Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 510
Alerts This Week
Warning Icon 1 510

Ubuntu 18.04 LTS USN-3806-1 Critical: systemd DoS Threat

ubuntu
Calendar Grey November 5, 2018
Dist Ubuntu Esm H88
A systemd flaw on Ubuntu exposes systems to crashes or unauthorized code execution through specially designed network inputs. Urgent patch advised.
systemd-networkd could be made to crash or run programs if it received specially crafted network traffic.

Summary

systemd-networkd could be made to crash or run programs if it received

specially crafted network traffic.

Software Description:

- systemd: system and service manager

Details:

Felix Wilhelm discovered that the systemd-networkd DHCPv6 client

incorrectly handled certain DHCPv6 messages. In configurations where

systemd-networkd is being used, an attacker on the same network could use

this issue to cause systemd-networkd to crash, resulting in a denial of

service, or possibly execute arbitrary code.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.10:
  systemd                         239-7ubuntu10.1

Ubuntu 18.04 LTS:
  systemd                         237-3ubuntu10.4

Ubuntu 16.04 LTS:
  systemd                         229-4ubuntu21.6

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

https://ubuntu.com/security/notices/USN-3806-1

CVE-2018-15688

Severity
critical
Lowest
Low
Medium
High
Critical

November 05, 2018

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.