AZL-41659 CVE-2022-3821 affecting package systemd-bootstrap for versions less than 250.3-17

🗓️ 08 Nov 2022 22:15:16Reported by GoogleType

osv🔗 osv.dev👁 1 Views

CVE-2022-3821: Off-by-one error in systemd bootstrap format_timespan causes buffer overrun and denial of service in versions below 250.3-17.

Reporter	Title	Published	Views	Family All 148
IBM Security Bulletins	Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to systemd denial of service and information disclosure vulnerabilities( CVE-2022-3821, CVE-2022-4415)	6 Jul 202317:14	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs	30 Mar 202315:19	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities	7 Jun 202316:53	–	ibm
IBM Security Bulletins	Security Bulletin:IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from libxml2, expat, libtasn1 and systemd	25 Jan 202316:27	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities in systemd may affect IBM Storage Scale System	12 Dec 202311:47	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in systemd (CVE-2022-3821)	31 Mar 202317:02	–	ibm
IBM Security Bulletins	Security Bulletin: CVE-2022-3821 may affect IBM CICS TX Advanced 10.1	8 Jun 202318:28	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.	30 Mar 202316:55	–	ibm
Tenable Nessus	Amazon Linux 2 : systemd (ALAS-2022-1899)	7 Dec 202200:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0025: systemd (ALINUX3-SA-2023:0025)	14 May 202500:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-3821

21 Apr 2026 04:29Current

7.5High risk

Vulners AI Score7.5

CVSS 3.15.5

EPSS0.00035