Vulnerabilities > Systemd Project > Systemd > 223

DATE CVE VULNERABILITY TITLE RISK
2017-06-28 CVE-2017-9445 Out-of-bounds Write vulnerability in Systemd Project Systemd
In systemd through 233, certain sizes passed to dns_packet_new in systemd-resolved can cause it to allocate a buffer that's too small.
network
low complexity
systemd-project CWE-787
7.5
2017-05-24 CVE-2017-9217 NULL Pointer Dereference vulnerability in Systemd Project Systemd
systemd-resolved through 233 allows remote attackers to cause a denial of service (daemon crash) via a crafted DNS response with an empty question section.
network
low complexity
systemd-project CWE-476
7.5
2016-10-13 CVE-2016-7795 Improper Input Validation vulnerability in multiple products
The manager_invoke_notify_message function in systemd 231 and earlier allows local users to cause a denial of service (assertion failure and PID 1 hang) via a zero-length message received over a notify socket.
local
low complexity
canonical systemd-project CWE-20
5.5