← Voltar para CVEs
CVE-2018-1049
MEDIUM5.9
Descricao
In systemd prior to 234 a race condition exists between .mount and .automount units such that automount requests from kernel may not be serviced by systemd resulting in kernel holding the mountpoint and any processes that try to use said mount will hang. A race condition like this may lead to denial of service, until mount points are unmounted.
Detalhes CVE
Pontuacao CVSS v3.15.9
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Vetor de ataqueNETWORK
ComplexidadeHIGH
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado2/16/2018
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
canonical:ubuntu_linuxdebian:debian_linuxredhat:enterprise_linuxredhat:enterprise_linux_ausredhat:enterprise_linux_desktopredhat:enterprise_linux_serverredhat:enterprise_linux_server_ausredhat:enterprise_linux_server_eusredhat:enterprise_linux_server_tusredhat:enterprise_linux_workstationsystemd_project:systemd
Fraquezas (CWE)
CWE-362CWE-362
Referencias
http://www.securitytracker.com/id/1041520(secalert@redhat.com)
https://access.redhat.com/errata/RHSA-2018:0260(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=1534701(secalert@redhat.com)
https://lists.debian.org/debian-lts-announce/2018/11/msg00017.html(secalert@redhat.com)
https://usn.ubuntu.com/3558-1/(secalert@redhat.com)
http://www.securitytracker.com/id/1041520(af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:0260(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=1534701(af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2018/11/msg00017.html(af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3558-1/(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.