API tools faq
paste
Advertisement
Guest User

System of the D

a guest
Jan 13th, 2019
118
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.15 KB | None | 0 0
raw download clone embed print report
  1. https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-16865.html
  2.  
  3. systemd (229-4ubuntu21.15) xenial-security; urgency=medium
  4.  
  5. * SECURITY UPDATE: memory corruption in journald via attacker controlled alloca
  6. - debian/patches/CVE-2018-16864.patch: journald: do not store the iovec
  7. entry for process commandline on the stack
  8. - CVE-2018-16864
  9. * SECURITY UPDATE: memory corruption in journald via attacker controlled alloca
  10. - debian/patches/CVE-2018-16865_1.patch: journald: set a limit on the
  11. number of fields (1k)
  12. - debian/patches/CVE-2018-16865_2.patch: journal-remote: set a limit on the
  13. number of fields in a message
  14. - CVE-2018-16865
  15. * SECURITY UPDATE: out-of-bounds read in journald
  16. - debian/patches/CVE-2018-16866.patch: journal: fix syslog_parse_identifier()
  17. - CVE-2018-16866
  18. * SECURITY UPDATE: symlink mishandling in systemd-tmpfiles
  19. - debian/patches/CVE-2018-6954.patch: don't resolve pathnames when traversing
  20. recursively through directory trees
  21. - debian/patches/CVE-2018-6954_2.patch: backport the remaining patches to
  22. resolve this completely
  23. - CVE-2018-6954
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!