Max CVSS | 4.9 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2016-7796 | 4.9 |
The manager_dispatch_notify_fd function in systemd allows local users to cause a denial of service (system hang) via a zero-length message received over a notify socket, which causes an error to be returned and the notification handler to be disabled
|
12-09-2023 - 14:45 | 13-10-2016 - 14:59 | |
CVE-2018-16865 | 4.6 |
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remo
|
13-02-2023 - 04:52 | 11-01-2019 - 21:29 | |
CVE-2019-3815 | 2.1 |
A memory leak was discovered in the backport of fixes for CVE-2018-16864 in Red Hat Enterprise Linux. Function dispatch_message_real() in journald-server.c does not free the memory allocated by set_iovec_field_free() to store the `_CMDLINE=` entry. A
|
12-02-2023 - 23:38 | 28-01-2019 - 15:29 | |
CVE-2020-1712 | 4.6 |
A heap use-after-free vulnerability was found in systemd before version v245-rc1, where asynchronous Polkit queries are performed while handling dbus messages. A local unprivileged attacker can abuse this flaw to crash systemd services or potentially
|
29-11-2022 - 16:25 | 31-03-2020 - 17:15 | |
CVE-2019-15718 | 3.6 |
In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util.c (as used by systemd-resolved to connect to the system D-Bus instance), calls sd_bus_set_trusted, which disables access controls for incoming D-Bus messages. An unprivile
|
20-02-2022 - 06:15 | 04-09-2019 - 12:15 | |
CVE-2019-6454 | 4.9 |
An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-length stack buffer for temporarily storing the object path of incoming D-Bus messages. An unprivileged local user can expl
|
20-02-2022 - 06:08 | 21-03-2019 - 16:01 | |
CVE-2019-3844 | 4.6 |
It was discovered that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binaries, which would allow to create binaries owned by the service transient group with the setgid bit set. A local attacker
|
31-01-2022 - 18:52 | 26-04-2019 - 21:29 | |
CVE-2018-16888 | 1.9 |
It was discovered systemd does not correctly check the content of PIDFile files before using it to kill processes. When a service is run from an unprivileged user (e.g. User field set in the service file), a local attacker who is able to write to the
|
31-01-2022 - 18:37 | 14-01-2019 - 22:29 | |
CVE-2018-1049 | 4.3 |
In systemd prior to 234 a race condition exists between .mount and .automount units such that automount requests from kernel may not be serviced by systemd resulting in kernel holding the mountpoint and any processes that try to use said mount will h
|
31-01-2022 - 18:26 | 16-02-2018 - 21:29 | |
CVE-2019-20386 | 2.1 |
An issue was discovered in button_open in login/logind-button.c in systemd before 243. When executing the udevadm trigger command, a memory leak may occur.
|
28-01-2022 - 21:27 | 21-01-2020 - 06:15 | |
CVE-2019-3696 | 4.4 |
A Improper Limitation of a Pathname to a Restricted Directory vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module f
|
24-03-2020 - 14:00 | 03-03-2020 - 11:15 | |
CVE-2016-7795 | 4.9 |
The manager_invoke_notify_message function in systemd 231 and earlier allows local users to cause a denial of service (assertion failure and PID 1 hang) via a zero-length message received over a notify socket.
|
28-07-2017 - 01:29 | 13-10-2016 - 14:59 |