Privilege Escalation

libsystemd.so are susceptible to privilege escalation. The attack exists because of an incomplete fix for CVE-2017-1000082 which does not properly handle parsing of usernames starting with a numeric digit, leading to misinterpretation of usernames into user identifiers. An attacker is able to...

Denial Of Service (DoS)

libsystemd.so is affected by memory leak. The buttonopen function in login/logind-button.c does not properly handle the execution of the udevadm trigger command, allowing an attacker to read memory and application crash...

Denial Of Service (DoS)

libsystemd.so is vulnerable to denial of service. A local attacker is able to cause a kernel panic by sending a malicious DBUS message which would cause a stack-based buffer overflow in the function busprocessobject in bus-objects.c...

Denial Of Service (DoS)

libsystemd.so is vulnerable to denial of service DoS. When the syslog command is called with long cmdline input, an unlimited memory is allocated, which causes stack clashing with other memory space and crashes the application...

Denial Of Service (DoS)

libsystemd.so is vulnerable to denial of service. It does not perform any checks on the contents of the PIDFile file of a service, which would allow a local attacker to trick the systemd into killing privileged processes by tampering with the PIDFile of a service...

Denial Of Service (DoS)

libsystemd.so is vulnerable to denial of service. A malicious DHCP server in the adjacent network is able to corrupt heap memory in the DHCPv6 client via a crafted options packet, resulting in a denial of service condition or possible code execution...

Privilege Escalation

libsystemd.so is vulnerable to privilege escalation. When NotifyAccess != none, the line read by fgets in the unitdeserialize function allows line splitting during daemon-reexec when long lines are submitted which can result in state injection. An attacker is able to exploit this vulnerability to...