cve/2018/CVE-2018-16866.md

CVE-2018-16866

Description

An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable.

POC

Reference

• http://packetstormsecurity.com/files/152841/System-Down-A-systemd-journald-Exploit.html
• https://www.qualys.com/2019/01/09/system-down/system-down.txt

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/hpcprofessional/remediate_cesa_2019_2091