vulnerability
Oracle Linux: CVE-2022-3821: ELSA-2023-0336: systemd security update (MODERATE) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:S/C:N/I:N/A:C) | Jul 8, 2022 | Jan 14, 2023 | Jan 7, 2025 |
Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
Jul 8, 2022
Added
Jan 14, 2023
Modified
Jan 7, 2025
Description
An off-by-one Error issue was discovered in Systemd in format_timespan() function of time-util.c. An attacker could supply specific values for time and accuracy that leads to buffer overrun in format_timespan(), leading to a Denial of Service.
An off-by-one error flaw was found in systemd in the format_timespan() function of time-util.c. This flaw allows an attacker to supply specific values for time and accuracy, leading to a buffer overrun in format_timespan(), leading to a denial of service.
An off-by-one error flaw was found in systemd in the format_timespan() function of time-util.c. This flaw allows an attacker to supply specific values for time and accuracy, leading to a buffer overrun in format_timespan(), leading to a denial of service.
Solution(s)
oracle-linux-upgrade-systemdoracle-linux-upgrade-systemd-containeroracle-linux-upgrade-systemd-develoracle-linux-upgrade-systemd-journal-remoteoracle-linux-upgrade-systemd-libsoracle-linux-upgrade-systemd-oomdoracle-linux-upgrade-systemd-pamoracle-linux-upgrade-systemd-resolvedoracle-linux-upgrade-systemd-rpm-macrosoracle-linux-upgrade-systemd-testsoracle-linux-upgrade-systemd-udev
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.