Assertion failure when PID 1 receives a zero-length message over notify socket
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
systemd |
Fix Released
|
Unknown
|
|||
systemd (Ubuntu) |
Fix Released
|
High
|
Martin Pitt | ||
Xenial |
Fix Released
|
High
|
Martin Pitt | ||
Yakkety |
Fix Released
|
High
|
Martin Pitt |
Bug Description
Environment:
Xenial 16.04.1
Amd64
Description.
Systemd fails an assertion in manager_
How to trigger the bug:
$ while true; do NOTIFY_
The following entries are written into /var/log/syslog, at this point systemd is crashed.
Sep 28 20:57:20 ubuntu systemd[1]: Started User Manager for UID 1000.
Sep 28 20:57:28 ubuntu systemd[1]: Assertion 'n > 0' failed at ../src/
Sep 28 20:57:29 ubuntu systemd[1]: Caught <ABRT>, dumped core as pid 1307.
Sep 28 20:57:29 ubuntu systemd[1]: Freezing execution.
Public bug: https:/
The original USN/security fix in https:/
NOTIFY_
Run this a few times and watch "sudo ls -l /proc/1/fd" grow.
CVE References
tags: | added: sts |
Changed in systemd (Ubuntu): | |
status: | New → Confirmed |
Changed in systemd (Ubuntu Xenial): | |
status: | New → Confirmed |
information type: | Public → Public Security |
Changed in systemd (Ubuntu Xenial): | |
importance: | Undecided → High |
Changed in systemd (Ubuntu Yakkety): | |
importance: | Undecided → High |
Changed in systemd: | |
status: | Unknown → New |
Changed in systemd (Ubuntu Yakkety): | |
status: | Confirmed → Fix Committed |
Changed in systemd: | |
status: | New → Fix Released |
Changed in systemd (Ubuntu Xenial): | |
status: | In Progress → Fix Released |
status: | Fix Released → In Progress |
CVE request: http:// www.openwall. com/lists/ oss-security/ 2016/09/ 28/9