NVD Vulnerability Detail

CVE-2019-3844

Summary	It was discovered that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binaries, which would allow to create binaries owned by the service transient group with the setgid bit set. A local attacker may use this flaw to access resources that will be owned by a potentially different service in the future, when the GID will be recycled.
Publication Date	April 27, 2019, 6:29 a.m.
Registration Date	Jan. 26, 2021, 11:42 a.m.
Last Update	Nov. 21, 2024, 1:42 p.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:systemd_project:systemd::::::::					242

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:19.10:::::::*

Configuration3	or higher	or less	more than	less than
cpe:2.3:a:netapp:solidfire:-:::::::*
cpe:2.3:a:netapp:hci_management_node:-:::::::*
cpe:2.3:a:netapp:snapprotect:-:::::::*

Related information, measures and tools

No	URL	タグ
1	http://www.securityfocus.com/bid/108096	Third Party Advisory VDB Entry
2	http://www.securityfocus.com/bid/108096	Third Party Advisory VDB Entry
3	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3844	Issue Tracking Patch Third Party Advisory
4	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3844	Issue Tracking Patch Third Party Advisory
5	https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
6	https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
7	https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
8	https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
9	https://security.netapp.com/advisory/ntap-20190619-0002/	Third Party Advisory
10	https://security.netapp.com/advisory/ntap-20190619-0002/	Third Party Advisory
11	https://usn.ubuntu.com/4269-1/	Third Party Advisory
12	https://usn.ubuntu.com/4269-1/	Third Party Advisory

Common Vulnerabilities List

JVN Vulnerability Information

systemd における認可・権限・アクセス制御に関する脆弱性

Title	systemd における認可・権限・アクセス制御に関する脆弱性
Summary	systemd には、認可・権限・アクセス制御に関する脆弱性が存在します。
Possible impacts	情報を取得される、情報を改ざんされる、およびサービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダ情報および参考情報を参照して適切な対策を実施してください。
Publication Date	March 1, 2019, midnight
Registration Date	May 28, 2019, 3:18 p.m.
Last Update	May 28, 2019, 3:18 p.m.

Affected System

Fedora Project

Fedora

freedesktop.org

systemd

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2019-3844	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3844
National Vulnerability Database (NVD)
2	CVE-2019-3844	https://nvd.nist.gov/vuln/detail/CVE-2019-3844

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-264	https://jvndb.jvn.jp/ja/cwe/CWE-264.html

ベンダー情報

No	Name	URL
fedoraproject
1	Top Page	https://lists.fedoraproject.org/archives/
freedesktop.org
2	systemd System and Service Manager	https://www.freedesktop.org/wiki/Software/systemd/

その他

No	Name	URL
関連文書
1	Bug 1684610 (CVE-2019-3844) - CVE-2019-3844 systemd: services with DynamicUser can get new privileges and create SGID binaries	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3844

Change Log

No	Changed Details	Date of change
1	[2019年05月28日] 掲載	May 28, 2019, 3:18 p.m.