Bug 2024639 (CVE-2021-3997)

Summary: CVE-2021-3997 systemd: Uncontrolled recursion in systemd-tmpfiles when removing files
Product: [Other] Security Response Reporter: Pedro Sampaio <psampaio>
Component: vulnerabilityAssignee: Nobody <nobody>
Status: NEW --- QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: bdettelb, bmontgom, caswilli, dkuc, eparis, fedoraproject, filbranden, fjansen, flepied, jburrell, jokerman, jwong, kaycoth, lnykryn, mcascell, micjohns, msekleta, nstielau, psegedy, ryncsn, sponnaga, ssahani, s, sthirugn, systemd-maint-list, systemd-maint, vkrizan, vkumar, vmugicag, yuwatana, zbyszek, zjedrzej
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: systemd 249.8, systemd 250.2 Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in systemd. An uncontrolled recursion in systemd-tmpfiles may lead to a denial of service at boot time when too many nested directories are created in /tmp.
 Story Points: ---
Clone Of: Environment:
Last Closed: Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2032290, 2032291, 2039383    
Bug Blocks: 2024641    

Description Pedro Sampaio 2021-11-18 14:55:35 UTC 
A flaw was found in systemd. An uncontrolled recursion in systemd-tmpfiles may lead to denial of service at boot time.
Comment 19 Mauro Matteo Cascella 2022-01-10 20:19:36 UTC 
Upstream commit:
https://github.com/systemd/systemd/commit/5b1cf7a9be37e20133c0208005274ce4a5b5c6a1
Comment 20 Mauro Matteo Cascella 2022-01-11 09:54:35 UTC 
oss-security announcement by Qualys: https://www.openwall.com/lists/oss-security/2022/01/10/2.
Comment 21 Mauro Matteo Cascella 2022-01-11 16:12:18 UTC 
Created systemd tracking bugs for this issue:

Affects: fedora-all [bug 2039383]