Lucene search
GoogleOSV:SUSE-SU-2024:3149-1HistorySep 05, 2024 - 3:05 p.m.
Security update for systemd
2024-09-0515:05:38
Google
osv.dev
systemd
cve-2023-7008
dnssec
bsc#1218297
unit
systemd-udevd.service
bsc#1226414
rpm macros
bsc#1228091
lsb description
bsc#1221479
update
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
AI Score
6.6
Confidence
Low
This update for systemd fixes the following issues:
- CVE-2023-7008: Fixed man-in-the-middle due to unsigned name response in signed zone not refused when DNSSEC=yes (bsc#1218297)
Other fixes:
- Unit: drop ProtectClock=yes from systemd-udevd.service (bsc#1226414)
- Don’t mention any rpm macros inside comments, even if escaped (bsc#1228091)
- Skip redundant dependencies specified the LSB description that references the file name of the service itself for early boot scripts (bsc#1221479).
Related
veracode
veracode
Man-in-the-Middle (MitM)
2023-12-26 06:18:11
prion
prion
Design/Logic Flaw
2023-12-23 13:15:00
openvas
openvas
Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2024-1230)
2024-03-12 00:00:00
Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2024-1327)
2024-03-13 00:00:00
Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2024-1499)
2024-04-08 00:00:00
almalinux
almalinux
Moderate: systemd security update
2024-04-30 00:00:00
Moderate: systemd security update
2024-05-22 00:00:00
nessus
nessus
EulerOS 2.0 SP11 : systemd (EulerOS-SA-2024-1252)
2024-03-12 00:00:00
EulerOS Virtualization 2.11.1 : systemd (EulerOS-SA-2024-1622)
2024-05-15 00:00:00
EulerOS 2.0 SP9 : systemd (EulerOS-SA-2024-1520)
2024-04-08 00:00:00
cve
cve
CVE-2023-7008
2023-12-23 13:15:07
oraclelinux
oraclelinux
systemd security update
2024-05-03 00:00:00
systemd security update
2024-05-23 00:00:00
debiancve
debiancve
CVE-2023-7008
2023-12-23 13:15:07
fedora
fedora
[SECURITY] Fedora 39 Update: systemd-254.8-2.fc39
2024-01-24 01:30:31
[SECURITY] Fedora 38 Update: systemd-253.15-2.fc38
2024-01-27 02:13:16
osv
osv
CVE-2023-7008
2023-12-23 13:15:07
Moderate: systemd security update
2024-04-30 00:00:00
Moderate: systemd security update
2024-05-10 14:32:36
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2023-7008
2023-12-23 00:00:00
redhatcve
redhatcve
CVE-2023-7008
2023-12-20 16:00:37
redhat
redhat
(RHSA-2024:2463) Moderate: systemd security update
2024-04-30 06:15:46
(RHSA-2024:3203) Moderate: systemd security update
2024-05-22 06:35:57
rocky
rocky
systemd security update
2024-05-10 14:32:36
nvd
nvd
CVE-2023-7008
2023-12-23 13:15:07
cbl_mariner
cbl_mariner
CVE-2023-7008 affecting package systemd for versions less than 123
2024-09-27 09:12:43
redos
redos
ROS-20240425-05
2024-04-25 00:00:00
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
AI Score
6.6
Confidence
Low
Related for OSV:SUSE-SU-2024:3149-1