Vulnerability & Exploit Database

Displaying entries 1 - 10 of 140618 in total

Red Hat: CVE-2018-16865: Important: systemd security update (RHSA-2019:0049) Vulnerability

  • Severity: 4
  • Published: January 11, 2019

An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remote is used, may use this flaw to crash systemd-journald or execute code with journald pri...

Red Hat: CVE-2018-16864: Important: systemd security update (RHSA-2019:0049) Vulnerability

  • Severity: 4
  • Published: January 11, 2019

An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges. Versions through v240 are vulnerable.

Debian: CVE-2018-16866: systemd -- security update Vulnerability

  • Severity: 4
  • Published: January 11, 2019

An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable.

SUSE: CVE-2018-4416: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: January 10, 2019

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-4416:

This CVE is addressed in the SUSE advisories SUSE-SU-2019:0059-1.