Lucene search
K
Systemd ProjectSystemd240

5 matches found

CVE
CVE
added 2019/01/11 9:0 p.m.426 views

CVE-2018-16865

CVE-2018-16865 affects systemd-journald (journald) and was described across multiple sources as a memory-allocation/stack-clash vulnerability. The issue occurs when many entries are sent to the journal socket (or via remote journald-remote) and can allow crash or code execution. Affected versions...

7.8CVSS7.8AI score0.02958EPSS
CVE
CVE
added 2022/08/23 12:0 a.m.407 views

CVE-2021-3997

CVE-2021-3997 affects systemd with an uncontrolled recursion in systemd-tmpfiles that can cause a denial of service at boot when many nested /tmp directories are created. Connected documents confirm the issue and indicate remediation through updated systemd packages (e.g., Mariner cites versions

5.5CVSS5.4AI score0.01561EPSS
CVE
CVE
added 2019/01/11 8:0 p.m.403 views

CVE-2018-16864

CVE-2018-16864 affects systemd-journald. The connected advisories confirm a memory-management issue in journald (and a backport memory leak in journald-server.c) that can crash journald or enable privilege escalation on local hosts. Root cause: memory allocations for command-line/state data not p...

7.8CVSS6.2AI score0.00717EPSS
CVE
CVE
added 2022/09/09 12:0 a.m.360 views

CVE-2022-2526

CVE-2022-2526 is a use-after-free in systemd’s DNS stream handling (resolved-dns-stream.c). The root cause is that on_stream_io() and dns_stream_complete() do not increment the DnsStream reference count, allowing callbacks to dereference freed objects. Documents indicate this can lead to crashes ...

9.8CVSS9.3AI score0.01091EPSS
CVE
CVE
added 2019/09/04 11:4 a.m.285 views

CVE-2019-15718

CVE-2019-15718 affects systemd (notably systemd 240) where bus_open_system_watch_bind_with_description in shared/bus-util.c calls sd_bus_set_trusted, disabling access controls for incoming D-Bus messages. This allows an unprivileged user to invoke D-Bus methods that should be restricted, enabling...

4.4CVSS4.7AI score0.00511EPSS