CVE-2018-16865
Description
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remote is used, may use this flaw to crash systemd-journald or execute code with journald privileges. Versions through v240 are vulnerable.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.222
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| systemd security update(DSA-4367-1) systemd_232-25+deb9u7_i386.deb | Linux |
| systemd security update(DSA-4367-1) systemd_232-25+deb9u7_amd64.deb | Linux |
| Systemd security update (CESA-2019:0049) systemd-219-62.el7_6.2.x86_64.rpm | Linux |
| Systemd security update (CESA-2019:0049) libgudev1-219-62.el7_6.2.i686.rpm | Linux |
| Systemd security update (CESA-2019:0049) libgudev1-219-62.el7_6.2.x86_64.rpm | Linux |
| Systemd security update (CESA-2019:0049) systemd-libs-219-62.el7_6.2.i686.rpm | Linux |
| Systemd security update (CESA-2019:0049) systemd-libs-219-62.el7_6.2.x86_64.rpm | Linux |
| Systemd security update (CESA-2019:0049) systemd-sysv-219-62.el7_6.2.x86_64.rpm | Linux |
| Systemd security update (CESA-2019:0049) systemd-devel-219-62.el7_6.2.i686.rpm | Linux |
| Systemd security update (CESA-2019:0049) systemd-devel-219-62.el7_6.2.x86_64.rpm | Linux |
| Systemd security update (CESA-2019:0049) systemd-python-219-62.el7_6.2.x86_64.rpm | Linux |
| Systemd security update (CESA-2019:0049) libgudev1-devel-219-62.el7_6.2.i686.rpm | Linux |
| Systemd security update (CESA-2019:0049) libgudev1-devel-219-62.el7_6.2.x86_64.rpm | Linux |
| Systemd security update (CESA-2019:0049) systemd-networkd-219-62.el7_6.2.x86_64.rpm | Linux |
| Systemd security update (CESA-2019:0049) systemd-resolved-219-62.el7_6.2.i686.rpm | Linux |
| Systemd security update (CESA-2019:0049) systemd-resolved-219-62.el7_6.2.x86_64.rpm | Linux |
| Systemd security update (CESA-2019:0049) systemd-journal-gateway-219-62.el7_6.2.x86_64.rpm | Linux |
| (RHSA-2019:0049) systemd security update libgudev1-219-62.el7_6.2.i686.rpm | Linux |
| (RHSA-2019:0049) systemd security update libgudev1-219-62.el7_6.2.x86_64.rpm | Linux |
| (RHSA-2019:0049) systemd security update libgudev1-devel-219-62.el7_6.2.i686.rpm | Linux |
| (RHSA-2019:0049) systemd security update libgudev1-devel-219-62.el7_6.2.x86_64.rpm | Linux |
| (RHSA-2019:0049) systemd security update systemd-219-62.el7_6.2.x86_64.rpm | Linux |
| (RHSA-2019:0049) systemd security update systemd-devel-219-62.el7_6.2.i686.rpm | Linux |
| (RHSA-2019:0049) systemd security update systemd-devel-219-62.el7_6.2.x86_64.rpm | Linux |
| (RHSA-2019:0049) systemd security update systemd-journal-gateway-219-62.el7_6.2.x86_64.rpm | Linux |
| (RHSA-2019:0049) systemd security update systemd-libs-219-62.el7_6.2.i686.rpm | Linux |
| (RHSA-2019:0049) systemd security update systemd-libs-219-62.el7_6.2.x86_64.rpm | Linux |
| (RHSA-2019:0049) systemd security update systemd-networkd-219-62.el7_6.2.x86_64.rpm | Linux |
| (RHSA-2019:0049) systemd security update systemd-python-219-62.el7_6.2.x86_64.rpm | Linux |
| (RHSA-2019:0049) systemd security update systemd-resolved-219-62.el7_6.2.i686.rpm | Linux |
| (RHSA-2019:0049) systemd security update systemd-resolved-219-62.el7_6.2.x86_64.rpm | Linux |
| (RHSA-2019:0049) systemd security update systemd-sysv-219-62.el7_6.2.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) libsystemd0-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) libsystemd0-32bit-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) libsystemd0-debuginfo-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) libsystemd0-debuginfo-32bit-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) libudev1-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) libudev1-32bit-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) libudev1-debuginfo-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) libudev1-debuginfo-32bit-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-32bit-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-bash-completion-228-150.58.1.noarch.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-debuginfo-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-debuginfo-32bit-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-debugsource-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-sysvinit-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) udev-228-150.58.1.x86_64.rpm | Linux |
| SUSE-SU-2019:0135-1(SUSE Linux Enterprise Desktop 12-SP4 ) udev-debuginfo-228-150.58.1.x86_64.rpm | Linux |
| CVE-2018-16865 | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234