CVE-2013-4391
EPSS 3.7%
Description
Integer overflow in the valid_user_field function in journal/journald-native.c in systemd allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large journal data field, which triggers a heap-based buffer overflow.
How to fix CVE-2013-4391
To remediate CVE-2013-4391, upgrade the affected package to a fixed version below.
- Debian/systemd—upgrade to 204-5 or later
Is CVE-2013-4391 being exploited?
Low — EPSS is 3.7%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 204-5