Hi all,
Our systemd-journald exploit for CVE-2018-16865 and CVE-2018-16866 is
now available at:
https://www.qualys.com/2019/05/09/system-down/system-down.tar.gz
It is also attached to this email. A few notes about this exploit:
- It supports several targets by default (vulnerable versions of
SEC Consult Vulnerability Lab Security Advisory < 20190513-0 >
===
title: Cleartext message spoofing
product: Supplementary Go Cryptography Libraries
vulnerable version:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
- -
Debian Security Advisory DSA-4442-1 secur...@debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
May 12, 2019