systemd 219-67.el7 rpm release date

Support for security such as Firewalls and securing linux
Post Reply
cloud2020
Posts: 1
Joined: 2019/08/23 14:55:13

systemd 219-67.el7 rpm release date

Post by cloud2020 » 2019/08/23 15:14:09

Hi,

current systemd rpm has "CVE-2018-15686" security issue. The fix is on version 219-67.el7. is there timeline when this rpm will be available for Centos OS?


Thanks

User avatar
TrevorH
Forum Moderator
Posts: 26525
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: systemd 219-67.el7 rpm release date

Post by TrevorH » 2019/08/23 19:02:18

It'll be part of 7.7 and will be released when that's ready.
CentOS 5 died in March 2017 - migrate NOW!
CentOS 6 goes EOL sooner rather than later, get upgrading!
Full time Geek, part time moderator. Use the FAQ Luke

WSLUser
Posts: 1
Joined: 2019/09/03 18:08:55

Re: systemd 219-67.el7 rpm release date

Post by WSLUser » 2019/09/03 18:11:13

Trevor,

This is considered a critical vulnerability by MITRE as reported by Nessus. Unless the 7.7 release is this week, this needs to be backported to 7.6 asap.

User avatar
TrevorH
Forum Moderator
Posts: 26525
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: systemd 219-67.el7 rpm release date

Post by TrevorH » 2019/09/03 22:27:43

It's not considered a critical vulnerability by Redhat. They say it is moderate. I suspect the difference may be that Redhat know that systemd-user is disabled in RHEL/CentOS so the vulnerability attack surface is considerably lower since you already have to be root to use systemd at all.

In any case, you can get the update already by enabling the CR repo - yum --enablerepo=cr update
CentOS 5 died in March 2017 - migrate NOW!
CentOS 6 goes EOL sooner rather than later, get upgrading!
Full time Geek, part time moderator. Use the FAQ Luke

Post Reply

Return to “CentOS 7 - Security Support”