We discovered three vulnerabilities in systemd-journald (https://en.wikipedia.org/wiki/Systemd): – CVE-2018-16864 and CVE-2018-16865, two memory corruptions (attacker-controlled alloca()s); – CVE-2018-16866, an information leak (an out-of-bounds read).

https://www.openwall.com/lists/oss-security/2019/01/09/3