A buffer overflow vulnerability in the dhcp6 client of systemd allows a malicious dhcp6 server to overwrite heap memory in systemd-networkd. Affected releases are systemd: versions up to and including 239.CreditsFelix Wilhelm from the Google Security TeamReferenceshttps://security.gentoo.org/glsa/201810-10https://lists.debian.org/debian-lts-announce/2018/11/msg00017.htmlhttps://usn.ubuntu.com/3807-1/https://usn.ubuntu.com/3806-1/https://access.redhat.com/errata/RHSA-2018:3665http://www.securityfocus.com/bid/105745https://github.com/systemd/systemd/pull/10518https://access.redhat.com/errata/RHSA-2019:0049https://access.redhat.com/errata/RHBA-2019:0327
