[arch-general] systemd latest upgrade
For the last several systemd upgrades an error complaining about a missing uefi directory has come out when those upgrades were being installed. Today that happened too. However any package install now finishes with the message: Arming ConditionNeedsUpdate .... This system is an old x86-64 system with bios on it not uefi so I'm curious to know if there is anything I can do or anything I really ought to do about this message. --
On 01/31/17 at 04:18pm, Jude DaShiell wrote:
For the last several systemd upgrades an error complaining about a missing uefi directory has come out when those upgrades were being installed. Today that happened too.
No clue
However any package install now finishes with the message: Arming ConditionNeedsUpdate ....
That's just a pacman hook to touch /var, for the recent CVE issue in systemd [1] [2] [1] https://git.archlinux.org/svntogit/packages.git/commit/trunk?h=packages/systemd&id=59541b72a7ec32b30343a2a388b40ea1365f6308 [2] http://www.openwall.com/lists/oss-security/2017/01/24/4 -- Jelle van der Waa
On 01-02-17 10:12, Jelle van der Waa wrote:
On 01/31/17 at 04:18pm, Jude DaShiell wrote:
However any package install now finishes with the message: Arming ConditionNeedsUpdate ....
That's just a pacman hook to touch /var, for the recent CVE issue in systemd [1] [2]
[1] https://git.archlinux.org/svntogit/packages.git/commit/trunk?h=packages/systemd&id=59541b72a7ec32b30343a2a388b40ea1365f6308 [2] http://www.openwall.com/lists/oss-security/2017/01/24/4
The new hook checks for changes in and touches /usr, not /var or /run . A search for systemd ConditionNeedsUpdate gives [*] . that condition appears to be used for determining whether a change in /usr requires changes in /etc or /var. There are some archlinux systemd services that use ConditionNeedsUpdate=/etc , but i can find none that use it with /var . looks to me like this hook either fails defending fromn that CVE or has some other purpose. LW [*] https://www.freedesktop.org/software/systemd/man/systemd.unit.html#Condition...
Thanks for this information, the last update I did this morning didn't have the Arming message show up so I think maybe an update closed this vulnerability. On Wed, 1 Feb 2017, Jelle van der Waa wrote:
Date: Wed, 1 Feb 2017 04:12:52 From: Jelle van der Waa <jelle@vdwaa.nl> Reply-To: General Discussion about Arch Linux <arch-general@archlinux.org> To: General Discussion about Arch Linux <arch-general@archlinux.org> Subject: Re: [arch-general] systemd latest upgrade
On 01/31/17 at 04:18pm, Jude DaShiell wrote:
For the last several systemd upgrades an error complaining about a missing uefi directory has come out when those upgrades were being installed. Today that happened too.
No clue
However any package install now finishes with the message: Arming ConditionNeedsUpdate ....
That's just a pacman hook to touch /var, for the recent CVE issue in systemd [1] [2]
[1] https://git.archlinux.org/svntogit/packages.git/commit/trunk?h=packages/systemd&id=59541b72a7ec32b30343a2a388b40ea1365f6308 [2] http://www.openwall.com/lists/oss-security/2017/01/24/4
--
participants (3)
-
Jelle van der Waa
-
Jude DaShiell
-
LoneVVolf