- systemd (247.3-7+rpi1+deb11u7) bullseye-staging; urgency=medium
++systemd (247.3-7+rpi1+deb11u8) bullseye-staging; urgency=medium
+
+ [changes brought forward from 239-9+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Thu, 20 Sep 2018 20:22:45 +0000]
+ * Disable testsuite, it fails on some of our buildboxes (probablly because of
+ old kernels).
+ * Add breaks on raspi-copies-and-fills, it doesn't seem to get on with
+ this version of systemd/udev.
+
+ [changes brought forward from 241-1+rpi2 by Peter Michael Green <plugwash@raspbian.org> at Tue, 02 Apr 2019 19:29:26 +0000]
+ * Bump "breaks" on raspi-copies-and-fills to << 0.12
+ (raspi-copies-and-fills was reverted by the raspberry pi foundation)
+
- -- Raspbian forward porter <root@raspbian.org> Tue, 19 Aug 2025 17:14:58 +0000
++ -- Raspbian forward porter <root@raspbian.org> Thu, 16 Apr 2026 13:25:52 +0000
++
+ systemd (247.3-7+deb11u8) bullseye-security; urgency=medium
+
+ * Non-maintainer upload by the LTS Team.
+
+ [ Arnaud Rebillout ]
+ * Fix root-unittests.
+ * CVE-2026-4105: Local privilege escalation in systemd-machined.
+ * CVE-2026-29111: Local unprivileged user can trigger a stack overwriting.
+ * CVE-2026-40225: Local root execution can occur via malicious hardware
+ devices and unsanitized kernel output.
+ * CVE-2026-40226: systemd-nspawn: escape-to-host action can occur via a
+ crafted optional config file.
+
+ [ Frantisek Sumsal ]
+ * upstream-ci: fix test_no_failed() check.
+
+ [ Michael Biebl ]
+ * Skip flaky test_resolved_domain_restricted_dns in networkd-test.py.
+
+ -- Arnaud Rebillout <arnaudr@debian.org> Mon, 13 Apr 2026 14:18:40 +0700
systemd (247.3-7+deb11u7) bullseye-security; urgency=medium
projects / systemd.git / commitdiff