Lucene search
K

58 matches found

OSV
OSV
added 2023/08/24 4:21 a.m.31 views

RLSA-2023:4569 Moderate: dbus security update

D-Bus is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility. Security Fixes: dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered...

6.5CVSS7AI score0.01417EPSS
Exploits1References2
OSV
OSV
added 2023/08/24 4:20 a.m.33 views

RLSA-2023:4498 Moderate: dbus security update

D-Bus is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility. Security Fixes: dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered...

6.2CVSS7AI score0.01417EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/05/03 12:0 a.m.3 views

Avahi 资源管理错误漏洞

Avahi is a suite of native service discovery tools for Linux. A security vulnerability exists in Avahi that stems from the avahi-daemon process potentially crashing on the DBus message bus...

5.5CVSS6.3AI score0.00392EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:7 a.m.4 views

SUSE CVE-2008-3834

The dbussignaturevalidate function in the D-bus library libdbus before 1.2.4 allows remote attackers to cause a denial of service application abort via a message containing a malformed signature, which triggers a failed assertion error...

2.1CVSS6.9AI score0.04623EPSS
Exploits8References7
OSV
OSV
added 2023/01/23 12:0 a.m.40 views

ALSA-2023:0335 Moderate: dbus security update

D-Bus is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility. Security Fixes: dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets...

6.5CVSS7.2AI score0.0131EPSS
Exploits3References8
RedHat Linux
RedHat Linux
added 2023/01/12 9:24 a.m.3 views

dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets

A vulnerability found in D-bus. This flaw allows an authenticated attacker to cause dbus-daemon and other programs that use libdbus to crash when receiving a message with specific invalid type signatures...

6.5CVSS6.7AI score0.00831EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/01/12 9:24 a.m.63 views

Moderate: Red Hat Security Advisory: dbus security update

An update for dbus is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

6.5CVSS6.5AI score0.0131EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2022/12/13 4:12 p.m.43 views

Moderate: Red Hat Security Advisory: dbus security update

An update for dbus is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

6.5CVSS6.5AI score0.0131EPSS
Exploits3References4
CNNVD
CNNVD
added 2022/10/07 12:0 a.m.2 views

D-BUS 输入验证错误漏洞

D-BUS is a message bus system, which is mainly used for inter-process communication and remote procedure calls. A security vulnerability exists in D-BUS versions prior to 1.12.24-0+deb11u1, which stems from the inclusion of multiple vulnerabilities in D-Bus that can be exploited by an attacker to...

6.5CVSS6.7AI score0.0131EPSS
Exploits1References22
Positive Technologies
Positive Technologies
added 2022/10/05 12:0 a.m.4 views

PT-2022-5137 · D-Bus +10 · D-Bus +10

Name of the Vulnerable Software and Affected Versions: D-Bus versions 1.12.24 and earlier, 1.13.x, 1.14.x before 1.14.4, and 1.15.x before 1.15.2 Description: An issue was discovered in D-Bus where an authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash when...

6.8CVSS7.1AI score0.01417EPSS
Exploits4References98
OSV
OSV
added 2022/05/17 4:38 p.m.34 views

USN-5427-1 apport vulnerabilities

Muqing Liu and neoni discovered that Apport incorrectly handled detecting if an executable was replaced after a crash. A local attacker could possibly use this issue to execute arbitrary code as the root user. CVE-2021-3899 Gerrit Venema discovered that Apport incorrectly handled connections to...

7.8CVSS7AI score0.00384EPSS
Exploits0References9
OSV
OSV
added 2022/01/20 7:51 p.m.6 views

USN-5244-1 dbus vulnerability

Daniel Onaca discovered that DBus contained a use-after-free vulnerability, caused by the incorrect handling of usernames sharing the same UID. An attacker could possibly use this issue to cause DBus to crash, resulting in a denial of service...

7.8CVSS7.1AI score0.00331EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/12/08 12:0 a.m.6 views

Aptdaemon Security Vulnerabilities

Aptdaemon is a code library for pypi for individual developers. The library functions allow package management tasks to be performed in a DBus-controlled background process. A security vulnerability exists in Aptdaemon, which can be exploited by an attacker to trigger a denial of service via a...

5.5CVSS6.1AI score0.00288EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2020/11/03 12:0 a.m.32 views

EulerOS 2.0 SP2 : dbus (EulerOS-SA-2020-2339)

According to the version of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message...

5.5CVSS6.7AI score0.00569EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2020/07/21 2:35 p.m.36 views

Important: Red Hat Security Advisory: dbus security update

An update for dbus is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

5.5CVSS6.7AI score0.00569EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2020/07/21 11:10 a.m.36 views

Important: Red Hat Security Advisory: dbus security update

An update for dbus is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

5.5CVSS6.7AI score0.00569EPSS
Exploits1References2
OSV
OSV
added 2020/06/15 7:54 a.m.9 views

MGASA-2020-0262 Updated dbus packages fix security vulnerability

The updated packages fix a security vulnerability: An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus o...

5.5CVSS5.5AI score0.00569EPSS
Exploits1References4
Mageia
Mageia
added 2020/06/15 7:54 a.m.39 views

Updated dbus packages fix security vulnerability

The updated packages fix a security vulnerability: An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus o...

5.5CVSS1AI score0.00569EPSS
Exploits1References3
Veracode
Veracode
added 2019/05/02 6:37 a.m.16 views

Denial Of Service (DoS)

tcmu-runner is vulnerable to NULL pointer dereference. The vulnerability exists in the UnregisterHandler method implemented in the tcmu-runner daemon. A local, non-root user with access to the D-Bus system bus could call the UnregisterHandler method with the name of a handler loaded internally in...

7.5CVSS7.2AI score0.01392EPSS
Exploits0References4Affected Software1
Veracode
Veracode
added 2019/05/02 6:37 a.m.12 views

Privilege Escalation

tcmu-runner is vulnerable to privilege escalation. The vulnerability exists in implementation of the CheckConfig method in handlerqcow.so of the tcmu-runner daemon. A local, non-root user with access to the D-Bus system bus could use this flaw to leak arbitrary file names which might not be...

7.5CVSS7.3AI score0.01463EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder