Name of the Vulnerable Software and Affected Versions:

systemd versions through 233

Description:

The issue is caused by a buffer overflow in the dns packet new function of the systemd-resolved service in the Linux operating system. This can be exploited by a remote attacker who creates a malicious DNS server that sends a response with specially crafted data of a large size, allowing the attacker to crash the system-resolved service and potentially execute arbitrary code.

Recommendations:

For versions through 233, consider disabling the dns packet new function as a temporary workaround until a patch is available. Restrict access to the system-resolved service to minimize the risk of exploitation. Avoid using the system-resolved service until the issue is resolved.