An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remote is used, may use this flaw to crash systemd-journald or execute code with journald privileges. Versions through v240 are vulnerable.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Mon, 09 Jun 2025 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2025-06-09T15:51:35.108Z

Reserved: 2018-09-11T00:00:00.000Z

Link: CVE-2018-16865

cve-icon Vulnrichment

Updated: 2024-08-05T10:32:54.176Z

cve-icon NVD

Status : Modified

Published: 2019-01-11T21:29:00.257

Modified: 2024-11-21T03:53:28.770

Link: CVE-2018-16865

cve-icon Redhat

Severity : Important

Publid Date: 2019-01-09T18:00:00Z

Links: CVE-2018-16865 - Bugzilla

cve-icon OpenCVE Enrichment

No data.