CVE-2019-3842
Description
In systemd before v242-rc4, it was discovered that pam_systemd does not properly sanitize the environment before using the XDG_SEAT variable. It is possible for an attacker, in some particular configurations, to set a XDG_SEAT environment variable which allows for commands to be checked against polkit policies using the allow_active element rather than allow_any.
Risk Information
Base Score
7.0
MODERATE
Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.098
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| retrieves files from the web (USN-3938-1) libpam-systemd_204-5ubuntu20.31_i386.deb | Linux |
| retrieves files from the web (USN-3938-1) libpam-systemd_204-5ubuntu20.31_amd64.deb | Linux |
| retrieves files from the web (USN-3938-1) libpam-systemd_229-4ubuntu21.21_i386.deb | Linux |
| retrieves files from the web (USN-3938-1) libpam-systemd_229-4ubuntu21.21_amd64.deb | Linux |
| retrieves files from the web (USN-3938-1) libpam-systemd_237-3ubuntu10.19_i386.deb | Linux |
| retrieves files from the web (USN-3938-1) libpam-systemd_237-3ubuntu10.19_amd64.deb | Linux |
| retrieves files from the web (USN-3938-1) libpam-systemd_239-7ubuntu10.12_i386.deb | Linux |
| retrieves files from the web (USN-3938-1) libpam-systemd_239-7ubuntu10.12_amd64.deb | Linux |
| systemd security update(DSA-4428-1) systemd_232-25+deb9u11_i386.deb | Linux |
| systemd security update(DSA-4428-1) systemd_232-25+deb9u11_amd64.deb | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) libsystemd0-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) libsystemd0-32bit-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) libsystemd0-debuginfo-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) libsystemd0-debuginfo-32bit-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) libudev1-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) libudev1-32bit-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) libudev1-debuginfo-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) libudev1-debuginfo-32bit-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-32bit-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-bash-completion-228-150.66.4.noarch.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-debuginfo-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-debuginfo-32bit-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-debugsource-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) systemd-sysvinit-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) udev-228-150.66.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1265-1(SUSE Linux Enterprise Desktop 12-SP4 ) udev-debuginfo-228-150.66.4.x86_64.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-239-45.el8.i686.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-239-45.el8.x86_64.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-container-239-45.el8.i686.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-container-239-45.el8.x86_64.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-debugsource-239-45.el8.i686.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-debugsource-239-45.el8.x86_64.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-devel-239-45.el8.i686.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-devel-239-45.el8.x86_64.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-journal-remote-239-45.el8.x86_64.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-libs-239-45.el8.i686.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-libs-239-45.el8.x86_64.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-pam-239-45.el8.x86_64.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-tests-239-45.el8.x86_64.rpm | Linux |
| (RHSA-2021:1611) systemd security, bug fix, and enhancement update systemd-udev-239-45.el8.x86_64.rpm | Linux |
| retrieves files from the web (USN-3938-1) libpam-systemd_237-3ubuntu10.19_i386.deb | Linux |
| retrieves files from the web (USN-3938-1) libpam-systemd_237-3ubuntu10.19_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234