VYPR

journald

by Systemd Project

Source repositories

CVEs (4)

  • CVE-2018-16865Jan 11, 2019
    risk 0.00cvss epss 0.03

    An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remote is used, may use this flaw…

  • CVE-2018-16864Jan 11, 2019
    risk 0.00cvss epss 0.01

    An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate…

  • CVE-2018-16866Jan 11, 2019
    risk 0.00cvss epss 0.01

    An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable.

  • CVE-2013-4393Oct 28, 2013
    risk 0.00cvss epss 0.00

    journald in systemd, when the origin of native messages is set to file, allows local users to cause a denial of service (logging service blocking) via a crafted file descriptor.