Execution with Unnecessary Privileges Affecting systemd package, versions <0:219-67.el7
Snyk CVSS
Threat Intelligence
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-CENTOS7-SYSTEMD-2143524
- published 26 Jul 2021
- disclosed 17 Aug 2017
Introduced: 17 Aug 2017
CVE-2018-16888 Open this link in a new tabHow to fix?
Upgrade Centos:7 systemd to version 0:219-67.el7 or higher.
NVD Description
Note: Versions mentioned in the description apply only to the upstream systemd package and not the systemd package as distributed by Centos.
See How to fix? for Centos:7 relevant fixed versions and status.
It was discovered systemd does not correctly check the content of PIDFile files before using it to kill processes. When a service is run from an unprivileged user (e.g. User field set in the service file), a local attacker who is able to write to the PIDFile of the mentioned service may use this flaw to trick systemd into killing other services and/or privileged processes. Versions before v237 are vulnerable.
References
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16888
- https://security.netapp.com/advisory/ntap-20190307-0007/
- https://access.redhat.com/security/cve/CVE-2018-16888
- https://lists.apache.org/thread.html/5960a34a524848cd722fd7ab7e2227eac10107b0f90d9d1e9c3caa74@%3Cuser.cassandra.apache.org%3E
- https://access.redhat.com/errata/RHSA-2019:2091
- https://usn.ubuntu.com/4269-1/
- https://lists.apache.org/thread.html/5960a34a524848cd722fd7ab7e2227eac10107b0f90d9d1e9c3caa74%40%3Cuser.cassandra.apache.org%3E