Vulnerability Description
In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util.c (as used by systemd-resolved to connect to the system D-Bus instance), calls sd_bus_set_trusted, which disables access controls for incoming D-Bus messages. An unprivileged user can exploit this by executing D-Bus methods that should be restricted to privileged users, in order to change the system's DNS resolver settings.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Systemd Project | Systemd | 240 |
| Fedoraproject | Fedora | 29 |
| Redhat | Openshift Container Platform | 4.1 |
| Redhat | Enterprise Linux | 8.0 |
| Redhat | Enterprise Linux Eus | 8.1 |
| Redhat | Enterprise Linux For Ibm Z Systems 8 S390X | All versions |
| Redhat | Enterprise Linux For Ibm Z Systems Eus | 8.1 |
| Redhat | Enterprise Linux For Ibm Z Systems Eus S390X | 8.1 |
| Redhat | Enterprise Linux For Power Little Endian | 8.0 |
| Redhat | Enterprise Linux For Power Little Endian Eus | 8.1 |
| Redhat | Enterprise Linux Server Aus | 8.2 |
| Redhat | Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions | 8.1 |
| Redhat | Enterprise Linux Server Tus | 8.2 |
| Redhat | Enterprise Linux Server Update Services For Sap Solutions | 8.1 |
References
- http://www.openwall.com/lists/oss-security/2019/09/03/1ExploitMailing ListThird Party Advisory
- https://access.redhat.com/errata/RHSA-2019:3592Issue TrackingThird Party Advisory
- https://access.redhat.com/errata/RHSA-2019:3941Issue TrackingPatchThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1746057Issue TrackingPatchThird Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- http://www.openwall.com/lists/oss-security/2019/09/03/1ExploitMailing ListThird Party Advisory
- https://access.redhat.com/errata/RHSA-2019:3592Issue TrackingThird Party Advisory
- https://access.redhat.com/errata/RHSA-2019:3941Issue TrackingPatchThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1746057Issue TrackingPatchThird Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
FAQ
What is CVE-2019-15718?
CVE-2019-15718 is a vulnerability with a CVSS score of 4.4 (MEDIUM). In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util.c (as used by systemd-resolved to connect to the system D-Bus instance), calls sd_bus_set_trusted, which disables access ...
How severe is CVE-2019-15718?
CVE-2019-15718 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-15718?
Check the references section above for vendor advisories and patch information. Affected products include: Systemd Project Systemd, Fedoraproject Fedora, Redhat Openshift Container Platform, Redhat Enterprise Linux, Redhat Enterprise Linux Eus.