CVE-2008-3834

🗓️ 07 Oct 2008 19:00:00Reported by redhatType

cve🔗 web.nvd.nist.gov👁 92 Views🌐 WEB

The dbus_signature_validate function in the D-bus library before 1.2.4 allows remote attackers to cause a denial of service

Reporter	Title	Published	Views	Family All 84
0day.today	D-Bus Daemon < 1.2.4 (libdbus) Denial of Service Exploit	19 Jan 200900:00	–	zdt
Tenable Nessus	CentOS 5 : dbus (CESA-2009:0008)	6 Jan 201000:00	–	nessus
Tenable Nessus	CentOS 5 : dbus (CESA-2010:0018)	8 Jan 201000:00	–	nessus
Tenable Nessus	Debian DSA-1658-1 : dbus - programming error	24 Oct 200800:00	–	nessus
Tenable Nessus	Fedora 9 : dbus-1.2.4-1.fc9 (2008-8764)	10 Oct 200800:00	–	nessus
Tenable Nessus	GLSA-200901-04 : D-Bus: Denial of Service	12 Jan 200900:00	–	nessus
Tenable Nessus	Mandriva Linux Security Advisory : dbus (MDVSA-2008:213)	23 Apr 200900:00	–	nessus
Tenable Nessus	Mandriva Linux Security Advisory : dbus (MDVSA-2009:256-1)	7 Oct 200900:00	–	nessus
Tenable Nessus	MiracleLinux 3 : dbus-1.0.0-7AXS3.1 (AXSA:2009-08:01)	14 Jan 202600:00	–	nessus
Tenable Nessus	MiracleLinux 3 : dbus-1.1.2-12.AXS3.1 (AXSA:2010-35:01)	14 Jan 202600:00	–	nessus

NVD

Node

freedesktop dbusRange≤1.1.4

freedesktop dbusMatch0.1

freedesktop dbusMatch0.2

freedesktop dbusMatch0.3

freedesktop dbusMatch0.4

freedesktop dbusMatch0.5

freedesktop dbusMatch0.6

freedesktop dbusMatch0.7

freedesktop dbusMatch0.8

freedesktop dbusMatch0.9

freedesktop dbusMatch0.10

freedesktop dbusMatch0.11

freedesktop dbusMatch0.12

freedesktop dbusMatch0.13

freedesktop dbusMatch0.20

freedesktop dbusMatch0.21

freedesktop dbusMatch0.22

freedesktop dbusMatch0.23

freedesktop dbusMatch0.23.1

freedesktop dbusMatch0.23.2

freedesktop dbusMatch0.23.3

freedesktop dbusMatch0.31

freedesktop dbusMatch0.32

freedesktop dbusMatch0.33

freedesktop dbusMatch0.34

freedesktop dbusMatch0.35

freedesktop dbusMatch0.35.1

freedesktop dbusMatch0.35.2

freedesktop dbusMatch0.36

freedesktop dbusMatch0.36.1

freedesktop dbusMatch0.36.2

freedesktop dbusMatch0.50

freedesktop dbusMatch0.61

freedesktop dbusMatch0.62

freedesktop dbusMatch0.90

freedesktop dbusMatch0.91

freedesktop dbusMatch0.92

freedesktop dbusMatch1.0.2

freedesktop dbusMatch1.1.1

freedesktop dbusMatch1.1.2

freedesktop dbus1.0Matchrc1

freedesktop dbus1.0Matchrc2

freedesktop dbus1.0Matchrc3

freedesktop dbus1.1.0

Source	Link
bugs	www.bugs.freedesktop.org/show_bug.cgi
secunia	www.secunia.com/advisories/32281
mandriva	www.mandriva.com/security/advisories
redhat	www.redhat.com/support/errata/RHSA-2009-0008.html
vupen	www.vupen.com/english/advisories/2008/2762
kb	www.kb.juniper.net/InfoCenter/index
lists	www.lists.opensuse.org/opensuse-updates/2012-10/msg00094.html
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
freedesktop	www.freedesktop.org/wiki/Software/dbus
securitytracker	www.securitytracker.com/id

Parameter	Position	Path	Description	CWE
signature	path	/org/freedesktop/sample/object/name	D-Bus library vulnerability: malformed signature in a message can trigger an assertion and cause DoS (pre-1.2.4).	CWE-20

23 Apr 2026 00:35Current

5.2Medium risk

Vulners AI Score5.2

CVSS 22.1

EPSS0.01853

CWE-20