Oracle Linux 8 : ibus / and / glib2 (ELSA-2020-1880)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-1880 advisory. 2.56.4-8 - Backport patches for GDBus auth Resolves: 1777213 Tenable has extracted the preceding description block directly from the Oracle Linux security...

SUSE CVE-2019-12749

dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 and in some, less common, uses of dbus-daemon, allows cookie spoofing because of symlink mishandling in the reference implementation of DBUSCOOKIESHA1 in the libdbus...

SUSE CVE-2019-12795

daemon/gvfsdaemon.c in gvfsd from GNOME gvfs before 1.38.3, 1.40.x before 1.40.2, and 1.41.x before 1.41.3 opened a private D-Bus server socket without configuring an authorization rule. A local attacker could connect to this server socket and issue D-Bus method calls. Note that the server socket...

AlmaLinux 8 : ibus and glib2 (ALSA-2020:1880)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2020:1880 advisory. - A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to...

EulerOS 2.0 SP3 : ibus (EulerOS-SA-2021-1799)

According to the version of the ibus packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another...

SUSE: Security Advisory (SUSE-SU-2019:2388-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for ibus (EulerOS-SA-2021-1483)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UBUNTU-CVE-2020-12049

An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system service's private AFUNIX socket...

openSUSE: Security Advisory for ibus (openSUSE-SU-2019:2199-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2019-14822

A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is usi...

Input validation

A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is usi...

CVE-2019-14822

A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is usi...

OPENSUSE-SU-2019:2199-1 Security update for ibus

This update for ibus fixes the following issues: - CVE-2019-14822: Fixed misconfiguration of the DBus server allows to unprivileged user could monitor and send method calls to the ibus bus of another user bsc1150011. This update was imported from the SUSE:SLE-15-SP1:Update update project...

Security update for ibus (important)

openSUSE Security Update: Security update for ibus Announcement ID: openSUSE-SU-2019:2199-1 Rating: important References: 1150011 Cross-References: CVE-2019-14822 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for ibus fixes...

OPENSUSE-SU-2019:2174-1 Security update for ibus

This update for ibus fixes the following issues: Security issue fixed: - CVE-2019-14822: Fixed a misconfiguration of the DBus server that allowed an unprivileged user to monitor and send method calls to the ibus bus of another user. bsc1150011 This update was imported from the SUSE:SLE-15:Update...

Security update for ibus (important)

openSUSE Security Update: Security update for ibus Announcement ID: openSUSE-SU-2019:2174-1 Rating: important References: 1150011 Cross-References: CVE-2019-14822 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for ibus fixes...

SUSE SLED15 / SLES15 Security Update : ibus (SUSE-SU-2019:2427-1)

This update for ibus fixes the following issues : CVE-2019-14822: Fixed misconfiguration of the DBus server allows to unprivileged user could monitor and send method calls to the ibus bus of another user bsc1150011. Note that Tenable Network Security has extracted the preceding description block...

SUSE-SU-2019:2427-1 Security update for ibus

This update for ibus fixes the following issues: - CVE-2019-14822: Fixed misconfiguration of the DBus server allows to unprivileged user could monitor and send method calls to the ibus bus of another user bsc1150011...

SUSE SLES12 Security Update : ibus (SUSE-SU-2019:2388-1)

This update for ibus fixes the following issues : Security issue fixed : CVE-2019-14822: Fixed a misconfiguration of the DBus server that allowed an unprivileged user to monitor and send method calls to the ibus bus of another user. bsc1150011 Note that Tenable Network Security has extracted the...

SUSE SLED15 / SLES15 Security Update : ibus (SUSE-SU-2019:2387-1)

This update for ibus fixes the following issues : Security issue fixed : CVE-2019-14822: Fixed a misconfiguration of the DBus server that allowed an unprivileged user to monitor and send method calls to the ibus bus of another user. bsc1150011 Note that Tenable Network Security has extracted the...