vulnerability
CentOS Linux: CVE-2018-16865: Important: systemd security update (CESA-2019:0049)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | Jan 9, 2019 | Jan 16, 2019 | May 25, 2023 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
Jan 9, 2019
Added
Jan 16, 2019
Modified
May 25, 2023
Description
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remote is used, may use this flaw to crash systemd-journald or execute code with journald privileges. Versions through v240 are vulnerable.
Solutions
centos-upgrade-libgudev1centos-upgrade-libgudev1-develcentos-upgrade-systemdcentos-upgrade-systemd-debuginfocentos-upgrade-systemd-develcentos-upgrade-systemd-journal-gatewaycentos-upgrade-systemd-libscentos-upgrade-systemd-networkdcentos-upgrade-systemd-pythoncentos-upgrade-systemd-resolvedcentos-upgrade-systemd-sysv
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.