CVE-2018-1049

Published: 2/16/2018 Last updated: 9/16/2024 Reserved: 12/4/2017

In systemd prior to 234 a race condition exists between .mount and .automount units such that automount requests from kernel may not be serviced by systemd resulting in kernel holding the mountpoint and any processes that try to use said mount will hang. A race condition like this may lead to denial of service, until mount points are unmounted.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (2)

conf-libudev ocaml-systemd

Products affected (1)

Product	Vendor	Version
systemd	Red Hat, Inc.	<= 1.12

References (10)

http://www.securitytracker.com/id/1041520
https://lists.debian.org/debian-lts-announce/2018/11/msg00017.html
https://access.redhat.com/errata/RHSA-2018:0260
https://bugzilla.redhat.com/show_bug.cgi?id=1534701
https://usn.ubuntu.com/3558-1/
http://www.securitytracker.com/id/1041520
https://lists.debian.org/debian-lts-announce/2018/11/msg00017.html
https://access.redhat.com/errata/RHSA-2018:0260
https://bugzilla.redhat.com/show_bug.cgi?id=1534701
https://usn.ubuntu.com/3558-1/