Test ID:	1.3.6.1.4.1.25623.1.0.882996
Category:	CentOS Local Security Checks
Title:	CentOS Update for libgudev1-219-62.el7_ CESA-2019:0201 centos7
Summary:	The remote host is missing an update for the 'libgudev1-219-62.el7_'; package(s) announced via the CESA-2019:0201 advisory.
Description:	Summary: The remote host is missing an update for the 'libgudev1-219-62.el7_' package(s) announced via the CESA-2019:0201 advisory. Vulnerability Insight: The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fix(es): * systemd: memory leak in journald-server.c introduced by fix for CVE-2018-16864 (CVE-2019-3815) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Affected Software/OS: libgudev1-219-62.el7_ on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2019-3815 106632 http://www.securityfocus.com/bid/106632 RHBA-2019:0327 https://access.redhat.com/errata/RHBA-2019:0327 RHSA-2019:0201 https://access.redhat.com/errata/RHSA-2019:0201 [debian-lts-announce] 20190313 [SECURITY] [DLA 1711-1] systemd security update https://lists.debian.org/debian-lts-announce/2019/03/msg00013.html https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3815 Common Vulnerability Exposure (CVE) ID: CVE-2018-16864 106523 http://www.securityfocus.com/bid/106523 DSA-4367 https://www.debian.org/security/2019/dsa-4367 GLSA-201903-07 https://security.gentoo.org/glsa/201903-07 RHSA-2019:0049 https://access.redhat.com/errata/RHSA-2019:0049 RHSA-2019:0204 https://access.redhat.com/errata/RHSA-2019:0204 RHSA-2019:0271 https://access.redhat.com/errata/RHSA-2019:0271 RHSA-2019:0342 https://access.redhat.com/errata/RHSA-2019:0342 RHSA-2019:0361 https://access.redhat.com/errata/RHSA-2019:0361 RHSA-2019:2402 https://access.redhat.com/errata/RHSA-2019:2402 USN-3855-1 https://usn.ubuntu.com/3855-1/ [debian-lts-announce] 20190123 [SECURITY] [DLA 1639-1] systemd security update https://lists.debian.org/debian-lts-announce/2019/01/msg00016.html [oss-security] 20210720 CVE-2021-33910: Denial of service (stack exhaustion) in systemd (PID 1) http://www.openwall.com/lists/oss-security/2021/07/20/2 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16864 https://security.netapp.com/advisory/ntap-20190117-0001/ https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html https://www.qualys.com/2019/01/09/system-down/system-down.txt
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.