31 matches found
Debian: Security Advisory (DLA-87-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
K17255: D-Bus vulnerability CVE-2014-3477
Security Advisory Description The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of service...
NewStart CGSL MAIN 6.02 : dbus Multiple Vulnerabilities (NS-SA-2022-0093)
The remote NewStart CGSL host, running version MAIN 6.02, has dbus packages installed that are affected by multiple vulnerabilities: - Unspecified vulnerability in the matchruleequal function in bus/signals.c in D-Bus before 1.0.2 allows local applications to remove match rules for other...
Security Bulletin: Network Intrusion Prevention System is affected by multiple D-BUS and PHP vulnerabilities (CVE-2014-3638, CVE-2014-3639, CVE-2014-3477, CVE-2014-5459, CVE-2014-3597, CVE-2014-4721)
Summary Security vulnerabilities have been discovered in the D-BUS CVE-2014-3638 CVE-2014-3639 CVE-2014-3477 and PHP CVE-2014-5459 CVE-2014-3597 CVE-2014-4721 components of IBM Security Network Intrusion Prevention System Vulnerability Details CVE-ID: CVE-2014-3638 DESCRIPTION: D-Bus is vulnerabl...
SUSE: Security Advisory (SUSE-SU-2014:0846-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: Vulnerabilities in dbus affect the IBM Flex System Manager (FSM) (CVE-2014-3638, CVE-2014-3639, CVE-2014-3477)
Summary Vulnerabilities in dbus affect the IBM Flex System Manager FSM CVE-2014-3638, CVE-2014-3639, CVE-2014-3477 Vulnerability Details Abstract Vulnerabilities in dbus affect the IBM Flex System Manager FSM CVE-2014-3638, CVE-2014-3639, CVE-2014-3477 Content Vulnerability Details: CVE-ID:...
EulerOS 2.0 SP1 : dbus (EulerOS-SA-2016-1037)
According to the versions of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - D-BUS is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a...
SOL17255 - D-Bus vulnerability CVE-2014-3477
Note: As of February 17, 2015, AskF5 Security Advisory articles include the Severity value. Security Advisory articles published before this date do not list a Severity value. Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can...
Debian DLA-87-1 : dbus security update
This updates fixes multiple local denial of services discovered by Alban Crequy and Simon McVittie. CVE-2014-3477 Fix a denial of service failure to obtain bus name in newly-activated system services that not all users are allowed to access. CVE-2014-3638 Reduce maximum number of pending replies...
Fedora 20 : mingw-dbus-1.6.28-1.fc20 (2014-17570)
Update to 1.8.12\r\n Fixes various CVE's Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
Fedora Update for dbus FEDORA-2014-16227
Check the version of dbus SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868618";...
Fedora Update for dbus FEDORA-2014-16243
Check the version of dbus SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868585";...
[SECURITY] [DLA 87-1] dbus security update
Package : dbus Version : 1.2.24-4+squeeze3 CVE ID : CVE-2014-3477 CVE-2014-3638 CVE-2014-3639 This updates fixes multiple local denial of services discovered by Alban Crequy and Simon McVittie. CVE-2014-3477 Fix a denial of service failure to obtain bus name in newly-activated system services tha...
openSUSE Security Update : dbus-1 (openSUSE-SU-2014:1239-1)
The DBUS-1 service and libraries were updated to upstream release 1.6.24 fixing security issues and bugs. Upstream changes since dbus 1.6.8 + Security fixes - Do not accept an extra fd in the padding of a cmsg message, which could lead to a 4-byte heap buffer overrun. CVE-2014-3635, fdo83622; Sim...
openSUSE Security Update : dbus-1 (openSUSE-SU-2014:1228-1)
DBUS-1 was upgraded to upstream release 1.8. This brings the version of dbus to the latest stable release from an unstable snapshot 1.7.4 that is know to have several regressions - Upstream changes since 1.7.4 : + Security fixes : - Do not accept an extra fd in the padding of a cmsg message, whic...
Fedora Update for dbus FEDORA-2014-8059
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS : DBus vulnerabilities (USN-2275-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2275-1 advisory. Alban Crequy discovered that dbus-daemon incorrectly sent AccessDenied errors to the service instead of the client when enforcing permissions. A local us...
USN-2275-1: DBus vulnerabilities
Alban Crequy discovered that dbus-daemon incorrectly sent AccessDenied errors to the service instead of the client when enforcing permissions. A local user can use this issue to possibly deny access to the service. CVE-2014-3477 Alban Crequy discovered that dbus-daemon incorrectly handled certain...
USN-2275-1 dbus vulnerabilities
Alban Crequy discovered that dbus-daemon incorrectly sent AccessDenied errors to the service instead of the client when enforcing permissions. A local user can use this issue to possibly deny access to the service. CVE-2014-3477 Alban Crequy discovered that dbus-daemon incorrectly handled certain...
Fedora 20 : dbus-1.6.12-9.fc20 (2014-8059)
Backport patches from dbus-1.6 - Fixes CVE-2014-3477 fd.o78979 - Fixes CVE-2014-3532 fd.o80163 - Fixes CVE-2014-3533 fd.o80469 - Resolves 1115636 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...