systemd (SUSE:Linux Enterprise Module for Basesystem 15 SP1) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Basesystem 15 SP1 package systemd, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (6)
CVE-2019-3843 — CVSS 7.8 (high): It was discovered that a systemd service that uses DynamicUser property can create a SUID/SGID binary that would be allowed to run as the…
CVE-2019-3844 — CVSS 7.8 (high): It was discovered that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binaries…
CVE-2020-1712 — CVSS 7.8 (high): A heap use-after-free vulnerability was found in systemd before version v245-rc1, where asynchronous Polkit queries are performed while…
CVE-2019-3842 — CVSS 7.0 (high): In systemd before v242-rc4, it was discovered that pam_systemd does not properly sanitize the environment before using the XDG_SEAT…
CVE-2019-6454 — CVSS 5.5 (medium): An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-length stack…
CVE-2019-20386 — CVSS 2.4 (low): An issue was discovered in button_open in login/logind-button.c in systemd before 243. When executing the udevadm trigger command, a memory…