Andrew Ayer

**Name of the Vulnerable Software and Affected Versions** systemd versions 231 and earlier **Description** The issue allows local users to cause a denial of service, resulting in an assertion failure and PID 1 hang, by sending a zero-length message over a notify socket. This is due to a problem in the `manager invoke notify message` function. **Recommendations** For versions 231 and earlier, as a temporary workaround, consider restricting access to the `manager invoke notify message` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** systemd (affected versions not specified) **Description** The issue allows local users to cause a denial of service, resulting in a system hang. This occurs when a zero-length message is received over a notify socket, causing an error to be returned and the notification handler to be disabled. The `manager dispatch notify fd` function in systemd is involved in this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.