PT-2016-4042 · Systemd+1 · Systemd+1

Keszybz

Published

2016-04-19

Updated

2018-10-30

CVE-2015-8842

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions systemd versions prior to 229

Description The issue concerns weak permissions for the /var/log/journal/%m/system.journal file, allowing local users to read the file and obtain sensitive information.

Recommendations For versions prior to 229, update to version 229 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2015-8842

OPENSUSE-SU-2016_1101-1

SUSE-SU-2016:1346-1

SUSE-SU-2016:1351-1

SUSE-SU-2017:2699-1

SUSE-SU-2017:2700-1

Affected Products

Suse

Systemd

PT-2016-4042 · Systemd+1 · Systemd+1

CVE-2015-8842

Weakness Enumeration

Related Identifiers

Affected Products

References · 35