Lucene search
K
Systemd ProjectSystemd239

6 matches found

CVE
CVE
added 2019/03/17 4:38 p.m.444 views

CVE-2019-6454

CVE-2019-6454 affects systemd’s bus_process_object() which allocates a large stack buffer for the object path in D-Bus messages. A locally unprivileged user can send a crafted message to PID1, causing the stack pointer to jump past guard pages and crash systemd PID1, potentially triggering a kern...

5.5CVSS5.5AI score0.02035EPSS
CVE
CVE
added 2018/10/26 2:0 p.m.406 views

CVE-2018-15688

CVE-2018-15688 is a buffer/heap overwrite in the dhcpv6 option handling of systemd-networkd (systemd up to 239). A malicious DHCPv6 server on the same network could trigger an out-of-bounds write, potentially causing a Denial of Service or code execution. Affected products include systemd with ve...

8.8CVSS9AI score0.0168EPSS
CVE
CVE
added 2019/01/11 7:0 p.m.358 views

CVE-2018-16866

CVE-2018-16866 is a systemd-journald out-of-bounds read vulnerability. The flaw arises in how journald parses log messages that terminate with a colon, allowing a local attacker to disclose process memory data. Affected versions are reported as v221–v239. Public advisories and vendor notes (e.g.,...

4.3CVSS5.3AI score0.01051EPSS
CVE
CVE
added 2018/10/26 2:0 p.m.309 views

CVE-2018-15686

CVE-2018-15686 affects systemd up to version 239, where unit_deserialize can be manipulated via NotifyAccess to inject arbitrary state across re-execution, potentially enabling root privilege escalation. Exploitation has been demonstrated (e.g., exploit-db link in references). Remediation is to u...

7.8CVSS6.4AI score0.02279EPSS
CVE
CVE
added 2019/10/30 9:46 p.m.97 views

CVE-2018-21029

CVE-2018-21029 affects systemd 239–245, where DNS over TLS accepts any CA-signed certificate because hostname validation is not performed with the GnuTLS backend and SNI is not sent. This creates potential exposure of confidentiality/integrity/availability for DNS over TLS connections, with CVSS ...

9.8CVSS9.3AI score0.03138EPSS
CVE
CVE
added 2026/03/23 9:3 p.m.42 views

CVE-2026-29111

CVE-2026-29111: systemd local unprivileged user can trigger an assert via an unprivileged IPC API call with spurious data. The issue affects versions from v239 onward; older than v239 are not affected, while v249 and older exhibited stack overwriting, attacker-controlled content. Patches exist in...

5.5CVSS6AI score0.00121EPSS