SB2018020509 - Ubuntu update for systemd
Published: February 5, 2018
Security Bulletin ID
SB2018020509
Severity
Low
Patch available
YES
Number of vulnerabilities
2
Exploitation vector
Remote access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Infinite loop (CVE-ID: CVE-2017-15908)
The vulnerability allows a remote attacker to cause DoS condition on the target system.The vulnerability exists in systemd due to an infinite loop in the dns_packet_read_type_window() function in the 'systemd-resolved' service. A remote attacker can return specially crafted DNS NSEC resource record data to the connected target client system, trigger an infinite loop and cause the target systemd-resolve service to fail to respond.
Successful exploitation of the vulnerability results in denial of service.
2) Race condition (CVE-ID: CVE-2018-1049)
The vulnerability allows an adjacent attacker to cause DoS condition no the target system.The weakness exists in GNU systemd due to an error when handling malicious input. An adjacent attacker can submit a specially crafted automount request, trigger race condition and cause the service to crash.
Remediation
Install update from vendor's website.