Missing Release of Resource after Effective Lifetime in systemd

Do your applications use this vulnerable package? Test your applications

Overview

An issue was discovered in button_open in login/logind-button.c in systemd before 243. When executing the udevadm trigger command, a memory leak may occur.

References

Debian Security Tracker
FEDORA
GitHub Commit
Netapp Security Advisory
OpenSuse Security Announcement
Ubuntu CVE Tracker
Ubuntu Security Advisory

Attack Vector

Physical
Attack Complexity

Low
Privileges Required

None
User Interaction

None
Scope

Unchanged
Confidentiality

None
Integrity

None
Availability

Low

CVE: CVE-2019-20386
CWE: CWE-772
Snyk ID: SNYK-DEBIAN8-SYSTEMD-542803
Disclosed: 21 Jan, 2020
Published: 21 Jan, 2020

Missing Release of Resource after Effective Lifetime
Affecting systemd package, versions *

Overview

References

CVSS Score

Missing Release of Resource after Effective Lifetime Affecting systemd package, versions *

Overview

References

Missing Release of Resource after Effective Lifetime
Affecting systemd package, versions *