PublicDateAtUSN: 2018-10-26
Candidate: CVE-2018-15686
PublicDate: 2018-10-26 14:29:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15686
 https://ubuntu.com/security/notices/USN-3816-1
Description:
 A vulnerability in unit_deserialize of systemd allows an attacker to supply
 arbitrary state across systemd re-execution via NotifyAccess. This can be
 used to improperly influence systemd execution and possibly lead to root
 privilege escalation. Affected releases are systemd versions up to and
 including 239.
Ubuntu-Description: 
Notes: 
Bugs: 
 https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1796402
 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912005
Priority: medium
Discovered-by: Jann Horn
Assigned-to: chrisccoulson
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [7.8 HIGH]
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]


Patches_systemd:
 upstream: https://github.com/systemd/systemd/pull/10519
 upstream: https://github.com/systemd/systemd/commit/9f1c81d80a435d15ca1bd536a6d043c18c81c047
upstream_systemd: pending
precise/esm_systemd: DNE
trusty_systemd: not-affected (binary not built)
trusty/esm_systemd: not-affected (binary not built)
xenial_systemd: released (229-4ubuntu21.8)
esm-infra/xenial_systemd: released (229-4ubuntu21.8)
bionic_systemd: released (237-3ubuntu10.6)
cosmic_systemd: released (239-7ubuntu10.3)
devel_systemd: released (239-7ubuntu10.3)