Debian Security Advisory 4367-1

Debian Linux Security Advisory 4367-1 – The Qualys Research Labs discovered multiple vulnerabilities in systemd-journald. Two memory corruption flaws, via attacker-controlled alloca()s (CVE-2018-16864, CVE-2018-16865) and an out-of-bounds read flaw leading to an information leak (CVE-2018-16866), could allow an attacker to cause a denial of service or the execution of arbitrary code.

Link: https://packetstormsecurity.com/files/151122/dsa-4367-1.txt