VDB

GCVE-110-MAGEIA-2020-94

GCVE-110-MAGEIA-2020-94
Advisory Published
Vulnetix · Advisory published February 21, 2020
Updated systemd packages fix security vulnerabilities: It was discovered that systemd incorrectly handled certain udevadm trigger commands. A local attacker could possibly use this issue to cause systemd to consume resources, leading to a denial of service (CVE-2019-20386). Tavis Ormandy discovered that systemd incorrectly handled certain Polkit queries. A local attacker could use this issue to cause systemd to crash, resulting in a denial of service, or possibly execute arbitrary code and escalate privileges (CVE-2020-1712).

Affected Products

VendorProductVersionsPlatforms
Mageialibgit20 (affected), 0.28.5-1.mga7 (unaffected)
Mageiasystemd0 (affected), 241-8.5.mga7 (unaffected), 0 (affected), 241-8.5.mga7 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›