Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-33910

Опубликовано: 20 июл. 2021
Источник: debian
EPSS Низкий

Описание

basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
systemdfixed247.3-6package

Примечания

  • https://www.qualys.com/2021/07/20/cve-2021-33910/denial-of-service-systemd.txt

  • Introduced by: https://github.com/systemd/systemd/commit/7410616cd9dbbec97cf98d75324da5cda2b2f7a2 (v220)

  • Fixed by: https://github.com/systemd/systemd/commit/441e0115646d54f080e5c3bb0ba477c892861ab9

  • Fixed by: https://github.com/systemd/systemd/commit/4e2544c30bfb95e7cb4d1551ba066b1a56520ad6 (comment fix)

  • https://github.com/systemd/systemd/pull/20256

EPSS

Процентиль: 33%
0.00127
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2021-33910

CVSS3: 5.5
ubuntu
почти 4 года назад

basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.

redhat логотип

CVE-2021-33910

CVSS3: 5.5
redhat
почти 4 года назад

basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.

nvd логотип

CVE-2021-33910

CVSS3: 5.5
nvd
почти 4 года назад

basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.

msrc логотип

CVE-2021-33910

CVSS3: 5.5
msrc
почти 4 года назад

Описание отсутствует

suse-cvrf логотип

openSUSE-SU-2021:3348-1

suse-cvrf
больше 3 лет назад

Security update for systemd

EPSS

Процентиль: 33%
0.00127
Низкий