CVE-2019-20386

Опубликовано: 21 янв. 2020

Источник: nvd

CVSS3: 2.4

CVSS3: 5.1

CVSS2: 2.1

EPSS Низкий

Описание

An issue was discovered in button_open in login/logind-button.c in systemd before 243. When executing the udevadm trigger command, a memory leak may occur.

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00014.html
Third Party Advisory
https://github.com/systemd/systemd/commit/b2774a3ae692113e1f47a336a6c09bac9cfb49ad
Patch
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HZPCOMW5X6IZZXASCDD2CNW2DLF3YADC/
https://security.netapp.com/advisory/ntap-20200210-0002/
Third Party Advisory
https://usn.ubuntu.com/4269-1/
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00014.html
Third Party Advisory
https://github.com/systemd/systemd/commit/b2774a3ae692113e1f47a336a6c09bac9cfb49ad
Patch
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HZPCOMW5X6IZZXASCDD2CNW2DLF3YADC/
https://security.netapp.com/advisory/ntap-20200210-0002/
Third Party Advisory
https://usn.ubuntu.com/4269-1/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:systemd_project:systemd:*:*:*:*:*:*:*:*

Версия до 243 (исключая)

Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*

cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*

EPSS

Процентиль: 36%

0.00152

Низкий

2.4 Low

CVSS3

5.1 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-401

Связанные уязвимости

CVE-2019-20386

CVSS3: 2.4

ubuntu

около 6 лет назад

An issue was discovered in button_open in login/logind-button.c in systemd before 243. When executing the udevadm trigger command, a memory leak may occur.

CVE-2019-20386

CVSS3: 2.4

redhat

около 6 лет назад

An issue was discovered in button_open in login/logind-button.c in systemd before 243. When executing the udevadm trigger command, a memory leak may occur.

CVE-2019-20386

CVSS3: 2.4

msrc

больше 5 лет назад

An issue was discovered in button_open in login/logind-button.c in systemd before 243. When executing the udevadm trigger command a memory leak may occur.

CVE-2019-20386

CVSS3: 2.4

debian

около 6 лет назад

An issue was discovered in button_open in login/logind-button.c in sys ...

SUSE-SU-2020:1842-1

suse-cvrf

больше 5 лет назад

Security update for systemd

EPSS

Процентиль: 36%

0.00152

Низкий

2.4 Low

CVSS3

5.1 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-401