← Back

Enterprise Linux For Ibm Z Systems 8 S390x

enterprise_linux_for_ibm_z_systems_8_s390x

Vendor: Redhat • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-15718
3Fedoraproject
RedhatSystemd Project
14Enterprise Linux
Enterprise Linux EusEnterprise Linux For Ibm Z Systems 8 S390x+11 more
Nov 21, 2024
Sep 4, 2019
N/A· v4
4.4 MEDIUM· v3
3.6 LOW· v2
In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util.c (as used by systemd-resolved to connect to the system D-Bus instance), calls sd_bus_set_trusted, which disables access controls for incomin...Show more
In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util.c (as used by systemd-resolved to connect to the system D-Bus instance), calls sd_bus_set_trusted, which disables access controls for incoming D-Bus messages. An unprivileged user can exploit this by executing D-Bus methods that should be restricted to privileged users, in order to change the system's DNS resolver settings.Show less