Vulnerability CVE-2019-6454: Information

Description

An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-length stack buffer for temporarily storing the object path of incoming D-Bus messages. An unprivileged local user can exploit this by sending a specially crafted message to PID1, causing the stack pointer to jump over the stack guard pages into an unmapped memory region and trigger a denial of service (systemd PID1 crash and kernel panic).

Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2019-6454

Published: March 21, 2019

Modified: Nov. 7, 2023

Error type identifier: CWE-787

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
systemd	sisyphus	240-alt1	255.6-alt2	ALT-PU-2019-1000-1	218867	Fixed
systemd	p10	240-alt1	249.17-alt2	ALT-PU-2019-1000-1	218867	Fixed
systemd	p9	240-alt1	247.13-alt1	ALT-PU-2019-1000-1	218867	Fixed
systemd	p8	237-alt2.M80P.6	239-alt6	ALT-PU-2019-1283-1	221965	Fixed
systemd	c10f1	240-alt1	249.17-alt2	ALT-PU-2019-1000-1	218867	Fixed
systemd	c9f2	240-alt1	246.14-alt1	ALT-PU-2019-1000-1	218867	Fixed
systemd	p11	240-alt1	255.6-alt2	ALT-PU-2019-1000-1	218867	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
DSA-4393-1	Third Party Advisory
USN-3891-1	Third Party Advisory
[SECURITY] [DLA 1684-1] 20190219 systemd security update	Mailing List Third Party Advisory
https://github.com/systemd/systemd/commits/master/src/libsystemd/sd-bus/bus-objects.c	Patch Third Party Advisory
RHSA-2019:0368	Third Party Advisory
107081	Third Party Advisory VDB Entry
[oss-security] 20190219 CVE-2019-6454: systemd (PID1) crash with specially crafted D-Bus message	Mailing List Third Party Advisory
[oss-security] 20190218 CVE-2019-6454: systemd (PID1) crash with specially crafted D-Bus message	Mailing List Patch Third Party Advisory
SUSE-SA:2019:0255-1	Third Party Advisory
https://security.netapp.com/advisory/ntap-20190327-0004/	Third Party Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10278	Patch Third Party Advisory
RHSA-2019:0990	Third Party Advisory
openSUSE-SU-2019:1450	Mailing List Third Party Advisory
RHSA-2019:1322	Third Party Advisory
RHSA-2019:1502	Third Party Advisory
RHSA-2019:2805	Third Party Advisory
[oss-security] 20210720 CVE-2021-33910: Denial of service (stack exhaustion) in systemd (PID 1)	Exploit Mailing List Third Party Advisory
FEDORA-2019-8434288a24

Affected configurations:
1. Configuration 1
  cpe:2.3:a:systemd_project:systemd:239:*:*:*:*:*:*:*
  
  Configuration 2
  cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
  
  Configuration 3
  cpe:2.3:a:netapp:active_iq_performance_analytics_services:-:*:*:*:*:*:*:*
  
  Configuration 4
  cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  
  Configuration 5
  cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
  
  Configuration 6
  cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
  
  Configuration 7
  cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.2:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.1:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.2:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.2:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.1:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.1:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:7.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:7.3:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_compute_node_eus:7.5:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:7.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:7.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:7.5:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian_eus:7.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.5:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.1:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.2:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:7.3:*:*:*:*:*:*:*
  
  Configuration 8
  cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*
  Start including
  8.0.0
  End excliding
  8.1.1
  cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*
  End excliding
  7.7.2.21
  cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*
  Start including
  7.8.0
  End excliding
  7.8.2.8

Version: v24.5.3

Vulnerability CVE-2019-6454: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1

Configuration 2

Configuration 3

Configuration 4

Configuration 5

Configuration 6

Configuration 7

Configuration 8