An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon :. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable.
The product reads data past the end, or before the beginning, of the intended buffer.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Systemd | Systemd_project | 221 (including) | 239 (including) |
Red Hat Ansible Tower 3.4 for RHEL 7 | RedHat | ansible-tower-34/ansible-tower-memcached:1.4.15-28 | * |
Red Hat Ansible Tower 3.4 for RHEL 7 | RedHat | ansible-tower-35/ansible-tower-memcached:1.4.15-28 | * |
Red Hat Ansible Tower 3.4 for RHEL 7 | RedHat | ansible-tower-37/ansible-tower-memcached-rhel7:1.4.15-28 | * |
Red Hat Enterprise Linux 7 | RedHat | systemd-0:219-67.el7 | * |
Red Hat Enterprise Linux 7.4 Advanced Update Support | RedHat | systemd-0:219-42.el7_4.20 | * |
Red Hat Enterprise Linux 7.4 Telco Extended Update Support | RedHat | systemd-0:219-42.el7_4.20 | * |
Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions | RedHat | systemd-0:219-42.el7_4.20 | * |
Red Hat Enterprise Linux 7.5 Extended Update Support | RedHat | systemd-0:219-57.el7_5.9 | * |
Red Hat Enterprise Linux 7.6 Extended Update Support | RedHat | systemd-0:219-62.el7_6.11 | * |
Systemd | Ubuntu | bionic | * |
Systemd | Ubuntu | cosmic | * |
Systemd | Ubuntu | devel | * |
Systemd | Ubuntu | esm-infra/bionic | * |
Systemd | Ubuntu | esm-infra/xenial | * |
Systemd | Ubuntu | xenial | * |