Post by Nathan Hale A flaw in systemd, the init system used on many Linux systems, can be exploited using a malicious DNS query to either crash a system or to run code remotely. <https://www.itwire.com/open-source/78781-systemd-flaw-leaves-some-linux-distros-open-to-attack.html>
from the article:
Debian is yet to issue a fix, but has pointed out that systemd-resolved is not enabled by default in its latest release, Stretch. Older Debian releases like Jessie and Wheezy do not contain the vulnerable code.