{"id":"USN-7559-1","summary":"systemd vulnerability","details":"Qualys discovered that systemd incorrectly handled metadata when processing\napplication crashes. An attacker could possibly use this issue to expose\nsensitive information.","modified":"2026-04-22T10:59:21.916844Z","published":"2025-06-09T13:02:05Z","related":["UBUNTU-CVE-2025-4598"],"upstream":["CVE-2025-4598","UBUNTU-CVE-2025-4598"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-7559-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-4598"}],"affected":[{"package":{"name":"systemd","ecosystem":"Ubuntu:Pro:20.04:LTS","purl":"pkg:deb/ubuntu/systemd@245.4-4ubuntu3.24+esm1?arch=source&distro=esm-infra/focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"245.4-4ubuntu3.24+esm1"}]}],"versions":["242-7ubuntu3","243-2ubuntu1","243-3ubuntu1","244-3ubuntu1","244.1-0ubuntu2","244.1-0ubuntu3","244.2-1ubuntu1","244.3-1ubuntu1","245.2-1ubuntu1","245.2-1ubuntu2","245.4-2ubuntu1","245.4-4ubuntu1","245.4-4ubuntu3","245.4-4ubuntu3.1","245.4-4ubuntu3.2","245.4-4ubuntu3.3","245.4-4ubuntu3.4","245.4-4ubuntu3.5","245.4-4ubuntu3.6","245.4-4ubuntu3.7","245.4-4ubuntu3.10","245.4-4ubuntu3.11","245.4-4ubuntu3.13","245.4-4ubuntu3.14","245.4-4ubuntu3.15","245.4-4ubuntu3.16","245.4-4ubuntu3.17","245.4-4ubuntu3.18","245.4-4ubuntu3.19","245.4-4ubuntu3.20","245.4-4ubuntu3.21","245.4-4ubuntu3.22","245.4-4ubuntu3.23","245.4-4ubuntu3.24"],"ecosystem_specific":{"binaries":[{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"libnss-myhostname"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"libnss-mymachines"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"libnss-resolve"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"libnss-systemd"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"libpam-systemd"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"libsystemd0"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"libudev1"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"systemd"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"systemd-container"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"systemd-coredump"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"systemd-journal-remote"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"systemd-sysv"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"systemd-tests"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"systemd-timesyncd"},{"binary_version":"245.4-4ubuntu3.24+esm1","binary_name":"udev"}],"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro"},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2025-4598","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:Pro:20.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7559-1.json"}},{"package":{"name":"systemd","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/systemd@249.11-0ubuntu3.16?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"249.11-0ubuntu3.16"}]}],"versions":["248.3-1ubuntu8","249.5-2ubuntu1","249.5-2ubuntu2","249.5-2ubuntu3","249.5-2ubuntu4","249.9-0ubuntu2","249.10-0ubuntu1","249.10-0ubuntu2","249.11-0ubuntu1","249.11-0ubuntu2","249.11-0ubuntu3","249.11-0ubuntu3.1","249.11-0ubuntu3.3","249.11-0ubuntu3.4","249.11-0ubuntu3.6","249.11-0ubuntu3.7","249.11-0ubuntu3.9","249.11-0ubuntu3.10","249.11-0ubuntu3.11","249.11-0ubuntu3.12","249.11-0ubuntu3.15"],"ecosystem_specific":{"binaries":[{"binary_version":"249.11-0ubuntu3.16","binary_name":"libnss-myhostname"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"libnss-mymachines"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"libnss-resolve"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"libnss-systemd"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"libpam-systemd"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"libsystemd0"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"libudev1"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"systemd"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"systemd-container"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"systemd-coredump"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"systemd-journal-remote"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"systemd-oomd"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"systemd-repart"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"systemd-standalone-sysusers"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"systemd-standalone-tmpfiles"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"systemd-sysv"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"systemd-tests"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"systemd-timesyncd"},{"binary_version":"249.11-0ubuntu3.16","binary_name":"udev"}],"availability":"No subscription required"},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2025-4598","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:22.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7559-1.json"}},{"package":{"name":"systemd","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.8?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"255.4-1ubuntu8.8"}]}],"versions":["253.5-1ubuntu6","253.5-1ubuntu7","255.2-3ubuntu2","255.4-1ubuntu5","255.4-1ubuntu6","255.4-1ubuntu7","255.4-1ubuntu8","255.4-1ubuntu8.1","255.4-1ubuntu8.2","255.4-1ubuntu8.4","255.4-1ubuntu8.5","255.4-1ubuntu8.6"],"ecosystem_specific":{"binaries":[{"binary_version":"255.4-1ubuntu8.8","binary_name":"libnss-myhostname"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"libnss-mymachines"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"libnss-resolve"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"libnss-systemd"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"libpam-systemd"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"libsystemd-shared"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"libsystemd0"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"libudev1"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-boot"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-boot-efi"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-container"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-coredump"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-homed"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-journal-remote"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-oomd"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-resolved"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-standalone-sysusers"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-standalone-tmpfiles"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-sysv"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-tests"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-timesyncd"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-ukify"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"systemd-userdbd"},{"binary_version":"255.4-1ubuntu8.8","binary_name":"udev"}],"availability":"No subscription required"},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2025-4598","severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:24.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7559-1.json"}}],"schema_version":"1.7.5"}