USN-5583-1: systemd vulnerability
29 August 2022
systemd could be made to crash or run programs if it received specially crafted DNS request.
- systemd - system and service manager
It was discovered that systemd incorrectly handled certain DNS requests,
which leads to user-after-free vulnerability. An attacker could possibly use
this issue to cause a crash or execute arbitrary code. (CVE-2022-2526)
- USN-5583-2: libnss-resolve, libnss-systemd, systemd-journal-remote, libpam-systemd, systemd-sysv, libudev1, systemd-container, systemd-coredump, libsystemd0, libnss-myhostname, libsystemd-dev, libnss-mymachines, systemd, systemd-tests, libudev-dev, udev