Information on source package systemd

Available versions

ReleaseVersion
wheezy44-11+deb7u4
wheezy (security)44-11+deb7u5
jessie215-17+deb8u7
stretch232-25+deb9u2
buster238-4
sid238-5

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2018-6954fixedvulnerable (no DSA, postponed)vulnerable (no DSA, postponed)fixedfixedsystemd-tmpfiles in systemd through 237 mishandles symlinks present in ...
CVE-2018-1049vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)fixedfixedIn systemd prior to 234 a race condition exists between .mount and ...

Open unimportant issues

BugwheezyjessiestretchbustersidDescription
CVE-2017-18078vulnerablevulnerablevulnerablefixedfixedsystemd-tmpfiles in systemd before 237 attempts to support ...
CVE-2017-1000082fixedfixedvulnerablefixedfixedsystemd v233 and earlier fails to safely parse usernames starting with ...
CVE-2013-4392fixedvulnerablevulnerablevulnerablevulnerablesystemd, when updating file permissions, allows local users to change ...

Resolved issues

BugDescription
CVE-2017-9445In systemd through 233, certain sizes passed to dns_packet_new in ...
CVE-2017-9217systemd-resolved through 233 allows remote attackers to cause a denial ...
CVE-2017-15908In systemd 223 through 235, a remote DNS server can respond with a ...
CVE-2016-7796The manager_dispatch_notify_fd function in systemd allows local users ...
CVE-2016-7795The manager_invoke_notify_message function in systemd 231 and earlier ...
CVE-2016-10156A flaw in systemd v228 in /src/basic/fs-util.c caused world writable ...
CVE-2015-8842tmpfiles.d/systemd.conf in systemd before 229 uses weak permissions ...
CVE-2015-7510Stack-based buffer overflow in the getpwnam and getgrnam functions of ...
CVE-2014-9770tmpfiles.d/systemd.conf in systemd before 214 uses weak permissions ...
CVE-2013-4394The SetX11Keyboard function in systemd, when PolicyKit Local Authority ...
CVE-2013-4393journald in systemd, when the origin of native messages is set to ...
CVE-2013-4391Integer overflow in the valid_user_field function in ...
CVE-2013-4327systemd does not properly use D-Bus for communication with a polkit ...
CVE-2012-1174The rm_rf_children function in util.c in the systemd-logind login ...
CVE-2012-1101
CVE-2012-0871The session_link_x11_socket function in login/logind-session.c in ...

Security announcements

DSA / DLADescription
DLA-659-1systemd - security update
DSA-2777-1systemd - several

Search for package or bug name: Reporting problems