Table of Contents
This issue affects the versions of systemd as shipped with Red Hat Enterprise Linux 7. Red Hat Product Security has rated this issue as having a security impact of Important because it allows an attacker to crash systemd-journald or escalate his privileges. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Red Hat Enterprise Linux 7 ships systemd-journal-remote through the optional systemd-journal-gateway package, which is not installed, nor enabled by default.
CVSS v3 metrics
|CVSS3 Base Score||7.5|
|CVSS3 Base Metrics||CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H|
Red Hat Security Errata
|Red Hat Enterprise Linux 7 (systemd)||RHSA-2019:0049||2019-01-14|
|Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts (rhvm-appliance)||RHSA-2019:0361||2019-02-18|
|Red Hat Enterprise Linux Extended Update Support 7.4 (systemd)||RHSA-2019:0271||2019-02-04|
|Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts (redhat-virtualization-host)||RHSA-2019:0342||2019-02-13|
|Red Hat Enterprise Linux Extended Update Support 7.5 (systemd)||RHSA-2019:0204||2019-01-29|