Synopsis: Moderate: systemd security, bug fix, and enhancement update Advisory ID: SLSA-2019:2091-1 Issue Date: 2019-08-06 CVE Numbers: CVE-2018-16866 CVE-2018-16888 CVE-2018-15686 -- Security Fix(es): * systemd: line splitting via fgets() allows for state injection during daemon-reexec (CVE-2018-15686) * systemd: out-of-bounds read when parsing a crafted syslog message (CVE-2018-16866) * systemd: kills privileged process if unprivileged PIDFile was tampered (CVE-2018-16888) -- SL7 x86_64 systemd-devel-219-67.el7.i686.rpm systemd-libs-219-67.el7.x86_64.rpm systemd-devel-219-67.el7.x86_64.rpm libgudev1-devel-219-67.el7.x86_64.rpm libgudev1-devel-219-67.el7.i686.rpm libgudev1-219-67.el7.x86_64.rpm systemd-219-67.el7.x86_64.rpm libgudev1-219-67.el7.i686.rpm systemd-python-219-67.el7.x86_64.rpm systemd-sysv-219-67.el7.x86_64.rpm systemd-libs-219-67.el7.i686.rpm systemd-networkd-219-67.el7.x86_64.rpm systemd-resolved-219-67.el7.x86_64.rpm systemd-journal-gateway-219-67.el7.x86_64.rpm systemd-resolved-219-67.el7.i686.rpm systemd-debuginfo-219-67.el7.i686.rpm systemd-debuginfo-219-67.el7.x86_64.rpm - Scientific Linux Development Team