vulnerability

Ubuntu: USN-3855-1 (CVE-2018-16864): systemd vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:P/I:P/A:P)	Jan 10, 2019	Jan 23, 2019	Nov 27, 2024

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

Jan 10, 2019

Added

Jan 23, 2019

Modified

Nov 27, 2024

Description

An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges. Versions through v240 are vulnerable.

Solution

ubuntu-upgrade-systemd

References

CVE-2018-16864
https://attackerkb.com/topics/CVE-2018-16864
DEBIAN-DSA-4367
NVD-CVE-2018-16864
UBUNTU-USN-3855-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today