CWE
787
Advisory Published
CVE Published
Updated

CVE-2019-6454

First published: Thu Jan 17 2019(Updated: )

An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-length stack buffer for temporarily storing the object path of incoming D-Bus messages. An unprivileged local user can exploit this by sending a specially crafted message to PID1, causing the stack pointer to jump over the stack guard pages into an unmapped memory region and trigger a denial of service (systemd PID1 crash and kernel panic).

Credit: cve@mitre.org cve@mitre.org cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Systemd Project Systemd=239
openSUSE Leap=15.0
Netapp Active Iq Performance Analytics Services
Debian Debian Linux=8.0
Debian Debian Linux=9.0
Fedoraproject Fedora=29
Canonical Ubuntu Linux=16.04
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=18.10
Redhat Enterprise Linux=8.0
Redhat Enterprise Linux Compute Node Eus=7.5
Redhat Enterprise Linux Desktop=7.0
Redhat Enterprise Linux Eus=7.4
Redhat Enterprise Linux Eus=7.5
Redhat Enterprise Linux Eus=8.1
Redhat Enterprise Linux Eus=8.2
Redhat Enterprise Linux Eus=8.4
Redhat Enterprise Linux For Ibm Z Systems Eus=7.4
Redhat Enterprise Linux For Ibm Z Systems Eus=7.5
Redhat Enterprise Linux For Ibm Z Systems Eus=8.1
Redhat Enterprise Linux For Ibm Z Systems Eus=8.2
Redhat Enterprise Linux For Ibm Z Systems Eus=8.4
Redhat Enterprise Linux For Power Big Endian Eus=7.4
Redhat Enterprise Linux For Power Little Endian=8.0
Redhat Enterprise Linux For Power Little Endian Eus=7.4
Redhat Enterprise Linux For Power Little Endian Eus=7.5
Redhat Enterprise Linux For Power Little Endian Eus=8.1
Redhat Enterprise Linux For Power Little Endian Eus=8.2
Redhat Enterprise Linux For Power Little Endian Eus=8.4
Redhat Enterprise Linux Server=7.0
Redhat Enterprise Linux Server Aus=7.3
Redhat Enterprise Linux Server Aus=7.4
Redhat Enterprise Linux Server Aus=7.6
Redhat Enterprise Linux Server Aus=8.2
Redhat Enterprise Linux Server Aus=8.4
Redhat Enterprise Linux Server Eus=7.6
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions=7.3
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions=7.4
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions=8.0
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions=8.1
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions=8.2
Redhat Enterprise Linux Server Tus=7.3
Redhat Enterprise Linux Server Tus=7.4
Redhat Enterprise Linux Server Tus=7.6
Redhat Enterprise Linux Server Tus=8.2
Redhat Enterprise Linux Server Tus=8.4
Redhat Enterprise Linux Server Update Services For Sap Solutions=7.3
Redhat Enterprise Linux Server Update Services For Sap Solutions=7.4
Redhat Enterprise Linux Server Update Services For Sap Solutions=8.0
Redhat Enterprise Linux Server Update Services For Sap Solutions=8.1
Redhat Enterprise Linux Server Update Services For Sap Solutions=8.2
Redhat Enterprise Linux Workstation=7.0
McAfee Web Gateway<7.7.2.21
McAfee Web Gateway>=7.8.0<7.8.2.8
McAfee Web Gateway>=8.0.0<8.1.1
debian/systemd
247.3-7+deb11u5
247.3-7+deb11u6
252.31-1~deb12u1
257~rc3-1
257-1

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Reference Links

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203