Redhat.comRH:CVE-2018-16864

HistoryMar 20, 2021 - 10:03 p.m.

CVE-2018-16864

2021-03-2022:03:09

redhat.com

access.redhat.com

cve-2018-16864

systemd-journald

memory allocation

vulnerability

privilege escalation

startlimitinterval

startlimitburst

EPSS

Percentile

10.1%

JSON

An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate privileges.

Mitigation

To increase the time an attacker needs to exploit this flaw you could override the StartLimitInterval= (called StartLimitIntervalSec in newer systemd versions) and StartLimitBurst= settings. In this way the attack may require much longer to be successful.

To edit the journald service use sudo systemctl edit systemd-journald.service and add:

[Service]  
StartLimitInterval=120  
StartLimitBurst=3

References

nvd.nist.gov/vuln/detail/CVE-2018-16864

www.cve.org/CVERecord?id=CVE-2018-16864

www.qualys.com/2019/01/09/system-down/system-down.txt

openvas

Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2019-1242)

2020-01-23 00:00:00

CentOS Update for libgudev1-219-62.el7_ CESA-2019:0201 centos7

2019-02-02 00:00:00

Debian: Security Advisory (DLA-1639-1)

2019-01-22 00:00:00

ubuntucve

CVE-2018-16864

2019-01-11 00:00:00

CVE-2019-3815

2019-01-28 00:00:00

veracode

Denial Of Service (DoS)

2019-02-14 07:30:11

cve

CVE-2018-16864

2019-01-11 20:29:00

CVE-2019-3815

2019-01-28 15:29:00

debiancve

CVE-2018-16864

2019-01-11 20:29:00

CVE-2019-3815

2019-01-28 15:29:00

checkpoint_advisories

Systemd journald Privilege Escalation (CVE-2018-16864)

2020-09-05 00:00:00

osv

CVE-2018-16864

2019-01-11 20:29:00

CVE-2019-3815

2019-01-28 15:29:00

systemd - security update

2019-01-22 00:00:00

cvelist

CVE-2018-16864

2019-01-11 20:00:00

CVE-2019-3815

2019-01-28 15:00:00

nessus

EulerOS Virtualization 2.5.4 : systemd (EulerOS-SA-2019-1242)

2019-04-04 00:00:00

Debian DLA-1639-1 : systemd security update

2019-01-23 00:00:00

CentOS 7 : systemd (CESA-2019:0201)

2019-02-04 00:00:00

nvd

CVE-2018-16864

2019-01-11 20:29:00

CVE-2019-3815

2019-01-28 15:29:00

prion

Design/Logic Flaw

2019-01-11 20:29:00

Memory corruption

2019-01-28 15:29:00

cbl_mariner

CVE-2018-16864 affecting package systemd 239-44

2020-09-09 06:09:21

centos

libgudev1, systemd security update

2019-02-01 23:12:55

libgudev1, systemd security update

2019-01-15 11:38:56

archlinux

[ASA-201901-9] systemd: arbitrary code execution

2019-01-12 00:00:00

debian

[SECURITY] [DLA 1639-1] systemd security update

2019-01-23 04:26:20

[SECURITY] [DLA 1711-1] systemd security update

2019-03-13 12:45:45

[SECURITY] [DSA 4367-1] systemd security update

2019-01-13 21:56:20

K22040951 : systemd-journald vulnerability CVE-2019-3815

2020-03-23 00:00:00

K06044762 : systemd vulnerabilities CVE-2018-16864 and CVE-2018-16865

2020-03-25 00:00:00

redhat

(RHSA-2019:0204) Important: systemd security update

2019-01-29 15:25:36

(RHSA-2019:0342) Moderate: redhat-virtualization-host security update

2019-02-13 15:19:37

(RHSA-2019:2402) Important: systemd security update

2019-08-07 11:04:12

ibm

Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to security vulnerability (CVE-2019-3815)

2020-01-29 16:31:33

Security Bulletin: IBM MQ Advanced Cloud Paks are vulnerable to multiple issues with in the Systemd package (CVE-2018-16866 CVE-2018-16864 CVE-2018-16865)

2019-02-08 23:15:01

Security Bulletin: Vulnerabiliies in systemd affect PowerKVM

2019-03-04 05:50:01

altlinux

Security fix for the ALT Linux 9 package systemd version 1:240-alt3

2019-01-08 00:00:00

redhatcve

CVE-2019-3815

2019-01-16 21:49:41

cloudfoundry

USN-3855-1: systemd vulnerabilities | Cloud Foundry

2019-01-24 00:00:00

ubuntu

systemd vulnerabilities

2019-01-11 00:00:00

suse

Security update for systemd (moderate)

2019-01-29 00:00:00

Security update for systemd (important)

2019-01-29 00:00:00

amazon

Important: systemd

2019-01-07 21:58:00

Important: systemd

2019-02-13 18:37:00

Medium: systemd

2021-06-16 20:36:00

myhack58

Linux 3 a serious vulnerability systemd, may lead to data breaches-vulnerability warning-the black bar safety net

2019-01-16 00:00:00

thn

New Systemd Privilege Escalation Flaws Affect Most Linux Distributions

2019-01-10 12:18:00

oraclelinux

systemd security update

2019-01-14 00:00:00

zdt

systemd-journald Memory Corruption / Information Leak Vulnerability

2019-01-11 00:00:00

gentoo

systemd: Multiple vulnerabilities

2019-03-10 00:00:00

fedora

[SECURITY] Fedora 29 Update: systemd-239-8.gite339eae.fc29

2019-01-13 02:32:41

[SECURITY] Fedora 28 Update: systemd-238-11.gita76ee90.fc28

2019-02-18 01:26:53

[SECURITY] Fedora 29 Update: systemd-239-11.git4dc7dce.fc29

2019-02-11 01:57:56

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-1.0-0205

2019-02-04 00:00:00

Critical Photon OS Security Update - PHSA-2019-0205

2019-02-04 00:00:00

Critical Photon OS Security Update - PHSA-2019-0128

2019-02-13 00:00:00

rosalinux

Advisory ROSA-SA-2021-1982

2021-07-02 18:13:58

oracle

Oracle Critical Patch Update Advisory - April 2019

2019-04-16 00:00:00