suse · CVE-2018-16864

Quick triage

Priority: high Published: 2021-05-30 14:16:54 UTC Updated: 2025-11-05 03:23:40 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2018-16864 severity important: SUSE including 688 source package names (0.1.0:libsystemd0-234-24.20.1, 0.1.0:libudev1-234-24.20.1, …), 1417 product×package rows across 216 product lines (Container caasp/v4/389-ds, Container caasp/v4/busybox, … (216 product lines)): Fixed 1260, Known Affected 157.

Description:

An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges. Versions through v240 are vulnerable.

cvelogic Threat Intelligence