Information on source package systemd

Available versions

ReleaseVersion
jessie215-17+deb8u15
stretch232-25+deb9u17
stretch (security)232-25+deb9u14
buster241-7~deb10u11
buster (security)241-7~deb10u10
bullseye247.3-7+deb11u5
bullseye (security)247.3-7+deb11u6
bookworm252.31-1~deb12u1
trixie257~rc2-3
sid257~rc2-3

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2022-4415vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedfixedA vulnerability was found in systemd. This security flaw can cause a l ...
CVE-2021-3997vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedfixedA flaw was found in systemd. An uncontrolled recursion in systemd-tmpf ...
CVE-2019-3844fixedvulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedfixedIt was discovered that a systemd service that uses DynamicUser propert ...
CVE-2019-3843fixedvulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedfixedIt was discovered that a systemd service that uses DynamicUser propert ...
CVE-2018-16888vulnerable (no DSA)vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedIt was discovered systemd does not correctly check the content of PIDF ...
CVE-2018-6954vulnerable (no DSA, postponed)vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedsystemd-tmpfiles in systemd through 237 mishandles symlinks present in ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2023-31439vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in systemd 253. An attacker can modify the con ...
CVE-2023-31438vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in systemd 253. An attacker can truncate a sea ...
CVE-2023-31437vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in systemd 253. An attacker can modify a seale ...
CVE-2020-13776vulnerablevulnerablefixedfixedfixedfixedfixedsystemd through v245 mishandles numerical usernames such as ones compo ...
CVE-2020-13529vulnerablevulnerablevulnerablevulnerablefixedfixedfixedAn exploitable denial-of-service vulnerability exists in Systemd 245. ...
CVE-2019-20386vulnerablevulnerablevulnerablefixedfixedfixedfixedAn issue was discovered in button_open in login/logind-button.c in sys ...
CVE-2017-1000082fixedvulnerablefixedfixedfixedfixedfixedsystemd v233 and earlier fails to safely parse usernames starting with ...
CVE-2017-18078fixedvulnerablefixedfixedfixedfixedfixedsystemd-tmpfiles in systemd before 237 attempts to support ownership/p ...
CVE-2013-4392vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerablesystemd, when updating file permissions, allows local users to change ...

Resolved issues

BugDescription
CVE-2023-50868The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 whe ...
CVE-2023-50387Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6 ...
CVE-2023-26604systemd before 247 does not adequately block local privilege escalatio ...
CVE-2023-7008A vulnerability was found in systemd-resolved. This issue may allow sy ...
CVE-2022-45873systemd 250 and 251 allows local users to achieve a systemd-coredump d ...
CVE-2022-3821An off-by-one Error issue was discovered in Systemd in format_timespan ...
CVE-2022-2526A use-after-free vulnerability was found in systemd. This issue occurs ...
CVE-2021-33910basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 ...
CVE-2020-1712A heap use-after-free vulnerability was found in systemd before versio ...
CVE-2019-15718In systemd 240, bus_open_system_watch_bind_with_description in shared/ ...
CVE-2019-6454An issue was discovered in sd-bus in systemd 239. bus_process_object() ...
CVE-2019-3842In systemd before v242-rc4, it was discovered that pam_systemd does no ...
CVE-2019-3815A memory leak was discovered in the backport of fixes for CVE-2018-168 ...
CVE-2018-21029systemd 239 through 245 accepts any certificate signed by a trusted ce ...
CVE-2018-16866An out of bounds read was discovered in systemd-journald in the way it ...
CVE-2018-16865An allocation of memory without limits, that could result in the stack ...
CVE-2018-16864An allocation of memory without limits, that could result in the stack ...
CVE-2018-15688A buffer overflow vulnerability in the dhcp6 client of systemd allows ...
CVE-2018-15687A race condition in chown_one() of systemd allows an attacker to cause ...
CVE-2018-15686A vulnerability in unit_deserialize of systemd allows an attacker to s ...
CVE-2018-1049In systemd prior to 234 a race condition exists between .mount and .au ...
CVE-2017-15908In systemd 223 through 235, a remote DNS server can respond with a cus ...
CVE-2017-9445In systemd through 233, certain sizes passed to dns_packet_new in syst ...
CVE-2017-9217systemd-resolved through 233 allows remote attackers to cause a denial ...
CVE-2016-10156A flaw in systemd v228 in /src/basic/fs-util.c caused world writable s ...
CVE-2016-7796The manager_dispatch_notify_fd function in systemd allows local users ...
CVE-2016-7795The manager_invoke_notify_message function in systemd 231 and earlier ...
CVE-2015-8842tmpfiles.d/systemd.conf in systemd before 229 uses weak permissions fo ...
CVE-2015-7510Stack-based buffer overflow in the getpwnam and getgrnam functions of ...
CVE-2014-9770tmpfiles.d/systemd.conf in systemd before 214 uses weak permissions fo ...
CVE-2013-4394The SetX11Keyboard function in systemd, when PolicyKit Local Authority ...
CVE-2013-4393journald in systemd, when the origin of native messages is set to file ...
CVE-2013-4391Integer overflow in the valid_user_field function in journal/journald- ...
CVE-2013-4327systemd does not properly use D-Bus for communication with a polkit au ...
CVE-2012-1174The rm_rf_children function in util.c in the systemd-logind login mana ...
CVE-2012-1101systemd 37-1 does not properly handle non-existent services, which cau ...
CVE-2012-0871The session_link_x11_socket function in login/logind-session.c in syst ...

Security announcements

DSA / DLADescription
DLA-3859-1systemd - security update
ELA-1165-1systemd - security update
ELA-917-1systemd - security update
ELA-916-1systemd - security update
DLA-3474-1systemd - security update
DLA-3377-1systemd - security update
ELA-675-1systemd - security update
DLA-3063-1systemd - security update
ELA-530-1systemd - security update
DSA-4942-1systemd - security update
DLA-2715-1systemd - security update
ELA-115-1systemd - security update
DLA-1762-2systemd - regression update
DLA-1762-1systemd - security update
DSA-4428-1systemd - security update
DLA-1711-1systemd - security update
DLA-1684-1systemd - security update
DSA-4393-1systemd - security update
ELA-81-1systemd - security update
DLA-1639-1systemd - security update
DSA-4367-2systemd - regression update
DSA-4367-1systemd - security update
DLA-1580-1systemd - security update
DLA-659-1systemd - security update
DSA-2777-1systemd - several

Search for package or bug name: Reporting problems