5 matches found
MiracleLinux 9 : systemd-250-12.el9.3.ML.1 (AXSA:2023-5194:06)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5194:06 advisory. systemd: local information leak due to systemd-coredump not respecting fs.suiddumpable kernel setting CVE-2022-4415 systemd: deadlock in...
Fedora 36 : systemd (2022-ef4f57b072)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-ef4f57b072 advisory. - Latest bugfix release with a bunch of fixes homed, networkd, manager, resolved, documentation: rhbz2133792, rhbz2135778, rhbz2152685, and also...
Denial Of Service (DoS)
libsystemd.so is vulnerable to denial of service. The vulnerability exists in parseelfobject function of elf-util.c due to a systemd-coredump deadlock which allows an attacker to cause an application crash by providing malicious input...
CVE-2022-45873
systemd 250 and 251 allows local users to achieve a systemd-coredump deadlock by triggering a crash that has a long backtrace. This occurs in parseelfobject in shared/elf-util.c. The exploitation methodology is to crash a binary calling the same function recursively, and put it in a deeply nested...
AZL-11523 CVE-2022-45873 affecting package systemd for versions less than 250.3-12
systemd 250 and 251 allows local users to achieve a systemd-coredump deadlock by triggering a crash that has a long backtrace. This occurs in parseelfobject in shared/elf-util.c. The exploitation methodology is to crash a binary calling the same function recursively, and put it in a deeply nested...