4 matches found
Denial Of Service (DoS)
Red Hat Enterprise Linux is vulnerable to denial of serviceDoS attacks. This is because the function ispatchmessagereal in journald-server.c does not free the memory allocated by setiovecfieldfree to store the CMDLINE= entry. A local attacker may use this flaw to make systemd-journald crash...
EulerOS 2.0 SP2 : systemd (EulerOS-SA-2019-1128)
According to the versions of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - systemd: memory leak in journald-server.c introduced by fix for CVE-2018-16864 CVE-2019-3815 - systemd: Insufficient input validation in...
Oracle Linux 7 : systemd (ELSA-2019-0201)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-0201 advisory. 219-62.0.4 - do not create utmp update symlinks for reboot and poweroff Orabug: 27854896 - OL7 udev rule for virtio net standby interface Orabug: 28826743 - fix...
CVE-2019-3815
CVE-2019-3815 is a memory‑leak issue in the journald component introduced via backport of fixes for CVE-2018-16864. The flaw is in dispatch_message_real() in journald-server.c, which does not free memory allocated for the _CMDLINE= entry (set_iovec_field_free). A local attacker could crash system...