Launchpad CVE tracker

CVE 2022-3821

An off-by-one Error issue was discovered in Systemd in format_timespan() function of time-util.c. An attacker could supply specific values for time and accuracy that leads to buffer overrun in format_timespan(), leading to a Denial of Service.

Related bugs and status

CVE-2022-3821 (Candidate) is related to these bugs:

Bug #2021448: [Debian] Medium CVE: CVE-2022-3821/CVE-2022-4415: systemd: multiple CVEs

Summary				In	Importance	Status
	2021448	[Debian] Medium CVE: CVE-2022-3821/CVE-2022-4415: systemd: multiple CVEs		StarlingX	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugzilla.redha...
MISC: https://github.com/sys...
MISC: https://github.com/sys...
MISC: https://github.com/sys...
FEDORA: FEDORA-2022-8ac4104a02
GENTOO: GLSA-202305-15
MLIST: [debian-lts-announce] ...

Launchpad.net

CVE 2022-3821

Related bugs and status

Related bugs

References