Alban Crequy discovered that dbus-daemon incorrectly sent AccessDenied
errors to the service instead of the client when enforcing permissions. A
local user can use this issue to possibly deny access to the service.
(CVE-2014-3477)
Alban Crequy discovered that dbus-daemon incorrectly handled certain file
descriptors. A local attacker could use this issue to cause services or
clients to disconnect, resulting in a denial of service. (CVE-2014-3532,
CVE-2014-3533)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 14.04 | noarch | dbus | < 1.6.18-0ubuntu4.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | dbus-1-dbg | < 1.6.18-0ubuntu4.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | dbus-x11 | < 1.6.18-0ubuntu4.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | libdbus-1-3 | < 1.6.18-0ubuntu4.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | libdbus-1-dev | < 1.6.18-0ubuntu4.1 | UNKNOWN |
Ubuntu | 13.10 | noarch | dbus | < 1.6.12-0ubuntu10.1 | UNKNOWN |
Ubuntu | 13.10 | noarch | dbus-1-dbg | < 1.6.12-0ubuntu10.1 | UNKNOWN |
Ubuntu | 13.10 | noarch | dbus-x11 | < 1.6.12-0ubuntu10.1 | UNKNOWN |
Ubuntu | 13.10 | noarch | libdbus-1-3 | < 1.6.12-0ubuntu10.1 | UNKNOWN |
Ubuntu | 13.10 | noarch | libdbus-1-dev | < 1.6.12-0ubuntu10.1 | UNKNOWN |