The vulnerability of the D-Bus inter-process communication mechanism, related to a boundary error caused by an invalid fixed-length array of elements, allows a malicious actor to trigger a service failure.

The vulnerability of the D-Bus inter-process communication mechanism is related to a boundary error caused by an invalid fixed-length array element, where the length of the array is not a multiple of the length of an individual element. Exploiting this vulnerability can allow a malicious actor to...

PT-2022-5137 · D-Bus +10 · D-Bus +10

Name of the Vulnerable Software and Affected Versions: D-Bus versions 1.12.24 and earlier, 1.13.x, 1.14.x before 1.14.4, and 1.15.x before 1.15.2 Description: An issue was discovered in D-Bus where an authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash when...