- Home
- CVEs with nessus.description==An allocation of memory without limits, that could result in the stack
clashing with another memory region, was discovered in
systemd-journald when a program with long command line arguments calls
syslog. A local attacker may use this flaw to crash systemd-journald
or escalate privileges.(CVE-2018-16864)
It was discovered that systemd-network does not correctly keep track
of a buffer size when constructing DHCPv6 packets. This flaw may lead
to an integer underflow that can be used to produce an heap-based
buffer overflow. A malicious host on the same network segment as the
victim's one may advertise itself as a DHCPv6 server and exploit this
flaw to cause a Denial of Service or potentially gain code execution
on the victim's machine.(CVE-2018-15688)
An allocation of memory without limits, that could result in the stack
clashing with another memory region, was discovered in
systemd-journald when many entries are sent to the journal socket. A
local attacker, or a remote one if systemd-journal-remote is used, may
use this flaw to crash systemd-journald or execute code with journald
privileges.(CVE-2018-16865)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top