This update for systemd fixes the following issues: Security issues fixed: - CVE-2021-33910: Fixed a denial of service in systemd Other fixes: - mount-util: shorten the loop a bit - mount-util: do not use the official MAX_HANDLE_SZ - mount-util: tape over name_to_handle_at flakiness - mount-util: fix bad indenting - mount-util: EOVERFLOW might have other causes than buffer size issues - mount-util: fix error propagation in fd_fdinfo_mnt_id - mount-util: drop exponential buffer growing in name_to_handle_at_loop - udev: port udev_has_devtmpfs to use path_get_mnt_id - mount-util: add new path_get_mnt_id call that queries the mnt ID of a path - mount-util: add name_to_handle_at_loop wrapper around name_to_handle_at - mount-util: accept that name_to_handle_at might fail with EPERM - basic: fallback to the fstat if we don"t have access to the /proc/self/fdinfo - sysusers: use the usual comment style - test/TEST-21-SYSUSERS: add tests for new functionality - sysusers: allow admin/runtime overrides to command-line config - basic/strv: add function to insert items at position - sysusers: allow the shell to be specified - sysusers: move various user credential validity checks to src/basic/ - man: reformat table in sysusers.d - sysusers: take configuration as positional arguments - sysusers: emit a bit more info at debug level when locking fails - sysusers: allow force reusing existing user/group IDs - sysusers: ensure GID in uid:gid syntax exists - sysusers: make ADD_GROUP always create a group - test: add TEST-21-SYSUSERS test - sysuser: use OrderedHashmap - sysusers: allow uid:gid in sysusers.conf files - sysusers: fix memleak - These commits implement the option "--replace" for systemd-sysusers so %sysusers_create_package can be introduced in SLE and packages can rely on this rpm macro without wondering whether the macro is available on the different target the package is submitted to. - Expect 644 permissions for /usr/lib/udev/compat-symlink-generation - systemctl: add --value option - execute: make sure to call into PAM after initializing resource limits - rlimit-util: introduce setrlimit_closest_all - system-conf: drop reference to ShutdownWatchdogUsec= - core: rename ShutdownWatchdogSec to RebootWatchdogSec - Return -EAGAIN instead of -EALREADY from unit_reload - rules: don"t ignore Xen virtual interfaces anymore - write_net_rules: set execute bits - udev: rework network device renaming - Revert Revert udev: network device renaming - immediately give up if the target name isn"t available