5 matches found
CVE-2018-16865
CVE-2018-16865 affects systemd-journald (journald) and was described across multiple sources as a memory-allocation/stack-clash vulnerability. The issue occurs when many entries are sent to the journal socket (or via remote journald-remote) and can allow crash or code execution. Affected versions...
CVE-2021-3997
CVE-2021-3997 affects systemd with an uncontrolled recursion in systemd-tmpfiles that can cause a denial of service at boot when many nested /tmp directories are created. Connected documents confirm the issue and indicate remediation through updated systemd packages (e.g., Mariner cites versions
CVE-2018-16864
CVE-2018-16864 affects systemd-journald. The connected advisories confirm a memory-management issue in journald (and a backport memory leak in journald-server.c) that can crash journald or enable privilege escalation on local hosts. Root cause: memory allocations for command-line/state data not p...
CVE-2022-2526
CVE-2022-2526 is a use-after-free in systemd’s DNS stream handling (resolved-dns-stream.c). The root cause is that on_stream_io() and dns_stream_complete() do not increment the DnsStream reference count, allowing callbacks to dereference freed objects. Documents indicate this can lead to crashes ...
CVE-2019-15718
CVE-2019-15718 affects systemd (notably systemd 240) where bus_open_system_watch_bind_with_description in shared/bus-util.c calls sd_bus_set_trusted, disabling access controls for incoming D-Bus messages. This allows an unprivileged user to invoke D-Bus methods that should be restricted, enabling...