Описание
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges. Versions through v240 are vulnerable.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 237-3ubuntu10.11 |
| cosmic | released | 239-7ubuntu10.6 |
| devel | released | 240-5ubuntu3 |
| esm-infra-legacy/trusty | not-affected | code not built |
| esm-infra/bionic | not-affected | 237-3ubuntu10.11 |
| esm-infra/xenial | not-affected | 229-4ubuntu21.15 |
| precise/esm | DNE | |
| trusty | not-affected | code not built |
| trusty/esm | not-affected | code not built |
| upstream | needs-triage |
Показывать по
EPSS
4.6 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges. Versions through v240 are vulnerable.
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges. Versions through v240 are vulnerable.
An allocation of memory without limits, that could result in the stack ...
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges. Versions through v240 are vulnerable.
EPSS
4.6 Medium
CVSS2
7.8 High
CVSS3