A possibility for denial of loggin service was found in the way journald functionality of systemd, a system and service manager, processed native messages when file was chosen as their origin. A local attacker could use this flaw to provide a specially-crafted file descriptor, leading the journald file read process to block, resultingin portion of subsequent native messages intended to be logged to be ignored.
Issue found by Florian Weimer, Red Hat Product Security Team
This issue affects the version of the systemd package, as shipped with Fedora release of 17.
This issue did NOT affect the version of the systemd package, as shipped with Fedora release of 16.
This issue was discovered by Florian Weimer of the Red Hat Product Security Team.
This issue was assigned CVE-2013-4393:
do you know where this happens? and was this fixed in the meantime?
after some digging it is probably in src/journal/journal-native.c:
(+ stddef.h one
and perhaps some more of those fixes
This bug is fixed in F >= 18.
(In reply to Marcus Meissner from comment #5)
> after some digging it is probably in src/journal/journal-native.c:
Yes, that's right. Sorry for the confusion.