D-Bus is a system for sending messages between applications. It is used for
the system-wide message bus service and as a per-user-login-session
messaging facility.
A denial-of-service flaw was discovered in the system for sending messages
between applications. A local user could send a message with a malformed
signature to the bus causing the bus (and, consequently, any process using
libdbus to receive messages) to abort. (CVE-2008-3834)
All users are advised to upgrade to these updated dbus packages, which
contain backported patch which resolve this issue. For the update to take
effect, all running instances of dbus-daemon and all running applications
using libdbus library must be restarted, or the system rebooted.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | s390x | dbus-x11 | <Β 1.0.0-7.el5_2.1 | dbus-x11-1.0.0-7.el5_2.1.s390x.rpm |
RedHat | 5 | ppc64 | dbus | <Β 1.0.0-7.el5_2.1 | dbus-1.0.0-7.el5_2.1.ppc64.rpm |
RedHat | 5 | ppc | dbus | <Β 1.0.0-7.el5_2.1 | dbus-1.0.0-7.el5_2.1.ppc.rpm |
RedHat | 5 | ia64 | dbus-x11 | <Β 1.0.0-7.el5_2.1 | dbus-x11-1.0.0-7.el5_2.1.ia64.rpm |
RedHat | 5 | s390x | dbus-devel | <Β 1.0.0-7.el5_2.1 | dbus-devel-1.0.0-7.el5_2.1.s390x.rpm |
RedHat | 5 | x86_64 | dbus | <Β 1.0.0-7.el5_2.1 | dbus-1.0.0-7.el5_2.1.x86_64.rpm |
RedHat | 5 | i386 | dbus-devel | <Β 1.0.0-7.el5_2.1 | dbus-devel-1.0.0-7.el5_2.1.i386.rpm |
RedHat | 5 | ppc | dbus-devel | <Β 1.0.0-7.el5_2.1 | dbus-devel-1.0.0-7.el5_2.1.ppc.rpm |
RedHat | 5 | ppc | dbus-x11 | <Β 1.0.0-7.el5_2.1 | dbus-x11-1.0.0-7.el5_2.1.ppc.rpm |
RedHat | 5 | ppc64 | dbus-devel | <Β 1.0.0-7.el5_2.1 | dbus-devel-1.0.0-7.el5_2.1.ppc64.rpm |