3 matches found
CVE-2017-15908
CVE-2017-15908 affects systemd 223–235 where a remote DNS server can reply with a crafted DNS NSEC RR to trigger an infinite loop in dns_packet_read_type_window() of systemd-resolved, causing DoS. Public advisories (Ubuntu USN-3558-1) reference CVE-2017-15908; related OpenVAS/Nessus entries docum...
CVE-2017-9445
The CVE-2017-9445 issue affects systemd up to version 233, where dns_packet_new in systemd-resolved may allocate a buffer that is too small when processing DNS responses. A malicious DNS server can craft a TCP payload to trigger an out-of-bounds write, potentially enabling remote code execution o...
CVE-2015-7510
CVE-2015-7510 is a stack-based buffer overflow in the NSS module nss-mymachines of systemd, specifically in getpwnam and getgrnam. The vulnerability is described as enabling a crash/DoS under exploitation of the NSS functions. Public references show patches/update activity (e.g., systemd commit a...