Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Ubuntu 18.10: USN-3891-1 Critical: systemd DoS Through D-Bus Message

Calendar Feb 18, 2019 User Avatar LinuxSecurity Advisories
1 - 2 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory DoS Ubuntu local attack system crash systemd D-Bus message
systemd could be made to crash if it received specially a crafted D-Bus message. 
=========================================================================Ubuntu Security Notice USN-3891-1
February 18, 2019

systemd vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.10
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS

Summary:

systemd could be made to crash if it received specially a crafted
D-Bus message.

Software Description:
- systemd: system and service manager

Details:

It was discovered that systemd incorrectly handled certain D-Bus messages.
A local unprivileged attacker could exploit this in order to crash the
init process, resulting in a system denial-of-service (kernel panic).

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.10:
  libsystemd0                     239-7ubuntu10.8
  systemd                         239-7ubuntu10.8

Ubuntu 18.04 LTS:
  libsystemd0                     237-3ubuntu10.13
  systemd                         237-3ubuntu10.13

Ubuntu 16.04 LTS:
  libsystemd0                     229-4ubuntu21.16
  systemd                         229-4ubuntu21.16

After a standard system update you need to reboot your computer to make
all the necessary changes.

References:
  
  CVE-2019-6454

Package Information:
  https://launchpad.net/ubuntu/+source/systemd/239-7ubuntu10.8
  https://launchpad.net/ubuntu/+source/systemd/237-3ubuntu10.13
  https://launchpad.net/ubuntu/+source/systemd/229-4ubuntu21.16

Ubuntu 18.10: USN-3891-1 Critical: systemd DoS Through D-Bus Message

ubuntu
Calendar Grey February 18, 2019
Dist Ubuntu Esm H88
Ubuntu Security Notice USN-3892-1 outlines a flaw in the kernel that enables local Denial of Service (DoS) attacks through crafted network packets.
systemd could be made to crash if it received specially a crafted D-Bus message.

Summary

Topics%20covered

Topics Covered

security advisory DoS Ubuntu local attack system crash systemd D-Bus message

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10: libsystemd0 239-7ubuntu10.8 systemd 239-7ubuntu10.8 Ubuntu 18.04 LTS: libsystemd0 237-3ubuntu10.13 systemd 237-3ubuntu10.13 Ubuntu 16.04 LTS: libsystemd0 229-4ubuntu21.16 systemd 229-4ubuntu21.16 After a standard system update you need to reboot your computer to make all the necessary changes.

References

CVE-2019-6454

Severity
critical
Lowest
Low
Medium
High
Critical

February 18, 2019

Topics%20covered

Topics Covered

security advisory DoS Ubuntu local attack system crash systemd D-Bus message

Package Information

https://launchpad.net/ubuntu/+source/systemd/239-7ubuntu10.8 https://launchpad.net/ubuntu/+source/systemd/237-3ubuntu10.13 https://launchpad.net/ubuntu/+source/systemd/229-4ubuntu21.16

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here