An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable.
| Version | Score | Severity | Vector String |
|---|---|---|---|
| 3.0 | 4.3 | Medium | CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
| Product | Vendor | Version |
|---|---|---|
| systemd | The systemd Project | Android-11 |