vulnerability
Red Hat: CVE-2018-16865: Important: systemd security update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | Jan 11, 2019 | Jan 15, 2019 | Feb 14, 2023 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
Jan 11, 2019
Added
Jan 15, 2019
Modified
Feb 14, 2023
Description
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remote is used, may use this flaw to crash systemd-journald or execute code with journald privileges. Versions through v240 are vulnerable.
Solutions
redhat-upgrade-libgudev1redhat-upgrade-libgudev1-develredhat-upgrade-systemdredhat-upgrade-systemd-debuginforedhat-upgrade-systemd-develredhat-upgrade-systemd-journal-gatewayredhat-upgrade-systemd-libsredhat-upgrade-systemd-networkdredhat-upgrade-systemd-pythonredhat-upgrade-systemd-resolvedredhat-upgrade-systemd-sysv
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.