd1/private: Connection refused
[ at this point no systemctl operations work ]
After the patch:
Oct 13 08:16:13 debian systemd[1]: Cannot find unit for notify message of PID 2944.
[ everything still works ]
Will upload this afternoon or tomorrow unless any objections.
--
Brian May <bam@debian.org>
Reply to: