Fluid Attacks Database

Description

It was discovered systemd does not correctly check the content of PIDFile files before using it to kill processes. When a service is run from an unprivileged user (e.g. User field set in the service file), a local attacker who is able to write to the PIDFile of the mentioned service may use this flaw to trick systemd into killing other services and/or privileged processes. Versions before v237 are vulnerable.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 13	systemd	>=0 <237-1	237-1
debian 14	systemd	>=0 <237-1	237-1
debian 11	systemd	>=0 <237-1	237-1
debian 12	systemd	>=0 <237-1	237-1
rpm rhel7	systemd	<0:219-67.el7	0:219-67.el7

Aliases

1. CVE-2018-168882. NVD-2018-168883. OSV-DEBIAN-2018-168884. OSV-2018-168885. SECURITY-TRACKER-CVE-2018-16888

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.