24 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-3532
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service system-bus disconnec...
SUSE CVE-2014-3532
dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service system-bus disconnect of other services or applications by sending a message containing a file descriptor, then exceeding the maximum recursion depth before...
Mageia: Security Advisory (MGASA-2014-0294)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP1 : dbus (EulerOS-SA-2016-1037)
According to the versions of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - D-BUS is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a...
Fedora 20 : mingw-dbus-1.6.28-1.fc20 (2014-17570)
Update to 1.8.12\r\n Fixes various CVE's Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
Fedora Update for dbus FEDORA-2014-16227
Check the version of dbus SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868618";...
Fedora Update for dbus FEDORA-2014-16243
Check the version of dbus SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868585";...
openSUSE Security Update : dbus-1 (openSUSE-SU-2014:1239-1)
The DBUS-1 service and libraries were updated to upstream release 1.6.24 fixing security issues and bugs. Upstream changes since dbus 1.6.8 + Security fixes - Do not accept an extra fd in the padding of a cmsg message, which could lead to a 4-byte heap buffer overrun. CVE-2014-3635, fdo83622; Sim...
openSUSE Security Update : dbus-1 (openSUSE-SU-2014:1228-1)
DBUS-1 was upgraded to upstream release 1.8. This brings the version of dbus to the latest stable release from an unstable snapshot 1.7.4 that is know to have several regressions - Upstream changes since 1.7.4 : + Security fixes : - Do not accept an extra fd in the padding of a cmsg message, whic...
Mandriva Linux Security Advisory : dbus (MDVSA-2014:148)
Updated dbus packages fix security vulnerabilities : A flaw was reported in D-Bus's file descriptor passing feature. A local attacker could use this flaw to cause a service or application to disconnect from the bus, typically resulting in that service or application exiting CVE-2014-3532. A flaw...
MGASA-2014-0294 Updated dbus packages fix multiple vulnerabilities
Updated dbus packages fix security vulnerabilities: A flaw was reported in D-Bus's file descriptor passing feature. A local attacker could use this flaw to cause a service or application to disconnect from the bus, typically resulting in that service or application exiting CVE-2014-3532. A flaw w...
openSUSE Security Update : dbus-1 (openSUSE-SU-2014:0926-1)
CVE-2014-3532 CVE-2014-3533 bnc885241 fdo80163 fdo79694 fdo80469 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-465. The text description of this plugin is C SUSE LLC...
openSUSE Security Update : dbus-1 (openSUSE-SU-2014:0921-1)
CVE-2014-3532 denial of service in file descriptor passing feature CVE-2014-3533 local denial of service force system services to exit %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
CVE-2014-3532
dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service system-bus disconnect of other services or applications by sending a message containing a file descriptor, then exceeding the maximum recursion depth before...
CVE-2014-3532
dbus CVE-2014-3532 affects dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 when run on Linux 2.6.37-rc4 or later. The flaw lets local attackers cause a denial of service by sending a message containing a file descriptor and then exceeding the maximum recursion depth before the initial message is ...
CVE-2014-3532
dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service system-bus disconnect of other services or applications by sending a message containing a file descriptor, then exceeding the maximum recursion depth before...
Fedora Update for dbus FEDORA-2014-8059
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS : DBus vulnerabilities (USN-2275-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2275-1 advisory. Alban Crequy discovered that dbus-daemon incorrectly sent AccessDenied errors to the service instead of the client when enforcing permissions. A local us...
USN-2275-1: DBus vulnerabilities
Alban Crequy discovered that dbus-daemon incorrectly sent AccessDenied errors to the service instead of the client when enforcing permissions. A local user can use this issue to possibly deny access to the service. CVE-2014-3477 Alban Crequy discovered that dbus-daemon incorrectly handled certain...
Fedora 20 : dbus-1.6.12-9.fc20 (2014-8059)
Backport patches from dbus-1.6 - Fixes CVE-2014-3477 fd.o78979 - Fixes CVE-2014-3532 fd.o80163 - Fixes CVE-2014-3533 fd.o80469 - Resolves 1115636 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...