CVE-2019-6454
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Exploitability: 1.8 / Impact: 3.6
Source: NVD
Description
An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-length stack buffer for temporarily storing the object path of incoming D-Bus messages. An unprivileged local user can exploit this by sending a specially crafted message to PID1, causing the stack pointer to jump over the stack guard pages into an unmapped memory region and trigger a denial of service (systemd PID1 crash and kernel panic).
Affected (55)
Products: Systemd Project: Systemd · Opensuse: Leap · Netapp: Active Iq Performance Analytics Services · +5 more
Show all products
Systemd Project: Systemd · Opensuse: Leap · Netapp: Active Iq Performance Analytics Services · Debian: Debian Linux · Fedoraproject: Fedora · Canonical: Ubuntu Linux · Redhat: Enterprise Linux, Enterprise Linux Compute Node Eus, Enterprise Linux Desktop, Enterprise Linux Eus, Enterprise Linux For Ibm Z Systems Eus, Enterprise Linux For Power Big Endian Eus, Enterprise Linux For Power Little Endian, Enterprise Linux For Power Little Endian Eus, Enterprise Linux Server, Enterprise Linux Server Aus, Enterprise Linux Server Eus, Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions, Enterprise Linux Server Tus, Enterprise Linux Server Update Services For Sap Solutions, Enterprise Linux Workstation · Mcafee: Web Gateway
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 239 |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 8.0 |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Version 29 |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Version 16.04 |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Version 8.0 | |
| Version 7.5 | |
| Version 7.0 | |
| Version 7.4 | |
| Version 7.4 | |
| Version 7.4 | |
| Version 8.0 | |
| Version 7.4 | |
| Version 7.0 | |
| Version 7.3 | |
| Version 7.6 | |
| Version 7.3 | |
| Version 7.3 | |
| Version 7.3 | |
| Version 7.0 |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 7.7.2.21 |
References (36)
Source: cve@mitre.org
Third Party Advisory
Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
Mailing ListPatchThird Party Advisory
Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
ExploitMailing ListThird Party Advisory
Source: cve@mitre.org
PatchThird Party Advisory
Source: cve@mitre.org
PatchThird Party Advisory
Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitMailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Timeline
No history available yet.