Stack overflow vulnerability when calling syslog from a command with long cmdlineID: oval:org.secpod.oval:def:50168 | Date: (C)2019-01-11 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges.
Platform: |
Red Hat Enterprise Linux 7 |
CentOS 7 |