CVE 2018-6954
systemd-tmpfiles in systemd through 237 mishandles symlinks present in non-terminal path components, which allows local users to obtain ownership of arbitrary files via vectors involving creation of a directory and a file under that directory, and later replacing that directory with a symlink. This occurs even if the fs.protected_
Related bugs and status
CVE-2018-6954 (Candidate) is related to these bugs:
Bug #1795764: systemd: core: Fix edge case when processing /proc/self/mountinfo
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1795764 | systemd: core: Fix edge case when processing /proc/self/mountinfo | systemd (Ubuntu) | Medium | Fix Released | ||
| 1795764 | systemd: core: Fix edge case when processing /proc/self/mountinfo | systemd (Ubuntu Xenial) | Medium | Fix Released | ||
Bug #1803391: Systemd update installation hangs in unattended-upgrades InstallOnShutdown mode
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1803391 | Systemd update installation hangs in unattended-upgrades InstallOnShutdown mode | systemd (Ubuntu) | High | Fix Released | ||
| 1803391 | Systemd update installation hangs in unattended-upgrades InstallOnShutdown mode | systemd (Ubuntu Bionic) | High | Fix Released | ||
| 1803391 | Systemd update installation hangs in unattended-upgrades InstallOnShutdown mode | systemd (Ubuntu Disco) | High | Fix Released | ||
| 1803391 | Systemd update installation hangs in unattended-upgrades InstallOnShutdown mode | systemd (Ubuntu Cosmic) | High | Fix Released | ||
| 1803391 | Systemd update installation hangs in unattended-upgrades InstallOnShutdown mode | systemd (Ubuntu Xenial) | High | Fix Released | ||
Bug #1804603: systemd-tmpfiles-setup.service fails on btrfs
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1804603 | systemd-tmpfiles-setup.service fails on btrfs | systemd (Ubuntu) | Undecided | Fix Released | ||
| 1804603 | systemd-tmpfiles-setup.service fails on btrfs | systemd (Ubuntu Disco) | Undecided | Fix Released | ||
| 1804603 | systemd-tmpfiles-setup.service fails on btrfs | systemd (Ubuntu Bionic) | Undecided | Fix Released | ||
| 1804603 | systemd-tmpfiles-setup.service fails on btrfs | systemd (Ubuntu Cosmic) | Undecided | Fix Released | ||
Bug #1804847: systemd=229-4ubuntu21.8 use of fchownat failes on some systems (openvz)
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1804847 | systemd=229-4ubuntu21.8 use of fchownat failes on some systems (openvz) | systemd (Ubuntu) | Undecided | Fix Released | ||
Bug #1818814: systemd-tmpfiles-setup.services fails to create /var/run directories
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1818814 | systemd-tmpfiles-setup.services fails to create /var/run directories | systemd (Ubuntu) | Undecided | Won't Fix | ||
| 1818814 | systemd-tmpfiles-setup.services fails to create /var/run directories | systemd (Ubuntu Xenial) | Undecided | Won't Fix | ||
See the 
CVE page on Mitre.org
for more details.
