
USN-3558-1: systemd vulnerabilities
USN-3558-1: systemd vulnerabilities Ubuntu Security Notice USN-3558-1 5th February, 2018 systemd vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in systemd. Software description systemd – system and service manager Details Karim Hossen & Thomas Imbert and Nelson William Gamazo Sanchezindependently discovered that systemd-resolved incorrectly handled certainDNS responses. A remote attacker could possibly use this issue to causesystemd to temporarily stop responding, resulting in a denial of service.This issue only affected Ubuntu 16.04 LTS. (CVE-2017-15908) It was discovered that systemd incorrectly handled automounted volumes. Alocal attacker could possibly use this issue to cause applications to hang,resulting in a denial of service. (CVE-2018-1049) Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: systemd 229-4ubuntu21.1 Ubuntu 14.04 [ more… ]