Race condition

2018-02-1621:29:00

PRIOn knowledge base

www.prio-n.com

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

5.5 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.009 Low

EPSS

Percentile

82.6%

JSON

In systemd prior to 234 a race condition exists between .mount and .automount units such that automount requests from kernel may not be serviced by systemd resulting in kernel holding the mountpoint and any processes that try to use said mount will hang. A race condition like this may lead to denial of service, until mount points are unmounted.

CPENameOperatorVersion
ubuntu_linuxeq16.04
ubuntu_linuxeq14.04
debian_linuxeq8.0
enterprise_linuxeq7.0
enterprise_linux_auseq7.4
enterprise_linux_auseq7.6
enterprise_linux_desktopeq7.0
enterprise_linux_servereq7.0
enterprise_linux_server_auseq7.4
enterprise_linux_server_auseq7.6

Name	Operator	Version
ubuntu_linux	eq	16.04
ubuntu_linux	eq	14.04
debian_linux	eq	8.0
enterprise_linux	eq	7.0
enterprise_linux_aus	eq	7.4
enterprise_linux_aus	eq	7.6
enterprise_linux_desktop	eq	7.0
enterprise_linux_server	eq	7.0
enterprise_linux_server_aus	eq	7.4
enterprise_linux_server_aus	eq	7.6