systemd project

Top products

The 15 most recently published vulnerabilities affecting systemd project.

• CVE-2026-40228In systemd 259, systemd-journald can send ANSI escape sequences to the terminals of arbitrary users when a "logger -p emerg" command is executed, if ForwardToWall=yes is set.2.9Apr 10, 2026
• CVE-2026-40227In systemd 260 before 261, a local unprivileged user can trigger an assert via an IPC API call with an array or map that has a null element.6.2Apr 10, 2026
• CVE-2026-40226In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.6.4Apr 10, 2026
• CVE-2026-40225In udev in systemd before 260, local root execution can occur via malicious hardware devices and unsanitized kernel output.6.4Apr 10, 2026
• CVE-2026-40224In systemd 259 before 260, there is local privilege escalation in systemd-machined because varlink can be used to reach the root namespace.6.7Apr 10, 2026
• CVE-2026-40223In systemd 258 before 260, a local unprivileged user can trigger an assert when a Delegate=yes and User=<unset> unit exists and is running.4.7Apr 10, 2026
• CVE-2026-29111systemd: Local unprivileged user can trigger an assert5.5Mar 23, 2026
• CVE-2025-4598Systemd-coredump: race condition that allows a local attacker to crash a suid program and gain read access to the resulting core dump4.7May 30, 2025
• CVE-2023-7008Systemd-resolved: unsigned name response in signed zone is not refused when dnssec=yes5.9Dec 23, 2023
• CVE-2023-31439An issue was discovered in systemd 253. An attacker can modify the contents of past events in a sealed log file and then adjust the file such that checking the integrity shows no error, despite mod...5.3Jun 13, 2023
• CVE-2023-31438An issue was discovered in systemd 253. An attacker can truncate a sealed log file and then resume log sealing such that checking the integrity shows no error, despite modifications. NOTE: the vend...5.3Jun 13, 2023
• CVE-2023-31437An issue was discovered in systemd 253. An attacker can modify a sealed log file such that, in some views, not all existing and sealed log messages are displayed. NOTE: the vendor reportedly sent "...5.3Jun 13, 2023
• CVE-2023-26604systemd before 247 does not adequately block local privilege escalation for some Sudo configurations, e.g., plausible sudoers files in which the "systemctl status" command may be executed. Specific...7.8Mar 3, 2023
• CVE-2022-4415A vulnerability was found in systemd. This security flaw can cause a local information leak due to systemd-coredump not respecting the fs.suid_dumpable kernel setting.5.5Jan 11, 2023
• CVE-2022-45873systemd 250 and 251 allows local users to achieve a systemd-coredump deadlock by triggering a crash that has a long backtrace. This occurs in parse_elf_object in shared/elf-util.c. The exploitation...5.5Nov 23, 2022