CVE 2020-1712
A heap use-after-free vulnerability was found in systemd before version v245-rc1, where asynchronous Polkit queries are performed while handling dbus messages. A local unprivileged attacker can abuse this flaw to crash systemd services or potentially execute code and elevate their privileges, by sending specially crafted dbus messages.
Related bugs and status
CVE-2020-1712 (Candidate) is related to these bugs:
Bug #1671951: networkd should allow configuring IPV6 MTU
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1671951 | networkd should allow configuring IPV6 MTU | systemd (Ubuntu) | Medium | Fix Released | ||
| 1671951 | networkd should allow configuring IPV6 MTU | systemd (Ubuntu Bionic) | Undecided | Fix Released | ||
| 1671951 | networkd should allow configuring IPV6 MTU | netplan.io (Ubuntu) | Undecided | Fix Released | ||
| 1671951 | networkd should allow configuring IPV6 MTU | netplan.io (Ubuntu Bionic) | Undecided | Fix Released | ||
| 1671951 | networkd should allow configuring IPV6 MTU | cloud-init (Ubuntu) | Undecided | Confirmed | ||
| 1671951 | networkd should allow configuring IPV6 MTU | cloud-init (Ubuntu Bionic) | Undecided | Confirmed | ||
| 1671951 | networkd should allow configuring IPV6 MTU | cloud-init (Ubuntu Disco) | Undecided | Won't Fix | ||
| 1671951 | networkd should allow configuring IPV6 MTU | netplan.io (Ubuntu Disco) | Undecided | Fix Released | ||
| 1671951 | networkd should allow configuring IPV6 MTU | systemd (Ubuntu Disco) | Undecided | Won't Fix | ||
| 1671951 | networkd should allow configuring IPV6 MTU | cloud-init (Ubuntu Focal) | Undecided | Confirmed | ||
| 1671951 | networkd should allow configuring IPV6 MTU | netplan.io (Ubuntu Focal) | Undecided | Fix Released | ||
| 1671951 | networkd should allow configuring IPV6 MTU | systemd (Ubuntu Focal) | Medium | Fix Released | ||
| 1671951 | networkd should allow configuring IPV6 MTU | cloud-init (Ubuntu Eoan) | Undecided | Confirmed | ||
| 1671951 | networkd should allow configuring IPV6 MTU | netplan.io (Ubuntu Eoan) | Undecided | Fix Released | ||
| 1671951 | networkd should allow configuring IPV6 MTU | systemd (Ubuntu Eoan) | Undecided | Fix Released | ||
| 1671951 | networkd should allow configuring IPV6 MTU | systemd | Unknown | Unknown | ||
See the 
CVE page on Mitre.org
for more details.
