Description of problem: CVE-2017-9445
systemd-233-6.fc26 has been submitted as an update to Fedora 26. https://bodhi.fedoraproject.org/updates/FEDORA-2017-956e27bdd6
systemd-231-17.fc25 has been submitted as an update to Fedora 25. https://bodhi.fedoraproject.org/updates/FEDORA-2017-29d909f5ec
systemd-229-22.fc24 has been submitted as an update to Fedora 24. https://bodhi.fedoraproject.org/updates/FEDORA-2017-72f0c1ea9c
https://github.com/systemd/systemd/pull/6214
Proposed as a Freeze Exception for 26-final by Fedora user zbyszek using the blocker tracking app because: It is a fix for a security vulnerability which would put the installed system at risk before updates are applied. It only applies when systemd-resolved is used (which is not the default), but some custom configuration do use it, and I would prefer the official image not to contain the vulnerability.
*** Bug 1465728 has been marked as a duplicate of this bug. ***
systemd-233-6.fc26 has been pushed to the Fedora 26 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2017-956e27bdd6
systemd-229-22.fc24 has been pushed to the Fedora 24 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2017-72f0c1ea9c
systemd-231-17.fc25 has been pushed to the Fedora 25 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2017-29d909f5ec
Discussed at 2017-06-29 freeze exception review meeting: https://meetbot-raw.fedoraproject.org/fedora-blocker-review/2017-06-29/f26-blocker-review.2017-06-29-16.00.html . Accepted as a freeze exception as a significant security vulnerability. Note, we will be checking to ensure the update *only* fixes the security vulnerability, as we're not inclined to accept other changes to systemd this late in the game.
systemd-233-6.fc26 has been pushed to the Fedora 26 stable repository. If problems still persist, please make note of it in this bug report.
systemd-231-17.fc25 has been pushed to the Fedora 25 stable repository. If problems still persist, please make note of it in this bug report.
systemd-229-22.fc24 has been pushed to the Fedora 24 stable repository. If problems still persist, please make note of it in this bug report.