CVE-2018-1049 Amazon Linux Security Advisory for systemd: ALAS2-2018-961

漏洞类别:Amazon Linux

漏洞等级:

漏洞信息

Access to automounted volumes can lock upA race condition was found in systemd. This could result in automount requests not being serviced and processes using them could hang, causing denial of service.(CVE-2018-1049 )

漏洞危害

Allows unauthorized disclosure of information; allows unauthorized modification; allows disruption of service.

解决方案

Please refer to Amazon advisory ALAS-2018-961 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

ALAS-2018-961: Amazon Linux (systemd (219-42.amzn2.7) on src)

ALAS-2018-961: Amazon Linux (systemd (219-42.amzn2.7) on x86_64)

Leave a Reply