Fluid Attacks Database

Description

Integer overflow in the valid_user_field function in journal/journald-native.c in systemd allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large journal data field, which triggers a heap-based buffer overflow.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	systemd	>=0 <204-5	204-5
debian 12	systemd	>=0 <204-5	204-5
debian 13	systemd	>=0 <204-5	204-5
debian 14	systemd	>=0 <204-5	204-5

Aliases

1. CVE-2013-43912. NVD-2013-43913. OSV-DEBIAN-2013-43914. OSV-2013-43915. SECURITY-TRACKER-CVE-2013-4391

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.