2 matches found
CVE-2020-13529
CVE-2020-13529 is a systemd denial-of-service/remote reconfiguration vulnerability tied to DHCP FORCERENEW handling. The connected documents confirm a DHCP FORCERENEW/ACK pairing can allow an attacker to reconfigure a systemd-managed DHCP client. The issue affects systemd components (e.g., system...
CVE-2020-13776
CVE-2020-13776 (systemd) affects systemd up to version v245, where it mishandles usernames that start with decimal digits or 0x followed by hex digits. This can enable privilege escalation to root, as demonstrated by the 0x0 user account scenario. The issue is noted as a consequence of an incompl...