Debian Package Tracker

general

source: systemd (main)
version: 241-2
maintainer: Debian systemd Maintainers (archive) [DMD]
uploaders: Martin Pitt [DMD] – Felipe Sateler [DMD] – Marco d'Itri [DMD] – Michael Biebl [DMD] – Sjoerd Simons [DMD]
std-ver: 4.3.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 215-17+deb8u7
old-sec: 215-17+deb8u11
old-bpo: 230-7~bpo8+2
stable: 232-25+deb9u8
stable-sec: 232-25+deb9u9
stable-bpo: 241-1~bpo9+1
stable-p-u: 232-25+deb9u9
testing: 241-1
unstable: 241-2

versioned links

215-17+deb8u7: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
215-17+deb8u11: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
230-7~bpo8+2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
232-25+deb9u8: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
232-25+deb9u9: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
241-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
241-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
241-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libnss-myhostname
libnss-mymachines
libnss-resolve
libnss-systemd
libpam-systemd
libsystemd-dev
libsystemd0
libudev-dev
libudev1
libudev1-udeb
systemd
systemd-container
systemd-coredump
systemd-journal-remote
systemd-sysv
systemd-tests
udev
udev-udeb

action needed

11 bugs tagged help in the BTS normal

The BTS contains 11 bugs tagged help, please consider helping the maintainer in dealing with them.

Created: 2019-03-21 Last update: 2019-03-25 11:40

6 bugs tagged patch in the BTS normal

The BTS contains patches fixing 6 bugs, consider including or untagging them.

Created: 2018-10-01 Last update: 2019-03-25 11:40

Depends on packages which need a new maintainer normal

The packages that systemd depends on which need a new maintainer are:

lsb (#924519)
- Depends: lsb-base
docbook-xml (#802368)
- Build-Depends: docbook-xml
docbook-xsl (#802370)
- Build-Depends: docbook-xsl

Created: 2017-12-02 Last update: 2019-03-25 10:13

2 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit cdd220dd3ef632c76406d02366733713235dcfa2
Author: Michael Biebl <biebl@debian.org>
Date:   Wed Mar 20 23:39:12 2019 +0100

    Properly remove duplicate directories from systemd package
    
    When removing duplicate directories from the systemd package, sort the
    list of directories in reverse order so we properly delete nested
    directories.
    
    Running debdiff shows the following result:
    
    Files in first .deb but not in second
    -------------------------------------
    drwxr-xr-x  root/root   /etc/udev/
    drwxr-xr-x  root/root   /usr/lib/systemd/tests/
    drwxr-xr-x  root/root   /usr/lib/systemd/tests/testdata/
    
    Those empty directories clearly do not belong into systemd package.

commit 8d292a0afd3abaa3e393ee731cb346a61dfa2bf2
Author: Michael Biebl <biebl@debian.org>
Date:   Wed Mar 20 23:52:16 2019 +0100

    Drop systemd-shim alternative from libpam-systemd
    
    A fixed systemd-shim package which works with newer versions of systemd
    is unlikely to happen given that the systemd-shim package has been
    removed from the archive. Drop the alternative dependency from
    libpam-systemd accordingly.

Created: 2019-03-21 Last update: 2019-03-25 09:37

2 ignored security issues in jessie low

There are 2 open security issues in jessie.

2 issues skipped by the security teams:

CVE-2018-16888: It was discovered systemd does not correctly check the content of PIDFile files before using it to kill processes. When a service is run from an unprivileged user (e.g. User field set in the service file), a local attacker who is able to write to the PIDFile of the mentioned service may use this flaw to trick systemd into killing other services and/or privileged processes. Versions before v237 are vulnerable.
CVE-2018-6954: systemd-tmpfiles in systemd through 237 mishandles symlinks present in non-terminal path components, which allows local users to obtain ownership of arbitrary files via vectors involving creation of a directory and a file under that directory, and later replacing that directory with a symlink. This occurs even if the fs.protected_symlinks sysctl is turned on.

Please fix them.

Created: 2018-01-17 Last update: 2019-03-23 04:11

4 ignored security issues in stretch low

There are 4 open security issues in stretch.

4 issues skipped by the security teams:

CVE-2018-16888: It was discovered systemd does not correctly check the content of PIDFile files before using it to kill processes. When a service is run from an unprivileged user (e.g. User field set in the service file), a local attacker who is able to write to the PIDFile of the mentioned service may use this flaw to trick systemd into killing other services and/or privileged processes. Versions before v237 are vulnerable.
CVE-2018-6954: systemd-tmpfiles in systemd through 237 mishandles symlinks present in non-terminal path components, which allows local users to obtain ownership of arbitrary files via vectors involving creation of a directory and a file under that directory, and later replacing that directory with a symlink. This occurs even if the fs.protected_symlinks sysctl is turned on.
CVE-2018-1049: In systemd prior to 234 a race condition exists between .mount and .automount units such that automount requests from kernel may not be serviced by systemd resulting in kernel holding the mountpoint and any processes that try to use said mount will hang. A race condition like this may lead to denial of service, until mount points are unmounted.
CVE-2018-15686: A vulnerability in unit_deserialize of systemd allows an attacker to supply arbitrary state across systemd re-execution via NotifyAccess. This can be used to improperly influence systemd execution and possibly lead to root privilege escalation. Affected releases are systemd versions up to and including 239.

Please fix them.

Created: 2017-10-27 Last update: 2019-03-23 04:11

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2017-10-26 Last update: 2017-10-26 07:23

testing migrations

This package is part of the ongoing testing transition known as auto-shim. Please avoid uploads unrelated to this transition, they would likely delay it and require supplementary work from the release managers. On the other hand, if your package has problems preventing it to migrate to testing, please fix them as soon as possible. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
excuses:
- Too young, only 9 of 10 days old
- Piuparts tested OK - https://piuparts.debian.org/sid/source/s/systemd.html
- Not touching package due to block request by freeze (please contact debian-release if update is needed)
- Not considered

news

[rss feed]

[2019-03-15] Accepted systemd 241-2 (source) into unstable (Michael Biebl)
[2019-03-13] Accepted systemd 215-17+deb8u11 (source amd64) into oldstable (Markus Koschany)
[2019-03-06] Accepted systemd 241-1~bpo9+1 (source) into stretch-backports (Michael Biebl)
[2019-03-06] systemd 241-1 MIGRATED to testing (Debian testing watch)
[2019-02-21] Accepted systemd 241-1 (source) into unstable (Felipe Sateler)
[2019-02-21] systemd 240-6 MIGRATED to testing (Debian testing watch)
[2019-02-19] Accepted systemd 215-17+deb8u10 (source amd64) into oldstable (Emilio Pozuelo Monfort)
[2019-02-18] Accepted systemd 232-25+deb9u9 (source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2019-02-18] Accepted systemd 232-25+deb9u9 (source) into stable->embargoed, stable (Salvatore Bonaccorso)
[2019-02-18] Accepted systemd 240-6 (source) into unstable (Martin Pitt)
[2019-02-06] systemd 240-5 MIGRATED to testing (Debian testing watch)
[2019-01-29] Accepted systemd 232-25+deb9u8 (source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2019-01-29] Accepted systemd 232-25+deb9u7 (source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2019-01-28] Accepted systemd 240-5 (source) into unstable (Martin Pitt)
[2019-01-23] Accepted systemd 215-17+deb8u9 (source amd64) into oldstable (Antoine Beaupré)
[2019-01-18] systemd 240-4 MIGRATED to testing (Debian testing watch)
[2019-01-15] Accepted systemd 232-25+deb9u8 (source) into stable->embargoed, stable (Salvatore Bonaccorso)
[2019-01-13] Accepted systemd 232-25+deb9u7 (source) into stable->embargoed, stable (Salvatore Bonaccorso)
[2019-01-12] Accepted systemd 240-4 (source) into unstable (Michael Biebl)
[2019-01-09] Accepted systemd 240-3 (source) into unstable (Michael Biebl)
[2019-01-01] systemd 240-2 MIGRATED to testing (Debian testing watch)
[2018-12-27] Accepted systemd 240-2 (source) into unstable (Michael Biebl)
[2018-12-22] Accepted systemd 240-1 (source) into unstable (Michael Biebl)
[2018-12-17] systemd 239-15 MIGRATED to testing (Debian testing watch)
[2018-12-07] Accepted systemd 239-15 (source) into unstable (Felipe Sateler)
[2018-12-02] Accepted systemd 239-14 (source) into unstable (Michael Biebl)
[2018-11-23] systemd 239-13 MIGRATED to testing (Debian testing watch)
[2018-11-21] systemd 239-12 MIGRATED to testing (Debian testing watch)
[2018-11-20] Accepted systemd 239-13 (source) into unstable (Michael Biebl)
[2018-11-19] Accepted systemd 215-17+deb8u8 (source amd64) into oldstable (Antoine Beaupré)

bugs [bug history graph]

all: 164 179
RC: 0
I&N: 109 119
M&W: 52 57
F&P: 3
patch: 6
help: 11

links

homepage
buildd: logs, checks, clang, reproducibility
popcon
debci
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 240-6ubuntu2
662 bugs (13 patches)
patches for 240-6ubuntu2