In systemd prior to 234 a race condition exists between .mount and .automount units such that automount requests from kernel may not be serviced by systemd resulting in kernel holding the mountpoint and any processes that try to use said mount will hang. A race condition like this may lead to denial of service, until mount points are unmounted.
References
| Link | Resource |
|---|---|
| https://bugzilla.redhat.com/show_bug.cgi?id=1534701 | Issue Tracking Patch Third Party Advisory |
| https://access.redhat.com/errata/RHSA-2018:0260 | Third Party Advisory |
| https://usn.ubuntu.com/3558-1/ | Third Party Advisory |
| http://www.securitytracker.com/id/1041520 | Third Party Advisory VDB Entry |
| https://lists.debian.org/debian-lts-announce/2018/11/msg00017.html | Mailing List Third Party Advisory |
Advertisement
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Information
Published : 2018-02-16 13:29
Updated : 2022-01-31 10:26
NVD link : CVE-2018-1049
Mitre link : CVE-2018-1049
JSON object : View
CWE
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Advertisement
Products Affected
redhat
- enterprise_linux_desktop
- enterprise_linux_aus
- enterprise_linux
- enterprise_linux_workstation
- enterprise_linux_server_aus
- enterprise_linux_server_tus
- enterprise_linux_server_eus
- enterprise_linux_server
systemd_project
- systemd
canonical
- ubuntu_linux
debian
- debian_linux