Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A use-after-free vulnerability was found in systemd. This issue occurs due to the on_stream_io() function and dns_stream_complete() function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other functions and callbacks called can dereference the DNSStream object, causing the use-after-free when the reference is still used later.
CVSS Information
N/A
Vulnerability Type
释放后使用
Vulnerability Title
Red Hat Enterprise Linux 资源管理错误漏洞
Vulnerability Description
Red Hat Enterprise Linux是美国红帽(Red Hat)公司的面向企业用户的Linux操作系统 Red Hat Enterprise Linux 存在安全漏洞,该漏洞源于resolved-dns-stream.c 中的 on_stream_io() 函数和 dns_stream_complete() 函数未增加 DnsStream 对象的引用计数,调用的其他函数和回调可以取消对DNSStream对象的引用,从而导致在以后仍然使用引用时会出现释放后重用问题,以下产品和版本受到影响:Red
CVSS Information
N/A
Vulnerability Type
N/A