Red Hat Bugzilla – Bug 1280234
kernel: Unprivileged user can freeze journald
Last modified: 2017-10-11 23:19:26 EDT
It was found that an unprivileged user can freeze journald because of using inappropriate rules to decide if a file descriptor sent by a user is safe to read. Journald is then killed and restarted by systemd after 1 minute, but attacker could run exploit in a loop, causing DoS to journald.
Original bug report (including reproducer):
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1280236]