Veracode Vulnerability DatabaseVERACODE:21108Denial Of Service (DoS)
0.0004 Low
EPSS
Percentile
10.3%
systemd is vulnerable to denial of service (DoS). The vulnerability exists through an out-of-bounds read when parsing a crafted syslog message.
References
packetstormsecurity.com/files/152841/System-Down-A-systemd-journald-Exploit.html
seclists.org/fulldisclosure/2019/May/21
www.openwall.com/lists/oss-security/2019/05/10/4
www.securityfocus.com/bid/106527
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index
access.redhat.com/errata/RHBA-2020:0547
access.redhat.com/errata/RHSA-2019:2091
access.redhat.com/errata/RHSA-2019:3222
access.redhat.com/errata/RHSA-2020:0593
access.redhat.com/errata/RHSA-2020:1264
access.redhat.com/security/cve/CVE-2018-16866
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1267552
bugzilla.redhat.com/show_bug.cgi?id=1272485
bugzilla.redhat.com/show_bug.cgi?id=1463678
bugzilla.redhat.com/show_bug.cgi?id=1585913
bugzilla.redhat.com/show_bug.cgi?id=1619543
bugzilla.redhat.com/show_bug.cgi?id=1631625
bugzilla.redhat.com/show_bug.cgi?id=1641764
bugzilla.redhat.com/show_bug.cgi?id=1643172
bugzilla.redhat.com/show_bug.cgi?id=1651257
bugzilla.redhat.com/show_bug.cgi?id=1653867
bugzilla.redhat.com/show_bug.cgi?id=1660422
bugzilla.redhat.com/show_bug.cgi?id=1663365
bugzilla.redhat.com/show_bug.cgi?id=1666612
bugzilla.redhat.com/show_bug.cgi?id=1691511
bugzilla.redhat.com/show_bug.cgi?id=1693559
bugzilla.redhat.com/show_bug.cgi?id=1693716
bugzilla.redhat.com/show_bug.cgi?id=1697909
bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16866
seclists.org/bugtraq/2019/May/25
security.gentoo.org/glsa/201903-07
security.netapp.com/advisory/ntap-20190117-0001/
usn.ubuntu.com/3855-1/
www.debian.org/security/2019/dsa-4367
www.qualys.com/2019/01/09/system-down/system-down.txt
Related
