Executive Summary

NameCVE-2018-16865First vendor Publication2019-01-11
VendorCveLast vendor Modification2019-01-18

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base ScoreNot DefinedAttack RangeNot Defined
Cvss Impact ScoreNot DefinedAttack ComplexityNot Defined
Cvss Expoit ScoreNot DefinedAuthenticationNot Defined
Calculate full CVSS 2.0 Vectors scores


An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remote is used, may use this flaw to crash systemd-journald or execute code with journald privileges. Versions through v240 are vulnerable.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16865

Nessus® Vulnerability Scanner

2019-01-16Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2019-0049.nasl - Type : ACT_GATHER_INFO
2019-01-14Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4367.nasl - Type : ACT_GATHER_INFO
2019-01-14Name : The remote Fedora host is missing a security update.
File : fedora_2019-18b3a10c7f.nasl - Type : ACT_GATHER_INFO
2019-01-10Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2019-1141.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

BID http://www.securityfocus.com/bid/106525
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16865
DEBIAN https://www.debian.org/security/2019/dsa-4367
MISC https://www.qualys.com/2019/01/09/system-down/system-down.txt
REDHAT https://access.redhat.com/errata/RHSA-2019:0049
UBUNTU https://usn.ubuntu.com/3855-1/

Alert History

If you want to see full details history, please login or register.
2019-01-18 17:19:10
  • Multiple Updates
2019-01-15 17:19:30
  • Multiple Updates
2019-01-14 17:19:27
  • Multiple Updates
2019-01-12 17:18:59
  • Multiple Updates
2019-01-12 00:18:58
  • First insertion