SUSE: Security Advisory (SUSE-SU-2019:1597-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for dbus (EulerOS-SA-2019-1706)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2019-0339 Updated dbus packages fix security vulnerability

dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 and in some, less common, uses of dbus-daemon, allows cookie spoofing because of symlink mishandling in the reference implementation of DBUSCOOKIESHA1 in the libdbus...

SUSE SLED12 / SLES12 Security Update : dbus-1 (SUSE-SU-2019:2820-1)

This update for dbus-1 fixes the following issues : Security issue fixed : CVE-2019-12749: Fixed an implementation flaw in DBUSCOOKIESHA1 which could have allowed local attackers to bypass authentication bsc1137832. Note that Tenable Network Security has extracted the preceding description block...

Important: Red Hat Security Advisory: dbus security update

An update for dbus is now available for Red Hat Enterprise Linux 6.6 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

Oracle Linux 6 : dbus (ELSA-2019-1726)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-1726 advisory. - Apply patch for CVE-2019-12749 1725574 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessu...

openSUSE: Security Advisory for dbus-1 (openSUSE-SU-2019:1671-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2019-12749

dbus vulnerability CVE-2019-12749 arises from symlink mishandling in the DBUS_COOKIE_SHA1 authentication path. A local attacker with write access to their home directory could abuse a ~/.dbus-keyrings symlink to coax a DBusServer of a different uid to read/write in unintended locations, enabling ...