File _patchinfo of Package patchinfo.4046

<patchinfo incident="4046">
  <issue id="1014560" tracker="bnc">systemctl commands fails when /etc/systemd/system is a symlink</issue>
  <issue id="997682" tracker="bnc">Offline memory in OS is showing less memory than z/VM configured STANDBY memory for the guest</issue>
  <issue id="1020601" tracker="bnc">VUL-0: EMBARGOED: CVE-2016-10156: systemd: world writable suid files local root vulnerability</issue>
  <issue id="1014566" tracker="bnc">systemd-run does not make transient scope unit part of slice specified via the --slice arg</issue>
  <issue id="1012266" tracker="bnc">systemctl list-dependencies: instantiated services are listed twice</issue>
  <issue id="2016-10156" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>fbui</packager>
  <description>
This update for systemd fixes the following issues:

This security issue was fixed:

- CVE-2016-10156: Fix permissions set on permanent timer timestamp files, preventing local unprivileged users from escalating privileges (bsc#1020601).

These non-security issues were fixed:

- Fix permission set on /var/lib/systemd/linger/*
- install: follow config_path symlink (#3362)
- install: fix disable when /etc/systemd/system is a symlink (bsc#1014560)
- run: make --slice= work in conjunction with --scope (bsc#1014566)
- core: don't dispatch load queue when setting Slice= for transient units
- systemctl: remove duplicate entries showed by list-dependencies (#5049) (bsc#1012266)
- rule: don't automatically online standby memory on s390x (bsc#997682)
</description>
  <summary>Security update for systemd</summary>
</patchinfo>