Vulnerability CVE-2018-16866


Published: 2019-01-11

Description:
An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
systemd-journald Memory Corruption / Information Leak
Qualys
10.01.2019

 References:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16866
https://www.qualys.com/2019/01/09/system-down/system-down.txt

Copyright 2019, cxsecurity.com

 

Back to Top