rpm package
suse/systemd&distro=SUSE Linux Enterprise Module for Basesystem 15 SP3
pkg:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-4415 | — | < 246.16-150300.7.57.1 | 246.16-150300.7.57.1 | Jan 11, 2023 | A vulnerability was found in systemd. This security flaw can cause a local information leak due to systemd-coredump not respecting the fs.suid_dumpable kernel setting. | ||
| CVE-2022-3821 | — | < 246.16-150300.7.54.1 | 246.16-150300.7.54.1 | Nov 8, 2022 | An off-by-one Error issue was discovered in Systemd in format_timespan() function of time-util.c. An attacker could supply specific values for time and accuracy that leads to buffer overrun in format_timespan(), leading to a Denial of Service. | ||
| CVE-2021-3997 | — | < 246.16-7.33.1 | 246.16-7.33.1 | Aug 23, 2022 | A flaw was found in systemd. An uncontrolled recursion in systemd-tmpfiles may lead to a denial of service at boot time when too many nested directories are created in /tmp. | ||
| CVE-2021-33910 | — | < 246.13-7.8.1 | 246.13-7.8.1 | Jul 20, 2021 | basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash. | ||
| CVE-2020-13529 | — | < 246.15-7.11.1 | 246.15-7.11.1 | May 10, 2021 | An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigu |
- CVE-2022-4415Jan 11, 2023affected < 246.16-150300.7.57.1fixed 246.16-150300.7.57.1
A vulnerability was found in systemd. This security flaw can cause a local information leak due to systemd-coredump not respecting the fs.suid_dumpable kernel setting.
- CVE-2022-3821Nov 8, 2022affected < 246.16-150300.7.54.1fixed 246.16-150300.7.54.1
An off-by-one Error issue was discovered in Systemd in format_timespan() function of time-util.c. An attacker could supply specific values for time and accuracy that leads to buffer overrun in format_timespan(), leading to a Denial of Service.
- CVE-2021-3997Aug 23, 2022affected < 246.16-7.33.1fixed 246.16-7.33.1
A flaw was found in systemd. An uncontrolled recursion in systemd-tmpfiles may lead to a denial of service at boot time when too many nested directories are created in /tmp.
- CVE-2021-33910Jul 20, 2021affected < 246.13-7.8.1fixed 246.13-7.8.1
basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.
- CVE-2020-13529May 10, 2021affected < 246.15-7.11.1fixed 246.15-7.11.1
An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigu