CVE-2018-16888 -- systemdID: oval:org.secpod.oval:def:2000689 | Date: (C)2019-05-30 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
It was discovered systemd does not correctly check the content of PIDFile files before using it to kill processes. When a service is run from an unprivileged user , a local attacker who is able to write to the PIDFile of the mentioned service may use this flaw to trick systemd into killing other services and/or privileged processes. Versions before v237 are vulnerable.
Platform: |
Debian 8.x |
Debian 9.x |