A vulnerability in unit_deserialize of systemd allows an attacker to supply arbitrary state across systemd re-execution via NotifyAccess. This can be used to improperly influence systemd execution and possibly lead to root privilege escalation. Affected releases are systemd versions up to and including 239.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: canonical

Published: 2018-10-26T14:00:00Z

Updated: 2024-09-16T23:35:50.701Z

Reserved: 2018-08-22T00:00:00

Link: CVE-2018-15686

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-10-26T14:29:00.613

Modified: 2024-11-21T03:51:16.633

Link: CVE-2018-15686

cve-icon Redhat

Severity : Moderate

Publid Date: 2018-10-26T00:00:00Z

Links: CVE-2018-15686 - Bugzilla