2 matches found
CVE-2017-15908
CVE-2017-15908 affects systemd 223–235 where a remote DNS server can reply with a crafted DNS NSEC RR to trigger an infinite loop in dns_packet_read_type_window() of systemd-resolved, causing DoS. Public advisories (Ubuntu USN-3558-1) reference CVE-2017-15908; related OpenVAS/Nessus entries docum...
CVE-2016-10156
The CVE-2016-10156 issue affects systemd v228, where a flaw in /src/basic/fs-util.c caused world-writable SUID files to be created via systemd timers. This could allow a local attacker to escalate privileges to root. The vulnerability is fixed in systemd v229, and multiple advisories (SUSE/SLES o...