Improper Input Validation in systemd

Do your applications use this vulnerable package? Test your applications

Overview

It was discovered systemd does not correctly check the content of PIDFile files before using it to kill processes. When a service is run from an unprivileged user (e.g. User field set in the service file), a local attacker who is able to write to the PIDFile of the mentioned service may use this flaw to trick systemd into killing other services and/or privileged processes. Versions before v237 are vulnerable.

References

Apache Security Advisory
Debian Security Tracker
Netapp Security Advisory
RHSA Security Advisory
RedHat Bugzilla Bug
UBUNTU
Ubuntu CVE Tracker

Attack Vector

Local
Attack Complexity

High
Privileges Required

Low
User Interaction

None
Scope

Unchanged
Confidentiality

None
Integrity

None
Availability

High

CVE: CVE-2018-16888
CWE: CWE-20 CWE-250 CWE-732
Snyk ID: SNYK-DEBIAN9-SYSTEMD-305135
Disclosed: 14 Jan, 2019
Published: 03 Jan, 2019

Improper Input Validation
Affecting systemd package, versions *

Overview

References

CVSS Score

Improper Input Validation Affecting systemd package, versions *

Overview

References

Improper Input Validation
Affecting systemd package, versions *