USN-5583-2: systemd regression

Releases

• Ubuntu 18.04 ESM

Packages

• systemd - system and service manager

Details

USN-5583-1 fixed vulnerabilities in systemd. Unfortunately this caused a
regression by introducing networking problems for some users. This update fixes
the problem.

We apologize for the inconvenience.

Original advisory details:

It was discovered that systemd incorrectly handled certain DNS requests,
which leads to user-after-free vulnerability. An attacker could possibly use
this issue to cause a crash or execute arbitrary code. (CVE-2022-2526)

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 18.04

• systemd - 237-3ubuntu10.56

In general, a standard system update will make all the necessary changes.

References

• CVE-2022-2526
• https://launchpad.net/bugs/1988119

Related notices

• USN-5583-1: libnss-myhostname, systemd, systemd-journal-remote, udev, systemd-sysv, libsystemd0, libsystemd-dev, libudev1, libudev-dev, libnss-systemd, libpam-systemd, systemd-tests, systemd-container, systemd-coredump, libnss-mymachines, libnss-resolve