Systemd_project Systemd
16 CVEs affecting Systemd_project Systemd. Latest disclosed: 2026-04-10. Critical: 2, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2015-7510 | Critical | 9.8 | 2017-09-25 | Stack-based buffer overflow in the getpwnam and getgrnam functions of the NSS module nss-mymachines in systemd. |
CVE-2017-1000082 | Critical | 9.8 | 2017-07-07 | systemd v233 and earlier fails to safely parse usernames starting with a numeric digit (e.g. "0day"), running the service in question with root privileges rath… |
CVE-2016-10156 | High | 7.8 | 2017-01-23 | A flaw in systemd v228 in /src/basic/fs-util.c caused world writable suid files to be created when using the systemd timers features, allowing local attackers… |
CVE-2017-15908 | High | 7.5 | 2017-10-26 | In systemd 223 through 235, a remote DNS server can respond with a custom crafted DNS NSEC resource record to trigger an infinite loop in the dns_packet_read_t… |
CVE-2017-9445 | High | 7.5 | 2017-06-28 | In systemd through 233, certain sizes passed to dns_packet_new in systemd-resolved can cause it to allocate a buffer that's too small. A malicious DNS server c… |
CVE-2017-9217 | High | 7.5 | 2017-05-24 | systemd-resolved through 233 allows remote attackers to cause a denial of service (daemon crash) via a crafted DNS response with an empty question section. |
CVE-2016-7796 | Medium | 5.5 | 2016-10-13 | The manager_dispatch_notify_fd function in systemd allows local users to cause a denial of service (system hang) via a zero-length message received over a noti… |
CVE-2016-7795 | Medium | 5.5 | 2016-10-13 | The manager_invoke_notify_message function in systemd 231 and earlier allows local users to cause a denial of service (assertion failure and PID 1 hang) via a… |
CVE-2013-4392 | Medium | 5.0 | 2013-10-28 | systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on… |
CVE-2025-4598 | Medium | 4.7 | 2025-05-30 | A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access th… |
CVE-2026-40228 | Low | 2.9 | 2026-04-10 | In systemd 259, systemd-journald can send ANSI escape sequences to the terminals of arbitrary users when a "logger -p emerg" command is executed, if ForwardToW… |
CVE-2012-0871 | | 2014-04-18 | The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite… | |
CVE-2013-4394 | | 2013-10-28 | The SetX11Keyboard function in systemd, when PolicyKit Local Authority (PKLA) is used to change the group permissions on the X Keyboard Extension (XKB) layouts… | |
CVE-2013-4393 | | 2013-10-28 | journald in systemd, when the origin of native messages is set to file, allows local users to cause a denial of service (logging service blocking) via a crafte… | |
CVE-2013-4391 | | 2013-10-28 | Integer overflow in the valid_user_field function in journal/journald-native.c in systemd allows remote attackers to cause a denial of service (crash) and poss… | |
CVE-2013-4327 | | 2013-10-03 | systemd does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a… |